Building configuration...

Current configuration : 10028 bytes
!
! Last configuration change at 11:40:28 MSK Sat Mar 5 2022 by akhmetzyanovrr_adm
! NVRAM config last updated at 01:00:05 MSK Thu Jul 28 2022
!
version 15.2
no service pad
service timestamps debug datetime msec localtime show-timezone year
service timestamps log datetime msec localtime show-timezone year
no service password-encryption
!
hostname IZH-TK-M44-SW-1-3
!
boot-start-marker
boot-end-marker
!
logging buffered 512000 informational
enable secret 5 $1$j4UP$Wgs2xMeWlYNzcOvcwfmE90
!
username malkov privilege 15 secret 5 $1$9e/O$FzqlwZpLuJVyjpkH2fgnN0
username damir privilege 15 secret 5 $1$QAg5$75P0SMdIq23cVOk4/PZJf0
username ryabov privilege 15 secret 5 $1$CSVH$MvYXDiKxTKEGZez5Ww9zJ0
username admin_avv privilege 15 secret 5 $1$WcFJ$LHx93NlTcClCM1ONHvPtd.
username akhmetzyanovrr privilege 15 password 0 F[vtnpzyjd12
username netadmin privilege 15 secret 5 $1$jSmT$K8LGr3MoBSBNioXVSN3b10
aaa new-model
!
!
aaa group server radius NPS
 server name IZH-RDS002
 server name P11-RDS003
 load-balance method least-outstanding
!
aaa authentication login default group NPS local enable
aaa authentication login CONSOLE local group NPS
aaa authorization exec default group NPS local if-authenticated 
!
!
!
!
!
!
aaa session-id common
clock timezone MSK 4 0
switch 1 provision ws-c2960s-24ts-l
no ip source-route
no ip gratuitous-arps
!
!
ip dhcp snooping vlan 2
ip dhcp snooping
ip domain-list komos.local
no ip domain-lookup
ip domain-name komos.ru
ip host VM-KG-NET 10.1.12.70
ip host tftp 10.4.0.214
login on-failure log
login on-success log
vtp mode transparent
!
!
!
!
!
!
!
!
archive
 log config
  logging enable
  logging size 900
  notify syslog contenttype plaintext
  hidekeys
 path tftp://tftp/IZH/TK/M44-SW_L2/$H.$T.conf
 write-memory
 time-period 10080
!
mac access-list extended test
 deny   host 90f6.52b7.8120 any
 deny   any host 90f6.52b7.8120
 permit any any
!
spanning-tree mode rapid-pvst
spanning-tree loopguard default
no spanning-tree optimize bpdu transmission
spanning-tree extend system-id
errdisable recovery cause dtp-flap
errdisable recovery cause link-flap
errdisable recovery cause port-mode-failure
errdisable recovery cause loopback
errdisable recovery interval 600
!
!
!
!
vlan internal allocation policy ascending
!
vlan 2
 name TK-LAN-USERS-AREA
!
vlan 25
 name VOICE_AREA
!
vlan 101
 name Asterisk_VOIP
!
vlan 102
 name VD
!
vlan 103
 name Rostelecom_Video
!
vlan 150
 name TK-WIFI-USERS-AREA
!
vlan 200
 name TK-SERVERS-AREA
!
vlan 201
 name TK-SERVERS-VD-AREA
!
vlan 290
 name -=Esxi_vMotion=-
!
vlan 300
 name NETWORK_MANAGEMENT
!
vlan 350
 name TK-VOICE-AREA
!
vlan 400
 name TK-VIDEO-RTK-AREA
!
vlan 500
 name TK-WIFI-GUEST-AREA
!
vlan 555
 name --BGP_TRANSIT--
!
vlan 4000
 name TK-VOICE-ASTERISK
!
lldp run
!
! 
!
!
!
!
!
!
!
!
interface Loopback7777
 description TK01000764
 no ip address
 shutdown
!
interface Port-channel1
 description vd-srv
 switchport access vlan 102
 switchport mode access
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 ip dhcp snooping trust
!
interface FastEthernet0
 no ip address
 shutdown
!
interface GigabitEthernet1/0/1
 description DELL-3
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 no cdp enable
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/2
 description DELL-3
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 no cdp enable
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/3
 description DELL-2
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 no cdp enable
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/4
 description DELL-2
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 no cdp enable
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/5
 description DELL-1
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 no cdp enable
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/6
 description DELL-1
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 no cdp enable
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/7
 description ACCESS
 switchport access vlan 102
 switchport mode access
 switchport voice vlan 25
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/8
 description SHD FK
 switchport mode trunk
 switchport voice vlan 25
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/9
 description backup stores
 switchport access vlan 200
 switchport mode access
 logging event trunk-status
 logging event spanning-tree
 no cdp enable
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/10
 description SYNOLOGY
 switchport access vlan 2
 switchport mode access
 no logging event link-status
 no snmp trap link-status
 no cdp enable
 spanning-tree portfast
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/11
 description Vympelcom-VOIP-Asterisk
 switchport access vlan 101
 switchport mode access
 no logging event link-status
 no snmp trap link-status
 no cdp enable
 spanning-tree portfast
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/12
 description VOZMOSHNO_SLOMAN
!
interface GigabitEthernet1/0/13
 description ACCESS
 switchport access vlan 102
 switchport mode access
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
 channel-group 1 mode on
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/14
 description ACCESS
 switchport access vlan 102
 switchport mode access
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
 channel-group 1 mode on
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/15
 description ACCESS
 switchport access vlan 102
 switchport mode access
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/16
 description ACCESS
 switchport access vlan 102
 switchport mode access
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/17
 description SHD TK
 switchport access vlan 102
 switchport mode trunk
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/18
 description [KU] HLA-PP-RT-1-1
 switchport access vlan 2
 switchport mode access
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast
!
interface GigabitEthernet1/0/19
 description [KU] M44-SW-6-1
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/20
 description [KU] M44-SW-3-1
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/21
 description [KU] M44-SW-1-2
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/22
 description Gipervizor
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/23
 description [CORE] M44-RT-1-1
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/24
 description [KU] M44-SW-1-1
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/25
 description [KU] M44-SW-4-1
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/26
 description [CORE] M48-SW-1-1
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/27
 description [KU] M44-SW-2-1
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 ip dhcp snooping trust
!
interface GigabitEthernet1/0/28
 description [KU] M44-SW-1a-2
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 ip dhcp snooping trust
!
interface Vlan1
 no ip address
 no ip route-cache
 shutdown
!
interface Vlan300
 ip address 10.0.5.250 255.255.255.0
 no ip route-cache
!
ip default-gateway 10.0.5.254
no ip http server
no ip http secure-server
!
ip tftp source-interface Vlan300
ip ssh version 2
!
kron occurrence EveryDay at 1:00 recurring
 policy-list SaveBackup
!
kron policy-list SaveBackup
 cli write memory
!
logging origin-id hostname
logging source-interface Vlan300
logging host 10.4.244.4 transport udp port 515
!
snmp-server community lmTUEsk6Yvlv RO
snmp-server host 10.1.122.227 lmTUEsk6Yvlv 
!
!
radius server IZH-RDS002
 address ipv4 10.4.0.248 auth-port 1645 acct-port 1646
 timeout 3
 retransmit 2
 key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405
!
radius server P11-RDS003
 address ipv4 10.1.122.248 auth-port 1645 acct-port 1646
 timeout 3
 retransmit 2
 key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405
!
!
line con 0
 logging synchronous
 login authentication CONSOLE
line vty 0 4
 logging synchronous
 login authentication NPS
 length 0
 transport input ssh
line vty 5 15
 logging synchronous
 login authentication NPS
 transport input ssh
!
ntp source Vlan300
ntp server 10.0.5.254
end