Building configuration...

Current configuration : 17696 bytes
!
! Last configuration change at 08:15:22 MSK Wed Jul 27 2022 by adm_kapustinal
! NVRAM config last updated at 00:59:59 MSK Thu Jul 28 2022
!
version 15.2
service nagle
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone year
service timestamps log datetime msec localtime show-timezone year
service password-encryption
service sequence-numbers
!
hostname IZH-KG-P11-SW-7-1
!
boot-start-marker
boot-end-marker
!
logging buffered 512000 informational
enable secret 5 $1$E5KI$NLcrXK.Ut0BcwNo0g27v80
!
username netadmin privilege 15 secret 5 $1$u9Cb$nXGenl1uHAvP8A5F6JM2T1
aaa new-model
!
!
aaa group server radius NPS
 server name IZH-RDS002
 server name P11-RDS003
 load-balance method least-outstanding
!
aaa authentication login default group NPS local enable
aaa authentication login CONSOLE local group NPS
aaa authorization exec default group NPS local if-authenticated 
!
!
!
!
!
!
aaa session-id common
clock timezone MSK 4 0
system mtu routing 1500
vtp mode transparent
!
!
!
!
!
!
!
!
!
no ip source-route
no ip gratuitous-arps
!
!
ip dhcp snooping vlan 2,6,12,150,350-351,500
ip dhcp snooping
no ip domain-lookup
ip domain-name komos.ru
ip host tftp 10.4.0.214
ip host VM-KG-NET 10.1.12.70
login on-failure log
login on-success log
!
!
errdisable recovery cause bpduguard
errdisable recovery cause channel-misconfig
errdisable recovery cause dtp-flap
errdisable recovery cause link-flap
errdisable recovery cause psecure-violation
errdisable recovery cause port-mode-failure
errdisable recovery cause loopback
errdisable recovery interval 600
archive
 log config
  logging enable
  logging size 900
  notify syslog contenttype plaintext
  hidekeys
 path tftp://tftp/IZH/KG/P11-SW_L2/$H.$T.conf
 write-memory
 time-period 10080
!
spanning-tree mode rapid-pvst
spanning-tree loopguard default
no spanning-tree optimize bpdu transmission
spanning-tree extend system-id
!
!
vlan 2
 name KG_LAN-USER
!
vlan 5
 name KG_LAN-ADMIN
!
vlan 6
 name IMP-LAN
!
vlan 9
 name KOMOS-GUEST
!
vlan 12
 name UNIFI_NETWORK
!
vlan 100
 name MANAGEMENT
!
vlan 150
 name KG_WIFI-USER
!
vlan 152 
!
vlan 300
 name KG_MGMT-NET
!
vlan 301
 name KG_MGMT-WIFI
!
vlan 303
 name KG_ARUBA_AP
!
vlan 350
 name IMP-VOIP
!
vlan 351
 name KG_VOIP
!
vlan 500
 name KG_WIFI-GUEST
lldp run
!
!
!
!
!
!
interface Loopback7777
 description TK7874m
 no ip address
 shutdown
 downshift disable
!
interface Port-channel1
 description [CORE] SW-1-1
 switchport mode trunk
 ip dhcp snooping trust
!
interface FastEthernet0/1
 description KG_LAN-USER
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/2
 description ACC_7.11.17
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/3
 description ACC_7.11.23_Erohina_PC
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/4
 description KG_LAN-USER
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/5
 description ACC_7.11.13
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/6
 description KG_User
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/7
 description [PRN] Piskarev
 switchport access vlan 5
 switchport mode access
 no cdp enable
 no snmp trap link-status
 spanning-tree portfast edge
!
interface FastEthernet0/8
 description KG_LAN-USER
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/9
 description IMP-LAN
 switchport access vlan 6
 switchport mode access
 switchport voice vlan 350
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/10
 description KG-ohrana
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/11
 description ACC_7.11.19
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/12
 description ACC_7.11.12
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/13
 description CHUBCHENKO
 switchport access vlan 5
 switchport mode access
 switchport voice vlan 350
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/14
 description CHUBCHENKO
 switchport access vlan 5
 switchport mode access
 switchport voice vlan 350
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/15
 description Piskarev_PC
 switchport access vlan 5
 switchport mode access
 switchport voice vlan 350
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/16
 description [PRN]
 switchport access vlan 2
 switchport mode access
 power inline port 2x-mode
 no cdp enable
 no snmp trap link-status
 no lldp transmit
 no lldp receive
 spanning-tree portfast edge
!
interface FastEthernet0/17
 description ACC_7.11.27
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/18
 description ACC_7.11.30
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/19
 description KG_LAN-USER
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/20
 description ACC_7.11.16 Apple Time_Capsula
 switchport access vlan 150
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/21
 description KG_LAN-USER
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/22
 description ACC_7.11.14
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/23
 description IMP-LAN
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/24
 description ACC_KG_7.11.31
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/25
 description KG_LAN-USER
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/26
 description KG_LAN-USER
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/27
 description 1C
 switchport access vlan 5
 switchport mode access
 switchport voice vlan 350
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/28
 description ACC_7.11.26
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/29
 description 1C
 switchport access vlan 5
 switchport mode access
 switchport voice vlan 350
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/30
 description [WIFI] AP-7-701-Priemnaya
 switchport access vlan 12
 switchport trunk allowed vlan 12,150
 switchport trunk native vlan 12
 switchport mode trunk
 power inline port 2x-mode
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/31
 description 1C
 switchport access vlan 5
 switchport mode access
 switchport voice vlan 350
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/32
 description KG_LAN-USER
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/33
 description ACC_7.11.34
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/34
 description KG_LAN-USER
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/35
 description 1C
 switchport access vlan 5
 switchport mode access
 switchport voice vlan 350
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/36
 description KG_LAN-USER
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/37
 description 1C
 switchport access vlan 5
 switchport mode access
 switchport voice vlan 350
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/38
 description KG_LAN-USER
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/39
 description 1C
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/40
 description KG_LAN-USER
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/41
 description 1C
 switchport access vlan 5
 switchport mode access
 switchport voice vlan 350
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/42
 description KG_LAN-USER
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/43
 description NONE
 switchport access vlan 303
 switchport trunk allowed vlan 150,303
 switchport trunk native vlan 303
 switchport mode trunk
 no cdp enable
 no snmp trap link-status
!
interface FastEthernet0/44
 description KG_LAN-USER
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/45
 description KG_LAN-USER
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/46
 description KG_LAN-USER
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/47
 description ACC_7.11.29
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no cdp enable
 no snmp trap link-status
 no lldp transmit
 no lldp receive
 spanning-tree portfast edge
!
interface FastEthernet0/48
 description [WIFI] AP-7-710-OUS
 switchport trunk allowed vlan 6,12,150,301,500
 switchport trunk native vlan 12
 switchport mode trunk
 power inline port 2x-mode
 no cdp enable
 no snmp trap link-status
 no lldp transmit
 no lldp receive
 spanning-tree portfast edge
!
interface GigabitEthernet0/1
 description [CORE] Po1 SW-1-1
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 channel-group 1 mode on
 ip dhcp snooping trust
!
interface GigabitEthernet0/2
 description PORT-CHANNEL
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 channel-group 1 mode on
 ip dhcp snooping trust
!
interface GigabitEthernet0/3
 description [ACC] 7.11.35 Obukhov
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 logging event trunk-status
 logging event spanning-tree
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface GigabitEthernet0/4
 description ACC_7.11.22
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 logging event trunk-status
 logging event spanning-tree
 spanning-tree portfast edge
 ip dhcp snooping trust
!
interface Vlan1
 no ip address
 shutdown
!
interface Vlan100
 ip address 10.1.1.71 255.255.255.0
 no ip redirects
 no ip unreachables
 no ip proxy-arp
!
ip default-gateway 10.1.1.1
no ip http server
no ip http secure-server
ip tftp source-interface Vlan100
ip ssh authentication-retries 2
ip ssh version 2
!
kron occurrence EveryDay at 1:00 recurring
 policy-list SaveBackup
!
kron policy-list SaveBackup
 cli write memory
!
logging trap debugging
logging origin-id hostname
logging facility local6
logging source-interface Vlan100
logging host 192.168.2.25
logging host 10.4.244.4 transport udp port 515
access-list 23 permit any
access-list 23 deny   any log
snmp-server community lmTUEsk6Yvlv RO
snmp-server host 10.1.122.227 lmTUEsk6Yvlv 
snmp mib flash cache
!
radius server IZH-RDS002
 address ipv4 10.4.0.248 auth-port 1645 acct-port 1646
 timeout 3
 retransmit 2
 key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405
!
radius server P11-RDS003
 address ipv4 10.1.122.248 auth-port 1645 acct-port 1646
 timeout 3
 retransmit 2
 key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405
!
!
privilege exec all level 7 show cdp
privilege exec all level 7 show running-config
privilege exec all level 7 show configuration
privilege exec level 7 show
banner login ^CC
*****************************************************************************
*                                                                           *
*                            OOO "KOMOS GROUP"                              *
*                              Pesochnaya 11                                *
*                                7st FLOOR                                  *
*                              IzhMashProekt                                *
*                                                                           *
*                    UNAUTHORIZED ACCESS IS PROHIBITED                      *
*                                                                           *
*                     You have accessed network equipment.                  *
*  You must have authorized permission to access or configure this device.  *
*     All activities performed on this device are logged and monitored.     *
*                                                                           *
*****************************************************************************^C
!
line con 0
 logging synchronous
 login authentication CONSOLE
line vty 0 4
 access-class 23 in
 logging synchronous
 login authentication NPS
 length 0
 transport input ssh
line vty 5 15
 access-class 23 in
 logging synchronous
 login authentication NPS
 transport input ssh
!
ntp source Vlan100
ntp server 10.1.1.2
end