pycm1k/ansible
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
ansible/backup/files/cisco/IZH-MK-VS17-SW-1-1.txt

1138 lines
25 KiB
Plaintext
Raw Normal View History

first commit
2025-10-31 08:47:26 +04:00
Building configuration...
Current configuration : 25563 bytes
!
! Last configuration change at 16:50:42 SAMT Fri Jun 24 2022 by adm_ivanovas
! NVRAM config last updated at 01:30:00 SAMT Thu Jul 28 2022
!
version 15.2
no service pad
service timestamps debug datetime msec localtime show-timezone year
service timestamps log datetime msec localtime show-timezone year
no service password-encryption
!
hostname IZH-MK-VS17-SW-1-1
!
boot-start-marker
boot-end-marker
!
logging userinfo
logging buffered 64000
enable secret 5 $1$pAEC$q1UDIH8C3ma0Rjn7hKwFB.
!
username netadmin privilege 15 secret 5 $1$ANC5$ed2yKSjwVWHReEaxzJosP.
aaa new-model
!
!
aaa group server radius NPS
server name IZH-RDS002
server name P11-RDS003
load-balance method least-outstanding
!
aaa authentication login default group NPS local enable
aaa authentication login CONSOLE local group NPS
aaa authorization exec default group NPS local if-authenticated
!
!
!
!
!
!
aaa session-id common
clock timezone SAMT 4 0
switch 1 provision ws-c2960x-48lps-l
switch 2 provision ws-c2960x-48lps-l
switch 3 provision ws-c2960x-48lps-l
ip routing
ip dhcp excluded-address 10.14.24.240 10.14.24.255
ip dhcp excluded-address 10.14.26.240 10.14.26.255
ip dhcp excluded-address 10.14.29.240 10.14.29.255
ip dhcp excluded-address 10.14.27.240 10.14.27.255
ip dhcp excluded-address 10.14.24.40 10.14.24.255
ip dhcp excluded-address 10.14.30.240 10.14.30.255
ip dhcp excluded-address 10.14.25.200
ip dhcp excluded-address 10.14.30.29
ip dhcp excluded-address 10.14.30.200 10.14.30.220
ip dhcp excluded-address 10.14.30.81
ip dhcp excluded-address 10.14.30.92
ip dhcp excluded-address 10.14.30.117
ip dhcp excluded-address 10.14.30.25
ip dhcp excluded-address 10.14.30.77
ip dhcp excluded-address 10.14.30.103
ip dhcp excluded-address 10.14.30.10
ip dhcp excluded-address 10.14.30.100
ip dhcp excluded-address 10.14.30.130
!
ip dhcp pool MK_DHCP_WiFi_WORK
network 10.14.26.0 255.255.255.0
default-router 10.14.26.254
dns-server 192.168.1.21 192.168.1.100
domain-name komos.local
option 43 hex 0104.0a01.0c1d
lease 8
!
ip dhcp pool MK_DHCP_USERS
utilization mark high 95 log
network 10.14.30.0 255.255.255.0
default-router 10.14.30.254
dns-server 192.168.1.21 192.168.1.100
domain-name komos.local
lease 8
!
ip dhcp pool MK_DHCP_VOIP
network 10.14.29.0 255.255.255.0
default-router 10.14.29.254
dns-server 192.168.1.21 192.168.1.100
domain-name komos.local
option 66 ip 10.4.7.17
lease 8
!
ip dhcp pool MK_DHCP_WiFi_GUEST
network 10.14.27.0 255.255.255.0
default-router 10.14.27.254
dns-server 8.8.4.4 8.8.8.8
lease 3
!
ip dhcp pool MK_DHCP_MGMT
network 10.14.25.0 255.255.255.0
default-router 10.14.25.254
dns-server 192.168.1.21 192.168.1.100
domain-name komos.local
option 43 hex 0104.0a01.0c1d
lease 8
!
!
ip dhcp snooping vlan 2,150,300,350,500
ip dhcp snooping
no ip domain-lookup
ip domain-name komos.ru
ip host VM-KG-NET 10.1.12.70
ip host IZH-MK-VS17-SW-01-01 10.14.25.254
ip host IZH-MK-VS17-RT-01 10.14.25.251
ip host IZH-MK-VS17-RT-02 10.14.25.252
ip host tftp 10.4.0.214
no ip dhcp-client broadcast-flag
login on-failure log
login on-success log
!
!
!
!
!
!
!
!
archive
log config
logging enable
logging size 900
notify syslog contenttype plaintext
hidekeys
path tftp://tftp/IZH/MK/VS17-SW_L2/$H.$T.conf
write-memory
time-period 10080
!
spanning-tree mode rapid-pvst
spanning-tree logging
spanning-tree extend system-id
errdisable recovery cause dtp-flap
errdisable recovery cause link-flap
errdisable recovery cause port-mode-failure
errdisable recovery cause loopback
errdisable recovery interval 600
!
!
!
!
vlan internal allocation policy ascending
!
ip tftp source-interface Vlan300
lldp run
!
!
!
!
!
!
!
!
!
!
interface Loopback7777
description MK14000910
no ip address
shutdown
!
interface FastEthernet0
no ip address
no ip route-cache
shutdown
!
interface GigabitEthernet1/0/1
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/2
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/3
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/4
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/5
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/6
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/7
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/8
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/9
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/10
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/11
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/12
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/13
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/14
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/15
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/16
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/17
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/18
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/19
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/20
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/21
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/22
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/23
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/24
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/25
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/26
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/27
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/28
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/29
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/30
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/31
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/32
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/33
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/34
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/35
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/36
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/37
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/38
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/39
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/40
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/41
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/42
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/43
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/44
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/45
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/46
description --Wi-Fi--
switchport trunk native vlan 300
switchport trunk allowed vlan 150,300,500
switchport mode trunk
switchport voice vlan 350
!
interface GigabitEthernet1/0/47
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet1/0/48
description --Wi-Fi--
switchport trunk native vlan 300
switchport trunk allowed vlan 150,300,500
switchport mode trunk
no snmp trap link-status
!
interface GigabitEthernet1/0/49
switchport access vlan 300
switchport mode access
!
interface GigabitEthernet1/0/50
switchport access vlan 300
switchport mode access
!
interface GigabitEthernet1/0/51
switchport access vlan 300
switchport mode access
!
interface GigabitEthernet1/0/52
switchport access vlan 300
switchport mode access
!
interface GigabitEthernet2/0/1
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/2
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/3
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/4
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/5
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/6
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/7
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/8
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/9
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/10
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/11
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/12
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/13
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/14
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/15
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/16
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/17
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/18
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/19
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/20
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/21
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/22
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/23
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/24
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/25
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/26
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/27
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/28
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/29
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/30
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/31
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/32
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/33
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/34
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/35
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/36
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/37
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/38
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/39
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/40
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/41
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/42
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/43
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/44
switchport access vlan 2
switchport mode access
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/45
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/46
switchport voice vlan 350
spanning-tree portfast
!
interface GigabitEthernet2/0/47
description [UPS]
switchport access vlan 310
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet2/0/48
description [CORE] RT-1-1
switchport mode trunk
switchport voice vlan 350
spanning-tree portfast
ip dhcp snooping trust
!
interface GigabitEthernet2/0/49
switchport access vlan 300
switchport mode access
!
interface GigabitEthernet2/0/50
switchport access vlan 300
switchport mode access
!
interface GigabitEthernet2/0/51
switchport access vlan 300
switchport mode access
!
interface GigabitEthernet2/0/52
switchport access vlan 300
switchport mode access
!
interface GigabitEthernet3/0/1
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/2
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/3
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/4
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/5
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/6
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/7
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/8
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/9
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/10
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/11
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/12
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/13
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/14
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/15
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/16
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/17
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/18
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/19
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/20
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/21
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/22
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/23
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/24
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/25
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/26
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/27
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/28
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/29
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/30
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/31
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/32
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/33
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/34
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/35
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/36
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/37
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/38
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/39
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/40
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/41
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/42
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/43
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/44
switchport access vlan 2
switchport mode access
switchport voice vlan 350
!
interface GigabitEthernet3/0/45
switchport voice vlan 350
!
interface GigabitEthernet3/0/46
switchport voice vlan 350
!
interface GigabitEthernet3/0/47
switchport voice vlan 350
!
interface GigabitEthernet3/0/48
description [CORE] RT-1-2
switchport mode trunk
switchport voice vlan 350
ip dhcp snooping trust
!
interface GigabitEthernet3/0/49
switchport access vlan 300
switchport mode access
!
interface GigabitEthernet3/0/50
switchport access vlan 300
switchport mode access
!
interface GigabitEthernet3/0/51
switchport access vlan 300
switchport mode access
!
interface GigabitEthernet3/0/52
switchport access vlan 300
switchport mode access
!
interface Vlan1
no ip address
shutdown
!
interface Vlan2
description --USERS--
ip dhcp relay information trusted
ip address 10.14.30.254 255.255.255.0
no ip redirects
no ip unreachables
no ip proxy-arp
!
interface Vlan150
description --Wi-Fi_WORK--
ip dhcp relay information trusted
ip address 10.14.26.254 255.255.255.0
no ip redirects
no ip unreachables
no ip proxy-arp
!
interface Vlan300
description --MANAGEMENT--
ip dhcp relay information trusted
ip address 10.14.25.254 255.255.255.0
no ip redirects
no ip unreachables
no ip proxy-arp
!
interface Vlan310
description UPS management
ip address 10.14.28.254 255.255.255.0
!
interface Vlan350
description --VoIP--
ip dhcp relay information trusted
ip address 10.14.29.254 255.255.255.0
no ip redirects
no ip unreachables
no ip proxy-arp
!
interface Vlan500
description --Wi-Fi_GUEST--
ip dhcp relay information trusted
ip address 10.14.27.254 255.255.255.0
ip access-group ACL_DENY_LOCAL_NETS in
no ip redirects
no ip unreachables
no ip proxy-arp
!
no ip http server
no ip http secure-server
!
ip route 0.0.0.0 0.0.0.0 10.14.25.253 100 name --DEFAULT_ROUTE--
ip ssh version 2
!
ip access-list standard ACL_FOR_SNMP
permit 10.1.122.227
permit 192.168.2.202
permit 192.168.8.0 0.0.0.255
permit 10.4.0.0 0.0.255.255
!
ip access-list extended ACL_DENY_LOCAL_NETS
deny ip any 10.0.0.0 0.255.255.255
deny ip any 172.16.0.0 0.15.255.255
deny ip any 192.168.0.0 0.0.255.255
ip access-list extended ACL_WAN_TO_SELF
kron occurrence EveryDay at 1:30 recurring
policy-list SaveBackup
!
kron policy-list SaveBackup
cli write memory
!
logging origin-id hostname
logging source-interface Vlan300
logging host 192.168.2.25
!
snmp-server community lmTUEsk6Yvlv RO ACL_FOR_SNMP
snmp ifmib ifindex persist
!
!
radius server IZH-RDS002
address ipv4 10.4.0.248 auth-port 1645 acct-port 1646
timeout 3
retransmit 2
key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405
!
radius server P11-RDS003
address ipv4 10.1.122.248 auth-port 1645 acct-port 1646
timeout 3
retransmit 2
key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405
!
!
!
line con 0
exec-timeout 120 0
privilege level 15
login authentication CONSOLE
line vty 0 4
exec-timeout 120 0
privilege level 15
login authentication NPS
length 0
transport input ssh
line vty 5 15
exec-timeout 120 0
privilege level 15
login authentication NPS
transport input ssh
!
ntp server 192.168.1.100
ntp server 192.168.1.21
end
Reference in New Issue Copy Permalink