ansible/backup/files/cisco/IZH-TK-SMR-SW-2-1.txt

Building configuration...

Current configuration : 6519 bytes
!
! No configuration change since last restart
!
version 12.1
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
service sequence-numbers
!
hostname IZH-TK-SMR-SW-2-1
!
logging buffered 51200 warnings
logging rate-limit 10000
aaa new-model
aaa group server radius NPS
 server 10.4.0.248 auth-port 1645 acct-port 1646
 server 10.1.122.248 auth-port 1645 acct-port 1646
!
aaa authentication login default group NPS local enable
aaa authentication login LOCAL_AUTH local
aaa authentication login CONSOLE local group NPS
aaa authorization exec default group NPS local if-authenticated
enable secret 5 $1$YipF$RrJJZBabxWb/tlrusl1FO.
!
username admin_avv privilege 15 secret 5 $1$RLSJ$MS4xIYESM6.oc3ND72YCy0
username damir privilege 15 secret 5 $1$F1Mt$0yGfx.f2zUM5.ZTMZy.HY.
username netadmin privilege 15 secret 5 $1$CHdJ$X8SNPw0XRYSaRHwLg4zY.1
clock timezone MSK 4
errdisable recovery cause bpduguard
errdisable recovery cause security-violation
errdisable recovery cause channel-misconfig
errdisable recovery cause dtp-flap
errdisable recovery cause link-flap
errdisable recovery cause psecure-violation
errdisable recovery cause loopback
errdisable recovery interval 600
ip subnet-zero
no ip source-route
no ip gratuitous-arps
!
ip dhcp snooping vlan 2
ip dhcp snooping vlan 150
ip dhcp snooping vlan 200
ip dhcp snooping vlan 300
ip dhcp snooping vlan 350
ip dhcp snooping vlan 400
ip dhcp snooping
ip tcp selective-ack
ip tcp path-mtu-discovery
ip domain-list tks.local
no ip domain-lookup
ip host tftp 10.4.0.214
ip host VM-KG-NET 10.1.12.70
ip domain-name komos.ru
ip ssh time-out 120
ip ssh authentication-retries 2
ip ssh version 2
vtp mode transparent
!
!
spanning-tree mode rapid-pvst
spanning-tree loopguard default
no spanning-tree optimize bpdu transmission
spanning-tree extend system-id
!
!
!
!
vlan 2
 name TK-LAN-USERS-AREA
!
vlan 100
 name MANAGEMETS_AREA
!
vlan 150
 name TK-WIFI-USERS-AREA
!
vlan 200
 name TK-MGM-SRV-AREA
!
vlan 300
 name TK-MGM-NETWORK-AREA
!
vlan 350
 name TK-VOICE-AREA
!
vlan 400
 name TK-VIDEO-SZB-AREA
!
interface FastEthernet0/1
 description VLAN-2
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface FastEthernet0/2
 description VLAN-2
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface FastEthernet0/3
 description VLAN-2
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface FastEthernet0/4
 description VLAN-2
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface FastEthernet0/5
 description VLAN-2
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface FastEthernet0/6
 description VLAN-2
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface FastEthernet0/7
 description VLAN-2
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface FastEthernet0/8
 description VLAN-2
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface FastEthernet0/9
 description [WIFI] AP-3
 switchport trunk allowed vlan 150
 switchport mode trunk
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface FastEthernet0/10
 description VLAN-2
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface FastEthernet0/11
 description VLAN-2
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface FastEthernet0/12
 description [CORE] SW-1-1
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 ip dhcp snooping trust
!
interface Vlan1
 no ip address
 no ip route-cache
 shutdown
!
interface Vlan300
 ip address 10.0.19.249 255.255.255.0
 no ip route-cache
!
interface Vlan3966
 description TK5209m
 no ip address
 no ip route-cache
 shutdown
!
ip default-gateway 10.0.19.254
no ip http server
logging trap debugging
logging facility local1
logging source-interface Vlan300
access-list 23 permit any
access-list 23 deny   any log
snmp-server community lmTUEsk6Yvlv RO
snmp-server host 10.1.122.227 lmTUEsk6Yvlv 
snmp-server host 91.240.179.1 public 
radius-server host 10.4.0.248 auth-port 1645 acct-port 1646 timeout 3 retransmit 2 key 7 0657387315404D2E1F1F54212D3A6C042B313E1713030857472277757E5E101A2735390B4D780B6A77632E4B03034B5E455141765A5A096D364B4B6300674E6E4E
radius-server host 10.1.122.248 auth-port 1645 acct-port 1646 timeout 3 retransmit 2 key 7 135420405202401D312C6E19141C5528191A0C7468485C154A20393A7F55134776787B594E295F60755745704054410D455141534F585F15364B4B463A70134E1E
radius-server retransmit 3
!
line con 0
 logging synchronous
 login authentication CONSOLE
line vty 0 4
 logging synchronous
 login authentication NPS
 transport input ssh
line vty 5 15
 logging synchronous
 login authentication NPS
 transport input ssh
!
ntp clock-period 17180244
ntp source Vlan300
ntp server 10.0.19.254
!
end
first commit 2025-10-31 08:47:26 +04:00			`Building configuration...`

			`Current configuration : 6519 bytes`
			`!`
			`! No configuration change since last restart`
			`!`
			`version 12.1`
			`no service pad`
			`service tcp-keepalives-in`
			`service tcp-keepalives-out`
			`service timestamps debug datetime msec localtime show-timezone`
			`service timestamps log datetime msec localtime show-timezone`
			`service password-encryption`
			`service sequence-numbers`
			`!`
			`hostname IZH-TK-SMR-SW-2-1`
			`!`
			`logging buffered 51200 warnings`
			`logging rate-limit 10000`
			`aaa new-model`
			`aaa group server radius NPS`
			`server 10.4.0.248 auth-port 1645 acct-port 1646`
			`server 10.1.122.248 auth-port 1645 acct-port 1646`
			`!`
			`aaa authentication login default group NPS local enable`
			`aaa authentication login LOCAL_AUTH local`
			`aaa authentication login CONSOLE local group NPS`
			`aaa authorization exec default group NPS local if-authenticated`
			`enable secret 5 $1$YipF$RrJJZBabxWb/tlrusl1FO.`
			`!`
			`username admin_avv privilege 15 secret 5 $1$RLSJ$MS4xIYESM6.oc3ND72YCy0`
			`username damir privilege 15 secret 5 $1$F1Mt$0yGfx.f2zUM5.ZTMZy.HY.`
			`username netadmin privilege 15 secret 5 $1$CHdJ$X8SNPw0XRYSaRHwLg4zY.1`
			`clock timezone MSK 4`
			`errdisable recovery cause bpduguard`
			`errdisable recovery cause security-violation`
			`errdisable recovery cause channel-misconfig`
			`errdisable recovery cause dtp-flap`
			`errdisable recovery cause link-flap`
			`errdisable recovery cause psecure-violation`
			`errdisable recovery cause loopback`
			`errdisable recovery interval 600`
			`ip subnet-zero`
			`no ip source-route`
			`no ip gratuitous-arps`
			`!`
			`ip dhcp snooping vlan 2`
			`ip dhcp snooping vlan 150`
			`ip dhcp snooping vlan 200`
			`ip dhcp snooping vlan 300`
			`ip dhcp snooping vlan 350`
			`ip dhcp snooping vlan 400`
			`ip dhcp snooping`
			`ip tcp selective-ack`
			`ip tcp path-mtu-discovery`
			`ip domain-list tks.local`
			`no ip domain-lookup`
			`ip host tftp 10.4.0.214`
			`ip host VM-KG-NET 10.1.12.70`
			`ip domain-name komos.ru`
			`ip ssh time-out 120`
			`ip ssh authentication-retries 2`
			`ip ssh version 2`
			`vtp mode transparent`
			`!`
			`!`
			`spanning-tree mode rapid-pvst`
			`spanning-tree loopguard default`
			`no spanning-tree optimize bpdu transmission`
			`spanning-tree extend system-id`
			`!`
			`!`
			`!`
			`!`
			`vlan 2`
			`name TK-LAN-USERS-AREA`
			`!`
			`vlan 100`
			`name MANAGEMETS_AREA`
			`!`
			`vlan 150`
			`name TK-WIFI-USERS-AREA`
			`!`
			`vlan 200`
			`name TK-MGM-SRV-AREA`
			`!`
			`vlan 300`
			`name TK-MGM-NETWORK-AREA`
			`!`
			`vlan 350`
			`name TK-VOICE-AREA`
			`!`
			`vlan 400`
			`name TK-VIDEO-SZB-AREA`
			`!`
			`interface FastEthernet0/1`
			`description VLAN-2`
			`switchport access vlan 2`
			`switchport mode access`
			`switchport voice vlan 350`
			`no logging event link-status`
			`no snmp trap link-status`
			`storm-control broadcast level 30.00`
			`no cdp enable`
			`spanning-tree portfast`
			`!`
			`interface FastEthernet0/2`
			`description VLAN-2`
			`switchport access vlan 2`
			`switchport mode access`
			`switchport voice vlan 350`
			`no logging event link-status`
			`no snmp trap link-status`
			`storm-control broadcast level 30.00`
			`no cdp enable`
			`spanning-tree portfast`
			`!`
			`interface FastEthernet0/3`
			`description VLAN-2`
			`switchport access vlan 2`
			`switchport mode access`
			`switchport voice vlan 350`
			`no logging event link-status`
			`no snmp trap link-status`
			`storm-control broadcast level 30.00`
			`no cdp enable`
			`spanning-tree portfast`
			`!`
			`interface FastEthernet0/4`
			`description VLAN-2`
			`switchport access vlan 2`
			`switchport mode access`
			`switchport voice vlan 350`
			`no logging event link-status`
			`no snmp trap link-status`
			`storm-control broadcast level 30.00`
			`no cdp enable`
			`spanning-tree portfast`
			`!`
			`interface FastEthernet0/5`
			`description VLAN-2`
			`switchport access vlan 2`
			`switchport mode access`
			`switchport voice vlan 350`
			`no logging event link-status`
			`no snmp trap link-status`
			`storm-control broadcast level 30.00`
			`no cdp enable`
			`spanning-tree portfast`
			`!`
			`interface FastEthernet0/6`
			`description VLAN-2`
			`switchport access vlan 2`
			`switchport mode access`
			`switchport voice vlan 350`
			`no logging event link-status`
			`no snmp trap link-status`
			`storm-control broadcast level 30.00`
			`no cdp enable`
			`spanning-tree portfast`
			`!`
			`interface FastEthernet0/7`
			`description VLAN-2`
			`switchport access vlan 2`
			`switchport mode access`
			`switchport voice vlan 350`
			`no logging event link-status`
			`no snmp trap link-status`
			`storm-control broadcast level 30.00`
			`no cdp enable`
			`spanning-tree portfast`
			`!`
			`interface FastEthernet0/8`
			`description VLAN-2`
			`switchport access vlan 2`
			`switchport mode access`
			`switchport voice vlan 350`
			`no logging event link-status`
			`no snmp trap link-status`
			`storm-control broadcast level 30.00`
			`no cdp enable`
			`spanning-tree portfast`
			`!`
			`interface FastEthernet0/9`
			`description [WIFI] AP-3`
			`switchport trunk allowed vlan 150`
			`switchport mode trunk`
			`switchport voice vlan 350`
			`no logging event link-status`
			`no snmp trap link-status`
			`storm-control broadcast level 30.00`
			`no cdp enable`
			`spanning-tree portfast`
			`!`
			`interface FastEthernet0/10`
			`description VLAN-2`
			`switchport access vlan 2`
			`switchport mode access`
			`switchport voice vlan 350`
			`no logging event link-status`
			`no snmp trap link-status`
			`storm-control broadcast level 30.00`
			`no cdp enable`
			`spanning-tree portfast`
			`!`
			`interface FastEthernet0/11`
			`description VLAN-2`
			`switchport access vlan 2`
			`switchport mode access`
			`switchport voice vlan 350`
			`no logging event link-status`
			`no snmp trap link-status`
			`storm-control broadcast level 30.00`
			`no cdp enable`
			`spanning-tree portfast`
			`!`
			`interface FastEthernet0/12`
			`description [CORE] SW-1-1`
			`switchport mode trunk`
			`logging event trunk-status`
			`logging event spanning-tree`
			`ip dhcp snooping trust`
			`!`
			`interface Vlan1`
			`no ip address`
			`no ip route-cache`
			`shutdown`
			`!`
			`interface Vlan300`
			`ip address 10.0.19.249 255.255.255.0`
			`no ip route-cache`
			`!`
			`interface Vlan3966`
			`description TK5209m`
			`no ip address`
			`no ip route-cache`
			`shutdown`
			`!`
			`ip default-gateway 10.0.19.254`
			`no ip http server`
			`logging trap debugging`
			`logging facility local1`
			`logging source-interface Vlan300`
			`access-list 23 permit any`
			`access-list 23 deny any log`
			`snmp-server community lmTUEsk6Yvlv RO`
			`snmp-server host 10.1.122.227 lmTUEsk6Yvlv`
			`snmp-server host 91.240.179.1 public`
			`radius-server host 10.4.0.248 auth-port 1645 acct-port 1646 timeout 3 retransmit 2 key 7 0657387315404D2E1F1F54212D3A6C042B313E1713030857472277757E5E101A2735390B4D780B6A77632E4B03034B5E455141765A5A096D364B4B6300674E6E4E`
			`radius-server host 10.1.122.248 auth-port 1645 acct-port 1646 timeout 3 retransmit 2 key 7 135420405202401D312C6E19141C5528191A0C7468485C154A20393A7F55134776787B594E295F60755745704054410D455141534F585F15364B4B463A70134E1E`
			`radius-server retransmit 3`
			`!`
			`line con 0`
			`logging synchronous`
			`login authentication CONSOLE`
			`line vty 0 4`
			`logging synchronous`
			`login authentication NPS`
			`transport input ssh`
			`line vty 5 15`
			`logging synchronous`
			`login authentication NPS`
			`transport input ssh`
			`!`
			`ntp clock-period 17180244`
			`ntp source Vlan300`
			`ntp server 10.0.19.254`
			`!`
			`end`