Building configuration... Current configuration : 17696 bytes ! ! Last configuration change at 08:15:22 MSK Wed Jul 27 2022 by adm_kapustinal ! NVRAM config last updated at 00:59:59 MSK Thu Jul 28 2022 ! version 15.2 service nagle no service pad service tcp-keepalives-in service tcp-keepalives-out service timestamps debug datetime msec localtime show-timezone year service timestamps log datetime msec localtime show-timezone year service password-encryption service sequence-numbers ! hostname IZH-KG-P11-SW-7-1 ! boot-start-marker boot-end-marker ! logging buffered 512000 informational enable secret 5 $1$E5KI$NLcrXK.Ut0BcwNo0g27v80 ! username netadmin privilege 15 secret 5 $1$u9Cb$nXGenl1uHAvP8A5F6JM2T1 aaa new-model ! ! aaa group server radius NPS server name IZH-RDS002 server name P11-RDS003 load-balance method least-outstanding ! aaa authentication login default group NPS local enable aaa authentication login CONSOLE local group NPS aaa authorization exec default group NPS local if-authenticated ! ! ! ! ! ! aaa session-id common clock timezone MSK 4 0 system mtu routing 1500 vtp mode transparent ! ! ! ! ! ! ! ! ! no ip source-route no ip gratuitous-arps ! ! ip dhcp snooping vlan 2,6,12,150,350-351,500 ip dhcp snooping no ip domain-lookup ip domain-name komos.ru ip host tftp 10.4.0.214 ip host VM-KG-NET 10.1.12.70 login on-failure log login on-success log ! ! errdisable recovery cause bpduguard errdisable recovery cause channel-misconfig errdisable recovery cause dtp-flap errdisable recovery cause link-flap errdisable recovery cause psecure-violation errdisable recovery cause port-mode-failure errdisable recovery cause loopback errdisable recovery interval 600 archive log config logging enable logging size 900 notify syslog contenttype plaintext hidekeys path tftp://tftp/IZH/KG/P11-SW_L2/$H.$T.conf write-memory time-period 10080 ! spanning-tree mode rapid-pvst spanning-tree loopguard default no spanning-tree optimize bpdu transmission spanning-tree extend system-id ! ! vlan 2 name KG_LAN-USER ! vlan 5 name KG_LAN-ADMIN ! vlan 6 name IMP-LAN ! vlan 9 name KOMOS-GUEST ! vlan 12 name UNIFI_NETWORK ! vlan 100 name MANAGEMENT ! vlan 150 name KG_WIFI-USER ! vlan 152 ! vlan 300 name KG_MGMT-NET ! vlan 301 name KG_MGMT-WIFI ! vlan 303 name KG_ARUBA_AP ! vlan 350 name IMP-VOIP ! vlan 351 name KG_VOIP ! vlan 500 name KG_WIFI-GUEST lldp run ! ! ! ! ! ! interface Loopback7777 description TK7874m no ip address shutdown downshift disable ! interface Port-channel1 description [CORE] SW-1-1 switchport mode trunk ip dhcp snooping trust ! interface FastEthernet0/1 description KG_LAN-USER switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/2 description ACC_7.11.17 switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/3 description ACC_7.11.23_Erohina_PC switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/4 description KG_LAN-USER switchport access vlan 2 switchport mode access switchport voice vlan 350 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/5 description ACC_7.11.13 switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/6 description KG_User switchport access vlan 2 switchport mode access switchport voice vlan 350 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/7 description [PRN] Piskarev switchport access vlan 5 switchport mode access no cdp enable no snmp trap link-status spanning-tree portfast edge ! interface FastEthernet0/8 description KG_LAN-USER switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/9 description IMP-LAN switchport access vlan 6 switchport mode access switchport voice vlan 350 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/10 description KG-ohrana switchport access vlan 2 switchport mode access switchport voice vlan 350 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/11 description ACC_7.11.19 switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/12 description ACC_7.11.12 switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/13 description CHUBCHENKO switchport access vlan 5 switchport mode access switchport voice vlan 350 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/14 description CHUBCHENKO switchport access vlan 5 switchport mode access switchport voice vlan 350 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/15 description Piskarev_PC switchport access vlan 5 switchport mode access switchport voice vlan 350 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/16 description [PRN] switchport access vlan 2 switchport mode access power inline port 2x-mode no cdp enable no snmp trap link-status no lldp transmit no lldp receive spanning-tree portfast edge ! interface FastEthernet0/17 description ACC_7.11.27 switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/18 description ACC_7.11.30 switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/19 description KG_LAN-USER switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/20 description ACC_7.11.16 Apple Time_Capsula switchport access vlan 150 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/21 description KG_LAN-USER switchport access vlan 2 switchport mode access switchport voice vlan 350 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/22 description ACC_7.11.14 switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/23 description IMP-LAN switchport access vlan 2 switchport mode access switchport voice vlan 350 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/24 description ACC_KG_7.11.31 switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/25 description KG_LAN-USER switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/26 description KG_LAN-USER switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/27 description 1C switchport access vlan 5 switchport mode access switchport voice vlan 350 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/28 description ACC_7.11.26 switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/29 description 1C switchport access vlan 5 switchport mode access switchport voice vlan 350 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/30 description [WIFI] AP-7-701-Priemnaya switchport access vlan 12 switchport trunk allowed vlan 12,150 switchport trunk native vlan 12 switchport mode trunk power inline port 2x-mode no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/31 description 1C switchport access vlan 5 switchport mode access switchport voice vlan 350 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/32 description KG_LAN-USER switchport access vlan 2 switchport mode access switchport voice vlan 350 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/33 description ACC_7.11.34 switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/34 description KG_LAN-USER switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/35 description 1C switchport access vlan 5 switchport mode access switchport voice vlan 350 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/36 description KG_LAN-USER switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/37 description 1C switchport access vlan 5 switchport mode access switchport voice vlan 350 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/38 description KG_LAN-USER switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/39 description 1C switchport access vlan 2 switchport mode access switchport voice vlan 350 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/40 description KG_LAN-USER switchport access vlan 2 switchport mode access switchport voice vlan 350 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/41 description 1C switchport access vlan 5 switchport mode access switchport voice vlan 350 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/42 description KG_LAN-USER switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/43 description NONE switchport access vlan 303 switchport trunk allowed vlan 150,303 switchport trunk native vlan 303 switchport mode trunk no cdp enable no snmp trap link-status ! interface FastEthernet0/44 description KG_LAN-USER switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/45 description KG_LAN-USER switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/46 description KG_LAN-USER switchport access vlan 2 switchport mode access switchport voice vlan 350 no cdp enable no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast edge ! interface FastEthernet0/47 description ACC_7.11.29 switchport access vlan 2 switchport mode access switchport voice vlan 351 no cdp enable no snmp trap link-status no lldp transmit no lldp receive spanning-tree portfast edge ! interface FastEthernet0/48 description [WIFI] AP-7-710-OUS switchport trunk allowed vlan 6,12,150,301,500 switchport trunk native vlan 12 switchport mode trunk power inline port 2x-mode no cdp enable no snmp trap link-status no lldp transmit no lldp receive spanning-tree portfast edge ! interface GigabitEthernet0/1 description [CORE] Po1 SW-1-1 switchport mode trunk logging event trunk-status logging event spanning-tree channel-group 1 mode on ip dhcp snooping trust ! interface GigabitEthernet0/2 description PORT-CHANNEL switchport mode trunk logging event trunk-status logging event spanning-tree channel-group 1 mode on ip dhcp snooping trust ! interface GigabitEthernet0/3 description [ACC] 7.11.35 Obukhov switchport access vlan 2 switchport mode access switchport voice vlan 351 logging event trunk-status logging event spanning-tree storm-control broadcast level 30.00 spanning-tree portfast edge ! interface GigabitEthernet0/4 description ACC_7.11.22 switchport access vlan 2 switchport mode access switchport voice vlan 351 logging event trunk-status logging event spanning-tree spanning-tree portfast edge ip dhcp snooping trust ! interface Vlan1 no ip address shutdown ! interface Vlan100 ip address 10.1.1.71 255.255.255.0 no ip redirects no ip unreachables no ip proxy-arp ! ip default-gateway 10.1.1.1 no ip http server no ip http secure-server ip tftp source-interface Vlan100 ip ssh authentication-retries 2 ip ssh version 2 ! kron occurrence EveryDay at 1:00 recurring policy-list SaveBackup ! kron policy-list SaveBackup cli write memory ! logging trap debugging logging origin-id hostname logging facility local6 logging source-interface Vlan100 logging host 192.168.2.25 logging host 10.4.244.4 transport udp port 515 access-list 23 permit any access-list 23 deny any log snmp-server community lmTUEsk6Yvlv RO snmp-server host 10.1.122.227 lmTUEsk6Yvlv snmp mib flash cache ! radius server IZH-RDS002 address ipv4 10.4.0.248 auth-port 1645 acct-port 1646 timeout 3 retransmit 2 key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405 ! radius server P11-RDS003 address ipv4 10.1.122.248 auth-port 1645 acct-port 1646 timeout 3 retransmit 2 key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405 ! ! privilege exec all level 7 show cdp privilege exec all level 7 show running-config privilege exec all level 7 show configuration privilege exec level 7 show banner login ^CC ***************************************************************************** * * * OOO "KOMOS GROUP" * * Pesochnaya 11 * * 7st FLOOR * * IzhMashProekt * * * * UNAUTHORIZED ACCESS IS PROHIBITED * * * * You have accessed network equipment. * * You must have authorized permission to access or configure this device. * * All activities performed on this device are logged and monitored. * * * *****************************************************************************^C ! line con 0 logging synchronous login authentication CONSOLE line vty 0 4 access-class 23 in logging synchronous login authentication NPS length 0 transport input ssh line vty 5 15 access-class 23 in logging synchronous login authentication NPS transport input ssh ! ntp source Vlan100 ntp server 10.1.1.2 end