Building configuration... Current configuration : 8281 bytes ! ! No configuration change since last restart ! version 15.0 no service pad service timestamps debug datetime msec localtime show-timezone year service timestamps log datetime msec localtime show-timezone year no service password-encryption ! hostname KEZ-MLK-KZS-SW-6-1 ! boot-start-marker boot-end-marker ! logging userinfo enable secret 5 $1$o7CE$LGafNnuxPK7eZZs6.GprG1 ! username netadmin privilege 15 secret 5 $1$dvfw$adMJjhb0cOOB5ze8b3OmR0 aaa new-model ! ! aaa group server radius NPS server name IZH-RDS002 server name P11-RDS003 load-balance method least-outstanding ! aaa authentication login default group NPS local enable aaa authentication login CONSOLE local group NPS aaa authorization exec default group NPS local if-authenticated ! ! ! ! ! ! aaa session-id common clock timezone SAMT 4 0 system mtu routing 1500 vtp mode transparent ! ! ip dhcp snooping vlan 1-4094 ip dhcp snooping no ip domain-lookup ip domain-name milkom-komos.ru ip host tftp 10.4.0.214 login on-failure login on-success ! ! crypto pki trustpoint TP-self-signed-2484009728 enrollment selfsigned subject-name cn=IOS-Self-Signed-Certificate-2484009728 revocation-check none rsakeypair TP-self-signed-2484009728 ! ! crypto pki certificate chain TP-self-signed-2484009728 ! ! ! ! ! errdisable recovery cause udld errdisable recovery cause bpduguard errdisable recovery cause security-violation errdisable recovery cause channel-misconfig (STP) errdisable recovery cause pagp-flap errdisable recovery cause dtp-flap errdisable recovery cause link-flap errdisable recovery cause sfp-config-mismatch errdisable recovery cause gbic-invalid errdisable recovery cause psecure-violation errdisable recovery cause port-mode-failure errdisable recovery cause dhcp-rate-limit errdisable recovery cause pppoe-ia-rate-limit errdisable recovery cause mac-limit errdisable recovery cause vmps errdisable recovery cause storm-control errdisable recovery cause inline-power errdisable recovery cause arp-inspection errdisable recovery cause loopback errdisable recovery cause small-frame errdisable recovery cause psp errdisable recovery interval 600 archive log config logging enable logging size 900 notify syslog contenttype plaintext hidekeys path tftp://tftp/KEZ/MLK/KSZ-SW_L2/$H-$T write-memory time-period 10080 spanning-tree mode pvst spanning-tree extend system-id ! vlan internal allocation policy ascending ! vlan 150 name --Wi-Fi_WORK-- ! vlan 300 name --MANAGEMENT-- ! vlan 301 name --Wi-Fi_MANAGEMENT-- ! vlan 450 name --Wi-Fi_SKLAD-- ! vlan 500 name --Wi-Fi_GUEST-- ! ip ssh version 2 ! ! ! ! ! interface Port-channel1 description [CORE] SW-1-1 switchport mode trunk ip dhcp snooping trust ! interface FastEthernet0/1 description NONE switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/2 description [WIFI] vremenno_KU-6-1 switchport trunk native vlan 301 switchport trunk allowed vlan 150,151,301,500 switchport mode trunk no logging event link-status no snmp trap link-status ! interface FastEthernet0/3 description NONE switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/4 description [ACC] switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/5 description [ACC] switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/6 description NONE switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/7 description [CAM] switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/8 description [CAM] switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/9 description NONE switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/10 description [PRN] switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/11 description [ACC] switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/12 description NONE switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/13 description NONE switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/14 description NONE switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/15 description NONE switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/16 description NONE switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/17 description NONE switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/18 description NONE switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/19 description NONE switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/20 description NONE switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/21 description NONE switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/22 description NONE switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/23 description NONE switchport mode access no logging event link-status no snmp trap link-status ! interface FastEthernet0/24 description --MANAGEMENT-- switchport access vlan 100 switchport mode access no logging event link-status no snmp trap link-status ! interface GigabitEthernet0/1 description [CORE] Po1 SW-1-1 switchport mode trunk channel-group 1 mode active ip dhcp snooping trust ! interface GigabitEthernet0/2 description [CORE] Po1 SW-1-1 switchport mode trunk channel-group 1 mode active ip dhcp snooping trust ! interface Vlan1 no ip address no ip route-cache ! interface Vlan300 description --MANAGEMENT-- ip address 10.5.94.14 255.255.255.0 no ip redirects no ip unreachables no ip proxy-arp ! ip default-gateway 10.5.94.254 ip http server no ip http secure-server logging origin-id hostname logging source-interface Vlan300 logging host 192.168.8.119 transport udp port 5544 logging host 10.4.244.4 transport udp port 515 snmp-server community lmTUEsk6Yvlv RO snmp ifmib ifindex persist ! radius server IZH-RDS002 address ipv4 10.4.0.248 auth-port 1645 acct-port 1646 timeout 3 retransmit 2 key 1W29n$Wzh&JA^&OoymBQpo!$CALFm$tDMO2uO8XBWEpedsiEQASjhmm6KKF0U6nN ! radius server P11-RDS003 address ipv4 10.1.122.248 auth-port 1645 acct-port 1646 timeout 3 retransmit 2 key 1W29n$Wzh&JA^&OoymBQpo!$CALFm$tDMO2uO8XBWEpedsiEQASjhmm6KKF0U6nN ! ! ! banner exec ^C Hello! I'm $(hostname). You are connected on line $(line) on domain $(domain) ^C banner login ^C ***************************************************************************** * * * UNAUTHORIZED ACCESS IS PROHIBITED * * * * You have accessed network equipment. * * You must have authorized permission to access or configure this device. * * All activities performed on this device are logged and monitored. * * * ***************************************************************************** ^C ! line con 0 logging synchronous login authentication CONSOLE line vty 0 4 exec-timeout 120 0 logging synchronous login authentication NPS transport input ssh line vty 5 15 exec-timeout 120 0 logging synchronous login authentication NPS transport input ssh ! ntp server 192.168.8.200 ntp server 192.168.8.201 ntp server 192.168.2.100 mac address-table notification change mac address-table notification mac-move mac address-table aging-time 900 end