Building configuration...

Current configuration : 14094 bytes
!
! Last configuration change at 13:56:46 YEKT Thu Jul 28 2022 by konovalov
! NVRAM config last updated at 15:37:54 YEKT Thu Jun 16 2022 by adm_ivanovas
!
version 15.0
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone year
service timestamps log datetime msec localtime show-timezone year
no service password-encryption
service unsupported-transceiver
!
hostname PRM-MLK-PHK-SW-1-4
!
boot-start-marker
boot-end-marker
!
logging userinfo
logging buffered 64000
no logging console
no logging monitor
enable secret 5 $1$ISn2$0ytlcfXUzfcyFrNwPb7hP0
!
username netadmin privilege 15 secret 5 $1$uEa1$S.pmtchbp88nGU3gMtSHD0
aaa new-model
!
!
aaa group server radius NPS
 server name IZH-RDS002
 server name P11-RDS003
 load-balance method least-outstanding
!
aaa authentication login default group NPS local enable
aaa authentication login CONSOLE local group NPS
aaa authorization exec default group NPS local if-authenticated 
!
!
!
!
!
!
aaa session-id common
clock timezone YEKT 5 0
system mtu routing 1500
vtp mode transparent
no ip source-route
!
!
no ip domain-lookup
ip domain-name milkom-komos.ru
ip host VM-KG-NET 10.1.1.250
ip host tftp 10.4.0.214
login on-failure
login on-success
!
!
!
!
!
!
!
!
no errdisable detect cause gbic-invalid
errdisable recovery cause udld
errdisable recovery cause bpduguard
errdisable recovery cause security-violation
errdisable recovery cause channel-misconfig (STP)
errdisable recovery cause pagp-flap
errdisable recovery cause dtp-flap
errdisable recovery cause link-flap
errdisable recovery cause sfp-config-mismatch
errdisable recovery cause gbic-invalid
errdisable recovery cause psecure-violation
errdisable recovery cause port-mode-failure
errdisable recovery cause dhcp-rate-limit
errdisable recovery cause pppoe-ia-rate-limit
errdisable recovery cause mac-limit
errdisable recovery cause vmps
errdisable recovery cause storm-control
errdisable recovery cause inline-power
errdisable recovery cause arp-inspection
errdisable recovery cause loopback
errdisable recovery cause small-frame
errdisable recovery cause psp
errdisable recovery interval 600
archive
 log config
  logging enable
  logging size 900
  notify syslog contenttype plaintext
  hidekeys
 path tftp://tftp/PRM/MLK/PHK-SW_L2/$H-$T
 write-memory
 time-period 10080
!
spanning-tree mode rapid-pvst
spanning-tree loopguard default
no spanning-tree optimize bpdu transmission
spanning-tree extend system-id
!
vlan internal allocation policy ascending
!
vlan 2
 name --USERS_102.0/24--
!
vlan 4
 name Restrictes_users
!
vlan 101
 name --PRINTERS--
!
vlan 150 
!
vlan 200
 name --GUEST_WiFi--
!
vlan 259
 name Sozvezdie_Users
!
vlan 300
 name --MANAGEMENT--
!
vlan 301 
!
vlan 310
 name --UPS_managment--
!
vlan 350
 name --VOICE--
!
vlan 500 
lldp run
!
ip ssh version 2
!
!
!
!
!
interface Loopback7777
 description NEW
 no ip address
 shutdown
!
interface Port-channel1
 description LINK_TO_G
 switchport mode trunk
!
interface Port-channel2
!
interface Port-channel4
 description [CORE] SW-1-1
 switchport mode trunk
!
interface FastEthernet0/1
 description NONE
 switchport mode access
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/2
 description BAD_D-link
 switchport mode access
 no snmp trap link-status
 storm-control broadcast level pps 200
 spanning-tree guard loop
!
interface FastEthernet0/3
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/4
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/5
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/6
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/7
 description NONE
 switchport access vlan 259
 switchport mode access
 switchport voice vlan 350
 shutdown
 no snmp trap link-status
 storm-control broadcast level pps 200
 spanning-tree portfast
!
interface FastEthernet0/8
 description NONE
 switchport access vlan 259
 switchport mode access
 switchport voice vlan 350
 shutdown
 no snmp trap link-status
 storm-control broadcast level pps 200
 spanning-tree portfast
!
interface FastEthernet0/9
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/10
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/11
 description Sozvezdie_User
 switchport access vlan 259
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/12
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/13
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/14
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/15
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/16
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/17
 description [WIFI] phk_priemnaya
 switchport trunk native vlan 301
 switchport trunk allowed vlan 150,301,450,500
 switchport mode trunk
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/18
 description NONE
 switchport mode access
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/19
 description NONE
 switchport mode access
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/20
 description NONE
 switchport trunk allowed vlan 1,200
 switchport mode trunk
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/21
 description NONE
 switchport mode access
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/22
 description [WIFI] phk_2nd_floor
 switchport trunk native vlan 301
 switchport trunk allowed vlan 150,301,450,500
 switchport mode trunk
 no snmp trap link-status
 down-when-looped
 storm-control broadcast level pps 200
!
interface FastEthernet0/23
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/24
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/25
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/26
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/27
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/28
 description [UPS] phk_ups001
 switchport access vlan 310
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/29
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/30
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/31
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/32
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/33
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/34
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/35
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/36
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/37
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/38
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/39
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/40
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/41
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/42
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/43
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/44
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/45
 description NONE
 switchport mode access
 switchport voice vlan 350
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/46
 description NONE
 switchport access vlan 259
 switchport mode access
 shutdown
 no snmp trap link-status
 storm-control broadcast level pps 200
 spanning-tree portfast
!
interface FastEthernet0/47
 description NONE
 switchport mode access
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface FastEthernet0/48
 description NONE
 switchport trunk native vlan 301
 switchport trunk allowed vlan 150,200,301,450,500
 switchport mode trunk
 no snmp trap link-status
 storm-control broadcast level pps 200
!
interface GigabitEthernet0/1
 description [CORE] Po4 SW-1-1
 switchport mode trunk
 channel-protocol lacp
 channel-group 4 mode active
!
interface GigabitEthernet0/2
 description [CORE] Po4 SW-1-1
 switchport mode trunk
 channel-protocol lacp
 channel-group 4 mode active
!
interface GigabitEthernet0/3
 switchport mode trunk
 channel-protocol lacp
!
interface GigabitEthernet0/4
 switchport mode trunk
 channel-protocol lacp
!
interface Vlan1
 no ip address
 shutdown
!
interface Vlan200
 description GuestWiFi
 no ip address
!
interface Vlan300
 description --MANAGEMENT--
 ip address 10.5.126.14 255.255.255.0
 no ip redirects
 no ip unreachables
 no ip proxy-arp
!
ip default-gateway 10.5.126.254
ip http server
no ip http secure-server
logging trap debugging
logging origin-id hostname
logging facility local1
logging source-interface Vlan300
logging host 192.168.8.119 transport udp port 5544
logging host 10.4.244.4 transport udp port 515
access-list 23 permit any
access-list 23 deny   any log
cdp timer 10
cdp holdtime 100
snmp-server community public RO
snmp-server community private RW
snmp-server community lmTUEsk6Yvlv RO
snmp-server host 10.1.1.253 public 
snmp ifmib ifindex persist
!
radius server IZH-RDS002
 address ipv4 10.4.0.248 auth-port 1645 acct-port 1646
 timeout 3
 retransmit 2
 key 1W29n$Wzh&JA^&OoymBQpo!$CALFm$tDMO2uO8XBWEpedsiEQASjhmm6KKF0U6nN
!
radius server P11-RDS003
 address ipv4 10.1.122.248 auth-port 1645 acct-port 1646
 timeout 3
 retransmit 2
 key 1W29n$Wzh&JA^&OoymBQpo!$CALFm$tDMO2uO8XBWEpedsiEQASjhmm6KKF0U6nN
!
!
!
banner exec ^C
	Welcome to $(hostname). You are connected on line $(line) on domain $(domain)
	
^C
banner login ^C
*****************************************************************************
*                                                                           *
*                    UNAUTHORIZED ACCESS IS PROHIBITED                      *
*                                                                           *
*                     You have accessed network equipment.                  *
*  You must have authorized permission to access or configure this device.  *
*     All activities performed baon this device are logged and monitored.     *
*                                                                           *
*****************************************************************************
^C
!
line con 0
 logging synchronous
 login authentication CONSOLE
line vty 0 4
 exec-timeout 60 0
 logging synchronous
 login authentication NPS
 transport input ssh
line vty 5 15
 logging synchronous
 login authentication NPS
 transport input ssh
!
ntp server 192.168.8.200
ntp server 192.168.8.201
ntp server 10.1.4.254
mac address-table notification change
mac address-table notification mac-move
mac address-table aging-time 900
end