Building configuration... Current configuration : 8360 bytes ! ! Last configuration change at 14:15:07 YEKT Wed Jul 13 2022 by konovalov ! NVRAM config last updated at 11:34:34 YEKT Wed Jul 6 2022 by konovalov ! version 15.0 no service pad service timestamps debug datetime msec localtime show-timezone year service timestamps log datetime msec localtime show-timezone year no service password-encryption service unsupported-transceiver ! hostname PRM-MLK-PHK-SW-10-1 ! boot-start-marker boot-end-marker ! logging userinfo logging buffered 64000 enable secret 5 $1$L7fK$k/MCEtLn2e68JjkqKNFz10 ! username root privilege 15 secret 5 $1$1ha7$Z9UqZcU28aVqXjk9iT/OM/ username netadmin privilege 15 secret 5 $1$o0L7$Dhr./8TKR1xqGugyEZTtO0 aaa new-model ! ! aaa group server radius NPS server name IZH-RDS002 server name P11-RDS003 ip radius source-interface Vlan300 load-balance method least-outstanding ! aaa authentication login default group NPS local enable aaa authentication login CONSOLE local group NPS aaa authorization exec default group NPS local if-authenticated ! ! ! ! ! ! aaa session-id common clock timezone YEKT 5 0 system mtu routing 1500 vtp mode transparent no ip source-route ! ! no ip domain-lookup ip domain-name milkom-komos.ru ip host tftp 10.4.0.214 login on-failure login on-success ! ! ! ! ! ! ! ! no errdisable detect cause gbic-invalid errdisable recovery cause udld errdisable recovery cause bpduguard errdisable recovery cause security-violation errdisable recovery cause channel-misconfig (STP) errdisable recovery cause pagp-flap errdisable recovery cause dtp-flap errdisable recovery cause link-flap errdisable recovery cause sfp-config-mismatch errdisable recovery cause gbic-invalid errdisable recovery cause psecure-violation errdisable recovery cause port-mode-failure errdisable recovery cause dhcp-rate-limit errdisable recovery cause pppoe-ia-rate-limit errdisable recovery cause mac-limit errdisable recovery cause vmps errdisable recovery cause storm-control errdisable recovery cause inline-power errdisable recovery cause arp-inspection errdisable recovery cause loopback errdisable recovery cause small-frame errdisable recovery cause psp errdisable recovery interval 600 archive log config logging enable logging size 900 notify syslog contenttype plaintext hidekeys path tftp://tftp/PRM/MLK/PHK-SW_L2/$H-$T write-memory time-period 10080 ! spanning-tree mode pvst spanning-tree loopguard default spanning-tree logging no spanning-tree optimize bpdu transmission spanning-tree extend system-id ! vlan internal allocation policy ascending ! vlan 3 name --USERS-- ! vlan 101 name --PRINTERS-- ! vlan 150 name --Wi-Fi_WORK-- ! vlan 300 name --MANAGEMENT-- ! vlan 301 name --Wi-Fi_MANAGMENT-- ! vlan 350 name --VOICE-- ! vlan 450,500 lldp run ! ip ssh rsa keypair-name SSH_KEYS ip ssh version 2 ! ! ! ! ! interface Loopback7777 description #200900201001 no ip address shutdown ! interface Port-channel1 description [CORE] SW-1-1 switchport mode trunk ! interface FastEthernet0/1 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/2 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/3 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/4 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/5 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/6 description [PRN] KPP switchport access vlan 101 switchport mode access switchport voice vlan 350 speed 100 duplex full no snmp trap link-status spanning-tree portfast spanning-tree bpduguard enable ! interface FastEthernet0/7 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/8 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/9 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/10 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/11 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/12 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/13 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/14 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/15 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/16 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/17 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/18 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/19 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/20 description [ACC] corp_TV switchport access vlan 3 switchport trunk native vlan 301 switchport trunk allowed vlan 150,301,450,500 switchport mode access switchport voice vlan 350 speed 100 duplex full no snmp trap link-status spanning-tree portfast spanning-tree bpduguard enable ! interface FastEthernet0/21 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/22 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/23 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface FastEthernet0/24 description [MGM] switchport access vlan 300 switchport mode access switchport voice vlan 350 no snmp trap link-status ! interface GigabitEthernet0/1 description [CORE] Po1 SW-1-1 switchport mode trunk channel-group 1 mode active ! interface GigabitEthernet0/2 description [CORE] Po1 SW-1-1 switchport mode trunk channel-group 1 mode active ! interface Vlan1 no ip address ! interface Vlan300 description --MANAGMENT-- ip address 10.5.126.101 255.255.255.0 no ip redirects no ip unreachables no ip proxy-arp ! ip default-gateway 10.5.126.254 no ip http server no ip http secure-server logging origin-id hostname logging source-interface Vlan300 logging host 192.168.8.119 transport udp port 5544 logging host 10.4.244.4 transport udp port 515 snmp-server community lmTUEsk6Yvlv RO snmp ifmib ifindex persist ! radius server IZH-RDS002 address ipv4 10.4.0.248 auth-port 1645 acct-port 1646 timeout 3 retransmit 2 key 1W29n$Wzh&JA^&OoymBQpo!$CALFm$tDMO2uO8XBWEpedsiEQASjhmm6KKF0U6nN ! radius server P11-RDS003 address ipv4 10.1.122.248 auth-port 1645 acct-port 1646 timeout 3 retransmit 2 key 1W29n$Wzh&JA^&OoymBQpo!$CALFm$tDMO2uO8XBWEpedsiEQASjhmm6KKF0U6nN ! ! ! banner exec ^C Welcome to $(hostname). You are connected on line $(line) on domain $(domain) ^C banner motd ^CC ***************************************************************************** * * * UNAUTHORIZED ACCESS IS PROHIBITED * * * * You have accessed network equipment. * * You must have authorized permission to access or configure this device. * * All activities performed on this device are logged and monitored. * * * ***************************************************************************** ^C alias router x exit alias subinterface x exit alias interface x exit alias configure x exit alias exec ipconfig show ip interface brief | exclude unassign ! line con 0 logging synchronous login authentication CONSOLE line vty 0 4 exec-timeout 120 0 logging synchronous login authentication NPS transport input ssh line vty 5 15 exec-timeout 120 0 logging synchronous login authentication NPS transport input ssh ! ntp server 192.168.8.200 ntp server 192.168.8.201 mac address-table notification change mac address-table notification mac-move mac address-table aging-time 900 end