Building configuration... Current configuration : 20310 bytes ! ! Last configuration change at 16:46:48 MSK Thu Jul 14 2022 by adm_kapustinal ! NVRAM config last updated at 01:00:02 MSK Thu Jul 28 2022 ! version 15.2 service nagle no service pad service tcp-keepalives-in service tcp-keepalives-out service timestamps debug datetime msec localtime show-timezone year service timestamps log datetime msec localtime show-timezone year service password-encryption service sequence-numbers ! hostname IZH-KG-P11-SW-2-2 ! boot-start-marker boot-end-marker ! logging buffered 512000 informational enable secret 5 $1$52ug$pKfyX5PLhCtlFWQ7FQmLG1 ! username netadmin privilege 15 secret 5 $1$i05v$xFiOTg1D01jLRZp9lt2Ox0 aaa new-model ! ! aaa group server radius NPS server name IZH-RDS002 server name P11-RDS003 load-balance method least-outstanding ! aaa authentication login default group NPS local enable aaa authentication login CONSOLE local group NPS aaa authorization exec default group NPS local if-authenticated ! ! ! ! ! ! aaa session-id common clock timezone MSK 4 0 switch 1 provision ws-c2960s-48ts-l no ip source-route no ip gratuitous-arps ! ! ip dhcp snooping vlan 2,12,150,351,500 ip dhcp snooping no ip domain-lookup ip domain-name komos.ru ip host tftp 10.4.0.214 ip host VM-KG-NET 10.1.12.70 login on-failure log login on-success log vtp mode transparent ! ! ! ! ! ! ! crypto pki trustpoint TP-self-signed-3369415168 enrollment selfsigned subject-name cn=IOS-Self-Signed-Certificate-3369415168 revocation-check none rsakeypair TP-self-signed-3369415168 ! ! crypto pki certificate chain TP-self-signed-3369415168 certificate self-signed 01 30820246 308201AF A0030201 02020101 300D0609 2A864886 F70D0101 04050030 31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274 69666963 6174652D 33333639 34313531 3638301E 170D3933 30333031 30303033 30365A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649 4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 33363934 31353136 3830819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281 8100E37F C1B7FB34 F5515F2B 32D17A41 4FFD45D5 85BB4E8D EF2DA375 8D748C3C 631AFE1D CBA49CB3 BC81C163 CB47EEDB A69FCC20 D0AED89C AE8A4E9A C578D9B9 C37446D4 A52F2D53 EA1564B2 7DCD8BDA 08937DA7 85189926 CF0195B7 BDE263D9 B0CDE73C 5D0B80FD 114803AE C26CCB76 0CB593B0 F99A00E2 E01342B7 EE39248D 81950203 010001A3 6E306C30 0F060355 1D130101 FF040530 030101FF 30190603 551D1104 12301082 0E537732 2D322E6B 6F6D6F73 2E727530 1F060355 1D230418 30168014 E8A46C38 DC8D94D4 04466345 EEB0ECB4 FD4868D8 301D0603 551D0E04 160414E8 A46C38DC 8D94D404 466345EE B0ECB4FD 4868D830 0D06092A 864886F7 0D010104 05000381 810043BE C233AB88 4D471DAF 012394F3 7D5DFB7E 1C6C7C1A 755EDFBA D525CBB9 472A8B95 D515B697 257F2A99 06AB7E37 FC043E48 E62D2B63 9EBD457B 41DDBA87 EF3B0F99 739CAD85 18522818 B198D8A6 FFBE14C2 7E98210F 1BDE3661 598BFBAA 40B03D41 2DFB07B2 6BC35DAF A57CE666 D6C4FA27 7DD65D3C F04654F4 F4962EEC 82EA quit archive log config logging enable logging size 900 notify syslog contenttype plaintext hidekeys path tftp://tftp/IZH/KG/P11-SW_L2/$H.$T.conf write-memory time-period 10080 ! spanning-tree mode rapid-pvst no spanning-tree optimize bpdu transmission spanning-tree extend system-id errdisable recovery cause bpduguard errdisable recovery cause channel-misconfig errdisable recovery cause dtp-flap errdisable recovery cause link-flap errdisable recovery cause psecure-violation errdisable recovery cause port-mode-failure errdisable recovery cause loopback errdisable recovery interval 600 ! ! ! ! vlan internal allocation policy ascending ! vlan 2 name KG_LAN-USER ! vlan 3 name KG_LAN-RESTRICTED ! vlan 12 name UNIFI_WIRELESS ! vlan 100 name Inbound_management ! vlan 149 name -KG-MGMT-INT-10.1.254.0/24- ! vlan 150 name KG_WIFI-USER ! vlan 300 name KG_MGMT-NET ! vlan 301 name KG_MGMT-WIFI ! vlan 351 name KG_VOIP ! vlan 400 name -Video_UZB- ! vlan 500 name KG_WIFI-GUEST ! lldp run ! ! ! ! ! ! ! ! ! ! interface Loopback7777 description TK5735m no ip address shutdown ! interface Port-channel1 description [CORE] SW-1-1 switchport mode trunk ip dhcp snooping trust ! interface FastEthernet0 no ip address shutdown ! interface GigabitEthernet1/0/1 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/2 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/3 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/4 description [ACC] 213-1-1 switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/5 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/6 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/7 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/8 description [ACC] 207-6-2 switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/9 description [ACC] 21-102K switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/10 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/11 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/12 description NONE switchport access vlan 3 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/13 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/14 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/15 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/16 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/17 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/18 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/19 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/20 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/21 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/22 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/23 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/24 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/25 description [ACC] Bufet_Hall7 switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/26 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/27 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/28 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/29 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/30 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/31 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/32 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/33 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/34 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/35 description NONE switchport access vlan 3 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/36 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/37 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/38 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/39 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/40 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/41 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/42 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/43 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/44 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/45 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 storm-control multicast level 10.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/46 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/47 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/48 description NONE switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/49 description PORT-CHANNEL switchport mode trunk logging event trunk-status channel-group 1 mode on ip dhcp snooping trust ! interface GigabitEthernet1/0/50 description [CORE] Po1 SW-1-1 switchport mode trunk logging event trunk-status channel-group 1 mode on ip dhcp snooping trust ! interface GigabitEthernet1/0/51 description PORT-CHANNEL switchport mode trunk logging event trunk-status channel-group 1 mode on ip dhcp snooping trust ! interface GigabitEthernet1/0/52 description PORT-CHANNEL switchport trunk native vlan 400 switchport mode trunk logging event trunk-status ! interface Vlan1 no ip address shutdown ! interface Vlan100 ip address 10.1.1.22 255.255.255.0 no ip redirects no ip unreachables no ip proxy-arp ! ip default-gateway 10.1.1.1 no ip http server no ip http secure-server ! ip tftp source-interface Vlan100 ip ssh authentication-retries 2 ip ssh version 2 ! kron occurrence EveryDay at 1:00 recurring policy-list SaveBackup ! kron policy-list SaveBackup cli write memory ! logging origin-id hostname logging facility local6 logging source-interface Vlan100 logging host 10.4.244.4 transport udp port 515 access-list 23 permit any access-list 23 deny any log ! snmp-server community private RW snmp-server community lmTUEsk6Yvlv RO snmp-server host 10.1.122.227 lmTUEsk6Yvlv ! ! radius server IZH-RDS002 address ipv4 10.4.0.248 auth-port 1645 acct-port 1646 timeout 3 retransmit 2 key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405 ! radius server P11-RDS003 address ipv4 10.1.122.248 auth-port 1645 acct-port 1646 timeout 3 retransmit 2 key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405 ! privilege exec all level 7 show cdp privilege exec all level 7 show running-config privilege exec all level 7 show configuration privilege exec level 7 show banner login ^CC ***************************************************************************** * * * OOO "KOMOS GROUP" * * Pesochnaya 11 * * 2st FLOOR * * Servernaya * * * * UNAUTHORIZED ACCESS IS PROHIBITED * * * * You have accessed network equipment. * * You must have authorized permission to access or configure this device. * * All activities performed on this device are logged and monitored. * * * *****************************************************************************^C ! line con 0 logging synchronous login authentication CONSOLE line vty 0 4 access-class 23 in exec-timeout 120 0 logging synchronous login authentication NPS length 0 transport input ssh line vty 5 15 access-class 23 in exec-timeout 120 0 logging synchronous login authentication NPS transport input ssh ! ntp source Vlan100 ntp server 10.1.1.2 end