Building configuration... Current configuration : 20558 bytes ! ! Last configuration change at 04:00:48 MSK Mon Jan 2 2006 ! NVRAM config last updated at 01:00:05 MSK Thu Jul 28 2022 ! version 15.2 service nagle no service pad service tcp-keepalives-in service tcp-keepalives-out service timestamps debug datetime msec localtime show-timezone year service timestamps log datetime msec localtime show-timezone year service password-encryption service sequence-numbers ! hostname IZH-KG-P11-SW-1a-1 ! boot-start-marker boot-end-marker ! logging buffered 512000 informational enable secret 5 $1$knIF$e07Kp1TsrEPcTdMIC7DT00 ! username netadmin privilege 15 secret 5 $1$LUhW$O0zGHMm5tFguDFFxB3k5O1 aaa new-model ! ! aaa group server radius NPS server name IZH-RDS002 server name P11-RDS003 load-balance method least-outstanding ! aaa authentication login default group NPS local enable aaa authentication login CONSOLE local group NPS aaa authorization exec default group NPS local if-authenticated ! ! ! ! ! ! aaa session-id common clock timezone MSK 4 0 switch 1 provision ws-c2960s-48ts-l no ip source-route no ip gratuitous-arps ! ! ip dhcp snooping vlan 2,5,12,150,350-351,500 ip dhcp snooping no ip domain-lookup ip domain-name komos.ru ip host VM-KG-NET 10.1.12.70 ip host tftp 10.4.0.214 login on-failure log login on-success log vtp mode transparent ! ! ! ! ! ! ! crypto pki trustpoint TP-self-signed-3367599104 enrollment selfsigned subject-name cn=IOS-Self-Signed-Certificate-3367599104 revocation-check none rsakeypair TP-self-signed-3367599104 ! ! crypto pki certificate chain TP-self-signed-3367599104 certificate self-signed 01 3082024D 308201B6 A0030201 02020101 300D0609 2A864886 F70D0101 04050030 31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274 69666963 6174652D 33333637 35393931 3034301E 170D3138 31313232 31363033 30355A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649 4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 33363735 39393130 3430819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281 8100BA25 B463A5DC C5326F01 16908EA7 12E2DA8A 4820C25B 1DE3BD96 68EAC60A FBB1F2C7 ECAEB15F 9938849E 97ACC22E A8501E34 6E50DF72 1E543163 4B961FF4 6835187A D2E74BB7 23277401 E5E14B4B D20DF522 CE0EB645 C6CABFAF 13B5DE2A 1BFD4DEA 3E9407AC D22DD990 643BFFBC 5A435938 ED932EE0 8BE93F9C 22B0FAF1 69A70203 010001A3 75307330 0F060355 1D130101 FF040530 030101FF 30200603 551D1104 19301782 15495A48 2D4B472D 5357312D 322E6B6F 6D6F732E 7275301F 0603551D 23041830 16801452 B3135972 4780005A 602D8BFB 44DB6AE6 3B48B830 1D060355 1D0E0416 041452B3 13597247 80005A60 2D8BFB44 DB6AE63B 48B8300D 06092A86 4886F70D 01010405 00038181 00570C9E D25DED8E 602BE05B 68C59FF8 0895AA93 0BC55596 077FE522 74108ADB 2D219A3C 20F89C91 CBA390BA A77EB675 C22219D5 04B3DF21 2D880972 BFC7EB32 FD91BEFC 2EF5F1E4 EA368A64 4CCBADF1 E2E6B509 D1906B5C 5D207FB1 B42DFD89 1285D76F 3FF7DEF5 863A3297 D35C9143 3104F0EC 5AD32014 E52F7BE7 B5D0663B 59 quit archive log config logging enable logging size 900 notify syslog contenttype plaintext hidekeys path tftp://tftp/IZH/KG/P11-SW_L2/$H.$T.conf write-memory time-period 10080 ! spanning-tree mode rapid-pvst no spanning-tree optimize bpdu transmission spanning-tree extend system-id errdisable recovery cause bpduguard errdisable recovery cause channel-misconfig errdisable recovery cause dtp-flap errdisable recovery cause link-flap errdisable recovery cause psecure-violation errdisable recovery cause port-mode-failure errdisable recovery cause loopback errdisable recovery interval 600 ! ! ! ! vlan internal allocation policy ascending ! vlan 2 name KG_LAN-USER ! vlan 5 name KG_LAN-ADMIN ! vlan 12 name UNIFI_NETWORK ! vlan 100 name MANAGEMENT ! vlan 150 name KG_WIFI-USER ! vlan 300 name KG_MGMT-NET ! vlan 301 name KG_MGMT-WIFI ! vlan 307 name SKUD ! vlan 350 name KG-VoIP_AREA ! vlan 351 name KG_VOIP ! vlan 500 name KG_WIFI-GUEST ! lldp run ! ! ! ! ! ! ! ! ! ! interface Loopback7777 description TK5737m no ip address shutdown ! interface Port-channel1 description [CORE] SW-1-1 switchport mode trunk ip dhcp snooping trust ! interface FastEthernet0 no ip address shutdown ! interface GigabitEthernet1/0/1 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/2 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/3 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/4 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/5 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/6 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/7 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/8 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/9 description [ACC] Suvorov_Alex switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/10 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/11 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/12 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/13 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/14 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/15 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/16 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/17 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/18 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/19 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/20 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/21 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/22 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/23 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/24 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/25 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/26 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/27 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/28 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/29 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/30 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/31 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/32 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/33 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/34 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/35 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/36 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/37 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/38 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/39 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/40 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/41 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/42 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/43 description ACCESS switchport access vlan 2 switchport mode access switchport voice vlan 351 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable spanning-tree portfast ! interface GigabitEthernet1/0/44 description NONE switchport access vlan 5 switchport mode access no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable ! interface GigabitEthernet1/0/45 description [WIFI] AP-1-Hall-TV switchport trunk native vlan 12 switchport trunk allowed vlan 9,10,12,150,301,500 switchport mode trunk no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable no lldp transmit no lldp receive spanning-tree portfast ! interface GigabitEthernet1/0/46 description ADMIN switchport access vlan 6 switchport mode access switchport voice vlan 350 no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 spanning-tree portfast ! interface GigabitEthernet1/0/47 description [WIFI] AP-1-113-SIZ-Chechin switchport trunk native vlan 12 switchport trunk allowed vlan 9,10,12,150,301,500 switchport mode trunk no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable no lldp transmit no lldp receive spanning-tree portfast ! interface GigabitEthernet1/0/48 description [WIFI] AP-1-122-IT switchport trunk native vlan 12 switchport trunk allowed vlan 5,12,150,301,500 switchport mode trunk no logging event link-status no snmp trap link-status storm-control broadcast level 30.00 no cdp enable no lldp transmit no lldp receive spanning-tree portfast ! interface GigabitEthernet1/0/49 description [CORE] Po1 SW-1-1 switchport mode trunk logging event trunk-status channel-group 1 mode on ip dhcp snooping trust ! interface GigabitEthernet1/0/50 description PORT-CHANNEL switchport mode trunk logging event trunk-status channel-group 1 mode on ip dhcp snooping trust ! interface GigabitEthernet1/0/51 description PORT-CHANNEL switchport mode trunk logging event trunk-status channel-group 1 mode on ip dhcp snooping trust ! interface GigabitEthernet1/0/52 description PORT-CHANNEL switchport mode trunk logging event trunk-status channel-group 1 mode on ip dhcp snooping trust ! interface Vlan1 no ip address shutdown ! interface Vlan100 ip address 10.1.1.12 255.255.255.0 no ip redirects no ip unreachables no ip proxy-arp ! ip default-gateway 10.1.1.1 no ip http server ip http secure-server ! ip tftp source-interface Vlan100 ip ssh authentication-retries 2 ! kron occurrence EveryDay at 1:00 recurring policy-list SaveBackup ! kron policy-list SaveBackup cli write memory ! logging origin-id hostname logging facility local6 logging source-interface Vlan100 logging host 192.168.2.25 logging host 10.4.244.4 transport udp port 515 access-list 23 permit any access-list 23 deny any log ! snmp-server community private RW snmp-server community lmTUEsk6Yvlv RO snmp-server host 10.1.122.227 lmTUEsk6Yvlv tacacs-server host 192.168.2.2 tacacs-server directed-request tacacs-server key 7 1066080B17180518 ! ! radius server IZH-RDS002 address ipv4 10.4.0.248 auth-port 1645 acct-port 1646 timeout 3 retransmit 2 key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405 ! radius server P11-RDS003 address ipv4 10.1.122.248 auth-port 1645 acct-port 1646 timeout 3 retransmit 2 key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405 ! privilege exec all level 7 show cdp privilege exec all level 7 show running-config privilege exec all level 7 show configuration privilege exec level 7 show banner login ^CC ***************************************************************************** * * * OOO "KOMOS GROUP" * * Pesochnaya 11 * * 2st FLOOR * * Servernaya * * * * UNAUTHORIZED ACCESS IS PROHIBITED * * * * You have accessed network equipment. * * You must have authorized permission to access or configure this device. * * All activities performed on this device are logged and monitored. * * * *****************************************************************************^C ! line con 0 logging synchronous login authentication CONSOLE line vty 0 4 access-class 23 in logging synchronous login authentication NPS length 0 transport input ssh line vty 5 15 access-class 23 in logging synchronous login authentication NPS transport input ssh ! ntp source Vlan100 ntp server 10.1.1.2 end