pycm1k/ansible
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
ansible/backup/files/cisco/IZH-KG-P11-SW-9-3.txt
Ахметзянов Рустам Рамилевич af70a6a354 first commit
2025-10-31 08:47:26 +04:00

549 lines
15 KiB
Plaintext
Raw Blame History

Building configuration...
Current configuration : 15039 bytes
!
! Last configuration change at 15:11:54 SAMT Wed Mar 30 2022 by akhmetzyanovrr_adm
! NVRAM config last updated at 01:00:02 SAMT Thu Jul 28 2022
!
version 15.0
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone year
service timestamps log datetime msec localtime show-timezone year
no service password-encryption
service unsupported-transceiver
!
hostname IZH-KG-P11-SW-9-3
!
boot-start-marker
boot-end-marker
!
logging userinfo
logging buffered 64000
no logging console
enable secret 5 $1$knIF$e07Kp1TsrEPcTdMIC7DT00
!
username netadmin privilege 15 secret 5 $1$m9cp$mviXcdbBjZEOyvyyvKGdG.
aaa new-model
!
!
aaa group server radius NPS
server name IZH-RDS002
server name P11-RDS003
load-balance method least-outstanding
!
aaa authentication login default group NPS local enable
aaa authentication login CONSOLE local group NPS
aaa authorization exec default group NPS local if-authenticated
!
!
!
!
!
!
aaa session-id common
clock timezone SAMT 4 0
switch 1 provision ws-c2960x-24ps-l
!
!
ip dhcp snooping vlan 2-4094
ip dhcp snooping
no ip domain-lookup
ip domain-name komos.ru
ip host tftp 10.4.0.214
login on-failure
login on-success
vtp mode transparent
!
!
crypto pki trustpoint TP-self-signed-4261058560
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-4261058560
revocation-check none
rsakeypair TP-self-signed-4261058560
!
!
crypto pki certificate chain TP-self-signed-4261058560
certificate self-signed 01
30820246 308201AF A0030201 02020101 300D0609 2A864886 F70D0101 04050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 34323631 30353835 3630301E 170D3933 30333031 30303137
31395A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D34 32363130
35383536 3030819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100F64A AF54F4EB 5CE90EEB 411A97BB D524D2BC 9BF01DE5 231E62B6 7FFF1E65
32537DEB D3663669 80A57978 F66071D9 06365827 25F8A470 935154AF 168C6768
568EA8E5 86F82717 5EC1C051 13732ABA A8F1B544 0DE83337 6EF72A37 FFAA7E03
B5E1E902 19CCECAE A50E7F79 91C56D65 4510D2F3 EDC71CD2 384EBD99 856713C3
7BE70203 010001A3 6E306C30 0F060355 1D130101 FF040530 030101FF 30190603
551D1104 12301082 0E537739 2D312E6B 6F6D6F73 2E727530 1F060355 1D230418
30168014 A419A29C 737AB996 9348E4EF 5CAD61D5 149F16C2 301D0603 551D0E04
160414A4 19A29C73 7AB99693 48E4EF5C AD61D514 9F16C230 0D06092A 864886F7
0D010104 05000381 81006B9D AF0BC8EB AA50789D 06CD81E2 1013E603 BCAD0541
6F9DA376 755C4FEE 25B6B9FF BB20D687 1D34EEE6 63C462D2 AF162CEA D1A64A35
6BDC83A1 0FCA3BFD 48DC2D56 79A7D909 17325A42 86A3F6BE 75D2F480 51FC42CF
354F3DDD BF717590 98687E0D 3522AF36 CEEED02E 2345772B ABB494DB B8953CCE
5D39044F 932D1B1C FC45
quit
archive
log config
logging enable
logging size 900
notify syslog contenttype plaintext
hidekeys
path tftp://tftp/IZH/KG/P11-SW_L2/$H.$T.conf
write-memory
time-period 10080
!
spanning-tree mode rapid-pvst
spanning-tree logging
spanning-tree extend system-id
!
!
!
!
!
no errdisable detect cause gbic-invalid
errdisable recovery cause udld
errdisable recovery cause bpduguard
errdisable recovery cause security-violation
errdisable recovery cause channel-misconfig (STP)
errdisable recovery cause pagp-flap
errdisable recovery cause dtp-flap
errdisable recovery cause link-flap
errdisable recovery cause sfp-config-mismatch
errdisable recovery cause gbic-invalid
errdisable recovery cause psecure-violation
errdisable recovery cause port-mode-failure
errdisable recovery cause dhcp-rate-limit
errdisable recovery cause pppoe-ia-rate-limit
errdisable recovery cause mac-limit
errdisable recovery cause vmps
errdisable recovery cause storm-control
errdisable recovery cause inline-power
errdisable recovery cause arp-inspection
errdisable recovery cause loopback
errdisable recovery cause small-frame
errdisable recovery cause psp
errdisable recovery interval 600
!
vlan internal allocation policy ascending
!
vlan 2
name KG_LAN-USER
!
vlan 5
name KG_LAN-ADMIN
!
vlan 12
name UNIFI_NETWORK
!
vlan 99
name Users_KU9
!
vlan 100
name MANAGEMENT
!
vlan 150
name KG_WIFI-USER
!
vlan 300
name KG_MGMT-NET
!
vlan 301
name KG_MGMT-WIFI
!
vlan 304
name WIFI_ARUBA_MGM
!
vlan 307
name SKUD
!
vlan 310
name USP_MGM
!
vlan 351
name KG_VOIP
!
vlan 500
name KG_WIFI-GUEST
!
lldp run
!
!
!
!
!
interface Loopback7777
description TK7128m
no ip address
shutdown
!
interface Port-channel1
description [KU] SW-9-3
switchport mode trunk
ip dhcp snooping trust
!
interface FastEthernet0
no ip address
shutdown
!
interface GigabitEthernet1/0/1
description [WIFI] AP-8-SLK
switchport trunk native vlan 12
switchport trunk allowed vlan 12,150,500
switchport mode trunk
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level 30.00
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/2
description [ACC]
switchport access vlan 2
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level 30.00
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/3
description [ACC]
switchport access vlan 2
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level 30.00
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/4
description [ACC]
switchport access vlan 2
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level 30.00
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/5
description [ACC]
switchport access vlan 2
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level 30.00
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/6
description [ACC]
switchport access vlan 2
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level 30.00
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/7
description [ACC]
switchport access vlan 2
switchport trunk native vlan 12
switchport trunk allowed vlan 12,150,500
switchport mode trunk
no snmp trap link-status
storm-control broadcast level 30.00
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/8
description [ACC]
switchport access vlan 2
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level pps 100
storm-control multicast level pps 100
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/9
description [ACC]
switchport access vlan 2
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level pps 100
storm-control multicast level pps 100
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/10
description [ACC]
switchport access vlan 2
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level pps 100
storm-control multicast level pps 100
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/11
description [ACC]
switchport access vlan 2
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level pps 100
storm-control multicast level pps 100
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/12
description [ACC]
switchport access vlan 2
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level pps 100
storm-control multicast level pps 100
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/13
description [ACC]
switchport access vlan 2
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level pps 100
storm-control multicast level pps 100
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/14
description [ACC]
switchport access vlan 2
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level pps 100
storm-control multicast level pps 100
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/15
description [ACC]
switchport access vlan 2
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level pps 100
storm-control multicast level pps 100
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/16
description [ACC]
switchport access vlan 2
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level pps 100
storm-control multicast level pps 100
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/17
description [ACC]
switchport access vlan 2
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level pps 100
storm-control multicast level pps 100
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/18
description [ACC]
switchport access vlan 2
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level pps 100
storm-control multicast level pps 100
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/19
description [ACC]
switchport access vlan 2
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level pps 100
storm-control multicast level pps 100
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/20
description [SKD]
switchport access vlan 307
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level pps 100
storm-control multicast level pps 100
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/21
description [SKD]
switchport access vlan 307
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level pps 100
storm-control multicast level pps 100
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/22
description [SKD]
switchport access vlan 307
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level pps 100
storm-control multicast level pps 100
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/23
description [UPS] NetAgent
switchport access vlan 310
switchport mode access
switchport voice vlan 351
no snmp trap link-status
storm-control broadcast level pps 100
storm-control multicast level pps 100
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/24
description [KU] Po2 SW-9-2
switchport mode trunk
no snmp trap link-status
channel-group 1 mode active
ip dhcp snooping trust
!
interface GigabitEthernet1/0/25
!
interface GigabitEthernet1/0/26
!
interface GigabitEthernet1/0/27
!
interface GigabitEthernet1/0/28
!
interface Vlan1
no ip address
shutdown
!
interface Vlan100
ip address 10.1.1.93 255.255.255.0
no ip redirects
no ip unreachables
no ip proxy-arp
!
ip default-gateway 10.1.1.1
no ip http server
no ip http secure-server
!
kron occurrence EveryDay at 1:00 recurring
policy-list SaveBackup
!
kron policy-list SaveBackup
cli write memory
!
logging origin-id hostname
logging facility local6
logging source-interface Vlan100
logging host 192.168.2.25 transport udp port 5544
logging host 10.4.244.4 transport udp port 515
!
snmp-server community lmTUEsk6Yvlv RO
snmp-server host 10.1.122.227 lmTUEsk6Yvl
!
!
radius server IZH-RDS002
address ipv4 10.4.0.248 auth-port 1645 acct-port 1646
timeout 3
retransmit 2
key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405
!
radius server P11-RDS003
address ipv4 10.1.122.248 auth-port 1645 acct-port 1646
timeout 3
retransmit 2
key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405
!
!
privilege exec all level 7 show cdp
privilege exec all level 7 show running-config
privilege exec all level 7 show configuration
privilege exec level 7 show
banner exec ^C
*****************************************************************************
* *
* Welcome to OOO "KOMOS GROUP" *
* Izhevsk, Pesochnaya 11 *
* AVTO BLDG *
* 9nd FLOOR, IT ROOM *
* *
* UNAUTHORIZED ACCESS IS PROHIBITED *
* *
* You have accessed network equipment. *
* You must have authorized permission to access or configure this device. *
* All activities performed on this device are logged and monitored. *
* *
*****************************************************************************
^C
banner login ^C
*****************************************************************************
* *
* UNAUTHORIZED ACCESS IS PROHIBITED *
* *
* You have accessed network equipment. *
* You must have authorized permission to access or configure this device. *
* All activities performed on this device are logged and monitored. *
* *
*****************************************************************************
^C
!
line con 0
logging synchronous
login authentication CONSOLE
line vty 0 4
exec-timeout 120 0
logging synchronous
login authentication NPS
transport input ssh
line vty 5 15
exec-timeout 120 0
logging synchronous
login authentication NPS
transport input ssh
!
ntp source Vlan100
ntp server 10.1.1.2
mac address-table notification change
mac address-table notification mac-move
mac address-table aging-time 900
end
Reference in New Issue View Git Blame Copy Permalink