ansible/backup/files/cisco/IZH-TK-M44-SW-2a-1.txt

Building configuration...

Current configuration : 9314 bytes
!
! Last configuration change at 11:08:31 MSK Wed Jul 20 2022 by akhmetzyanovrr_adm
! NVRAM config last updated at 01:00:02 MSK Thu Jul 28 2022
!
version 15.2
service nagle
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone year
service timestamps log datetime msec localtime show-timezone year
service password-encryption
service sequence-numbers
!
hostname IZH-TK-M44-SW-2a-1
!
boot-start-marker
boot-end-marker
!
!
logging buffered 51200 warnings
logging rate-limit 10000
enable secret 5 $1$j4UP$Wgs2xMeWlYNzcOvcwfmE90
!
username malkov privilege 15 secret 5 $1$HAM1$2OCRMd2KifAhgpLjab.xb.
username damir privilege 15 secret 5 $1$KpNF$3Y/IQAMrLTgguc/lKd40L0
username ryabov privilege 15 secret 5 $1$CSVH$MvYXDiKxTKEGZez5Ww9zJ0
username admin_avv privilege 15 secret 5 $1$HNnO$lSCjj0mk4j94o9FE34wk21
aaa new-model
!
!
aaa group server radius NPS
 server name IZH-RDS002
 server name P11-RDS003
 load-balance method least-outstanding
!
aaa authentication login default group NPS local enable
aaa authentication login CONSOLE local group NPS
aaa authorization exec default group NPS local if-authenticated 
!
!
!
!
!
!
aaa session-id common
clock timezone MSK 4 0
system mtu routing 1500
no ip source-route
no ip gratuitous-arps
!
!
ip dhcp snooping vlan 2,150,300,350,500
ip dhcp snooping
!
ip domain-list komos.local
no ip domain-lookup
ip domain-name komos.ru
ip host VM-KG-NET 10.1.12.70
ip host tftp 10.4.0.214
login on-failure log
login on-success log
vtp mode transparent
!
!
!
!
!
!
!
crypto pki trustpoint TP-self-signed-3168791936
 enrollment selfsigned
 subject-name cn=IOS-Self-Signed-Certificate-3168791936
 revocation-check none
 rsakeypair TP-self-signed-3168791936
!
!
crypto pki certificate chain TP-self-signed-3168791936
 certificate self-signed 01
  30820246 308201AF A0030201 02020101 300D0609 2A864886 F70D0101 04050030 
  31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274 
  69666963 6174652D 33313638 37393139 3336301E 170D3933 30333031 30303031 
  35375A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649 
  4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 31363837 
  39313933 3630819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281 
  8100C25F 49789F00 0BBF39BB 4B134874 F86837E0 17E0045A 8CEBFEB4 EC962889 
  945412E4 3A9C66F3 DCCD80DD 4007ABBE 2FAEA2F2 3E1F5D18 AB442107 BF2B769C 
  86253AE2 DFEEE1FB D7EEA485 BD5D1E20 815B40F4 3278E2DD F416BF5B 8C6D5CAA 
  402066B4 E45C334D 259E656B AB1CAED1 0A0E9CAA 160EFFFD ED98CC15 54AABAC9 
  B44B0203 010001A3 6E306C30 0F060355 1D130101 FF040530 030101FF 30190603 
  551D1104 12301082 0E537732 2D352E6B 6F6D6F73 2E727530 1F060355 1D230418 
  30168014 98184249 1394F565 954DD199 9C134933 65342B7D 301D0603 551D0E04 
  16041498 18424913 94F56595 4DD1999C 13493365 342B7D30 0D06092A 864886F7 
  0D010104 05000381 8100A8B1 BD45D5D6 5EE126BB E092A249 BAC23EAE 81E9B6AF 
  3CDB3E80 DFCAE01D 8BC1DCA4 3FB7DA7F EF78FCD6 3CE638A2 CEF44F0A 24D56C97 
  77D60FDC 350312DC DE15BAEB B04DD6CB 339812D4 724BB28E CF22EFB9 7C969517 
  99D48F07 92BDD5F7 E23DC46A 82347829 3406E9CF 762C2CC6 9840546B 4E87FFE3 
  16C77FEF 24CC778A 8E13
  	quit
archive
 log config
  logging enable
  logging size 900
  notify syslog contenttype plaintext
  hidekeys
 path tftp://tftp/IZH/TK/M44-SW_L2/$H.$T.conf
 write-memory
 time-period 10080
!
spanning-tree mode rapid-pvst
spanning-tree loopguard default
no spanning-tree optimize bpdu transmission
spanning-tree extend system-id
errdisable recovery cause bpduguard
errdisable recovery cause security-violation
errdisable recovery cause channel-misconfig
errdisable recovery cause dtp-flap
errdisable recovery cause link-flap
errdisable recovery cause psecure-violation
errdisable recovery cause port-mode-failure
errdisable recovery cause loopback
errdisable recovery interval 600
!
!
!
!
vlan internal allocation policy ascending
!
vlan 2
 name TK-LAN-USERS-AREA
!
vlan 10
 name WIRELESS_AREA
!
vlan 25
 name VOICE_AREA
!
vlan 150
 name TK-WIFI-USERS-AREA
!
vlan 300
 name NETWORK_MANAGEMENT
!
vlan 350
 name TK-VOICE-AREA
!
vlan 500
 name TK-WIFI-GUEST-AREA
!
ip tcp selective-ack
ip tcp path-mtu-discovery
lldp run
!
! 
!
!
!
!
!
!
!
!
interface Loopback7777
 description PRCH0207205
 no ip address
 shutdown
!
interface FastEthernet0/1
 description ACCESS
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface FastEthernet0/2
 description ACCESS
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface FastEthernet0/3
 description ACCESS
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface FastEthernet0/4
 description ACCESS
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface FastEthernet0/5
 description ACCESS
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface FastEthernet0/6
 description ACCESS
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface FastEthernet0/7
 description ACCESS
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface FastEthernet0/8
 description ACCESS
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet0/1
 description ACCESS
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 350
 no logging event link-status
 no snmp trap link-status
 storm-control broadcast level 30.00
 no cdp enable
 spanning-tree portfast
!
interface GigabitEthernet0/2
 description [KU] M44-SW-2-1
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 ip dhcp snooping trust
!
interface Vlan1
 no ip address
 shutdown
!
interface Vlan300
 ip address 10.0.5.242 255.255.255.0
 no ip route-cache
!
ip default-gateway 10.0.5.254
no ip http server
no ip http secure-server
!
ip tftp source-interface Vlan300
ip ssh authentication-retries 2
ip ssh version 2
!
kron occurrence EveryDay at 1:00 recurring
 policy-list SaveBackup
!
kron policy-list SaveBackup
 cli write memory
!
logging trap debugging
logging facility local1
logging host 192.168.2.25
access-list 23 permit any
access-list 23 deny   any log
snmp-server community lmTUEsk6Yvlv RO
snmp-server host 10.1.122.227 lmTUEsk6Yvlv 
!
!
radius server IZH-RDS002
 address ipv4 10.4.0.248 auth-port 1645 acct-port 1646
 timeout 3
 retransmit 2
 key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405
!
radius server P11-RDS003
 address ipv4 10.1.122.248 auth-port 1645 acct-port 1646
 timeout 3
 retransmit 2
 key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405
!
banner login ^C
*****************************************************************************
*                                                                           *
*                             KOMOS GROUP LLC                               *
*                        Izhevsk, Mayakovskogo 44                           *
*                          Build 2A, 2st FLOOR                              *
*                                CROSS ROOM                                 *
*                                                                           *
*                    UNAUTHORIZED ACCESS IS PROHIBITED                      *
*                                                                           *
*                     You have accessed network equipment.                  *
*  You must have authorized permission to access or configure this device.  *
*     All activities performed on this device are logged and monitored.     *
*                                                                           *
*****************************************************************************^C
!
line con 0
 logging synchronous
 login authentication CONSOLE
line vty 0 4
 logging synchronous
 login authentication NPS
 length 0
 transport input ssh
line vty 5 15
 logging synchronous
 login authentication NPS
 transport input ssh
!
ntp source Vlan300
ntp server 10.0.5.254
end