ansible/backup/files/cisco/IZH-KG-P11-SW-4-1.txt

Building configuration...

Current configuration : 18607 bytes
!
! Last configuration change at 15:29:23 MSK Tue Jun 14 2022 by akhmetzyanovrr_adm
! NVRAM config last updated at 01:00:00 MSK Thu Jul 28 2022
!
version 15.2
no service pad
service timestamps debug datetime msec localtime show-timezone year
service timestamps log datetime msec localtime show-timezone year
no service password-encryption
!
hostname IZH-KG-P11-SW-4-1
!
boot-start-marker
boot-end-marker
!
logging buffered 512000 informational
enable secret 5 $1$PL/S$hgqHXVL5q24Hm0HuWuxq/0
!
username netadmin privilege 15 secret 5 $1$grYJ$7SZ96CyLXmT9p0k4p4LhB0
aaa new-model
!
!
aaa group server radius NPS
 server name IZH-RDS002
 server name P11-RDS003
 load-balance method least-outstanding
!
aaa authentication login default group NPS local enable
aaa authentication login CONSOLE local group NPS
aaa authorization exec default group NPS local if-authenticated 
!
!
!
!
!
!
aaa session-id common
clock timezone MSK 4 0
system mtu routing 1500
vtp mode transparent
!
!
!
!
!
!
!
!
!
no ip source-route
no ip gratuitous-arps
!
!
ip dhcp snooping vlan 2,12,150,351,500
ip dhcp snooping
no ip domain-lookup
ip domain-name komos.ru
ip host VM-KG-NET 10.1.12.70
ip host tftp 10.4.0.214
login on-failure log
login on-success log
!
crypto pki trustpoint TP-self-signed-2477632512
 enrollment selfsigned
 subject-name cn=IOS-Self-Signed-Certificate-2477632512
 revocation-check none
 rsakeypair TP-self-signed-2477632512
!
!
crypto pki certificate chain TP-self-signed-2477632512
 certificate self-signed 01
  3082022B 30820194 A0030201 02020101 300D0609 2A864886 F70D0101 05050030 
  31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274 
  69666963 6174652D 32343737 36333235 3132301E 170D3933 30333031 30303037 
  35305A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649 
  4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D32 34373736 
  33323531 3230819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281 
  8100A416 D82EA906 C759867D 150F9AA9 57DEE9F8 B0C3BEE2 63C06C9C 386EED88 
  8A272155 18D46066 872465D3 516401D5 EFDFCB26 C0A8E51A 3D27EE9D 1D8B2A53 
  2C6DFC48 2FE9D28D 8127FF96 6CDE7E66 7D7A606D 97CADC7E 540C983B A37C485A 
  D1305B64 7901FE39 F7C27899 283BE6AC E41A35A8 E11DAD62 2297707B 2CC4AEDD 
  1D3B0203 010001A3 53305130 0F060355 1D130101 FF040530 030101FF 301F0603 
  551D2304 18301680 140580AC 8487126C 43DB2A61 6158D740 9CE3B1AC A3301D06 
  03551D0E 04160414 0580AC84 87126C43 DB2A6161 58D7409C E3B1ACA3 300D0609 
  2A864886 F70D0101 05050003 8181002F 94A7EA66 D0312C6C 1B53F67E 4B3D629F 
  E2C71789 65B7312D E4AE00C5 6EDA067F 64D11C9E 67A0A6BC E9294900 680F5100 
  0AE76E5E 8E985B4B CD1832DF 48685B0F 58F2918E 59AEBE6B E54232C9 B4EED3ED 
  45DCF818 56D2A5D5 2C162EF8 BF809E67 BC655091 9474A21A D590301F 42275292 
  0C5DDC6A 05862E9E 15F18A9B 704821
  	quit
errdisable recovery cause dtp-flap
errdisable recovery cause link-flap
errdisable recovery cause port-mode-failure
errdisable recovery cause loopback
errdisable recovery interval 600
archive
 log config
  logging enable
  logging size 900
  notify syslog contenttype plaintext
  hidekeys
 path tftp://tftp/IZH/KG/P11-SW_L2/$H.$T.conf
 write-memory
 time-period 10080
!
spanning-tree mode rapid-pvst
spanning-tree loopguard default
no spanning-tree optimize bpdu transmission
spanning-tree extend system-id
!
!
vlan 2
 name KG_LAN-USER
!
vlan 11
 name KG_LAN-AS199014
!
vlan 12
 name UNIFI_WIRELESS
!
vlan 100
 name Inbound_management
!
vlan 150
 name KG_WIFI-USER
!
vlan 205
 name SRV_UZB
!
vlan 300
 name KG_MGMT-NET
!
vlan 301
 name KG_MGMT-WIFI
!
vlan 351
 name KG_VOIP
!
vlan 500
 name KG_WIFI-GUEST
!
vlan 4040
 name KG_LAN-SZB
lldp run
!
!
!
!
!
!
interface Loopback7777
 description TK6657m
 no ip address
 shutdown
 downshift disable
!
interface Port-channel1
 description [CORE] SW-1-1
 switchport mode trunk
 ip dhcp snooping trust
!
interface FastEthernet0/1
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/2
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/3
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/4
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/5
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/6
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/7
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/8
 description NONE
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/9
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/10
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/11
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/12
 description NONE
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/13
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/14
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/15
 description NONE
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/16
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/17
 description NONE
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/18
 description NONE
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/19
 description NONE
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/20
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/21
 description NONE
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 power inline never
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/22
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/23
 description NONE
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/24
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/25
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/26
 description NONE
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/27
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/28
 description [WIFI] AP-5-502-UPOM
 switchport trunk allowed vlan 9,10,12,150,301,500
 switchport trunk native vlan 12
 switchport mode trunk
 no logging event link-status
 power inline port 2x-mode
 no cdp enable
 no snmp trap link-status
!
interface FastEthernet0/29
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/30
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/31
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/32
 description NONE
 switchport access vlan 2
 switchport trunk allowed vlan 1,10
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/33
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/34
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/35
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/36
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/37
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/38
 description NONE
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/39
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/40
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/41
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/42
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/43
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/44
 description NONE
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/45
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 shutdown
 downshift disable
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/46
 description NONE
 switchport access vlan 2
 switchport mode access
 switchport voice vlan 351
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
 spanning-tree portfast edge
!
interface FastEthernet0/47
 description ASA-SZB-vlan1
 switchport access vlan 100
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
!
interface FastEthernet0/48
 description ASA-SZB-vlan11
 switchport access vlan 11
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
 storm-control broadcast level 30.00
!
interface GigabitEthernet0/1
 description [CORE] Po1 SW-1-1
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 channel-group 1 mode on
 ip dhcp snooping trust
!
interface GigabitEthernet0/2
 description PORT-CHANNEL
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 channel-group 1 mode on
 ip dhcp snooping trust
!
interface GigabitEthernet0/3
 description SZB-NATIVE-vlan4040
 switchport access vlan 4040
 switchport mode access
 no logging event link-status
 no cdp enable
 no snmp trap link-status
!
interface GigabitEthernet0/4
 description SZB-SRV
 switchport trunk allowed vlan 100
 switchport mode trunk
 logging event trunk-status
 logging event spanning-tree
 no cdp enable
!
interface Vlan1
 no ip address
 shutdown
!
interface Vlan100
 ip address 10.1.1.41 255.255.255.0
 no ip redirects
 no ip unreachables
 no ip proxy-arp
!
ip default-gateway 10.1.1.1
no ip http server
no ip http secure-server
ip tftp source-interface Vlan100
ip ssh authentication-retries 2
!
kron occurrence EveryDay at 1:00 recurring
 policy-list SaveBackup
!
kron policy-list SaveBackup
 cli write memory
!
logging trap debugging
logging origin-id hostname
logging facility local6
logging source-interface Vlan100
logging host 192.168.2.25
logging host 10.4.244.4 transport udp port 515
access-list 23 permit any
access-list 23 deny   any log
snmp-server community private RW
snmp-server community lmTUEsk6Yvlv RO
snmp-server host 10.1.122.227 lmTUEsk6Yvlv 
snmp mib flash cache
!
radius server IZH-RDS002
 address ipv4 10.4.0.248 auth-port 1645 acct-port 1646
 timeout 3
 retransmit 2
 key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405
!
radius server P11-RDS003
 address ipv4 10.1.122.248 auth-port 1645 acct-port 1646
 timeout 3
 retransmit 2
 key 7 101F3E4B5C19563C160C6C010516751A2D0A0A34321159181C7075222515524D7C7A7C00407B536324307D470117150D7E3A273C2B4443044F2E3C345B39522405
!
!
privilege exec all level 7 show cdp
privilege exec all level 7 show running-config
privilege exec all level 7 show configuration
privilege exec level 7 show
!
line con 0
 logging synchronous
 login authentication CONSOLE
line vty 0 4
 access-class 23 in
 logging synchronous
 login authentication NPS
 length 0
 transport input ssh
line vty 5 15
 access-class 23 in
 logging synchronous
 login authentication NPS
 transport input ssh
!
ntp source Vlan100
ntp server 10.1.1.2
end