761 lines
19 KiB
Plaintext
761 lines
19 KiB
Plaintext
Building configuration...
|
|
|
|
Current configuration : 19268 bytes
|
|
!
|
|
! Last configuration change at 12:01:30 YEKT Mon Jul 25 2022 by konovalov
|
|
! NVRAM config last updated at 11:05:14 YEKT Fri Jul 22 2022 by konovalov
|
|
!
|
|
version 15.0
|
|
no service pad
|
|
service tcp-keepalives-in
|
|
service tcp-keepalives-out
|
|
service timestamps debug datetime msec localtime show-timezone year
|
|
service timestamps log datetime msec localtime show-timezone year
|
|
no service password-encryption
|
|
service unsupported-transceiver
|
|
!
|
|
hostname PRM-MLK-PHK-SW-2-2
|
|
!
|
|
boot-start-marker
|
|
boot-end-marker
|
|
!
|
|
logging buffered 512000 informational
|
|
no logging console
|
|
no logging monitor
|
|
enable secret 5 $1$ISn2$0ytlcfXUzfcyFrNwPb7hP0
|
|
!
|
|
username netadmin privilege 15 secret 5 $1$m/mQ$KqBYDbB13GiR.2/Iu3sru/
|
|
aaa new-model
|
|
!
|
|
!
|
|
aaa group server radius NPS
|
|
server name IZH-RDS002
|
|
server name P11-RDS003
|
|
load-balance method least-outstanding
|
|
!
|
|
aaa authentication login default group NPS local enable
|
|
aaa authentication login NPS group NPS local
|
|
aaa authentication login CONSOLE local group NPS
|
|
aaa authorization console
|
|
aaa authorization exec default group NPS local if-authenticated
|
|
aaa authorization exec NPS group NPS local if-authenticated
|
|
!
|
|
!
|
|
!
|
|
!
|
|
!
|
|
!
|
|
aaa session-id common
|
|
clock timezone YEKT 5 0
|
|
system mtu routing 1500
|
|
vtp mode transparent
|
|
no ip source-route
|
|
!
|
|
!
|
|
ip dhcp snooping vlan 1-4094
|
|
ip dhcp snooping
|
|
no ip domain-lookup
|
|
ip domain-name milkom-komos.ru
|
|
ip host tftp 10.4.0.214
|
|
ip host VM-KG-NET 10.1.1.250
|
|
login on-failure
|
|
login on-success
|
|
!
|
|
!
|
|
!
|
|
!
|
|
!
|
|
!
|
|
!
|
|
!
|
|
errdisable recovery cause udld
|
|
errdisable recovery cause bpduguard
|
|
errdisable recovery cause security-violation
|
|
errdisable recovery cause channel-misconfig (STP)
|
|
errdisable recovery cause pagp-flap
|
|
errdisable recovery cause dtp-flap
|
|
errdisable recovery cause link-flap
|
|
errdisable recovery cause sfp-config-mismatch
|
|
errdisable recovery cause gbic-invalid
|
|
errdisable recovery cause psecure-violation
|
|
errdisable recovery cause port-mode-failure
|
|
errdisable recovery cause dhcp-rate-limit
|
|
errdisable recovery cause mac-limit
|
|
errdisable recovery cause vmps
|
|
errdisable recovery cause storm-control
|
|
errdisable recovery cause inline-power
|
|
errdisable recovery cause arp-inspection
|
|
errdisable recovery cause loopback
|
|
errdisable recovery cause small-frame
|
|
errdisable recovery interval 600
|
|
archive
|
|
log config
|
|
logging enable
|
|
logging size 900
|
|
notify syslog contenttype plaintext
|
|
hidekeys
|
|
path tftp://tftp/PRM/MLK/PHK-SW_L2/$H.$T.conf
|
|
write-memory
|
|
time-period 1440
|
|
!
|
|
spanning-tree mode rapid-pvst
|
|
spanning-tree loopguard default
|
|
spanning-tree extend system-id
|
|
!
|
|
vlan internal allocation policy ascending
|
|
!
|
|
vlan 2
|
|
name --USERS_102.0/24--
|
|
!
|
|
vlan 101
|
|
name --PRINTERS--
|
|
!
|
|
vlan 150
|
|
name --Wi-Fi_WORK--
|
|
!
|
|
vlan 300
|
|
name --MANAGEMENT--
|
|
!
|
|
vlan 301
|
|
name --Wi-Fi_MANAGEMENT--
|
|
!
|
|
vlan 350
|
|
name --VOICE--
|
|
!
|
|
vlan 500
|
|
name -Wi-Fi_GUEST--
|
|
lldp run
|
|
!
|
|
ip ssh time-out 30
|
|
ip ssh authentication-retries 5
|
|
ip ssh rsa keypair-name SSH_KEYS
|
|
ip ssh logging events
|
|
ip ssh version 2
|
|
!
|
|
!
|
|
!
|
|
!
|
|
!
|
|
interface Loopback7777
|
|
description 237701
|
|
no ip address
|
|
shutdown
|
|
!
|
|
interface Port-channel1
|
|
description LINK_TO_PHK-Sw1-1
|
|
switchport mode trunk
|
|
!
|
|
interface Port-channel2
|
|
description LINK_TO_PHK-Sw1-2
|
|
switchport mode trunk
|
|
!
|
|
interface Port-channel3
|
|
description LINK_TO_PHK-Sw1-3
|
|
switchport mode trunk
|
|
!
|
|
interface Port-channel4
|
|
description [CORE] SW-1-1
|
|
switchport mode trunk
|
|
logging event trunk-status
|
|
logging event spanning-tree
|
|
ip dhcp snooping trust
|
|
!
|
|
interface GigabitEthernet0/1
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/2
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/3
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/4
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/5
|
|
description [ACC] otd_kadrov
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/6
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/7
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/8
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/9
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/10
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/11
|
|
description [ACC]
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/12
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/13
|
|
description [ACC]
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/14
|
|
description [ACC]
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/15
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/16
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/17
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/18
|
|
description [ACC]
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/19
|
|
description [ACC]
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/20
|
|
description [ACC]
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/21
|
|
description [ACC]
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/22
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/23
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/24
|
|
description [ACC]
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/25
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/26
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/27
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/28
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/29
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/30
|
|
description [ACC]
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/31
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/32
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/33
|
|
description [ACC]
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/34
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/35
|
|
description [ACC]
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/36
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/37
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/38
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/39
|
|
description [ACC]
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/40
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/41
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport trunk allowed vlan 1,100
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/42
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/43
|
|
description [ACC]
|
|
switchport access vlan 2
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/44
|
|
description NONE
|
|
switchport access vlan 2
|
|
switchport trunk allowed vlan 1,100,200
|
|
switchport mode access
|
|
switchport voice vlan 350
|
|
no snmp trap link-status
|
|
storm-control broadcast level pps 100
|
|
storm-control multicast level pps 100
|
|
spanning-tree portfast
|
|
spanning-tree bpduguard enable
|
|
!
|
|
interface GigabitEthernet0/45
|
|
description NONE
|
|
switchport mode access
|
|
no logging event link-status
|
|
no snmp trap link-status
|
|
!
|
|
interface GigabitEthernet0/46
|
|
switchport mode trunk
|
|
channel-group 2 mode on
|
|
!
|
|
interface GigabitEthernet0/47
|
|
description [CORE] Po4 SW-1-1
|
|
switchport mode trunk
|
|
logging event trunk-status
|
|
logging event spanning-tree
|
|
channel-group 4 mode active
|
|
ip dhcp snooping trust
|
|
!
|
|
interface GigabitEthernet0/48
|
|
description [CORE] Po4 SW-1-1
|
|
switchport mode trunk
|
|
logging event trunk-status
|
|
logging event spanning-tree
|
|
channel-protocol lacp
|
|
channel-group 4 mode active
|
|
ip dhcp snooping trust
|
|
!
|
|
interface Vlan1
|
|
no ip address
|
|
no ip route-cache
|
|
shutdown
|
|
!
|
|
interface Vlan300
|
|
description --MANAGEMENT--
|
|
ip address 10.5.126.22 255.255.255.0
|
|
no ip redirects
|
|
no ip unreachables
|
|
no ip proxy-arp
|
|
no ip route-cache
|
|
!
|
|
ip default-gateway 10.5.126.254
|
|
no ip http server
|
|
no ip http secure-server
|
|
logging trap debugging
|
|
logging origin-id hostname
|
|
logging facility local6
|
|
logging source-interface Vlan300
|
|
logging host 192.168.8.119 transport udp port 5544
|
|
access-list 23 permit any
|
|
access-list 23 deny any log
|
|
snmp-server community lmTUEsk6Yvlv RO
|
|
snmp-server host 10.1.122.227 lmTUEsk6Yvlv
|
|
snmp ifmib ifindex persist
|
|
!
|
|
radius server IZH-RDS002
|
|
address ipv4 10.4.0.248 auth-port 1645 acct-port 1646
|
|
timeout 3
|
|
retransmit 2
|
|
key 1W29n$Wzh&JA^&OoymBQpo!$CALFm$tDMO2uO8XBWEpedsiEQASjhmm6KKF0U6nN
|
|
!
|
|
radius server P11-RDS003
|
|
address ipv4 10.1.122.248 auth-port 1645 acct-port 1646
|
|
timeout 3
|
|
retransmit 2
|
|
key 1W29n$Wzh&JA^&OoymBQpo!$CALFm$tDMO2uO8XBWEpedsiEQASjhmm6KKF0U6nN
|
|
!
|
|
!
|
|
!
|
|
vstack
|
|
banner exec ^C
|
|
Welcome to $(hostname). You are connected on line $(line) on domain $(domain)
|
|
|
|
^C
|
|
banner login ^C
|
|
*****************************************************************************
|
|
* *
|
|
* UNAUTHORIZED ACCESS IS PROHIBITED *
|
|
* *
|
|
* You have accessed network equipment. *
|
|
* You must have authorized permission to access or configure this device. *
|
|
* All activities performed on this device are logged and monitored. *
|
|
* *
|
|
*****************************************************************************
|
|
^C
|
|
alias router x exit
|
|
alias subinterface x exit
|
|
alias interface x exit
|
|
alias configure x exit
|
|
alias exec ipconfig show ip interface brief | exclude unassigned
|
|
alias exec diff show archive config differences nvram:startup-config system:running-config
|
|
alias exec q exit
|
|
!
|
|
line con 0
|
|
logging synchronous
|
|
login authentication CONSOLE
|
|
line vty 0 4
|
|
access-class 23 in
|
|
exec-timeout 120 0
|
|
logging synchronous
|
|
login authentication NPS
|
|
transport input ssh
|
|
line vty 5 15
|
|
access-class 23 in
|
|
exec-timeout 120 0
|
|
logging synchronous
|
|
login authentication NPS
|
|
transport input ssh
|
|
!
|
|
ntp server 192.168.8.200
|
|
ntp server 192.168.8.201
|
|
mac address-table notification change
|
|
mac address-table notification mac-move
|
|
mac address-table aging-time 900
|
|
end |