From 7258b4d6b1e744bcbb024b7084a95b50605f8e37 Mon Sep 17 00:00:00 2001 From: John Poland Date: Wed, 5 Mar 2025 16:08:14 -0500 Subject: [PATCH] hughes/hughes-4507-01.cfg Wed Mar 5 04:08:13 PM EST 2025 --- configs/hughes/hughes-4507-01.cfg | 1448 +++++++++++++++++++++++++++++ 1 file changed, 1448 insertions(+) create mode 100644 configs/hughes/hughes-4507-01.cfg diff --git a/configs/hughes/hughes-4507-01.cfg b/configs/hughes/hughes-4507-01.cfg new file mode 100644 index 0000000..b63dcfd --- /dev/null +++ b/configs/hughes/hughes-4507-01.cfg @@ -0,0 +1,1448 @@ +Building configuration... + +Current configuration : 40484 bytes +! +! Last configuration change at 10:34:48 EST Tue Feb 18 2025 by Jmaxam76.admin +! NVRAM config last updated at 11:35:14 EDT Thu Oct 17 2024 by Jmaxam76.admin +! +version 15.2 +no service pad +service timestamps debug datetime localtime +service timestamps log datetime localtime +service password-encryption +service internal +service compress-config +service counters max age 5 +! +hostname hughes-4507-01 +! +boot-start-marker +boot system flash bootflash:cat4500e-sup8e-firmwareupgrade-151_1r_SG18.SPA +boot system flash bootflash:cat4500e-sup8e-universalk9.SPA.03.11.06.E.152-7.E6.bin +boot-end-marker +! +shell processing full +! +vrf definition mgmtVrf + ! + address-family ipv4 + exit-address-family + ! + address-family ipv6 + exit-address-family +! +logging buffered 64000 +no logging console +logging monitor notifications +enable secret 5 $1$ye2E$UVbXVXk/R/pl3ZRdhHsyZ1 +enable password 7 060316246E4B0C34 +! +username admin privilege 15 password 7 120A1C05432A08092325 +aaa new-model +! +! +aaa authentication login default group tacacs+ local +aaa authentication enable default group tacacs+ enable +aaa authorization console +aaa authorization exec default group tacacs+ local +aaa accounting exec default start-stop group tacacs+ +aaa accounting commands 15 default stop-only group tacacs+ +aaa accounting network default start-stop group tacacs+ +aaa accounting connection default start-stop group tacacs+ +aaa accounting system default start-stop group tacacs+ +! +! +! +! +! +! +aaa session-id common +clock timezone EST -5 0 +clock summer-time EDT recurring +! +! +! +! +! +udld aggressive + +! +! +! +! +! +no ip source-route +! +ip multicast-routing +ip domain-lookup source-interface Loopback0 +ip domain-name scsd.ad +ip name-server 10.1.48.200 +ip name-server 10.1.40.10 +ip name-server 10.21.48.242 +ip name-server 10.21.48.243 +ip name-server 10.1.9.102 +! +! +vtp mode transparent +! +flow record netflow-record + match ipv4 tos + match ipv4 protocol + match ipv4 source address + match ipv4 destination address + match transport source-port + match transport destination-port + match interface input + collect interface output + collect counter bytes long + collect counter packets long +! +! +flow exporter netflow-to-orion + destination 10.1.48.37 + source Vlan506 + transport udp 2055 +! +! +flow monitor netflow-monitor + exporter netflow-to-orion + cache timeout inactive 10 + cache timeout active 60 + record netflow-record +! +! +crypto pki trustpoint TP-self-signed-18273 + enrollment selfsigned + subject-name cn=IOS-Self-Signed-Certificate-18273 + revocation-check none + rsakeypair TP-self-signed-18273 +! +! +crypto pki certificate chain TP-self-signed-18273 + certificate self-signed 01 + 30820221 3082018A A0030201 02020101 300D0609 2A864886 F70D0101 05050030 + 2C312A30 28060355 04031321 494F532D 53656C66 2D536967 6E65642D 43657274 + 69666963 6174652D 31383237 33301E17 0D313431 31313731 31303431 325A170D + 32303031 30313030 30303030 5A302C31 2A302806 03550403 1321494F 532D5365 + 6C662D53 69676E65 642D4365 72746966 69636174 652D3138 32373330 819F300D + 06092A86 4886F70D 01010105 0003818D 00308189 02818100 DFF35172 1073F622 + FBB10D8B 57B57B34 DF6E1295 EC4D9B01 94DDCFA1 9344AB7E 90074CF5 55291DB9 + 0C379E82 CDAE5BA9 21D9E088 D3BB8917 0CF0134A 6A6BD95F 75CF95AC 3CEE7DE8 + 56733E24 FEEA2B2A 847059A4 50BD736B 4998243B 9446B4A0 CC206CD4 2CE8A60F + B40DFF9A FF13DE85 C0EBBDAA 52359191 E1FD3A41 3B27FD4F 02030100 01A35330 + 51300F06 03551D13 0101FF04 05300301 01FF301F 0603551D 23041830 1680144C + 26432FD9 08E0BD4E 5CB15A28 97555BC0 A1F2E130 1D060355 1D0E0416 04144C26 + 432FD908 E0BD4E5C B15A2897 555BC0A1 F2E1300D 06092A86 4886F70D 01010505 + 00038181 00A59CF8 5766735D E6A0CF0B 49E786FC 0DF5CC88 B2126DFF 3EE9C701 + B2074917 43A34AE9 17E19DB1 4F0B9F54 DC0735BD F8C5457A CA7AB06F 0C1EAFB9 + A476A880 7D04CB7E C923AB5F A04F5760 052FC734 65B53E64 99096A64 F8ADD304 + 7D6E14A9 306B7F73 075CBEE1 B064AE3A 50CAF3D4 1B59D505 4A6D15AF 527AC27A + 926D7FCB DB + quit +power redundancy-mode redundant +archive + log config + logging enable + logging size 1000 + notify syslog contenttype plaintext + hidekeys + path bootflash: + maximum 5 + write-memory +file privilege 10 +! +spanning-tree mode rapid-pvst +spanning-tree loopguard default +spanning-tree portfast edge bpduguard default +spanning-tree extend system-id +spanning-tree uplinkfast +spanning-tree backbonefast +spanning-tree vlan 10,20,30,35,40,50-60,64,70 priority 8192 +! +redundancy + mode sso +! +vlan internal allocation policy ascending +! +vlan 10 + name mgmt +! +vlan 20 + name data +! +vlan 30 + name IoT +! +vlan 35 + name new_wireless +! +vlan 40 + name servers +! +vlan 50 + name voice_50 +! +vlan 51 + name voice_51 +! +vlan 52 + name voice_52 +! +vlan 53 + name voice_53 +! +vlan 54 + name voice 54 +! +vlan 55 + name voice_55 +! +vlan 56 + name voice_56 +! +vlan 60 + name Owireless +! +vlan 64 + name wireless_64 +! +vlan 70 + name security_cams +! +vlan 72 + name access-control +! +vlan 230 + name hvac +! +vlan 251 + name stub +! +vlan 506 + name CC-Ring +! +vlan 999 + name native_stub +lldp run +! +! +class-map match-all AutoQos-4.0-Scavenger-Classify + match access-group name AutoQos-4.0-ACL-Scavenger +class-map match-all AutoQos-4.0-Signaling-Classify + match access-group name AutoQos-4.0-ACL-Signaling +class-map match-any AutoQos-4.0-Priority-Queue + match cos 5 + match dscp ef + match dscp cs5 + match dscp cs4 +class-map match-all AutoQos-4.0-VoIP-Data-Cos + match cos 5 +class-map match-any AutoQos-4.0-Multimedia-Stream-Queue + match dscp af31 + match dscp af32 + match dscp af33 +class-map match-all AutoQos-4.0-Network-Mgmt + match dscp cs2 +class-map match-all AutoQos-4.0-VoIP-Signal-Cos + match cos 3 +class-map match-any AutoQos-4.0-Multimedia-Conf-Queue + match cos 4 + match dscp af41 + match dscp af42 + match dscp af43 + match access-group name AutoQos-4.0-ACL-Multimedia-Conf +class-map match-any AutoQos-4.0-Transaction-Data + match dscp af21 + match dscp af22 + match dscp af23 +class-map match-all AutoQos-4.0-Network-Ctrl + match dscp cs7 +class-map match-all AutoQos-4.0-Scavenger + match dscp cs1 +class-map match-all AutoQos-4.0-Default-Classify + match access-group name AutoQos-4.0-ACL-Default +class-map match-any AutoQos-4.0-Signaling + match dscp cs3 + match cos 3 +class-map match-any AutoQos-4.0-Bulk-Data-Queue + match cos 1 + match dscp af11 + match dscp af12 + match dscp af13 + match access-group name AutoQos-4.0-ACL-Bulk-Data +class-map match-all AutoQos-4.0-Transaction-Classify + match access-group name AutoQos-4.0-ACL-Transactional-Data +class-map match-all AutoQoS-VoIP-RTP-Trust + match ip dscp ef +class-map match-all AutoQoS-VoIP-Control-Trust + match ip dscp cs3 af31 +class-map match-all AutoQos-4.0-Broadcast-Vid + match dscp cs5 +class-map match-any AutoQos-4.0-Bulk-Data + match dscp af11 + match dscp af12 + match dscp af13 +class-map match-any AutoQos-4.0-Scavenger-Queue + match dscp cs1 + match cos 1 + match access-group name AutoQos-4.0-ACL-Scavenger +class-map match-any AutoQos-4.0-VoIP + match dscp ef + match cos 5 +class-map match-any AutoQos-4.0-Multimedia-Conf + match dscp af41 + match dscp af42 + match dscp af43 +class-map match-any AutoQos-4.0-Control-Mgmt-Queue + match cos 3 + match dscp cs7 + match dscp cs6 + match dscp cs3 + match dscp cs2 + match access-group name AutoQos-4.0-ACL-Signaling +class-map match-all AutoQos-4.0-Bulk-Data-Classify + match access-group name AutoQos-4.0-ACL-Bulk-Data +class-map match-any AutoQos-4.0-Trans-Data-Queue + match cos 2 + match dscp af21 + match dscp af22 + match dscp af23 + match access-group name AutoQos-4.0-ACL-Transactional-Data +class-map match-any AutoQos-4.0-Multimedia-Stream + match dscp af31 + match dscp af32 + match dscp af33 +class-map match-any AutoQos-4.0-VoIP-Data + match dscp ef + match cos 5 +class-map match-all AutoQos-4.0-Internetwork-Ctrl + match dscp cs6 +class-map match-all AutoQos-4.0-Realtime-Interact + match dscp cs4 +class-map match-all AutoQos-4.0-Multimedia-Conf-Classify + match access-group name AutoQos-4.0-ACL-Multimedia-Conf +class-map match-any AutoQos-4.0-VoIP-Signal + match dscp cs3 + match cos 3 +! +policy-map AutoQos-4.0-Output-Policy + class AutoQos-4.0-Scavenger-Queue + bandwidth remaining percent 1 + class AutoQos-4.0-Priority-Queue + priority + police cir percent 30 bc 33 ms + class AutoQos-4.0-Control-Mgmt-Queue + bandwidth remaining percent 10 + class AutoQos-4.0-Multimedia-Conf-Queue + bandwidth remaining percent 10 + class AutoQos-4.0-Multimedia-Stream-Queue + bandwidth remaining percent 10 + class AutoQos-4.0-Trans-Data-Queue + bandwidth remaining percent 10 + dbl + class AutoQos-4.0-Bulk-Data-Queue + bandwidth remaining percent 4 + dbl + class class-default + bandwidth remaining percent 25 + dbl +policy-map AutoQos-4.0-Input-Policy + class AutoQos-4.0-VoIP + class AutoQos-4.0-Broadcast-Vid + class AutoQos-4.0-Realtime-Interact + class AutoQos-4.0-Network-Ctrl + class AutoQos-4.0-Internetwork-Ctrl + class AutoQos-4.0-Signaling + class AutoQos-4.0-Network-Mgmt + class AutoQos-4.0-Multimedia-Conf + class AutoQos-4.0-Multimedia-Stream + class AutoQos-4.0-Transaction-Data + class AutoQos-4.0-Bulk-Data + class AutoQos-4.0-Scavenger +policy-map AutoQos-4.0-Cisco-Phone-Input-Policy + class AutoQos-4.0-VoIP-Data-Cos + set dscp ef + police cir 128000 bc 8000 + exceed-action set-dscp-transmit cs1 + exceed-action set-cos-transmit 1 + class AutoQos-4.0-VoIP-Signal-Cos + set dscp cs3 + police cir 32000 bc 8000 + exceed-action set-dscp-transmit cs1 + exceed-action set-cos-transmit 1 + class class-default + set dscp default + set cos 0 +policy-map AutoQoS-Police-CiscoPhone + class AutoQoS-VoIP-RTP-Trust + set dscp ef + class AutoQoS-VoIP-Control-Trust + set dscp cs3 +! +! +! +! +! +! +! +! +! +! +! +! +! +! +! +interface Loopback0 + ip address 10.28.254.254 255.255.255.255 +! +interface Port-channel11 + switchport + switchport trunk allowed vlan 10,20,30,35,40,51,59,60,70,251 + switchport trunk native vlan 251 + switchport mode trunk +! +interface Port-channel21 + switchport + switchport trunk allowed vlan 10,20,30,35,40,52,59,60,70 + switchport trunk native vlan 251 + switchport mode trunk +! +interface Port-channel31 + switchport + switchport trunk allowed vlan 10,20,30,35,40,53,59,60,70,251 + switchport trunk native vlan 251 + switchport mode trunk +! +interface Port-channel41 + switchport + switchport trunk allowed vlan 10,20,30,35,40,54,59,60,70,251 + switchport trunk native vlan 251 + switchport mode trunk +! +interface FastEthernet1 + vrf forwarding mgmtVrf + no ip address + shutdown + speed auto + duplex auto +! +interface TenGigabitEthernet1/1 + description *** To mdf-sw1 *** + switchport trunk allowed vlan 10,20,30,35,40,50,59,60,70,251 + switchport trunk native vlan 251 + switchport mode trunk + shutdown +! +interface TenGigabitEthernet1/2 + description *** To hughes-idf104a-sw1 *** + switchport trunk allowed vlan 10,20,30,35,40,51,59,60,70,251 + switchport trunk native vlan 251 + switchport mode trunk + channel-group 11 mode active +! +interface TenGigabitEthernet1/3 + description *** To hughes-idf138a-sw1 *** + switchport trunk allowed vlan 10,20,30,35,40,52,59,60,70 + switchport trunk native vlan 251 + switchport mode trunk + channel-group 21 mode active +! +interface TenGigabitEthernet1/4 + description *** To hughes-idf119b-sw1 *** + switchport trunk allowed vlan 10,20,30,35,40,53,59,60,70,251 + switchport trunk native vlan 251 + switchport mode trunk + channel-group 31 mode active +! +interface TenGigabitEthernet1/5 + description *** hughes-idf225b-sw1 *** + switchport trunk allowed vlan 10,20,30,35,40,54,59,60,70,251 + switchport trunk native vlan 251 + switchport mode trunk + channel-group 41 mode active +! +interface TenGigabitEthernet1/6 + description *** To idf5-sw1 *** + switchport trunk allowed vlan 10,20,30,35,40,55,59,60,70 + switchport trunk native vlan 251 + switchport mode trunk + shutdown +! +interface TenGigabitEthernet1/7 + description *** To idf6-sw1 *** + switchport trunk allowed vlan 10,20,30,35,40,56,59,60,70 + switchport trunk native vlan 251 + switchport mode trunk + shutdown +! +interface TenGigabitEthernet1/8 + shutdown +! +interface TenGigabitEthernet1/9 + shutdown +! +interface TenGigabitEthernet1/10 + shutdown +! +interface TenGigabitEthernet1/11 +! +interface TenGigabitEthernet1/12 +! +interface TenGigabitEthernet2/1 + description *** To mdf-sw1 *** + switchport trunk allowed vlan 10,20,30,35,40,50,59,60,70,251 + switchport trunk native vlan 251 + switchport mode trunk + shutdown +! +interface TenGigabitEthernet2/2 + description *** To hughes-idf104a-sw1 *** + switchport trunk allowed vlan 10,20,30,35,40,51,59,60,70,251 + switchport trunk native vlan 251 + switchport mode trunk + channel-group 11 mode active +! +interface TenGigabitEthernet2/3 + description *** To hughes-idf138a-sw1 *** + switchport trunk allowed vlan 10,20,30,35,40,52,59,60,70 + switchport trunk native vlan 251 + switchport mode trunk + channel-group 21 mode active +! +interface TenGigabitEthernet2/4 + description *** To hughes-idf119b-sw1 *** + switchport trunk allowed vlan 10,20,30,35,40,53,59,60,70,251 + switchport trunk native vlan 251 + switchport mode trunk + channel-group 31 mode active +! +interface TenGigabitEthernet2/5 + description *** hughes-idf225b-sw1 *** + switchport trunk allowed vlan 10,20,30,35,40,54,59,60,70,251 + switchport trunk native vlan 251 + switchport mode trunk + channel-group 41 mode active +! +interface TenGigabitEthernet2/6 + description *** To idf5-sw1 *** + switchport trunk allowed vlan 10,20,30,35,40,55,59,60,70 + switchport trunk native vlan 251 + switchport mode trunk + shutdown +! +interface TenGigabitEthernet2/7 + description *** To idf6-sw1 *** + switchport trunk allowed vlan 10,20,30,35,40,56,59,60,70 + switchport trunk native vlan 251 + switchport mode trunk + shutdown +! +interface TenGigabitEthernet2/8 + shutdown +! +interface TenGigabitEthernet2/9 + shutdown +! +interface TenGigabitEthernet2/10 + shutdown +! +interface TenGigabitEthernet2/11 + shutdown +! +interface TenGigabitEthernet2/12 + shutdown +! +interface TenGigabitEthernet3/1 +! +interface TenGigabitEthernet3/2 +! +interface TenGigabitEthernet3/3 +! +interface TenGigabitEthernet3/4 +! +interface TenGigabitEthernet3/5 +! +interface TenGigabitEthernet3/6 +! +interface TenGigabitEthernet3/7 +! +interface TenGigabitEthernet3/8 + description to Ring + switchport trunk allowed vlan 506 + switchport trunk native vlan 525 + switchport mode trunk + ip flow monitor netflow-monitor input + udld port disable + no vtp +! +interface GigabitEthernet5/1 + description Connected to UPS + switchport access vlan 10 + switchport mode access + spanning-tree portfast edge + spanning-tree bpduguard enable +! +interface GigabitEthernet5/2 + description *** To Day Automation Lantronix *** + switchport access vlan 40 + switchport mode access + no cdp enable + spanning-tree portfast edge +! +interface GigabitEthernet5/3 + description hvac + switchport access vlan 230 + switchport mode access + switchport port-security mac-address sticky + ip access-group hvac in +! +interface GigabitEthernet5/4 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/5 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/6 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/7 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/8 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/9 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/10 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/11 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/12 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/13 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/14 + description POWERED OFF AP hugh-ap0-2-rm03 + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + shutdown + power inline consumption 12000 + power inline never + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/15 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/16 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/17 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/18 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/19 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/20 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/21 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/22 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/23 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/24 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/25 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/26 + description 28-002-PRJ-1A11 + switchport access vlan 30 + switchport mode access + spanning-tree portfast edge + spanning-tree bpduguard enable +! +interface GigabitEthernet5/27 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/28 + description 28-2-PRJ-1A11 + switchport access vlan 30 + switchport mode access + spanning-tree portfast edge + spanning-tree bpduguard enable +! +interface GigabitEthernet5/29 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/30 + description 28-004-PRJ-1A39 + switchport access vlan 30 + switchport mode access + spanning-tree portfast edge + spanning-tree bpduguard enable +! +interface GigabitEthernet5/31 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/32 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/33 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/34 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/35 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/36 + description Day Automation Lantronix to (old) 256 unit + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + speed 10 + duplex half + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/37 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/38 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/39 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/40 + description video doorbell test + switchport access vlan 70 + switchport mode access + shutdown + spanning-tree portfast edge +! +interface GigabitEthernet5/41 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/42 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/43 + description Connected to UPS + switchport access vlan 10 + switchport mode access + spanning-tree portfast edge + spanning-tree bpduguard enable +! +interface GigabitEthernet5/44 + description Connected to APC Smart UPS 5000 + switchport access vlan 10 + switchport mode access + speed 100 + duplex full + spanning-tree portfast edge + spanning-tree bpduguard enable +! +interface GigabitEthernet5/45 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/46 + description *** To Voice and Data Endpoints *** + switchport access vlan 20 + switchport mode access + switchport voice vlan 50 + auto qos voip cisco-phone + qos trust device cisco-phone + spanning-tree portfast edge + spanning-tree bpduguard enable + service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy + service-policy output AutoQos-4.0-Output-Policy +! +interface GigabitEthernet5/47 + description *** To Wireless APs *** + switchport trunk allowed vlan 35,59 + switchport trunk native vlan 35 + switchport mode trunk +! +interface GigabitEthernet5/48 + description *** Connected to 3725 Router *** + switchport access vlan 50 + switchport mode access + duplex full +! +interface Vlan1 + no ip address + no ip route-cache + shutdown +! +interface Vlan10 + ip address 192.168.28.1 255.255.255.0 + no ip redirects + ip pim sparse-mode + no ip route-cache cef +! +interface Vlan20 + ip address 10.28.1.1 255.255.248.0 + ip access-group users in + ip helper-address 10.1.40.20 + ip helper-address 10.21.48.20 + ip helper-address 10.1.48.189 + no ip redirects + ip directed-broadcast 117 + ip pim sparse-mode +! +interface Vlan21 + no ip address + ip helper-address 10.1.40.20 + ip helper-address 10.21.48.20 + ip helper-address 10.1.40.189 + shutdown +! +interface Vlan30 + description Internet of Things + ip address 10.28.30.1 255.255.254.0 + ip helper-address 10.21.48.20 + ip helper-address 10.1.40.20 + no ip redirects + ip pim sparse-mode +! +interface Vlan35 + ip address 10.28.35.1 255.255.255.0 + ip helper-address 10.21.48.20 + ip helper-address 10.1.40.20 + ip helper-address 10.1.40.115 + ip helper-address 10.1.40.117 + ip helper-address 10.1.40.116 + no ip redirects + ip pim sparse-mode +! +interface Vlan40 + ip address 10.28.40.2 255.255.255.0 + no ip redirects + ip pim sparse-mode +! +interface Vlan50 + ip address 10.28.50.1 255.255.255.0 + ip helper-address 10.21.48.20 + ip helper-address 10.1.40.20 + no ip redirects + ip pim sparse-mode +! +interface Vlan51 + ip address 10.28.51.1 255.255.255.0 + ip helper-address 10.21.48.20 + ip helper-address 10.1.40.20 + no ip redirects + ip pim sparse-mode +! +interface Vlan52 + ip address 10.28.52.1 255.255.255.0 + ip helper-address 10.21.48.20 + ip helper-address 10.1.40.20 + no ip redirects + ip pim sparse-mode +! +interface Vlan53 + ip address 10.28.53.1 255.255.255.0 + ip helper-address 10.21.48.20 + ip helper-address 10.1.40.20 + no ip redirects + ip pim sparse-mode +! +interface Vlan54 + ip address 10.28.54.1 255.255.255.0 + ip helper-address 10.21.48.20 + ip helper-address 10.1.40.20 + no ip redirects + ip pim sparse-mode +! +interface Vlan55 + ip address 10.28.55.1 255.255.255.0 + ip helper-address 10.21.48.20 + ip helper-address 10.1.40.20 + no ip redirects + ip pim sparse-mode + shutdown +! +interface Vlan56 + ip address 10.28.56.1 255.255.255.0 + ip helper-address 10.21.48.20 + ip helper-address 10.1.40.20 + no ip redirects + ip pim sparse-mode + shutdown +! +interface Vlan59 + no ip address +! +interface Vlan60 + ip address 10.28.60.2 255.255.255.0 + ip helper-address 10.21.48.20 + ip helper-address 10.1.40.20 + no ip redirects + ip pim sparse-mode +! +interface Vlan64 + ip address 10.28.64.1 255.255.252.0 + ip helper-address 10.21.48.20 + ip helper-address 10.1.40.20 + shutdown +! +interface Vlan70 + description Security Cameras + ip address 10.28.70.1 255.255.254.0 + ip helper-address 10.21.48.20 + ip helper-address 10.1.40.20 + no ip redirects + ip pim sparse-mode +! +interface Vlan72 + description Access Control + ip address 10.28.72.1 255.255.255.0 + ip helper-address 10.21.48.20 + ip helper-address 10.1.40.20 + no ip redirects + ip pim sparse-mode +! +interface Vlan107 + no ip address + ip helper-address 10.1.40.20 + ip helper-address 10.21.48.20 + shutdown +! +interface Vlan230 + ip address 10.28.230.1 255.255.255.224 +! +interface Vlan506 + description to Ring #6 CCF Service #S200310 + ip address 10.250.206.28 255.255.255.0 + ip pim sparse-mode +! +interface Vlan999 + no ip address +! +router ospf 315 + router-id 28.28.28.28 + area 206 nssa + area 206 range 10.28.0.0 255.255.0.0 + summary-address 10.28.0.0 255.255.252.0 + passive-interface default + no passive-interface Vlan506 + network 10.28.230.0 0.0.0.31 area 206 + network 10.28.0.0 0.0.255.255 area 206 + network 10.250.206.28 0.0.0.0 area 0 + network 192.168.28.0 0.0.0.255 area 206 +! +ip local policy route-map blue +ip forward-protocol nd +ip forward-protocol udp netbios-ss +ip forward-protocol udp 1512 +ip forward-protocol udp discard +ip tcp mss 1350 +no ip http server +no ip http secure-server +ip pim rp-address 10.1.0.1 +ip msdp peer 10.1.0.2 connect-source Loopback0 +ip msdp peer 10.1.0.3 connect-source Loopback0 +ip msdp cache-sa-state +ip msdp mesh-group anycase 10.1.0.2 +ip msdp mesh-group anycase 10.1.0.3 +! +ip tftp blocksize 8192 +ip route 0.0.0.0 0.0.0.0 192.168.28.2 200 name CradlePointPOC +ip tacacs source-interface Vlan10 +ip ssh version 2 +! +ip access-list extended AutoQos-4.0-ACL-Bulk-Data + permit tcp any any eq ftp + permit tcp any any eq ftp-data + permit tcp any any eq 22 + permit tcp any any eq smtp + permit tcp any any eq 465 + permit tcp any any eq 143 + permit tcp any any eq 993 + permit tcp any any eq pop3 + permit tcp any any eq 995 + permit tcp any any eq 1914 +ip access-list extended AutoQos-4.0-ACL-Default + permit ip any any +ip access-list extended AutoQos-4.0-ACL-Multimedia-Conf + permit udp any any range 16384 32767 +ip access-list extended AutoQos-4.0-ACL-Scavenger + permit tcp any any eq 1214 + permit udp any any eq 1214 + permit tcp any any range 2300 2400 + permit udp any any range 2300 2400 + permit tcp any any eq 3689 + permit udp any any eq 3689 + permit tcp any any range 6881 6999 + permit tcp any any eq 11999 + permit tcp any any range 28800 29100 +ip access-list extended AutoQos-4.0-ACL-Signaling + permit tcp any any range 2000 2002 + permit tcp any any range 5060 5061 + permit udp any any range 5060 5061 +ip access-list extended AutoQos-4.0-ACL-Transactional-Data + permit tcp any any eq 443 + permit tcp any any eq 1521 + permit udp any any eq 1521 + permit tcp any any eq 1526 + permit udp any any eq 1526 + permit tcp any any eq 1575 + permit udp any any eq 1575 + permit tcp any any eq 1630 + permit udp any any eq 1630 +ip access-list extended hvac + permit tcp host 10.28.230.11 host 10.1.230.11 + permit icmp host 10.28.230.11 host 10.1.230.11 log + permit tcp host 10.28.230.11 host 10.1.40.108 + permit icmp host 10.28.230.11 host 10.1.40.108 log +ip access-list extended users + deny ip any 192.168.0.0 0.0.255.255 + permit ip any any +! +logging trap notifications +logging origin-id hostname +logging facility syslog +logging host 10.1.40.78 +access-list 100 permit udp 10.9.30.0 0.0.1.255 any +access-list 100 permit tcp 10.9.30.0 0.0.1.255 any +access-list 101 permit udp 10.9.30.0 0.0.1.255 any +access-list 101 permit tcp 10.9.30.0 0.0.1.255 any +access-list 101 permit udp any 10.9.30.0 0.0.1.255 +access-list 101 permit tcp any 10.9.30.0 0.0.1.255 +access-list 101 permit udp any 10.9.60.0 0.0.0.255 +access-list 101 permit tcp any 10.9.60.0 0.0.0.255 +access-list 101 permit udp 10.9.60.0 0.0.0.255 any +access-list 101 permit tcp 10.9.60.0 0.0.0.255 any +access-list 103 permit udp 10.9.60.0 0.0.0.255 any +access-list 103 permit tcp 10.9.60.0 0.0.0.255 any +access-list 117 permit udp host 10.1.40.189 any eq discard +! +! +route-map blue permit 10 + match ip address 100 + set ip next-hop 10.28.30.1 +! +route-map blue permit 12 + match ip address 103 + set ip next-hop 10.28.60.1 +! +route-map blue permit 20 +! +route-map blue-in permit 10 + match ip address 101 + set ip next-hop 10.28.40.1 +! +route-map blue-in permit 20 +! +snmp-server community mickey03 RO +snmp-server community mouse99 RW +snmp-server trap-source Vlan10 +snmp-server location HUGHES-MDF +snmp-server system-shutdown +snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart +snmp-server enable traps flash insertion removal +snmp-server enable traps vtp +snmp-server enable traps vlancreate +snmp-server enable traps vlandelete +snmp-server enable traps envmon fan shutdown supply temperature status +snmp-server enable traps config +snmp-server enable traps stpx root-inconsistency loop-inconsistency +snmp-server enable traps syslog +snmp-server enable traps vlan-membership +snmp-server enable traps mac-notification change move threshold +! +tacacs server noc-cp-a + address ipv4 10.1.40.116 + key 7 08324F5D0D5A00130752 +tacacs server noc-cp-b + address ipv4 10.1.40.117 + key 7 08324F5D0D5A00130752 +! +! +privilege configure all level 10 logging +privilege exec level 1 connect +privilege exec level 15 telnet +privilege exec level 10 show running-config view full +privilege exec level 10 show running-config view +privilege exec all level 10 show running-config +privilege exec level 10 show +banner motd ^C +!!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!! +! ! +! You are accessing a PRIVATE COMPUTING FACILITY. ! +! Access to this system is restricted to AUTHORIZED PERSONNEL. ! +! ! +! Anyone who accesses this system without authorization, or in ! +! excess of their authorization could be subject to a fine, ! +! imprisonment, or both under Public and Federal Law. By entering ! +! this system, you consent to having your accesses and activities ! +! monitored and recorded. ! +! ! +! If this monitoring or record reveals suspected unauthorized ! +! or criminal activity, the evidence will be provided ! +! to supervisory personnel and law enforcement officials. ! +! ! +! IF YOU ARE NOT AUTHORIZED TO BE HERE DISCONNECT NOW ! ! +! ! +!!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!! +^C +alias exec show-running-config show running-config view full +! +line con 0 + exec-timeout 0 0 + password 7 121C1C12300E0929 + logging synchronous + transport preferred none + stopbits 1 +line vty 0 4 + exec-timeout 0 0 + password 7 01001F160A2A02022842 + length 0 + transport preferred ssh + transport input ssh +line vty 5 15 + exec-timeout 15 0 + password 7 01001F160A2A02022842 + length 0 + transport preferred ssh + transport input ssh +! +scheduler runtime netinput 100 +ntp server 10.1.1.2 prefer +ntp server 10.1.1.3 +! +end \ No newline at end of file