admin/scsd-configs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

co/co-mdf-4507.cfg Wed Mar 5 04:08:13 PM EST 2025

Browse Source
This commit is contained in:
John Poland 2025-03-05 16:08:13 -05:00
parent 695c6a03f6
commit 73426cd531
1 changed files with 562 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

562
configs/co/co-mdf-4507.cfg Normal file
View File

@ -0,0 +1,562 @@
Building configuration...
Current configuration : 13970 bytes
!
! Last configuration change at 06:55:12 EST Fri Dec 6 2024
!
version 15.2
no service pad
service timestamps debug datetime localtime
service timestamps log datetime localtime
service password-encryption
service internal
service compress-config
service counters max age 5
!
hostname co-mdf-4507
!
boot-start-marker
boot system flash bootflash:cat4500e-sup8e-firmwareupgrade-151_1r_SG18.SPA
boot system flash bootflash:cat4500e-sup8e-universalk9.SPA.03.11.06.E.152-7.E6.bin
boot-end-marker
!
shell processing full
!
vrf definition mgmtVrf
!
address-family ipv4
exit-address-family
!
address-family ipv6
exit-address-family
!
logging buffered 32000
no logging console
logging monitor notifications
enable secret 5 $1$vrY6$gaMotB2AQXmZHjZxe5B240
enable password 7 0301420E240A2461
!
username admin privilege 15 password 7 1501121E550B2F29213D
aaa new-model
!
!
aaa authentication login default group tacacs+ local
aaa authentication enable default group tacacs+ enable
aaa authorization console
aaa authorization exec default group tacacs+ local
aaa accounting exec default start-stop group tacacs+
aaa accounting commands 15 default stop-only group tacacs+
aaa accounting network default start-stop group tacacs+
aaa accounting connection default start-stop group tacacs+
aaa accounting system default start-stop group tacacs+
!
!
!
!
!
!
aaa session-id common
clock timezone EST -5 0
clock summer-time EDT recurring
!
!
!
!
!
udld aggressive
!
!
!
!
!
!
ip multicast-routing
no ip domain-lookup
ip domain-name scsd.ad
!
!
!
flow record netflow-record
match ipv4 tos
match ipv4 protocol
match ipv4 source address
match ipv4 destination address
match transport source-port
match transport destination-port
match interface input
collect interface output
collect counter bytes long
collect counter packets long
!
!
flow exporter netflow-to-orion
destination 10.1.48.37
source Vlan505
transport udp 2055
!
!
flow monitor netflow-monitor
exporter netflow-to-orion
cache timeout inactive 10
cache timeout active 60
record netflow-record
!
!
!
power redundancy-mode redundant
archive
log config
logging enable
logging size 1000
notify syslog contenttype plaintext
hidekeys
path bootflash:
maximum 5
file privilege 10
!
spanning-tree mode rapid-pvst
spanning-tree loopguard default
spanning-tree portfast edge bpduguard default
spanning-tree extend system-id
spanning-tree uplinkfast
spanning-tree backbonefast
spanning-tree vlan 10,20,30,35,40,50-60,64,70 priority 8192
!
redundancy
mode sso
!
!
vlan configuration 505
ip flow monitor netflow-monitor input
vlan internal allocation policy ascending
lldp run
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
interface Loopback0
ip address 10.55.254.254 255.255.255.255
!
interface Port-channel5
switchport
switchport trunk allowed vlan 10,20,30,35,40,50,60,70,525
switchport trunk native vlan 525
switchport mode trunk
!
interface Port-channel21
switchport
switchport trunk allowed vlan 10,20,30,35,40,52,59,60,70,525
switchport trunk native vlan 525
switchport mode trunk
!
interface Port-channel31
switchport
switchport trunk allowed vlan 10,20,30,35,40,53,59,60,64,70,525
switchport trunk native vlan 525
switchport mode trunk
!
interface Port-channel41
switchport
switchport trunk allowed vlan 10,20,30,35,40,54,59,60,70,233,525
switchport trunk native vlan 525
switchport mode trunk
!
interface Port-channel51
switchport
switchport trunk allowed vlan 10,20,30,35,40,54,55,59,60,64,70,525
switchport trunk native vlan 525
switchport mode trunk
!
interface FastEthernet1
vrf forwarding mgmtVrf
no ip address
shutdown
speed auto
duplex auto
!
interface TenGigabitEthernet1/1
description CO-MDF
switchport trunk allowed vlan 10,20,30,35,40,50,60,70,525
switchport trunk native vlan 525
switchport mode trunk
channel-group 5 mode active
!
interface TenGigabitEthernet1/2
!
interface TenGigabitEthernet1/3
description CO-IDF2-HumanResources
switchport trunk allowed vlan 10,20,30,35,40,52,59,60,70,525
switchport trunk native vlan 525
switchport mode trunk
channel-group 21 mode active
!
interface TenGigabitEthernet1/4
description CO-IDF3
switchport trunk allowed vlan 10,20,30,35,40,53,59,60,64,70,525
switchport trunk native vlan 525
switchport mode trunk
channel-group 31 mode active
!
interface TenGigabitEthernet1/5
description CO-IDF4-Security
switchport trunk allowed vlan 10,20,30,35,40,54,59,60,70,233,525
switchport trunk native vlan 525
switchport mode trunk
channel-group 41 mode active
!
interface TenGigabitEthernet1/6
description CO-IDF5-Facilities
switchport trunk allowed vlan 10,20,30,35,40,54,55,59,60,64,70,525
switchport trunk native vlan 525
switchport mode trunk
channel-group 51 mode active
!
interface TenGigabitEthernet1/7
switchport trunk allowed vlan 10,20,30,35,40,54,59,60,70,233,525
switchport trunk native vlan 525
switchport mode trunk
!
interface TenGigabitEthernet1/8
description CO-IDF9-TechDesk
switchport trunk allowed vlan 10,20,30,35,40,51,60,70
switchport trunk native vlan 10
switchport mode trunk
!
interface TenGigabitEthernet1/9
switchport trunk allowed vlan 10,20,30,35,40,54,60,70
switchport trunk native vlan 10
switchport mode trunk
!
interface TenGigabitEthernet1/10
switchport trunk allowed vlan 10,20,30,35,40,54,59,60,70,233,525
switchport trunk native vlan 10
switchport mode trunk
!
interface TenGigabitEthernet1/11
description NVR-RING5-CENT-10.55.70.11
switchport access vlan 70
switchport mode access
!
interface TenGigabitEthernet1/12
description to Ring#5 CCF Circuit ID 159620
switchport trunk allowed vlan 505
switchport trunk native vlan 525
switchport mode trunk
ip flow monitor netflow-monitor input
udld port disable
no vtp
!
interface TenGigabitEthernet3/1
description CO-MDF
switchport trunk allowed vlan 10,20,30,35,40,50,60,70,525
switchport trunk native vlan 525
switchport mode trunk
channel-group 5 mode active
!
interface TenGigabitEthernet3/2
description CO-Cisco-3825-VG
switchport access vlan 50
switchport mode access
!
interface TenGigabitEthernet3/3
description CO-IDF2-HumanResources
switchport trunk allowed vlan 10,20,30,35,40,52,59,60,70,525
switchport trunk native vlan 525
switchport mode trunk
channel-group 21 mode active
!
interface TenGigabitEthernet3/4
description CO-IDF3
switchport trunk allowed vlan 10,20,30,35,40,53,59,60,64,70,525
switchport trunk native vlan 525
switchport mode trunk
channel-group 31 mode active
!
interface TenGigabitEthernet3/5
description CO-IDF4-Security
switchport trunk allowed vlan 10,20,30,35,40,54,59,60,70,233,525
switchport trunk native vlan 525
switchport mode trunk
channel-group 41 mode active
!
interface TenGigabitEthernet3/6
description CO-IDF5-Facilities
switchport trunk allowed vlan 10,20,30,35,40,54,55,59,60,64,70,525
switchport trunk native vlan 525
switchport mode trunk
channel-group 51 mode active
!
interface TenGigabitEthernet3/7
description NVR-RING5-CENT
switchport access vlan 70
switchport mode access
!
interface TenGigabitEthernet3/8
!
interface Vlan1
no ip address
shutdown
!
interface Vlan10
ip address 192.168.55.1 255.255.255.0
no ip redirects
ip pim sparse-mode
!
interface Vlan20
ip address 10.55.8.1 255.255.248.0
ip access-group users in
ip helper-address 10.1.40.20
ip helper-address 10.21.48.20
ip helper-address 10.1.48.189
no ip redirects
ip directed-broadcast 117
ip pim sparse-mode
!
interface Vlan21
no ip address
ip helper-address 10.1.40.20
ip helper-address 10.21.48.20
ip helper-address 10.1.40.189
shutdown
!
interface Vlan30
description Internet of Things
ip address 10.55.30.1 255.255.254.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
no ip redirects
ip pim sparse-dense-mode
ip igmp static-group 239.1.150.50
ip igmp version 3
!
interface Vlan35
ip address 10.55.35.1 255.255.255.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
ip helper-address 10.1.40.115
ip helper-address 10.1.40.117
ip helper-address 10.1.40.116
no ip redirects
ip pim sparse-mode
!
interface Vlan40
ip address 10.55.40.2 255.255.255.0
no ip redirects
ip pim sparse-mode
!
interface Vlan50
ip address 10.55.50.1 255.255.255.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
no ip redirects
ip pim sparse-mode
!
interface Vlan51
ip address 10.55.51.1 255.255.255.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
no ip redirects
ip pim sparse-mode
!
interface Vlan52
ip address 10.55.52.1 255.255.255.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
no ip redirects
ip pim sparse-mode
!
interface Vlan53
ip address 10.55.53.1 255.255.255.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
no ip redirects
ip pim sparse-mode
!
interface Vlan54
ip address 10.55.54.1 255.255.255.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
no ip redirects
ip pim sparse-mode
!
interface Vlan55
ip address 10.55.55.1 255.255.255.0
ip helper-address 10.1.48.20
no ip redirects
ip pim sparse-mode
!
interface Vlan56
no ip address
ip helper-address 10.1.40.20
ip helper-address 10.21.48.20
shutdown
!
interface Vlan60
ip address 10.55.60.2 255.255.255.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
no ip redirects
ip pim sparse-mode
!
interface Vlan70
description Security Cameras
ip address 10.55.70.1 255.255.254.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
no ip redirects
ip pim sparse-mode
!
interface Vlan72
description Access Control
ip address 10.55.72.1 255.255.255.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
no ip redirects
ip pim sparse-mode
!
interface Vlan107
no ip address
ip helper-address 10.1.40.20
ip helper-address 10.21.48.20
shutdown
!
interface Vlan233
ip address 10.55.233.1 255.255.255.0
!
interface Vlan505
description to Ring #5 CCF Service #S200309
ip address 10.250.205.55 255.255.255.0
ip pim sparse-mode
!
interface Vlan525
no ip address
shutdown
!
interface Vlan666
no ip address
shutdown
!
router ospf 315
router-id 55.55.55.55
area 205 nssa
area 205 range 10.55.0.0 255.255.0.0
passive-interface default
no passive-interface Vlan505
network 10.55.0.0 0.0.255.255 area 205
network 10.250.205.55 0.0.0.0 area 0
network 192.168.55.0 0.0.0.255 area 205
!
ip local policy route-map blue
ip forward-protocol nd
ip forward-protocol udp netbios-ss
ip forward-protocol udp 1512
ip forward-protocol udp discard
no ip http server
no ip http secure-server
ip pim rp-address 10.1.0.1
ip msdp peer 10.1.0.2 connect-source Loopback0
ip msdp peer 10.1.0.3 connect-source Loopback0
ip msdp cache-sa-state
ip msdp mesh-group anycase 10.1.0.2
ip msdp mesh-group anycase 10.1.0.3
!
ip tftp blocksize 8192
ip tacacs source-interface Vlan10
!
ip access-list extended users
deny ip any 192.168.0.0 0.0.255.255
permit ip any any
!
logging trap notifications
logging origin-id hostname
logging facility syslog
logging source-interface Vlan10
logging host 10.1.40.78
access-list 117 permit udp host 10.1.40.189 any eq discard
!
!
snmp-server community mickey03 RO
snmp-server community mouse99 RW
snmp-server trap-source Vlan10
snmp-server location Central Office MDF
snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
snmp-server enable traps flash insertion removal
snmp-server enable traps vlancreate
snmp-server enable traps vlandelete
snmp-server enable traps envmon fan shutdown supply temperature status
snmp-server enable traps config
!
tacacs-server directed-request
tacacs server noc-cp-a
address ipv4 10.1.40.116
key 7 08324F5D0D5A00130752
tacacs server noc-cp-b
address ipv4 10.1.40.117
key 7 08324F5D0D5A00130752
!
!
privilege configure all level 10 logging
privilege exec level 1 connect
privilege exec level 15 telnet
privilege exec level 10 show running-config view full
privilege exec level 10 show running-config view
privilege exec all level 10 show running-config
privilege exec level 10 show
banner motd ^C
!!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!!
! !
! You are accessing a PRIVATE COMPUTING FACILITY. !
! Access to this system is restricted to AUTHORIZED PERSONNEL. !
! !
! Anyone who accesses this system without authorization, or in !
! excess of their authorization could be subject to a fine, !
! imprisonment, or both under Public and Federal Law. By entering !
! this system, you consent to having your accesses and activities !
! monitored and recorded. !
! !
! If this monitoring or record reveals suspected unauthorized !
! or criminal activity, the evidence will be provided !
! to supervisory personnel and law enforcement officials. !
! !
! IF YOU ARE NOT AUTHORIZED TO BE HERE DISCONNECT NOW ! !
! !
!!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!!
^C
alias exec show-running-config show running-config view full
!
line con 0
exec-timeout 0 0
password 7 121C1C12300E0929
logging synchronous
transport preferred none
stopbits 1
line vty 0 4
exec-timeout 0 0
password 7 01001F160A2A02022842
length 0
transport preferred ssh
transport input ssh
line vty 5 15
exec-timeout 15 0
password 7 01001F160A2A02022842
length 0
transport preferred ssh
transport input ssh
!
scheduler runtime netinput 100
ntp server 10.1.1.2 prefer
ntp server 10.1.1.3
!
end