admin/scsd-configs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
scsd-configs/configs/hughes/hughes-4507-01.cfg

1441 lines
39 KiB
INI
Raw Blame History

Building configuration...
Current configuration : 40226 bytes
!
! Last configuration change at 11:08:24 EDT Tue Mar 11 2025 by Jmaxam76.admin
! NVRAM config last updated at 11:08:27 EDT Tue Mar 11 2025 by Jmaxam76.admin
!
version 15.2
no service pad
service timestamps debug datetime localtime
service timestamps log datetime localtime
service password-encryption
service internal
service compress-config
service counters max age 5
!
hostname hughes-4507-01
!
boot-start-marker
boot system flash bootflash:cat4500e-sup8e-firmwareupgrade-151_1r_SG18.SPA
boot system flash bootflash:cat4500e-sup8e-universalk9.SPA.03.11.06.E.152-7.E6.bin
boot-end-marker
!
shell processing full
!
vrf definition mgmtVrf
!
address-family ipv4
exit-address-family
!
address-family ipv6
exit-address-family
!
logging buffered 64000
no logging console
logging monitor notifications
enable secret 5 $1$ye2E$UVbXVXk/R/pl3ZRdhHsyZ1
enable password 7 060316246E4B0C34
!
username admin privilege 15 password 7 120A1C05432A08092325
aaa new-model
!
!
aaa authentication login default group tacacs+ local
aaa authentication enable default group tacacs+ enable
aaa authorization console
aaa authorization exec default group tacacs+ local
aaa accounting exec default start-stop group tacacs+
aaa accounting commands 15 default stop-only group tacacs+
aaa accounting network default start-stop group tacacs+
aaa accounting connection default start-stop group tacacs+
aaa accounting system default start-stop group tacacs+
!
!
!
!
!
!
aaa session-id common
clock timezone EST -5 0
clock summer-time EDT recurring
!
!
!
!
!
udld aggressive
!
!
!
!
!
no ip source-route
!
ip multicast-routing
ip domain-lookup source-interface Loopback0
ip domain-name scsd.ad
ip name-server 10.1.48.200
ip name-server 10.1.40.10
ip name-server 10.21.48.242
ip name-server 10.21.48.243
ip name-server 10.1.9.102
!
!
vtp mode transparent
!
flow record netflow-record
match ipv4 tos
match ipv4 protocol
match ipv4 source address
match ipv4 destination address
match transport source-port
match transport destination-port
match interface input
collect interface output
collect counter bytes long
collect counter packets long
!
!
flow exporter netflow-to-orion
destination 10.1.48.37
source Vlan506
transport udp 2055
!
!
flow monitor netflow-monitor
exporter netflow-to-orion
cache timeout inactive 10
cache timeout active 60
record netflow-record
!
!
crypto pki trustpoint TP-self-signed-18273
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-18273
revocation-check none
rsakeypair TP-self-signed-18273
!
!
crypto pki certificate chain TP-self-signed-18273
certificate self-signed 01
30820221 3082018A A0030201 02020101 300D0609 2A864886 F70D0101 05050030
2C312A30 28060355 04031321 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 31383237 33301E17 0D313431 31313731 31303431 325A170D
32303031 30313030 30303030 5A302C31 2A302806 03550403 1321494F 532D5365
6C662D53 69676E65 642D4365 72746966 69636174 652D3138 32373330 819F300D
06092A86 4886F70D 01010105 0003818D 00308189 02818100 DFF35172 1073F622
FBB10D8B 57B57B34 DF6E1295 EC4D9B01 94DDCFA1 9344AB7E 90074CF5 55291DB9
0C379E82 CDAE5BA9 21D9E088 D3BB8917 0CF0134A 6A6BD95F 75CF95AC 3CEE7DE8
56733E24 FEEA2B2A 847059A4 50BD736B 4998243B 9446B4A0 CC206CD4 2CE8A60F
B40DFF9A FF13DE85 C0EBBDAA 52359191 E1FD3A41 3B27FD4F 02030100 01A35330
51300F06 03551D13 0101FF04 05300301 01FF301F 0603551D 23041830 1680144C
26432FD9 08E0BD4E 5CB15A28 97555BC0 A1F2E130 1D060355 1D0E0416 04144C26
432FD908 E0BD4E5C B15A2897 555BC0A1 F2E1300D 06092A86 4886F70D 01010505
00038181 00A59CF8 5766735D E6A0CF0B 49E786FC 0DF5CC88 B2126DFF 3EE9C701
B2074917 43A34AE9 17E19DB1 4F0B9F54 DC0735BD F8C5457A CA7AB06F 0C1EAFB9
A476A880 7D04CB7E C923AB5F A04F5760 052FC734 65B53E64 99096A64 F8ADD304
7D6E14A9 306B7F73 075CBEE1 B064AE3A 50CAF3D4 1B59D505 4A6D15AF 527AC27A
926D7FCB DB
quit
power redundancy-mode redundant
archive
log config
logging enable
logging size 1000
notify syslog contenttype plaintext
hidekeys
path bootflash:
maximum 5
write-memory
file privilege 10
!
spanning-tree mode rapid-pvst
spanning-tree loopguard default
spanning-tree portfast edge bpduguard default
spanning-tree extend system-id
spanning-tree uplinkfast
spanning-tree backbonefast
spanning-tree vlan 10,20,30,35,40,50-60,64,70 priority 8192
!
redundancy
mode sso
!
vlan internal allocation policy ascending
!
vlan 10
name mgmt
!
vlan 20
name data
!
vlan 30
name IoT
!
vlan 35
name new_wireless
!
vlan 40
name servers
!
vlan 50
name voice_50
!
vlan 51
name voice_51
!
vlan 52
name voice_52
!
vlan 53
name voice_53
!
vlan 54
name voice 54
!
vlan 55
name voice_55
!
vlan 56
name voice_56
!
vlan 60
name Owireless
!
vlan 64
name wireless_64
!
vlan 70
name security_cams
!
vlan 72
name access-control
!
vlan 230
name hvac
!
vlan 251
name stub
!
vlan 506
name CC-Ring
!
vlan 999
name native_stub
lldp run
!
!
class-map match-all AutoQos-4.0-Scavenger-Classify
match access-group name AutoQos-4.0-ACL-Scavenger
class-map match-all AutoQos-4.0-Signaling-Classify
match access-group name AutoQos-4.0-ACL-Signaling
class-map match-any AutoQos-4.0-Priority-Queue
match cos 5
match dscp ef
match dscp cs5
match dscp cs4
class-map match-all AutoQos-4.0-VoIP-Data-Cos
match cos 5
class-map match-any AutoQos-4.0-Multimedia-Stream-Queue
match dscp af31
match dscp af32
match dscp af33
class-map match-all AutoQos-4.0-Network-Mgmt
match dscp cs2
class-map match-all AutoQos-4.0-VoIP-Signal-Cos
match cos 3
class-map match-any AutoQos-4.0-Multimedia-Conf-Queue
match cos 4
match dscp af41
match dscp af42
match dscp af43
match access-group name AutoQos-4.0-ACL-Multimedia-Conf
class-map match-any AutoQos-4.0-Transaction-Data
match dscp af21
match dscp af22
match dscp af23
class-map match-all AutoQos-4.0-Network-Ctrl
match dscp cs7
class-map match-all AutoQos-4.0-Scavenger
match dscp cs1
class-map match-all AutoQos-4.0-Default-Classify
match access-group name AutoQos-4.0-ACL-Default
class-map match-any AutoQos-4.0-Signaling
match dscp cs3
match cos 3
class-map match-any AutoQos-4.0-Bulk-Data-Queue
match cos 1
match dscp af11
match dscp af12
match dscp af13
match access-group name AutoQos-4.0-ACL-Bulk-Data
class-map match-all AutoQos-4.0-Transaction-Classify
match access-group name AutoQos-4.0-ACL-Transactional-Data
class-map match-all AutoQoS-VoIP-RTP-Trust
match ip dscp ef
class-map match-all AutoQoS-VoIP-Control-Trust
match ip dscp cs3 af31
class-map match-all AutoQos-4.0-Broadcast-Vid
match dscp cs5
class-map match-any AutoQos-4.0-Bulk-Data
match dscp af11
match dscp af12
match dscp af13
class-map match-any AutoQos-4.0-Scavenger-Queue
match dscp cs1
match cos 1
match access-group name AutoQos-4.0-ACL-Scavenger
class-map match-any AutoQos-4.0-VoIP
match dscp ef
match cos 5
class-map match-any AutoQos-4.0-Multimedia-Conf
match dscp af41
match dscp af42
match dscp af43
class-map match-any AutoQos-4.0-Control-Mgmt-Queue
match cos 3
match dscp cs7
match dscp cs6
match dscp cs3
match dscp cs2
match access-group name AutoQos-4.0-ACL-Signaling
class-map match-all AutoQos-4.0-Bulk-Data-Classify
match access-group name AutoQos-4.0-ACL-Bulk-Data
class-map match-any AutoQos-4.0-Trans-Data-Queue
match cos 2
match dscp af21
match dscp af22
match dscp af23
match access-group name AutoQos-4.0-ACL-Transactional-Data
class-map match-any AutoQos-4.0-Multimedia-Stream
match dscp af31
match dscp af32
match dscp af33
class-map match-any AutoQos-4.0-VoIP-Data
match dscp ef
match cos 5
class-map match-all AutoQos-4.0-Internetwork-Ctrl
match dscp cs6
class-map match-all AutoQos-4.0-Realtime-Interact
match dscp cs4
class-map match-all AutoQos-4.0-Multimedia-Conf-Classify
match access-group name AutoQos-4.0-ACL-Multimedia-Conf
class-map match-any AutoQos-4.0-VoIP-Signal
match dscp cs3
match cos 3
!
policy-map AutoQos-4.0-Output-Policy
class AutoQos-4.0-Scavenger-Queue
bandwidth remaining percent 1
class AutoQos-4.0-Priority-Queue
priority
police cir percent 30 bc 33 ms
class AutoQos-4.0-Control-Mgmt-Queue
bandwidth remaining percent 10
class AutoQos-4.0-Multimedia-Conf-Queue
bandwidth remaining percent 10
class AutoQos-4.0-Multimedia-Stream-Queue
bandwidth remaining percent 10
class AutoQos-4.0-Trans-Data-Queue
bandwidth remaining percent 10
dbl
class AutoQos-4.0-Bulk-Data-Queue
bandwidth remaining percent 4
dbl
class class-default
bandwidth remaining percent 25
dbl
policy-map AutoQos-4.0-Input-Policy
class AutoQos-4.0-VoIP
class AutoQos-4.0-Broadcast-Vid
class AutoQos-4.0-Realtime-Interact
class AutoQos-4.0-Network-Ctrl
class AutoQos-4.0-Internetwork-Ctrl
class AutoQos-4.0-Signaling
class AutoQos-4.0-Network-Mgmt
class AutoQos-4.0-Multimedia-Conf
class AutoQos-4.0-Multimedia-Stream
class AutoQos-4.0-Transaction-Data
class AutoQos-4.0-Bulk-Data
class AutoQos-4.0-Scavenger
policy-map AutoQos-4.0-Cisco-Phone-Input-Policy
class AutoQos-4.0-VoIP-Data-Cos
set dscp ef
police cir 128000 bc 8000
exceed-action set-dscp-transmit cs1
exceed-action set-cos-transmit 1
class AutoQos-4.0-VoIP-Signal-Cos
set dscp cs3
police cir 32000 bc 8000
exceed-action set-dscp-transmit cs1
exceed-action set-cos-transmit 1
class class-default
set dscp default
set cos 0
policy-map AutoQoS-Police-CiscoPhone
class AutoQoS-VoIP-RTP-Trust
set dscp ef
class AutoQoS-VoIP-Control-Trust
set dscp cs3
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
interface Loopback0
ip address 10.28.254.254 255.255.255.255
!
interface Port-channel11
switchport
switchport trunk allowed vlan 10,20,30,35,40,51,59,60,70,251
switchport trunk native vlan 251
switchport mode trunk
!
interface Port-channel21
switchport
switchport trunk allowed vlan 10,20,30,35,40,52,59,60,70
switchport trunk native vlan 251
switchport mode trunk
!
interface Port-channel31
switchport
switchport trunk allowed vlan 10,20,30,35,40,53,59,60,70,251
switchport trunk native vlan 251
switchport mode trunk
!
interface Port-channel41
switchport
switchport trunk allowed vlan 10,20,30,35,40,54,59,60,70,251
switchport trunk native vlan 251
switchport mode trunk
!
interface FastEthernet1
vrf forwarding mgmtVrf
no ip address
shutdown
speed auto
duplex auto
!
interface TenGigabitEthernet1/1
description *** To mdf-sw1 ***
switchport trunk allowed vlan 10,20,30,35,40,50,59,60,70,251
switchport trunk native vlan 251
switchport mode trunk
shutdown
!
interface TenGigabitEthernet1/2
description *** To hughes-idf104a-sw1 ***
switchport trunk allowed vlan 10,20,30,35,40,51,59,60,70,251
switchport trunk native vlan 251
switchport mode trunk
channel-group 11 mode active
!
interface TenGigabitEthernet1/3
description *** To hughes-idf138a-sw1 ***
switchport trunk allowed vlan 10,20,30,35,40,52,59,60,70
switchport trunk native vlan 251
switchport mode trunk
channel-group 21 mode active
!
interface TenGigabitEthernet1/4
description *** To hughes-idf119b-sw1 ***
switchport trunk allowed vlan 10,20,30,35,40,53,59,60,70,251
switchport trunk native vlan 251
switchport mode trunk
channel-group 31 mode active
!
interface TenGigabitEthernet1/5
description *** hughes-idf225b-sw1 ***
switchport trunk allowed vlan 10,20,30,35,40,54,59,60,70,251
switchport trunk native vlan 251
switchport mode trunk
channel-group 41 mode active
!
interface TenGigabitEthernet1/6
description *** To idf5-sw1 ***
switchport trunk allowed vlan 10,20,30,35,40,55,59,60,70
switchport trunk native vlan 251
switchport mode trunk
shutdown
!
interface TenGigabitEthernet1/7
description *** To idf6-sw1 ***
switchport trunk allowed vlan 10,20,30,35,40,56,59,60,70
switchport trunk native vlan 251
switchport mode trunk
shutdown
!
interface TenGigabitEthernet1/8
shutdown
!
interface TenGigabitEthernet1/9
shutdown
!
interface TenGigabitEthernet1/10
shutdown
!
interface TenGigabitEthernet1/11
!
interface TenGigabitEthernet1/12
!
interface TenGigabitEthernet2/1
description *** To mdf-sw1 ***
switchport trunk allowed vlan 10,20,30,35,40,50,59,60,70,251
switchport trunk native vlan 251
switchport mode trunk
shutdown
!
interface TenGigabitEthernet2/2
description *** To hughes-idf104a-sw1 ***
switchport trunk allowed vlan 10,20,30,35,40,51,59,60,70,251
switchport trunk native vlan 251
switchport mode trunk
channel-group 11 mode active
!
interface TenGigabitEthernet2/3
description *** To hughes-idf138a-sw1 ***
switchport trunk allowed vlan 10,20,30,35,40,52,59,60,70
switchport trunk native vlan 251
switchport mode trunk
channel-group 21 mode active
!
interface TenGigabitEthernet2/4
description *** To hughes-idf119b-sw1 ***
switchport trunk allowed vlan 10,20,30,35,40,53,59,60,70,251
switchport trunk native vlan 251
switchport mode trunk
channel-group 31 mode active
!
interface TenGigabitEthernet2/5
description *** hughes-idf225b-sw1 ***
switchport trunk allowed vlan 10,20,30,35,40,54,59,60,70,251
switchport trunk native vlan 251
switchport mode trunk
channel-group 41 mode active
!
interface TenGigabitEthernet2/6
description *** To idf5-sw1 ***
switchport trunk allowed vlan 10,20,30,35,40,55,59,60,70
switchport trunk native vlan 251
switchport mode trunk
shutdown
!
interface TenGigabitEthernet2/7
description *** To idf6-sw1 ***
switchport trunk allowed vlan 10,20,30,35,40,56,59,60,70
switchport trunk native vlan 251
switchport mode trunk
shutdown
!
interface TenGigabitEthernet2/8
shutdown
!
interface TenGigabitEthernet2/9
shutdown
!
interface TenGigabitEthernet2/10
shutdown
!
interface TenGigabitEthernet2/11
shutdown
!
interface TenGigabitEthernet2/12
shutdown
!
interface TenGigabitEthernet3/1
!
interface TenGigabitEthernet3/2
!
interface TenGigabitEthernet3/3
!
interface TenGigabitEthernet3/4
!
interface TenGigabitEthernet3/5
!
interface TenGigabitEthernet3/6
!
interface TenGigabitEthernet3/7
!
interface TenGigabitEthernet3/8
description to Ring
switchport trunk allowed vlan 506
switchport trunk native vlan 525
switchport mode trunk
ip flow monitor netflow-monitor input
udld port disable
no vtp
!
interface GigabitEthernet5/1
description Connected to UPS
switchport access vlan 10
switchport mode access
spanning-tree portfast edge
spanning-tree bpduguard enable
!
interface GigabitEthernet5/2
description *** To Day Automation Lantronix ***
switchport access vlan 40
switchport mode access
no cdp enable
spanning-tree portfast edge
!
interface GigabitEthernet5/3
description hvac
switchport access vlan 230
switchport mode access
switchport port-security mac-address sticky
ip access-group hvac in
!
interface GigabitEthernet5/4
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/5
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/6
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/7
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/8
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/9
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/10
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/11
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/12
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/13
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/14
description POWERED OFF AP hugh-ap0-2-rm03
switchport access vlan 20
switchport mode access
switchport voice vlan 50
shutdown
power inline consumption 12000
power inline never
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/15
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/16
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/17
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/18
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/19
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/20
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/21
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/22
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/23
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/24
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/25
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/26
description 28-002-PRJ-1A11
switchport access vlan 30
switchport mode access
spanning-tree portfast edge
spanning-tree bpduguard enable
!
interface GigabitEthernet5/27
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/28
description 28-2-PRJ-1A11
switchport access vlan 30
switchport mode access
spanning-tree portfast edge
spanning-tree bpduguard enable
!
interface GigabitEthernet5/29
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/30
description 28-004-PRJ-1A39
switchport access vlan 30
switchport mode access
spanning-tree portfast edge
spanning-tree bpduguard enable
!
interface GigabitEthernet5/31
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/32
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/33
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/34
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/35
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/36
description Day Automation Lantronix to (old) 256 unit
switchport access vlan 20
switchport mode access
switchport voice vlan 50
speed 10
duplex half
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/37
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/38
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/39
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/40
description video doorbell test
switchport access vlan 70
switchport mode access
spanning-tree portfast edge
!
interface GigabitEthernet5/41
description video doorbell
switchport access vlan 70
switchport mode access
spanning-tree portfast edge
!
interface GigabitEthernet5/42
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/43
description Connected to UPS
switchport access vlan 10
switchport mode access
spanning-tree portfast edge
spanning-tree bpduguard enable
!
interface GigabitEthernet5/44
description Connected to APC Smart UPS 5000
switchport access vlan 10
switchport mode access
speed 100
duplex full
spanning-tree portfast edge
spanning-tree bpduguard enable
!
interface GigabitEthernet5/45
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/46
description *** To Voice and Data Endpoints ***
switchport access vlan 20
switchport mode access
switchport voice vlan 50
auto qos voip cisco-phone
qos trust device cisco-phone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Phone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!
interface GigabitEthernet5/47
description *** To Wireless APs ***
switchport trunk allowed vlan 35,59
switchport trunk native vlan 35
switchport mode trunk
!
interface GigabitEthernet5/48
description *** Connected to 3725 Router ***
switchport access vlan 50
switchport mode access
duplex full
!
interface Vlan1
no ip address
no ip route-cache
shutdown
!
interface Vlan10
ip address 192.168.28.1 255.255.255.0
no ip redirects
ip pim sparse-mode
no ip route-cache cef
!
interface Vlan20
ip address 10.28.1.1 255.255.248.0
ip access-group users in
ip helper-address 10.1.40.20
ip helper-address 10.21.48.20
ip helper-address 10.1.48.189
no ip redirects
ip directed-broadcast 117
ip pim sparse-mode
!
interface Vlan21
no ip address
ip helper-address 10.1.40.20
ip helper-address 10.21.48.20
ip helper-address 10.1.40.189
shutdown
!
interface Vlan30
description Internet of Things
ip address 10.28.30.1 255.255.254.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
no ip redirects
ip pim sparse-mode
!
interface Vlan35
ip address 10.28.35.1 255.255.255.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
ip helper-address 10.1.40.115
ip helper-address 10.1.40.117
ip helper-address 10.1.40.116
no ip redirects
ip pim sparse-mode
!
interface Vlan40
ip address 10.28.40.2 255.255.255.0
no ip redirects
ip pim sparse-mode
!
interface Vlan50
ip address 10.28.50.1 255.255.255.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
no ip redirects
ip pim sparse-mode
!
interface Vlan51
ip address 10.28.51.1 255.255.255.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
no ip redirects
ip pim sparse-mode
!
interface Vlan52
ip address 10.28.52.1 255.255.255.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
no ip redirects
ip pim sparse-mode
!
interface Vlan53
ip address 10.28.53.1 255.255.255.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
no ip redirects
ip pim sparse-mode
!
interface Vlan54
ip address 10.28.54.1 255.255.255.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
no ip redirects
ip pim sparse-mode
!
interface Vlan55
ip address 10.28.55.1 255.255.255.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
no ip redirects
ip pim sparse-mode
shutdown
!
interface Vlan56
ip address 10.28.56.1 255.255.255.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
no ip redirects
ip pim sparse-mode
shutdown
!
interface Vlan59
no ip address
!
interface Vlan60
ip address 10.28.60.2 255.255.255.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
no ip redirects
ip pim sparse-mode
!
interface Vlan64
ip address 10.28.64.1 255.255.252.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
shutdown
!
interface Vlan70
description Security Cameras
ip address 10.28.70.1 255.255.254.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
no ip redirects
ip pim sparse-mode
!
interface Vlan72
description Access Control
ip address 10.28.72.1 255.255.255.0
ip helper-address 10.21.48.20
ip helper-address 10.1.40.20
no ip redirects
ip pim sparse-mode
!
interface Vlan107
no ip address
ip helper-address 10.1.40.20
ip helper-address 10.21.48.20
shutdown
!
interface Vlan230
ip address 10.28.230.1 255.255.255.224
!
interface Vlan506
description to Ring #6 CCF Service #S200310
ip address 10.250.206.28 255.255.255.0
ip pim sparse-mode
!
interface Vlan999
no ip address
!
router ospf 315
router-id 28.28.28.28
area 206 nssa
area 206 range 10.28.0.0 255.255.0.0
summary-address 10.28.0.0 255.255.252.0
passive-interface default
no passive-interface Vlan506
network 10.28.230.0 0.0.0.31 area 206
network 10.28.0.0 0.0.255.255 area 206
network 10.250.206.28 0.0.0.0 area 0
network 192.168.28.0 0.0.0.255 area 206
!
ip local policy route-map blue
ip forward-protocol nd
ip forward-protocol udp netbios-ss
ip forward-protocol udp 1512
ip forward-protocol udp discard
ip tcp mss 1350
no ip http server
no ip http secure-server
ip pim rp-address 10.1.0.1
ip msdp peer 10.1.0.2 connect-source Loopback0
ip msdp peer 10.1.0.3 connect-source Loopback0
ip msdp cache-sa-state
ip msdp mesh-group anycase 10.1.0.2
ip msdp mesh-group anycase 10.1.0.3
!
ip tftp blocksize 8192
ip route 0.0.0.0 0.0.0.0 192.168.28.2 200 name CradlePointPOC
ip tacacs source-interface Vlan10
ip ssh version 2
!
ip access-list extended AutoQos-4.0-ACL-Bulk-Data
permit tcp any any eq ftp
permit tcp any any eq ftp-data
permit tcp any any eq 22
permit tcp any any eq smtp
permit tcp any any eq 465
permit tcp any any eq 143
permit tcp any any eq 993
permit tcp any any eq pop3
permit tcp any any eq 995
permit tcp any any eq 1914
ip access-list extended AutoQos-4.0-ACL-Default
permit ip any any
ip access-list extended AutoQos-4.0-ACL-Multimedia-Conf
permit udp any any range 16384 32767
ip access-list extended AutoQos-4.0-ACL-Scavenger
permit tcp any any eq 1214
permit udp any any eq 1214
permit tcp any any range 2300 2400
permit udp any any range 2300 2400
permit tcp any any eq 3689
permit udp any any eq 3689
permit tcp any any range 6881 6999
permit tcp any any eq 11999
permit tcp any any range 28800 29100
ip access-list extended AutoQos-4.0-ACL-Signaling
permit tcp any any range 2000 2002
permit tcp any any range 5060 5061
permit udp any any range 5060 5061
ip access-list extended AutoQos-4.0-ACL-Transactional-Data
permit tcp any any eq 443
permit tcp any any eq 1521
permit udp any any eq 1521
permit tcp any any eq 1526
permit udp any any eq 1526
permit tcp any any eq 1575
permit udp any any eq 1575
permit tcp any any eq 1630
permit udp any any eq 1630
ip access-list extended hvac
permit tcp host 10.28.230.11 host 10.1.230.11
permit icmp host 10.28.230.11 host 10.1.230.11 log
permit tcp host 10.28.230.11 host 10.1.40.108
permit icmp host 10.28.230.11 host 10.1.40.108 log
ip access-list extended users
deny ip any 192.168.0.0 0.0.255.255
permit ip any any
!
logging trap notifications
logging origin-id hostname
logging facility syslog
logging host 10.1.40.78
access-list 100 permit udp 10.9.30.0 0.0.1.255 any
access-list 100 permit tcp 10.9.30.0 0.0.1.255 any
access-list 101 permit udp 10.9.30.0 0.0.1.255 any
access-list 101 permit tcp 10.9.30.0 0.0.1.255 any
access-list 101 permit udp any 10.9.30.0 0.0.1.255
access-list 101 permit tcp any 10.9.30.0 0.0.1.255
access-list 101 permit udp any 10.9.60.0 0.0.0.255
access-list 101 permit tcp any 10.9.60.0 0.0.0.255
access-list 101 permit udp 10.9.60.0 0.0.0.255 any
access-list 101 permit tcp 10.9.60.0 0.0.0.255 any
access-list 103 permit udp 10.9.60.0 0.0.0.255 any
access-list 103 permit tcp 10.9.60.0 0.0.0.255 any
access-list 117 permit udp host 10.1.40.189 any eq discard
!
!
route-map blue permit 10
match ip address 100
set ip next-hop 10.28.30.1
!
route-map blue permit 12
match ip address 103
set ip next-hop 10.28.60.1
!
route-map blue permit 20
!
route-map blue-in permit 10
match ip address 101
set ip next-hop 10.28.40.1
!
route-map blue-in permit 20
!
snmp-server community mickey03 RO
snmp-server community mouse99 RW
snmp-server trap-source Vlan10
snmp-server location HUGHES-MDF
snmp-server system-shutdown
snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
snmp-server enable traps flash insertion removal
snmp-server enable traps vtp
snmp-server enable traps vlancreate
snmp-server enable traps vlandelete
snmp-server enable traps envmon fan shutdown supply temperature status
snmp-server enable traps config
snmp-server enable traps stpx root-inconsistency loop-inconsistency
snmp-server enable traps syslog
snmp-server enable traps vlan-membership
snmp-server enable traps mac-notification change move threshold
!
tacacs server noc-cp-a
address ipv4 10.1.40.116
key 7 08324F5D0D5A00130752
tacacs server noc-cp-b
address ipv4 10.1.40.117
key 7 08324F5D0D5A00130752
!
!
privilege configure all level 10 logging
privilege exec level 1 connect
privilege exec level 15 telnet
privilege exec level 10 show running-config view full
privilege exec level 10 show running-config view
privilege exec all level 10 show running-config
privilege exec level 10 show
banner motd ^C
!!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!!
! !
! You are accessing a PRIVATE COMPUTING FACILITY. !
! Access to this system is restricted to AUTHORIZED PERSONNEL. !
! !
! Anyone who accesses this system without authorization, or in !
! excess of their authorization could be subject to a fine, !
! imprisonment, or both under Public and Federal Law. By entering !
! this system, you consent to having your accesses and activities !
! monitored and recorded. !
! !
! If this monitoring or record reveals suspected unauthorized !
! or criminal activity, the evidence will be provided !
! to supervisory personnel and law enforcement officials. !
! !
! IF YOU ARE NOT AUTHORIZED TO BE HERE DISCONNECT NOW ! !
! !
!!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!!
^C
alias exec show-running-config show running-config view full
!
line con 0
exec-timeout 0 0
password 7 121C1C12300E0929
logging synchronous
transport preferred none
stopbits 1
line vty 0 4
exec-timeout 0 0
password 7 01001F160A2A02022842
length 0
transport preferred ssh
transport input ssh
line vty 5 15
exec-timeout 15 0
password 7 01001F160A2A02022842
length 0
transport preferred ssh
transport input ssh
!
scheduler runtime netinput 100
ntp server 10.1.1.2 prefer
ntp server 10.1.1.3
!
end
Reference in New Issue View Git Blame Copy Permalink