Building configuration... Current configuration : 16234 bytes ! ! Last configuration change at 07:43:18 EDT Tue Mar 31 2026 by jpoland.oa ! NVRAM config last updated at 07:43:18 EDT Tue Mar 31 2026 by jpoland.oa ! version 15.2 no service pad service timestamps debug datetime localtime service timestamps log datetime localtime service password-encryption service internal service compress-config service counters max age 5 ! hostname co-mdf-4507 ! boot-start-marker boot system flash bootflash:cat4500e-sup8e-firmwareupgrade-151_1r_SG18.SPA boot system flash bootflash:cat4500e-sup8e-universalk9.SPA.03.11.06.E.152-7.E6.bin boot-end-marker ! shell processing full ! vrf definition mgmtVrf ! address-family ipv4 exit-address-family ! address-family ipv6 exit-address-family ! logging buffered 32000 no logging console logging monitor notifications enable secret 5 $1$vrY6$gaMotB2AQXmZHjZxe5B240 enable password 7 0301420E240A2461 ! username admin privilege 15 password 7 1501121E550B2F29213D aaa new-model ! ! aaa authentication login default group tacacs+ local aaa authentication enable default group tacacs+ enable aaa authorization console aaa authorization exec default group tacacs+ local aaa accounting exec default start-stop group tacacs+ aaa accounting commands 15 default stop-only group tacacs+ aaa accounting network default start-stop group tacacs+ aaa accounting connection default start-stop group tacacs+ aaa accounting system default start-stop group tacacs+ ! ! ! ! ! ! aaa session-id common clock timezone EST -5 0 clock summer-time EDT recurring ! ! ! ! ! udld aggressive ! ! ! ! ! ! ip multicast-routing no ip domain-lookup ip domain-name scsd.ad ! ! ! flow record netflow-record match ipv4 tos match ipv4 protocol match ipv4 source address match ipv4 destination address match transport source-port match transport destination-port match interface input collect interface output collect counter bytes long collect counter packets long ! ! flow exporter netflow-to-orion destination 10.1.48.37 source Vlan505 transport udp 2055 ! ! flow monitor netflow-monitor exporter netflow-to-orion cache timeout inactive 10 cache timeout active 60 record netflow-record ! ! ! power redundancy-mode redundant archive log config logging enable logging size 1000 notify syslog contenttype plaintext hidekeys path bootflash: maximum 5 file privilege 10 object-group network day-enterprise-servers description day-enterprise-servers host 10.1.230.11 host 10.1.40.108 ! object-group network dns-servers description Internal-DNS-Servers host 10.1.40.10 host 10.1.48.11 ! object-group network ntp-servers host 10.1.40.154 host 10.1.48.103 ! ! spanning-tree mode rapid-pvst spanning-tree loopguard default spanning-tree portfast edge bpduguard default spanning-tree extend system-id spanning-tree uplinkfast spanning-tree backbonefast spanning-tree vlan 10,20,30,35,40,50-60,64,70 priority 8192 ! redundancy mode sso ! ! vlan configuration 505 ip flow monitor netflow-monitor input vlan internal allocation policy ascending lldp run ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! interface Loopback0 ip address 10.55.254.254 255.255.255.255 ! interface Port-channel5 switchport switchport trunk allowed vlan 10,20,30,35,40,50,60,70,525 switchport trunk native vlan 525 switchport mode trunk ! interface Port-channel21 switchport switchport trunk allowed vlan 10,20,30,35,40,52,59,60,70,525 switchport trunk native vlan 525 switchport mode trunk ! interface Port-channel31 switchport switchport trunk allowed vlan 10,20,30,35,40,53,59,60,64,70,525 switchport trunk native vlan 525 switchport mode trunk ! interface Port-channel41 switchport switchport trunk allowed vlan 10,20,30,35,40,54,59,60,70,233,525 switchport trunk native vlan 525 switchport mode trunk ! interface Port-channel51 switchport switchport trunk allowed vlan 10,20,30,35,40,54,55,59,60,64,70,525 switchport trunk native vlan 525 switchport mode trunk ! interface FastEthernet1 vrf forwarding mgmtVrf no ip address shutdown speed auto duplex auto ! interface TenGigabitEthernet1/1 description CO-MDF switchport trunk allowed vlan 10,20,30,35,40,50,60,70,525 switchport trunk native vlan 525 switchport mode trunk channel-group 5 mode active ! interface TenGigabitEthernet1/2 ! interface TenGigabitEthernet1/3 description CO-IDF2-HumanResources switchport trunk allowed vlan 10,20,30,35,40,52,59,60,70,525 switchport trunk native vlan 525 switchport mode trunk channel-group 21 mode active ! interface TenGigabitEthernet1/4 description CO-IDF3 switchport trunk allowed vlan 10,20,30,35,40,53,59,60,64,70,525 switchport trunk native vlan 525 switchport mode trunk channel-group 31 mode active ! interface TenGigabitEthernet1/5 description CO-IDF4-Security switchport trunk allowed vlan 10,20,30,35,40,54,59,60,70,233,525 switchport trunk native vlan 525 switchport mode trunk channel-group 41 mode active ! interface TenGigabitEthernet1/6 description CO-IDF5-Facilities switchport trunk allowed vlan 10,20,30,35,40,54,55,59,60,64,70,525 switchport trunk native vlan 525 switchport mode trunk channel-group 51 mode active ! interface TenGigabitEthernet1/7 switchport trunk allowed vlan 10,20,30,35,40,54,59,60,70,233,525 switchport trunk native vlan 525 switchport mode trunk ! interface TenGigabitEthernet1/8 description CO-IDF9-TechDesk switchport trunk allowed vlan 10,20,30,35,40,51,60,70 switchport trunk native vlan 10 switchport mode trunk ! interface TenGigabitEthernet1/9 switchport trunk allowed vlan 10,20,30,35,40,54,60,70 switchport trunk native vlan 10 switchport mode trunk ! interface TenGigabitEthernet1/10 switchport trunk allowed vlan 10,20,30,35,40,54,59,60,70,233,525 switchport trunk native vlan 10 switchport mode trunk ! interface TenGigabitEthernet1/11 description NVR-RING5-CENT-10.55.70.11 switchport access vlan 70 switchport mode access ! interface TenGigabitEthernet1/12 description to Ring#5 CCF Circuit ID 159620 switchport trunk allowed vlan 505,515,525,535 switchport trunk native vlan 699 switchport mode trunk ip flow monitor netflow-monitor input udld port disable no vtp ! interface TenGigabitEthernet3/1 description CO-MDF switchport trunk allowed vlan 10,20,30,35,40,50,60,70,525 switchport trunk native vlan 525 switchport mode trunk channel-group 5 mode active ! interface TenGigabitEthernet3/2 description CO-Cisco-3825-VG switchport access vlan 50 switchport mode access ! interface TenGigabitEthernet3/3 description CO-IDF2-HumanResources switchport trunk allowed vlan 10,20,30,35,40,52,59,60,70,525 switchport trunk native vlan 525 switchport mode trunk channel-group 21 mode active ! interface TenGigabitEthernet3/4 description CO-IDF3 switchport trunk allowed vlan 10,20,30,35,40,53,59,60,64,70,525 switchport trunk native vlan 525 switchport mode trunk channel-group 31 mode active ! interface TenGigabitEthernet3/5 description CO-IDF4-Security switchport trunk allowed vlan 10,20,30,35,40,54,59,60,70,233,525 switchport trunk native vlan 525 switchport mode trunk channel-group 41 mode active ! interface TenGigabitEthernet3/6 description CO-IDF5-Facilities switchport trunk allowed vlan 10,20,30,35,40,54,55,59,60,64,70,525 switchport trunk native vlan 525 switchport mode trunk channel-group 51 mode active ! interface TenGigabitEthernet3/7 description NVR-RING5-CENT switchport access vlan 70 switchport mode access ! interface TenGigabitEthernet3/8 ! interface Vlan1 no ip address shutdown ! interface Vlan10 ip address 192.168.55.1 255.255.255.0 no ip redirects ip pim sparse-mode ! interface Vlan20 ip address 10.55.8.1 255.255.248.0 ip access-group users in ip helper-address 10.1.40.20 ip helper-address 10.21.48.20 ip helper-address 10.1.48.189 ip helper-address 10.1.40.19 no ip redirects ip directed-broadcast 117 ip pim sparse-mode ! interface Vlan21 no ip address ip helper-address 10.1.40.20 ip helper-address 10.21.48.20 ip helper-address 10.1.40.189 ip helper-address 10.1.40.19 shutdown ! interface Vlan30 description Internet of Things ip address 10.55.30.1 255.255.254.0 ip helper-address 10.21.48.20 ip helper-address 10.1.40.20 ip helper-address 10.1.40.19 no ip redirects ip pim sparse-dense-mode ip igmp static-group 239.1.150.50 ip igmp version 3 ! interface Vlan35 ip address 10.55.35.1 255.255.255.0 ip helper-address 10.21.48.20 ip helper-address 10.1.40.20 ip helper-address 10.1.40.115 ip helper-address 10.1.40.117 ip helper-address 10.1.40.116 ip helper-address 10.1.40.19 no ip redirects ip pim sparse-mode ! interface Vlan40 ip address 10.55.40.2 255.255.255.0 no ip redirects ip pim sparse-mode ! interface Vlan50 ip address 10.55.50.1 255.255.255.0 ip helper-address 10.21.48.20 ip helper-address 10.1.40.20 ip helper-address 10.1.40.19 no ip redirects ip pim sparse-mode ! interface Vlan51 ip address 10.55.51.1 255.255.255.0 ip helper-address 10.21.48.20 ip helper-address 10.1.40.20 ip helper-address 10.1.40.19 no ip redirects ip pim sparse-mode ! interface Vlan52 ip address 10.55.52.1 255.255.255.0 ip helper-address 10.21.48.20 ip helper-address 10.1.40.20 ip helper-address 10.1.40.19 no ip redirects ip pim sparse-mode ! interface Vlan53 ip address 10.55.53.1 255.255.255.0 ip helper-address 10.21.48.20 ip helper-address 10.1.40.20 ip helper-address 10.1.40.19 no ip redirects ip pim sparse-mode ! interface Vlan54 ip address 10.55.54.1 255.255.255.0 ip helper-address 10.21.48.20 ip helper-address 10.1.40.20 ip helper-address 10.1.40.19 no ip redirects ip pim sparse-mode ! interface Vlan55 ip address 10.55.55.1 255.255.255.0 ip helper-address 10.1.48.20 ip helper-address 10.1.40.19 no ip redirects ip pim sparse-mode ! interface Vlan56 no ip address ip helper-address 10.1.40.20 ip helper-address 10.21.48.20 ip helper-address 10.1.40.19 shutdown ! interface Vlan60 ip address 10.55.60.2 255.255.255.0 ip helper-address 10.21.48.20 ip helper-address 10.1.40.20 ip helper-address 10.1.40.19 no ip redirects ip pim sparse-mode ! interface Vlan70 description Security Cameras ip address 10.55.70.1 255.255.254.0 ip helper-address 10.21.48.20 ip helper-address 10.1.40.20 ip helper-address 10.1.40.19 no ip redirects ip pim sparse-mode ! interface Vlan72 description Access Control ip address 10.55.72.1 255.255.255.0 ip helper-address 10.21.48.20 ip helper-address 10.1.40.20 ip helper-address 10.1.40.19 no ip redirects ip pim sparse-mode ! interface Vlan107 no ip address ip helper-address 10.1.40.20 ip helper-address 10.21.48.20 ip helper-address 10.1.40.19 shutdown ! interface Vlan230 ip address 10.55.230.1 255.255.255.224 ip access-group hvac in shutdown ! interface Vlan233 ip address 10.55.233.1 255.255.255.0 ! interface Vlan505 description to Ring #5 CCF Service #S200309 ip address 10.250.205.55 255.255.255.0 ip pim sparse-mode ip ospf cost 3000 ! interface Vlan515 description ring5_ct-b ip address 10.254.215.55 255.255.255.0 ip pim sparse-mode ip ospf cost 4000 ! interface Vlan525 description ring5_sh-a ip address 10.254.225.55 255.255.255.0 ip pim sparse-mode ip ospf cost 1000 ! interface Vlan535 description ring5_sh-b ip address 10.254.235.55 255.255.255.0 ip pim sparse-mode ip ospf cost 2000 ! interface Vlan666 no ip address shutdown ! router ospf 315 router-id 55.55.55.55 area 205 nssa area 205 range 10.55.0.0 255.255.0.0 passive-interface default no passive-interface Vlan505 no passive-interface Vlan515 no passive-interface Vlan525 no passive-interface Vlan535 network 10.55.0.0 0.0.255.255 area 205 network 10.250.205.55 0.0.0.0 area 0 network 10.254.215.55 0.0.0.0 area 0 network 10.254.225.55 0.0.0.0 area 0 network 10.254.235.55 0.0.0.0 area 0 network 192.168.55.0 0.0.0.255 area 205 ! ip local policy route-map blue ip forward-protocol nd ip forward-protocol udp netbios-ss ip forward-protocol udp 1512 ip forward-protocol udp discard no ip http server no ip http secure-server ip pim rp-address 10.1.0.1 ip msdp peer 10.1.0.2 connect-source Loopback0 ip msdp peer 10.1.0.3 connect-source Loopback0 ip msdp cache-sa-state ip msdp mesh-group anycase 10.1.0.2 ip msdp mesh-group anycase 10.1.0.3 ! ip tftp blocksize 8192 ip tacacs source-interface Vlan10 ip ssh version 2 ip ssh dh min size 4096 ip ssh server algorithm mac hmac-sha2-256 hmac-sha2-512 ip ssh server algorithm encryption aes256-ctr aes128-ctr ip ssh server algorithm kex diffie-hellman-group14-sha1 ip ssh server algorithm publickey x509v3-ssh-rsa ! ip access-list extended hvac permit ip 10.55.230.0 0.0.0.31 object-group day-enterprise-servers permit udp 10.55.230.0 0.0.0.31 object-group dns-servers eq domain permit udp 10.55.230.0 0.0.0.31 object-group ntp-servers eq ntp permit icmp 10.55.230.0 0.0.0.31 host 10.55.230.1 permit icmp host 10.55.230.1 10.55.230.0 0.0.0.31 deny ip any 10.0.0.0 0.255.255.255 deny ip any 192.168.0.0 0.0.255.255 deny ip any 172.16.0.0 0.15.255.255 permit tcp 10.55.230.0 0.0.0.31 any eq 587 log-input ip access-list extended users deny ip any 192.168.0.0 0.0.255.255 permit ip any any ! logging trap notifications logging origin-id hostname logging facility syslog logging source-interface Vlan10 logging host 10.1.40.78 access-list 117 permit udp host 10.1.40.189 any eq discard ! ! snmp-server community mickey03 RO snmp-server community mouse99 RW snmp-server trap-source Vlan10 snmp-server location Central Office MDF snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart snmp-server enable traps flash insertion removal snmp-server enable traps vlancreate snmp-server enable traps vlandelete snmp-server enable traps envmon fan shutdown supply temperature status snmp-server enable traps config ! tacacs-server directed-request tacacs server noc-cp-a address ipv4 10.1.40.116 key 7 08324F5D0D5A00130752 tacacs server noc-cp-b address ipv4 10.1.40.117 key 7 08324F5D0D5A00130752 ! ! privilege configure all level 10 logging privilege exec level 1 connect privilege exec level 15 telnet privilege exec level 10 show running-config view full privilege exec level 10 show running-config view privilege exec all level 10 show running-config privilege exec level 10 show banner motd ^C !!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!! ! ! ! You are accessing a PRIVATE COMPUTING FACILITY. ! ! Access to this system is restricted to AUTHORIZED PERSONNEL. ! ! ! ! Anyone who accesses this system without authorization, or in ! ! excess of their authorization could be subject to a fine, ! ! imprisonment, or both under Public and Federal Law. By entering ! ! this system, you consent to having your accesses and activities ! ! monitored and recorded. ! ! ! ! If this monitoring or record reveals suspected unauthorized ! ! or criminal activity, the evidence will be provided ! ! to supervisory personnel and law enforcement officials. ! ! ! ! IF YOU ARE NOT AUTHORIZED TO BE HERE DISCONNECT NOW ! ! ! ! !!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!! WARNING !!!!! ^C alias exec show-running-config show running-config view full ! line con 0 exec-timeout 0 0 password 7 121C1C12300E0929 logging synchronous transport preferred none stopbits 1 line vty 0 4 exec-timeout 0 0 password 7 01001F160A2A02022842 length 0 transport preferred ssh transport input ssh line vty 5 15 exec-timeout 15 0 password 7 01001F160A2A02022842 length 0 transport preferred ssh transport input ssh ! scheduler runtime netinput 100 ntp server 10.1.1.2 prefer ntp server 10.1.1.3 ! end