- 积分
- 433
- 鸿鹄币
- 个
- 好评度
- 点
- 精华
- 最后登录
- 1970-1-1
- 阅读权限
- 30
- 听众
- 收听
初级工程师
|
发表于 2022-8-3 23:31:27
|
显示全部楼层
no service pad
service timestamps debug datetime msec localtime
service timestamps log datetime
service password-encryption
service unsupported-transceiver
!
hostname shanghai_40f_as_2960x_01
!
boot-start-marker
boot-end-marker
!
no shell processing
enable secret 5 $1$jW0Y$gt9rSjUHdVnYxD/sMJzhf/
!
username naVer password 7 014A150F5A0F0A392747581050
aaa new-model
!
!
aaa authentication login default group tacacs+ local
aaa authentication enable default group tacacs+ enable
aaa authorization config-commands
aaa authorization exec default group tacacs+ local
aaa authorization commands 15 default group tacacs+ local
aaa accounting exec default start-stop group tacacs+
aaa accounting commands 0 default start-stop group tacacs+
aaa accounting commands 1 default start-stop group tacacs+
aaa accounting commands 15 default start-stop group tacacs+
!
lldp run
!
141F1707000B
clock timezone KST 9
system mtu 1500
vtp mode transparent
ip subnet-zero
!
!
no ip domain-lookup
ip domain-name navercorp.com
!
errdisable recovery cause bpduguard
errdisable recovery interval 3600
!
spanning-tree mode rapid-pvst
spanning-tree etherchannel guard misconfig
spanning-tree extend system-id
!
vlan internal allocation policy ascending
!
vlan 10
name wired_MGMT
!
vlan 20
name connect_guest
!
vlan 30
name BB-FW
!
vlan 40
name wireless_MGMT
!
vlan 50
name connect_wlan
!
vlan 60
name IPT
!
ip ssh version 2
!
interface FastEthernet0
no ip address
shutdown
!
interface GigabitEthernet1/0/1
description ## to shanghai_40f_AP225_01 10.35.24.81 ##
switchport trunk native vlan 40
switchport trunk allowed vlan 2-4094
switchport mode trunk
!
interface GigabitEthernet1/0/2
description ## to shanghai_40f_AP225_02 10.35.24.82 ##
switchport trunk native vlan 40
switchport trunk allowed vlan 2-4094
switchport mode trunk
!
interface GigabitEthernet1/0/3
description ## to shanghai_40f_AP225_03 10.35.24.83 ##
switchport trunk native vlan 40
switchport trunk allowed vlan 2-4094
switchport mode trunk
!
interface range GigabitEthernet1/0/4 - 46
switchport access vlan 10
switchport mode access
storm-control broadcast level 0.50
storm-control multicast level 0.50
storm-control unicast level 0.50
storm-control action trap
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/47
description ## to shanghai_35f_bb_c4948_01 Gi1/4 10.35.24.2 ##
switchport mode trunk
!
interface GigabitEthernet1/0/48
description ## to shanghai_35f_bb_c4948_02 Gi1/4 10.35.24.3 ##
switchport mode trunk
!
interface GigabitEthernet1/0/49
!
interface GigabitEthernet1/0/50
!
interface TenGigabitEthernet1/0/1
!
interface TenGigabitEthernet1/0/2
!
interface Vlan1
no ip address
no ip route-cache
shutdown
!
interface Vlan10
ip address 10.35.24.18 255.255.255.192
no ip redirects
no ip unreachables
no ip proxy-arp
no ip route-cache
no shutdown
!
ip default-gateway 10.35.24.1
no ip http server
no ip http secure-server
ip tacacs source-interface Vlan10
logging trap notifications
logging facility local3
logging source-interface Vlan10
logging 10.25.130.16
logging 10.22.64.88
access-list 5 permit 10.25.194.0 0.0.0.255
access-list 5 permit 10.25.130.0 0.0.0.127
access-list 5 permit 10.64.62.0 0.0.0.255
access-list 5 permit 10.67.17.32 0.0.0.15
access-list 5 permit 10.35.24.0 0.0.0.63
access-list 5 permit 10.112.130.102 0.0.0.1
access-list 10 permit 10.112.141.128 0.0.0.63
access-list 10 permit 10.25.130.0 0.0.0.127
access-list 10 permit 10.96.0.0 0.0.0.255
access-list 10 permit 10.47.23.0 0.0.0.255
access-list 10 permit 10.140.23.0 0.0.0.255
access-list 10 permit 10.136.23.0 0.0.0.255
access-list 10 permit 10.138.23.0 0.0.0.255
access-list 10 permit 172.24.59.192 0.0.0.63
access-list 10 permit 10.112.128.0 0.0.0.63
access-list 10 permit 172.24.60.58 0.0.0.1
access-list 10 permit 172.18.12.0 0.0.0.15
access-list 10 permit 10.25.194.0 0.0.0.255
snmp-server community wltlrdls`12 RO 10
snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
snmp-server enable traps transceiver all
snmp-server enable traps tty
snmp-server enable traps cluster
snmp-server enable traps entity
snmp-server enable traps cpu threshold
snmp-server enable traps vtp
snmp-server enable traps vlancreate
snmp-server enable traps vlandelete
snmp-server enable traps flash insertion removal
snmp-server enable traps port-security
snmp-server enable traps auth-framework sec-violation
snmp-server enable traps envmon fan shutdown supply temperature status
snmp-server enable traps config-copy
snmp-server enable traps config
snmp-server enable traps config-ctid
snmp-server enable traps bridge newroot topologychange
snmp-server enable traps stpx inconsistency root-inconsistency loop-inconsistency
snmp-server enable traps syslog
snmp-server enable traps mac-notification change move threshold
snmp-server enable traps vlan-membership
snmp-server enable traps errdisable
tacacs-server host 10.118.150.150
tacacs-server timeout 1
tacacs-server directed-request
tacacs-server key 7 131116110A0F172A6A046B
!
banner login ^CC
=======================================================================================
>>>shanghai_40f_as_2960x_01 <<<
! WARNING: Authorized Access Only.
! This system is the property of NAVER.
! UNAUTHORIZED ACCESS TO THIS DEVICE IS PROHIBITED.
! You must have explicit permission to access or configure this device.
! All activities performed on this device may be logged.
! Any violations of this policy may result in disciplinary action,
! and may be reported to law enforcement. There is no right to privacy on this device.
=======================================================================================
^C
!
line con 0
exec-timeout 5 0
logging synchronous
line vty 0 4
access-class 5 in
line vty 5 15
access-class 5 in
exec-timeout 5 0
logging synchronous
transport preferred none
!
ntp clock-period 36029496
ntp server 10.35.24.2 prefer
ntp server 10.35.24.3 no service pad
service timestamps debug datetime msec localtime
service timestamps log datetime
service password-encryption
service unsupported-transceiver
!
hostname shanghai_40f_as_2960x_01
!
boot-start-marker
boot-end-marker
!
no shell processing
enable secret 5 $1$jW0Y$gt9rSjUHdVnYxD/sMJzhf/
!
username naVer password 7 014A150F5A0F0A392747581050
aaa new-model
!
!
aaa authentication login default group tacacs+ local
aaa authentication enable default group tacacs+ enable
aaa authorization config-commands
aaa authorization exec default group tacacs+ local
aaa authorization commands 15 default group tacacs+ local
aaa accounting exec default start-stop group tacacs+
aaa accounting commands 0 default start-stop group tacacs+
aaa accounting commands 1 default start-stop group tacacs+
aaa accounting commands 15 default start-stop group tacacs+
!
lldp run
!
141F1707000B
clock timezone KST 9
system mtu 1500
vtp mode transparent
ip subnet-zero
!
!
no ip domain-lookup
ip domain-name navercorp.com
!
errdisable recovery cause bpduguard
errdisable recovery interval 3600
!
spanning-tree mode rapid-pvst
spanning-tree etherchannel guard misconfig
spanning-tree extend system-id
!
vlan internal allocation policy ascending
!
vlan 10
name wired_MGMT
!
vlan 20
name connect_guest
!
vlan 30
name BB-FW
!
vlan 40
name wireless_MGMT
!
vlan 50
name connect_wlan
!
vlan 60
name IPT
!
ip ssh version 2
!
interface FastEthernet0
no ip address
shutdown
!
interface GigabitEthernet1/0/1
description ## to shanghai_40f_AP225_01 10.35.24.81 ##
switchport trunk native vlan 40
switchport trunk allowed vlan 2-4094
switchport mode trunk
!
interface GigabitEthernet1/0/2
description ## to shanghai_40f_AP225_02 10.35.24.82 ##
switchport trunk native vlan 40
switchport trunk allowed vlan 2-4094
switchport mode trunk
!
interface GigabitEthernet1/0/3
description ## to shanghai_40f_AP225_03 10.35.24.83 ##
switchport trunk native vlan 40
switchport trunk allowed vlan 2-4094
switchport mode trunk
!
interface range GigabitEthernet1/0/4 - 46
switchport access vlan 10
switchport mode access
storm-control broadcast level 0.50
storm-control multicast level 0.50
storm-control unicast level 0.50
storm-control action trap
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/47
description ## to shanghai_35f_bb_c4948_01 Gi1/4 10.35.24.2 ##
switchport mode trunk
!
interface GigabitEthernet1/0/48
description ## to shanghai_35f_bb_c4948_02 Gi1/4 10.35.24.3 ##
switchport mode trunk
!
interface GigabitEthernet1/0/49
!
interface GigabitEthernet1/0/50
!
interface TenGigabitEthernet1/0/1
!
interface TenGigabitEthernet1/0/2
!
interface Vlan1
no ip address
no ip route-cache
shutdown
!
interface Vlan10
ip address 10.35.24.18 255.255.255.192
no ip redirects
no ip unreachables
no ip proxy-arp
no ip route-cache
no shutdown
!
ip default-gateway 10.35.24.1
no ip http server
no ip http secure-server
ip tacacs source-interface Vlan10
logging trap notifications
logging facility local3
logging source-interface Vlan10
logging 10.25.130.16
logging 10.22.64.88
access-list 5 permit 10.25.194.0 0.0.0.255
access-list 5 permit 10.25.130.0 0.0.0.127
access-list 5 permit 10.64.62.0 0.0.0.255
access-list 5 permit 10.67.17.32 0.0.0.15
access-list 5 permit 10.35.24.0 0.0.0.63
access-list 5 permit 10.112.130.102 0.0.0.1
access-list 10 permit 10.112.141.128 0.0.0.63
access-list 10 permit 10.25.130.0 0.0.0.127
access-list 10 permit 10.96.0.0 0.0.0.255
access-list 10 permit 10.47.23.0 0.0.0.255
access-list 10 permit 10.140.23.0 0.0.0.255
access-list 10 permit 10.136.23.0 0.0.0.255
access-list 10 permit 10.138.23.0 0.0.0.255
access-list 10 permit 172.24.59.192 0.0.0.63
access-list 10 permit 10.112.128.0 0.0.0.63
access-list 10 permit 172.24.60.58 0.0.0.1
access-list 10 permit 172.18.12.0 0.0.0.15
access-list 10 permit 10.25.194.0 0.0.0.255
snmp-server community wltlrdls`12 RO 10
snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
snmp-server enable traps transceiver all
snmp-server enable traps tty
snmp-server enable traps cluster
snmp-server enable traps entity
snmp-server enable traps cpu threshold
snmp-server enable traps vtp
snmp-server enable traps vlancreate
snmp-server enable traps vlandelete
snmp-server enable traps flash insertion removal
snmp-server enable traps port-security
snmp-server enable traps auth-framework sec-violation
snmp-server enable traps envmon fan shutdown supply temperature status
snmp-server enable traps config-copy
snmp-server enable traps config
snmp-server enable traps config-ctid
snmp-server enable traps bridge newroot topologychange
snmp-server enable traps stpx inconsistency root-inconsistency loop-inconsistency
snmp-server enable traps syslog
snmp-server enable traps mac-notification change move threshold
snmp-server enable traps vlan-membership
snmp-server enable traps errdisable
tacacs-server host 10.118.150.150
tacacs-server timeout 1
tacacs-server directed-request
tacacs-server key 7 131116110A0F172A6A046B
!
banner login ^CC
=======================================================================================
>>>shanghai_40f_as_2960x_01 <<<
! WARNING: Authorized Access Only.
! This system is the property of NAVER.
! UNAUTHORIZED ACCESS TO THIS DEVICE IS PROHIBITED.
! You must have explicit permission to access or configure this device.
! All activities performed on this device may be logged.
! Any violations of this policy may result in disciplinary action,
! and may be reported to law enforcement. There is no right to privacy on this device.
=======================================================================================
^C
!
line con 0
exec-timeout 5 0
logging synchronous
line vty 0 4
access-class 5 in
line vty 5 15
access-class 5 in
exec-timeout 5 0
logging synchronous
transport preferred none
!
ntp clock-period 36029496
ntp server 10.35.24.2 prefer
ntp server 10.35.24.3 no service pad
service timestamps debug datetime msec localtime
service timestamps log datetime
service password-encryption
service unsupported-transceiver
!
hostname shanghai_40f_as_2960x_01
!
boot-start-marker
boot-end-marker
!
no shell processing
enable secret 5 $1$jW0Y$gt9rSjUHdVnYxD/sMJzhf/
!
username naVer password 7 014A150F5A0F0A392747581050
aaa new-model
!
!
aaa authentication login default group tacacs+ local
aaa authentication enable default group tacacs+ enable
aaa authorization config-commands
aaa authorization exec default group tacacs+ local
aaa authorization commands 15 default group tacacs+ local
aaa accounting exec default start-stop group tacacs+
aaa accounting commands 0 default start-stop group tacacs+
aaa accounting commands 1 default start-stop group tacacs+
aaa accounting commands 15 default start-stop group tacacs+
!
lldp run
!
141F1707000B
clock timezone KST 9
system mtu 1500
vtp mode transparent
ip subnet-zero
!
!
no ip domain-lookup
ip domain-name navercorp.com
!
errdisable recovery cause bpduguard
errdisable recovery interval 3600
!
spanning-tree mode rapid-pvst
spanning-tree etherchannel guard misconfig
spanning-tree extend system-id
!
vlan internal allocation policy ascending
!
vlan 10
name wired_MGMT
!
vlan 20
name connect_guest
!
vlan 30
name BB-FW
!
vlan 40
name wireless_MGMT
!
vlan 50
name connect_wlan
!
vlan 60
name IPT
!
ip ssh version 2
!
interface FastEthernet0
no ip address
shutdown
!
interface GigabitEthernet1/0/1
description ## to shanghai_40f_AP225_01 10.35.24.81 ##
switchport trunk native vlan 40
switchport trunk allowed vlan 2-4094
switchport mode trunk
!
interface GigabitEthernet1/0/2
description ## to shanghai_40f_AP225_02 10.35.24.82 ##
switchport trunk native vlan 40
switchport trunk allowed vlan 2-4094
switchport mode trunk
!
interface GigabitEthernet1/0/3
description ## to shanghai_40f_AP225_03 10.35.24.83 ##
switchport trunk native vlan 40
switchport trunk allowed vlan 2-4094
switchport mode trunk
!
interface range GigabitEthernet1/0/4 - 46
switchport access vlan 10
switchport mode access
storm-control broadcast level 0.50
storm-control multicast level 0.50
storm-control unicast level 0.50
storm-control action trap
spanning-tree portfast
spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/47
description ## to shanghai_35f_bb_c4948_01 Gi1/4 10.35.24.2 ##
switchport mode trunk
!
interface GigabitEthernet1/0/48
description ## to shanghai_35f_bb_c4948_02 Gi1/4 10.35.24.3 ##
switchport mode trunk
!
interface GigabitEthernet1/0/49
!
interface GigabitEthernet1/0/50
!
interface TenGigabitEthernet1/0/1
!
interface TenGigabitEthernet1/0/2
!
interface Vlan1
no ip address
no ip route-cache
shutdown
!
interface Vlan10
ip address 10.35.24.18 255.255.255.192
no ip redirects
no ip unreachables
no ip proxy-arp
no ip route-cache
no shutdown
!
ip default-gateway 10.35.24.1
no ip http server
no ip http secure-server
ip tacacs source-interface Vlan10
logging trap notifications
logging facility local3
logging source-interface Vlan10
logging 10.25.130.16
logging 10.22.64.88
access-list 5 permit 10.25.194.0 0.0.0.255
access-list 5 permit 10.25.130.0 0.0.0.127
access-list 5 permit 10.64.62.0 0.0.0.255
access-list 5 permit 10.67.17.32 0.0.0.15
access-list 5 permit 10.35.24.0 0.0.0.63
access-list 5 permit 10.112.130.102 0.0.0.1
access-list 10 permit 10.112.141.128 0.0.0.63
access-list 10 permit 10.25.130.0 0.0.0.127
access-list 10 permit 10.96.0.0 0.0.0.255
access-list 10 permit 10.47.23.0 0.0.0.255
access-list 10 permit 10.140.23.0 0.0.0.255
access-list 10 permit 10.136.23.0 0.0.0.255
access-list 10 permit 10.138.23.0 0.0.0.255
access-list 10 permit 172.24.59.192 0.0.0.63
access-list 10 permit 10.112.128.0 0.0.0.63
access-list 10 permit 172.24.60.58 0.0.0.1
access-list 10 permit 172.18.12.0 0.0.0.15
access-list 10 permit 10.25.194.0 0.0.0.255
snmp-server community wltlrdls`12 RO 10
snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
snmp-server enable traps transceiver all
snmp-server enable traps tty
snmp-server enable traps cluster
snmp-server enable traps entity
snmp-server enable traps cpu threshold
snmp-server enable traps vtp
snmp-server enable traps vlancreate
snmp-server enable traps vlandelete
snmp-server enable traps flash insertion removal
snmp-server enable traps port-security
snmp-server enable traps auth-framework sec-violation
snmp-server enable traps envmon fan shutdown supply temperature status
snmp-server enable traps config-copy
snmp-server enable traps config
snmp-server enable traps config-ctid
snmp-server enable traps bridge newroot topologychange
snmp-server enable traps stpx inconsistency root-inconsistency loop-inconsistency
snmp-server enable traps syslog
snmp-server enable traps mac-notification change move threshold
snmp-server enable traps vlan-membership
snmp-server enable traps errdisable
tacacs-server host 10.118.150.150
tacacs-server timeout 1
tacacs-server directed-request
tacacs-server key 7 131116110A0F172A6A046B
!
banner login ^CC
=======================================================================================
>>>shanghai_40f_as_2960x_01 <<<
! WARNING: Authorized Access Only.
! This system is the property of NAVER.
! UNAUTHORIZED ACCESS TO THIS DEVICE IS PROHIBITED.
! You must have explicit permission to access or configure this device.
! All activities performed on this device may be logged.
! Any violations of this policy may result in disciplinary action,
! and may be reported to law enforcement. There is no right to privacy on this device.
=======================================================================================
^C
!
line con 0
exec-timeout 5 0
logging synchronous
line vty 0 4
access-class 5 in
line vty 5 15
access-class 5 in
exec-timeout 5 0
logging synchronous
transport preferred none
!
ntp clock-period 36029496
ntp server 10.35.24.2 prefer
ntp server 10.35.24.3 |
622#
2022-8-3 23:31:27
回复(0)
收起回复
|
简体中文
英语
日语
韩语
法语
西班牙语
越南语
泰语
阿拉伯语
俄语
葡萄牙语
德语
意大利语
希腊语
荷兰语
波兰语
保加利亚语
爱沙尼亚语
丹麦语
芬兰语
捷克语
罗马尼亚语
斯洛文尼亚语
瑞典语
匈牙利语
繁体中文
文言文
[复制链接]
