Scribd Logo
Hochladen

Willkommen bei Scribd!

  • PET-CORE-SW 2may2015

    Hochgeladen von

    THAVIN LAY
    17 Ansichten14 Seiten

    Originaltitel

    PET-CORE-SW 2May2015

    Copyright

    © © All Rights Reserved

    Verfügbare Formate

    DOCX, PDF, TXT oder online auf Scribd lesen

    Stufen Sie dieses Dokument als nützlich ein?

    Sind diese Inhalte unangemessen?

    Dieses Dokument melden

    Copyright:

    © All Rights Reserved
    Als DOCX, PDF, TXT herunterladen oder online auf Scribd lesen
    Markieren Sie unangemessene Inhalte
    17 Ansichten14 Seiten

    PET-CORE-SW 2may2015

    Hochgeladen von

    THAVIN LAY

    Copyright:

    © All Rights Reserved
    Als DOCX, PDF, TXT herunterladen oder online auf Scribd lesen
    Markieren Sie unangemessene Inhalte
    von 14

    !

    ! Last configuration change at 22:52:12 GMT Tue Jan 17 2006 by


    H$D$CSUSER2013
    ! NVRAM config last updated at 15:36:02 GMT Sat Apr 25 2015 by
    H$D$CSUSER2013
    !
    version 15.0
    no service pad
    service timestamps debug datetime msec localtime
    service timestamps log datetime msec localtime
    service password-encryption
    service sequence-numbers
    !
    hostname HP-CORE-SW
    !
    boot-start-marker
    boot-end-marker
    !
    enable secret 5 $1$QFrS$wtQSnlv/ucK5LdIVSZb7z.
    !
    username H$D$CSUSER2013 privilege 15 secret 5
    $1$Sn3k$E5T7r69tQT6RQwt9bn2Z20
    username readonly privilege 5 secret 5 $1$cJKJ$mN7YfAsrM4lch2tr/QDU81
    no aaa new-model
    clock timezone GMT 7 0
    switch 1 provision ws-c3750x-24
    switch 2 provision ws-c3750x-24
    system mtu routing 1500
    ip routing
    !
    !
    no ip domain-lookup
    ip domain-name holiday-palace.com
    ip name-server 119.82.248.67
    ip name-server 119.82.249.10
    ip name-server 8.8.8.8
    login on-failure log
    login on-success log
    stack-power switch 1
    !
    vtp mode transparent
    !
    !
    crypto pki trustpoint TP-self-signed-1448559872
    enrollment selfsigned
    subject-name cn=IOS-Self-Signed-Certificate-1448559872
    revocation-check none
    rsakeypair TP-self-signed-1448559872
    !
    !
    crypto pki certificate chain TP-self-signed-1448559872
    certificate self-signed 01
    30820255 308201BE A0030201 02020101 300D0609 2A864886 F70D0101 04050030
    31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
    69666963 6174652D 31343438 35353938 3732301E 170D3933 30333031 30303031
    34375A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
    4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D31 34343835
    35393837 3230819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
    8100B122 8F373F61 11FDF9D9 13BBEEF7 2F312794 A34CDA8B B7C8FC5E 7B7055BA
    75FFB0ED 7FEB3411 2BA7F279 A38BFCFE 52CAE52C 91642021 C16E06C7 2F77C71E
    D39AA733 DB1C643F D4F62655 4A4540E0 28209774 27FA3D0D 6B6B8924 AC007F49
    31A90D89 404804A3 4C0DA17E 0168902F 217EDE15 6FCDEFDA B11736B0 7BB79C60
    27330203 010001A3 7D307B30 0F060355 1D130101 FF040530 030101FF 30280603
    551D1104 21301F82 1D48502D 434F5245 2D53572E 686F6C69 6461792D 70616C61
    63652E63 6F6D301F 0603551D 23041830 16801444 F9BA9E71 A8190BD8 966F3230
    50186BAC AC0E2530 1D060355 1D0E0416 041444F9 BA9E71A8 190BD896 6F323050
    186BACAC 0E25300D 06092A86 4886F70D 01010405 00038181 001328A3 B7EB3B61
    04D87134 BA52719F 7834CD14 E103B1BF 709CD0BA BB26E495 10835F01 17C4D516
    CBA179DE 07306B26 E141FF15 0DA604CD 48D33E86 6E5E29D6 39747B2A C289336E
    01280940 207DB99B 7597BBC5 E774BF13 AC5521B6 DCC750D0 AF694B5D 60819CEF
    CDBDC2F8 7F9239D9 A549E468 C3611D40 36C4E03C 2369E1E9 96
    quit
    archive
    path tftp://172.16.5.201/$h-$t
    !
    !
    !
    !
    spanning-tree mode rapid-pvst
    spanning-tree extend system-id
    no spanning-tree vlan 16-17
    spanning-tree vlan 1,5-7,10-15,17-18,21-22,30,40 priority 4096
    !
    !
    !
    errdisable recovery cause udld
    errdisable recovery cause bpduguard
    errdisable recovery cause security-violation
    errdisable recovery cause channel-misconfig (STP)
    errdisable recovery cause pagp-flap
    errdisable recovery cause dtp-flap
    errdisable recovery cause link-flap
    errdisable recovery cause sfp-config-mismatch
    errdisable recovery cause gbic-invalid
    errdisable recovery cause l2ptguard
    errdisable recovery cause psecure-violation
    errdisable recovery cause port-mode-failure
    errdisable recovery cause dhcp-rate-limit
    errdisable recovery cause pppoe-ia-rate-limit
    errdisable recovery cause mac-limit
    errdisable recovery cause vmps
    errdisable recovery cause storm-control
    errdisable recovery cause inline-power
    errdisable recovery cause arp-inspection
    errdisable recovery cause loopback
    errdisable recovery cause small-frame
    errdisable recovery cause psp
    errdisable recovery interval 30
    !
    !
    vlan access-map mgmt 10
    match ip address mgmt
    action drop
    vlan access-map mgmt 20
    match ip address allow
    action forward
    !
    vlan internal allocation policy ascending
    !
    vlan 5
    name Network-Management
    !
    vlan 10
    name Office-VLAN
    !
    vlan 11
    name Dealer-Network
    !
    vlan 12
    name KPS-Dialer
    !
    vlan 13
    name PNH
    !
    vlan 14
    name HKG
    !
    vlan 15
    name CSZ
    !
    vlan 16
    name Ezecom
    !
    vlan 17
    name Mekong
    !
    vlan 18
    name HSRPGrp
    !
    vlan 30
    name TestingEnv-VLAN
    !
    ip ssh version 2
    !
    !
    !
    !
    !
    interface Port-channel1
    description ** Connected to SW-Office-F0/47-48 **
    switchport trunk encapsulation dot1q
    switchport trunk allowed vlan 1,5,10-12
    switchport mode trunk
    logging event link-status
    logging event status
    load-interval 30
    !
    interface Port-channel2
    description ** Connected to TestingEnv-G0/23-24 **
    switchport trunk encapsulation dot1q
    switchport trunk allowed vlan 1,5,30
    switchport mode trunk
    logging event link-status
    logging event status
    load-interval 30
    !
    interface Port-channel6
    description Link to RTPETToHKG-Etherchannel1
    switchport access vlan 14
    switchport mode access
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast
    !
    interface Port-channel7
    description Link to R3PETToPNH-P1
    switchport trunk encapsulation dot1q
    switchport mode trunk
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast trunk
    !
    interface Port-channel8
    description Link to RT1-PortChannel1
    switchport trunk encapsulation dot1q
    switchport mode trunk
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast trunk
    !
    interface Port-channel9
    description Link to RT2-PortChannel1
    switchport trunk encapsulation dot1q
    switchport mode trunk
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    !
    interface Port-channel10
    description Link to MGMTSW-PortChannel1
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    !
    interface FastEthernet0
    no ip address
    no ip route-cache
    !
    interface GigabitEthernet1/0/1
    shutdown
    !
    interface GigabitEthernet1/0/2
    shutdown
    !
    interface GigabitEthernet1/0/3
    shutdown
    !
    interface GigabitEthernet1/0/4
    shutdown
    !
    interface GigabitEthernet1/0/5
    shutdown
    !
    interface GigabitEthernet1/0/6
    description Link to KOS Ezecom Switch
    switchport access vlan 12
    switchport mode access
    switchport port-security maximum 3
    switchport port-security
    switchport port-security violation restrict
    switchport port-security mac-address sticky
    switchport port-security mac-address sticky 10bf.4877.8243
    switchport port-security mac-address sticky 10bf.4877.8245
    switchport port-security mac-address sticky 10bf.4877.8258
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    storm-control broadcast level 10.00
    storm-control action trap
    !
    interface GigabitEthernet1/0/7
    description Link to ASAFW01-G0/0
    switchport access vlan 18
    switchport mode access
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast
    !
    interface GigabitEthernet1/0/8
    description Link to ASAFW02-G0/0
    switchport access vlan 18
    switchport mode access
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast
    !
    interface GigabitEthernet1/0/9
    description Link to R3PETToPNH-G0/1
    switchport trunk encapsulation dot1q
    switchport mode trunk
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast
    channel-group 7 mode on
    !
    interface GigabitEthernet1/0/10
    shutdown
    !
    interface GigabitEthernet1/0/11
    shutdown
    !
    interface GigabitEthernet1/0/12
    description Link to ASAFW01-G0/5
    switchport access vlan 15
    switchport mode access
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast
    !
    interface GigabitEthernet1/0/13
    description Link to ASAIPS01-G0/0
    switchport access vlan 15
    switchport mode access
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast
    !
    interface GigabitEthernet1/0/14
    description Link to ASAIPS02-G0/0
    switchport access vlan 15
    switchport mode access
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast
    !
    interface GigabitEthernet1/0/15
    description Link to ASAFW01-G0/7
    switchport trunk encapsulation dot1q
    switchport mode trunk
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast trunk
    !
    interface GigabitEthernet1/0/16
    description Link to ASAFW02-G0/7
    switchport trunk encapsulation dot1q
    switchport mode trunk
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast trunk
    !
    interface GigabitEthernet1/0/17
    description Link to RT1-G0/1
    switchport trunk encapsulation dot1q
    switchport mode trunk
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast trunk
    channel-group 8 mode on
    !
    interface GigabitEthernet1/0/18
    description Link to Ezecom ISP
    switchport access vlan 16
    switchport mode access
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast
    !
    interface GigabitEthernet1/0/19
    description Link to RT2-G0/1
    switchport trunk encapsulation dot1q
    switchport mode trunk
    logging event link-status
    logging event status
    load-interval 30
    channel-group 9 mode on
    !
    interface GigabitEthernet1/0/20
    description Link to RT1-G0/0
    switchport trunk encapsulation dot1q
    switchport mode trunk
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast trunk
    channel-group 8 mode on
    !
    interface GigabitEthernet1/0/21
    description ** Connected to Testing-Env-G0/47 **
    switchport trunk encapsulation dot1q
    switchport trunk allowed vlan 1,5,30
    switchport mode trunk
    logging event link-status
    logging event status
    load-interval 30
    channel-group 2 mode on
    !
    interface GigabitEthernet1/0/22
    description ** Connected to SW-Office-F0/47-48 **
    switchport trunk encapsulation dot1q
    switchport trunk allowed vlan 1,5,10-12
    switchport mode trunk
    logging event link-status
    logging event status
    load-interval 30
    channel-group 1 mode on
    !
    interface GigabitEthernet1/0/23
    description Link to MGMTSW-G0/1
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    channel-group 10 mode on
    !
    interface GigabitEthernet1/0/24
    description Link to HP-SW-CSZ-G0/48
    switchport access vlan 5
    switchport mode access
    !
    interface GigabitEthernet1/1/1
    shutdown
    !
    interface GigabitEthernet1/1/2
    shutdown
    !
    interface GigabitEthernet1/1/3
    shutdown
    !
    interface GigabitEthernet1/1/4
    shutdown
    !
    interface TenGigabitEthernet1/1/1
    !
    interface TenGigabitEthernet1/1/2
    !
    interface GigabitEthernet2/0/1
    shutdown
    !
    interface GigabitEthernet2/0/2
    shutdown
    !
    interface GigabitEthernet2/0/3
    shutdown
    !
    interface GigabitEthernet2/0/4
    shutdown
    !
    interface GigabitEthernet2/0/5
    shutdown
    !
    interface GigabitEthernet2/0/6
    shutdown
    !
    interface GigabitEthernet2/0/7
    description Link to ASAFW01-G0/1
    switchport access vlan 18
    switchport mode access
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast
    !
    interface GigabitEthernet2/0/8
    description Link to ASAFW02-G0/1
    switchport access vlan 18
    switchport mode access
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast
    !
    interface GigabitEthernet2/0/9
    description Link to R3PETToPNH-G0/2
    switchport trunk encapsulation dot1q
    switchport mode trunk
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast
    channel-group 7 mode on
    !
    interface GigabitEthernet2/0/10
    description Link to RTPETToHKG-G0/1
    switchport access vlan 14
    switchport mode access
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast
    channel-group 6 mode on
    !
    interface GigabitEthernet2/0/11
    description Link to ASAFW02-G0/4
    switchport access vlan 14
    switchport mode access
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast
    !
    interface GigabitEthernet2/0/12
    description Link to ASAFW02-G0/5
    switchport access vlan 15
    switchport mode access
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast
    !
    interface GigabitEthernet2/0/13
    description Link to ASAIPS01-G0/1
    switchport access vlan 15
    switchport mode access
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast
    !
    interface GigabitEthernet2/0/14
    description Link to ASAIPS02-G0/1
    switchport access vlan 15
    switchport mode access
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast
    !
    interface GigabitEthernet2/0/15
    description Link to ASAFW02-G0/7
    switchport trunk encapsulation dot1q
    switchport mode trunk
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast trunk
    !
    interface GigabitEthernet2/0/16
    description Link to ASAFW02-G0/7
    switchport trunk encapsulation dot1q
    switchport mode trunk
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast
    !
    interface GigabitEthernet2/0/17
    description Link to RT1-G0/2
    switchport trunk encapsulation dot1q
    switchport mode trunk
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast trunk
    channel-group 8 mode on
    !
    interface GigabitEthernet2/0/18
    description Link to Mekong ISP
    switchport access vlan 17
    switchport mode access
    logging event link-status
    logging event status
    load-interval 30
    spanning-tree portfast
    !
    interface GigabitEthernet2/0/19
    description Link to RT2-G0/2
    switchport trunk encapsulation dot1q
    switchport mode trunk
    logging event link-status
    logging event status
    load-interval 30
    channel-group 9 mode on
    !
    interface GigabitEthernet2/0/20
    description Link to RT2-G0/0
    switchport trunk encapsulation dot1q
    switchport mode trunk
    logging event link-status
    logging event status
    load-interval 30
    channel-group 9 mode on
    !
    interface GigabitEthernet2/0/21
    description ** Connected to Testing-Env-G0/48 **
    switchport trunk encapsulation dot1q
    switchport trunk allowed vlan 1,5,30
    switchport mode trunk
    logging event link-status
    logging event status
    load-interval 30
    channel-group 2 mode on
    !
    interface GigabitEthernet2/0/22
    description ** Connected to SW-Office-F0/47-48 **
    switchport trunk encapsulation dot1q
    switchport trunk allowed vlan 1,5,10-12
    switchport mode trunk
    logging event link-status
    logging event status
    load-interval 30
    channel-group 1 mode on
    !
    interface GigabitEthernet2/0/23
    description Link to MGMT-G0/2
    ip flow ingress
    ip flow egress
    logging event link-status
    logging event status
    load-interval 30
    channel-group 10 mode on
    !
    interface GigabitEthernet2/0/24
    description Link to HP-SW-DMZ-G0/21
    switchport access vlan 5
    switchport mode access
    !
    interface GigabitEthernet2/1/1
    shutdown
    !
    interface GigabitEthernet2/1/2
    shutdown
    !
    interface GigabitEthernet2/1/3
    shutdown
    !
    interface GigabitEthernet2/1/4
    shutdown
    !
    interface TenGigabitEthernet2/1/1
    !
    interface TenGigabitEthernet2/1/2
    !
    interface Vlan1
    no ip address
    !
    interface Vlan5
    ip address 172.16.5.5 255.255.255.0
    !
    interface Vlan17
    no ip address
    !
    interface Vlan18
    ip address 172.16.8.254 255.255.255.0
    !
    interface Vlan104
    ip address 192.168.3.253 255.255.255.0
    !
    ip default-gateway 172.16.5.1
    ip http server
    ip http secure-server
    ip flow-cache timeout inactive 10
    ip flow-cache timeout active 1
    ip flow-export version 5
    ip flow-export destination 172.16.5.207 9991
    ip flow-export destination 172.16.5.208 2055
    !
    ip route 0.0.0.0 0.0.0.0 172.16.5.1
    !
    ip access-list extended allow
    permit ip any any
    ip access-list extended mgmt
    permit ip host 172.16.5.207 host 172.16.8.3
    permit ip host 172.16.5.207 host 172.16.5.20
    !
    kron occurrence Backup at 7:00 recurring system-startup
    policy-list CONFIGURATION_BACKUP
    !
    kron policy-list CONFIGURATION_BACKUP
    cli archive config
    !
    logging esm config
    logging trap debugging
    logging facility local2
    logging 172.16.5.208
    no cdp run
    snmp-server community secret RO
    snmp-server enable traps snmp authentication linkdown linkup coldstart
    warmstart
    snmp-server enable traps tty
    snmp-server enable traps syslog
    snmp-server host 172.16.5.204 secret
    snmp-server host 172.16.5.208 secret
    !
    privilege configure all level 5 line
    privilege configure all level 5 snmp-server
    privilege configure all level 5 router
    privilege configure all level 5 interface
    privilege configure all level 5 ip
    privilege configure all level 5 timezone
    privilege configure all level 5 aaa
    privilege configure all level 5 username
    privilege configure all level 5 enable
    privilege configure all level 5 logging
    privilege configure all level 5 hostname
    privilege configure all level 5 service
    privilege exec all level 5 show running-config
    privilege exec all level 5 show
    !
    line con 0
    exec-timeout 3 0
    logging synchronous
    login local
    line vty 0 4
    exec-timeout 5 0
    logging synchronous
    login local
    length 0
    transport input ssh
    line vty 5 15
    exec-timeout 5 0
    logging synchronous
    login local
    transport input ssh
    !
    ntp authentication-key 1 md5 135445415F5952 7
    ntp authenticate
    ntp trusted-key 1
    ntp master 1
    ntp server 118.67.200.10
    ntp server 203.176.128.11 prefer
    end

    Das könnte Ihnen auch gefallen