Scribd Logo
Upload

Welcome to Scribd!

  • Switch Configuration File

    Uploaded by

    Mahmoud Magdy
    31 views7 pages
    This document contains configuration settings for a network switch, including: - Settings for SSD control, unit types, VLANs, voice VLAN OUIs, protocols, interfaces, and RADIUS/TACACS authentication. - Port security, storm control, and VLAN trunking settings are configured for multiple Gigabit Ethernet interfaces. - RADIUS and TACACS servers are configured for authentication, along with user accounts and privileges.

    Original Description:

    Original Title

    New Text Document (3)

    Copyright

    © © All Rights Reserved

    Available Formats

    TXT, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document contains configuration settings for a network switch, including: - Settings for SSD control, unit types, VLANs, voice VLAN OUIs, protocols, interfaces, and RADIUS/TACACS authentication. - Port security, storm control, and VLAN trunking settings are configured for multiple Gigabit Ethernet interfaces. - RADIUS and TACACS servers are configured for authentication, along with user accounts and privileges.

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    31 views7 pages

    Switch Configuration File

    Uploaded by

    Mahmoud Magdy
    This document contains configuration settings for a network switch, including: - Settings for SSD control, unit types, VLANs, voice VLAN OUIs, protocols, interfaces, and RADIUS/TACACS authentication. - Port security, storm control, and VLAN trunking settings are configured for multiple Gigabit Ethernet interfaces. - RADIUS and TACACS servers are configured for authentication, along with user accounts and privileges.

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 7

    config-file-header

    switcha1fba1
    v2.5.0.83 / RTESLA2.5_930_364_091
    CLI v1.0
    file SSD indicator encrypted
    @
    ssd-control-start
    ssd config
    ssd file passphrase control unrestricted
    no ssd file integrity control
    ssd-control-end cb0a3fdb1f3a1af4e4430033719968c0
    !
    !
    unit-type-control-start
    unit-type unit 1 network gi uplink te
    unit-type unit 2 network gi uplink te
    unit-type unit 3 network gi uplink te
    unit-type unit 4 network gi uplink te
    unit-type unit 5 network gi uplink te
    unit-type unit 6 network gi uplink te
    unit-type unit 7 network gi uplink te
    unit-type unit 8 network gi uplink te
    unit-type-control-end
    !
    vlan database
    vlan 60,65,96,98,102,104,110-111,114,116,200
    exit
    voice vlan oui-table add 0001e3 Siemens_AG_phone________
    voice vlan oui-table add 00036b Cisco_phone_____________
    voice vlan oui-table add 00096e Avaya___________________
    voice vlan oui-table add 000fe2 H3C_Aolynk______________
    voice vlan oui-table add 0060b9 Philips_and_NEC_AG_phone
    voice vlan oui-table add 00d01e Pingtel_phone___________
    voice vlan oui-table add 00e075 Polycom/Veritel_phone___
    voice vlan oui-table add 00e0bb 3Com_phone______________
    dot1x system-auth-control
    errdisable recovery interval 600
    errdisable recovery cause stp-bpdu-guard
    errdisable recovery cause udld
    bonjour interface range vlan 1
    radius server enable
    radius server traps accounting
    radius server traps authentication failure
    radius server traps authentication success
    ip access-list extended ACL-ALLOW
    permit ip any any ace-priority 20
    exit
    ip access-list extended ACL-DEFAULT
    deny ip any any ace-priority 20 log-input
    exit
    ip access-list extended ACL_WEBAUTH_REDIRECT
    deny ip any any ace-priority 20
    exit
    ip access-list extended Poster_Redirection_ACL
    exit
    hostname switcha1fba1
    encrypted radius-server host 10.10.60.5 key
    AR0EvVLMGAD24At8AbZCRXJgLKYwPRAx3qYDTZqk8Go= priority 1
    encrypted radius-server host 10.10.60.6 key
    AR0EvVLMGAD24At8AbZCRXJgLKYwPRAx3qYDTZqk8Go= priority 2
    radius-server host source-interface vlan 60
    logging source-interface vlan 60
    ip http authentication aaa login-authentication http local tacacs radius
    ip http authentication aaa login-authentication https radius local
    aaa authentication login authorization SSH radius local
    aaa authentication enable authorization SSH radius enable
    aaa authentication login Console local
    aaa authentication enable Console enable
    aaa accounting dot1x start-stop group radius
    aaa accounting login start-stop group radius
    line ssh
    login authentication SSH
    enable authentication SSH
    password da39a3ee5e6b4b0d3255bfef95601890afd80709 encrypted
    exit
    line console
    login authentication Console
    enable authentication Console
    password da39a3ee5e6b4b0d3255bfef95601890afd80709 encrypted
    exit
    username sukari password encrypted 05fe6863af0820c5f64dd1d58dc8714fa52e5ca2
    privilege 15
    ip ssh server
    ip ssh-client source-interface vlan 60
    ip ssh password-auth
    ip ssh-client username CentMgmt
    ip ssh-client server authentication
    encrypted tacacs-server key fvlxUm2PLEGVFGcRg5TfSZML1ZXPi/5lU8eGqUb1EWU=
    sntp server 10.10.50.1 poll
    !
    interface vlan 1
    no ip address dhcp
    !
    interface vlan 60
    ip address 10.10.60.115 255.255.255.0
    !
    interface vlan 65
    name 65
    !
    interface vlan 96
    name 96
    dot1x guest-vlan
    !
    interface vlan 98
    name 98
    !
    interface vlan 104
    name 104
    !
    interface vlan 111
    name 111
    !
    interface vlan 114
    name 114
    !
    interface vlan 116
    name 116
    !
    interface vlan 200
    name 200
    !
    interface GigabitEthernet1/0/1
    ip arp inspection trust
    ip dhcp snooping trust
    spanning-tree portfast
    switchport mode trunk
    switchport trunk allowed vlan 65,96,98,114,116

    !
    interface GigabitEthernet1/0/2
    ip arp inspection trust
    ip dhcp snooping trust
    spanning-tree portfast
    switchport mode trunk
    switchport trunk allowed vlan 65,96,98,114,116

    !
    interface GigabitEthernet1/0/3
    ip arp inspection trust
    ip dhcp snooping trust
    spanning-tree portfast
    switchport mode trunk
    switchport trunk allowed vlan 65,96,98,114,116

    !
    interface GigabitEthernet1/0/4
    ip arp inspection trust
    ip dhcp snooping trust
    spanning-tree portfast
    switchport mode trunk
    switchport trunk allowed vlan 65,96,98,114,116

    !
    interface GigabitEthernet1/0/5
    ip arp inspection trust
    ip dhcp snooping trust
    spanning-tree portfast
    switchport mode trunk
    switchport trunk allowed vlan 65,96,98,114,116

    !
    interface GigabitEthernet1/0/6
    storm-control broadcast level 30
    storm-control unicast level 20
    storm-control multicast level 40
    port security max 3
    port security mode max-addresses
    port security discard-shutdown
    spanning-tree portfast
    switchport access vlan 114
    voice vlan cos mode all

    interface GigabitEthernet1/0/7

    storm-control broadcast level 30


    storm-control unicast level 20
    storm-control multicast level 40
    port security max 3
    port security mode max-addresses
    port security discard-shutdown
    spanning-tree portfast
    switchport access vlan 114
    voice vlan cos mode all

    interface GigabitEthernet1/0/8

    storm-control broadcast level 30


    storm-control unicast level 20
    storm-control multicast level 40
    port security max 3
    port security mode max-addresses
    port security discard-shutdown
    spanning-tree portfast
    switchport access vlan 114
    voice vlan cos mode all

    !
    interface GigabitEthernet1/0/9
    storm-control broadcast level 30
    storm-control unicast level 20
    storm-control multicast level 40
    port security max 3
    port security mode max-addresses
    port security discard-shutdown
    spanning-tree portfast
    switchport access vlan 114
    voice vlan cos mode all

    !
    interface GigabitEthernet1/0/10
    storm-control broadcast level 30
    storm-control unicast level 20
    storm-control multicast level 40
    port security max 3
    port security mode max-addresses
    port security discard-shutdown
    spanning-tree portfast
    switchport access vlan 114
    voice vlan cos mode all

    interface GigabitEthernet1/0/11
    storm-control broadcast level 30
    storm-control unicast level 20
    storm-control multicast level 40
    port security max 3
    port security mode max-addresses
    port security discard-shutdown
    spanning-tree portfast
    switchport access vlan 114
    voice vlan cos mode all
    !

    interface GigabitEthernet1/0/12
    description "for GUI Access"
    storm-control broadcast level 30
    storm-control unicast level 20
    storm-control multicast level 40
    port security max 3
    port security mode max-addresses
    port security discard-shutdown
    spanning-tree portfast
    switchport access vlan 114
    voice vlan cos mode all
    !
    interface GigabitEthernet1/0/13
    storm-control broadcast level 30
    storm-control unicast level 20
    storm-control multicast level 40
    port security max 3
    port security mode max-addresses
    port security discard-shutdown
    spanning-tree portfast
    switchport access vlan 114
    voice vlan cos mode all
    !
    interface GigabitEthernet1/0/14
    sstorm-control broadcast level 30
    storm-control unicast level 20
    storm-control multicast level 40
    port security max 3
    port security mode max-addresses
    port security discard-shutdown
    spanning-tree portfast
    switchport access vlan 114
    voice vlan cos mode all
    !
    interface GigabitEthernet1/0/15
    storm-control broadcast level 30
    storm-control unicast level 20
    storm-control multicast level 40
    port security max 3
    port security mode max-addresses
    port security discard-shutdown
    spanning-tree portfast
    switchport access vlan 114
    voice vlan cos mode all
    !
    interface GigabitEthernet1/0/16
    storm-control broadcast level 30
    storm-control unicast level 20
    storm-control multicast level 40
    port security max 3
    port security mode max-addresses
    port security discard-shutdown
    spanning-tree portfast
    switchport access vlan 114
    voice vlan cos mode all
    !
    interface GigabitEthernet1/0/17
    storm-control broadcast level 30
    storm-control unicast level 20
    storm-control multicast level 40
    port security max 3
    port security mode max-addresses
    port security discard-shutdown
    spanning-tree portfast
    switchport access vlan 114
    voice vlan cos mode all
    !
    interface GigabitEthernet1/0/18
    storm-control broadcast level 30
    storm-control unicast level 20
    storm-control multicast level 40
    port security max 3
    port security mode max-addresses
    port security discard-shutdown
    spanning-tree portfast
    switchport access vlan 114
    voice vlan cos mode all
    !
    interface GigabitEthernet1/0/19
    storm-control broadcast level 30
    storm-control unicast level 20
    storm-control multicast level 40
    port security max 3
    port security mode max-addresses
    port security discard-shutdown
    spanning-tree portfast
    switchport access vlan 114
    voice vlan cos mode all
    !
    interface GigabitEthernet1/0/20
    storm-control broadcast level 30
    storm-control unicast level 20
    storm-control multicast level 40
    port security max 3
    port security mode max-addresses
    port security discard-shutdown
    spanning-tree portfast
    switchport access vlan 114
    voice vlan cos mode all
    !
    interface GigabitEthernet1/0/21
    storm-control broadcast level 30
    storm-control unicast level 20
    storm-control multicast level 40
    port security max 3
    port security mode max-addresses
    port security discard-shutdown
    spanning-tree portfast
    switchport access vlan 114
    voice vlan cos mode all
    !
    interface GigabitEthernet1/0/22
    storm-control broadcast level 30
    storm-control unicast level 20
    storm-control multicast level 40
    port security max 3
    port security mode max-addresses
    port security discard-shutdown
    spanning-tree portfast
    switchport access vlan 114
    voice vlan cos mode all
    !
    interface GigabitEthernet1/0/23

    !
    interface GigabitEthernet1/0/24
    description "Trunk UTP Port"
    ip arp inspection trust
    ip dhcp snooping trust
    spanning-tree portfast
    switchport mode trunk
    switchport trunk allowed vlan 1,11-13,50-51,55,60,65,77,96,98,102,104,106,111
    switchport trunk allowed vlan add 114,116,200
    no macro auto smartport
    !
    interface TenGigabitEthernet1/0/3
    description NorthCamP-Fiber-Sw
    ip arp inspection trust
    ip dhcp snooping trust
    spanning-tree portfast
    spanning-tree link-type point-to-point
    switchport mode trunk
    switchport trunk native vlan 5
    switchport trunk allowed vlan 60,65,94,96,98,104,114,116,200
    macro description "switch "
    !
    exit
    ip default-gateway 10.10.60.1

    You might also like