思科交换基础配置
Rack_K08_Noc_3750#show running-configBuilding configuration...
Current configuration : 11218 bytes
!
! Last configuration change at 10:57:51 GMT Tue Oct 25 2016 by 占兴
! NVRAM config last updated at 10:58:02 GMT Tue Oct 25 2016 by 占兴
!
version 12.2
no service pad
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
no service password-encryption
!
hostname Rack_K08_Noc_3750
!
enable password 占兴
!
username qujun privilege 15 secret 5 $1$sBCx$.sMgoqHwaL3uPWzBpT84o/
username lianglm privilege 15 password 0 Michael9203
username wangzx privilege 15 secret 5 $1$oPmu$cipPdKQm.GLnJ/x96dXOM.
aaa new-model
aaa authentication login default group tacacs+ enable
aaa authorization template
aaa authorization exec default group tacacs+ local
!
aaa session-id common
clock timezone GMT 8
switch 1 provision ws-c3750g-24ts-1u
switch 2 provision ws-c3750g-24ts-1u
system mtu routing 1500
ip subnet-zero
ip routing
no ip domain-lookup
ip domain-name 51idc.com
!
ip ssh authentication-retries 4
!
!
crypto pki trustpoint TP-self-signed-3179079040
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-3179079040
revocation-check none
rsakeypair TP-self-signed-3179079040
!
!
crypto pki certificate chain TP-self-signed-3179079040
certificate self-signed 01
308202AB 30820214 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
5D312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 33313739 30373930 3430312A 30280609 2A864886 F70D0109
02161B52 61636B5F 4B30385F 4E6F635F 33373530 2E353169 64632E63 6F6D301E
170D3933 30333031 30303433 34305A17 0D323030 31303130 30303030 305A305D
312F302D 06035504 03132649 4F532D53 656C662D 5369676E 65642D43 65727469
66696361 74652D33 31373930 37393034 30312A30 2806092A 864886F7 0D010902
161B5261 636B5F4B 30385F4E 6F635F33 3735302E 35316964 632E636F 6D30819F
300D0609 2A864886 F70D0101 01050003 818D0030 81890281 8100B447 C26A4F27
C89EF094 6B460A3B 9E758E81 E7F7CBE7 65FF2325 B696E0F9 7D435340 9B91A6F7
436FCA3D 56E3D799 2FBC8941 E009CC51 2D361FA2 2B7049EB 1F641E49 C7E6061A
2012C2DA 292AD965 E1523E08 5177C200 79CD917B 8CAB82E5 B15957BD 8C59C6BB
11782CE2 EA7FF72A 53D34EB0 146A070F 74A1C31E C99C33AD 3A550203 010001A3
7B307930 0F060355 1D130101 FF040530 030101FF 30260603 551D1104 1F301D82
1B526163 6B5F4B30 385F4E6F 635F3337 35302E35 31696463 2E636F6D 301F0603
551D2304 18301680 14999F4A 8E6AC384 CC27CF08 4387FFCC 63F0689C 2B301D06
03551D0E 04160414 999F4A8E 6AC384CC 27CF0843 87FFCC63 F0689C2B 300D0609
2A864886 F70D0101 04050003 8181005B 7E7160BC FF20981E C38FCF32 3ABBDB50
202E93DC DC5B6DDE 8EA58673 FCD2693D ECDC3EED 91D4AA43 ECD717C4 C07C44F8
1AB5F6C9 A31F785D DE08E45B AB0B1D45 CF383EE6 D1734A70 D03ACF34 9876DEBA
5AA86A8B F47AD593 C242B0FC 1694305A 67C8723B 0213B5FD E0651C8C A9434919
1D0AC351 CFC82D2F 3DB65FCD C71D71
quit
!
!
no file verify auto
!
spanning-tree mode pvst
spanning-tree portfast default
spanning-tree extend system-id
no spanning-tree vlan 99-101,200,999,1151
!
vlan internal allocation policy ascending
!
!
interface Loopback0
ip address 10.255.1.1 255.255.255.255
!
interface Loopback1
ip address 10.255.2.1 255.255.255.0
!
interface Port-channel10
description To_Firewall
no switchport
ip address 10.234.0.254 255.255.255.0
!
interface Port-channel20
description To_MPLS
switchport access vlan 999
switchport trunk encapsulation dot1q
switchport mode access
!
interface GigabitEthernet1/0/1
description To_N1_1.10_WIN_08_R2
switchport access vlan 100
!
interface GigabitEthernet1/0/2
description To_N1_1.20_Xenserver6.5
switchport access vlan 100
switchport mode access
!
interface GigabitEthernet1/0/3
description To_N1_1.30_Centos6.5
switchport access vlan 100
switchport mode access
!
interface GigabitEthernet1/0/4
description To_N1_1.40_VMware5.5
switchport access vlan 100
switchport mode access
!
interface GigabitEthernet1/0/5
description To_N1_1.50_VMware5.5
switchport access vlan 100
switchport mode access
!
interface GigabitEthernet1/0/6
description To_N1_1.60_VMware5.5
switchport access vlan 100
switchport mode access
!
interface GigabitEthernet1/0/7
description EZ-VPN-router
switchport access vlan 100
switchport mode access
!
interface GigabitEthernet1/0/8
description To_N1_1.70_VMware5.5
switchport access vlan 100
switchport mode access
!
interface GigabitEthernet1/0/9
description To_100.11_connect1.10ipmi
switchport access vlan 99
switchport mode access
!
interface GigabitEthernet1/0/10
description To_100.12_connect1.20ipmi
switchport access vlan 99
switchport mode access
!
interface GigabitEthernet1/0/11
description To_100.13_connect1.30ipmi
switchport access vlan 99
switchport mode access
!
interface GigabitEthernet1/0/12
description To_100.14_connect1.40ipmi
switchport access vlan 99
switchport mode access
!
interface GigabitEthernet1/0/13
description To_yuliu
switchport access vlan 99
switchport mode access
!
interface GigabitEthernet1/0/14
description To_yuliu
switchport access vlan 99
switchport mode access
!
interface GigabitEthernet1/0/15
!
interface GigabitEthernet1/0/16
!
interface GigabitEthernet1/0/17
!
interface GigabitEthernet1/0/18
!
interface GigabitEthernet1/0/19
!
interface GigabitEthernet1/0/20
!
interface GigabitEthernet1/0/21
description To_baoleiji_P1
switchport access vlan 100
switchport mode access
!
interface GigabitEthernet1/0/22
!
interface GigabitEthernet1/0/23
description To_L09_NW_19
switchport access vlan 999
switchport trunk encapsulation dot1q
switchport mode access
channel-group 20 mode on
!
interface GigabitEthernet1/0/24
description To_Firewall-3
no switchport
no ip address
channel-group 10 mode on
!
interface GigabitEthernet1/0/25
!
interface GigabitEthernet1/0/26
!
interface GigabitEthernet1/0/27
!
interface GigabitEthernet1/0/28
!
interface GigabitEthernet2/0/1
description To_N2_1.10_WIN_08_R2
switchport access vlan 100
switchport mode access
!
interface GigabitEthernet2/0/2
description To_N2_1.20_Xenserver6.5
switchport access vlan 100
switchport mode access
!
interface GigabitEthernet2/0/3
description To_N2_1.30_Centos6.5
switchport access vlan 100
switchport mode access
!
interface GigabitEthernet2/0/4
description To_N2_1.40_VMware5.5
switchport access vlan 100
switchport mode access
!
interface GigabitEthernet2/0/5
description To_N2_1.50_VMware5.5
switchport access vlan 100
switchport mode access
!
interface GigabitEthernet2/0/6
description To_N2_1.60_VMware5.5
switchport access vlan 100
switchport mode access
!
interface GigabitEthernet2/0/7
description To_yuliu
switchport access vlan 100
switchport mode access
!
interface GigabitEthernet2/0/8
description To_N2_1.70_VMware5.5
switchport access vlan 100
switchport mode access
!
interface GigabitEthernet2/0/9
!
interface GigabitEthernet2/0/10
!
interface GigabitEthernet2/0/11
!
interface GigabitEthernet2/0/12
!
interface GigabitEthernet2/0/13
!
interface GigabitEthernet2/0/14
!
interface GigabitEthernet2/0/15
!
interface GigabitEthernet2/0/16
!
interface GigabitEthernet2/0/17
!
interface GigabitEthernet2/0/18
!
interface GigabitEthernet2/0/19
!
interface GigabitEthernet2/0/20
!
interface GigabitEthernet2/0/21
description To_baoleiji_P2
switchport access vlan 100
switchport mode access
!
interface GigabitEthernet2/0/22
!
interface GigabitEthernet2/0/23
description To_L09_NW_20
switchport access vlan 999
switchport trunk encapsulation dot1q
switchport mode access
channel-group 20 mode on
!
interface GigabitEthernet2/0/24
description To_Firewall-4
no switchport
no ip address
channel-group 10 mode on
!
interface GigabitEthernet2/0/25
!
interface GigabitEthernet2/0/26
!
interface GigabitEthernet2/0/27
!
interface GigabitEthernet2/0/28
!
interface Vlan1
no ip address
shutdown
!
interface Vlan99
description ILO-MGT_10.234.100.254
ip address 10.234.100.254 255.255.255.0
!
interface Vlan100
description server_subnet
ip address 10.234.1.254 255.255.255.0
!
interface Vlan101
description Testing-server
ip address 10.234.2.254 255.255.255.0
!
interface Vlan999
description To_AS_Team_HL_MPLS_L09_NW
ip address 20.100.9.2 255.255.255.0
!
interface Vlan1151
no ip address
!
ip classless
ip route 0.0.0.0 0.0.0.0 10.234.0.1
ip route 30.100.4.0 255.255.255.0 20.100.9.1 name To_HL_MPLS
ip route 172.16.200.0 255.255.255.0 10.254.15.253 name To_AS_Team_cloud
ip route 172.25.1.0 255.255.255.0 10.234.1.11 name ToEZvpn_virtualippool
ip route 172.25.2.0 255.255.255.0 10.234.1.11 name ToEZvpn_virtualippool
ip route 172.25.3.0 255.255.255.0 10.234.1.11 name ToEZvpn_virtualippool
ip route 172.25.4.0 255.255.255.0 10.234.1.11 name ToYMDD-ezvpn
ip route 172.25.5.0 255.255.255.0 10.234.1.11 name To_Ming
ip route 172.25.6.0 255.255.255.0 10.234.1.11 name To_wenhao
ip http server
ip http secure-server
!
!
ip access-list extended BLJ-PBR
permit ip any 172.25.1.0 0.0.0.255 log
!
logging 192.168.103.23
route-map PBR permit 10
match ip address BLJ-PBR
set ip next-hop 10.234.1.11
!
route-map pbr permit 10
!
snmp-server community 51idc.com RO
snmp-server location shanghai
snmp-server contact Allen
snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
snmp-server enable traps tty
snmp-server enable traps cluster
snmp-server enable traps fru-ctrl
snmp-server enable traps entity
snmp-server enable traps cpu threshold
snmp-server enable traps power-ethernet group 1-9
snmp-server enable traps vtp
snmp-server enable traps vlancreate
snmp-server enable traps vlandelete
snmp-server enable traps flash insertion removal
snmp-server enable traps port-security
snmp-server enable traps envmon fan shutdown supply temperature status
snmp-server enable traps mac-notification
snmp-server enable traps stackwise
snmp-server enable traps license
snmp-server enable traps bgp
snmp-server enable traps config-copy
snmp-server enable traps config
snmp-server enable traps hsrp
snmp-server enable traps ipmulticast
snmp-server enable traps msdp
snmp-server enable traps ospf state-change
snmp-server enable traps ospf errors
snmp-server enable traps ospf retransmit
snmp-server enable traps ospf lsa
snmp-server enable traps ospf cisco-specific state-change
snmp-server enable traps ospf cisco-specific errors
snmp-server enable traps ospf cisco-specific retransmit
snmp-server enable traps ospf cisco-specific lsa
snmp-server enable traps pim neighbor-change rp-mapping-change invalid-pim-message
snmp-server enable traps rtr
snmp-server enable traps bridge newroot topologychange
snmp-server enable traps stpx inconsistency root-inconsistency loop-inconsistency
snmp-server enable traps syslog
snmp-server enable traps vlan-membership
tacacs-server host 10.234.1.66 key 51idc.com
tacacs-server host 10.234.1.111 key 51idc.com
tacacs-server timeout 2
tacacs-server directed-request
tacacs-server key 51idc.com
radius-server source-ports 1645-1646
!
control-plane
!
!
line con 0
password qujun
line vty 0 4
exec-timeout 0 0
password 51idc.com
logging synchronous
transport input all
line vty 5 15
exec-timeout 0 0
logging synchronous
!
ntp logging
ntp clock-period 36029594
ntp server 10.234.1.66
ntp server 10.234.1.110
ntp server 10.234.1.88
end
学习学习··········
页:
[1]