# sysname SW_LOCATION_1 # undo password-control aging enable undo password-control history enable password-control length 8 password-control login-attempt 3 exceed lock-time 120 # super password level 1 simple 1234567890 super password level 2 simple 1234567890 super password level 3 simple 1234567890 # local-server nas-ip 127.0.0.1 key 3com # igmp-snooping enable # ssl server-policy pol_https # radius scheme system # domain system # local-user admin password simple 1234567890 service-type ssh telnet terminal level 3 local-user manager password simple 1234567890 service-type ssh telnet terminal level 2 local-user monitor password simple 1234567890 service-type ssh telnet terminal level 1 # stp disable # acl number 2000 rule 0 permit source 10.2.26.26 0 rule 1 permit source 172.17.0.215 0 # acl number 3002 rule 0 deny icmp icmp-type timestamp-request rule 1 deny icmp icmp-type timestamp-reply rule 2 deny icmp icmp-type 17 0 acl number 3997 rule 0 permit ip dscp ef rule 1 permit tcp destination-port eq www rule 2 permit udp destination-port eq snmp rule 3 permit udp destination-port eq snmptrap rule 4 permit ip dscp cs6 rule 5 permit ip dscp cs7 # acl number 4999 rule 0 permit type 8868 ffff rule 1 permit source 00e0-bb00-0000 ffff-ff00-0000 rule 2 permit source 0003-6b00-0000 ffff-ff00-0000 rule 3 permit source 00e0-7500-0000 ffff-ff00-0000 rule 4 permit source 00d0-1e00-0000 ffff-ff00-0000 rule 5 permit source 0001-e300-0000 ffff-ff00-0000 rule 6 permit source 000f-e200-0000 ffff-ff00-0000 rule 7 permit source 0060-b900-0000 ffff-ff00-0000 rule 8 deny dest 0000-0000-0000 ffff-ffff-ffff # qos-profile default packet-filter inbound link-group 4999 rule 8 traffic-priority inbound ip-group 3997 rule 0 cos voice traffic-priority inbound ip-group 3997 rule 4 cos network-management traffic-priority inbound ip-group 3997 rule 5 cos network-management traffic-priority inbound link-group 4999 rule 0 dscp ef cos voice traffic-priority inbound link-group 4999 rule 1 dscp ef cos voice traffic-priority inbound link-group 4999 rule 2 dscp ef cos voice traffic-priority inbound link-group 4999 rule 3 dscp ef cos voice traffic-priority inbound link-group 4999 rule 4 dscp ef cos voice traffic-priority inbound link-group 4999 rule 5 dscp ef cos voice traffic-priority inbound link-group 4999 rule 6 dscp ef cos voice traffic-priority inbound link-group 4999 rule 7 dscp ef cos voice # vlan 1 description Default name Default igmp-snooping enable igmp-snooping querier # vlan 2 description vlan_X name vlan_X igmp-snooping enable igmp-snooping querier # vlan 3 description vlan_X name vlan_X igmp-snooping enable igmp-snooping querier # vlan 4 description vlan_X name vlan_X igmp-snooping enable igmp-snooping querier # vlan 5 description vlan_X name vlan_X igmp-snooping enable igmp-snooping querier # vlan 6 description vlan_X name vlan_X igmp-snooping enable igmp-snooping querier # vlan 7 description vlan_X name vlan_X igmp-snooping enable igmp-snooping querier # vlan 8 description vlan_X name vlan_X igmp-snooping enable # vlan 9 description vlan_X name vlan_X igmp-snooping enable # vlan 10 description vlan_X name vlan_X igmp-snooping enable # vlan 11 description vlan_X name vlan_X igmp-snooping enable # vlan 12 description vlan_X name vlan_X igmp-snooping enable # vlan 13 description vlan_X name vlan_X igmp-snooping enable # vlan 14 description vlan_X name vlan_X igmp-snooping enable # vlan 15 description vlan_X name vlan_X igmp-snooping enable # vlan 16 description vlan_X name vlan_X igmp-snooping enable # vlan 17 description vlan_X name vlan_X igmp-snooping enable # vlan 18 description vlan_X name vlan_X igmp-snooping enable # vlan 19 description vlan_X name vlan_X igmp-snooping enable # vlan 20 description vlan_X name vlan_X igmp-snooping enable # vlan 21 description vlan_X name vlan_X igmp-snooping enable # vlan 22 description vlan_X name vlan_X igmp-snooping enable # vlan 23 description vlan_X name vlan_X igmp-snooping enable # vlan 24 description vlan_X name vlan_X igmp-snooping enable # vlan 25 description vlan_X name vlan_X igmp-snooping enable # vlan 26 description vlan_X name vlan_X igmp-snooping enable # vlan 27 description vlan_X name vlan_X igmp-snooping enable # vlan 29 description vlan_X name vlan_X igmp-snooping enable # vlan 30 description vlan_X name vlan_X igmp-snooping enable # vlan 31 description vlan_X name vlan_X igmp-snooping enable # vlan 32 description vlan_X name vlan_X igmp-snooping enable # interface Vlan-interface1 ip address 172.17.0.15 255.255.254.0 # interface Vlan-interface27 #LOCCFG. MUST NOT DELETE # ntp-service unicast-server 172.17.0.9 priority # interface Aux1/0/0 # interface GigabitEthernet1/0/1 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/2 poe enable port link-type hybrid port hybrid vlan 5 22 tagged port hybrid vlan 1 untagged port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/3 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/4 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/5 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/6 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/7 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/8 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 1 untagged broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/9 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/10 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/11 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/12 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 1 untagged broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/13 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/14 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/15 poe enable port link-type hybrid port hybrid vlan 1 5 tagged port hybrid vlan 22 untagged broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/16 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/17 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 rmon statistics 54094 owner 3Com Network Supervisor apply qos-profile default # interface GigabitEthernet1/0/18 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/19 poe enable port link-type hybrid port hybrid vlan 1 5 tagged port hybrid vlan 22 untagged broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/20 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/21 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/22 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 1 untagged broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/23 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/24 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/25 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/26 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/27 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/28 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/29 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/30 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/31 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/32 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/33 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/34 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/35 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/36 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/37 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/38 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/39 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/40 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/41 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/42 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/43 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/44 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/45 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/46 poe enable port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 apply qos-profile default # interface GigabitEthernet1/0/47 port link-type trunk port trunk permit vlan all broadcast-suppression pps 3000 packet-filter inbound ip-group 3002 rule 0 packet-filter inbound ip-group 3002 rule 1 packet-filter inbound ip-group 3002 rule 2 description CONEXION CORE 172.17.0.2 PORT 2/0/24 lacp enable apply qos-profile default # interface GigabitEthernet1/0/48 port link-type trunk port trunk permit vlan all packet-filter inbound ip-group 3002 rule 0 packet-filter inbound ip-group 3002 rule 1 packet-filter inbound ip-group 3002 rule 2 description CONEXION CORE 172.17.0.2 PORT 3/0/24 lacp enable apply qos-profile default # interface GigabitEthernet1/0/49 port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 22 untagged undo port hybrid vlan 1 port hybrid pvid vlan 22 broadcast-suppression pps 3000 shutdown apply qos-profile default # interface GigabitEthernet1/0/50 port link-type hybrid port hybrid vlan 5 tagged port hybrid vlan 1 untagged broadcast-suppression pps 3000 shutdown apply qos-profile default # interface GigabitEthernet1/0/51 port link-type trunk port trunk permit vlan all broadcast-suppression pps 3000 shutdown packet-filter inbound ip-group 3002 rule 0 packet-filter inbound ip-group 3002 rule 1 packet-filter inbound ip-group 3002 rule 2 lacp enable apply qos-profile default # interface GigabitEthernet1/0/52 port link-type trunk port trunk permit vlan all shutdown packet-filter inbound ip-group 3002 rule 0 packet-filter inbound ip-group 3002 rule 1 packet-filter inbound ip-group 3002 rule 2 lacp enable apply qos-profile default # interface Cascade1/2/1 # interface Cascade1/2/2 #TOPOLOGYCFG. MUST NOT DELETE #GLBCFG. MUST NOT DELETE # interface NULL0 # undo arp check enable # voice vlan 5 enable # ip route-static 0.0.0.0 0.0.0.0 172.17.0.2 preference 60 # snmp-agent snmp-agent local-engineid 8000002B001AC15FEE806877 snmp-agent community read snmpminaspub snmp-agent sys-info contact Ing. Oscar Sanchez snmp-agent sys-info location LOCATION_1 snmp-agent sys-info version v3 snmp-agent group v3 snmpminas snmp-agent usm-user v3 minas snmpminas authentication-mode md5 E4I)#Y=*8"$;7YGaDDA;2!!! # ssh server timeout 30 ssh user admin authentication-type password ssh user admin service-type stelnet ssh user monitor authentication-type password ssh user monitor service-type stelnet ssh user manager authentication-type password ssh user manager service-type stelnet # header shell %************************************ATENTION************************************* * Computer unit supported by I.T.Corporation. * * This is a computer resource for the exclusive use of Enterprise Name. * * If you are not an authorized user to enter this device * * refrain from doing so, as all activities can be monitored * * or recorded. And if evidence of unauthorized access is discovered, * * modifications to the information, attacks against the integrity of the * * Information such as the entity, among others, will be reported to the * * competent authorities. * *********************************************************************************************** # header shell %************************************ATENTION************************************* * Computer unit supported by I.T.Corporation. * * This is a computer resource for the exclusive use of Enterprise Name. * * If you are not an authorized user to enter this device * * refrain from doing so, as all activities can be monitored * * or recorded. And if evidence of unauthorized access is discovered, * * modifications to the information, attacks against the integrity of the * * Information such as the entity, among others, will be reported to the * * competent authorities. * *********************************************************************************************** # user-interface aux 0 7 authentication-mode scheme user-interface vty 0 4 acl 2000 inbound authentication-mode scheme idle-timeout 60 0 protocol inbound ssh # return --- //[[nce@itclatam.com|David Gonzalez]] 2021/04/13 12:36//