IRF Configuration SCRIPT

Next we will present an example of IRPF of the 5500 - script

#
version 5.20, Release 2208
#
 sysname PISO2-SI
#
 super password level 1 simple 1234567890
 super password level 2 simple 1234567890
 super password level 3 simple 1234567890
#
 irf mac-address persistent timer
 irf auto-update enable
 undo irf link-delay
#
 domain default enable system
#
 telnet server enable
#
acl number 2000
description CONTROL_ADMON_SISTEMAS
 rule 0 permit source 10.57.12.0 0.0.0.255
#
igmp-snooping
#
vlan 1
description Default
name Default
igmp-snooping enable
#
vlan 500
 description DMZ
 name DMZ
#
vlan 501
 description INTERNET1
 name INTERNET1
#
vlan 502
 description INTERNET2
 name INTERNET2
#
vlan 503
description INTERNET3
name INTERNET3
#
vlan 504
 description INTERNET4
 name INTERNET4
#
vlan 505
 description ITRADIUS
 name ITRADIUS
#
vlan 506
 description VOIP
 name VOIP
 igmp-snooping enable
#
vlan 507
 description CA
 name CA
 igmp-snooping enable
#
vlan 508
 description VVIP
 name VVIP
 igmp-snooping enable
#
vlan 509
 description WIFIC
 name WIFIC
 igmp-snooping enable
#
vlan 510
 description SISTEMAS
 name SISTEMAS
 igmp-snooping enable
#
vlan 511
 description FINANCIERA
 name FINANCIERA
 igmp-snooping enable
#
vlan 512
 description ADMON
 name ADMON
igmp-snooping enable
#
vlan 513
 description DOCENTES
 name DOCENTES
 igmp-snooping enable
#
vlan 514
 description SCA
 name SCA
 igmp-snooping enable
#
vlan 515
 description SCB
 name SCB
 igmp-snooping enable
#
vlan 516
 description SCC
 name SCC
 igmp-snooping enable
#
vlan 517
 description SCD
 name SCD
 igmp-snooping enable
#
vlan 518
 description SCE
 name SCE
 igmp-snooping enable
#
vlan 519
 description SCF
 name SCF
 igmp-snooping enable
#
vlan 520
 description SCG
 name SCG
 igmp-snooping enable
#
vlan 521
 description SCEL
 name SCEL
 igmp-snooping enable
#
vlan 522
 description VMWARE
 name VMWARE
 igmp-snooping enable
#
radius scheme system
 primary authentication 127.0.0.1 1645
 primary accounting 127.0.0.1 1646
 user-name-format without-domain
#
domain system
 access-limit disable
 state active
 idle-cut disable
 self-service-url disable
#
user-group system
#
local-user admin
 password simple 1234567890
 authorization-attribute level 3
 service-type lan-access
 service-type ssh telnet terminal
local-user manager
 password simple 1234567890
 authorization-attribute level 2
 service-type lan-access
 service-type ssh telnet terminal
local-user monitor
 password simple 1234567890
 authorization-attribute level 1
 service-type lan-access
 service-type ssh telnet terminal
#
interface Bridge-Aggregation1
 description conexion switch 10.57.0.1
 port link-type trunk
 port trunk permit vlan all
 link-aggregation mode dynamic
#
interface NULL0
#
interface Vlan-interface1
 description SWITCH 4500G PISO 2 SALAS DE COMPUTO
 ip address 10.57.0.8 255.255.254.0
#
interface GigabitEthernet1/0/1
 description CONEXION AP AUTONOMO MARCA TRENDNET
 port access vlan 505
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet1/0/2
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet1/0/3
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet1/0/4
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet1/0/5
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet1/0/6
 port access vlan 507
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet1/0/7
 port access vlan 507
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet1/0/8
 port access vlan 507
 broadcast-suppression pps 3000
 poe enable
#
  interface GigabitEthernet1/0/9
 port access vlan 507
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet1/0/10
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet1/0/11
 port access vlan 507
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet1/0/12
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet1/0/13
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet1/0/14
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet1/0/15
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet1/0/16
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet1/0/17
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet1/0/18
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet1/0/19
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet1/0/20
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet1/0/21
 description CONEXION PLANET DUAL SPEED HUB
 port access vlan 517
 broadcast-suppression pps 300
 poe enable
#
interface GigabitEthernet1/0/22
 description CONEXION SWITCH 3COM BASELINE
 port access vlan 516
 broadcast-suppression pps 300
 poe enable
#
interface GigabitEthernet1/0/23
 description conexion switch IP 10.57.0.1
 port link-type trunk
 port trunk permit vlan all
 broadcast-suppression pps 300
 poe enable
#
interface GigabitEthernet1/0/24
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet1/0/25
 shutdown
#
interface GigabitEthernet1/0/26
 shutdown
#
interface GigabitEthernet1/0/27
 shutdown
#
interface GigabitEthernet1/0/28
 shutdown
#
interface GigabitEthernet2/0/1
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/2
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/3
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/4
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/5
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/6
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/7
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/8
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/9
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/10
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/11
 description CONEXION AP 2750 CONTROLADO POR UN WS1200
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/12
 description CONEXION AP DLINK AUTONOMO
 port access vlan 509
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/13
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/14
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/15
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/16
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/17
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/18
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/19
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/20
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/21
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/22
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/23
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/24
 port access vlan 514
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet2/0/25
 shutdown
#
interface GigabitEthernet2/0/26
 shutdown
#
interface GigabitEthernet2/0/27
 shutdown
#
interface GigabitEthernet2/0/28
 shutdown
#
interface GigabitEthernet3/0/1
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
 #
interface GigabitEthernet3/0/2
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/3
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/4
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/5
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/6
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/7
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/8
 Port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/9
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/10
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/11
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/12
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/13
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/14
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/15
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/16
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/17
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/18
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/19
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/20
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/21
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/22
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/23
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/24
 port access vlan 515
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet3/0/25
 shutdown
#
interface GigabitEthernet3/0/26
 shutdown
#
interface GigabitEthernet3/0/27
 shutdown
#
interface GigabitEthernet3/0/28
 shutdown
#
interface GigabitEthernet4/0/1
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/2
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/3
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/4
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/5
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/6
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/7
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/8
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/9
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/10
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/11
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/12
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/13
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/14
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/15
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/16
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/17
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/18
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/19
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/20
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/21
  port access vlan 512
  broadcast-suppression pps 3000
  poe enable
#
interface GigabitEthernet4/0/22
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/23
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/24
 port access vlan 512
 broadcast-suppression pps 3000
 poe enable
#
interface GigabitEthernet4/0/25
 shutdown
#
interface GigabitEthernet4/0/26
 shutdown
#
interface GigabitEthernet4/0/27
 shutdown
#
interface GigabitEthernet4/0/28
 shutdown
#
interface Ten-GigabitEthernet1/2/1
 description conexion switch IP 10.57.0.1
 port link-type trunk
 port trunk permit vlan all
 broadcast-suppression pps 3000
 port link-aggregation group 1
#
interface Ten-GigabitEthernet1/2/2
 description conexion switch IP 10.57.0.1
 port link-type trunk
 port trunk permit vlan all
 broadcast-suppression pps 3000
 port link-aggregation group 1
#
interface Ten-GigabitEthernet4/2/1
 description conexion switch IP 10.57.0.1
 port link-type trunk
 port trunk permit vlan all
 broadcast-suppression pps 3000
 port link-aggregation group 1
#
interface Ten-GigabitEthernet4/2/2
 description conexion switch IP 10.57.0.1
 port link-type trunk
 port trunk permit vlan all
 broadcast-suppression pps 3000
 port link-aggregation group 1
#
interface Ten-GigabitEthernet1/1/1
#
interface Ten-GigabitEthernet1/1/2
#
interface Ten-GigabitEthernet2/1/1
# 
interface Ten-GigabitEthernet2/1/2
#
interface Ten-GigabitEthernet3/1/1
#
interface Ten-GigabitEthernet3/1/2
#
interface Ten-GigabitEthernet4/1/1
#
interface Ten-GigabitEthernet4/1/2
#
 ip route-static 0.0.0.0 0.0.0.0 10.57.0.1
#
snmp-agent
snmp-agent local-engineid 8000002B03001EC1E7F6C1
 snmp-agent community read public
 snmp-agent community write private
 snmp-agent sys-info version all
#
 header login %
************************************ATENCION************************************
Computing unit supported by  I.T.Corporation.
this is a computing resource for the exclusive use of Enterprise name
if you are not an authorized user to access this device
refrain from doing so, as all activities can be monitored
or recorded. And if evidence of unauthorized access is discovered,
modifications to the information, attacks against the integrity of the
information such as the entity, among others, will be reported according to the
competent authorities.
********************************************************************************
%
#
 load xml-configuration
#
user-interface aux 0 3
 authentication-mode scheme
 set authentication password simple 1234567890
 user-interface vty 0 15
 authentication-mode scheme
 user privilege level 3
 set authentication password simple 1234567890
 protocol inbound telnet
#
irf-port 1/1
 port group interface Ten-GigabitEthernet1/1/1 mode normal
#
irf-port 1/2
 port group interface Ten-GigabitEthernet1/1/2 mode normal
#
irf-port 2/1
 port group interface Ten-GigabitEthernet2/1/1 mode normal
#
irf-port 2/2
 port group interface Ten-GigabitEthernet2/1/2 mode normal
#
irf-port 3/1
 port group interface Ten-GigabitEthernet3/1/1 mode normal
#
irf-port 3/2
 port group interface Ten-GigabitEthernet3/1/2 mode normal
#
irf-port 4/1
 port group interface Ten-GigabitEthernet4/1/1 mode normal
#
irf-port 4/2
 port group interface Ten-GigabitEthernet4/1/2 mode normal
#
return