From 2d9455a69e1ef15df292302d180b180060c45998 Mon Sep 17 00:00:00 2001 From: Vasil Kolev Date: Sat, 4 Nov 2017 12:07:53 +0200 Subject: [PATCH] update core switch configuration --- switch-configs/coresw.cfg | 330 +++++++++++++++++++++++++++++++++----- 1 file changed, 290 insertions(+), 40 deletions(-) diff --git a/switch-configs/coresw.cfg b/switch-configs/coresw.cfg index c40c975..df73491 100644 --- a/switch-configs/coresw.cfg +++ b/switch-configs/coresw.cfg @@ -6,14 +6,15 @@ ! SW: c3560e-universalk9-mz.122-40.SE.bin ! ! 2017.10.07 - initial configuration +! 2017.11.04 - production config ! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -! version 12.2 no service pad service timestamps debug uptime service timestamps log uptime no service password-encryption +service unsupported-transceiver ! hostname coresw ! @@ -27,6 +28,14 @@ ip routing ip name-server 10.20.0.1 ! ! +! +! +! +! +! +! +! +! spanning-tree mode mst spanning-tree extend system-id ! @@ -41,7 +50,7 @@ vlan 2 ! vlan 10 name of-ext -! +! vlan 20 name of-mgmt ! @@ -60,6 +69,30 @@ vlan 24 vlan 25 name of-phones ! +vlan 26 + name security +! +vlan 999 + name ipacct +! +vlan 1028 +! +vlan 2464 + name techpark +! +! +interface Port-channel1 + switchport trunk allowed vlan 20-25,2464 +! +interface Port-channel7 + description L2-WIFI-TRUNK + switchport access vlan 23 + switchport trunk encapsulation dot1q + switchport trunk allowed vlan 20-25,999,2464 + switchport mode trunk + spanning-tree portfast trunk + spanning-tree bpdufilter enable + spanning-tree bpduguard enable ! interface FastEthernet0 no ip address @@ -72,7 +105,6 @@ interface GigabitEthernet0/1 switchport mode trunk no cdp enable spanning-tree portfast trunk - no shutdown ! interface GigabitEthernet0/2 description srvocsw @@ -81,16 +113,14 @@ interface GigabitEthernet0/2 switchport mode trunk no cdp enable spanning-tree portfast trunk - no shutdown ! interface GigabitEthernet0/3 description receptionsw switchport trunk encapsulation dot1q - switchport trunk allowed vlan 20,21,25 + switchport trunk allowed vlan 20,21,25,26 switchport mode trunk no cdp enable spanning-tree portfast trunk - no shutdown ! interface GigabitEthernet0/4 description nocsw @@ -99,7 +129,6 @@ interface GigabitEthernet0/4 switchport mode trunk no cdp enable spanning-tree portfast trunk - no shutdown ! interface GigabitEthernet0/5 description wssw1 @@ -108,24 +137,21 @@ interface GigabitEthernet0/5 switchport mode trunk no cdp enable spanning-tree portfast trunk - no shutdown ! interface GigabitEthernet0/6 description wssw2 - switchport trunk allowed vlan 20,21 switchport trunk encapsulation dot1q + switchport trunk allowed vlan 20,21 switchport mode access no cdp enable spanning-tree portfast trunk - no shutdown -! +! interface GigabitEthernet0/7 description presenter-mr switchport access vlan 21 switchport mode access no cdp enable spanning-tree portfast trunk - no shutdown ! interface GigabitEthernet0/8 description presenter-sr @@ -133,48 +159,247 @@ interface GigabitEthernet0/8 switchport mode access no cdp enable spanning-tree portfast trunk - no shutdown -! -interface port-channel 7 - description L2-WIFI-TRUNK - switchport mode trunk +! +interface GigabitEthernet0/9 + description port-chan-1 + switchport access vlan 23 switchport trunk encapsulation dot1q - switchport trunk allowed vlan 20,22 + switchport trunk allowed vlan 20-25,999,2464 + switchport mode trunk no cdp enable - spanning-tree portfast trunk - no shutdown -! -interface range GigabitEthernet0/9-10 channel-group 7 mode active - no shutdown + spanning-tree portfast trunk ! -interface range GigabitEthernet0/11-16 - description WIFI-AP - switchport trunk allowed vlan 20,22 +interface GigabitEthernet0/10 + description port-chan-2 + switchport access vlan 23 switchport trunk encapsulation dot1q + switchport trunk allowed vlan 20-25,999,2464 + switchport mode trunk + no cdp enable + channel-group 7 mode active + spanning-tree portfast trunk +! +interface GigabitEthernet0/11 + description WIFI-AP + switchport trunk encapsulation dot1q + switchport trunk allowed vlan 20,22 switchport mode trunk no cdp enable spanning-tree portfast trunk - no shutdown ! -interface range GigabitEthernet0/17-18 +interface GigabitEthernet0/12 + description WIFI-AP + switchport trunk encapsulation dot1q + switchport trunk allowed vlan 20,22 + switchport mode trunk + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/13 + description WIFI-AP + switchport trunk encapsulation dot1q + switchport trunk allowed vlan 20,22 + switchport mode trunk + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/14 + description WIFI-AP + switchport trunk encapsulation dot1q + switchport trunk allowed vlan 20,22 + switchport mode trunk + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/15 + description WIFI-AP + switchport trunk encapsulation dot1q + switchport trunk allowed vlan 20,22 + switchport mode trunk + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/16 + description WIFI-AP + switchport trunk encapsulation dot1q + switchport trunk allowed vlan 20,22 + switchport mode trunk + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/17 description OVERFLOW switchport access vlan 24 switchport mode access no cdp enable spanning-tree portfast trunk - no shutdown ! -interface range GigabitEthernet0/19-40 +interface GigabitEthernet0/18 + description OVERFLOW + switchport access vlan 24 + switchport mode access + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/19 description SHUTDOWN shutdown no cdp enable spanning-tree portfast trunk ! -interface range GigabitEthernet0/41-43 +interface GigabitEthernet0/20 + description SHUTDOWN + shutdown + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/21 + description SHUTDOWN + shutdown + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/22 + description SHUTDOWN + shutdown + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/23 + description SHUTDOWN + shutdown + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/24 + description SHUTDOWN + shutdown + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/25 + description test-phone + switchport access vlan 25 + switchport mode access + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/26 + description test-phone + switchport access vlan 25 + switchport mode access + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/27 + description test-phone + switchport access vlan 25 + switchport mode access + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/28 + description test-phone + switchport access vlan 25 + switchport mode access + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/29 + description test-phone + switchport access vlan 25 + switchport mode access + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/30 + description test-phone + switchport access vlan 25 + switchport mode access + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/31 + description SHUTDOWN + shutdown + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/32 + description SHUTDOWN + shutdown + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/33 + description SHUTDOWN + shutdown + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/34 + description SHUTDOWN + shutdown + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/35 + description SHUTDOWN + shutdown + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/36 + description SHUTDOWN + shutdown + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/37 + description SHUTDOWN + shutdown + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/38 + description SHUTDOWN + shutdown + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/39 + description SHUTDOWN + shutdown + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/40 + description SHUTDOWN + shutdown + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/41 + switchport trunk encapsulation dot1q + switchport trunk allowed vlan 2,10,20-25 + switchport mode trunk + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/42 + switchport trunk encapsulation dot1q + switchport trunk allowed vlan 2,10,20-25 + switchport mode trunk + no cdp enable + spanning-tree portfast trunk +! +interface GigabitEthernet0/43 + switchport trunk encapsulation dot1q + switchport trunk allowed vlan 2,10,20-25 + switchport mode trunk no cdp enable spanning-tree portfast trunk - no shutdown ! interface GigabitEthernet0/44 description encoder @@ -194,7 +419,7 @@ interface GigabitEthernet0/45 interface GigabitEthernet0/46 description eric switchport trunk encapsulation dot1q - switchport trunk allowed vlan 2,10,20-25 + switchport trunk allowed vlan 2,10,20-26,999,2464 switchport mode trunk no cdp enable spanning-tree portfast trunk @@ -202,7 +427,7 @@ interface GigabitEthernet0/46 interface GigabitEthernet0/47 description UPLINK switchport trunk encapsulation dot1q - switchport trunk allowed vlan 2,10 + switchport trunk allowed vlan 2,10,2464 switchport mode trunk no cdp enable spanning-tree portfast trunk @@ -210,17 +435,37 @@ interface GigabitEthernet0/47 interface GigabitEthernet0/48 description UPLINK switchport trunk encapsulation dot1q - switchport trunk allowed vlan 2,10 + switchport trunk allowed vlan 2,10,2464 switchport mode trunk no cdp enable spanning-tree portfast trunk ! -interface range GigabitEthernet0/49-52 +interface GigabitEthernet0/49 switchport mode dynamic desirable shutdown spanning-tree portfast trunk ! -interface range TenGigabitEthernet0/1-2 +interface GigabitEthernet0/50 + switchport mode dynamic desirable + shutdown + spanning-tree portfast trunk +! +interface GigabitEthernet0/51 + switchport mode dynamic desirable + shutdown + spanning-tree portfast trunk +! +interface GigabitEthernet0/52 + switchport mode dynamic desirable + shutdown + spanning-tree portfast trunk +! +interface TenGigabitEthernet0/1 + switchport mode dynamic desirable + shutdown + spanning-tree portfast trunk +! +interface TenGigabitEthernet0/2 switchport mode dynamic desirable shutdown spanning-tree portfast trunk @@ -238,6 +483,7 @@ no ip http server no ip http secure-server ! snmp-server community @SNMP_PW@ RO +snmp-server community openfest RO snmp-server trap-source Vlan20 snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart snmp-server enable traps transceiver all @@ -261,19 +507,23 @@ snmp-server enable traps syslog snmp-server enable traps mac-notification change move threshold snmp-server enable traps vlan-membership snmp-server enable traps errdisable -snmp-server host 10.20.0.1 version 2c @SNMP_PW@ +snmp-server host 10.20.0.1 version 2c 0penfest +snmp-server host 10.20.0.1 version 2c @SNMP_PW@ +snmp-server host 10.20.0.1 version 2c openfest ! control-plane ! ! line con 0 line vty 0 4 + exec-timeout 0 0 password @PW@ login line vty 5 15 + exec-timeout 0 0 password @PW@ login -! -ntp clock-period 36026825 +! +ntp clock-period 36026772 ntp server 10.20.0.1 end