Difference between revisions of "PengeBanken"
From Teknologisk videncenter
CodeWizard (talk | contribs) (New page: PengeBanken Konfig filer) |
|||
| Line 1: | Line 1: | ||
PengeBanken | PengeBanken | ||
Konfig filer | Konfig filer | ||
| + | |||
| + | ==AAA01SWCO== | ||
| + | |||
| + | <pre> | ||
| + | version 12.2 | ||
| + | no service pad | ||
| + | service timestamps debug datetime msec | ||
| + | service timestamps log datetime msec | ||
| + | no service password-encryption | ||
| + | ! | ||
| + | hostname AAA01SWCO | ||
| + | ! | ||
| + | enable secret 5 $1$rCMy$qRGETbYap5f9zcvVrWQpn/ | ||
| + | ! | ||
| + | username admin privilege 15 secret 5 $1$JYrG$a8l5k1cKm/ydAS.5t.OpV/ | ||
| + | aaa new-model | ||
| + | ! | ||
| + | ! | ||
| + | aaa authentication login default group radius local | ||
| + | aaa authorization exec default group radius local | ||
| + | ! | ||
| + | ! | ||
| + | ! | ||
| + | aaa session-id common | ||
| + | mls qos map cos-dscp 0 8 16 24 32 46 48 56 | ||
| + | mls qos min-reserve 5 170 | ||
| + | mls qos min-reserve 6 85 | ||
| + | mls qos min-reserve 7 51 | ||
| + | mls qos min-reserve 8 34 | ||
| + | mls qos | ||
| + | ip subnet-zero | ||
| + | ip routing | ||
| + | ip domain-name pengebanken.dk | ||
| + | ip name-server 172.16.241.11 | ||
| + | ! | ||
| + | ! | ||
| + | ! | ||
| + | ! | ||
| + | ! | ||
| + | ! | ||
| + | ! | ||
| + | spanning-tree mode rapid-pvst | ||
| + | spanning-tree extend system-id | ||
| + | spanning-tree vlan 2,8-11 priority 24576 | ||
| + | ! | ||
| + | vlan internal allocation policy ascending | ||
| + | ! | ||
| + | ip ssh version 2 | ||
| + | ! | ||
| + | ! | ||
| + | ! | ||
| + | ! | ||
| + | ! | ||
| + | interface FastEthernet0/1 | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | spanning-tree guard root | ||
| + | ! | ||
| + | interface FastEthernet0/2 | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | spanning-tree guard root | ||
| + | ! | ||
| + | interface FastEthernet0/3 | ||
| + | description AAFS01 | ||
| + | switchport access vlan 8 | ||
| + | switchport mode access | ||
| + | mls qos trust cos | ||
| + | spanning-tree portfast | ||
| + | ! | ||
| + | interface FastEthernet0/4 | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | spanning-tree guard root | ||
| + | ! | ||
| + | interface FastEthernet0/5 | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | spanning-tree guard root | ||
| + | ! | ||
| + | interface FastEthernet0/6 | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | spanning-tree guard root | ||
| + | ! | ||
| + | interface FastEthernet0/7 | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | spanning-tree guard root | ||
| + | ! | ||
| + | interface FastEthernet0/8 | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | spanning-tree guard root | ||
| + | ! | ||
| + | interface FastEthernet0/9 | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | spanning-tree guard root | ||
| + | ! | ||
| + | interface FastEthernet0/10 | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | spanning-tree guard root | ||
| + | ! | ||
| + | interface FastEthernet0/11 | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | spanning-tree guard root | ||
| + | ! | ||
| + | interface FastEthernet0/12 | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | spanning-tree guard root | ||
| + | ! | ||
| + | interface FastEthernet0/13 | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | spanning-tree guard root | ||
| + | ! | ||
| + | interface FastEthernet0/14 | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | spanning-tree guard root | ||
| + | ! | ||
| + | interface FastEthernet0/15 | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | spanning-tree guard root | ||
| + | ! | ||
| + | interface FastEthernet0/16 | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | spanning-tree guard root | ||
| + | ! | ||
| + | interface FastEthernet0/17 | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | spanning-tree guard root | ||
| + | ! | ||
| + | interface FastEthernet0/18 | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | spanning-tree guard root | ||
| + | ! | ||
| + | interface FastEthernet0/19 | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | spanning-tree guard root | ||
| + | ! | ||
| + | interface FastEthernet0/20 | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | spanning-tree guard root | ||
| + | ! | ||
| + | interface FastEthernet0/21 | ||
| + | description Til_AHA01RT | ||
| + | no switchport | ||
| + | ip address 172.18.255.5 255.255.255.252 | ||
| + | ip ospf network point-to-point | ||
| + | ip ospf dead-interval minimal hello-multiplier 3 | ||
| + | mls qos trust cos | ||
| + | spanning-tree portfast | ||
| + | ! | ||
| + | interface FastEthernet0/22 | ||
| + | description Til_AAA01SWOP | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport trunk allowed vlan 2,8-11 | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | spanning-tree guard root | ||
| + | ! | ||
| + | interface FastEthernet0/23 | ||
| + | description Til_AAA01SWCO | ||
| + | switchport trunk encapsulation dot1q | ||
| + | switchport trunk allowed vlan 2,8-11 | ||
| + | switchport mode trunk | ||
| + | mls qos trust cos | ||
| + | ! | ||
| + | interface FastEthernet0/24 | ||
| + | description Til_TDC MPLS | ||
| + | no switchport | ||
| + | ip address 172.18.255.1 255.255.255.252 | ||
| + | mls qos trust cos | ||
| + | ! | ||
| + | interface GigabitEthernet0/1 | ||
| + | switchport mode dynamic desirable | ||
| + | ! | ||
| + | interface GigabitEthernet0/2 | ||
| + | switchport mode dynamic desirable | ||
| + | ! | ||
| + | interface Vlan1 | ||
| + | ip address dhcp | ||
| + | shutdown | ||
| + | ! | ||
| + | interface Vlan2 | ||
| + | description Management | ||
| + | ip address 192.168.2.2 255.255.255.0 | ||
| + | standby 2 ip 192.168.2.1 | ||
| + | standby 2 timers msec 200 msec 800 | ||
| + | standby 2 priority 110 | ||
| + | standby 2 preempt delay minimum 300 | ||
| + | ! | ||
| + | interface Vlan8 | ||
| + | description Common_Services | ||
| + | ip address 172.18.8.2 255.255.255.0 | ||
| + | ip helper-address 172.18.8.11 | ||
| + | ip helper-address 172.16.241.11 | ||
| + | standby 8 ip 172.18.8.1 | ||
| + | standby 8 timers msec 200 msec 800 | ||
| + | standby 8 priority 110 | ||
| + | standby 8 preempt delay minimum 300 | ||
| + | ! | ||
| + | interface Vlan9 | ||
| + | description Administration | ||
| + | ip address 172.18.9.2 255.255.255.0 | ||
| + | ip helper-address 172.18.8.11 | ||
| + | ip helper-address 172.16.241.11 | ||
| + | standby 9 ip 172.18.9.1 | ||
| + | standby 9 timers msec 200 msec 800 | ||
| + | standby 9 priority 110 | ||
| + | standby 9 preempt delay minimum 300 | ||
| + | ! | ||
| + | interface Vlan10 | ||
| + | description BankRaadgiver | ||
| + | ip address 172.18.10.2 255.255.255.0 | ||
| + | ip helper-address 172.18.8.11 | ||
| + | ip helper-address 172.16.241.11 | ||
| + | standby 10 ip 172.18.10.1 | ||
| + | standby 10 timers msec 200 msec 800 | ||
| + | standby 10 priority 110 | ||
| + | standby 10 preempt delay minimum 300 | ||
| + | ! | ||
| + | interface Vlan11 | ||
| + | description IP-Telefoni | ||
| + | ip address 172.18.11.2 255.255.255.0 | ||
| + | ip helper-address 172.18.8.11 | ||
| + | ip helper-address 172.16.241.11 | ||
| + | standby 11 ip 172.18.11.1 | ||
| + | standby 11 timers msec 200 msec 800 | ||
| + | standby 11 priority 110 | ||
| + | standby 11 preempt delay minimum 300 | ||
| + | ! | ||
| + | router ospf 1 | ||
| + | log-adjacency-changes | ||
| + | network 172.18.0.0 0.0.255.255 area 0 | ||
| + | default-information originate | ||
| + | ! | ||
| + | router bgp 65003 | ||
| + | no synchronization | ||
| + | bgp log-neighbor-changes | ||
| + | redistribute connected | ||
| + | neighbor 172.18.255.2 remote-as 65000 | ||
| + | neighbor 172.18.255.2 description TDC_MPLS | ||
| + | neighbor 172.18.255.2 soft-reconfiguration inbound | ||
| + | neighbor 172.18.255.2 route-map 65003-RMAP-IN in | ||
| + | neighbor 172.18.255.2 route-map 65003-RMAP-OUT out | ||
| + | no auto-summary | ||
| + | ! | ||
| + | ip classless | ||
| + | ip http server | ||
| + | ip http secure-server | ||
| + | ! | ||
| + | ip radius source-interface Vlan2 | ||
| + | ! | ||
| + | ! | ||
| + | ip prefix-list 65003-PRE-IN seq 10 deny 172.18.0.0/16 le 32 | ||
| + | ip prefix-list 65003-PRE-IN seq 15 deny 192.168.2.0/24 le 32 | ||
| + | ip prefix-list 65003-PRE-IN seq 30 permit 0.0.0.0/0 le 32 | ||
| + | access-list 1 permit 172.16.241.17 | ||
| + | access-list 1 permit 172.16.7.0 0.0.0.255 | ||
| + | route-map 65003-RMAP-IN permit 10 | ||
| + | match ip address prefix-list 65003-PRE-IN | ||
| + | ! | ||
| + | route-map 65003-RMAP-OUT permit 10 | ||
| + | match ip address prefix-list 65003-PRE-OUT | ||
| + | ! | ||
| + | snmp-server community PengeBanken RO 1 | ||
| + | radius-server host 172.16.241.11 auth-port 1645 acct-port 1646 key PengeBanken | ||
| + | ! | ||
| + | control-plane | ||
| + | ! | ||
| + | ! | ||
| + | line con 0 | ||
| + | line vty 5 15 | ||
| + | ! | ||
| + | ntp clock-period 17179326 | ||
| + | ntp server 172.16.255.10 | ||
| + | end | ||
| + | </pre> | ||
Revision as of 07:58, 14 September 2009
PengeBanken Konfig filer
AAA01SWCO
version 12.2 no service pad service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname AAA01SWCO ! enable secret 5 $1$rCMy$qRGETbYap5f9zcvVrWQpn/ ! username admin privilege 15 secret 5 $1$JYrG$a8l5k1cKm/ydAS.5t.OpV/ aaa new-model ! ! aaa authentication login default group radius local aaa authorization exec default group radius local ! ! ! aaa session-id common mls qos map cos-dscp 0 8 16 24 32 46 48 56 mls qos min-reserve 5 170 mls qos min-reserve 6 85 mls qos min-reserve 7 51 mls qos min-reserve 8 34 mls qos ip subnet-zero ip routing ip domain-name pengebanken.dk ip name-server 172.16.241.11 ! ! ! ! ! ! ! spanning-tree mode rapid-pvst spanning-tree extend system-id spanning-tree vlan 2,8-11 priority 24576 ! vlan internal allocation policy ascending ! ip ssh version 2 ! ! ! ! ! interface FastEthernet0/1 switchport trunk encapsulation dot1q switchport mode trunk mls qos trust cos spanning-tree guard root ! interface FastEthernet0/2 switchport trunk encapsulation dot1q switchport mode trunk mls qos trust cos spanning-tree guard root ! interface FastEthernet0/3 description AAFS01 switchport access vlan 8 switchport mode access mls qos trust cos spanning-tree portfast ! interface FastEthernet0/4 switchport trunk encapsulation dot1q switchport mode trunk mls qos trust cos spanning-tree guard root ! interface FastEthernet0/5 switchport trunk encapsulation dot1q switchport mode trunk mls qos trust cos spanning-tree guard root ! interface FastEthernet0/6 switchport trunk encapsulation dot1q switchport mode trunk mls qos trust cos spanning-tree guard root ! interface FastEthernet0/7 switchport trunk encapsulation dot1q switchport mode trunk mls qos trust cos spanning-tree guard root ! interface FastEthernet0/8 switchport trunk encapsulation dot1q switchport mode trunk mls qos trust cos spanning-tree guard root ! interface FastEthernet0/9 switchport trunk encapsulation dot1q switchport mode trunk mls qos trust cos spanning-tree guard root ! interface FastEthernet0/10 switchport trunk encapsulation dot1q switchport mode trunk mls qos trust cos spanning-tree guard root ! interface FastEthernet0/11 switchport trunk encapsulation dot1q switchport mode trunk mls qos trust cos spanning-tree guard root ! interface FastEthernet0/12 switchport trunk encapsulation dot1q switchport mode trunk mls qos trust cos spanning-tree guard root ! interface FastEthernet0/13 switchport trunk encapsulation dot1q switchport mode trunk mls qos trust cos spanning-tree guard root ! interface FastEthernet0/14 switchport trunk encapsulation dot1q switchport mode trunk mls qos trust cos spanning-tree guard root ! interface FastEthernet0/15 switchport trunk encapsulation dot1q switchport mode trunk mls qos trust cos spanning-tree guard root ! interface FastEthernet0/16 switchport trunk encapsulation dot1q switchport mode trunk mls qos trust cos spanning-tree guard root ! interface FastEthernet0/17 switchport trunk encapsulation dot1q switchport mode trunk mls qos trust cos spanning-tree guard root ! interface FastEthernet0/18 switchport trunk encapsulation dot1q switchport mode trunk mls qos trust cos spanning-tree guard root ! interface FastEthernet0/19 switchport trunk encapsulation dot1q switchport mode trunk mls qos trust cos spanning-tree guard root ! interface FastEthernet0/20 switchport trunk encapsulation dot1q switchport mode trunk mls qos trust cos spanning-tree guard root ! interface FastEthernet0/21 description Til_AHA01RT no switchport ip address 172.18.255.5 255.255.255.252 ip ospf network point-to-point ip ospf dead-interval minimal hello-multiplier 3 mls qos trust cos spanning-tree portfast ! interface FastEthernet0/22 description Til_AAA01SWOP switchport trunk encapsulation dot1q switchport trunk allowed vlan 2,8-11 switchport mode trunk mls qos trust cos spanning-tree guard root ! interface FastEthernet0/23 description Til_AAA01SWCO switchport trunk encapsulation dot1q switchport trunk allowed vlan 2,8-11 switchport mode trunk mls qos trust cos ! interface FastEthernet0/24 description Til_TDC MPLS no switchport ip address 172.18.255.1 255.255.255.252 mls qos trust cos ! interface GigabitEthernet0/1 switchport mode dynamic desirable ! interface GigabitEthernet0/2 switchport mode dynamic desirable ! interface Vlan1 ip address dhcp shutdown ! interface Vlan2 description Management ip address 192.168.2.2 255.255.255.0 standby 2 ip 192.168.2.1 standby 2 timers msec 200 msec 800 standby 2 priority 110 standby 2 preempt delay minimum 300 ! interface Vlan8 description Common_Services ip address 172.18.8.2 255.255.255.0 ip helper-address 172.18.8.11 ip helper-address 172.16.241.11 standby 8 ip 172.18.8.1 standby 8 timers msec 200 msec 800 standby 8 priority 110 standby 8 preempt delay minimum 300 ! interface Vlan9 description Administration ip address 172.18.9.2 255.255.255.0 ip helper-address 172.18.8.11 ip helper-address 172.16.241.11 standby 9 ip 172.18.9.1 standby 9 timers msec 200 msec 800 standby 9 priority 110 standby 9 preempt delay minimum 300 ! interface Vlan10 description BankRaadgiver ip address 172.18.10.2 255.255.255.0 ip helper-address 172.18.8.11 ip helper-address 172.16.241.11 standby 10 ip 172.18.10.1 standby 10 timers msec 200 msec 800 standby 10 priority 110 standby 10 preempt delay minimum 300 ! interface Vlan11 description IP-Telefoni ip address 172.18.11.2 255.255.255.0 ip helper-address 172.18.8.11 ip helper-address 172.16.241.11 standby 11 ip 172.18.11.1 standby 11 timers msec 200 msec 800 standby 11 priority 110 standby 11 preempt delay minimum 300 ! router ospf 1 log-adjacency-changes network 172.18.0.0 0.0.255.255 area 0 default-information originate ! router bgp 65003 no synchronization bgp log-neighbor-changes redistribute connected neighbor 172.18.255.2 remote-as 65000 neighbor 172.18.255.2 description TDC_MPLS neighbor 172.18.255.2 soft-reconfiguration inbound neighbor 172.18.255.2 route-map 65003-RMAP-IN in neighbor 172.18.255.2 route-map 65003-RMAP-OUT out no auto-summary ! ip classless ip http server ip http secure-server ! ip radius source-interface Vlan2 ! ! ip prefix-list 65003-PRE-IN seq 10 deny 172.18.0.0/16 le 32 ip prefix-list 65003-PRE-IN seq 15 deny 192.168.2.0/24 le 32 ip prefix-list 65003-PRE-IN seq 30 permit 0.0.0.0/0 le 32 access-list 1 permit 172.16.241.17 access-list 1 permit 172.16.7.0 0.0.0.255 route-map 65003-RMAP-IN permit 10 match ip address prefix-list 65003-PRE-IN ! route-map 65003-RMAP-OUT permit 10 match ip address prefix-list 65003-PRE-OUT ! snmp-server community PengeBanken RO 1 radius-server host 172.16.241.11 auth-port 1645 acct-port 1646 key PengeBanken ! control-plane ! ! line con 0 line vty 5 15 ! ntp clock-period 17179326 ntp server 172.16.255.10 end