Scribd Logo
Upload

Welcome to Scribd!

  • LPZ14F

    Uploaded by

    John Principio
    24 views8 pages
    asda

    Original Title

    LPZ14F (1)

    Copyright

    © © All Rights Reserved

    Available Formats

    TXT, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    asda

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    24 views8 pages

    LPZ14F

    Uploaded by

    John Principio
    asda

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 8

    -------------------------------------------BASIC CONFIG-------------------------------------------------------------no service pad

    service timestamps debug datetime msec localtime show-timezone


    service timestamps log datetime msec localtime show-timezone
    service password-encryption
    !
    hostname LPZ14SWA
    !
    boot-start-marker
    boot-end-marker
    !
    logging buffered 32768
    !
    username techsupport privilege 15 secret u@$
    no aaa new-model
    clock timezone PHT 8 0
    switch 1 provision ws-c3750x-48p
    switch 2 provision ws-c3750x-48p
    system mtu routing 1500
    ip dhcp excluded-address 10.70.40.1 10.70.40.20
    !
    ip dhcp pool VLAN_407
    network 10.70.40.0 255.255.252.0
    default-router 10.70.40.1
    dns-server 10.0.149.3 10.0.149.4
    lease 7
    !
    !
    ip dhcp snooping vlan 407
    ip dhcp snooping
    no ip domain-lookup
    ip domain-name meralco.com.ph
    vtp domain MERALCO
    vtp mode transparent
    udld enable
    udld message time 7
    !
    !
    !
    !
    spanning-tree mode mst
    spanning-tree mst configuration
    name MERALCO_CLAN
    instance 4094 vlan 1-4094
    instance 0 vlan 1,800,880
    instance 1 vlan 290,401-424,470
    revision 1
    spanning-tree mst 0 priority 61440
    spanning-tree mst 1 priority 61440
    !
    !
    !
    !
    !
    errdisable recovery cause bpduguard

    errdisable recovery cause channel-misconfig (STP)


    errdisable recovery cause storm-control
    errdisable recovery cause loopback
    errdisable recovery interval 900
    !
    !
    !
    !
    vlan internal allocation policy ascending
    !
    vlan 40
    name SCADA-EBS
    !
    vlan 41
    name SCADA_PRIV_NETWORK
    !
    vlan 103
    name VRRP_68
    !
    vlan 173
    name LOPEZ_MGE_UPS
    !
    vlan 290
    name ALU_WirelessAP_Mgmt
    !
    vlan 300
    name ENT_WIFI_FACILITY
    !
    vlan 301
    name WIFI_HOTSPOT_UPLINK
    !
    vlan 305
    name INTERNET_SEGMENT
    !
    vlan 316
    name 3RD_ISP
    !
    vlan 320
    name METER_TEST_VLAN
    !
    vlan 321
    name AMR_BACKHAUL
    !
    vlan 400
    !
    vlan 401
    name DATA_LPZ02F
    !
    vlan 402
    name DATA_LPZ03F
    !
    vlan 403
    name DATA_LPZ04F
    !
    vlan 404
    name DATA_LPZ06F
    !
    vlan 405
    name DATA_LPZ09F
    !

    vlan 406
    name DATA_LPZ11F
    !
    vlan 407
    name DATA_LPZ14F
    !
    vlan 408
    name DATA_LPZ16F
    !
    vlan 409
    name DATA_TSB02F
    !
    vlan 410
    name DATA_TSB03F
    !
    vlan 411
    name DATA_TSB04F
    !
    vlan 412
    name DATA_LPZ05F
    !
    vlan 413
    name DATA_CWC
    !
    vlan 414
    name DATA_OPB
    !
    vlan 415
    name DATA_HRB
    !
    vlan 416
    name DATA_GS
    !
    vlan 417
    name DATA_TRF
    !
    vlan 418
    name DATA_SCB
    !
    vlan 419
    name DATA_JLB
    !
    vlan 420
    name DATA_BG
    !
    vlan 421
    name DATA_LTC
    !
    vlan 422
    name DATA_TRC
    !
    vlan 423
    name DATA_BSC03F
    !
    vlan 424
    name DATA_BSC01F
    !
    vlan 425
    !
    vlan 470

    name CLAN_MGMT
    !
    vlan 500
    name Intranet_Portal_Dev
    !
    vlan 502
    name IDP_CORP_CNXN
    !
    vlan 503
    !
    vlan 505
    name Mrktng_Creative_Team
    !
    vlan 509
    !
    vlan 518
    name FACILITIES_ACU_MGNT
    !
    vlan 520
    name UCS_DEV_VLAN
    !
    vlan 522
    name 3rd_ISP_DHCP_enabled
    !
    vlan 523
    name PLDT_FTH_INTERNET
    !
    vlan 525
    name LSummit_WiFi_AP
    !
    vlan 527
    name MOC_CCTV
    !
    vlan 540
    name MeterCamera
    !
    vlan 566
    name Vidyo
    !
    vlan 567
    name Training_ADMS
    !
    vlan 650
    !
    vlan 751
    name PLDT_IPTV
    !
    vlan 800
    name VoiceVlan
    !
    vlan 880
    name Call_Center
    !
    vlan 999
    !
    vlan 1188
    name TV5_INTL_FEED
    !
    vlan 2012
    name Video_Conf_POC

    !
    vlan 3364
    name IP_TV
    !
    !
    !
    !
    interface FastEthernet0
    no ip address
    shutdown
    !
    !
    -------------------------------------------------PORT CONFIG------------------------------------------------------------------!FOR:
    interface range GigabitEthernet1/0/1-48, GigabitEthernet2/0/1-48
    switchport access vlan 1
    switchport mode access
    power inline never
    no logging event link-status
    speed 100
    duplex full
    srr-queue bandwidth share 1 25 60 5
    priority-queue out
    no snmp trap link-status
    mls qos trust dscp
    storm-control broadcast level 10.00
    spanning-tree portfast
    switchport port-security
    switchport port-security maximum 5
    switchport port-security violation shutdown
    !
    !FOR:
    int range g1/1/1,g2/1/1
    switchport trunk allowed vlan 1,40,41,103,173,290,300,301,305,316,320,321
    switchport trunk allowed vlan add 400-424,470,500-503,505,509,518,520,522,523
    switchport trunk allowed vlan add 525,527,540,566,567,751,800,880,1188,2012,336
    4
    description Uplink to MOCSW02
    switchport trunk encapsulation dot1q
    switchport trunk native vlan 999
    switchport mode trunk
    switchport nonegotiate
    mls qos trust dscp
    storm-control broadcast level 10.00
    storm-control multicast level 40.00
    ip dhcp snooping trust
    ip dhcp snooping information option allow-untrusted
    !!!!!!!!!!!!!!!!!!!FOR: wireless config
    int gX/X/X
    switchport access vlan 292
    switchport mode access
    power inline never
    no logging event link-status
    speed 100
    duplex full

    srr-queue bandwidth share 1 25 60 5


    priority-queue out
    no snmp trap link-status
    mls qos trust dscp
    storm-control broadcast level 10.00
    spanning-tree portfast
    switchport port-security
    switchport port-security maximum 5
    switchport port-security violation shutdown
    !
    !FOR:
    int port-channel 1
    switchport trunk allowed vlan 1,40,41,103,173,290,300,301,305,316,320,321
    switchport trunk allowed vlan add 400-424,470,500-503,505,509,518,520,522,523
    switchport trunk allowed vlan add 525,527,540,566,567,751,800,880,1188,2012,336
    4
    description Uplink to MOCSW02
    switchport trunk encapsulation dot1q
    switchport trunk native vlan 999
    switchport trunk allowed vlan 409,470,800
    switchport mode trunk
    switchport nonegotiate
    mls qos trust dscp
    storm-control broadcast level 10.00
    storm-control multicast level 40.00
    ip dhcp snooping trust
    ip dhcp snooping information option allow-untrusted
    !
    interface Vlan1
    no ip address
    shutdown
    !
    interface Vlan407
    description DHCP Interface
    ip address 10.70.40.2 255.255.252.0
    !
    interface Vlan470
    description Management Interface
    ip address 10.70.1.13 255.255.255.0
    !
    no ip http server
    no ip http secure-server
    !
    !
    ip access-list extended ADMINISTRATORS
    permit tcp 192.168.128.0 0.0.0.255 any eq telnet
    permit tcp 192.168.128.0 0.0.0.255 any eq 22
    permit tcp 192.168.129.0 0.0.0.255 any eq telnet
    permit tcp 192.168.129.0 0.0.0.255 any eq 22
    permit tcp host 10.0.133.2 any eq telnet
    permit tcp host 10.0.133.2 any eq 22
    permit tcp host 10.0.138.131 any eq telnet
    permit tcp host 10.0.138.131 any eq 22
    permit tcp host 10.0.129.161 any eq telnet
    permit tcp host 10.0.129.161 any eq 22
    permit tcp host 10.0.157.99 any eq telnet
    permit tcp host 10.0.157.99 any eq 22
    ip access-list extended Permit_DHCP_Only
    permit udp any any eq bootps

    permit udp any any eq bootpc


    !
    ip sla enable reaction-alerts
    logging trap warnings
    logging host 192.168.128.6
    !
    snmp-server community primelms_RO RO
    snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
    snmp-server enable traps flowmon
    snmp-server enable traps transceiver all
    snmp-server enable traps call-home message-send-fail server-fail
    snmp-server enable traps tty
    snmp-server enable traps eigrp
    snmp-server enable traps ospf state-change
    snmp-server enable traps ospf errors
    snmp-server enable traps ospf retransmit
    snmp-server enable traps ospf lsa
    snmp-server enable traps ospf cisco-specific state-change nssa-trans-change
    snmp-server enable traps ospf cisco-specific state-change shamlink interface
    snmp-server enable traps ospf cisco-specific state-change shamlink neighbor
    snmp-server enable traps ospf cisco-specific errors
    snmp-server enable traps ospf cisco-specific retransmit
    snmp-server enable traps ospf cisco-specific lsa
    snmp-server enable traps license
    snmp-server enable traps auth-framework sec-violation
    snmp-server enable traps cef resource-failure peer-state-change peer-fib-state-c
    hange inconsistency
    snmp-server enable traps cluster
    snmp-server enable traps config-copy
    snmp-server enable traps config
    snmp-server enable traps config-ctid
    snmp-server enable traps dot1x auth-fail-vlan guest-vlan no-auth-fail-vlan no-gu
    est-vlan
    snmp-server enable traps energywise
    snmp-server enable traps fru-ctrl
    snmp-server enable traps entity
    snmp-server enable traps event-manager
    snmp-server enable traps hsrp
    snmp-server enable traps ipmulticast
    snmp-server enable traps ike policy add
    snmp-server enable traps ike policy delete
    snmp-server enable traps ike tunnel start
    snmp-server enable traps ike tunnel stop
    snmp-server enable traps ipsec cryptomap add
    snmp-server enable traps ipsec cryptomap delete
    snmp-server enable traps ipsec cryptomap attach
    snmp-server enable traps ipsec cryptomap detach
    snmp-server enable traps ipsec tunnel start
    snmp-server enable traps ipsec tunnel stop
    snmp-server enable traps ipsec too-many-sas
    snmp-server enable traps power-ethernet group 1
    snmp-server enable traps power-ethernet group 2
    snmp-server enable traps power-ethernet group 3
    snmp-server enable traps power-ethernet group 4
    snmp-server enable traps power-ethernet police
    snmp-server enable traps pim neighbor-change rp-mapping-change invalid-pim-messa
    ge
    snmp-server enable traps cpu threshold
    snmp-server enable traps rep
    snmp-server enable traps ipsla

    snmp-server enable traps vstack


    snmp-server enable traps bridge newroot topologychange
    snmp-server enable traps stpx inconsistency root-inconsistency loop-inconsistenc
    y
    snmp-server enable traps syslog
    snmp-server enable traps vtp
    snmp-server enable traps vlancreate
    snmp-server enable traps vlandelete
    snmp-server enable traps flash insertion removal
    snmp-server enable traps port-security
    snmp-server enable traps envmon fan shutdown supply temperature status
    snmp-server enable traps stackwise
    snmp-server enable traps vrfmib vrf-up vrf-down vnet-trunk-up vnet-trunk-down
    snmp-server enable traps errdisable
    snmp-server enable traps mac-notification change move threshold
    snmp-server enable traps vlan-membership
    !
    banner motd ^C
    ============================================================================
    ********************************** WARNING *********************************
    This is a private property of MERALCO. Only AUTHORIZED MERALCO personnel are
    allowed to access this network device. All activities on this device logged
    and saved. Violators of policies governing this system are subject to
    diciplinary action and may be reported to law enforcement.
    ****************************************************************************
    Avoid prosecution. If you have accidentally accessed this system,
    LOG-OFF IMMEDIATELY.
    ============================================================================
    ^C
    !
    line con 0
    exec-timeout 5 0
    logging synchronous
    login local
    line vty 0 4
    exec-timeout 5 0
    logging synchronous
    login local
    transport input telnet ssh
    line vty 5 15
    exec-timeout 5 0
    logging synchronous
    login local
    transport input telnet ssh
    !
    ntp server 10.80.0.9
    ntp server 10.80.0.10
    mac address-table aging-time 1200
    end

    You might also like