API tools faq
paste
Advertisement
D0cEvil

Example - Router config

D0cEvil
Sep 19th, 2022 (edited)
513
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
TCL 3.56 KB | Software | 0 0
raw download clone embed print report
  1. version 15.1
  2. service timestamps log datetime msec
  3. no service timestamps debug datetime msec
  4. service password-encryption
  5. security passwords min-length 10
  6. !
  7. hostname HQ_1
  8. !
  9. logging userinfo
  10. login block-for 180 attempts 3 within 30
  11. login on-failure log
  12. login on-success log
  13. !
  14. !
  15. enable secret 5 $1$mERr$9cTjUIEqNGurQiFU.ZeCi1
  16. !
  17. !
  18. !
  19. !
  20. !
  21. aaa new-model
  22. !
  23. aaa authentication login SRV group radius local enable
  24. !
  25. !
  26. !
  27. !
  28. !
  29. !
  30. !
  31. no ip cef
  32. no ipv6 cef
  33. !
  34. !
  35. !
  36. username admin privilege 15 secret 5 $1$mERr$WvpW0n5HghRrqnrwXCUUl.
  37. !
  38. !
  39. license udi pid CISCO2911/K9 sn FTX15243MB8
  40. !
  41. !
  42. !
  43. !
  44. !
  45. !
  46. !
  47. !
  48. !
  49. ip ssh version 2
  50. ip ssh time-out 60
  51. ip domain-name contoso.com
  52. ip name-server 192.168.1.2
  53. !
  54. !
  55. spanning-tree mode pvst
  56. !
  57. !
  58. !
  59. !
  60. !
  61. !
  62. interface GigabitEthernet0/0
  63.  description TO HQ_2
  64.  ip address 172.20.5.1 255.255.255.252
  65.  duplex auto
  66.  speed auto
  67. !
  68. interface GigabitEthernet0/1
  69.  no ip address
  70.  duplex auto
  71.  speed auto
  72. !
  73. interface GigabitEthernet0/1.10
  74.  description VLAN 10
  75.  encapsulation dot1Q 10
  76.  ip address 192.168.1.253 255.255.255.0
  77.  standby 1 ip 192.168.1.1
  78.  standby 1 priority 105
  79.  standby 1 preempt
  80. !
  81. interface GigabitEthernet0/1.20
  82.  description VLAN 20
  83.  encapsulation dot1Q 20 native
  84.  ip address 192.168.2.253 255.255.255.0
  85.  standby 2 ip 192.168.2.1
  86.  standby 2 priority 105
  87.  standby 2 preempt
  88. !
  89. interface GigabitEthernet0/1.99
  90.  description VLAN 99
  91.  encapsulation dot1Q 99
  92.  ip address 192.168.99.253 255.255.255.0
  93.  standby 3 ip 192.168.99.1
  94.  standby 3 priority 105
  95.  standby 3 preempt
  96. !
  97. interface GigabitEthernet0/2
  98.  no ip address
  99.  duplex auto
  100.  speed auto
  101.  shutdown
  102. !
  103. interface GigabitEthernet0/0/0
  104.  description ISP 1
  105.  ip address 200.1.1.1 255.255.255.252
  106. !
  107. interface GigabitEthernet0/1/0
  108.  description TO Team Office
  109.  ip address 172.20.5.13 255.255.255.252
  110. !
  111. interface GigabitEthernet0/2/0
  112.  description TO Edinburg_2
  113.  ip address 172.20.5.9 255.255.255.252
  114. !
  115. interface GigabitEthernet0/3/0
  116.  description TO SW_CORE
  117.  ip address 172.20.5.42 255.255.255.252
  118. !
  119. interface Vlan1
  120.  no ip address
  121.  shutdown
  122. !
  123. router eigrp 10
  124.  eigrp router-id 60.60.60.60
  125.  variance 3
  126.  redistribute static
  127.  passive-interface GigabitEthernet0/1
  128.  passive-interface GigabitEthernet0/0/0
  129.  passive-interface GigabitEthernet0/1.10
  130.  passive-interface GigabitEthernet0/1.20
  131.  passive-interface GigabitEthernet0/1.99
  132.  network 172.20.5.0 0.0.0.3
  133.  network 172.20.5.8 0.0.0.3
  134.  network 172.20.5.12 0.0.0.3
  135.  network 172.20.5.40 0.0.0.3
  136.  network 192.168.1.0
  137.  network 192.168.2.0
  138.  network 192.168.99.0
  139.  
  140. !
  141. ip classless
  142. ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/0/0
  143. !
  144. ip flow-export version 9
  145. !
  146. !
  147. ip access-list extended sl_def_acl
  148.  deny tcp any any eq telnet
  149.  deny tcp any any eq www
  150.  deny tcp any any eq 22
  151.  permit tcp any any eq 22
  152. !
  153. banner login  Welcome to HQ1 Router CONTOSO.COM 
  154. banner motd  Unauthorized access to this device is prohibited! 
  155. !
  156. radius-server host 192.168.1.4 auth-port 1645 key P@ssw0rd
  157. !
  158. !
  159. !
  160. logging 192.168.1.3
  161. line con 0
  162.  exec-timeout 5 0
  163.  password 7 0822455D0A165445415F59
  164.  logging synchronous
  165.  login authentication SRV
  166. !
  167. line aux 0
  168. !
  169. line vty 0 4
  170.  exec-timeout 5 0
  171.  password 7 0822455D0A165445415F59
  172.  logging synchronous
  173.  login authentication SRV
  174.  transport input ssh
  175.  transport output ssh
  176. line vty 5 15
  177.  exec-timeout 5 0
  178.  password 7 0822455D0A165445415F59
  179.  logging synchronous
  180.  login authentication SRV
  181.  transport input ssh
  182.  transport output ssh
  183. !
  184. !
  185. ntp authentication-key 1 md5 08116C5D1A0E550516 7
  186. ntp authenticate
  187. ntp trusted-key 1
  188. ntp server 192.168.1.3 key 1
  189. ntp update-calendar
  190. !
  191. end
Tags: Config howto cisco
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!