#
 sysname xyz
#
 undo password-control aging enable
 undo password-control length enable
 undo password-control history enable
 password-control login-attempt 3 exceed lock-time 120
#
 super password level 3 cipher $c$3$ffdafjalfjadklfjaslfjasdlfjasldjfadslfja==
#
 local-server nas-ip 127.0.0.1 key cipher $c$3$fdafgaGGGDgagafgagagafadgfdagfa=
#
 domain default enable tacacs
#
 lldp enable
#
 loopback-detection enable
 priority trust
#
 igmp-snooping enable
#
 dhcp-snooping information enable
 dhcp-snooping information strategy replace
#
 dns server 10.20.30.50
 dns server 10.20.30.40
 dns domain a.local
#
hwtacacs scheme hwtac
 primary authentication 10.20.30.45
 primary authorization 10.20.30.45
 primary accounting 10.20.30.45
 nas-ip 10.54.45.44
 key authentication cipher $c$3$adfgaskjlKLLJfsdafsaasf849fsda54156a4faFDASGSFASFSD=
 key authorization cipher $c$3$dafadkljklmociIOHfsafASN5498gasgdfasgasfgas64564afd=
 key accounting cipher $c$3$8dfafdasq546664ESIZ70g8DizEr+XYi1fuW5Q8oJQPKaIDw/+A=
 user-name-format without-domain
#
radius scheme system
#
domain system
domain tacacs
 scheme hwtacacs-scheme hwtac local
#
local-user adadminaaa
local-user admin
 password cipher $c$3$dfafdasff4g4f5g4FDsfgadfgadgdfgfdagad==
 service-type ssh telnet terminal
 level 3                                  
#
stp region-configuration
 region-name REG
 revision-level 1
 instance 1 vlan 1 to 4094
 active region-configuration
#
acl number 2009
 rule 0 permit source 10.20.30.0 0.0.0.255
 rule 1 permit source 10.20.40.0 0.0.0.255
acl number 2011
 rule 0 permit source 10.20.20.14 0
 rule 1 permit source 10.20.20.15 0
 rule 2 permit source 10.20.1.36 0
 rule 3 deny
acl number 2012
 rule 0 permit source 10.20.30.15 0
 rule 1 deny
#
vlan 1
 igmp-snooping enable
#
.
.
.
.
#
vlan 901
 name TEST
#
interface Vlan-interface87
#
 ntp-service unicast-server 10.20.30.40
 ntp-service unicast-server 10.20.30.71
#
interface Aux1/0/0                        
#
interface Ethernet1/0/1
 stp edged-port enable
 port link-type trunk
 port trunk permit vlan all
 port trunk pvid vlan 901
 loopback-detection enable
 dhcp-snooping trust
 description to DHCP server
#
.
.
.
.
.
#
interface Ethernet1/0/48
 stp edged-port enable
 port access vlan 901
 loopback-detection enable
#
.
.
.
.
.
interface NULL0
#
 management-vlan 87
#
 info-center source default channel 0 log level debugging
 info-center loghost 10.20.30.40 facility local2
 info-center console channel 1
#
 dhcp-snooping
#                                         
 ip route-static 0.0.0.0 0.0.0.0 10.50.64.1 preference 60
#
 snmp-agent
 snmp-agent local-engineid fdafa
 snmp-agent community read adfaf acl 2011
 snmp-agent community read fdasfdfa acl 2012
 snmp-agent community write fasdfasaaaaa acl 2011
 snmp-agent log all
 snmp-agent sys-info version all
 snmp-agent mib-view included admin iso
 snmp-agent mib-view included bbb iso
 snmp-agent mib-view included aaa iso
 snmp-agent mib-view included aaa private
#
 ip http acl 2009
#
 ssh authentication-type default password
#
 header login %-- swtest --%
#
user-interface aux 0
 authentication-mode scheme
user-interface vty 0 4
 acl 2009 inbound                         
 authentication-mode scheme
 protocol inbound ssh
user-interface vty 5 15
#
return