API tools faq
paste
Advertisement
Guest User

REAL CONFIGURATION ROUTER CNR ITALY

a guest
Apr 23rd, 2018
555
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 21.66 KB | None | 0 0
raw download clone embed print report
  1. REAL CONFIGURATION ROUTER CNR ITALY
  2.  
  3. version 15.1
  4. service timestamps debug uptime
  5. service timestamps log datetime localtime show-timezone year
  6. no service password-encryption
  7. service counters max age 10
  8. !
  9. hostname routertito
  10. !
  11. boot-start-marker
  12. boot system disk0:/s72033-adventerprisek9-mz.151-2.SY.bin
  13. boot-end-marker
  14. !
  15. !
  16. logging reload debugging
  17. enable secret 5 OMISISS
  18. !
  19. username nocview privilege 7 password 7 OMISISS
  20. username imaa privilege 15 password 7 OMISISS
  21. no aaa new-model
  22. clock timezone CET 1
  23. clock summer-time CEST recurring last Sun Mar 2:00 last Sun Oct 2:00
  24. !
  25. !
  26. !
  27. !
  28. !
  29. vtp domain WAN
  30. vtp mode transparent
  31. !
  32. !
  33. ip domain-name ced.imaa.cnr.it
  34. ipv6 unicast-routing
  35. ipv6 mfib hardware-switching replication-mode ingress
  36. udld enable
  37.  
  38. mls netflow interface
  39. mls qos service-policy input Policing
  40. mls qos
  41. no mls acl tcam share-global
  42. mls cef error action freeze
  43. !
  44. !
  45. !
  46. !
  47. !
  48. !
  49. !
  50. !
  51. !
  52. !
  53. !
  54. !
  55. !
  56. !
  57. !
  58. !
  59. !
  60. !
  61. !
  62. !
  63. !
  64. !
  65. !
  66. archive
  67. log config
  68. logging enable
  69. hidekeys
  70. path ftp://cisco:C15c0Runn1ng..@192.168.30.99/cisco/$h/$h-$t
  71. write-memory
  72. time-period 43800
  73. object-group ip address vpnTOmarsico
  74. host-info 192.168.30.249
  75. host-info 192.168.30.250
  76. host-info 192.168.30.251
  77. host-info 192.168.30.99
  78. !
  79. object-group ip address zenossTOmarsico
  80. host-info 150.145.132.2
  81. host-info 150.145.132.6
  82. host-info 10.100.101.100
  83. host-info 10.100.101.228
  84. host-info 10.30.21.2
  85. !
  86. !
  87. spanning-tree mode rapid-pvst
  88. no spanning-tree optimize bpdu transmission
  89. spanning-tree uplinkfast
  90. spanning-tree backbonefast
  91. !
  92. redundancy
  93. main-cpu
  94. auto-sync running-config
  95. mode sso
  96. !
  97. vlan internal allocation policy ascending
  98. vlan access-log ratelimit 2000
  99. !
  100. vlan 2
  101. name Inside
  102. !
  103. vlan 3
  104. name DMZ
  105. !
  106. vlan 4
  107. name P2P-Marsico
  108. !
  109. vlan 7
  110. name ADMIN
  111. !
  112. vlan 9
  113. name Biblioteca
  114. !
  115. vlan 10
  116. name IBAM
  117. !
  118. vlan 11
  119. name IMIP
  120. !
  121. vlan 12
  122. name Radiometrie
  123. !
  124. vlan 13
  125. name Geofisico
  126. !
  127. vlan 14
  128. name LIDAR
  129. !
  130. vlan 15
  131. name LGMA
  132. !
  133. vlan 16
  134. name Amministrazione
  135. !
  136. vlan 18
  137. name NDVI
  138. !
  139. vlan 19
  140. name Argon
  141. !
  142. vlan 20
  143. name EPM
  144. !
  145. vlan 24
  146. name Servizi-Interni
  147. !
  148. vlan 25
  149. name Clouds
  150. !
  151. vlan 26
  152. name Geohazard
  153. !
  154. vlan 27
  155. name Storage-lto-cluster
  156. !
  157. vlan 28
  158. name UNIBAS
  159. mtu 1280
  160. !
  161. vlan 29
  162. name Strumentazione
  163. !
  164. vlan 30
  165. name TeRN
  166. !
  167. vlan 40
  168. name Arduino
  169. !
  170. vlan 50
  171. name WIFI-GUEST
  172. !
  173. vlan 51
  174. name Eduroam
  175. !
  176. vlan 60
  177. name IBM
  178. !
  179. vlan 61
  180. name GeoSdi
  181. !
  182. vlan 100
  183. name VOICE-VLAN
  184. !
  185. vlan 200
  186. name Internet
  187. !
  188. vlan 400
  189. name Do1qTunnel-Unibas
  190. !
  191. vlan 401
  192. name test2
  193. !
  194. vlan 500
  195. name IMIP-PUB
  196. !
  197. vlan 862
  198. name MAIN-FIBER-LINK
  199. !
  200. vlan 863
  201. name BACKUP-FIBER-LINK
  202. !
  203. track 1 interface GigabitEthernet2/3 line-protocol
  204. !
  205. track 2 ip route 0.0.0.0 0.0.0.0 reachability
  206. !
  207. track 3 ip sla 2 reachability
  208. !
  209. track 10 ip route 0.0.0.0 0.0.0.0 reachability
  210. !
  211. track 40 ip sla 1
  212. !
  213. ip ftp username cisco
  214. ip ftp password OMISISS
  215. ip tftp source-interface Vlan1
  216. ip ssh source-interface Vlan200
  217. ip ssh version 2
  218. ip scp server enable
  219. !
  220. class-map match-all Policing
  221. match access-group name Policing
  222. !
  223. !
  224. policy-map Policing
  225. class Policing
  226. police 100000000 conform-action transmit exceed-action drop violate-action drop
  227. !
  228. !
  229. !
  230. !
  231. !
  232. !
  233. !
  234. !
  235. !
  236. !
  237. !
  238. !
  239. !
  240. interface Loopback100
  241. description Loopback Source Routing From Marsico
  242. ip address 10.111.111.1 255.255.255.252
  243. no ip redirects
  244. no ip proxy-arp
  245. ip nat outside
  246. !
  247. interface Port-channel26
  248. switchport
  249. switchport trunk encapsulation dot1q
  250. switchport trunk allowed vlan 1-199,201-499,501-861,864-4094
  251. switchport mode trunk
  252. mls qos trust dscp
  253. !
  254. interface TenGigabitEthernet1/1
  255. description Uplink Core2
  256. switchport
  257. switchport trunk encapsulation dot1q
  258. switchport trunk allowed vlan 1-199,201-499,501-861,864-4094
  259. switchport mode trunk
  260. logging event spanning-tree status
  261. udld port
  262. mls qos trust dscp
  263. no cdp enable
  264. channel-group 26 mode active
  265. !
  266. interface TenGigabitEthernet1/2
  267. description Uplink Core1
  268. switchport
  269. switchport trunk encapsulation dot1q
  270. switchport trunk allowed vlan 1-199,201-499,501-861,864-4094
  271. switchport mode trunk
  272. logging event spanning-tree status
  273. udld port
  274. mls qos trust dscp
  275. no cdp enable
  276. channel-group 26 mode active
  277. !
  278. interface TenGigabitEthernet1/3
  279. switchport
  280. switchport trunk encapsulation dot1q
  281. switchport trunk allowed vlan 1-199,201-499,501-861,864-4094
  282. switchport mode trunk
  283. logging event spanning-tree status
  284. shutdown
  285. mls qos trust dscp
  286. no cdp enable
  287. !
  288. interface TenGigabitEthernet1/4
  289. switchport
  290. shutdown
  291. udld port
  292. no cdp enable
  293. !
  294. interface GigabitEthernet2/1
  295. description Uplink-core1
  296. switchport
  297. switchport trunk encapsulation dot1q
  298. switchport trunk allowed vlan 1-199,201-499,501-861,864-4094
  299. switchport mode trunk
  300. logging event spanning-tree status
  301. udld port
  302. mls qos trust dscp
  303. no cdp enable
  304. !
  305. interface GigabitEthernet2/2
  306. description Trunk-TO-ME-SWITCH
  307. switchport
  308. switchport trunk encapsulation dot1q
  309. switchport trunk allowed vlan 1,862,863
  310. switchport mode trunk
  311. speed 1000
  312. duplex full
  313. !
  314. interface GigabitEthernet2/3
  315. description Router-MPLS-TI
  316. switchport
  317. switchport access vlan 200
  318. switchport mode access
  319. !
  320. interface GigabitEthernet2/4
  321. description PA3020-OUTSIDE
  322. switchport
  323. switchport access vlan 200
  324. switchport mode access
  325. !
  326. interface GigabitEthernet2/5
  327. description VPN-Router
  328. switchport
  329. switchport access vlan 200
  330. switchport mode access
  331. !
  332. interface GigabitEthernet2/6
  333. description IMIP-PUB
  334. switchport
  335. switchport access vlan 500
  336. switchport mode access
  337. !
  338. interface GigabitEthernet2/7
  339. description Polycom
  340. switchport
  341. switchport access vlan 200
  342. switchport mode access
  343. !
  344. interface GigabitEthernet2/8
  345. description GlobalProtect
  346. switchport
  347. switchport access vlan 200
  348. switchport mode access
  349. !
  350. interface GigabitEthernet2/9
  351. description VL500toMPLS
  352. switchport
  353. switchport access vlan 500
  354. switchport mode access
  355. spanning-tree portfast edge
  356. !
  357. interface GigabitEthernet2/10
  358. description Polycom-SalaConf
  359. switchport
  360. switchport access vlan 200
  361. switchport mode access
  362. !
  363. interface GigabitEthernet2/11
  364. switchport
  365. switchport trunk encapsulation dot1q
  366. switchport trunk native vlan 14
  367. switchport mode trunk
  368. shutdown
  369. flowcontrol receive desired
  370. spanning-tree portfast edge
  371. spanning-tree bpdufilter enable
  372. !
  373. interface GigabitEthernet2/12
  374. description Sw-SAN-Lidar
  375. switchport
  376. switchport trunk encapsulation dot1q
  377. switchport trunk native vlan 14
  378. switchport trunk allowed vlan 14
  379. switchport mode trunk
  380. spanning-tree portfast edge
  381. !
  382. interface GigabitEthernet2/13
  383. switchport
  384. switchport access vlan 27
  385. switchport mode access
  386. spanning-tree portfast edge
  387. !
  388. interface GigabitEthernet2/14
  389. switchport
  390. switchport access vlan 27
  391. switchport mode access
  392. spanning-tree portfast edge
  393. !
  394. interface GigabitEthernet2/15
  395. switchport
  396. switchport access vlan 27
  397. switchport mode access
  398. spanning-tree portfast edge
  399. !
  400. interface GigabitEthernet2/16
  401. description Uplink-core2
  402. switchport
  403. switchport trunk encapsulation dot1q
  404. switchport trunk allowed vlan 1-199,201-499,501-861,864-4094
  405. switchport mode trunk
  406. logging event spanning-tree status
  407. udld port
  408. mls qos trust dscp
  409. no cdp enable
  410. spanning-tree portfast edge
  411. !
  412. interface GigabitEthernet3/1
  413. description MGT SAN Pergola
  414. switchport
  415. switchport access vlan 60
  416. switchport mode access
  417. spanning-tree portfast edge
  418. !
  419. interface GigabitEthernet3/2
  420. description MGT SAN Pergola
  421. switchport
  422. switchport access vlan 60
  423. switchport mode access
  424. spanning-tree portfast edge
  425. !
  426. interface GigabitEthernet3/3
  427. switchport
  428. switchport access vlan 27
  429. switchport mode access
  430. spanning-tree portfast edge
  431. !
  432. interface GigabitEthernet3/4
  433. switchport
  434. switchport access vlan 27
  435. switchport mode access
  436. spanning-tree portfast edge
  437. !
  438. interface GigabitEthernet3/5
  439. description DELL-TITO
  440. switchport
  441. switchport access vlan 26
  442. switchport mode access
  443. spanning-tree portfast edge
  444. !
  445. interface GigabitEthernet3/6
  446. switchport
  447. switchport access vlan 27
  448. switchport mode access
  449. spanning-tree portfast edge
  450. !
  451. interface GigabitEthernet3/7
  452. switchport
  453. switchport access vlan 27
  454. switchport mode access
  455. spanning-tree portfast edge
  456. !
  457. interface GigabitEthernet3/8
  458. description iLO Geohaz1
  459. switchport
  460. switchport access vlan 60
  461. switchport mode access
  462. spanning-tree portfast edge
  463. !
  464. interface GigabitEthernet3/9
  465. switchport
  466. switchport access vlan 27
  467. switchport mode access
  468. spanning-tree portfast edge
  469. !
  470. interface GigabitEthernet3/10
  471. description iLO Geohaz2
  472. switchport
  473. switchport access vlan 60
  474. switchport mode access
  475. spanning-tree portfast edge
  476. !
  477. interface GigabitEthernet3/11
  478. description SAN-A SatClop
  479. switchport
  480. switchport access vlan 60
  481. switchport mode access
  482. spanning-tree portfast edge
  483. !
  484. interface GigabitEthernet3/12
  485. description SAN-B SatClop
  486. switchport
  487. switchport access vlan 60
  488. switchport mode access
  489. spanning-tree portfast edge
  490. !
  491. interface GigabitEthernet3/13
  492. switchport
  493. switchport access vlan 27
  494. switchport mode access
  495. spanning-tree portfast edge
  496. !
  497. interface GigabitEthernet3/14
  498. switchport
  499. switchport access vlan 27
  500. switchport mode access
  501. spanning-tree portfast edge
  502. !
  503. interface GigabitEthernet3/15
  504. description iLO HP1-SatClop
  505. switchport
  506. switchport access vlan 60
  507. switchport mode access
  508. spanning-tree portfast edge
  509. !
  510. interface GigabitEthernet3/16
  511. switchport
  512. switchport access vlan 27
  513. switchport mode access
  514. spanning-tree portfast edge
  515. !
  516. interface GigabitEthernet3/17
  517. switchport
  518. switchport access vlan 27
  519. switchport mode access
  520. spanning-tree portfast edge
  521. !
  522. interface GigabitEthernet3/18
  523. switchport
  524. switchport access vlan 27
  525. switchport mode access
  526. spanning-tree portfast edge
  527. !
  528. interface GigabitEthernet3/19
  529. description Meteosat
  530. switchport
  531. switchport access vlan 25
  532. switchport mode access
  533. spanning-tree portfast edge
  534. !
  535. interface GigabitEthernet3/20
  536. description Meteosat
  537. switchport
  538. switchport access vlan 25
  539. switchport mode access
  540. spanning-tree portfast edge
  541. !
  542. interface GigabitEthernet3/21
  543. description esxi1-SatClop-nic1
  544. switchport
  545. switchport access vlan 25
  546. switchport mode access
  547. spanning-tree portfast edge
  548. !
  549. interface GigabitEthernet3/22
  550. switchport
  551. switchport access vlan 27
  552. switchport mode access
  553. spanning-tree portfast edge
  554. !
  555. interface GigabitEthernet3/23
  556. switchport
  557. switchport access vlan 200
  558. switchport mode access
  559. !
  560. interface GigabitEthernet3/24
  561. switchport
  562. switchport access vlan 27
  563. switchport mode access
  564. spanning-tree portfast edge
  565. !
  566. interface GigabitEthernet3/25
  567. switchport
  568. switchport trunk native vlan 14
  569. switchport mode trunk
  570. shutdown
  571. flowcontrol receive desired
  572. spanning-tree portfast edge
  573. !
  574. interface GigabitEthernet3/26
  575. switchport
  576. switchport trunk native vlan 14
  577. switchport mode trunk
  578. shutdown
  579. flowcontrol receive desired
  580. spanning-tree portfast edge
  581. !
  582. interface GigabitEthernet3/27
  583. description esx1-geohazard
  584. switchport
  585. switchport access vlan 60
  586. spanning-tree portfast edge
  587. !
  588. interface GigabitEthernet3/28
  589. description esx2-geohazard
  590. switchport
  591. switchport access vlan 60
  592. switchport mode access
  593. spanning-tree portfast edge
  594. !
  595. interface GigabitEthernet3/29
  596. switchport
  597. switchport access vlan 25
  598. switchport mode access
  599. switchport port-security maximum 2
  600. switchport port-security violation restrict
  601. spanning-tree portfast edge
  602. !
  603. interface GigabitEthernet3/30
  604. switchport
  605. switchport mode access
  606. spanning-tree portfast edge
  607. !
  608. interface GigabitEthernet3/31
  609. description esxi1-SatClop-nic0
  610. switchport
  611. switchport access vlan 60
  612. switchport mode access
  613. spanning-tree portfast edge
  614. !
  615. interface GigabitEthernet3/32
  616. switchport
  617. switchport access vlan 25
  618. switchport mode access
  619. switchport port-security
  620. switchport port-security violation restrict
  621. spanning-tree portfast edge
  622. !
  623. interface GigabitEthernet3/33
  624. switchport
  625. switchport access vlan 7
  626. switchport mode access
  627. spanning-tree portfast edge
  628. !
  629. interface GigabitEthernet3/34
  630. switchport
  631. switchport mode access
  632. spanning-tree portfast edge
  633. !
  634. interface GigabitEthernet3/35
  635. switchport
  636. switchport access vlan 8
  637. switchport mode access
  638. spanning-tree portfast edge
  639. !
  640. interface GigabitEthernet3/36
  641. switchport
  642. switchport mode access
  643. spanning-tree portfast edge
  644. !
  645. interface GigabitEthernet3/37
  646. description VG-temp
  647. switchport
  648. switchport access vlan 100
  649. switchport mode access
  650. spanning-tree portfast edge
  651. !
  652. interface GigabitEthernet3/38
  653. description EDUROAM-MGT
  654. switchport
  655. switchport mode access
  656. !
  657. interface GigabitEthernet3/39
  658. description EDUROAM-temp
  659. switchport
  660. switchport trunk native vlan 51
  661. switchport mode trunk
  662. switchport voice vlan 100
  663. spanning-tree portfast edge
  664. !
  665. interface GigabitEthernet3/40
  666. switchport
  667. !
  668. interface GigabitEthernet3/41
  669. description LIDAR-OUT-temp
  670. switchport
  671. switchport mode trunk
  672. !
  673. interface GigabitEthernet3/42
  674. switchport
  675. !
  676. interface GigabitEthernet3/43
  677. switchport
  678. !
  679. interface GigabitEthernet3/44
  680. switchport
  681. !
  682. interface GigabitEthernet3/45
  683. switchport
  684. !
  685. interface GigabitEthernet3/46
  686. switchport
  687. !
  688. interface GigabitEthernet3/47
  689. switchport
  690. !
  691. interface GigabitEthernet3/48
  692. switchport
  693. !
  694. interface GigabitEthernet5/1
  695. no ip address
  696. shutdown
  697. !
  698. interface GigabitEthernet5/2
  699. no ip address
  700. shutdown
  701. !
  702. interface Vlan1
  703. description mgmt
  704. no ip address
  705. no ip redirects
  706. no ip proxy-arp
  707. shutdown
  708. !
  709. interface Vlan20
  710. no ip address
  711. shutdown
  712. !
  713. interface Vlan200
  714. description GARR-A-IN
  715. ip address 194.119.194.194 255.255.255.240
  716. no ip redirects
  717. no ip proxy-arp
  718. ip nat inside
  719. ip pim sparse-mode
  720. ip flow ingress
  721. standby version 2
  722. standby 220 ip 194.119.194.193
  723. standby 220 priority 105
  724. standby 220 preempt
  725. standby 220 track 1 decrement 10
  726. standby 220 track 2 decrement 10
  727. standby 221 ipv6 autoconfig
  728. standby 221 priority 105
  729. standby 221 preempt
  730. standby 221 track 10 decrement 50
  731. standby 221 track 40 decrement 30
  732. ip sap listen
  733. ipv6 address 2A00:1620:90::1/64
  734. ipv6 enable
  735. ipv6 nd ra suppress
  736. service-policy input Policing
  737. service-policy output Policing
  738. !
  739. interface Vlan500
  740. description IMIP-PUB
  741. ip address 10.194.194.2 255.255.255.248
  742. no ip redirects
  743. no ip proxy-arp
  744. standby version 2
  745. standby 250 ip 10.194.194.1
  746. standby 250 priority 105
  747. standby 250 preempt
  748. ntp disable
  749. !
  750. interface Vlan862
  751. ip address 193.204.218.42 255.255.255.252
  752. ip nat outside
  753. ip flow ingress
  754. ipv6 address 2001:760:FFFF:170::1/127
  755. ipv6 enable
  756. service-policy input Policing
  757. !
  758. interface Vlan863
  759. ip address 193.204.218.50 255.255.255.252
  760. ip nat outside
  761. ip flow ingress
  762. ipv6 address 2001:760:FFFF:170::3/127
  763. ipv6 enable
  764. service-policy input Policing
  765. !
  766. router bgp 64937
  767. bgp log-neighbor-changes
  768. no bgp default ipv4-unicast
  769. neighbor 2001:760:FFFF:170:: remote-as 137
  770. neighbor 2001:760:FFFF:170:: ebgp-multihop 3
  771. neighbor 2001:760:FFFF:170::2 remote-as 137
  772. neighbor 2001:760:FFFF:170::2 ebgp-multihop 3
  773. neighbor 193.204.218.41 remote-as 137
  774. neighbor 193.204.218.41 description PoP-Garr-Potenza
  775. neighbor 193.204.218.41 version 4
  776. neighbor 193.204.218.49 remote-as 137
  777. neighbor 193.204.218.49 description Seconda-via-re2.le
  778. neighbor 193.204.218.49 version 4
  779. !
  780. address-family ipv4
  781. network 150.145.68.0 mask 255.255.252.0
  782. network 150.145.69.0 mask 255.255.255.224
  783. network 150.145.70.0 mask 255.255.255.128
  784. network 150.145.72.0 mask 255.255.254.0
  785. network 150.145.128.0 mask 255.255.248.0
  786. network 150.145.141.0 mask 255.255.255.0
  787. network 193.206.127.240 mask 255.255.255.240
  788. network 194.119.194.0
  789. network 194.119.194.192 mask 255.255.255.240
  790. network 194.119.194.208 mask 255.255.255.248
  791. neighbor 193.204.218.41 activate
  792. neighbor 193.204.218.41 soft-reconfiguration inbound
  793. neighbor 193.204.218.49 activate
  794. neighbor 193.204.218.49 soft-reconfiguration inbound
  795. exit-address-family
  796. !
  797. address-family ipv6
  798. network 2001:760:3A08::/48
  799. network 2A00:1620:90::/48
  800. network 2A00:1620:90::/64
  801. network 2A00:1620:90:1::/64
  802. network 2A00:1620:90:2::/64
  803. network 2A00:1620:90:A::/64
  804. neighbor 2001:760:FFFF:170:: activate
  805. neighbor 2001:760:FFFF:170::2 activate
  806. exit-address-family
  807. !
  808. ip nat inside source list NAT interface Vlan200 overload
  809. ip nat inside source static tcp 150.145.70.133 22 150.145.70.133 2220 extendable
  810. ip nat inside source static tcp 150.145.70.156 2222 150.145.70.156 2122 extendable
  811. ip nat inside source static tcp 150.145.70.157 2222 150.145.70.157 2122 extendable
  812. ip nat inside source static tcp 150.145.70.203 2222 150.145.70.203 2122 extendable
  813. ip nat inside source static tcp 150.145.70.205 2222 150.145.70.205 2122 extendable
  814. ip nat inside source static tcp 150.145.73.201 22 150.145.73.201 2222 extendable
  815. ip nat inside source static tcp 150.145.73.202 22 150.145.73.202 2122 extendable
  816. ip nat inside source static tcp 150.145.73.213 22 150.145.73.213 2122 extendable
  817. ip nat inside source static tcp 150.145.73.216 22 150.145.73.216 2122 extendable
  818. ip nat inside source static tcp 150.145.73.222 22 150.145.73.222 2122 extendable
  819. ip nat inside source static tcp 150.145.73.225 22 150.145.73.225 2122 extendable
  820. ip nat inside source static tcp 150.145.141.93 2222 150.145.141.93 2122 extendable
  821. ip nat inside source static tcp 150.145.141.222 2222 150.145.141.222 2122 extendable
  822. ip forward-protocol nd
  823. no ip http server
  824. no ip http secure-server
  825. !
  826. ip bgp-community new-format
  827. !
  828. ip route 150.145.132.0 255.255.255.0 193.204.218.41 track 40
  829. ip route 10.10.10.0 255.255.255.0 194.119.194.206
  830. ip route 10.30.21.2 255.255.255.255 194.119.194.196
  831. ip route 10.100.100.0 255.255.254.0 194.119.194.196
  832. ip route 10.150.10.0 255.255.255.0 194.119.194.206
  833. ip route 150.145.68.0 255.255.252.0 194.119.194.206
  834. ip route 150.145.69.0 255.255.255.224 194.119.194.206
  835. ip route 150.145.70.0 255.255.255.128 194.119.194.206
  836. ip route 150.145.72.0 255.255.254.0 194.119.194.206
  837. ip route 150.145.128.0 255.255.248.0 194.119.194.206
  838. ip route 150.145.132.0 255.255.255.0 193.204.218.49 200
  839. ip route 150.145.132.129 255.255.255.255 194.119.194.196
  840. ip route 150.145.141.0 255.255.255.0 194.119.194.206
  841. ip route 172.21.0.0 255.255.255.240 194.119.194.196
  842. ip route 192.168.10.250 255.255.255.255 194.119.194.206
  843. ip route 192.168.10.251 255.255.255.255 194.119.194.206
  844. ip route 192.168.30.0 255.255.255.0 194.119.194.206
  845. ip route 192.168.205.5 255.255.255.255 193.204.218.41
  846. ip route 193.206.127.240 255.255.255.240 194.119.194.206
  847. ip route 194.119.194.0 255.255.255.0 194.119.194.206
  848. ip route 194.119.194.128 255.255.255.192 10.194.194.5
  849. ip route 194.119.194.192 255.255.255.240 194.119.194.206
  850. ip route 194.119.194.208 255.255.255.248 194.119.194.206
  851. !
  852. ip access-list standard vty
  853. permit 193.204.218.41
  854. permit 150.145.69.0 0.0.0.31
  855. permit 192.168.10.0 0.0.0.31
  856. permit 172.21.0.0 0.0.0.15
  857. permit 192.168.30.0 0.0.0.255
  858. permit 192.168.254.0 0.0.0.255
  859. permit 193.206.158.0 0.0.0.255
  860. !
  861. ip access-list extended NAT
  862. deny ip addrgroup vpnTOmarsico addrgroup zenossTOmarsico
  863. permit ip host 192.168.10.250 any
  864. permit ip 192.168.30.0 0.0.0.255 any
  865. permit ip host 192.168.10.251 any
  866. permit ip 172.21.0.0 0.0.0.15 host 89.96.246.196
  867. ip access-list extended Policing
  868. permit ip 150.145.131.0 0.0.0.255 any
  869. permit ip any 150.145.131.0 0.0.0.255
  870. permit ip 150.145.133.128 0.0.0.127 any
  871. permit ip any 150.145.133.128 0.0.0.127
  872. ip access-list extended VPN-TO-MARSICO
  873. ip access-list extended anti-spoofing-inTOout
  874. permit ip 150.145.68.0 0.0.3.255 any
  875. permit ip 194.119.194.0 0.0.0.255 any
  876. permit ip 150.145.72.0 0.0.1.255 any
  877. permit ip 150.145.128.0 0.0.7.255 any
  878. permit ip 150.145.141.0 0.0.0.255 any
  879. permit ip 193.206.127.240 0.0.0.15 any
  880. deny ip any any
  881. ip access-list extended anti-spoofing-outTOin
  882. permit ip 150.145.132.0 0.0.0.255 any
  883. deny ip 172.16.0.0 0.15.255.255 any
  884. deny ip 192.168.0.0 0.0.255.255 any
  885. deny ip 224.0.0.0 31.255.255.255 any
  886. deny ip 127.0.0.0 0.255.255.255 any
  887. deny ip 169.254.0.0 0.0.255.255 any
  888. permit ip 150.145.68.64 0.0.0.63 any
  889. deny ip 150.145.68.0 0.0.3.255 any
  890. deny ip 150.145.72.0 0.0.1.255 any
  891. deny ip 150.145.128.0 0.0.7.255 any
  892. deny ip 150.145.141.0 0.0.0.255 any
  893. deny ip 193.206.127.240 0.0.0.15 any
  894. permit ip any any
  895. ip access-list extended testmarsico
  896. permit ip host 150.145.132.5 any
  897. permit ip any any
  898. !
  899. ip radius source-interface Vlan1
  900. ip sla 1
  901. icmp-echo 193.204.218.41
  902. frequency 6
  903. ip sla schedule 1 start-time now
  904. ip sla 2
  905. icmp-echo 90.147.84.84
  906. frequency 5
  907. logging host 150.145.70.31
  908. logging host 150.145.70.30
  909. access-list 20 permit 193.204.114.233
  910. access-list 20 permit 193.204.114.232
  911. access-list 20 deny any log
  912. no cdp run
  913. ipv6 route 2001:760:3A08::/48 2A00:1620:90::2
  914. ipv6 route 2A00:1620:90::/64 2A00:1620:90::2
  915. ipv6 route 2A00:1620:90:1::/64 2A00:1620:90::2
  916. ipv6 route 2A00:1620:90:2::/64 2A00:1620:90::2
  917. ipv6 route 2A00:1620:90:A::/64 2A00:1620:90::2
  918. ipv6 route 2A00:1620:90::/48 2A00:1620:90::2
  919. !
  920. snmp-server community cnrcomm RO
  921. snmp-server location CED
  922. snmp-server chassis-id Cisco-6500
  923. snmp-server host 192.168.30.251 version 2c cnrcomm
  924. !
  925. !
  926. ipv6 access-list NTP
  927. deny ipv6 any any
  928. !
  929. ipv6 access-list vtyV6
  930. sequence 5 permit ipv6 2A00:1620:90:A::/64 any
  931. permit tcp 2001:760:FFFF:170::/127 any eq 22
  932. permit tcp 2001:760::/64 any eq 22
  933. !
  934. control-plane
  935. !
  936. !
  937. dial-peer cor custom
  938. !
  939. alias exec sis show int status
  940. alias exec find show mac- add
  941. alias exec s show ip int brie
  942. !
  943. line con 0
  944. line vty 0 4
  945. access-class vty in
  946. login local
  947. ipv6 access-class vtyV6 in
  948. transport input ssh
  949. transport output all
  950. !
  951. ntp source Vlan200
  952. ntp access-group peer 20
  953. ntp access-group ipv6 peer NTP
  954. ntp server 193.204.114.232
  955. ntp server 193.204.114.233
  956. diagnostic bootup level minimal
  957. !
  958. end
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!