! ! Last configuration change at 14:29:57 MDT Thu Oct 25 2018 by boarderdude ! NVRAM config last updated at 14:29:58 MDT Thu Oct 25 2018 by boarderdude ! version 12.2 no service pad service tcp-keepalives-in service timestamps debug datetime msec localtime show-timezone service timestamps log datetime msec localtime show-timezone service password-encryption ! hostname lsmr-1623-swa1 ! boot-start-marker boot-end-marker ! logging buffered 64000 informational no logging console no logging monitor ! aaa new-model ! ! aaa authentication login default group tacacs+ enable aaa authentication enable default group tacacs+ enable aaa authorization console aaa authorization config-commands aaa authorization exec default group tacacs+ none aaa authorization commands 1 default group tacacs+ none aaa authorization commands 15 default group tacacs+ none aaa authorization network default group tacacs+ none aaa accounting exec default start-stop group tacacs+ aaa accounting commands 15 default start-stop group tacacs+ aaa accounting network default start-stop group tacacs+ aaa accounting connection default start-stop group tacacs+ aaa accounting system default start-stop group tacacs+ ! ! ! aaa session-id common clock timezone MNT -7 clock summer-time MDT recurring system mtu routing 1500 ip subnet-zero no ip source-route ! ! no ip domain-lookup ! ! ! ! ! ! ! ! errdisable recovery cause udld errdisable recovery cause bpduguard errdisable recovery cause security-violation errdisable recovery cause channel-misconfig errdisable recovery cause pagp-flap errdisable recovery cause dtp-flap errdisable recovery cause link-flap errdisable recovery cause sfp-config-mismatch errdisable recovery cause gbic-invalid errdisable recovery cause psecure-violation errdisable recovery cause dhcp-rate-limit errdisable recovery cause vmps errdisable recovery cause storm-control errdisable recovery cause arp-inspection errdisable recovery cause loopback errdisable recovery interval 600 ! spanning-tree mode rapid-pvst spanning-tree loopguard default spanning-tree logging spanning-tree portfast bpduguard default spanning-tree portfast bpdufilter default spanning-tree extend system-id ! vlan internal allocation policy ascending ! ! ! interface FastEthernet0/1 description ##lsmr-1623-rte1 G0/1 switchport mode trunk ! interface FastEthernet0/2 description Admin switchport access vlan 3 switchport mode access spanning-tree portfast ! interface FastEthernet0/3 description Admin switchport access vlan 3 switchport mode access spanning-tree portfast ! interface FastEthernet0/4 description Admin switchport access vlan 3 switchport mode access spanning-tree portfast ! interface FastEthernet0/5 description Admin switchport access vlan 3 switchport mode access spanning-tree portfast ! interface FastEthernet0/6 description Admin switchport access vlan 3 switchport mode access spanning-tree portfast ! interface FastEthernet0/7 description Symbol AP switchport access vlan 3 switchport mode access spanning-tree portfast ! interface FastEthernet0/8 description Admin switchport access vlan 3 switchport mode access spanning-tree portfast ! interface FastEthernet0/9 description Admin switchport access vlan 3 switchport mode access spanning-tree portfast ! interface FastEthernet0/10 description Admin switchport access vlan 3 switchport mode access spanning-tree portfast ! interface FastEthernet0/11 description Admin switchport access vlan 3 switchport mode access spanning-tree portfast ! interface FastEthernet0/12 description Admin switchport access vlan 3 switchport mode access spanning-tree portfast ! interface FastEthernet0/13 description old riverbed DECOM shutdown ! interface FastEthernet0/14 description old riverbed DECOM shutdown ! interface FastEthernet0/15 description Admin switchport access vlan 3 switchport mode access spanning-tree portfast ! interface FastEthernet0/16 description Admin switchport access vlan 3 switchport mode access spanning-tree portfast ! interface FastEthernet0/17 description lsmr-1612-sh1 PRI switchport access vlan 3 switchport mode access spanning-tree portfast ! interface FastEthernet0/18 description Admin switchport access vlan 3 switchport mode access spanning-tree portfast ! interface FastEthernet0/19 description lsmr-1612-sh1 wan0_0 switchport access vlan 3 switchport mode access speed 100 duplex full spanning-tree portfast ! interface FastEthernet0/20 description Admin switchport access vlan 3 switchport mode access spanning-tree portfast ! interface FastEthernet0/21 description Scada PC 10.96.2.132 switchport access vlan 4 switchport mode access spanning-tree portfast ! interface FastEthernet0/22 description Digi Server switchport access vlan 4 switchport mode access spanning-tree portfast ! interface FastEthernet0/23 description Security Camera switchport access vlan 7 switchport mode access spanning-tree portfast ! interface FastEthernet0/24 ! interface GigabitEthernet0/1 ! interface GigabitEthernet0/2 ! interface Vlan1 no ip address no ip route-cache shutdown ! interface Vlan3 description ## Admin Vlan ip address 10.74.12.2 255.255.255.128 no ip redirects no ip unreachables no ip proxy-arp no ip route-cache no snmp trap link-status ! ip default-gateway 10.74.12.1 no ip http server no ip http secure-server ip tacacs source-interface Vlan3 ! ip access-list standard telnet permit 10.64.91.0 0.0.0.255 permit 10.74.12.0 0.0.0.255 permit 10.74.14.0 0.0.0.255 permit 10.74.16.0 0.0.0.255 permit 10.129.71.0 0.0.0.255 permit 172.16.5.0 0.0.0.255 permit 216.208.7.0 0.0.0.255 deny any log ! ip access-list extended AccessControl permit ip host 10.52.5.69 any permit ip host 10.64.132.69 any permit ip 172.16.5.0 0.0.0.255 any permit ip 172.20.5.0 0.0.0.255 any permit ip 172.24.225.0 0.0.0.255 any permit ip 172.25.225.0 0.0.0.255 any permit tcp host 63.99.29.18 any eq 22 permit tcp host 63.99.29.40 any eq 22 permit tcp host 206.47.24.18 any eq 22 permit tcp host 206.47.24.169 any eq 22 logging trap debugging logging facility local5 logging 172.25.20.61 access-list 96 permit 172.18.2.37 access-list 96 permit 172.18.18.21 access-list 97 permit 10.66.37.101 access-list 97 permit 10.52.12.12 access-list 97 permit 172.16.32.30 access-list 97 permit 172.16.32.31 access-list 97 permit 172.20.32.30 access-list 97 permit 172.20.32.31 access-list 97 permit 172.16.12.104 access-list 97 permit 172.16.32.116 access-list 97 permit 10.64.146.32 access-list 97 permit 172.16.5.0 0.0.0.255 access-list 97 permit 172.20.5.0 0.0.0.255 access-list 97 permit 172.24.225.0 0.0.0.255 access-list 97 permit 172.25.225.0 0.0.0.255 access-list 98 permit 172.25.36.129 access-list 98 permit 172.25.17.190 access-list 98 permit 172.22.136.17 access-list 98 permit 172.18.200.80 access-list 98 permit 172.18.136.27 access-list 98 permit 172.18.2.121 access-list 98 permit 172.18.66.57 access-list 98 permit 172.18.2.122 access-list 98 permit 172.25.40.78 snmp-server group DevonCutDown v3 priv read mib-exclude access 97 snmp-server view mib-exclude iso included snmp-server view mib-exclude lldpMIB excluded snmp-server view HPmib-exclude iso included snmp-server view HPmib-exclude lldpMIB excluded snmp-server view HPmib-exclude at excluded snmp-server view HPmib-exclude snmpUsmMIB excluded snmp-server view HPmib-exclude snmpVacmMIB excluded snmp-server view HPmib-exclude snmpCommunityMIB excluded snmp-server view HPmib-exclude ip.21 excluded snmp-server view HPmib-exclude ip.22 excluded snmp-server trap-source Vlan3 snmp-server location Leismer, AB snmp-server contact ENS,58 snmp-server enable traps cluster snmp-server enable traps vtp snmp-server enable traps vlancreate snmp-server enable traps vlandelete snmp-server host 172.16.5.50 version 3 priv SNMPninja tacacs-server host 10.64.132.23 tacacs-server directed-request ! control-plane ! banner exec ^C ***********************SYSTEM DESCRIPTION*************************** * * * NAME: lsmr-1623-swa1 * * LOCATION: Leismer B Plant Field Office * * CORPORATION: Devon Canada Corporation * * SITE CONTACT: Enterprise Network Services * * MODEL: WS-C2960-24TT-L * * ASSET #: * ******************************************************************** ^C banner motd ^C *****************************SECURITY NOTICE************************ * * ACCESS TO THIS SYSTEM IS RESTRICTED TO AUTHORIZED PERSONNEL ONLY * USAGE OF THIS SYSTEM MAY BE LOGGED AND/OR MONITORED WITHOUT NOTICE. * DISCONNECT IMMEDIATELY IF YOU ARE NOT AN AUTHORIZED USER! * ******************************************************************** ^C ! line con 0 exec-timeout 15 0 line vty 0 4 access-class AccessControl in exec-timeout 60 0 timeout login response 90 line vty 5 15 access-class AccessControl in exec-timeout 60 0 timeout login response 90 ! ntp clock-period 36029252 ntp source Vlan3 ntp server 172.20.2.34 ntp server 172.20.2.33 prefer end