锐捷2352G常规配置清单[show run]
2009-10-25 11:37
369 查看
这是我校校园网中一台锐捷2352G作为接入层设备的配置清单(鉴于网络安全性,IP地址与实际不同),一方面与大家分享,一方面也是给自己做个备份。
S2352G#sh run
Building configuration...
Current configuration : 6470 bytes
!
version RGNOS 10.2.00(2), Release(27523)(Thu Dec 6 17:43:05 CST 2007 -ubu1server)
hostname S2352G
!
!
!
vlan 1
!
vlan 132
name gongyong
!
vlan 420
name guanli
!
!
username net-switch-admin password 7 001b721017624e
service password-encryption
!
!
ip default-gateway 10.1.3.253
!
!
enable secret 5 $1$yLhr$EqyCC5sx6zytD7ux
!
!
!
!
spanning-tree
spanning-tree mode rstp
interface FastEthernet 0/1
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/2
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/3
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/4
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/5
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/6
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/7
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/8
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/9
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/10
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/11
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/12
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/13
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/14
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/15
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/16
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/17
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/18
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/19
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/20
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/21
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/22
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/23
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/24
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/25
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/26
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/27
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/28
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/29
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/30
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/31
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/32
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/33
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/34
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/35
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/36
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/37
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/38
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/39
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/40
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/41
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/42
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/43
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/44
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/45
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/46
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/47
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/48
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface GigabitEthernet 0/49
switchport mode trunk
!
interface GigabitEthernet 0/50
switchport mode trunk
medium-type fiber
spanning-tree bpdufilter enable
de.ion link_9505
!
interface VLAN 420
ip address 10.1.1.1 255.255.252.0
no shutdown
!
!
line con 0
line vty 0 4
login local
password 7 13544019597444
!
!
end
需要注意的是:
1、vlan 420作为管理vlan,IP地址是10.1.1.1,二层交换机能且仅能为一个vlan设置IP,并且一旦某vlan设置了IP,就立即成为管理vlan,该管理vlan的网关为10.1.1.253。
2、端口被设置为 spanning-tree portfast,那么其下联设备必为主机,若为交换机将可能出现环路。
3、若局域网中ARP病毒泛滥,可在每个接入端口配置这样一条命令(锐捷专有):
S2352G(config-if)#anti-arp-spoofing ip A.B.C.D
A.B.C.D地址是用户vlan的网关,用于进行绑定网关IP,适用于网关欺骗型ARP攻击,而对主机欺骗型ARP攻击无防护效果。
4、与神州数码DCS的设备不一样的是,锐捷的设备,必须配置telnet的password,通过telnet登录的时候,是在用户模式,需要enable命令及特权模式密码才能进入特权模式,而神码的设备telnet登录后直接是特权模式(DCS-3726/3750)。
S2352G#sh run
Building configuration...
Current configuration : 6470 bytes
!
version RGNOS 10.2.00(2), Release(27523)(Thu Dec 6 17:43:05 CST 2007 -ubu1server)
hostname S2352G
!
!
!
vlan 1
!
vlan 132
name gongyong
!
vlan 420
name guanli
!
!
username net-switch-admin password 7 001b721017624e
service password-encryption
!
!
ip default-gateway 10.1.3.253
!
!
enable secret 5 $1$yLhr$EqyCC5sx6zytD7ux
!
!
!
!
spanning-tree
spanning-tree mode rstp
interface FastEthernet 0/1
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/2
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/3
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/4
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/5
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/6
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/7
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/8
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/9
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/10
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/11
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/12
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/13
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/14
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/15
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/16
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/17
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/18
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/19
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/20
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/21
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/22
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/23
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/24
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/25
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/26
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/27
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/28
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/29
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/30
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/31
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/32
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/33
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/34
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/35
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/36
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/37
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/38
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/39
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/40
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/41
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/42
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/43
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/44
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/45
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/46
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/47
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface FastEthernet 0/48
switchport access vlan 132
spanning-tree bpduguard enable
spanning-tree portfast
!
interface GigabitEthernet 0/49
switchport mode trunk
!
interface GigabitEthernet 0/50
switchport mode trunk
medium-type fiber
spanning-tree bpdufilter enable
de.ion link_9505
!
interface VLAN 420
ip address 10.1.1.1 255.255.252.0
no shutdown
!
!
line con 0
line vty 0 4
login local
password 7 13544019597444
!
!
end
需要注意的是:
1、vlan 420作为管理vlan,IP地址是10.1.1.1,二层交换机能且仅能为一个vlan设置IP,并且一旦某vlan设置了IP,就立即成为管理vlan,该管理vlan的网关为10.1.1.253。
2、端口被设置为 spanning-tree portfast,那么其下联设备必为主机,若为交换机将可能出现环路。
3、若局域网中ARP病毒泛滥,可在每个接入端口配置这样一条命令(锐捷专有):
S2352G(config-if)#anti-arp-spoofing ip A.B.C.D
A.B.C.D地址是用户vlan的网关,用于进行绑定网关IP,适用于网关欺骗型ARP攻击,而对主机欺骗型ARP攻击无防护效果。
4、与神州数码DCS的设备不一样的是,锐捷的设备,必须配置telnet的password,通过telnet登录的时候,是在用户模式,需要enable命令及特权模式密码才能进入特权模式,而神码的设备telnet登录后直接是特权模式(DCS-3726/3750)。
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 
相关文章推荐
- 锐捷2352G常规配置清单[show run]——博客开篇
- 锐捷2352G常规配置清单[show run]
- 上线必备 | 高性能ES5.X部署配置清单
- web项目在iis配置好后不能正确访问问题集锦,以及IIS常规设置
- fedora9完全配置之锐捷校园认证配置
- 思科三层交换配置清单与案例
- Jsvc安装,配置 常规用户使用tomcat的80端口
- mac环境下mentohust锐捷登录配置
- 常规网络管理、配置及系统服务全攻略
- Redis + Jedis + Spring (一)—— 配置&常规操作(GET SET DEL)
- 锐捷RG-WALL60防火墙配置详解
- asp服务器安全权限配置清单
- 【数据库】mysql压缩包的安装、配置、配成windows服务、远程连接及常规问题
- 路由器常规安全配置
- Android 从清单配置文件元数据中获取值
- 锐捷交换机、路由器配置手册
- Zencart网站配置-常规修改总结
- Visual Studio配置(2):项目属性页-常规
- 2016电脑配置清单
- android 配置清单manifest