Scribd
Upload
23 views7 pages

Log LGF Elvi

The document contains the running configuration for an ArubaOS device, specifically version 7.4.1.10. It includes details on user roles, access control lists, VLAN configurations, interface profiles, and SNMP settings. The configuration is intended for managing network services and security protocols within the device's operational environment.

Uploaded by

vinay84812009
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
23 views7 pages

Log LGF Elvi

The document contains the running configuration for an ArubaOS device, specifically version 7.4.1.10. It includes details on user roles, access control lists, VLAN configurations, interface profiles, and SNMP settings. The configuration is intended for managing network services and security protocols within the device's operational environment.

Uploaded by

vinay84812009
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 7

login as: admin

admin@10.10.40.192's password:
Last login: Sat Oct 5 13:09:13 2024 from 10.23.87.5

(LGF-ELV1-ASW1) >enable
Password:******
(LGF-ELV1-ASW1) #show running-config
Building Configuration...

#
# Configuration file for ArubaOS
# ArubaOS Version 7.4.1.10 65516
version 7.4
enable secret "******"
telnet cli
hostname "LGF-ELV1-ASW1"
clock timezone PST -8
controller config 7
ip access-list eth validuserethacl
permit any
!
netservice svc-dhcp udp 67 68
netservice svc-dns udp 53
netservice svc-ftp tcp 21
netservice svc-h323-tcp tcp 1720
netservice svc-h323-udp udp 1718 1719
netservice svc-http tcp 80
netservice svc-https tcp 443
netservice svc-icmp 1
netservice svc-kerberos udp 88
netservice svc-natt udp 4500
netservice svc-ntp udp 123
netservice svc-sip-tcp tcp 5060
netservice svc-sip-udp udp 5060
netservice svc-sips tcp 5061
netservice svc-smtp tcp 25
netservice svc-ssh tcp 22
netservice svc-telnet tcp 23
netservice svc-tftp udp 69
netservice svc-vocera udp 5002
ip access-list stateless allowall-stateless
any any any permit
!
ip access-list stateless cplogout-stateless
user alias controller sys-svc-https dst-nat 8081
!
ip access-list stateless dhcp-acl-stateless
any any svc-dhcp permit
!
ip access-list stateless dns-acl-stateless
any any svc-dns permit
!
ip access-list stateless http-acl-stateless
any any svc-http permit
!
ip access-list stateless https-acl-stateless
any any svc-https permit
!
ip access-list stateless icmp-acl-stateless
any any svc-icmp permit
!
ip access-list stateless logon-control-stateless
any any svc-icmp permit
any any svc-dns permit
any any svc-dhcp permit
any any svc-natt permit
!
ip access-list session validuser
network 169.254.0.0 255.255.0.0 any any deny
any any any permit
!
user-role authenticated
access-list stateless allowall-stateless
!
user-role denyall
!
user-role denydhcp
!
user-role guest
access-list stateless http-acl-stateless
access-list stateless https-acl-stateless
access-list stateless dhcp-acl-stateless
access-list stateless icmp-acl-stateless
access-list stateless dns-acl-stateless
!
user-role logon
access-list stateless logon-control-stateless
!
user-role preauth
!
!

crypto ipsec transform-set default-boc-bm-transform esp-aes256 esp-sha-hmac


crypto ipsec transform-set default-rap-transform esp-aes256 esp-sha-hmac

mgmt-user admin root 74cc580a01d6b60052a89ae8cdb290093b3c1b5ba9b87b65b3

firewall disable-stateful-h323-processing
!
ip domain lookup
!
ip name-server 1.10.10.10
!
aaa authentication mac "default"
!
aaa authentication dot1x "default"
!
aaa server-group "default"
auth-server Internal
set role condition role value-of
!
aaa profile "default"
!
aaa authentication captive-portal "default"
!
aaa authentication vpn "default"
!
aaa authentication mgmt
!
aaa authentication wired
!
web-server
!
papi-security
!
aaa password-policy mgmt
!
traceoptions
!
probe-profile "default"
protocol icmp
!
qos-profile "default"
!
policer-profile "default"
!
ip-profile
default-gateway 10.10.40.10
!
lcd-menu
!
interface-profile ospf-profile "default"
area 0.0.0.0
!
interface-profile pim-profile "default"
!
interface-profile igmp-profile "default"
!
stack-profile
!
ipv6-profile
!
activate-service-firmware
!
aruba-central
!
rogue-ap-containment
!
interface-profile switching-profile "default"
!
interface-profile switching-profile "uplink-trunk"
switchport-mode trunk
native-vlan 60
!
interface-profile switching-profile "VLAN-10"
access-vlan 10
!
interface-profile switching-profile "VLAN-20"
access-vlan 20
!
interface-profile switching-profile "VLAN-30"
access-vlan 30
!
interface-profile switching-profile "VLAN-40"
access-vlan 40
!
interface-profile switching-profile "vlan-cctv"
access-vlan 100
!
interface-profile switching-profile "vlan-wifi"
access-vlan 90
!
interface-profile voip-profile "VOICE"
voip-vlan 50
voip-mode auto-discover
!
interface-profile poe-profile "default"
!
interface-profile poe-profile "poe-factory-initial"
enable
!
interface-profile enet-link-profile "default"
!
interface-profile lldp-profile "default"
!
interface-profile lldp-profile "lldp-factory-initial"
lldp transmit
lldp receive
!
interface-profile mstp-profile "default"
!
interface-profile pvst-port-profile "default"
!
vlan-profile dhcp-snooping-profile "default"
!
vlan-profile mld-snooping-profile "default"
!
vlan-profile igmp-snooping-profile "default"
!
vlan-profile igmp-snooping-profile "igmp-snooping-factory-initial"
!
spanning-tree
mode mstp
!
gvrp
!
mstp
!
lacp
!
vlan "1"
igmp-snooping-profile "igmp-snooping-factory-initial"
!
vlan "10"
description "AERA_DATA"
!
vlan "20"
description "BCAS_DATA"
!
vlan "30"
description "DGCA_DATA_1"
!
vlan "40"
description "DGCA_DATA_2"
!
vlan "50"
description "VOICE"
!
vlan "60"
description "MANAGEMENT_VLAN"
!
vlan "70"
!
vlan "80"
!
vlan "90"
description "WIFI"
!
vlan "100"
description "CCTV"
!
vlan "110"
description "BCAS_DATA2"
!
interface gigabitethernet "0/0/0"
voip-profile "VOICE"
switching-profile "vlan-wifi"
!
interface gigabitethernet "0/0/1"
voip-profile "VOICE"
switching-profile "vlan-wifi"
!
interface gigabitethernet "0/0/2"
voip-profile "VOICE"
switching-profile "vlan-wifi"
!
interface gigabitethernet "0/0/3"
voip-profile "VOICE"
switching-profile "vlan-wifi"
!
interface gigabitethernet "0/0/4"
voip-profile "VOICE"
switching-profile "VLAN-40"
!
interface gigabitethernet "0/0/5"
voip-profile "VOICE"
switching-profile "VLAN-40"
!
interface gigabitethernet "0/0/6"
voip-profile "VOICE"
switching-profile "VLAN-40"
!
interface gigabitethernet "0/0/7"
voip-profile "VOICE"
switching-profile "VLAN-40"
!
interface gigabitethernet "0/0/8"
voip-profile "VOICE"
switching-profile "VLAN-40"
!
interface gigabitethernet "0/0/9"
voip-profile "VOICE"
switching-profile "VLAN-40"
!
interface gigabitethernet "0/0/10"
voip-profile "VOICE"
switching-profile "VLAN-40"
!
interface gigabitethernet "0/0/11"
voip-profile "VOICE"
switching-profile "VLAN-40"
!
interface gigabitethernet "0/0/12"
voip-profile "VOICE"
switching-profile "VLAN-40"
!
interface gigabitethernet "0/0/13"
voip-profile "VOICE"
switching-profile "VLAN-40"
!
interface gigabitethernet "0/0/14"
voip-profile "VOICE"
switching-profile "VLAN-40"
!
interface gigabitethernet "0/0/15"
voip-profile "VOICE"
switching-profile "VLAN-40"
!
interface gigabitethernet "0/0/16"
voip-profile "VOICE"
switching-profile "VLAN-40"
!
interface gigabitethernet "0/0/17"
voip-profile "VOICE"
switching-profile "VLAN-40"
!
interface gigabitethernet "0/0/18"
voip-profile "VOICE"
switching-profile "VLAN-40"
!
interface gigabitethernet "0/0/19"
voip-profile "VOICE"
switching-profile "VLAN-40"
!
interface gigabitethernet "0/0/20"
switching-profile "vlan-cctv"
!
interface gigabitethernet "0/0/21"
switching-profile "vlan-cctv"
!
interface gigabitethernet "0/0/22"
switching-profile "vlan-cctv"
!
interface gigabitethernet "0/0/23"
switching-profile "uplink-trunk"
!
interface gigabitethernet "0/1/0"
switching-profile "uplink-trunk"
!
interface gigabitethernet "0/1/1"
switching-profile "uplink-trunk"
!
interface vlan "1"
!
interface vlan "60"
ip address 10.10.40.192 255.255.255.0
!
interface mgmt
!
device-group ap
!
interface-group gigabitethernet "default"
apply-to ALL
lldp-profile "lldp-factory-initial"
poe-profile "poe-factory-initial"
!

snmp-server community Zer0t0uchpr0visi0ning view ALL


snmp-server view ALL oid-tree iso included
snmp-server group ALLPRIV v1 read ALL notify ALL
snmp-server group ALLPRIV v2c read ALL notify ALL
snmp-server group ALLPRIV v3 noauth read ALL notify ALL
snmp-server group AUTHPRIV v3 priv read ALL notify ALL
snmp-server group AUTHNOPRIV v3 auth read ALL notify ALL
snmp-server group Zer0t0uchpr0visi0ning v1 read ALL
snmp-server group Zer0t0uchpr0visi0ning v2c read ALL

snmp-server enable trap

process monitor log


end

(LGF-ELV1-ASW1) # e

You might also like