diff --git a/chapter/baseconf.tex b/chapter/baseconf.tex index 70e5210..1fcf795 100644 --- a/chapter/baseconf.tex +++ b/chapter/baseconf.tex @@ -6,6 +6,7 @@ \lstinputlisting[language=cisco]{code/base.cfg/blockHSRPVRRPGLBP.cfg} \lstinputlisting[language=cisco]{code/base.cfg/cdp.cfg} \lstinputlisting[language=cisco]{code/base.cfg/clock.cfg} +\lstinputlisting[language=cisco]{code/base.cfg/hsrp.cfg} \lstinputlisting[language=cisco]{code/base.cfg/interfaces.cfg} \lstinputlisting[language=cisco]{code/base.cfg/lldp.cfg} \lstinputlisting[language=cisco]{code/base.cfg/snmp.cfg} diff --git a/code/base.cfg/base.cfg b/code/base.cfg/base.cfg index ef3d6bc..20d3413 100644 --- a/code/base.cfg/base.cfg +++ b/code/base.cfg/base.cfg @@ -12,6 +12,7 @@ no aaa new-model service unsupported-transceiver ! ip subnet-zero +ip classless system mtu routing 1500 ! no ip domain-lookup diff --git a/code/base.cfg/hsrp.cfg b/code/base.cfg/hsrp.cfg new file mode 100644 index 0000000..91f53ba --- /dev/null +++ b/code/base.cfg/hsrp.cfg @@ -0,0 +1,21 @@ +! Node 1 +! +interface Vlan10 + ip address 8.8.8.9 255.255.255.248 + standby 1 ip 8.8.8.8 + standby 1 timers msec 333 3 + standby 1 priority 100 + standby 1 preempt delay minimum 180 reload 180 sync 3 + standby 1 authentication md5 key-string H1perL00p timeout 32767 + standby 1 name VLAN10 +! +! Node 2 +! +interface Vlan10 + ip address 8.8.8.10 255.255.255.248 + standby 1 ip 8.8.8.8 + standby 1 timers msec 333 3 + standby 1 priority 100 + standby 1 preempt delay minimum 180 reload 180 sync 3 + standby 1 authentication md5 key-string H1perL00p timeout 32767 + standby 1 name VLAN10 diff --git a/code/base.cfg/interfaces.cfg b/code/base.cfg/interfaces.cfg index 9b35759..01e4ee5 100644 --- a/code/base.cfg/interfaces.cfg +++ b/code/base.cfg/interfaces.cfg @@ -5,14 +5,41 @@ interface range f0/1-24 no cdp enable no lldp transmit lldp recieve + ! + description Cust: Unused access port + switchport trunk encapsulation dot1q + switchport mode access + switchport port-security maximum 2 + switchport port-security violation restrict + ip access-group blockHSRPVRRPGLBP in + priority-queue out + storm-control broadcast level pps 100k + storm-control multicast level pps 100k + storm-control action shutdown + spanning-tree portfast + spanning-tree bpdufilter enable +! +! ! interface range g0/1-2 shutdown no ip adress no ipv6 address - no cdp enable - no lldp transmit + cdp enable + lldp transmit lldp recieve + ! + switchport mode trunk + switchport port-security maximum 50 + switchport port-security violation restrict + ip access-group blockHSRPVRRPGLBP in + priority-queue out + mls qos trust dscp + storm-control broadcast level pps 100k + spanning-tree portfast trunk + storm-control multicast level pps 100k + storm-control action shutdown + spanning-tree portfast ! ! ! @@ -23,4 +50,6 @@ interface Loopback0 ! interface Vlan1 shutdown + no ip address + no ipv6 address ! diff --git a/structure.tex b/structure.tex index a8703e7..10d2413 100644 --- a/structure.tex +++ b/structure.tex @@ -137,52 +137,31 @@ \lstdefinelanguage{cisco}{ keywords={ - access-list, - cdp, - dhcp, end, - hostname, interface, ip, line, - lldp, - login, - network, no, - ntp, router, show, shutdown, - snmp-server, vlan, vrf }, keywordstyle=\color{blue}\bfseries, ndkeywords={ - access-group, addr, address, - aux, - bgp, - console, - dhcp, - eigrp, + deny, enable, fa, FastEthernet, gi, GigabitEthernet, - group, - host, - ifindex, - isis, - ospf, - ospfv3, - pool, - rip, + permit, + remark, run, view, - vty }, ndkeywordstyle=\color{darkgray}\bfseries, identifierstyle=\color{black},