Configuration Nexus3000 C3064PQ

Configuration Nexus3000 C3064PQ

Configuration Nexus3000 C3064PQ

Configuration Nexus3000 C3064PQ:

switch# show run

!Command: show running-config
!No configuration change since last restart
!Time: Tue Jan 31 09:38:17 2023

version 7.0(3)I7(9) Bios:version 4.5.0
hostname switch
vdc switch id 1
limit-resource vlan minimum 16 maximum 4094
limit-resource vrf minimum 2 maximum 4096
limit-resource port-channel minimum 0 maximum 104
limit-resource u4route-mem minimum 128 maximum 128
limit-resource u6route-mem minimum 96 maximum 96
limit-resource m4route-mem minimum 58 maximum 58
limit-resource m6route-mem minimum 8 maximum 8

feature telnet
feature ospf
feature bgp
feature ospfv3
feature pim
feature udld
feature interface-vlan
feature lacp
feature lldp
feature vtp
feature sla sender

username admin password 5 $5$9O3E1QJg$3xBk5renuHcgQ791.xaxNQtgmlI9G2aGvIoZD2GgD4
5 role network-admin
ip domain-lookup
service unsupported-transceiver
no errdisable detect cause link-flap
no errdisable detect cause loopback
ip access-list ACL-QoS-All
10 permit ip any any
ip access-list TELNET
1 permit tcp any 10.3.4.0/24 eq telnet
2 permit tcp any 192.168.99.0/24 eq telnet
3 permit tcp any 192.168.77.0/24 eq telnet
ip access-list copp-system-acl-eigrp
10 permit eigrp any 224.0.0.10/32
ipv6 access-list copp-system-acl-eigrp6
10 permit eigrp any ff02::a/128
ip access-list copp-system-acl-icmp
10 permit icmp any any
ip access-list copp-system-acl-igmp
10 permit igmp any any
ip access-list copp-system-acl-ntp
10 permit udp any any eq ntp
20 permit udp any eq ntp any
ip access-list copp-system-acl-pimreg
10 permit pim any any
ip access-list copp-system-acl-ping
10 permit icmp any any echo
20 permit icmp any any echo-reply
ip access-list copp-system-acl-routingproto1
10 permit tcp any gt 1024 any eq bgp
20 permit tcp any eq bgp any gt 1024
30 permit udp any 224.0.0.0/24 eq rip
40 permit tcp any gt 1024 any eq 639
50 permit tcp any eq 639 any gt 1024
70 permit ospf any any
80 permit ospf any 224.0.0.5/32
90 permit ospf any 224.0.0.6/32
ip access-list copp-system-acl-routingproto2
10 permit udp any 224.0.0.0/24 eq 1985
20 permit 112 any 224.0.0.0/24
ip access-list copp-system-acl-ssh
10 permit tcp any any eq 22
20 permit tcp any eq 22 any
ip access-list copp-system-acl-stftp
10 permit udp any any eq tftp
20 permit udp any any eq 1758
30 permit udp any eq tftp any
40 permit udp any eq 1758 any
50 permit tcp any any eq 115
60 permit tcp any eq 115 any
ip access-list copp-system-acl-tacacsradius
10 permit tcp any any eq tacacs
20 permit tcp any eq tacacs any
30 permit udp any any eq 1812
40 permit udp any any eq 1813
50 permit udp any any eq 1645
60 permit udp any any eq 1646
70 permit udp any eq 1812 any
80 permit udp any eq 1813 any
90 permit udp any eq 1645 any
100 permit udp any eq 1646 any
ip access-list copp-system-acl-telnet
10 permit tcp any any eq telnet
20 permit tcp any any eq 107
30 permit tcp any eq telnet any
40 permit tcp any eq 107 any
ipv6 access-list copp-system-acl-v6routingProto2
10 permit udp any ff02::66/128 eq 2029
20 permit udp any ff02::fb/128 eq 5353
30 permit 112 any ff02::12/128
40 permit pim any ff02::d/128
ipv6 access-list copp-system-acl-v6routingproto1
10 permit 89 any ff02::5/128
20 permit 89 any ff02::6/128
30 permit udp any ff02::9/128 eq 521
ip access-list copp-system-dhcp-relay
10 permit udp any eq bootps any eq bootps
ip access-list telent
10 permit 23 any any
11 permit ip 172.18.255.0/24 any
12 permit ip 172.3.3.0/24 any
class-map type qos match-all cqLIMIT_ASNET
match access-group name ACL-QoS-All
policy-map type qos pqLIMIT_ASNET
class cqLIMIT_ASNET
set qos-group 2
police cir 50 mbps bc 200 ms conform transmit violate drop
class class-default
policy-map type queuing LIMIT_ASNET
class type queuing class-default
shape kbps 50000
class-map type control-plane match-any copp-icmp
match access-group name copp-system-acl-icmp
class-map type control-plane match-any copp-ntp
match access-group name copp-system-acl-ntp
class-map type control-plane match-any copp-s-arp
class-map type control-plane match-any copp-s-bfd
class-map type control-plane match-any copp-s-bpdu
class-map type control-plane match-any copp-s-dai
class-map type control-plane match-any copp-s-default
class-map type control-plane match-any copp-s-dhcpreq
class-map type control-plane match-any copp-s-dhcpresp
match access-group name copp-system-dhcp-relay
class-map type control-plane match-any copp-s-dpss
class-map type control-plane match-any copp-s-eigrp
match access-group name copp-system-acl-eigrp
match access-group name copp-system-acl-eigrp6
class-map type control-plane match-any copp-s-glean
class-map type control-plane match-any copp-s-igmp
match access-group name copp-system-acl-igmp
class-map type control-plane match-any copp-s-ipmcmiss
class-map type control-plane match-any copp-s-l2switched
class-map type control-plane match-any copp-s-l3destmiss
class-map type control-plane match-any copp-s-l3mtufail
class-map type control-plane match-any copp-s-l3slowpath
class-map type control-plane match-any copp-s-mpls
class-map type control-plane match-any copp-s-pimautorp
class-map type control-plane match-any copp-s-pimreg
match access-group name copp-system-acl-pimreg
class-map type control-plane match-any copp-s-ping
match access-group name copp-system-acl-ping
class-map type control-plane match-any copp-s-ptp
class-map type control-plane match-any copp-s-routingProto1
match access-group name copp-system-acl-routingproto1
match access-group name copp-system-acl-v6routingproto1
class-map type control-plane match-any copp-s-routingProto2
match access-group name copp-system-acl-routingproto2
class-map type control-plane match-any copp-s-selfIp
class-map type control-plane match-any copp-s-ttl1
class-map type control-plane match-any copp-s-v6routingProto2
match access-group name copp-system-acl-v6routingProto2
class-map type control-plane match-any copp-s-vxlan
class-map type control-plane match-any copp-ssh
match access-group name copp-system-acl-ssh
class-map type control-plane match-any copp-stftp
match access-group name copp-system-acl-stftp
class-map type control-plane match-any copp-tacacsradius
match access-group name copp-system-acl-tacacsradius
class-map type control-plane match-any copp-telnet
match access-group name copp-system-acl-telnet
policy-map type control-plane copp-system-policy
class copp-s-default
police pps 400
class copp-s-l2switched
police pps 200
class copp-s-ping
police pps 100
class copp-s-l3destmiss
police pps 100
class copp-s-glean
police pps 500
class copp-s-selfIp
police pps 500
class copp-s-l3mtufail
police pps 100
class copp-s-ttl1
police pps 100
class copp-s-ipmcmiss
police pps 400
class copp-s-l3slowpath
police pps 100
class copp-s-dhcpreq
police pps 300
class copp-s-dhcpresp
police pps 300
class copp-s-dai
police pps 300
class copp-s-igmp
police pps 400
class copp-s-eigrp
police pps 200
class copp-s-pimreg
police pps 200
class copp-s-pimautorp
police pps 200
class copp-s-routingProto2
police pps 1300
class copp-s-v6routingProto2
police pps 1300
class copp-s-routingProto1
police pps 1000
class copp-s-arp
police pps 200
class copp-s-ptp
police pps 1000
class copp-s-vxlan
police pps 1000
class copp-s-bfd
police pps 350
class copp-s-bpdu
police pps 12000
class copp-s-dpss
police pps 1000
class copp-s-mpls
police pps 100
class copp-icmp
police pps 200
class copp-telnet
police pps 500
class copp-ssh
police pps 500
class copp-ntp
police pps 100
class copp-tacacsradius
police pps 400
class copp-stftp
police pps 400
control-plane
service-policy input copp-system-policy
snmp ifmib ifalias long
snmp-server user admin network-admin auth md5 0x6997e996de4de66c0cf74714a678b0e2
priv 0x6997e996de4de66c0cf74714a678b0e2 localizedkey
snmp-server host 192.168.78.4 traps version 2c commReadOnly
rmon event 1 log trap public description FATAL(1) owner PMON@FATAL
rmon event 2 log trap public description CRITICAL(2) owner PMON@CRITICAL
rmon event 3 log trap public description ERROR(3) owner PMON@ERROR
rmon event 4 log trap public description WARNING(4) owner PMON@WARNING
rmon event 5 log trap public description INFORMATION(5) owner PMON@INFO
snmp-server enable traps ip sla
snmp-server enable traps callhome event-notify
snmp-server enable traps callhome smtp-send-fail
snmp-server enable traps cfs state-change-notif
snmp-server enable traps lldp lldpRemTablesChange
snmp-server enable traps cfs merge-failure
snmp-server enable traps aaa server-state-change
snmp-server enable traps feature-control FeatureOpStatusChange
snmp-server enable traps sysmgr cseFailSwCoreNotifyExtended
snmp-server enable traps config ccmCLIRunningConfigChanged
snmp-server enable traps snmp authentication
snmp-server enable traps link cisco-xcvr-mon-status-chg
snmp-server enable traps vtp notifs
snmp-server enable traps vtp vlancreate
snmp-server enable traps vtp vlandelete
snmp-server enable traps bridge newroot
snmp-server enable traps bridge topologychange
snmp-server enable traps stpx inconsistency
snmp-server enable traps stpx root-inconsistency
snmp-server enable traps stpx loop-inconsistency
snmp-server enable traps system Clock-change-notification
snmp-server enable traps feature-control ciscoFeatOpStatusChange
snmp-server enable traps mmode cseNormalModeChangeNotify
snmp-server enable traps mmode cseMaintModeChangeNotify
snmp-server enable traps syslog message-generated
snmp-server community commReadOnly group network-operator

ip route 10.11.11.254/32 10.23.23.21 name Ki-RP
ip route 10.88.88.2/32 172.168.19.1 name Multicast-Kad
ip route {IP}/24 Null0
ip route {IP}/28 10.255.255.10 name online-PublicIP
ip route {IP}/30 10.255.255.2 name O-PublicIP1
ip route {IP}/28 10.255.255.14 name mf-PublicIP1
ip route {IP}/28 {IP} name net-PublicIP1
ip route 192.168.78.0/24 10.3.4.6
ip route 213.207.56.0/24 Null0
ip route {IP}/30 10.255.255.2 name O-PublicIP
ip route {IP}/28 {IP} name NET-Ratkoc
ip route {IP}/30 {IP} name FIKA
ipv6 route 2a12:a3c0::/29 Null0
ipv6 route 2a12:a3c0:ff00::/48 Null0
ip pim rp-address 10.11.11.254 prefix-list Kijeva
ip pim rp-address 10.88.88.2 group-list 239.255.180.0/22
ip pim ssm range 232.0.0.0/8
vlan 1
vlan 10
name OLT-MNG
vlan 20
name OLT-DATA
vlan 100
name Arbane
vlan 111
name TIK_MNG
vlan 200
name ***MulticastNet***
vlan 302
name WAN-Ki
vlan 303
name ***MulticastKi***
vlan 349
name tiibo-test
vlan 350
name Local
vlan 351
name LOCAL-PZ-Equipments
vlan 352
name ***Connected-KO***
vlan 353
name ***Connected-ASR***
vlan 354
name ***Connected-online***
vlan 355
name ***Connected-el***
vlan 400
name MULTICAST
vlan 444
name ***U2000***
vlan 523
name DriniTECH
vlan 601
name ***Luminato-IPQAM***
vlan 1000
name INT-TI
vlan 1316
name WAN-TI
vlan 1319
name INTERNET-NET
vlan 1328
name TI_BGP
vlan 1330
name TI-KO
vlan 1332
name
vlan 1415
name ***multicast-TI***

ip prefix-list DEFAULT-ROUTE seq 110 permit 0.0.0.0/0
ip prefix-list Ki seq 10 permit 239.22.22.0/24 le 32
ip prefix-list PFL-FROM-TI seq 110 permit 213.207.32.0/19 le 22
ip prefix-list PFL-FROM-TI seq 120 permit {IP}/24
ip prefix-list PFL-FROM-TI seq 130 permit {IP}/24
ip prefix-list PFL-FROM-TI seq 140 permit {IP}/24
ip prefix-list TI-IN seq 5 permit {IP}/24
ipv6 prefix-list TI-OUT-NO-PREPEND seq 5 permit 2a12::f000::/48
route-map RM-CONNECTED-TO-BGP permit 10
route-map RM-STATIC-TO-BGP permit 10
route-map TI-IN permit 10
match ip address prefix-list PFL-FROM-TI
set local-preference 200
route-map TI-IN permit 15
match ip address prefix-list DEFAULT-ROUTE
set local-preference 200
route-map TI-IN permit 20
match ipv6 address prefix-list TI6-IN
set local-preference 200
route-map TI-IPv6-OUT permit 10
match ipv6 address prefix-list TI-OUT-NO-PREPEND
route-map TI-IPv6-OUT permit 20
set as-path prepend {AS-Number} {AS-Number} {AS-Number} {AS-Number}
route-map TI-OUT permit 120
match ip address prefix-list TI-IN
vrf context management
ip route 0.0.0.0/0 192.168.99.1
no port-channel load-balance resilient
hardware profile portmode 48x10G+4x40G

no hardware profile ecmp resilient
priority-flow-control auto-restore multiplier 20

interface Vlan1

interface Vlan111
description MNG
no shutdown
ip address 192.168.77.5/28

interface Vlan200
description ***MulticastNet***
no shutdown
no ip redirects
ip address 172.168.19.2/30

interface Vlan303
no shutdown
no ip redirects
ip address 10.23.23.20/29
ip pim sparse-mode

interface Vlan349
no shutdown
no ip redirects
ip address {ip}/30

interface Vlan350
no shutdown
no ip redirects
ip address 10.3.4.5/24
ip address {ip}/30 secondary
ip address {ip}/30 secondary

interface Vlan351
no shutdown
no ip redirects
ip address 10.3.3.1/24

interface Vlan352
description ***Connected-to-KO***
no shutdown
no ip redirects
ip address 10.255.255.1/30

interface Vlan353
description ***Connected-to-POLL***
no shutdown
bandwidth 10000000
ip address {ip}/30

interface Vlan354
description ***Connected-online***
no shutdown
no ip redirects
ip address 10.255.255.9/30

interface Vlan355
description ***Connected-comf***
no shutdown
no ip redirects
ip address 10.255.255.13/30

interface Vlan400
no shutdown
bandwidth 10000000
no ip redirects
ip address 10.3.6.1/24
ip pim sparse-mode

interface Vlan601
no shutdown
ip address 10.2.2.2/30
ip pim sparse-mode

interface Vlan1000
no shutdown
ip address 213.207.56.5/30

interface Vlan1316
no shutdown
bandwidth 10000000
ip address {ip}/30
ipv6 address {ipv6}/127

interface port-channel1
description *** WAN – TI ***
switchport mode trunk
switchport trunk allowed vlan 1316,1319,1328,1330,1332,1415

interface Ethernet1/1
description *** WAN – TI ***
switchport mode trunk
switchport trunk allowed vlan 1316,1319,1328,1330,1332,1415
channel-group 1

interface Ethernet1/2

interface Ethernet1/3
switchport mode trunk
switchport trunk allowed vlan 1316,1319,1328,1330,1332,1415
channel-group 1

interface Ethernet1/4

interface Ethernet1/5

interface Ethernet1/6

interface Ethernet1/7

interface Ethernet1/8

interface Ethernet1/9

interface Ethernet1/10

interface Ethernet1/11

interface Ethernet1/12

interface Ethernet1/13

interface Ethernet1/14

interface Ethernet1/15

interface Ethernet1/16

interface Ethernet1/17
description *** CONNECTED TO POLL***
switchport mode trunk
switchport trunk allowed vlan 111,200,302-303,350,353,355,400,521,523,600-601,
1319,1328,1415

interface Ethernet1/18

interface Ethernet1/19

interface Ethernet1/20

interface Ethernet1/21

interface Ethernet1/22

interface Ethernet1/23

interface Ethernet1/24

interface Ethernet1/25

interface Ethernet1/26

interface Ethernet1/27

interface Ethernet1/28

interface Ethernet1/29

interface Ethernet1/30

interface Ethernet1/31
description ***Connected-online***
switchport mode trunk
switchport trunk allowed vlan 354,1332

interface Ethernet1/32
description ***Connected-to-KO***
switchport mode trunk
switchport trunk allowed vlan 352,1330

interface Ethernet1/33
description *** CONNECTED TO MIKROTIK ***
switchport mode trunk
switchport trunk allowed vlan 10,20,100,302,349-351,444,521,523,1000

interface Ethernet1/34
description ***Connected-OLT-C320***
switchport mode trunk
switchport trunk allowed vlan 10,20,100

interface Ethernet1/35

interface Ethernet1/36

interface Ethernet1/37

interface Ethernet1/38

interface Ethernet1/39

interface Ethernet1/40

interface Ethernet1/41

interface Ethernet1/42

interface Ethernet1/43

interface Ethernet1/44
description ***free***
shutdown

interface Ethernet1/45
description description ****free****
shutdown

interface Ethernet1/46
description *** DriniaTECH ***
switchport mode trunk
switchport trunk allowed vlan 350-351,444,523

interface Ethernet1/47
description ***IP_QAM****
switchport access vlan 400
speed 1000

interface Ethernet1/48
description ***IPQAM***
switchport access vlan 601
speed 1000

interface Ethernet1/49
shutdown

interface Ethernet1/50
shutdown

interface Ethernet1/51

interface Ethernet1/52
switchport mode trunk
switchport trunk allowed vlan 200,303,400,1415

interface mgmt0
vrf member management
ip address 192.168.99.2/24

interface loopback1
ipv6 address 2a12:a3c0:f000::1/128

interface loopback9
description ***RP-Multicast-for-***
ip address 10.3.7.1/24
ip pim sparse-mode
line console
line vty
access-class TELNET in
boot nxos bootflash:/nxos.7.0.3.I7.9.bin
router bgp {as-number}
router-id {ip}
address-family ipv4 unicast
network {ip}/24
redistribute static route-map RM-STATIC-TO-BGP
address-family ipv6 unicast
network {ipv6}/29
neighbor {ipv6} remote-as {as-number}
address-family ipv6 unicast
neighbor {ip} remote-as {as-number}
remote-as {as-number}
description TI
address-family ipv4 unicast
send-community
send-community extended
route-map TI-IN in
route-map TI-OUT out
soft-reconfiguration inbound
address-family ipv6 unicast
neighbor {ipv6}/127 remote-as {as-number}
address-family ipv6 unicast

Posted in CISCO, Networking.

Leave a Reply

Your email address will not be published. Required fields are marked *