!BASE ALS1 Config
!
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname ALS1
!
logging buffered 16384
enable secret cisco
!
username cisco secret cisco
aaa new-model
!
!         
aaa authentication login default local
aaa authentication login CONSOLE none
aaa authorization exec default local 
!
!
clock timezone PST -8
clock summer-time PDT recurring
system mtu routing 1500
vtp domain TSHOOT
vtp mode transparent
ip routing
!
!
no ip domain-lookup
ip domain-name tshoot.net
ip host R1 10.1.2.2 10.1.1.1 10.1.201.1
ip host R2 10.1.1.2 10.1.1.6 10.1.202.1
ip host R3 10.1.1.5 10.1.2.14 10.1.203.1
ip host ALS1 10.1.99.1
ip host DLS1 10.1.99.252 10.1.2.1
ip host DLS2 10.1.99.253 10.1.2.13
ipv6 unicast-routing
!
errdisable recovery cause psecure-violation
errdisable recovery interval 120
!
spanning-tree mode rapid-pvst
spanning-tree portfast default
!
vlan 99
 name MANAGEMENT
!
vlan 110
 name GUEST
!
vlan 120
 name OFFICE
!
vlan 200
 name VOICE
!
vlan 666
 name NATIVE
!
vlan 999
 name PARKING_LOT
!
ip telnet source-interface Vlan99
ip ssh source-interface Vlan99
ip ssh dh min size 2048
!
!
interface Port-channel1
 description Channel to DLS1
 switchport trunk native vlan 666
 switchport trunk allowed vlan 99,110,120,200
 switchport mode trunk
 switchport nonegotiate
 no shutdown
!
interface Port-channel2
 description Channel to DLS2
 switchport trunk native vlan 666
 switchport trunk allowed vlan 99,110,120,200
 switchport mode trunk
 switchport nonegotiate
 no shutdown
!
interface FastEthernet0/1
 description Channel to DLS1
 switchport trunk native vlan 666
 switchport trunk allowed vlan 99,110,120,200
 switchport mode trunk
 switchport nonegotiate
 channel-group 1 mode on
 no shutdown
!
interface FastEthernet0/2
 description Channel to DLS1
 switchport trunk native vlan 666
 switchport trunk allowed vlan 99,110,120,200
 switchport mode trunk
 switchport nonegotiate
 channel-group 1 mode on
 no shutdown
!
interface FastEthernet0/3
 description Channel to DLS2
 switchport trunk native vlan 666
 switchport trunk allowed vlan 99,110,120,200
 switchport mode trunk
 switchport nonegotiate
 channel-group 2 mode on
 no shutdown
!
interface FastEthernet0/4
 description Channel to DLS2
 switchport trunk native vlan 666
 switchport trunk allowed vlan 99,110,120,200
 switchport mode trunk
 switchport nonegotiate
 channel-group 2 mode on
 no shutdown
!
interface FastEthernet0/5
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!
interface FastEthernet0/6
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!
interface FastEthernet0/7
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!
interface FastEthernet0/8
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!
interface FastEthernet0/9
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!
interface FastEthernet0/10
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!
interface FastEthernet0/11
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!
interface FastEthernet0/12
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!
interface FastEthernet0/13
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!
interface FastEthernet0/14
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!
interface FastEthernet0/15
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!
interface FastEthernet0/16
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!         
interface FastEthernet0/17
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!
interface FastEthernet0/18
 description To PC-B
 switchport access vlan 120
 switchport mode access
 switchport voice vlan 200
 switchport port-security maximum 3
 switchport port-security
 switchport port-security mac-address sticky
 spanning-tree portfast
 no shutdown
!
interface FastEthernet0/19
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!
interface FastEthernet0/20
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!
interface FastEthernet0/21
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!
interface FastEthernet0/22
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!         
interface FastEthernet0/23
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!
interface FastEthernet0/24
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!
interface GigabitEthernet0/1
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!
interface GigabitEthernet0/2
 description PARKING_LOT
 switchport access vlan 999
 switchport mode access
 switchport nonegotiate
 shutdown
!
interface Vlan1
 no ip address
 shutdown
!
interface Vlan99
 ip address 10.1.99.251 255.255.255.0
 ipv6 address FE80::A1 link-local
 ipv6 address 2001:DB8:CAFE:99::A1/64
 no ip proxy-arp
 no shutdown
!
interface Vlan110
 ip address 10.1.110.251 255.255.255.0
 ipv6 address FE80::A1 link-local
 ipv6 address 2001:DB8:CAFE:110::A1/64
 ipv6 nd prefix 2001:DB8:CAFE:110::/64 no-autoconfig
 ipv6 nd managed-config-flag
 no ip proxy-arp
 no shutdown
!         
interface Vlan120
 ip address 10.1.120.251 255.255.255.0
 ipv6 address FE80::A1 link-local
 ipv6 address 2001:DB8:CAFE:120::A1/64
 ipv6 nd prefix 2001:DB8:CAFE:120::/64 no-autoconfig
 ipv6 nd managed-config-flag
 no ip proxy-arp
 no shutdown
!
interface Vlan200
 ip address 10.1.200.251 255.255.255.0
 ipv6 address FE80::A1 link-local
 ipv6 address 2001:DB8:CAFE:200::A1/64
 ipv6 nd prefix 2001:DB8:CAFE:200::/64 no-autoconfig
 ipv6 nd managed-config-flag
 no ip proxy-arp
 no shutdown
!
no ip http server
no ip http secure-server
ip route 0.0.0.0 0.0.0.0 10.1.99.254
logging source-interface Vlan99
logging host 10.1.100.1
ipv6 route ::/0 2001:DB8:CAFE:99::D1
!
snmp-server community cisco RO
snmp-server community san-fran RW
snmp-server trap-source Vlan99
snmp-server location TSHOOT Lab Facility
snmp-server contact support@tshoot.net
snmp-server enable traps vtp
snmp-server enable traps vlancreate
snmp-server enable traps vlandelete
snmp-server enable traps port-security
snmp-server enable traps vlan-membership
snmp-server host 10.1.100.1 version 2c cisco 
!
banner motd ^*** BASE ALS1 Config ***^
!
ipv6 access-list REMOTEv6
 deny ipv6 any any
!
line con 0
 exec-timeout 0 0
 logging synchronous
 login authentication CONSOLE
line vty 0 4
 exec-timeout 0 0
 ipv6 access-class REMOTEv6 in
 logging synchronous
 length 0
 transport input telnet ssh
!
ntp source Vlan99
ntp server 10.1.202.1
!
crypto key gen rsa general-keys modulus 1024
!
!
archive
 log config
  logging enable
  logging size 50
  notify syslog contenttype plaintext
  hidekeys
 path tftp://10.1.100.1/$h-archive-config
 write-memory
file prompt quiet
!
end
