Код:
System description : DGS-3610-26G Gigabit Ethernet Switch
System start time : 2011-08-28 3:21:19
System uptime : 2:11:6:4
System hardware version : A1.0
System software version : v10.4(3) Release(117920)
System BOOT version : 10.4(3) Release(117920)
System CTRL version : 10.4(3) Release(117920)
Device information:
Device-1
Hardware version : A1.0
Software version : v10.4(3) Release(117920)
BOOT version : 10.4(3) Release(117920)
CTRL version : 10.4(3) Release(117920)
Код:
show ip ref resolve_lst
IP state reg_num relate2ef ifindex
77.87.43.70 0 0 1 VLAN 42
77.87.42.188 0 0 1 VLAN 42
77.87.44.161 0 0 1 VLAN 44
77.87.42.192 0 0 1 VLAN 42
77.87.46.70 0 0 1 VLAN 46
77.87.44.98 0 0 1 VLAN 44
77.87.40.187 0 0 1 VLAN 42
77.87.42.226 0 0 1 VLAN 42
77.87.41.44 0 0 1 VLAN 41
77.87.40.145 0 0 1 VLAN 42
77.87.42.213 0 0 1 VLAN 42
77.87.43.82 0 0 1 VLAN 42
77.87.44.101 0 0 1 VLAN 44
77.87.44.153 0 0 1 VLAN 44
77.87.42.139 0 0 1 VLAN 42
77.87.46.17 0 0 1 VLAN 46
77.87.43.114 0 0 1 VLAN 42
77.87.44.155 0 0 1 VLAN 44
77.87.43.52 0 0 1 VLAN 42
77.87.41.94 0 0 1 VLAN 41
77.87.42.167 0 0 1 VLAN 42
77.87.44.136 0 0 1 VLAN 44
77.87.43.107 0 0 1 VLAN 42
77.87.42.198 0 0 1 VLAN 42
77.87.42.179 0 0 1 VLAN 42
77.87.41.134 0 0 1 VLAN 41
77.87.46.24 0 0 1 VLAN 46
77.87.41.51 0 0 1 VLAN 41
77.87.41.43 0 0 1 VLAN 41
77.87.41.174 0 0 1 VLAN 41
77.87.44.49 0 0 1 VLAN 44
77.87.43.230 0 0 1 VLAN 42
77.87.41.152 0 0 1 VLAN 41
77.87.43.106 0 0 1 VLAN 42
77.87.42.92 0 0 1 VLAN 42
77.87.42.50 0 0 1 VLAN 42
77.87.44.72 0 0 1 VLAN 44
77.87.41.119 0 0 1 VLAN 41
77.87.42.185 0 0 1 VLAN 42
77.87.43.199 0 0 1 VLAN 42
77.87.41.42 0 0 1 VLAN 41
77.87.41.250 0 0 1 VLAN 41
77.87.42.175 0 0 1 VLAN 42
77.87.40.178 0 0 1 VLAN 42
77.87.43.135 0 0 1 VLAN 42
77.87.41.124 0 0 1 VLAN 41
77.87.41.39 0 0 1 VLAN 41
77.87.41.69 0 0 1 VLAN 41
77.87.43.169 0 0 1 VLAN 42
77.87.41.74 0 0 1 VLAN 41
77.87.42.19 0 0 1 VLAN 42
77.87.42.51 0 0 1 VLAN 42
77.87.43.240 0 0 1 VLAN 42
77.87.44.7 0 0 1 VLAN 44
77.87.41.41 0 0 1 VLAN 41
77.87.43.134 0 0 1 VLAN 42
77.87.43.185 0 0 1 VLAN 42
77.87.43.122 0 0 1 VLAN 42
77.87.43.99 0 0 1 VLAN 42
77.87.42.110 0 0 1 VLAN 42
77.87.43.215 0 0 1 VLAN 42
77.87.41.88 0 0 1 VLAN 41
77.87.40.150 0 0 1 VLAN 42
77.87.44.93 0 0 1 VLAN 44
77.87.43.154 0 0 1 VLAN 42
77.87.42.202 0 0 1 VLAN 42
77.87.41.160 0 0 1 VLAN 41
77.87.40.169 0 0 1 VLAN 42
77.87.46.74 0 0 1 VLAN 46
77.87.43.51 0 0 1 VLAN 42
77.87.44.95 0 0 1 VLAN 44
77.87.44.53 0 0 1 VLAN 44
77.87.44.54 0 0 1 VLAN 44
77.87.41.184 0 0 1 VLAN 41
77.87.44.92 0 0 1 VLAN 44
77.87.42.111 0 0 1 VLAN 42
77.87.44.47 0 0 1 VLAN 44
77.87.44.62 0 0 1 VLAN 44
77.87.43.118 0 0 1 VLAN 42
77.87.43.251 0 0 1 VLAN 42
77.87.43.131 0 0 1 VLAN 42
77.87.43.143 0 0 1 VLAN 42
77.87.42.59 0 0 1 VLAN 42
77.87.41.193 0 0 1 VLAN 41
77.87.41.182 0 0 1 VLAN 41
77.87.44.35 0 0 1 VLAN 44
77.87.44.100 0 0 1 VLAN 44
77.87.43.58 0 0 1 VLAN 42
77.87.42.235 0 0 1 VLAN 42
77.87.46.10 0 0 1 VLAN 46
77.87.44.75 0 0 1 VLAN 44
77.87.42.96 0 0 1 VLAN 42
77.87.44.132 0 0 1 VLAN 44
77.87.42.148 0 0 1 VLAN 42
77.87.43.208 0 0 1 VLAN 42
77.87.41.22 0 0 1 VLAN 41
77.87.43.9 0 0 1 VLAN 42
77.87.41.171 0 0 1 VLAN 41
77.87.41.96 0 0 1 VLAN 41
77.87.41.177 0 0 1 VLAN 41
77.87.42.152 0 0 1 VLAN 42
77.87.43.180 0 0 1 VLAN 42
77.87.46.72 0 0 1 VLAN 46
77.87.46.68 0 0 1 VLAN 46
77.87.43.149 0 0 1 VLAN 42
77.87.43.105 0 0 1 VLAN 42
77.87.40.147 0 0 1 VLAN 42
77.87.43.108 0 0 1 VLAN 42
77.87.44.104 0 0 1 VLAN 44
77.87.44.173 0 0 1 VLAN 44
77.87.43.141 0 0 1 VLAN 42
77.87.43.202 0 0 1 VLAN 42
77.87.43.129 0 0 1 VLAN 42
77.87.41.109 0 0 1 VLAN 41
77.87.44.149 0 0 1 VLAN 44
77.87.46.20 0 0 1 VLAN 46
77.87.42.122 0 0 1 VLAN 42
77.87.40.140 0 0 1 VLAN 42
77.87.43.218 0 0 1 VLAN 42
77.87.42.65 0 0 1 VLAN 42
77.87.44.88 0 0 1 VLAN 44
77.87.42.233 0 0 1 VLAN 42
77.87.46.56 0 0 1 VLAN 46
77.87.43.67 0 0 1 VLAN 42
77.87.43.191 0 0 1 VLAN 42
77.87.44.135 0 0 1 VLAN 44
77.87.43.59 0 0 1 VLAN 42
77.87.43.77 0 0 1 VLAN 42
77.87.41.121 0 0 1 VLAN 41
77.87.44.74 0 0 1 VLAN 44
77.87.41.36 0 0 1 VLAN 41
77.87.44.117 0 0 1 VLAN 44
77.87.44.6 0 0 1 VLAN 44
77.87.46.53 0 0 1 VLAN 46
77.87.40.179 0 0 1 VLAN 42
77.87.41.61 0 0 1 VLAN 41
77.87.44.114 0 0 1 VLAN 44
77.87.41.156 0 0 1 VLAN 41
77.87.43.190 0 0 1 VLAN 42
77.87.42.221 0 0 1 VLAN 42
77.87.43.212 0 0 1 VLAN 42
77.87.42.54 0 0 1 VLAN 42
77.87.42.45 0 0 1 VLAN 42
77.87.41.159 0 0 1 VLAN 41
77.87.46.55 0 0 1 VLAN 46
77.87.44.109 0 0 1 VLAN 44
77.87.42.190 0 0 1 VLAN 42
77.87.40.175 0 0 1 VLAN 42
77.87.46.14 0 0 1 VLAN 46
77.87.43.198 0 0 1 VLAN 42
77.87.42.242 0 0 1 VLAN 42
77.87.43.137 0 0 1 VLAN 42
77.87.42.223 0 0 1 VLAN 42
77.87.41.87 0 0 1 VLAN 41
77.87.44.22 0 0 1 VLAN 44
77.87.40.162 0 0 1 VLAN 42
77.87.41.90 0 0 1 VLAN 41
77.87.43.78 0 0 1 VLAN 42
77.87.43.117 0 0 1 VLAN 42
77.87.43.195 0 0 1 VLAN 42
77.87.42.180 0 0 1 VLAN 42
77.87.40.167 0 0 1 VLAN 42
77.87.43.61 0 0 1 VLAN 42
77.87.40.163 0 0 1 VLAN 42
77.87.44.78 0 0 1 VLAN 44
77.87.41.114 0 0 1 VLAN 41
77.87.46.12 0 0 1 VLAN 46
77.87.43.46 0 0 1 VLAN 42
77.87.44.18 0 0 1 VLAN 44
77.87.42.46 0 0 1 VLAN 42
77.87.44.106 0 0 1 VLAN 44
77.87.40.191 0 0 1 VLAN 42
77.87.41.92 0 0 1 VLAN 41
77.87.44.66 0 0 1 VLAN 44
77.87.41.46 0 0 1 VLAN 41
77.87.43.102 0 0 1 VLAN 42
77.87.43.63 0 0 1 VLAN 42
77.87.42.249 0 0 1 VLAN 42
77.87.43.62 0 0 1 VLAN 42
77.87.43.205 0 0 1 VLAN 42
77.87.44.64 0 0 1 VLAN 44
77.87.43.110 0 0 1 VLAN 42
77.87.44.60 0 0 1 VLAN 44
77.87.44.61 0 0 1 VLAN 44
77.87.44.91 0 0 1 VLAN 44
77.87.41.163 0 0 1 VLAN 41
77.87.40.142 0 0 1 VLAN 42
77.87.43.119 0 0 1 VLAN 42
77.87.41.76 0 0 1 VLAN 41
77.87.44.33 0 0 1 VLAN 44
77.87.46.23 0 0 1 VLAN 46
77.87.46.60 0 0 1 VLAN 46
77.87.44.70 0 0 1 VLAN 44
77.87.44.26 0 0 1 VLAN 44
77.87.41.38 0 0 1 VLAN 41
77.87.43.201 0 0 1 VLAN 42
77.87.44.110 0 0 1 VLAN 44
77.87.41.120 0 0 1 VLAN 41
77.87.42.132 0 0 1 VLAN 42
77.87.41.84 0 0 1 VLAN 41
77.87.40.136 0 0 1 VLAN 42
77.87.43.231 0 0 1 VLAN 42
77.87.43.222 0 0 1 VLAN 42
77.87.43.164 0 0 1 VLAN 42
77.87.43.115 0 0 1 VLAN 42
77.87.44.108 0 0 1 VLAN 44
77.87.44.76 0 0 1 VLAN 44
77.87.43.40 0 0 1 VLAN 42
77.87.41.31 0 0 1 VLAN 41
77.87.44.152 0 0 1 VLAN 44
77.87.40.184 0 0 1 VLAN 42
77.87.43.170 0 0 1 VLAN 42
77.87.41.19 0 0 1 VLAN 41
77.87.42.87 0 0 1 VLAN 42
77.87.40.90 0 0 1 VLAN 5
77.87.41.173 0 0 1 VLAN 41
77.87.43.197 0 0 1 VLAN 42
77.87.40.170 0 0 1 VLAN 42
77.87.42.25 0 0 1 VLAN 42
77.87.46.34 0 0 1 VLAN 46
77.87.41.71 0 0 1 VLAN 41
Код:
!
version v10.4(3) Release(117920)(Wed Jun 22 09:55:14 CST 2011 -ngcf62)
hostname Central
!
!
co-operate enable
!
!
nfpp
no ip-guard enable
!
!
route-map SEVENUP permit 10
set community XXXXX:XXXXX
!
route-map Volz-IN permit 10
match ip address prefix-list DEFAULT
!
route-map Volz-IN deny 20
match ip address prefix-list DENY-SHIT
!
route-map Volz-IN permit 30
set community XXXXX:XXXXX
!
route-map Volz-OUT deny 10
match ip address prefix-list DEFAULT
!
route-map Volz-OUT deny 20
match ip address prefix-list DENY-SHIT
!
route-map Volz-OUT permit 30
match ip address prefix-list announce
!
route-map KIEVNET-IN permit 10
match ip address prefix-list KIEVNET
!
route-map KIEVNET-IN deny 20
match ip address prefix-list DEFAULT
!
route-map KIEVNET-IN deny 30
match ip address prefix-list DENY-SHIT
!
route-map KIEVNET-OUT permit 10
match ip address prefix-list announce
!
mls qos scheduler sp
vlan 1
name Lan
!
vlan 3
name Servers
!
vlan 4
name Collocation
!
vlan 5
name XXXXXX
!
vlan 41
name SegmentA
!
vlan 42
name SegmentB
!
vlan 44
name SegmentC
!
vlan 46
name SegmentD
!
vlan 2972
name XXXXXX
!
vlan 3014
name XXXXXX
!
vlan 3306
name XXXXX
!
!
alias exec e exit
alias exec sr show run | exclude deny ip
alias exec sr2 sr | exclude arp
alias exec srb show run | begin router
alias exec srm sr | exclude arp
alias config e exit
alias config sr show run | exclude deny ip
alias config srb show run | begin router
alias interface e exit
alias acl e exit
service password-encryption
ip helper-address 74.82.40.5
!
!
!
ip name-server 74.82.40.5
ip name-server 74.82.40.6
!
!
ip access-list extended 120
340140 deny ip any host 74.82.40.140
340142 deny ip any host 74.82.40.142
340145 deny ip any host 74.82.40.145
!
!skipped 289 simmilar lines
!
346068 deny ip any host 74.82.46.68
346070 deny ip any host 74.82.46.70
346074 deny ip any host 74.82.46.74
1000000 permit ip any any
list-remark Ingoing block for denyed
!
!
ip access-list extended 121
340140 deny ip host 74.82.40.140 any
340142 deny ip host 74.82.40.142 any
340145 deny ip host 74.82.40.145 any
340150 deny ip host 74.82.40.150 any
!
!skipped 289 simmilar lines
!
346070 deny ip host 74.82.46.70 any
346074 deny ip host 74.82.46.74 any
1000000 permit ip any any
list-remark Outgoing block for denyed
!
!
ip access-list extended 130
340023 permit tcp host 74.82.40.23 any eq smtp
340065 permit tcp 74.82.40.64 0.0.0.63 any eq smtp
340137 permit tcp host 74.82.40.137 any eq smtp
341004 permit tcp host 74.82.41.4 any eq smtp
!
!skipped 30 simmilar lines
!
341005 permit tcp host 74.82.41.5 any eq smtp
346054 permit tcp host 74.82.46.54 any eq smtp
346064 permit tcp host 74.82.46.64 any eq smtp
900000 deny tcp any any eq smtp
1000000 permit ip any any
list-remark Block for spammers
!
!
ip access-list extended iptv
10 permit udp any any eq 1234
20 permit udp any any eq 2345
!
!
ip prefix-list DEFAULT seq 10 permit 0.0.0.0/0
!
ip prefix-list DENY-SHIT seq 20 permit 10.0.0.0/8 le 32
ip prefix-list DENY-SHIT seq 30 permit 127.0.0.0/8 le 32
ip prefix-list DENY-SHIT seq 40 permit 172.16.0.0/12 le 32
ip prefix-list DENY-SHIT seq 50 permit 192.168.0.0/16 le 32
ip prefix-list DENY-SHIT seq 60 permit 224.0.0.0/3 le 32
!
ip prefix-list KIEVNET description KIEVNET-NETS
ip prefix-list KIEVNET seq 10 permit 92.244.96.0/19
ip prefix-list KIEVNET seq 20 permit 109.108.64.0/19
ip prefix-list KIEVNET seq 30 permit 193.107.200.0/22
ip prefix-list KIEVNET seq 40 permit 91.202.104.0/22
ip prefix-list KIEVNET seq 50 permit 195.18.28.0/22
ip prefix-list KIEVNET seq 60 deny 0.0.0.0/0 le 32
!
ip prefix-list announce description from_Sevenup_with_announces
ip prefix-list announce seq 15 permit 74.82.40.0/21
ip prefix-list announce seq 20 deny 0.0.0.0/0 le 32
!
ip prefix-list noannounce description from_Sevenup_without_announces
ip prefix-list noannounce seq 10 deny 0.0.0.0/0 le 32
!
!
clock timezone Kiev 0 0
!
!
enable secret 5 XXXXXX
enable service ssh-server
enable service web-server http
enable service web-server https
!
!
!
class-map iptv
match access-group iptv
!
!
policy-map iptv
class iptv
set ip dscp 48
!
!
!
interface GigabitEthernet 0/1
switchport access vlan 42
ip igmp snooping filter 1
!
interface GigabitEthernet 0/2
switchport access vlan 44
ip igmp snooping filter 1
!
interface GigabitEthernet 0/3
switchport access vlan 46
ip igmp snooping filter 1
!
interface GigabitEthernet 0/4
switchport access vlan 41
switchport protected
ip igmp snooping filter 1
!
interface GigabitEthernet 0/5
switchport access vlan 44
ip igmp snooping filter 1
!
interface GigabitEthernet 0/6
switchport access vlan 44
ip igmp snooping filter 1
!
interface GigabitEthernet 0/7
!
interface GigabitEthernet 0/8
!
interface GigabitEthernet 0/9
switchport access vlan 3306
description "L9 UA-IX"
!
interface GigabitEthernet 0/10
switchport access vlan 3014
description "L9 World"
!
interface GigabitEthernet 0/11
switchport access vlan 2972
description "L9 IPTV"
!
interface GigabitEthernet 0/12
switchport mode trunk
switchport trunk allowed vlan remove 1-2971,2973-3013,3015-3305,3307-4094
ip access-group 120 in
ip access-group 121 out
mls qos trust cos
!
interface GigabitEthernet 0/13
switchport mode trunk
medium-type fiber
!
interface GigabitEthernet 0/14
switchport access vlan 41
medium-type fiber
ip igmp snooping filter 1
!
interface GigabitEthernet 0/15
switchport access vlan 41
!
interface GigabitEthernet 0/16
switchport access vlan 3014
!
interface GigabitEthernet 0/17
switchport access vlan 3
!
interface GigabitEthernet 0/18
switchport access vlan 3
!
interface GigabitEthernet 0/19
switchport mode trunk
!
interface GigabitEthernet 0/20
switchport mode trunk
ip igmp snooping filter 1
!
interface GigabitEthernet 0/21
switchport access vlan 41
switchport protected
!
interface GigabitEthernet 0/22
switchport access vlan 3
switchport protected
!
interface GigabitEthernet 0/23
switchport access vlan 44
switchport protected
ip igmp snooping filter 1
!
interface GigabitEthernet 0/24
switchport access vlan 44
switchport protected
ip igmp snooping filter 1
!
interface Loopback 0
ip address 172.16.0.1 255.255.255.255
!
interface VLAN 1
ip policy route-map smtp
no ip proxy-arp
description Default
!
interface VLAN 3
no ip proxy-arp
ip address 74.82.40.1 255.255.255.248
!
interface VLAN 4
ip policy route-map smtp
no ip proxy-arp
ip address 74.82.40.17 255.255.255.240
!
interface VLAN 5
no ip proxy-arp
ip address 74.82.40.65 255.255.255.192
!
interface VLAN 41
no ip proxy-arp
ip address 74.82.41.1 255.255.255.0
ip address 10.62.41.1 255.255.255.0 secondary
!
interface VLAN 42
no ip proxy-arp
ip access-group 130 in
ip address 74.82.42.1 255.255.254.0
ip address 74.82.40.129 255.255.255.128 secondary
ip address 10.62.42.1 255.255.255.0 secondary
!
interface VLAN 44
no ip proxy-arp
ip address 74.82.44.1 255.255.254.0
ip address 10.62.44.1 255.255.255.0 secondary
!
interface VLAN 46
no ip proxy-arp
ip address 74.82.46.1 255.255.254.0
ip address 10.62.46.1 255.255.255.0 secondary
!
interface VLAN 2972
no ip proxy-arp
ip address 74.82.40.41 255.255.255.248
!
interface VLAN 3014
no ip proxy-arp
ip address 92.244.96.134 255.255.255.252
ip address 74.82.40.37 255.255.255.252 secondary
!
interface VLAN 3306
no ip proxy-arp
ip address 74.82.40.10 255.255.255.248
!
!
arp 74.82.40.19 0018.f306.6c83 arpa
arp 74.82.40.20 0022.1560.0012 arpa
arp 74.82.40.21 20cf.3084.f6bd arpa
arp 74.82.40.23 0050.8db7.1095 arpa
!
!skipped 859 simmilar lines
!
arp 74.82.46.72 0013.d483.f17d arpa
arp 74.82.46.73 88ae.1d10.5cda arpa
arp 74.82.46.74 0018.f3ea.6b6d arpa
arp 74.82.46.75 0014.85da.4d6f arpa
arp 74.82.46.76 0014.85c8.6be8 arpa
!
!
!
router bgp XXXXX
bgp router-id 74.82.40.1
bgp log-neighbor-changes
neighbor 74.82.40.2 remote-as XXXXX
neighbor 74.82.40.2 description Nord
neighbor 92.244.96.133 remote-as XXXXX
neighbor 92.244.96.133 description Kievnet
neighbor 213.160.128.72 remote-as XXXXX
neighbor 213.160.128.72 description Volz
neighbor 213.160.128.72 ebgp-multihop 2
!
address-family ipv4
network 74.82.40.0 mask 255.255.248.0 route-map SEVENUP
aggregate-address 74.82.40.0 255.255.248.0 summary-only
redistribute connected
neighbor 74.82.40.2 activate
neighbor 74.82.40.2 soft-reconfiguration inbound
neighbor 92.244.96.133 activate
neighbor 92.244.96.133 remove-private-as
neighbor 92.244.96.133 soft-reconfiguration inbound
neighbor 92.244.96.133 route-map KIEVNET-IN in
neighbor 92.244.96.133 route-map KIEVNET-OUT out
neighbor 213.160.128.72 activate
neighbor 213.160.128.72 remove-private-as
neighbor 213.160.128.72 soft-reconfiguration inbound
exit-address-family
!
!
ip route 0.0.0.0 0.0.0.0 74.82.40.2
ip route 10.0.0.0 255.0.0.0 Null 0
ip route 74.82.40.0 255.255.248.0 Null 0
ip route 172.16.0.0 255.240.0.0 Null 0
ip route 192.168.0.0 255.255.0.0 Null 0
ip route 193.17.46.0 255.255.255.0 213.160.128.72
ip route 213.160.128.65 255.255.255.255 74.82.40.9
ip route 213.160.128.72 255.255.255.255 74.82.40.9
!
ip igmp profile 1
permit
range 233.252.8.0 233.252.8.255
!
ip igmp profile 2
deny
range 224.0.0.0 239.255.255.255
!
ip igmp snooping svgl vlan 2972
ip igmp snooping svgl profile 1
ip igmp snooping svgl
ip igmp snooping fast-leave enable
!
snmp-server community XXXXX ro
snmp-server community XXXXX rw
line con 0
login XXXXX
password 7 XXXXX
line vty 0 35
session-timeout 40
login XXXXX
password 7 XXXXX
!
!
end
На счет 4го вопроса затрудняюсь ответить. Устройство делит сеть на 4 броадкаст домена, плюс подсети для серверов. Общая численность компьютеров в подсетях около 700.
Хочу отметить, что в старой прошивке (10.2) была точно такая же конфигурация, но загрузка процессора была 7-11%.
Вход
Регистрация
FAQ
Поиск
