Situation 1
Descriptif de la réalisation professionnelle, y compris les productions réalisées et schéma réseau
-historique du projet
L’initiative de rénover l’infrastructure réseau pour la structure s’inscrit dans une démarche d’amélioration du SI de la société »gerald-sio » qui motivé par la nécessité d’être en phase avec les évolutions technologiques du marché informatique.
-Fiabilité et Accessibilité :
Étant donné le manque de performance de l’infrastructure réseau , il est
primordial de mettre en place un réseau non seulement fiable mais aussi constamment accessible, cela garantira que tous les employés aient un accès ininterrompu aux ressources numériques de l’entreprise.
-Besoins Techniques :
La configuration de VLANs est cruciale pour segmenter efficacement le trafic
réseau. Cela permettra d’améliorer la sécurité en isolant les segments de réseau spécifiques aux besoins des utilisateurs et des applications. Par exemple, des VLANs séparés pour les différent départements garantiront que les ressources sont sécurisées et permettent un cloisonnement en cas de failles de sécurité.
Action réalisées, afin d’avoir un infrastructure réseau convenable dans notre entreprise(gerald-sio), nous avons décidé de déployer certains services comme:
– L’administration de notre infrastructure système et réseau.
– Utilisation de deux serveurs windows 2019 ( un primaire et une secondaire)
– Création et mise en production d’un domaine.
– Affectation de role AD-DS, DHCP,DNS et Serveur de Fichiers
– Mise en place d’une GPO ayant pour but de bloquer l’accès à la commande CMD aux membres du departement Marketing .
Schéma de l’infrastructure de notre établissement:
Etapes de la mise en place de notre infrastructure :
1- Installation des éléments de bases du système réseau( laptop et desktop, routeur et firewall)
2- installation du windows server 2019
3- Mise en place d’un domaine avec compte utilisateur via l’installation du rôle ADDS du serveur windows 2019(primaire)
4- Installation des rôles DHCP,DNS et Serveur de Fichiers
5- Mise en place du replica du serveur windows 2019 (Serveur Secondaire)
6- Implantation de GPO bloquant l’accès à la commande cmd aux membres du département Marketing.
Situation 2
Descriptif de la réalisation professionnelle, y compris les productions réalisées et schéma représentatif
Mise en place d’un Serveur GLPI
- Configurer les fonctionnalités du serveur de replication pour assurer une continuité de service dans le parc informatique de la société gerald-sio en cas de faille du serveur primaire, afin d’assurer un arrêt minimal de l’activité de la société.
- Creation de groupes particulier en fonctions des statuts des différents utilisateurs au sein de GLPI .
Schéma de l’infrastructure de la société:
Etapes de la mise en place du GLPI :
1- Analyse et Planification
2- Installation et Configuration,Mise en production
Cahier des Charges
La société Gérald-Sio, spécialisée dans l’installation d’imprimantes souhaite moderniser son parc informatique vieillissant dont les fonctions principales sont la gestion des stocks et la facturation.
10 personnes y travaillent ; un directeur, 2 commerciaux, 2 secrétaires, 2 comptables, 3 administratifs
Topologie et matériels :
Abonnements FAI x 2
1 firewall type Asa
2 windows Serveurs 2019 en réplica
1 routeurs type Cisco 3745
5 switchs de niveau 1
Vlans spécifiques par département
10 PC : types windows, linux , 3 Serveurs : WS2019, fichiers, DHCP, DNS, Debian 12,Glpi, 3 bornes WIFI…
Logiciels et licences
Estimation des Coûts :
| Matériels | Descriptions | Quantités | Prix Unitaire | Total(Euros) |
| Pare-feu | Cisco ASA | 1 | 2400 | 2400 |
| Routeurs L3 | Cisco 3745 | 1 | 13904 | 13904 |
| Switch Niv.2 | Cisco3750 g | 2 | 2419 | 4838 |
| Serveur | Dell poweredge R720 XD | 3 | 800 | 2400 |
| Postes W PCs | Dell inspiron 15 | 10 | 569 | 5690 |
| Bornes Wifi | Unifi AP-AC_Pro | 3 | 150 | 450 |
| Onduleurs(UPS) | APCsmart1500w | 3 | 800 | 2400 |
| Câbles divers | Ethernet, alim… | 1 pack | 1000 | 1000 |
| Logiciels et licences | WindowsServer, Glpi | N/A | 5000 | 5000 |
| Baie de brassage | Rack équipements | 3 | 1200 | 3600 |
| Installation | Physique&conf. | N/A | 8000 | 8000 |
| Maintenance | Logiciels et equipements | N/A | 4000 | 4000 |
| Total | 53 682 |
1. Listing de répartition des postes clients par division métiers :
– 1 directeur
– 2 commerciaux
– 2 secrétaires
– 2 comptables
– 3 administratifs
2. Planification des VLANs :
Un vlan par département pour permettre une meilleure segmentation :
| Groupes | Vlans | Réseaux IP |
| Direction | 10 | 192.168.100.0/24 |
| Marketing | 20 | 192.168.20.0/24 |
| compabilité | 30 | 192.168.30.0/24 |
| Administration | 40 | 192.168.40.0/24 |
3. Schéma de la topologie réseau :
show run des éléments de configurations :
ASA> en
Password:
ASA# sh run
: Saved
:
: Serial Number: 9AV4BKR3GQK
: Hardware: ASAv, 2048 MB RAM, CPU Pentium II 2496 MHz
:
ASA Version 9.9(2)32
!
hostname ASA
enable password $sha512$5000$KuEzizRNZGlgNbez3YyJ2Q==$KeNPa7MFylPt7oWLEgKqiQ== pbkdf2
names
!
interface GigabitEthernet0/0
nameif inside
security-level 100
ip address 192.168.10.1 255.255.255.0
!
interface GigabitEthernet0/1
nameif outside
security-level 0
ip address dhcp
!
interface GigabitEthernet0/2
shutdown
nameif backup
security-level 0
ip address dhcp
!
interface GigabitEthernet0/3
shutdown
no nameif
no security-level
no ip address
!
interface GigabitEthernet0/4
shutdown
no nameif
no security-level
no ip address
!
interface GigabitEthernet0/5
shutdown
no nameif
no security-level
no ip address
!
interface GigabitEthernet0/6
shutdown
no nameif
no security-level
no ip address
!
interface Management0/0
shutdown
no nameif
no security-level
no ip address
!
boot system disk0:/asa915-smp-k8.bin
ftp mode passive
clock timezone IND 5 30
dns domain-lookup outside
dns server-group DefaultDNS
name-server 192.168.145.2
name-server 8.8.8.8
name-server 8.8.4.4
object network Inside_Network
subnet 192.168.10.0 255.255.255.0
object network inside_network
subnet 192.168.10.0 255.255.255.0
object network obj-192.168.100.0
subnet 192.168.100.0 255.255.255.0
object network obj-192.168.20.0
subnet 192.168.20.0 255.255.255.0
object network obj-192.168.30.0
subnet 192.168.30.0 255.255.255.0
object network obj-192.168.40.0
subnet 192.168.40.0 255.255.255.0
access-list outside_access_in extended permit ip any any
access-list outside_access_in extended permit icmp any any
access-list inside_access_in extended permit ip any any
access-list inside_access_in extended permit icmp any any
pager lines 24
logging enable
mtu inside 1500
mtu outside 1500
mtu backup 1500
no failover
no monitor-interface service-module
icmp unreachable rate-limit 1 burst-size 1
no asdm history enable
arp timeout 14400
no arp permit-nonconnected
arp rate-limit 8192
!
object network Inside_Network
nat (inside,outside) dynamic interface
object network inside_network
nat (inside,backup) dynamic interface
object network obj-192.168.100.0
nat (inside,outside) dynamic interface
object network obj-192.168.20.0
nat (inside,outside) dynamic interface
object network obj-192.168.30.0
nat (inside,outside) dynamic interface
object network obj-192.168.40.0
nat (inside,outside) dynamic interface
!
nat (inside,outside) after-auto source dynamic any interface
access-group inside_access_in in interface inside
access-group outside_access_in in interface outside
route outside 0.0.0.0 0.0.0.0 192.168.145.2 1
route inside 192.168.20.0 255.255.255.0 192.168.10.2 1
route inside 192.168.30.0 255.255.255.0 192.168.10.2 1
route inside 192.168.40.0 255.255.255.0 192.168.10.2 1
route inside 192.168.50.0 255.255.255.0 192.168.10.2 1
route inside 192.168.100.0 255.255.255.0 192.168.10.2 1
timeout xlate 3:00:00
timeout pat-xlate 0:00:30
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 sctp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
timeout floating-conn 0:00:00
timeout conn-holddown 0:00:15
timeout igp stale-route 0:01:10
user-identity default-domain LOCAL
aaa authentication login-history
http server enable
http 192.168.10.0 255.255.255.0 inside
no snmp-server location
no snmp-server contact
sla monitor 123
type echo protocol ipIcmpEcho 4.2.2.2 interface outside
num-packets 3
frequency 10
sla monitor schedule 123 life forever start-time now
crypto ipsec security-association pmtu-aging infinite
crypto ca trustpoint _SmartCallHome_ServerCA
no validation-usage
crl configure
crypto ca trustpool policy
auto-import
crypto ca certificate chain _SmartCallHome_ServerCA
certificate ca 0509
308205b7 3082039f a0030201 02020205 09300d06 092a8648 86f70d01 01050500
3045310b 30090603 55040613 02424d31 19301706 0355040a 13105175 6f566164
6973204c 696d6974 6564311b 30190603 55040313 1251756f 56616469 7320526f
6f742043 41203230 1e170d30 36313132 34313832 3730305a 170d3331 31313234
31383233 33335a30 45310b30 09060355 04061302 424d3119 30170603 55040a13
1051756f 56616469 73204c69 6d697465 64311b30 19060355 04031312 51756f56
61646973 20526f6f 74204341 20323082 0222300d 06092a86 4886f70d 01010105
00038202 0f003082 020a0282 0201009a 18ca4b94 0d002daf 03298af0 0f81c8ae
4c19851d 089fab29 4485f32f 81ad321e 9046bfa3 86261a1e fe7e1c18 3a5c9c60
172a3a74 8333307d 615411cb edabe0e6 d2a27ef5 6b6f18b7 0a0b2dfd e93eef0a
c6b310e9 dcc24617 f85dfda4 daff9e49 5a9ce633 e62496f7 3fba5b2b 1c7a35c2
d667feab 66508b6d 28602bef d760c3c7 93bc8d36 91f37ff8 db1113c4 9c7776c1
aeb7026a 817aa945 83e205e6 b956c194 378f4871 6322ec17 6507958a 4bdf8fc6
5a0ae5b0 e35f5e6b 11ab0cf9 85eb44e9 f80473f2 e9fe5c98 8cf573af 6bb47ecd
d45c022b 4c39e1b2 95952d42 87d7d5b3 9043b76c 13f1dedd f6c4f889 3fd175f5
92c391d5 8a88d090 ecdc6dde 89c26571 968b0d03 fd9cbf5b 16ac92db eafe797c
adebaff7 16cbdbcd 252be51f fb9a9fe2 51cc3a53 0c48e60e bdc9b476 0652e611
13857263 0304e004 362b2019 02e874a7 1fb6c956 66f07525 dc67c10e 616088b3
3ed1a8fc a3da1db0 d1b12354 df44766d ed41d8c1 b222b653 1cdf351d dca1772a
31e42df5 e5e5dbc8 e0ffe580 d70b63a0 ff33a10f ba2c1515 ea97b3d2 a2b5bef2
8c961e1a 8f1d6ca4 6137b986 7333d797 969e237d 82a44c81 e2a1d1ba 675f9507
a32711ee 16107bbc 454a4cb2 04d2abef d5fd0c51 ce506a08 31f991da 0c8f645c
03c33a8b 203f6e8d 673d3ad6 fe7d5b88 c95efbcc 61dc8b33 77d34432 35096204
921610d8 9e2747fb 3b21e3f8 eb1d5b02 03010001 a381b030 81ad300f 0603551d
130101ff 04053003 0101ff30 0b060355 1d0f0404 03020106 301d0603 551d0e04
1604141a 8462bc48 4c332504 d4eed0f6 03c41946 d1946b30 6e060355 1d230467
30658014 1a8462bc 484c3325 04d4eed0 f603c419 46d1946b a149a447 3045310b
30090603 55040613 02424d31 19301706 0355040a 13105175 6f566164 6973204c
696d6974 6564311b 30190603 55040313 1251756f 56616469 7320526f 6f742043
41203282 02050930 0d06092a 864886f7 0d010105 05000382 0201003e 0a164d9f
065ba8ae 715d2f05 2f67e613 4583c436 f6f3c026 0c0db547 645df8b4 72c946a5
03182755 89787d76 ea963480 1720dce7 83f88dfc 07b8da5f 4d2e67b2 84fdd944
fc775081 e67cb4c9 0d0b7253 f8760707 4147960c fbe08226 93558cfe 221f6065
7c5fe726 b3f73290 9850d437 7155f692 2178f795 79faf82d 26876656 3077a637
78335210 58ae3f61 8ef26ab1 ef187e4a 5963ca8d a256d5a7 2fbc561f cf39c1e2
fb0aa815 2c7d4d7a 63c66c97 443cd26f c34a170a f890d257 a21951a5 2d9741da
074fa950 da908d94 46e13ef0 94fd1000 38f53be8 40e1b46e 561a20cc 6f588ded
2e458fd6 e9933fe7 b12cdf3a d6228cdc 84bb226f d0f8e4c6 39e90488 3cc3baeb
557a6d80 9924f56c 01fbf897 b0945beb fdd26ff1 77680d35 6423acb8 55a103d1
4d4219dc f8755956 a3f9a849 79f8af0e b911a07c b76aed34 d0b62662 381a870c
f8e8fd2e d3907f07 912a1dd6 7e5c8583 99b03808 3fe95ef9 3507e4c9 626e577f
a75095f7 bac89be6 8ea201c5 d666bf79 61f33c1c e1b9825c 5da0c3e9 d848bd19
a2111419 6eb2861b 683e4837 1a88b75d 965e9cc7 ef276208 e291195c d2f121dd
ba174282 97718153 31a99ff6 7d62bf72 e1a3931d cc8a265a 0938d0ce d70d8016
b478a53a 874c8d8a a5d54697 f22c10b9 bc5422c0 01506943 9ef4b2ef 6df8ecda
f1e3b1ef df918f54 2a0b25c1 2619c452 100565d5 8210eac2 31cd2e
quit
!
track 1 rtr 123 reachability
telnet timeout 5
ssh stricthostkeycheck
ssh timeout 5
ssh version 2
ssh key-exchange group dh-group1-sha1
console timeout 0
console serial
priority-queue inside
threat-detection basic-threat
threat-detection statistics access-list
no threat-detection statistics tcp-intercept
dynamic-access-policy-record DfltAccessPolicy
username admin password $sha512$5000$Eq8GC2Az/HLROYzTD8Hy6A==$5jWzYrfE28VAF2qqvSui8w== pbkdf2 privilege 15
!
class-map inspection_default
match default-inspection-traffic
!
!
policy-map type inspect dns preset_dns_map
parameters
message-length maximum client auto
message-length maximum 512
no tcp-inspection
policy-map type inspect dns migrated_dns_map_1
parameters
message-length maximum client auto
message-length maximum 512
no tcp-inspection
policy-map global_policy
class inspection_default
inspect dns migrated_dns_map_1
inspect ftp
inspect h323 h225
inspect h323 ras
inspect ip-options
inspect netbios
inspect rsh
inspect rtsp
inspect skinny
inspect esmtp
inspect sqlnet
inspect sunrpc
inspect tftp
inspect sip
inspect xdmcp
inspect icmp
policy-map type inspect dns migrated_dns_map_2
parameters
message-length maximum client auto
message-length maximum 512
no tcp-inspection
!
service-policy global_policy global
prompt hostname context
call-home reporting anonymous
call-home
profile CiscoTAC-1
no active
destination address http https://tools.cisco.com/its/service/oddce/services/DDCEService
destination address email callhome@cisco.com
destination transport-method http
subscribe-to-alert-group diagnostic
subscribe-to-alert-group environment
subscribe-to-alert-group inventory periodic monthly
subscribe-to-alert-group configuration periodic monthly
subscribe-to-alert-group telemetry periodic daily
profile License
destination address http https://tools.cisco.com/its/service/oddce/services/DDCEService
destination transport-method http
Cryptochecksum:db9b2381156e2022aab6ceefa2cbfb7e
: end
Show run router
Cisco 3745 (R7000) processor (revision 2.0) with 249856K/12288K bytes of memory.
Processor board ID FTX0945W0MY
R7000 CPU at 350MHz, Implementation 39, Rev 2.1, 256KB L2, 512KB L3 Cache
4 FastEthernet interfaces
4 Serial interfaces
3 Serial(sync/async) interfaces
DRAM configuration is 64 bits wide with parity enabled.
151K bytes of NVRAM.
% Crashinfo may not be recovered at flash:crashinfo
% This file system device reports an error
Press RETURN to get started!
sslinit fn
*Mar 1 00:00:13.867: %SW_VLAN-4-IFS_FAILURE: VLAN manager encountered file oper ation error: call = ifs_open/read / code = 3588 (No device available)
/ bytes transfered = 0
*Mar 1 00:00:13.899: %LINEPROTO-5-UPDOWN: Line protocol on Interface VoIP-Null0 , changed state to up
*Mar 1 00:00:13.899: %LINK-3-UPDOWN: Interface Serial0/0, changed state to up
*Mar 1 00:00:13.903: %LINK-3-UPDOWN: Interface Serial0/1, changed state to up
*Mar 1 00:00:13.907: %LINK-3-UPDOWN: Interface Serial0/2, changed state to up
*Mar 1 00:00:13.911: %LINK-3-UPDOWN: Interface FastEthernet1/0, changed state t o up
*Mar 1 00:00:13.915: %LINK-3-UPDOWN: Interface Serial2/0, changed state to up
*Mar 1 00:00:13.915: %LINK-3-UPDOWN: Interface Serial2/1, changed state to up
*Mar 1 00:00:13.919: %LINK-3-UPDOWN: Interface Serial2/2, changed state to up
*Mar 1 00:00:13.923: %LINK-3-UPDOWN: Interface Serial2/3, changed state to up
*Mar 1 00:00:13.927: %LINK-3-UPDOWN: Interface FastEthernet3/0, changed state t o up
*Mar 1 00:00:13.931: %LINEPROTO-5-UPDOWN: Line protocol on Interface IPv6-mpls, changed state to up
*Mar 1 00:00:14.635: %SYS-5-CONFIG_I: Configured from memory by console
*Mar 1 00:00:14.991: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0/0, changed state to down
*Mar 1 00:00:14.995: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0/1, changed state to down
*Mar 1 00:00:14.995: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0/2, changed state to down
*Mar 1 00:00:14.995: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthern et1/0, changed state to up
*Mar 1 00:00:14.999: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial2/0, changed state to down
*Mar 1 00:00:14.999: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial2/1, changed state to down
*Mar 1 00:00:14.999: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial2/2, changed state to down
*Mar 1 00:00:14.999: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial2/3, changed state to down
*Mar 1 00:00:15.003: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthern et3/0, changed state to up
*Mar 1 00:00:15.195: %SYS-5-RESTART: System restarted —
Cisco IOS Software, 3700 Software (C3745-ADVENTERPRISEK9-M), Version 12.4(25d), RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2010 by Cisco Systems, Inc.
Compiled Wed 18-Aug-10 08:18 by prod_rel_team
*Mar 1 00:00:15.367: %LINK-3-UPDOWN: Interface FastEthernet0/1, changed state t o up
*Mar 1 00:00:15.371: %LINK-3-UPDOWN: Interface FastEthernet0/0, changed state t o up
*Mar 1 00:00:16.295: %LINK-5-CHANGED: Interface Serial0/0, changed state to adm inistratively down
*Mar 1 00:00:16.339: %LINK-5-CHANGED: Interface Serial0/1, changed state to adm inistratively down
*Mar 1 00:00:16.343: %LINK-5-CHANGED: Interface Serial0/2, changed state to adm inistratively down
*Mar 1 00:00:16.363: %LINK-5-CHANGED: Interface Serial2/0, changed state to adm inistratively down
*Mar 1 00:00:16.367: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthern et0/1, changed state to up
*Mar 1 00:00:16.371: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthern et0/0, changed state to up
*Mar 1 00:00:16.379: %LINK-5-CHANGED: Interface Serial2/1, changed state to adm inistratively down
*Mar 1 00:00:16.383: %LINK-5-CHANGED: Interface Serial2/2, changed state to adm inistratively down
*Mar 1 00:00:16.387: %LINK-5-CHANGED: Interface Serial2/3, changed state to adm inistratively down
R1#sh run
Building configuration…
Current configuration : 2444 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R1
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
memory-size iomem 5
no ip icmp rate-limit unreachable
ip cef
!
!
!
!
no ip domain lookup
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
ip tcp synwait-time 5
!
!
!
!
!
interface FastEthernet0/0
ip address 192.168.50.1 255.255.255.0
duplex auto
speed auto
!
interface Serial0/0
no ip address
shutdown
clock rate 2000000
!
interface FastEthernet0/1
no ip address
duplex auto
speed auto
!
interface FastEthernet0/1.10
encapsulation dot1Q 10
ip address 192.168.100.1 255.255.255.0
ip helper-address 192.168.50.80
ip helper-address 192.168.50.50
!
interface FastEthernet0/1.20
encapsulation dot1Q 20
ip address 192.168.20.1 255.255.255.0
ip helper-address 192.168.50.80
ip helper-address 192.168.50.50
!
interface Serial0/1
no ip address
shutdown
clock rate 2000000
!
interface Serial0/2
no ip address
shutdown
clock rate 2000000
!
interface FastEthernet1/0
no ip address
duplex auto
speed auto
!
interface FastEthernet1/0.30
encapsulation dot1Q 30
ip address 192.168.30.1 255.255.255.0
ip helper-address 192.168.50.80
ip helper-address 192.168.50.50
!
interface FastEthernet1/0.40
encapsulation dot1Q 40
ip address 192.168.40.1 255.255.255.0
ip helper-address 192.168.50.80
ip helper-address 192.168.50.50
!
interface Serial2/0
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/3
no ip address
shutdown
serial restart-delay 0
!
interface FastEthernet3/0
ip address 192.168.10.2 255.255.255.0
duplex auto
speed auto
!
router ospf 1
log-adjacency-changes
network 192.168.10.0 0.0.0.255 area 0
network 192.168.20.0 0.0.0.255 area 0
network 192.168.30.0 0.0.0.255 area 0
network 192.168.40.0 0.0.0.255 area 0
network 192.168.50.0 0.0.0.255 area 0
!
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 192.168.10.1
!
!
no ip http server
no ip http secure-server
!
no cdp log mismatch duplex
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
!
line con 0
exec-timeout 0 0
privilege level 15
logging synchronous
line aux 0
exec-timeout 0 0
privilege level 15
logging synchronous
line vty 0 4
login
!
!
end
R1#
Show run ciscoIOSvl215.2
Switch#sh run
Building configuration…
Current configuration : 3723 bytes
!
! Last configuration change at 11:18:40 UTC Mon Apr 28 2025
!
version 15.2
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
service compress-config
!
hostname Switch
!
boot-start-marker
boot-end-marker
!
!
!
no aaa new-model
!
!
!
!
!
!
!
!
ip cef
no ipv6 cef
!
!
!
spanning-tree mode pvst
spanning-tree extend system-id
!
vlan internal allocation policy ascending
!
!
!
!
!
!
!
!
!
!
!
!
!
!
interface GigabitEthernet0/0
switchport access vlan 10
switchport mode access
media-type rj45
negotiation auto
!
interface GigabitEthernet0/1
switchport access vlan 20
switchport trunk encapsulation dot1q
media-type rj45
negotiation auto
!
interface GigabitEthernet0/2
switchport trunk allowed vlan 10,20
switchport trunk encapsulation dot1q
switchport mode trunk
media-type rj45
negotiation auto
!
interface GigabitEthernet0/3
media-type rj45
negotiation auto
!
interface GigabitEthernet1/0
media-type rj45
negotiation auto
!
interface GigabitEthernet1/1
media-type rj45
negotiation auto
!
interface GigabitEthernet1/2
media-type rj45
negotiation auto
!
interface GigabitEthernet1/3
media-type rj45
negotiation auto
!
interface GigabitEthernet2/0
media-type rj45
negotiation auto
!
interface GigabitEthernet2/1
media-type rj45
negotiation auto
!
interface GigabitEthernet2/2
media-type rj45
negotiation auto
!
interface GigabitEthernet2/3
media-type rj45
negotiation auto
!
interface GigabitEthernet3/0
media-type rj45
negotiation auto
!
interface GigabitEthernet3/1
media-type rj45
negotiation auto
!
interface GigabitEthernet3/2
media-type rj45
negotiation auto
!
interface GigabitEthernet3/3
media-type rj45
negotiation auto
!
ip forward-protocol nd
!
no ip http server
no ip http secure-server
!
!
!
!
!
!
control-plane
!
CiscoIOSvL215.2-2
Switch>en
Switch#sh run
Building configuration…
Current configuration : 3709 bytes
!
! Last configuration change at 11:18:40 UTC Mon Apr 28 2025
!
version 15.2
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
service compress-config
!
hostname Switch
!
boot-start-marker
boot-end-marker
!
!
!
no aaa new-model
!
!
!
!
!
!
!
!
ip cef
no ipv6 cef
!
!
!
spanning-tree mode pvst
spanning-tree extend system-id
!
vlan internal allocation policy ascending
!
!
!
!
!
!
!
!
!
!
!
!
!
!
interface GigabitEthernet0/0
switchport access vlan 30
switchport mode access
media-type rj45
negotiation auto
!
interface GigabitEthernet0/1
switchport access vlan 40
switchport mode access
media-type rj45
negotiation auto
!
interface GigabitEthernet0/2
media-type rj45
negotiation auto
!
interface GigabitEthernet0/3
media-type rj45
negotiation auto
!
interface GigabitEthernet1/0
switchport trunk allowed vlan 30,40
switchport trunk encapsulation dot1q
switchport mode trunk
media-type rj45
negotiation auto
!
interface GigabitEthernet1/1
media-type rj45
negotiation auto
!
interface GigabitEthernet1/2
media-type rj45
negotiation auto
!
interface GigabitEthernet1/3
media-type rj45
negotiation auto
!
interface GigabitEthernet2/0
media-type rj45
negotiation auto
!
interface GigabitEthernet2/1
media-type rj45
negotiation auto
!
interface GigabitEthernet2/2
media-type rj45
negotiation auto
!
interface GigabitEthernet2/3
media-type rj45
negotiation auto
!
interface GigabitEthernet3/0
media-type rj45
negotiation auto
!
interface GigabitEthernet3/1
media-type rj45
negotiation auto
!
interface GigabitEthernet3/2
media-type rj45
negotiation auto
!
interface GigabitEthernet3/3
media-type rj45
negotiation auto
!
ip forward-protocol nd
!
no ip http server
no ip http secure-server
!
!
!
!
!
!
control-plane
!