#
version 5.20, Release 1518
#
sysname ID-PUMA-GD1-SW1
#
clock timezone jakarta add 07:00:00
#
irf mac-address persistent timer
irf auto-update enable
undo irf link-delay
#
domain default enable system
#
loopback-detection enable
loopback-detection interval-time 10
#
undo ip http enable
#
mac-authentication
mac-authentication timer quiet 120
mac-authentication domain mab
#
password-recovery enable
#
vlan 1
#
vlan 16
#
vlan 55
#
vlan 59
#
vlan 80
#
vlan 999
#
radius scheme system
radius scheme pcc-radius
primary authentication 172.19.5.93 key cipher $c$3$+HeqcW+LRBUsjOdBa6xMuZ3mmx80jCBAOEWrZw==
primary accounting 172.19.5.93 key cipher $c$3$I6Jwlswt1bWDQvN9js6vAmAh/O0sZ03vPV3/Lw==
secondary authentication 172.19.160.18 key cipher $c$3$+o1Hv5xTfaES/I5tu+5vYQ7Bmfw5EIfIZumRUw==
secondary accounting 172.19.160.18 key cipher $c$3$JT3sg67uWRYi8a3VjQtt9kbB5qXbg3azShC72Q==
user-name-format without-domain
#
domain mab
authentication default radius-scheme pcc-radius
authorization default radius-scheme pcc-radius
accounting default radius-scheme pcc-radius
access-limit disable
state active
idle-cut disable
self-service-url disable
domain system
access-limit disable
state active
idle-cut disable
self-service-url disable
#
user-group system
#
local-user idpci-sys
password cipher $c$3$xa2vjFbGNe/prswPTQfLfV4P00UW8FMmyU0FY/qdig==
authorization-attribute level 3
service-type ssh telnet terminal
service-type web
#
stp bpdu-protection
stp enable
#
cwmp
undo cwmp enable
#
interface NULL0
#
interface Vlan-interface999
ip address 172.19.0.100 255.255.255.0
#
interface GigabitEthernet1/0/1
port access vlan 16
loopback-detection enable
loopback-detection action shutdown
broadcast-suppression pps 3000
mac-authentication
#
interface GigabitEthernet1/0/2
port access vlan 16
loopback-detection enable
broadcast-suppression pps 3000
mac-authentication
#
interface GigabitEthernet1/0/3
port access vlan 16
loopback-detection enable
loopback-detection action shutdown
broadcast-suppression pps 3000
mac-authentication
#
interface GigabitEthernet1/0/4
port access vlan 16
loopback-detection enable
loopback-detection action shutdown
broadcast-suppression pps 3000
mac-authentication
#
interface GigabitEthernet1/0/5
port access vlan 16
loopback-detection enable
loopback-detection action shutdown
broadcast-suppression pps 3000
mac-authentication
#
interface GigabitEthernet1/0/6
port access vlan 16
loopback-detection enable
loopback-detection action shutdown
broadcast-suppression pps 3000
mac-authentication
#
interface GigabitEthernet1/0/7
port access vlan 16
loopback-detection enable
loopback-detection action shutdown
broadcast-suppression pps 3000
mac-authentication
#
interface GigabitEthernet1/0/8
port access vlan 16
loopback-detection enable
loopback-detection action shutdown
broadcast-suppression pps 3000
mac-authentication
#
interface GigabitEthernet1/0/9
port access vlan 16
loopback-detection enable
loopback-detection action shutdown
broadcast-suppression pps 3000
mac-authentication
#
interface GigabitEthernet1/0/10
port access vlan 16
loopback-detection enable
loopback-detection action shutdown
broadcast-suppression pps 3000
mac-authentication
#
interface GigabitEthernet1/0/11
port access vlan 16
loopback-detection enable
loopback-detection action shutdown
broadcast-suppression pps 3000
mac-authentication
#
interface GigabitEthernet1/0/12
port access vlan 16
loopback-detection enable
loopback-detection action shutdown
broadcast-suppression pps 3000
mac-authentication
#
interface GigabitEthernet1/0/13
port access vlan 16
loopback-detection enable
loopback-detection action shutdown
broadcast-suppression pps 3000
mac-authentication
#
interface GigabitEthernet1/0/14
port access vlan 16
loopback-detection enable
loopback-detection action shutdown
broadcast-suppression pps 3000
mac-authentication
#
interface GigabitEthernet1/0/15
port access vlan 16
loopback-detection enable
loopback-detection action shutdown
broadcast-suppression pps 3000
mac-authentication
#
interface GigabitEthernet1/0/16
port access vlan 16
loopback-detection enable
loopback-detection action shutdown
broadcast-suppression pps 3000
mac-authentication
#
interface GigabitEthernet1/0/17
port access vlan 16
loopback-detection enable
loopback-detection action shutdown
broadcast-suppression pps 3000
mac-authentication
#
interface GigabitEthernet1/0/18
port access vlan 16
loopback-detection enable
loopback-detection action shutdown
broadcast-suppression pps 3000
mac-authentication
#
interface GigabitEthernet1/0/19
port access vlan 16
loopback-detection enable
loopback-detection action shutdown
broadcast-suppression pps 3000
mac-authentication
#
interface GigabitEthernet1/0/20
port access vlan 16
loopback-detection enable
loopback-detection action shutdown
broadcast-suppression pps 3000
mac-authentication
#
interface GigabitEthernet1/0/21
port link-type trunk
port trunk permit vlan all
mac-authentication
#
interface GigabitEthernet1/0/22
port link-type trunk
port trunk permit vlan all
#
interface GigabitEthernet1/0/23
port link-type trunk
port trunk permit vlan all
#
interface GigabitEthernet1/0/24
port link-type trunk
port trunk permit vlan all
#
interface GigabitEthernet1/0/25
#
interface GigabitEthernet1/0/26
#
interface GigabitEthernet1/0/27
#
interface GigabitEthernet1/0/28
#
ip route-static 0.0.0.0 0.0.0.0 172.19.0.254
#
info-center loghost 172.19.5.114
#
snmp-agent
snmp-agent local-engineid 8000000B0340B93C7DF468
snmp-agent community write PGT_hp
snmp-agent community read pcc-snmp
snmp-agent sys-info location Puma Gedung 1 Depan Lantai 1
snmp-agent sys-info version all
#
ntp-service unicast-server 172.19.1.5
#
ssh server enable
#
ip https enable
#
load tr069-configuration
#
user-interface aux 0
user-interface vty 0 15
authentication-mode scheme
#
return
Sabtu, 09 Maret 2019
Cisco CLI working config
CISCO
--------
IP Lokasi
Firmware Ver. RADIUS
72.31 Asics Office 12.2(50)SE4
72.30 Adidas Ged3 12.2(50)SE4
72.28 Puma Office 2F 15.2(2)E7
72.27 Asics Ged3 12.2(50)SE4
72.26 Puma Office 1F 12.2(50)SE4
72.34 PGTLAB 12.2(55)SE12
Aktif
Cisco CLI working config
:
Global Config :
aaa new-model
aaa authentication dot1x default group radius
aaa authorization network default group radius
aaa accounting dot1x default start-stop group
radius
radius-server host 172.19.5.93 auth-port 1812 acct-port 1813
key pccnackey
radius-server host 172.19.160.18 auth-port 1812 acct-port
1813 key pccnackey
Interface Config :
authentication host-mode multi-auth
authentication port-control auto
authentication periodic
authentication timer restart 120
mab
Tested radius pada Cisco 2960CT-L firmware versi 12.2(55)SE12
Di bawah versi ini tidak bisa
authentication.
OPEN DJ
| NO | FIX NO | DEVICE TYPE | MAC ADD | CONNECT |
| 1 | PCI-300000892 | 5130 SWITCH JG932A | ec9b8b736606 | wire |
| 2 | PCI-300000896 | 5130 SWITCH JG932A | ec9b8b73c006 | wire |
| 3 | PCI-300000882 | 5130 SWITCH JG932A | ec9b8b736456 | wire |
| 4 | PCI-300000883 | 5130 SWITCH JG932A | ec9b8b735d96 | wire |
| 5 | PCI-300000891 | 5130 SWITCH JG932A | ec9b8b737dee | wire |
Langganan:
Postingan (Atom)