ISP-A-P2

Management
Banner
Management Interfaces
IP Name Servers
Clock Settings
NTP
Management SSH
Management Console
Management API HTTP
Authentication
Local Users
Enable Password
AAA Authentication
AAA Authorization
Monitoring
TerminAttr Daemon
Monitor Layer 1 Logging
Monitor Layer 1 Device Configuration
Spanning Tree
Spanning Tree Summary
Spanning Tree Device Configuration
Internal VLAN Allocation Policy
Internal VLAN Allocation Policy Summary
Internal VLAN Allocation Policy Device Configuration
MAC Address Table
MAC Address Table Summary
MAC Address Table Device Configuration
Interfaces
Switchport Default
Interface Defaults
Ethernet Interfaces
Loopback Interfaces
Routing
Service Routing Protocols Model
IP Routing
IPv6 Routing
Static Routes
ARP
Router OSPF
Router BGP
MPLS
MPLS and LDP
MPLS Interfaces
MPLS Device Configuration
ACL
Standard Access-lists
VRF Instances
VRF Instances Summary
VRF Instances Device Configuration
Errdisable
Errdisable Summary

Management

!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!                                                                        !!
!! IF THE COMPANY HAS NOT AUTHORISED YOUR ACCESS TO THIS SYSTEM YOU       !!
!! WILL COMMIT A CRIMINAL OFFENCE IF YOU DO NOT IMMEDIATELY DISCONNECT.   !!
!!                                                                        !!
!! UNAUTHORISED ACCESS IS STRICTLY FORBIDDEN AND A DISCIPLINARY OFFENCE.  !!
!!                                                                        !!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

EOF

Management Interfaces

Management Interfaces Summary

IPv4

Management Interface	Description	Type	VRF	IP Address	Gateway
Management1	OOB_MANAGEMENT	oob	MGMT	192.168.0.105/24	192.168.0.5

IPv6

Management Interface	Description	Type	VRF	IPv6 Address	IPv6 Gateway
Management1	OOB_MANAGEMENT	oob	MGMT	-	-

Management Interfaces Device Configuration

!
interface Management1
   description OOB_MANAGEMENT
   no shutdown
   vrf MGMT
   ip address 192.168.0.105/24

IP Name Servers

IP Name Servers Summary

Name Server	VRF	Priority
10.255.0.2	default	-

IP Name Servers Device Configuration

ip name-server vrf default 10.255.0.2

Clock Settings

Clock Timezone Settings

Clock Timezone is set to US/Central.

Clock Device Configuration

!
clock timezone US/Central

NTP

NTP Summary

NTP Servers

NTP servers VRF: default

Server	Preferred	Burst	iBurst	Version	Min Poll	Max Poll	Local-interface	Key
10.41.194.20	True	-	-	-	-	-	-	-

NTP Device Configuration

!
ntp server 10.41.194.20 prefer

Management SSH

VRFs

VRF	Enabled	IPv4 ACL	IPv6 ACL
MGMT	True	SSH-ACL	-
default	False	-	-

Other SSH Settings

Idle Timeout	Connection Limit	Max from a single Host	Ciphers	Key-exchange methods	MAC algorithms	Hostkey server algorithms
60	-	-	default	default	default	default

Management SSH Device Configuration

!
management ssh
   ip access-group SSH-ACL vrf MGMT in
   idle-timeout 60
   !
   vrf MGMT
      no shutdown

Management Console

Management Console Timeout

Management Console Timeout is set to 60 minutes.

Management Console Device Configuration

!
management console
   idle-timeout 60

Management API HTTP

Management API HTTP Summary

HTTP	HTTPS	UNIX-Socket	Default Services
False	True	-	-

Management API VRF Access

VRF Name	IPv4 ACL	IPv6 ACL
MGMT	EAPI-ACL	-

Management API HTTP Device Configuration

!
management api http-commands
   protocol https
   no protocol http
   no shutdown
   !
   vrf MGMT
      no shutdown
      ip access-group EAPI-ACL

Authentication

Local Users

Local Users Summary

User	Privilege	Role	Disabled	Shell
admin	15	network-admin	False	-
ansible	15	network-admin	False	-
cvpadmin	15	network-admin	False	-

Local Users Device Configuration

!
username admin privilege 15 role network-admin secret sha512 <removed>
username ansible privilege 15 role network-admin secret sha512 <removed>
username cvpadmin privilege 15 role network-admin secret sha512 <removed>

Enable Password

sha512 encrypted enable password is configured

Enable Password Device Configuration

!
enable password sha512 <removed>
!

AAA Authentication

AAA Authentication Summary

Type	Sub-type	User Stores
Login	default	local
Login	console	local

AAA Authentication on-failure log has been enabled

AAA Authentication on-success log has been enabled

AAA Authentication Device Configuration

aaa authentication login default local
aaa authentication login console local
aaa authentication enable default local
aaa authentication policy on-success log
aaa authentication policy on-failure log
!

AAA Authorization

AAA Authorization Summary

Type	User Stores
Exec	local
Default Role	default

Authorization for configuration commands is enabled.

Authorization for serial console is enabled.

AAA Authorization Privilege Levels Summary

Privilege Level	User Stores
all	local

AAA Authorization Device Configuration

aaa authorization policy local default-role default
aaa authorization serial-console
aaa authorization exec default local
aaa authorization commands all default local
!

Monitoring

TerminAttr Daemon

TerminAttr Daemon Summary

CV Compression	CloudVision Servers	VRF	Authentication	Smash Excludes	Ingest Exclude	Bypass AAA
gzip	192.168.0.5:9910	MGMT	token,/tmp/token	ale,flexCounter,hardware,kni,pulse,strata	-	True

TerminAttr Daemon Device Configuration

!
daemon TerminAttr
   exec /usr/bin/TerminAttr -cvaddr=192.168.0.5:9910 -cvauth=token,/tmp/token -cvvrf=MGMT -disableaaa -smashexcludes=ale,flexCounter,hardware,kni,pulse,strata -taillogs -cvsourceintf=Management1
   no shutdown

Monitor Layer 1 Logging

Layer 1 Event	Logging
Logging Transceiver	True

Monitor Layer 1 Device Configuration

!
monitor layer1
   logging transceiver

Spanning Tree

Spanning Tree Summary

STP mode: none

Global Spanning-Tree Settings

Global BPDU Guard for Edge ports is enabled.

Spanning Tree Device Configuration

!
spanning-tree mode none
spanning-tree edge-port bpduguard default

Internal VLAN Allocation Policy

Internal VLAN Allocation Policy Summary

Policy Allocation	Range Beginning	Range Ending
ascending	3500	4000

Internal VLAN Allocation Policy Device Configuration

!
vlan internal order ascending range 3500 4000

MAC Address Table

MAC Address Table Summary

MAC address table entry maximum age: 1800 seconds

MAC Address Table Device Configuration

!
mac address-table aging-time 1800

Interfaces

Switchport Default

Switchport Defaults Summary

Default Switchport Mode: routed

Switchport Default Device Configuration

!
switchport default mode routed

Interface Defaults

Interface Defaults Summary

Default Ethernet Interface Shutdown: True
Default Routed Interface MTU: 1500

Interface Defaults Device Configuration

!
interface defaults
   mtu 1500
   ethernet
      shutdown

Ethernet Interfaces

Ethernet Interfaces Summary

L2

Interface	Description	Mode	VLANs	Native VLAN	Trunk Group	Channel-Group

*Inherited from Port-Channel Interface

IPv4

Interface	Description	Channel Group	IP Address	VRF	MTU	Shutdown	ACL In	ACL Out
Ethernet1	P2P_ISP-A-PE2_Ethernet3	-	192.168.1.7/31	default	1500	False	-	-
Ethernet2	P2P_ISP-A-PE1_Ethernet4	-	192.168.1.3/31	default	1500	False	-	-
Ethernet3	P2P_ISP-A-P4_Ethernet1	-	192.168.1.16/31	default	1500	False	-	-
Ethernet4	P2P_ISP-A-P3_Ethernet2	-	192.168.1.14/31	default	1500	False	-	-
Ethernet10	P2P_ISP-A-P1_Ethernet10	-	192.168.1.13/31	default	1500	False	-	-

Ethernet Interfaces Device Configuration

!
interface Ethernet1
   description P2P_ISP-A-PE2_Ethernet3
   no shutdown
   mtu 1500
   no switchport
   ip address 192.168.1.7/31
   mpls ldp igp sync
   mpls ldp interface
   mpls ip
   ip ospf network point-to-point
   ip ospf area 0.0.0.0
!
interface Ethernet2
   description P2P_ISP-A-PE1_Ethernet4
   no shutdown
   mtu 1500
   no switchport
   ip address 192.168.1.3/31
   mpls ldp igp sync
   mpls ldp interface
   mpls ip
   ip ospf network point-to-point
   ip ospf area 0.0.0.0
!
interface Ethernet3
   description P2P_ISP-A-P4_Ethernet1
   no shutdown
   mtu 1500
   no switchport
   ip address 192.168.1.16/31
   mpls ldp igp sync
   mpls ldp interface
   mpls ip
   ip ospf network point-to-point
   ip ospf area 0.0.0.0
!
interface Ethernet4
   description P2P_ISP-A-P3_Ethernet2
   no shutdown
   mtu 1500
   no switchport
   ip address 192.168.1.14/31
   mpls ldp igp sync
   mpls ldp interface
   mpls ip
   ip ospf network point-to-point
   ip ospf area 0.0.0.0
!
interface Ethernet10
   description P2P_ISP-A-P1_Ethernet10
   no shutdown
   mtu 1500
   no switchport
   ip address 192.168.1.13/31
   mpls ldp igp sync
   mpls ldp interface
   mpls ip
   ip ospf network point-to-point
   ip ospf area 0.0.0.0

Loopback Interfaces

Loopback Interfaces Summary

IPv4

Interface	Description	VRF	IP Address
Loopback0	ROUTER_ID	default	192.168.100.2/32

IPv6

Interface	Description	VRF	IPv6 Address
Loopback0	ROUTER_ID	default	-

Loopback Interfaces Device Configuration

!
interface Loopback0
   description ROUTER_ID
   no shutdown
   ip address 192.168.100.2/32
   mpls ldp interface
   ip ospf area 0.0.0.0

Routing

Service Routing Protocols Model

Multi agent routing protocol model enabled

!
service routing protocols model multi-agent

IP Routing

IP Routing Summary

VRF	Routing Enabled
default	True
MGMT	False

IP Routing Device Configuration

!
ip routing
no ip icmp redirect
no ip routing vrf MGMT

IPv6 Routing

IPv6 Routing Summary

VRF	Routing Enabled
default	False
MGMT	false

Static Routes

Static Routes Summary

VRF	Destination Prefix	Next Hop IP	Exit interface	Administrative Distance	Tag	Route Name	Metric
MGMT	0.0.0.0/0	192.168.0.5	-	1	-	-	-

Static Routes Device Configuration

!
ip route vrf MGMT 0.0.0.0/0 192.168.0.5

ARP

Global ARP timeout: 1500

ARP Device Configuration

!
arp aging timeout default 1500

Router OSPF

Router OSPF Summary

Process ID	Router ID	Default Passive Interface	No Passive Interface	BFD	Max LSA	Default Information Originate	Log Adjacency Changes Detail	Auto Cost Reference Bandwidth	Maximum Paths	MPLS LDP Sync Default	Distribute List In
100	192.168.100.2	enabled	Ethernet2 Ethernet1 Ethernet10 Ethernet4 Ethernet3	disabled	12000	disabled	disabled	-	-	-	-

OSPF Interfaces

Interface	Area	Cost	Point To Point
Ethernet1	0.0.0.0	-	True
Ethernet2	0.0.0.0	-	True
Ethernet3	0.0.0.0	-	True
Ethernet4	0.0.0.0	-	True
Ethernet10	0.0.0.0	-	True
Loopback0	0.0.0.0	-	-

Router OSPF Device Configuration

!
router ospf 100
   router-id 192.168.100.2
   passive-interface default
   no passive-interface Ethernet1
   no passive-interface Ethernet2
   no passive-interface Ethernet3
   no passive-interface Ethernet4
   no passive-interface Ethernet10
   max-lsa 12000
   graceful-restart

Router BGP

ASN Notation: asdot

Router BGP Summary

BGP AS	Router ID
-	-

Router BGP Device Configuration

MPLS

MPLS and LDP

MPLS and LDP Summary

Setting	Value
MPLS IP Enabled	True
LDP Enabled	True
LDP Router ID	192.168.100.2
LDP Interface Disabled Default	True
LDP Transport-Address Interface	Loopback0
ICMP Fragmentation-Needed Tunneling Enabled	True
ICMP TTL-Exceeded Tunneling Enabled	True

MPLS Interfaces

Interface	MPLS IP Enabled	LDP Enabled	IGP Sync
Ethernet1	True	True	True
Ethernet2	True	True	True
Ethernet3	True	True	True
Ethernet4	True	True	True
Ethernet10	True	True	True
Loopback0	-	True	-

MPLS Device Configuration

!
mpls ip
!
mpls ldp
   router-id 192.168.100.2
   transport-address interface Loopback0
   interface disabled default
   no shutdown
!
mpls icmp fragmentation-needed tunneling
mpls icmp ttl-exceeded tunneling

ACL

Standard Access-lists

Standard Access-lists Summary

EAPI-ACL

Sequence	Action
10	permit 0.0.0.0/0

SNMP-ACL

Sequence	Action
10	permit 0.0.0.0/0

SSH-ACL

Sequence	Action
10	permit 0.0.0.0/0

Standard Access-lists Device Configuration

!
ip access-list standard EAPI-ACL
   10 permit 0.0.0.0/0
!
ip access-list standard SNMP-ACL
   10 permit 0.0.0.0/0
!
ip access-list standard SSH-ACL
   10 permit 0.0.0.0/0

VRF Instances

VRF Instances Summary

VRF Name	IP Routing
MGMT	disabled

VRF Instances Device Configuration

!
vrf instance MGMT

Errdisable

Errdisable Summary

Errdisable recovery timer interval: 30 seconds

!
errdisable recovery interval 30

ISP-A-P2

Table of Contents

Management

Banner

Login Banner

Management Interfaces

Management Interfaces Summary

IPv4

IPv6

Management Interfaces Device Configuration

IP Name Servers

IP Name Servers Summary

IP Name Servers Device Configuration

Clock Settings

Clock Timezone Settings

Clock Device Configuration

NTP

NTP Summary

NTP Servers

NTP Device Configuration

Management SSH

VRFs

Other SSH Settings

Management SSH Device Configuration

Management Console

Management Console Timeout

Management Console Device Configuration

Management API HTTP

Management API HTTP Summary

Management API VRF Access

Management API HTTP Device Configuration

Authentication

Local Users

Local Users Summary

Local Users Device Configuration

Enable Password

Enable Password Device Configuration

AAA Authentication

AAA Authentication Summary

AAA Authentication Device Configuration

AAA Authorization

AAA Authorization Summary

AAA Authorization Privilege Levels Summary

AAA Authorization Device Configuration

Monitoring

TerminAttr Daemon

TerminAttr Daemon Summary

TerminAttr Daemon Device Configuration

Monitor Layer 1 Logging

Monitor Layer 1 Device Configuration

Spanning Tree

Spanning Tree Summary

Global Spanning-Tree Settings

Spanning Tree Device Configuration

Internal VLAN Allocation Policy

Internal VLAN Allocation Policy Summary

Internal VLAN Allocation Policy Device Configuration

MAC Address Table

MAC Address Table Summary

MAC Address Table Device Configuration

Interfaces

Switchport Default

Switchport Defaults Summary

Switchport Default Device Configuration

Interface Defaults

Interface Defaults Summary

Interface Defaults Device Configuration

Ethernet Interfaces

Ethernet Interfaces Summary

L2

IPv4

Ethernet Interfaces Device Configuration

Loopback Interfaces

Loopback Interfaces Summary

IPv4

IPv6

Loopback Interfaces Device Configuration

Routing

Service Routing Protocols Model

IP Routing