Scribd
Upload
8 views5 pages

Script

Uploaded by

juliogomezsanchez912
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
8 views5 pages

Script

Uploaded by

juliogomezsanchez912
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd

======

SW-R17
======

enable
conf t
hostname SW-R17
no ip domain-lookup
ip domain-name [Link]
enable secret class
line console 0
password class
login
username Admin secret class
crypto key generate rsa
line vty 0 4
login local
line vty 0 4
transport input ssh
service password-encryption
banner motd #SOLO PERSONAL AUTORIZADO#

vlan 10
name Ingenieria
vlan 20
name ventas
vlan 30
name Administracion
vlan 100
name NATIVE
exit

interface range e0/2


duplex full
no sh
switchport trunk encapsulation dot1q
switchport trunk native vlan 100
switchport trunk allowed vlan 10,20,30,100
exit

interface range e0/0-1


no sh
switchport trunk encapsulation dot1q
switchport trunk native vlan 100
switchport trunk allowed vlan 10,20,30,100
channel-protocol lacp
channel-group 1 mode active
exit

int vlan 1
no sh
ip add [Link] [Link]
ipv6 add [Link]/64
do wr

--------------------------

======
SW-7
======

enable
conf t
hostname SW-7
no ip domain-lookup
ip domain-name [Link]
enable secret class
line console 0
password class
login
username Admin secret class
crypto key generate rsa
line vty 0 4
login local
line vty 0 4
transport input ssh
service password-encryption
banner motd #SOLO PERSONAL AUTORIZADO#

vlan 10
name Ingenieria
vlan 20
name ventas
vlan 30
name Administracion
vlan 100
name NATIVE
exit

interface range e0/0-1


no sh
switchport trunk encapsulation dot1q
switchport trunk native vlan 100
switchport trunk allowed vlan 10,20,30,100
channel-protocol lacp
channel-group 1 mode passive
exit

int vlan 1
no sh
ip add [Link] [Link]
ipv6 add [Link]/64
do wr

int e1/0
no sh
sw mode access
sw access vlan 10

int e2/0
no sh
sw mode access
sw access vlan 20

int e3/0
no sh
sw mode access
sw access vlan 30

do wr

----------------------------
----------------------------
======
DISTRITO NACIONAL
======

enable
conf t
hostname DIS_NASIONAL
no ip domain-lookup
ip domain-name [Link]
enable secret class
line console 0
password class
login
username Admin secret class
crypto key generate rsa
line vty 0 4
login local
line vty 0 4
transport input ssh
service password-encryption
banner motd #SOLO PERSONAL AUTORIZADO#

interface s1/0
description CONECTADO A ISP
ip address [Link] [Link]
no shutdown
exit

interface e0/2
duplex full
no sh

interface e0/2.10
encapsulation dot1q 10
description VLAN INGENIERIA
ip address [Link] [Link]
ipv6 address [Link]/64
ipv6 dhcp server DHCPV6_INGENIERIA
ipv6 enable
exit

interface e0/2.20
encapsulation dot1q 20
description VLAN VENTAS
ip address [Link] [Link]
ipv6 address [Link]/64
ipv6 enable
ipv6 traffic-filter BLOQUEO_HTTP_VENTAS out
exit

interface e0/2.30
encapsulation dot1q 30
description VLAN ADMINISTRACION
ip address [Link] [Link]
ipv6 address [Link]/64
ipv6 enable
exit

interface e0/2.100
encapsulation dot1q 100
description VLAN NATIVA
ip address [Link] [Link]
ipv6 address [Link]/64
ipv6 enable
exit

ipv6 dhcp pool Vlan_10


address prefix [Link]/64
dns-server [Link]
domain-name [Link]
exit

ipv6 dhcp pool Vlan_20


address prefix [Link]/64
dns-server [Link]
domain-name [Link]
exit

ipv6 dhcp pool Vlan_30


address prefix [Link]/64
dns-server [Link]
domain-name [Link]
exit

ipv6 dhcp pool Vlan_100


address prefix [Link]/64
dns-server [Link]
domain-name [Link]
exit

ip dhcp pool Vlan_10


network [Link] [Link]
default-router [Link]
exit

ip dhcp pool Vlan_20


network [Link] [Link]
default-router [Link]
exit

ip dhcp pool Vlan_30


network [Link] [Link]
default-router [Link]
exit

ipv6 access-list BLOQUEO_HTTP_VENTAS


deny tcp any any eq 80
permit ipv6 any any
exit
ip access-list extended BLOQUEO_HTTP_VENTAS_IP
deny tcp [Link] [Link] any eq 80
permit ip any any
exit

interface e0/2.20
ip access-group BLOQUEO_HTTP_VENTAS_IP out
exit

do wr

You might also like