### VER MAC ADDRESS CONECTADA NA INTERFACE
show mac address-table interface fa0/5
### CRIAR AS VLANS
vlan 3010
name Gerenciamento
vlan 3020
name Servers_CORP
vlan 3030
name Telefonia
vlan 3040
name Lan_CORP
vlan 3060
name Lan_TERCEIROS
vlan 3070
name Servers_TERCEIRO
vlan 3080
name Catracas-Impressoras-REP-Cameras
vlan 3090
name Gerenciamento_AP
vlan 3091
name WLAN_CORP
vlan 3092
name WLAN_NIVEL1
vlan 3093
name WLAN_NIVEL2
vlan 3094
name WLAN_Nivel3
vlan 3095
name WLAN_Visitantes
interface Vlan1
no ip address
interface Vlan3010
ip address <IP> <MASC>
### DEFAULT GATEWAY
ip default-gateway <IP>
### CONFIGURAR VTP
vtp domain local.domain
vtp password <SENHA>
vtp version 3
vtp mode {client | server}
vtp pruning
### CONFIGURAR INTERFACES ACCESS
interface range fastEthernet 0/1 - fastEthernet 0/4
switchport access vlan 3080
switchport mode access
spanning-tree portfast
description CATRACA
no shutdown
interface range fastEthernet 0/5 - fastEthernet 0/24 <- Deixar shutdown sem uso
shutdown
### CONFIGURAR TRUNK
interface GigabitEthernet0/1
description <INSERIR>
switchport mode trunk
channel-group 1 mode active
spanning-tree portfast trunk
interface GigabitEthernet0/2
description <INSERIR>
switchport mode trunk
channel-group 2 mode active
spanning-tree portfast trunk
### NTP Servers-ACAD
ntp server <IP> prefer
### RADIUS
radius-server host <IP> auth-port <PORT> acct-port <PORT> key <ID> <REGISTRO>
### ACESSO E LOG
no ip http server
no ip http secure-server
logging trap debugging
logging origin-id ip
logging source-interface Vlan3010
logging host <IP> session-id hostname
line con 0
session-timeout 5
exec-timeout 5 0
authorization exec userAuthentication
logging synchronous
login authentication userAuthentication
length 0
line vty 0 4
session-timeout 5
exec-timeout 5 0
authorization exec userAuthentication
logging synchronous
login authentication userAuthentication
length 0
transport input ssh
line vty 5 15
session-timeout 5
exec-timeout 5 0
authorization exec userAuthentication
logging synchronous
login authentication userAuthentication
length 0
transport input ssh
### SNMP
snmp-server community <NOME> RO
snmp-server location <INSERIR>
snmp-server contact <INSERIR>
snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
snmp-server enable traps transceiver all
snmp-server enable traps tty
snmp-server enable traps cluster
snmp-server enable traps entity
snmp-server enable traps cpu threshold
snmp-server enable traps rep
snmp-server enable traps vtp
snmp-server enable traps vlancreate
snmp-server enable traps vlandelete
snmp-server enable traps flash insertion removal
snmp-server enable traps port-security
snmp-server enable traps auth-framework sec-violation
snmp-server enable traps dot1x auth-fail-vlan guest-vlan no-auth-fail-vlan no-guest-vlan
snmp-server enable traps envmon fan shutdown supply temperature status
snmp-server enable traps power-ethernet group 1
snmp-server enable traps power-ethernet police
snmp-server enable traps fru-ctrl
snmp-server enable traps config-copy
snmp-server enable traps config
snmp-server enable traps config-ctid
snmp-server enable traps energywise
snmp-server enable traps rtr
snmp-server enable traps vstack
snmp-server enable traps bridge newroot topologychange
snmp-server enable traps stpx inconsistency root-inconsistency loop-inconsistency
snmp-server enable traps syslog
snmp-server enable traps mac-notification change move threshold
snmp-server enable traps vlan-membership
snmp-server enable traps errdisable
### BANNER
banner motd ^C
####################################################################
# EMPRESA - SETOR (Telefone) #
####################################################################
# Acesso autorizado apenas para administradores de rede #
####################################################################
Voce esta conectado em $(hostname).$(domain) com ID $(line)
^C