骨干ISP配置实例之I

来源：作者：出处：巧巧读书 2006-09-01 进入讨论组

　　ISP1AC1
　　**********************************************************************
　　Device Characteristics
　　Table 11 Hardware and Software Device Characteristics for ISP1AC1
　　Host name ISP1AC1

　　Chassis type Cisco 7206VXR
　　Physical interfaces ?8 Ethernet/IEEE 802.3
　　?3 Fast Ethernet/IEEE 802.3
　　Hardware components Cisco 7206VXR (NPE300) processor
　　Software loaded Release 12.1(4.4)PI
　　Memory Cisco 7206VXR (NPE300) processor (revision D): 40 MB
　　IP addresses ?Loopback0: K.250.0.201 255.255.255.255
　　?FastEthernet3/0: K.250.1.2 255.255.255.248
　　?Ethernet5/2: K.250.1.33 255.255.255.248
　　?Ethernet5/3: K.250.1.41 255.255.255.248
　　
　　***********************************************************************
　　
　　
　　Configuration File
　　version 12.1
　　no service single-slot-reload-enable
　　service timestamps debug datetime localtime show-timezone
　　service timestamps log datetime localtime show-timezone
　　no service password-encryption
　　service udp-small-servers
　　service tcp-small-servers
　　!
　　hostname ISP1AC1
　　!
　　logging buffered 1000000 debugging
　　logging rate-limit console 10 except errors
　　no logging console
　　aaa new-model
　　aaa authentication login default group tacacs+ enable
　　aaa authentication login NOTACACS enable
　　aaa accounting commands 15 default start-stop group tacacs+
　　aaa accounting system default start-stop group tacacs+
　　enable password lab
　　!
　　clock timezone PST -8
　　clock summer-time PST recurring
　　ip subnet-zero
　　ip cef
　　!
　　!
　　no ip finger
　　no ip domain-lookup
　　!
　　ip multicast-routing
　　call rsvp-sync
　　!
　　!
　　!
　　!
　　!
　　interface Loopback0
　　ip address K.250.0.201 255.255.255.255
　　ip pim sparse-mode
　　!
　　interface FastEthernet3/0
　　description To ISP1DA1, FA0/1/0
　　ip address K.250.1.2 255.255.255.248
　　ip pim bsr-border
　　ip pim sparse-mode
　　ip multicast boundary 1
　　duplex full
　　!
　　interface Ethernet5/2
　　description TO ISP1AC1IPTV
　　ip address K.250.1.33 255.255.255.248
　　ip pim sparse-mode
　　duplex half
　　!
　　interface Ethernet5/3
　　description TO ISP1AC1CL1
　　ip address K.250.1.41 255.255.255.248
　　ip pim sparse-mode
　　duplex half
　　!
　　ip classless
　　ip route 0.0.0.0 0.0.0.0 K.250.1.1
　　no ip http server
　　ip pim rp-address K.250.0.201
　　ip msdp peer J.1.0.203 connect-source FastEthernet3/0
　　ip msdp sa-filter in J.1.0.203 list 124
　　ip msdp sa-filter out J.1.0.203 list 124
　　ip msdp cache-sa-state
　　ip msdp redistribute list 124
　　!
　　access-list 1 deny 224.0.1.39
　　access-list 1 deny 224.0.1.40
　　access-list 1 deny 239.0.0.0 0.255.255.255
　　access-list 1 permit any
　　access-list 124 deny ip any host 224.0.2.2
　　access-list 124 deny ip any host 224.0.1.3
　　access-list 124 deny ip any host 224.0.1.24
　　access-list 124 deny ip any host 224.0.1.22
　　access-list 124 deny ip any host 224.0.1.2
　　access-list 124 deny ip any host 224.0.1.35
　　access-list 124 deny ip any host 224.0.1.60
　　access-list 124 deny ip any host 224.0.1.39
　　access-list 124 deny ip any host 224.0.1.40
　　access-list 124 deny ip any 239.0.0.0 0.255.255.255
　　access-list 124 deny ip 10.0.0.0 0.255.255.255 any
　　access-list 124 deny ip 127.0.0.0 0.255.255.255 any
　　access-list 124 deny ip 172.16.0.0 0.15.255.255 any
　　access-list 124 deny ip K.168.0.0 0.0.255.255 any
　　access-list 124 deny ip any 232.0.0.0 0.255.255.255
　　access-list 124 permit ip any any
　　snmp-server engineID local 00000009020000024ADFB800
　　snmp-server community public RO
　　snmp-server community STSS RW
　　snmp-server packetsize 2048
　　snmp-server contact sysadmin
　　snmp-server chassis-id ISP1AC1
　　!
　　tacacs-server key cisco12345
　　!
　　alias exec int_desc show int | include Description
　　alias exec cpu show proc cpu | include CPU
　　alias exec mem show mem free | include Processor
　　!
　　line con 0
　　exec-timeout 0 0
　　login authentication NOTACACS
　　transport input none
　　line aux 0
　　exec-timeout 0 0
　　line vty 0 4
　　exec-timeout 0 0
　　password lab
　　line vty 5 15
　　!
　　exception protocol ftp
　　exception region-size 36864
　　exception flash all disk0:
　　ntp clock-period 17180280
　　ntp update-calendar
　　end转载保留：http://www.qqread.com/net-manage/d268759.html