#arp ! #banner ! #cdp ! #console ! #eapol set dot1x enable set eapol enable set eapol auth-mode forced-auth fe.1.1 set eapol auth-mode forced-auth fe.1.2 set eapol auth-mode forced-auth fe.1.3 set eapol auth-mode forced-auth fe.1.4 set eapol auth-mode forced-auth fe.1.5 set eapol auth-mode forced-auth fe.1.6 set eapol auth-mode forced-auth fe.1.7 set eapol auth-mode forced-auth fe.1.8 set eapol auth-mode forced-auth fe.1.9 set eapol auth-mode forced-auth fe.1.10 set eapol auth-mode forced-auth fe.1.11 set eapol auth-mode forced-auth fe.1.12 set eapol auth-mode forced-auth fe.1.13 set eapol auth-mode forced-auth fe.1.14 set eapol auth-mode forced-auth fe.1.15 set eapol auth-mode forced-auth fe.1.16 set eapol auth-mode forced-auth fe.1.17 set eapol auth-mode forced-auth fe.1.18 set eapol auth-mode forced-auth fe.1.19 set eapol auth-mode forced-auth fe.1.20 set eapol auth-mode forced-auth fe.1.21 set eapol auth-mode forced-auth fe.1.22 set eapol auth-mode forced-auth fe.1.23 set eapol auth-mode forced-auth fe.1.24 set eapol auth-mode forced-auth fe.1.25 set eapol auth-mode forced-auth fe.1.26 set eapol auth-mode forced-auth fe.1.27 set eapol auth-mode forced-auth fe.1.28 set eapol auth-mode forced-auth fe.1.29 set eapol auth-mode forced-auth fe.1.30 set eapol auth-mode forced-auth fe.1.31 set eapol auth-mode forced-auth fe.1.32 set eapol auth-mode forced-auth fe.1.33 set eapol auth-mode forced-auth fe.1.34 set eapol auth-mode forced-auth fe.1.35 set eapol auth-mode forced-auth fe.1.36 set eapol auth-mode forced-auth fe.1.37 set eapol auth-mode forced-auth fe.1.38 set eapol auth-mode forced-auth fe.1.39 set eapol auth-mode forced-auth fe.1.40 set eapol auth-mode forced-auth fe.1.41 set eapol auth-mode forced-auth fe.1.42 set eapol auth-mode forced-auth fe.1.43 set eapol auth-mode forced-auth fe.1.44 set eapol auth-mode forced-auth fe.1.45 set eapol auth-mode forced-auth fe.1.46 ! #flowcontrol ! #garp ! #gvrp ! #history ! #igmp ! #inlinepower ! #ip set ip address 45.200.1.77 mask 255.255.255.0 gateway 45.200.1.1 ! #lacp ! #length set length 20 ! #logging ! #logout ! #mac ! #macauthentication ! #maclock ! #mtu ! #multiauth ! #nodealias ! #cos setting ! #cos state ! #cos port-group-table ! #cos resource-table ! #cos mapping-table ! #policy set policy profile 1 name "Quarantine" pvid-status enable pvid 21 set policy profile 2 name "Enterprise Access" pvid-status enable pvid 20 set policy rule 1 udpdestport 53 mask 16 forward set policy rule 1 udpdestport 67 mask 16 forward set policy rule 1 tcpdestport 80 mask 16 forward set policy rule 1 tcpdestport 443 mask 16 forward set policy rule 1 tcpdestport 1723 mask 16 forward set policy rule 1 ipproto 6 mask 8 drop set policy rule 1 ipproto 17 mask 8 drop set policy rule 2 udpsourceport 53 mask 16 drop set policy rule 2 udpsourceport 67 mask 16 drop set policy rule 2 udpsourceport 69 mask 16 drop set policy rule 2 udpsourceport 161 mask 16 drop set policy rule 2 udpsourceport 162 mask 16 drop set policy rule 2 udpsourceport 520 mask 16 drop set policy rule 2 udpsourceport 1433 mask 16 drop set policy rule 2 udpsourceport 1434 mask 16 drop set policy rule 2 udpsourceport 1812 mask 16 drop set policy rule 2 udpsourceport 1813 mask 16 drop set policy rule 2 udpdestport 69 mask 16 drop set policy rule 2 udpdestport 161 mask 16 drop set policy rule 2 udpdestport 162 mask 16 drop set policy rule 2 udpdestport 1434 mask 16 drop set policy rule 2 udpdestport 1900 mask 16 drop set policy rule 2 tcpsourceport 0 mask 12 drop set policy rule 2 tcpsourceport 16 mask 14 drop set policy rule 2 tcpsourceport 20 mask 16 drop set policy rule 2 tcpsourceport 21 mask 16 drop set policy rule 2 tcpsourceport 22 mask 16 drop set policy rule 2 tcpsourceport 23 mask 16 drop set policy rule 2 tcpsourceport 25 mask 16 drop set policy rule 2 tcpsourceport 53 mask 16 drop set policy rule 2 tcpsourceport 80 mask 16 drop set policy rule 2 tcpsourceport 135 mask 16 cos 2 set policy rule 2 tcpsourceport 137 mask 16 cos 2 set policy rule 2 tcpsourceport 139 mask 16 drop set policy rule 2 tcpsourceport 443 mask 16 drop set policy rule 2 tcpsourceport 1433 mask 16 drop set policy rule 2 tcpsourceport 1434 mask 16 drop set policy rule 2 tcpsourceport 5000 mask 16 drop set policy rule 2 tcpdestport 22 mask 16 drop set policy rule 2 tcpdestport 23 mask 16 drop set policy rule 2 tcpdestport 137 mask 16 cos 2 set policy rule 2 tcpdestport 1434 mask 16 drop set policy rule 2 ipproto 89 mask 8 drop ! #port set port vlan fe.1.1 22 set port vlan fe.1.2 22 set port vlan fe.1.3 22 set port vlan fe.1.4 22 set port vlan fe.1.5 22 set port vlan fe.1.6 22 set port vlan fe.1.7 22 set port vlan fe.1.8 22 set port vlan fe.1.9 22 set port vlan fe.1.10 22 set port vlan fe.1.11 22 set port vlan fe.1.12 22 set port vlan fe.1.13 22 set port vlan fe.1.14 22 set port vlan fe.1.15 22 set port vlan fe.1.16 22 set port vlan fe.1.17 22 set port vlan fe.1.18 22 set port vlan fe.1.19 22 set port vlan fe.1.20 22 set port vlan fe.1.21 22 set port vlan fe.1.22 22 set port vlan fe.1.23 22 set port vlan fe.1.24 22 set port vlan fe.1.25 22 set port vlan fe.1.26 22 set port vlan fe.1.27 22 set port vlan fe.1.28 22 set port vlan fe.1.29 22 set port vlan fe.1.30 22 set port vlan fe.1.31 22 set port vlan fe.1.32 22 set port vlan fe.1.33 20 set port vlan fe.1.34 20 set port vlan fe.1.35 20 set port vlan fe.1.36 20 set port vlan fe.1.37 20 set port vlan fe.1.38 20 set port vlan fe.1.39 20 set port vlan fe.1.40 20 set port vlan fe.1.41 20 set port vlan fe.1.42 20 set port vlan fe.1.43 20 set port vlan fe.1.44 20 set port vlan fe.1.45 20 set port vlan fe.1.46 20 set port vlan fe.1.48 1000 ! #prompt ! #radius set radius enable set radius server 1 45.200.1.74 1812 :4a262711dc517c211d30386aeb143f1c381b49cd4e54362e0969d1398930857cec58790e59266c06bb: realm network-access ! #rmon alarm ! #rmon event ! #rmon history ! #rmon stats ! #snmp set snmp access groupRO security-model v2c exact read All notify All nonvolatile set snmp access groupRW security-model v2c exact read All write All notify All nonvolatile clear snmp access ro security-model v1 clear snmp access ro security-model v2c clear snmp access public security-model v1 clear snmp access public security-model v2c clear snmp access public security-model usm set snmp community private set snmp community public set snmp group groupRO user public security-model v2c set snmp group groupRW user private security-model v2c clear snmp group ro ro security-model v1 clear snmp group ro ro security-model v2c set snmp notify LDEnforcerNotify tag LDEnforcerTag set snmp targetaddr LDEnforcer 45.200.1.82 param LDEnforcerTraps taglist LDEnforcerTag set snmp targetparams LDEnforcerTraps user public security-model v2c message-processing v2c noauthentication nonvolatile clear snmp user public set snmp view viewname All subtree 1 ! #sntp ! #spantree set spantree adminedge fe.1.1 true ! #ssh ! #ssl ! #summertime ! #system set switch member 1 4 set system name "enterasys-nap" set system location "Interop iNAC NAP Interoperability Lab" set system contact "Mark Townsend - Cell 603.512.1649" set system login admin super-user enable password :4a262711dc517c211d30386aeb143f1c381b49cd4e54362e0969d1398930857cec58790e59266c06bb: ! #telnet ! #timezone ! #vlan set vlan create 20 set vlan create 22 set vlan create 24 set vlan create 1000 set vlan name 20 Success_Net set vlan name 22 Lockdown-Q-22 set vlan name 24 Lockdown-Q-24 set vlan egress 1 fe.1.48 tagged clear vlan egress 1 fe.1.1-46 set vlan egress 20 fe.1.48 tagged set vlan egress 20 fe.1.33-46 untagged set vlan egress 22 fe.1.48 tagged set vlan egress 22 fe.1.1-32 untagged set vlan egress 24 fe.1.48 tagged set vlan egress 1000 fe.1.48 tagged set host vlan 1000 set vlan dynamicegress 1 enable set vlan dynamicegress 20 enable set vlan dynamicegress 21 enable ! #vlanauthorization ! #webview ! #width !