[Nocrancid] autopop-onenet.net router config diffs
rancid at rancid.noc.onenet.net
rancid at rancid.noc.onenet.net
Tue Dec 8 14:02:47 CST 2015
Index: configs/maysville-es.client.onenet.net
===================================================================
--- configs/maysville-es.client.onenet.net (revision 137574)
+++ configs/maysville-es.client.onenet.net (working copy)
@@ -112,11 +112,10 @@
# WARNING: / was not properly dismounted
#
# grnoc-mon at MAYSVILLE-ES-LEASED-ASSET-TAG-004945> show version
-# Hostname: MAYSVILLE-ES-LEASED-ASSET-TAG-004945 # Model: srx240h2 # JUNOS Software Release [12.1X44-D35.5] # file list /var/tmp detail # # grnoc-mon at MAYSVILLE-ES-LEASED-ASSET-TAG-004945> file list /var/tmp detail # lrw-r--r-- 1 root wheel 11 May 19 2014 /var/tmp@ -> /cf/var/tmp
+# Hostname: MAYSVILLE-ES-LEASED-ASSET-TAG-004945 # Model: srx240h2 # file list /var/tmp detail # JUNOS Software Release [12.1X44-D35.5] # # grnoc-mon at MAYSVILLE-ES-LEASED-ASSET-TAG-004945> file list /var/tmp detail # lrw-r--r-- 1 root wheel 11 May 19 2014 /var/tmp@ -> /cf/var/tmp
# total files: 1
#
# grnoc-mon at MAYSVILLE-ES-LEASED-ASSET-TAG-004945> show system uptime
-# show interface terse
# System booted: 2015-11-20 19:48 CST
# Protocols started: 2015-11-20 19:51 CST
# Last configured: 2015-10-26 13:12 CDT by admin
@@ -618,6 +617,7 @@
# OSPF instance is not running
#
# grnoc-mon at MAYSVILLE-ES-LEASED-ASSET-TAG-004945> show bfd session
+quit
0 sessions, 0 clients
Cumulative transmit rate 0.0 pps, cumulative receive rate 0.0 pps
Index: configs/eodls-muldrow-public-library.client.onenet.net
===================================================================
--- configs/eodls-muldrow-public-library.client.onenet.net (revision 137574)
+++ configs/eodls-muldrow-public-library.client.onenet.net (working copy)
@@ -1,12 +1,12 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at EODLS-Muldrow-Public-Library-ASSET-004357> show system commit
+# 2015-12-08 13:07:30 CST by joel via cli
# 2015-12-08 12:55:35 CST by onenet via cli commit confirmed, rollback in 5mins
# 2015-03-23 13:43:08 CDT by root via other
# 2015-03-23 13:41:49 CDT by onenet via cli commit confirmed, rollback in 1mins
# 2015-03-23 13:37:46 CDT by onenet via cli commit confirmed, rollback in 2mins
# 2015-03-23 13:35:50 CDT by onenet via cli commit confirmed, rollback in 2mins
-# 2014-08-15 22:55:57 CDT by root via cli
# grnoc-mon at EODLS-Muldrow-Public-Library-ASSET-004357> show chassis environment
# Class Item Status Measurement
# Temp Routing Engine OK
@@ -97,7 +97,7 @@
# grnoc-mon at EODLS-Muldrow-Public-Library-ASSET-004357> show system uptime
# System booted: 2015-09-03 11:15 CDT
# Protocols started: 2015-09-03 11:17 CDT
-# Last configured: 2015-12-08 12:55 CST by onenet
+# Last configured: 2015-12-08 13:07 CST by joel
#
# grnoc-mon at EODLS-Muldrow-Public-Library-ASSET-004357> show interface terse
#Interface Admin Link
@@ -143,7 +143,7 @@
#vlan up up
#vlan.999 up down
# grnoc-mon at EODLS-Muldrow-Public-Library-ASSET-004357> show configuration
-## Last commit: 2015-12-08 12:55:35 CST by onenet
+## Last commit: 2015-12-08 13:07:30 CST by joel
version 12.1X44-D30.4;
system {
host-name EODLS-Muldrow-Public-Library-ASSET-004357;
@@ -202,6 +202,9 @@
user client {
uid 2000;
class admin;
+ authentication {
+# encrypted-password <removed>;
+ }
}
user eng {
uid 2018;
Index: configs/hub.ada.onenet.net
===================================================================
--- configs/hub.ada.onenet.net (revision 137571)
+++ configs/hub.ada.onenet.net (working copy)
@@ -334,7 +334,7 @@
#t1-2/0/2:11.0 up up
#t1-2/0/2:12 up up
#t1-2/0/2:12.0 up up
-#t1-2/0/2:13 down down
+#t1-2/0/2:13 down up
#t1-2/0/2:14 up up
#t1-2/0/2:14.0 up up
#t1-2/0/2:15 up up
Index: configs/core5.tul.onenet.net
===================================================================
--- configs/core5.tul.onenet.net (revision 137551)
+++ configs/core5.tul.onenet.net (working copy)
@@ -1,12 +1,12 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at TULSA-CORE5-MX480-RE0> show system commit
+# 2015-12-08 13:01:30 CST by joel via cli commit synchronize
# 2015-12-07 19:55:37 CST by andrew via cli commit synchronize
# 2015-12-06 14:36:23 CST by andrew via cli commit confirmed, rollback in 3mins synchronize
# 2015-12-06 14:29:10 CST by andrew via cli commit confirmed, rollback in 5mins synchronize
# 2015-12-06 14:25:25 CST by andrew via cli commit confirmed, rollback in 3mins synchronize
# 2015-12-03 14:55:50 CST by sky via cli commit synchronize
-# 2015-12-03 14:48:13 CST by sky via cli commit synchronize
# grnoc-mon at TULSA-CORE5-MX480-RE0> show chassis environment
# Class Item Status Measurement
# Temp PEM 0 OK
@@ -386,7 +386,7 @@
# grnoc-mon at TULSA-CORE5-MX480-RE0> show system uptime
# System booted: 2014-09-20 01:27 CDT
# Protocols started: 2014-09-20 01:28 CDT
-# Last configured: 2015-12-07 19:55 CST by andrew
+# Last configured: 2015-12-08 13:01 CST by joel
#
# {master}
# grnoc-mon at TULSA-CORE5-MX480-RE0> show interface terse
@@ -662,7 +662,7 @@
#pp0 up up
#tap up up
# grnoc-mon at TULSA-CORE5-MX480-RE0> show configuration
-## Last commit: 2015-12-07 19:55:37 CST by andrew
+## Last commit: 2015-12-08 13:01:30 CST by joel
version 12.3R7.7;
groups {
re0 {
@@ -2062,10 +2062,11 @@
}
}
unit 156 {
- description EODLS-Muldrow-Public-Library-Muldrow-45M-CIR0005644;
+ description EODLS-Muldrow-Public-Library-Muldrow-45M-CIR0005644-LR;
bandwidth 45m;
vlan-id 156;
family inet {
+ rpf-check;
mtu 1500;
policer {
input 45M-POL;
Index: configs/rpswi2.rp1f3.onenet.net
===================================================================
--- configs/rpswi2.rp1f3.onenet.net (revision 137574)
+++ configs/rpswi2.rp1f3.onenet.net (working copy)
@@ -436,8 +436,8 @@
#ge-0/0/15.0 up down
#ge-0/0/16 up up
#ge-0/0/16.0 up up
-#ge-0/0/17 up down
-#ge-0/0/17.0 up down
+#ge-0/0/17 up up
+#ge-0/0/17.0 up up
#ge-0/0/18 up up
#ge-0/0/18.0 up up
#ge-0/0/19 up up
@@ -512,8 +512,8 @@
#ge-1/0/4.0 up up
#ge-1/0/5 up down
#ge-1/0/5.0 up down
-#ge-1/0/6 up down
-#ge-1/0/6.0 up down
+#ge-1/0/6 up up
+#ge-1/0/6.0 up up
#ge-1/0/7 up down
#ge-1/0/7.0 up down
#ge-1/0/8 up up
@@ -532,8 +532,8 @@
#ge-1/0/14.0 up down
#ge-1/0/15 up down
#ge-1/0/15.0 up down
-#ge-1/0/16 up down
-#ge-1/0/16.0 up down
+#ge-1/0/16 up up
+#ge-1/0/16.0 up up
#ge-1/0/17 up down
#ge-1/0/17.0 up down
#ge-1/0/18 up down
@@ -600,8 +600,8 @@
#ge-2/0/0.0 up up
#ge-2/0/1 up down
#ge-2/0/1.0 up down
-#ge-2/0/2 up down
-#ge-2/0/2.0 up down
+#ge-2/0/2 up up
+#ge-2/0/2.0 up up
#ge-2/0/3 up up
#ge-2/0/3.0 up up
#ge-2/0/4 up down
Index: configs/hub.chi.onenet.net
===================================================================
--- configs/hub.chi.onenet.net (revision 137572)
+++ configs/hub.chi.onenet.net (working copy)
@@ -294,7 +294,7 @@
#t1-2/0/2:1 up up
#t1-2/0/2:1.16 up up
#t1-2/0/2:1.17 up up
-#t1-2/0/2:2 down up
+#t1-2/0/2:2 down down
#t1-2/0/2:3 down down
#t1-2/0/2:4 down down
#t1-2/0/2:5 down down
Index: configs/acx.cai.hart-acx2100.onenet.net
===================================================================
--- configs/acx.cai.hart-acx2100.onenet.net (revision 137574)
+++ configs/acx.cai.hart-acx2100.onenet.net (working copy)
@@ -74,7 +74,6 @@
# grnoc-mon at HARTSHORNE-PUBLIC-LIBRARY-ACX2100> show chassis ssb
# grnoc-mon at HARTSHORNE-PUBLIC-LIBRARY-ACX2100> show system boot-messages
# platform_early_bootinit: MX-PPC Series Early Boot Initialization
-# show version
# mxppc_set_re_type: hw.board.type is ACX-2100
# WDOG initialized
# Copyright (c) 1996-2014, Juniper Networks, Inc.
Index: configs/swi.cai.dun.onenet.net
===================================================================
--- configs/swi.cai.dun.onenet.net (revision 137574)
+++ configs/swi.cai.dun.onenet.net (working copy)
@@ -1,6 +1,7 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at SWI-DUNCAN-PUBLIC-LIBRARY-EX-3300> show system commit
+# show chassis environment
# 2014-04-28 14:03:42 CDT by joel via cli commit confirmed, rollback in 2mins
# 2014-02-12 14:39:48 CST by donnie via cli
# 2014-02-12 11:10:28 CST by donnie via cli
Index: configs/wainwright-isd.client.onenet.net
===================================================================
--- configs/wainwright-isd.client.onenet.net (revision 137574)
+++ configs/wainwright-isd.client.onenet.net (working copy)
@@ -1,7 +1,6 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at WAINWRIGHT-ISD-SRX220-LEASED-4659-005783> show system commit
-# show chassis environment
# 2015-10-06 20:19:56 CDT by andrew via cli
# 2015-04-06 13:00:02 CDT by admin via cli
# 2015-04-06 20:03:50 CDT by admin via cli
Index: configs/maysville-hs.client.onenet.net
===================================================================
--- configs/maysville-hs.client.onenet.net (revision 137574)
+++ configs/maysville-hs.client.onenet.net (working copy)
@@ -48,6 +48,7 @@
# show chassis sfm detail
# grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> show chassis sfm detail
# grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> show chassis ssb
+# show system boot-messages
# grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> show system boot-messages
# kld_map_v: 0x8ff80000, kld_map_p: 0x0
# Copyright (c) 1996-2014, Juniper Networks, Inc.
@@ -112,7 +113,7 @@
# WARNING: / was not properly dismounted
#
# grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> show version
-# Hostname: MAYSVILLE-HS-LEASED-ASSET-TAG-004887 # Model: srx240h2 # JUNOS Software Release [12.1X44-D35.5] # file list /var/tmp detail # # grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> file list /var/tmp detail # lrw-r--r-- 1 root wheel 11 May 19 2014 /var/tmp@ -> /cf/var/tmp
+# Hostname: MAYSVILLE-HS-LEASED-ASSET-TAG-004887 # file list /var/tmp detail # Model: srx240h2 # JUNOS Software Release [12.1X44-D35.5] # # grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> file list /var/tmp detail # lrw-r--r-- 1 root wheel 11 May 19 2014 /var/tmp@ -> /cf/var/tmp
# total files: 1
#
# grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> show system uptime
Index: configs/core.pot.onenet.net
===================================================================
--- configs/core.pot.onenet.net (revision 137552)
+++ configs/core.pot.onenet.net (working copy)
@@ -1,12 +1,12 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at POTEAU-MX480-RE0> show system commit
+# 2015-12-08 13:12:00 CST by joel via cli commit synchronize
# 2015-12-07 20:48:59 CST by andrew via cli commit synchronize
# 2015-10-29 13:19:26 CDT by joel via cli commit synchronize
# 2015-10-29 12:23:00 CDT by joel via cli commit synchronize
# 2015-10-16 09:30:59 CDT by andrew via cli commit synchronize
# 2015-10-10 08:06:08 CDT by root via other
-# 2015-10-10 08:04:35 CDT by joel via cli commit confirmed, rollback in 1mins synchronize
# grnoc-mon at POTEAU-MX480-RE0> show chassis environment
# Class Item Status Measurement
# Temp PEM 0 OK
@@ -259,7 +259,7 @@
# grnoc-mon at POTEAU-MX480-RE0> show system uptime
# System booted: 2015-06-07 23:41 CDT
# Protocols started: 2015-06-07 23:44 CDT
-# Last configured: 2015-12-07 20:48 CST by andrew
+# Last configured: 2015-12-08 13:12 CST by joel
#
# {master}
# grnoc-mon at POTEAU-MX480-RE0> show interface terse
@@ -407,7 +407,7 @@
#pp0 up up
#tap up up
# grnoc-mon at POTEAU-MX480-RE0> show configuration
-## Last commit: 2015-12-07 20:48:59 CST by andrew
+## Last commit: 2015-12-08 13:12:00 CST by joel
version 13.3R6.5;
groups {
re0 {
@@ -853,6 +853,7 @@
bandwidth 45m;
vlan-id 1367;
family inet {
+ rpf-check;
policer {
input 45M-POL;
output 45M-POL;
Index: configs/hub.tsb.onenet.net
===================================================================
--- configs/hub.tsb.onenet.net (revision 137574)
+++ configs/hub.tsb.onenet.net (working copy)
@@ -199,7 +199,7 @@
# -rw-rw---- 1 root field 51994624 Oct 24 2013 ifinfo.core.1
# -rw-rw---- 1 root field 51974144 Oct 24 2013 ifinfo.core.2
# -rw-rw---- 1 root field 52744192 Oct 24 2013 ifinfo.core.3
-# -rw-rw---- 1 root field 52727808 Dec 8 12:56 ifinfo.core.4
+# -rw-rw---- 1 root field 52727808 Dec 8 13:55 ifinfo.core.4
# drwxrwxrwx 2 root wheel 512 Oct 12 2012 install/
# -rw-rw---- 1 root field 33464320 Mar 3 2014 jdiameterd.core.0
# -rw-r--r-- 1 eng field 99542994 Apr 23 2013 jinstall-ppc-11.4R7.5-domestic-signed.tgz
Index: configs/tri-county-interlocal.client.onenet.net
===================================================================
--- configs/tri-county-interlocal.client.onenet.net (revision 137539)
+++ configs/tri-county-interlocal.client.onenet.net (working copy)
@@ -1,6 +1,7 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at TRI-COUNTY-INTERLOCAL-COOP-TAG-004665> show system commit
+# show chassis environment
# 2015-12-02 14:57:18 CST by admin via cli
# 2015-12-02 14:49:49 CST by admin via cli
# 2015-12-02 14:38:36 CST by admin via cli
@@ -8,6 +9,7 @@
# 2015-12-02 14:25:55 CST by admin via cli
# 2015-12-02 14:23:31 CST by admin via cli
# grnoc-mon at TRI-COUNTY-INTERLOCAL-COOP-TAG-004665> show chassis environment
+# show chassis firmware
# Class Item Status Measurement
# Temp Routing Engine OK
# Routing Engine CPU Absent
Index: configs/odmhsas.central-office.okc.client.onenet.net
===================================================================
--- configs/odmhsas.central-office.okc.client.onenet.net (revision 137385)
+++ configs/odmhsas.central-office.okc.client.onenet.net (working copy)
@@ -1,12 +1,12 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at ODMHSAS-CENTRAL-OFFICE-OKC-SRX550> show system commit
+# 2015-12-08 13:21:44 CST by andrew via cli
+# 2015-12-08 13:19:52 CST by andrew via cli commit confirmed, rollback in 3mins
# 2015-11-17 21:22:21 CST by andrew via cli commit confirmed, rollback in 3mins
# 2015-07-28 13:23:21 CDT by andrew via cli
# 2015-07-28 10:02:53 CDT by andrew via cli commit confirmed, rollback in 3mins
# 2015-05-23 19:23:38 CDT by andrew via cli commit confirmed, rollback in 3mins
-# 2015-05-23 14:05:01 CDT by andrew via cli commit confirmed, rollback in 5mins
-# 2015-05-23 13:45:29 CDT by andrew via cli
# grnoc-mon at ODMHSAS-CENTRAL-OFFICE-OKC-SRX550> show chassis environment
# Class Item Status Measurement
# Temp Routing Engine OK
@@ -130,7 +130,7 @@
# grnoc-mon at ODMHSAS-CENTRAL-OFFICE-OKC-SRX550> show system uptime
# System booted: 2015-05-23 14:42 CDT
# Protocols started: 2015-05-23 14:43 CDT
-# Last configured: 2015-11-17 21:22 CST by andrew
+# Last configured: 2015-12-08 13:21 CST by andrew
#
# grnoc-mon at ODMHSAS-CENTRAL-OFFICE-OKC-SRX550> show interface terse
#Interface Admin Link
@@ -148,8 +148,7 @@
#ge-0/0/1.0 up up
#ge-0/0/2 up up
#ge-0/0/2.0 up up
-#ge-0/0/3 up down
-#ge-0/0/3.0 up down
+#ge-0/0/3 down down
#ge-0/0/4 down down
#ge-0/0/5 up down
#ge-0/0/5.0 up down
@@ -175,7 +174,7 @@
#ppd0 up up
#ppe0 up up
#st0 up up
-#st0.0 up down
+#st0.0 up up
#st0.12 up up
#st0.13 up up
#st0.14 up up
@@ -206,7 +205,6 @@
#vlan up up
#vlan.3 up up
#vlan.4 up up
-#vlan.5 up down
#vlan.10 up down
#vlan.20 up down
#vlan.30 up down
@@ -214,7 +212,7 @@
#vlan.50 up down
#vlan.90 up up
# grnoc-mon at ODMHSAS-CENTRAL-OFFICE-OKC-SRX550> show configuration
-## Last commit: 2015-11-17 21:22:21 CST by andrew
+## Last commit: 2015-12-08 13:21:44 CST by andrew
version 12.1X46-D20.5;
system {
host-name ODMHSAS-CENTRAL-OFFICE-OKC-SRX550;
@@ -367,15 +365,7 @@
}
}
ge-0/0/3 {
- description "Link to HP VPN [NO-MONITOR]";
- unit 0 {
- family ethernet-switching {
- port-mode access;
- vlan {
- members 5;
- }
- }
- }
+ disable;
}
ge-0/0/4 {
disable;
@@ -588,12 +578,6 @@
address 10.119.20.101/31;
}
}
- unit 5 {
- description "HP [NO-MONITOR]";
- family inet {
- address 128.212.228.90/30;
- }
- }
unit 10 {
description "VOICE [NO-MONITOR]";
}
@@ -912,10 +896,10 @@
}
proposal IKE-PROPOSAL-HP-VPN {
authentication-method pre-shared-keys;
- dh-group group2;
- authentication-algorithm md5;
- encryption-algorithm 3des-cbc;
- lifetime-seconds 3600;
+ dh-group group5;
+ authentication-algorithm sha1;
+ encryption-algorithm aes-256-cbc;
+ lifetime-seconds 86400;
}
policy IKE-ODMHSAS-TEST {
mode main;
@@ -1177,9 +1161,9 @@
external-interface vlan.3;
}
gateway IKE-GATE-HP-VPN {
- ike-policy IKE-ODMHSAS-TEST;
- address 70.184.28.104;
- external-interface vlan.5;
+ ike-policy IKE-HP-VPN;
+ address 70.184.28.107;
+ external-interface vlan.3;
}
gateway IKE-GATE-LAWTON-OTHER {
ike-policy IKE-LAWTON-OTHER;
@@ -1201,9 +1185,9 @@
}
proposal IPSEC-PROPOSAL-HP-VPN {
protocol esp;
- authentication-algorithm hmac-md5-96;
- encryption-algorithm 3des-cbc;
- lifetime-seconds 28800;
+ authentication-algorithm hmac-sha1-96;
+ encryption-algorithm aes-256-cbc;
+ lifetime-seconds 86400;
}
policy VPN-POLICY-ODMHSAS-TEST {
proposals G2-ESP-AES128-SHA;
@@ -1618,29 +1602,17 @@
ipsec-policy VPN-POLICY-HP-VPN;
}
traffic-selector HP-TS-01 {
- local-ip 192.168.133.0/24;
- remote-ip 128.212.227.0/24;
+ local-ip 156.110.43.104/29;
+ remote-ip 192.85.171.0/24;
}
traffic-selector HP-TS-02 {
- local-ip 192.168.133.0/24;
- remote-ip 128.212.228.0/25;
+ local-ip 156.110.43.104/29;
+ remote-ip 70.184.28.105/32;
}
traffic-selector HP-TS-03 {
- local-ip 192.168.133.0/24;
- remote-ip 192.168.176.0/20;
+ local-ip 156.110.43.104/29;
+ remote-ip 68.109.249.167/32;
}
- traffic-selector HP-TS-04 {
- local-ip 192.168.133.0/24;
- remote-ip 192.85.171.0/24;
- }
- traffic-selector HP-TS-05 {
- local-ip 192.168.133.0/24;
- remote-ip 192.168.69.0/24;
- }
- traffic-selector HP-TS-06 {
- local-ip 192.168.133.0/24;
- remote-ip 192.168.3.17/32;
- }
establish-tunnels immediately;
}
vpn IPSEC-VPN-LAWTON-OTHER {
@@ -1729,9 +1701,9 @@
164.58.58.131/32;
}
}
- pool HP-VPN-POOL {
+ pool 156_110_43_106 {
address {
- 192.168.133.1/32 to 192.168.133.200/32;
+ 156.110.43.106/32;
}
}
rule-set TRUST-TO-UNTRUST-NAT {
@@ -1760,7 +1732,7 @@
then {
source-nat {
pool {
- HP-VPN-POOL;
+ 156_110_43_106;
}
}
}
@@ -1768,427 +1740,67 @@
}
}
static {
- rule-set HP-VPN-NAT {
- from zone HP-VPN;
- rule 192_168_133_216 {
+ rule-set UNTRUST {
+ from zone UNTRUST;
+ rule 164_058_058_170 {
match {
- destination-address 192.168.133.216/32;
+ destination-address 164.58.58.170/32;
}
then {
static-nat {
prefix {
- 10.2.0.20/32;
+ 10.195.0.24/32;
}
}
}
}
- rule 192_168_133_218 {
+ }
+ rule-set HP-VPN {
+ from zone HP-VPN;
+ rule 156_110_043_107 {
match {
- destination-address 192.168.133.218/32;
+ destination-address 156.110.43.107/32;
}
then {
static-nat {
prefix {
- 10.2.11.23/32;
+ 10.195.0.253/32;
}
}
}
}
- rule 192_168_133_219 {
+ rule 156_110_043_108 {
match {
- destination-address 192.168.133.219/32;
+ destination-address 156.110.43.108/32;
}
then {
static-nat {
prefix {
- 10.17.0.12/32;
+ 10.195.0.254/32;
}
}
}
}
- rule 192_168_133_221 {
+ rule 156_110_043_109 {
match {
- destination-address 192.168.133.221/32;
+ destination-address 156.110.43.109/32;
}
then {
static-nat {
prefix {
- 10.17.0.2/32;
- }
- }
- }
- }
- rule 192_168_133_224 {
- match {
- destination-address 192.168.133.224/32;
- }
- then {
- static-nat {
- prefix {
- 10.16.0.9/32;
- }
- }
- }
- }
- rule 192_168_133_225 {
- match {
- destination-address 192.168.133.225/32;
- }
- then {
- static-nat {
- prefix {
- 10.16.0.3/32;
- }
- }
- }
- }
- rule 192_168_133_226 {
- match {
- destination-address 192.168.133.226/32;
- }
- then {
- static-nat {
- prefix {
- 10.16.3.92/32;
- }
- }
- }
- }
- rule 192_168_133_227 {
- match {
- destination-address 192.168.133.227/32;
- }
- then {
- static-nat {
- prefix {
- 10.1.255.4/32;
- }
- }
- }
- }
- rule 192_168_133_228 {
- match {
- destination-address 192.168.133.228/32;
- }
- then {
- static-nat {
- prefix {
- 10.6.0.11/32;
- }
- }
- }
- }
- rule 192_168_133_229 {
- match {
- destination-address 192.168.133.229/32;
- }
- then {
- static-nat {
- prefix {
- 10.21.6.12/32;
- }
- }
- }
- }
- rule 192_168_133_230 {
- match {
- destination-address 192.168.133.230/32;
- }
- then {
- static-nat {
- prefix {
- 10.21.5.11/32;
- }
- }
- }
- }
- rule 192_168_133_231 {
- match {
- destination-address 192.168.133.231/32;
- }
- then {
- static-nat {
- prefix {
- 10.21.7.11/32;
- }
- }
- }
- }
- rule 192_168_133_232 {
- match {
- destination-address 192.168.133.232/32;
- }
- then {
- static-nat {
- prefix {
- 10.21.2.11/32;
- }
- }
- }
- }
- rule 192_168_133_233 {
- match {
- destination-address 192.168.133.233/32;
- }
- then {
- static-nat {
- prefix {
- 10.21.8.11/32;
- }
- }
- }
- }
- rule 192_168_133_234 {
- match {
- destination-address 192.168.133.234/32;
- }
- then {
- static-nat {
- prefix {
- 10.21.6.11/32;
- }
- }
- }
- }
- rule 192_168_133_235 {
- match {
- destination-address 192.168.133.235/32;
- }
- then {
- static-nat {
- prefix {
- 10.21.4.11/32;
- }
- }
- }
- }
- rule 192_168_133_236 {
- match {
- destination-address 192.168.133.236/32;
- }
- then {
- static-nat {
- prefix {
- 10.21.3.11/32;
- }
- }
- }
- }
- rule 192_168_133_237 {
- match {
- destination-address 192.168.133.237/32;
- }
- then {
- static-nat {
- prefix {
- 10.21.1.11/32;
- }
- }
- }
- }
- rule 192_168_133_238 {
- match {
- destination-address 192.168.133.238/32;
- }
- then {
- static-nat {
- prefix {
- 10.7.0.10/32;
- }
- }
- }
- }
- rule 192_168_133_239 {
- match {
- destination-address 192.168.133.239/32;
- }
- then {
- static-nat {
- prefix {
- 10.7.0.8/32;
- }
- }
- }
- }
- rule 192_168_133_240 {
- match {
- destination-address 192.168.133.240/32;
- }
- then {
- static-nat {
- prefix {
- 10.1.255.1/32;
- }
- }
- }
- }
- rule 192_168_133_241 {
- match {
- destination-address 192.168.133.241/32;
- }
- then {
- static-nat {
- prefix {
- 10.2.5.17/32;
- }
- }
- }
- }
- rule 192_168_133_242 {
- match {
- destination-address 192.168.133.242/32;
- }
- then {
- static-nat {
- prefix {
- 10.2.5.53/32;
- }
- }
- }
- }
- rule 192_168_133_243 {
- match {
- destination-address 192.168.133.243/32;
- }
- then {
- static-nat {
- prefix {
- 10.7.0.9/32;
- }
- }
- }
- }
- rule 192_168_133_244 {
- match {
- destination-address 192.168.133.244/32;
- }
- then {
- static-nat {
- prefix {
- 10.3.2.5/32;
- }
- }
- }
- }
- rule 192_168_133_245 {
- match {
- destination-address 192.168.133.245/32;
- }
- then {
- static-nat {
- prefix {
- 10.3.1.1/32;
- }
- }
- }
- }
- rule 192_168_133_246 {
- match {
- destination-address 192.168.133.246/32;
- }
- then {
- static-nat {
- prefix {
- 10.5.0.18/32;
- }
- }
- }
- }
- rule 192_168_133_247 {
- match {
- destination-address 192.168.133.247/32;
- }
- then {
- static-nat {
- prefix {
- 10.5.0.21/32;
- }
- }
- }
- }
- rule 192_168_133_248 {
- match {
- destination-address 192.168.133.248/32;
- }
- then {
- static-nat {
- prefix {
- 10.5.0.8/32;
- }
- }
- }
- }
- rule 192_168_133_250 {
- match {
- destination-address 192.168.133.250/32;
- }
- then {
- static-nat {
- prefix {
- 10.23.1.2/32;
- }
- }
- }
- }
- rule 192_168_133_251 {
- match {
- destination-address 192.168.133.251/32;
- }
- then {
- static-nat {
- prefix {
- 10.23.1.3/32;
- }
- }
- }
- }
- rule 192_168_133_252 {
- match {
- destination-address 192.168.133.252/32;
- }
- then {
- static-nat {
- prefix {
- 10.2.5.1/32;
- }
- }
- }
- }
- rule 192_168_133_253 {
- match {
- destination-address 192.168.133.253/32;
- }
- then {
- static-nat {
- prefix {
- 10.2.5.2/32;
- }
- }
- }
- }
- rule 192_168_133_254 {
- match {
- destination-address 192.168.133.254/32;
- }
- then {
- static-nat {
- prefix {
10.2.5.23/32;
}
}
}
}
- }
- rule-set UNTRUST {
- from zone UNTRUST;
- rule 164_058_058_170 {
+ rule 156_110_043_110 {
match {
- destination-address 164.58.58.170/32;
+ destination-address 156.110.43.110/32;
}
then {
static-nat {
prefix {
- 10.195.0.24/32;
+ 10.2.11.23/32;
}
}
}
@@ -2341,18 +1953,6 @@
vlan.3;
}
}
- security-zone HP-VPN-LINK {
- host-inbound-traffic {
- system-services {
- ping;
- traceroute;
- ike;
- }
- }
- interfaces {
- vlan.5;
- }
- }
security-zone HP-VPN {
host-inbound-traffic {
system-services {
@@ -2415,17 +2015,6 @@
}
}
}
-routing-instances {
- HP-VPN-LINK {
- instance-type virtual-router;
- interface vlan.5;
- routing-options {
- static {
- route 0.0.0.0/0 next-hop 128.212.228.89;
- }
- }
- }
-}
vlans {
VLAN-10 {
vlan-id 10;
@@ -2451,10 +2040,6 @@
vlan-id 40;
l3-interface vlan.40;
}
- VLAN-5 {
- vlan-id 5;
- l3-interface vlan.5;
- }
VLAN-50 {
vlan-id 50;
l3-interface vlan.50;
More information about the Nocrancid
mailing list