[Nocrancid] autopop-onenet.net router config diffs
rancid at rancid.noc.onenet.net
rancid at rancid.noc.onenet.net
Wed Nov 18 15:01:57 CST 2015
Index: configs/maysville-es.client.onenet.net
===================================================================
--- configs/maysville-es.client.onenet.net (revision 136912)
+++ configs/maysville-es.client.onenet.net (working copy)
@@ -20,6 +20,7 @@
# Power Power Supply 0 OK
#
# grnoc-mon at MAYSVILLE-ES-LEASED-ASSET-TAG-004945> show chassis firmware
+# show chassis fpc detail
# Part Type Version
# FPC 0 O/S Version 12.1X44-D35.5 by builder on 2014-05
# FWDD O/S Version 12.1X44-D35.5 by builder on 2014-05
@@ -46,7 +47,6 @@
# grnoc-mon at MAYSVILLE-ES-LEASED-ASSET-TAG-004945> show chassis scb
# grnoc-mon at MAYSVILLE-ES-LEASED-ASSET-TAG-004945> show chassis sfm detail
# grnoc-mon at MAYSVILLE-ES-LEASED-ASSET-TAG-004945> show chassis ssb
-# show system boot-messages
# grnoc-mon at MAYSVILLE-ES-LEASED-ASSET-TAG-004945> show system boot-messages
# kld_map_v: 0x8ff80000, kld_map_p: 0x0
# Copyright (c) 1996-2014, Juniper Networks, Inc.
@@ -170,7 +170,6 @@
#vlan up up
#vlan.999 up down
# grnoc-mon at MAYSVILLE-ES-LEASED-ASSET-TAG-004945> show configuration
-show ospf neighbor
## Last commit: 2015-10-26 13:12:04 CDT by admin
version 12.1X44-D35.5;
system {
Index: configs/core1.lan-mx80.onenet.net
===================================================================
--- configs/core1.lan-mx80.onenet.net (revision 136912)
+++ configs/core1.lan-mx80.onenet.net (working copy)
@@ -196,7 +196,7 @@
# -rw-rw---- 1 root field 52711424 Jun 10 15:37 ifinfo.core.1
# -rw-rw---- 1 root field 52711424 Jun 10 15:40 ifinfo.core.2
# -rw-rw---- 1 root field 52711424 Jun 10 15:47 ifinfo.core.3
-# -rw-rw---- 1 root field 52711424 Nov 18 13:55 ifinfo.core.4
+# -rw-rw---- 1 root field 52711424 Nov 18 14:55 ifinfo.core.4
# drwxrwxrwx 2 root wheel 512 Aug 13 2012 install/
# -rw-r--r-- 1 eng field 99542994 May 30 2013 jinstall-ppc-11.4R7.5-domestic-signed.tgz
# -rw-r--r-- 1 upgrades field 150276951 Aug 8 2014 jinstall-ppc-12.3R7.7-domestic-signed.tgz
Index: configs/swi1.towalt.onenet.net
===================================================================
--- configs/swi1.towalt.onenet.net (revision 136877)
+++ configs/swi1.towalt.onenet.net (working copy)
@@ -180,8 +180,8 @@
#ge-0/0/14 down down
#ge-0/0/15 down down
#ge-0/0/16 down down
-#ge-0/0/17 up down
-#ge-0/0/17.0 up down
+#ge-0/0/17 up up
+#ge-0/0/17.0 up up
#ge-0/0/18 down down
#ge-0/0/19 up up
#ge-0/0/19.0 up up
Index: configs/hub.dur.onenet.net
===================================================================
--- configs/hub.dur.onenet.net (revision 136912)
+++ configs/hub.dur.onenet.net (working copy)
@@ -374,7 +374,7 @@
#fe-2/1/1.0 up up
#fe-2/1/2 up up
#fe-2/1/2.0 up up
-#fe-2/1/3 down down
+#fe-2/1/3 down up
#ge-2/2/0 down down
#pc-2/2/0 up up
#pc-2/2/0.16383 up up
Index: configs/core3.okc-m120.onenet.net
===================================================================
--- configs/core3.okc-m120.onenet.net (revision 136912)
+++ configs/core3.okc-m120.onenet.net (working copy)
@@ -1010,8 +1010,8 @@
#t1-3/3/0:1:7 down down
#t1-3/3/0:1:8 up up
#t1-3/3/0:1:8.0 up up
-#t1-3/3/0:1:9 up down
-#t1-3/3/0:1:9.0 up down
+#t1-3/3/0:1:9 up up
+#t1-3/3/0:1:9.0 up up
#t1-3/3/0:1:10 up up
#t1-3/3/0:1:10.0 up up
#t1-3/3/0:1:11 up up
@@ -1020,15 +1020,15 @@
#t1-3/3/0:1:12.0 up down
#t1-3/3/0:1:13 up up
#t1-3/3/0:1:13.0 up up
-#t1-3/3/0:1:14 up down
+#t1-3/3/0:1:14 up up
#t1-3/3/0:1:14.0 up down
#t1-3/3/0:1:15 down down
#t1-3/3/0:1:15.0 up down
#t1-3/3/0:1:16 down down
#t1-3/3/0:1:17 down down
#t1-3/3/0:1:17.0 up down
-#t1-3/3/0:1:18 up down
-#t1-3/3/0:1:18.0 up down
+#t1-3/3/0:1:18 up up
+#t1-3/3/0:1:18.0 up up
#t1-3/3/0:1:19 up up
#t1-3/3/0:1:19.0 up up
#t1-3/3/0:1:20 down down
@@ -1813,7 +1813,7 @@
#ip-5/1/0 up up
#lsq-5/1/0 up up
#lsq-5/1/0.10 up up
-#lsq-5/1/0.11 up down
+#lsq-5/1/0.11 up up
#lsq-5/1/0.18 up up
#lsq-5/1/0.22 up up
#lsq-5/1/0.30 up up
Index: configs/rpswi2.rp1f3.onenet.net
===================================================================
--- configs/rpswi2.rp1f3.onenet.net (revision 136911)
+++ configs/rpswi2.rp1f3.onenet.net (working copy)
@@ -438,8 +438,8 @@
#ge-0/0/16.0 up up
#ge-0/0/17 up up
#ge-0/0/17.0 up up
-#ge-0/0/18 up up
-#ge-0/0/18.0 up up
+#ge-0/0/18 up down
+#ge-0/0/18.0 up down
#ge-0/0/19 up up
#ge-0/0/19.0 up up
#ge-0/0/20 up up
@@ -598,8 +598,8 @@
#ge-1/0/47.0 up down
#ge-2/0/0 up up
#ge-2/0/0.0 up up
-#ge-2/0/1 up down
-#ge-2/0/1.0 up down
+#ge-2/0/1 up up
+#ge-2/0/1.0 up up
#ge-2/0/2 up up
#ge-2/0/2.0 up up
#ge-2/0/3 up up
Index: configs/acx.cai.hart-acx2100.onenet.net
===================================================================
--- configs/acx.cai.hart-acx2100.onenet.net (revision 136911)
+++ configs/acx.cai.hart-acx2100.onenet.net (working copy)
@@ -73,6 +73,7 @@
# grnoc-mon at HARTSHORNE-PUBLIC-LIBRARY-ACX2100> show chassis sfm detail
# grnoc-mon at HARTSHORNE-PUBLIC-LIBRARY-ACX2100> show chassis ssb
# grnoc-mon at HARTSHORNE-PUBLIC-LIBRARY-ACX2100> show system boot-messages
+# show version
# platform_early_bootinit: MX-PPC Series Early Boot Initialization
# mxppc_set_re_type: hw.board.type is ACX-2100
# WDOG initialized
Index: configs/city-of-lawton.client.onenet.net
===================================================================
--- configs/city-of-lawton.client.onenet.net (revision 136891)
+++ configs/city-of-lawton.client.onenet.net (working copy)
@@ -1,12 +1,12 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at CITY-OF-LAWTON-TAG-004950> show system commit
+# 2015-11-18 14:47:21 CST by joel via cli
+# 2015-11-18 14:46:30 CST by root via other
+# 2015-11-18 14:40:33 CST by joel via cli commit confirmed, rollback in 5mins
+# 2015-11-18 14:25:52 CST by joel via cli commit confirmed, rollback in 5mins
+# 2015-11-18 14:02:44 CST by joel via cli
# 2015-11-18 00:27:38 CST by root via other
-# 2015-11-17 17:20:59 CST by joel via cli commit confirmed, rollback in 5mins
-# 2015-11-17 14:38:24 CST by joel via cli commit confirmed, rollback in 5mins
-# 2015-11-17 10:11:47 CST by joel via cli
-# 2015-11-17 10:07:59 CST by joel via cli
-# 2015-11-17 09:52:40 CST by joel via cli commit confirmed, rollback in 5mins
# grnoc-mon at CITY-OF-LAWTON-TAG-004950> show chassis environment
# Class Item Status Measurement
# Temp Routing Engine OK
@@ -115,7 +115,7 @@
# grnoc-mon at CITY-OF-LAWTON-TAG-004950> show system uptime
# System booted: 2015-11-18 00:25 CST
# Protocols started: 2015-11-18 00:28 CST
-# Last configured: 2015-11-18 00:27 CST by root
+# Last configured: 2015-11-18 14:47 CST by joel
#
# grnoc-mon at CITY-OF-LAWTON-TAG-004950> show interface terse
#Interface Admin Link
@@ -169,7 +169,7 @@
#vlan up up
#vlan.999 up down
# grnoc-mon at CITY-OF-LAWTON-TAG-004950> show configuration
-## Last commit: 2015-11-18 00:27:38 CST by root
+## Last commit: 2015-11-18 14:47:21 CST by joel
version 12.1X46-D20.5;
system {
host-name CITY-OF-LAWTON-TAG-004950;
@@ -964,6 +964,22 @@
}
}
}
+ rule-set DMZ-TO-UNTRUST-NAT {
+ from zone DMZ;
+ to zone UNTRUST;
+ rule ASA-VPN-CONCENTRATOR-TO-UNTRUST {
+ match {
+ source-address 192.168.100.5/32;
+ }
+ then {
+ source-nat {
+ pool {
+ CITY-OF-LAWTON-OUTSIDE;
+ }
+ }
+ }
+ }
+ }
}
static {
rule-set STATIC-NAT {
@@ -1067,13 +1083,13 @@
rule NAT-ASA-VPN-CONCENTRATOR {
match {
destination-address 164.58.72.20/32;
- destination-port 443;
+ destination-port 500;
}
then {
static-nat {
prefix {
192.168.100.5/32;
- mapped-port 443;
+ mapped-port 500;
}
}
}
@@ -1225,7 +1241,7 @@
match {
source-address any;
destination-address HOST-ASA-VPN-CONCENTRATOR-192.168.100.5;
- application junos-https;
+ application [ junos-ike IPSEC ];
}
then {
permit;
@@ -1267,6 +1283,18 @@
}
}
}
+ from-zone DMZ to-zone UNTRUST {
+ policy ALLOW-ASA-VPN-CONCENTRATOR-TO-OUTSIDE {
+ match {
+ source-address HOST-ASA-VPN-CONCENTRATOR-192.168.100.5;
+ destination-address any;
+ application any;
+ }
+ then {
+ permit;
+ }
+ }
+ }
global {
policy ICMP-ALL {
match {
@@ -1402,6 +1430,10 @@
term tcp-8004-8005 protocol tcp destination-port 8004-8005;
term tcp-8080 protocol tcp destination-port 8080;
}
+ application IPSEC {
+ term udp-500 protocol udp destination-port 500;
+ term udp-4500 protocol udp destination-port 4500;
+ }
}
ethernet-switching-options {
secure-access-port {
Index: configs/maysville-hs.client.onenet.net
===================================================================
--- configs/maysville-hs.client.onenet.net (revision 136912)
+++ configs/maysville-hs.client.onenet.net (working copy)
@@ -45,6 +45,7 @@
# Serial ID ACLC7669
#
# grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> show chassis scb
+# show chassis sfm detail
# grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> show chassis sfm detail
# grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> show chassis ssb
# show system boot-messages
@@ -111,7 +112,7 @@
# Trying to mount root from ufs:/dev/da0s1a
#
# grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> show version
-# Hostname: MAYSVILLE-HS-LEASED-ASSET-TAG-004887 # Model: srx240h2 # file list /var/tmp detail # JUNOS Software Release [12.1X44-D35.5] # # grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> file list /var/tmp detail # lrw-r--r-- 1 root wheel 11 May 19 2014 /var/tmp@ -> /cf/var/tmp
+# Hostname: MAYSVILLE-HS-LEASED-ASSET-TAG-004887 # file list /var/tmp detail # Model: srx240h2 # JUNOS Software Release [12.1X44-D35.5] # # grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> file list /var/tmp detail # lrw-r--r-- 1 root wheel 11 May 19 2014 /var/tmp@ -> /cf/var/tmp
# total files: 1
#
# grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> show system uptime
Index: configs/hub.tsb.onenet.net
===================================================================
--- configs/hub.tsb.onenet.net (revision 136912)
+++ configs/hub.tsb.onenet.net (working copy)
@@ -200,7 +200,7 @@
# -rw-rw---- 1 root field 51994624 Oct 24 2013 ifinfo.core.1
# -rw-rw---- 1 root field 51974144 Oct 24 2013 ifinfo.core.2
# -rw-rw---- 1 root field 52744192 Oct 24 2013 ifinfo.core.3
-# -rw-rw---- 1 root field 52727808 Nov 18 13:55 ifinfo.core.4
+# -rw-rw---- 1 root field 52727808 Nov 18 14:55 ifinfo.core.4
# drwxrwxrwx 2 root wheel 512 Oct 12 2012 install/
# -rw-rw---- 1 root field 33464320 Mar 3 2014 jdiameterd.core.0
# -rw-r--r-- 1 eng field 99542994 Apr 23 2013 jinstall-ppc-11.4R7.5-domestic-signed.tgz
More information about the Nocrancid
mailing list