[Nocrancid] autopop-onenet.net router config diffs
rancid at rancid.noc.onenet.net
rancid at rancid.noc.onenet.net
Wed Mar 2 11:02:28 CST 2016
Index: configs/maysville-es.client.onenet.net
===================================================================
--- configs/maysville-es.client.onenet.net (revision 140367)
+++ configs/maysville-es.client.onenet.net (working copy)
@@ -1,7 +1,6 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at MAYSVILLE-ES-LEASED-ASSET-TAG-004945> show system commit
-# show chassis environment
# 2015-10-26 13:12:04 CDT by admin via cli
# 2015-10-26 13:08:26 CDT by admin via cli
# 2015-10-26 12:58:03 CDT by admin via cli
@@ -29,6 +28,7 @@
# Slot 0 information:
# State Online
# Total CPU DRAM ---- CPU less FPC ----
+# show chassis hardware
#
# grnoc-mon at MAYSVILLE-ES-LEASED-ASSET-TAG-004945> show chassis hardware
# Hardware inventory:
Index: configs/faye.okcdc.onenet.net
===================================================================
--- configs/faye.okcdc.onenet.net (revision 140354)
+++ configs/faye.okcdc.onenet.net (working copy)
@@ -1,12 +1,12 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at FAYE-MX104-RE0> show system commit
+# 2016-03-02 10:46:03 CST by andrew via cli
# 2016-03-01 23:44:09 CST by andrew via cli
# 2016-02-29 18:17:51 CST by andrew via cli
# 2016-02-26 12:03:12 CST by andrew via cli
# 2016-02-26 11:59:53 CST by andrew via cli
# 2016-02-25 16:58:30 CST by andrew via cli
-# 2016-02-25 16:28:15 CST by andrew via cli
# grnoc-mon at FAYE-MX104-RE0> show chassis environment
# Class Item Status Measurement
# Temp PEM 0 OK
@@ -248,7 +248,7 @@
# grnoc-mon at FAYE-MX104-RE0> show system uptime
# System booted: 2016-02-14 17:30 CST
# Protocols started: 2016-02-14 17:39 CST
-# Last configured: 2016-03-01 23:44 CST by andrew
+# Last configured: 2016-03-02 10:46 CST by andrew
#
# grnoc-mon at FAYE-MX104-RE0> show interface terse
#Interface Admin Link
@@ -318,7 +318,6 @@
#ge-1/1/8 up up
#ge-1/1/8.0 up up
#ge-1/1/9 up up
-#ge-1/1/9.2550 up up
#ge-1/1/9.32767 up up
#xe-2/0/0 up up
#xe-2/0/0.42 up up
@@ -350,7 +349,6 @@
#lo0.16384 up up
#lo0.16385 up up
#lsi up up
-#lsi.1 up up
#lsi.2 up up
#lsi.1048576 up up
#lsi.1048577 up up
@@ -383,7 +381,7 @@
#pp0 up up
#tap up up
# grnoc-mon at FAYE-MX104-RE0> show configuration
-## Last commit: 2016-03-01 23:44:09 CST by andrew
+## Last commit: 2016-03-02 10:46:03 CST by andrew
version 13.3R8.7;
groups {
re0 {
@@ -925,14 +923,6 @@
description "TULSA VPN HEADEND TRUST [NO-MONITOR]";
vlan-tagging;
mtu 9014;
- unit 2550 {
- description "OMES MGMT [NO-MONITOR]";
- vlan-id 2550;
- family inet {
- mtu 1500;
- address 10.119.40.12/31;
- }
- }
}
xe-2/0/0 {
description "CORE 10GE to core1.okc xe-3/0/0 | OneNet-OKC-RP3-XE-XXXX [NO-MONITOR]";
@@ -1658,60 +1648,6 @@
then accept;
}
}
- policy-statement OMES-EXPORT-BGP-TO-OSPF {
- term DEFAULT-EXPORT {
- from {
- protocol bgp;
- route-filter 0.0.0.0/0 exact;
- }
- then accept;
- }
- term REJECT-ALL-ELSE {
- then reject;
- }
- }
- policy-statement OMES-MGMT-VRF-EXPORT {
- term 1 {
- from protocol static;
- then {
- community add OMES-MGMT-VPN;
- accept;
- }
- }
- term 2 {
- from protocol direct;
- then {
- community add OMES-MGMT-VPN;
- accept;
- }
- }
- term 3 {
- from protocol ospf;
- then {
- community add OMES-MGMT-VPN;
- accept;
- }
- }
- term 4 {
- from protocol bgp;
- then {
- community add OMES-MGMT-VPN;
- accept;
- }
- }
- }
- policy-statement OMES-MGMT-VRF-IMPORT {
- term 1 {
- from {
- protocol bgp;
- community OMES-MGMT-VPN;
- }
- then accept;
- }
- term 2 {
- then reject;
- }
- }
policy-statement ONENET-MGMT-VRF-EXPORT {
term 1 {
from protocol static;
@@ -1804,7 +1740,6 @@
invert-match;
members 5078:*;
}
- community OMES-MGMT-VPN members target:5078:2550;
community ONENET-MGMT-VPN members target:5078:2543;
community ONENET_ADV_AKAMAI members 5078:5400;
community ONENET_ADV_FACEBOOK members 5078:5600;
@@ -2333,24 +2268,6 @@
}
}
routing-instances {
- OMES-MGMT-L3VPN {
- description OMES-MGMT-L3VPN;
- instance-type vrf;
- interface ge-1/1/9.2550;
- route-distinguisher 164.58.199.69:2550;
- vrf-import OMES-MGMT-VRF-IMPORT;
- vrf-export OMES-MGMT-VRF-EXPORT;
- vrf-target target:5078:2550;
- vrf-table-label;
- protocols {
- ospf {
- export OMES-EXPORT-BGP-TO-OSPF;
- area 0.0.0.0 {
- interface ge-1/1/9.2550;
- }
- }
- }
- }
ONENET-MGMT-L3VPN {
description ONENET-MGMT-L3VPN;
instance-type vrf;
Index: configs/rpswi2.rp1f3.onenet.net
===================================================================
--- configs/rpswi2.rp1f3.onenet.net (revision 140367)
+++ configs/rpswi2.rp1f3.onenet.net (working copy)
@@ -436,8 +436,8 @@
#ge-0/0/15.0 up down
#ge-0/0/16 up up
#ge-0/0/16.0 up up
-#ge-0/0/17 up down
-#ge-0/0/17.0 up down
+#ge-0/0/17 up up
+#ge-0/0/17.0 up up
#ge-0/0/18 up up
#ge-0/0/18.0 up up
#ge-0/0/19 up up
Index: configs/stringtown-high-school.client.onenet.net
===================================================================
--- configs/stringtown-high-school.client.onenet.net (revision 140367)
+++ configs/stringtown-high-school.client.onenet.net (working copy)
@@ -20,7 +20,6 @@
# Power Power Supply 0 OK
#
# grnoc-mon at STRINGTOWN-HIGH-SCHOOL-TAG-004909> show chassis firmware
-# show chassis fpc detail
# Part Type Version
# FPC 0 O/S Version 12.1X44-D35.5 by builder on 2014-05
# FWDD O/S Version 12.1X44-D35.5 by builder on 2014-05
Index: configs/maysville-hs.client.onenet.net
===================================================================
--- configs/maysville-hs.client.onenet.net (revision 140367)
+++ configs/maysville-hs.client.onenet.net (working copy)
@@ -22,7 +22,6 @@
# Power Power Supply 0 OK
#
# grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> show chassis firmware
-# show chassis fpc detail
# Part Type Version
# FPC 0 O/S Version 12.1X44-D35.5 by builder on 2014-05
# FWDD O/S Version 12.1X44-D35.5 by builder on 2014-05
@@ -115,11 +114,10 @@
# WARNING: / was not properly dismounted
#
# grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> show version
-# Hostname: MAYSVILLE-HS-LEASED-ASSET-TAG-004887 # Model: srx240h2 # file list /var/tmp detail # JUNOS Software Release [12.1X44-D35.5] # # grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> file list /var/tmp detail # lrw-r--r-- 1 root wheel 11 May 19 2014 /var/tmp@ -> /cf/var/tmp
+# Hostname: MAYSVILLE-HS-LEASED-ASSET-TAG-004887 # Model: srx240h2 # JUNOS Software Release [12.1X44-D35.5] # # grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> file list /var/tmp detail # lrw-r--r-- 1 root wheel 11 May 19 2014 /var/tmp@ -> /cf/var/tmp
# total files: 1
#
# grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> show system uptime
-# show interface terse
# System booted: 2016-01-11 12:47 CST
# Protocols started: 2016-01-11 12:50 CST
# Last configured: 2016-01-27 15:43 CST by joel
@@ -175,7 +173,6 @@
#vlan up up
#vlan.999 up down
# grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> show configuration
-show ospf neighbor
## Last commit: 2016-01-27 15:43:17 CST by joel
version 12.1X44-D35.5;
system {
@@ -603,7 +600,6 @@
# OSPF instance is not running
#
# grnoc-mon at MAYSVILLE-HS-LEASED-ASSET-TAG-004887> show bfd session
-quit
0 sessions, 0 clients
Cumulative transmit rate 0.0 pps, cumulative receive rate 0.0 pps
Index: configs/okc-vpn-cluster.okc.onenet.net
===================================================================
--- configs/okc-vpn-cluster.okc.onenet.net (revision 140354)
+++ configs/okc-vpn-cluster.okc.onenet.net (working copy)
@@ -1,12 +1,12 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at OKC-VPN-CLUSTER-NODE0> show system commit
+# 2016-03-02 10:23:11 CST by andrew via cli commit confirmed, rollback in 3mins
# 2016-03-01 23:35:59 CST by andrew via cli
# 2016-03-01 23:26:20 CST by andrew via cli commit confirmed, rollback in 10mins
# 2016-03-01 22:54:10 CST by andrew via cli commit confirmed, rollback in 10mins
# 2016-03-01 22:48:17 CST by andrew via cli commit confirmed, rollback in 10mins
# 2016-03-01 22:12:55 CST by andrew via cli
-# 2016-03-01 22:08:31 CST by andrew via cli
# grnoc-mon at OKC-VPN-CLUSTER-NODE0> show chassis environment
# node0:
# --------------------------------------------------------------------------
@@ -234,12 +234,12 @@
# --------------------------------------------------------------------------
# System booted: 2016-03-01 19:49 CST
# Protocols started: 2016-03-01 20:04 CST
-# Last configured: 2016-03-01 23:35 CST by andrew
+# Last configured: 2016-03-02 10:23 CST by andrew
#
# node1:
# --------------------------------------------------------------------------
# System booted: 2016-03-01 19:35 CST
-# Last configured: 2016-03-01 23:35 CST by root
+# Last configured: 2016-03-02 10:23 CST by root
#
# {primary:node0}
# grnoc-mon at OKC-VPN-CLUSTER-NODE0> show interface terse
@@ -335,11 +335,15 @@
#reth1.32767 up up
#st0 up up
#st0.0 up up
+#st0.1 up up
#st0.2 up up
+#st0.3 up up
#st0.4 up up
#st0.5 up up
+#st0.6 up up
#st0.7 up up
#st0.8 up up
+#st0.9 up up
#st0.10 up up
#st0.11 up up
#swfab0 up down
@@ -347,7 +351,7 @@
#tap up up
#vlan up up
# grnoc-mon at OKC-VPN-CLUSTER-NODE0> show configuration
-## Last commit: 2016-03-01 23:35:59 CST by andrew
+## Last commit: 2016-03-02 10:23:11 CST by andrew
version 12.1X46-D40.2;
groups {
node0 {
@@ -661,6 +665,13 @@
address 164.58.23.241/30;
}
}
+ unit 1 {
+ description "ODOT-KINGFISHER-MGMT [NO-MONITOR]";
+ family inet {
+ mtu 1440;
+ address 10.119.11.8/31;
+ }
+ }
unit 2 {
description "ODOT-KINGFISHER-AGENCY-DATA [NO-MONITOR]";
family inet {
@@ -668,6 +679,13 @@
address 10.119.8.8/31;
}
}
+ unit 3 {
+ description "OTRD-ROMAN-NOSE-MGMT [NO-MONITOR]";
+ family inet {
+ mtu 1440;
+ address 10.119.42.6/31;
+ }
+ }
unit 4 {
description "OTRD-ROMAN-NOSE-DATA [NO-MONITOR]";
family inet {
@@ -682,6 +700,13 @@
address 10.119.26.12/31;
}
}
+ unit 6 {
+ description "OTRD-BEAVERS-BEND-MGMT [NO-MONITOR]";
+ family inet {
+ mtu 1440;
+ address 10.119.42.8/31;
+ }
+ }
unit 7 {
description "OTRD-BEAVERS-BEND-DATA [NO-MONITOR]";
family inet {
@@ -696,6 +721,13 @@
address 10.119.48.148/31;
}
}
+ unit 9 {
+ description "DHS-CARTER-COUNTY-MGMT [NO-MONITOR]";
+ family inet {
+ mtu 1440;
+ address 10.119.72.14/31;
+ }
+ }
unit 10 {
description "DHS-CARTER-COUNTY-DATA [NO-MONITOR]";
family inet {
@@ -871,6 +903,26 @@
proposals PRE-G2-AES128-SHA;
# pre-shared-#key <removed>;
}
+ policy IKE-OTRD-MGMT-BEAV-BEND {
+ mode aggressive;
+ proposals PRE-G2-AES128-SHA;
+# pre-shared-#key <removed>;
+ }
+ policy IKE-DHS-MGMT-CARTER {
+ mode main;
+ proposals PRE-G2-AES128-SHA;
+# pre-shared-#key <removed>;
+ }
+ policy IKE-ODOT-MGMT-KINGFISHER {
+ mode main;
+ proposals PRE-G2-AES128-SHA;
+# pre-shared-#key <removed>;
+ }
+ policy IKE-OTRD-MGMT-ROMAN-NOSE {
+ mode aggressive;
+ proposals PRE-G2-AES128-SHA;
+# pre-shared-#key <removed>;
+ }
gateway IKE-GATE-COMANCHE-PS {
ike-policy IKE-COMANCHE-PS;
address 166.141.5.145;
@@ -920,6 +972,30 @@
external-interface lo0.0;
local-address 164.58.0.253;
}
+ gateway IKE-GATE-OTRD-MGMT-BEAV-BEND {
+ ike-policy IKE-OTRD-MGMT-BEAV-BEND;
+ dynamic user-at-hostname "beaversbendmgmt at otrd.ok.gov";
+ external-interface lo0.0;
+ local-address 164.58.0.252;
+ }
+ gateway IKE-GATE-DHS-MGMT-CARTER {
+ ike-policy IKE-DHS-MGMT-CARTER;
+ address 166.130.131.48;
+ external-interface lo0.0;
+ local-address 164.58.0.252;
+ }
+ gateway IKE-GATE-ODOT-MGMT-KINGFISHER {
+ ike-policy IKE-ODOT-MGMT-KINGFISHER;
+ address 166.130.159.232;
+ external-interface lo0.0;
+ local-address 164.58.0.252;
+ }
+ gateway IKE-GATE-OTRD-MGMT-ROMAN-NOSE {
+ ike-policy IKE-OTRD-MGMT-ROMAN-NOSE;
+ dynamic user-at-hostname "romannosemgmt at otrd.ok.gov";
+ external-interface lo0.0;
+ local-address 164.58.0.252;
+ }
}
ipsec {
proposal ESP-AES128-SHA {
@@ -952,6 +1028,18 @@
policy VPN-POLICY-ODOT-DATA-KINGFISHER {
proposals ESP-AES128-SHA;
}
+ policy VPN-POLICY-OTRD-MGMT-BEAV-BEND {
+ proposals ESP-AES128-SHA;
+ }
+ policy VPN-POLICY-DHS-MGMT-CARTER {
+ proposals ESP-AES128-SHA;
+ }
+ policy VPN-POLICY-ODOT-MGMT-KINGFISHER {
+ proposals ESP-AES128-SHA;
+ }
+ policy VPN-POLICY-OTRD-MGMT-ROMAN-NOSE {
+ proposals ESP-AES128-SHA;
+ }
vpn IPSEC-VPN-COMANCHE-PS {
bind-interface st0.0;
ike {
@@ -1031,6 +1119,48 @@
}
establish-tunnels immediately;
}
+ vpn IPSEC-VPN-OTRD-MGMT-BEAV-BEND {
+ bind-interface st0.6;
+ ike {
+ gateway IKE-GATE-OTRD-MGMT-BEAV-BEND;
+ ipsec-policy VPN-POLICY-OTRD-MGMT-BEAV-BEND;
+ }
+ establish-tunnels immediately;
+ }
+ vpn IPSEC-VPN-DHS-MGMT-CARTER {
+ bind-interface st0.9;
+ vpn-monitor {
+ optimized;
+ source-interface st0.9;
+ destination-ip 10.119.72.15;
+ }
+ ike {
+ gateway IKE-GATE-DHS-MGMT-CARTER;
+ ipsec-policy VPN-POLICY-DHS-MGMT-CARTER;
+ }
+ establish-tunnels immediately;
+ }
+ vpn IPSEC-VPN-ODOT-MGMT-KINGFISHER {
+ bind-interface st0.1;
+ vpn-monitor {
+ optimized;
+ source-interface st0.1;
+ destination-ip 10.119.11.9;
+ }
+ ike {
+ gateway IKE-GATE-ODOT-MGMT-KINGFISHER;
+ ipsec-policy VPN-POLICY-ODOT-MGMT-KINGFISHER;
+ }
+ establish-tunnels immediately;
+ }
+ vpn IPSEC-VPN-OTRD-MGMT-ROMAN-NOSE {
+ bind-interface st0.3;
+ ike {
+ gateway IKE-GATE-OTRD-MGMT-ROMAN-NOSE;
+ ipsec-policy VPN-POLICY-OTRD-MGMT-ROMAN-NOSE;
+ }
+ establish-tunnels immediately;
+ }
}
alg {
msrpc disable;
@@ -1225,6 +1355,54 @@
}
}
}
+ st0.1 {
+ host-inbound-traffic {
+ system-services {
+ ping;
+ traceroute;
+ }
+ protocols {
+ bgp;
+ ospf;
+ }
+ }
+ }
+ st0.3 {
+ host-inbound-traffic {
+ system-services {
+ ping;
+ traceroute;
+ }
+ protocols {
+ bgp;
+ ospf;
+ }
+ }
+ }
+ st0.6 {
+ host-inbound-traffic {
+ system-services {
+ ping;
+ traceroute;
+ }
+ protocols {
+ bgp;
+ ospf;
+ }
+ }
+ }
+ st0.9 {
+ host-inbound-traffic {
+ system-services {
+ ping;
+ traceroute;
+ }
+ protocols {
+ bgp;
+ ospf;
+ }
+ }
+ }
}
}
security-zone OMES-AGENCY-DATA {
@@ -1485,10 +1663,18 @@
OMES-MGMT {
instance-type virtual-router;
interface reth1.600;
+ interface st0.1;
+ interface st0.3;
+ interface st0.6;
+ interface st0.9;
protocols {
ospf {
area 0.0.0.0 {
interface reth1.600;
+ interface st0.1;
+ interface st0.3;
+ interface st0.6;
+ interface st0.9;
}
}
}
Index: configs/hub.tsb.onenet.net
===================================================================
--- configs/hub.tsb.onenet.net (revision 140367)
+++ configs/hub.tsb.onenet.net (working copy)
@@ -198,7 +198,7 @@
# -rw-rw---- 1 root field 51994624 Oct 24 2013 ifinfo.core.1
# -rw-rw---- 1 root field 51974144 Oct 24 2013 ifinfo.core.2
# -rw-rw---- 1 root field 52744192 Oct 24 2013 ifinfo.core.3
-# -rw-rw---- 1 root field 52727808 Mar 2 09:58 ifinfo.core.4
+# -rw-rw---- 1 root field 52727808 Mar 2 10:58 ifinfo.core.4
# drwxrwxrwx 2 root wheel 512 Oct 12 2012 install/
# -rw-rw---- 1 root field 33464320 Mar 3 2014 jdiameterd.core.0
# -rw-r--r-- 1 eng field 99542994 Apr 23 2013 jinstall-ppc-11.4R7.5-domestic-signed.tgz
Index: configs/core.sem.onenet.net
===================================================================
--- configs/core.sem.onenet.net (revision 140322)
+++ configs/core.sem.onenet.net (working copy)
@@ -1,12 +1,12 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at SEMINOLE-MX480-RE0> show system commit
+# 2016-03-02 10:16:32 CST by sky via cli commit synchronize
+# 2016-03-02 10:14:41 CST by sky via cli commit synchronize
# 2016-02-25 16:43:40 CST by sky via cli commit synchronize
# 2016-02-24 10:14:22 CST by andrew via cli commit synchronize
# 2016-02-05 16:29:23 CST by andrew via cli commit synchronize
# 2016-01-29 12:32:38 CST by andrew via cli commit synchronize
-# 2016-01-29 12:32:03 CST by andrew via cli commit synchronize
-# 2016-01-29 12:04:29 CST by andrew via cli commit confirmed, rollback in 3mins synchronize
# grnoc-mon at SEMINOLE-MX480-RE0> show chassis environment
# Class Item Status Measurement
# Temp PEM 0 OK
@@ -261,7 +261,7 @@
# grnoc-mon at SEMINOLE-MX480-RE0> show system uptime
# System booted: 2015-06-07 23:34 CDT
# Protocols started: 2015-06-07 23:36 CDT
-# Last configured: 2016-02-25 16:43 CST by sky
+# Last configured: 2016-03-02 10:16 CST by sky
#
# {master}
# grnoc-mon at SEMINOLE-MX480-RE0> show interface terse
@@ -376,7 +376,7 @@
#pp0 up up
#tap up up
# grnoc-mon at SEMINOLE-MX480-RE0> show configuration
-## Last commit: 2016-02-25 16:43:40 CST by sky
+## Last commit: 2016-03-02 10:16:32 CST by sky
version 13.3R6.5;
groups {
re0 {
@@ -688,7 +688,6 @@
family inet {
mtu 1500;
address 164.58.63.197/30;
- address 164.58.6.65/30;
}
}
unit 501 {
@@ -985,6 +984,7 @@
route 156.110.107.56/29 next-hop 164.58.28.194;
route 164.58.148.40/29 next-hop 164.58.14.54;
route 164.58.148.32/29 next-hop 164.58.14.54;
+ route 156.110.47.96/29 next-hop 164.58.63.198;
}
router-id 164.58.199.47;
autonomous-system 5078;
More information about the Nocrancid
mailing list