[Nocrancid] autopop-onenet.net router config diffs
rancid at rancid.noc.onenet.net
rancid at rancid.noc.onenet.net
Sat Aug 26 15:05:10 CDT 2017
Index: configs/kiamichi-fmc-battiest.client.onenet.net
===================================================================
--- configs/kiamichi-fmc-battiest.client.onenet.net (revision 156068)
+++ configs/kiamichi-fmc-battiest.client.onenet.net (working copy)
@@ -187,7 +187,7 @@
#ppd0 up up
#ppe0 up up
#st0 up up
-#st0.1 up up
+#st0.1 up down
#st0.2 up up
#tap up up
#vlan up down
Index: configs/core.wless.velm.onenet.net
===================================================================
--- configs/core.wless.velm.onenet.net (revision 155858)
+++ configs/core.wless.velm.onenet.net (working copy)
@@ -910,8 +910,8 @@
# grnoc-mon at VELMA-TOWER-SRX220> show bfd session
Detect Transmit
Address State Interface Time Interval Multiplier
-164.58.247.81 Up ge-0/0/0.0 1.200 0.400 3
+164.58.247.81 Down ge-0/0/0.0 3.000 1.000 3
1 sessions, 1 clients
-Cumulative transmit rate 2.5 pps, cumulative receive rate 2.5 pps
+Cumulative transmit rate 1.0 pps, cumulative receive rate 1.0 pps
Index: configs/core4.okc.onenet.net
===================================================================
--- configs/core4.okc.onenet.net (revision 156108)
+++ configs/core4.okc.onenet.net (working copy)
@@ -1,12 +1,12 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at OKC-CORE4-MX480-RE0> show system commit
+# 2017-08-26 14:23:40 CDT by andrew via cli commit synchronize
+# 2017-08-26 14:02:28 CDT by andrew via cli commit synchronize
# 2017-08-26 12:36:53 CDT by andrew via cli commit synchronize
# 2017-08-25 15:11:19 CDT by sky via cli commit synchronize
# 2017-08-24 13:53:09 CDT by andrew via cli commit synchronize
# 2017-08-24 13:42:26 CDT by andrew via cli commit synchronize
-# 2017-08-24 13:41:38 CDT by andrew via cli commit synchronize
-# 2017-08-24 13:38:09 CDT by andrew via cli commit synchronize
# grnoc-mon at OKC-CORE4-MX480-RE0> show chassis environment
# Class Item Status Measurement
# Temp PEM 0 OK
@@ -549,7 +549,7 @@
# grnoc-mon at OKC-CORE4-MX480-RE0> show system uptime
# System booted: 2016-10-12 18:12 CDT
# Protocols started: 2016-10-12 18:14 CDT
-# Last configured: 2017-08-26 12:36 CDT by andrew
+# Last configured: 2017-08-26 14:23 CDT by andrew
#
# {master}
# grnoc-mon at OKC-CORE4-MX480-RE0> show interface terse
@@ -1485,7 +1485,7 @@
#pp0 up up
#tap up up
# grnoc-mon at OKC-CORE4-MX480-RE0> show configuration
-## Last commit: 2017-08-26 12:36:53 CDT by andrew
+## Last commit: 2017-08-26 14:23:40 CDT by andrew
version 13.3R9.13;
groups {
re0 {
@@ -9558,6 +9558,14 @@
route 164.58.253.82/32 next-hop 164.58.0.245;
route 10.199.10.64/27 next-hop 156.110.25.30;
route 10.199.10.96/27 next-hop 156.110.25.30;
+ route 164.58.2.192/28 next-hop 164.58.1.125;
+ route 164.58.58.116/30 next-hop 164.58.1.125;
+ route 156.110.87.200/29 next-hop 164.58.1.125;
+ route 156.110.87.208/29 next-hop 164.58.1.125;
+ route 164.58.72.16/29 next-hop 164.58.1.125;
+ route 164.58.184.232/30 next-hop 164.58.1.125;
+ route 156.110.54.160/28 next-hop 164.58.1.125;
+ route 156.110.34.128/30 next-hop 164.58.1.125;
}
router-id 164.58.199.214;
autonomous-system 5078;
Index: configs/core.law.onenet.net
===================================================================
--- configs/core.law.onenet.net (revision 156109)
+++ configs/core.law.onenet.net (working copy)
@@ -1,12 +1,12 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at LAWTON-MX480-RE0> show system commit
+# 2017-08-26 14:45:48 CDT by andrew via cli commit synchronize
+# 2017-08-26 14:23:46 CDT by andrew via cli commit synchronize
# 2017-08-26 13:14:16 CDT by andrew via cli commit synchronize
# 2017-08-24 16:08:56 CDT by joel via cli commit synchronize
# 2017-08-24 15:47:52 CDT by joel via cli commit synchronize
# 2017-08-21 22:15:30 CDT by andrew via cli commit synchronize
-# 2017-08-11 23:01:12 CDT by andrew via cli commit synchronize
-# 2017-08-11 22:49:13 CDT by andrew via cli commit synchronize
# grnoc-mon at LAWTON-MX480-RE0> show chassis environment
# Class Item Status Measurement
# Temp PEM 0 OK
@@ -451,7 +451,7 @@
# grnoc-mon at LAWTON-MX480-RE0> show system uptime
# System booted: 2016-03-16 01:11 CDT
# Protocols started: 2016-03-16 01:22 CDT
-# Last configured: 2017-08-26 13:14 CDT by andrew
+# Last configured: 2017-08-26 14:45 CDT by andrew
#
# {master}
# grnoc-mon at LAWTON-MX480-RE0> show interface terse
@@ -713,7 +713,7 @@
#pp0 up up
#tap up up
# grnoc-mon at LAWTON-MX480-RE0> show configuration
-## Last commit: 2017-08-26 13:14:16 CDT by andrew
+## Last commit: 2017-08-26 14:45:48 CDT by andrew
version 13.3R8.7;
groups {
re0 {
@@ -2085,14 +2085,8 @@
}
route 198.17.223.0/24 next-hop 164.58.221.162;
route 164.58.112.0/21 next-hop 164.58.221.162;
- route 156.110.87.200/29 next-hop 164.58.58.118;
- route 156.110.87.208/29 next-hop 164.58.58.118;
- route 164.58.72.16/29 next-hop 164.58.58.118;
- route 164.58.184.232/30 next-hop 164.58.58.118;
route 156.110.47.160/29 next-hop 164.58.17.179;
- route 156.110.54.160/28 next-hop 164.58.58.118;
route 156.110.50.28/30 next-hop 172.23.5.70;
- route 156.110.34.128/30 next-hop 164.58.58.118;
}
router-id 164.58.199.202;
autonomous-system 5078;
@@ -3710,11 +3704,25 @@
CITY-OF-LAWTON-INTERNET-L3VPN {
description CITY-OF-LAWTON-INTERNET-L3VPN;
instance-type vrf;
+ interface ge-0/2/4.500;
route-distinguisher 164.58.199.202:2567;
vrf-import CITY-OF-LAWTON-INTERNET-VRF-IMPORT;
vrf-export CITY-OF-LAWTON-INTERNET-VRF-EXPORT;
vrf-target target:5078:2567;
vrf-table-label;
+ routing-options {
+ static {
+ route 156.110.87.200/29 next-hop 164.58.58.118;
+ route 156.110.87.208/29 next-hop 164.58.58.118;
+ route 164.58.72.16/29 next-hop 164.58.58.118;
+ route 164.58.184.232/30 next-hop 164.58.58.118;
+ route 156.110.54.160/28 next-hop 164.58.58.118;
+ route 156.110.34.128/30 next-hop 164.58.58.118;
+ route 172.16.0.0/12 next-hop 164.58.58.118;
+ route 10.0.0.0/8 next-hop 164.58.58.118;
+ route 192.168.0.0/16 next-hop 164.58.58.118;
+ }
+ }
}
DOH-L3VPN {
description DOH-L3VPN;
Index: configs/hub.dur.onenet.net
===================================================================
--- configs/hub.dur.onenet.net (revision 156109)
+++ configs/hub.dur.onenet.net (working copy)
@@ -433,7 +433,7 @@
#fe-2/1/1 up up
#fe-2/1/1.0 up up
#fe-2/1/2 up down
-#fe-2/1/3 down down
+#fe-2/1/3 down up
#ge-2/2/0 up up
#ge-2/2/0.0 up up
#pc-2/2/0 up up
Index: configs/city-of-lawton.client.onenet.net
===================================================================
--- configs/city-of-lawton.client.onenet.net (revision 156109)
+++ configs/city-of-lawton.client.onenet.net (working copy)
@@ -1,12 +1,12 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at CITY-OF-LAWTON-TAG-005231> show system commit
+# 2017-08-26 14:53:13 CDT by joel via cli commit confirmed, rollback in 5mins
# 2017-08-26 13:27:29 CDT by joel via cli
# 2017-08-26 12:06:25 CDT by joel via cli commit confirmed, rollback in 5mins
# 2017-08-26 11:40:16 CDT by joel via cli
# 2017-08-26 11:35:12 CDT by joel via cli commit confirmed, rollback in 5mins
# 2017-08-26 09:35:34 CDT by joel via cli commit confirmed, rollback in 15mins
-# 2017-08-25 21:45:45 CDT by joel via cli commit confirmed, rollback in 5mins
# grnoc-mon at CITY-OF-LAWTON-TAG-005231> show chassis environment
# Class Item Status Measurement
# Temp Routing Engine OK
@@ -133,7 +133,7 @@
# Time Source: NTP CLOCK
# System booted: 2017-08-25 14:03 CDT
# Protocols started: 2017-08-25 14:03 CDT
-# Last configured: 2017-08-26 13:27 CDT by joel
+# Last configured: 2017-08-26 14:53 CDT by joel
#
# grnoc-mon at CITY-OF-LAWTON-TAG-005231> show interface terse
#Interface Admin Link
@@ -194,7 +194,7 @@
#vlan up down
#vtep up up
# grnoc-mon at CITY-OF-LAWTON-TAG-005231> show configuration
-## Last commit: 2017-08-26 13:27:29 CDT by joel
+## Last commit: 2017-08-26 14:53:13 CDT by joel
version 15.1X49-D90.7;
groups {
DENY-ALL-ELSE {
@@ -739,6 +739,7 @@
address ABUSE-212.23.0.100 212.23.0.100/32;
address ABUSE-64.90.40.26 64.90.40.26/32;
address ABUSE-162.252.172.79 162.252.172.79/32;
+ address NAT-EXEMPT-ACTIVE-DIRECTORY-164.58.2.192/28 164.58.2.192/28;
address-set VERIZON-STATIC-FT-SILL-1 {
description "Fort Sill MP Static IPs for CAD Access";
address VERIZON-STATIC-FT-SILL-1-166.148.145.240;
@@ -1001,6 +1002,17 @@
rule-set TRUST-TO-UNTRUST-NAT {
from zone TRUST;
to zone UNTRUST;
+ rule NAT-EXEMPT-DC1 {
+ match {
+ source-address [ 172.16.1.3/32 172.16.1.4/32 ];
+ destination-address 164.58.2.192/28;
+ }
+ then {
+ source-nat {
+ off;
+ }
+ }
+ }
rule MS-EXCHANGE-DAG-OUTSIDE {
match {
source-address [ 172.16.1.180/32 172.16.1.176/32 172.16.1.177/32 ];
@@ -1354,6 +1366,16 @@
}
}
}
+ policy NAT-EXEMPT-ACTIVE-DIRECTORY-POLICY-OUT {
+ match {
+ source-address [ SERVER-DC1-172.16.1.3 SERVER-DC2-172.16.1.4 ];
+ destination-address NAT-EXEMPT-ACTIVE-DIRECTORY-164.58.2.192/28;
+ application any;
+ }
+ then {
+ permit;
+ }
+ }
policy TRUST-TO-UNTRUST {
match {
source-address any;
@@ -1403,6 +1425,16 @@
}
}
}
+ policy NAT-EXEMPT-ACTIVE-DIRECTORY-POLICY {
+ match {
+ source-address NAT-EXEMPT-ACTIVE-DIRECTORY-164.58.2.192/28;
+ destination-address [ SERVER-DC1-172.16.1.3 SERVER-DC2-172.16.1.4 ];
+ application any;
+ }
+ then {
+ permit;
+ }
+ }
policy ALLOW-TO-CITY-OF {
description "www ftp access to www.cityof.lawton.ok.us";
match {
More information about the Nocrancid
mailing list