[Nocrancid] autopop-onenet.net router config diffs
rancid at rancid.noc.onenet.net
rancid at rancid.noc.onenet.net
Mon Aug 28 23:05:00 CDT 2017
Index: configs/allen-public-library.client.onenet.net
===================================================================
--- configs/allen-public-library.client.onenet.net (revision 156164)
+++ configs/allen-public-library.client.onenet.net (working copy)
@@ -152,8 +152,8 @@
#ge-0/0/2.0 up up
#ge-0/0/3 up down
#ge-0/0/3.0 up down
-#ge-0/0/4 up up
-#ge-0/0/4.0 up up
+#ge-0/0/4 up down
+#ge-0/0/4.0 up down
#ge-0/0/5 up up
#ge-0/0/5.0 up up
#ge-0/0/6 up up
Index: configs/core2.dc.onenet.net
===================================================================
--- configs/core2.dc.onenet.net (revision 156168)
+++ configs/core2.dc.onenet.net (working copy)
@@ -1,12 +1,12 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at MX480_DC_02_RE0> show system commit
+# 2017-08-28 22:49:41 CDT by andrew via cli commit confirmed, rollback in 3mins synchronize
+# 2017-08-28 22:48:37 CDT by andrew via cli commit confirmed, rollback in 3mins synchronize
+# 2017-08-28 22:41:39 CDT by andrew via cli commit confirmed, rollback in 3mins synchronize
+# 2017-08-28 22:01:42 CDT by andrew via cli commit synchronize
# 2017-08-28 21:58:54 CDT by andrew via cli commit synchronize
# 2017-08-28 21:30:56 CDT by andrew via cli commit confirmed, rollback in 3mins synchronize
-# 2017-08-28 12:52:54 CDT by andrew via cli commit synchronize
-# 2017-08-28 12:49:32 CDT by andrew via cli commit synchronize
-# 2017-08-28 12:30:18 CDT by andrew via cli commit synchronize
-# 2017-08-10 17:16:49 CDT by andrew via cli commit confirmed, rollback in 3mins synchronize
# grnoc-mon at MX480_DC_02_RE0> show chassis environment
# Class Item Status Measurement
# Temp PEM 0 OK
@@ -421,7 +421,7 @@
# grnoc-mon at MX480_DC_02_RE0> show system uptime
# System booted: 2016-09-03 21:49 CDT
# Protocols started: 2016-09-03 21:51 CDT
-# Last configured: 2017-08-28 21:58 CDT by andrew
+# Last configured: 2017-08-28 22:49 CDT by andrew
#
# {master}
# grnoc-mon at MX480_DC_02_RE0> show interface terse
@@ -682,7 +682,7 @@
#pp0 up up
#tap up up
# grnoc-mon at MX480_DC_02_RE0> show configuration
-## Last commit: 2017-08-28 21:58:54 CDT by andrew
+## Last commit: 2017-08-28 22:49:41 CDT by andrew
version 12.3R7.7;
groups {
re0 {
@@ -2432,6 +2432,28 @@
then reject;
}
}
+ policy-statement EBGP-ONENET-MGMT-FW-MGMT-L3VPN-V4-EXPORT {
+ term REJECT-DEFAULT {
+ from {
+ route-filter 0.0.0.0/0 exact;
+ }
+ then reject;
+ }
+ term ACCEPT-ALL-ELSE {
+ then accept;
+ }
+ }
+ policy-statement EBGP-ONENET-MGMT-FW-MGMT-L3VPN-V4-IMPORT {
+ term ACCEPT-DEFAULT {
+ from {
+ route-filter 0.0.0.0/0 exact;
+ }
+ then accept;
+ }
+ term REJECT-ALL-ELSE {
+ then reject;
+ }
+ }
policy-statement LOAD-BALANCE {
then {
load-balance per-packet;
@@ -2542,17 +2564,6 @@
}
}
}
- policy-statement REDISTRIBUTE-BGP-OSPF {
- term accept {
- from protocol bgp;
- then {
- external {
- type 1;
- }
- accept;
- }
- }
- }
policy-statement REDISTRIBUTE-DIRECTS {
term 1 {
from {
@@ -3490,6 +3501,7 @@
onenet_mgmt {
apply-groups OSPF-RI;
instance-type virtual-router;
+ interface xe-2/1/1.2543;
interface irb.4034;
routing-options {
router-id 10.197.8.194;
@@ -3502,6 +3514,7 @@
family inet {
unicast;
}
+ remove-private all;
as-override;
neighbor 10.199.208.252 {
description "ONENET-DC-TO-ONENET-MGMT [ORDERED]";
@@ -3511,12 +3524,30 @@
peer-as 5078;
}
}
- }
- ospf {
- export [ REDISTRIBUTE-BGP-OSPF REDISTRIBUTE-STATICS-OSPF ];
- area 0.0.0.0 {
- interface irb.4034;
+ group EBGP-ONENET-MGMT-FW-MGMT-L3VPN {
+ type external;
+ family inet {
+ unicast;
+ }
+ neighbor 10.197.8.195 {
+ description "EBGP-ONENET-MGMT-FW-MGMT-L3VPN [ORDERED]";
+ import EBGP-ONENET-MGMT-FW-MGMT-L3VPN-V4-IMPORT;
+# authentication-#key <removed>;
+ export EBGP-ONENET-MGMT-FW-MGMT-L3VPN-V4-EXPORT;
+ peer-as 64601;
+ }
}
+ group IBGP-ONENET-MGMT {
+ type internal;
+ local-address 10.197.8.194;
+ family inet {
+ unicast;
+ }
+# authentication-#key <removed>;
+ neighbor 10.197.8.193 {
+ description "ONENET-MGMT-CORE1-DC [ORDERED]";
+ }
+ }
}
}
}
Index: configs/oja-sw-youth-academy-manitou.client.onenet.net
===================================================================
--- configs/oja-sw-youth-academy-manitou.client.onenet.net (revision 156168)
+++ configs/oja-sw-youth-academy-manitou.client.onenet.net (working copy)
@@ -150,7 +150,7 @@
#ppd0 up up
#ppe0 up up
#st0 up up
-#st0.1 up down
+#st0.1 up up
#tap up up
#vlan up up
#vlan.3 up up
Index: configs/lavern-public-schools.client.onenet.net
===================================================================
--- configs/lavern-public-schools.client.onenet.net (revision 156168)
+++ configs/lavern-public-schools.client.onenet.net (working copy)
@@ -110,7 +110,7 @@
#
# grnoc-mon at LAVERN-PUBLIC-SCHOOLS-TAG-004351> show interface terse
#Interface Admin Link
-#ge-0/0/0 down down
+#ge-0/0/0 down up
#gr-0/0/0 up up
#ip-0/0/0 up up
#lsq-0/0/0 up up
Index: configs/city-of-lawton.client.onenet.net
===================================================================
--- configs/city-of-lawton.client.onenet.net (revision 156168)
+++ configs/city-of-lawton.client.onenet.net (working copy)
@@ -1,12 +1,12 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at CITY-OF-LAWTON-TAG-005231> show system commit
-# 2017-08-28 21:58:42 CDT by joel via cli
-# 2017-08-28 21:53:33 CDT by joel via cli
-# 2017-08-28 21:48:20 CDT by joel via cli
-# 2017-08-28 21:46:52 CDT by joel via cli
-# 2017-08-28 21:31:47 CDT by joel via cli
-# 2017-08-28 21:30:07 CDT by joel via cli
+# 2017-08-28 22:55:35 CDT by joel via cli
+# 2017-08-28 22:36:03 CDT by joel via cli
+# 2017-08-28 22:35:00 CDT by joel via cli
+# 2017-08-28 22:18:15 CDT by joel via cli
+# 2017-08-28 22:09:25 CDT by joel via cli
+# 2017-08-28 22:06:27 CDT by joel via cli
# grnoc-mon at CITY-OF-LAWTON-TAG-005231> show chassis environment
# Class Item Status Measurement
# Temp Routing Engine OK
@@ -134,7 +134,7 @@
# Time Source: NTP CLOCK
# System booted: 2017-08-25 14:03 CDT
# Protocols started: 2017-08-25 14:03 CDT
-# Last configured: 2017-08-28 21:58 CDT by joel
+# Last configured: 2017-08-28 22:55 CDT by joel
#
# grnoc-mon at CITY-OF-LAWTON-TAG-005231> show interface terse
#Interface Admin Link
@@ -209,7 +209,7 @@
#vlan up down
#vtep up up
# grnoc-mon at CITY-OF-LAWTON-TAG-005231> show configuration
-## Last commit: 2017-08-28 21:58:42 CDT by joel
+## Last commit: 2017-08-28 22:55:35 CDT by joel
version 15.1X49-D90.7;
groups {
SERVICES-TO-SERVERS {
@@ -220,7 +220,7 @@
match {
source-address <*>;
destination-address any;
- application [ junos-dns-udp junos-telnet junos-ssh ];
+ application [ junos-dns-udp junos-telnet junos-ssh UNISYS-PORTS SQL-PORTS EOM-PORTS junos-smb GEMS-PORTS junos-netbios-session ];
}
then {
permit;
@@ -258,7 +258,7 @@
match {
source-address any;
destination-address <*>;
- application junos-dns-udp;
+ application [ junos-dns-udp junos-smb ];
}
then {
permit;
@@ -2025,7 +2025,7 @@
}
}
}
- inactive: from-zone TRUST to-zone TRUST {
+ from-zone TRUST to-zone TRUST {
policy TRUST-TO-TRUST {
match {
source-address any;
@@ -2734,12 +2734,19 @@
application UNISYS-PORTS {
term tcp-1444 protocol tcp destination-port 1444;
}
- application RUNTIME-PORTS {
- term tcp-2870 protocol tcp destination-port 2870;
- }
application EOM-PORTS {
term tcp-515 protocol tcp destination-port 515;
}
+ application WSUS {
+ term tcp-8530 protocol tcp destination-port 8530;
+ }
+ application GEMS-PORTS {
+ term tcp-42424 protocol tcp destination-port 42424;
+ term tcp-2870 protocol tcp destination-port 2870;
+ term tcp-6001 protocol tcp destination-port 6001;
+ term tcp-6002 protocol tcp destination-port 6002;
+ term tcp-4323 protocol tcp destination-port 4323;
+ }
}
vlans {
DMZ-0400-HVAC {
Index: configs/pushmataha-fmc-clayton.client.onenet.net
===================================================================
--- configs/pushmataha-fmc-clayton.client.onenet.net (revision 156144)
+++ configs/pushmataha-fmc-clayton.client.onenet.net (working copy)
@@ -180,7 +180,7 @@
#st0 up up
#st0.0 up up
#st0.1 up up
-#st0.2 up up
+#st0.2 up down
#tap up up
#vlan up up
#vlan.999 up down
Index: configs/core1.dc.onenet.net
===================================================================
--- configs/core1.dc.onenet.net (revision 156168)
+++ configs/core1.dc.onenet.net (working copy)
@@ -1,12 +1,12 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at MX480_DC_01_RE0> show system commit
+# 2017-08-28 22:49:39 CDT by andrew via cli commit confirmed, rollback in 3mins synchronize
+# 2017-08-28 22:48:32 CDT by andrew via cli commit confirmed, rollback in 3mins synchronize
+# 2017-08-28 22:40:19 CDT by andrew via cli commit synchronize
+# 2017-08-28 22:38:15 CDT by andrew via cli commit confirmed, rollback in 3mins synchronize
# 2017-08-28 21:53:10 CDT by andrew via cli commit synchronize
# 2017-08-28 21:49:04 CDT by andrew via cli commit synchronize
-# 2017-08-28 21:40:32 CDT by andrew via cli commit synchronize
-# 2017-08-28 21:30:53 CDT by andrew via cli commit confirmed, rollback in 3mins synchronize
-# 2017-08-28 12:52:57 CDT by andrew via cli commit synchronize
-# 2017-08-28 12:49:38 CDT by andrew via cli commit synchronize
# grnoc-mon at MX480_DC_01_RE0> show chassis environment
# Class Item Status Measurement
# Temp PEM 0 OK
@@ -435,7 +435,7 @@
# grnoc-mon at MX480_DC_01_RE0> show system uptime
# System booted: 2014-08-25 20:38 CDT
# Protocols started: 2014-08-25 20:39 CDT
-# Last configured: 2017-08-28 21:53 CDT by andrew
+# Last configured: 2017-08-28 22:49 CDT by andrew
#
# {master}
# grnoc-mon at MX480_DC_01_RE0> show interface terse
@@ -732,7 +732,7 @@
#pp0 up up
#tap up up
# grnoc-mon at MX480_DC_01_RE0> show configuration
-## Last commit: 2017-08-28 21:53:10 CDT by andrew
+## Last commit: 2017-08-28 22:49:39 CDT by andrew
version 12.3R7.7;
groups {
re0 {
@@ -2783,6 +2783,28 @@
then reject;
}
}
+ policy-statement EBGP-ONENET-MGMT-FW-MGMT-L3VPN-V4-EXPORT {
+ term REJECT-DEFAULT {
+ from {
+ route-filter 0.0.0.0/0 exact;
+ }
+ then reject;
+ }
+ term ACCEPT-ALL-ELSE {
+ then accept;
+ }
+ }
+ policy-statement EBGP-ONENET-MGMT-FW-MGMT-L3VPN-V4-IMPORT {
+ term ACCEPT-DEFAULT {
+ from {
+ route-filter 0.0.0.0/0 exact;
+ }
+ then accept;
+ }
+ term REJECT-ALL-ELSE {
+ then reject;
+ }
+ }
policy-statement LOAD-BALANCE {
then {
load-balance per-packet;
@@ -2921,17 +2943,6 @@
}
}
}
- policy-statement REDISTRIBUTE-BGP-OSPF {
- term accept {
- from protocol bgp;
- then {
- external {
- type 1;
- }
- accept;
- }
- }
- }
policy-statement REDISTRIBUTE-DIRECTS {
term 1 {
from {
@@ -3937,6 +3948,7 @@
family inet {
unicast;
}
+ remove-private all;
as-override;
neighbor 10.199.208.254 {
description "ONENET-DC-TO-ONENET-MGMT [ORDERED]";
@@ -3946,12 +3958,30 @@
peer-as 5078;
}
}
- }
- ospf {
- export [ REDISTRIBUTE-BGP-OSPF REDISTRIBUTE-STATICS-OSPF ];
- area 0.0.0.0 {
- interface irb.4034;
+ group EBGP-ONENET-MGMT-FW-MGMT-L3VPN {
+ type external;
+ family inet {
+ unicast;
+ }
+ neighbor 10.197.8.195 {
+ description "EBGP-ONENET-MGMT-FW-MGMT-L3VPN [ORDERED]";
+ import EBGP-ONENET-MGMT-FW-MGMT-L3VPN-V4-IMPORT;
+# authentication-#key <removed>;
+ export EBGP-ONENET-MGMT-FW-MGMT-L3VPN-V4-EXPORT;
+ peer-as 64601;
+ }
}
+ group IBGP-ONENET-MGMT {
+ type internal;
+ local-address 10.197.8.193;
+ family inet {
+ unicast;
+ }
+# authentication-#key <removed>;
+ neighbor 10.197.8.194 {
+ description "ONENET-MGMT-CORE2-DC [ORDERED]";
+ }
+ }
}
}
}
Index: configs/opt.sti.onenet.net
===================================================================
--- configs/opt.sti.onenet.net (revision 156168)
+++ configs/opt.sti.onenet.net (working copy)
@@ -86,6 +86,7 @@
<interface name="PCHAN-6-25-TX" abbr_name="PCHAN-6-25-TX" admin_state="up" spanning_tree_metric="" description="" type="PDMX" monitoring_state="monitor"></interface>
<interface name="PCHAN-6-25-RX" abbr_name="PCHAN-6-25-RX" admin_state="up" spanning_tree_metric="" description="" type="PMUX" monitoring_state="monitor"></interface>
<interface name="PCHAN-6-26-TX" abbr_name="PCHAN-6-26-TX" admin_state="up" spanning_tree_metric="" description="" type="PDMX" monitoring_state="monitor"></interface>
+ <interface name="PCHAN-6-26-RX" abbr_name="PCHAN-6-26-RX" admin_state="up" spanning_tree_metric="" description="" type="PMUX" monitoring_state="monitor"></interface>
<interface name="PCHAN-6-27-TX" abbr_name="PCHAN-6-27-TX" admin_state="up" spanning_tree_metric="" description="" type="PDMX" monitoring_state="monitor"></interface>
<interface name="PCHAN-6-27-RX" abbr_name="PCHAN-6-27-RX" admin_state="up" spanning_tree_metric="" description="" type="PMUX" monitoring_state="monitor"></interface>
<interface name="PCHAN-6-28-TX" abbr_name="PCHAN-6-28-TX" admin_state="up" spanning_tree_metric="" description="" type="PDMX" monitoring_state="monitor"></interface>
More information about the Nocrancid
mailing list