[Nocrancid] autopop-onenet.net router config diffs
rancid at rancid.noc.onenet.net
rancid at rancid.noc.onenet.net
Fri Jun 9 15:05:34 CDT 2017
Index: configs/lawton-public-library.client.onenet.net
===================================================================
--- configs/lawton-public-library.client.onenet.net (revision 153970)
+++ configs/lawton-public-library.client.onenet.net (working copy)
@@ -1,12 +1,12 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at LAWTON-PUBLIC-LIBRARY-005243> show system commit
+# 2017-06-09 14:47:14 CDT by admin via cli
+# 2017-06-09 14:26:08 CDT by admin via cli
+# 2017-06-09 14:13:56 CDT by admin via cli
+# 2017-06-09 14:02:38 CDT by admin via cli
+# 2017-06-09 13:41:45 CDT by joel via cli
# 2017-06-09 12:10:34 CDT by joel via cli
-# 2017-04-04 12:47:30 CDT by joel via cli
-# 2017-04-04 12:29:47 CDT by joel via cli commit confirmed, rollback in 4mins
-# 2017-04-04 11:43:18 CDT by joel via cli commit confirmed, rollback in 3mins
-# 2017-01-24 12:46:35 CST by joel via cli commit confirmed, rollback in 5mins
-# 2016-12-29 10:21:14 CST by joel via cli
# grnoc-mon at LAWTON-PUBLIC-LIBRARY-005243> show chassis environment
# Class Item Status Measurement
# Temp Routing Engine OK
@@ -109,7 +109,6 @@
# Trying to mount root from ufs:/dev/da0s2a
# WARNING: / was not properly dismounted
# WARNING: / was not properly dismounted
-# WARNING: R/W mount of /cf/var denied. Filesystem is not clean - run fsck
#
# grnoc-mon at LAWTON-PUBLIC-LIBRARY-005243> show version
# Hostname: LAWTON-PUBLIC-LIBRARY-005243 # Model: srx340 # Junos: 15.1X49-D50.3 # JUNOS Software Release [15.1X49-D50.3] # # grnoc-mon at LAWTON-PUBLIC-LIBRARY-005243> file list /var/tmp detail # lrw-r--r-- 1 root wheel 11 May 28 2016 /var/tmp@ -> /cf/var/tmp
@@ -117,9 +116,9 @@
#
# grnoc-mon at LAWTON-PUBLIC-LIBRARY-005243> show system uptime
# Time Source: NTP CLOCK
-# System booted: 2016-12-07 11:24 CST
-# Protocols started: 2016-12-07 11:24 CST
-# Last configured: 2017-06-09 12:10 CDT by joel
+# System booted: 2017-06-09 13:51 CDT
+# Protocols started: 2017-06-09 13:51 CDT
+# Last configured: 2017-06-09 14:47 CDT by admin
#
# grnoc-mon at LAWTON-PUBLIC-LIBRARY-005243> show interface terse
#Interface Admin Link
@@ -136,15 +135,15 @@
#ge-0/0/1 up down
#ge-0/0/1.0 up down
#ge-0/0/2 down down
-#ge-0/0/3 down down
-#ge-0/0/4 down down
+#ge-0/0/3 up up
+#ge-0/0/3.0 up up
+#ge-0/0/4 up up
+#ge-0/0/4.0 up up
#ge-0/0/5 down down
#ge-0/0/6 up down
#ge-0/0/6.0 up down
#ge-0/0/7 up up
-#ge-0/0/7.10 up up
-#ge-0/0/7.20 up up
-#ge-0/0/7.32767 up up
+#ge-0/0/7.0 up up
#ge-0/0/8 down down
#ge-0/0/9 down down
#ge-0/0/10 down down
@@ -153,12 +152,17 @@
#ge-0/0/13 down down
#ge-0/0/14 down down
#ge-0/0/15 down down
+#ae0 up up
+#ae0.0 up up
#fxp0 down down
#fxp2 up up
#fxp2.0 up up
#gre up up
#ipip up up
#irb up up
+#irb.10 up up
+#irb.20 up up
+#irb.99 up up
#lo0 up up
#lo0.0 up up
#lo0.16384 up up
@@ -176,7 +180,7 @@
#vlan up down
#vtep up up
# grnoc-mon at LAWTON-PUBLIC-LIBRARY-005243> show configuration
-## Last commit: 2017-06-09 12:10:34 CDT by joel
+## Last commit: 2017-06-09 14:47:14 CDT by admin
version 15.1X49-D50.3;
system {
host-name LAWTON-PUBLIC-LIBRARY-005243;
@@ -266,6 +270,17 @@
protocol-version v2;
}
dhcp {
+ pool 10.0.0.0/24 {
+ address-range low 10.0.0.128 high 10.0.0.250;
+ domain-name LAWTONLIB.GOV;
+ name-server {
+ 164.58.200.200;
+ 156.110.200.200;
+ }
+ router {
+ 10.0.0.1;
+ }
+ }
pool 10.1.0.0/24 {
address-range low 10.1.0.2 high 10.1.0.254;
domain-name test.local;
@@ -303,50 +318,50 @@
}
static-binding 34:fc:b9:c1:81:4a {
fixed-address {
- 192.168.1.242;
- 192.168.1.249;
+ 10.0.0.242;
+ 10.0.0.249;
}
host-name ARUBA-AP-8;
}
static-binding 34:fc:b9:c1:81:68 {
fixed-address {
- 192.168.1.243;
+ 10.0.0.243;
}
host-name ARUBA-AP-2;
}
static-binding 34:fc:b9:c1:81:84 {
fixed-address {
- 192.168.1.244;
+ 10.0.0.244;
}
host-name ARUBA-AP-3;
}
static-binding 34:fc:b9:c1:81:72 {
fixed-address {
- 192.168.1.245;
+ 10.0.0.245;
}
host-name ARUBA-AP-4;
}
static-binding 34:fc:b9:c1:81:70 {
fixed-address {
- 192.168.1.246;
+ 10.0.0.246;
}
host-name ARUBA-AP-5;
}
static-binding 34:fc:b9:c1:81:62 {
fixed-address {
- 192.168.1.247;
+ 10.0.0.247;
}
host-name ARUBA-AP-6;
}
static-binding 34:fc:b9:c1:81:6c {
fixed-address {
- 192.168.1.248;
+ 10.0.0.248;
}
host-name ARUBA-AP-7;
}
static-binding 34:fc:b9:c1:81:7c {
fixed-address {
- 192.168.1.250;
+ 10.0.0.250;
}
host-name ARUBA-AP-9;
}
@@ -383,6 +398,13 @@
server 164.58.3.98 prefer;
}
}
+chassis {
+ aggregated-devices {
+ ethernet {
+ device-count 1;
+ }
+ }
+}
security {
address-book {
global {
@@ -396,6 +418,7 @@
description "USER:admin / PASS: bookm at rk";
192.168.1.6/32;
}
+ address MGMT-10.0.0.0/24 10.0.0.0/24;
}
}
screen {
@@ -466,6 +489,42 @@
}
}
policies {
+ from-zone MGMT to-zone TRUST {
+ policy MGMT-TO-TRUST {
+ match {
+ source-address MGMT-10.0.0.0/24;
+ destination-address USERS-192.168.1.0/24;
+ application any;
+ }
+ then {
+ permit;
+ }
+ }
+ }
+ from-zone MGMT to-zone UNTRUST {
+ policy MGMT-TO-UNTRUST {
+ match {
+ source-address MGMT-10.0.0.0/24;
+ destination-address any;
+ application any;
+ }
+ then {
+ permit;
+ }
+ }
+ }
+ from-zone TRUST to-zone MGMT {
+ policy TRUST-TO-MGMT {
+ match {
+ source-address USERS-192.168.1.0/24;
+ destination-address MGMT-10.0.0.0/24;
+ application any;
+ }
+ then {
+ permit;
+ }
+ }
+ }
from-zone TRUST to-zone UNTRUST {
policy TRUST-TO-UNTRUST {
match {
@@ -516,9 +575,9 @@
}
}
zones {
- security-zone TRUST {
+ security-zone MGMT {
interfaces {
- ge-0/0/7.10 {
+ irb.99 {
host-inbound-traffic {
system-services {
dhcp;
@@ -529,9 +588,9 @@
}
}
}
- security-zone TEST {
+ security-zone PUBLIC-WIFI {
interfaces {
- ge-0/0/1.0 {
+ irb.20 {
host-inbound-traffic {
system-services {
dhcp;
@@ -542,22 +601,25 @@
}
}
}
- security-zone UNTRUST {
- screen UNTRUST-SCREEN;
+ security-zone TRUST {
interfaces {
- ge-0/0/0.0 {
+ irb.10 {
host-inbound-traffic {
system-services {
+ dhcp;
ping;
- snmp;
- ssh;
traceroute;
}
}
}
- ge-0/0/6.0 {
+ }
+ }
+ security-zone TEST {
+ interfaces {
+ ge-0/0/1.0 {
host-inbound-traffic {
system-services {
+ dhcp;
ping;
traceroute;
}
@@ -565,17 +627,27 @@
}
}
}
- security-zone PUBLIC-WIFI {
+ security-zone UNTRUST {
+ screen UNTRUST-SCREEN;
interfaces {
- ge-0/0/7.20 {
+ ge-0/0/0.0 {
host-inbound-traffic {
system-services {
- dhcp;
ping;
+ snmp;
+ ssh;
traceroute;
}
}
}
+ ge-0/0/6.0 {
+ host-inbound-traffic {
+ system-services {
+ ping;
+ traceroute;
+ }
+ }
+ }
}
}
}
@@ -601,10 +673,16 @@
disable;
}
ge-0/0/3 {
- disable;
+ description "LINK to ARUBA-2920-4G8 1/1 [MEMBER 1]";
+ gigether-options {
+ 802.3ad ae0;
+ }
}
ge-0/0/4 {
- disable;
+ description "LINK to ARUBA-2920-4G8 2/1 [MEMBER 2]";
+ gigether-options {
+ 802.3ad ae0;
+ }
}
ge-0/0/5 {
disable;
@@ -619,21 +697,14 @@
}
ge-0/0/7 {
description LINK-TO-LIBRARY-CISCO-2960S;
- vlan-tagging;
- unit 10 {
- description "L3 INTERFACE - TRUST-LAN - 192.168.1.1/24";
- vlan-id 10;
- family inet {
- address 192.168.1.1/24;
+ unit 0 {
+ family ethernet-switching {
+ interface-mode trunk;
+ vlan {
+ members [ 10 20 99 ];
+ }
}
}
- unit 20 {
- description "L3 INTERFACE - PUBLIC-WIFI-LAN - 10.20.0.1/21";
- vlan-id 20;
- family inet {
- address 10.20.0.1/21;
- }
- }
}
ge-0/0/8 {
disable;
@@ -659,9 +730,47 @@
ge-0/0/15 {
disable;
}
+ ae0 {
+ description "Link to ARUBA-2920-48G LAG";
+ aggregated-ether-options {
+ link-speed 1g;
+ lacp {
+ active;
+ periodic fast;
+ }
+ }
+ unit 0 {
+ family ethernet-switching {
+ interface-mode trunk;
+ vlan {
+ members [ 10 20 99 ];
+ }
+ }
+ }
+ }
fxp0 {
disable;
}
+ irb {
+ unit 10 {
+ description "L3 INTERFACE - TRUST-LAN - 192.168.1.1/24";
+ family inet {
+ address 192.168.1.1/24;
+ }
+ }
+ unit 20 {
+ description "L3 INTERFACE - PUBLIC-WIFI-LAN - 10.20.0.1/21";
+ family inet {
+ address 10.20.0.1/21;
+ }
+ }
+ unit 99 {
+ description "L3 INTERFACE - MGMT - 10.0.0.1/24";
+ family inet {
+ address 10.0.0.1/24;
+ }
+ }
+ }
lo0 {
unit 0 {
family inet {
@@ -753,6 +862,44 @@
}
}
}
+access {
+ address-assignment {
+ pool TRUST-POOL {
+ family inet {
+ network 192.168.1.0/24;
+ range TRUST-RANGE {
+ low 192.168.1.51;
+ high 192.168.1.250;
+ }
+ dhcp-attributes {
+ maximum-lease-time 7200;
+ domain-name LAWTONLIB.GOV;
+ name-server {
+ 208.67.220.220;
+ 208.67.222.222;
+ }
+ router {
+ 192.168.1.1;
+ }
+ }
+ }
+ }
+ }
+}
+vlans {
+ MANAGEMENT {
+ vlan-id 99;
+ l3-interface irb.99;
+ }
+ PUBLIC-WIFI-LAN {
+ vlan-id 20;
+ l3-interface irb.20;
+ }
+ TRUST-LAN {
+ vlan-id 10;
+ l3-interface irb.10;
+ }
+}
# grnoc-mon at LAWTON-PUBLIC-LIBRARY-005243> show ospf neighbor
# OSPF instance is not running
#
Index: configs/core3.okc-m120.onenet.net
===================================================================
--- configs/core3.okc-m120.onenet.net (revision 153969)
+++ configs/core3.okc-m120.onenet.net (working copy)
@@ -575,8 +575,8 @@
#t1-2/3/0:4:7 down down
#t1-2/3/0:4:8 down down
#t1-2/3/0:4:9 down down
-#t1-2/3/0:4:10 up up
-#t1-2/3/0:4:10.0 up up
+#t1-2/3/0:4:10 up down
+#t1-2/3/0:4:10.0 up down
#t1-2/3/0:4:11 down down
#t1-2/3/0:4:12 up up
#t1-2/3/0:4:12.0 up up
Index: configs/core.rack59.onenet.net
===================================================================
--- configs/core.rack59.onenet.net (revision 153972)
+++ configs/core.rack59.onenet.net (working copy)
@@ -29,9 +29,6 @@
# CB 1 ACBC OK
# CB 1 XF A OK
# CB 1 XF B OK
-# FPC 0 Intake OK
-# FPC 0 Exhaust A OK
-# FPC 0 Exhaust B OK
# FPC 3 Intake OK
# FPC 3 Exhaust A OK
# FPC 3 Exhaust B OK
@@ -99,7 +96,6 @@
# {master}
# grnoc-mon at RACK59-MX480-RE0> show chassis firmware
# Part Type Version
-# FPC 0
# FPC 3 ROM Juniper ROM Monitor Version 11.4b2
# O/S Version 13.3R9.13 by builder on 2016-03-01
# FPC 4 ROM Juniper ROM Monitor Version 11.4b2
@@ -109,12 +105,6 @@
#
# {master}
# grnoc-mon at RACK59-MX480-RE0> show chassis fpc detail
-# Slot 0 information:
-# State Present
-# Total CPU DRAM 0 MB
-# Total RLDRAM 0 MB
-# Total DDR DRAM 0 MB
-# Max Power Consumption 239 Watts
# Slot 3 information:
# State Online
# Total CPU DRAM 2048 MB
@@ -149,8 +139,6 @@
# Routing Engine 1 REV 17 740-013063 9012046338 RE-S-2000
# CB 0 REV 18 750-031391 CABG1793 Enhanced MX SCB
# CB 1 REV 18 750-031391 CABG3081 Enhanced MX SCB
-# FPC 0 REV 15 750-031088 YZ0056 MPC Type 2 3D Q
-# CPU
# FPC 3 REV 11 750-038493 CABW9239 MPCE Type 2 3D Q
# CPU REV 04 711-038484 CABV7147 MPCE PMB 2G
# MIC 1 REV 26 750-028392 ABBY6065 3D 20x 1GE(LAN) SFP
@@ -209,7 +197,6 @@
# Routing Engine 1 REV 17 740-013063 9012046338 RE-S-2000-4096-S
# CB 0 REV 18 750-031391 CABG1793 SCBE-MX-S
# CB 1 REV 18 750-031391 CABG3081 SCBE-MX-S
-# FPC 0 REV 15 750-031088 YZ0056 MX-MPC2-3D-Q
# FPC 3 REV 11 750-038493 CABW9239 MX-MPC2E-3D-Q
# MIC 1 REV 26 750-028392 ABBY6065 MIC-3D-20GE-SFP
# FPC 4 REV 11 750-038493 CABL9375 MX-MPC2E-3D-Q
@@ -408,8 +395,8 @@
#lc-4/2/0.32769 up up
#pfe-4/2/0 up up
#pfe-4/2/0.16383 up up
-#xe-4/2/0 up down
-#xe-4/2/0.0 up down
+#xe-4/2/0 up up
+#xe-4/2/0.0 up up
#xe-4/2/1 up down
#xe-4/3/0 up down
#xe-4/3/1 up down
More information about the Nocrancid
mailing list