[Nocrancid] autopop-onenet.net router config diffs
rancid at rancid.noc.onenet.net
rancid at rancid.noc.onenet.net
Fri Oct 13 11:04:45 CDT 2017
Index: configs/core3.okc-m120.onenet.net
===================================================================
--- configs/core3.okc-m120.onenet.net (revision 157617)
+++ configs/core3.okc-m120.onenet.net (working copy)
@@ -617,8 +617,8 @@
#t1-2/3/0:2:20 down down
#t1-2/3/0:2:21 up up
#t1-2/3/0:2:21.0 up up
-#t1-2/3/0:2:22 up up
-#t1-2/3/0:2:22.0 up up
+#t1-2/3/0:2:22 up down
+#t1-2/3/0:2:22.0 up down
#t1-2/3/0:2:23 up up
#t1-2/3/0:2:23.0 up up
#t1-2/3/0:2:24 down down
Index: configs/wainwright-isd.client.onenet.net
===================================================================
--- configs/wainwright-isd.client.onenet.net (revision 157547)
+++ configs/wainwright-isd.client.onenet.net (working copy)
@@ -107,8 +107,8 @@
# total files: 1
#
# grnoc-mon at WAINWRIGHT-ISD-SRX220-LEASED-4659-005783> show system uptime
-# System booted: 2017-10-10 07:57 CDT
-# Protocols started: 2017-10-10 07:59 CDT
+# System booted: 2017-10-13 10:19 CDT
+# Protocols started: 2017-10-13 10:22 CDT
# Last configured: 2017-07-23 16:37 CDT by root
#
# grnoc-mon at WAINWRIGHT-ISD-SRX220-LEASED-4659-005783> show interface terse
Index: configs/city-of-lawton.client.onenet.net
===================================================================
--- configs/city-of-lawton.client.onenet.net (revision 157647)
+++ configs/city-of-lawton.client.onenet.net (working copy)
@@ -1,12 +1,12 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at CITY-OF-LAWTON-005231> show system commit
+# 2017-10-13 11:00:07 CDT by joel via cli commit confirmed, rollback in 5mins
+# 2017-10-13 10:33:08 CDT by joel via cli commit confirmed, rollback in 5mins
+# 2017-10-13 10:08:25 CDT by joel via cli
# 2017-10-13 09:51:45 CDT by joel via cli
# 2017-10-13 09:48:21 CDT by joel via cli
# 2017-10-13 09:39:22 CDT by joel via cli commit confirmed, rollback in 5mins
-# 2017-10-10 16:17:49 CDT by joel via cli
-# 2017-10-10 16:10:36 CDT by joel via cli
-# 2017-10-10 15:35:43 CDT by joel via cli
# grnoc-mon at CITY-OF-LAWTON-005231> show chassis environment
# Class Item Status Measurement
# Temp Routing Engine OK
@@ -17,16 +17,19 @@
# SRX340 Chassis fan 3 OK
# Power Power Supply 0 OK
#
+# # commit confirmed will be rolled back in 4 minutes
# grnoc-mon at CITY-OF-LAWTON-005231> show chassis firmware
# Part Type Version
# FPC 0 O/S Version 15.1X49-D90.7 by builder on 2017-04-29 06:10:46 UTC
# FWDD O/S Version 15.1X49-D90.7 by builder on 2017-04-29 06:10:46 UTC
#
+# # commit confirmed will be rolled back in 4 minutes
# grnoc-mon at CITY-OF-LAWTON-005231> show chassis fpc detail
# Slot 0 information:
# State Online
# Total CPU DRAM ---- CPU less FPC ----
#
+# # commit confirmed will be rolled back in 4 minutes
# grnoc-mon at CITY-OF-LAWTON-005231> show chassis hardware
# Hardware inventory:
# Item Version Part number Serial number Description
@@ -38,6 +41,7 @@
# Xcvr 15 REV 02 740-013111 A476775 SFP-T
# Power Supply 0
#
+# # commit confirmed will be rolled back in 4 minutes
# grnoc-mon at CITY-OF-LAWTON-005231> show chassis hardware models
# grnoc-mon at CITY-OF-LAWTON-005231> show chassis routing-engine
# Routing Engine status:
@@ -115,28 +119,33 @@
# tpm0: <Trusted Platform Module> on lpcbus0
# tpm: IFX SLB 9660 TT 1.2 rev 0x10
#
+# # commit confirmed will be rolled back in 4 minutes
# grnoc-mon at CITY-OF-LAWTON-005231> show version
# Hostname: CITY-OF-LAWTON-005231
# Model: srx340
# Junos: 15.1X49-D90.7
# JUNOS Software Release [15.1X49-D90.7]
#
+# # commit confirmed will be rolled back in 4 minutes
# grnoc-mon at CITY-OF-LAWTON-005231> show version invoke-on all-routing-engines
# Hostname: CITY-OF-LAWTON-005231
# Model: srx340
# Junos: 15.1X49-D90.7
# JUNOS Software Release [15.1X49-D90.7]
#
+# # commit confirmed will be rolled back in 4 minutes
# grnoc-mon at CITY-OF-LAWTON-005231> file list /var/tmp detail
# lrw-r--r-- 1 root wheel 11 Apr 29 02:34 /var/tmp@ -> /cf/var/tmp
# total files: 1
#
+# # commit confirmed will be rolled back in 4 minutes
# grnoc-mon at CITY-OF-LAWTON-005231> show system uptime
# Time Source: NTP CLOCK
# System booted: 2017-08-25 14:03 CDT
# Protocols started: 2017-08-25 14:03 CDT
-# Last configured: 2017-10-13 09:51 CDT by joel
+# Last configured: 2017-10-13 11:00 CDT by joel
#
+# # commit confirmed will be rolled back in 4 minutes
# grnoc-mon at CITY-OF-LAWTON-005231> show interface terse
#Interface Admin Link
#ge-0/0/0 up up
@@ -232,8 +241,9 @@
#tap up up
#vlan up down
#vtep up up
+## commit confirmed
# grnoc-mon at CITY-OF-LAWTON-005231> show configuration
-## Last commit: 2017-10-13 09:51:45 CDT by joel
+## Last commit: 2017-10-13 11:00:07 CDT by joel
version 15.1X49-D90.7;
groups {
ABUSE-DENY {
@@ -1141,6 +1151,8 @@
206.188.192.168/32;
}
address SFTP-GLASS-MOUNTAIN-COLLECTIONS 74.122.193.10/32;
+ address FUELMASTER-172.16.16.31 172.16.16.31/32;
+ address PUB-WORKS-10.1.16.0/23 10.1.16.0/23;
address-set VERIZON-STATIC-FT-SILL-1 {
description "Fort Sill MP Static IPs for CAD Access";
address VERIZON-STATIC-FT-SILL-1-166.148.145.240;
@@ -2328,6 +2340,19 @@
source-address TR-0100-USERS-10.1.0.0/16;
}
}
+ policy TEMP-CREATE-NEW-IT-ZONE {
+ match {
+ source-address CITY-HALL-ANNEX-10.1.0.0/23;
+ destination-address any;
+ application [ junos-ssh NON-STANDARD-SSH ];
+ }
+ then {
+ permit;
+ log {
+ session-init;
+ }
+ }
+ }
policy COMMON-APPLICATIONS {
match {
source-address TR-0100-USERS-10.1.0.0/16;
@@ -2390,6 +2415,19 @@
}
from-zone TR-0100-USERS to-zone TRUST {
apply-groups [ MAINFRAME-TRAFFIC SERVICES-TO-SERVERS ];
+ policy PUBWORKS-TO-FUELMASTER {
+ match {
+ source-address PUB-WORKS-10.1.16.0/23;
+ destination-address FUELMASTER-172.16.16.31;
+ application FUELMASTER;
+ }
+ then {
+ permit;
+ log {
+ session-init;
+ }
+ }
+ }
policy TR-0100-USERS-TO-SERVER-FINMGMT {
match {
source-address [ TR-0100-USERS-10.1.0.0/16 SERVER-LNDMGMT-P-172.16.1.206 SERVER-LNDMGMT-T-172.16.1.205 ];
@@ -3923,7 +3961,18 @@
term udp-3843 protocol udp destination-port 3848;
term tcp-3843 protocol tcp destination-port 3843;
term tcp-40403 protocol tcp destination-port 40403;
+ term tcp-3166 protocol tcp destination-port 3166;
}
+ application FUELMASTER {
+ term tcp-23 protocol tcp destination-port 23;
+ }
+ application NON-STANDARD-SSH {
+ term tcp-122 protocol tcp destination-port 122;
+ term tcp-2222 protocol tcp destination-port 2222;
+ }
+ application GIT-HUB {
+ term tcp-9418 protocol tcp destination-port 9418;
+ }
}
vlans {
DMZ-0400-HVAC {
Index: configs/opt.okc.onenet.net
===================================================================
--- configs/opt.okc.onenet.net (revision 157442)
+++ configs/opt.okc.onenet.net (working copy)
@@ -138,7 +138,6 @@
<interface name="VFAC-1-16-1-1" abbr_name="VFAC-1-16-1-1" admin_state="up" spanning_tree_metric="" description="OMES DataCenter" type="VFAC" monitoring_state="monitor"></interface>
<interface name="VFAC-1-16-3-1" abbr_name="VFAC-1-16-3-1" admin_state="up" spanning_tree_metric="" description="OMES DataCenter" type="VFAC" monitoring_state="monitor"></interface>
</part>
- <part name="AIP-1" description="AIP" hw_version="B1" part_id="AIP" part_num="73-7665-05" serial_number="NWG123709Y3" slot="AIP-1" vendor_id="Cisco"></part>
<part name="FAN-1-1" description="15454-FTA-3T" hw_version="A0" part_id="15454-FTA-3T" part_num="800-23907-05" serial_number="SAT12231M0G" slot="FAN-1-1" vendor_id="Cisco"></part>
</part>
<part name="BP-2" description="15454-SA-HD" hw_version="B0" part_id="15454-SA-HD" part_num="800-23890-09" serial_number="SMG1626A03S" slot="BP-2" vendor_id="Cisco">
More information about the Nocrancid
mailing list