[Nocrancid] autopop-onenet.net router config diffs
rancid at rancid.noc.onenet.net
rancid at rancid.noc.onenet.net
Fri Sep 8 00:05:02 CDT 2017
Index: configs/kiamichi-fmc-battiest.client.onenet.net
===================================================================
--- configs/kiamichi-fmc-battiest.client.onenet.net (revision 156432)
+++ configs/kiamichi-fmc-battiest.client.onenet.net (working copy)
@@ -187,7 +187,7 @@
#ppd0 up up
#ppe0 up up
#st0 up up
-#st0.1 up down
+#st0.1 up up
#st0.2 up up
#tap up up
#vlan up down
Index: configs/tul-adva.p.onenet.net
===================================================================
--- configs/tul-adva.p.onenet.net (revision 156366)
+++ configs/tul-adva.p.onenet.net (working copy)
@@ -67,7 +67,7 @@
<interface name="VCH-1-10-N29" abbr_name="VCH-1-10-N29" admin_state="up" spanning_tree_metric="" description="" type="MUX" monitoring_state="no-monitor"></interface>
<interface name="VCH-1-10-N30" abbr_name="VCH-1-10-N30" admin_state="up" spanning_tree_metric="" description="" type="MUX" monitoring_state="no-monitor"></interface>
<interface name="VCH-1-10-N31" abbr_name="VCH-1-10-N31" admin_state="up" spanning_tree_metric="" description="" type="MUX" monitoring_state="no-monitor"></interface>
- <interface name="VCH-1-10-N32" abbr_name="VCH-1-10-N32" admin_state="down" spanning_tree_metric="" description="" type="MUX" monitoring_state="no-monitor"></interface>
+ <interface name="VCH-1-10-N32" abbr_name="VCH-1-10-N32" admin_state="up" spanning_tree_metric="" description="" type="MUX" monitoring_state="no-monitor"></interface>
<interface name="VCH-1-10-N33" abbr_name="VCH-1-10-N33" admin_state="up" spanning_tree_metric="" description="" type="MUX" monitoring_state="no-monitor"></interface>
<interface name="VCH-1-10-N34" abbr_name="VCH-1-10-N34" admin_state="up" spanning_tree_metric="" description="" type="MUX" monitoring_state="no-monitor"></interface>
<interface name="VCH-1-10-N35" abbr_name="VCH-1-10-N35" admin_state="up" spanning_tree_metric="" description="" type="MUX" monitoring_state="no-monitor"></interface>
Index: configs/core.toward.onenet.net
===================================================================
--- configs/core.toward.onenet.net (revision 156429)
+++ configs/core.toward.onenet.net (working copy)
@@ -26,16 +26,6 @@
# TFEB 0 TBB PFE Chip OK
# TFEB 0 TFEB PCIE TSen OK
# TFEB 0 TFEB PCIE Chip OK
-# TFEB 0 QX 0 TSen OK
-# TFEB 0 QX 0 Chip OK
-# TFEB 0 LU 0 TSen OK
-# TFEB 0 LU 0 Chip OK
-# TFEB 0 MQ 0 TSen OK
-# TFEB 0 MQ 0 Chip OK
-# TFEB 0 TBB PFE TSen OK
-# TFEB 0 TBB PFE Chip OK
-# TFEB 0 TFEB PCIE TSen OK
-# TFEB 0 TFEB PCIE Chip OK
# Fans Fan 1 OK
# Fan 2 OK
# Fan 3 OK
Index: configs/hub.dur.onenet.net
===================================================================
--- configs/hub.dur.onenet.net (revision 156423)
+++ configs/hub.dur.onenet.net (working copy)
@@ -433,7 +433,7 @@
#fe-2/1/1 up up
#fe-2/1/1.0 up up
#fe-2/1/2 up down
-#fe-2/1/3 down down
+#fe-2/1/3 down up
#ge-2/2/0 up up
#ge-2/2/0.0 up up
#pc-2/2/0 up up
Index: configs/city-of-lawton.client.onenet.net
===================================================================
--- configs/city-of-lawton.client.onenet.net (revision 156432)
+++ configs/city-of-lawton.client.onenet.net (working copy)
@@ -1,12 +1,12 @@
# RANCID-CONTENT-TYPE: juniper
#
# grnoc-mon at CITY-OF-LAWTON-005231> show system commit
+# 2017-09-07 23:27:33 CDT by joel via cli
+# 2017-09-07 23:22:23 CDT by joel via cli commit confirmed, rollback in 5mins
# 2017-09-07 22:29:43 CDT by joel via cli
# 2017-09-07 22:26:11 CDT by joel via cli commit confirmed, rollback in 5mins
# 2017-09-07 20:03:30 CDT by joel via cli commit confirmed, rollback in 5mins
# 2017-09-07 19:43:20 CDT by joel via cli commit confirmed, rollback in 5mins
-# 2017-09-07 18:19:33 CDT by joel via cli
-# 2017-09-07 18:05:35 CDT by joel via cli
# grnoc-mon at CITY-OF-LAWTON-005231> show chassis environment
# Class Item Status Measurement
# Temp Routing Engine OK
@@ -135,7 +135,7 @@
# Time Source: NTP CLOCK
# System booted: 2017-08-25 14:03 CDT
# Protocols started: 2017-08-25 14:03 CDT
-# Last configured: 2017-09-07 22:29 CDT by joel
+# Last configured: 2017-09-07 23:27 CDT by joel
#
# grnoc-mon at CITY-OF-LAWTON-005231> show interface terse
#Interface Admin Link
@@ -193,6 +193,7 @@
#irb.160 up up
#irb.166 up up
#irb.200 up up
+#irb.233 up up
#irb.234 up up
#irb.300 up up
#irb.302 up up
@@ -229,7 +230,7 @@
#vlan up down
#vtep up up
# grnoc-mon at CITY-OF-LAWTON-005231> show configuration
-## Last commit: 2017-09-07 22:29:43 CDT by joel
+## Last commit: 2017-09-07 23:27:33 CDT by joel
version 15.1X49-D90.7;
groups {
BASTION-HOSTS {
@@ -1081,6 +1082,7 @@
10.200.0.62/32;
}
address MAIL-NETWORK-234-10.200.0.0/23 10.200.0.0/24;
+ address HONEYPOT-10.0.0.0/24 10.0.0.0/24;
address-set VERIZON-STATIC-FT-SILL-1 {
description "Fort Sill MP Static IPs for CAD Access";
address VERIZON-STATIC-FT-SILL-1-166.148.145.240;
@@ -1490,6 +1492,22 @@
}
}
}
+ rule-set HONEYPOT-TO-UNTRUST {
+ from zone HONEYPOT;
+ to zone UNTRUST;
+ rule NAT-HONEYPOT-TO-UNTRUST {
+ match {
+ source-address 10.0.0.0/24;
+ }
+ then {
+ source-nat {
+ pool {
+ CITY-OF-LAWTON-OUTSIDE;
+ }
+ }
+ }
+ }
+ }
}
static {
rule-set STATIC-NAT {
@@ -2539,6 +2557,18 @@
}
}
}
+ from-zone HONEYPOT to-zone UNTRUST {
+ policy HONEYPOT-TO-UNTRUST {
+ match {
+ source-address HONEYPOT-10.0.0.0/24;
+ destination-address any;
+ application any;
+ }
+ then {
+ permit;
+ }
+ }
+ }
}
zones {
security-zone DMZ {
@@ -2930,6 +2960,18 @@
}
}
}
+ security-zone HONEYPOT {
+ interfaces {
+ irb.233 {
+ host-inbound-traffic {
+ system-services {
+ ping;
+ traceroute;
+ }
+ }
+ }
+ }
+ }
}
}
interfaces {
@@ -3130,6 +3172,12 @@
address 10.2.0.1/23;
}
}
+ unit 233 {
+ description "L3 INTERFACE - HONEYPOT - 10.0.0.1/24";
+ family inet {
+ address 10.0.0.1/24;
+ }
+ }
unit 234 {
description "L3 INTERFACE - MAIL-NETWORK-234 - 10.200.0.1/24";
family inet {
@@ -3665,6 +3713,7 @@
}
VLAN-0233-HONEYPOT {
vlan-id 233;
+ l3-interface irb.233;
}
}
# grnoc-mon at CITY-OF-LAWTON-005231> show ospf neighbor
More information about the Nocrancid
mailing list