[Nocrancid] autopop-onenet.net router config diffs

[rancid at rancid.noc.onenet.net]

Index: configs/oja-cojc-tecumseh-srx240.client.onenet.net
===================================================================
--- configs/oja-cojc-tecumseh-srx240.client.onenet.net	(revision 156459)
+++ configs/oja-cojc-tecumseh-srx240.client.onenet.net	(working copy)
@@ -182,7 +182,7 @@
 #ppd0 up up
 #ppe0 up up
 #st0 up up
-#st0.1 up up
+#st0.1 up down
 #tap up up
 #vlan up up
 #vlan.999 up down
Index: configs/city-of-lawton.client.onenet.net
===================================================================
--- configs/city-of-lawton.client.onenet.net	(revision 156477)
+++ configs/city-of-lawton.client.onenet.net	(working copy)
@@ -1,12 +1,12 @@
 # RANCID-CONTENT-TYPE: juniper
 #
 # grnoc-mon at CITY-OF-LAWTON-005231> show system commit 
-#   2017-09-09 20:54:56 CDT by root via other
-#   2017-09-09 19:22:04 CDT by joel via cli
-#   2017-09-09 19:16:51 CDT by joel via cli
-#   2017-09-09 18:43:52 CDT by joel via cli
-#   2017-09-09 18:42:38 CDT by joel via cli
-#   2017-09-09 14:16:08 CDT by joel via cli
+#   2017-09-10 08:54:19 CDT by joel via cli commit confirmed, rollback in 5mins
+#   2017-09-10 08:38:26 CDT by joel via cli
+#   2017-09-10 08:36:27 CDT by joel via cli commit confirmed, rollback in 10mins
+#   2017-09-10 08:34:22 CDT by joel via cli commit confirmed, rollback in 5mins
+#   2017-09-10 08:25:28 CDT by joel via cli
+#   2017-09-10 08:18:39 CDT by joel via cli commit confirmed, rollback in 10mins
 # grnoc-mon at CITY-OF-LAWTON-005231> show chassis environment 
 # Class Item                           Status     Measurement
 # Temp  Routing Engine                 OK        
@@ -135,7 +135,7 @@
 # Time Source:  NTP CLOCK 
 # System booted: 2017-08-25 14:03 CDT 
 # Protocols started: 2017-08-25 14:03 CDT 
-# Last configured: 2017-09-09 20:54 CDT  by root
+# Last configured: 2017-09-10 08:54 CDT  by joel
 # 
 # grnoc-mon at CITY-OF-LAWTON-005231> show interface terse 
 #Interface Admin Link
@@ -230,7 +230,7 @@
 #vlan up down
 #vtep up up
 # grnoc-mon at CITY-OF-LAWTON-005231> show configuration 
-## Last commit: 2017-09-09 20:54:56 CDT by root
+## Last commit: 2017-09-10 08:54:19 CDT by joel
 version 15.1X49-D90.7;
 groups {
     ABUSE-DENY {
@@ -640,6 +640,15 @@
             root-login deny;
             protocol-version v2;
         }
+        web-management {
+            http {
+                interface ge-0/0/0.0;
+            }
+            https {
+                system-generated-certificate;
+                interface ge-0/0/0.0;
+            }
+        }
     }
     syslog {
         archive size 500k files 5;
@@ -2705,6 +2714,7 @@
                             snmp;
                             ssh;
                             traceroute;
+                            http;
                         }
                     }
                 }
@@ -3462,8 +3472,10 @@
 }
 policy-options {
     prefix-list PRE-MGMT-SOURCES {
+        24.253.245.150/32;
         156.110.31.0/27;
         156.110.31.32/28;
+        164.58.69.122/32;
         164.58.253.0/24;
     }
     prefix-list PRE-LOCALIPv4-SOURCES {
@@ -3495,6 +3507,16 @@
                 }
                 then accept;
             }
+            term WEB-ALLOW {
+                from {
+                    source-prefix-list {
+                        PRE-MGMT-SOURCES;
+                    }
+                    protocol tcp;
+                    destination-port [ https http ];
+                }
+                then accept;
+            }
             term SSH-DENY {
                 from {
                     protocol tcp;
@@ -3513,6 +3535,13 @@
                     discard;
                 }
             }
+            term WEB-DENY {
+                from {
+                    protocol tcp;
+                    destination-port [ https http ];
+                }
+                then accept;
+            }
             term ALL-TRAFFIC {
                 then accept;
             }