From c3b3a44d8c658e22c16b5e48f9f8961a93a9415d Mon Sep 17 00:00:00 2001 From: John Poland Date: Tue, 1 Oct 2024 08:03:45 -0400 Subject: [PATCH] shea/shea-4507-1.cfg Tue Oct 1 08:03:45 AM EDT 2024 --- configs/shea/shea-4507-1.cfg | 33 +++++++++++++-------------------- 1 file changed, 13 insertions(+), 20 deletions(-) diff --git a/configs/shea/shea-4507-1.cfg b/configs/shea/shea-4507-1.cfg index db43c79..6854153 100644 --- a/configs/shea/shea-4507-1.cfg +++ b/configs/shea/shea-4507-1.cfg @@ -1,8 +1,8 @@ Building configuration... -Current configuration : 35773 bytes +Current configuration : 35464 bytes ! -! Last configuration change at 15:49:25 EDT Tue Jul 30 2024 by gdaniels.admin +! Last configuration change at 07:30:55 EDT Tue Oct 1 2024 ! version 15.2 no service pad @@ -111,14 +111,11 @@ archive path bootflash: maximum 5 file privilege 10 -object-group network local-vlan107 - description Shea for TESTING vlan107 -! object-group network netadmin-hosts description SCSD Network Administrators Hosts -! -object-group network operations-vlan6 - 10.1.6.0 255.255.255.0 + host 10.1.6.20 + host 10.1.6.126 + host 10.1.6.32 ! ! spanning-tree mode rapid-pvst @@ -1176,18 +1173,11 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data permit tcp any any eq 1630 permit udp any any eq 1630 ip access-list extended sbhc-acl - permit ip object-group local-vlan107 10.107.50.0 0.0.0.255 - permit tcp object-group local-vlan107 any eq 443 - permit udp object-group local-vlan107 any eq domain - permit ip object-group local-vlan107 10.107.49.0 0.0.0.255 - permit ip object-group local-vlan107 209.217.202.160 0.0.0.15 - permit tcp object-group local-vlan107 any eq 5091 - permit udp object-group local-vlan107 any eq ntp - permit ip object-group local-vlan107 host 173.201.249.4 - permit udp object-group local-vlan107 any eq 5061 - permit tcp object-group local-vlan107 any eq 5061 - permit ip object-group local-vlan107 10.107.100.0 0.0.0.255 - permit icmp object-group local-vlan107 object-group operations-vlan6 + remark School Based Health Center ACL + permit ip 10.53.107.0 0.0.0.255 10.107.49.0 0.0.0.255 + permit ip 10.53.107.0 0.0.0.255 10.107.50.0 0.0.0.255 + permit ip 10.53.107.0 0.0.0.255 10.107.100.0 0.0.0.255 + permit icmp 10.53.107.0 0.0.0.255 object-group netadmin-hosts ip access-list extended tac permit ip host 10.14.21.106 any permit ip any host 10.14.21.106 @@ -1199,6 +1189,9 @@ logging origin-id hostname logging facility syslog logging source-interface Vlan10 logging host 10.1.40.78 +access-list 107 permit ip 10.53.107.0 0.0.0.255 10.107.49.0 0.0.0.255 +access-list 107 permit ip 10.53.107.0 0.0.0.255 10.107.50.0 0.0.0.255 +access-list 107 permit ip 10.53.107.0 0.0.0.255 10.107.100.0 0.0.0.255 access-list 117 permit udp host 10.1.40.189 any eq discard ! !