From 55c6c320ccb5e048ea169d768173843c26ee4ae5 Mon Sep 17 00:00:00 2001 From: John Poland Date: Wed, 15 Oct 2025 20:27:19 -0400 Subject: [PATCH] fortigate/vdom_scsd/router.cfg Wed Oct 15 08:27:19 PM EDT 2025 --- configs/fortigate/vdom_scsd/router.cfg | 306 +++++++++++++++++++++++++ 1 file changed, 306 insertions(+) create mode 100644 configs/fortigate/vdom_scsd/router.cfg diff --git a/configs/fortigate/vdom_scsd/router.cfg b/configs/fortigate/vdom_scsd/router.cfg new file mode 100644 index 0000000..d2ce5e9 --- /dev/null +++ b/configs/fortigate/vdom_scsd/router.cfg @@ -0,0 +1,306 @@ +config router rip + config redistribute "connected" + end + config redistribute "static" + end + config redistribute "ospf" + end + config redistribute "bgp" + end + config redistribute "isis" + end +end +config router ripng + config redistribute "connected" + end + config redistribute "static" + end + config redistribute "ospf" + end + config redistribute "bgp" + end + config redistribute "isis" + end +end +config router static + edit 1 + set gateway 198.36.24.1 + set distance 1 + set device "outside lag" + set comment "Outgoing traffic" + next + edit 2 + set dst 10.0.0.0 255.0.0.0 + set gateway 10.251.1.1 + set distance 1 + set device "inside lag" + set comment "Internal traffic" + next + edit 3 + set dst 10.250.201.0 255.255.255.0 + set gateway 10.251.1.1 + set distance 1 + set device "inside lag" + set comment "Ring 1" + next + edit 4 + set dst 10.250.202.0 255.255.255.0 + set gateway 10.251.1.1 + set distance 1 + set device "inside lag" + set comment "Ring 2" + next + edit 5 + set dst 10.250.203.0 255.255.255.0 + set gateway 10.251.1.1 + set distance 1 + set device "inside lag" + set comment "Ring 3" + next + edit 6 + set dst 10.250.204.0 255.255.255.0 + set gateway 10.251.1.1 + set distance 1 + set device "inside lag" + set comment "Ring 4" + next + edit 7 + set dst 10.250.205.0 255.255.255.0 + set gateway 10.251.1.1 + set distance 1 + set device "inside lag" + set comment "Ring 5" + next + edit 8 + set dst 10.250.206.0 255.255.255.0 + set gateway 10.251.1.1 + set distance 1 + set device "inside lag" + set comment "Ring 6" + next + edit 9 + set dst 10.250.207.0 255.255.255.0 + set gateway 10.251.1.1 + set distance 1 + set device "inside lag" + set comment "Ring 7" + next + edit 10 + set dst 10.250.208.0 255.255.255.0 + set gateway 10.251.1.1 + set distance 1 + set device "inside lag" + set comment "Ring 8" + next + edit 11 + set dst 172.17.0.0 255.255.0.0 + set gateway 10.251.1.1 + set distance 1 + set device "inside lag" + set comment "CK Mobile 01 IP Range Route" + next + edit 12 + set dst 172.18.0.0 255.255.0.0 + set gateway 10.251.1.1 + set distance 1 + set device "inside lag" + set comment "CK Mobile 02 IP Range Route" + next + edit 13 + set dst 172.19.0.0 255.255.0.0 + set gateway 10.251.1.1 + set distance 1 + set device "inside lag" + set comment "CK Mobile 03 IP Range Route" + next + edit 14 + set dst 192.168.0.0 255.255.0.0 + set gateway 10.251.1.1 + set distance 1 + set device "inside lag" + set comment "Management Internal" + next + edit 15 + set dst 10.212.134.0 255.255.255.0 + set gateway 10.251.1.1 + set distance 1 + set device "inside lag" + set comment "Fortinet VPN" + next + edit 16 + set dst 170.161.52.27 255.255.255.255 + set distance 1 + set device "SRIC_BOCES" + set comment "SRIC BOCES Site-to-Site VPN Route" + next + edit 17 + set dst 10.222.0.0 255.255.0.0 + set device "vpn-042e9903" + set comment "eScholar AWS Site-to-Site VPN" + next + edit 18 + set dst 10.250.0.0 255.255.0.0 + set gateway 10.250.100.92 + set device "city_phones lag" + set comment "Route to City Phones" + next + edit 19 + set dst 10.107.49.0 255.255.255.0 + set device "SCHC" + set comment "Syracuse Community Health Center Routes" + next + edit 20 + set dst 10.107.100.0 255.255.255.0 + set device "SCHC" + set comment "Syracuse Community Health Center Routes" + next + edit 21 + set dst 10.107.50.0 255.255.255.0 + set device "SCHC" + set comment "Syracuse Community Health Center Routes" + next + edit 22 + set dst 10.253.17.0 255.255.255.0 + set gateway 10.250.100.92 + set device "city_phones lag" + set comment "City CGRs" + next + edit 23 + set dst 10.253.18.0 255.255.255.0 + set gateway 10.250.100.92 + set device "city_phones lag" + set comment "City CGRs" + next + edit 24 + set gateway 10.250.100.92 + set device "city_phones lag" + set comment "City Side Park Place VoIP Route" + set dstaddr "City_Side_VoIP_Park_Place_Group" + next + edit 25 + set dst 10.249.0.46 255.255.255.255 + set gateway 10.250.100.92 + set device "city_phones lag" + set comment "City Water/DPW Recording" + next + edit 26 + set gateway 10.250.100.92 + set device "city_phones lag" + set comment "SPD Genetec" + set dstaddr "SPD_Side_Genetec" + next + edit 34 + set dst 172.30.44.0 255.255.254.0 + set device "vpn-0fc50345" + next + edit 28 + set status disable + set dst 172.30.45.35 255.255.255.255 + set device "vpn-0fc50345" + next + edit 29 + set dst 172.30.44.0 255.255.254.0 + set distance 253 + set blackhole enable + next + edit 30 + set dst 10.11.0.0 255.255.240.0 + set device "vpn-0403e61" + set comment "eScholar AWS 2024" + next + edit 31 + set dst 10.46.0.0 255.255.0.0 + set device "DPS" + next + edit 32 + set dst 192.168.46.0 255.255.255.0 + set device "DPS" + next + edit 33 + set dst 10.51.62.0 255.255.255.0 + set device "Highstreet" + next + edit 37 + set dst 192.168.146.0 255.255.255.0 + set device "DPS" + next + edit 35 + set dst 192.168.79.0 255.255.255.0 + set device "RAP" + next + edit 36 + set dst 10.79.0.0 255.255.0.0 + set device "RAP" + set comment "RAP Users" + next +end +config router ospf + config redistribute "connected" + end + config redistribute "static" + end + config redistribute "rip" + end + config redistribute "bgp" + end + config redistribute "isis" + end +end +config router ospf6 + config redistribute "connected" + end + config redistribute "static" + end + config redistribute "rip" + end + config redistribute "bgp" + end + config redistribute "isis" + end +end +config router bgp + config redistribute "connected" + end + config redistribute "rip" + end + config redistribute "ospf" + end + config redistribute "static" + end + config redistribute "isis" + end + config redistribute6 "connected" + end + config redistribute6 "rip" + end + config redistribute6 "ospf" + end + config redistribute6 "static" + end + config redistribute6 "isis" + end +end +config router isis + config redistribute "connected" + end + config redistribute "rip" + end + config redistribute "ospf" + end + config redistribute "bgp" + end + config redistribute "static" + end + config redistribute6 "connected" + end + config redistribute6 "rip" + end + config redistribute6 "ospf" + end + config redistribute6 "bgp" + end + config redistribute6 "static" + end +end +config router multicast +end