grant/grant-mdf-4507.cfg Tue Mar 10 08:33:24 PM EDT 2026
This commit is contained in:
parent
f4ba369101
commit
6c8ae20ad4
@ -1,9 +1,9 @@
|
|||||||
Building configuration...
|
Building configuration...
|
||||||
|
|
||||||
Current configuration : 32927 bytes
|
Current configuration : 33834 bytes
|
||||||
!
|
!
|
||||||
! Last configuration change at 20:39:41 EST Thu Mar 5 2026 by jkafta72.admin
|
! Last configuration change at 14:45:13 EDT Tue Mar 10 2026 by estein66.admin
|
||||||
! NVRAM config last updated at 20:12:23 EST Thu Mar 5 2026 by jkafta72.admin
|
! NVRAM config last updated at 14:45:40 EDT Tue Mar 10 2026 by estein66.admin
|
||||||
!
|
!
|
||||||
version 15.2
|
version 15.2
|
||||||
no service pad
|
no service pad
|
||||||
@ -135,12 +135,26 @@ power redundancy-mode redundant
|
|||||||
archive
|
archive
|
||||||
path bootflash:
|
path bootflash:
|
||||||
maximum 12
|
maximum 12
|
||||||
|
object-group network day-enterprise-servers
|
||||||
|
description day-enterprise-servers
|
||||||
|
host 10.1.230.11
|
||||||
|
host 10.1.40.108
|
||||||
|
!
|
||||||
|
object-group network dns-servers
|
||||||
|
description Internal-DNS-Servers
|
||||||
|
host 10.1.40.10
|
||||||
|
host 10.1.48.11
|
||||||
|
!
|
||||||
object-group network netadmins-hosts
|
object-group network netadmins-hosts
|
||||||
description SCSD Network Administrators Hosts
|
description SCSD Network Administrators Hosts
|
||||||
host 10.1.6.20
|
host 10.1.6.20
|
||||||
host 10.1.6.126
|
host 10.1.6.126
|
||||||
host 10.1.6.32
|
host 10.1.6.32
|
||||||
!
|
!
|
||||||
|
object-group network ntp-servers
|
||||||
|
host 10.1.40.154
|
||||||
|
host 10.1.48.103
|
||||||
|
!
|
||||||
!
|
!
|
||||||
spanning-tree mode rapid-pvst
|
spanning-tree mode rapid-pvst
|
||||||
spanning-tree loopguard default
|
spanning-tree loopguard default
|
||||||
@ -206,6 +220,9 @@ vlan 72
|
|||||||
vlan 107
|
vlan 107
|
||||||
name SBHC
|
name SBHC
|
||||||
!
|
!
|
||||||
|
vlan 230
|
||||||
|
name HVAC
|
||||||
|
!
|
||||||
vlan 233
|
vlan 233
|
||||||
name City-CGRs
|
name City-CGRs
|
||||||
!
|
!
|
||||||
@ -975,6 +992,11 @@ interface Vlan107
|
|||||||
ip access-group sbhc-acl in
|
ip access-group sbhc-acl in
|
||||||
no ip redirects
|
no ip redirects
|
||||||
!
|
!
|
||||||
|
interface Vlan230
|
||||||
|
ip address 10.9.230.1 255.255.255.224
|
||||||
|
ip access-group hvac in
|
||||||
|
shutdown
|
||||||
|
!
|
||||||
interface Vlan233
|
interface Vlan233
|
||||||
ip address 10.9.233.1 255.255.255.0
|
ip address 10.9.233.1 255.255.255.0
|
||||||
!
|
!
|
||||||
@ -1081,6 +1103,16 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
|
|||||||
ip access-list extended CAP1-FILTER-LIST
|
ip access-list extended CAP1-FILTER-LIST
|
||||||
permit ip 192.168.1.0 0.0.0.255 192.168.2.0 0.0.0.255
|
permit ip 192.168.1.0 0.0.0.255 192.168.2.0 0.0.0.255
|
||||||
permit ip 192.168.2.0 0.0.0.255 192.168.1.0 0.0.0.255
|
permit ip 192.168.2.0 0.0.0.255 192.168.1.0 0.0.0.255
|
||||||
|
ip access-list extended hvac
|
||||||
|
permit ip 10.9.230.0 0.0.0.31 object-group day-enterprise-servers
|
||||||
|
permit udp 10.9.230.0 0.0.0.31 object-group dns-servers eq domain
|
||||||
|
permit udp 10.9.230.0 0.0.0.31 object-group ntp-servers eq ntp
|
||||||
|
permit icmp 10.9.230.0 0.0.0.31 host 10.9.230.1
|
||||||
|
permit icmp host 10.9.230.1 10.9.230.0 0.0.0.31
|
||||||
|
deny ip any 10.0.0.0 0.255.255.255
|
||||||
|
deny ip any 192.168.0.0 0.0.255.255
|
||||||
|
deny ip any 172.16.0.0 0.15.255.255
|
||||||
|
permit tcp 10.9.230.0 0.0.0.31 any eq 587 log-input
|
||||||
ip access-list extended sbhc-acl
|
ip access-list extended sbhc-acl
|
||||||
permit ip 10.9.107.0 0.0.0.255 10.107.50.0 0.0.0.255
|
permit ip 10.9.107.0 0.0.0.255 10.107.50.0 0.0.0.255
|
||||||
permit tcp 10.9.107.0 0.0.0.255 any eq 443
|
permit tcp 10.9.107.0 0.0.0.255 any eq 443
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user