elmcrest/elmcrest-mdf-a8360-sw1.cfg Mon Mar 16 08:32:17 PM EDT 2026

elmcrest/elmcrest-mdf-a8360-sw2.cfg Mon Mar 16 08:32:17 PM EDT 2026
mckin/mckin-mdf-a8360-sw2.cfg Mon Mar 16 08:32:17 PM EDT 2026
2026-03-16 20:32:19 -04:00 · 2026-03-16 20:32:19 -04:00 · 2026-03-16 20:32:19 -04:00 · 2026-03-16 20:32:19 -04:00 · 2026-03-16 20:32:19 -04:00 · 2026-03-16 20:32:19 -04:00
25 changed files with 481 additions and 0 deletions
--- a/configs/bova/bova-mdf-a8360-sw1.cfg
+++ b/configs/bova/bova-mdf-a8360-sw1.cfg
@ -52,6 +52,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -60,6 +66,9 @@ object-group ip address dom_cont
    50 10.1.203.21
    60 10.1.48.10
    70 10.21.48.10
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address sccm_servers
    10 10.1.48.53
    20 10.41.21.221
@ -131,6 +140,16 @@ access-list ip Image-acl
    195 permit tcp any clearpass_servers group clearpass_tcp_ports
    200 comment ClearPass_TCP_PORTS_OUT
    205 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.41.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.41.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.41.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.41.230.0/255.255.255.252 10.41.230.0/255.255.255.224
+    50 permit icmp 10.41.230.0/255.255.255.224 10.41.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.41.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
--- a/configs/bova/bova-mdf-a8360-sw2.cfg
+++ b/configs/bova/bova-mdf-a8360-sw2.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -59,6 +65,9 @@ object-group ip address dom_cont
    50 10.1.203.21
    60 10.1.48.10
    70 10.21.48.10
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address sccm_servers
    10 10.1.48.53
    20 10.41.21.221
@ -130,6 +139,16 @@ access-list ip Image-acl
    195 permit tcp any clearpass_servers group clearpass_tcp_ports
    200 comment ClearPass_TCP_PORTS_OUT
    205 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.41.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.41.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.41.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.41.230.0/255.255.255.252 10.41.230.0/255.255.255.224
+    50 permit icmp 10.41.230.0/255.255.255.224 10.41.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.41.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
--- a/configs/bright/bright-mdf-a8360-sw1.cfg
+++ b/configs/bright/bright-mdf-a8360-sw1.cfg
@ -52,6 +52,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -59,6 +65,9 @@ object-group ip address dom_cont
    40 10.21.48.10
    50 10.1.203.21
    60 10.1.48.10
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address sccm_servers
    10 10.1.48.53
    20 10.1.48.189
@ -129,6 +138,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.46.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.46.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.46.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.46.230.0/255.255.255.252 10.46.230.0/255.255.255.224
+    50 permit icmp 10.46.230.0/255.255.255.224 10.46.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.46.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
--- a/configs/clary/clary-mdf-a8360-sw1.cfg
+++ b/configs/clary/clary-mdf-a8360-sw1.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -59,6 +65,9 @@ object-group ip address dom_cont
    50 10.1.203.21
    60 10.1.48.10
    70 10.21.48.10
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address sccm_servers
    10 10.1.48.53
    20 10.1.48.189
@ -129,6 +138,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.8.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.8.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.8.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.8.230.0/255.255.255.252 10.8.230.0/255.255.255.224
+    50 permit icmp 10.8.230.0/255.255.255.224 10.8.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.8.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
--- a/configs/clary/clary-mdf-a8360-sw2.cfg
+++ b/configs/clary/clary-mdf-a8360-sw2.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -59,6 +65,9 @@ object-group ip address dom_cont
    50 10.1.203.21
    60 10.1.48.10
    70 10.21.48.10
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address sccm_servers
    10 10.1.48.53
    20 10.1.48.189
@ -129,6 +138,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.8.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.8.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.8.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.8.230.0/255.255.255.252 10.8.230.0/255.255.255.224
+    50 permit icmp 10.8.230.0/255.255.255.224 10.8.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.8.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
--- a/configs/elmcrest/elmcrest-mdf-a8360-sw1.cfg
+++ b/configs/elmcrest/elmcrest-mdf-a8360-sw1.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -58,6 +64,9 @@ object-group ip address dom_cont
    40 10.21.48.10
    50 10.1.203.21
    60 10.1.48.10
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address sccm_servers
    10 10.1.48.53
    20 10.1.48.189
@ -128,6 +137,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.27.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.27.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.27.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.27.230.0/255.255.255.252 10.27.230.0/255.255.255.224
+    50 permit icmp 10.27.230.0/255.255.255.224 10.27.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.27.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
--- a/configs/elmcrest/elmcrest-mdf-a8360-sw2.cfg
+++ b/configs/elmcrest/elmcrest-mdf-a8360-sw2.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -58,6 +64,9 @@ object-group ip address dom_cont
    40 10.21.48.10
    50 10.1.203.21
    60 10.1.48.10
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address sccm_servers
    10 10.1.48.53
    20 10.1.48.189
@ -128,6 +137,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.27.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.27.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.27.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.27.230.0/255.255.255.252 10.27.230.0/255.255.255.224
+    50 permit icmp 10.27.230.0/255.255.255.224 10.27.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.27.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
--- a/configs/hwsmi/hwsmi-mdf-a8360-sw1.cfg
+++ b/configs/hwsmi/hwsmi-mdf-a8360-sw1.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -60,6 +66,9 @@ object-group ip address dom_cont
    60 10.1.48.10
 object-group ip address netadmin_hosts
    10 10.1.6.0/255.255.255.0
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address rfc_1918
    10 10.0.0.0/255.0.0.0
    20 192.168.0.0/255.255.0.0
@ -151,6 +160,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.15.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.15.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.15.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.15.230.0/255.255.255.252 10.15.230.0/255.255.255.224
+    50 permit icmp 10.15.230.0/255.255.255.224 10.15.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.15.230.0/255.255.255.224 any eq 587 log count
 access-list ip sbhc-acl
    10 comment SBHC_Out
    10 permit any sbhc_internal sbhc_external
--- a/configs/hwsmi/hwsmi-mdf-a8360-sw2.cfg
+++ b/configs/hwsmi/hwsmi-mdf-a8360-sw2.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -60,6 +66,9 @@ object-group ip address dom_cont
    60 10.1.48.10
 object-group ip address netadmin_hosts
    10 10.1.6.0/255.255.255.0
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address rfc_1918
    10 10.0.0.0/255.0.0.0
    20 192.168.0.0/255.255.0.0
@ -151,6 +160,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.15.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.15.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.15.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.15.230.0/255.255.255.252 10.15.230.0/255.255.255.224
+    50 permit icmp 10.15.230.0/255.255.255.224 10.15.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.15.230.0/255.255.255.224 any eq 587 log count
 access-list ip sbhc-acl
    10 comment SBHC_Out
    10 permit any sbhc_internal sbhc_external
--- a/configs/lemoy/lemoy-mdf-a8360-sw1.cfg
+++ b/configs/lemoy/lemoy-mdf-a8360-sw1.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -59,6 +65,9 @@ object-group ip address dom_cont
    50 10.1.203.21
    60 10.1.48.10
    70 10.21.48.10
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address sccm_servers
    10 10.1.48.53
    20 10.1.48.189
@ -129,6 +138,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.33.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.33.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.33.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.33.230.0/255.255.255.252 10.33.230.0/255.255.255.224
+    50 permit icmp 10.33.230.0/255.255.255.224 10.33.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.33.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
--- a/configs/lemoy/lemoy-mdf-a8360-sw2.cfg
+++ b/configs/lemoy/lemoy-mdf-a8360-sw2.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -59,6 +65,9 @@ object-group ip address dom_cont
    50 10.1.203.21
    60 10.1.48.10
    70 10.21.48.10
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address sccm_servers
    10 10.1.48.53
    20 10.1.48.189
@ -129,6 +138,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.33.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.33.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.33.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.33.230.0/255.255.255.252 10.33.230.0/255.255.255.224
+    50 permit icmp 10.33.230.0/255.255.255.224 10.33.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.33.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
--- a/configs/mckin/mckin-mdf-a8360-sw1.cfg
+++ b/configs/mckin/mckin-mdf-a8360-sw1.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -58,6 +64,9 @@ object-group ip address dom_cont
    40 10.21.48.10
    50 10.1.203.21
    60 10.1.48.10
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address sccm_servers
    10 10.1.48.53
    20 10.1.48.189
@ -128,6 +137,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.36.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.36.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.36.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.36.230.0/255.255.255.252 10.36.230.0/255.255.255.224
+    50 permit icmp 10.36.230.0/255.255.255.224 10.36.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.36.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
--- a/configs/mckin/mckin-mdf-a8360-sw2.cfg
+++ b/configs/mckin/mckin-mdf-a8360-sw2.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -58,6 +64,9 @@ object-group ip address dom_cont
    40 10.21.48.10
    50 10.1.203.21
    60 10.1.48.10
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address sccm_servers
    10 10.1.48.53
    20 10.1.48.189
@ -128,6 +137,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.36.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.36.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.36.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.36.230.0/255.255.255.252 10.36.230.0/255.255.255.224
+    50 permit icmp 10.36.230.0/255.255.255.224 10.36.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.36.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
--- a/configs/meach/meach-mdf-a8360-sw1.cfg
+++ b/configs/meach/meach-mdf-a8360-sw1.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -58,6 +64,9 @@ object-group ip address dom_cont
    40 10.21.48.10
    50 10.1.203.21
    60 10.1.48.10
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address sccm_servers
    10 10.1.48.53
    20 10.1.48.189
@ -128,6 +137,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.37.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.37.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.37.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.37.230.0/255.255.255.252 10.37.230.0/255.255.255.224
+    50 permit icmp 10.37.230.0/255.255.255.224 10.37.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.37.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
--- a/configs/meach/meach-mdf-a8360-sw2.cfg
+++ b/configs/meach/meach-mdf-a8360-sw2.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -58,6 +64,9 @@ object-group ip address dom_cont
    40 10.21.48.10
    50 10.1.203.21
    60 10.1.48.10
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address sccm_servers
    10 10.1.48.53
    20 10.1.48.189
@ -128,6 +137,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.37.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.37.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.37.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.37.230.0/255.255.255.252 10.37.230.0/255.255.255.224
+    50 permit icmp 10.37.230.0/255.255.255.224 10.37.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.37.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
--- a/configs/pdc/pdc-mdf-a8360-sw1.cfg
+++ b/configs/pdc/pdc-mdf-a8360-sw1.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -58,6 +64,9 @@ object-group ip address dom_cont
    40 10.21.48.10
    50 10.1.203.21
    60 10.1.48.10
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address sccm_servers
    10 10.1.48.53
    20 10.1.48.189
@ -128,6 +137,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.60.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.60.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.60.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.60.230.0/255.255.255.252 10.60.230.0/255.255.255.224
+    50 permit icmp 10.60.230.0/255.255.255.224 10.60.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.60.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
--- a/configs/pdc/pdc-mdf-a8360-sw2.cfg
+++ b/configs/pdc/pdc-mdf-a8360-sw2.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -58,6 +64,9 @@ object-group ip address dom_cont
    40 10.21.48.10
    50 10.1.203.21
    60 10.1.48.10
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address sccm_servers
    10 10.1.48.53
    20 10.1.48.189
@ -128,6 +137,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.60.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.60.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.60.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.60.230.0/255.255.255.252 10.60.230.0/255.255.255.224
+    50 permit icmp 10.60.230.0/255.255.255.224 10.60.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.60.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
--- a/configs/psla/psla-mdf-a8360-sw1.cfg
+++ b/configs/psla/psla-mdf-a8360-sw1.cfg
@ -38,6 +38,16 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+    30 10.1.230.11
+    40 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
+    30 10.1.40.10
+    40 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -47,6 +57,11 @@ object-group ip address dom_cont
    60 10.1.48.10
 object-group ip address netadmin_hosts
    10 10.1.6.0/255.255.255.0
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
+    30 10.1.40.154
+    40 10.1.48.103
 object-group ip address rfc_1918
    10 10.0.0.0/255.0.0.0
    20 192.168.0.0/255.255.0.0
@ -139,6 +154,16 @@ access-list ip Image-acl
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
 access-list ip hvac
+access-list ip hvac-acl
+    10 permit any 10.3.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.3.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.3.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.3.230.0/255.255.255.252 10.3.230.0/255.255.255.224
+    50 permit icmp 10.3.230.0/255.255.255.224 10.3.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.3.230.0/255.255.255.224 any eq 587 log count
 access-list ip sbhc-acl
    10 comment SBHC_Out
    10 permit any sbhc_internal sbhc_external
--- a/configs/psla/psla-mdf-a8360-sw2.cfg
+++ b/configs/psla/psla-mdf-a8360-sw2.cfg
@ -38,6 +38,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -47,6 +53,9 @@ object-group ip address dom_cont
    60 10.1.48.10
 object-group ip address netadmin_hosts
    10 10.1.6.0/255.255.255.0
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address rfc_1918
    10 10.0.0.0/255.0.0.0
    20 192.168.0.0/255.255.0.0
@ -138,6 +147,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.3.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.3.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.3.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.3.230.0/255.255.255.252 10.3.230.0/255.255.255.224
+    50 permit icmp 10.3.230.0/255.255.255.224 10.3.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.3.230.0/255.255.255.224 any eq 587 log count
 access-list ip sbhc-acl
    10 comment SBHC_Out
    10 permit any sbhc_internal sbhc_external
--- a/configs/rober/rober-mdf-a8360-sw1.cfg
+++ b/configs/rober/rober-mdf-a8360-sw1.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -59,6 +65,9 @@ object-group ip address dom_cont
    50 10.1.203.21
    60 10.1.48.10
    70 10.21.48.10
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address sccm_servers
    10 10.1.48.53
    20 10.1.48.189
@ -129,6 +138,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.42.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.42.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.42.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.42.230.0/255.255.255.252 10.42.230.0/255.255.255.224
+    50 permit icmp 10.42.230.0/255.255.255.224 10.42.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.42.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
--- a/configs/rober/rober-mdf-a8360-sw2.cfg
+++ b/configs/rober/rober-mdf-a8360-sw2.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -59,6 +65,9 @@ object-group ip address dom_cont
    50 10.1.203.21
    60 10.1.48.10
    70 10.21.48.10
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address sccm_servers
    10 10.1.48.53
    20 10.1.48.189
@ -129,6 +138,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.42.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.42.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.42.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.42.230.0/255.255.255.252 10.42.230.0/255.255.255.224
+    50 permit icmp 10.42.230.0/255.255.255.224 10.42.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.42.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
--- a/configs/vanduyn/vanduyn-mdf-a8360-sw1.cfg
+++ b/configs/vanduyn/vanduyn-mdf-a8360-sw1.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -58,6 +64,9 @@ object-group ip address dom_cont
    40 10.21.48.10
    50 10.1.203.21
    60 10.1.48.10
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address sccm_servers
    10 10.1.48.53
    20 10.1.48.189
@ -128,6 +137,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.49.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.49.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.49.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.49.230.0/255.255.255.252 10.49.230.0/255.255.255.224
+    50 permit icmp 10.49.230.0/255.255.255.224 10.49.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.49.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
--- a/configs/vanduyn/vanduyn-mdf-a8360-sw2.cfg
+++ b/configs/vanduyn/vanduyn-mdf-a8360-sw2.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -58,6 +64,9 @@ object-group ip address dom_cont
    40 10.21.48.10
    50 10.1.203.21
    60 10.1.48.10
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address sccm_servers
    10 10.1.48.53
    20 10.1.48.189
@ -128,6 +137,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.49.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.49.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.49.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.49.230.0/255.255.255.252 10.49.230.0/255.255.255.224
+    50 permit icmp 10.49.230.0/255.255.255.224 10.49.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.49.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
--- a/configs/weeks/weeks-mdf-a8360-sw1.cfg
+++ b/configs/weeks/weeks-mdf-a8360-sw1.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -61,6 +67,9 @@ object-group ip address dom_cont
    70 10.21.48.10
 object-group ip address netadmin_hosts
    10 10.1.6.0/255.255.255.0
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address rfc_1918
    10 10.0.0.0/255.0.0.0
    20 192.168.0.0/255.255.0.0
@ -152,6 +161,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.34.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.34.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.34.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.34.230.0/255.255.255.252 10.34.230.0/255.255.255.224
+    50 permit icmp 10.34.230.0/255.255.255.224 10.34.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.34.230.0/255.255.255.224 any eq 587 log count
 access-list ip sbhc-acl
    10 comment SBHC_Out
    10 permit any sbhc_internal sbhc_external
--- a/configs/weeks/weeks-mdf-a8360-sw2.cfg
+++ b/configs/weeks/weeks-mdf-a8360-sw2.cfg
@ -51,6 +51,12 @@ object-group ip address clearpass_servers
    10 10.1.40.115
    20 10.1.40.116
    30 10.1.40.117
+object-group ip address day-enterprise-servers
+    10 10.1.230.11
+    20 10.1.40.108
+object-group ip address dns-servers
+    10 10.1.40.10
+    20 10.1.48.11
 object-group ip address dom_cont
    10 10.1.40.10
    20 10.1.40.95
@ -61,6 +67,9 @@ object-group ip address dom_cont
    70 10.21.48.10
 object-group ip address netadmin_hosts
    10 10.1.6.0/255.255.255.0
+object-group ip address ntp-servers
+    10 10.1.40.154
+    20 10.1.48.103
 object-group ip address rfc_1918
    10 10.0.0.0/255.0.0.0
    20 192.168.0.0/255.255.0.0
@ -152,6 +161,16 @@ access-list ip Image-acl
    158 comment ClearPass_TCP_PORTS_OUT
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
+access-list ip hvac-acl
+    10 permit any 10.34.230.0/255.255.255.224 day-enterprise-servers
+    20 permit udp 10.34.230.0/255.255.255.224 dns-servers eq dns
+    30 permit udp 10.34.230.0/255.255.255.224 ntp-servers eq ntp
+    40 permit icmp 10.34.230.0/255.255.255.252 10.34.230.0/255.255.255.224
+    50 permit icmp 10.34.230.0/255.255.255.224 10.34.230.0/255.255.255.252
+    60 deny any any 10.0.0.0/255.0.0.0
+    70 deny any any 192.168.0.0/255.255.0.0
+    80 deny any any 172.16.0.0/255.240.0.0
+    90 permit tcp 10.34.230.0/255.255.255.224 any eq 587 log count
 access-list ip sbhc-acl
    10 comment SBHC_Out
    10 permit any sbhc_internal sbhc_external
Author	SHA1	Message	Date
John Poland	e0d42ce9d2	elmcrest/elmcrest-mdf-a8360-sw1.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:19 -04:00
John Poland	854bec95be	elmcrest/elmcrest-mdf-a8360-sw2.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:19 -04:00
John Poland	e2aa6e1b49	mckin/mckin-mdf-a8360-sw2.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:19 -04:00
John Poland	1be1ca2dc0	mckin/mckin-mdf-a8360-sw1.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:19 -04:00
John Poland	4ea385ea1b	meach/meach-mdf-a8360-sw1.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:19 -04:00
John Poland	0dbf285e7f	meach/meach-mdf-a8360-sw2.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:19 -04:00
John Poland	d616a82fbe	weeks/weeks-mdf-a8360-sw2.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:19 -04:00
John Poland	2b6b13c97e	weeks/weeks-mdf-a8360-sw1.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:19 -04:00
John Poland	eba63605fb	hwsmi/hwsmi-mdf-a8360-sw1.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:19 -04:00
John Poland	84eb94b637	hwsmi/hwsmi-mdf-a8360-sw2.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:19 -04:00
John Poland	6b8ee649b7	bright/bright-mdf-a8360-sw1.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:19 -04:00
John Poland	2a164f8124	psla/psla-mdf-a8360-sw2.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:18 -04:00
John Poland	ffe647c67f	psla/psla-mdf-a8360-sw1.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:18 -04:00
John Poland	64b4333f4f	bova/bova-mdf-a8360-sw1.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:18 -04:00
John Poland	b034cdaed5	bova/bova-mdf-a8360-sw2.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:18 -04:00
John Poland	d00491b723	pdc/pdc-mdf-a8360-sw1.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:18 -04:00
John Poland	7858129537	pdc/pdc-mdf-a8360-sw2.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:18 -04:00
John Poland	d02791c66a	lemoy/lemoy-mdf-a8360-sw1.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:18 -04:00
John Poland	673b400129	lemoy/lemoy-mdf-a8360-sw2.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:18 -04:00
John Poland	73fa27ca42	clary/clary-mdf-a8360-sw1.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:18 -04:00
John Poland	d45d4f4a17	clary/clary-mdf-a8360-sw2.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:18 -04:00
John Poland	d5c159bc76	rober/rober-mdf-a8360-sw1.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:17 -04:00
John Poland	9309d6aaf1	rober/rober-mdf-a8360-sw2.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:17 -04:00
John Poland	e8c841b135	vanduyn/vanduyn-mdf-a8360-sw1.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:17 -04:00
John Poland	f1c75c01e5	vanduyn/vanduyn-mdf-a8360-sw2.cfg Mon Mar 16 08:32:17 PM EDT 2026	2026-03-16 20:32:17 -04:00