scsd/scsd-configs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: scsd:a95828b68cc29c8795e07efc0be43cd472f0357f
Branches Tags
scsd:main
...
compare: scsd:bd530b7a8d55e8001d88cec6beb48675ccd93f22
Branches Tags
scsd:main

12 Commits
a95828b68c ... bd530b7a8d

Author SHA1 Message Date
John Poland
bd530b7a8d belle/belle-4507-1.cfg Tue Mar 31 08:34:01 PM EDT 2026 2026-03-31 20:34:03 -04:00
John Poland
9088126d97 noc/noc-a6300-sw1.cfg Tue Mar 31 08:34:01 PM EDT 2026 2026-03-31 20:34:03 -04:00
John Poland
0eadcfaec8 psla/psla-idf3-a6300-sw1.cfg Tue Mar 31 08:34:01 PM EDT 2026 2026-03-31 20:34:03 -04:00
John Poland
84be042a8c shea/shea-4507-1.cfg Tue Mar 31 08:34:01 PM EDT 2026 2026-03-31 20:34:01 -04:00
John Poland
3e6ade2eaf itc/itc-mdf-a8360-sw2.cfg Tue Mar 31 08:34:01 PM EDT 2026 2026-03-31 20:34:01 -04:00
John Poland
4d25804eb5 itc/itc-idf2-a6300-sw1.cfg Tue Mar 31 08:34:01 PM EDT 2026 2026-03-31 20:34:01 -04:00
John Poland
7c2e9c7c53 itc/itc-idf1-a6300-sw1.cfg Tue Mar 31 08:34:01 PM EDT 2026 2026-03-31 20:34:01 -04:00
John Poland
159bf893f4 itc/itc-mdf-a8360-sw1.cfg Tue Mar 31 08:34:01 PM EDT 2026 2026-03-31 20:34:01 -04:00
John Poland
3ac4268e6b itc/itc-idf3-a6300-sw1.cfg Tue Mar 31 08:34:01 PM EDT 2026 2026-03-31 20:34:01 -04:00
John Poland
edbd89b8fe itc/itc-mdf-a6300-sw1.cfg Tue Mar 31 08:34:01 PM EDT 2026 2026-03-31 20:34:01 -04:00
John Poland
d027176777 fortigate-backup Tue Mar 31 08:34:01 PM EDT 2026 2026-03-31 20:34:01 -04:00
John Poland
2703da76d3 fortigate Tue Mar 31 08:34:01 PM EDT 2026 2026-03-31 20:34:01 -04:00
12 changed files with 540 additions and 513 deletions
Show Stats Expand all files Collapse all files

15
configs/belle/belle-4507-1.cfg
View File

@ -1,9 +1,9 @@
Building configuration... Building configuration...
Current configuration : 31509 bytes Current configuration : 31822 bytes
! !
! Last configuration change at 07:41:31 EDT Tue Mar 31 2026 by jpoland.oa ! Last configuration change at 16:29:48 EDT Tue Mar 31 2026 by jkafta72.admin
! NVRAM config last updated at 07:41:31 EDT Tue Mar 31 2026 by jpoland.oa ! NVRAM config last updated at 15:59:46 EDT Tue Mar 31 2026 by jkafta72.admin
! !
version 15.2 version 15.2
no service pad no service pad
@ -846,6 +846,7 @@ interface Vlan35
! !
interface Vlan40 interface Vlan40
ip address 10.16.40.1 255.255.255.0 ip address 10.16.40.1 255.255.255.0
ip access-group hvac-acl in
no ip redirects no ip redirects
ip pim sparse-mode ip pim sparse-mode
! !
@ -1068,6 +1069,14 @@ ip access-list extended hvac
deny ip any 192.168.0.0 0.0.255.255 deny ip any 192.168.0.0 0.0.255.255
deny ip any 172.16.0.0 0.15.255.255 deny ip any 172.16.0.0 0.15.255.255
permit tcp 10.16.230.0 0.0.0.31 any eq 587 log-input permit tcp 10.16.230.0 0.0.0.31 any eq 587 log-input
ip access-list extended hvac-acl
permit ip any host 10.1.230.11
permit ip any host 10.1.40.108
permit udp any any eq domain
deny ip any 10.0.0.0 0.0.0.255
deny ip any 192.168.0.0 0.0.255.255
deny ip any 172.16.0.0 0.15.255.255
permit tcp any any eq 587 log count
ip access-list extended users ip access-list extended users
deny ip any 192.168.0.0 0.0.255.255 deny ip any 192.168.0.0 0.0.255.255
permit ip any any permit ip any any

964
configs/fortigate/fortigate.conf
View File

File diff suppressed because it is too large Load Diff

4
configs/fortigate/global/system.cfg
View File

@ -680,9 +680,10 @@ config system custom-language
end end
config system admin config system admin
edit "admin" edit "admin"
set trusthost1 10.1.6.0 255.255.255.255 set trusthost1 10.1.6.0 255.255.255.0
set trusthost2 10.1.40.0 255.255.255.0 set trusthost2 10.1.40.0 255.255.255.0
set trusthost3 10.1.48.55 255.255.255.255 set trusthost3 10.1.48.55 255.255.255.255
set trusthost4 10.14.50.140 255.255.255.255
set accprofile "super_admin" set accprofile "super_admin"
set vdom "root" set vdom "root"
set password ENC *HIDDEN* set password ENC *HIDDEN*
@ -692,6 +693,7 @@ config system admin
set trusthost2 10.1.40.0 255.255.255.0 set trusthost2 10.1.40.0 255.255.255.0
set trusthost3 10.1.48.0 255.255.255.0 set trusthost3 10.1.48.0 255.255.255.0
set trusthost4 10.14.50.140 255.255.255.255 set trusthost4 10.14.50.140 255.255.255.255
set trusthost5 10.14.0.0 255.255.248.0
set accprofile "super_admin" set accprofile "super_admin"
set vdom "root" "scsd" set vdom "root" "scsd"
set password ENC *HIDDEN* set password ENC *HIDDEN*

6
configs/itc/itc-idf1-a6300-sw1.cfg
View File

@ -18,6 +18,7 @@ banner motd #
! ! ! !
! IF YOU ARE NOT AUTHORIZED TO BE HERE DISCONNECT NOW! ! ! IF YOU ARE NOT AUTHORIZED TO BE HERE DISCONNECT NOW! !
!!!!!!!!!!!!!!!!!!!!!!!!!!!!! WARNING !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!# !!!!!!!!!!!!!!!!!!!!!!!!!!!!! WARNING !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!#
lldp management-address vlan 10
user admin group administrators password ciphertext AQBapYgiO7i1bC2908gtqmXf0OCYGasbhNBBcjX2XZxZZvhdYgAAABrhQbDzTTmjk4P8iGMOOobyXfBuwOUlPQImz3QD206V3PKoX57EAlldYfooLhP1hM4MHNM6Z+o+WJRmpiXXGk4DnS+fa98GBtfjhh3dni4knpTmPnq4gml9L4q2H2k+idmg user admin group administrators password ciphertext AQBapYgiO7i1bC2908gtqmXf0OCYGasbhNBBcjX2XZxZZvhdYgAAABrhQbDzTTmjk4P8iGMOOobyXfBuwOUlPQImz3QD206V3PKoX57EAlldYfooLhP1hM4MHNM6Z+o+WJRmpiXXGk4DnS+fa98GBtfjhh3dni4knpTmPnq4gml9L4q2H2k+idmg
clock timezone america/new_york clock timezone america/new_york
loop-protect re-enable-timer 30 loop-protect re-enable-timer 30
@ -7628,6 +7629,11 @@ ip route 0.0.0.0/0 192.168.2.1
mirror session 1 mirror session 1
destination tunnel 10.41.30.149 source 192.168.41.11 destination tunnel 10.41.30.149 source 192.168.41.11
source interface 6/1/31 both source interface 6/1/31 both
mirror session 2
destination tunnel 10.1.6.126 source 192.168.114.8
source interface 6/1/9 both
source interface 6/1/24 both
enable
ip dns domain-name scsd.ad ip dns domain-name scsd.ad
ip dns server-address 10.1.40.10 ip dns server-address 10.1.40.10
ip dns server-address 10.21.48.10 ip dns server-address 10.21.48.10

1
configs/itc/itc-idf2-a6300-sw1.cfg
View File

@ -18,6 +18,7 @@ banner motd #
! ! ! !
! IF YOU ARE NOT AUTHORIZED TO BE HERE DISCONNECT NOW! ! ! IF YOU ARE NOT AUTHORIZED TO BE HERE DISCONNECT NOW! !
!!!!!!!!!!!!!!!!!!!!!!!!!!!!! WARNING !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!# !!!!!!!!!!!!!!!!!!!!!!!!!!!!! WARNING !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!#
lldp management-address vlan 10
user admin group administrators password ciphertext AQBapbkg0Zn6AHfBwLq2Kwvb9hmpPmJSOmTjIoPizIZ3NMN4YgAAACRQxdcyyjUpg8uMP28dKxQ6sTqtoqrA4TUvFuaD4F6cM1er5Tg3tcq4tX6eN6lNp0fETdy8wzMG13gsefEyDxvs178lHQQ/rVVk0OJW5NkqkBPQDRNHh8dt1csrTVBd4mlF user admin group administrators password ciphertext AQBapbkg0Zn6AHfBwLq2Kwvb9hmpPmJSOmTjIoPizIZ3NMN4YgAAACRQxdcyyjUpg8uMP28dKxQ6sTqtoqrA4TUvFuaD4F6cM1er5Tg3tcq4tX6eN6lNp0fETdy8wzMG13gsefEyDxvs178lHQQ/rVVk0OJW5NkqkBPQDRNHh8dt1csrTVBd4mlF
clock timezone america/new_york clock timezone america/new_york
loop-protect re-enable-timer 30 loop-protect re-enable-timer 30

1
configs/itc/itc-idf3-a6300-sw1.cfg
View File

@ -18,6 +18,7 @@ banner motd #
! ! ! !
! IF YOU ARE NOT AUTHORIZED TO BE HERE DISCONNECT NOW! ! ! IF YOU ARE NOT AUTHORIZED TO BE HERE DISCONNECT NOW! !
!!!!!!!!!!!!!!!!!!!!!!!!!!!!! WARNING !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!# !!!!!!!!!!!!!!!!!!!!!!!!!!!!! WARNING !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!#
lldp management-address vlan 10
user admin group administrators password ciphertext AQBapezz/OmdNJm9mX8rVGSNN4PJjZXylqq8av6nZ6sPV6AAYgAAAIY0XvJdeUIlAxyIXhcFFL4jV1b2vUKbysdjabF0O9LWu6rOGbCeBCGWOKBc0upI8JpCZ4LYmYKSybIXdeaff778BwOCiRI/tLMxeGsY5TpUFSGKnqjNreCiyD47QjIoc60M user admin group administrators password ciphertext AQBapezz/OmdNJm9mX8rVGSNN4PJjZXylqq8av6nZ6sPV6AAYgAAAIY0XvJdeUIlAxyIXhcFFL4jV1b2vUKbysdjabF0O9LWu6rOGbCeBCGWOKBc0upI8JpCZ4LYmYKSybIXdeaff778BwOCiRI/tLMxeGsY5TpUFSGKnqjNreCiyD47QjIoc60M
clock timezone america/new_york clock timezone america/new_york
loop-protect re-enable-timer 30 loop-protect re-enable-timer 30

1
configs/itc/itc-mdf-a6300-sw1.cfg
View File

@ -18,6 +18,7 @@ banner motd #
! ! ! !
! IF YOU ARE NOT AUTHORIZED TO BE HERE DISCONNECT NOW! ! ! IF YOU ARE NOT AUTHORIZED TO BE HERE DISCONNECT NOW! !
!!!!!!!!!!!!!!!!!!!!!!!!!!!!! WARNING !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!# !!!!!!!!!!!!!!!!!!!!!!!!!!!!! WARNING !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!#
lldp management-address vlan 10
user admin group administrators password ciphertext AQBapeMFiMZC3L6lE2uMobVcz1V9cNlpjwqF0hY0CMlSy5GQYgAAAAES1syr9muzd2ich4YcX9Y5J6uv3yMKV/lJSQNctp17BIJnN8ZKgO/aYgayf4Q6zyzCXcc3ulzjPN3p2opAdThLt9q2LhF+TQ+Wgqk6A1K5RcCsjevPOE7tH75PkXr4qq3D user admin group administrators password ciphertext AQBapeMFiMZC3L6lE2uMobVcz1V9cNlpjwqF0hY0CMlSy5GQYgAAAAES1syr9muzd2ich4YcX9Y5J6uv3yMKV/lJSQNctp17BIJnN8ZKgO/aYgayf4Q6zyzCXcc3ulzjPN3p2opAdThLt9q2LhF+TQ+Wgqk6A1K5RcCsjevPOE7tH75PkXr4qq3D
clock timezone america/new_york clock timezone america/new_york
loop-protect re-enable-timer 30 loop-protect re-enable-timer 30

11
configs/itc/itc-mdf-a8360-sw1.cfg
View File

@ -1,6 +1,6 @@
Current configuration: Current configuration:
! !
!Version ArubaOS-CX LL.10.13.1110 !Version ArubaOS-CX LL.10.13.1161
!export-password: default !export-password: default
hostname itc-mdf-a8360-sw1 hostname itc-mdf-a8360-sw1
banner motd # banner motd #
@ -88,6 +88,15 @@ object-group port sccm_udp_ports
70 eq microsoft-ds 70 eq microsoft-ds
90 eq isakmp 90 eq isakmp
140 gt 1022 140 gt 1022
access-list ip HVAC
10 permit any any 10.1.230.11
20 permit any any 10.1.40.108
30 permit udp any 10.1.40.10 eq dns
40 permit udp any 10.1.48.11 eq dns
50 deny any any 10.0.0.0/255.0.0.0
60 deny any any 192.168.0.0/255.255.0.0
70 deny any any 172.16.0.0/255.240.0.0
80 permit tcp any any eq 587 log count
access-list ip Image-acl access-list ip Image-acl
10 comment DC_UDP_PORTS_IN 10 comment DC_UDP_PORTS_IN
10 permit udp dom_cont group dc_udp_ports any 10 permit udp dom_cont group dc_udp_ports any

11
configs/itc/itc-mdf-a8360-sw2.cfg
View File

@ -1,6 +1,6 @@
Current configuration: Current configuration:
! !
!Version ArubaOS-CX LL.10.13.1110 !Version ArubaOS-CX LL.10.13.1161
!export-password: default !export-password: default
hostname itc-mdf-a8360-sw2 hostname itc-mdf-a8360-sw2
banner motd # banner motd #
@ -89,6 +89,15 @@ object-group port sccm_udp_ports
70 eq microsoft-ds 70 eq microsoft-ds
90 eq isakmp 90 eq isakmp
140 gt 1022 140 gt 1022
access-list ip HVAC
10 permit any any 10.1.230.11
20 permit any any 10.1.40.108
30 permit udp any 10.1.40.10 eq dns
40 permit udp any 10.1.48.11 eq dns
50 deny any any 10.0.0.0/255.0.0.0
60 deny any any 192.168.0.0/255.255.0.0
70 deny any any 172.16.0.0/255.240.0.0
80 permit tcp any any eq 587 log count
access-list ip Image-acl access-list ip Image-acl
10 comment DC_UDP_PORTS_IN 10 comment DC_UDP_PORTS_IN
10 permit udp dom_cont group dc_udp_ports any 10 permit udp dom_cont group dc_udp_ports any

15
configs/noc/noc-a6300-sw1.cfg
View File

@ -71,11 +71,14 @@ vsf member 3
type jl659a type jl659a
link 1 3/1/49 link 1 3/1/49
link 2 3/1/50 link 2 3/1/50
access-list ip hvac access-list ip hvac-acl
10 permit tcp 10.1.230.12 10.1.230.11 10 permit any any 10.1.230.11
20 permit icmp 10.1.230.12 10.1.230.11 log count 20 permit any any 10.1.40.108
30 permit tcp 10.1.230.12 10.1.40.108 30 permit udp any any eq dns
40 permit icmp 10.1.230.12 10.1.40.108 log count 40 deny any any 10.0.0.0/255.0.0.0
50 deny any any 192.168.0.0/255.255.0.0
60 deny any any 172.16.0.0/255.240.0.0
70 permit tcp any any eq 587 log count
dhcpv4-snooping dhcpv4-snooping
client track ip client track ip
vlan 1 vlan 1
@ -1461,7 +1464,7 @@ interface 2/1/2
spanning-tree root-guard spanning-tree root-guard
spanning-tree tcn-guard spanning-tree tcn-guard
loop-protect loop-protect
apply access-list ip hvac in apply access-list ip hvac-acl in
port-access onboarding-method concurrent enable port-access onboarding-method concurrent enable
client track ip enable client track ip enable
client track ip update-interval 120 client track ip update-interval 120

18
configs/psla/psla-idf3-a6300-sw1.cfg
View File

@ -9285,30 +9285,16 @@ interface 7/1/35
client track ip update-interval 120 client track ip update-interval 120
power-over-ethernet pre-std-detect power-over-ethernet pre-std-detect
interface 7/1/36 interface 7/1/36
description Auto description -TO Galaxy phone-
no shutdown no shutdown
no routing no routing
vlan access 168 vlan access 70
spanning-tree bpdu-guard spanning-tree bpdu-guard
spanning-tree port-type admin-edge spanning-tree port-type admin-edge
spanning-tree root-guard spanning-tree root-guard
spanning-tree tcn-guard spanning-tree tcn-guard
loop-protect loop-protect
port-access onboarding-method concurrent enable port-access onboarding-method concurrent enable
aaa authentication port-access allow-cdp-bpdu
aaa authentication port-access allow-lldp-bpdu
aaa authentication port-access client-limit 3
aaa authentication port-access dot1x authenticator
cached-reauth
cached-reauth-period 86400
reauth
enable
aaa authentication port-access mac-auth
cached-reauth
cached-reauth-period 86400
quiet-period 30
reauth
enable
client track ip enable client track ip enable
client track ip update-interval 120 client track ip update-interval 120
power-over-ethernet pre-std-detect power-over-ethernet pre-std-detect

6
configs/shea/shea-4507-1.cfg
View File

@ -1,9 +1,9 @@
Building configuration... Building configuration...
Current configuration : 36271 bytes Current configuration : 36279 bytes
! !
! Last configuration change at 07:41:25 EDT Tue Mar 31 2026 by jpoland.oa ! Last configuration change at 09:47:46 EDT Tue Mar 31 2026 by tmarri81.admin
! NVRAM config last updated at 07:41:25 EDT Tue Mar 31 2026 by jpoland.oa ! NVRAM config last updated at 09:47:49 EDT Tue Mar 31 2026 by tmarri81.admin
! !
version 15.2 version 15.2
no service pad no service pad