Compare commits
No commits in common. "b343f38f09a162a636dfe3c421f58cb9f242ee13" and "3a0a1dc40b46c6b19ff22a0164cd1c96fecc6df5" have entirely different histories.
b343f38f09
...
3a0a1dc40b
@ -743,12 +743,6 @@ interface lag 256
|
|||||||
vlan trunk native 699 tag
|
vlan trunk native 699 tag
|
||||||
vlan trunk allowed all
|
vlan trunk allowed all
|
||||||
lacp mode active
|
lacp mode active
|
||||||
interface 1/1/1
|
|
||||||
description DP01 cab 26
|
|
||||||
no shutdown
|
|
||||||
mtu 9198
|
|
||||||
no routing
|
|
||||||
vlan access 48
|
|
||||||
interface 1/1/2
|
interface 1/1/2
|
||||||
description cab15-ups C15U02 C15P19
|
description cab15-ups C15U02 C15P19
|
||||||
no shutdown
|
no shutdown
|
||||||
|
|||||||
@ -744,11 +744,9 @@ interface lag 256
|
|||||||
vlan trunk allowed all
|
vlan trunk allowed all
|
||||||
lacp mode active
|
lacp mode active
|
||||||
interface 1/1/1
|
interface 1/1/1
|
||||||
description DP01 cab 26
|
|
||||||
no shutdown
|
no shutdown
|
||||||
mtu 9198
|
|
||||||
no routing
|
no routing
|
||||||
vlan access 48
|
vlan access 35
|
||||||
interface 1/1/34
|
interface 1/1/34
|
||||||
description AV500046 C26U24 C26P23
|
description AV500046 C26U24 C26P23
|
||||||
no shutdown
|
no shutdown
|
||||||
|
|||||||
@ -7049,7 +7049,6 @@ interface 6/1/8
|
|||||||
interface 6/1/9
|
interface 6/1/9
|
||||||
description Imaging
|
description Imaging
|
||||||
no shutdown
|
no shutdown
|
||||||
mtu 9198
|
|
||||||
no routing
|
no routing
|
||||||
vlan access 21
|
vlan access 21
|
||||||
spanning-tree bpdu-guard
|
spanning-tree bpdu-guard
|
||||||
|
|||||||
@ -139,13 +139,15 @@ access-list ip Image-acl
|
|||||||
158 permit tcp any clearpass_servers group clearpass_tcp_ports
|
158 permit tcp any clearpass_servers group clearpass_tcp_ports
|
||||||
160 deny any any any
|
160 deny any any any
|
||||||
access-list ip hvac-acl
|
access-list ip hvac-acl
|
||||||
10 permit any any 10.1.230.11
|
10 permit any 10.42.230.0/255.255.255.224 day-enterprise-servers
|
||||||
20 permit any any 10.1.40.108
|
20 permit udp 10.42.230.0/255.255.255.224 dns-servers eq dns
|
||||||
30 permit udp any any eq dns
|
30 permit udp 10.42.230.0/255.255.255.224 ntp-servers eq ntp
|
||||||
40 deny any any 10.0.0.0/255.0.0.0
|
40 permit icmp 10.42.230.0/255.255.255.252 10.42.230.0/255.255.255.224
|
||||||
50 deny any any 192.168.0.0/255.255.0.0
|
50 permit icmp 10.42.230.0/255.255.255.224 10.42.230.0/255.255.255.252
|
||||||
60 deny any any 172.16.0.0/255.240.0.0
|
60 deny any any 10.0.0.0/255.0.0.0
|
||||||
70 permit tcp any any eq 587 log count
|
70 deny any any 192.168.0.0/255.255.0.0
|
||||||
|
80 deny any any 172.16.0.0/255.240.0.0
|
||||||
|
90 permit tcp 10.42.230.0/255.255.255.224 any eq 587 log count
|
||||||
access-list ip users-acl
|
access-list ip users-acl
|
||||||
10 deny any any 192.168.0.0/255.255.0.0
|
10 deny any any 192.168.0.0/255.255.0.0
|
||||||
20 permit any any any
|
20 permit any any any
|
||||||
@ -417,7 +419,6 @@ interface vlan 230
|
|||||||
ip helper-address 10.1.40.20
|
ip helper-address 10.1.40.20
|
||||||
ip helper-address 10.21.48.20
|
ip helper-address 10.21.48.20
|
||||||
ip ospf 1 area 0.0.0.201
|
ip ospf 1 area 0.0.0.201
|
||||||
apply access-list ip hvac-acl routed-in
|
|
||||||
ip igmp enable
|
ip igmp enable
|
||||||
ip pim-sparse enable
|
ip pim-sparse enable
|
||||||
interface vlan 254
|
interface vlan 254
|
||||||
|
|||||||
@ -139,13 +139,15 @@ access-list ip Image-acl
|
|||||||
158 permit tcp any clearpass_servers group clearpass_tcp_ports
|
158 permit tcp any clearpass_servers group clearpass_tcp_ports
|
||||||
160 deny any any any
|
160 deny any any any
|
||||||
access-list ip hvac-acl
|
access-list ip hvac-acl
|
||||||
10 permit any any 10.1.230.11
|
10 permit any 10.42.230.0/255.255.255.224 day-enterprise-servers
|
||||||
20 permit any any 10.1.40.108
|
20 permit udp 10.42.230.0/255.255.255.224 dns-servers eq dns
|
||||||
30 permit udp any any eq dns
|
30 permit udp 10.42.230.0/255.255.255.224 ntp-servers eq ntp
|
||||||
40 deny any any 10.0.0.0/255.0.0.0
|
40 permit icmp 10.42.230.0/255.255.255.252 10.42.230.0/255.255.255.224
|
||||||
50 deny any any 192.168.0.0/255.255.0.0
|
50 permit icmp 10.42.230.0/255.255.255.224 10.42.230.0/255.255.255.252
|
||||||
60 deny any any 172.16.0.0/255.240.0.0
|
60 deny any any 10.0.0.0/255.0.0.0
|
||||||
70 permit tcp any any eq 587 log count
|
70 deny any any 192.168.0.0/255.255.0.0
|
||||||
|
80 deny any any 172.16.0.0/255.240.0.0
|
||||||
|
90 permit tcp 10.42.230.0/255.255.255.224 any eq 587 log count
|
||||||
access-list ip users-acl
|
access-list ip users-acl
|
||||||
10 deny any any 192.168.0.0/255.255.0.0
|
10 deny any any 192.168.0.0/255.255.0.0
|
||||||
20 permit any any any
|
20 permit any any any
|
||||||
@ -418,7 +420,6 @@ interface vlan 230
|
|||||||
ip helper-address 10.1.40.20
|
ip helper-address 10.1.40.20
|
||||||
ip helper-address 10.21.48.20
|
ip helper-address 10.21.48.20
|
||||||
ip ospf 1 area 0.0.0.201
|
ip ospf 1 area 0.0.0.201
|
||||||
apply access-list ip hvac-acl routed-in
|
|
||||||
ip igmp enable
|
ip igmp enable
|
||||||
ip pim-sparse enable
|
ip pim-sparse enable
|
||||||
interface vlan 254
|
interface vlan 254
|
||||||
|
|||||||
@ -1,9 +1,9 @@
|
|||||||
Building configuration...
|
Building configuration...
|
||||||
|
|
||||||
Current configuration : 34104 bytes
|
Current configuration : 34320 bytes
|
||||||
!
|
!
|
||||||
! Last configuration change at 08:29:40 EDT Thu Apr 2 2026 by jkafta72.admin
|
! Last configuration change at 07:42:30 EDT Tue Mar 31 2026 by jpoland.oa
|
||||||
! NVRAM config last updated at 08:29:27 EDT Thu Apr 2 2026 by jkafta72.admin
|
! NVRAM config last updated at 07:42:31 EDT Tue Mar 31 2026 by jpoland.oa
|
||||||
!
|
!
|
||||||
version 15.2
|
version 15.2
|
||||||
no service pad
|
no service pad
|
||||||
@ -1057,7 +1057,7 @@ interface Vlan107
|
|||||||
!
|
!
|
||||||
interface Vlan230
|
interface Vlan230
|
||||||
ip address 10.30.230.1 255.255.255.224
|
ip address 10.30.230.1 255.255.255.224
|
||||||
ip access-group hvac-acl in
|
ip access-group hvac in
|
||||||
!
|
!
|
||||||
interface Vlan233
|
interface Vlan233
|
||||||
ip address 10.30.233.1 255.255.255.0
|
ip address 10.30.233.1 255.255.255.0
|
||||||
@ -1165,14 +1165,16 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
|
|||||||
permit udp any any eq 1575
|
permit udp any any eq 1575
|
||||||
permit tcp any any eq 1630
|
permit tcp any any eq 1630
|
||||||
permit udp any any eq 1630
|
permit udp any any eq 1630
|
||||||
ip access-list extended hvac-acl
|
ip access-list extended hvac
|
||||||
permit ip any host 10.1.230.11
|
permit ip 10.30.230.0 0.0.0.31 object-group day-enterprise-servers
|
||||||
permit ip any host 10.1.40.108
|
permit udp 10.30.230.0 0.0.0.31 object-group dns-servers eq domain
|
||||||
permit udp any any eq domain
|
permit udp 10.30.230.0 0.0.0.31 object-group ntp-servers eq ntp
|
||||||
deny ip any 10.0.0.0 0.0.0.255
|
permit icmp 10.30.230.0 0.0.0.31 host 10.30.230.1
|
||||||
|
permit icmp host 10.30.230.1 10.30.230.0 0.0.0.31
|
||||||
|
deny ip any 10.0.0.0 0.255.255.255
|
||||||
deny ip any 192.168.0.0 0.0.255.255
|
deny ip any 192.168.0.0 0.0.255.255
|
||||||
deny ip any 172.16.0.0 0.15.255.255
|
deny ip any 172.16.0.0 0.15.255.255
|
||||||
permit tcp any any eq 587 log count
|
permit tcp 10.30.230.0 0.0.0.31 any eq 587 log-input
|
||||||
ip access-list extended users
|
ip access-list extended users
|
||||||
deny ip any 192.168.0.0 0.0.255.255
|
deny ip any 192.168.0.0 0.0.255.255
|
||||||
permit ip any any
|
permit ip any any
|
||||||
|
|||||||
@ -1,9 +1,9 @@
|
|||||||
Building configuration...
|
Building configuration...
|
||||||
|
|
||||||
Current configuration : 21043 bytes
|
Current configuration : 21259 bytes
|
||||||
!
|
!
|
||||||
! Last configuration change at 08:30:40 EDT Thu Apr 2 2026 by jkafta72.admin
|
! Last configuration change at 07:42:45 EDT Tue Mar 31 2026 by jpoland.oa
|
||||||
! NVRAM config last updated at 08:30:35 EDT Thu Apr 2 2026 by jkafta72.admin
|
! NVRAM config last updated at 07:42:45 EDT Tue Mar 31 2026 by jpoland.oa
|
||||||
!
|
!
|
||||||
version 15.2
|
version 15.2
|
||||||
no service pad
|
no service pad
|
||||||
@ -645,7 +645,7 @@ interface Vlan107
|
|||||||
!
|
!
|
||||||
interface Vlan230
|
interface Vlan230
|
||||||
ip address 10.44.230.1 255.255.255.224
|
ip address 10.44.230.1 255.255.255.224
|
||||||
ip access-group hvac-acl in
|
ip access-group hvac in
|
||||||
!
|
!
|
||||||
interface Vlan233
|
interface Vlan233
|
||||||
ip address 10.44.233.1 255.255.255.0
|
ip address 10.44.233.1 255.255.255.0
|
||||||
@ -752,14 +752,16 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
|
|||||||
permit udp any any eq 1575
|
permit udp any any eq 1575
|
||||||
permit tcp any any eq 1630
|
permit tcp any any eq 1630
|
||||||
permit udp any any eq 1630
|
permit udp any any eq 1630
|
||||||
ip access-list extended hvac-acl
|
ip access-list extended hvac
|
||||||
permit ip any host 10.1.230.11
|
permit ip 10.44.230.0 0.0.0.31 object-group day-enterprise-servers
|
||||||
permit ip any host 10.1.40.108
|
permit udp 10.44.230.0 0.0.0.31 object-group dns-servers eq domain
|
||||||
permit udp any any eq domain
|
permit udp 10.44.230.0 0.0.0.31 object-group ntp-servers eq ntp
|
||||||
deny ip any 10.0.0.0 0.0.0.255
|
permit icmp 10.44.230.0 0.0.0.31 host 10.44.230.1
|
||||||
|
permit icmp host 10.44.230.1 10.44.230.0 0.0.0.31
|
||||||
|
deny ip any 10.0.0.0 0.255.255.255
|
||||||
deny ip any 192.168.0.0 0.0.255.255
|
deny ip any 192.168.0.0 0.0.255.255
|
||||||
deny ip any 172.16.0.0 0.15.255.255
|
deny ip any 172.16.0.0 0.15.255.255
|
||||||
permit tcp any any eq 587 log count
|
permit tcp 10.44.230.0 0.0.0.31 any eq 587 log-input
|
||||||
ip access-list extended users
|
ip access-list extended users
|
||||||
deny ip any 192.168.0.0 0.0.255.255
|
deny ip any 192.168.0.0 0.0.255.255
|
||||||
permit ip any any
|
permit ip any any
|
||||||
|
|||||||
@ -1,9 +1,9 @@
|
|||||||
Building configuration...
|
Building configuration...
|
||||||
|
|
||||||
Current configuration : 36055 bytes
|
Current configuration : 36279 bytes
|
||||||
!
|
!
|
||||||
! Last configuration change at 08:32:06 EDT Thu Apr 2 2026 by jkafta72.admin
|
! Last configuration change at 09:47:46 EDT Tue Mar 31 2026 by tmarri81.admin
|
||||||
! NVRAM config last updated at 08:31:48 EDT Thu Apr 2 2026 by jkafta72.admin
|
! NVRAM config last updated at 09:47:49 EDT Tue Mar 31 2026 by tmarri81.admin
|
||||||
!
|
!
|
||||||
version 15.2
|
version 15.2
|
||||||
no service pad
|
no service pad
|
||||||
@ -1111,7 +1111,7 @@ interface Vlan107
|
|||||||
!
|
!
|
||||||
interface Vlan230
|
interface Vlan230
|
||||||
ip address 10.14.230.1 255.255.255.224
|
ip address 10.14.230.1 255.255.255.224
|
||||||
ip access-group hvac-acl in
|
ip access-group hvac in
|
||||||
!
|
!
|
||||||
interface Vlan501
|
interface Vlan501
|
||||||
description to Ring
|
description to Ring
|
||||||
@ -1217,14 +1217,16 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
|
|||||||
permit udp any any eq 1575
|
permit udp any any eq 1575
|
||||||
permit tcp any any eq 1630
|
permit tcp any any eq 1630
|
||||||
permit udp any any eq 1630
|
permit udp any any eq 1630
|
||||||
ip access-list extended hvac-acl
|
ip access-list extended hvac
|
||||||
permit ip any host 10.1.230.11
|
permit ip 10.14.230.0 0.0.0.31 object-group day-enterprise-servers
|
||||||
permit ip any host 10.1.40.108
|
permit udp 10.14.230.0 0.0.0.31 object-group dns-servers eq domain
|
||||||
permit udp any any eq domain
|
permit udp 10.14.230.0 0.0.0.31 object-group ntp-servers eq ntp
|
||||||
deny ip any 10.0.0.0 0.0.0.255
|
permit icmp 10.14.230.0 0.0.0.31 host 10.14.230.1
|
||||||
|
permit icmp host 10.14.230.1 10.14.230.0 0.0.0.31
|
||||||
|
deny ip any 10.0.0.0 0.255.255.255
|
||||||
deny ip any 192.168.0.0 0.0.255.255
|
deny ip any 192.168.0.0 0.0.255.255
|
||||||
deny ip any 172.16.0.0 0.15.255.255
|
deny ip any 172.16.0.0 0.15.255.255
|
||||||
permit tcp any any eq 587 log count
|
permit tcp 10.14.230.0 0.0.0.31 any eq 587 log-input
|
||||||
ip access-list extended sbhc-acl
|
ip access-list extended sbhc-acl
|
||||||
remark School Based Health Center ACL
|
remark School Based Health Center ACL
|
||||||
permit ip 10.53.107.0 0.0.0.255 10.107.49.0 0.0.0.255
|
permit ip 10.53.107.0 0.0.0.255 10.107.49.0 0.0.0.255
|
||||||
|
|||||||
@ -517,10 +517,10 @@ interface 1/1/22
|
|||||||
client track ip update-interval 120
|
client track ip update-interval 120
|
||||||
power-over-ethernet pre-std-detect
|
power-over-ethernet pre-std-detect
|
||||||
interface 1/1/23
|
interface 1/1/23
|
||||||
description Test AP
|
description Primex
|
||||||
no shutdown
|
no shutdown
|
||||||
no routing
|
no routing
|
||||||
vlan access 20
|
vlan access 30
|
||||||
spanning-tree port-type admin-edge
|
spanning-tree port-type admin-edge
|
||||||
interface 1/1/24
|
interface 1/1/24
|
||||||
description VuWall
|
description VuWall
|
||||||
@ -1095,9 +1095,19 @@ interface 2/1/18
|
|||||||
loop-protect
|
loop-protect
|
||||||
power-over-ethernet pre-std-detect
|
power-over-ethernet pre-std-detect
|
||||||
interface 2/1/19
|
interface 2/1/19
|
||||||
|
description Voice
|
||||||
no shutdown
|
no shutdown
|
||||||
no routing
|
no routing
|
||||||
vlan access 20
|
vlan access 50
|
||||||
|
spanning-tree bpdu-guard
|
||||||
|
spanning-tree port-type admin-edge
|
||||||
|
spanning-tree root-guard
|
||||||
|
spanning-tree tcn-guard
|
||||||
|
loop-protect
|
||||||
|
port-access onboarding-method concurrent enable
|
||||||
|
client track ip enable
|
||||||
|
client track ip update-interval 120
|
||||||
|
power-over-ethernet pre-std-detect
|
||||||
interface 2/1/20
|
interface 2/1/20
|
||||||
description Clock
|
description Clock
|
||||||
no shutdown
|
no shutdown
|
||||||
|
|||||||
@ -128,14 +128,6 @@ access-list ip Image-acl
|
|||||||
158 comment ClearPass_TCP_PORTS_OUT
|
158 comment ClearPass_TCP_PORTS_OUT
|
||||||
158 permit tcp any clearpass_servers group clearpass_tcp_ports
|
158 permit tcp any clearpass_servers group clearpass_tcp_ports
|
||||||
160 deny any any any
|
160 deny any any any
|
||||||
access-list ip hvac-acl
|
|
||||||
10 permit any any 10.1.230.11
|
|
||||||
20 permit any any 10.1.40.108
|
|
||||||
30 permit udp any any eq dns
|
|
||||||
40 deny any any 10.0.0.0/255.0.0.0
|
|
||||||
50 deny any any 192.168.0.0/255.255.0.0
|
|
||||||
60 deny any any 172.16.0.0/255.240.0.0
|
|
||||||
70 permit tcp any any eq 587 log count
|
|
||||||
access-list ip users-acl
|
access-list ip users-acl
|
||||||
10 deny any any 192.168.0.0/255.255.0.0
|
10 deny any any 192.168.0.0/255.255.0.0
|
||||||
20 permit any any any
|
20 permit any any any
|
||||||
@ -467,7 +459,6 @@ interface vlan 230
|
|||||||
ip helper-address 10.1.40.20
|
ip helper-address 10.1.40.20
|
||||||
ip helper-address 10.21.48.20
|
ip helper-address 10.21.48.20
|
||||||
ip ospf 1 area 0.0.0.209
|
ip ospf 1 area 0.0.0.209
|
||||||
apply access-list ip hvac-acl routed-in
|
|
||||||
ip igmp enable
|
ip igmp enable
|
||||||
ip pim-sparse enable
|
ip pim-sparse enable
|
||||||
interface vlan 254
|
interface vlan 254
|
||||||
|
|||||||
@ -128,14 +128,6 @@ access-list ip Image-acl
|
|||||||
158 comment ClearPass_TCP_PORTS_OUT
|
158 comment ClearPass_TCP_PORTS_OUT
|
||||||
158 permit tcp any clearpass_servers group clearpass_tcp_ports
|
158 permit tcp any clearpass_servers group clearpass_tcp_ports
|
||||||
160 deny any any any
|
160 deny any any any
|
||||||
access-list ip hvac-acl
|
|
||||||
10 permit any any 10.1.230.11
|
|
||||||
20 permit any any 10.1.40.108
|
|
||||||
30 permit udp any any eq dns
|
|
||||||
40 deny any any 10.0.0.0/255.0.0.0
|
|
||||||
50 deny any any 192.168.0.0/255.255.0.0
|
|
||||||
60 deny any any 172.16.0.0/255.240.0.0
|
|
||||||
70 permit tcp any any eq 587 log count
|
|
||||||
access-list ip users-acl
|
access-list ip users-acl
|
||||||
10 deny any any 192.168.0.0/255.255.0.0
|
10 deny any any 192.168.0.0/255.255.0.0
|
||||||
20 permit any any any
|
20 permit any any any
|
||||||
@ -468,7 +460,6 @@ interface vlan 230
|
|||||||
ip helper-address 10.1.40.20
|
ip helper-address 10.1.40.20
|
||||||
ip helper-address 10.21.48.20
|
ip helper-address 10.21.48.20
|
||||||
ip ospf 1 area 0.0.0.209
|
ip ospf 1 area 0.0.0.209
|
||||||
apply access-list ip hvac-acl routed-in
|
|
||||||
ip igmp enable
|
ip igmp enable
|
||||||
ip pim-sparse enable
|
ip pim-sparse enable
|
||||||
interface vlan 254
|
interface vlan 254
|
||||||
|
|||||||
@ -138,13 +138,15 @@ access-list ip Image-acl
|
|||||||
158 permit tcp any clearpass_servers group clearpass_tcp_ports
|
158 permit tcp any clearpass_servers group clearpass_tcp_ports
|
||||||
160 deny any any any
|
160 deny any any any
|
||||||
access-list ip hvac-acl
|
access-list ip hvac-acl
|
||||||
10 permit any any 10.1.230.11
|
10 permit any 10.49.230.0/255.255.255.224 day-enterprise-servers
|
||||||
20 permit any any 10.1.40.108
|
20 permit udp 10.49.230.0/255.255.255.224 dns-servers eq dns
|
||||||
30 permit udp any any eq dns
|
30 permit udp 10.49.230.0/255.255.255.224 ntp-servers eq ntp
|
||||||
40 deny any any 10.0.0.0/255.0.0.0
|
40 permit icmp 10.49.230.0/255.255.255.252 10.49.230.0/255.255.255.224
|
||||||
50 deny any any 192.168.0.0/255.255.0.0
|
50 permit icmp 10.49.230.0/255.255.255.224 10.49.230.0/255.255.255.252
|
||||||
60 deny any any 172.16.0.0/255.240.0.0
|
60 deny any any 10.0.0.0/255.0.0.0
|
||||||
70 permit tcp any any eq 587 log count
|
70 deny any any 192.168.0.0/255.255.0.0
|
||||||
|
80 deny any any 172.16.0.0/255.240.0.0
|
||||||
|
90 permit tcp 10.49.230.0/255.255.255.224 any eq 587 log count
|
||||||
access-list ip users-acl
|
access-list ip users-acl
|
||||||
10 deny any any 192.168.0.0/255.255.0.0
|
10 deny any any 192.168.0.0/255.255.0.0
|
||||||
20 permit any any any
|
20 permit any any any
|
||||||
@ -455,7 +457,6 @@ interface vlan 230
|
|||||||
ip helper-address 10.1.40.20
|
ip helper-address 10.1.40.20
|
||||||
ip helper-address 10.21.48.20
|
ip helper-address 10.21.48.20
|
||||||
ip ospf 1 area 0.0.0.202
|
ip ospf 1 area 0.0.0.202
|
||||||
apply access-list ip hvac-acl routed-in
|
|
||||||
ip igmp enable
|
ip igmp enable
|
||||||
ip pim-sparse enable
|
ip pim-sparse enable
|
||||||
interface vlan 233
|
interface vlan 233
|
||||||
|
|||||||
@ -138,13 +138,15 @@ access-list ip Image-acl
|
|||||||
158 permit tcp any clearpass_servers group clearpass_tcp_ports
|
158 permit tcp any clearpass_servers group clearpass_tcp_ports
|
||||||
160 deny any any any
|
160 deny any any any
|
||||||
access-list ip hvac-acl
|
access-list ip hvac-acl
|
||||||
10 permit any any 10.1.230.11
|
10 permit any 10.49.230.0/255.255.255.224 day-enterprise-servers
|
||||||
20 permit any any 10.1.40.108
|
20 permit udp 10.49.230.0/255.255.255.224 dns-servers eq dns
|
||||||
30 permit udp any any eq dns
|
30 permit udp 10.49.230.0/255.255.255.224 ntp-servers eq ntp
|
||||||
40 deny any any 10.0.0.0/255.0.0.0
|
40 permit icmp 10.49.230.0/255.255.255.252 10.49.230.0/255.255.255.224
|
||||||
50 deny any any 192.168.0.0/255.255.0.0
|
50 permit icmp 10.49.230.0/255.255.255.224 10.49.230.0/255.255.255.252
|
||||||
60 deny any any 172.16.0.0/255.240.0.0
|
60 deny any any 10.0.0.0/255.0.0.0
|
||||||
70 permit tcp any any eq 587 log count
|
70 deny any any 192.168.0.0/255.255.0.0
|
||||||
|
80 deny any any 172.16.0.0/255.240.0.0
|
||||||
|
90 permit tcp 10.49.230.0/255.255.255.224 any eq 587 log count
|
||||||
access-list ip users-acl
|
access-list ip users-acl
|
||||||
10 deny any any 192.168.0.0/255.255.0.0
|
10 deny any any 192.168.0.0/255.255.0.0
|
||||||
20 permit any any any
|
20 permit any any any
|
||||||
@ -456,7 +458,6 @@ interface vlan 230
|
|||||||
ip helper-address 10.1.40.20
|
ip helper-address 10.1.40.20
|
||||||
ip helper-address 10.21.48.20
|
ip helper-address 10.21.48.20
|
||||||
ip ospf 1 area 0.0.0.202
|
ip ospf 1 area 0.0.0.202
|
||||||
apply access-list ip hvac-acl routed-in
|
|
||||||
ip igmp enable
|
ip igmp enable
|
||||||
ip pim-sparse enable
|
ip pim-sparse enable
|
||||||
interface vlan 233
|
interface vlan 233
|
||||||
|
|||||||
@ -1,9 +1,9 @@
|
|||||||
Building configuration...
|
Building configuration...
|
||||||
|
|
||||||
Current configuration : 38903 bytes
|
Current configuration : 39119 bytes
|
||||||
!
|
!
|
||||||
! Last configuration change at 08:40:43 EDT Thu Apr 2 2026 by jkafta72.admin
|
! Last configuration change at 07:43:04 EDT Tue Mar 31 2026 by jpoland.oa
|
||||||
! NVRAM config last updated at 08:40:35 EDT Thu Apr 2 2026 by jkafta72.admin
|
! NVRAM config last updated at 07:43:04 EDT Tue Mar 31 2026 by jpoland.oa
|
||||||
!
|
!
|
||||||
version 15.2
|
version 15.2
|
||||||
no service pad
|
no service pad
|
||||||
@ -1189,7 +1189,7 @@ interface Vlan107
|
|||||||
!
|
!
|
||||||
interface Vlan230
|
interface Vlan230
|
||||||
ip address 10.51.230.1 255.255.255.224
|
ip address 10.51.230.1 255.255.255.224
|
||||||
ip access-group hvac-acl in
|
ip access-group hvac in
|
||||||
!
|
!
|
||||||
interface Vlan233
|
interface Vlan233
|
||||||
ip address 10.51.233.1 255.255.255.0
|
ip address 10.51.233.1 255.255.255.0
|
||||||
@ -1294,14 +1294,16 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
|
|||||||
permit udp any any eq 1575
|
permit udp any any eq 1575
|
||||||
permit tcp any any eq 1630
|
permit tcp any any eq 1630
|
||||||
permit udp any any eq 1630
|
permit udp any any eq 1630
|
||||||
ip access-list extended hvac-acl
|
ip access-list extended hvac
|
||||||
permit ip any host 10.1.230.11
|
permit ip 10.51.230.0 0.0.0.31 object-group day-enterprise-servers
|
||||||
permit ip any host 10.1.40.108
|
permit udp 10.51.230.0 0.0.0.31 object-group dns-servers eq domain
|
||||||
permit udp any any eq domain
|
permit udp 10.51.230.0 0.0.0.31 object-group ntp-servers eq ntp
|
||||||
deny ip any 10.0.0.0 0.0.0.255
|
permit icmp 10.51.230.0 0.0.0.31 host 10.51.230.1
|
||||||
|
permit icmp host 10.51.230.1 10.51.230.0 0.0.0.31
|
||||||
|
deny ip any 10.0.0.0 0.255.255.255
|
||||||
deny ip any 192.168.0.0 0.0.255.255
|
deny ip any 192.168.0.0 0.0.255.255
|
||||||
deny ip any 172.16.0.0 0.15.255.255
|
deny ip any 172.16.0.0 0.15.255.255
|
||||||
permit tcp any any eq 587 log count
|
permit tcp 10.51.230.0 0.0.0.31 any eq 587 log-input
|
||||||
ip access-list extended users
|
ip access-list extended users
|
||||||
deny ip any 192.168.0.0 0.0.255.255
|
deny ip any 192.168.0.0 0.0.255.255
|
||||||
permit ip any any
|
permit ip any any
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user