ssc/ssc-mdf-4507.cfg Thu Mar 12 08:32:44 PM EDT 2026

hunt/hunt-4507-1.cfg Thu Mar 12 08:32:44 PM EDT 2026
danforth/danforth-mdf-4507.cfg Thu Mar 12 08:32:44 PM EDT 2026
2026-03-12 20:32:45 -04:00 · 2026-03-12 20:32:45 -04:00 · 2026-03-12 20:32:45 -04:00 · 2026-03-12 20:32:45 -04:00 · 2026-03-12 20:32:45 -04:00 · 2026-03-12 20:32:45 -04:00
12 changed files with 751 additions and 518 deletions
--- a/configs/beard/beard-mdf-4507.cfg
+++ b/configs/beard/beard-mdf-4507.cfg
@ -1,8 +1,9 @@
 Building configuration...

-Current configuration : 18230 bytes
+Current configuration : 19240 bytes
 !
-! Last configuration change at 04:59:56 EDT Mon Oct 20 2025
+! Last configuration change at 09:18:09 EDT Thu Mar 12 2026 by estein66.admin
+! NVRAM config last updated at 09:18:11 EDT Thu Mar 12 2026 by estein66.admin
 !
 version 15.2
 no service pad
@ -116,6 +117,20 @@ archive
 path bootflash:
 maximum 5
 file privilege 10
+object-group network day-enterprise-servers 
+ description day-enterprise-servers
+ host 10.1.230.11
+ host 10.1.40.108
+!
+object-group network dns-servers 
+ description Internal-DNS-Servers
+ host 10.1.40.10
+ host 10.1.48.11
+!
+object-group network ntp-servers 
+ host 10.1.40.154
+ host 10.1.48.103
+!
 !
 spanning-tree mode rapid-pvst
 spanning-tree loopguard default
@ -177,6 +192,9 @@ vlan 70
 vlan 72
 name Access-Control
 !
+vlan 230
+ name HVAC
+!
 vlan 233
 name City-CGRs
 !
@ -595,6 +613,11 @@ interface Vlan107
 ip helper-address 10.21.48.20 
 shutdown
 !
+interface Vlan230
+ ip address 10.48.230.1 255.255.255.224
+ ip access-group hvac in
+ shutdown
+!
 interface Vlan233
 ip address 10.48.233.1 255.255.255.0
 !
@ -700,6 +723,16 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
 permit udp any any eq 1575
 permit tcp any any eq 1630
 permit udp any any eq 1630
+ip access-list extended hvac
+ permit ip 10.48.230.0 0.0.0.31 object-group day-enterprise-servers
+ permit udp 10.48.230.0 0.0.0.31 object-group dns-servers eq domain
+ permit udp 10.48.230.0 0.0.0.31 object-group ntp-servers eq ntp
+ permit icmp 10.48.230.0 0.0.0.31 host 10.48.230.1
+ permit icmp host 10.48.230.1 10.48.230.0 0.0.0.31
+ deny   ip any 10.0.0.0 0.255.255.255
+ deny   ip any 192.168.0.0 0.0.255.255
+ deny   ip any 172.16.0.0 0.15.255.255
+ permit tcp 10.48.230.0 0.0.0.31 any eq 587 log-input
 ip access-list extended users
 deny   ip any 192.168.0.0 0.0.255.255
 permit ip any any
--- a/configs/blodgett/blodgett-mdf-4507.cfg
+++ b/configs/blodgett/blodgett-mdf-4507.cfg
@ -1,9 +1,9 @@
 Building configuration...

-Current configuration : 68512 bytes
+Current configuration : 69406 bytes
 !
-! Last configuration change at 20:17:53 EDT Thu Mar 5 2026 by jkafta72.admin
-! NVRAM config last updated at 20:17:35 EDT Thu Mar 5 2026 by jkafta72.admin
+! Last configuration change at 09:20:52 EDT Thu Mar 12 2026 by estein66.admin
+! NVRAM config last updated at 09:20:53 EDT Thu Mar 12 2026 by estein66.admin
 !
 version 15.2
 no service pad
@ -123,6 +123,16 @@ archive
 path bootflash:
 maximum 5
 file privilege 10
+object-group network day-enterprise-servers 
+ description day-enterprise-servers
+ host 10.1.230.11
+ host 10.1.40.108
+!
+object-group network dns-servers 
+ description Internal-DNS-Servers
+ host 10.1.40.10
+ host 10.1.48.11
+!
 object-group network netadmin-hosts 
 description SCSD Network Administrators Hosts
 !
@ -132,6 +142,10 @@ object-group network netadmins-hosts
 host 10.1.6.126
 host 10.1.6.32
 !
+object-group network ntp-servers 
+ host 10.1.40.154
+ host 10.1.48.103
+!
 !
 spanning-tree mode rapid-pvst
 spanning-tree loopguard default
@ -200,7 +214,7 @@ vlan 107
 name health_services
 !
 vlan 230
- name hvac
+ name HVAC
 !
 vlan 504 
 !
@ -2156,6 +2170,11 @@ interface Vlan107
 ip helper-address 10.1.40.20 
 ip helper-address 10.21.48.20 
 !
+interface Vlan230
+ ip address 10.53.230.1 255.255.255.224
+ ip access-group hvac in
+ shutdown
+!
 interface Vlan504
 description to Ring
 ip address 10.250.204.53 255.255.255.0
@ -2272,6 +2291,16 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
 permit udp any any eq 1575
 permit tcp any any eq 1630
 permit udp any any eq 1630
+ip access-list extended hvac
+ permit ip 10.53.230.0 0.0.0.31 object-group day-enterprise-servers
+ permit udp 10.53.230.0 0.0.0.31 object-group dns-servers eq domain
+ permit udp 10.53.230.0 0.0.0.31 object-group ntp-servers eq ntp
+ permit icmp 10.53.230.0 0.0.0.31 host 10.53.230.1
+ permit icmp host 10.53.230.1 10.53.230.0 0.0.0.31
+ deny   ip any 10.0.0.0 0.255.255.255
+ deny   ip any 192.168.0.0 0.0.255.255
+ deny   ip any 172.16.0.0 0.15.255.255
+ permit tcp 10.53.230.0 0.0.0.31 any eq 587 log-input
 ip access-list extended sbhc-acl
 permit ip 10.53.107.0 0.0.0.255 10.107.50.0 0.0.0.255
 permit tcp 10.53.107.0 0.0.0.255 any eq 443
--- a/configs/co/co-mdf-4507.cfg
+++ b/configs/co/co-mdf-4507.cfg
@ -1,8 +1,9 @@
 Building configuration...

-Current configuration : 14788 bytes
+Current configuration : 15777 bytes
 !
-! Last configuration change at 13:24:02 EST Fri Feb 6 2026
+! Last configuration change at 09:23:35 EDT Thu Mar 12 2026 by estein66.admin
+! NVRAM config last updated at 09:23:35 EDT Thu Mar 12 2026 by estein66.admin
 !
 version 15.2
 no service pad
@ -114,6 +115,20 @@ archive
 path bootflash:
 maximum 5
 file privilege 10
+object-group network day-enterprise-servers 
+ description day-enterprise-servers
+ host 10.1.230.11
+ host 10.1.40.108
+!
+object-group network dns-servers 
+ description Internal-DNS-Servers
+ host 10.1.40.10
+ host 10.1.48.11
+!
+object-group network ntp-servers 
+ host 10.1.40.154
+ host 10.1.48.103
+!
 !
 spanning-tree mode rapid-pvst
 spanning-tree loopguard default
@ -432,6 +447,11 @@ interface Vlan107
 ip helper-address 10.21.48.20 
 shutdown
 !
+interface Vlan230
+ ip address 10.55.230.1 255.255.255.224
+ ip access-group hvac in
+ shutdown
+!
 interface Vlan233
 ip address 10.55.233.1 255.255.255.0
 !
@ -502,6 +522,16 @@ ip ssh server algorithm encryption aes256-ctr aes128-ctr
 ip ssh server algorithm kex diffie-hellman-group14-sha1
 ip ssh server algorithm publickey x509v3-ssh-rsa
 !
+ip access-list extended hvac
+ permit ip 10.55.230.0 0.0.0.31 object-group day-enterprise-servers
+ permit udp 10.55.230.0 0.0.0.31 object-group dns-servers eq domain
+ permit udp 10.55.230.0 0.0.0.31 object-group ntp-servers eq ntp
+ permit icmp 10.55.230.0 0.0.0.31 host 10.55.230.1
+ permit icmp host 10.55.230.1 10.55.230.0 0.0.0.31
+ deny   ip any 10.0.0.0 0.255.255.255
+ deny   ip any 192.168.0.0 0.0.255.255
+ deny   ip any 172.16.0.0 0.15.255.255
+ permit tcp 10.55.230.0 0.0.0.31 any eq 587 log-input
 ip access-list extended users
 deny   ip any 192.168.0.0 0.0.255.255
 permit ip any any
--- a/configs/danforth/danforth-mdf-4507.cfg
+++ b/configs/danforth/danforth-mdf-4507.cfg
@ -1,9 +1,9 @@
 Building configuration...

-Current configuration : 32324 bytes
+Current configuration : 33238 bytes
 !
-! Last configuration change at 13:52:57 EST Mon Dec 22 2025 by estein66.admin
-! NVRAM config last updated at 21:12:13 EDT Mon Aug 18 2025 by jkafta72.admin
+! Last configuration change at 09:08:49 EDT Thu Mar 12 2026 by estein66.admin
+! NVRAM config last updated at 09:08:51 EDT Thu Mar 12 2026 by estein66.admin
 !
 version 15.2
 no service pad
@ -122,6 +122,20 @@ archive
 path bootflash:
 maximum 5
 file privilege 10
+object-group network day-enterprise-servers 
+ description day-enterprise-servers
+ host 10.1.230.11
+ host 10.1.40.108
+!
+object-group network dns-servers 
+ description Internal-DNS-Servers
+ host 10.1.40.10
+ host 10.1.48.11
+!
+object-group network ntp-servers 
+ host 10.1.40.154
+ host 10.1.48.103
+!
 !
 spanning-tree mode rapid-pvst
 spanning-tree loopguard default
@ -187,6 +201,9 @@ vlan 72
 vlan 150
 name Voip
 !
+vlan 230
+ name HVAC
+!
 vlan 502
 name CC-Ring
 !
@ -1061,6 +1078,11 @@ interface Vlan150
 no ip redirects
 ip pim sparse-mode
 !
+interface Vlan230
+ ip address 10.21.230.1 255.255.255.224
+ ip access-group hvac in
+ shutdown
+!
 interface Vlan502
 description to Ring #2 CCF Service #S200275
 ip address 10.250.202.21 255.255.255.0
@ -1161,6 +1183,16 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
 permit udp any any eq 1575
 permit tcp any any eq 1630
 permit udp any any eq 1630
+ip access-list extended hvac
+ permit ip 10.21.230.0 0.0.0.31 object-group day-enterprise-servers
+ permit udp 10.21.230.0 0.0.0.31 object-group dns-servers eq domain
+ permit udp 10.21.230.0 0.0.0.31 object-group ntp-servers eq ntp
+ permit icmp 10.21.230.0 0.0.0.31 host 10.21.230.1
+ permit icmp host 10.21.230.1 10.21.230.0 0.0.0.31
+ deny   ip any 10.0.0.0 0.255.255.255
+ deny   ip any 192.168.0.0 0.0.255.255
+ deny   ip any 172.16.0.0 0.15.255.255
+ permit tcp 10.21.230.0 0.0.0.31 any eq 587 log-input
 ip access-list extended users
 deny   ip any 192.168.0.0 0.0.255.255
 permit ip any any
--- a/configs/edsmith/edsmith-4507-1.cfg
+++ b/configs/edsmith/edsmith-4507-1.cfg
@ -1,9 +1,9 @@
 Building configuration...

-Current configuration : 35745 bytes
+Current configuration : 36637 bytes
 !
-! Last configuration change at 19:38:52 EDT Thu Sep 18 2025 by jkafta72.admin
-! NVRAM config last updated at 19:38:59 EDT Thu Sep 18 2025 by jkafta72.admin
+! Last configuration change at 09:15:21 EDT Thu Mar 12 2026 by estein66.admin
+! NVRAM config last updated at 09:15:22 EDT Thu Mar 12 2026 by estein66.admin
 !
 version 15.2
 no service pad
@ -116,6 +116,20 @@ archive
 path bootflash:
 maximum 5
 file privilege 10
+object-group network day-enterprise-servers 
+ description day-enterprise-servers
+ host 10.1.230.11
+ host 10.1.40.108
+!
+object-group network dns-servers 
+ description Internal-DNS-Servers
+ host 10.1.40.10
+ host 10.1.48.11
+!
+object-group network ntp-servers 
+ host 10.1.40.154
+ host 10.1.48.103
+!
 !
 spanning-tree mode rapid-pvst
 spanning-tree loopguard default
@ -1043,6 +1057,11 @@ interface Vlan72
 no ip redirects
 ip pim sparse-mode
 !
+interface Vlan230
+ ip address 10.45.230.1 255.255.255.224
+ ip access-group hvac in
+ shutdown
+!
 interface Vlan233
 ip address 10.45.233.1 255.255.255.0
 !
@ -1147,6 +1166,16 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
 permit udp any any eq 1575
 permit tcp any any eq 1630
 permit udp any any eq 1630
+ip access-list extended hvac
+ permit ip 10.45.230.0 0.0.0.31 object-group day-enterprise-servers
+ permit udp 10.45.230.0 0.0.0.31 object-group dns-servers eq domain
+ permit udp 10.45.230.0 0.0.0.31 object-group ntp-servers eq ntp
+ permit icmp 10.45.230.0 0.0.0.31 host 10.45.230.1
+ permit icmp host 10.45.230.1 10.45.230.0 0.0.0.31
+ deny   ip any 10.0.0.0 0.255.255.255
+ deny   ip any 192.168.0.0 0.0.255.255
+ deny   ip any 172.16.0.0 0.15.255.255
+ permit tcp 10.45.230.0 0.0.0.31 any eq 587 log-input
 !
 logging trap notifications
 logging origin-id hostname
--- a/configs/fortigate/fortigate.conf
+++ b/configs/fortigate/fortigate.conf
--- a/configs/fortigate/vdom_scsd/firewall.cfg
+++ b/configs/fortigate/vdom_scsd/firewall.cfg
@ -6532,4 +6532,10 @@ config firewall on-demand-sniffer
        set max-packet-count 10000
        set hosts "174.197.201.25"
    next
+    edit "inside lag_scsd"
+        set interface "inside lag"
+        set max-packet-count 10000
+        set hosts "192.168.1.135"
+        set ports 80
+    next
 end
--- a/configs/hunt/hunt-4507-1.cfg
+++ b/configs/hunt/hunt-4507-1.cfg
@ -1,9 +1,9 @@
 Building configuration...

-Current configuration : 33224 bytes
+Current configuration : 34138 bytes
 !
-! Last configuration change at 19:53:06 EDT Thu Sep 18 2025 by jkafta72.admin
-! NVRAM config last updated at 19:53:06 EDT Thu Sep 18 2025 by jkafta72.admin
+! Last configuration change at 09:12:25 EDT Thu Mar 12 2026 by estein66.admin
+! NVRAM config last updated at 09:12:25 EDT Thu Mar 12 2026 by estein66.admin
 !
 version 15.2
 no service pad
@ -114,6 +114,20 @@ archive
 path bootflash:
 maximum 5
 file privilege 10
+object-group network day-enterprise-servers 
+ description day-enterprise-servers
+ host 10.1.230.11
+ host 10.1.40.108
+!
+object-group network dns-servers 
+ description Internal-DNS-Servers
+ host 10.1.40.10
+ host 10.1.48.11
+!
+object-group network ntp-servers 
+ host 10.1.40.154
+ host 10.1.48.103
+!
 !
 spanning-tree mode rapid-pvst
 spanning-tree loopguard default
@ -176,6 +190,9 @@ vlan 70
 vlan 72
 name access-control
 !
+vlan 230
+ name HVAC
+!
 vlan 233
 name City_CGRs
 !
@ -1036,6 +1053,11 @@ interface Vlan107
 ip helper-address 10.1.40.20 
 ip helper-address 10.21.48.20 
 !
+interface Vlan230
+ ip address 10.29.230.1 255.255.255.224
+ ip access-group hvac in
+ shutdown
+!
 interface Vlan233
 ip address 10.29.233.1 255.255.255.0
 !
@ -1143,6 +1165,16 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
 permit udp any any eq 1575
 permit tcp any any eq 1630
 permit udp any any eq 1630
+ip access-list extended hvac
+ permit ip 10.29.230.0 0.0.0.31 object-group day-enterprise-servers
+ permit udp 10.29.230.0 0.0.0.31 object-group dns-servers eq domain
+ permit udp 10.29.230.0 0.0.0.31 object-group ntp-servers eq ntp
+ permit icmp 10.29.230.0 0.0.0.31 host 10.29.230.1
+ permit icmp host 10.29.230.1 10.29.230.0 0.0.0.31
+ deny   ip any 10.0.0.0 0.255.255.255
+ deny   ip any 192.168.0.0 0.0.255.255
+ deny   ip any 172.16.0.0 0.15.255.255
+ permit tcp 10.29.230.0 0.0.0.31 any eq 587 log-input
 ip access-list extended users
 deny   ip any 192.168.0.0 0.0.255.255
 permit ip any any
--- a/configs/itc/itc-idf1-a6300-sw1.cfg
+++ b/configs/itc/itc-idf1-a6300-sw1.cfg
@ -6932,7 +6932,7 @@ interface 6/1/1
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -6946,7 +6946,7 @@ interface 6/1/2
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -6960,7 +6960,7 @@ interface 6/1/3
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -6974,7 +6974,7 @@ interface 6/1/4
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -6988,7 +6988,7 @@ interface 6/1/5
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7002,7 +7002,7 @@ interface 6/1/6
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7016,7 +7016,7 @@ interface 6/1/7
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7030,7 +7030,7 @@ interface 6/1/8
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7044,7 +7044,7 @@ interface 6/1/9
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7058,7 +7058,7 @@ interface 6/1/10
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7072,7 +7072,7 @@ interface 6/1/11
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7086,7 +7086,7 @@ interface 6/1/12
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7100,7 +7100,7 @@ interface 6/1/13
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7114,7 +7114,7 @@ interface 6/1/14
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7128,7 +7128,7 @@ interface 6/1/15
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7142,7 +7142,7 @@ interface 6/1/16
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7156,7 +7156,7 @@ interface 6/1/17
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7170,7 +7170,7 @@ interface 6/1/18
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7184,7 +7184,7 @@ interface 6/1/19
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7198,7 +7198,7 @@ interface 6/1/20
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7212,7 +7212,7 @@ interface 6/1/21
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7226,7 +7226,7 @@ interface 6/1/22
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7240,7 +7240,7 @@ interface 6/1/23
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7254,7 +7254,7 @@ interface 6/1/24
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7268,7 +7268,7 @@ interface 6/1/25
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7282,7 +7282,7 @@ interface 6/1/26
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7296,7 +7296,7 @@ interface 6/1/27
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7310,7 +7310,7 @@ interface 6/1/28
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7324,7 +7324,7 @@ interface 6/1/29
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7338,7 +7338,7 @@ interface 6/1/30
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7352,7 +7352,7 @@ interface 6/1/31
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7366,7 +7366,7 @@ interface 6/1/32
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7380,7 +7380,7 @@ interface 6/1/33
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7394,7 +7394,7 @@ interface 6/1/34
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7408,7 +7408,7 @@ interface 6/1/35
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7422,7 +7422,7 @@ interface 6/1/36
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7436,7 +7436,7 @@ interface 6/1/37
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7450,7 +7450,7 @@ interface 6/1/38
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7464,7 +7464,7 @@ interface 6/1/39
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7478,7 +7478,7 @@ interface 6/1/40
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7492,7 +7492,7 @@ interface 6/1/41
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7506,7 +7506,7 @@ interface 6/1/42
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7520,7 +7520,7 @@ interface 6/1/43
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7534,7 +7534,7 @@ interface 6/1/44
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7548,7 +7548,7 @@ interface 6/1/45
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7562,7 +7562,7 @@ interface 6/1/46
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7576,7 +7576,7 @@ interface 6/1/47
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7590,7 +7590,7 @@ interface 6/1/48
    description Imaging
    no shutdown
    no routing
-    vlan access 21
+    vlan access 20
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
--- a/configs/sh/sh-noc-ilo-a6300-a.cfg
+++ b/configs/sh/sh-noc-ilo-a6300-a.cfg
@ -483,6 +483,10 @@ snmp-server system-description sh-noc-6300-1-9
 snmp-server system-location SH-NOC
 snmp-server system-contact Tim Marris
 snmp-server community mickey03
+mirror session 1
+    destination interface 1/1/7
+    source interface 1/1/5 both
+    enable
 ip dns domain-name scsd.ad
 ip dns server-address 10.1.40.10
 ip dns server-address 10.21.48.10
--- a/configs/sh/sh-noc-ilo-a6300-b.cfg
+++ b/configs/sh/sh-noc-ilo-a6300-b.cfg
@ -483,6 +483,7 @@ snmp-server system-contact Tim Marris
 snmp-server community mickey03
 mirror session 1
    destination cpu
+    source interface 1/1/5 both
    source interface 1/1/1 both
    enable
 ip dns domain-name scsd.ad
--- a/configs/ssc/ssc-mdf-4507.cfg
+++ b/configs/ssc/ssc-mdf-4507.cfg
@ -1,9 +1,9 @@
 Building configuration...

-Current configuration : 33665 bytes
+Current configuration : 34558 bytes
 !
-! Last configuration change at 14:41:54 EST Mon Feb 2 2026 by estein66.admin
-! NVRAM config last updated at 18:25:29 EDT Thu Aug 14 2025 by jkafta72.admin
+! Last configuration change at 09:26:33 EDT Thu Mar 12 2026 by estein66.admin
+! NVRAM config last updated at 09:26:34 EDT Thu Mar 12 2026 by estein66.admin
 !
 version 15.2
 no service pad
@ -114,6 +114,20 @@ archive
 path bootflash:
 maximum 5
 file privilege 10
+object-group network day-enterprise-servers 
+ description day-enterprise-servers
+ host 10.1.230.11
+ host 10.1.40.108
+!
+object-group network dns-servers 
+ description Internal-DNS-Servers
+ host 10.1.40.10
+ host 10.1.48.11
+!
+object-group network ntp-servers 
+ host 10.1.40.154
+ host 10.1.48.103
+!
 !
 spanning-tree mode rapid-pvst
 spanning-tree loopguard default
@ -981,6 +995,11 @@ interface Vlan72
 no ip redirects
 ip pim sparse-mode
 !
+interface Vlan230
+ ip address 10.56.230.1 255.255.255.224
+ ip access-group hvac in
+ shutdown
+!
 interface Vlan504
 description to Ring #4 CCF Service #S200306
 ip address 10.250.204.56 255.255.255.0
@ -1078,6 +1097,16 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
 permit udp any any eq 1575
 permit tcp any any eq 1630
 permit udp any any eq 1630
+ip access-list extended hvac
+ permit ip 10.56.230.0 0.0.0.31 object-group day-enterprise-servers
+ permit udp 10.56.230.0 0.0.0.31 object-group dns-servers eq domain
+ permit udp 10.56.230.0 0.0.0.31 object-group ntp-servers eq ntp
+ permit icmp 10.56.230.0 0.0.0.31 host 10.56.230.1
+ permit icmp host 10.56.230.1 10.56.230.0 0.0.0.31
+ deny   ip any 10.0.0.0 0.255.255.255
+ deny   ip any 192.168.0.0 0.0.255.255
+ deny   ip any 172.16.0.0 0.15.255.255
+ permit tcp 10.56.230.0 0.0.0.31 any eq 587 log-input
 ip access-list extended users
 deny   ip any 192.168.0.0 0.0.255.255
 permit ip any any
Author	SHA1	Message	Date
John Poland	0266c90b70	ssc/ssc-mdf-4507.cfg Thu Mar 12 08:32:44 PM EDT 2026	2026-03-12 20:32:45 -04:00
John Poland	58293624e2	hunt/hunt-4507-1.cfg Thu Mar 12 08:32:44 PM EDT 2026	2026-03-12 20:32:45 -04:00
John Poland	16226c3270	danforth/danforth-mdf-4507.cfg Thu Mar 12 08:32:44 PM EDT 2026	2026-03-12 20:32:45 -04:00
John Poland	82a36aaf2c	edsmith/edsmith-4507-1.cfg Thu Mar 12 08:32:44 PM EDT 2026	2026-03-12 20:32:45 -04:00
John Poland	a9af45e4f6	sh/sh-noc-ilo-a6300-b.cfg Thu Mar 12 08:32:44 PM EDT 2026	2026-03-12 20:32:45 -04:00
John Poland	32a22544b6	sh/sh-noc-ilo-a6300-a.cfg Thu Mar 12 08:32:44 PM EDT 2026	2026-03-12 20:32:45 -04:00
John Poland	a9b0919196	beard/beard-mdf-4507.cfg Thu Mar 12 08:32:44 PM EDT 2026	2026-03-12 20:32:44 -04:00
John Poland	57f42961e1	blodgett/blodgett-mdf-4507.cfg Thu Mar 12 08:32:44 PM EDT 2026	2026-03-12 20:32:44 -04:00
John Poland	ceb680f30b	itc/itc-idf1-a6300-sw1.cfg Thu Mar 12 08:32:44 PM EDT 2026	2026-03-12 20:32:44 -04:00
John Poland	660016c4cb	co/co-mdf-4507.cfg Thu Mar 12 08:32:44 PM EDT 2026	2026-03-12 20:32:44 -04:00
John Poland	3313853813	fortigate-backup Thu Mar 12 08:32:44 PM EDT 2026	2026-03-12 20:32:44 -04:00
John Poland	afbd0b8aa7	fortigate Thu Mar 12 08:32:44 PM EDT 2026	2026-03-12 20:32:44 -04:00