mckin/mckin-idf2-a6300-sw1.cfg Fri Nov 14 05:11:27 PM EST 2025

configs/fortigate/vdom_scsd/firewall.cfg

@@ -2891,6 +2891,16 @@ config firewall address
     edit "ipad_test"
         set subnet 10.14.112.94 255.255.255.255
     next
+    edit "RAPpublic"
+        set subnet 24.105.188.54 255.255.255.255
+    next
+    edit "RAP2_local_subnet_1"
+        set allow-routing enable
+    next
+    edit "RAP2_remote_subnet_1"
+        set allow-routing enable
+        set subnet 10.67.0.0 255.255.0.0
+    next
 end
 config firewall multicast-address
     edit "all_hosts"
@@ -3108,6 +3118,16 @@ config firewall addrgrp
         set member "Clary_POS" "ITC_Cafe_POS" "Porter_POS"
         set comment "Point of Sale Machines"
     next
+    edit "RAP2_local"
+        set allow-routing enable
+        set member "RAP2_local_subnet_1"
+        set comment "VPN: RAP2 (Created by VPN wizard)"
+    next
+    edit "RAP2_remote"
+        set allow-routing enable
+        set member "RAP2_remote_subnet_1"
+        set comment "VPN: RAP2 (Created by VPN wizard)"
+    next
 end
 config firewall wildcard-fqdn custom
     edit "g-Adobe Login"
@@ -6617,3 +6637,11 @@ config firewall sniffer
         set interface "city_phones lag"
     next
 end
+config firewall on-demand-sniffer
+    edit "outside lag_scsd"
+        set interface "outside lag"
+        set max-packet-count 100
+        set hosts "24.105.188.54"
+        set protocols 17
+    next
+end

configs/fortigate/vdom_scsd/router.cfg

@@ -234,6 +234,13 @@ config router static
         set device "RAP"
         set comment "RAP Users"
     next
+    edit 39
+        set distance 254
+        set comment "VPN: RAP2 (Created by VPN wizard)"
+        set blackhole enable
+        set dstaddr "RAP2_remote"
+        set vrf 0
+    next
 end
 config router ospf
     config redistribute "connected"

configs/fortigate/vdom_scsd/vpn.cfg

@@ -935,7 +935,9 @@ config vpn ipsec phase1-interface
         set peertype any
         set net-device disable
         set proposal aes256-sha256
+        set comments "RAP->SCSD"
         set nattraversal disable
+        set transport udp-fallback-tcp
         set remote-gw 24.105.188.54
         set psksecret ENC *HIDDEN*
     next

configs/mckin/mckin-idf1-a6300-sw1.cfg

@@ -67,6 +67,10 @@ vsf member 2
     type jl659a
     link 1 2/1/49
     link 2 2/1/50
+vsf member 3 
+    type jl659a
+    link 1 3/1/49
+    link 2 3/1/50
 dhcpv4-snooping
 client track ip 
 vlan 1
@@ -2832,6 +2836,210 @@ interface 2/1/52
     no shutdown
     mtu 9198
     lag 1
+interface 3/1/1
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/2
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/3
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/4
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/5
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/6
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/7
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/8
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/9
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/10
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/11
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/12
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/13
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/14
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/15
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/16
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/17
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/18
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/19
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/20
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/21
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/22
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/23
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/24
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/25
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/26
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/27
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/28
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/29
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/30
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/31
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/32
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/33
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/34
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/35
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/36
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/37
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/38
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/39
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/40
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/41
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/42
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/43
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/44
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/45
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/46
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/47
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/48
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/49
+    no shutdown
+interface 3/1/50
+    no shutdown
+interface 3/1/51
+    no shutdown
+    no routing
+    vlan access 1
+interface 3/1/52
+    no shutdown
+    no routing
+    vlan access 1
 interface vlan 1
     shutdown
     no ip dhcp

configs/mckin/mckin-idf2-a6300-sw1.cfg

@@ -71,6 +71,10 @@ vsf member 3
     type jl659a
     link 1 3/1/49
     link 2 3/1/50
+vsf member 4 
+    type jl659a
+    link 1 4/1/49
+    link 2 4/1/50
 dhcpv4-snooping
 client track ip 
 vlan 1
@@ -4178,6 +4182,210 @@ interface 3/1/52
     no shutdown
     no routing
     vlan access 1
+interface 4/1/1
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/2
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/3
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/4
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/5
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/6
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/7
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/8
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/9
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/10
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/11
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/12
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/13
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/14
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/15
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/16
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/17
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/18
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/19
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/20
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/21
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/22
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/23
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/24
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/25
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/26
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/27
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/28
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/29
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/30
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/31
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/32
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/33
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/34
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/35
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/36
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/37
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/38
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/39
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/40
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/41
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/42
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/43
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/44
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/45
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/46
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/47
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/48
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/49
+    no shutdown
+interface 4/1/50
+    no shutdown
+interface 4/1/51
+    no shutdown
+    no routing
+    vlan access 1
+interface 4/1/52
+    no shutdown
+    no routing
+    vlan access 1
 interface vlan 1
     shutdown
     no ip dhcp