delaware/delaware-mdf-4507.cfg Wed Apr 1 08:32:41 PM EDT 2026

lincol/lincol-4507-1.cfg Wed Apr 1 08:32:41 PM EDT 2026
hunt/hunt-4507-1.cfg Wed Apr 1 08:32:41 PM EDT 2026
2026-04-01 20:32:43 -04:00 · 2026-04-01 20:32:43 -04:00 · 2026-04-01 20:32:43 -04:00 · 2026-04-01 20:32:43 -04:00 · 2026-04-01 20:32:43 -04:00 · 2026-04-01 20:32:43 -04:00
37 changed files with 235 additions and 222 deletions
--- a/configs/clary/clary-mdf-a8360-sw1.cfg
+++ b/configs/clary/clary-mdf-a8360-sw1.cfg
@ -139,15 +139,13 @@ access-list ip Image-acl
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
 access-list ip hvac-acl
-    10 permit any 10.8.230.0/255.255.255.224 day-enterprise-servers
+    10 permit any any 10.1.230.11
-    20 permit udp 10.8.230.0/255.255.255.224 dns-servers eq dns
+    20 permit any any 10.1.40.108
-    30 permit udp 10.8.230.0/255.255.255.224 ntp-servers eq ntp
+    30 permit udp any any eq dns
-    40 permit icmp 10.8.230.0/255.255.255.252 10.8.230.0/255.255.255.224
+    40 deny any any 10.0.0.0/255.0.0.0
-    50 permit icmp 10.8.230.0/255.255.255.224 10.8.230.0/255.255.255.252
+    50 deny any any 192.168.0.0/255.255.0.0
-    60 deny any any 10.0.0.0/255.0.0.0
+    60 deny any any 172.16.0.0/255.240.0.0
-    70 deny any any 192.168.0.0/255.255.0.0
+    70 permit tcp any any eq 587 log count
    80 deny any any 172.16.0.0/255.240.0.0
    90 permit tcp 10.8.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
@ -448,6 +446,7 @@ interface vlan 230
    ip helper-address 10.1.40.20
    ip helper-address 10.21.48.20
    ip ospf 1 area 0.0.0.201
    apply access-list ip hvac-acl routed-in
    ip igmp enable
    ip pim-sparse enable
 interface vlan 254
--- a/configs/clary/clary-mdf-a8360-sw2.cfg
+++ b/configs/clary/clary-mdf-a8360-sw2.cfg
@ -139,15 +139,13 @@ access-list ip Image-acl
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
 access-list ip hvac-acl
-    10 permit any 10.8.230.0/255.255.255.224 day-enterprise-servers
+    10 permit any any 10.1.230.11
-    20 permit udp 10.8.230.0/255.255.255.224 dns-servers eq dns
+    20 permit any any 10.1.40.108
-    30 permit udp 10.8.230.0/255.255.255.224 ntp-servers eq ntp
+    30 permit udp any any eq dns
-    40 permit icmp 10.8.230.0/255.255.255.252 10.8.230.0/255.255.255.224
+    40 deny any any 10.0.0.0/255.0.0.0
-    50 permit icmp 10.8.230.0/255.255.255.224 10.8.230.0/255.255.255.252
+    50 deny any any 192.168.0.0/255.255.0.0
-    60 deny any any 10.0.0.0/255.0.0.0
+    60 deny any any 172.16.0.0/255.240.0.0
-    70 deny any any 192.168.0.0/255.255.0.0
+    70 permit tcp any any eq 587 log count
    80 deny any any 172.16.0.0/255.240.0.0
    90 permit tcp 10.8.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
@ -444,6 +442,7 @@ interface vlan 230
    ip helper-address 10.1.40.20
    ip helper-address 10.21.48.20
    ip ospf 1 area 0.0.0.201
    apply access-list ip hvac-acl routed-in
    ip igmp enable
    ip pim-sparse enable
 interface vlan 254
--- a/configs/ct/ct-noc-a8325-a.cfg
+++ b/configs/ct/ct-noc-a8325-a.cfg
@ -828,7 +828,7 @@ interface lag 253 multi-chassis
    no shutdown
    no routing
    vlan trunk native 699
-    vlan trunk allowed 6,10,18,21,30,35,40,45,48,50,70,101,107,140,150,164,175-179,203,230,252,500-501
+    vlan trunk allowed 6,10,18,21,30,35,40,45,48,50,70,101,107,140,150,164,175-179,203,230,252,500-501,3000
    lacp mode active
 interface lag 255 multi-chassis
    description DCI Lag
@ -922,6 +922,7 @@ interface 1/1/22
 interface 1/1/22:1
    description hydra-1
    no shutdown
    mtu 9198
    lag 253
 interface 1/1/22:2
    description hydra-2 to Nx-B e1/14
--- a/configs/ct/ct-noc-a8360-4-a.cfg
+++ b/configs/ct/ct-noc-a8360-4-a.cfg
@ -768,7 +768,7 @@ interface lag 2 multi-chassis
    no shutdown
    no routing
    vlan trunk native 699 tag
-    vlan trunk allowed 501,511
+    vlan trunk allowed 21,501,511
    lacp mode active
 interface lag 191 multi-chassis
    description MX-A ae191
@ -888,6 +888,7 @@ interface 1/1/28
 interface 1/1/30
    description itc-mdf-a8360-sw1 C09P18
    no shutdown
    mtu 9198
    lag 2
 interface 1/1/31
    description iLo Alpha LAG
--- a/configs/ct/ct-noc-a8360-4-b.cfg
+++ b/configs/ct/ct-noc-a8360-4-b.cfg
@ -766,7 +766,7 @@ interface lag 2 multi-chassis
    no shutdown
    no routing
    vlan trunk native 699 tag
-    vlan trunk allowed 501,511
+    vlan trunk allowed 21,501,511
    lacp mode active
 interface lag 191 multi-chassis
    description MX-A ae191
@ -887,6 +887,7 @@ interface 1/1/27
 interface 1/1/30
    description itc-mdf-a8360-sw2 C09P42
    no shutdown
    mtu 9198
    lag 2
 interface 1/1/31
    description iLo Alpha LAG
--- a/configs/danforth/danforth-mdf-4507.cfg
+++ b/configs/danforth/danforth-mdf-4507.cfg
@ -1,8 +1,8 @@
 Building configuration...
-Current configuration : 33695 bytes
+Current configuration : 33501 bytes
 !
-! Last configuration change at 07:41:44 EDT Tue Mar 31 2026 by jpoland.oa
+! Last configuration change at 11:33:42 EDT Wed Apr 1 2026 by jkafta72.admin
 ! NVRAM config last updated at 07:41:44 EDT Tue Mar 31 2026 by jpoland.oa
 !
 version 15.2
@ -999,6 +999,7 @@ interface Vlan35
 !
 interface Vlan40
 ip address 10.21.40.1 255.255.255.0
 ip access-group hvac-acl in
 no ip redirects
 ip pim sparse-mode
 !
@ -1198,16 +1199,14 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
 permit udp any any eq 1575
 permit tcp any any eq 1630
 permit udp any any eq 1630
-ip access-list extended hvac
+ip access-list extended hvac-acl
- permit ip 10.21.230.0 0.0.0.31 object-group day-enterprise-servers
+ permit ip any host 10.1.230.11
- permit udp 10.21.230.0 0.0.0.31 object-group dns-servers eq domain
+ permit ip any host 10.1.40.108
- permit udp 10.21.230.0 0.0.0.31 object-group ntp-servers eq ntp
+ permit udp any any eq domain
- permit icmp 10.21.230.0 0.0.0.31 host 10.21.230.1
+ deny   ip any 10.0.0.0 0.0.0.255
 permit icmp host 10.21.230.1 10.21.230.0 0.0.0.31
 deny   ip any 10.0.0.0 0.255.255.255
 deny   ip any 192.168.0.0 0.0.255.255
 deny   ip any 172.16.0.0 0.15.255.255
- permit tcp 10.21.230.0 0.0.0.31 any eq 587 log-input
+ permit tcp any any eq 587 log count
 ip access-list extended users
 deny   ip any 192.168.0.0 0.0.255.255
 permit ip any any
--- a/configs/delaware/delaware-mdf-4507.cfg
+++ b/configs/delaware/delaware-mdf-4507.cfg
@ -1,9 +1,9 @@
 Building configuration...
-Current configuration : 38131 bytes
+Current configuration : 37915 bytes
 !
-! Last configuration change at 07:41:51 EDT Tue Mar 31 2026 by jpoland.oa
+! Last configuration change at 09:09:43 EDT Wed Apr 1 2026 by jkafta72.admin
-! NVRAM config last updated at 07:41:51 EDT Tue Mar 31 2026 by jpoland.oa
+! NVRAM config last updated at 09:09:32 EDT Wed Apr 1 2026 by jkafta72.admin
 !
 version 15.2
 no service pad
@ -1150,7 +1150,7 @@ interface Vlan107
 !
 interface Vlan230
 ip address 10.22.230.1 255.255.255.224
- ip access-group hvac in
+ ip access-group hvac-acl in
 !
 interface Vlan503
 description to Ring #3 CCF Service #S200281
@ -1254,16 +1254,14 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
 permit udp any any eq 1575
 permit tcp any any eq 1630
 permit udp any any eq 1630
-ip access-list extended hvac
+ip access-list extended hvac-acl
- permit ip 10.22.230.0 0.0.0.31 object-group day-enterprise-servers
+ permit ip any host 10.1.230.11
- permit udp 10.22.230.0 0.0.0.31 object-group dns-servers eq domain
+ permit ip any host 10.1.40.108
- permit udp 10.22.230.0 0.0.0.31 object-group ntp-servers eq ntp
+ permit udp any any eq domain
- permit icmp 10.22.230.0 0.0.0.31 host 10.22.230.1
+ deny   ip any 10.0.0.0 0.0.0.255
 permit icmp host 10.22.230.1 10.22.230.0 0.0.0.31
 deny   ip any 10.0.0.0 0.255.255.255
 deny   ip any 192.168.0.0 0.0.255.255
 deny   ip any 172.16.0.0 0.15.255.255
- permit tcp 10.22.230.0 0.0.0.31 any eq 587 log-input
+ permit tcp any any eq 587 log count
 ip access-list extended sbhc-acl
 permit ip 10.22.107.0 0.0.0.255 10.107.50.0 0.0.0.255
 permit tcp 10.22.107.0 0.0.0.255 any eq 443
--- a/configs/edsmith/edsmith-4507-1.cfg
+++ b/configs/edsmith/edsmith-4507-1.cfg
@ -1,9 +1,9 @@
 Building configuration...
-Current configuration : 37063 bytes
+Current configuration : 36872 bytes
 !
-! Last configuration change at 07:42:51 EDT Tue Mar 31 2026 by jpoland.oa
+! Last configuration change at 09:16:34 EDT Wed Apr 1 2026 by jkafta72.admin
-! NVRAM config last updated at 07:42:51 EDT Tue Mar 31 2026 by jpoland.oa
+! NVRAM config last updated at 09:16:30 EDT Wed Apr 1 2026 by jkafta72.admin
 !
 version 15.2
 no service pad
@ -977,6 +977,7 @@ interface Vlan35
 !
 interface Vlan40
 ip address 10.45.40.1 255.255.255.0
 ip access-group hvac-acl in
 no ip redirects
 ip pim sparse-mode
 !
@ -1180,16 +1181,14 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
 permit udp any any eq 1575
 permit tcp any any eq 1630
 permit udp any any eq 1630
-ip access-list extended hvac
+ip access-list extended hvac-acl
- permit ip 10.45.230.0 0.0.0.31 object-group day-enterprise-servers
+ permit ip any host 10.1.230.11
- permit udp 10.45.230.0 0.0.0.31 object-group dns-servers eq domain
+ permit ip any host 10.1.40.108
- permit udp 10.45.230.0 0.0.0.31 object-group ntp-servers eq ntp
+ permit udp any any eq domain
- permit icmp 10.45.230.0 0.0.0.31 host 10.45.230.1
+ deny   ip any 10.0.0.0 0.0.0.255
 permit icmp host 10.45.230.1 10.45.230.0 0.0.0.31
 deny   ip any 10.0.0.0 0.255.255.255
 deny   ip any 192.168.0.0 0.0.255.255
 deny   ip any 172.16.0.0 0.15.255.255
- permit tcp 10.45.230.0 0.0.0.31 any eq 587 log-input
+ permit tcp any any eq 587 log count
 !
 logging trap notifications
 logging origin-id hostname
--- a/configs/elmwood/elmwood-mdf-4507.cfg
+++ b/configs/elmwood/elmwood-mdf-4507.cfg
@ -1,8 +1,8 @@
 Building configuration...
-Current configuration : 36544 bytes
+Current configuration : 36325 bytes
 !
-! Last configuration change at 07:41:58 EDT Tue Mar 31 2026 by jpoland.oa
+! Last configuration change at 12:17:45 EDT Wed Apr 1 2026 by jkafta72.admin
 ! NVRAM config last updated at 07:41:58 EDT Tue Mar 31 2026 by jpoland.oa
 !
 version 15.2
@ -1114,7 +1114,7 @@ interface Vlan107
 !
 interface Vlan230
 ip address 10.23.230.1 255.255.255.224
- ip access-group hvac in
+ ip access-group hvac-acl in
 !
 interface Vlan233
 ip address 10.23.233.1 255.255.255.0
@ -1218,16 +1218,14 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
 permit udp any any eq 1575
 permit tcp any any eq 1630
 permit udp any any eq 1630
-ip access-list extended hvac
+ip access-list extended hvac-acl
- permit ip 10.23.230.0 0.0.0.31 object-group day-enterprise-servers
+ permit ip any host 10.1.230.11
- permit udp 10.23.230.0 0.0.0.31 object-group dns-servers eq domain
+ permit ip any host 10.1.40.108
- permit udp 10.23.230.0 0.0.0.31 object-group ntp-servers eq ntp
+ permit udp any any eq domain
- permit icmp 10.23.230.0 0.0.0.31 host 10.23.230.1
+ deny   ip any 10.0.0.0 0.0.0.255
 permit icmp host 10.23.230.1 10.23.230.0 0.0.0.31
 deny   ip any 10.0.0.0 0.255.255.255
 deny   ip any 192.168.0.0 0.0.255.255
 deny   ip any 172.16.0.0 0.15.255.255
- permit tcp 10.23.230.0 0.0.0.31 any eq 587 log-input
+ permit tcp any any eq 587 log count
 ip access-list extended users
 deny   ip any 192.168.0.0 0.0.255.255
 permit ip any any
--- a/configs/frank/frank-mdf-4507.cfg
+++ b/configs/frank/frank-mdf-4507.cfg
@ -1,9 +1,9 @@
 Building configuration...
-Current configuration : 22181 bytes
+Current configuration : 21965 bytes
 !
-! Last configuration change at 07:42:04 EDT Tue Mar 31 2026 by jpoland.oa
+! Last configuration change at 09:27:45 EDT Wed Apr 1 2026 by jkafta72.admin
-! NVRAM config last updated at 07:42:04 EDT Tue Mar 31 2026 by jpoland.oa
+! NVRAM config last updated at 09:27:41 EDT Wed Apr 1 2026 by jkafta72.admin
 !
 version 15.2
 no service pad
@ -649,7 +649,7 @@ interface Vlan207
 !
 interface Vlan230
 ip address 10.24.230.1 255.255.255.224
- ip access-group hvac in
+ ip access-group hvac-acl in
 !
 interface Vlan233
 ip address 10.24.233.1 255.255.255.0
@ -757,16 +757,14 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
 permit udp any any eq 1575
 permit tcp any any eq 1630
 permit udp any any eq 1630
-ip access-list extended hvac
+ip access-list extended hvac-acl
- permit ip 10.24.230.0 0.0.0.31 object-group day-enterprise-servers
+ permit ip any host 10.1.230.11
- permit udp 10.24.230.0 0.0.0.31 object-group dns-servers eq domain
+ permit ip any host 10.1.40.108
- permit udp 10.24.230.0 0.0.0.31 object-group ntp-servers eq ntp
+ permit udp any any eq domain
- permit icmp 10.24.230.0 0.0.0.31 host 10.24.230.1
+ deny   ip any 10.0.0.0 0.0.0.255
 permit icmp host 10.24.230.1 10.24.230.0 0.0.0.31
 deny   ip any 10.0.0.0 0.255.255.255
 deny   ip any 192.168.0.0 0.0.255.255
 deny   ip any 172.16.0.0 0.15.255.255
- permit tcp 10.24.230.0 0.0.0.31 any eq 587 log-input
+ permit tcp any any eq 587 log count
 ip access-list extended sbhc-acl
 permit ip 10.24.107.0 0.0.0.255 10.107.50.0 0.0.0.255
 permit tcp 10.24.107.0 0.0.0.255 any eq 443
--- a/configs/frazer/frazer-4507-1.cfg
+++ b/configs/frazer/frazer-4507-1.cfg
@ -1,9 +1,9 @@
 Building configuration...
-Current configuration : 38725 bytes
+Current configuration : 38509 bytes
 !
-! Last configuration change at 07:42:11 EDT Tue Mar 31 2026 by jpoland.oa
+! Last configuration change at 09:29:54 EDT Wed Apr 1 2026 by jkafta72.admin
-! NVRAM config last updated at 07:42:11 EDT Tue Mar 31 2026 by jpoland.oa
+! NVRAM config last updated at 09:29:24 EDT Wed Apr 1 2026 by jkafta72.admin
 !
 version 15.2
 no service pad
@ -1145,7 +1145,7 @@ interface Vlan107
 !
 interface Vlan230
 ip address 10.25.230.1 255.255.255.224
- ip access-group hvac in
+ ip access-group hvac-acl in
 !
 interface Vlan504
 description to Ring #4 CCF Service #S200290
@ -1247,16 +1247,14 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
 permit udp any any eq 1575
 permit tcp any any eq 1630
 permit udp any any eq 1630
-ip access-list extended hvac
+ip access-list extended hvac-acl
- permit ip 10.25.230.0 0.0.0.31 object-group day-enterprise-servers
+ permit ip any host 10.1.230.11
- permit udp 10.25.230.0 0.0.0.31 object-group dns-servers eq domain
+ permit ip any host 10.1.40.108
- permit udp 10.25.230.0 0.0.0.31 object-group ntp-servers eq ntp
+ permit udp any any eq domain
- permit icmp 10.25.230.0 0.0.0.31 host 10.25.230.1
+ deny   ip any 10.0.0.0 0.0.0.255
 permit icmp host 10.25.230.1 10.25.230.0 0.0.0.31
 deny   ip any 10.0.0.0 0.255.255.255
 deny   ip any 192.168.0.0 0.0.255.255
 deny   ip any 172.16.0.0 0.15.255.255
- permit tcp 10.25.230.0 0.0.0.31 any eq 587 log-input
+ permit tcp any any eq 587 log count
 ip access-list extended users
 deny   ip any 192.168.0.0 0.0.255.255
 permit ip any any
--- a/configs/grant/grant-mdf-4507.cfg
+++ b/configs/grant/grant-mdf-4507.cfg
@ -1,9 +1,9 @@
 Building configuration...
-Current configuration : 34293 bytes
+Current configuration : 34109 bytes
 !
-! Last configuration change at 07:41:06 EDT Tue Mar 31 2026 by jpoland.oa
+! Last configuration change at 12:02:42 EDT Wed Apr 1 2026 by swalts49.admin
-! NVRAM config last updated at 07:41:06 EDT Tue Mar 31 2026 by jpoland.oa
+! NVRAM config last updated at 12:02:43 EDT Wed Apr 1 2026 by swalts49.admin
 !
 version 15.2
 no service pad
@ -420,7 +420,7 @@ interface Loopback0
 interface Port-channel5
 description To MDF .5 Stack **
 switchport
- switchport trunk allowed vlan 10,20,30,35,40,50,59,60,70
+ switchport trunk allowed vlan 10,20,30,35,40,50,59,60,70,230
 switchport trunk native vlan 10
 switchport mode trunk
 !
@ -462,7 +462,7 @@ interface Port-channel51
 interface Port-channel61
 description ** To IDF6 **
 switchport
- switchport trunk allowed vlan 10,20,30,35,40,56,70
+ switchport trunk allowed vlan 10,20,30,35,40,56,70,230
 switchport trunk native vlan 10
 switchport mode trunk
 !
@ -475,7 +475,7 @@ interface FastEthernet1
 !
 interface TenGigabitEthernet1/1
 description ***   To grant-mdf153-sw1   ***
- switchport trunk allowed vlan 10,20,30,35,40,50,59,60,70
+ switchport trunk allowed vlan 10,20,30,35,40,50,59,60,70,230
 switchport trunk native vlan 10
 switchport mode trunk
 channel-group 5 mode active
@ -517,7 +517,7 @@ interface TenGigabitEthernet1/6
 !
 interface TenGigabitEthernet1/7
 description ***   To grant-idf360-sw1   ***
- switchport trunk allowed vlan 10,20,30,35,40,56,70
+ switchport trunk allowed vlan 10,20,30,35,40,56,70,230
 switchport trunk native vlan 10
 switchport mode trunk
 channel-group 61 mode active
@ -543,7 +543,7 @@ interface TenGigabitEthernet1/12
 !
 interface TenGigabitEthernet2/1
 description ***   To grant-mdf153-sw1   ***
- switchport trunk allowed vlan 10,20,30,35,40,50,59,60,70
+ switchport trunk allowed vlan 10,20,30,35,40,50,59,60,70,230
 switchport trunk native vlan 10
 switchport mode trunk
 channel-group 5 mode active
@ -585,7 +585,7 @@ interface TenGigabitEthernet2/6
 !
 interface TenGigabitEthernet2/7
 description ***   To grant-idf360-sw1   ***
- switchport trunk allowed vlan 10,20,30,35,40,56,70
+ switchport trunk allowed vlan 10,20,30,35,40,56,70,230
 switchport trunk native vlan 10
 switchport mode trunk
 channel-group 61 mode active
@ -910,6 +910,7 @@ interface Vlan35
 !
 interface Vlan40
 ip address 10.9.40.1 255.255.255.0
 ip access-group hvac-acl in
 no ip redirects
 ip pim sparse-mode
 !
@ -1009,7 +1010,6 @@ interface Vlan107
 !
 interface Vlan230
 ip address 10.9.230.1 255.255.255.224
 ip access-group hvac in
 !
 interface Vlan233
 ip address 10.9.233.1 255.255.255.0
@ -1117,16 +1117,14 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
 ip access-list extended CAP1-FILTER-LIST
 permit ip 192.168.1.0 0.0.0.255 192.168.2.0 0.0.0.255
 permit ip 192.168.2.0 0.0.0.255 192.168.1.0 0.0.0.255
-ip access-list extended hvac
+ip access-list extended hvac-acl
- permit ip 10.9.230.0 0.0.0.31 object-group day-enterprise-servers
+ permit ip any host 10.1.230.11
- permit udp 10.9.230.0 0.0.0.31 object-group dns-servers eq domain
+ permit ip any host 10.1.40.108
- permit udp 10.9.230.0 0.0.0.31 object-group ntp-servers eq ntp
+ permit udp any any eq domain
- permit icmp 10.9.230.0 0.0.0.31 host 10.9.230.1
+ deny   ip any 10.0.0.0 0.0.0.255
 permit icmp host 10.9.230.1 10.9.230.0 0.0.0.31
 deny   ip any 10.0.0.0 0.255.255.255
 deny   ip any 192.168.0.0 0.0.255.255
 deny   ip any 172.16.0.0 0.15.255.255
- permit tcp 10.9.230.0 0.0.0.31 any eq 587 log-input
+ permit tcp any any eq 587 log count
 ip access-list extended sbhc-acl
 permit ip 10.9.107.0 0.0.0.255 10.107.50.0 0.0.0.255
 permit tcp 10.9.107.0 0.0.0.255 any eq 443
--- a/configs/henninger/henninger-mdf-4507.cfg
+++ b/configs/henninger/henninger-mdf-4507.cfg
@ -1,9 +1,9 @@
 Building configuration...
-Current configuration : 31643 bytes
+Current configuration : 31460 bytes
 !
-! Last configuration change at 07:41:00 EDT Tue Mar 31 2026 by jpoland.oa
+! Last configuration change at 09:42:25 EDT Wed Apr 1 2026 by jkafta72.admin
-! NVRAM config last updated at 07:41:00 EDT Tue Mar 31 2026 by jpoland.oa
+! NVRAM config last updated at 09:42:14 EDT Wed Apr 1 2026 by jkafta72.admin
 !
 version 15.2
 no service pad
@ -886,6 +886,7 @@ interface Vlan35
 !
 interface Vlan40
 ip address 10.6.40.1 255.255.255.0
 ip access-group hvac-acl in
 no ip redirects
 !
 interface Vlan50
@ -1045,16 +1046,14 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
 permit udp any any eq 1575
 permit tcp any any eq 1630
 permit udp any any eq 1630
-ip access-list extended hvac
+ip access-list extended hvac-acl
- permit ip 10.6.230.0 0.0.0.31 object-group day-enterprise-servers
+ permit ip any host 10.1.230.11
- permit udp 10.6.230.0 0.0.0.31 object-group dns-servers eq domain
+ permit ip any host 10.1.40.108
- permit udp 10.6.230.0 0.0.0.31 object-group ntp-servers eq ntp
+ permit udp any any eq domain
- permit icmp 10.6.230.0 0.0.0.31 host 10.6.230.1
+ deny   ip any 10.0.0.0 0.0.0.255
 permit icmp host 10.6.230.1 10.6.230.0 0.0.0.31
 deny   ip any 10.0.0.0 0.255.255.255
 deny   ip any 192.168.0.0 0.0.255.255
 deny   ip any 172.16.0.0 0.15.255.255
- permit tcp 10.6.230.0 0.0.0.31 any eq 587 log-input
+ permit tcp any any eq 587 log count
 ip access-list extended users
 deny   ip any 192.168.0.0 0.0.255.255
 permit ip any any
--- a/configs/hughes/hughes-4507-01.cfg
+++ b/configs/hughes/hughes-4507-01.cfg
@ -1,9 +1,9 @@
 Building configuration...
-Current configuration : 41136 bytes
+Current configuration : 40945 bytes
 !
-! Last configuration change at 07:42:17 EDT Tue Mar 31 2026 by jpoland.oa
+! Last configuration change at 10:33:33 EDT Wed Apr 1 2026 by jkafta72.admin
-! NVRAM config last updated at 07:42:17 EDT Tue Mar 31 2026 by jpoland.oa
+! NVRAM config last updated at 10:33:18 EDT Wed Apr 1 2026 by jkafta72.admin
 !
 version 15.2
 no service pad
@ -1154,6 +1154,7 @@ interface Vlan35
 !
 interface Vlan40
 ip address 10.28.40.2 255.255.255.0
 ip access-group hvac-acl in
 no ip redirects
 ip pim sparse-mode
 !
@ -1371,16 +1372,14 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
 permit udp any any eq 1575
 permit tcp any any eq 1630
 permit udp any any eq 1630
-ip access-list extended hvac
+ip access-list extended hvac-acl
- permit ip 10.28.230.0 0.0.0.31 object-group day-enterprise-servers
+ permit ip any host 10.1.230.11
- permit udp 10.28.230.0 0.0.0.31 object-group dns-servers eq domain
+ permit ip any host 10.1.40.108
- permit udp 10.28.230.0 0.0.0.31 object-group ntp-servers eq ntp
+ permit udp any any eq domain
- permit icmp 10.28.230.0 0.0.0.31 host 10.28.230.1
+ deny   ip any 10.0.0.0 0.0.0.255
 permit icmp host 10.28.230.1 10.28.230.0 0.0.0.31
 deny   ip any 10.0.0.0 0.255.255.255
 deny   ip any 192.168.0.0 0.0.255.255
 deny   ip any 172.16.0.0 0.15.255.255
- permit tcp 10.28.230.0 0.0.0.31 any eq 587 log-input
+ permit tcp any any eq 587 log count
 ip access-list extended users
 deny   ip any 192.168.0.0 0.0.255.255
 permit ip any any
--- a/configs/hunt/hunt-4507-1.cfg
+++ b/configs/hunt/hunt-4507-1.cfg
@ -1,9 +1,9 @@
 Building configuration...
-Current configuration : 34626 bytes
+Current configuration : 34435 bytes
 !
-! Last configuration change at 07:42:24 EDT Tue Mar 31 2026 by jpoland.oa
+! Last configuration change at 10:47:32 EDT Wed Apr 1 2026 by jkafta72.admin
-! NVRAM config last updated at 07:42:24 EDT Tue Mar 31 2026 by jpoland.oa
+! NVRAM config last updated at 10:47:24 EDT Wed Apr 1 2026 by jkafta72.admin
 !
 version 15.2
 no service pad
@ -971,6 +971,7 @@ interface Vlan35
 !
 interface Vlan40
 ip address 10.29.40.2 255.255.255.0
 ip access-group hvac-acl in
 no ip redirects
 ip pim sparse-mode
 !
@ -1181,16 +1182,14 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
 permit udp any any eq 1575
 permit tcp any any eq 1630
 permit udp any any eq 1630
-ip access-list extended hvac
+ip access-list extended hvac-acl
- permit ip 10.29.230.0 0.0.0.31 object-group day-enterprise-servers
+ permit ip any host 10.1.230.11
- permit udp 10.29.230.0 0.0.0.31 object-group dns-servers eq domain
+ permit ip any host 10.1.40.108
- permit udp 10.29.230.0 0.0.0.31 object-group ntp-servers eq ntp
+ permit udp any any eq domain
- permit icmp 10.29.230.0 0.0.0.31 host 10.29.230.1
+ deny   ip any 10.0.0.0 0.0.0.255
 permit icmp host 10.29.230.1 10.29.230.0 0.0.0.31
 deny   ip any 10.0.0.0 0.255.255.255
 deny   ip any 192.168.0.0 0.0.255.255
 deny   ip any 172.16.0.0 0.15.255.255
- permit tcp 10.29.230.0 0.0.0.31 any eq 587 log-input
+ permit tcp any any eq 587 log count
 ip access-list extended users
 deny   ip any 192.168.0.0 0.0.255.255
 permit ip any any
--- a/configs/itc/itc-idf1-a6300-sw1.cfg
+++ b/configs/itc/itc-idf1-a6300-sw1.cfg
@ -118,6 +118,11 @@ vlan 40
    client track ip 
    dhcpv4-snooping
    ip igmp snooping enable
 vlan 48
    name Server48
    description Server 48 VLAN
    dhcpv4-snooping
    ip igmp snooping enable
 vlan 50
    name Voice
    voice
@ -178,7 +183,7 @@ interface lag 1
    no shutdown
    no routing
    vlan trunk native 699
-    vlan trunk allowed 10,20-21,30,35,50,70,72,168,230
+    vlan trunk allowed 10,20-21,30,35,48,50,70,72,168,230
    lacp mode active
    dhcpv4-snooping trust
 interface 1/1/1
@ -7045,7 +7050,7 @@ interface 6/1/9
    description Imaging
    no shutdown
    no routing
-    vlan access 20
+    vlan access 21
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
@ -7636,7 +7641,8 @@ mirror session 2
    enable
 ip dns domain-name scsd.ad
 ip dns server-address 10.1.40.10
-ip dns server-address 10.21.48.10
+ip dns server-address 10.1.48.10
 ip dns server-address 10.1.48.11
 !
 !
 !
--- a/configs/itc/itc-idf2-a6300-sw1.cfg
+++ b/configs/itc/itc-idf2-a6300-sw1.cfg
@ -8306,7 +8306,7 @@ snmp-server community mickey03
 ip route 0.0.0.0/0 192.168.2.1
 ip dns domain-name scsd.ad
 ip dns server-address 10.1.40.10
-ip dns server-address 10.21.48.10
+ip dns server-address 10.1.48.11
 !
 !
 !
--- a/configs/itc/itc-idf3-a6300-sw1.cfg
+++ b/configs/itc/itc-idf3-a6300-sw1.cfg
@ -6970,7 +6970,7 @@ snmp-server community mickey03
 ip route 0.0.0.0/0 192.168.2.1
 ip dns domain-name scsd.ad
 ip dns server-address 10.1.40.10
-ip dns server-address 10.21.48.10
+ip dns server-address 10.1.48.11
 !
 !
 !
--- a/configs/itc/itc-mdf-a6300-sw1.cfg
+++ b/configs/itc/itc-mdf-a6300-sw1.cfg
@ -4235,7 +4235,7 @@ snmp-server community mickey03
 ip route 0.0.0.0/0 192.168.2.1
 ip dns domain-name scsd.ad
 ip dns server-address 10.1.40.10
-ip dns server-address 10.21.48.10
+ip dns server-address 10.1.48.11
 !
 !
 !
--- a/configs/itc/itc-mdf-a8360-sw1.cfg
+++ b/configs/itc/itc-mdf-a8360-sw1.cfg
@ -188,6 +188,11 @@ vlan 40
    description temp hvac
    dhcpv4-snooping
    ip igmp snooping enable
 vlan 48
    name Server48
    description Server 48 VLAN
    dhcpv4-snooping
    ip igmp snooping enable
 vlan 50
    name Voice
    voice
@ -238,7 +243,7 @@ spanning-tree
 spanning-tree priority 2
 spanning-tree trap topology-change instance 0
 spanning-tree ignore-pvid-inconsistency
-spanning-tree vlan 10,20,21,30,35,40,50,70,72,168,230,254,501,511,521,531,699
+spanning-tree vlan 10,20,21,30,35,40,48,50,70,72,168,230,254,501,511,521,531,699
 interface mgmt
    no shutdown
    ip static 192.168.2.2/24
@ -290,7 +295,7 @@ interface lag 11 multi-chassis
    no shutdown
    no routing
    vlan trunk native 699
-    vlan trunk allowed 10,20-21,30,35,40,50,70,72,168,230,254,501,511,521,531
+    vlan trunk allowed 10,20-21,30,35,40,48,50,70,72,168,230,254,501,511,521,531
    lacp mode active
 interface lag 21 multi-chassis
    description Uplink to itc-idf2-a6300-sw1
@ -343,6 +348,7 @@ interface 1/1/15
 interface 1/1/16
    description 02-ITC-MDF LAG to CT-NOC
    no shutdown
    mtu 9198
    lag 2
 interface 1/1/17
    description ISL LAG
@ -384,8 +390,8 @@ interface vlan 21
    ip helper-address 10.1.40.115
    ip helper-address 10.1.40.116
    ip helper-address 10.1.40.117
    ip helper-address 10.1.48.189
    ip helper-address 10.21.48.20
    ip helper-address 10.41.21.221
    ip ospf 1 area 0.0.0.201
    ip igmp enable
    ip pim-sparse enable
--- a/configs/itc/itc-mdf-a8360-sw2.cfg
+++ b/configs/itc/itc-mdf-a8360-sw2.cfg
@ -189,6 +189,11 @@ vlan 40
    description temp hvac
    dhcpv4-snooping
    ip igmp snooping enable
 vlan 48
    name Server48
    description Server 48 VLAN
    dhcpv4-snooping
    ip igmp snooping enable
 vlan 50
    name Voice
    voice
@ -239,7 +244,7 @@ spanning-tree
 spanning-tree priority 2
 spanning-tree trap topology-change instance 0
 spanning-tree ignore-pvid-inconsistency
-spanning-tree vlan 10,20,21,30,35,40,50,70,72,168,230,254,501,511,521,531,699
+spanning-tree vlan 10,20,21,30,35,40,48,50,70,72,168,230,254,501,511,521,531,699
 interface mgmt
    no shutdown
    ip static 192.168.2.3/24
@ -291,7 +296,7 @@ interface lag 11 multi-chassis
    no shutdown
    no routing
    vlan trunk native 699
-    vlan trunk allowed 10,20-21,30,35,40,50,70,72,168,230,254,501,511,521,531
+    vlan trunk allowed 10,20-21,30,35,40,48,50,70,72,168,230,254,501,511,521,531
    lacp mode active
 interface lag 21 multi-chassis
    description Uplink to itc-idf2-a6300-sw1
@ -344,6 +349,7 @@ interface 1/1/15
 interface 1/1/16
    description 02-ITC-MDF LAG to CT-NOC
    no shutdown
    mtu 9198
    lag 2
 interface 1/1/17
    description ISL LAG
--- a/configs/lemoy/lemoy-mdf-a8360-sw1.cfg
+++ b/configs/lemoy/lemoy-mdf-a8360-sw1.cfg
@ -139,15 +139,13 @@ access-list ip Image-acl
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
 access-list ip hvac-acl
-    10 permit any 10.33.230.0/255.255.255.224 day-enterprise-servers
+    10 permit any any 10.1.230.11
-    20 permit udp 10.33.230.0/255.255.255.224 dns-servers eq dns
+    20 permit any any 10.1.40.108
-    30 permit udp 10.33.230.0/255.255.255.224 ntp-servers eq ntp
+    30 permit udp any any eq dns
-    40 permit icmp 10.33.230.0/255.255.255.252 10.33.230.0/255.255.255.224
+    40 deny any any 10.0.0.0/255.0.0.0
-    50 permit icmp 10.33.230.0/255.255.255.224 10.33.230.0/255.255.255.252
+    50 deny any any 192.168.0.0/255.255.0.0
-    60 deny any any 10.0.0.0/255.0.0.0
+    60 deny any any 172.16.0.0/255.240.0.0
-    70 deny any any 192.168.0.0/255.255.0.0
+    70 permit tcp any any eq 587 log count
    80 deny any any 172.16.0.0/255.240.0.0
    90 permit tcp 10.33.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
@ -439,6 +437,7 @@ interface vlan 230
    ip helper-address 10.1.40.20
    ip helper-address 10.21.48.20
    ip ospf 1 area 0.0.0.207
    apply access-list ip hvac-acl routed-in
    ip igmp enable
    ip pim-sparse enable
 interface vlan 254
--- a/configs/lemoy/lemoy-mdf-a8360-sw2.cfg
+++ b/configs/lemoy/lemoy-mdf-a8360-sw2.cfg
@ -139,15 +139,13 @@ access-list ip Image-acl
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
 access-list ip hvac-acl
-    10 permit any 10.33.230.0/255.255.255.224 day-enterprise-servers
+    10 permit any any 10.1.230.11
-    20 permit udp 10.33.230.0/255.255.255.224 dns-servers eq dns
+    20 permit any any 10.1.40.108
-    30 permit udp 10.33.230.0/255.255.255.224 ntp-servers eq ntp
+    30 permit udp any any eq dns
-    40 permit icmp 10.33.230.0/255.255.255.252 10.33.230.0/255.255.255.224
+    40 deny any any 10.0.0.0/255.0.0.0
-    50 permit icmp 10.33.230.0/255.255.255.224 10.33.230.0/255.255.255.252
+    50 deny any any 192.168.0.0/255.255.0.0
-    60 deny any any 10.0.0.0/255.0.0.0
+    60 deny any any 172.16.0.0/255.240.0.0
-    70 deny any any 192.168.0.0/255.255.0.0
+    70 permit tcp any any eq 587 log count
    80 deny any any 172.16.0.0/255.240.0.0
    90 permit tcp 10.33.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
@ -440,6 +438,7 @@ interface vlan 230
    ip helper-address 10.1.40.20
    ip helper-address 10.21.48.20
    ip ospf 1 area 0.0.0.207
    apply access-list ip hvac-acl routed-in
    ip igmp enable
    ip pim-sparse enable
 interface vlan 254
--- a/configs/levy/levy-mdf-4507-1.cfg
+++ b/configs/levy/levy-mdf-4507-1.cfg
@ -1,9 +1,9 @@
 Building configuration...
-Current configuration : 21421 bytes
+Current configuration : 21732 bytes
 !
-! Last configuration change at 07:41:13 EDT Tue Mar 31 2026 by jpoland.oa
+! Last configuration change at 14:21:40 EDT Wed Apr 1 2026 by jkafta72.admin
-! NVRAM config last updated at 07:41:13 EDT Tue Mar 31 2026 by jpoland.oa
+! NVRAM config last updated at 14:21:33 EDT Wed Apr 1 2026 by jkafta72.admin
 !
 version 15.2
 no service pad
@ -592,6 +592,7 @@ interface Vlan107
 !
 interface Vlan230
 ip address 10.10.230.1 255.255.255.224
 ip access-group hvac-acl in
 !
 interface Vlan506
 description to Ring_6A Circuit 159970-ENET-CCF
@ -707,6 +708,14 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
 permit udp any any eq 1575
 permit tcp any any eq 1630
 permit udp any any eq 1630
 ip access-list extended hvac-acl
 permit ip any host 10.1.230.11
 permit ip any host 10.1.40.108
 permit udp any any eq domain
 deny   ip any 10.0.0.0 0.0.0.255
 deny   ip any 192.168.0.0 0.0.255.255
 deny   ip any 172.16.0.0 0.15.255.255
 permit tcp any any eq 587 log count
 ip access-list extended users
 deny   ip any 192.168.0.0 0.0.255.255
 permit ip any any
--- a/configs/lincol/lincol-4507-1.cfg
+++ b/configs/lincol/lincol-4507-1.cfg
@ -1,9 +1,9 @@
 Building configuration...
-Current configuration : 21750 bytes
+Current configuration : 21559 bytes
 !
-! Last configuration change at 07:41:19 EDT Tue Mar 31 2026 by jpoland.oa
+! Last configuration change at 17:22:42 EDT Wed Apr 1 2026 by jkafta72.admin
-! NVRAM config last updated at 07:41:19 EDT Tue Mar 31 2026 by jpoland.oa
+! NVRAM config last updated at 14:25:33 EDT Wed Apr 1 2026 by jkafta72.admin
 !
 version 15.2
 no service pad
@ -559,6 +559,7 @@ interface Vlan35
 !
 interface Vlan40
 ip address 10.13.40.1 255.255.255.0
 ip access-group hvac-acl in
 no ip redirects
 ip pim sparse-mode
 !
@ -760,16 +761,14 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
 permit udp any any eq 1575
 permit tcp any any eq 1630
 permit udp any any eq 1630
-ip access-list extended hvac
+ip access-list extended hvac-acl
- permit ip 10.13.230.0 0.0.0.31 object-group day-enterprise-servers
+ permit ip any host 10.1.230.11
- permit udp 10.13.230.0 0.0.0.31 object-group dns-servers eq domain
+ permit ip any host 10.1.40.108
- permit udp 10.13.230.0 0.0.0.31 object-group ntp-servers eq ntp
+ permit udp any any eq domain
- permit icmp 10.13.230.0 0.0.0.31 host 10.13.230.1
+ deny   ip any 10.0.0.0 0.0.0.255
 permit icmp host 10.13.230.1 10.13.230.0 0.0.0.31
 deny   ip any 10.0.0.0 0.255.255.255
 deny   ip any 192.168.0.0 0.0.255.255
 deny   ip any 172.16.0.0 0.15.255.255
- permit tcp 10.13.230.0 0.0.0.31 any eq 587 log-input
+ permit tcp any any eq 587 log count
 ip access-list extended users
 deny   ip any 192.168.0.0 0.0.255.255
 permit ip any any
--- a/configs/meach/meach-mdf-a8360-sw1.cfg
+++ b/configs/meach/meach-mdf-a8360-sw1.cfg
@ -138,15 +138,13 @@ access-list ip Image-acl
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
 access-list ip hvac-acl
-    10 permit any 10.37.230.0/255.255.255.224 day-enterprise-servers
+    10 permit any any 10.1.230.11
-    20 permit udp 10.37.230.0/255.255.255.224 dns-servers eq dns
+    20 permit any any 10.1.40.108
-    30 permit udp 10.37.230.0/255.255.255.224 ntp-servers eq ntp
+    30 permit udp any any eq dns
-    40 permit icmp 10.37.230.0/255.255.255.252 10.37.230.0/255.255.255.224
+    40 deny any any 10.0.0.0/255.0.0.0
-    50 permit icmp 10.37.230.0/255.255.255.224 10.37.230.0/255.255.255.252
+    50 deny any any 192.168.0.0/255.255.0.0
-    60 deny any any 10.0.0.0/255.0.0.0
+    60 deny any any 172.16.0.0/255.240.0.0
-    70 deny any any 192.168.0.0/255.255.0.0
+    70 permit tcp any any eq 587 log count
    80 deny any any 172.16.0.0/255.240.0.0
    90 permit tcp 10.37.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
@ -437,6 +435,7 @@ interface vlan 230
    ip helper-address 10.1.40.20
    ip helper-address 10.21.48.20
    ip ospf 1 area 0.0.0.201
    apply access-list ip hvac-acl routed-in
    ip igmp enable
    ip pim-sparse enable
 interface vlan 233
--- a/configs/meach/meach-mdf-a8360-sw2.cfg
+++ b/configs/meach/meach-mdf-a8360-sw2.cfg
@ -138,15 +138,13 @@ access-list ip Image-acl
    158 permit tcp any clearpass_servers group clearpass_tcp_ports
    160 deny any any any
 access-list ip hvac-acl
-    10 permit any 10.37.230.0/255.255.255.224 day-enterprise-servers
+    10 permit any any 10.1.230.11
-    20 permit udp 10.37.230.0/255.255.255.224 dns-servers eq dns
+    20 permit any any 10.1.40.108
-    30 permit udp 10.37.230.0/255.255.255.224 ntp-servers eq ntp
+    30 permit udp any any eq dns
-    40 permit icmp 10.37.230.0/255.255.255.252 10.37.230.0/255.255.255.224
+    40 deny any any 10.0.0.0/255.0.0.0
-    50 permit icmp 10.37.230.0/255.255.255.224 10.37.230.0/255.255.255.252
+    50 deny any any 192.168.0.0/255.255.0.0
-    60 deny any any 10.0.0.0/255.0.0.0
+    60 deny any any 172.16.0.0/255.240.0.0
-    70 deny any any 192.168.0.0/255.255.0.0
+    70 permit tcp any any eq 587 log count
    80 deny any any 172.16.0.0/255.240.0.0
    90 permit tcp 10.37.230.0/255.255.255.224 any eq 587 log count
 access-list ip users-acl
    10 deny any any 192.168.0.0/255.255.0.0
    20 permit any any any
@ -438,6 +436,7 @@ interface vlan 230
    ip helper-address 10.1.40.20
    ip helper-address 10.21.48.20
    ip ospf 1 area 0.0.0.201
    apply access-list ip hvac-acl routed-in
    ip igmp enable
    ip pim-sparse enable
 interface vlan 233
--- a/configs/nottingham/nottingham-mdf-4507.cfg
+++ b/configs/nottingham/nottingham-mdf-4507.cfg
@ -1,9 +1,9 @@
 Building configuration...
-Current configuration : 39726 bytes
+Current configuration : 39543 bytes
 !
-! Last configuration change at 07:40:55 EDT Tue Mar 31 2026 by jpoland.oa
+! Last configuration change at 14:33:17 EDT Wed Apr 1 2026 by jkafta72.admin
-! NVRAM config last updated at 07:40:55 EDT Tue Mar 31 2026 by jpoland.oa
+! NVRAM config last updated at 14:33:11 EDT Wed Apr 1 2026 by jkafta72.admin
 !
 version 15.2
 no service pad
@ -1255,6 +1255,7 @@ interface Vlan35
 !
 interface Vlan40
 ip address 10.4.40.2 255.255.255.0
 ip access-group hvac-acl in
 no ip redirects
 !
 interface Vlan50
@ -1478,16 +1479,14 @@ ip access-list extended AutoQos-4.0-ACL-Transactional-Data
 permit udp any any eq 1630
 ip access-list extended BadCamera
 deny   ip host 10.4.70.41 any
-ip access-list extended hvac
+ip access-list extended hvac-acl
- permit ip 10.4.230.0 0.0.0.31 object-group day-enterprise-servers
+ permit ip any host 10.1.230.11
- permit udp 10.4.230.0 0.0.0.31 object-group dns-servers eq domain
+ permit ip any host 10.1.40.108
- permit udp 10.4.230.0 0.0.0.31 object-group ntp-servers eq ntp
+ permit udp any any eq domain
- permit icmp 10.4.230.0 0.0.0.31 host 10.4.230.1
+ deny   ip any 10.0.0.0 0.0.0.255
 permit icmp host 10.4.230.1 10.4.230.0 0.0.0.31
 deny   ip any 10.0.0.0 0.255.255.255
 deny   ip any 192.168.0.0 0.0.255.255
 deny   ip any 172.16.0.0 0.15.255.255
- permit tcp 10.4.230.0 0.0.0.31 any eq 587 log-input
+ permit tcp any any eq 587 log count
 ip access-list extended users
 deny   ip any 192.168.0.0 0.0.255.255
 permit ip any any
--- a/configs/sh/sh-noc-a8360-1-a.cfg
+++ b/configs/sh/sh-noc-a8360-1-a.cfg
@ -1,6 +1,6 @@
 Current configuration:
 !
-!Version ArubaOS-CX LL.10.13.1010
+!Version ArubaOS-CX LL.10.13.1161
 !export-password: default
 hostname sh-noc-a8360-1-a
 banner motd #
--- a/configs/sh/sh-noc-a8360-1-b.cfg
+++ b/configs/sh/sh-noc-a8360-1-b.cfg
@ -1,6 +1,6 @@
 Current configuration:
 !
-!Version ArubaOS-CX LL.10.13.1010
+!Version ArubaOS-CX LL.10.13.1161
 !export-password: default
 hostname sh-noc-a8360-1-b
 banner motd #
--- a/configs/sh/sh-noc-a8360-2-a.cfg
+++ b/configs/sh/sh-noc-a8360-2-a.cfg
@ -1,6 +1,6 @@
 Current configuration:
 !
-!Version ArubaOS-CX LL.10.13.1010
+!Version ArubaOS-CX LL.10.13.1161
 !export-password: default
 hostname sh-noc-a8360-2-a
 banner motd #
--- a/configs/sh/sh-noc-a8360-2-b.cfg
+++ b/configs/sh/sh-noc-a8360-2-b.cfg
@ -1,6 +1,6 @@
 Current configuration:
 !
-!Version ArubaOS-CX LL.10.13.1010
+!Version ArubaOS-CX LL.10.13.1161
 !export-password: default
 hostname sh-noc-a8360-2-b
 banner motd #
--- a/configs/sh/sh-noc-a8360-3-a.cfg
+++ b/configs/sh/sh-noc-a8360-3-a.cfg
@ -1,6 +1,6 @@
 Current configuration:
 !
-!Version ArubaOS-CX LL.10.13.1010
+!Version ArubaOS-CX LL.10.13.1161
 !export-password: default
 hostname sh-noc-a8360-3-a
 banner motd #
--- a/configs/sh/sh-noc-a8360-4-a.cfg
+++ b/configs/sh/sh-noc-a8360-4-a.cfg
@ -1,6 +1,6 @@
 Current configuration:
 !
-!Version ArubaOS-CX LL.10.13.1010
+!Version ArubaOS-CX LL.10.13.1161
 !export-password: default
 hostname sh-noc-a8360-4-a
 banner motd #
--- a/configs/sh/sh-noc-ilo-a6300-a.cfg
+++ b/configs/sh/sh-noc-ilo-a6300-a.cfg
@ -1,6 +1,6 @@
 Current configuration:
 !
-!Version ArubaOS-CX FL.10.13.1010
+!Version ArubaOS-CX FL.10.13.1161
 !export-password: default
 hostname sh-noc-ilo-a6300-a
 banner motd #
@ -19,6 +19,7 @@ banner motd #
 !         IF YOU ARE NOT AUTHORIZED TO BE HERE DISCONNECT NOW!        !
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!! WARNING !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
 #
 lldp management-address vlan 10
 user admin group administrators password ciphertext AQBapZv2wjYecqPhsfcsIG3A8bsqwO5pSWmgJ4mlMqCQgovcYgAAAJ1P1gS+QBZjkkXlzBDKygiYD7+/G59/Z2zQbgHWEov50vu5rfYq8BEXyMdqGYA4t5eR0blVvGJjTbmCUhBvpCsAYd+ql1o2gdZJIySkgPv2Bn1gcBUIA+s/JZ4Bp/zqL7kJ
 clock timezone america/new_york
 loop-protect re-enable-timer 30
@ -489,7 +490,9 @@ mirror session 1
    enable
 ip dns domain-name scsd.ad
 ip dns server-address 10.1.40.10
-ip dns server-address 10.21.48.10
+ip dns server-address 10.1.48.10
 ip dns server-address 10.1.40.10 vrf mgmt
 ip dns server-address 10.1.48.11 vrf mgmt
 !
 !
 !
--- a/configs/sh/sh-noc-ilo-a6300-b.cfg
+++ b/configs/sh/sh-noc-ilo-a6300-b.cfg
@ -489,6 +489,8 @@ mirror session 1
 ip dns domain-name scsd.ad
 ip dns server-address 10.1.40.10
 ip dns server-address 10.21.48.10
 ip dns server-address 10.1.40.10 vrf mgmt
 ip dns server-address 10.1.48.11 vrf mgmt
 !
 !
 !
--- a/configs/shea/shea-noc-a6300-sw1.cfg
+++ b/configs/shea/shea-noc-a6300-sw1.cfg
@ -18,6 +18,7 @@ banner motd #
 !                                                                     !
 !         IF YOU ARE NOT AUTHORIZED TO BE HERE DISCONNECT NOW!        !
 !!!!!!!!!!!!!!!!!!!!!!!!!!!!! WARNING !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!#
 lldp management-address vlan 10
 user admin group administrators password ciphertext AQBapcJtoHZAcyhwUrYWE4Et/vJPefWEeoiFPPHv4/nJPj53YgAAAFobRZiYQ72O6StlwUrHE82uHorVTIh64jshtcZ+NCbIIYuariKkz3BcIeWpJsT56e/LGiEgT+u7fH5VMwiHxDkmCq9NyY31ikZAHsjwyIa1pDwRZDCjMEQHjGzTigkomUVX
 clock timezone america/new_york
 loop-protect re-enable-timer 30
@ -678,10 +679,10 @@ interface 1/1/34
    loop-protect
    power-over-ethernet pre-std-detect
 interface 1/1/35
-    description Voice
+    description Nick
    no shutdown
    no routing
-    vlan access 50
+    vlan access 6
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
Author	SHA1	Message	Date
John Poland	57e6ea442e	delaware/delaware-mdf-4507.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:43 -04:00
John Poland	a1921833f5	lincol/lincol-4507-1.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:43 -04:00
John Poland	98e986abd0	hunt/hunt-4507-1.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:43 -04:00
John Poland	6b372ea12e	meach/meach-mdf-a8360-sw1.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:43 -04:00
John Poland	4b8772a8d5	meach/meach-mdf-a8360-sw2.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:43 -04:00
John Poland	3d461057dd	frank/frank-mdf-4507.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:43 -04:00
John Poland	63310f18b7	grant/grant-mdf-4507.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:43 -04:00
John Poland	611b97d7a5	danforth/danforth-mdf-4507.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:43 -04:00
John Poland	aee5b1df1f	hughes/hughes-4507-01.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:43 -04:00
John Poland	8d1c5818ea	henninger/henninger-mdf-4507.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:43 -04:00
John Poland	83d0fa5486	ct/ct-noc-a8360-4-b.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:43 -04:00
John Poland	1548b07be8	ct/ct-noc-a8360-4-a.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:43 -04:00
John Poland	b6a2d42c32	ct/ct-noc-a8325-a.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:43 -04:00
John Poland	13b07614e3	edsmith/edsmith-4507-1.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:43 -04:00
John Poland	f7da3e1a80	sh/sh-noc-a8360-1-b.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:42 -04:00
John Poland	ef28f56c32	sh/sh-noc-ilo-a6300-b.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:42 -04:00
John Poland	e12950ed8d	sh/sh-noc-a8360-2-a.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:42 -04:00
John Poland	09efd8c263	sh/sh-noc-ilo-a6300-a.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:42 -04:00
John Poland	d026552857	sh/sh-noc-a8360-2-b.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:42 -04:00
John Poland	bcce7b1ffa	sh/sh-noc-a8360-3-a.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:42 -04:00
John Poland	17451ab695	sh/sh-noc-a8360-1-a.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:42 -04:00
John Poland	63f93de9ff	sh/sh-noc-a8360-4-a.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:42 -04:00
John Poland	a7a411ffa6	levy/levy-mdf-4507-1.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:42 -04:00
John Poland	a3f2b79a1e	elmwood/elmwood-mdf-4507.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:41 -04:00
John Poland	ab0fd1e22c	shea/shea-noc-a6300-sw1.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:41 -04:00
John Poland	fab3917109	lemoy/lemoy-mdf-a8360-sw1.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:41 -04:00
John Poland	1ed041b38f	lemoy/lemoy-mdf-a8360-sw2.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:41 -04:00
John Poland	c6c96b6f3f	clary/clary-mdf-a8360-sw1.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:41 -04:00
John Poland	89e65ed92f	clary/clary-mdf-a8360-sw2.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:41 -04:00
John Poland	5b0920173f	itc/itc-mdf-a8360-sw2.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:41 -04:00
John Poland	7126f17fda	itc/itc-idf2-a6300-sw1.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:41 -04:00
John Poland	bf787e4036	itc/itc-idf1-a6300-sw1.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:41 -04:00
John Poland	25c69f0ec0	itc/itc-mdf-a8360-sw1.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:41 -04:00
John Poland	59e370dbcf	itc/itc-idf3-a6300-sw1.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:41 -04:00
John Poland	1b659769f3	itc/itc-mdf-a6300-sw1.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:41 -04:00
John Poland	57800952c9	nottingham/nottingham-mdf-4507.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:41 -04:00
John Poland	8409a208c6	frazer/frazer-4507-1.cfg Wed Apr 1 08:32:41 PM EDT 2026	2026-04-01 20:32:41 -04:00