hwsmi/hwsmi-mdf-a6300-sw1.cfg Fri Sep 26 05:07:24 PM EDT 2025

ct/ct-noc-a8360-1-a.cfg Fri Sep 26 05:07:24 PM EDT 2025
ct/ct-noc-a8325-b.cfg Fri Sep 26 05:07:24 PM EDT 2025
2025-09-26 17:07:25 -04:00 · 2025-09-26 17:07:25 -04:00 · 2025-09-26 17:07:25 -04:00 · 2025-09-26 17:07:24 -04:00 · 2025-09-26 17:07:24 -04:00
5 changed files with 50 additions and 58 deletions
--- a/configs/clary/clary-idf1-a6300-sw1.cfg
+++ b/configs/clary/clary-idf1-a6300-sw1.cfg
@ -175,13 +175,27 @@ interface 1/1/1
    description Auto
    no shutdown
    no routing
-    vlan access 10
+    vlan access 168
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
    spanning-tree tcn-guard
    loop-protect
    port-access onboarding-method concurrent enable
+    aaa authentication port-access allow-cdp-bpdu
+    aaa authentication port-access allow-lldp-bpdu
+    aaa authentication port-access client-limit 3
+    aaa authentication port-access dot1x authenticator
+        cached-reauth
+        cached-reauth-period 86400
+        reauth
+        enable
+    aaa authentication port-access mac-auth
+        cached-reauth
+        cached-reauth-period 86400
+        quiet-period 30
+        reauth
+        enable
    client track ip enable
    client track ip update-interval 120
    power-over-ethernet pre-std-detect
@ -6952,10 +6966,6 @@ snmp-server system-location clary
 snmp-server system-contact Tim Marris
 snmp-server community mickey03
 ip route 0.0.0.0/0 192.168.8.1
-mirror session 1
-    destination cpu
-    source interface 1/1/1 both
-    enable
 ip dns domain-name scsd.ad
 ip dns server-address 10.1.40.10
 ip dns server-address 10.21.48.10
--- a/configs/ct/ct-noc-a8325-b.cfg
+++ b/configs/ct/ct-noc-a8325-b.cfg
@ -23,11 +23,11 @@ clock timezone america/new_york
 router vrrp enable
 bfd
 profile l3-agg
-ntp server 10.1.1.2 iburst
-ntp server 10.1.1.3 iburst
+ntp server 132.236.56.250 prefer
+ntp server 204.235.61.9
 ntp enable
 ntp vrf mgmt
-ntp conductor vrf default stratum 2
+ntp conductor vrf default stratum 3
 !
 !
 !
--- a/configs/ct/ct-noc-a8360-1-a.cfg
+++ b/configs/ct/ct-noc-a8360-1-a.cfg
@ -27,6 +27,7 @@ vrf outside
 ntp server 10.1.1.2 iburst
 ntp server 10.1.1.3 iburst
 ntp enable
+ntp vrf outside
 !
 !
 !
--- a/configs/hwsmi/hwsmi-mdf-a6300-sw1.cfg
+++ b/configs/hwsmi/hwsmi-mdf-a6300-sw1.cfg
@ -1710,35 +1710,19 @@ interface 2/1/7
    client track ip update-interval 120
    power-over-ethernet pre-std-detect
 interface 2/1/8
-    description Auto
+    description -TO SBHC RM139B-
    no shutdown
    no routing
-    vlan access 168
+    vlan trunk native 107
+    vlan trunk allowed 50,107
    spanning-tree bpdu-guard
    spanning-tree port-type admin-edge
    spanning-tree root-guard
    spanning-tree tcn-guard
    loop-protect
-    port-access onboarding-method concurrent enable
-    aaa authentication port-access allow-cdp-bpdu
-    aaa authentication port-access allow-lldp-bpdu
-    aaa authentication port-access client-limit 3
-    aaa authentication port-access dot1x authenticator
-        cached-reauth
-        cached-reauth-period 86400
-        reauth
-        enable
-    aaa authentication port-access mac-auth
-        cached-reauth
-        cached-reauth-period 86400
-        quiet-period 30
-        reauth
-        enable
-    client track ip enable
-    client track ip update-interval 120
    power-over-ethernet pre-std-detect
 interface 2/1/9
-    description SBHC
+    description -TO SBHC RM139B-
    no shutdown
    no routing
    vlan access 107
--- a/configs/wlc/wlc-b.cfg
+++ b/configs/wlc/wlc-b.cfg
@ -9,12 +9,9 @@ conductorip 10.1.35.33 ipsec ****** interface vlan 35
 location "Building1.floor1" 
 controller config 680
 crypto-local pki ServerCert scsd_full_wc3 StarCert-Ex03_26_fullchain.pfx 
-crypto-local pki ServerCert scsd_full_wc_2025 Star-Exp042025-fullchain.pfx 
 crypto-local pki ServerCert scsd_full_wc_2026 StarCert-Ex03_26_fullchain.pfx 
 crypto-local pki ServerCert scsd_wc3_2026 StarCert-Expire03202026.pfx 
-crypto-local pki ServerCert scsd_wc_2025 StartCert-Expire042025.pfx 
 crypto-local pki ServerCert scsd_wc_2026 StarCert-Expire03202026.pfx 
-crypto-local pki ServerCert scsd_wc_full_2025 Star-Exp042025-fullchain.pfx 
 crypto-local pki PublicCert master-ssh-pub-cert master-ssh-pub-cert 
 ip nat pool localip 0.0.0.0 0.0.0.0 
 ip nat pool dynamic-srcnat 0.0.0.0 0.0.0.0 
@ -1229,6 +1226,10 @@ interface vlan 304
    ip address 10.4.112.8 255.255.240.0 
 !

+interface vlan 305 
+    ip address 10.5.112.8 255.255.240.0 
+!
+
 interface vlan 306 
    ip address 10.6.112.8 255.255.240.0 
 !
@ -1385,6 +1386,10 @@ interface vlan 360
    ip address 10.60.112.8 255.255.240.0 
 !

+interface vlan 366 
+    ip address 10.66.112.8 255.255.240.0 
+!
+
 interface vlan 386 
    ip address 10.86.112.8 255.255.240.0 
 !
@ -1401,6 +1406,10 @@ interface vlan 404
    ip address 10.4.128.8 255.255.240.0 
 !

+interface vlan 405 
+    ip address 10.5.128.8 255.255.240.0 
+!
+
 interface vlan 406 
    ip address 10.6.128.8 255.255.240.0 
 !
@ -1557,6 +1566,10 @@ interface vlan 460
    ip address 10.60.128.8 255.255.240.0 
 !

+interface vlan 466 
+    ip address 10.66.128.8 255.255.240.0 
+!
+
 interface vlan 486 
    ip address 10.86.128.8 255.255.240.0 
 !
@ -1567,22 +1580,6 @@ interface vlan 1024
    ip nat inside 
 !

-interface vlan 366 
-    ip address 10.66.112.8 255.255.240.0 
-!
-
-interface vlan 466 
-    ip address 10.66.128.8 255.255.240.0 
-!
-
-interface vlan 305 
-    ip address 10.5.112.8 255.255.240.0 
-!
-
-interface vlan 405 
-    ip address 10.5.128.8 255.255.240.0 
-!
-
 !
 uplink health-check 
 !
@ -1712,17 +1709,6 @@ crypto dynamic-map default-dynamicmap 10000

 crypto map GLOBAL-IKEV2-MAP 10000 ipsec-isakmp dynamic default-rap-ipsecmap 
 crypto map GLOBAL-MAP 10000 ipsec-isakmp dynamic default-dynamicmap 
-crypto-local ipsec-map default-ha-ipsecmap10.1.35.14 9999
-    version v2
-    set ikev2-policy 10015
-    peer-ip 10.1.35.14
-    src-net 10.1.35.12 255.255.255.255
-    dst-net 10.1.35.14 255.255.255.255
-    set transform-set "default-ha-transform" 
-    factory-cert-auth
-    trusted
-!
-
 crypto-local ipsec-map default-ha-ipsecmap10.1.35.11 9999
    version v2
    set ikev2-policy 10015
@ -1735,6 +1721,17 @@ crypto-local ipsec-map default-ha-ipsecmap10.1.35.11 9999
    trusted
 !

+crypto-local ipsec-map default-ha-ipsecmap10.1.35.14 9999
+    version v2
+    set ikev2-policy 10015
+    peer-ip 10.1.35.14
+    src-net 10.1.35.12 255.255.255.255
+    dst-net 10.1.35.14 255.255.255.255
+    set transform-set "default-ha-transform" 
+    factory-cert-auth
+    trusted
+!
+
 crypto isakmp eap-passthrough eap-tls 
 crypto isakmp eap-passthrough eap-peap 
 crypto isakmp eap-passthrough eap-mschapv2
Author	SHA1	Message	Date
John Poland	fcf91486ec	hwsmi/hwsmi-mdf-a6300-sw1.cfg Fri Sep 26 05:07:24 PM EDT 2025	2025-09-26 17:07:25 -04:00
John Poland	7ec4e3511f	ct/ct-noc-a8360-1-a.cfg Fri Sep 26 05:07:24 PM EDT 2025	2025-09-26 17:07:25 -04:00
John Poland	b20372425c	ct/ct-noc-a8325-b.cfg Fri Sep 26 05:07:24 PM EDT 2025	2025-09-26 17:07:25 -04:00
John Poland	7c59997ea4	wlc/wlc-b.cfg Fri Sep 26 05:07:24 PM EDT 2025	2025-09-26 17:07:24 -04:00
John Poland	abc0a620f4	clary/clary-idf1-a6300-sw1.cfg Fri Sep 26 05:07:24 PM EDT 2025	2025-09-26 17:07:24 -04:00