diff --git a/switchconfig/deploy.sh b/switchconfig/deploy.sh new file mode 100755 index 0000000..3d43ee8 --- /dev/null +++ b/switchconfig/deploy.sh @@ -0,0 +1,3 @@ +#!/usr/bin/env bash + +scp $1 root@$1.bula22.de:config; ssh root@$1.bula22.de 'cli -c "configure; load override /var/root/config; show|compare" && echo "Is this okay? Ctrl+D to accept, Ctrl+C to abort." && cat && cli -c "configure; commit"' diff --git a/switchconfig/sw-technik-zelt b/switchconfig/sw-technik-zelt new file mode 100644 index 0000000..139863d --- /dev/null +++ b/switchconfig/sw-technik-zelt @@ -0,0 +1,123 @@ +system { + host-name sw-technik-zelt; + auto-snapshot; + root-authentication { + encrypted-password "$1$DAjLGZX7$sHIjgeZhXhq/IcgRKOWy20"; ## SECRET-DATA + } + services { + ssh; + } +} +interfaces { + ge-0/0/0 { + unit 0 { + family ethernet-switching { + vlan { + members VL_MGMT; + } + } + } + } + ge-0/1/3 { + unit 0 { + family ethernet-switching { + port-mode trunk; + vlan { + members [ VL_MGMT VL_WLAN VL_SIP VL_IOT VL_IKT_TOYS VL_TECHNIK ]; + } + } + } + } + vlan { + unit 42 { + family inet { + address 10.42.42.20/24; + } + } + } +} +snmp { + stats-cache-lifetime 15; + community tellme { + authorization read-only; + } +} +routing-options { + static { + route 0.0.0.0/0 next-hop 10.42.42.1; + } +} +protocols { + igmp-snooping { + vlan all; + } + lldp { + port-id-subtype locally-assigned; + interface all; + } + lldp-med { + interface all; + } +} +ethernet-switching-options { + storm-control { + interface all; + } +} +vlans { + VL_MGMT { + vlan-id 42; + l3-interface vlan.42 + } + VL_WLAN { + vlan-id 131; + } + VL_DECT { + vlan-id 132; + } + VL_SIP { + vlan-id 133; + } + VL_IOT { + vlan-id 151; + } + VL_IKT_TOYS { + vlan-id 152; + } + VL_IKT { + vlan-id 201; + } + VL_TECHNIK { + vlan-id 202; + } + VL_HOSPITAL { + vlan-id 203; + } + VL_ZOLL { + vlan-id 204; + } + VL_LEITSTELLE { + vlan-id 205; + } + VL_VERWALTUNG { + vlan-id 206; + } + VL_ZENTRAL { + vlan-id 207; + } + VL_YOLO { + vlan-id 208; + } + VL_INFOJURTE { + vlan-id 209; + } + VL_INTERNATIONAL { + vlan-id 210; + } + VL_PROGRAMM { + vlan-id 211; + } + VL_OFFICE { + vlan-id 212; + } +} diff --git a/switchconfig/sw-verwaltung b/switchconfig/sw-verwaltung new file mode 100644 index 0000000..fa78212 --- /dev/null +++ b/switchconfig/sw-verwaltung @@ -0,0 +1,123 @@ +system { + host-name sw-verwaltung; + auto-snapshot; + root-authentication { + encrypted-password "$1$DAjLGZX7$sHIjgeZhXhq/IcgRKOWy20"; ## SECRET-DATA + } + services { + ssh; + } +} +interfaces { + ge-0/0/0 { + unit 0 { + family ethernet-switching { + vlan { + members VL_MGMT; + } + } + } + } + ge-0/1/3 { + unit 0 { + family ethernet-switching { + port-mode trunk; + vlan { + members [ VL_MGMT VL_WLAN VL_DECT VL_SIP VL_VERWALTUNG VL_OFFICE ]; + } + } + } + } + vlan { + unit 42 { + family inet { + address 10.42.42.13/24; + } + } + } +} +snmp { + stats-cache-lifetime 15; + community tellme { + authorization read-only; + } +} +routing-options { + static { + route 0.0.0.0/0 next-hop 10.42.42.1; + } +} +protocols { + igmp-snooping { + vlan all; + } + lldp { + port-id-subtype locally-assigned; + interface all; + } + lldp-med { + interface all; + } +} +ethernet-switching-options { + storm-control { + interface all; + } +} +vlans { + VL_MGMT { + vlan-id 42; + l3-interface vlan.42 + } + VL_WLAN { + vlan-id 131; + } + VL_DECT { + vlan-id 132; + } + VL_SIP { + vlan-id 133; + } + VL_IOT { + vlan-id 151; + } + VL_IKT_TOYS { + vlan-id 152; + } + VL_IKT { + vlan-id 201; + } + VL_TECHNIK { + vlan-id 202; + } + VL_HOSPITAL { + vlan-id 203; + } + VL_ZOLL { + vlan-id 204; + } + VL_LEITSTELLE { + vlan-id 205; + } + VL_VERWALTUNG { + vlan-id 206; + } + VL_ZENTRAL { + vlan-id 207; + } + VL_YOLO { + vlan-id 208; + } + VL_INFOJURTE { + vlan-id 209; + } + VL_INTERNATIONAL { + vlan-id 210; + } + VL_PROGRAMM { + vlan-id 211; + } + VL_OFFICE { + vlan-id 212; + } +} diff --git a/switchconfig/sw-zentral-1 b/switchconfig/sw-zentral-1 new file mode 100644 index 0000000..e1955a9 --- /dev/null +++ b/switchconfig/sw-zentral-1 @@ -0,0 +1,287 @@ +system { + host-name sw-zentral-1; + auto-snapshot; + root-authentication { + encrypted-password "$1$DAjLGZX7$sHIjgeZhXhq/IcgRKOWy20"; ## SECRET-DATA + } + services { + ssh; + } +} +interfaces { + ge-0/0/0 { + unit 0 { + family ethernet-switching { + vlan { + members VL_MGMT; + } + } + } + } + ge-0/0/1 { + unit 0 { + family ethernet-switching { + vlan { + members VL_MGMT; + } + } + } + } + ge-0/0/2 { + unit 0 { + family ethernet-switching { + vlan { + members VL_MGMT; + } + } + } + } + ge-0/0/3 { + unit 0 { + family ethernet-switching { + vlan { + members VL_MGMT; + } + } + } + } + ge-0/0/4 { + unit 0 { + family ethernet-switching { + vlan { + members VL_MGMT; + } + } + } + } + ge-0/0/5 { + unit 0 { + family ethernet-switching { + vlan { + members VL_MGMT; + } + } + } + } + ge-0/0/6 { + unit 0 { + family ethernet-switching { + vlan { + members VL_MGMT; + } + } + } + } + ge-0/0/7 { + unit 0 { + family ethernet-switching { + vlan { + members VL_MGMT; + } + } + } + } + ge-0/0/8 { + unit 0 { + family ethernet-switching { + vlan { + members VL_MGMT; + } + } + } + } + ge-0/0/9 { + unit 0 { + family ethernet-switching { + vlan { + members VL_MGMT; + } + } + } + } + ge-0/0/10 { + unit 0 { + family ethernet-switching { + vlan { + members VL_MGMT; + } + } + } + } + ge-0/0/24 { + unit 0 { + family ethernet-switching { + port-mode trunk; + vlan { + members all; + } + } + } + } + ge-0/0/26 { + unit 0 { + family ethernet-switching { + port-mode trunk; + vlan { + members all; + } + } + } + } + ge-0/0/28 { + unit 0 { + family ethernet-switching { + port-mode trunk; + vlan { + members [ VL_MGMT VL_WLAN VL_IOT VL_IKT_TOYS VL_IKT VL_TECHNIK VL_HOSPITAL VL_ZOLL VL_LEITSTELLE VL_VERWALTUNG VL_ZENTRAL VL_YOLO VL_INFOJURTE VL_INTERNATIONAL VL_PROGRAMM VL_OFFICE ]; + } + } + } + } + ge-0/0/47 { + unit 0 { + family ethernet-switching { + port-mode trunk; + vlan { + members [ VL_MGMT VL_WLAN VL_DECT VL_SIP VL_IOT VL_IKT_TOYS VL_IKT VL_TECHNIK VL_HOSPITAL VL_ZOLL VL_LEITSTELLE VL_VERWALTUNG VL_ZENTRAL VL_YOLO VL_INFOJURTE VL_INTERNATIONAL VL_PROGRAMM VL_OFFICE ]; + } + } + } + } + ge-0/1/0 { + unit 0 { + family ethernet-switching { + vlan { + members VL_UPLINK_A; + } + } + } + } + ge-0/1/1 { + unit 0 { + family ethernet-switching { + vlan { + members VL_UPLINK_B; + } + } + } + } + ge-0/1/2 { + unit 0 { + family ethernet-switching { + port-mode trunk; + vlan { + members [ VL_MGMT VL_WLAN VL_DECT VL_SIP VL_IOT VL_IKT_TOYS VL_TECHNIK VL_HOSPITAL VL_YOLO ]; + } + } + } + } + ge-0/1/3 { + unit 0 { + family ethernet-switching { + port-mode trunk; + vlan { + members [ VL_MGMT VL_WLAN VL_SIP VL_IOT VL_IKT_TOYS VL_TECHNIK ]; + } + } + } + } + vlan { + unit 42 { + family inet { + address 10.42.42.11/24; + } + } + } +} +snmp { + stats-cache-lifetime 15; + community tellme { + authorization read-only; + } +} +routing-options { + static { + route 0.0.0.0/0 next-hop 10.42.42.1; + } +} +protocols { + igmp-snooping { + vlan all; + } + lldp { + port-id-subtype locally-assigned; + interface all; + } + lldp-med { + interface all; + } +} +ethernet-switching-options { + storm-control { + interface all; + } +} +vlans { + VL_MGMT { + vlan-id 42; + l3-interface vlan.42 + } + VL_UPLINK_A { + vlan-id 101; + } + VL_UPLINK_B { + vlan-id 102; + } + VL_WLAN { + vlan-id 131; + } + VL_DECT { + vlan-id 132; + } + VL_SIP { + vlan-id 133; + } + VL_IOT { + vlan-id 151; + } + VL_IKT_TOYS { + vlan-id 152; + } + VL_IKT { + vlan-id 201; + } + VL_TECHNIK { + vlan-id 202; + } + VL_HOSPITAL { + vlan-id 203; + } + VL_ZOLL { + vlan-id 204; + } + VL_LEITSTELLE { + vlan-id 205; + } + VL_VERWALTUNG { + vlan-id 206; + } + VL_ZENTRAL { + vlan-id 207; + } + VL_YOLO { + vlan-id 208; + } + VL_INFOJURTE { + vlan-id 209; + } + VL_INTERNATIONAL { + vlan-id 210; + } + VL_PROGRAMM { + vlan-id 211; + } + VL_OFFICE { + vlan-id 212; + } +} diff --git a/switchconfig/sw-zentral-2 b/switchconfig/sw-zentral-2 new file mode 100644 index 0000000..82f48ad --- /dev/null +++ b/switchconfig/sw-zentral-2 @@ -0,0 +1,163 @@ +system { + host-name sw-zentral-2; + auto-snapshot; + root-authentication { + encrypted-password "$1$DAjLGZX7$sHIjgeZhXhq/IcgRKOWy20"; ## SECRET-DATA + } + services { + ssh; + } +} +interfaces { + ge-0/0/0 { + unit 0 { + family ethernet-switching { + vlan { + members VL_MGMT; + } + } + } + } + ge-0/0/47 { + unit 0 { + family ethernet-switching { + port-mode trunk; + vlan { + members [ VL_MGMT VL_WLAN VL_DECT VL_SIP VL_IOT VL_IKT_TOYS VL_IKT VL_TECHNIK VL_HOSPITAL VL_ZOLL VL_LEITSTELLE VL_VERWALTUNG VL_ZENTRAL VL_YOLO VL_INFOJURTE VL_INTERNATIONAL VL_PROGRAMM VL_OFFICE ]; + } + } + } + } + ge-0/1/0 { + unit 0 { + family ethernet-switching { + port-mode trunk; + vlan { + members [ VL_MGMT VL_WLAN VL_DECT VL_SIP VL_VERWALTUNG VL_OFFICE ]; + } + } + } + } + ge-0/1/1 { + unit 0 { + family ethernet-switching { + port-mode trunk; + vlan { + members [ VL_MGMT VL_WLAN VL_DECT VL_SIP VL_ZOLL ]; + } + } + } + } + ge-0/1/2 { + unit 0 { + family ethernet-switching { + port-mode trunk; + vlan { + members [ VL_MGMT VL_WLAN VL_DECT VL_SIP VL_LEITSTELLE VL_INTERNATIONAL VL_PROGRAMM ]; + } + } + } + } + ge-0/1/3 { + unit 0 { + family ethernet-switching { + port-mode trunk; + vlan { + members [ VL_MGMT VL_WLAN VL_INFOJURTE ]; + } + } + } + } + vlan { + unit 42 { + family inet { + address 10.42.42.12/24; + } + } + } +} +snmp { + stats-cache-lifetime 15; + community tellme { + authorization read-only; + } +} +routing-options { + static { + route 0.0.0.0/0 next-hop 10.42.42.1; + } +} +protocols { + igmp-snooping { + vlan all; + } + lldp { + port-id-subtype locally-assigned; + interface all; + } + lldp-med { + interface all; + } +} +ethernet-switching-options { + storm-control { + interface all; + } +} +vlans { + VL_MGMT { + vlan-id 42; + l3-interface vlan.42 + } + VL_WLAN { + vlan-id 131; + } + VL_DECT { + vlan-id 132; + } + VL_SIP { + vlan-id 133; + } + VL_IOT { + vlan-id 151; + } + VL_IKT_TOYS { + vlan-id 152; + } + VL_IKT { + vlan-id 201; + } + VL_TECHNIK { + vlan-id 202; + } + VL_HOSPITAL { + vlan-id 203; + } + VL_ZOLL { + vlan-id 204; + } + VL_LEITSTELLE { + vlan-id 205; + } + VL_VERWALTUNG { + vlan-id 206; + } + VL_ZENTRAL { + vlan-id 207; + } + VL_YOLO { + vlan-id 208; + } + VL_INFOJURTE { + vlan-id 209; + } + VL_INTERNATIONAL { + vlan-id 210; + } + VL_PROGRAMM { + vlan-id 211; + } + VL_OFFICE { + vlan-id 212; + } +}