updates

configs/216.31.136.106

@@ -0,0 +1,195 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.2
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+no platform punt-keepalive disable-kernel-core
+!
+hostname MontageInsurance_50MB_42.L1XX.000804..CHTR_24005VenturaBlvd
+!
+boot-start-marker
+boot-end-marker
+!
+vrf definition Mgmt-intf
+ !
+ address-family ipv4
+ exit-address-family
+ !
+ address-family ipv6
+ exit-address-family
+!
+logging buffered 50000 informational
+logging persistent url flash:/syslog1 size 10485760 filesize 40000 immediate
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+ip dhcp pool HPBX
+ network 10.10.10.0 255.255.255.0
+ domain-name voip.tierzero.net
+ default-router 10.10.10.1 
+ dns-server 216.116.96.2 216.116.96.3 
+ option 66 ascii "http://config:uCdh8qBc3Hb@ndp.tierzero.net/cfg
+!
+multilink bundle-name authenticated
+!
+license accept end user agreement
+license boot level advipservices
+archive
+ log config
+  logging enable
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+ mode none
+!
+ip tftp source-interface GigabitEthernet0
+ip ssh version 2
+!
+class-map match-any VOIP
+ match access-group 110
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_50MB
+ class BANDWIDTH
+  shape average 50000000
+  queue-limit 62500 bytes
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+policy-map VOIP-POLICE
+ class VOIP
+  priority percent 33
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface GigabitEthernet0/0/0
+ ip address 216.31.136.106 255.255.255.252
+ ip nat outside
+ ip virtual-reassembly
+ load-interval 30
+ negotiation auto
+ service-policy output BANDWIDTH_50MB
+!
+interface GigabitEthernet0/0/1
+ no ip address
+ negotiation auto
+!
+interface GigabitEthernet0/0/1.1
+ description HPBX
+ encapsulation dot1Q 1159
+ ip address 10.10.10.1 255.255.255.0
+ ip nat inside
+ ip virtual-reassembly
+!
+interface GigabitEthernet0/0/2
+ description CustomerLAN
+ ip address 64.239.134.185 255.255.255.248
+ negotiation auto
+ service-policy output BANDWIDTH_50MB
+!
+interface GigabitEthernet0/0/3
+ no ip address
+ shutdown
+ negotiation auto
+!
+interface GigabitEthernet0
+ vrf forwarding Mgmt-intf
+ no ip address
+ shutdown
+ negotiation auto
+!
+ip nat translation timeout 300
+ip nat translation tcp-timeout 300
+ip nat translation udp-timeout 90
+no ip nat service sip udp port 5060
+ip nat inside source list 1 interface GigabitEthernet0/0/0 overload
+ip forward-protocol nd
+!
+no ip http server
+no ip http secure-server
+ip route 0.0.0.0 0.0.0.0 216.31.136.105
+!
+access-list 1 permit 10.10.10.0 0.0.0.255
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 110 permit ip any host 64.239.185.5
+access-list 110 permit ip any host 64.239.188.8
+access-list 110 permit ip any host 64.239.185.8
+access-list 110 permit ip any host 64.239.185.9
+access-list 110 permit ip any host 64.239.188.9
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+banner motd ^CCCCCCCCCCCCCCCC
+
+*************************************************************
+
+Tierzero:
+
+Unauthorized access to this device or the attached
+
+networks is prohibited without express written permission.
+
+Violators may be prosecuted to the fullest extent of the law.
+
+Phone: 213-784-1400 option 1
+
+Email: [tac@tierzero.net]
+
+*********TACACS+*************************
+
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.136.174

@@ -0,0 +1,98 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 12.3
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname AceCommercial_5MB_56.L1XX.000303..TWCC_10310PioneerBlvd
+!
+boot-start-marker
+boot system flash disk2:c7200-is-mz.123-26.bin
+boot-end-marker
+!
+logging buffered 20000 debugging
+no logging console
+!
+clock timezone PST -8
+clock summer-time PST recurring
+no network-clock-participate slot 1 
+no network-clock-participate wic 0 
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+aaa session-id common
+ip subnet-zero
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+interface FastEthernet0/0
+ description AceCommercial=56.L1XX.000303..TWCC
+ ip address 216.31.136.174 255.255.255.252
+ load-interval 30
+ speed 100
+ full-duplex
+ traffic-shape rate 5000000 5000000 5000000 4096
+!
+interface FastEthernet0/1
+ description Computer Room
+ ip address 208.179.72.129 255.255.255.240 secondary
+ ip address 208.179.72.158 255.255.255.240
+ duplex auto
+ speed auto
+ traffic-shape rate 5000000 5000000 5000000 4096
+!
+no ip http server
+ip classless
+ip route 0.0.0.0 0.0.0.0 216.31.136.173
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 101 permit ip 10.10.10.0 0.0.0.255 any
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+banner motd ^CCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.136.214

@@ -0,0 +1,143 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 12.3
+no service pad
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname DavisWire_200MB_62.L1XX.000369..TWCC_5555IrwindaleAve
+!
+boot-start-marker
+boot system flash disk2:c7200-spservicesk9-mz.124-24.T7.bin
+boot system flash disk2:c7200-is-mz.123-26.bin
+boot bootldr disk2:c7200-kboot-mz.123-26.bin
+boot-end-marker
+!
+logging buffered 20000 debugging
+no logging console
+!
+clock timezone PST -8
+clock summer-time PST recurring
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+aaa session-id common
+ip subnet-zero
+!
+ip cef
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+class-map match-all BANDWIDTH
+  match any 
+!
+policy-map BANDWIDTH_200MB2
+  class BANDWIDTH
+   shape peak 200000000
+  class class-default
+   fair-queue
+   random-detect dscp-based
+   random-detect ecn
+policy-map BANDWIDTH_200MB
+  class BANDWIDTH
+   shape average 200000000
+  class class-default
+   fair-queue
+   random-detect dscp-based
+   random-detect ecn
+!
+interface GigabitEthernet0/1
+ description DavisWire=62.L1XX.000369..TWCC
+ ip address 216.31.136.214 255.255.255.252
+ ip nat outside
+ load-interval 30
+ duplex full
+ speed 1000
+ media-type rj45
+ no negotiation auto
+ service-policy output BANDWIDTH_200MB2
+!
+interface GigabitEthernet0/2
+ description CustomerLAN
+ ip address 64.239.129.225 255.255.255.240
+ load-interval 30
+ duplex full
+ speed 1000
+ media-type rj45
+ negotiation auto
+ service-policy output BANDWIDTH_200MB
+!
+interface GigabitEthernet0/3
+ no ip address
+ shutdown
+ duplex auto
+ speed auto
+ media-type rj45
+ negotiation auto
+!
+ip classless
+ip route 0.0.0.0 0.0.0.0 216.31.136.213
+no ip http server
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+gatekeeper
+ shutdown
+!
+banner motd ^CCCCCCCCCCCCCC
+          
+*************************************************************
+          
+Tierzero:
+
+Unauthorized access to this device or the attached
+
+networks is prohibited without express written permission.
+
+Violators may be prosecuted to the fullest extent of the law.
+
+Phone: 213-784-1400 option 1
+
+Email: [tac@tierzero.net]
+
+*********TACACS+*************************
+
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.136.218

@@ -0,0 +1,191 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 12.4
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+!
+hostname OrangePsychiatric_50MB_95.L1XX.802992.CHTR_41670IvySt
+!
+boot-start-marker
+boot-end-marker
+!
+logging message-counter syslog
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip dhcp pool Ivy_DHCP
+   network 192.168.3.0 255.255.255.0
+   default-router 192.168.3.1 255.255.255.0 
+   dns-server 216.116.96.2 216.116.96.3 8.8.8.8 8.8.4.4 
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+ no dspfarm
+!
+crypto pki token default removal timeout 0
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+archive
+ log config
+  hidekeys
+! 
+ip ssh version 2
+!
+class-map match-any VOIP
+ match access-group 110
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map VOIP-POLICE
+ class VOIP
+    priority percent 33
+ class class-default
+    fair-queue
+     random-detect dscp-based
+     random-detect ecn
+policy-map BANDWIDTH_50MB
+ class BANDWIDTH
+    shape peak 50000000
+  service-policy VOIP-POLICE
+ class class-default
+    fair-queue
+     random-detect dscp-based
+     random-detect ecn
+policy-map BANDWIDTH_50MB2
+ class BANDWIDTH
+    shape average 50000000
+  service-policy VOIP-POLICE
+ class class-default
+    fair-queue
+     random-detect dscp-based
+     random-detect ecn
+!
+interface GigabitEthernet0/0
+ description OrangePsychiatric=95.L1XX.802992..CHTR
+ ip address 216.31.136.218 255.255.255.252
+ ip flow ingress
+ ip nat outside
+ ip virtual-reassembly
+ load-interval 30
+ duplex full
+ speed 1000
+ service-policy output BANDWIDTH_50MB
+!
+interface GigabitEthernet0/1
+ description HPBX
+ ip address 10.10.10.1 255.255.255.0
+ ip flow ingress
+ ip nat inside
+ ip virtual-reassembly
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_50MB2
+!
+interface FastEthernet1/0
+ description CustomerLAN
+ ip address 192.168.3.1 255.255.255.0 secondary
+ ip address 64.239.130.57 255.255.255.248
+ ip access-group 198 in
+ ip flow ingress
+ ip nat inside
+ ip virtual-reassembly
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_50MB2
+!
+ip forward-protocol nd
+ip route 0.0.0.0 0.0.0.0 216.31.136.217
+no ip http server
+no ip http secure-server
+!
+ip flow-export source GigabitEthernet0/0
+ip flow-export version 5
+ip flow-export destination 216.116.96.72 2055
+!
+ip nat translation timeout 300
+ip nat translation tcp-timeout 300
+ip nat translation udp-timeout 90
+no ip nat service sip udp port 5060
+ip nat inside source list 1 interface GigabitEthernet0/0 overload
+!
+access-list 1 permit 10.10.10.0 0.0.0.255
+access-list 1 permit 192.168.3.0 0.0.0.255
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 110 permit ip any host 64.239.185.8
+access-list 110 permit ip any host 64.239.185.9
+access-list 110 permit ip any host 64.239.185.5
+access-list 110 permit ip any host 64.239.188.8
+access-list 110 permit ip any host 64.239.188.9
+access-list 198 permit tcp any host 64.239.130.59 eq 443
+access-list 198 permit tcp any host 64.239.130.58 eq 443
+access-list 198 permit tcp host 64.239.130.58 any eq 443
+access-list 198 permit tcp host 64.239.130.59 any eq 443
+access-list 198 deny   ip any host 64.239.130.58
+access-list 198 deny   ip any host 64.239.130.59
+access-list 198 permit ip any any
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+banner motd ^CCCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.136.230

@@ -0,0 +1,251 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname AltVFX_500MB_31.L1XX.004599.TWCC_3617HaydenAve
+!
+boot-start-marker
+boot system disk2:c7200p-advipservicesk9-mz.151-3.S1.bin
+boot-end-marker
+!
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+clock timezone PST -8 0
+clock summer-time PST recurring
+ip cef
+!
+ip dhcp excluded-address 10.40.11.254
+!
+ip dhcp pool LA_Guest_Wifi_DHCP_POOL
+ network 10.40.11.0 255.255.255.0
+ default-router 10.40.11.254 
+ dns-server 8.8.8.8 8.8.4.4 
+!
+ip dhcp pool HPBX
+ network 10.40.15.0 255.255.255.0
+ domain-name voip.tierzero.net
+ default-router 10.40.15.1 
+ dns-server 216.116.96.2 216.116.96.3 
+ option 66 ascii "http://config:BYN93FV4Awxwie@ndp.tierzero.net/cfg/"
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+class-map match-any VOIP
+ match access-group 110
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map VOIP-POLICE
+ class VOIP
+  priority percent 33
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+policy-map BANDWIDTH_500MB
+ class BANDWIDTH
+  shape average 500000000
+  queue-limit 62500 bytes
+  service-policy VOIP-POLICE
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+policy-map BANDWIDTH_500MB2
+ class BANDWIDTH
+  shape peak 500000000
+  queue-limit 62500 bytes
+  service-policy VOIP-POLICE
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+crypto isakmp policy 10
+ encr aes 256
+ authentication pre-share
+ group 2
+ lifetime 3600
+crypto isakmp key areallylonGKEythatcANNotbegueSSed address 203.153.16.193
+crypto isakmp keepalive 10 10
+!
+crypto ipsec transform-set LABNESET esp-aes 256 esp-sha-hmac 
+!
+crypto ipsec profile LABNE_PROFILE
+ set transform-set LABNESET 
+!
+crypto map ALTCRYPTO 20 ipsec-isakmp 
+ set peer 203.153.16.193
+ set transform-set LABNESET 
+ set pfs group2
+ match address ALTBNE_ACL
+!
+interface GigabitEthernet0/1
+ description AltVFX=31.L1XX.004599.TWCC
+ ip address 216.31.136.230 255.255.255.252
+ ip nat outside
+ load-interval 30
+ media-type rj45
+ speed auto
+ duplex full
+ no negotiation auto
+ crypto map ALTCRYPTO
+ service-policy output VOIP-POLICE
+!
+interface FastEthernet0/2
+ no ip address
+ shutdown
+ speed auto
+ duplex auto
+!
+interface GigabitEthernet0/2
+ description CustomerLAN
+ ip address 64.239.131.10 255.255.255.248
+ ip nat outside
+ load-interval 30
+ media-type rj45
+ speed auto
+ duplex auto
+ no negotiation auto
+ service-policy output VOIP-POLICE
+!
+interface GigabitEthernet0/2.11
+ encapsulation dot1Q 11
+ ip address 10.40.11.254 255.255.255.0
+ ip nat inside
+!
+interface GigabitEthernet0/2.1720
+ encapsulation dot1Q 1720
+ ip address 172.20.0.254 255.255.255.0
+ ip nat inside
+!
+interface GigabitEthernet0/3
+ no ip address
+ ip nat inside
+ load-interval 30
+ media-type rj45
+ speed auto
+ duplex auto
+ no negotiation auto
+ service-policy output VOIP-POLICE
+!
+interface GigabitEthernet0/3.1
+ description HPBX
+ encapsulation dot1Q 1159
+ ip address 10.40.15.1 255.255.255.0
+ ip nat inside
+!
+ip nat translation timeout 300
+ip nat translation tcp-timeout 300
+ip nat translation udp-timeout 90
+ip nat inside source list NAT interface GigabitEthernet0/2 overload
+ip nat inside source static tcp 10.40.10.15 8000 64.239.131.10 8000 extendable
+ip nat inside source static tcp 10.40.10.4 49221 64.239.131.10 49221 extendable
+ip nat inside source static tcp 10.40.16.20 80 64.239.131.11 80 extendable
+ip nat inside source static tcp 10.40.16.20 443 64.239.131.11 443 extendable
+ip nat inside source static udp 10.40.10.15 8000 64.239.131.10 8000 extendable
+ip nat inside source static udp 10.40.10.4 49221 64.239.131.10 49221 extendable
+ip forward-protocol nd
+!
+no ip http server
+no ip http secure-server
+ip route 0.0.0.0 0.0.0.0 216.31.136.229
+ip route 10.40.10.0 255.255.255.0 172.20.0.1
+ip route 10.40.10.15 255.255.255.255 Null0
+ip route 10.40.13.0 255.255.255.0 172.20.0.1
+ip route 10.40.14.0 255.255.255.0 172.20.0.1
+ip route 10.40.16.0 255.255.255.0 172.20.0.1
+!
+ip access-list extended ALTBNE_ACL
+ permit ip 10.40.0.0 0.0.255.255 192.168.0.0 0.0.255.255
+ip access-list extended ALTSYD_ACL
+ permit ip 10.40.0.0 0.0.255.255 10.10.0.0 0.0.255.255
+ip access-list extended GUEST_BLOCK
+ deny   ip 10.40.11.0 0.0.0.255 10.40.0.0 0.0.255.255
+ permit ip any any
+ip access-list extended NAT
+ deny   ip 10.40.0.0 0.0.255.255 192.168.0.0 0.0.255.255
+ deny   ip 10.40.0.0 0.0.255.255 10.10.0.0 0.0.255.255
+ permit ip 10.40.16.0 0.0.0.255 any
+ permit ip 10.40.0.0 0.0.255.255 any
+ permit ip 10.40.15.0 0.0.0.255 any
+ deny   ip 10.40.10.0 0.0.0.255 192.168.0.0 0.0.255.255
+ permit ip 10.40.10.0 0.0.0.255 any
+ip access-list extended SAMSUNG_NAT
+ permit ip 10.40.16.0 0.0.0.255 host 203.254.223.17
+ permit ip 10.40.16.0 0.0.0.255 host 203.254.223.85
+ permit ip 10.40.16.0 0.0.0.255 host 203.153.16.193
+!
+access-list 1 permit 10.10.10.0 0.0.0.255
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 110 permit ip any host 64.239.185.8
+access-list 110 permit ip any host 64.239.185.9
+access-list 110 permit ip any host 64.239.185.5
+access-list 110 permit ip any host 64.239.188.8
+access-list 110 permit ip any host 64.239.188.9
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+banner motd ^CCCCCCCCCCCCCC
+*************************************************************
+
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.136.246

@@ -0,0 +1,182 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+upgrade fpd auto
+version 15.0
+no service pad
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname RNCCapital_500MB_CA.KXFN.088385.LVLC_11601WilshireBlvd
+!
+boot-start-marker
+boot system disk2:/c7200-spservicesk9-mz.150-1.M10.bin
+boot system flash disk2:c7200-spservicesk9-mz.150-1.M10.bin
+boot system flash disk2:c7200-is-mz.123-26.bin
+boot bootldr disk2:c7200-boot-mz.124-25b.bin
+boot-end-marker
+!
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+clock timezone PST -8
+clock summer-time PST recurring
+ip source-route
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+multilink bundle-name authenticated
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+class-map match-any VOIP
+ match access-group 110
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_500MB
+ class BANDWIDTH
+    shape average 500000000
+    queue-limit 62500 bytes
+ class class-default
+    fair-queue
+     random-detect dscp-based
+     random-detect ecn
+policy-map VOIP-POLICE
+ class VOIP
+    priority percent 35
+ class class-default
+    fair-queue
+     random-detect dscp-based
+     random-detect ecn
+!
+interface Tunnel1
+ bandwidth 100000
+ ip address 172.16.10.1 255.255.255.252
+ ip flow ingress
+ keepalive 10 3
+ tunnel source GigabitEthernet0/1
+ tunnel destination 208.179.32.170
+!
+interface GigabitEthernet0/1
+ description RNCCapital=CA.KXFN.088385.LVLC
+ ip address 216.31.136.246 255.255.255.252
+ ip access-group 198 in
+ ip flow ingress
+ ip nat outside
+ ip virtual-reassembly
+ load-interval 30
+ duplex full
+ speed 1000
+ media-type gbic
+ no negotiation auto
+ no cdp enable
+ service-policy output BANDWIDTH_500MB
+!
+interface GigabitEthernet0/2
+ description CustomerLAN
+ ip address 64.239.136.41 255.255.255.248 secondary
+ ip address 208.179.165.65 255.255.255.224
+ ip flow ingress
+ ip virtual-reassembly
+ load-interval 30
+ duplex full
+ speed auto
+ media-type rj45
+ no negotiation auto
+ service-policy output BANDWIDTH_500MB
+!
+interface GigabitEthernet0/3
+ description HPBX
+ ip address 10.116.254.1 255.255.0.0 secondary
+ ip address 64.239.131.49 255.255.255.248 secondary
+ ip address 10.117.10.1 255.255.0.0
+ ip flow ingress
+ ip nat inside
+ ip virtual-reassembly
+ duplex auto
+ speed auto
+ media-type rj45
+ no negotiation auto
+ service-policy output BANDWIDTH_500MB
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip nat translation timeout 300
+ip nat translation tcp-timeout 300
+ip nat translation udp-timeout 90
+no ip nat service sip udp port 5060
+ip nat inside source list 1 interface GigabitEthernet0/1 overload
+ip route 0.0.0.0 0.0.0.0 216.31.136.245
+ip route 10.216.0.0 255.255.0.0 172.16.10.2
+!
+access-list 1 permit 10.117.0.0 0.0.255.255
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 110 permit ip any host 64.239.185.8
+access-list 110 permit ip any host 64.239.185.9
+access-list 110 permit ip any host 64.239.185.5
+access-list 110 permit ip any host 64.239.188.8
+access-list 110 permit ip any host 64.239.188.9
+access-list 198 deny   ip 208.75.123.0 0.0.0.255 any
+access-list 198 permit ip any any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+gatekeeper
+ shutdown
+!
+banner motd ^CCCCCCCCCCCCCCCC
+*************************************************************
+
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.136.250

@@ -0,0 +1,159 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+upgrade fpd auto
+version 15.0
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname ArenaCapitalAdvisors_50MB_31.L1XX.011586.TWCC_12121WilshireBlvd
+!
+boot-start-marker
+boot system disk2:c7200-advipservicesk9-mz.150-1.M10.bin
+boot system flash disk2:c7200-is-mz.123-26.bin
+boot bootldr bootflash:c7200-boot-mz.124-25b.bin
+boot-end-marker
+!
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8
+clock summer-time PST recurring
+ip source-route
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+ip ssh version 2
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_50MB
+ class BANDWIDTH
+    shape average 50000000
+ class class-default
+    fair-queue
+     random-detect dscp-based
+     random-detect ecn
+policy-map BANDWIDTH_50MB2
+ class BANDWIDTH
+    shape peak 50000000
+ class class-default
+    fair-queue
+     random-detect dscp-based
+     random-detect ecn
+!
+interface GigabitEthernet0/1
+ description ArenaCapitalAdvisors=31.L1XX.011586.TWCC
+ ip address 216.31.136.250 255.255.255.252
+ load-interval 30
+ duplex full
+ speed 1000
+ media-type gbic
+ negotiation auto
+ !
+ service-policy output BANDWIDTH_50MB2
+!
+interface GigabitEthernet0/2
+ description CustomerLAN
+ ip address 64.239.130.89 255.255.255.248
+ load-interval 30
+ duplex auto
+ speed auto
+ media-type rj45
+ no negotiation auto
+ !
+ service-policy output BANDWIDTH_50MB
+!
+interface GigabitEthernet0/3
+ ip address 64.239.176.49 255.255.255.252
+ duplex full
+ speed 100
+ media-type rj45
+ no negotiation auto
+ !
+ service-policy output BANDWIDTH_50MB
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.136.249
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+ !
+!
+gatekeeper
+ shutdown
+!
+banner motd ^CCCCCCCCCCCCCC
+
+*************************************************************
+          
+Tierzero:
+
+Unauthorized access to this device or the attached
+
+networks is prohibited without express written permission.
+
+Violators may be prosecuted to the fullest extent of the law.
+
+Phone: 213-784-1400 option 1
+
+Email: [tac@tierzero.net]
+
+*********TACACS+*************************
+
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.136.6

@@ -0,0 +1,186 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.2
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+no platform punt-keepalive disable-kernel-core
+!
+hostname DanjaqLLC_100MB_31.L1XX.017613CHTR_11400WOlympicBlvd
+!
+boot-start-marker
+boot-end-marker
+!
+vrf definition Mgmt-intf
+ !
+ address-family ipv4
+ exit-address-family
+ !
+ address-family ipv6
+ exit-address-family
+!
+logging buffered 50000 informational
+logging persistent url flash:/syslog1 size 10485760 filesize 40000 immediate
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+ip dhcp pool HPBX
+ network 10.10.10.0 255.255.255.0
+ domain-name voip.tierzero.net
+ default-router 10.10.10.1 
+ dns-server 216.116.96.2 216.116.96.3 
+!
+ipv6 multicast rpf use-bgp
+!
+multilink bundle-name authenticated
+!
+license boot level ipbase
+archive
+ log config
+  logging enable
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+ mode none
+!
+ip tftp source-interface GigabitEthernet0
+ip ssh version 2
+!
+class-map match-any VOIP
+ match access-group 110
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_100MB
+ class VOIP
+  priority level 1
+ class class-default
+  police rate 100000000  burst 500000  conform-action transmit  exceed-action drop 
+policy-map VOIP-POLICE
+ class VOIP
+  priority percent 33
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface GigabitEthernet0/0/0
+ description DanjaqLLC=31.L1XX.017613CHTR
+ ip address 216.31.136.6 255.255.255.252
+ ip nat outside
+ load-interval 30
+ speed 1000
+ no negotiation auto
+ service-policy output BANDWIDTH_100MB
+!
+interface GigabitEthernet0/0/1
+ description LAN
+ ip address 64.239.134.17 255.255.255.248
+ load-interval 30
+ negotiation auto
+ service-policy output BANDWIDTH_100MB
+!
+interface GigabitEthernet0/0/2
+ description HPBX
+ no ip address
+ load-interval 30
+ negotiation auto
+ service-policy output BANDWIDTH_100MB
+!
+interface GigabitEthernet0/0/2.1
+ encapsulation dot1Q 1159
+ ip address 10.10.10.1 255.255.255.0
+ ip nat inside
+!
+interface GigabitEthernet0/0/3
+ no ip address
+ shutdown
+ negotiation auto
+!
+interface GigabitEthernet0
+ vrf forwarding Mgmt-intf
+ no ip address
+ shutdown
+ negotiation auto
+!
+ip nat translation timeout 300
+ip nat translation tcp-timeout 300
+ip nat translation udp-timeout 90
+no ip nat service sip udp port 5060
+ip nat inside source list 1 interface GigabitEthernet0/0/0 overload
+ip forward-protocol nd
+!
+no ip http server
+no ip http secure-server
+ip route 0.0.0.0 0.0.0.0 216.31.136.5
+!
+access-list 1 permit 10.10.10.0 0.0.0.255
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 110 permit ip any host 64.239.185.8
+access-list 110 permit ip any host 64.239.185.9
+access-list 110 permit ip any host 64.239.185.5
+access-list 110 permit ip any host 64.239.188.8
+access-list 110 permit ip any host 64.239.188.9
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+banner motd ^CCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.137.2

@@ -0,0 +1,156 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+no service pad
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+no platform punt-keepalive disable-kernel-core
+!
+hostname IntegratedFoodService_250MB_AS/KRGN/005198/PT_310WAlondraBlvd
+!
+boot-start-marker
+boot-end-marker
+!
+vrf definition Mgmt-intf
+ !
+ address-family ipv4
+ exit-address-family
+ !
+ address-family ipv6
+ exit-address-family
+!
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ip dhcp use vrf connected
+!
+multilink bundle-name authenticated
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+ mode none
+!
+ip tftp source-interface GigabitEthernet0
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_250MB
+ class BANDWIDTH
+  police rate 250000000  burst 500000  conform-action transmit  exceed-action drop 
+ class class-default
+  police rate 250000000  burst 500000  conform-action transmit  exceed-action drop  violate-action drop 
+!
+interface GigabitEthernet0/0/0
+ description IntegratedFoodService=AS/KRGN/005198/PT
+ no ip address
+ load-interval 30
+ speed 1000
+ no negotiation auto
+ service-policy input BANDWIDTH_250MB
+ service-policy output BANDWIDTH_250MB
+!
+interface GigabitEthernet0/0/0.1
+ encapsulation dot1Q 2700
+ ip address 216.31.137.2 255.255.255.252
+ ip virtual-reassembly
+!
+interface GigabitEthernet0/0/1
+ description CustomerLAN
+ ip address 64.239.129.137 255.255.255.248
+ load-interval 30
+ negotiation auto
+ service-policy input BANDWIDTH_250MB
+ service-policy output BANDWIDTH_250MB
+!
+interface GigabitEthernet0/0/2
+ no ip address
+ shutdown
+ negotiation auto
+!
+interface GigabitEthernet0/0/3
+ no ip address
+ shutdown
+ negotiation auto
+!
+interface GigabitEthernet0
+ vrf forwarding Mgmt-intf
+ no ip address
+ shutdown
+ negotiation auto
+!
+ip nat translation timeout 300
+ip nat translation tcp-timeout 300
+ip nat translation udp-timeout 90
+no ip nat service sip udp port 5060
+ip forward-protocol nd
+!
+no ip http server
+ip route 0.0.0.0 0.0.0.0 216.31.137.1
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 110 permit ip any host 64.239.185.8
+access-list 110 permit ip any host 64.239.185.9
+access-list 110 permit ip any host 64.239.185.5
+access-list 110 permit ip any host 64.239.188.8
+access-list 110 permit ip any host 64.239.188.9
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+banner motd ^CCCCCCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.137.26

@@ -0,0 +1,180 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.4
+no service pad
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+no platform punt-keepalive disable-kernel-core
+!
+hostname KinkisharyoInternational_250MB_AS/KRGN/005386/PT_2825EAveP
+!
+boot-start-marker
+boot-end-marker
+!
+aqm-register-fnf
+!
+vrf definition Mgmt-intf
+ !
+ address-family ipv4
+ exit-address-family
+ !
+ address-family ipv6
+ exit-address-family
+!
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+
+
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ip dhcp use vrf connected
+!
+subscriber templating
+!
+multilink bundle-name authenticated
+!
+license udi pid ASR1001 sn JAE180902Z8
+license boot level advipservices
+spanning-tree extend system-id
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+ mode none
+!
+ip tftp source-interface GigabitEthernet0
+ip ssh version 2
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_250MB
+ class BANDWIDTH
+  police rate 250000000  burst 500000  conform-action transmit  exceed-action drop 
+ class class-default
+  police rate 250000000  burst 500000  conform-action transmit  exceed-action drop  violate-action drop 
+!
+interface GigabitEthernet0/0/0
+ description KinkisharyoInternational=AS/KRGN/005386/PT
+ no ip address
+ load-interval 30
+ negotiation auto
+ service-policy input BANDWIDTH_250MB
+ service-policy output BANDWIDTH_250MB
+!
+interface GigabitEthernet0/0/0.1
+ encapsulation dot1Q 2703
+ ip address 216.31.137.26 255.255.255.252
+ ip access-group 125 in
+ ip virtual-reassembly
+!
+interface GigabitEthernet0/0/1
+ description CustomerLAN
+ ip address 64.239.142.209 255.255.255.248
+ ip access-group 125 in
+ ip access-group 125 out
+ load-interval 30
+ negotiation auto
+ service-policy input BANDWIDTH_250MB
+ service-policy output BANDWIDTH_250MB
+!
+interface GigabitEthernet0/0/2
+ no ip address
+ shutdown
+ negotiation auto
+!
+interface GigabitEthernet0/0/3
+ no ip address
+ shutdown
+ negotiation auto
+!
+interface GigabitEthernet0
+ vrf forwarding Mgmt-intf
+ no ip address
+ shutdown
+ negotiation auto
+!
+ip nat translation timeout 300
+ip nat translation tcp-timeout 300
+ip nat translation udp-timeout 90
+no ip nat service sip udp port 5060
+ip forward-protocol nd
+!
+no ip http server
+no ip http secure-server
+ip route 0.0.0.0 0.0.0.0 216.31.137.25
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 125 deny   ip any 159.69.0.0 0.0.255.255
+access-list 125 deny   ip any 88.0.0.0 0.255.255.255
+access-list 125 deny   ip 88.0.0.0 0.255.255.255 any
+access-list 125 deny   ip 159.69.0.0 0.0.255.255 any
+access-list 125 permit ip any 158.228.0.0 0.0.255.255
+access-list 125 permit ip 158.228.0.0 0.0.255.255 any
+access-list 125 deny   ip any host 64.239.142.214
+access-list 125 deny   ip host 64.239.142.214 any
+access-list 125 permit ip any any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+ !
+ !
+ !
+ !
+!
+banner motd ^CCCCCCCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.137.50

@@ -0,0 +1,215 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.2
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+no platform punt-keepalive disable-kernel-core
+!
+hostname CordobaCorporation_500MB_ASKRGN005467PT_9323ChesapeakeDr
+!
+boot-start-marker
+boot-end-marker
+!
+vrf definition Mgmt-intf
+ !
+ address-family ipv4
+ exit-address-family
+ !
+ address-family ipv6
+ exit-address-family
+!
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+ip dhcp pool HPBX
+ network 10.10.10.0 255.255.255.0
+ domain-name voip.tierzero.net
+ default-router 10.10.10.1 
+ dns-server 216.116.96.2 216.116.96.3 
+ option 66 ascii "http://config:uCdh8qBc3Hb@ndp.tierzero.net/cfg"
+!
+ipv6 multicast rpf use-bgp
+ipv6 multicast vrf Mgmt-intf rpf use-bgp
+!
+multilink bundle-name authenticated
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+ mode none
+!
+ip tftp source-interface GigabitEthernet0
+ip ssh version 2
+!
+class-map match-any VOIP
+ match access-group 110
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map VOIP-POLICE
+ class VOIP
+  priority percent 33
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+policy-map BANDWIDTH_500MB
+ class BANDWIDTH
+  shape peak 500000000
+   service-policy VOIP-POLICE
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+policy-map BANDWIDTH_500MB2
+ class BANDWIDTH
+  shape average 500000000
+   service-policy VOIP-POLICE
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface GigabitEthernet0/0/0
+ description CordobaCorporation=ASKRGN005467PT
+ no ip address
+ load-interval 30
+ no negotiation auto
+ service-policy output BANDWIDTH_500MB
+!
+interface GigabitEthernet0/0/0.1
+ encapsulation dot1Q 2707
+ ip address 216.31.137.50 255.255.255.252
+ ip access-group 198 in
+ ip nat outside
+ ip virtual-reassembly
+!
+interface GigabitEthernet0/0/1
+ description CustomerLAN
+ ip address 64.239.142.57 255.255.255.248
+ load-interval 30
+ speed 1000
+ no negotiation auto
+ service-policy output BANDWIDTH_500MB2
+!
+interface GigabitEthernet0/0/2
+ no ip address
+ speed 1000
+ no negotiation auto
+ service-policy output BANDWIDTH_500MB2
+!
+interface GigabitEthernet0/0/2.1
+ description HPBX
+ encapsulation dot1Q 1159
+ ip address 10.10.10.1 255.255.255.0
+ ip nat inside
+ ip virtual-reassembly
+!
+interface GigabitEthernet0/0/3
+ no ip address
+ shutdown
+ negotiation auto
+!
+interface GigabitEthernet0
+ vrf forwarding Mgmt-intf
+ no ip address
+ shutdown
+ negotiation auto
+!
+ip nat translation timeout 300
+ip nat translation tcp-timeout 300
+ip nat translation udp-timeout 90
+no ip nat service sip udp port 5060
+ip nat inside source list 1 interface GigabitEthernet0/0/0.1 overload
+ip forward-protocol nd
+!
+no ip http server
+no ip http secure-server
+ip route 0.0.0.0 0.0.0.0 216.31.137.49
+!
+access-list 1 permit 10.10.10.0 0.0.0.255
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 110 permit ip any host 64.239.185.8
+access-list 110 permit ip any host 64.239.185.9
+access-list 110 permit ip any host 64.239.185.5
+access-list 110 permit ip any host 64.239.188.8
+access-list 110 permit ip any host 64.239.188.9
+access-list 198 deny   udp any host 64.239.142.57 eq ntp
+access-list 198 deny   udp host 64.239.142.57 any eq ntp
+access-list 198 permit udp host 216.116.96.71 any eq snmp
+access-list 198 permit udp host 216.116.96.72 any eq snmp
+access-list 198 deny   tcp any 64.239.142.56 0.0.0.7 eq telnet
+access-list 198 deny   udp any any eq snmp
+access-list 198 deny   icmp any any timestamp-reply
+access-list 198 deny   icmp any any timestamp-request
+access-list 198 permit ip any any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+banner motd ^CCCCCCCCCCCCCCC
+
+*************************************************************
+
+Tierzero:
+
+Unauthorized access to this device or the attached
+
+networks is prohibited without express written permission.
+
+Violators may be prosecuted to the fullest extent of the law.
+
+Phone: 213-784-1400 option 1
+
+Email: [tac@tierzero.net]
+
+*********TACACS+*************************
+
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.137.58

@@ -0,0 +1,214 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.2
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+no platform punt-keepalive disable-kernel-core
+!
+hostname CordobaCorp_250MB_ASKRGN005550PT_9301OakdaleAve
+!
+boot-start-marker
+boot-end-marker
+!
+vrf definition Mgmt-intf
+ !
+ address-family ipv4
+ exit-address-family
+ !
+ address-family ipv6
+ exit-address-family
+!
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+ip name-server 64.239.184.125
+!
+ip dhcp pool HPBX_NS
+ network 10.10.10.0 255.255.255.0
+ domain-name voip.tierzero.net
+ default-router 10.10.10.1 
+ dns-server 216.116.96.2 216.116.96.3 
+ option 66 ascii "http://ndp.tierzero.net/cfg/"
+!
+ipv6 multicast rpf use-bgp
+ipv6 multicast vrf Mgmt-intf rpf use-bgp
+!
+multilink bundle-name authenticated
+!
+archive
+ log config
+  hidekeys
+!
+username tzcare privilege 15 secret 4 2sjzNVtxY6OlqJwZ0aI3sMolHkiY4xgsxNffGuyYebQ
+!
+redundancy
+ mode none
+!
+ip tftp source-interface GigabitEthernet0
+!
+class-map match-any VOIP
+ match access-group 110
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map VOIP-POLICE
+ class VOIP
+  priority percent 33
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+policy-map BANDWIDTH_250MB2
+ class BANDWIDTH
+  shape average 250000000
+   service-policy VOIP-POLICE
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+policy-map BANDWIDTH_250MB
+ class BANDWIDTH
+  shape average 250000000
+   service-policy VOIP-POLICE
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface GigabitEthernet0/0/0
+ description CordobaCorporation=ASKRGN005550PT
+ no ip address
+ load-interval 30
+ no negotiation auto
+ service-policy output BANDWIDTH_250MB
+!
+interface GigabitEthernet0/0/0.1
+ encapsulation dot1Q 2709
+ ip address 216.31.137.58 255.255.255.252
+ ip access-group 198 in
+ ip nat outside
+!
+interface GigabitEthernet0/0/1
+ description CustomerLAN
+ ip address 64.239.134.97 255.255.255.248
+ ip virtual-reassembly
+ load-interval 30
+ negotiation auto
+ service-policy output BANDWIDTH_250MB2
+!
+interface GigabitEthernet0/0/2
+ no ip address
+ shutdown
+ speed 1000
+ no negotiation auto
+!
+interface GigabitEthernet0/0/3
+ description HPBX/FaxSipit
+ ip address 64.239.180.37 255.255.255.252
+ ip nat inside
+ ip virtual-reassembly
+ load-interval 30
+ negotiation auto
+ service-policy output BANDWIDTH_250MB
+!
+interface GigabitEthernet0/0/3.2
+ description HPBX
+ encapsulation dot1Q 1159
+ ip address 10.10.10.1 255.255.255.0
+ ip nat inside
+!
+interface GigabitEthernet0
+ vrf forwarding Mgmt-intf
+ no ip address
+ shutdown
+ negotiation auto
+!
+ip nat translation timeout 300
+ip nat translation tcp-timeout 300
+ip nat translation udp-timeout 90
+no ip nat service sip udp port 5060
+ip nat inside source list 151 interface GigabitEthernet0/0/0.1 overload
+ip forward-protocol nd
+!
+no ip http server
+no ip http secure-server
+ip route 0.0.0.0 0.0.0.0 216.31.137.57
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 110 permit ip any host 64.239.185.8
+access-list 110 permit ip any host 64.239.185.9
+access-list 110 permit ip any host 64.239.185.5
+access-list 110 permit ip any host 64.239.188.8
+access-list 110 permit ip any host 64.239.188.9
+access-list 151 permit ip 10.10.10.0 0.0.0.255 any
+access-list 151 permit ip 10.30.10.0 0.0.0.255 any
+access-list 198 deny   udp any host 64.239.134.97 eq ntp
+access-list 198 deny   udp host 64.239.134.97 any eq ntp
+access-list 198 permit udp host 216.116.96.71 any eq snmp
+access-list 198 permit udp host 216.116.96.72 any eq snmp
+access-list 198 permit udp host 216.116.98.183 any eq snmp log
+access-list 198 deny   tcp any 64.239.134.96 0.0.0.7 eq telnet
+access-list 198 deny   udp any any eq snmp
+access-list 198 deny   icmp any any timestamp-reply
+access-list 198 deny   icmp any any timestamp-request
+access-list 198 permit ip any any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+banner motd ^CCCCCCCCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.137.62

@@ -0,0 +1,172 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.4
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+no platform punt-keepalive disable-kernel-core
+!
+hostname LAPropoint_500MB_ASKRGN005504PT_10870LaTunaCanyonRd
+!
+boot-start-marker
+boot-end-marker
+!
+vrf definition Mgmt-intf
+ !
+ address-family ipv4
+ exit-address-family
+ !
+ address-family ipv6
+ exit-address-family
+!
+logging buffered 50000 informational
+logging persistent url flash:/syslog1 size 10485760 filesize 40000 immediate
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+
+!
+ip dhcp pool HPBX
+ network 10.10.10.0 255.255.255.0
+ default-router 10.10.10.1 
+ dns-server 8.8.8.8 8.8.4.4 216.116.96.2 216.116.96.3 
+!
+subscriber templating
+multilink bundle-name authenticated
+!
+license udi pid ASR1001 sn JAE200402CL
+archive
+ log config
+  logging enable
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+ mode none
+!
+ip tftp source-interface GigabitEthernet0
+ip ssh version 2
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_500MB
+ class BANDWIDTH
+  police rate 500000000  burst 500000  conform-action transmit  exceed-action drop 
+ class class-default
+  police rate 500000000  burst 500000  conform-action transmit  exceed-action drop  violate-action drop 
+!
+interface GigabitEthernet0/0/0
+ description LAPropoint=ASKRGN005504PT
+ no ip address
+ load-interval 30
+ no negotiation auto
+ service-policy input BANDWIDTH_500MB
+ service-policy output BANDWIDTH_500MB
+!
+interface GigabitEthernet0/0/0.1
+ encapsulation dot1Q 2710
+ ip address 216.31.137.62 255.255.255.252
+ ip nat outside
+!
+interface GigabitEthernet0/0/1
+ description CustomerLAN
+ ip address 208.179.251.97 255.255.255.240
+ speed 1000
+ no negotiation auto
+ service-policy input BANDWIDTH_500MB
+ service-policy output BANDWIDTH_500MB
+!
+interface GigabitEthernet0/0/2
+ description POTSinaBOX
+ ip address 10.10.10.1 255.255.255.0
+ ip nat inside
+ negotiation auto
+ service-policy input BANDWIDTH_500MB
+ service-policy output BANDWIDTH_500MB
+!
+interface GigabitEthernet0/0/3
+ no ip address
+ shutdown
+ negotiation auto
+!
+interface GigabitEthernet0
+ vrf forwarding Mgmt-intf
+ no ip address
+ shutdown
+ negotiation auto
+!
+ip nat translation timeout 300
+ip nat translation tcp-timeout 300
+ip nat translation udp-timeout 90
+no ip nat service sip udp port 5060
+ip nat inside source list 1 interface GigabitEthernet0/0/0.1 overload
+ip forward-protocol nd
+!
+no ip http server
+no ip http secure-server
+ip route 0.0.0.0 0.0.0.0 216.31.137.61
+!
+access-list 1 permit 10.10.10.0 0.0.0.255
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+banner motd ^CCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.138.134

@@ -0,0 +1,390 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.4
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+no platform punt-keepalive disable-kernel-core
+!
+hostname TrollSystems_1GB_13KRGN615081PT_24950AnzaDr
+!
+boot-start-marker
+boot system flash bootflash:asr1001-universalk9.03.13.01.S.154-3.S1-ext.bin
+boot-end-marker
+!
+vrf definition Mgmt-intf
+ !
+ address-family ipv4
+ exit-address-family
+ !
+ address-family ipv6
+ exit-address-family
+!
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication login userauthen local
+aaa authentication enable default group tacacs+ none
+aaa authorization network groupauthor local 
+!
+aaa session-id common
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+
+
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+ip name-server 64.239.184.125
+
+!
+ipv6 multicast rpf use-bgp
+ipv6 multicast vrf Mgmt-intf rpf use-bgp
+!
+subscriber templating
+!
+multilink bundle-name authenticated
+!
+license udi pid ASR1001 sn JAE1815095N
+spanning-tree extend system-id
+!
+username Bcoleman privilege 0 password 7 107A1B49091B243B2255
+username DDamiani password 7 06321D2E40425B
+username Fkhalaf password 7 1526195C08261D140662
+username Hellis password 7 1526195C08261D140662
+username Jtreptow privilege 0 password 7 046F1956032D7A7E2748
+username Mking password 7 033049040A0370
+username Shermesh password 7 053F145F2D40783937161F
+username TrollGuest1 privilege 0 password 7 075E114D5D1A0E0A0516
+username TrollGuest2 privilege 0 password 7 107E080A16001D190856
+username bardizzone password 7 046F1909032D1D
+username dheg privilege 0 password 7 0948460C1E
+username gparrish privilege 7 password 7 0030010908575A
+username jhopkins privilege 0 password 7 107A1B16091B
+username jpina password 7 033049040A0370
+username jscott privilege 0 password 7 1351454058
+username mrc privilege 0 password 7 046F1909032D
+username mscott privilege 0 password 7 06121D2E4042
+username nehul password 7 070124445B05
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+username westcom privilege 0 password 7 142300040008
+!
+redundancy
+ mode none
+!
+ip tftp source-interface GigabitEthernet0
+ip ssh version 2
+!
+class-map match-all VOIP
+ match access-group 110
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map VOIP-POLICE
+ class VOIP
+  priority percent 40
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+policy-map BANDWIDTH_1GB
+ class BANDWIDTH
+  shape average 1000000000
+   service-policy VOIP-POLICE
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+crypto isakmp policy 1
+ encr 3des
+ hash md5
+ authentication pre-share
+ group 2
+!
+crypto isakmp policy 3
+ encr 3des
+ hash md5
+ authentication pre-share
+ group 2
+!
+crypto isakmp policy 10
+ encr aes
+ authentication pre-share
+ group 2
+!
+crypto isakmp policy 20
+ hash md5
+ authentication pre-share
+ group 2
+!
+crypto isakmp policy 30
+ encr 3des
+ hash md5
+ authentication pre-share
+ group 2
+crypto isakmp nat keepalive 300
+!
+crypto isakmp client configuration group trollsystems
+ key Trollsyskey123
+ dns 192.168.3.21 192.168.3.22
+ domain trollsystems.com
+ pool vpnpool-ipsec
+ acl 150
+!
+crypto isakmp client configuration group trollguestgpoup
+ key Trollword1
+ dns 192.168.3.21 192.168.3.22
+ domain trolhsystems.com
+ pool vpnpool-ipsec
+ acl 150
+!
+crypto ipsec transform-set trollguestgroup esp-aes 256 esp-sha-hmac 
+ mode tunnel
+crypto ipsec transform-set trollsystems esp-aes 256 esp-sha-hmac 
+ mode tunnel
+!
+crypto dynamic-map dynmap 10
+ set transform-set trollguestgroup 
+ reverse-route
+!
+crypto map Trollsysmap client authentication list userauthen
+crypto map Trollsysmap isakmp authorization list groupauthor
+crypto map Trollsysmap client configuration address respond
+crypto map Trollsysmap 10 ipsec-isakmp dynamic dynmap 
+!
+interface GigabitEthernet0/0/0
+ description TrollSystems=13KRGN615081PT
+ no ip address
+ load-interval 30
+ negotiation auto
+ service-policy output BANDWIDTH_1GB
+!
+interface GigabitEthernet0/0/0.1
+ encapsulation dot1Q 2530
+ ip address 216.31.138.134 255.255.255.252
+ ip nat outside
+ crypto map Trollsysmap
+!
+interface GigabitEthernet0/0/1
+ description CustomerLAN
+ ip address 216.31.139.1 255.255.255.192
+ ip nat inside
+ ip access-group inbound5 in
+ ip access-group outbound8 out
+ load-interval 30
+ negotiation auto
+ service-policy output BANDWIDTH_1GB
+!
+interface GigabitEthernet0/0/2
+ description CISCO to ADTRAN
+ ip address 208.179.135.37 255.255.255.252
+ load-interval 30
+ negotiation auto
+ service-policy output BANDWIDTH_1GB
+!
+interface GigabitEthernet0/0/3
+ no ip address
+ shutdown
+ negotiation auto
+!
+interface GigabitEthernet0
+ vrf forwarding Mgmt-intf
+ no ip address
+ shutdown
+ negotiation auto
+!
+ip local pool vpnpool-ipsec 192.168.254.1 192.168.254.100
+ip nat translation tcp-timeout 900
+ip nat translation udp-timeout 900
+ip nat inside source route-map nonat interface GigabitEthernet0/0/0.1 overload
+ip forward-protocol nd
+!
+no ip http server
+no ip http secure-server
+ip route 0.0.0.0 0.0.0.0 216.31.138.133
+ip route 192.168.2.0 255.255.255.0 192.168.3.18
+ip route 192.168.4.0 255.255.255.0 192.168.3.18
+ip route 192.168.5.0 255.255.255.0 192.168.3.18
+!
+ip access-list extended SOURCE_ROUTING
+ permit ip host 99.186.242.77 any
+ permit ip host 99.186.242.78 any
+ deny   ip any any
+ip access-list extended inbound5
+ deny   tcp any any eq 3389
+ deny   ip host 222.186.52.86 any
+ permit ip any any
+ip access-list extended inbound7
+ip access-list extended inbound8
+ permit ip 192.168.254.0 0.0.0.255 192.168.0.0 0.0.255.255
+ deny   ip host 199.0.200.34 any
+ deny   ip host 174.120.219.177 any
+ deny   ip host 213.8.172.131 any
+ deny   ip host 195.168.58.107 any
+ deny   ip host 190.120.227.30 any
+ deny   ip any host 190.120.227.30
+ permit ip any host 216.31.138.134
+ permit ip 76.171.0.0 0.0.255.255 any
+ permit udp any eq domain any
+ permit udp any eq ntp any
+ permit udp any any range 2000 2099
+ permit tcp any any range 2000 2099
+ permit udp any eq tftp any
+ permit tcp any any established
+ permit tcp any host 216.31.139.2 range 4500 5000
+ permit udp any host 216.31.139.2 eq 21
+ permit tcp any host 216.31.139.6 eq ftp
+ permit tcp any host 216.31.139.6 eq ftp-data
+ permit tcp any host 216.31.139.6 range 55536 55663
+ permit tcp any host 216.31.139.2 eq ftp
+ permit tcp any host 216.31.139.2 eq ftp-data
+ permit tcp any host 216.31.139.2 eq www
+ permit tcp any host 216.31.139.2 eq 443
+ permit tcp any host 216.31.139.2 eq 5721
+ permit tcp any host 216.31.139.5 range 4500 5000
+ permit udp any host 216.31.139.5 eq 21
+ permit tcp any host 216.31.139.5 eq ftp
+ permit tcp any host 216.31.139.5 eq ftp-data
+ permit tcp any host 216.31.139.5 eq www
+ permit tcp any host 216.31.139.5 eq 443
+ permit tcp any host 216.31.139.5 eq 5721
+ permit udp any host 216.31.139.3 eq 8877
+ permit udp any host 216.31.139.3 eq 8878
+ permit udp any host 216.31.139.3 eq 8879
+ permit udp any host 216.31.139.8 eq 8879
+ permit tcp any host 216.31.139.8 eq 8879
+ permit udp any host 216.31.139.9 eq 8879
+ permit tcp any host 216.31.139.9 eq 8879
+ permit udp any host 216.31.139.9 eq echo
+ permit tcp any host 216.31.139.9 eq echo
+ permit tcp any host 216.31.139.10 eq 443
+ permit tcp host 54.69.61.164 host 216.31.139.10 eq 3306
+ permit udp any host 216.31.139.10 eq 443
+ permit ip any 208.179.135.36 0.0.0.3
+ permit udp any eq isakmp any
+ permit udp any eq 1723 any
+ permit tcp any eq 5721 any
+ permit udp any eq 1701 any
+ deny   tcp any eq 4430 any
+ deny   tcp any eq 118 any
+ permit ip 74.43.146.0 0.0.0.255 host 216.31.139.4
+ permit ip 208.86.215.0 0.0.0.255 host 216.31.139.4
+ permit ip any host 216.31.139.4
+ permit udp any host 216.31.139.5 eq isakmp
+ permit udp any host 216.31.139.5 eq 1723
+ permit udp any host 216.31.139.5 eq 1701
+ deny   ip any host 216.31.139.2
+ permit tcp any host 216.31.139.7 eq www
+ permit tcp any host 216.31.139.10 eq www
+ permit tcp any host 216.31.139.10 eq 5443
+ permit tcp any host 216.31.139.10 eq 1935
+ permit tcp any host 216.31.139.10 eq 8086
+ permit tcp any host 216.31.139.10 eq 8087
+ permit tcp any host 216.31.139.10 eq 8088
+ permit tcp host 54.69.61.164 host 216.31.139.10 eq 1935
+ permit tcp host 54.69.61.164 host 216.31.139.10 eq 5443
+ permit tcp any host 216.31.139.9 eq 22
+ permit tcp any host 216.31.139.9 eq 12002
+ permit udp any host 216.31.139.9 eq 12002
+ permit tcp any host 216.31.139.7 eq 8080
+ permit tcp any host 216.31.139.5 eq 8000
+ permit tcp any host 216.31.139.5 eq 6036
+ deny   ip any host 216.31.139.5
+ip access-list extended outbound8
+ deny   tcp host 192.168.2.21 any eq smtp
+ deny   tcp any host 192.168.2.21 eq smtp
+ deny   tcp host 192.168.2.21 any eq 443
+ deny   tcp any host 192.168.2.21 eq 443
+ permit ip any any
+!
+logging trap debugging
+logging facility local1
+logging source-interface GigabitEthernet0/0/0.1
+logging host 216.116.96.3
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 72.18.0.0 0.0.255.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 110 permit ip any host 64.239.185.8
+access-list 110 permit ip any host 64.239.185.9
+access-list 110 permit ip any host 64.239.185.5
+access-list 110 permit ip any host 64.239.188.8
+access-list 110 permit ip any host 64.239.188.9
+access-list 150 permit ip 192.168.2.0 0.0.0.255 192.168.254.0 0.0.0.255
+access-list 150 permit ip 192.168.3.0 0.0.0.255 192.168.254.0 0.0.0.255
+access-list 150 permit ip 192.168.4.0 0.0.0.255 192.168.254.0 0.0.0.255
+access-list 151 deny   ip 192.168.3.0 0.0.0.255 192.168.254.0 0.0.0.255
+access-list 151 deny   ip 192.168.254.0 0.0.0.255 192.168.3.0 0.0.0.255
+access-list 151 permit ip 192.168.2.0 0.0.0.255 any
+access-list 151 permit ip 192.168.3.0 0.0.0.255 any
+access-list 151 permit ip 192.168.4.0 0.0.0.255 any
+access-list 151 permit ip 192.168.254.0 0.0.0.255 any
+access-list 152 deny   ip 192.168.2.0 0.0.0.255 192.168.254.0 0.0.0.255
+access-list 152 deny   ip 192.168.3.0 0.0.0.255 192.168.254.0 0.0.0.255
+access-list 152 deny   ip 192.168.4.0 0.0.0.255 192.168.254.0 0.0.0.255
+access-list 152 deny   ip 192.168.254.0 0.0.0.255 192.168.254.0 0.0.0.255
+access-list 152 permit ip 192.168.2.0 0.0.0.255 any
+access-list 152 permit ip 192.168.3.0 0.0.0.255 any
+access-list 152 permit ip 192.168.4.0 0.0.0.255 any
+access-list 152 permit ip 192.168.254.0 0.0.0.255 any
+access-list 198 deny   ip any any log
+!
+route-map SOURCE-ROUTING permit 10
+ match ip address SOURCE_ROUTING
+ set ip next-hop 192.168.3.115
+!
+route-map nonat permit 10
+ match ip address 152
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+ !
+ !
+ !
+ !
+!
+banner motd ^CCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.138.162

@@ -0,0 +1,177 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+no platform punt-keepalive disable-kernel-core
+!
+hostname 211LACounty_1GB_13KRGN608308PT_526WLasTunasDr
+!
+boot-start-marker
+boot-end-marker
+!
+vrf definition Mgmt-intf
+ !
+ address-family ipv4
+ exit-address-family
+ !
+ address-family ipv6
+ exit-address-family
+!
+logging buffered 50000 informational
+logging persistent url flash:/syslog1 size 10485760 filesize 40000 immediate
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+no process cpu extended history
+no process cpu autoprofile hog
+clock timezone PST -8 0
+clock summer-time PST recurring
+ip source-route
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+track 1 ip sla 1 reachability
+ delay down 10 up 30
+!
+multilink bundle-name authenticated
+!
+archive
+ log config
+  logging enable
+  logging persistent auto
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+ mode none
+!
+ip ssh version 2
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_1GB
+ class BANDWIDTH
+  priority level 1
+ class class-default
+  police rate 1000000000  burst 500000  conform-action transmit  exceed-action drop 
+policy-map BANDWIDTH_30MB
+ class BANDWIDTH
+  priority level 1
+ class class-default
+  police rate 30000000  burst 500000  conform-action transmit  exceed-action drop 
+!
+interface GigabitEthernet0/0/0
+ description 211LACounty=13KRGN608308PT
+ no ip address
+ load-interval 30
+ no negotiation auto
+ service-policy output BANDWIDTH_1GB
+!
+interface GigabitEthernet0/0/0.1
+ encapsulation dot1Q 2619
+ ip address 216.31.138.162 255.255.255.252
+ ip access-group 125 in
+!
+interface GigabitEthernet0/0/1
+ description CustomerLAN
+ ip address 64.239.163.129 255.255.255.128
+ load-interval 30
+ negotiation auto
+ service-policy output BANDWIDTH_1GB
+!
+interface GigabitEthernet0/0/2
+ description FixedWireless_13.HTXX.000021.CIS_Failover
+ ip address 216.31.157.6 255.255.255.252
+ load-interval 30
+ speed 100
+ no negotiation auto
+ service-policy output BANDWIDTH_30MB
+!
+interface GigabitEthernet0/0/3
+ no ip address
+ negotiation auto
+ service-policy output BANDWIDTH_1GB
+!
+interface GigabitEthernet0
+ vrf forwarding Mgmt-intf
+ no ip address
+ negotiation auto
+!
+no ip http server
+no ip http secure-server
+ip route 0.0.0.0 0.0.0.0 216.31.138.161 track 1
+ip route 0.0.0.0 0.0.0.0 216.31.157.5 150 name FixedWireless_Failover
+!
+ip sla 1
+ icmp-echo 216.31.138.161 source-ip 216.31.138.162
+ frequency 30
+ timeout 30000
+ threshold 30000
+ip sla schedule 1 life forever start-time now
+ip sla logging traps
+logging esm config
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 100 remark SPAMBLOCK
+access-list 100 deny   tcp any any eq smtp
+access-list 100 deny   tcp any any eq smtp log
+access-list 100 permit ip any any
+access-list 125 deny   udp any any eq 25
+access-list 125 deny   tcp any any eq smtp
+access-list 125 permit ip any any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+banner motd ^CCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+ transport input all
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.138.174

@@ -0,0 +1,136 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 12.3
+no service pad
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname FlavorProducers_150MB_13KRGN586275PT_28350WitherspoonParkway.tierzero.net
+!
+boot-start-marker
+boot system flash disk2:c7200-is-mz.123-26.bin
+boot bootldr disk2:c7200-kboot-mz.123-26.bin
+boot-end-marker
+!
+logging buffered 20000 debugging
+no logging console
+!
+clock timezone PST -8
+clock summer-time PST recurring
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+aaa session-id common
+ip subnet-zero
+!
+ip cef
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+memory-size iomem 32
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+class-map match-all BANDWIDTH
+  match any 
+!
+policy-map BANDWIDTH_150MB
+  class BANDWIDTH
+   shape average 150000000
+  class class-default
+   fair-queue
+   random-detect dscp-based
+   random-detect ecn
+!
+interface GigabitEthernet0/1
+ description Flavor_Producers=13.KQGN.583955.PT
+ no ip address
+ ip flow ingress
+ load-interval 30
+ duplex full
+ speed 1000
+ media-type gbic
+ no negotiation auto
+ service-policy output BANDWIDTH_150MB
+!
+interface GigabitEthernet0/1.1
+ encapsulation dot1Q 2540
+ ip address 216.31.138.174 255.255.255.252
+ ip flow ingress
+!
+interface GigabitEthernet0/2
+ description CustomerLAN
+ ip address 208.179.3.33 255.255.255.224
+ ip flow ingress
+ load-interval 30
+ duplex auto
+ speed auto
+ media-type rj45
+ negotiation auto
+ service-policy output BANDWIDTH_150MB
+!
+interface GigabitEthernet0/3
+ no ip address
+ shutdown
+ duplex auto
+ speed auto
+ media-type rj45
+ negotiation auto
+!
+ip classless
+ip route 0.0.0.0 0.0.0.0 216.31.138.173
+ip flow-export source GigabitEthernet0/1.1
+ip flow-export version 5
+ip flow-export destination 216.116.96.71 2055
+no ip http server
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+gatekeeper
+ shutdown
+!
+banner motd ^CCCCCCCCCCCCCC
+*************************************************************        
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.138.2

@@ -0,0 +1,132 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+!
+hostname MarkBroumandInc_50MB_13KQGN649817PT_6281/2SHillSt
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 50000 informational
+logging persistent url flash:/syslog1 size 10485760 filesize 40000 immediate
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2851 sn FTX1246AJ7M
+archive
+ log config
+  logging enable
+  logging persistent auto
+!
+redundancy
+!
+ip ssh version 2
+! 
+interface GigabitEthernet0/0
+ description MarkBroumandInc=13KQGN649817PT
+ no ip address
+ rate-limit input 50000000 9375000 18750000 conform-action transmit exceed-action drop
+ rate-limit output 50000000 9375000 18750000 conform-action transmit exceed-action drop
+ load-interval 30
+ duplex full
+ speed 100
+!
+interface GigabitEthernet0/0.1
+ encapsulation dot1Q 2410
+ ip address 216.31.138.2 255.255.255.252
+ rate-limit input 50000000 9375000 18750000 conform-action transmit exceed-action drop
+ rate-limit output 50000000 9375000 18750000 conform-action transmit exceed-action drop
+!
+interface GigabitEthernet0/1
+ description CustomerLAN
+ ip address 64.239.153.241 255.255.255.248
+ rate-limit input 50000000 9375000 18750000 conform-action transmit exceed-action drop
+ rate-limit output 50000000 9375000 18750000 conform-action transmit exceed-action drop
+ duplex auto
+ speed auto
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.138.1
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.138.214

@@ -0,0 +1,166 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.2
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+no platform punt-keepalive disable-kernel-core
+!
+hostname WaltonIsaacson_1GB_13KRGN615716PT_3630EasthamDr
+!
+boot-start-marker
+boot-end-marker
+!
+vrf definition Mgmt-intf
+ !
+ address-family ipv4
+ exit-address-family
+ !
+ address-family ipv6
+ exit-address-family
+!
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+ip name-server 64.239.184.125
+!
+ipv6 multicast rpf use-bgp
+ipv6 multicast vrf Mgmt-intf rpf use-bgp
+!
+multilink bundle-name authenticated
+!
+license boot level adventerprise
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+ mode none
+!
+ip tftp source-interface GigabitEthernet0
+ip ssh version 2
+!
+track 1 ip sla 1 reachability
+ delay down 180
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_1GB
+ class BANDWIDTH
+  priority level 1
+ class class-default
+  police rate 1000000000  burst 500000  conform-action transmit  exceed-action drop 
+!
+interface GigabitEthernet0/0/0
+ description WaltonIsaacson=13KRGN578581PT
+ no ip address
+ ip flow ingress
+ load-interval 30
+ no negotiation auto
+ service-policy output BANDWIDTH_1GB
+!
+interface GigabitEthernet0/0/0.1
+ encapsulation dot1Q 2450
+ ip address 216.31.138.214 255.255.255.252
+ ip flow ingress
+!
+interface GigabitEthernet0/0/1
+ description CustomerLAN
+ ip address 64.239.129.161 255.255.255.240
+ ip flow ingress
+ ip tcp adjust-mss 1376
+ ip policy route-map FO
+ load-interval 30
+ speed 1000
+ no negotiation auto
+ service-policy output BANDWIDTH_1GB
+!
+interface GigabitEthernet0/0/2
+ no ip address
+ shutdown
+ speed 1000
+ no negotiation auto
+!
+interface GigabitEthernet0/0/3
+ no ip address
+ shutdown
+ negotiation auto
+!
+interface GigabitEthernet0
+ vrf forwarding Mgmt-intf
+ no ip address
+ shutdown
+ negotiation auto
+!
+ip forward-protocol nd
+!
+no ip http server
+no ip http secure-server
+ip route 0.0.0.0 0.0.0.0 216.31.138.213
+!
+access-list 10 permit 64.239.129.160 0.0.0.15
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+route-map FO permit 10
+ match ip address 10
+ set ip next-hop 172.16.10.25
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+banner motd ^CCCCCCCCCCCCCCCC
+*************************************************************
+          
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.138.238

@@ -0,0 +1,238 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.2
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+no platform punt-keepalive disable-kernel-core
+!
+hostname AllanCompany_100MB_13KRGN613764PT_6019S.ManhattanPl
+!
+boot-start-marker
+boot-end-marker
+!
+vrf definition Mgmt-intf
+ !
+ address-family ipv4
+ exit-address-family
+ !
+ address-family ipv6
+ exit-address-family
+!
+logging buffered 50000 informational
+logging persistent url flash:/syslog1 size 10485760 filesize 40000 immediate
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+ip name-server 64.239.184.125
+ip dhcp excluded-address 10.105.0.0 10.105.5.0
+ip dhcp excluded-address 10.105.5.101 10.105.255.255
+ip dhcp excluded-address 10.105.0.1 10.105.5.1
+!
+ip dhcp pool DEFAULT
+ network 10.105.0.0 255.255.0.0
+ domain-name basicfibers.com
+ default-router 10.105.1.1 
+ dns-server 10.100.15.2 10.100.15.3 216.116.96.2 8.8.8.8 
+!
+ipv6 multicast rpf use-bgp
+ipv6 multicast vrf Mgmt-intf rpf use-bgp
+!
+multilink bundle-name authenticated
+!
+license boot level adventerprise
+archive
+ log config
+  logging enable
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+ mode none
+!
+ip tftp source-interface GigabitEthernet0
+!
+track 1 ip sla 1 reachability
+ delay down 180
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_100MB
+ class BANDWIDTH
+  priority level 1
+ class class-default
+  police rate 100000000  burst 500000  conform-action transmit  exceed-action drop 
+!
+interface Tunnel21
+ description 6019SManhattanPlace_To_14620_Joanbridge_Baldwin_Park
+ bandwidth 100000
+ ip address 172.16.10.90 255.255.255.252
+ keepalive 10 5
+ tunnel source GigabitEthernet0/0/0.1
+ tunnel destination 208.179.32.94
+!
+interface Tunnel30
+ description 6019SManhattanPlace_Sierra_Failover_To_JB_FrontierOffnet
+ bandwidth 100000
+ ip address 172.16.10.126 255.255.255.252
+ keepalive 25 50
+ tunnel source GigabitEthernet0/0/2
+ tunnel destination 47.181.223.134
+!
+interface Tunnel122
+ description ALLANCompany NBS Firewall Unit
+ bandwidth 100000
+ ip address 10.255.255.15 255.255.255.254
+ keepalive 10 5
+ tunnel source GigabitEthernet0/0/0.1
+ tunnel destination 208.179.23.10
+!
+interface GigabitEthernet0/0/0
+ description AllanCompany=13KRGN613764PT
+ no ip address
+ load-interval 30
+ speed 1000
+ no negotiation auto
+ service-policy output BANDWIDTH_100MB
+!
+interface GigabitEthernet0/0/0.1
+ encapsulation dot1Q 2559
+ ip address 216.31.138.238 255.255.255.252
+ ip nat outside
+ ip flow ingress
+!
+interface GigabitEthernet0/0/1
+ description CustomerLAN
+ ip address 216.31.143.177 255.255.255.240 secondary
+ ip address 10.105.1.1 255.255.0.0
+ ip nat inside
+ ip flow ingress
+ negotiation auto
+ service-policy output BANDWIDTH_100MB
+!
+interface GigabitEthernet0/0/2
+ description Sierra_Failover
+ ip address 166.140.23.107 255.255.255.0
+ ip nat outside
+ negotiation auto
+ service-policy output BANDWIDTH_100MB
+!
+interface GigabitEthernet0/0/3
+ no ip address
+ shutdown
+ negotiation auto
+!
+interface GigabitEthernet0
+ vrf forwarding Mgmt-intf
+ no ip address
+ shutdown
+ negotiation auto
+!
+ip nat inside source route-map FIBER interface GigabitEthernet0/0/0.1 overload
+ip nat inside source route-map Sierra_Circuit interface GigabitEthernet0/0/2 overload
+ip nat inside source static tcp 10.105.2.2 3306 216.31.143.178 3306 extendable
+ip nat inside source static tcp 10.105.2.2 4001 216.31.143.178 4001 extendable
+ip nat inside source static tcp 10.105.2.2 4002 216.31.143.178 4002 extendable
+ip nat inside source static tcp 10.105.2.1 5550 216.31.143.178 5550 extendable
+ip nat inside source static tcp 10.105.9.100 62000 216.31.143.178 62000 extendable
+ip nat inside source static tcp 10.105.9.100 62200 216.31.143.178 62200 extendable
+ip nat inside source static tcp 10.105.2.3 3306 216.31.143.179 3306 extendable
+ip forward-protocol nd
+!
+no ip http server
+no ip http secure-server
+ip route 0.0.0.0 0.0.0.0 216.31.138.237 track 1
+ip route 0.0.0.0 0.0.0.0 166.140.23.1 250 name Sierra_Failover
+ip route 10.100.0.0 255.255.0.0 Tunnel21
+ip route 10.100.0.0 255.255.0.0 Tunnel30 250 name JB_FrontierOffnet
+ip route 208.179.23.10 255.255.255.255 216.31.138.237
+!
+ip access-list extended NAT
+ permit ip 10.105.0.0 0.0.255.255 any
+ deny   ip any any
+!
+ip sla 1
+ icmp-echo 216.31.138.237 source-ip 216.31.138.238
+ timeout 30000
+ threshold 30000
+ip sla schedule 1 life forever start-time now
+ip sla 2
+ icmp-echo 216.31.138.237
+ frequency 30
+ timeout 30000
+ threshold 30000
+ history enhanced interval 60 buckets 100
+ip sla schedule 2 life forever start-time now
+ip sla reaction-configuration 2 react rtt threshold-value 100 60 threshold-type immediate action-type trapOnly
+ip sla logging traps
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+route-map FIBER permit 10
+ match ip address NAT
+ match interface GigabitEthernet0/0/0.1
+!
+route-map Sierra_Circuit permit 10
+ match ip address NAT
+ match interface GigabitEthernet0/0/2
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+banner motd ^CCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.138.246

@@ -0,0 +1,231 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname AllanCompany_10MB_13KQGN617717PT_8701SanFernandoRd
+!
+boot-start-marker
+boot system flash c2800nm-advipservicesk9-mz.151-4.M10.bin
+boot system flash disk2:c7200-is-mz.123-26.bin
+boot-end-marker
+!
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+ip dhcp excluded-address 10.118.5.26 10.118.255.255
+ip dhcp excluded-address 10.118.0.1 10.118.5.1
+!
+ip dhcp pool default
+ network 10.118.0.0 255.255.0.0
+ default-router 10.118.1.1 
+ dns-server 10.100.15.2 10.100.15.3 216.116.96.2 8.8.8.8 
+ lease 0 12
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+ip name-server 64.239.184.125
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2811 sn FCZ102870VF
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+track 1 ip sla 1 reachability
+ delay down 180
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_10MB
+ class BANDWIDTH
+  shape average 10000000
+  queue-limit 62500 bytes
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface Tunnel26
+ description 8701SanFernandoRd_To_14620_Joanbridge_Baldwin_Park
+ bandwidth 10000
+ ip address 172.16.10.110 255.255.255.252
+ keepalive 10 3
+ tunnel source FastEthernet0/0.1
+ tunnel destination 208.179.32.94
+!
+interface Tunnel32
+ description 8701SanFernandoRd_Sierra_Failover_To_JB_FrontierOffnet
+ bandwidth 10000
+ ip address 172.16.10.138 255.255.255.252
+ keepalive 25 50
+ tunnel source FastEthernet1/0
+ tunnel destination 47.181.223.134
+!
+interface Tunnel131
+ description ALLANCompany NBS Firewall Unit
+ bandwidth 10000
+ ip address 10.255.255.33 255.255.255.254
+ keepalive 10 5
+ tunnel source FastEthernet0/0.1
+ tunnel destination 208.179.23.10
+!
+interface FastEthernet0/0
+ description AllanCompany=13KQGN617717PT
+ no ip address
+ ip flow ingress
+ ip nat outside
+ ip virtual-reassembly in
+ load-interval 30
+ duplex full
+ speed 100
+ service-policy output BANDWIDTH_10MB
+!
+interface FastEthernet0/0.1
+ encapsulation dot1Q 2561
+ ip address 216.31.138.246 255.255.255.252
+ ip nat outside
+ ip virtual-reassembly in
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 216.31.179.233 255.255.255.248 secondary
+ ip address 10.118.1.1 255.255.0.0
+ ip flow ingress
+ ip nat inside
+ ip virtual-reassembly in
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_10MB
+!
+interface FastEthernet1/0
+ description Sierra_Failover
+ ip address 166.253.33.61 255.255.255.0
+ ip nat outside
+ ip virtual-reassembly in
+ duplex full
+ speed 100
+ service-policy output BANDWIDTH_10MB
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip flow-export source FastEthernet0/0.1
+ip flow-export version 5
+ip flow-export destination 216.116.96.71 2055
+!
+ip nat inside source route-map FIBER interface FastEthernet0/0.1 overload
+ip nat inside source route-map Sierra_Circuit interface FastEthernet1/0 overload
+ip nat inside source static 10.118.2.1 216.31.179.234
+ip nat inside source static 10.118.9.51 216.31.179.235
+ip nat inside source static 10.118.9.52 216.31.179.236
+ip nat inside source static 10.118.9.60 216.31.179.237
+ip nat inside source static 10.118.9.61 216.31.179.238
+ip route 0.0.0.0 0.0.0.0 216.31.138.245 track 1
+ip route 0.0.0.0 0.0.0.0 166.253.33.1 250 name Sierra_Failover
+ip route 10.100.0.0 255.255.0.0 Tunnel26
+ip route 10.100.0.0 255.255.0.0 Tunnel32 250 name JB_FrontierOffnet
+ip route 208.179.23.10 255.255.255.255 216.31.138.245
+!
+ip access-list extended NAT
+ permit ip 10.118.0.0 0.0.255.255 any
+ deny   ip any any
+!
+ip sla 1
+ icmp-echo 216.31.138.245 source-ip 216.31.138.246
+ timeout 30000
+ threshold 30000
+ip sla schedule 1 life forever start-time now
+ip sla 2
+ icmp-echo 216.31.138.245
+ frequency 30
+ timeout 30000
+ threshold 30000
+ip sla schedule 2 life forever start-time now
+ip sla reaction-configuration 2 react rtt threshold-value 100 60 threshold-type immediate action-type trapOnly
+ip sla logging traps
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+route-map FIBER permit 10
+ match ip address NAT
+ match interface FastEthernet0/0.1
+!
+route-map Sierra_Circuit permit 10
+ match ip address NAT
+ match interface FastEthernet1/0
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+snmp-server enable traps ipsla
+snmp-server host 216.116.96.71 version 2c tierzero 
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.138.26

@@ -0,0 +1,334 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+service sequence-numbers
+!
+hostname AllanCompany_10MB_13.KQGN.617701.PT_2540S.MainSt
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 20000
+logging persistent url flash:/syslog1 size 10485760 filesize 40000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+no process cpu autoprofile hog
+memory-size iomem 10
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+crypto pki token default removal timeout 0
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip dhcp pool HPBX
+ network 10.10.10.0 255.255.255.0
+ domain-name voip.tierzero.net
+ default-router 10.10.10.1 
+ dns-server 216.116.96.2 216.116.96.3 
+ option 66 ascii "http://config:uCdh8qBc3Hb@ndp.tierzero.net/cfg/"
+!
+ip dhcp pool DEFAULT
+ network 10.101.0.0 255.255.224.0
+ domain-name allanco.local
+ default-router 10.101.1.1 
+ dns-server 10.100.15.2 10.100.15.3 216.116.96.2 8.8.8.8 
+ lease 0 8
+!
+ip dhcp pool computer1
+ host 10.101.13.4 255.255.224.0
+ hardware-address 3417.ebbc.8be9
+ default-router 10.101.1.1 
+ dns-server 10.100.15.2 10.100.15.3 216.116.96.2 8.8.8.8 
+!
+ip dhcp pool computer2
+ host 10.101.13.7 255.255.224.0
+ hardware-address 90b1.1c63.4cc4
+ default-router 10.101.1.1 
+ dns-server 10.100.15.2 10.100.15.3 216.116.96.2 8.8.8.8 
+!
+ip dhcp pool Camera
+ host 10.101.0.59 255.255.224.0
+ hardware-address 70b3.d526.1aff
+ default-router 10.101.1.1 
+ dns-server 10.100.15.2 10.100.15.3 216.116.96.2 8.8.8.8 
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+license udi pid CISCO2851 sn FTX1448AKC2
+archive
+ log config
+  logging enable
+  logging persistent auto
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+ip ssh version 2
+!
+track 1 ip sla 1 reachability
+ delay down 180
+!
+class-map match-any VOIP
+ match access-group 110
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map VOIP-POLICE
+ class VOIP
+  priority percent 33
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+policy-map BANDWIDTH_10MB
+ class BANDWIDTH
+  shape average 10000000
+  queue-limit 62500 bytes
+  service-policy VOIP-POLICE
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface Tunnel4
+ description description 2540_S_Main_Street_Santa_Ana_CradlePoint_to_JB_FrontierOffnet
+ ip address 172.16.10.26 255.255.255.252
+ keepalive 25 50
+ tunnel source FastEthernet1/0
+ tunnel destination 47.181.223.134
+!
+interface Tunnel5
+ description 2540_S_Main_Street_Santa_Ana_Location_To__14620_Joanbridge_Baldwin_Park
+ ip address 172.16.10.30 255.255.255.252
+ keepalive 25 50
+ tunnel source GigabitEthernet0/0.1
+ tunnel destination 208.179.32.94
+!
+interface Tunnel128
+ description ALLANCompany NBS Firewall Unit
+ bandwidth 10000
+ ip address 10.255.255.27 255.255.255.254
+ keepalive 10 5
+ tunnel source GigabitEthernet0/0.1
+ tunnel destination 208.179.23.10
+!
+interface GigabitEthernet0/0
+ description AllanCompany=13KQGN617722PT
+ no ip address
+ ip flow ingress
+ ip nat outside
+ ip virtual-reassembly in
+ load-interval 30
+ duplex full
+ speed 100
+ no cdp enable
+ service-policy output BANDWIDTH_10MB
+!
+interface GigabitEthernet0/0.1
+ encapsulation dot1Q 2564
+ ip address 216.31.138.26 255.255.255.252
+ ip flow ingress
+ ip nat outside
+ ip virtual-reassembly in
+ no cdp enable
+!
+interface GigabitEthernet0/1
+ ip address 64.239.145.129 255.255.255.248 secondary
+ ip address 208.179.211.121 255.255.255.248 secondary
+ ip address 208.179.41.33 255.255.255.248
+ ip flow ingress
+ ip virtual-reassembly in
+ duplex auto
+ speed auto
+ no cdp enable
+ service-policy output BANDWIDTH_10MB
+!
+interface GigabitEthernet0/1.1
+ description CustomerLAN
+ encapsulation dot1Q 1 native
+ ip address 10.101.1.1 255.255.224.0
+ ip access-group 194 in
+ ip access-group 194 out
+ ip flow ingress
+ ip nat inside
+ ip virtual-reassembly in
+ no cdp enable
+!
+interface GigabitEthernet0/1.2
+ encapsulation dot1Q 2
+ ip address 10.101.33.1 255.255.224.0
+ ip flow ingress
+ ip nat inside
+ ip virtual-reassembly in
+ no cdp enable
+!
+interface GigabitEthernet0/1.3
+ description HPBX
+ encapsulation dot1Q 1159
+ ip address 10.10.10.1 255.255.255.0
+ ip flow ingress
+ ip nat inside
+ ip virtual-reassembly in
+ no cdp enable
+!
+interface FastEthernet1/0
+ description CradlePoint_Failover
+ ip address 166.253.33.69 255.255.255.0
+ ip flow ingress
+ ip nat outside
+ ip virtual-reassembly in
+ duplex full
+ speed 100
+ no cdp enable
+ service-policy output BANDWIDTH_10MB
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip flow-export source GigabitEthernet0/0
+ip flow-export version 5
+ip flow-export destination 216.116.96.71 2055
+!
+ip nat translation timeout 300
+ip nat translation tcp-timeout 300
+ip nat translation udp-timeout 90
+no ip nat service sip udp port 5060
+ip nat inside source route-map CradlePoint_Circuit interface FastEthernet1/0 overload
+ip nat inside source route-map EOC_Circuit interface GigabitEthernet0/0 overload
+ip nat inside source route-map FIBER interface GigabitEthernet0/0.1 overload
+ip nat inside source static tcp 10.10.10.253 22 64.239.145.129 22 extendable
+ip nat inside source static tcp 10.10.10.253 23 64.239.145.129 23 extendable
+ip nat inside source static tcp 10.10.10.254 161 64.239.145.129 161 extendable
+ip nat inside source static tcp 10.10.10.254 22 64.239.145.130 22 extendable
+ip nat inside source static tcp 10.10.10.254 23 64.239.145.130 23 extendable
+ip nat inside source static tcp 10.10.10.254 161 64.239.145.130 161 extendable
+ip nat inside source static tcp 10.101.0.59 80 64.239.145.131 80 extendable
+ip nat inside source static tcp 10.101.0.59 9000 64.239.145.131 9000 extendable
+ip nat inside source static tcp 10.101.2.5 80 208.179.211.122 8000 extendable
+ip nat inside source static tcp 10.101.5.61 25 216.31.144.198 25 extendable
+ip nat inside source static tcp 10.101.5.61 29 216.31.144.198 29 extendable
+ip nat inside source static tcp 10.101.5.61 30 216.31.144.198 30 extendable
+ip nat inside source static tcp 10.101.5.61 31 216.31.144.198 31 extendable
+ip nat inside source static tcp 10.101.5.7 125 216.31.144.198 125 extendable
+ip nat inside source static udp 10.10.10.253 161 64.239.145.129 161 extendable
+ip nat inside source static udp 10.10.10.254 161 64.239.145.130 161 extendable
+ip route 0.0.0.0 0.0.0.0 216.31.138.25 track 1
+ip route 0.0.0.0 0.0.0.0 166.253.33.70 250 name CradlePoint_Failover
+ip route 10.100.0.0 255.255.0.0 Tunnel5
+ip route 10.100.0.0 255.255.0.0 Tunnel4 250 name JB_FrontierOffnet
+!
+ip access-list extended NAT
+ permit ip 10.10.10.0 0.0.0.255 any
+ permit ip 10.101.0.0 0.0.31.255 any
+ permit ip 10.101.32.0 0.0.31.255 any
+ deny   ip any any
+!
+ip sla 1
+ icmp-echo 216.31.138.25 source-ip 216.31.138.26
+ timeout 30000
+ threshold 30000
+ip sla schedule 1 life forever start-time now
+ip sla 2
+ icmp-echo 216.31.138.25
+ frequency 30
+ timeout 30000
+ threshold 30000
+ history enhanced interval 60 buckets 100
+ip sla schedule 2 life forever start-time now
+ip sla reaction-configuration 2 react rtt threshold-value 100 60 threshold-type immediate action-type trapOnly
+ip sla logging traps
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 110 permit ip any host 64.239.185.8
+access-list 110 permit ip any host 64.239.185.9
+access-list 110 permit ip any host 64.239.185.5
+access-list 110 permit ip any host 64.239.188.8
+access-list 110 permit ip any host 64.239.188.9
+access-list 197 permit icmp host 10.10.10.10 host 20.20.20.20
+access-list 198 permit icmp host 10.10.10.10 host 20.20.20.20
+access-list 199 permit icmp host 10.10.10.10 host 20.20.20.20
+no cdp run
+!
+route-map CradlePoint_Circuit permit 10
+ match ip address NAT
+ match interface FastEthernet1/0
+!
+route-map EOC_Circuit permit 10
+ match ip address NAT
+ match interface GigabitEthernet0/0
+!
+route-map FIBER permit 10
+ match ip address NAT
+ match interface GigabitEthernet0/0.1
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+snmp-server enable traps ipsla
+snmp-server host 216.116.96.71 version 2c tierzero 
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.138.42

@@ -0,0 +1,273 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.4
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+no platform punt-keepalive disable-kernel-core
+!
+hostname AllanCompany_100MB_19KRGN537292PT_6733ConsolidatedWay
+!
+boot-start-marker
+boot-end-marker
+!
+vrf definition Mgmt-intf
+ !
+ address-family ipv4
+ exit-address-family
+ !
+ address-family ipv6
+ exit-address-family
+!
+logging buffered 50000 informational
+logging persistent url flash:/syslog1 size 10485760 filesize 40000 immediate
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+
+
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+ip name-server 64.239.184.125
+
+ip dhcp excluded-address 10.109.5.255 10.109.255.254
+ip dhcp excluded-address 10.109.0.1 10.109.5.1
+ip dhcp ping timeout 200
+!
+ip dhcp pool default
+ network 10.109.0.0 255.255.0.0
+ default-router 10.109.1.1 
+ domain-name allanco.local
+ dns-server 10.100.15.2 10.100.15.3 216.116.96.2 8.8.8.8 
+ lease 0 4
+!
+ip dhcp pool HPBX
+ network 10.10.10.0 255.255.255.0
+ domain-name voip.tierzero.net
+ default-router 10.10.10.1 
+ dns-server 216.116.96.2 216.116.96.3 
+ option 66 ascii "http://config:uCdh8qBc3Hb@ndp.tierzero.net/cfg/"
+!
+subscriber templating
+!
+multilink bundle-name authenticated
+!
+license udi pid ASR1001 sn JAE19020223
+archive
+ log config
+  logging enable
+spanning-tree extend system-id
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+ mode none
+!
+track 1 ip sla 1 reachability
+ delay down 180
+!
+ip tftp source-interface GigabitEthernet0
+ip ssh version 2
+!
+class-map match-any VOIP
+ match access-group 110
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_100MB
+ class VOIP
+  priority level 1
+ class class-default
+  police rate 100000000  burst 500000  conform-action transmit  exceed-action drop 
+policy-map VOIP-POLICE
+ class VOIP
+  priority percent 33
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface Tunnel14
+ description 6733ConsolidatedWay_CradlePoint_to JB_FrontierOffnet
+ ip address 172.16.10.66 255.255.255.252
+ keepalive 25 50
+ tunnel source GigabitEthernet0/0/3
+ tunnel destination 47.181.223.134
+!
+interface Tunnel25
+ description 6733ConsolidatedWay_To_14620_Joanbridge_Baldwin_Park
+ bandwidth 100000
+ ip address 172.16.10.106 255.255.255.252
+ keepalive 10 5
+ tunnel source GigabitEthernet0/0/0.1
+ tunnel destination 208.179.32.94
+!
+interface Tunnel126
+ description ALLANCompany NBS Firewall Unit
+ bandwidth 100000
+ ip address 10.255.255.23 255.255.255.254
+ keepalive 10 5
+ tunnel source GigabitEthernet0/0/0.1
+ tunnel destination 208.179.23.10
+!
+interface GigabitEthernet0/0/0
+ description AllanCompany=19KRGN537292PT
+ no ip address
+ load-interval 30
+ negotiation auto
+ service-policy output BANDWIDTH_100MB
+!
+interface GigabitEthernet0/0/0.1
+ encapsulation dot1Q 2565
+ ip address 216.31.138.42 255.255.255.252
+ ip nat outside
+!
+interface GigabitEthernet0/0/1
+ description CustomerLAN
+ ip address 208.179.23.153 255.255.255.252 secondary
+ ip address 10.109.1.1 255.255.0.0
+ ip nat inside
+ negotiation auto
+ service-policy output BANDWIDTH_100MB
+!
+interface GigabitEthernet0/0/2
+ description HPBX
+ no ip address
+ negotiation auto
+ service-policy output BANDWIDTH_100MB
+!
+interface GigabitEthernet0/0/2.1
+ description HPBX
+ encapsulation dot1Q 1159
+ ip address 10.10.10.1 255.255.255.0
+ ip nat inside
+!
+interface GigabitEthernet0/0/3
+ description Peplink_Failover
+ ip address 63.46.214.114 255.255.255.252
+ ip nat outside
+ speed 100
+ no negotiation auto
+ service-policy output BANDWIDTH_100MB
+!
+interface GigabitEthernet0
+ vrf forwarding Mgmt-intf
+ no ip address
+ shutdown
+ negotiation auto
+!
+ip nat translation timeout 300
+ip nat translation tcp-timeout 300
+ip nat translation udp-timeout 90
+no ip nat service sip udp port 5060
+ip nat inside source route-map CradlePoint_Circuit interface GigabitEthernet0/0/3 overload
+ip nat inside source route-map FIBER interface GigabitEthernet0/0/0.1 overload
+ip nat inside source static 10.109.9.51 208.179.19.154 extendable
+ip forward-protocol nd
+!
+no ip http server
+no ip http secure-server
+ip route 0.0.0.0 0.0.0.0 216.31.138.41 track 1
+ip route 0.0.0.0 0.0.0.0 63.46.214.113 250 name Peplink_Failover
+ip route 10.100.0.0 255.255.0.0 Tunnel25
+ip route 10.100.0.0 255.255.0.0 Tunnel14 250 name JB_FrontierOffnet
+ip route 208.179.23.10 255.255.255.255 216.31.138.41
+!
+ip access-list extended NAT
+ permit ip 10.10.10.0 0.0.0.255 any
+ permit ip 10.109.0.0 0.0.255.255 any
+ deny   ip any any
+!
+ip sla 1
+ icmp-echo 216.31.138.41 source-ip 216.31.138.42
+ timeout 60000
+ threshold 60000
+ip sla schedule 1 life forever start-time now
+ip sla 2
+ icmp-echo 216.31.138.237
+ frequency 30
+ timeout 30000
+ threshold 30000
+ history enhanced interval 60 buckets 100
+ip sla schedule 2 life forever start-time now
+ip sla reaction-configuration 2 react rtt threshold-value 100 60 threshold-type immediate action-type trapOnly
+ip sla logging traps
+access-list 25 permit 23.241.22.188
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 110 permit ip any host 64.239.185.8
+access-list 110 permit ip any host 64.239.185.9
+access-list 110 permit ip any host 64.239.185.5
+access-list 110 permit ip any host 64.239.188.8
+access-list 110 permit ip any host 64.239.188.9
+!
+route-map CradlePoint_Circuit permit 10
+ match ip address NAT
+ match interface GigabitEthernet0/0/3
+!
+route-map FIBER permit 10
+ match ip address NAT
+ match interface GigabitEthernet0/0/0.1
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+ !
+ !
+ !
+ !
+!
+banner motd ^CCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.146.11

@@ -0,0 +1,169 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.2
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+no platform punt-keepalive disable-kernel-core
+!
+hostname LACountyMetroTransportationAuthority_Colo02.818W7thST.6FL.SW1.Eth1/4_1GB_818W7thStSTE500
+!
+boot-start-marker
+boot-end-marker
+!
+vrf definition Mgmt-intf
+ !
+ address-family ipv4
+ exit-address-family
+ !
+ address-family ipv6
+ exit-address-family
+!
+logging buffered 50000 informational
+logging persistent url flash:/syslog1 size 10485760 filesize 40000 immediate
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+ipv6 multicast rpf use-bgp
+!
+multilink bundle-name authenticated
+!
+license boot level ipbase
+archive
+ log config
+  logging enable
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+ mode none
+!
+ip tftp source-interface GigabitEthernet0
+ip ssh version 2
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_1GB
+ class BANDWIDTH
+  police rate 1000000000  burst 10000000  conform-action transmit  exceed-action drop 
+ class class-default
+  police rate 1000000000  burst 10000000  conform-action transmit  exceed-action drop  violate-action drop 
+!
+interface GigabitEthernet0/0/0
+ description LACountyMetroTransportationAuthority==Colo02.818W7thST.6FL.SW1.Eth1/4
+ ip address 216.31.146.11 255.255.255.254
+ load-interval 30
+ negotiation auto
+ service-policy input BANDWIDTH_1GB
+ service-policy output BANDWIDTH_1GB
+!
+interface GigabitEthernet0/0/1
+ no ip address
+ negotiation auto
+ service instance 1 ethernet
+  encapsulation untagged
+  bridge-domain 1
+ !
+!
+interface GigabitEthernet0/0/2
+ no ip address
+ negotiation auto
+ service instance 1 ethernet
+  encapsulation untagged
+  bridge-domain 1
+ !
+!
+interface GigabitEthernet0/0/3
+ no ip address
+ negotiation auto
+ service instance 1 ethernet
+  encapsulation untagged
+  bridge-domain 1
+ !
+!
+interface GigabitEthernet0
+ vrf forwarding Mgmt-intf
+ no ip address
+ shutdown
+ negotiation auto
+!
+interface BDI1
+ ip address 64.239.128.1 255.255.255.248
+ service-policy input BANDWIDTH_1GB
+ service-policy output BANDWIDTH_1GB
+!
+ip forward-protocol nd
+!
+no ip http server
+no ip http secure-server
+ip route 0.0.0.0 0.0.0.0 216.31.146.10
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 110 permit ip any host 64.239.185.8
+access-list 110 permit ip any host 64.239.185.9
+access-list 110 permit ip any host 64.239.185.5
+access-list 110 permit ip any host 64.239.188.8
+access-list 110 permit ip any host 64.239.188.9
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+banner motd ^CCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.146.9

@@ -0,0 +1,161 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+No l4r_shim subsystem is included in this platform.
+
+version 15.2
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+no platform punt-keepalive disable-kernel-core
+!
+hostname JamesGParkerInsuranceAssociates_Colo02.818W7thST.6FL.SW1.Eth1/3_500MB_818W7thStSTE720
+!
+boot-start-marker
+boot-end-marker
+!
+vrf definition Mgmt-intf
+ !
+ address-family ipv4
+ exit-address-family
+ !
+ address-family ipv6
+ exit-address-family
+!
+logging buffered 50000 informational
+logging persistent url flash:/syslog1 size 10485760 filesize 40000 immediate
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+ip dhcp pool DHCP_LAN
+ network 64.239.136.192 255.255.255.252
+ default-router 64.239.136.193 
+ dns-server 8.8.8.8 8.8.4.4 216.116.96.2 216.116.96.3 
+!
+ipv6 multicast rpf use-bgp
+!
+multilink bundle-name authenticated
+!
+license boot level ipbase
+archive
+ log config
+  logging enable
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+ mode none
+!
+ip tftp source-interface GigabitEthernet0
+ip ssh version 2
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_500MB
+ class BANDWIDTH
+  police rate 500000000  burst 10000000  conform-action transmit  exceed-action drop 
+ class class-default
+  police rate 500000000  burst 10000000  conform-action transmit  exceed-action drop  violate-action drop 
+!
+interface GigabitEthernet0/0/0
+ description JamesGParkerInsuranceAssociates=Colo02.818W7thST.6FL.SW1.Eth1/3
+ ip address 216.31.146.9 255.255.255.254
+ load-interval 30
+ negotiation auto
+ service-policy input BANDWIDTH_500MB
+ service-policy output BANDWIDTH_500MB
+!
+interface GigabitEthernet0/0/1
+ description CustomerLAN
+ ip address 64.239.136.193 255.255.255.252
+ load-interval 30
+ speed 1000
+ no negotiation auto
+ service-policy input BANDWIDTH_500MB
+ service-policy output BANDWIDTH_500MB
+!
+interface GigabitEthernet0/0/2
+ no ip address
+ shutdown
+ negotiation auto
+!
+interface GigabitEthernet0/0/3
+ no ip address
+ shutdown
+ negotiation auto
+!
+interface GigabitEthernet0
+ vrf forwarding Mgmt-intf
+ no ip address
+ shutdown
+ negotiation auto
+!
+ip forward-protocol nd
+!
+no ip http server
+no ip http secure-server
+ip route 0.0.0.0 0.0.0.0 216.31.146.8
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+banner motd ^CCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.152.186

@@ -0,0 +1,106 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 12.3
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname AerojetRocketdyne_20MB_13.HTXX.000147.CIS_4454SoquelCanyonRd
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 20000 debugging
+no logging console
+!
+clock timezone PST -8
+clock summer-time PST recurring
+no network-clock-participate slot 1 
+no network-clock-participate wic 0 
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+aaa session-id common
+ip subnet-zero
+ip cef
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+class-map match-all BANDWIDTH
+  match any 
+!
+policy-map BANDWIDTH_20MB
+  class BANDWIDTH
+   shape average 20000000
+  class class-default
+   fair-queue
+   random-detect dscp-based
+   random-detect ecn
+!
+interface FastEthernet0/0
+ description AerojetRocketdyne=13.HTXX.000147.CIS
+ ip address 216.31.152.186 255.255.255.252
+ load-interval 30
+ speed 100
+ full-duplex
+ service-policy output BANDWIDTH_20MB
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.142.1 255.255.255.224
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_20MB
+!
+no ip http server
+ip classless
+ip route 0.0.0.0 0.0.0.0 216.31.152.185
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+banner motd ^CCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.152.198

@@ -0,0 +1,205 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.3
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+service sequence-numbers
+no platform punt-keepalive disable-kernel-core
+!
+hostname AllanCompany_100MB_62.L1XX.000727.TWCC_5129BleeckerSt
+!
+boot-start-marker
+boot-end-marker
+!
+vrf definition Mgmt-intf
+ !
+ address-family ipv4
+ exit-address-family
+ !
+ address-family ipv6
+ exit-address-family
+!
+logging buffered 20000
+logging persistent url flash:/syslog1 size 10485760 filesize 40000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+
+
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+ip dhcp pool HPBX
+ network 10.10.10.0 255.255.255.0
+ default-router 10.10.10.1 
+ dns-server 216.116.96.2 216.116.96.3 
+!
+ip dhcp pool DEFAULT
+ network 10.116.0.0 255.255.0.0
+ default-router 10.116.1.1 
+ domain-name allanco.local
+ dns-server 10.100.15.2 10.100.15.3 216.116.96.2 8.8.8.8 
+!
+ipv6 multicast rpf use-bgp
+ipv6 multicast vrf Mgmt-intf rpf use-bgp
+!
+multilink bundle-name authenticated
+!
+license accept end user agreement
+archive
+ log config
+  logging enable
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+ mode none
+!
+ip tftp source-interface GigabitEthernet0
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_100MB
+ class BANDWIDTH
+  shape average 100000000
+  queue-limit 62500 bytes
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface Tunnel35
+ description BleeckerSt_To_14620_Joanbridge_Baldwin_Park
+ bandwidth 10000
+ ip address 172.16.10.46 255.255.255.252
+ keepalive 10 5
+ tunnel source GigabitEthernet0/0/0
+ tunnel destination 208.179.32.94
+!
+interface Tunnel36
+ description 14620_Joanbridge_Baldwin_Park_To_BleeckerST_FrontierOffnet
+ bandwidth 10000
+ ip address 172.16.10.6 255.255.255.252
+ keepalive 10 5
+ tunnel source GigabitEthernet0/0/0
+ tunnel destination 47.181.223.134
+!
+interface GigabitEthernet0/0/0
+ description Spectrum100M_62.L1XX.000727.TWCC
+ ip address 216.31.152.198 255.255.255.252
+ ip nat outside
+ load-interval 30
+ negotiation auto
+ service-policy output BANDWIDTH_100MB
+!
+interface GigabitEthernet0/0/1
+ description CustomerLAN
+ ip address 10.116.1.1 255.255.0.0
+ ip nat inside
+ negotiation auto
+ service-policy output BANDWIDTH_100MB
+!
+interface GigabitEthernet0/0/1.1
+ description HPBX
+ encapsulation dot1Q 1159
+ ip address 10.10.10.1 255.255.255.0
+ ip nat inside
+ ip virtual-reassembly
+!
+interface GigabitEthernet0/0/2
+ no ip address
+ negotiation auto
+!
+interface GigabitEthernet0/0/3
+ no ip address
+ negotiation auto
+!
+interface GigabitEthernet0
+ vrf forwarding Mgmt-intf
+ no ip address
+ shutdown
+ negotiation auto
+!
+ip nat translation timeout 300
+ip nat translation tcp-timeout 300
+ip nat translation udp-timeout 90
+no ip nat service sip udp port 5060
+ip nat inside source list 1 interface GigabitEthernet0/0/0 overload
+ip forward-protocol nd
+!
+no ip http server
+ip route 0.0.0.0 0.0.0.0 216.31.152.197
+ip route 10.100.0.0 255.255.0.0 Tunnel35
+ip route 10.110.0.0 255.255.0.0 Tunnel36 250 name Frontier_Failover
+!
+access-list 1 permit 10.10.10.0 0.0.0.255
+access-list 1 permit 10.116.0.0 0.0.255.255
+access-list 1 permit 192.168.11.0 0.0.0.255
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 110 permit ip any host 64.239.185.8
+access-list 110 permit ip any host 64.239.185.9
+access-list 110 permit ip any host 64.239.185.5
+access-list 110 permit ip any host 64.239.188.8
+access-list 110 permit ip any host 64.239.188.9
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+ !
+ !
+ !
+!
+banner motd ^CCCCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+ntp server pool.ntp.org
+!
+end

configs/216.31.152.214

@@ -0,0 +1,293 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+service sequence-numbers
+!
+hostname AllanCompany_10MB_13.HTXX.000135.CIS_5165ConvoySt.tierzero.net
+!
+boot-start-marker
+boot system flash c2800nm-advipservicesk9-mz.151-4.M10.bin
+boot-end-marker
+!
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+ip dhcp excluded-address 10.110.0.1 10.110.5.1
+ip dhcp excluded-address 10.110.5.51 10.110.31.255
+!
+ip dhcp pool HPBX
+ network 10.10.10.0 255.255.255.0
+ domain-name voip.tierzero.net
+ default-router 10.10.10.1 
+ dns-server 216.116.96.2 216.116.96.3 
+ option 66 ascii "http://config:uCdh8qBc3Hb@ndp.tierzero.net/cfg/"
+!
+ip dhcp pool DEFAULT
+ network 10.110.0.0 255.255.224.0
+ domain-name allanco.local
+ default-router 10.110.1.1 
+ dns-server 10.100.15.2 10.100.15.3 216.116.96.2 8.8.8.8 
+ lease 3
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2811 sn FTX1416AHJQ
+archive
+ log config
+  logging enable
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+ip ssh version 2
+!
+track 1 ip sla 1 reachability
+ delay down 180
+!
+class-map match-any VOIP
+ match access-group 110
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map VOIP-POLICE
+ class VOIP
+  priority percent 33
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+policy-map BANDWIDTH_15MB
+ class BANDWIDTH
+  shape peak 15000000
+  queue-limit 62500 bytes
+  service-policy VOIP-POLICE
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+policy-map BANDWIDTH_10MB
+ class BANDWIDTH
+  shape average 10000000
+  queue-limit 62500 bytes
+  service-policy VOIP-POLICE
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface Tunnel13
+ description 5165ConvoySt_CradlePoint_to_JB_FrontierOffnet
+ ip address 172.16.10.62 255.255.255.252
+ keepalive 25 50
+ tunnel source FastEthernet1/0
+ tunnel destination 47.181.223.134
+!
+interface Tunnel19
+ description 5165ConvoySt_To_14620_Joanbridge_Baldwin_Park
+ bandwidth 10000
+ ip address 172.16.10.82 255.255.255.252
+ keepalive 10 5
+ tunnel source FastEthernet0/0
+ tunnel destination 208.179.32.94
+!
+interface Tunnel127
+ description ALLANCompany NBS Firewall Unit
+ bandwidth 10000
+ ip address 10.255.255.25 255.255.255.254
+ keepalive 10 5
+ tunnel source FastEthernet0/0
+ tunnel destination 208.179.23.10
+!
+interface FastEthernet0/0
+ description AllanCompany=13.HTXX.000135.CIS
+ ip address 216.31.152.214 255.255.255.252
+ ip flow ingress
+ ip nat outside
+ ip virtual-reassembly in
+ load-interval 30
+ duplex full
+ speed 100
+ service-policy output BANDWIDTH_15MB
+!
+interface FastEthernet0/1
+ description LAN/FaxSipIt
+ no ip address
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_10MB
+!
+interface FastEthernet0/1.1
+ encapsulation dot1Q 1 native
+ ip address 64.239.180.237 255.255.255.252 secondary
+ ip address 216.31.182.81 255.255.255.248 secondary
+ ip address 10.110.1.1 255.255.224.0
+ ip nat inside
+ ip virtual-reassembly in
+!
+interface FastEthernet0/1.2
+ encapsulation dot1Q 2
+ ip address 10.110.32.1 255.255.224.0
+ ip nat inside
+ ip virtual-reassembly in
+!
+interface FastEthernet0/1.3
+ description HPBX
+ encapsulation dot1Q 1159
+ ip address 10.10.10.1 255.255.255.0
+ ip nat inside
+ ip virtual-reassembly in
+!
+interface FastEthernet1/0
+ description CradlePoint_Failover
+ ip address 166.140.176.35 255.255.255.248
+ ip nat outside
+ ip virtual-reassembly in
+ duplex full
+ speed 100
+ service-policy output BANDWIDTH_10MB
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip flow-export source FastEthernet0/0
+ip flow-export version 5
+ip flow-export destination 216.116.96.72 2055
+!
+ip nat translation timeout 300
+ip nat translation tcp-timeout 300
+ip nat translation udp-timeout 90
+no ip nat service sip udp port 5060
+ip nat inside source route-map CradlePoint_Circuit interface FastEthernet1/0 overload
+ip nat inside source route-map EOFW_Circuit interface FastEthernet0/0 overload
+ip nat inside source static 10.110.9.51 216.31.182.82
+ip nat inside source static 10.110.9.52 216.31.182.83
+ip nat inside source static 10.110.9.53 216.31.182.84
+ip nat inside source static tcp 10.10.10.254 23 64.239.180.237 23 extendable
+ip nat inside source static tcp 10.10.10.254 161 64.239.180.237 161 extendable
+ip nat inside source static udp 10.10.10.254 161 64.239.180.237 161 extendable
+ip route 0.0.0.0 0.0.0.0 216.31.152.213 track 1
+ip route 0.0.0.0 0.0.0.0 166.140.176.36 250 name CradlePoint_Failover
+ip route 10.100.0.0 255.255.0.0 Tunnel19
+ip route 10.100.0.0 255.255.0.0 Tunnel13 250 name JB_FrontierOffnet
+!
+ip access-list extended NAT
+ permit ip 10.10.10.0 0.0.0.255 any
+ permit ip 10.110.0.0 0.0.31.255 any
+ permit ip 10.110.32.0 0.0.31.255 any
+ deny   ip any any
+ip access-list extended NAT1
+ permit ip 10.10.10.0 0.0.0.255 any
+ deny   ip any any
+!
+ip sla 1
+ icmp-echo 216.31.152.213 source-ip 216.31.152.214
+ timeout 60000
+ threshold 60000
+ip sla schedule 1 life forever start-time now
+ip sla 2
+ icmp-echo 216.31.152.213
+ frequency 30
+ timeout 30000
+ threshold 30000
+ history enhanced interval 60 buckets 100
+ip sla schedule 2 life forever start-time now
+ip sla reaction-configuration 2 react rtt threshold-value 100 60 threshold-type immediate action-type trapOnly
+ip sla logging traps
+access-list 25 permit 23.241.22.188
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 102 permit ip 10.110.0.0 0.0.255.255 any
+access-list 110 permit ip any host 64.239.185.8
+access-list 110 permit ip any host 64.239.185.9
+access-list 110 permit ip any host 64.239.185.5
+access-list 110 permit ip any host 64.239.188.8
+access-list 110 permit ip any host 64.239.188.9
+!
+route-map CradlePoint_Circuit permit 10
+ match ip address NAT
+ match interface FastEthernet1/0
+!
+route-map EOFW_Circuit permit 10
+ match ip address NAT
+ match interface FastEthernet0/0
+!
+route-map TemVOIP permit 10
+ match ip address NAT1
+ match interface FastEthernet1/0
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+snmp-server enable traps ipsla
+snmp-server host 216.116.96.72 version 2c tierzero 
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.152.234

@@ -0,0 +1,273 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+service sequence-numbers
+!
+hostname AllanCompany_10MB_13.HTXX.000140.CIS_540WChevyChaseDr
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+ip dhcp excluded-address 10.115.0.0 10.115.5.0
+ip dhcp excluded-address 10.115.5.51 10.115.255.255
+!
+ip dhcp pool HPBX
+ network 10.10.10.0 255.255.255.0
+ domain-name voip.tierzero.net
+ default-router 10.10.10.1 
+ dns-server 216.116.96.2 216.116.96.3 
+ option 66 ascii "http://config:uCdh8qBc3Hb@ndp.tierzero.net/cfg/"
+!
+ip dhcp pool DEFAULT
+ network 10.115.0.0 255.255.0.0
+ default-router 10.115.1.1 
+ domain-name allanco.local
+ dns-server 10.100.15.2 10.100.15.3 216.116.96.2 8.8.8.8 
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+ip name-server 64.239.184.125
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2811 sn FTX1135F05A
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+ip ssh version 2
+!
+track 1 ip sla 1 reachability
+ delay down 180
+!
+class-map match-any VOIP
+ match access-group 110
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map VOIP-POLICE
+ class VOIP
+  priority percent 33
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+policy-map BANDWIDTH_15MB
+ class BANDWIDTH
+  shape peak 15000000
+  queue-limit 62500 bytes
+  service-policy VOIP-POLICE
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+policy-map BANDWIDTH_10MB
+ class BANDWIDTH
+  shape average 10000000
+  service-policy VOIP-POLICE
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface Tunnel7
+ description 540WChevyChaseDr_To_14620_Joanbridge_Baldwin_Park
+ bandwidth 10000
+ ip address 172.16.10.42 255.255.255.252
+ keepalive 10 5
+ tunnel source FastEthernet0/0
+ tunnel destination 208.179.32.94
+!
+interface Tunnel27
+ description 540WChevyChaseDr_CradlePoint_To_JB_FrontierOffnet
+ bandwidth 10000
+ ip address 172.16.10.114 255.255.255.252
+ keepalive 10 5
+ tunnel source FastEthernet1/0
+ tunnel destination 47.181.223.134
+!
+interface Tunnel115
+ description ALLANCompany NBS Firewall Unit
+ bandwidth 10000
+ ip address 10.255.255.5 255.255.255.254
+ keepalive 10 5
+ tunnel source FastEthernet0/0
+ tunnel destination 208.179.23.10
+!
+interface FastEthernet0/0
+ description AllanCompany=13.HTXX.000140.CIS
+ ip address 216.31.152.234 255.255.255.252
+ ip flow ingress
+ ip nat outside
+ ip virtual-reassembly in
+ load-interval 30
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_15MB
+!
+interface FastEthernet0/1
+ description LAN/FaxSipIt
+ ip address 208.179.64.245 255.255.255.252 secondary
+ ip address 10.115.1.1 255.255.0.0
+ ip flow ingress
+ ip nat inside
+ ip virtual-reassembly in
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_10MB
+!
+interface FastEthernet0/1.1
+ description HPBX
+ encapsulation dot1Q 1159
+ ip address 10.10.10.1 255.255.255.0
+ ip flow ingress
+ ip nat inside
+ ip virtual-reassembly in
+!
+interface FastEthernet1/0
+ description CradlePoint_Failover
+ ip address 166.253.33.62 255.255.255.0
+ ip nat outside
+ ip virtual-reassembly in
+ load-interval 30
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_10MB
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip flow-export source FastEthernet0/0
+ip flow-export version 5
+ip flow-export destination 216.116.96.72 2055
+!
+ip nat translation timeout 300
+ip nat translation tcp-timeout 300
+ip nat translation udp-timeout 90
+no ip nat service sip udp port 5060
+ip nat inside source route-map CradlePoint_Circuit interface FastEthernet1/0 overload
+ip nat inside source route-map EOFW_Circuit interface FastEthernet0/0 overload
+ip nat inside source static tcp 10.10.10.254 22 208.179.64.245 22 extendable
+ip nat inside source static tcp 10.10.10.254 23 208.179.64.245 23 extendable
+ip nat inside source static tcp 10.10.10.254 161 208.179.64.245 161 extendable
+ip nat inside source static udp 10.10.10.254 161 208.179.64.245 161 extendable
+ip route 0.0.0.0 0.0.0.0 216.31.152.233 245 track 1
+ip route 0.0.0.0 0.0.0.0 166.253.33.63 250
+ip route 4.2.2.6 255.255.255.255 10.255.255.4
+ip route 10.100.0.0 255.255.0.0 Tunnel7
+ip route 10.100.0.0 255.255.0.0 Tunnel27 250 name JB_FrontierOffnet
+ip route 208.179.23.10 255.255.255.255 216.31.152.233
+!
+ip access-list extended NAT
+ permit ip 10.10.10.0 0.0.0.255 any
+ permit ip 10.115.0.0 0.0.255.255 any
+ deny   ip any any
+!
+ip sla 1
+ icmp-echo 216.31.152.233 source-ip 216.31.152.234
+ timeout 60000
+ threshold 60000
+ip sla schedule 1 life forever start-time now
+ip sla 2
+ icmp-echo 216.31.152.233
+ frequency 30
+ timeout 30000
+ threshold 30000
+ history enhanced interval 60 buckets 100
+ip sla schedule 2 life forever start-time now
+ip sla reaction-configuration 2 react rtt threshold-value 100 60 threshold-type immediate action-type trapOnly
+ip sla logging traps
+access-list 25 permit 23.241.22.188
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 102 permit ip 10.115.0.0 0.0.255.255 any log-input
+access-list 110 permit ip any host 64.239.185.8
+access-list 110 permit ip any host 64.239.185.9
+access-list 110 permit ip any host 64.239.185.5
+access-list 110 permit ip any host 64.239.188.8
+access-list 110 permit ip any host 64.239.188.9
+!
+route-map CradlePoint_Circuit permit 10
+ match ip address NAT
+ match interface FastEthernet1/0
+!
+route-map EOFW_Circuit permit 10
+ match ip address NAT
+ match interface FastEthernet0/0
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+snmp-server enable traps ipsla
+snmp-server host 216.116.96.72 version 2c tierzero 
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.152.34

@@ -0,0 +1,117 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 12.4
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname HarborRegionalCenter_100MB_13.HTXX.000078.CIS_21231HawthorneBlvd
+!
+boot-start-marker
+boot system flash c2800nm-adventerprisek9-mz.124-20.T6.bin
+boot system flash disk2:c7200-is-mz.123-26.bin
+boot-end-marker
+!
+logging message-counter syslog
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+clock timezone PST -8
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+ no dspfarm
+!
+crypto pki token default removal timeout 0
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+archive
+ log config
+  hidekeys
+! 
+ip ssh version 2
+!
+interface GigabitEthernet0/0
+ description HarborRegionalCenter=13.HTXX.000078.CIS
+ ip address 216.31.152.34 255.255.255.252
+ load-interval 30
+ duplex full
+ speed 100
+ traffic-shape rate 100000000 100000000 100000000 4096
+!
+interface GigabitEthernet0/1
+ description CustomerLAN
+ ip address 208.179.37.65 255.255.255.240
+ duplex auto
+ speed auto
+ traffic-shape rate 100000000 100000000 100000000 4096
+!
+ip forward-protocol nd
+ip route 0.0.0.0 0.0.0.0 216.31.152.33
+no ip http server
+no ip http secure-server
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+banner motd ^CCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.152.62

@@ -0,0 +1,96 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 12.3
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname MariposaBusinessInc_5MB_13.HTXX.000087.CIS_6000MariposaRoad
+!
+boot-start-marker
+boot system flash disk2:c7200-is-mz.123-26.bin
+boot-end-marker
+!
+logging buffered 20000 debugging
+no logging console
+!
+clock timezone PST -8
+clock summer-time PST recurring
+no network-clock-participate slot 1 
+no network-clock-participate wic 0 
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+aaa session-id common
+ip subnet-zero
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+interface FastEthernet0/0
+ description MariposaBusiness=<-13.HTXX.000087.CIS
+ ip address 216.31.152.62 255.255.255.252
+ load-interval 30
+ speed 100
+ full-duplex
+ traffic-shape rate 5000000 5000000 5000000 4096
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.129.201 255.255.255.248
+ duplex auto
+ speed auto
+ traffic-shape rate 5000000 5000000 5000000 4096
+!
+no ip http server
+ip classless
+ip route 0.0.0.0 0.0.0.0 216.31.152.61
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+banner motd ^CCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.154.106

@@ -0,0 +1,134 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+!
+hostname WareDisposal_30MB_3188_995NMissionRd
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 50000 informational
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2811 sn FTX1231A0MV
+archive
+ log config
+  logging enable
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_30MB
+ class BANDWIDTH
+  shape average 30000000
+  queue-limit 62500 bytes
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface FastEthernet0/0
+ description WareDisposal=3188
+ ip address 216.31.154.106 255.255.255.252
+ ip virtual-reassembly in
+ load-interval 30
+ duplex full
+ speed 100
+ service-policy output BANDWIDTH_30MB
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.128.177 255.255.255.248
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_30MB
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.154.105
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.154.118

@@ -0,0 +1,154 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 12.3
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname InterportFreightSystems_5MB_3219_12923CeriseAve
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 20000 debugging
+no logging console
+!
+clock timezone PST -8
+clock summer-time PST recurring
+no network-clock-participate slot 1 
+no network-clock-participate wic 0 
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+aaa session-id common
+ip subnet-zero
+ip cef
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+ip dhcp pool HPBX
+   network 10.10.10.0 255.255.255.0
+   domain-name voip.tierzero.net
+   default-router 10.10.10.1 
+   dns-server 216.116.96.2 216.116.96.3 
+   option 66 ascii "http://config:uCdh8qBc3Hb@ndp.tierzero.net/cfgb"
+!
+ip dhcp pool POTSinBOX
+   network 192.168.10.0 255.255.255.0
+   default-router 192.168.10.1 
+   dns-server 8.8.8.8 8.8.4.4 
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+class-map match-any VOIP
+  match access-group 110
+class-map match-all BANDWIDTH
+  match any 
+!
+policy-map VOIP-POLICE
+  class VOIP
+   priority percent 33
+  class class-default
+   fair-queue
+   random-detect dscp-based
+   random-detect ecn
+policy-map BANDWIDTH_5MB
+  class BANDWIDTH
+   shape average 5000000
+   service-policy VOIP-POLICE
+  class class-default
+   fair-queue
+   random-detect dscp-based
+   random-detect ecn
+!
+interface FastEthernet0/0
+ description InterportFreightSystems=3219
+ ip address 216.31.154.118 255.255.255.252
+ ip nat outside
+ load-interval 30
+ speed 100
+ full-duplex
+ service-policy output BANDWIDTH_5MB
+!
+interface FastEthernet0/1
+ no ip address
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_5MB
+!
+interface FastEthernet0/1.1
+ description HPBX
+ encapsulation dot1Q 1159
+ ip address 10.10.10.1 255.255.255.0
+ ip nat inside
+!
+interface FastEthernet1/0
+ description POTSinBOX
+ ip address 192.168.10.1 255.255.255.0
+ ip nat inside
+ duplex auto
+ speed auto
+!
+ip nat translation timeout 300
+ip nat translation tcp-timeout 300
+ip nat translation udp-timeout 90
+no ip nat service sip tcp port 5060
+no ip nat service sip udp port 5060
+ip nat inside source list 1 interface FastEthernet0/0 overload
+no ip http server
+ip classless
+ip route 0.0.0.0 0.0.0.0 216.31.154.117
+!
+access-list 1 permit 10.10.10.0 0.0.0.255
+access-list 1 permit 192.168.10.0 0.0.0.255
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 110 permit ip any host 64.239.185.8
+access-list 110 permit ip any host 64.239.185.9
+access-list 110 permit ip any host 64.239.185.5
+access-list 110 permit ip any host 64.239.188.8
+access-list 110 permit ip any host 64.239.188.9
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+banner motd ^CCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.154.26

@@ -0,0 +1,145 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.2
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+no platform punt-keepalive disable-kernel-core
+!
+hostname KayneLLCdbaJenniKayne_1GB_33KFGX002276COXC_4004WCheyenneAve
+!
+boot-start-marker
+boot-end-marker
+!
+vrf definition Mgmt-intf
+ !
+ address-family ipv4
+ exit-address-family
+ !
+ address-family ipv6
+ exit-address-family
+!
+logging buffered 50000 informational
+logging persistent url flash:/syslog1 size 10485760 filesize 40000 immediate
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+multilink bundle-name authenticated
+!
+license boot level advipservices
+archive
+ log config
+  logging enable
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+ mode none
+!
+ip tftp source-interface GigabitEthernet0
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_1GB
+ class BANDWIDTH
+  priority level 1
+ class class-default
+  police rate 1000000000  burst 500000  conform-action transmit  exceed-action drop 
+!
+interface GigabitEthernet0/0/0
+ description KayneLLCdbaJenniKayne=33KFGX002276COXC
+ ip address 216.31.154.26 255.255.255.252
+ load-interval 30
+ negotiation auto
+!
+interface GigabitEthernet0/0/1
+ description CustomerLAN
+ ip address 64.239.128.193 255.255.255.248
+ load-interval 30
+ negotiation auto
+!
+interface GigabitEthernet0/0/2
+ no ip address
+ shutdown
+ negotiation auto
+!
+interface GigabitEthernet0/0/3
+ no ip address
+ shutdown
+ negotiation auto
+!
+interface GigabitEthernet0
+ vrf forwarding Mgmt-intf
+ no ip address
+ shutdown
+ negotiation auto
+!
+ip forward-protocol nd
+!
+no ip http server
+ip route 0.0.0.0 0.0.0.0 216.31.154.25
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+banner motd ^CCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.154.38

@@ -0,0 +1,198 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+!
+hostname ConcoursAutoSpa_20MB_3139_1821213thSt
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 50000 informational
+logging persistent url flash:/syslog1 size 10485760 filesize 40000 immediate
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+no process cpu autoprofile hog
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip dhcp pool HPBX
+ network 10.10.10.0 255.255.255.0
+ domain-name voip.tierzero.net
+ default-router 10.10.10.1 
+ dns-server 216.116.96.2 216.116.96.3 
+ option 66 ascii "http://config:uCdh8qBc3Hb@ndp.tierzero.net/cfgb
+!
+ip dhcp pool CustLAN
+ network 192.168.10.0 255.255.255.0
+ default-router 192.168.10.1 
+ dns-server 8.8.8.8 8.8.4.4 216.116.96.2 216.116.96.3 
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2851 sn FTX1441AJGB
+archive
+ log config
+  logging enable
+  logging persistent auto
+username tzcare
+!
+redundancy
+!
+ip ssh version 2
+!
+class-map match-any VOIP
+ match access-group 110
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map VOIP-POLICE
+ class VOIP
+  priority percent 33
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+policy-map BANDWIDTH_20MB
+ class BANDWIDTH
+  shape average 20000000
+  queue-limit 62500 bytes
+  service-policy VOIP-POLICE
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+crypto map NiStTeSt1 10 ipsec-manual 
+ ! Incomplete
+!
+interface GigabitEthernet0/0
+ description ConcoursAutoSpa=3139
+ ip address 216.31.154.38 255.255.255.252
+ ip nat outside
+ ip virtual-reassembly in
+ load-interval 30
+ duplex full
+ speed 100
+ no cdp enable
+ service-policy output BANDWIDTH_20MB
+!
+interface GigabitEthernet0/1
+ no ip address
+ ip virtual-reassembly in
+ duplex auto
+ speed auto
+ no cdp enable
+ service-policy output BANDWIDTH_20MB
+!
+interface GigabitEthernet0/1.1
+ description HPBX
+ encapsulation dot1Q 1159
+ ip address 10.10.10.1 255.255.255.0
+ ip nat inside
+ ip virtual-reassembly in
+ no cdp enable
+!
+interface FastEthernet1/0
+ description CustomerLAN
+ ip address 192.168.10.1 255.255.255.0
+ ip nat inside
+ ip virtual-reassembly in
+ duplex auto
+ speed auto
+ no cdp enable
+ service-policy output BANDWIDTH_20MB
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip nat translation timeout 300
+ip nat translation tcp-timeout 300
+ip nat translation udp-timeout 90
+no ip nat service sip udp port 5060
+ip nat inside source list 1 interface GigabitEthernet0/0 overload
+ip route 0.0.0.0 0.0.0.0 216.31.154.37
+!
+access-list 1 permit 10.10.10.0 0.0.0.255
+access-list 1 permit 192.168.10.0 0.0.0.255
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 110 permit ip any host 64.239.185.8
+access-list 110 permit ip any host 64.239.185.9
+access-list 110 permit ip any host 64.239.185.5
+access-list 110 permit ip any host 64.239.188.8
+access-list 110 permit ip any host 64.239.188.9
+access-list 199 permit icmp host 10.10.10.10 host 20.20.20.20
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.154.94

@@ -0,0 +1,137 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname CRCalifornia_30MB_3173_525WManvilleSt
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2811 sn FTX1221A3BU
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+ip ssh version 2
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_30MB
+ class BANDWIDTH
+  shape peak 30000000
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+policy-map BANDWIDTH_30MB2
+ class BANDWIDTH
+  shape average 30000000
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface FastEthernet0/0
+ description CRCalifornia=3173
+ ip address 216.31.154.94 255.255.255.252
+ load-interval 30
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_30MB
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.132.89 255.255.255.248
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_30MB
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.154.93
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.157.102

@@ -0,0 +1,164 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+service sequence-numbers
+!
+hostname PacificEyeInstitute_30MB_3265_555N13thAve
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 20000
+logging persistent url flash:/syslog1 size 10485760 filesize 40000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+no process cpu autoprofile hog
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+crypto pki token default removal timeout 0
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+license udi pid CISCO2851 sn FTX1242A1WT
+archive
+ log config
+  logging enable
+  logging persistent auto
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_30MB
+ class BANDWIDTH
+  shape average 30000000
+  queue-limit 62500 bytes
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+crypto map NiStTeSt1 10 ipsec-manual 
+ ! Incomplete
+!
+crypto map NiStTeSt2 10 ipsec-manual 
+ ! Incomplete
+ match address 198
+!
+crypto map NiStTeSt3 10 ipsec-manual 
+ ! Incomplete
+!
+interface GigabitEthernet0/0
+ description PacificEyeInstitute=3265
+ ip address 216.31.157.102 255.255.255.252
+ ip virtual-reassembly in
+ load-interval 30
+ duplex auto
+ speed auto
+ no cdp enable
+ service-policy output BANDWIDTH_30MB
+!
+interface Service-Engine0/0
+ no ip address
+ shutdown
+ no cdp enable
+!
+interface GigabitEthernet0/1
+ description CustomerLAN
+ ip address 64.239.145.9 255.255.255.248
+ load-interval 30
+ duplex auto
+ speed auto
+ no cdp enable
+ service-policy output BANDWIDTH_30MB
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.157.101
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 197 permit icmp host 10.10.10.10 host 20.20.20.20
+access-list 198 permit icmp host 10.10.10.10 host 20.20.20.20
+access-list 199 permit icmp host 10.10.10.10 host 20.20.20.20
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+line 194
+ no activation-character
+ no exec
+ transport preferred none
+ transport input all
+ transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.157.110

@@ -0,0 +1,119 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname PacificEyeInstitute_30MB_3269_12442LimoniteAve
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2811 sn FTX1228A46A
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+ip ssh version 2
+! 
+interface FastEthernet0/0
+ description PacificEyeInstitute=3269
+ ip address 216.31.157.110 255.255.255.252
+ load-interval 30
+ duplex auto
+ speed auto
+ traffic-shape rate 30000000 30000000 30000000 4096
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.142.113 255.255.255.248
+ duplex auto
+ speed auto
+ traffic-shape rate 30000000 30000000 30000000 4096
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.157.109
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.157.114

@@ -0,0 +1,139 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+service sequence-numbers
+!
+hostname KinkisharyoInternational_25MB_13.HTXX.000098.CIS_1955S.CentinelaAve
+!
+boot-start-marker
+boot system flash disk2:c7200-is-mz.123-26.bin
+boot-end-marker
+!
+logging buffered 20000
+logging persistent url flash:/syslog1 size 10485760 filesize 40000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2811 sn FTX1448AJ3M
+archive
+ log config
+  logging enable
+  logging persistent auto
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+ip ssh version 2
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_25MB
+ class BANDWIDTH
+  shape average 25000000
+  queue-limit 62500 bytes
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface FastEthernet0/0
+ description KinkisharyoInternational=13.HTXX.000098.CIS
+ ip address 216.31.157.114 255.255.255.252
+ ip virtual-reassembly in
+ load-interval 30
+ duplex full
+ speed 100
+ service-policy output BANDWIDTH_25MB
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.141.17 255.255.255.248
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_25MB
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.157.113
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.157.122

@@ -0,0 +1,136 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+!
+hostname PortableConsultantsInc_20MB_3290_17123MainSt
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 50000 informational
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2811 sn FTX1042A3QZ
+archive
+ log config
+  logging enable
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_20MB
+ class BANDWIDTH
+  shape average 20000000
+  queue-limit 62500 bytes
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface FastEthernet0/0
+ description PortableConsultantsInc=3290
+ ip address 216.31.157.122 255.255.255.252
+ ip virtual-reassembly in
+ rate-limit input 20968000 3932160 7864320 conform-action continue exceed-action drop
+ rate-limit output 20968000 3932160 7864320 conform-action continue exceed-action drop
+ load-interval 30
+ duplex auto
+ speed auto
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.145.225 255.255.255.248
+ rate-limit input 20968000 3932160 7864320 conform-action continue exceed-action drop
+ rate-limit output 20968000 3932160 7864320 conform-action continue exceed-action drop
+ duplex auto
+ speed auto
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.157.121
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.157.126

@@ -0,0 +1,138 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+!
+hostname PortableConsultantsInc_20MB_3303_5750029PalmsHighway
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 50000 informational
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2811 sn FTX1527AJ5C
+archive
+ log config
+  logging enable
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+ip ssh version 2
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_20MB
+ class BANDWIDTH
+  shape average 20000000
+  queue-limit 62500 bytes
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface FastEthernet0/0
+ description PortableConsultantsInc=3303
+ ip address 216.31.157.126 255.255.255.252
+ ip virtual-reassembly in
+ rate-limit input 22968000 3932160 7864320 conform-action continue exceed-action drop
+ rate-limit output 22968000 3932160 7864320 conform-action continue exceed-action drop
+ load-interval 30
+ duplex auto
+ speed auto
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.145.233 255.255.255.248
+ rate-limit input 22968000 3932160 7864320 conform-action continue exceed-action drop
+ rate-limit output 22968000 3932160 7864320 conform-action continue exceed-action drop
+ duplex full
+ speed 100
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.157.125
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.157.138

@@ -0,0 +1,138 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+!
+hostname IntegratedFoodService_20MB_3275_689MesquitSt
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 50000 informational
+logging persistent url flash:/syslog1 size 10485760 filesize 40000 immediate
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2811 sn FTX1239A6TN
+archive
+ log config
+  logging enable
+  logging persistent auto
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+ip ssh version 2
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_20MB
+ class BANDWIDTH
+  shape average 20000000
+  queue-limit 62500 bytes
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface FastEthernet0/0
+ description IntegratedFoodService=3275
+ ip address 216.31.157.138 255.255.255.252
+ ip virtual-reassembly in
+ load-interval 30
+ duplex full
+ speed 100
+ service-policy output BANDWIDTH_20MB
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.145.65 255.255.255.248
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_20MB
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.157.137
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.157.146

@@ -0,0 +1,145 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname APlusInternational_50MB_3415_5138EucalyptusAve
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+crypto pki token default removal timeout 0
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip dhcp pool HPBX
+ network 10.10.10.0 255.255.255.0
+ domain-name voip.tierzero.net
+ default-router 10.10.10.1 
+ dns-server 216.116.96.2 216.116.96.3 
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+ip name-server 64.239.184.125
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+license udi pid CISCO2851 sn FTX1422A1ZQ
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+ip ssh version 2
+! 
+interface GigabitEthernet0/0
+ description APlusInternational=3415
+ ip address 216.31.157.146 255.255.255.252
+ ip nat outside
+ ip virtual-reassembly in
+ duplex auto
+ speed auto
+ traffic-shape rate 50000000 50000000 50000000 4096
+!
+interface GigabitEthernet0/1
+ description CustomerLAN
+ ip address 208.179.210.209 255.255.255.240
+ duplex auto
+ speed auto
+ traffic-shape rate 50000000 50000000 50000000 4096
+!
+interface FastEthernet1/0
+ no ip address
+ duplex auto
+ speed auto
+!
+interface FastEthernet1/0.1
+ description HPBX
+ encapsulation dot1Q 1159
+ ip address 10.10.10.1 255.255.255.0
+ ip nat inside
+ ip virtual-reassembly in
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip nat translation timeout 300
+ip nat translation tcp-timeout 300
+ip nat translation udp-timeout 90
+no ip nat service sip udp port 5060
+ip nat inside source list 1 interface GigabitEthernet0/0 overload
+ip route 0.0.0.0 0.0.0.0 216.31.157.145
+!
+access-list 1 permit 10.10.10.0 0.0.0.255
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.157.150

@@ -0,0 +1,274 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+No l4r_shim subsystem is included in this platform.
+
+version 15.2
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+no platform punt-keepalive disable-kernel-core
+!
+hostname AllanCompany_100MB_FirelineCircuitID3280_1404WHoltSt
+!
+boot-start-marker
+boot-end-marker
+!
+vrf definition Mgmt-intf
+ !
+ address-family ipv4
+ exit-address-family
+ !
+ address-family ipv6
+ exit-address-family
+!
+logging buffered 50000 informational
+logging persistent url flash:/syslog1 size 10485760 filesize 40000 immediate
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+ip name-server 64.239.184.125
+ip dhcp excluded-address 10.111.0.0 10.111.5.0
+ip dhcp excluded-address 10.111.5.255 10.111.31.255
+!
+ip dhcp pool DEFAULT
+ network 10.111.0.0 255.255.224.0
+ default-router 10.111.1.1 
+ domain-name allanco.local
+ dns-server 10.100.15.2 10.100.15.3 216.116.96.2 8.8.8.8 
+!
+ip dhcp pool HPBX
+ network 10.10.10.0 255.255.255.0
+ domain-name voip.tierzero.net
+ default-router 10.10.10.1 
+ dns-server 216.116.96.2 216.116.96.3 
+ option 66 ascii "http://config:uCdh8qBc3Hb@ndp.tierzero.net/cfg/"
+!
+ipv6 multicast rpf use-bgp
+!
+multilink bundle-name authenticated
+!
+archive
+ log config
+  logging enable
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+ mode none
+!
+ip tftp source-interface GigabitEthernet0
+ip ssh version 2
+!
+track 1 ip sla 1 reachability
+ delay down 180
+!
+class-map match-any VOIP
+ match access-group 110
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_100MB
+ class VOIP
+  priority level 1
+ class class-default
+  police rate 100000000  burst 500000  conform-action transmit  exceed-action drop 
+policy-map VOIP-POLICE
+ class VOIP
+  priority percent 33
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface Tunnel11
+ description 1404WHoltStPomona_Peplink_to_FrontierOffnet
+ ip address 172.16.10.54 255.255.255.252
+ load-interval 30
+ keepalive 25 50
+ tunnel source GigabitEthernet0/0/3
+ tunnel destination 47.181.223.134
+!
+interface Tunnel23
+ description 1404W.HoltStreet_To_14620_Joanbridge_Baldwin_Park
+ bandwidth 10000
+ ip address 172.16.10.98 255.255.255.252
+ load-interval 30
+ keepalive 10 5
+ tunnel source GigabitEthernet0/0/0
+ tunnel destination 208.179.32.94
+!
+interface Tunnel111
+ description ALLANCompany NBS Firewall Unit
+ bandwidth 10000
+ ip address 10.255.255.7 255.255.255.254
+ keepalive 10 5
+ tunnel source GigabitEthernet0/0/0
+ tunnel destination 208.179.23.10
+!
+interface GigabitEthernet0/0/0
+ description AllanCompany=3280
+ ip address 216.31.157.150 255.255.255.252
+ ip nat outside
+ ip virtual-reassembly
+ load-interval 30
+ negotiation auto
+ service-policy output BANDWIDTH_100MB
+!
+interface GigabitEthernet0/0/1
+ no ip address
+ load-interval 30
+ negotiation auto
+ service-policy output BANDWIDTH_100MB
+!
+interface GigabitEthernet0/0/1.1
+ encapsulation dot1Q 1 native
+ ip address 64.239.180.121 255.255.255.252 secondary
+ ip address 208.179.210.153 255.255.255.248 secondary
+ ip address 10.111.1.1 255.255.224.0
+ ip nat inside
+ ip virtual-reassembly
+!
+interface GigabitEthernet0/0/2
+ description HPBX
+ no ip address
+ negotiation auto
+ service-policy output BANDWIDTH_100MB
+!
+interface GigabitEthernet0/0/2.1
+ description HPBX
+ encapsulation dot1Q 1159
+ ip address 10.10.10.1 255.255.255.0
+ ip nat inside
+ ip virtual-reassembly
+!
+interface GigabitEthernet0/0/3
+ description Peplink_Failover
+ ip address 166.149.125.157 255.255.255.252
+ ip nat outside
+ ip virtual-reassembly
+ negotiation auto
+ service-policy output BANDWIDTH_100MB
+!
+interface GigabitEthernet0
+ vrf forwarding Mgmt-intf
+ no ip address
+ shutdown
+ negotiation auto
+!
+ip nat translation timeout 300
+ip nat translation tcp-timeout 300
+ip nat translation udp-timeout 90
+no ip nat service sip udp port 5060
+ip nat inside source route-map CradlePoint_Circuit interface GigabitEthernet0/0/3 overload
+ip nat inside source route-map EOFW_Circuit interface GigabitEthernet0/0/0 overload
+ip nat inside source static 10.111.1.6 208.179.210.156 extendable
+ip nat inside source static 10.111.1.30 208.179.210.157
+ip nat inside source static 10.111.1.100 208.179.210.158
+ip nat inside source static tcp 10.10.10.254 22 64.239.180.122 22 extendable
+ip nat inside source static tcp 10.10.10.254 23 64.239.180.122 23 extendable
+ip nat inside source static tcp 10.10.10.254 161 64.239.180.122 161 extendable
+ip nat inside source static tcp 10.111.9.51 80 208.179.210.154 80 extendable
+ip nat inside source static tcp 10.111.9.51 4000 208.179.210.154 4000 extendable
+ip nat inside source static tcp 10.111.9.51 4002 208.179.210.154 4002 extendable
+ip nat inside source static tcp 10.111.9.52 80 208.179.210.155 80 extendable
+ip nat inside source static udp 10.10.10.254 161 64.239.180.122 161 extendable
+ip forward-protocol nd
+!
+ip flow-export source GigabitEthernet0/0/0
+ip flow-export destination 216.116.96.72 2055
+no ip http server
+no ip http secure-server
+ip route 0.0.0.0 0.0.0.0 216.31.157.149 track 1
+ip route 0.0.0.0 0.0.0.0 166.149.125.158 250 name Failover
+ip route 10.100.0.0 255.255.0.0 Tunnel23
+ip route 10.100.0.0 255.255.0.0 Tunnel11 250 name JB_FrontierOffnet
+ip route 208.179.23.10 255.255.255.255 216.31.157.149
+!
+ip access-list extended NAT
+ permit ip 10.10.10.0 0.0.0.255 any
+ permit ip 10.111.0.0 0.0.31.255 any
+ permit ip 10.111.32.0 0.0.31.255 any
+ deny   ip any any
+!
+ip sla 1
+ icmp-echo 216.31.157.149 source-ip 216.31.157.150
+ timeout 60000
+ threshold 60000
+ip sla schedule 1 life forever start-time now
+ip sla logging traps
+access-list 25 permit 23.241.22.188
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 110 permit ip any host 64.239.185.8
+access-list 110 permit ip any host 64.239.185.9
+access-list 110 permit ip any host 64.239.185.5
+access-list 110 permit ip any host 64.239.188.8
+access-list 110 permit ip any host 64.239.188.9
+!
+route-map CradlePoint_Circuit permit 10
+ match ip address NAT
+ match interface GigabitEthernet0/0/3
+!
+route-map EOFW_Circuit permit 10
+ match ip address NAT
+ match interface GigabitEthernet0/0/0
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+banner motd ^CCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.157.158

@@ -0,0 +1,106 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 12.3
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname JHAEnvironmentalInc_10MB_3314_7350WorldWayWest
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 20000 debugging
+no logging console
+!
+clock timezone PST -8
+clock summer-time PST recurring
+no network-clock-participate slot 1 
+no network-clock-participate wic 0 
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+aaa session-id common
+ip subnet-zero
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+class-map match-all BANDWIDTH
+  match any 
+!
+policy-map BANDWIDTH_10MB
+  class BANDWIDTH
+   shape peak 10000000
+  class class-default
+   fair-queue
+   random-detect dscp-based
+   random-detect ecn
+!
+interface FastEthernet0/0
+ description JHAEnvironmental=3314
+ ip address 216.31.157.158 255.255.255.252
+ load-interval 30
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_10MB
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.134.41 255.255.255.248
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_10MB
+!
+no ip http server
+ip classless
+ip route 0.0.0.0 0.0.0.0 216.31.157.157
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+banner motd ^CCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.157.190

@@ -0,0 +1,106 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 12.4
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+no service password-recovery
+!
+hostname LEDtronics_5MB_Fireline3327_23105KashiwaWay
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+clock timezone PST -8
+clock summer-time PST recurring
+no network-clock-participate slot 1 
+no network-clock-participate wic 0 
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+multilink bundle-name authenticated
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+archive
+ log config
+  hidekeys
+!
+interface FastEthernet0/0
+ description LEDtronics=PendingCALID
+ ip address 216.31.157.190 255.255.255.252
+ load-interval 30
+ duplex auto
+ speed auto
+ traffic-shape rate 5000000 5000000 5000000 4096
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 208.179.27.1 255.255.255.128 secondary
+ ip address 216.31.142.193 255.255.255.224
+ speed 100
+ full-duplex
+ traffic-shape rate 5000000 5000000 5000000 4096
+!
+ip forward-protocol nd
+ip route 0.0.0.0 0.0.0.0 216.31.157.189
+ip route 208.179.27.0 255.255.255.128 Null0
+ip route 216.31.142.192 255.255.255.224 Null0
+!
+no ip http server
+no ip http secure-server
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+banner motd ^CCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.157.198

@@ -0,0 +1,152 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+!
+hostname GC3030AndritaLLC_20MB_3294_3030AndritaSt
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 50000 informational
+logging persistent url flash:/syslog1 size 10485760 filesize 40000 immediate
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+ip dhcp excluded-address 192.168.1.184
+!
+ip dhcp pool LAN
+ network 192.168.1.0 255.255.255.0
+ domain-name tierzero.net
+ default-router 192.168.1.1 
+ dns-server 216.116.96.2 216.116.96.3 
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2811 sn FTX1228A46S
+archive
+ log config
+  logging enable
+  logging persistent auto
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+ip ssh version 2
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_20MB
+ class BANDWIDTH
+  shape average 20000000
+  queue-limit 62500 bytes
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface FastEthernet0/0
+ description GC3030ANDRITALLC=3294
+ ip address 216.31.157.198 255.255.255.252
+ ip nat outside
+ ip virtual-reassembly in
+ load-interval 30
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_20MB
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 192.168.1.1 255.255.255.0 secondary
+ ip address 64.239.145.73 255.255.255.248
+ ip nat inside
+ ip virtual-reassembly in
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_20MB
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip nat inside source list 1 interface FastEthernet0/0 overload
+ip nat inside source static 192.168.1.184 64.239.145.75 extendable
+ip route 0.0.0.0 0.0.0.0 216.31.157.197
+!
+access-list 1 permit 192.168.1.0 0.0.0.255
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.157.2

@@ -0,0 +1,100 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 12.3
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname K-LoveInc_30MB_13HTXX000001CIS_2400AzusaAve
+!
+boot-start-marker
+boot system flash disk2:c7200-is-mz.123-26.bin
+boot-end-marker
+!
+logging buffered 20000 debugging
+no logging console
+!
+clock timezone PST -8
+clock summer-time PST recurring
+no network-clock-participate slot 1 
+no network-clock-participate wic 0 
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+aaa session-id common
+ip subnet-zero
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+interface FastEthernet0/0
+ description K-LoveInc=13.HTXX.000001.CIS
+ ip address 216.31.157.2 255.255.255.252
+ ip flow ingress
+ load-interval 30
+ speed 100
+ full-duplex
+ traffic-shape rate 30000000 30000000 30000000 4096
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.129.25 255.255.255.248
+ ip flow ingress
+ duplex auto
+ speed auto
+ traffic-shape rate 30000000 30000000 30000000 4096
+!
+no ip http server
+ip classless
+ip route 0.0.0.0 0.0.0.0 216.31.157.1
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 120 deny   ip host 70.239.149.168 any
+access-list 120 permit ip any any
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+banner motd ^CCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.157.206

@@ -0,0 +1,148 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+service sequence-numbers
+!
+hostname TopsonDowns_50MB_3393_8986RemingtonAve
+!
+boot-start-marker
+boot system flash disk2:c7200-is-mz.123-26.bin
+boot-end-marker
+!
+logging buffered 20000
+logging persistent url flash:/syslog1 size 10485760 filesize 40000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2811 sn FTX1323A1ZE
+archive
+ log config
+  logging enable
+  logging persistent auto
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+ip ssh version 2
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_50MB
+ class BANDWIDTH
+  shape peak 50000000
+  queue-limit 62500 bytes
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+policy-map BANDWIDTH_50MB2
+ class BANDWIDTH
+  shape average 50000000
+  queue-limit 62500 bytes
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface FastEthernet0/0
+ description TopsonDowns=3393
+ ip address 216.31.157.206 255.255.255.252
+ ip virtual-reassembly in
+ load-interval 30
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_50MB
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.137.65 255.255.255.248
+ load-interval 30
+ duplex full
+ speed 100
+ service-policy output BANDWIDTH_50MB
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.157.205
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.157.222

@@ -0,0 +1,138 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+!
+hostname PortableConsultantsInc_30MB_3382_5227LakewoodBlvd
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 50000 informational
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2811 sn FTX1145A15U
+archive
+ log config
+  logging enable
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+ip ssh version 2
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_30MB
+ class BANDWIDTH
+  shape average 30000000
+  queue-limit 62500 bytes
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface FastEthernet0/0
+ description PortableConsultantsInc=3382
+ ip address 216.31.157.222 255.255.255.252
+ ip virtual-reassembly in
+ rate-limit input 31456000 5898240 11796480 conform-action continue exceed-action drop
+ rate-limit output 31456000 5898240 11796480 conform-action continue exceed-action drop
+ load-interval 30
+ duplex auto
+ speed auto
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.145.81 255.255.255.248
+ rate-limit input 31456000 5898240 11796480 conform-action continue exceed-action drop
+ rate-limit output 31456000 5898240 11796480 conform-action continue exceed-action drop
+ duplex auto
+ speed auto
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.157.221
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.157.234

@@ -0,0 +1,171 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 12.3
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname ABIUSA_10MB_5002_2300.S.Hill.St
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 20000 debugging
+no logging console
+!
+clock timezone PST -8
+clock summer-time PST recurring
+no network-clock-participate slot 1 
+no network-clock-participate wic 0 
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+aaa session-id common
+ip subnet-zero
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+ip name-server 64.239.184.125
+!
+ip dhcp pool HPBX
+   network 10.10.10.0 255.255.255.0
+   domain-name voip.tierzero.net
+   default-router 10.10.10.1 
+   dns-server 216.116.96.2 216.116.96.3 
+   option 66 ascii "http://config:uCdh8qBc3Hb@ndp.tierzero.net/cfg"
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+class-map match-any VOIP
+  match access-group 10
+class-map match-all BANDWIDTH
+  match any 
+!
+policy-map VOIP-POLICE
+  class VOIP
+   priority percent 33
+  class class-default
+   fair-queue
+   random-detect dscp-based
+   random-detect ecn
+policy-map BANDWIDTH_10MB
+  class BANDWIDTH
+   shape peak 10000000
+   service-policy VOIP-POLICE
+  class class-default
+   fair-queue
+   random-detect dscp-based
+   random-detect ecn
+policy-map BANDWIDTH_10MB2
+  class BANDWIDTH
+   shape average 10000000
+   service-policy VOIP-POLICE
+  class class-default
+   fair-queue
+   random-detect dscp-based
+   random-detect ecn
+!
+interface FastEthernet0/0
+ description ABIUSA=13.HTXX.000208
+ ip address 216.31.157.234 255.255.255.252
+ ip access-group blockIPs in
+ ip access-group blockIPs out
+ ip nat outside
+ ip flow ingress
+ ip route-cache flow
+ load-interval 30
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_10MB
+!
+interface FastEthernet0/1
+ description HPBX
+ no ip address
+ ip flow ingress
+ ip route-cache flow
+ load-interval 30
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_10MB2
+!
+interface FastEthernet0/1.1
+ description HPBX
+ encapsulation dot1Q 1159
+ ip address 10.10.10.1 255.255.255.0
+ ip nat inside
+!
+interface FastEthernet1/0
+ description CustomerLAN
+ ip address 64.239.134.233 255.255.255.248
+ ip access-group blockIPs in
+ ip access-group blockIPs out
+ load-interval 30
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_10MB2
+!
+ip nat translation timeout 300
+ip nat translation tcp-timeout 300
+ip nat translation udp-timeout 90
+no ip nat service sip tcp port 5060
+no ip nat service sip udp port 5060
+ip nat inside source list 1 interface FastEthernet0/0 overload
+no ip http server
+ip classless
+ip route 0.0.0.0 0.0.0.0 216.31.157.233
+!
+ip access-list extended blockIPs
+ deny   ip host 13.107.4.50 any
+ deny   ip host 40.77.228.30 any
+ permit ip any any
+access-list 1 permit 10.10.10.0 0.0.0.255
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 110 permit ip any host 64.239.185.8
+access-list 110 permit ip any host 64.239.185.9
+access-list 110 permit ip any host 64.239.185.5
+access-list 110 permit ip any host 64.239.188.8
+access-list 110 permit ip any host 64.239.188.9
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+banner motd ^CCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.157.38

@@ -0,0 +1,145 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+!
+hostname GiulianosDeli_20MB_3217_1138Gardena
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 50000 informational
+logging persistent url flash:/syslog1 size 10485760 filesize 40000 immediate
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+no process cpu autoprofile hog
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2811 sn FTX0941A6BD
+archive
+ log config
+  logging enable
+  logging persistent auto
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+ip ssh version 2
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_20MB
+ class BANDWIDTH
+  shape average 20000000
+  queue-limit 62500 bytes
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+crypto map NiStTeSt1 10 ipsec-manual 
+ ! Incomplete
+!
+interface FastEthernet0/0
+ description GiulianosDeli=3217
+ ip address 216.31.157.38 255.255.255.252
+ ip virtual-reassembly in
+ load-interval 30
+ duplex auto
+ speed auto
+ no cdp enable
+ service-policy output BANDWIDTH_20MB
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.134.137 255.255.255.248
+ duplex auto
+ speed auto
+ no cdp enable
+ service-policy output BANDWIDTH_20MB
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.157.37
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 199 permit icmp host 10.10.10.10 host 20.20.20.20
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.157.42

@@ -0,0 +1,106 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 12.3
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname PortableConsultantsInc_10MB_3223_26650SWesternAve
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 20000 debugging
+no logging console
+!
+clock timezone PST -8
+clock summer-time PST recurring
+no network-clock-participate slot 1 
+no network-clock-participate wic 0 
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+aaa session-id common
+ip subnet-zero
+ip cef
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+class-map match-all BANDWIDTH
+  match any 
+!
+policy-map BANDWIDTH_10MB
+  class BANDWIDTH
+   shape average 10000000
+  class class-default
+   fair-queue
+   random-detect dscp-based
+   random-detect ecn
+!
+interface FastEthernet0/0
+ description PortableConsultantsInc=3223
+ ip address 216.31.157.42 255.255.255.252
+ load-interval 30
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_10MB
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.145.89 255.255.255.248
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_10MB
+!
+no ip http server
+ip classless
+ip route 0.0.0.0 0.0.0.0 216.31.157.41
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+banner motd ^CCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.157.50

@@ -0,0 +1,143 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+!
+hostname SaberFitnessLakeElsinoreLLC_50MB_3251_32261MissionTrails
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 50000 informational
+logging persistent url flash:/syslog1 size 10485760 filesize 40000 immediate
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+no process cpu autoprofile hog
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2851 sn FTX1118A3BQ
+archive
+ log config
+  logging enable
+  logging persistent auto
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_50MB
+ class BANDWIDTH
+  shape average 50000000
+  queue-limit 62500 bytes
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+crypto map NiStTeSt1 10 ipsec-manual 
+ ! Incomplete
+!
+interface GigabitEthernet0/0
+ description SaberFitness=3251
+ ip address 216.31.157.50 255.255.255.252
+ ip virtual-reassembly in
+ load-interval 30
+ duplex auto
+ speed auto
+ no cdp enable
+ service-policy output BANDWIDTH_50MB
+!
+interface GigabitEthernet0/1
+ description CustomerLAN
+ ip address 64.239.136.49 255.255.255.248
+ duplex auto
+ speed auto
+ no cdp enable
+ service-policy output BANDWIDTH_50MB
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.157.49
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 199 permit icmp host 10.10.10.10 host 20.20.20.20
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.157.70

@@ -0,0 +1,141 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname J&LRV_20MB_FIRELINE3254_8364SultanaSt
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+ip name-server 64.239.184.125
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2811 sn FTX1221A0D4
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+ip ssh version 2
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_20MB
+ class BANDWIDTH
+  shape average 20000000
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface FastEthernet0/0
+ description J&LRVInc=PendingCALID
+ ip address 216.31.157.70 255.255.255.252
+ ip access-group 150 in
+ ip access-group 150 out
+ ip flow ingress
+ load-interval 30
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_20MB
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.131.105 255.255.255.248
+ ip access-group 150 in
+ ip access-group 150 out
+ ip flow ingress
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_20MB
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.157.69
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 150 deny   ip any host 172.217.4.138
+access-list 150 deny   ip any host 172.217.5.202
+access-list 150 deny   ip any host 40.77.232.59
+access-list 150 permit ip any any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.157.82

@@ -0,0 +1,103 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 12.3
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname IBEWLocal11_3MB_13.HTXX.000022.CIS_360GrandCypressAve
+!
+boot-start-marker
+boot system flash c2600-is-mz.123-26.bin
+boot-end-marker
+!
+logging buffered 20000 debugging
+no logging console
+!
+clock timezone PST -8
+clock summer-time PST recurring
+no network-clock-participate slot 1 
+no network-clock-participate wic 0 
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+aaa session-id common
+ip subnet-zero
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+interface FastEthernet0/0
+ description IBEWLocal11=13.HTXX.000022.CIS_LAX01 CAI Wireless
+ ip address 216.31.157.82 255.255.255.252
+ load-interval 30
+ speed 100
+ full-duplex
+ traffic-shape rate 3000000 3000000 3000000 4096
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.128.49 255.255.255.248
+ duplex auto
+ speed auto
+ traffic-shape rate 3000000 3000000 3000000 4096
+!
+interface FastEthernet1/0
+ description Failover_Link
+ ip address 208.179.28.125 255.255.255.252
+ speed 100
+ full-duplex
+ traffic-shape rate 3000000 3000000 3000000 4096
+!
+no ip http server
+ip classless
+ip route 0.0.0.0 0.0.0.0 216.31.157.81
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+banner motd ^CCCCCCCCCCCCC
+*************************************************************
+Tierzero: 
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.157.86

@@ -0,0 +1,102 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 12.3
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname IBEWLocal_20MB_13.HTXX.000023.CIS_6023S.FarfieldAve
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 20000 debugging
+no logging console
+!
+clock timezone PST -8
+clock summer-time PST recurring
+no network-clock-participate slot 1 
+no network-clock-participate wic 0 
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+aaa session-id common
+ip subnet-zero
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+interface FastEthernet0/0
+ description IBEWLocal11=13.HTXX.000023.CIS
+ ip address 216.31.157.86 255.255.255.252
+ load-interval 30
+ speed 100
+ full-duplex
+ traffic-shape rate 20000000 20000000 20000000 4096
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.130.121 255.255.255.248
+ duplex auto
+ speed auto
+ traffic-shape rate 20000000 20000000 20000000 4096
+!
+interface FastEthernet1/0
+ description Failover_Link
+ ip address 208.179.28.237 255.255.255.252
+ duplex auto
+ speed auto
+ traffic-shape rate 20000000 20000000 20000000 4096
+!
+no ip http server
+ip classless
+ip route 0.0.0.0 0.0.0.0 216.31.157.85
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+banner motd ^CCCCCCCCCCC
+*************************************************************
+Tierzero: 
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.157.94

@@ -0,0 +1,148 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+service sequence-numbers
+!
+hostname PacificEyeInstitute_30MB_3263_1900EWashingtonSt
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 20000
+logging persistent url flash:/syslog1 size 10485760 filesize 40000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2811 sn FTX1244A29G
+archive
+ log config
+  logging enable
+  logging persistent auto
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+ip ssh version 2
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_30MB
+ class BANDWIDTH
+  shape average 30000000
+  queue-limit 62500 bytes
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+policy-map BANDWIDTH2_30MB
+ class BANDWIDTH
+  shape peak 30000000
+  queue-limit 62500 bytes
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface FastEthernet0/0
+ description PacificEyeInstitute=3263
+ ip address 216.31.157.94 255.255.255.252
+ ip virtual-reassembly in
+ rate-limit input 30000000 5625000 11250000 conform-action transmit exceed-action drop
+ rate-limit output 30000000 5625000 11250000 conform-action transmit exceed-action drop
+ load-interval 30
+ duplex auto
+ speed auto
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.142.105 255.255.255.248
+ rate-limit input 30000000 5625000 11250000 conform-action transmit exceed-action drop
+ rate-limit output 30000000 5625000 11250000 conform-action transmit exceed-action drop
+ duplex auto
+ speed auto
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.157.93
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.164.102

@@ -0,0 +1,96 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 12.3
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname HealthAde_15MB_13.HTXX.000220.CIS_2012AbaloneAve
+!
+boot-start-marker
+boot system flash disk2:c7200-is-mz.123-26.bin
+boot-end-marker
+!
+logging buffered 20000 debugging
+no logging console
+!
+clock timezone PST -8
+clock summer-time PST recurring
+no network-clock-participate slot 1 
+no network-clock-participate wic 0 
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+aaa session-id common
+ip subnet-zero
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+interface FastEthernet0/0
+ description Health-Ade=01.PV01.003025.VCT
+ ip address 216.31.164.102 255.255.255.252
+ load-interval 30
+ duplex auto
+ speed auto
+ traffic-shape rate 15000000 15000000 15000000 4096
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.133.161 255.255.255.248
+ duplex auto
+ speed auto
+ traffic-shape rate 15000000 15000000 15000000 4096
+!
+no ip http server
+ip classless
+ip route 0.0.0.0 0.0.0.0 216.31.164.101
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+banner motd ^CCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.164.54

@@ -0,0 +1,140 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+!
+hostname WareDisposalInc_50MB_33WPRL10073841_1451ManhattanAve
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 50000 informational
+logging persistent url flash:/syslog1 size 10485760 filesize 40000 immediate
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+crypto pki token default removal timeout 0
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+license udi pid CISCO2851 sn FTX1322AHAN
+archive
+ log config
+  logging enable
+  logging persistent auto
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+ip ssh version 2
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_50MB
+ class BANDWIDTH
+  shape average 50000000
+  queue-limit 62500 bytes
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface GigabitEthernet0/0
+ description WareDisposalInc=33/WPRL/10073841
+ ip address 216.31.164.54 255.255.255.252
+ ip virtual-reassembly in
+ rate-limit input 52424000 9830400 19660800 conform-action transmit exceed-action drop
+ rate-limit output 52424000 9830400 19660800 conform-action transmit exceed-action drop
+ load-interval 30
+ duplex auto
+ speed auto
+!
+interface GigabitEthernet0/1
+ description CustomerLAN
+ ip address 64.239.141.201 255.255.255.248
+ rate-limit input 52424000 9830400 19660800 conform-action transmit exceed-action drop
+ rate-limit output 52424000 9830400 19660800 conform-action transmit exceed-action drop
+ duplex auto
+ speed auto
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.164.53
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.164.58

@@ -0,0 +1,96 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 12.3
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname SuperiorFarms_5MB_13.HTXX.000213_CIS_3653SierraPineAve
+!
+boot-start-marker
+boot system flash disk2:c7200-is-mz.123-26.bin
+boot-end-marker
+!
+logging buffered 20000 debugging
+no logging console
+!
+clock timezone PST -8
+clock summer-time PST recurring
+no network-clock-participate slot 1 
+no network-clock-participate wic 0 
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+aaa session-id common
+ip subnet-zero
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+interface FastEthernet0/0
+ description SuperiorFarms=13.HTXX.000213
+ ip address 216.31.164.58 255.255.255.252
+ load-interval 30
+ speed 100
+ full-duplex
+ traffic-shape rate 5000000 5000000 5000000 4096
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.129.193 255.255.255.248
+ duplex auto
+ speed auto
+ traffic-shape rate 5000000 5000000 5000000 4096
+!
+no ip http server
+ip classless
+ip route 0.0.0.0 0.0.0.0 216.31.164.57
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+banner motd ^CCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+!
+end

configs/216.31.165.58

@@ -0,0 +1,163 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+!
+hostname IBEWLocal11_20MB_2.000013.CFL2.000316_800N.DiamondBar
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 50000 informational
+logging persistent url flash:/syslog1 size 10485760 filesize 40000 immediate
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+no network-clock-participate aim 0 
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2811 sn FTX1019A4QT
+archive
+ log config
+  logging enable
+  logging persistent auto
+username tzcare
+!
+redundancy
+!
+track 1 ip sla 1 reachability
+ delay down 180
+!
+track 2 interface FastEthernet1/0 ip routing
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_20MB
+ class BANDWIDTH
+  shape average 20000000
+  queue-limit 62500 bytes
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface FastEthernet0/0
+ description hostname IBEWLocal11=2.000013.CFL2.000316
+ ip address 216.31.165.58 255.255.255.252
+ ip virtual-reassembly in
+ load-interval 30
+ duplex full
+ speed 100
+ service-policy output BANDWIDTH_20MB
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.152.25 255.255.255.248
+ ip policy route-map FO
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_20MB
+!
+interface FastEthernet1/0
+ description Failover_Link
+ ip address 64.239.142.201 255.255.255.252
+ duplex full
+ speed 100
+ service-policy output BANDWIDTH_20MB
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.165.57 track 1
+ip route 0.0.0.0 0.0.0.0 64.239.142.202 140
+!
+ip sla 1
+ icmp-echo 216.31.165.57 source-ip 216.31.165.58
+ frequency 30
+ timeout 30000
+ threshold 30000
+ip sla schedule 1 life forever start-time now
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+route-map FO permit 10
+ match ip address 10
+ match interface FastEthernet1/0
+ set ip next-hop verify-availability 216.31.165.57 1 track 1
+ set ip next-hop verify-availability 64.239.142.202 2 track 2
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.166.238

@@ -0,0 +1,133 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname ThresholdCommunications_25MB_13.HTXX.000281_1800RosecransAve
+!
+boot-start-marker
+boot-end-marker
+!
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+memory-size iomem 10
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2811 sn FTX1042A3QS
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+ip ssh version 2
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_15MB
+ class BANDWIDTH
+  shape average 15000000
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface FastEthernet0/0
+ description ThresholdCommunications=13.HTXX.000281
+ ip address 216.31.166.238 255.255.255.252
+ load-interval 30
+ duplex full
+ speed 100
+ traffic-shape rate 25000000 25000000 25000000 4096
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.134.57 255.255.255.248
+ ip flow ingress
+ load-interval 30
+ duplex full
+ speed 100
+ traffic-shape rate 25000000 25000000 25000000 4096
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.166.237
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.166.26

@@ -0,0 +1,140 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname KinkisharyoInternational_30MB_13.HTXX.000153.CIS_4350E.208thSt
+!
+boot-start-marker
+boot system flash disk2:c7200-is-mz.123-26.bin
+boot-end-marker
+!
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+!
+dot11 syslog
+ip source-route
+!
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+!
+multilink bundle-name authenticated
+!
+voice-card 0
+!
+crypto pki token default removal timeout 0
+!
+license udi pid CISCO2811 sn FTX1042A3MM
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+!
+ip ssh version 2
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_30MB
+ class BANDWIDTH
+  shape average 30000000
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+policy-map BANDWIDTH_30MB2
+ class BANDWIDTH
+  shape peak 30000000
+ class class-default
+  fair-queue
+  random-detect dscp-based
+  random-detect ecn
+!
+interface FastEthernet0/0
+ description KinkisharyoInternational=4350E.208thSt
+ ip address 216.31.166.26 255.255.255.252
+ ip flow ingress
+ load-interval 30
+ duplex full
+ speed 100
+ service-policy output BANDWIDTH_30MB2
+!
+interface FastEthernet0/1
+ description CustomerLAN
+ ip address 64.239.133.249 255.255.255.248
+ ip flow ingress
+ duplex auto
+ speed auto
+ service-policy output BANDWIDTH_30MB2
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.166.25
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+mgcp profile default
+!
+banner motd ^CCCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+line aux 0
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+scheduler allocate 20000 1000
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.166.70

@@ -0,0 +1,142 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+upgrade fpd auto
+version 15.0
+service timestamps debug datetime msec
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname C.R.LaurenceCo_100MB_13.HTXX.000165.CIS_22555LaQuillaDr
+!
+boot-start-marker
+boot system disk2:c7200-spservicesk9-mz.150-1.M10.bin
+boot system flash disk2:c7200-is-mz.123-26.bin
+boot bootldr disk2:c7200-boot-mz.124-25b.bin
+boot-end-marker
+!
+logging buffered 20000
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+clock timezone PST -8
+clock summer-time PST recurring
+ip source-route
+ip cef
+!
+ip domain name auto
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+no ipv6 cef
+multilink bundle-name authenticated
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_100MB
+ class BANDWIDTH
+    shape average 100000000
+ class class-default
+    fair-queue
+     random-detect dscp-based
+     random-detect ecn
+!
+interface GigabitEthernet0/1
+ description C.R.LaurenceCo=13.HTXX.000165.CIS
+ ip address 216.31.166.70 255.255.255.252
+ load-interval 30
+ duplex full
+ speed 100
+ media-type rj45
+ no negotiation auto
+ service-policy output BANDWIDTH_100MB
+!
+interface GigabitEthernet0/2
+ description CustomerLAN
+ ip address 64.239.130.1 255.255.255.248
+ load-interval 30
+ duplex auto
+ speed auto
+ media-type rj45
+ no negotiation auto
+ service-policy output BANDWIDTH_100MB
+!
+interface GigabitEthernet0/3
+ no ip address
+ shutdown
+ duplex auto
+ speed auto
+ media-type rj45
+ no negotiation auto
+!
+ip forward-protocol nd
+no ip http server
+no ip http secure-server
+!
+ip route 0.0.0.0 0.0.0.0 216.31.166.69
+!
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+gatekeeper
+ shutdown
+!
+banner motd ^CCCCCCCCCCCCCC
+
+*************************************************************
+
+Tierzero:
+
+Unauthorized access to this device or the attached
+
+networks is prohibited without express written permission.
+
+Violators may be prosecuted to the fullest extent of the law.
+
+Phone: 213-784-1400 option 1
+
+Email: [tac@tierzero.net]
+
+*********TACACS+*************************
+
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+line vty 5 15
+ access-class 25 in
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

configs/216.31.176.2

@@ -0,0 +1,163 @@
+!RANCID-CONTENT-TYPE: cisco-clean
+!
+!
+!
+!
+!
+version 15.1
+service timestamps debug datetime msec localtime show-timezone year
+service timestamps log datetime msec localtime show-timezone year
+service password-encryption
+service sequence-numbers
+no platform punt-keepalive disable-kernel-core
+!
+hostname KinkisharyoInternational_250MB_13KRGN621019PT_1960E.GrandAve
+!
+boot-start-marker
+boot-end-marker
+!
+vrf definition Mgmt-intf
+ !
+ address-family ipv4
+ exit-address-family
+ !
+ address-family ipv6
+ exit-address-family
+!
+logging buffered 50000 informational
+logging persistent url flash:/syslog1 size 10485760 filesize 40000 immediate
+no logging console
+!
+aaa new-model
+!
+aaa authentication fail-message ^CCCCCCCCCC****TACACS+************^C
+aaa authentication login default group tacacs+ local
+aaa authentication enable default group tacacs+ none
+!
+aaa session-id common
+!
+clock timezone PST -8 0
+clock summer-time PST recurring
+ip source-route
+!
+ip domain name tierzero.net
+ip name-server 216.116.96.2
+ip name-server 216.116.96.3
+!
+multilink bundle-name authenticated
+!
+archive
+ log config
+  logging enable
+!
+username tzcare privilege 15 secret 5 $1$QcDi$cx/mqm7rFUUwXiVU5g0OJ.
+!
+redundancy
+ mode none
+!
+ip tftp source-interface GigabitEthernet0
+ip ssh version 2
+!
+class-map match-all BANDWIDTH
+ match any 
+!
+policy-map BANDWIDTH_250MB
+ class BANDWIDTH
+  priority level 1
+ class class-default
+  police rate 250000000  burst 500000  conform-action transmit  exceed-action drop 
+!
+interface GigabitEthernet0/0/0
+ description Available
+ no ip address
+ ip access-group 125 in
+ load-interval 30
+ shutdown
+ no negotiation auto
+ service-policy output BANDWIDTH_250MB
+!
+interface GigabitEthernet0/0/1
+ description CustomerLAN
+ ip address 64.239.141.153 255.255.255.248
+ load-interval 30
+ negotiation auto
+ service-policy output BANDWIDTH_250MB
+!
+interface GigabitEthernet0/0/2
+ ip address 64.239.135.73 255.255.255.248
+ load-interval 30
+ negotiation auto
+ service-policy output BANDWIDTH_250MB
+!
+interface GigabitEthernet0/0/3
+ description KinkisharyoInternational=13KRGN621019PT
+ no ip address
+ load-interval 30
+ no negotiation auto
+ service-policy output BANDWIDTH_250MB
+!
+interface GigabitEthernet0/0/3.1
+ encapsulation dot1Q 2405
+ ip address 216.31.176.2 255.255.255.252
+ ip access-group 125 in
+!
+interface GigabitEthernet0
+ vrf forwarding Mgmt-intf
+ no ip address
+ shutdown
+ negotiation auto
+!
+no ip http server
+no ip http secure-server
+ip route 0.0.0.0 0.0.0.0 216.31.176.1
+!
+logging esm config
+access-list 25 permit 64.239.128.0 0.0.63.255
+access-list 25 permit 66.6.208.0 0.0.15.255
+access-list 25 permit 72.18.0.0 0.0.31.255
+access-list 25 permit 208.179.0.0 0.0.255.255
+access-list 25 permit 216.31.128.0 0.0.63.255
+access-list 25 permit 216.116.96.0 0.0.31.255
+access-list 25 deny   any
+access-list 125 permit ip any 158.228.0.0 0.0.255.255
+access-list 125 permit ip 158.228.0.0 0.0.255.255 any
+access-list 125 deny   tcp any host 64.239.141.154 eq 636
+access-list 125 deny   tcp any host 64.239.141.155 eq 636
+access-list 125 permit ip any any
+!
+snmp-server engineID local 0000000902000050547D0984
+snmp-server community tierzero RO
+!
+tacacs-server host 216.116.96.47
+tacacs-server timeout 10
+tacacs-server directed-request
+tacacs-server key 7 01040E554F58165F2F5501
+!
+control-plane
+!
+banner motd ^CCCCCCCCCCC
+*************************************************************
+Tierzero:
+Unauthorized access to this device or the attached
+networks is prohibited without express written permission.
+Violators may be prosecuted to the fullest extent of the law.
+Phone: 213-784-1400 option 1
+Email: [tac@tierzero.net]
+*********TACACS+*************************
+^C
+!
+line con 0
+ stopbits 1
+line aux 0
+ stopbits 1
+line vty 0 4
+ access-class 25 in
+ transport input all
+line vty 5 15
+ access-class 25 in
+ transport input all
+!
+ntp server 204.152.184.72
+ntp server 216.31.128.192
+ntp server 216.116.96.3
+end

router.db

@@ -45,3 +45,76 @@
 216.31.134.234;cisco-clean;up
 216.31.134.238;cisco-clean;up
 216.31.134.250;cisco-clean;up
+216.31.136.6;cisco-clean;up
+216.31.136.106;cisco-clean;up
+216.31.136.162;cisco-clean;up
+216.31.136.174;cisco-clean;up
+216.31.136.214;cisco-clean;up
+216.31.136.218;cisco-clean;up
+216.31.136.230;cisco-clean;up
+216.31.136.246;cisco-clean;up
+216.31.136.250;cisco-clean;up
+216.31.137.2;cisco-clean;up
+216.31.137.26;cisco-clean;up
+216.31.137.50;cisco-clean;up
+216.31.137.58;cisco-clean;up
+216.31.137.62;cisco-clean;up
+216.31.138.2;cisco-clean;up
+216.31.138.26;cisco-clean;up
+216.31.138.42;cisco-clean;up
+216.31.138.134;cisco-clean;up
+216.31.138.162;cisco-clean;up
+216.31.138.174;cisco-clean;up
+216.31.138.214;cisco-clean;up
+216.31.138.238;cisco-clean;up
+216.31.138.242;cisco-clean;up
+216.31.138.246;cisco-clean;up
+216.31.146.9;cisco-clean;up
+216.31.146.11;cisco-clean;up
+216.31.149.2;cisco-clean;up
+216.31.149.10;cisco-clean;up
+216.31.152.34;cisco-clean;up
+216.31.152.62;cisco-clean;up
+216.31.152.186;cisco-clean;up
+216.31.152.198;cisco-clean;up
+216.31.152.214;cisco-clean;up
+216.31.152.234;cisco-clean;up
+216.31.154.26;cisco-clean;up
+216.31.154.38;cisco-clean;up
+216.31.154.94;cisco-clean;up
+216.31.154.106;cisco-clean;up
+216.31.154.118;cisco-clean;up
+216.31.157.2;cisco-clean;up
+216.31.157.38;cisco-clean;up
+216.31.157.42;cisco-clean;up
+216.31.157.50;cisco-clean;up
+216.31.157.70;cisco-clean;up
+216.31.157.82;cisco-clean;up
+216.31.157.86;cisco-clean;up
+216.31.157.94;cisco-clean;up
+216.31.157.102;cisco-clean;up
+216.31.157.110;cisco-clean;up
+216.31.157.114;cisco-clean;up
+216.31.157.122;cisco-clean;up
+216.31.157.126;cisco-clean;up
+216.31.157.138;cisco-clean;up
+216.31.157.146;cisco-clean;up
+216.31.157.150;cisco-clean;up
+216.31.157.158;cisco-clean;up
+216.31.157.190;cisco-clean;up
+216.31.157.198;cisco-clean;up
+216.31.157.202;cisco-clean;up
+216.31.157.206;cisco-clean;up
+216.31.157.222;cisco-clean;up
+216.31.157.230;cisco-clean;up
+216.31.157.234;cisco-clean;up
+216.31.164.54;cisco-clean;up
+216.31.164.58;cisco-clean;up
+216.31.164.102;cisco-clean;up
+216.31.165.2;cisco-clean;up
+216.31.165.54;cisco-clean;up
+216.31.165.58;cisco-clean;up
+216.31.166.26;cisco-clean;up
+216.31.166.70;cisco-clean;up
+216.31.166.238;cisco-clean;up
+216.31.176.2;cisco-clean;up