mirror of
https://github.com/jerikan-network/cmdb.git
synced 2024-05-06 04:54:50 +00:00
Vincent Bernat
d191613ab8
No history. If you have the original history, you can use: ``` git replace THISCOMMIT b0b998bd1c651e308ac71a9158e07e5c3521a281 ```
49 lines
790 B
YAML
49 lines
790 B
YAML
sampling:
|
|
type: ipfix
|
|
target: 208.76.14.241
|
|
flex: false
|
|
snmp-prefix: 209.50.158.0/23
|
|
snmp-community: gjkdhgjfhjgh-kentik
|
|
collector:
|
|
kentik:
|
|
- 208.76.14.223
|
|
- 2620:129:1:2::1
|
|
|
|
netbox:
|
|
role: net_edge_router
|
|
|
|
protect-re: true
|
|
in-sync: true
|
|
|
|
firewall:
|
|
- action: permit
|
|
protocol: udp
|
|
src: "~{{ lookup('system', 'sampling')['snmp-prefix'] }}"
|
|
dport: snmp
|
|
- action: deny
|
|
protocol: udp
|
|
dport: snmp
|
|
- action: deny
|
|
protocol: udp
|
|
dport: ntp
|
|
# Echo
|
|
- action: deny
|
|
protocol: udp
|
|
dport: 7
|
|
# Discard
|
|
- action: deny
|
|
protocol: udp
|
|
dport: 9
|
|
# QOTD
|
|
- action: deny
|
|
protocol: udp
|
|
dport: 17
|
|
# Chargen
|
|
- action: deny
|
|
protocol: udp
|
|
dport: 19
|
|
# SSDP
|
|
- action: deny
|
|
protocol: udp
|
|
dport: 1900
|