<config version="9.0.

0" urldb="paloaltonetworks">
<mgt-config>
<users>
<entry name="admin">
<phash>fnRL/G5lXVMug</phash>
<permissions>
<role-based>
<superuser>yes</superuser>
</role-based>
</permissions>
</entry>
</users>
</mgt-config>
<shared>
<application/>
<application-group/>
<service/>
<service-group/>
<botnet>
<configuration>
<http>
<dynamic-dns>
<enabled>yes</enabled>
<threshold>5</threshold>
</dynamic-dns>
<malware-sites>
<enabled>yes</enabled>
<threshold>5</threshold>
</malware-sites>
<recent-domains>
<enabled>yes</enabled>
<threshold>5</threshold>
</recent-domains>
<ip-domains>
<enabled>yes</enabled>
<threshold>10</threshold>
</ip-domains>
<executables-from-unknown-sites>
<enabled>yes</enabled>
<threshold>5</threshold>
</executables-from-unknown-sites>
</http>
<other-applications>
<irc>yes</irc>
</other-applications>
<unknown-applications>
<unknown-tcp>
<destinations-per-hour>10</destinations-per-hour>
<sessions-per-hour>10</sessions-per-hour>
<session-length>
<maximum-bytes>100</maximum-bytes>
<minimum-bytes>50</minimum-bytes>
</session-length>
</unknown-tcp>
<unknown-udp>
<destinations-per-hour>10</destinations-per-hour>
<sessions-per-hour>10</sessions-per-hour>
<session-length>
<maximum-bytes>100</maximum-bytes>
 <minimum-bytes>50</minimum-bytes>
</session-length>
</unknown-udp>
</unknown-applications>
</configuration>
<report>
<topn>100</topn>
<scheduled>yes</scheduled>
</report>
</botnet>
<content-preview>
<application/>
<application-type>
<category/>
<technology/>
</application-type>
</content-preview>
</shared>
<devices>
<entry name="localhost.localdomain">
<network>
<interface>
<ethernet>
<entry name="ethernet1/1">
<layer3>
<ipv6>
<neighbor-discovery>
<router-advertisement>
<enable>no</enable>
</router-advertisement>
</neighbor-discovery>
</ipv6>
<ndp-proxy>
<enabled>no</enabled>
</ndp-proxy>
<ip>
<entry name="10.10.10.2/30"/>
</ip>
<interface-management-profile>ping</interface-management-profile>
<lldp>
<enable>yes</enable>
<profile>LLDP_PROFILE</profile>
</lldp>
</layer3>
<link-state>up</link-state>
</entry>
<entry name="ethernet1/4">
<layer2>
<lldp>
<enable>no</enable>
</lldp>
</layer2>
</entry>
<entry name="ethernet1/5">
<layer2>
<lldp>
<enable>no</enable>
</lldp>
</layer2>
 </entry>
<entry name="ethernet1/2">
<layer2>
<lldp>
<enable>yes</enable>
<profile>LLDP_PROFILE</profile>
</lldp>
<units>
<entry name="ethernet1/2.10">
<tag>10</tag>
</entry>
<entry name="ethernet1/2.20">
<tag>20</tag>
</entry>
</units>
</layer2>
</entry>
</ethernet>
<loopback>
<units>
<entry name="loopback.1">
<adjust-tcp-mss>
<enable>no</enable>
</adjust-tcp-mss>
<ip>
<entry name="172.16.1.3/32"/>
</ip>
<interface-management-profile>ping</interface-management-profile>
</entry>
</units>
</loopback>
<vlan>
<units>
<entry name="vlan.10">
<ipv6>
<neighbor-discovery>
<router-advertisement>
<enable>no</enable>
</router-advertisement>
</neighbor-discovery>
</ipv6>
<ndp-proxy>
<enabled>no</enabled>
</ndp-proxy>
<adjust-tcp-mss>
<enable>no</enable>
</adjust-tcp-mss>
<ip>
<entry name="192.168.10.254/24"/>
</ip>
<interface-management-profile>ping</interface-management-profile>
</entry>
</units>
</vlan>
</interface>
<profiles>
<monitor-profile>
<entry name="default">
<interval>3</interval>
 <threshold>5</threshold>
<action>wait-recover</action>
</entry>
</monitor-profile>
<interface-management-profile>
<entry name="ping">
<ping>yes</ping>
</entry>
</interface-management-profile>
<lldp-profile>
<entry name="LLDP_PROFILE">
<option-tlvs>
<management-address>
<enabled>no</enabled>
</management-address>
<port-description>yes</port-description>
<system-name>yes</system-name>
<system-description>yes</system-description>
<system-capabilities>yes</system-capabilities>
</option-tlvs>
</entry>
</lldp-profile>
</profiles>
<ike>
<crypto-profiles>
<ike-crypto-profiles>
<entry name="default">
<encryption>
<member>aes-128-cbc</member>
<member>3des</member>
</encryption>
<hash>
<member>sha1</member>
</hash>
<dh-group>
<member>group2</member>
</dh-group>
<lifetime>
<hours>8</hours>
</lifetime>
</entry>
<entry name="Suite-B-GCM-128">
<encryption>
<member>aes-128-cbc</member>
</encryption>
<hash>
<member>sha256</member>
</hash>
<dh-group>
<member>group19</member>
</dh-group>
<lifetime>
<hours>8</hours>
</lifetime>
</entry>
<entry name="Suite-B-GCM-256">
<encryption>
<member>aes-256-cbc</member>
</encryption>
 <hash>
<member>sha384</member>
</hash>
<dh-group>
<member>group20</member>
</dh-group>
<lifetime>
<hours>8</hours>
</lifetime>
</entry>
</ike-crypto-profiles>
<ipsec-crypto-profiles>
<entry name="default">
<esp>
<encryption>
<member>aes-128-cbc</member>
<member>3des</member>
</encryption>
<authentication>
<member>sha1</member>
</authentication>
</esp>
<dh-group>group2</dh-group>
<lifetime>
<hours>1</hours>
</lifetime>
</entry>
<entry name="Suite-B-GCM-128">
<esp>
<encryption>
<member>aes-128-gcm</member>
</encryption>
<authentication>
<member>none</member>
</authentication>
</esp>
<dh-group>group19</dh-group>
<lifetime>
<hours>1</hours>
</lifetime>
</entry>
<entry name="Suite-B-GCM-256">
<esp>
<encryption>
<member>aes-256-gcm</member>
</encryption>
<authentication>
<member>none</member>
</authentication>
</esp>
<dh-group>group20</dh-group>
<lifetime>
<hours>1</hours>
</lifetime>
</entry>
</ipsec-crypto-profiles>
<global-protect-app-crypto-profiles>
<entry name="default">
<encryption>
 <member>aes-128-cbc</member>
</encryption>
<authentication>
<member>sha1</member>
</authentication>
</entry>
</global-protect-app-crypto-profiles>
</crypto-profiles>
</ike>
<qos>
<profile>
<entry name="default">
<class>
<entry name="class1">
<priority>real-time</priority>
</entry>
<entry name="class2">
<priority>high</priority>
</entry>
<entry name="class3">
<priority>high</priority>
</entry>
<entry name="class4">
<priority>medium</priority>
</entry>
<entry name="class5">
<priority>medium</priority>
</entry>
<entry name="class6">
<priority>low</priority>
</entry>
<entry name="class7">
<priority>low</priority>
</entry>
<entry name="class8">
<priority>low</priority>
</entry>
</class>
</entry>
</profile>
</qos>
<virtual-router>
<entry name="default">
<protocol>
<bgp>
<enable>no</enable>
<dampening-profile>
<entry name="default">
<cutoff>1.25</cutoff>
<reuse>0.5</reuse>
<max-hold-time>900</max-hold-time>
<decay-half-life-reachable>300</decay-half-life-reachable>
<decay-half-life-unreachable>900</decay-half-life-unreachable>
<enable>yes</enable>
</entry>
</dampening-profile>
<routing-options>
<graceful-restart>
<enable>yes</enable>
 </graceful-restart>
</routing-options>
</bgp>
<rip>
<enable>no</enable>
</rip>
<ospf>
<enable>yes</enable>
<area>
<entry name="0.0.0.0">
<type>
<normal/>
</type>
<interface>
<entry name="ethernet1/1">
<bfd>
<profile>Inherit-vr-global-setting</profile>
</bfd>
<enable>yes</enable>
<passive>no</passive>
<gr-delay>10</gr-delay>
<metric>10</metric>
<priority>1</priority>
<hello-interval>10</hello-interval>
<dead-counts>4</dead-counts>
<retransmit-interval>5</retransmit-interval>
<transit-delay>1</transit-delay>
<link-type>
<broadcast/>
</link-type>
</entry>
<entry name="loopback.1">
<bfd>
<profile>Inherit-vr-global-setting</profile>
</bfd>
<enable>yes</enable>
<passive>yes</passive>
<gr-delay>10</gr-delay>
<metric>10</metric>
<priority>1</priority>
<hello-interval>10</hello-interval>
<dead-counts>4</dead-counts>
<retransmit-interval>5</retransmit-interval>
<transit-delay>1</transit-delay>
<link-type>
<broadcast/>
</link-type>
</entry>
<entry name="vlan.10">
<bfd>
<profile>Inherit-vr-global-setting</profile>
</bfd>
<enable>yes</enable>
<passive>yes</passive>
<gr-delay>10</gr-delay>
<metric>10</metric>
<priority>1</priority>
<hello-interval>10</hello-interval>
<dead-counts>4</dead-counts>
 <retransmit-interval>5</retransmit-interval>
<transit-delay>1</transit-delay>
<link-type>
<broadcast/>
</link-type>
</entry>
</interface>
</entry>
</area>
<router-id>172.16.1.3</router-id>
</ospf>
<ospfv3>
<enable>no</enable>
</ospfv3>
</protocol>
<interface>
<member>ethernet1/1</member>
<member>loopback.1</member>
<member>vlan.10</member>
</interface>
<ecmp>
<algorithm>
<ip-modulo/>
</algorithm>
</ecmp>
</entry>
</virtual-router>
<vlan>
<entry name="VLAN_10">
<interface>
<member>ethernet1/4</member>
<member>ethernet1/2.10</member>
</interface>
<virtual-interface>
<interface>vlan.10</interface>
</virtual-interface>
</entry>
<entry name="VLAN_20">
<interface>
<member>ethernet1/5</member>
<member>ethernet1/2.20</member>
</interface>
</entry>
<entry name="VLAN_1">
<interface/>
</entry>
</vlan>
<lldp>
<enable>yes</enable>
</lldp>
</network>
<deviceconfig>
<system>
<type>
<static/>
</type>
<update-server>updates.paloaltonetworks.com</update-server>
<update-schedule>
<threats>
 <recurring>
<weekly>
<day-of-week>wednesday</day-of-week>
<at>01:02</at>
<action>download-only</action>
</weekly>
</recurring>
</threats>
</update-schedule>
<timezone>US/Pacific</timezone>
<service>
<disable-telnet>yes</disable-telnet>
<disable-http>yes</disable-http>
</service>
<hostname>LAN-FW-3</hostname>
<ip-address>10.10.46.43</ip-address>
<netmask>255.255.255.0</netmask>
<default-gateway>10.10.46.254</default-gateway>
<login-banner>LAN-FW-3</login-banner>
</system>
<setting>
<config>
<rematch>yes</rematch>
</config>
<management>
<hostname-type-in-syslog>FQDN</hostname-type-in-syslog>
</management>
<auto-mac-detect>yes</auto-mac-detect>
</setting>
</deviceconfig>
<vsys>
<entry name="vsys1">
<application/>
<application-group/>
<zone>
<entry name="TRUST">
<network>
<layer3>
<member>vlan.10</member>
</layer3>
</network>
</entry>
<entry name="ZONE_10">
<network>
<layer2>
<member>ethernet1/4</member>
<member>ethernet1/2.10</member>
</layer2>
</network>
</entry>
<entry name="ZONE_20">
<network>
<layer2>
<member>ethernet1/5</member>
<member>ethernet1/2.20</member>
</layer2>
</network>
</entry>
<entry name="ZONE_NATIVE">
 <network>
<layer2/>
</network>
</entry>
<entry name="UNTRUST">
<network>
<layer3/>
</network>
</entry>
<entry name="DMZ">
<network>
<layer3>
<member>ethernet1/1</member>
<member>loopback.1</member>
</layer3>
</network>
</entry>
</zone>
<service/>
<service-group/>
<schedule/>
<rulebase>
<default-security-rules>
<rules>
<entry name="intrazone-default" uuid="49d12667-3288-4612-be40-
64ae027e9454">
<action>allow</action>
<log-start>yes</log-start>
<log-end>no</log-end>
</entry>
</rules>
</default-security-rules>
<security>
<rules>
<entry name="all" uuid="d97d5983-5bcc-40ad-819f-c36e9513c84b">
<to>
<member>any</member>
</to>
<from>
<member>any</member>
</from>
<source>
<member>any</member>
</source>
<destination>
<member>any</member>
</destination>
<source-user>
<member>any</member>
</source-user>
<category>
<member>any</member>
</category>
<application>
<member>any</member>
</application>
<service>
<member>application-default</member>
</service>
 <hip-profiles>
<member>any</member>
</hip-profiles>
<action>allow</action>
</entry>
</rules>
</security>
</rulebase>
<import>
<network>
<interface>
<member>ethernet1/1</member>
<member>ethernet1/4</member>
<member>ethernet1/5</member>
<member>ethernet1/2</member>
<member>ethernet1/2.10</member>
<member>ethernet1/2.20</member>
<member>loopback.1</member>
<member>vlan.10</member>
</interface>
</network>
</import>
</entry>
</vsys>
</entry>
</devices>
</config>