#config-version=FGT60E-6.0.2-FW-build0163-180725:opmode=0:vdom=0:user=admin #conf_file_ver=244216135474716 #buildno=0163 #global_vdom=1 config system global set admintimeout 480 set alias "FGT60ETK18099RNR" set gui-device-latitude "22.999797689110828" set gui-device-longitude "-8.827058457939172" set hostname "FGT60ETK18099RNR" set language spanish set switch-controller enable set timezone 07 end config system accprofile edit "prof_admin" set authgrp read-write set sysgrp read-write set netgrp read-write set loggrp read-write set fwgrp read-write set vpngrp read-write set utmgrp read-write set wifi read-write next edit "SOPORTE" set authgrp read set sysgrp read set netgrp read set loggrp read set fwgrp read set vpngrp read set utmgrp read set wifi read next edit "asegurando" next end config system interface edit "wan1" set vdom "root" set ip 190.53.34.138 255.255.255.248 set allowaccess ping https ssh snmp http fgfm set type physical set alias "WAN-TIGO" set role wan set snmp-index 1 next edit "wan2" set vdom "root" set ip 200.35.183.42 255.255.255.252 set allowaccess ping https snmp fgfm set type physical set alias "WAN-TIGO-2" set snmp-index 7 next edit "dmz" set vdom "root" set ip 10.10.10.1 255.255.255.0 set allowaccess ping https http fgfm capwap set type physical set snmp-index 2 next edit "internal2" set vdom "root" set ip 192.168.201.1 255.255.255.0 set allowaccess ping https ssh snmp fgfm set type physical set alias "WAN-TIGO-2" set device-identification enable set role lan set snmp-index 7 next edit "internal3" set vdom "root" set ip 192.168.235.1 255.255.255.0 set allowaccess ping https ssh snmp set type physical set alias "lan3" set device-identification enable set role lan set snmp-index 5 next edit "internal4" set vdom "root" set type physical set snmp-index 9 next edit "internal5" set vdom "root" set type physical set snmp-index 10 next edit "internal6" set vdom "root" set type physical set snmp-index 11 next edit "internal7" set vdom "root" set type physical set snmp-index 12 next edit "Forticlient-P" set vdom "root" set ip 169.254.1.1 255.255.255.255 set type tunnel set fortiheartbeat enable set snmp-index 4 set interface "wan1" next edit "ipsecvpn" set vdom "root" set ip 169.254.1.2 255.255.255.255 set type tunnel set remote-ip 169.254.1.2 255.255.255.255 set fortiheartbeat enable set snmp-index 13 set interface "wan1" next edit "Macen-to-Poly" set vdom "root" set type tunnel set snmp-index 12 set interface "wan1" next edit "macen-vpn" set vdom "root" set ip 169.254.1.3 255.255.255.255 set type tunnel set remote-ip 169.254.1.3 255.255.255.255 set fortiheartbeat enable set snmp-index 14 set interface "wan1" next edit "_OCVPN0-1" set vdom "root" set type tunnel set snmp-index 15 set interface "wan1" next edit "IFX - VPN" set vdom "root" set type tunnel set snmp-index 16 set interface "wan1" next edit "MACEN-ESTELI" set vdom "root" set type tunnel set snmp-index 17 set interface "wan1" next edit "modem" set vdom "root" set mode pppoe set type physical set snmp-index 4 next edit "ssl.root" set vdom "root" set type tunnel set alias "SSL VPN interface" set snmp-index 5 next edit "internal" set vdom "root" set ip 192.168.1.99 255.255.255.0 set allowaccess ping https ssh http fgfm capwap set type hard-switch set stp enable set role lan set snmp-index 6 next end config system physical-switch edit "sw0" set age-val 0 next end config system virtual-switch edit "internal" set physical-switch "sw0" config port edit "internal1" next end next end config system virtual-switch edit "internal2" set physical-switch "sw0" config port edit "internal2" next edit "internal5" next edit "internal6" next edit "internal7" next end edit "IT" set physical-switch "sw0" config port edit "internal3" next edit "internal4" next end next end config system custom-language edit "en" set filename "en" next edit "fr" set filename "fr" next edit "sp" set filename "sp" next edit "pg" set filename "pg" next edit "x-sjis" set filename "x-sjis" next edit "big5" set filename "big5" next edit "GB2312" set filename "GB2312" next edit "euc-kr" set filename "euc-kr" next end config system admin edit "admin" set accprofile "super_admin" set vdom "root" config gui-dashboard edit 1 set name "Main" config widget edit 1 set x-pos 1 set y-pos 1 set width 1 set height 1 next edit 2 set type licinfo set x-pos 2 set y-pos 1 set width 1 set height 1 next edit 3 set type forticloud set x-pos 3 set y-pos 1 set width 1 set height 1 next edit 4 set type security-fabric set x-pos 4 set y-pos 1 set width 1 set height 1 next edit 5 set type security-fabric-ranking set x-pos 5 set y-pos 1 set width 1 set height 1 next edit 6 set type admins set x-pos 6 set y-pos 1 set width 1 set height 1 next edit 7 set type cpu-usage set x-pos 7 set y-pos 1 set width 2 set height 1 next edit 8 set type memory-usage set x-pos 8 set y-pos 1 set width 2 set height 1 next edit 9 set type sessions set x-pos 9 set y-pos 1 set width 2 set height 1 next end next end set gui-vdom-menu-favorites "avprofile" "web_profile" "dns_profile" "app_list" "user_local" "ssl_config" "firewallpolicy" set password ENC SH29DeRgTIhwM8w3wKKe0Ntz5lSCdBlsOAaxIvkuyr+/LPaHpRuQ2fbbFDEJcw= next edit "informatica" set accprofile "super_admin" set vdom "root" config gui-dashboard edit 1 set name "Main" config widget edit 1 set x-pos 1 set y-pos 1 set width 1 set height 1 next edit 2 set type licinfo set x-pos 2 set y-pos 1 set width 1 set height 1 next edit 3 set type forticloud set x-pos 3 set y-pos 1 set width 1 set height 1 next edit 4 set type security-fabric set x-pos 4 set y-pos 1 set width 1 set height 1 next edit 5 set type security-fabric-ranking set x-pos 5 set y-pos 1 set width 1 set height 1 next edit 6 set type admins set x-pos 6 set y-pos 1 set width 1 set height 1 next edit 7 set type cpu-usage set x-pos 7 set y-pos 1 set width 2 set height 1 next edit 8 set type memory-usage set x-pos 8 set y-pos 1 set width 2 set height 1 next edit 9 set type sessions set x-pos 9 set y-pos 1 set width 2 set height 1 next end next end set password ENC SH2eOX3qQEEZsitA5z7LuPHlYhWm2c41q0tWgPUVwDfs5/OrpEqAmTeKOCJG38= next edit "tigo" set accprofile "prof_admin" set vdom "root" set password ENC SH2t1AEM6BIksJuYJRKoilFpYCoXpo2dc1Pe2cWAnUhjbZ4o5G/fXrwTFzK+Ro= next end config system ha set override disable end config system dns set primary 167.250.220.220 set secondary 186.148.105.105 end config system replacemsg-image edit "logo_fnet" set image-type gif set image-base64 '' next edit "logo_fguard_wf" set image-type gif set image-base64 '' next edit "logo_fw_auth" set image-base64 '' next edit "logo_v2_fnet" set image-base64 '' next edit "logo_v2_fguard_wf" set image-base64 '' next edit "logo_v2_fguard_app" set image-base64 '' next end config system replacemsg mail "email-av-fail" end config system replacemsg mail "email-block" end config system replacemsg mail "email-dlp-subject" end config system replacemsg mail "email-dlp-ban" end config system replacemsg mail "email-filesize" end config system replacemsg mail "partial" end config system replacemsg mail "smtp-block" end config system replacemsg mail "smtp-filesize" end config system replacemsg mail "email-decompress-limit" end config system replacemsg mail "smtp-decompress-limit" end config system replacemsg http "bannedword" end config system replacemsg http "url-block" end config system replacemsg http "urlfilter-err" end config system replacemsg http "infcache-block" end config system replacemsg http "http-block" end config system replacemsg http "http-filesize" end config system replacemsg http "http-dlp-ban" end config system replacemsg http "http-archive-block" end config system replacemsg http "http-contenttypeblock" end config system replacemsg http "https-invalid-cert-block" end config system replacemsg http "http-client-block" end config system replacemsg http "http-client-filesize" end config system replacemsg http "http-client-bannedword" end config system replacemsg http "http-post-block" end config system replacemsg http "http-client-archive-block" end config system replacemsg http "switching-protocols-block" end config system replacemsg webproxy "deny" end config system replacemsg webproxy "user-limit" end config system replacemsg webproxy "auth-challenge" end config system replacemsg webproxy "auth-login-fail" end config system replacemsg webproxy "auth-authorization-fail" end config system replacemsg webproxy "http-err" end config system replacemsg webproxy "auth-ip-blackout" end config system replacemsg ftp "ftp-av-fail" end config system replacemsg ftp "ftp-dl-blocked" end config system replacemsg ftp "ftp-dl-filesize" end config system replacemsg ftp "ftp-dl-dlp-ban" end config system replacemsg ftp "ftp-explicit-banner" end config system replacemsg ftp "ftp-dl-archive-block" end config system replacemsg nntp "nntp-av-fail" end config system replacemsg nntp "nntp-dl-blocked" end config system replacemsg nntp "nntp-dl-filesize" end config system replacemsg nntp "nntp-dlp-subject" end config system replacemsg nntp "nntp-dlp-ban" end config system replacemsg nntp "email-decompress-limit" end config system replacemsg fortiguard-wf "ftgd-block" end config system replacemsg fortiguard-wf "http-err" end config system replacemsg fortiguard-wf "ftgd-ovrd" end config system replacemsg fortiguard-wf "ftgd-quota" end config system replacemsg fortiguard-wf "ftgd-warning" end config system replacemsg spam "ipblocklist" end config system replacemsg spam "smtp-spam-dnsbl" end config system replacemsg spam "smtp-spam-feip" end config system replacemsg spam "smtp-spam-helo" end config system replacemsg spam "smtp-spam-emailblack" end config system replacemsg spam "smtp-spam-mimeheader" end config system replacemsg spam "reversedns" end config system replacemsg spam "smtp-spam-bannedword" end config system replacemsg spam "smtp-spam-ase" end config system replacemsg spam "submit" end config system replacemsg alertmail "alertmail-virus" end config system replacemsg alertmail "alertmail-block" end config system replacemsg alertmail "alertmail-nids-event" end config system replacemsg alertmail "alertmail-crit-event" end config system replacemsg alertmail "alertmail-disk-full" end config system replacemsg admin "pre_admin-disclaimer-text" end config system replacemsg admin "post_admin-disclaimer-text" end config system replacemsg auth "auth-disclaimer-page-1" end config system replacemsg auth "auth-disclaimer-page-2" end config system replacemsg auth "auth-disclaimer-page-3" end config system replacemsg auth "auth-reject-page" end config system replacemsg auth "auth-login-page" end config system replacemsg auth "auth-login-failed-page" end config system replacemsg auth "auth-token-login-page" end config system replacemsg auth "auth-token-login-failed-page" end config system replacemsg auth "auth-success-msg" end config system replacemsg auth "auth-challenge-page" end config system replacemsg auth "auth-keepalive-page" end config system replacemsg auth "auth-portal-page" end config system replacemsg auth "auth-password-page" end config system replacemsg auth "auth-fortitoken-page" end config system replacemsg auth "auth-next-fortitoken-page" end config system replacemsg auth "auth-email-token-page" end config system replacemsg auth "auth-sms-token-page" end config system replacemsg auth "auth-email-harvesting-page" end config system replacemsg auth "auth-email-failed-page" end config system replacemsg auth "auth-cert-passwd-page" end config system replacemsg auth "auth-guest-print-page" end config system replacemsg auth "auth-guest-email-page" end config system replacemsg auth "auth-success-page" end config system replacemsg auth "auth-block-notification-page" end config system replacemsg auth "auth-quarantine-page" end config system replacemsg auth "auth-qtn-reject-page" end config system replacemsg sslvpn "sslvpn-login" end config system replacemsg sslvpn "sslvpn-header" end config system replacemsg sslvpn "sslvpn-limit" end config system replacemsg sslvpn "hostcheck-error" end config system replacemsg ec "endpt-download-portal" end config system replacemsg ec "endpt-download-portal-mac" end config system replacemsg ec "endpt-download-portal-linux" end config system replacemsg ec "endpt-download-portal-ios" end config system replacemsg ec "endpt-download-portal-aos" end config system replacemsg ec "endpt-download-portal-other" end config system replacemsg ec "endpt-warning-portal" end config system replacemsg ec "endpt-warning-portal-mac" end config system replacemsg ec "endpt-warning-portal-linux" end config system replacemsg ec "endpt-remedy-inst" end config system replacemsg ec "endpt-remedy-reg" end config system replacemsg ec "endpt-remedy-ftcl-autofix" end config system replacemsg ec "endpt-remedy-av-3rdp" end config system replacemsg ec "endpt-remedy-ver" end config system replacemsg ec "endpt-remedy-os-ver" end config system replacemsg ec "endpt-remedy-vuln" end config system replacemsg ec "endpt-remedy-sig-ids" end config system replacemsg ec "endpt-remedy-ems-online" end config system replacemsg ec "endpt-ftcl-incompat" end config system replacemsg ec "endpt-download-ftcl" end config system replacemsg ec "endpt-quarantine-portal" end config system replacemsg device-detection-portal "device-detection-failure" end config system replacemsg nac-quar "nac-quar-virus" end config system replacemsg nac-quar "nac-quar-dos" end config system replacemsg nac-quar "nac-quar-ips" end config system replacemsg nac-quar "nac-quar-dlp" end config system replacemsg nac-quar "nac-quar-admin" end config system replacemsg nac-quar "nac-quar-app" end config system replacemsg traffic-quota "per-ip-shaper-block" end config system replacemsg utm "virus-html" end config system replacemsg utm "client-virus-html" end config system replacemsg utm "virus-text" end config system replacemsg utm "dlp-html" end config system replacemsg utm "dlp-text" end config system replacemsg utm "appblk-html" end config system replacemsg utm "ipsblk-html" end config system replacemsg utm "ipsfail-html" end config system replacemsg utm "exe-text" end config system replacemsg utm "waf-html" end config system replacemsg utm "outbreak-prevention-html" end config system replacemsg utm "outbreak-prevention-text" end config system replacemsg icap "icap-req-resp" end config system snmp sysinfo set status enable end config system snmp community edit 1 set name " Cust0m3rT1g0" config hosts edit 1 set ip 200.30.130.74 255.255.255.255 next edit 2 set ip 200.30.128.28 255.255.255.255 next end set events cpu-high mem-low log-full intf-ip vpn-tun-up vpn-tun-down ha-switch ha-hb-failure ips-signature ips-anomaly av-virus av-oversize av-pattern av-fragmented fm-if-change bgp-established bgp-backward-transition ha-member-up ha-member-down ent-conf-change av-conserve av-bypass av-oversize-passed av-oversize-blocked ips-pkg-update ips-fail-open faz-disconnect wc-ap-up wc-ap-down fswctl-session-up fswctl-session-down next end config system central-management set type fortiguard end config user device-category edit "android-phone" next edit "android-tablet" next edit "blackberry-phone" next edit "blackberry-playbook" next edit "forticam" next edit "fortifone" next edit "fortinet" next edit "gaming-console" next edit "ip-phone" next edit "ipad" next edit "iphone" next edit "linux-pc" next edit "mac" next edit "media-streaming" next edit "printer" next edit "router-nat-device" next edit "windows-pc" next edit "windows-phone" next edit "windows-tablet" next edit "other-network-device" next edit "collected-emails" next edit "amazon-device" next edit "android-device" next edit "blackberry-device" next edit "fortinet-device" next edit "ios-device" next edit "windows-device" next edit "all" next end config system cluster-sync end config system fortiguard set sdns-server-ip "208.91.112.220" end config ips global end config system email-server set server "notification.fortinet.net" set port 465 set security smtps end config system session-helper edit 1 set name pptp set protocol 6 set port 1723 next edit 2 set name h323 set protocol 6 set port 1720 next edit 3 set name ras set protocol 17 set port 1719 next edit 4 set name tns set protocol 6 set port 1521 next edit 5 set name tftp set protocol 17 set port 69 next edit 6 set name rtsp set protocol 6 set port 554 next edit 7 set name rtsp set protocol 6 set port 7070 next edit 8 set name rtsp set protocol 6 set port 8554 next edit 9 set name ftp set protocol 6 set port 21 next edit 10 set name mms set protocol 6 set port 1863 next edit 11 set name pmap set protocol 6 set port 111 next edit 12 set name pmap set protocol 17 set port 111 next edit 13 set name sip set protocol 17 set port 5060 next edit 14 set name dns-udp set protocol 17 set port 53 next edit 15 set name rsh set protocol 6 set port 514 next edit 16 set name rsh set protocol 6 set port 512 next edit 17 set name dcerpc set protocol 6 set port 135 next edit 18 set name dcerpc set protocol 17 set port 135 next edit 19 set name mgcp set protocol 17 set port 2427 next edit 20 set name mgcp set protocol 17 set port 2727 next end config system auto-install set auto-install-config enable set auto-install-image enable end config system ntp set ntpsync enable set syncinterval 60 end config system object-tagging edit "default" set address optional set device optional set interface optional next end config system settings set inspection-mode flow set gui-multiple-utm-profiles enable set gui-ips enable next config system replacemsg-group edit "web-filter-default" set comment "System Generated" set group-type utm next end config system dhcp server edit 1 set dns-service default set default-gateway 192.168.1.99 set netmask 255.255.255.0 set interface "internal" config ip-range edit 1 set start-ip 192.168.1.110 set end-ip 192.168.1.210 next end set timezone-option default next edit 2 set dns-service default set default-gateway 192.168.201.1 set netmask 255.255.255.0 set interface "internal2" config ip-range edit 1 set start-ip 192.168.201.104 set end-ip 192.168.201.215 next end set timezone-option default config reserved-address edit 17 set mac 90:8d:6c:58:86:2d set action assign set description "KS" next edit 26 set ip 192.168.201.134 set mac 30:52:cb:73:3b:27 set description "ECOTEXTILES" next edit 28 set mac b0:5a:da:89:8c:47 set action assign set description "MULTIFUNCIONAL-KS" next edit 34 set ip 192.168.201.119 set mac b8:ee:65:44:17:d6 set description "REMOTE PPDG" next edit 1 set ip 192.168.201.114 set mac 54:0e:50:00:90:ff set description "TAG Bodega" next edit 25 set ip 192.168.201.133 set mac 8e:5a:df:eb:f3:74 set description "Iphone 12 Andres1" next edit 29 set ip 192.168.201.137 set mac de:2d:70:ba:7f:da set description "Iphone 12 Andres2" next edit 30 set ip 192.168.201.160 set mac c8:3a:35:21:b0:d8 next edit 31 set ip 192.168.201.107 set mac c8:0f:84:08:04:38 set description "Router Gerencia" next edit 32 set ip 192.168.201.120 set mac e0:db:55:87:11:8e set description "Remoto H Ram,os" next edit 2 set ip 192.168.201.106 set mac b0:7d:64:2b:f4:71 set description "SM-IT" next edit 12 set ip 192.168.201.127 set mac 10:7d:1a:3f:0e:cb set description "GLORIA" next end edit 3 set dns-service default set default-gateway 192.168.235.1 set netmask 255.255.255.0 set interface "internal3" config ip-range edit 1 set start-ip 192.168.235.2 set end-ip 192.168.235.254 next end set timezone-option default next end config firewall address next edit "SSLVPN_TUNNEL_ADDR1" set uuid 8861c0cc-1d3a-51e9-9a3c-c7fe91faaf03 set type iprange set start-ip 10.212.134.150 set end-ip 10.212.134.220 next edit "none" set uuid 8728f414-1d3a-51e9-28c2-5f8b6acd1fcc set subnet 0.0.0.0 255.255.255.255 next edit "apple" set uuid 7cd6290a-94a3-51e5-c517-76ef61cdbbfb set type wildcard-fqdn set wildcard-fqdn "*.apple.com" next edit "dropbox.com" set uuid 7cd63bde-94a3-51e5-5508-3df1ce5589f1 set type wildcard-fqdn set wildcard-fqdn "*.dropbox.com" next edit "Gotomeeting" set uuid 7cd64dfe-94a3-51e5-3518-ee811df33d1d set type wildcard-fqdn set wildcard-fqdn "*.gotomeeting.com" next edit "icloud" set uuid 7cd65fb0-94a3-51e5-6dd4-3379890463ca set type wildcard-fqdn set wildcard-fqdn "*.icloud.com" next edit "itunes" set uuid 7cd67162-94a3-51e5-7ad7-f053bf1782b5 set type wildcard-fqdn set wildcard-fqdn "*itunes.apple.com" next edit "android" set uuid 7cd68314-94a3-51e5-df01-56dc0ddbf551 set type wildcard-fqdn set wildcard-fqdn "*.android.com" next edit "skype" set uuid 7cd694ee-94a3-51e5-7701-5b302f6f6801 set type wildcard-fqdn set wildcard-fqdn "*.messenger.live.com" next edit "swscan.apple.com" set uuid 7cd6a6d2-94a3-51e5-2ed5-ba914cee7275 set type fqdn set fqdn "swscan.apple.com" next edit "update.microsoft.com" set uuid 7cd6b87a-94a3-51e5-3384-9793bfd00e3a set type fqdn set fqdn "update.microsoft.com" next edit "appstore" set uuid 7cd6ca22-94a3-51e5-a82c-520378fefdc6 set type wildcard-fqdn set wildcard-fqdn "*.appstore.com" next edit "eease" set uuid 7cd6dbe8-94a3-51e5-1064-3d7df5cbf4e5 set type wildcard-fqdn set wildcard-fqdn "*.eease.com" next edit "google-drive" set uuid 7cd6eda4-94a3-51e5-cdcd-017e580fc135 set type wildcard-fqdn set wildcard-fqdn "*drive.google.com" next edit "google-play" set uuid 7cd6ff60-94a3-51e5-e3f8-f4f8a6b0558f set type fqdn set fqdn "play.google.com" next edit "google-play2" set uuid 7cd7113a-94a3-51e5-a302-3bb4e530c38a set type wildcard-fqdn set wildcard-fqdn "*.ggpht.com" next edit "google-play3" set uuid 7cd722ec-94a3-51e5-8ac2-b7c51aade59f set type wildcard-fqdn set wildcard-fqdn "*.books.google.com" next edit "microsoft" set uuid 7cd736e2-94a3-51e5-8f32-fd5d19be279a set type wildcard-fqdn set wildcard-fqdn "*.microsoft.com" next edit "adobe" set uuid 7cd749de-94a3-51e5-d89b-3c4bfd4ea6ba set type wildcard-fqdn set wildcard-fqdn "*.adobe.com" next edit "Adobe Login" set uuid 7cd75bd6-94a3-51e5-d862-99b88ecdcf8f set type wildcard-fqdn set wildcard-fqdn "*.adobelogin.com" next edit "fortinet" set uuid 7cd76dc4-94a3-51e5-36dc-7c463caa134b set type wildcard-fqdn set wildcard-fqdn "*.fortinet.com" next edit "googleapis.com" set uuid 7cd77fa8-94a3-51e5-8534-b89a14d038b7 set type wildcard-fqdn set wildcard-fqdn "*.googleapis.com" next edit "citrix" set uuid 7cd79182-94a3-51e5-f3ba-1888be91e478 set type wildcard-fqdn set wildcard-fqdn "*.citrixonline.com" next edit "verisign" set uuid 7cd7a370-94a3-51e5-d510-43361014876e set type wildcard-fqdn set wildcard-fqdn "*.verisign.com" next edit "Windows update 2" set uuid 7cd7b540-94a3-51e5-b884-3dd3d967b005 set type wildcard-fqdn set wildcard-fqdn "*.windowsupdate.com" next edit "*.live.com" set uuid 7cd7c774-94a3-51e5-30fd-fc2e40fbcf96 set type wildcard-fqdn set wildcard-fqdn "*.live.com" next edit "auth.gfx.ms" set uuid 7cd7d962-94a3-51e5-e579-17185272d4ee set type fqdn set fqdn "auth.gfx.ms" next edit "autoupdate.opera.com" set uuid 7cd7eb50-94a3-51e5-ba56-7ae05267d0f5 set type fqdn set fqdn "autoupdate.opera.com" next edit "softwareupdate.vmware.com" set uuid 7cd7fd3e-94a3-51e5-5c40-0db458fe3730 set type fqdn set fqdn "softwareupdate.vmware.com" next edit "firefox update server" set uuid 7cd80f2c-94a3-51e5-a4c0-43d582c4f363 set type wildcard-fqdn set wildcard-fqdn "aus*.mozilla.org" next edit "all" set uuid 885e9726-1d3a-51e9-8f32-0d303b05e50a next edit "FIREWALL_AUTH_PORTAL_ADDRESS" set uuid 885ea342-1d3a-51e9-673b-9fa211d69ee6 set visibility disable next edit "192.168.201.197" set uuid d999c510-e933-51ed-cbfe-108a86ab69ca set associated-interface "internal2" set subnet 192.168.201.197 255.255.255.255 next edit "Forticlient-P_range" set uuid f85dbca0-e57f-51e5-875c-07f7d318b19a set type iprange set comment "VPN: Forticlient-P (Created by VPN wizard)" set start-ip 192.168.201.177 set end-ip 192.168.201.189 next edit "Internal" set uuid d1fbbc7c-e581-51e5-cedc-82eba5348911 set subnet 192.168.201.0 255.255.255.0 next edit "Jefe-Informatica" set uuid fc2c4b7e-e6e9-51e5-4636-f1c8e0851d3b set associated-interface "internal2" set subnet 192.168.201.168 255.255.255.255 next edit "Asistente-Informatica" set uuid 6ee73480-e6ea-51e5-ce26-6225937f22f4 set color 5 set allow-routing enable set subnet 192.168.201.215 255.255.255.255 next edit "Gerente_General" set uuid 506a39c0-e6eb-51e5-90b5-5dc15a748e84 set subnet 192.168.201.114 255.255.255.255 next edit "Presidencia" set uuid ab19ff88-e702-51e5-413e-3bc5de9622d8 set subnet 192.168.201.16 255.255.255.255 next edit "GERENTE-PRODUCCION" set uuid 9d415bfc-e79a-51e5-a52a-774fcc7ed31e set comment "ING. RIVERA" set associated-interface "internal2" set subnet 192.168.201.118 255.255.255.255 next edit "GERENTE-GENERAL" set uuid d45291d8-e79a-51e5-4073-7c2bea6ea341 set subnet 192.168.201.114 255.255.255.255 next edit "SUBGERENTE-CADENA-SUMINISTRO" set uuid 504e8b06-e79c-51e5-b2f4-a7c1016d85e3 set subnet 192.168.201.117 255.255.255.255 next edit "GERENTE-RRHH" set uuid 2c0e0824-e79d-51e5-36e9-431cd1dd6a4e set subnet 192.168.201.109 255.255.255.255 next edit "GERENTE-VENTAS" set uuid 839ead6e-e7a2-51e5-42cf-720fd2bd9951 set subnet 192.168.201.127 255.255.255.255 next edit "SUBGERENTE-CADENA-SUMINISTRO-IPHONE" set uuid b390e860-e7a3-51e5-b428-ba446d70a92f set subnet 192.168.201.122 255.255.255.255 next edit "GERENTE-GENERAL-IPHONE" set uuid a40c2a8c-e7ab-51e5-2dfa-031add02f1b5 set subnet 192.168.201.106 255.255.255.255 next edit "GERENTE-VENTAS-IPHONE" set uuid f7d53512-e7b7-51e5-bd88-b3652c6f557d set subnet 192.168.201.107 255.255.255.255 next edit "SUBGERENTE-INFORMATICA" set uuid 53209944-ea05-51e5-7fdc-c3273341db91 set subnet 192.168.201.150 255.255.255.255 next edit "KS" set uuid 5f45bb5c-ec88-51e5-eff3-d1831a9f31c5 set comment "KS" set subnet 192.168.201.119 255.255.255.255 next edit "ROUTHER PRODUCCION" set uuid 2e428464-ee21-51e5-d79a-2a8f6444b786 set subnet 192.168.201.31 255.255.255.255 next edit "GERENTE-RRHH-WIFI" set uuid 9334465a-ef75-51e5-e986-65212260d311 set subnet 192.168.201.106 255.255.255.255 next edit "GERENTE-VENTAS-WIRELESS" set uuid aa60f1fc-f079-51e5-6183-e69f0873e76f set subnet 192.168.201.114 255.255.255.255 next edit "ROUTHER-PRESIDENCIA" set uuid 85749056-f5d8-51e5-e919-3869bca94e7a set subnet 192.168.201.16 255.255.255.255 next edit "SUBGERENTE CADENA DE ABASTECIMIENTO" set uuid 080e5832-01ad-51e6-0bef-cbc7d08bc33d set subnet 192.168.201.117 255.255.255.255 next edit "ROUTHER-DIRECCION-SUPERIOR" set uuid 0b051650-0745-51e6-d003-9bf725d09cb5 set comment "ROUTHER-DIRECCION-SUPERIOR" set subnet 192.168.201.32 255.255.255.255 next edit "KS-PROVISIONAL" set uuid 4503d706-0be6-51e6-e138-d76e51745ce4 set subnet 192.168.201.251 255.255.255.255 next edit "GERENTE-GENERAL-WIFI" set uuid fa020fc2-0d78-51e6-b2de-01c7f3bad80b set subnet 192.168.201.108 255.255.255.255 next edit "GERENTE-FINANZAS-ANDROIDMC" set uuid 8e2d3d78-1dfc-51e6-d776-482bf9be1119 set subnet 192.168.201.105 255.255.255.255 next edit "DGRAFICO" set uuid 961cfd30-244f-51e6-8bf7-c504bba83973 set subnet 192.168.201.139 255.255.255.255 next edit "AUDITOR_1" set uuid 020ee1bc-2c10-51e6-2921-d805d4f4969f set subnet 192.168.201.128 255.255.255.255 next edit "AUDITOR_2" set uuid 0eaa1d9c-2c10-51e6-4705-4c69b52a4380 set subnet 192.168.201.131 255.255.255.255 next edit "AUDITOR_3" set uuid 0dbc758a-3406-51e6-b790-c0351c29e7f0 set associated-interface "internal2" set subnet 192.168.201.133 255.255.255.255 next edit "GERENTE-GENERAL-ANDRES" set uuid 21ca2d00-60c6-51e6-f27e-17177928ce29 set subnet 192.168.201.142 255.255.255.255 next edit "CONTRALOR_VENTAS" set uuid cfbd4eba-8a6a-51e6-cb02-c456152bda3d set subnet 192.168.201.115 255.255.255.255 next edit "JF_INFO" set uuid 68fc23c2-9ae6-51e6-c245-cf12e0e95ddd set subnet 192.168.201.150 255.255.255.255 next edit "ACCESS_POINT_PROYECTO" set uuid a46e05a2-9c7a-51e6-b755-388707737057 set subnet 192.168.201.36 255.255.255.255 next edit "SM-GTFNZ" set uuid e7b6e942-a2aa-51e6-04ed-066b62cb77bf set comment "GERENTE DE FINANZAS" set subnet 192.168.201.134 255.255.255.255 next edit "GERENTE-CALIDAD" set uuid 249fae92-a513-51e6-a37d-783782b81293 set comment "PETER RODRIGUEZ" set subnet 192.168.201.140 255.255.255.255 next edit "EJECUTIVO_VENTAS03_CELL" set uuid 8ab04582-aa92-51e6-b94e-9602a03218df set comment "SOLO WHATSAPP" set subnet 192.168.201.145 255.255.255.255 next edit "CELULAR_ZENIA_PERSONAL" set uuid 33f4dc2a-aab6-51e6-d2cf-d792cb69302e set comment "SOLO WHATSAPP" set subnet 192.168.201.146 255.255.255.255 next edit "TEMPORAL_VICTOR" set uuid fd5d9fb6-ad9a-51e6-1317-8046df26c8c8 set comment "PARA CONEXION CON CHINA" set subnet 192.168.201.118 255.255.255.255 next edit "SM-ITDES" set uuid 74ad41da-b0dd-51e6-722c-b114594bd985 set comment "DESARROLLADOR" set subnet 192.168.201.149 255.255.255.255 next edit "DATAMACEN" set uuid 30c3f2f0-d2cc-51e6-fd1f-429148bd0a09 set subnet 192.168.201.9 255.255.255.255 next edit "LAPTOP_AUXILIAR_COMPRAS_NAC" set uuid 7d743d16-d818-51e6-85fa-c71214baa555 set subnet 192.168.201.126 255.255.255.255 next edit "CELULAR_SUGEYLY_MAYORGA2" set uuid 8a8b234c-f3d0-51e6-9048-0f88e74d6eb7 set comment "CELULAR SYGEYLY ULTIMO" set subnet 192.168.201.124 255.255.255.255 next edit "VPNPFsense_local_subnet_1" set uuid 843ed278-4fbe-51e7-7c4f-438557ce0f29 set subnet 192.168.201.0 255.255.255.0 next edit "VPNPFsense_remote_subnet_1" set uuid 845d6936-4fbe-51e7-e487-7965476c5f81 set subnet 192.168.2.0 255.255.255.0 next edit "IP Edwing" set uuid b6252bba-2c4b-51e8-dcce-65640ce2ecde set comment "IP Edwing" set associated-interface "internal2" set subnet 192.168.201.165 255.255.255.255 next edit "IP Edwing Nueva" set uuid 8ee8333a-640e-51e8-43c9-9cc8c52cfd01 set comment "IP Edwing" set associated-interface "internal2" set subnet 192.168.201.156 255.255.255.255 next edit "SMITEDWINGW" set uuid 3f22c234-6503-51e8-a693-f8ea1da9be98 set comment "Edwing_Wireless" set associated-interface "internal2" set subnet 192.168.201.179 255.255.255.255 next edit "LOCAL LAN" set uuid 064d20e4-8470-51e8-bdfa-a774faba6739 set associated-interface "internal2" set subnet 192.168.201.131 255.255.255.255 next edit "ipsecvpn_range" set uuid 4ef875b4-847a-51e8-2d92-a2b0f85227fe set type iprange set comment "VPN: ipsecvpn (Created by VPN wizard)" set start-ip 192.168.201.1 set end-ip 192.168.201.254 next edit "PolyMacen_local_subnet_1" set uuid 225d4012-b7e1-51e8-ec77-7cdd4e928031 set allow-routing enable set subnet 192.168.201.0 255.255.255.0 next edit "PolyMacen_remote_subnet_1" set uuid 22787d96-b7e1-51e8-7029-5e6c47621101 set allow-routing enable set subnet 192.168.2.0 255.255.255.0 next edit "OpenfireMacenServer" set uuid c4d7b92a-c863-51e8-247c-44c66090dfac set associated-interface "internal2" set subnet 192.168.201.13 255.255.255.255 next edit "REMOTEPPDG_local_subnet_1" set uuid 6162a8b2-d25b-51e8-d83e-45ee656844a8 set allow-routing enable set subnet 192.168.201.0 255.255.255.0 next edit "REMOTEPPDG_remote_subnet_1" set uuid 61681fa4-d25b-51e8-6774-aa181e018bd9 set allow-routing enable set subnet 192.168.2.0 255.255.255.0 next edit "Macen-to-Poly_local_subnet_1" set uuid a3922a2a-d303-51e8-a910-7b7f6d851ce1 set allow-routing enable set subnet 192.168.201.0 255.255.255.0 next edit "Macen-to-Poly_remote_subnet_1" set uuid a398608e-d303-51e8-4fb4-4db86cafab2a set allow-routing enable set subnet 192.168.2.0 255.255.255.0 next edit "SparkServer" set uuid 2dd496c4-d7db-51e8-4ae9-9e8ae806c4b3 set associated-interface "internal2" set color 17 set subnet 192.168.201.13 255.255.255.255 next edit "REMOTEPPDG_local_Asterisk_subnet_2" set uuid 8544694e-e315-51e8-0b16-f288cb83162f set allow-routing enable set subnet 192.168.201.0 255.255.255.0 next edit "REMOTEPPDG_remote_Asterisk_subnet_2" set uuid b29553e0-e315-51e8-21b4-ea3769c995c8 set allow-routing enable set subnet 192.168.1.0 255.255.255.0 next edit "PolySpark" set uuid 8be4318e-f847-51e8-298f-6284d6a9725c set associated-interface "Macen-to-Poly" set color 18 set subnet 192.168.2.8 255.255.255.255 next edit "macen-vpn_range" set uuid 1e938924-4cc3-51e9-967d-573774551e0a set type iprange set comment "VPN: macen-vpn (Created by VPN wizard)" set start-ip 192.168.201.213 set end-ip 192.168.201.230 next edit "_OCVPN0-1_local_net0" set uuid 98d3b0c6-7047-51ea-caa1-409215a1936e set comment "Generated by OCVPN Cloud Service." set allow-routing enable set subnet 192.168.201.0 255.255.255.0 next edit "_OCVPN0-1_remote_net0" set uuid 98d44e96-7047-51ea-681e-087332108649 set comment "Generated by OCVPN Cloud Service." set allow-routing enable set subnet 192.168.0.0 255.255.255.0 next edit "SERVER" set uuid 010cde38-3645-51eb-5135-408f66834c8f set subnet 192.168.201.8 255.255.255.255 next edit "SM-GTGRL ANDRES RUBIO" set uuid 4462c6a8-55f2-51eb-1b5b-ff2fc0565f2a set associated-interface "internal2" set subnet 192.168.201.135 255.255.255.255 next edit "DiseƱo y Desarrollo" set uuid 5456ccea-59d4-51eb-13c4-f263b9d15d45 set associated-interface "internal2" set subnet 192.168.201.129 255.255.255.255 next edit "Andrea Rodriguez" set uuid f8ae9e4e-59d4-51eb-8089-34f60b770f2e set associated-interface "internal2" set subnet 192.168.201.167 255.255.255.255 next edit "HUAWEI_P10_Plus-871f7017f" set uuid fff99430-97bc-51eb-d1b4-e242a5b266ef set associated-interface "internal2" set subnet 192.168.201.142 255.255.255.255 next edit "SM-GTGRL" set uuid 70a6b1e0-97ea-51eb-07ca-8d56c0453e76 set associated-interface "internal2" set subnet 192.168.201.135 255.255.255.255 next edit "GERENCIA" set uuid b859d2e2-9957-51eb-95fa-34e3c8a0804e set associated-interface "internal2" set subnet 192.168.201.160 255.255.255.255 next edit "SM-ASIT IT" set uuid 411a4c00-9968-51eb-3935-a4b845e4b611 set associated-interface "internal2" set subnet 192.168.201.161 255.255.255.255 next edit "ASISTENTE DE VENTAS" set uuid c80ff7f4-ad3b-51ec-bfed-8638954b0de4 set associated-interface "internal2" set subnet 192.168.201.130 255.255.255.255 next edit "Test" set uuid 0b74497a-ad3f-51ec-3ede-2e231a20ac69 set associated-interface "internal2" set color 4 set subnet 192.168.201.133 255.255.255.255 next edit "PolyMacen_remote_subnet_2" set uuid 79259726-548d-51ed-2732-be48e53d95f2 set allow-routing enable set subnet 192.168.1.0 255.255.255.0 next edit "Macen-to-Poly_remote_subnet_2" set uuid ea763a14-548f-51ed-f697-f9af4bfac1cc set allow-routing enable set subnet 192.168.1.0 255.255.255.0 next edit "SERVER_MACEN" set uuid 43bf7f08-54aa-51ed-0451-6fb32db9a9d5 set subnet 192.168.201.175 255.255.255.255 next edit "LAPTOP-AMILCAR" set uuid 7a011fea-54aa-51ed-e1f2-1b3dff2abdfb set subnet 192.168.1.79 255.255.255.255 next edit "MACEN-ESTELI_local_subnet_1" set uuid 527a03b4-70fd-51ed-dd6c-5d4622d689df set allow-routing enable set subnet 192.168.201.0 255.255.255.0 next edit "MACEN-ESTELI_remote_subnet_1" set uuid 5282ce40-70fd-51ed-7785-d78c1e0d301b set allow-routing enable set subnet 192.168.78.0 255.255.255.0 next end config firewall multicast-address edit "all" set start-ip 224.0.0.0 set end-ip 239.255.255.255 next edit "all_hosts" set start-ip 224.0.0.1 set end-ip 224.0.0.1 next edit "all_routers" set start-ip 224.0.0.2 set end-ip 224.0.0.2 next edit "Bonjour" set start-ip 224.0.0.251 set end-ip 224.0.0.251 next edit "EIGRP" set start-ip 224.0.0.10 set end-ip 224.0.0.10 next edit "OSPF" set start-ip 224.0.0.5 set end-ip 224.0.0.6 next end config firewall address6 edit "SSLVPN_TUNNEL_IPv6_ADDR1" set uuid 8861d42c-1d3a-51e9-e6a8-761c89056f6a set ip6 fdff:ffff::/120 next edit "all" set uuid 97af6f66-1d3a-51e9-bc9d-ab1884ad5dd3 next edit "none" set uuid 97afafd0-1d3a-51e9-be4e-7b1e7b871e19 set ip6 ::/128 next end config firewall multicast-address6 edit "all" set ip6 ff00::/8 next end config firewall addrgrp edit "IT" set uuid fd273786-e6ea-51e5-adb7-a3bd43bb8a33 set member "ROUTHER-DIRECCION-SUPERIOR" "ACCESS_POINT_PROYECTO" "DATAMACEN" "IP Edwing" "IP Edwing Nueva" next edit "GERENTES" set uuid aee2e9e6-e7a1-51e5-23a0-ffe533c5eb49 set member "GERENTE-GENERAL" "Gerente_General" "SUBGERENTE-CADENA-SUMINISTRO" "GERENTE-VENTAS" "SUBGERENTE-CADENA-SUMINISTRO-IPHONE" "GERENTE-VENTAS-IPHONE" "GERENTE-VENTAS-WIRELESS" "GERENTE-FINANZAS-ANDROIDMC" "GERENTE-RRHH-WIFI" "GERENTE-GENERAL-ANDRES" "SM-GTFNZ" "GERENTE-CALIDAD" "LAPTOP_AUXILIAR_COMPRAS_NAC" "SERVER" next edit "AUDITORES_CONTABILIDAD" set uuid 1d09027c-2c10-51e6-8241-0675d81aa70b set member "AUDITOR_1" "AUDITOR_2" "AUDITOR_3" next edit "VENTAS_WHATSAPP" set uuid e3180e6e-8a6a-51e6-22c2-2e4c37bf12c0 set member "CONTRALOR_VENTAS" "EJECUTIVO_VENTAS03_CELL" "CELULAR_ZENIA_PERSONAL" "CELULAR_SUGEYLY_MAYORGA2" next edit "VPNPFsense_local" set uuid 8445bd9a-4fbe-51e7-4b67-3b96dd5a3ce4 set member "VPNPFsense_local_subnet_1" set comment "VPN: VPNPFsense (Created by VPN wizard)" next edit "VPNPFsense_remote" set uuid 845fb45c-4fbe-51e7-1f9c-141e7d3f86a2 set member "VPNPFsense_remote_subnet_1" set comment "VPN: VPNPFsense (Created by VPN wizard)" next edit "ipsecvpn_split" set uuid 4ee9e206-847a-51e8-ace6-2dcb6c5a408d set member "Asistente-Informatica" set comment "VPN: ipsecvpn (Created by VPN wizard)" next edit "PolyMacen_local" set uuid 226a6f9e-b7e1-51e8-25f2-77d19f606031 set member "PolyMacen_local_subnet_1" set comment "VPN: PolyMacen (Created by VPN wizard)" set allow-routing enable next edit "PolyMacen_remote" set uuid 22857064-b7e1-51e8-5457-ecd881eaa825 set member "PolyMacen_remote_subnet_1" set comment "VPN: PolyMacen (Created by VPN wizard)" next edit "REMOTEPPDG_local" set uuid 6164d5c4-d25b-51e8-c44c-568ceedd6b8b set member "REMOTEPPDG_local_subnet_1" set comment "VPN: REMOTEPPDG (Created by VPN wizard)" set allow-routing enable next edit "REMOTEPPDG_remote" set uuid 616a3a78-d25b-51e8-6897-eb2c5304de16 set member "REMOTEPPDG_remote_subnet_1" set comment "VPN: REMOTEPPDG (Created by VPN wizard)" set allow-routing enable next edit "Macen-to-Poly_local" set uuid a395374c-d303-51e8-2c08-98e4caeb53c6 set member "Macen-to-Poly_local_subnet_1" set comment "VPN: Macen-to-Poly (Created by VPN wizard)" set allow-routing enable next edit "Macen-to-Poly_remote" set uuid a39a72f2-d303-51e8-8dc2-215422e0ec7f set member "Macen-to-Poly_remote_subnet_1" "Macen-to-Poly_remote_subnet_2" set comment "VPN: Macen-to-Poly (Created by VPN wizard)" set allow-routing enable next edit "Macen-to-Poly_local_Asterisk" set uuid f2e73e36-e315-51e8-f5dd-a80df063c852 set member "REMOTEPPDG_local_Asterisk_subnet_2" set comment "VPN: Macen-to-Poly (Created by VPN wizard)" set allow-routing enable next edit "Macen-to-Poly_remote_Asterisk" set uuid ff848e8c-e315-51e8-cce5-741630f09b56 set member "REMOTEPPDG_remote_Asterisk_subnet_2" set comment "VPN: Macen-to-Poly (Created by VPN wizard)" set allow-routing enable next edit "_OCVPN0-1_local_networks" set uuid 98d3f9f0-7047-51ea-2ebe-f71d4fba5679 set member "_OCVPN0-1_local_net0" set comment "Generated by OCVPN Cloud Service." set allow-routing enable next edit "_OCVPN0-1_remote_networks" set uuid 98d4d21c-7047-51ea-098f-037645c317b9 set member "_OCVPN0-1_remote_net0" set comment "Generated by OCVPN Cloud Service." set allow-routing enable next edit "MACEN-ESTELI_local" set uuid 527d9fc4-70fd-51ed-00b4-027b7d954f63 set member "MACEN-ESTELI_local_subnet_1" set comment "VPN: MACEN-ESTELI (Created by VPN wizard)" set allow-routing enable next edit "MACEN-ESTELI_remote" set uuid 5287d282-70fd-51ed-35c8-4018f4a593da set member "MACEN-ESTELI_remote_subnet_1" set comment "VPN: MACEN-ESTELI (Created by VPN wizard)" set allow-routing enable next end config firewall wildcard-fqdn custom edit "adobe" set uuid 8868ede8-1d3a-51e9-acba-d0aa36cc9b54 set wildcard-fqdn "*.adobe.com" next edit "Adobe Login" set uuid 8868f5e0-1d3a-51e9-9dcf-e1e73549dc01 set wildcard-fqdn "*.adobelogin.com" next edit "android" set uuid 8868fd06-1d3a-51e9-fc84-534689920efd set wildcard-fqdn "*.android.com" next edit "apple" set uuid 88690418-1d3a-51e9-d426-ec0c396089a1 set wildcard-fqdn "*.apple.com" next edit "appstore" set uuid 88690b34-1d3a-51e9-d774-279614c02b42 set wildcard-fqdn "*.appstore.com" next edit "auth.gfx.ms" set uuid 88691246-1d3a-51e9-8f3c-82d85ecec4b7 set wildcard-fqdn "*.auth.gfx.ms" next edit "citrix" set uuid 88691a20-1d3a-51e9-7000-f464e4a6245f set wildcard-fqdn "*.citrixonline.com" next edit "dropbox.com" set uuid 88692150-1d3a-51e9-9061-a33a529675be set wildcard-fqdn "*.dropbox.com" next edit "eease" set uuid 88692876-1d3a-51e9-aa1f-8969a082b7e1 set wildcard-fqdn "*.eease.com" next edit "firefox update server" set uuid 88692f9c-1d3a-51e9-1d8d-67090b5f1ebc set wildcard-fqdn "aus*.mozilla.org" next edit "fortinet" set uuid 886936c2-1d3a-51e9-bc3b-c9e83847ecf1 set wildcard-fqdn "*.fortinet.com" next edit "googleapis.com" set uuid 88693e9c-1d3a-51e9-c787-738a1d328f4e set wildcard-fqdn "*.googleapis.com" next edit "google-drive" set uuid 886945d6-1d3a-51e9-7aa3-f000ab68e9db set wildcard-fqdn "*drive.google.com" next edit "google-play2" set uuid 88694d06-1d3a-51e9-9625-d5361ef041bc set wildcard-fqdn "*.ggpht.com" next edit "google-play3" set uuid 8869544a-1d3a-51e9-3105-8ab25120060e set wildcard-fqdn "*.books.google.com" next edit "Gotomeeting" set uuid 88695b7a-1d3a-51e9-a328-31844ff53988 set wildcard-fqdn "*.gotomeeting.com" next edit "icloud" set uuid 8869689a-1d3a-51e9-1973-920670af6ca0 set wildcard-fqdn "*.icloud.com" next edit "itunes" set uuid 88697092-1d3a-51e9-387a-8b6b710cb16f set wildcard-fqdn "*itunes.apple.com" next edit "microsoft" set uuid 886977ea-1d3a-51e9-ff28-61fcb5f49458 set wildcard-fqdn "*.microsoft.com" next edit "skype" set uuid 88697f24-1d3a-51e9-1a05-f4e8d9d309ab set wildcard-fqdn "*.messenger.live.com" next edit "softwareupdate.vmware.com" set uuid 8869865e-1d3a-51e9-6d99-9df65e365a7e set wildcard-fqdn "*.softwareupdate.vmware.com" next edit "verisign" set uuid 88698d98-1d3a-51e9-cc2d-40aa55c8c193 set wildcard-fqdn "*.verisign.com" next edit "Windows update 2" set uuid 886994d2-1d3a-51e9-9ff8-4bc26958b6d2 set wildcard-fqdn "*.windowsupdate.com" next edit "live.com" set uuid 88699c20-1d3a-51e9-32f2-442dadd760fd set wildcard-fqdn "*.live.com" next end config firewall service category edit "General" set comment "General services." next edit "Web Access" set comment "Web access." next edit "File Access" set comment "File access." next edit "Email" set comment "Email services." next edit "Network Services" set comment "Network services." next edit "Authentication" set comment "Authentication service." next edit "Remote Access" set comment "Remote access." next edit "Tunneling" set comment "Tunneling service." next edit "VoIP, Messaging & Other Applications" set comment "VoIP, messaging, and other applications." next edit "Web Proxy" set comment "Explicit web proxy." next end config firewall service custom edit "ALL_TCP" set category "General" set tcp-portrange 1-65535 next edit "ALL_UDP" set category "General" set udp-portrange 1-65535 next edit "ALL_ICMP" set category "General" set protocol ICMP unset icmptype next edit "ALL_ICMP6" set category "General" set protocol ICMP6 unset icmptype next edit "GRE" set category "Tunneling" set protocol IP set protocol-number 47 next edit "AH" set category "Tunneling" set protocol IP set protocol-number 51 next edit "ESP" set category "Tunneling" set protocol IP set protocol-number 50 next edit "AOL" set visibility disable set tcp-portrange 5190-5194 next edit "BGP" set category "Network Services" set tcp-portrange 179 next edit "DHCP" set category "Network Services" set udp-portrange 67-68 next edit "DNS" set category "Network Services" set tcp-portrange 53 set udp-portrange 53 next edit "FINGER" set visibility disable set tcp-portrange 79 next edit "FTP" set category "File Access" set tcp-portrange 21 next edit "FTP_GET" set category "File Access" set tcp-portrange 21 next edit "FTP_PUT" set category "File Access" set tcp-portrange 21 next edit "GOPHER" set visibility disable set tcp-portrange 70 next edit "H323" set category "VoIP, Messaging & Other Applications" set tcp-portrange 1720 1503 set udp-portrange 1719 next edit "HTTP" set category "Web Access" set tcp-portrange 80 next edit "HTTPS" set category "Web Access" set tcp-portrange 443 next edit "IKE" set category "Tunneling" set udp-portrange 500 4500 next edit "IMAP" set category "Email" set tcp-portrange 143 next edit "IMAPS" set category "Email" set tcp-portrange 993 next edit "Internet-Locator-Service" set visibility disable set tcp-portrange 389 next edit "IRC" set category "VoIP, Messaging & Other Applications" set tcp-portrange 6660-6669 next edit "L2TP" set category "Tunneling" set tcp-portrange 1701 set udp-portrange 1701 next edit "LDAP" set category "Authentication" set tcp-portrange 389 next edit "NetMeeting" set visibility disable set tcp-portrange 1720 next edit "NFS" set category "File Access" set tcp-portrange 111 2049 set udp-portrange 111 2049 next edit "NNTP" set visibility disable set tcp-portrange 119 next edit "NTP" set category "Network Services" set tcp-portrange 123 set udp-portrange 123 next edit "OSPF" set category "Network Services" set protocol IP set protocol-number 89 next edit "PC-Anywhere" set category "Remote Access" set tcp-portrange 5631 set udp-portrange 5632 next edit "PING" set category "Network Services" set protocol ICMP set icmptype 8 unset icmpcode next edit "TIMESTAMP" set protocol ICMP set visibility disable set icmptype 13 unset icmpcode next edit "INFO_REQUEST" set protocol ICMP set visibility disable set icmptype 15 unset icmpcode next edit "INFO_ADDRESS" set protocol ICMP set visibility disable set icmptype 17 unset icmpcode next edit "ONC-RPC" set category "Remote Access" set tcp-portrange 111 set udp-portrange 111 next edit "DCE-RPC" set category "Remote Access" set tcp-portrange 135 set udp-portrange 135 next edit "POP3" set category "Email" set tcp-portrange 110 next edit "POP3S" set category "Email" set tcp-portrange 995 next edit "PPTP" set category "Tunneling" set tcp-portrange 1723 next edit "QUAKE" set visibility disable set udp-portrange 26000 27000 27910 27960 next edit "RAUDIO" set visibility disable set udp-portrange 7070 next edit "REXEC" set visibility disable set tcp-portrange 512 next edit "RIP" set category "Network Services" set udp-portrange 520 next edit "RLOGIN" set visibility disable set tcp-portrange 513:512-1023 next edit "RSH" set visibility disable set tcp-portrange 514:512-1023 next edit "SCCP" set category "VoIP, Messaging & Other Applications" set tcp-portrange 2000 next edit "SIP" set category "VoIP, Messaging & Other Applications" set tcp-portrange 5060 set udp-portrange 5060 next edit "SIP-MSNmessenger" set category "VoIP, Messaging & Other Applications" set tcp-portrange 1863 next edit "SAMBA" set category "File Access" set tcp-portrange 139 next edit "SMTP" set category "Email" set tcp-portrange 25 next edit "SMTPS" set category "Email" set tcp-portrange 465 next edit "SNMP" set category "Network Services" set tcp-portrange 161-162 set udp-portrange 161-162 next edit "SSH" set category "Remote Access" set tcp-portrange 22 next edit "SYSLOG" set category "Network Services" set udp-portrange 514 next edit "TALK" set visibility disable set udp-portrange 517-518 next edit "TELNET" set category "Remote Access" set tcp-portrange 23 next edit "TFTP" set category "File Access" set udp-portrange 69 next edit "MGCP" set visibility disable set udp-portrange 2427 2727 next edit "UUCP" set visibility disable set tcp-portrange 540 next edit "VDOLIVE" set visibility disable set tcp-portrange 7000-7010 next edit "WAIS" set visibility disable set tcp-portrange 210 next edit "WINFRAME" set visibility disable set tcp-portrange 1494 2598 next edit "X-WINDOWS" set category "Remote Access" set tcp-portrange 6000-6063 next edit "PING6" set protocol ICMP6 set visibility disable set icmptype 128 unset icmpcode next edit "MS-SQL" set category "VoIP, Messaging & Other Applications" set tcp-portrange 1433 1434 next edit "MYSQL" set category "VoIP, Messaging & Other Applications" set tcp-portrange 3306 next edit "RDP" set category "Remote Access" set tcp-portrange 3389 next edit "VNC" set category "Remote Access" set tcp-portrange 5900 next edit "DHCP6" set category "Network Services" set udp-portrange 546 547 next edit "SQUID" set category "Tunneling" set tcp-portrange 3128 next edit "SOCKS" set category "Tunneling" set tcp-portrange 1080 set udp-portrange 1080 next edit "WINS" set category "Remote Access" set tcp-portrange 1512 set udp-portrange 1512 next edit "RADIUS" set category "Authentication" set udp-portrange 1812 1813 next edit "RADIUS-OLD" set visibility disable set udp-portrange 1645 1646 next edit "CVSPSERVER" set visibility disable set tcp-portrange 2401 set udp-portrange 2401 next edit "AFS3" set category "File Access" set tcp-portrange 7000-7009 set udp-portrange 7000-7009 next edit "TRACEROUTE" set category "Network Services" set udp-portrange 33434-33535 next edit "RTSP" set category "VoIP, Messaging & Other Applications" set tcp-portrange 554 7070 8554 set udp-portrange 554 next edit "MMS" set visibility disable set tcp-portrange 1755 set udp-portrange 1024-5000 next edit "KERBEROS" set category "Authentication" set tcp-portrange 88 464 set udp-portrange 88 464 next edit "LDAP_UDP" set category "Authentication" set udp-portrange 389 next edit "SMB" set category "File Access" set tcp-portrange 445 next edit "NONE" set visibility disable set tcp-portrange 0 next edit "ALL" set category "General" set protocol IP next edit "webproxy" set category "Web Proxy" set tcp-portrange 0-65535:0-65535 next edit "Spark Service" set category "Network Services" set comment "Spark" set color 17 set iprange 192.168.201.13 set udp-portrange 5269 next edit "SparkService" set category "Web Access" set color 18 set tcp-portrange 5269 next edit "DVR1" set category "General" set comment "Puertocamara" set color 17 set tcp-portrange 6801 next edit "DVR2" set category "General" set comment "Camaras dvr2" set color 17 set tcp-portrange 6802 next edit "DVR3" set category "General" set comment "Camaras DVR3" set color 17 set tcp-portrange 6803 next edit "DVR4" set category "General" set comment "Camaras DVR 4" set color 17 set tcp-portrange 6804 next end config firewall service group edit "Email Access" set member "DNS" "IMAP" "IMAPS" "POP3" "POP3S" "SMTP" "SMTPS" next edit "Web Access" set member "DNS" "HTTP" "HTTPS" next edit "Windows AD" set member "DCE-RPC" "DNS" "KERBEROS" "LDAP" "LDAP_UDP" "SAMBA" "SMB" next edit "Exchange Server" set member "DCE-RPC" "DNS" "HTTPS" next end config webfilter ftgd-local-cat edit "custom1" set id 140 next edit "custom2" set id 141 next end config ips sensor edit "wifi-default" set comment "Default configuration for offloading WiFi traffic." config entries edit 1 set severity medium high critical next end next edit "sniffer-profile" set comment "Monitor IPS attacks." config entries edit 1 set severity high critical next end next edit "default" set comment "Prevent critical attacks." config entries edit 1 set severity medium high critical next end next edit "all_default" set comment "All predefined signatures with default setting." config entries edit 1 next end next edit "all_default_pass" set comment "All predefined signatures with PASS action." config entries edit 1 set action pass next end next edit "protect_http_server" set comment "Protect against HTTP server-side vulnerabilities." config entries edit 1 set location server set protocol HTTP next end next edit "protect_email_server" set comment "Protect against email server-side vulnerabilities." config entries edit 1 set location server set protocol SMTP POP3 IMAP next end next edit "protect_client" set comment "Protect against client-side vulnerabilities." config entries edit 1 set location client next end next edit "high_security" set comment "Blocks all Critical/High/Medium and some Low severity vulnerabilities" config entries edit 1 set severity medium high critical set status enable set action block next edit 2 set severity low next end next end config firewall shaper traffic-shaper edit "guarantee-100kbps" set guaranteed-bandwidth 100 set maximum-bandwidth 1048576 set per-policy enable next edit "high-priority" set guaranteed-bandwidth 1048576 set maximum-bandwidth 1048576 next edit "medium-priority" set guaranteed-bandwidth 1048576 set maximum-bandwidth 1048576 set priority medium set per-policy enable next edit "low-priority" set guaranteed-bandwidth 1048576 set maximum-bandwidth 1048576 set priority low set per-policy enable next edit "shared-1M-pipe" set guaranteed-bandwidth 1048576 set maximum-bandwidth 1048576 next end config web-proxy global set proxy-fqdn "default.fqdn" end config application list edit "wifi-default" set comment "Default configuration for offloading WiFi traffic." set deep-app-inspection disable config entries edit 1 set category 2 3 5 6 7 8 12 15 17 21 22 23 25 26 28 30 31 set action pass set log disable next end next edit "sniffer-profile" set comment "Monitor all applications." unset options config entries edit 1 set action pass next end next edit "default" set comment "Monitor all applications." set other-application-log enable config entries edit 1 set application 6 10 15816 15817 15839 15921 16162 16170 16331 17191 17405 17476 23257 24747 25196 25360 27604 29410 30210 31197 31605 32121 32122 32123 32417 34491 34951 35432 35433 35434 36418 37065 38550 38645 38708 38709 38725 38726 39630 39632 40317 40318 40568 41469 41475 41694 41701 41702 41703 42533 42670 43322 43323 43324 43325 45553 46205 47382 47383 47385 48099 48109 48958 50364 set action pass set log disable next edit 2 set application 12183 13624 14969 15832 16169 16616 16623 16793 16799 17194 17210 17396 17466 22922 23397 27609 29210 30201 31076 31077 31232 33104 33321 33571 34527 34742 34962 35584 35748 35760 35766 36194 38098 38569 39077 39188 39283 39483 43448 46962 next edit 3 set application 16541 26631 set action pass next edit 4 set category 2 5 6 8 19 23 next edit 5 set category 3 7 12 15 17 21 22 25 28 29 30 31 set action pass set log disable next end next edit "block-p2p" config entries edit 1 set category 2 next end next edit "monitor-p2p-and-media" config entries edit 1 set category 2 set action pass next edit 2 set category 5 set action pass next end next edit "Contabilidad" set comment "Monitor all applications." set other-application-log enable set unknown-application-log enable config entries edit 1 set category 2 6 7 8 22 23 next edit 2 set category 3 5 12 15 17 19 21 25 26 28 29 30 31 set action pass next end next edit "block-high-risk" config entries edit 1 set category 2 6 19 next edit 2 set action pass next end next edit "Segundo_Nivel" set comment "Monitor all applications." set other-application-log enable set unknown-application-log enable config entries edit 1 set application 40169 next edit 2 set category 2 5 6 8 19 next edit 3 set category 3 7 12 15 17 21 22 23 25 26 28 29 30 31 set action pass next end next edit "AUDITORES" set comment "Monitor all applications." set other-application-log enable set unknown-application-log enable config entries edit 1 set application 15832 40934 40935 39381 40933 17735 15722 38517 24318 29210 38468 22922 23260 35523 17399 31077 33321 41598 31076 33104 23397 30201 16420 17396 38569 25564 next edit 2 set category 2 5 6 8 next edit 3 set category 3 7 12 15 17 19 21 22 23 25 26 28 29 30 31 set action pass next end next edit "GERENTES" set comment "Monitor all applications." set other-application-log enable set unknown-application-log enable config entries edit 1 set application 13586 16804 23094 32003 36963 42533 set action pass next edit 2 set application 17396 23397 30201 31076 31077 33104 33321 set action pass set log disable next edit 3 set category 2 3 5 6 7 8 19 22 next end next edit "DIRECCION_SUPERIOR" set comment "Monitor all applications." set other-application-log enable set unknown-application-log enable config entries edit 1 set category 2 6 7 8 19 22 next edit 2 set category 12 15 17 21 23 25 26 28 29 30 31 set action pass next end next edit "SOLO_WHATSAPP" set other-application-log enable set unknown-application-action block set unknown-application-log enable config entries edit 1 set application 28057 37371 40698 39999 set action pass next edit 2 set category 2 3 5 6 7 8 12 15 17 19 21 22 23 25 28 29 30 31 next end next edit "TEAM_VIEWER_ALLOW" set other-application-log enable set unknown-application-action block set unknown-application-log enable config entries edit 1 set application 15921 39632 39630 set action pass next edit 2 set category 2 6 19 next end next end config dlp filepattern edit 1 set name "builtin-patterns" config entries edit "*.bat" next edit "*.com" next edit "*.dll" next edit "*.doc" next edit "*.exe" next edit "*.gz" next edit "*.hta" next edit "*.ppt" next edit "*.rar" next edit "*.scr" next edit "*.tar" next edit "*.tgz" next edit "*.vb?" next edit "*.wps" next edit "*.xl?" next edit "*.zip" next edit "*.pif" next edit "*.cpl" next end next edit 2 set name "all_executables" config entries edit "bat" set filter-type type set file-type bat next edit "exe" set filter-type type set file-type exe next edit "elf" set filter-type type set file-type elf next edit "hta" set filter-type type set file-type hta next end next end config dlp fp-sensitivity edit "Private" next edit "Critical" next edit "Warning" next end config dlp sensor edit "sniffer-profile" set comment "Log a summary of email and web traffic." set flow-based enable set summary-proto smtp pop3 imap http-get http-post next edit "default" set comment "Log a summary of email and web traffic." set summary-proto smtp pop3 imap http-get http-post next edit "Content_Summary" set summary-proto smtp pop3 imap http-get http-post ftp nntp mapi next edit "Content_Archive" set summary-proto smtp pop3 imap http-get http-post ftp nntp mapi next edit "Large-File" config filter edit 1 set name "Large-File-Filter" set proto smtp pop3 imap http-get http-post mapi set filter-by file-size set file-size 5120 set action log-only next end next edit "Credit-Card" config filter edit 1 set name "Credit-Card-Filter" set severity high set proto smtp pop3 imap http-get http-post mapi set action log-only next edit 2 set name "Credit-Card-Filter" set severity high set type message set proto smtp pop3 imap http-post mapi set action log-only next end next edit "SSN-Sensor" set comment "Match SSN numbers but NOT WebEx invite emails." config filter edit 1 set name "SSN-Sensor-Filter" set severity high set type message set proto smtp pop3 imap mapi set filter-by regexp set regexp "WebEx" next edit 2 set name "SSN-Sensor-Filter" set severity high set type message set proto smtp pop3 imap mapi set filter-by ssn set action log-only next edit 3 set name "SSN-Sensor-Filter" set severity high set proto smtp pop3 imap http-get http-post ftp mapi set filter-by ssn set action log-only next end next end config webfilter content edit 1 set name "default" config entries edit "https://www.pornogratisdiario.com" set status enable next edit "http://www.pornoamateurvip.com" set status enable next edit "https://repelis.live/category/eroticas/" set status enable next edit "www.toroporno.com" set status enable next edit "http://webestrategy.com/portfolio/ingenio-el-pilar/" set pattern-type regexp set status enable set action exempt next edit "https://es.slideshare.net" set pattern-type regexp set status enable set action exempt next edit "https://peliculas1linkmega.com/category/adultos/" set status enable next edit "www.virtualpregrado.uca.edu.ni" set status enable set action exempt next edit "https://flotas.baccredomatic.com/" set status enable set lang spanish set action exempt next edit "www.mitrab.gob.ni" set status enable set lang spanish set action exempt next edit "www.youtube.com" set status enable set lang spanish next edit "www.tecnacional.edu.ni" set status enable next edit "https://www.avianca.com/co/es/" set status enable set lang spanish set action exempt next edit "https://www.florsheim.com" set status enable set lang spanish set action exempt next end next end config webfilter urlfilter edit 3 set name "Nivel_Segundo_CONTABILIDAD" config entries edit 1 set url "login.live.com" set type wildcard set action allow next edit 2 set url "login.live.com" set type regex next edit 3 set url "login.live.com" set type wildcard set action monitor next edit 4 set url "outlook.com" next edit 5 set url "outlook.com" set type regex next edit 6 set url "outlook.com" set type wildcard next edit 7 set url "outlook.com" set action allow next edit 8 set url "outlook.com" set type wildcard set action allow next edit 9 set url "outlook.com" set type wildcard set action monitor next edit 10 set url "msn.com" next edit 11 set url "live.com" set type wildcard set action allow next edit 12 set url "live.com" set type wildcard next end next edit 4 set name "Nivel_Gerencial" config entries edit 1 set url "facebook.com" set type wildcard set action allow next edit 2 set url "facebook.com" set type regex set action allow next end next edit 5 set name "DGRAFICO" config entries edit 1 set url "transcontrol.biz" set type wildcard set action allow next edit 2 set url "transcontrol.biz" set type regex next edit 3 set url "transcontrol.biz" set type regex set action allow next edit 4 set url "*transcontrol*" set type wildcard set action allow next edit 5 set url "edgecastcdn.net" set type wildcard set action allow next edit 6 set url "edgecastcdn.net" next edit 7 set url "edgecastcdn.net" set type regex set action allow next edit 8 set url "pacobamba.com" set type wildcard set action block next edit 9 set url "pacobamba.com" set type regex set action block next edit 10 set url "freepik.com" set type wildcard set action allow next edit 11 set url "freepik.com" set type regex next edit 12 set url "freepik.com" set type regex set action allow next edit 13 set url "mail.google.com" set type regex set action block next end next edit 6 set name "AUDITORES" config entries edit 1 set url "transcontrol.biz" set type wildcard set action allow next edit 2 set url "transcontrol.biz" set type regex next edit 3 set url "transcontrol.biz" set type regex set action allow next edit 4 set url "*transcontrol*" set type wildcard set action allow next edit 5 set url "edgecastcdn.net" set type wildcard set action allow next edit 6 set url "edgecastcdn.net" next edit 7 set url "edgecastcdn.net" set type regex set action allow next edit 8 set url "pacobamba.com" set type wildcard set action block next edit 9 set url "pacobamba.com" set type regex set action block next edit 10 set url "freepik.com" set type wildcard set action allow next edit 11 set url "freepik.com" set type regex next edit 12 set url "freepik.com" set type regex set action allow next edit 13 set url "mail.google.com" set type regex set action block next end next edit 7 set name "SOLO_WHATSAPP" config entries edit 1 set url "*whatsapp.com*" set type wildcard set action allow next edit 2 set url "*whatsapp.com*" set type wildcard set action monitor next end next edit 9 set name "Navegacion General" config entries edit 1 set url "www.videospornogratisx.net/categorias/" set action block next end next edit 8 set name "default" config entries edit 2 set url "www.tecnacional.edu.ni" next end next edit 10 set name "TEST" config entries edit 1 set url "www.youtube.com" next edit 2 set url "www.facebook.com" next end next end config webfilter ips-urlfilter-setting end config webfilter ips-urlfilter-setting6 end config log threat-weight config web edit 1 set category 26 set level high next edit 2 set category 61 set level high next edit 3 set category 86 set level high next edit 4 set category 1 set level medium next edit 5 set category 3 set level medium next edit 6 set category 4 set level medium next edit 7 set category 5 set level medium next edit 8 set category 6 set level medium next edit 9 set category 12 set level medium next edit 10 set category 59 set level medium next edit 11 set category 62 set level medium next edit 12 set category 83 set level medium next edit 13 set category 72 next edit 14 set category 14 next end config application edit 1 set category 2 next edit 2 set category 6 set level medium next end end config icap profile edit "default" next end config vpn certificate ca end config vpn certificate local edit "Fortinet_CA_SSL" set password ENC nqYYKjjNYSprHUVSmgEDd5iKF+T9XdTVKVrn01URh3bqPUehAsS1euEjjC+J5Yhoih29iddFJ8C1H8AOHyhtS6gIHzEGe2XPoeGruTp72+VprpUYARGMYrnpb5EtmrvDYWIbvUlT2WS1VKPL3w1J+fRZjWdwzQtpomp8aAG3xunWqLxXRAT1IV1H0MHxJzwACMhwgQ== set comments "This is the default CA certificate the SSL Inspection will use when generating new server certificates." set private-key "-----BEGIN ENCRYPTED PRIVATE KEY----- MIIFHDBOBgkqhkiG9w0BBQ0wQTApBgkqhkiG9w0BBQwwHAQIXtBxMU4JtcsCAggA MAwGCCqGSIb3DQIJBQAwFAYIKoZIhvcNAwcECH1bO9Lf4KXIBIIEyKB1bcZZ0dE6 CyhnsI44eJl6tQMBMgS+jIuT4uQty4RCZxU1e2zuYz9W3ZU1vAcmuHfY1GUeP+3n fBzWEbt953dqB31yY1S/Ed/+kBNcWJGXjdSpZkggIrl9cnbD6qwtIbZrh+wuUht6 5E00zb/saLbIZVJ5R8xo3NnGhkhZxQUYyDSJemaBgSR6u4W+J6PW4Gx7EmjBLVq1 nFuE4fKvl8q6NufEOwDZuImrQoY/U2BQiKnD4E+57rzK6sTVuCz8fVolGdXXOjc9 sPx762XhxBS2ocICJyixtDt+BwDdvloUG1Xk++IMcZ1GnYVOYZOiP9kuZzDI7dHp bvgk/vOyDpPcJ9s9d39X1n48/xZ2XY6i62GuxkEIwrBsQPPq1vLC14JM5dxdn1i5 1SO3t7jXUVO9hvWQeaXWMIPjQNYtmKmp10TGF75qsV9VhYCIAzjKljfVEZ2pvZlL so+XN93cKrOAwPyBTks564BY4youciOftjc67flnju7WltvL5LGq9dXRvSiwOoIT acgbUom80Dl7Q8U/l3EoyJYHNr9L2FhZP+B4CwItqsopbN85GlDQtUie5A66u4T5 78iXcC95CSuLmscc5cNa1pCwAw7Xxf3WuU4vELWPmRP157l6x56Gz8zcyqbdNcMj 1MJeRPt1ApLwwRY65L8+Ra+4cBlO4UCQKuAltJ+1lPE6JXbfYCed7On92jJFnXTi 8iIGpYiSTEobR03jFnCbEVqH304xMMAerQTJucK3MVNngzIdW5yzfRI22x2J5xw7 /UtPbVawaaBqCHv7EC7EttkjpdDVChfDvpTVPLyCC4WSkgSe0YuWvtCVx8NQcgFa VcKxWPjLa7AvH9OnZUihYhoh5Vx+vUkTaodwLDxO7A3Zzpt+SKLZZtRbsMeHZ0Dp vOuHAwnUJ7gaKyTV2f8gsh8s0zDm1uhonvC5EVjHY+ux6yIRZz6eEEKwDmc8XQCp JUWLYI7noMlZS9p0OpBbc+sG9ePPNHsn7oL1ph1CAXQnxj2tdKoKmcQOsiFmdnv8 DN87xCeBWYOKPQ9qyTKp1GbtGVndbpXOV4Yqz+FUe76o80KC6mbhbiQusTnhp+Fe iOrsL+tw65KvZ2fBRZCmkIDRs5E72ROrnwGNkJLGSg9W9joxlTr6Wtm78IKltpWS 0EzRiA5FrZ0NZJookAm1zWbFh5pOJ4cYK8nTKStRsFLJrJGIei68afbRAiCqCpPH Z0/BVN/lu9fHNCEYfGtDlwV7Q21GY+U4dhy/3iF8DJuCommpYTw4pAgfuylqmncD tSmxI2k3f7eWE4S1JzYwFC8Ce/1uBYfr92xTqzCT3T1N+00PG7/Lm7b/yj4ihErW kBCat+GmPTt1zLQPt03WIDUIO0Kessur2gEWtOlg1e7yWf++17SMt5IhNfluqLyU YAv4002egK+Hrn0eBtRbKABkQbLVxrZJ6XmdZiw2llLVBMZcasL/8K6YcBKlXR95 iuGuyS1WN2x2cP1lf7hv/4qkyGrp13YuQgI3TgYykSjdeUneIqNmZziUKV3UWu9O Sjvv73To6SPQJb2HAVGt3SRl1JlEYC3Iy7YtkEskWFOt3db61CWP30lzhiMd3fYy FvXfD5wsrwYTnPxOHYOh2w== -----END ENCRYPTED PRIVATE KEY-----" set certificate "-----BEGIN CERTIFICATE----- MIID5jCCAs6gAwIBAgIIL+7aCJJ+hJAwDQYJKoZIhvcNAQELBQAwgakxCzAJBgNV BAYTAlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRIwEAYDVQQHDAlTdW5ueXZhbGUx ETAPBgNVBAoMCEZvcnRpbmV0MR4wHAYDVQQLDBVDZXJ0aWZpY2F0ZSBBdXRob3Jp dHkxGTAXBgNVBAMMEEZHMTAwRDNHMTU4MjI1ODIxIzAhBgkqhkiG9w0BCQEWFHN1 cHBvcnRAZm9ydGluZXQuY29tMB4XDTE2MDUwNTIxMDAwNFoXDTI2MDUwNjIxMDAw NFowgakxCzAJBgNVBAYTAlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRIwEAYDVQQH DAlTdW5ueXZhbGUxETAPBgNVBAoMCEZvcnRpbmV0MR4wHAYDVQQLDBVDZXJ0aWZp Y2F0ZSBBdXRob3JpdHkxGTAXBgNVBAMMEEZHMTAwRDNHMTU4MjI1ODIxIzAhBgkq hkiG9w0BCQEWFHN1cHBvcnRAZm9ydGluZXQuY29tMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAxVbqVvM7GR2nsqhhFFVHLQJ2X6tdtPsrUZEGQQKRpuDX RBzY/XRd6fSvvENTHiU34PacK09kf3TpBe4EeWhrYYKK/OXUVC/ajOCI9wkESDNn aFIwsCHk8/iiLSfWqR52x3mtml4ouf7N2uwhh1VvBiLoUKgCXwuFJ1AF891N5K7T QNZmZ9sjDoE9R+rAOkLlPf8n2H8iJI3WoiS7dZxSqbqjXeLejaYBeFSDL7q5oVvQ KWgb88F8+AlDw8RMA5H9YehPfDiPEmz11HWjjXrQROcaYFOVvzmJMWa4PjxxyVvr mDJB4Vhjo6G0GHoQH87pvK+pXDkhoAz0dmnOSJ+olwIDAQABoxAwDjAMBgNVHRME BTADAQH/MA0GCSqGSIb3DQEBCwUAA4IBAQBh3zgVMOltny71kY8iMpUfbUsPDmi/ 2jcrkQSFzSHyDHN4y4kxMZUPb1bsT7RB5GO13k5gN2zZqb9WOnv9ZFtHGyJQdAeB p21WFBYNteDVRoDMptupOz2PAcNQtDzoMW5NrABufhBSO9C8SU3QXNQ6k0WVLbhX HxLHRsqoVNilx8h6VVOJGXHxHBHzeYsQLfBi07sAH6O85L5xkvW83FcETwxLZ1d8 3Rd9uOzaRZ4HSfzssm8D5cjfRaBWvRht94lFltkfbZZDS24wUW+BvooSq1ce98tQ lorZ3fL89UrLq+Tu6m5RpgQTlmxKVdgHNuwGQLBVt9qbAYAIXXQqRZOG -----END CERTIFICATE-----" set range global set source factory set last-updated 1526907420 next edit "Fortinet_CA_Untrusted" set password ENC uAQfminws9BiyeJADU6zmo1XKdNDpWacMUVdkA8eb2uGbA0xFR0KtGSi1cKtMtkdIl4z16tqkhrZOK/iqSI8C2YGYY6rhw1hpt9h+/mA24lpwD0m5HTiqrLkCIjYpvIB0OUtlLkZnWAtx9cId0VqoN6b82H1wSkbyD+s+GhslaD6vGoElrhBfHfzvEWCu+x5q4aLiA== set comments "This is the default CA certificate the SSL Inspection will use when generating new server certificates." set private-key "-----BEGIN ENCRYPTED PRIVATE KEY----- MIIFHDBOBgkqhkiG9w0BBQ0wQTApBgkqhkiG9w0BBQwwHAQI8kU+xlcGjWgCAggA MAwGCCqGSIb3DQIJBQAwFAYIKoZIhvcNAwcECJkTe3qlIJRyBIIEyNEmMyANXZ4c AiNEhKiSgAxOOqBPVDZEIepPrIlVesTz6yBGziPn0iKu1fn83onX1FU3xoqO7NRA HftHH7GUvJKyMSv1teALNKbYPzthjY5pXXSBViu9YMwd5/t6rS6IwET5LoCEQS7m DgDON9iiG4vl2YqakExnHGNVarMcou8SQI7+PUWerQF8MhXPNmAg9wf3/YJ5wTWu WzisNLOC2scCVTumBkfphTPSoJ0j91kufCI07cc0ZBDcieBYL/gXpQudeQD8+z0k 7cZY4x/bf7iwNnWc9XFVrYkYNcuYXj/TytFoN39GdN95eeetUK92GNr5MQGdbdgW ElpFaLkpN5RUjM9G2olXyh/2rLSNOekv+K38+o48BJCrInlcA2tdKPbKfYGox6af TmxS7HGmxIf8cYNVaNuuVWuaw7TTtiRkofFjys3q/IvdOkCZjPwHXKaGk7PEQTRE XyCMvxb+Xzl3IEBtfchwHJ/bdDNI+nu+VDiiE1k9Z9vW0PeD8DkX/ByMoCpqkcEt n0wZjSo2CAc7bb3pTplPFlajeEB9ZiBDVCInRmOgcRaH6PoEmQB7YtLqdOqQkkvx YGUqfT7Xor6BZyF8EOo2q5I9UkLCUbuz9Emba5uu8Yq7Q9Yf3xU/QFwT52JpUcu9 MEK2E/cfLgeR5FNPvu9x6HXUF0wMhHevKfk8JoeEN7UEa6zmUlcWfAu76pVRRqHb zTpUjnYVtKAc7c7rzOxe4u2fOxzKzLfUl+UvKMNIn6TcL0UBOF+nFp5rnh9l/ngt yaPaVzzS4FK11g+h0hzmMfalVDO5w2NwxM10kSWaBnwiXiPvZbskNFk4rsbqLnjy zMq0b6AUroli3+5gDaxdyWXxH0nNytE7ksJmUPuqDDYgTWI183tVkRVc24rnFzSD wU/xKnZj1AUiC0tFtsegYIGM6Exqi3Rk7tr6NBnHPjHr/s0rZVlrvIivdvEVWiaH hGtylFAp0NbAzO1DOZpyROeYMld6qD1fLMB05l7j4KxFCme0pjegAzyzFUIoI3FZ 2lbPwATouyqg2PODueNCUGyxNB+3LOKdwZrqHSlBfwh1K3CX/eVC0NP3B+GIy/U3 yYp5ECVMG1wAC0wNTGmiZR0cu24PzDqyBp2PoOE69ZcmaTMZ2LSHTemggweGfJRW RJft250f7KmbSo53ImgcPDSJTLibPULawr1h5BqxLgx4THOpKDkGKn2qHV7hBfvP In1wMXSrUK046JidpZ888cgPkJGCllZTOte33eRXyNo6MfAyjUqk3W8vJYQZ8T2c WkARqWGHFmCYorz5/fmY+60qLTbhY9CpUbt8pB9wrL/L3LArW7CTuXRjpIyh7Fzu OTKa+0N79mYt9RnLhoh+cdbfeUiry59/HuWi/SUG+P382EOkjDe8k1XVEdgDZuhb rai2l+Rlh42eUpZOUip6AcYEUknQqmAGqOjGdC+86ikDyfAB8XKoPOp8a6bSemfU If6BtCRh5qGtTp0Lunb/iOUEkOtJ1Cq3Rzp9C2dMs/keRvnPQCuwNhxAam939MCs 2xQfG+wnuTD4PfDAopbWEANW6g0P8k6DncLZ5HWuUqZURUaKLN9QFTqi6DAwhVmJ IOn3H8P8cWAEDMO5Snypgw== -----END ENCRYPTED PRIVATE KEY-----" set certificate "-----BEGIN CERTIFICATE----- MIID8DCCAtigAwIBAgIIE2RrnmA/3BIwDQYJKoZIhvcNAQELBQAwga4xCzAJBgNV BAYTAlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRIwEAYDVQQHDAlTdW5ueXZhbGUx ETAPBgNVBAoMCEZvcnRpbmV0MR4wHAYDVQQLDBVDZXJ0aWZpY2F0ZSBBdXRob3Jp dHkxHjAcBgNVBAMMFUZvcnRpbmV0IFVudHJ1c3RlZCBDQTEjMCEGCSqGSIb3DQEJ ARYUc3VwcG9ydEBmb3J0aW5ldC5jb20wHhcNMTYwNTA1MjEwMDA1WhcNMjYwNTA2 MjEwMDA1WjCBrjELMAkGA1UEBhMCVVMxEzARBgNVBAgMCkNhbGlmb3JuaWExEjAQ BgNVBAcMCVN1bm55dmFsZTERMA8GA1UECgwIRm9ydGluZXQxHjAcBgNVBAsMFUNl cnRpZmljYXRlIEF1dGhvcml0eTEeMBwGA1UEAwwVRm9ydGluZXQgVW50cnVzdGVk IENBMSMwIQYJKoZIhvcNAQkBFhRzdXBwb3J0QGZvcnRpbmV0LmNvbTCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAKrnl/RiGnewrO/GgUC4IRFlFgq/DoQW u2SoDJ9765k/CgRbLKlVsqqqjBNNArD2cue6XPLQ9ztB42lScQ1oHn6TSMQPmPv3 tUdTI/aDv6MeyYMZEYKszNod5BLZfN6KdDtpy3zKMqeTtUcA+2180H7bARKE9ZFl 0bS4h6GRopUt2yfjvZdbPlRvn276ZFhFusgUEocTCB2So7TXRZNiWX2pMTWK18kZ /70dMkLfSOpNs5Mu2uwd31VpuiNF2dH3UYRvuqZXggPrqJ0BT59X733LO/z9ahAz 4Aq4MU+DUeY1klB7sL27k/KIXbIPbXZ0/q3TalNtukeeYXXqYNhqJw8CAwEAAaMQ MA4wDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQsFAAOCAQEAENbXOtBCV6O/i6q3 YB+zj19dTP2ir/GcXupJ7lVB1IY2k3QTQpHnJoizD9aElAO/HDwjjRICt0GlmUeh OnIXwO0eJnxxWvYs4+c6rlNHlMUZ6Ecx9CLFeUHHWHG913CFoYR+v7YmJQC248JB ioMLpjezM0/NHx+5DjKCToXU4UCDp2EZbgmXUBVx9Kz64I8KaEoJD3lWYgLCpVDu zF+onww2rMw5jYevu9V9VuazUxK2xovr65tIJbn47mqxoE8s/d6ZH8qSjTZ6O+Mr Lex+/egAwzjJgJ0dPNvwsPWdFxoHj7VOtVXA0MpC7y5G4T73rOlpaQAGXdhMaYgy q2+aEg== -----END CERTIFICATE-----" set range global set source factory set last-updated 1526907420 next edit "Fortinet_SSL" set password ENC 4d5rK0RP68Elh4bCPB+c4l1wYpETBilQZoMLom0nnBezuJJY4qD8xUT441VUZPzcjZAWoPDEzpaFUOm7QLo0Az2P+5knAZ75Wco1RATgWouoC9aSdLoPvhbRKuVFlW3W1BSWaXDXLA+cv+NG5LMecEFEe3GAnFxOHxdsLx2kXpv6KYzo/jUGdyBPoxS6N566XhRDMg== set comments "This certificate is embedded in the hardware at the factory and is unique to this unit. " set private-key "-----BEGIN ENCRYPTED PRIVATE KEY----- MIIFHDBOBgkqhkiG9w0BBQ0wQTApBgkqhkiG9w0BBQwwHAQIkSbd4u0GKswCAggA MAwGCCqGSIb3DQIJBQAwFAYIKoZIhvcNAwcECAKkc28umUxzBIIEyErgCXX8sQ+u P2e+cC0fMjiJGVr0vNfT81UobpOe9oqq89RLEYjGenPADZ1QAVpBCJ/7gK5Jk7SZ dKa1xbqsXP/g9mNPk69cHWfT/QDQLYLZcjTTRs+uGZVhk11eb7Rk0RInHQH4GDQc L8JnRZRRncSShhxF/PKRl4W+ZbXp+kRF79DmGgF8TmopopaNCGGSE75fcvxj9Q/N ScrlBkX4GDVNZGDgqdjYvwD2aqlhIWWzMVpfa40E5wiuL6CID8kQpqiqSH2zmgGf mjkPB4jHFxytHunlfwR+lgxln5IWd1+pRqzqCVz3dCHWjjpUbfo2urTU9YTCHBEy aBTVy5vt+c7NLIGAJRZAbZufueqOEkoQIRBtdw2bjbXab1Cuav+tDCJI63jNYGbo k09y+zDg5fKWhPgRvAEtyOBgN1KE7AItzHNnXPBu3oaPRmJvij1RLSmaLBs7chWz 3jPLuspEtLq/TcIinO88qTPPeHCtQ/oBNim0HHv0bFrHRoBXruqnaGkznrcB1BQH Crq/Z0TMSwpEbeixMBMdnJeJ6zuo6fyDXzYiJk56f3BMH+cQv0TasaTZLKzHvGxp 2DoFLO6NKT1d7GNCtTO91J0j0FyI0J/92CFRV9SnqNdDI8d6UGpExz1LTA+htz/D HyO9Zu0cayYBAv1EGrs5KTqGsIUWlGus/LyuXgKVwIQfHpI8Zp46jzhHp+ff7cyI hJyXDwjIYKfXVDDFgWT9hyz2cJH1bPXBMz4QCd4rJ/2d0zLqEonpsAAQShwaF7Cl hDWFMeFXR70XGK4O42RAt4NbdkLVVH+5ibzRB3lbHPWWav7vUvGGfsLQZLv1Mmx5 NZfRmcuC5OQBlqnQnOD3KvdHvvpXBnq7B82zy+Hy9E/bAZJeiBRghTjgLSZ1jrcB /2lSwHiHz1zgljB5398sLn/izBj8IORFhc75GtEQecPV0Mbv436lk/fx8kJ0z4uz fzG/rQnQnJCcWMpaYIOylgVJZv/pmQY00z86Xx57UGgmLUareiyvlJcrcAmbk8QR oFs1RaHRutOO+cCTAA9h37F5jwgUlt4jhRig5UNJlsElHT22+cP6DN7axP/Yl6Q3 UKqYvxHhwNfNPgLKEFBPOV0xaO1RKKtlSn120AVig5MKYra+ugbB90Irb95r//cM lt0HOUCfbwRacpQit15PS4mrcYC/iNtz8Cvv59jtK7WhKF8oGemVJsVnD6w9QbRx HxSN3yHCARKUW6DsPscVDjH6bQ451YaK0te11VnVFh5IZvxugvLKkkkokDEF/6KJ 9OTQXiqec75OhHWGXl6XHjWFo6qSkqNVuMINWsCQDSngbUPtd7GMCct4zcrCp5rY k+6ECn5OoEEIPOniO/lr5QBhlQoEnBylBj4/YtlMkFEPPeMVwEwD6FyW/onyqXMP a8vgAD6zgltjyOluGdXbCCr7LKPO6nTqirl+CNkDxjkVWnmwNMiobSnVvQo7wuBr NsBz6PSRGI/1iAyuDngcFtCVgnM6lrwTUSAgACQ3bPBZAflad2itTmlrMayLNz33 iM/Dvx9kyexf9KW21C5WNJlgqD52PDb9BSPflP1LryqsLwbWt4lJfBgwr1Q70Bh/ yAweLLWgbHBJ1DfupUmGSQ== -----END ENCRYPTED PRIVATE KEY-----" set certificate "-----BEGIN CERTIFICATE----- MIIDyzCCArOgAwIBAgIIHP9JW56NweswDQYJKoZIhvcNAQELBQAwgZ0xCzAJBgNV BAYTAlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRIwEAYDVQQHDAlTdW5ueXZhbGUx ETAPBgNVBAoMCEZvcnRpbmV0MRIwEAYDVQQLDAlGb3J0aUdhdGUxGTAXBgNVBAMM EEZHMTAwRDNHMTU4MjI1ODIxIzAhBgkqhkiG9w0BCQEWFHN1cHBvcnRAZm9ydGlu ZXQuY29tMB4XDTE2MDUwNTIxMDAwNloXDTI2MDUwNjIxMDAwNlowgZ0xCzAJBgNV BAYTAlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRIwEAYDVQQHDAlTdW5ueXZhbGUx ETAPBgNVBAoMCEZvcnRpbmV0MRIwEAYDVQQLDAlGb3J0aUdhdGUxGTAXBgNVBAMM EEZHMTAwRDNHMTU4MjI1ODIxIzAhBgkqhkiG9w0BCQEWFHN1cHBvcnRAZm9ydGlu ZXQuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvuHvy7FserZ0 SPfCYpbXKzeyDX2r3pjdQVAGpdT3nz3/tLgaTy+O8n53WX9gSIwEfHNCCXtq1P/Y c2TLILeKWGif2Sy4A1MBJ1ZJG1KWSfJWPRNYS22bZRCBwIYcfhfMQhFC9ewUg4+q R3H6YhYClC83UT2pWbA8nscRllndcr+6uLowM8t6kbUlGNPjiwFtiNf93T/aXQNt wo244dXSex+fwQe+PLfTVkmDJWqEijAg5tnn7kpUfyqzCII7hIoVtebnIAe8DKis Rq3uu8qKKfkzATBQdYFKuYSml9nTPdeg1NLm//ln2YNJyPhn5vN1d/nYdliedFks 6k47HMwqFQIDAQABow0wCzAJBgNVHRMEAjAAMA0GCSqGSIb3DQEBCwUAA4IBAQCq VFbD2C33btB2aqSXZFDS6ShQQ2MZyJMSI3XHRaukeDgQv2R9fVp3bGXBjeyBy+An q+3z0LT1Hy2UVknGCPedVb/zfZ0nlEzbXgfio0WolSHUmTnT8kvuWBLNSBlVyI8I UepN9tVEnT+YdEsHX1TM76odPNbFwEPQtO75gncBRq/vGZrrCKy4//V+djOrM0sJ Nif0wo27Mo9sy60FwZa/Oa8YJPnT3YU6qq4R5LMaVwCJaMDxHVOM7BndhxHA4ACu g2TjWayetzJrgfQeyQbMNzB75Yuvvsk5nJ+Y8Rf+fQqdTZk76CLfyTyd0KXSFoaF HIMLFvVTDuDfLunA3pGS -----END CERTIFICATE-----" set range global set source factory set last-updated 1526907420 next edit "Fortinet_SSL_RSA1024" set password ENC 4L9EUsQQsoHQMhwzv1sgP7DSFf0eMxDQ8bVdNdjSCyvR1JHJmLE8M/jpQs2N3ezq3Cl+4wTpQLBmdZ+yM9lxmtBRFstVHNOM4qm1+cWPYW4oiqVDbeS9lv/jw60YTHhml1cSKS3EVFeQ4scO8z6Xj2kIAzjxAIzCukdOWb5JhZXt0efaILpoHgALlcAqnTGP7XqKpw== set comments "This certificate is embedded in the hardware at the factory and is unique to this unit. " set private-key "-----BEGIN ENCRYPTED PRIVATE KEY----- MIIC1DBOBgkqhkiG9w0BBQ0wQTApBgkqhkiG9w0BBQwwHAQIPk2ccKYKvEkCAggA MAwGCCqGSIb3DQIJBQAwFAYIKoZIhvcNAwcECMR/LqKtqaQ7BIICgF66/Vz62yew 95hLXlUUsAMEGjgLuo+mZwRkvW47SXa2S9/ixGkleZvoqCLxpQnFPoe2BPozfUGE pQzMzU1zxXqdQ6TquZLuO+lpmGx5Y/KpHi1ey/EmZnqH6oT7AyfU9Xc5TnisorXl 0q1cah8txo4+kGyyHS9z8hVdzrVDkA8/VHwLE3wrMJKF4YR21lxglBwMj2BN+T5T EoM1YG1nw50qCn00rbq5zmAmztV7FVCwDsZzzL54RZ78SU+9LU/PFPzUy5+r6jpK mMtMGaZ2gMsA9nFoOksA8uC+IJ5Yxvl0ikDCWuGB9FEGh06LPDJeRueVB0ElJm3Q 2HvRbh+WYdoMWZmL/714BWe8FAACGb9kUdgP2SCUOevezMs77OC0vVS8oilDTTCl yWyCvmtds6VMezUuCvxTBoZBHGuTcFdnMex/rOkM6SncZhkaU0XT8wYxcedm3tpj fbVIkgf1lgy3s2Fn175MtPB2g+eJA2y2sGyMpqYx7ChzX0TbUZJYi2bigaKvtCFH 2/QGlnFMMFaOTEbZLPNvbpkvwfKNBFSYsA9zmRtEWHMTQ+dvIvJt54ogtqnxxle2 MTlAW6yAgnteiDEcP7Q5HJGjKHH02tEHMMueNBefo+ZBOy7amEIhxBVwPuMHOfaR 39T7OeVNZFTpdZZbvTgp4ynatPFIsiB65kIjtiLXVqyBm5ygG0FNH3TPj16GdSY/ dVuOsRImtL9PQwnJDwGMQrbwnldk/CzPd31/gg62Ve5TIezCG7ovGNWWdiy6pX6e xXG7NFHH9NTQjkrZ4MrXZpVIxM9cF8aHvdbDUMlqPKY7KbgyWU9B/pDNNeQkY4cN 18mmHc6M61g= -----END ENCRYPTED PRIVATE KEY-----" set certificate "-----BEGIN CERTIFICATE----- MIICxjCCAi+gAwIBAgIIQqqtq+vUleYwDQYJKoZIhvcNAQELBQAwgZ0xCzAJBgNV BAYTAlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRIwEAYDVQQHDAlTdW5ueXZhbGUx ETAPBgNVBAoMCEZvcnRpbmV0MRIwEAYDVQQLDAlGb3J0aUdhdGUxGTAXBgNVBAMM EEZHMTAwRDNHMTU4MjI1ODIxIzAhBgkqhkiG9w0BCQEWFHN1cHBvcnRAZm9ydGlu ZXQuY29tMB4XDTE4MDUyMTEyNTYyM1oXDTI4MDUyMTEyNTYyM1owgZ0xCzAJBgNV BAYTAlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRIwEAYDVQQHDAlTdW5ueXZhbGUx ETAPBgNVBAoMCEZvcnRpbmV0MRIwEAYDVQQLDAlGb3J0aUdhdGUxGTAXBgNVBAMM EEZHMTAwRDNHMTU4MjI1ODIxIzAhBgkqhkiG9w0BCQEWFHN1cHBvcnRAZm9ydGlu ZXQuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbMsAWT4A6gqSIAqYq SBJMXHWvXaOOlo3IatG1NvGxMKmH2J1jF01MS/EDgCEOBCt/fG3zhROTEg2P960L GRYlrIXhxBgopUOLpwXAt47wq9YCkoArRJ2IGJzCQERk9FGA7XMYjTvdId7kxzCi zE/IiZxyki53IfZa8cPgcpffDwIDAQABow0wCzAJBgNVHRMEAjAAMA0GCSqGSIb3 DQEBCwUAA4GBACmUGIfhPRmG6s1FfaiqvLD3XVfBgyhsWSrSmw68iJV2iEpGz8eK qNeAPAtc8bv300WWkJfPaRgoBYPxSp3hHkmOLynfpgu7FF1LrTS0P/ViuWxOmQGC Qilu6tsNoL4Hkkd0bjOZxjzqbZZ3ql+Yu4gMC3jHTcQ9SIy+K9gvqt87 -----END CERTIFICATE-----" set range global set source factory set last-updated 1526907408 next edit "Fortinet_SSL_RSA2048" set password ENC 993w0L5oJD3ReDi19WspzymtRJNQQn6FppEWf7tGC/qt2L54dmmJ0Yl2H/mrfhmJOtbQdf9DzcQvqwhmiKJifWx7FVpNYvnNf3b17rIPaRaFBWslnLaz/BrEVlc4NP5oakzFh5x/ojGzss35UAXhhihv5gWEzRhC7InlQ9l7i53MsC7ubYORCCttspJaCs3Itj/VeA== set comments "This certificate is embedded in the hardware at the factory and is unique to this unit. " set private-key "-----BEGIN ENCRYPTED PRIVATE KEY----- MIIFHDBOBgkqhkiG9w0BBQ0wQTApBgkqhkiG9w0BBQwwHAQI4QIywbTa3BcCAggA MAwGCCqGSIb3DQIJBQAwFAYIKoZIhvcNAwcECI35AegbVT9CBIIEyPOjsGfOF2I8 MZOjWy0PHKYMxSC90CVwyuhgnd+c4G+BJQOPR/62KtDpD8f/D0VYSk/ZYRIaDrV1 eHDESnZyTW8hbhZI9tuz6cpLp8VzailZGXRWO+3DirbBedZByi/z9SiKL+KYDLD5 nwuSY0rog6PO1Qs2ADnFKxLG8GSCy+1Q9FyWjEAM7R+01JqdjOnuMHU8A/Sz4A31 3f8TvY4Dvwoblrec4kBiJy6VWiCFaVYPIl3H+ouNTa/u0c/vYps7+wT0QssmbSKU qG/DEgpxYN6XQjv2qBkkwNznMJoTNmrLAm0wdSGLRnhUGFMMpu52dtpZ3BKZ+/an 8rqlflqQ6S942vU4ooehytJOGCttS9dgdctLb1LIxuGR8kkQdVLGT7dejvNW0t6k uEaYCqyu/jRVoLUwre9o6tM0T6hDjnMUj+SenIVKMqiDUj+xdJbDKET6avwzKuLw mi4FVi7r3MigeoGN5X7iGUkbDFvAmwmrJ0hRoA8OWkLCNyVai/K/2ym1LE2u4t6n 8jbQlUfqwPXPQ95ZaWhUHVZw5DGPiKN/qGtEA6IMEJ+uMAaS1wdj7BoYlbswSYzO HYUeIPD28y1YgnfvrQ/q232h7HbBtM5DwJoqu2IwYNvflyE0JsEOKocHAmEx2A2W 8racOTN1VJBa8WSLWDKZ3WyWC2x1eTyvyHAkHH7X5kPLaRiiEv2EB+OORVtOiB4g fXlHjFEpu6jpHldmTpNxVINscoYXZpnELrvzhi+n1w/A2JODAU9FSa24hdjsmuU4 lE5P7wTLlLuQ4CknPdGyYTG6wgQaFbhN26q2IzMBngnao+hDjU3TXLf4WqX29WQ8 wJTmzq8sSsoqKilM7UcW5Y1MyO33yoadyzh/LXjP/9fvNlQ40TrtmWcLetT7r63E IfNOyuCARxF2HcgWMyKKrQK4/uRLkj/DlGpYv/VXr/dP2A3zSt/wfarZLBlrequE xIOe5f+8iKGZiEc9xm+/MLCi7e+N5uySGZDiettgnzPY1YZgmWWKgS6Q0n8TtERS o6PjuoTe51zm53FcNFmppRwGL/snLmvzsJf5PXaA2FeeuWDk62QuFSctpM6B9/dr GK5fKe/OG3bq9d2NwUMG9IiteGUqO/LwQCsf7SJSBb1se/3PKYsA5ySAQgioPINX Gw8EXIW0kTxNav75UxfFiuyYmKFAreqPsulLIoSJW/iFMDyfEpdlP6IW88PMaWor iZvtXlRDF+OE7SV4yLAOh+W3kgzpV+ENoBmdGjwzY089a9Bwg67OTkA3W5L/t0Y5 M3fnUyWYaUBFS1ON74eCwHBnoGkW/Uai1uTUjD/8745THyfjfQ+uBz8dzStNXFMQ clMPwXIBeYjsZSIi9D3kEreHiK1WbjZrNSas/egcK+A7mDN/GYooA6p35oPiKwTV n4y4Lr2uT0+rXm6ivexjHINhtTkOujPXfikIWAC0j8d/wAcMB53/8euCvBRPqA2o Sn4JDRFLa6s+RdJqgcBMy73DwysQP/BmpMJAlSibQcHfzGK5bbyDx/3v3njYvyXh yDQKb/nRwpb0z4Qk8AMSguJ2fn4ZSUJ6iTGxcHitS7ItylmOczvtDAj/Dq+Z7Lyq cviidtfy07vZacRPntWI2Q== -----END ENCRYPTED PRIVATE KEY-----" set certificate "-----BEGIN CERTIFICATE----- MIIDyzCCArOgAwIBAgIIJ56yBNpgFzAwDQYJKoZIhvcNAQELBQAwgZ0xCzAJBgNV BAYTAlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRIwEAYDVQQHDAlTdW5ueXZhbGUx ETAPBgNVBAoMCEZvcnRpbmV0MRIwEAYDVQQLDAlGb3J0aUdhdGUxGTAXBgNVBAMM EEZHMTAwRDNHMTU4MjI1ODIxIzAhBgkqhkiG9w0BCQEWFHN1cHBvcnRAZm9ydGlu ZXQuY29tMB4XDTE4MDUyMTEyNTYyNloXDTI4MDUyMTEyNTYyNlowgZ0xCzAJBgNV BAYTAlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRIwEAYDVQQHDAlTdW5ueXZhbGUx ETAPBgNVBAoMCEZvcnRpbmV0MRIwEAYDVQQLDAlGb3J0aUdhdGUxGTAXBgNVBAMM EEZHMTAwRDNHMTU4MjI1ODIxIzAhBgkqhkiG9w0BCQEWFHN1cHBvcnRAZm9ydGlu ZXQuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzUWKFe8t/oHU prUVva1PZffvGyF4aPUaMsr57z7BXK4rODCEio7rZJUiLeC+VSudw08hL/BgMmMz nNtmt9SZNNs/iHTIJ0dueRvyUZBpGgKHxx14/2XoUvxXJHQV/sk2T7oObafbYSFz xXu6U6fAsjl57tbuW6dta3I/K8a5xrLuYFXXEFXSIQaEUkKtcCGzPtmrhXLU2+54 H11xUDgmn0ZG1jlLG3Kxr10cQPVD5dOuBit7u7uOMT94imXQC5liIYXr9mUsXbqo slSUOP8T36AvikgmYzV4ycGuUjYfJvnSltSlCKNbk7q0zWd1FA4fDIHqM//GTr3y Qv+q+OvDowIDAQABow0wCzAJBgNVHRMEAjAAMA0GCSqGSIb3DQEBCwUAA4IBAQAb e8rCobldFjZP5uCrFwKwwb438n6Fs0qmdSObduMVqH1JDiUx0bTS5UkL77Wpx22e YCqv5TjrVJYQv6KRPm66EP0F0x3Vl2cJtnpizVtoRhaaje1gNEs3rXZqBpWk82KU +YiUmKTumV6o2VvcZSdRZrP9smNnuxJ1UEy9g2BT4sYujoxI61x5Cpcw1SdXAOFz HHTgW8jo1+3vbWI4EYe94wqhj0RPPExC0TCOBPj11MdZfupnLBTvB8+D7tyUmSnX QcKUHjqBvoVNI1k4945LIIq1RZMvb04gQClOXe6o0oIudbULhXc/anCeusL9O8LZ KgrqQYD/LHtbePvrDlzc -----END CERTIFICATE-----" set range global set source factory set last-updated 1526907408 next edit "Fortinet_SSL_DSA1024" set password ENC tH/ufiPX5e7bLZQHTUWP0cEKH5kD6GSh6VigBibjyCu4Tn3EnWzgm2BHAusBOIhKuSpev8d7GnIkl9LkD9+BOcq/poyYNCs3vsnMb3rSM0xxjlmLv/2DVRWWK4BvcN+r/LCPd35ZoweIe3rYZLQyMUNo01gN+A+SRGQX4LTceLHcw8/LtY/R/qxt/NJc6+rYk+Burg== set comments "This certificate is embedded in the hardware at the factory and is unique to this unit. " set private-key "-----BEGIN ENCRYPTED PRIVATE KEY----- MIIBpDBOBgkqhkiG9w0BBQ0wQTApBgkqhkiG9w0BBQwwHAQIV2zKJLv0naECAggA MAwGCCqGSIb3DQIJBQAwFAYIKoZIhvcNAwcECGq2EZBpEIgpBIIBUIqSEpFUI/Lb 05GIjkAo77wg/o7tyj71cEVvq29vCrSYvG3cB2v6fCpjGi6dXPKK08X3Zvstp1ie iOMNLI/fbLG47C1GrvkMwVuuLDLcIfRmvZaM1TbpwQwOo2Jgxg8VXvULnlFAX71I 81ltlj+jMYZnAmHlJusFn6EudTEMjdH/idsNFddoZD7HZENYWahw+vliwMowlQid DRlvLDPFaMkByCfDSpxaH/dqWxuBmqRTgIXSiVpAYaKjKjxrufs1ZPt5/PoX6aEA 9r7hQHKo1Ud/qTeNb06BRCRxpug7WEbgSz8ZqYjiN6177qlk7j869RALWKK3/9QX 9uEC45Alb2AQLp3RRG8k+ZEypmOs04b2MbpXkPF/8lj1Wnq9IcZbFanLybYWObJ0 iSNhx1tyXP7CWyhDRTGITgEbxQX5CgS9+3q8z9xjZ2BJSlX8f7W1rQ== -----END ENCRYPTED PRIVATE KEY-----" set certificate "-----BEGIN CERTIFICATE----- MIIDiDCCA0agAwIBAgIIXLinmcbrHEAwCwYJYIZIAWUDBAMCMIGdMQswCQYDVQQG EwJVUzETMBEGA1UECAwKQ2FsaWZvcm5pYTESMBAGA1UEBwwJU3Vubnl2YWxlMREw DwYDVQQKDAhGb3J0aW5ldDESMBAGA1UECwwJRm9ydGlHYXRlMRkwFwYDVQQDDBBG RzEwMEQzRzE1ODIyNTgyMSMwIQYJKoZIhvcNAQkBFhRzdXBwb3J0QGZvcnRpbmV0 LmNvbTAeFw0xODA1MjExMjU2MjdaFw0yODA1MjExMjU2MjdaMIGdMQswCQYDVQQG EwJVUzETMBEGA1UECAwKQ2FsaWZvcm5pYTESMBAGA1UEBwwJU3Vubnl2YWxlMREw DwYDVQQKDAhGb3J0aW5ldDESMBAGA1UECwwJRm9ydGlHYXRlMRkwFwYDVQQDDBBG RzEwMEQzRzE1ODIyNTgyMSMwIQYJKoZIhvcNAQkBFhRzdXBwb3J0QGZvcnRpbmV0 LmNvbTCCAbcwggEsBgcqhkjOOAQBMIIBHwKBgQCXEGiDx8cmzrV+aSxeSBrh2C/f I6MDgJkKf/6JagLfHk3k92uG7vOmLy15itXs48sQa141GGw0sQuDwukII0XEHI5n /5O8xEUsWor+qYfinbHcV/AuHlxwzBVxM4NURJF913xXoYLkrYvD0uq1HSeNLm16 WH6mkwx4gk/fGVvCSQIVALlUB3fHtRIq5XTbZz3UtIV8dVnrAoGBAIMFu7bZFSNg AbGLCq0lnPzui1WEGmePETtJWPE+zT0oPdVPXxCOT8ATun848PW8tJJYgdB2PzZe yQQZrWYiaG2kJBbGxDEVcdp8zgm6lqiQ0e9mkAKdVBllT4CjdBbt8KmY0FNgbVv6 3/xMtTHhzyo5R4nf89ADo2FrjMXPvp53A4GEAAKBgHI0liWGnO6+o/5CHoZjblhu M2Ae0I3NB8/AiATASU7ieQXrl0xaeA/rnQ4wWhwPWtbhPPmPI96ve9fnZmFAcuPb PaVuOiNdo61yKYFZJMyxHzxZsWYlWWsuT9k8CYnUSLzOa0Dfy8/AvyM2EWg+KpFm YOVhpq55VXEsW0vf/tDdow0wCzAJBgNVHRMEAjAAMAsGCWCGSAFlAwQDAgMvADAs AhQl84SPx1Ok0J2+YXB5jGAOEZ/G2QIUQifuRuigWdqxmvP1DGdPSQd5CU4= -----END CERTIFICATE-----" set range global set source factory set last-updated 1526907408 next edit "Fortinet_SSL_DSA2048" set password ENC 7poBErjIC/wXuuxUVhITC1D6YoZhsWTcVxUcmjTRllOaLcLo3EO0WtW5cvKAjI5K8gqKP05kDA4SVTwe8qn+tOCbljczDCiZiw+G5qTnIYeuHeVPgH7LcP4BlT2fscQsgZr3jme+lyAC0FMNUVKd0Tsbsd9s2NTRRiW06diuC4Z/WYLBxaTkQrK0AyyFLx+eKEWgLg== set comments "This certificate is embedded in the hardware at the factory and is unique to this unit. " set private-key "-----BEGIN ENCRYPTED PRIVATE KEY----- MIICxDBOBgkqhkiG9w0BBQ0wQTApBgkqhkiG9w0BBQwwHAQIvxOzOUQAVDYCAggA MAwGCCqGSIb3DQIJBQAwFAYIKoZIhvcNAwcECEcdwR4u49cyBIICcMYp7LF78dDK aOViu+T3B4La2cGlsDvfcJWh7G5ePiKwxL7Y7q1Cu7SwJwx7fLh5WCWgmWpPvw8K LL8ld+2TZYH7ZegFkB2MfSW/Ob1xEK5CzExwNHbS/ajWZxyUOISZx5Clj9lbwjnS mgmhyedzA0bTYl50qcjMbVo1zBkBmX3kYy8GIgoaYdFlByXjJd59aqDq5CfaHogT /BE1ue4s1XARr/MY9tz2zKMsUg2HUnwLAS0Qa/ILiqXUEsME71wiMz/7dNCZv0Ej cbPuMbT4f5DpEefgfiFAaGCF02FQml4yj7yif9bnNH7bsGTGkSKf6HWy13w2nIAT +wQ85ZNoCajEIr9WIWmjNM+N1wzky2bCWGXih3Vs66qVjg2158FKgB3vADgHqLlv g7Co5bu812IIdn1iytyDRfkGXX8V/swZk8hTHu+FpxuBPL9qDxW5EeBBAunzUMGT G2KQx12X1XAcakGkWPzyVOcvKO1zCWE6WYaLSuPX2f6cfVn7nP78RN9eE0RQi9il YVY51sSpOrx2Yd3cJ3g+zrdTJqZ9DakOO+GqnIw7mUYTBTxRDbtLcgIt0gKabRnp bnbgD99fe1mbQCI1z/3tF1r4Q0G4TbsvNBg9B5ru73USbjFgCg56aaRvbWP67hvM 2TDabsBLtBPa+85mgkBL0xHsqpp/rB8IcoBfWv8s4R33/ij96O0+sZWziVKeBs3Q 4SnHuPQ4Jba9UddL3lz9plIDpROsROhblIu+6tzIH9uKlwIyZjoNP2ncjWLJMdxj 3FKu+GF1DzaHuvWw1ZC6rWYP1YaI3HggQNXXGKmcL+Cc/+AOmXbumA== -----END ENCRYPTED PRIVATE KEY-----" set certificate "-----BEGIN CERTIFICATE----- MIIFMTCCBNagAwIBAgIIY6InxLfPEeQwCwYJYIZIAWUDBAMCMIGdMQswCQYDVQQG EwJVUzETMBEGA1UECAwKQ2FsaWZvcm5pYTESMBAGA1UEBwwJU3Vubnl2YWxlMREw DwYDVQQKDAhGb3J0aW5ldDESMBAGA1UECwwJRm9ydGlHYXRlMRkwFwYDVQQDDBBG RzEwMEQzRzE1ODIyNTgyMSMwIQYJKoZIhvcNAQkBFhRzdXBwb3J0QGZvcnRpbmV0 LmNvbTAeFw0xODA1MjExMjU2MzBaFw0yODA1MjExMjU2MzBaMIGdMQswCQYDVQQG EwJVUzETMBEGA1UECAwKQ2FsaWZvcm5pYTESMBAGA1UEBwwJU3Vubnl2YWxlMREw DwYDVQQKDAhGb3J0aW5ldDESMBAGA1UECwwJRm9ydGlHYXRlMRkwFwYDVQQDDBBG RzEwMEQzRzE1ODIyNTgyMSMwIQYJKoZIhvcNAQkBFhRzdXBwb3J0QGZvcnRpbmV0 LmNvbTCCA0cwggI5BgcqhkjOOAQBMIICLAKCAQEAx+4ySum3D16CnDnpBcS8OMfZ Ol6QMxX37XfLNUE9vCmVLZ990B/lp5ZXRBttqsVoD3GiastfLUkbQiG1JO7Cy11I 4JYdGsOMQhNe2oXexZQhEvEFrERm4etK01P04gO5nMkZbKad15L3wji9KLue2u2s Zips2wcFT6qVgg60wxZNkR57buZiSH8wVP/yNueak1FwvNiJtbculF4OqeKcA8XE h4PKnp1lJKavLMRSTZTSW/HhSpHEuOk8bmrghBqXXAcqvVKvAl+vl9ANcB2qAfHD X9KKRSO2UOjcOTGuNkJJKehebqzp0nIhjzgZtImw5LaDuYD+kO0gH9r8YTlNgQIh AMVIpQedVEqsAFF5/t81P5y12ch5/1GXOq1QhkRkiVWhAoIBADjLehP+X0nM4rwQ vVmYB+7DbU98bCO/2YWtx76iOJCK7TnB3LiZ3IpQwYMDFnF111qijs0qN2WNZRGS 7ieFBkmDIGliAG+D7r/SklJACCMT5KgL5NYqSmy8v+iCw02+MzPzanN8V1+E/qrw cemNcEXLtsjTHA3GoPtMJNbUP0IfsQmtqPaxFisq1S5MNAZLc74cRh8f4mGWquwM otfHd3u9LntFpIiyiLJsCyn6Ih4valN8d5k7hGdq+KAwwHMXP8qBjBGJqDkwRk1R Nw1vBK09zm9i5KKksWe9aFZgNC2J2Tuxnq8ULcFz2fZ3YlPp/UKB4fYRhnmiHPo0 UMH2dj8DggEGAAKCAQEAs/2aDBZdC4ou0OtnjYF5XifX+d/CrslbDA8cK7++78/p i8vDeaelEX19RhVU/P/dunioUks199AUFe1fV9y897VOqceNTHq9XTi1SIHu0/ko DHhZ4IGkRQjT40yhr3Ds4kyr465lcyHzhS7rldPsRmncCMaS/yRd/7IHgE9mU60Q XrKaim3z4CNfKX1RuRLfaH+K7cAEIM+NRDMfmXIJxkgsBrxRglC3zhtEXiO2odxI 80y4U1GXFxJod5ZirMzGZkdCOPtwR8K7F7x/TWqYVx8rkSUN7dUU/5wICG5bOkaR 5jwG9zLMlD6064RjhTrKYgux15koqPs08nAkTdk6h6MNMAswCQYDVR0TBAIwADAL BglghkgBZQMEAwIDSAAwRQIhAJnWp33ZklJJ7TcGah/g87s2MQq2CHXqEn8FaRhZ Bl3TAiBkzTdTcgdAq2+iuk9uy1AUC1nbMX0I7jDtWbK9AVhoZg== -----END CERTIFICATE-----" set range global set source factory set last-updated 1526907408 next edit "Fortinet_SSL_ECDSA256" set password ENC 6LK/nOnlGUASbBoM41b6ukxzY/hWjHoEusqlJpNmCh0FXdL635Y5hXLzCRb7uRxxlcjWWeEFXUkJSoxgivT7xcHOC0Ugb2divS5QNFrczchYCHteYGBzXaoTARtTwqGBSFAYdg9QI3l3fAac8vRulikMGhx3DimmWLCbGzPi02Fc/xWdUPWyJW5WO3Bm3WrJS6508A== set comments "This certificate is embedded in the hardware at the factory and is unique to this unit. " set private-key "-----BEGIN ENCRYPTED PRIVATE KEY----- MIHjME4GCSqGSIb3DQEFDTBBMCkGCSqGSIb3DQEFDDAcBAiae6mgi8iAagICCAAw DAYIKoZIhvcNAgkFADAUBggqhkiG9w0DBwQIBqjXbrWr4xgEgZAHBAhJ9KOFtX8V f3zH4zrh4wMKslAGcnvXAlVanNezMGgMRxaM7bHXwfjJZOUEKjrXIlCFXDYgr/GA k9lBq1zpkcdpwWe4juwEu063fpuoSlGuHy2dkzbKhlLNGxK9w/K5PiE6KwGSE8+c YLnFVfZyuJOmFEbnJfT0mKSd8VwM398PRXAo0HOoRtv3kjnuBPk= -----END ENCRYPTED PRIVATE KEY-----" set certificate "-----BEGIN CERTIFICATE----- MIICPzCCAeWgAwIBAgIIf4DW528RyFwwCgYIKoZIzj0EAwIwgZ0xCzAJBgNVBAYT AlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRIwEAYDVQQHDAlTdW5ueXZhbGUxETAP BgNVBAoMCEZvcnRpbmV0MRIwEAYDVQQLDAlGb3J0aUdhdGUxGTAXBgNVBAMMEEZH MTAwRDNHMTU4MjI1ODIxIzAhBgkqhkiG9w0BCQEWFHN1cHBvcnRAZm9ydGluZXQu Y29tMB4XDTE4MDUyMTEyNTYzMFoXDTI4MDUyMTEyNTYzMFowgZ0xCzAJBgNVBAYT AlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRIwEAYDVQQHDAlTdW5ueXZhbGUxETAP BgNVBAoMCEZvcnRpbmV0MRIwEAYDVQQLDAlGb3J0aUdhdGUxGTAXBgNVBAMMEEZH MTAwRDNHMTU4MjI1ODIxIzAhBgkqhkiG9w0BCQEWFHN1cHBvcnRAZm9ydGluZXQu Y29tMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE4ok87prEK3UNTEXAOXy6hyln FiP3r3M3RAUo2GIAQ8XVrf0MRrz9CxLL+NaCi1z+xTJKu/FLNdDW+BajoFl4tqMN MAswCQYDVR0TBAIwADAKBggqhkjOPQQDAgNIADBFAiEArmjf5OFssEnuKTrEuVeb ffq6aG2T4Oj3KcvBdKzWa9ICICZXfDIfuIp3TVQSil9+GDP41rKrEwoO/dUfTKu7 WFzS -----END CERTIFICATE-----" set range global set source factory set last-updated 1526907408 next edit "Fortinet_SSL_ECDSA384" set password ENC 8BH2EmFai0W7OloBaNPW+ySE2MdC68jGcSK8jg+jXI2i9s9To4sQDTz+QWgE6FYZQYCjogVcbqEcT9aJtp8IlwnUAM/uXI76e7WZqei0VnKK+H5gJxpd5yp7N/sZn2GGVHUcMqNytBctVfNn0xbXlAUr2huLymQBKa/EyqfF5Tq+O49k/BGFAmhOxtQuzLHsF/ZIzg== set comments "This certificate is embedded in the hardware at the factory and is unique to this unit. " set private-key "-----BEGIN ENCRYPTED PRIVATE KEY----- MIIBEzBOBgkqhkiG9w0BBQ0wQTApBgkqhkiG9w0BBQwwHAQIXoNbRd1CkMACAggA MAwGCCqGSIb3DQIJBQAwFAYIKoZIhvcNAwcECL5KjIGRgvPdBIHAYb+eMvP01tiN Oh4nXAxCs3YCcOsXDtPjjkuOCdeAGxRoNZ4jrTHmFOhg2QzcZGIHgv4iKLHMs1wB O2ySJSJiwsoqIj+v37XhDw0WCvfARsvN22AsQr/CU2+g6cw46LPJUdAd7YohneP5 ifhIkLLoFC39dqY0Zrcoix9s/RD4CgD9mc4teXKKqliHezKwoVdeu9YeyXep6960 g+Eb54RULdy+g0u5zn6wsj2IoC0ng0J8zmCDwbUue67ArD4cmq4x -----END ENCRYPTED PRIVATE KEY-----" set certificate "-----BEGIN CERTIFICATE----- MIICezCCAgKgAwIBAgIIf30b3qi4nmswCgYIKoZIzj0EAwIwgZ0xCzAJBgNVBAYT AlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRIwEAYDVQQHDAlTdW5ueXZhbGUxETAP BgNVBAoMCEZvcnRpbmV0MRIwEAYDVQQLDAlGb3J0aUdhdGUxGTAXBgNVBAMMEEZH MTAwRDNHMTU4MjI1ODIxIzAhBgkqhkiG9w0BCQEWFHN1cHBvcnRAZm9ydGluZXQu Y29tMB4XDTE4MDUyMTEyNTYzMFoXDTI4MDUyMTEyNTYzMFowgZ0xCzAJBgNVBAYT AlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRIwEAYDVQQHDAlTdW5ueXZhbGUxETAP BgNVBAoMCEZvcnRpbmV0MRIwEAYDVQQLDAlGb3J0aUdhdGUxGTAXBgNVBAMMEEZH MTAwRDNHMTU4MjI1ODIxIzAhBgkqhkiG9w0BCQEWFHN1cHBvcnRAZm9ydGluZXQu Y29tMHYwEAYHKoZIzj0CAQYFK4EEACIDYgAE60nyTgGTZZvK0i2IdHK1SwJYqpQh irhyzRDF7xrY2Wg97dVuFLCvOes5JCyWMsD5kFO/nhTd2NFu6U6Uqwb76z46cRDu fynO4R0MtLcFJw1hfgZ+vblYlYwKvvZp2WkEow0wCzAJBgNVHRMEAjAAMAoGCCqG SM49BAMCA2cAMGQCMAVQ4yWIw3pi2nk3mSsTQ97bCDY7F6Ja+hy6+87pJmdGn5Ec WGnsuSqe/s9/z8ApEAIwL7kvHHT6Y1Wd3MeP2VYN27PxMn20qx8/plrhOD4Lr1ZA 586HuRsMufwUUwIFhURv -----END CERTIFICATE-----" set range global set source factory set last-updated 1526907408 next edit "Fortinet_CA_SSLProxy" set password ENC dJDhtIQYF8ppMOkMmGqyOYu1Hn1aOudW4Y49GfK9XgWSV0Nhhn3yLGq7laF33y9hDqq+KQpAcubB4wk/udURJDmQJDnzheh/YsxlstqjXVyZtT23ZW7NsAoI7YmXJlvrHz/kAn6Pg8Gs50pi7fbqsepbQqUSG+eM7phltTB7sBfcGbWnCVVLx5FXEHYScnVczrOhcg== set comments "This is the default CA certificate the SSL Inspection will use when generating new server certificates." set private-key "-----BEGIN ENCRYPTED PRIVATE KEY----- MIIFHDBOBgkqhkiG9w0BBQ0wQTApBgkqhkiG9w0BBQwwHAQIXpdsmLTqahsCAggA MAwGCCqGSIb3DQIJBQAwFAYIKoZIhvcNAwcECJUb0SxQGor2BIIEyFlzV9CJJ+NU vYt6iSQXfLBX+stP7lTgZOHdWvHbCK47j3E018SFS0XrlJVRXCq+naSqPZUzgrJ9 uVkAb5KXXZSwSLRC30RafMNfi9w9YZgsRwpKP3Ob6JOlOcxmhDorslXuooCLXLam FF5kkBzfydUoQZYYZqlmmKzGyZtEwFpKodEi6jP0c2Jod1xKaKGkTTi9jDRqDQC2 X7FCkQjSuo6NSjzI3HfGfJLqtB5z+JXGZILou1OMkeNM0Nq5jwg5Rw3YaiEJaY+O XCGhu3p+WUEqRIgTrAPeozIrX56I5hPSerZIBN+BVkSCBag4QAFtE35Pqya5XmHp GyVsQZ+YMSgvPV/SmL0vPplbYmDyjx3J7ZrXzMVqYADalVjG/TcLnm86wVG2hqnI R0VxLptsJi5oNxcUTkCR0ZWP77yXN6p5nGiL+Z3rZ4QP4hBJ4DC7Dwlq8j6mWbng utjrMrwgEhorFiMRUIRyMZriVUqJ8Gpu8ftHMYbn6yvjwLN/nLQXqZdeQGIgroXb 6R8tHXWzaEainA2I8ys+csuor72L2ZNtJKIQGDhTXFcxJuT3ePj9oKcVeowiY1As bIccMJUJMdPy6fMnbb4+fnQ2CbfDpBDEs1Cpvt0kS5CRItygGloL96+F8mAtJy7T r6oHS+R8Dk1s/iUbMMTVI5W+fdNyawgDrUMMCuunr5F5m1N5J6mPS5yM5PayoDWa Xr61uE02l6m6LyTGr0EN5diiUk3LJmgCxyyPS9GIxSNzJladjUwC4iFZno/t0kHS woga4lGCtev4WhbnQxulSnWATNFGjOb1p2AIxdDRBjSItuo98fpCAlhARAJeYqQq /tJS8he7NS7YtICNCJlz2xV+j2E3aHzFmiazBm5Y9od/Gwsk2reJLeOaHBQAD9so kt/+DiaVCZ2PXKRg90fPZt27eermQUo3V0zyT9QwCwe7TEKdmyOmEIAoXyHwSqV1 hbhbPqqfxfRvtWNs4c2STmrStgXi3/UFzp0rnWYZ90Ej+f2yl2+nK+7DGrrLbMM1 4c94OUXsZSaAatLYr/sUsgqOVfoiZkeExHI3QZi6t7pBeECs4qjSAqVcX4iBWrfB FY6QA6X0BIjysYGULy93qiBKp9+FfPsJABWVZnnqC9nW46EGGIskD8XmwpGQVQ9T ExgJiK8gQRbdGLt7V3kmjrtAWropO0yEC/zGTDQUqqPg8gPGV78NakmuNROGLvVv /wM398/Qi1ZmvnJ5u825AMHRusBaz4yQd8WqAb5rkHX3PMwM7lspAGxDC7iHbxlZ JIhl1DrTo2meAoGzL3A6icRmHZNIdP0bM2msEAdhoDn9FPAnx26zP5Uc/VPOEVzk 4lJNTBnIvKc3LBjFBj/PA1K7QbGXUjK4y1xarrOmIwJloc4Jx+9dEPHcz15RGdos fysbFsqq9xCVK58bUNqiXM3rzRI4h3MopZ4eVZ29sMy14ATO9CeXWQjRaWyueVHz LiNeulI7/f7W22bpKtS3hFmneAGP+03v87dHU2oWmcSwdfnQrlp37p+5ONR+1V7b EBHTK2nCSsGeOX753XmqWSqW5vG5hykObteeDntBqqfHmF+N3OFkEr7KY5XCOjGe 20926m4zP+nd7JkH6seHWQ== -----END ENCRYPTED PRIVATE KEY-----" set certificate "-----BEGIN CERTIFICATE----- MIID3jCCAsagAwIBAgIIcXW8QKdSlqcwDQYJKoZIhvcNAQEFBQAwgaUxCzAJBgNV BAYTAlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRIwEAYDVQQHDAlTdW5ueXZhbGUx ETAPBgNVBAoMCEZvcnRpbmV0MR4wHAYDVQQLDBVDZXJ0aWZpY2F0ZSBBdXRob3Jp dHkxFTATBgNVBAMMDEZvcnRpR2F0ZSBDQTEjMCEGCSqGSIb3DQEJARYUc3VwcG9y dEBmb3J0aW5ldC5jb20wHhcNMTUxMTI3MDEwOTMzWhcNMjUxMTI3MDEwOTMzWjCB pTELMAkGA1UEBhMCVVMxEzARBgNVBAgMCkNhbGlmb3JuaWExEjAQBgNVBAcMCVN1 bm55dmFsZTERMA8GA1UECgwIRm9ydGluZXQxHjAcBgNVBAsMFUNlcnRpZmljYXRl IEF1dGhvcml0eTEVMBMGA1UEAwwMRm9ydGlHYXRlIENBMSMwIQYJKoZIhvcNAQkB FhRzdXBwb3J0QGZvcnRpbmV0LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAJ1op5PQOk1qL6rgqx9HI2bmu/5zzcjjcYYoCMMJZ3kwggXP01Cx92CH XmtAPbiCO+xqtnjDXgspVr3rUxDaqVrXQtvpXGYiz59d0vJXR1eRVskHAdZ1mYnV 9s3+1CwIpjlZvAfbHOM5fFR651rnrBRzANXyzGsW5JFSoIHfVkwj9N7qJ/kbu9Gn pefQeWqi5CqK4VOww0EzGxkr4xJC8qaBf8QYTQbbi8CStvjnHvzr0vav/EBqP+0V TPB7Q5KnQifg/dILdQNMe3Csrkz7AnjdRfj1Qb6fGbi2PvbddXWe5qk+CMRSSebf pHFLKvtV4dw94lisKgnq096G7Cr6hrMCAwEAAaMQMA4wDAYDVR0TBAUwAwEB/zAN BgkqhkiG9w0BAQUFAAOCAQEALa45bM8M0xDx2gd5V5mzf1E4DtpScUE+cGsbOciD qqgXIUmX4N2xKshf2stHwUfmKIFwfq5EhyXesllvIqivfGWMY8PI7DaD6W2sGjqy /LdW9zYBfJWNEDZgGZ94aZktuC94knx6Ns1iW66EnnUvfUzyyvNH85nbz8QoWt2v QAxF3J+fmRr0wLx3qnYL9DwvziNfjwLu5AksCScT+JUer7aoaU37FTKg3wi9+iQ2 41GLYY/Y5qwqaRcZNcWzAoGHA8wFRm69yLPhaFIAMCS+aHFVYK4iP4VozzCKbsYa Ef+xIQ02tT6Qmcby4t4gwZNk3oiHqfzwJ5gxuzAE8WVhSw== -----END CERTIFICATE-----" set range global set last-updated 1526907420 next edit "Fortinet_SSLProxy" set password ENC ZSBwaZ5haI9S0seeOKKtxuxz1wWDX2FtSozh6yZrTP1hKvZKSQb8DXA3hFUeT7uKq4LMIJt+21FjXP1WLRmbNqbek62QlvaKYi4VmnFk6Sk7+FOvsEy5biaklc7k3YHt21kS/AZWOOfIjGGlc8dRYKSy3FnG9yA+eOG6sxUNPHty25yJ8dEpX9c0aVz/8CDAddcn6A== set private-key "-----BEGIN ENCRYPTED PRIVATE KEY----- MIIFHDBOBgkqhkiG9w0BBQ0wQTApBgkqhkiG9w0BBQwwHAQIC+RpHvzK6vECAggA MAwGCCqGSIb3DQIJBQAwFAYIKoZIhvcNAwcECHdCDTBgG0KUBIIEyLLAqoV9BnOu X9ckqPn4T3tA6vI0nMBz43y7ygHqX+RTJaQDbDf6gK4jcVZlJJneTCK+603f57y6 eENh7JasYTq66e8m/eQ696kXIKYUJWsDY4jGH7r328dYtzTE7uljzRxP8mzxyY3S NVABZfhph2VU14hqnc00MDcy/ny5/xhvdfKb7A+mBFPVrghdAMSjAAITGj0z2Lug Zo1fQMKShJZZASVDNTTQQtvVCS4P9hLY8jdFVpX9UUgaxisvV32PcYcklG0cjhge j86l9Kt3DlBSXDS3eH+wFV9jSJFBOogB7UTi+3pw7SSLHKpjLkY94EQpscadD8aX knMJhP3jOz15FWYhldaZMdPLjfifeD2v4QQFCYE1pHYpfen+LmY4IGfV7qUK8MZy VpkCdPmN/7oLVU7w1o9PJ0fhSe3MmyRhPT/us2kZrk4cfulp2fAe95jCs0E7mPhw Jxo3gum01cdJ+WyuLHjb7WgQkdUjcfNVrikYLhwfi1cGd9c+XOHTtAfndrpmhXUm WVpcd5iAAgJ95rtirnjdlLjcaqA0tb4P7yJjbz4WuaHUq1zlQJx2ef4B/MJK9O4g aTbk6osIa2vlY2rMO4hjO1ybj6obGeay8PpXSBfuSUmRbrT+C03X5sYU0cKhicdT gbLV3wc6Sx6rLBoztXgl5a5di43kkDgQb5HqIkt4x7xMIiogyVcMCMoOceFdxQWO axBWvnw/zGfP4A2MqWM+pE76bJPFzrQe5x4cVuGXktIlcXFJ7TYv4Y16TludM+fL QACXiZGw070jV1d9FCnkXf2MjO/WS53Adqo8ij6HvijDf/ttgYi6y384zomVZqDB HKBlxsVimXg6vcXwBDdmB8+ij0dAB28oPCRu5IuLKnsX/mWRF8YWUGti1QVsqmue beA29R/+GeFEpjTeqxX0IvaY4Pv3nYT3RKu9NqhNk7KcdABOwhst6xRUt628Jgim TdrkfpJTvV4Y1tvhgbXcVzfcqeVTXv/B7XedELjP5ONdCrAg7u04zT1/BMzyDT7I aAA62C8CH5YxHXZ5PCoO/RG4CI1ppXJUpK0yfv4RtZm03O8Kypk9KHA5TiibGb6z O0aa7+jgAWiMqgf03iUVyjELS7ih1MIqUk3+UEhLPdRrTM3Sztdf6Ppp+kSfNHiG PnwbGNf2zVsQCHTqbEqaaYjkwfNvbDyWMRMWWWKhry04QVr6V9Q4zhCNsCTTIfwy tyKIU+iEH8o97gLINyaxtdQTgJM34P5FiEOCSSb258DWns5RwgAgLNB0eZUd/g+U hd+5A+Yx0qzrfMVhpQgssAIf2hwa29Bwf6eUQSsVTcPKG9HiSDTjhhQQYdhMhysg xZiujhdX8W4wHR5Fwe2V17jo6pCo2NhHj1vbiZEubhaTRuMjJVio75reIncYeKrA Ay56PhhhnKqy1t8DvPapAFw2EnVViZeAqQnFULq3SVXGv3MTfvz+WBVIzwkJTf2R n4TORNY4bYvLNXCAqhG+KwOoyb8C9rsWG7Zl6dmnD6UWLeVrjPbXZKZbTUyAxN6c 63fym7jN2ZIPERnAa59CsIeSGTAGmpCaMscpAFHyi1XPgBgzHqqKK590joqJOEJ+ HgJ/N3zGhCFkAWqbAZrctw== -----END ENCRYPTED PRIVATE KEY-----" set certificate "-----BEGIN CERTIFICATE----- MIIDyzCCArOgAwIBAgIIbH8o4v6GOZowDQYJKoZIhvcNAQEFBQAwgZ0xCzAJBgNV BAYTAlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRIwEAYDVQQHDAlTdW5ueXZhbGUx ETAPBgNVBAoMCEZvcnRpbmV0MRIwEAYDVQQLDAlGb3J0aUdhdGUxGTAXBgNVBAMM EEZvcnRpR2F0ZSBTZXJ2ZXIxIzAhBgkqhkiG9w0BCQEWFHN1cHBvcnRAZm9ydGlu ZXQuY29tMB4XDTE1MTEyNzAxMDkzNVoXDTI1MTEyNzAxMDkzNVowgZ0xCzAJBgNV BAYTAlVTMRMwEQYDVQQIDApDYWxpZm9ybmlhMRIwEAYDVQQHDAlTdW5ueXZhbGUx ETAPBgNVBAoMCEZvcnRpbmV0MRIwEAYDVQQLDAlGb3J0aUdhdGUxGTAXBgNVBAMM EEZvcnRpR2F0ZSBTZXJ2ZXIxIzAhBgkqhkiG9w0BCQEWFHN1cHBvcnRAZm9ydGlu ZXQuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJYINVNAts+i 0ax4rwmsvsqqF9okyA6aRcKyG+meJ4WzrI6AgBz81CtEn4zXzbLYlT+IJsmKSAbX eZv+Jg5oaq9oWo6UsA6rdfA4UINCb9pZ4fNp4rKNPKdZqNuLI9ztHC13Ddiv5FLs RHSPzIwTnXAe4UOC7PQZls0QfCfcfou8ivreL3kz7/kxr7QAHXneij8j2OFd1Duo nFVJD6Cjful2U+sY+9ppdOhFey9/soYFs32FYJW2O3VjL2BhL7qp74NTrwc2oxAW WKEwgNsX4Y7Dq7rSaqX7aqmUNaDpnBYCclGegzoqy4mDU8vPXaJWGTsZCV1IVCNs P7avzTrrLwIDAQABow0wCzAJBgNVHRMEAjAAMA0GCSqGSIb3DQEBBQUAA4IBAQB7 NIxOhzIc9Dcbu7AqMTsVpUZUG+cQyfUQgRp94oQ1U2Sd0NsLvoIGH2nBMDCl00bl Uy1Ev1pZYZ7KOpPAOdUTj0KDr/xsOgo5h8MQQv4YMS31dGL/3dPycGYx40LOzSyH iEmFnS1GaNWOceVZ3eSmFyms7RGwWGOvbYNbrfXW2LHyOjydVtQ3iQqW57IgsgdJ zC+hAteO1Q6sx8eBGViBMzsTpArMyguV8Uic0F4i8ccs0ZMYSos4H4vj/HyBEU7m L5mU829tjiKalI682XT7NqNfgG3+MuMht5qrCi4GfdEnvePW+xvysFFg2p7gGB/J mPMyqgiZ1t7XK7fQf/Jc -----END CERTIFICATE-----" set range global set last-updated 1526907420 next end config user fortitoken edit "FTKMOB63856E2EB4" set license "FTMTRIAL00942915" next edit "FTKMOB63980F1C9B" set license "FTMTRIAL00942915" next end config user local edit "guest" set status disable set type password set passwd ENC iuZ9YGIMSu/ODGb0H9DQrF65jOZp0PVtwF/Khe1+kvMtEFQ4ItU5hi1fKL38gcRBBisdOL/s2n/6xzjQUiQZCjekFGKjGnrBtzujSof0xe7HXoiLucrf3uxuG+LR27nWdvO2kPD4h4nXSeEdUSbXbWEmThf/Hzbw63SujBidozgHbPVyJ0MYQoPCHr++8IcdMtCVJA== next edit "kspencer" set type password set email-to "ks@sacosmacen.com.ni" set passwd-time 2020-01-14 17:37:19 set passwd ENC VppCK1DoywMOpLYgg59oRPLvppEA+hN0av/YwRJ+KDbHtavHYv/KHD2Up5wgy8ZhBcq/PyhPATZSqDE8N2yxKdPmPW1UgJNhOD8UBYRB/XHceDlarNvCNwCCQV2gm+sHSLBXkRSNsV5T+JVppj9HGsh5T/235tcVo/u+kkzqXpP8Ten/AJBkCYesL8j7/6hQepfhcA== next edit "arubio" set type password set email-to "gerencia@sacosmacen.com.ni" set passwd-time 2021-07-06 09:44:56 set passwd ENC 1Vhns7p8dVk38XntzpId/YbMHVTOQFZW1OUacLMjGRhRUaWz0UT386/kyCVc5kSPfVx0PQxnFexJANEc3L75aQeNtl5HkpCBjaIhkoBQ2a4P0lIjD2/rpeB6F+Z3aY1JxYcEQeKHZ7UZIC2JbB0mkBzTiUWxIix3NXTjFmHNOqOO42f9RyVPSMhXipKQOOI013LEww== next edit "jchang" set type password set email-to "jchang@polyproductos.com.gt" set passwd-time 2016-08-03 20:02:30 set passwd ENC JbBXoLgCNuWqjaftnmmI3Tm9+3N/jiDjdth7aWG9j/91MJX1AdtzqVmdXEeoqDcHfIOLZ9r5O5BkAwxM1lPk8neFikd5XlgQjsP1bY9mEbWg/2NAytlwvSmTZ8lBAO76wlE5oWmY3g4FWI+oxKW8OFUEO0sL1TNpElUHhEwME9rOgGF7Cwf78N8FVisJRyPwVuuQsA== next edit "informatica" set type password set email-to "informatica@sacosmacen.com.ni" set passwd-time 2018-03-12 11:05:22 set passwd ENC 3i3NenY2Z8sjKuvaMAzvu91d37JpsrfzIWqhjaEufewNV2LHD0pMaJUEqr3oQObI1E17Ni6AuO1z+HaBy7J723SUTMkbm2xZLJNJWQYBQJQpHn1dONXRIie/oiESVAaWs6v3gQ4ni1IFIZxOXHmrd1qhOLsrU/6uVfArFnsaN2fhNjDrRoFvc9IxLvvql05HOvBtzA== next edit "arrecinos" set type password set passwd-time 2018-08-15 16:39:18 set passwd ENC a+7nVO/RU3yw2GgfdeKLxl1k+vK8cqcROoxnFsEnWeROLkUnKKsgI/075QxlruxArI4AI1hy7hLhfYYd9AR3zo8Q7LuHxkSspBefrn7IYPMtiDLm9dN1Mkw2oBsb7xd0cETpLujxg9mAwruCvXgpSUD1cNW4AQmoM6uvOPBq1SxQreQpt2igZIqyyGO3wZEe3aoUsQ== next edit "hmonje" set type password set passwd-time 2023-01-24 15:46:45 set passwd ENC R4PO3lEoDqmE3qWaFc8OB2wXfi6i+jk7pDtZmiQGrZ0gvRHySUXgZ/sKxDGG9M81wYo44y1hKsra1R0bpaZyLCfs1IUlo34RdvD7k04pOIC6f95pQqYxFXg9FvY0IEkLG6Z7rpTcQOSbO5E0A5JX9fwzRczl+Kx8JrKiOZVIUOjT1ywwBx8/piLtntY/DSdcBIvK0Q== next edit "vchacon" set type password set passwd-time 2022-10-13 09:09:58 set passwd ENC y5yGA9Fwz49GpqBKs0VmPQ+pVzQf0zX72lEdpoUQIfBf4FaZsa0W87L7NPLyQNkiZ1P7ZrFMIjS6+2PgtSqc27e5f4VzCfxPnJ1lrRoRq9Zy3l/19NsmZuvDl/sOAzyQYkIENBbppGyJ8E05poDj91luf8gwSgFY3UBjBNLQ3v0cDFvIxdxBdNRGEmJ30acEy077JA== next edit "Nlopez" set type password set passwd-time 2018-08-28 15:20:19 set passwd ENC vw+lYgOFBuBpZs01TuIj8i39+ZS96uKj+43vRF6NGhUAbKizgN/qYGdZCBrAI657V+pLXC5IDjX0UjvS0qCU/cjvmUA1sIwQr2QPWVz8654nnJ0sY+tSQ7IQA1k6MS5rd8uxfUzzPNmu6hKPaTCgLomYSWYSh/F8IFPDpKfrSfK2xoqEE1cKDcZMM0FlTUIjvo2QGQ== next edit "jconde" set type password set passwd-time 2022-10-05 11:34:16 set passwd ENC WnMfOivaTUmCYaguBMKGoZgXW07XjuxP4hNv4fkP9VGIEeGTCp/nQqxVBQzAoObZHCaOv1bnzIKbR+P2xe+6dur32VmPOIK/kx4HyaeqlIK6Wfu58uQBEaxVqtDvKuxHLMJq5rOpeyvrVlgQawx05b3F/N3lrhvR8y2O4sbsJ+6qYyC0GHo/dZ3LtSxo6pn3Fr4HWQ== next edit "hcalderon" set type password set passwd-time 2022-10-05 11:22:29 set passwd ENC fuzb2af8aw9LBb1woUOnaHcyh2J3anRFc8dnNtfZ8miYpncUeT+IU72iHo7eVwOVIuukCB+Oyih61qHTjFWhLBp3LGU0vvk6fpcY3+trRzrbb+102naqxGf2oRhHF/GdEVa3Ab8eSBo3/0yN8m/3g/cK+4uiqXNsN845/s5GwVKqSZ8Mw+9MQmEn4JP0qVCBRVZMyg== next edit "tlopez" set type password set passwd-time 2022-03-03 15:18:37 set passwd ENC VdLMmvPH/2a23KWTDhFsoerBsGBuzAlscQFxG/rJhp3/fyC880KZPtLz3FIdBodQNDh/+C2Pf+cWCPgHJPwDy8wzE1KbYnESRntonX25rWh26hDcRwdaUAF6zv+Ulot3VOn47HhErJzLNdlvmTS5mLwjY3SXp6CEmr8agyS4welpVL9Iv6aOVo/TzZhEDvfaTcieZQ== next edit "malo2" set status disable set type password set passwd-time 2022-10-05 11:18:44 set passwd ENC Y0MvxzBsxs7O+EmBZFHri+xmIy/2uQb8a4cElKo50IIbH3FJDP7s90o8K7GDpnbSMF+sHwxeKCVt/VUPR8l3M0RYy9FWsBZO6C2gaWZK7E0J5u1HEIlVQ5LohZx8+melBPZFzNCeaDwGbKbVZDOOV8zAtSoEUN7CCUFzRgeE4nOFDgb4iMXNO9JcoMnSTVQBJjTXdg== next edit "lspencer" set type password set passwd-time 2022-10-05 13:01:27 set passwd ENC O5fJKE+kGSf82MzD+pxv3X1390TaHLYeeQbkCzyOZIARv8hcj5lXAu/iblCjpxxA+T3PQe3tStuh5V4dEdfVUfhCMJHR/f2RL/MwL6dkVGtVcT1MB4injdtH1PvdwSE6AaEuEo2K1m0WAGx7/zpcZDbtcN1Iw3C1c9NNY7RON7WebzspjWXDzcu1TiQffc12nlV4ew== next edit "aramirez" set status disable set type password set passwd-time 2020-04-16 15:46:39 set passwd ENC RF0P4J0C1AOPMUhLlaBn3kKK+euI7YomsPSnQseyXglcnnlXc6ao3Dp8K8AiubwWKLhovJ5mGUmABQZCTOKHqll2NjJEUq+MzwUUOhk6hvNt1Mp/4ZUnxOd9vlOcgv6YY1Wr4NMaxtatTzIk+EwY+S+B3k6crsFjXfLU0CjliLqIVsITIcAxQPlzrX80elC9phBJbw== next edit "smfinanzas" set type password set passwd-time 2020-04-20 10:28:54 set passwd ENC B4XAn3PGRWOBPwFcLQZojU3ys/sx/fY3a7cwOQ4XMk4my0OXurktX1uHFitWXX/G6Btz5hOWkPCWI514PkbtgTjClvLM2BBUbKq39fyj52xwzsnTxPFdt284FXllYulkhIv9uQVCmlHZ8T6cttbDEU1FjDJNYI/rl/IPnTbo0yDOX+6XRZ4/n5fUzeaJSw7/Dfe0KQ== next edit "imendieta" set type password set passwd-time 2022-03-14 12:03:35 set passwd ENC R7rKMn4/rBK7HwnAoUZmryqgRTPG1uxSsOU2XLrHMTZQxLV7KefNINawBPDw8y3ZQ3UFOFPsy1+b9Wh7ygWQWG+Sj6e/04U9rzRX0vOMLRNT4Gas0CJverP8uTR0N/AWs7vaJjAeXBFp0RmTRJcpDm5JsHwJT70HVr893/tfRYRRm6DhOwRRZ4TrBFX150viPfc0jA== next edit "aaltamirano" set type password set passwd-time 2020-05-14 11:01:52 set passwd ENC poU4s5wvEW+06SEe92aQ7MMsEMOZl3jeJOFU3UpeHQvuhbHbqUqLExBSe8O5cIcSjOvBAHZ5vNIQYaaX1QFkkcp45UENGwjr2NtWCghafazp4n+K7ygX5yQNdkfUoikKStGRwoUeZYX0WNa/FWbDHNblzUEGRDf4J17ednegmZVuwd6xCepIKHXMDyiaXuEwf1vIHg== next edit "earroliga" set type password set passwd-time 2020-05-14 11:17:07 set passwd ENC 1FD1wAslPzyenPJxGE+yEIejjJcU/41rOZdy2KB1mZ5fCKJJjoWqJ/VgFkrAQCzt3fy+AAJUhJzMhXaW0DrO4R2miIaYzAOrkDEGcsKX57MfF9vEQt4hBo7dHDDQDCL2ywPOL4Y/pYfMnvapPOUBUkV6BDpRVseCtupju8Q2Vnug1Ho/XGMuKC4R9Sx+G2QBuN1HMw== next edit "gcontreras" set status disable set type password set passwd-time 2020-05-14 12:58:54 set passwd ENC 4SwrifR2OeUEI1gcM8leqA7+QkWYTFIv/fyP1LGGuYPACP+mB/rvRlAXthphToPmMy+e1/J1vKizTCNgnaWReeUE1xUs916O8jcPzJkBPMaeOZcwrH5LgSVGrXiTMkEPQPvZFQrfKeENfobyEsumY1bqskDfm4yrozV/lKF8CTfUKMjxjvG/QusEMzDZnBXnAzLAKw== next edit "gtorres" set type password set passwd-time 2020-05-14 14:40:31 set passwd ENC X4jJzYtX+AfaF3ZdHjxvz5oUMqzV3angGGe7E/zetcOGH41UODOc2dYlZE8PZbkWBidjFiQt1yzhq7s7cDVTipIiaROr4e8pXgKL/Fvm8QoNB1oXaqBEwZBmGasxTZMFKNh/K2+eDreXrC4rlYsZKTW7NDJzKc73lFIVW8sCBqE885ArBkzMD0WWFzkHisxpAUbPWQ== next edit "mgarcia" set type password set passwd-time 2022-04-07 16:56:07 set passwd ENC 1TcTl18dqqQds0R0bLRmpEqLRiE6HusK25HaoUt9xw3sKWCpq8WZjsEmsD1DtI1IRaNbBsaaQMznRyzey6eDYRfgI4Risj7W2i+johh3xyjFRtXeZZYxK/PQL03I+BT/I8jVP7MAc2IgDPzPo7PuMOaXtY+/8NnpKJ3K1QomUdWH71wbAte4lvmJm+bwAz5izIZy2w== next edit "tc26esteli2" set type password set passwd-time 2022-10-05 13:04:10 set passwd ENC HuTOOHCvCp5umOwkbBWbVjg+i/8SVc8XY+MXURPTNQwwPV1xBt+pbzbPnxZIP9X7zFHqzasfJw2YfjnUreYDHB10/B6aNJN+hciN1SHbeeLresUJGF0WtVenQDhWGB0KP+CjD1Lg4bCBkPKXIW+myyPiKNPJ1TVy9n3s6HS5lXZD0vLdc3H4s7ueI7W6AEV994uAQQ== next edit "lcerda" set type password set passwd-time 2022-08-22 16:09:38 set passwd ENC 38sDBubxXXR/kpNGcEMwX8WpaX1f4GN64JRTaHyOtcxVzon8/b5Ps7ys4FzxTZdHEpuPbil2rrGJukmUDYt0kgZ6qUlQOWPypTaBCwdqot+mUtCKyuIEtA2h9Giv4TImiEgPOpsof9Rxvb0aSoaWWb9OWKUUR5tHmLFFt9NAnoGXCBf+wZ7fW2Klv3gP9ENYEUYWDQ== next edit "rvargas" set type password set passwd-time 2022-03-18 16:49:27 set passwd ENC W3dCmPAuLzmwBF+JQgyIa1MNpyPanz4kV5vyQimiblkmzJt4a+f8fWhtLhW0A2ar3DAVlvvyJODYKt7fhckNACGs/zzN8ecaRphVawKtIMwpVAbmY5lPRdiqznXMjogqBQSB/i1k/PX17Lq97DoYOYLjFn6Oe4ghHgqLIhJZaqddqMK1i2lmD5yoGXYgTPAwqEp+cw== next edit "slopez" set type password set passwd-time 2020-05-14 16:15:01 set passwd ENC dl99QjUhXsFfOn4yBBWBWzmMoXn4QxkRy8MDdhaRS4qCBmkdMMFvOT6w41u3RbbVZ4mV5USh4GPvACfGtg+YzQEJTMvzxMimqbZvpd8yLF0EgS6/eYeHUXBFwMWPvRfxWgsDelwJtKGQHiTQtV5LXc4RpFp3iS9YaN1/6SfoPPvhNj8ANOVC2WW5msn6NPc55RhQ/w== next edit "jescalante" set type password set passwd-time 2020-05-14 16:32:34 set passwd ENC XuiNmOJZuXh8yZcc0FLsqNVfUmr0IYKx8d1+d4fFUyRFDMOXvyaKLbcHY2Za010UhSsQQkpAf8fhW0cth6v8v7erNw1xR7YTtq5tQit0nwWtpyKi75V3w7NI4iW9P1S0x+PPDfN38Ob0dCsTynMytWpqxJ+LkXpmvHnc09c0pK4HiAimFqHC22g7jhLUREflY8qomQ== next edit "jaraya" set type password set passwd-time 2020-07-31 15:19:26 set passwd ENC JMKtq5C6ANIOI7PPFo9rYzpTyOBg6pu1IWw4DC36Xt7hNUdBm8C7G6n9rqsHWrbMseNNoaNKftMgYMfC1Rfh7Cct0EqYdGc8oZY1gPGPvQdQ63zx/+s2ZiF4rKBet/7roWDqLcj8iennvqcNjpNkUwzYzN2xMLF35Ym8ZpR24vAjZRPsFOa8bqjrgtzntGb93YVghg== next edit "malo" set status disable set type password set passwd-time 2022-10-05 12:58:51 set passwd ENC ZiVt3oqTPXg4caSzFgjxKhDDkkNtSf+4pW1ZUhOcKEs+i0O+TkA4CXE33gmrffX419GFb7hHaIVgudWlMPhoL0NgIRqTde2c5m3runZVwDi3q4papoFAS9joqC7SfmRjPPm34g/2swvZLTu9FszwDI3PMZ2LSqBFoi7nQcffCrHut9Pu1TykAAD3V7CwzKhNrpANUw== next edit "malo3" set status disable set type password set passwd-time 2022-10-05 11:16:56 set passwd ENC ebJY0BSvEyRSaxL8pNflPhbtZogFm7kgabIR4nJ1itFiVlAPtTR6bja9dCsvonrhiNy0TXbGmjBKzz/Eurvo84OKmPa//tEeJ5tB49kIPcCmDJs1l/WBMWu+vwfxaMUdDx5FCbui2sh9gMCYagfbKlHljsVzfMKwO/Gs9jDG6uHHToRow95jNsk+nHKQ7zKiAqyE+Q== next edit "malo4" set type password set passwd-time 2022-10-05 11:39:08 set passwd ENC UfHxqAdjnYGpIlj6Yi2e6cWW3b0mBIHb9de4WO0kR/cyFNptWopuSB1R0u50fifQo+BCQMsZpLLfKHVcA/03VujReEVCYzgAg5M0kDxulRWbg0Cw1MSFQQK3AC4ggCzMeeMzdpV06yiSpZE8EgDcZhmV4m+gjxzE+uxyNFhL66s5EW1MCRdkbD6Bd8UVpvhdbxnKiA== next end config user setting set auth-cert "Fortinet_Factory" end config user group edit "SSO_Guest_Users" next edit "Guest-group" set member "guest" "arrecinos" "vchacon" "Nlopez" "hcalderon" "tlopez" "arubio" "malo2" "jaraya" next edit "Forticlient-Group" set member "kspencer" "arubio" "jchang" "informatica" "arrecinos" "vchacon" "jconde" "hcalderon" "tlopez" "malo2" "lspencer" "aramirez" "smfinanzas" "imendieta" "aaltamirano" "earroliga" "gcontreras" "gtorres" "mgarcia" "tc26esteli2" "lcerda" "rvargas" "slopez" "jescalante" "jaraya" "malo" "malo3" "malo4" "hmonje" next edit "VPNGroup" next end config user device edit "SUBGERENTE-INFORMATICA" set mac 78:0c:b8:82:46:c3 set type windows-pc set category windows-device next edit "SERVER-GNSIF" set mac 00:13:21:19:ae:e7 set type windows-pc set category windows-device next edit "SERVIDOR-DATAMACEN" set mac 00:50:56:84:5f:f3 set type windows-pc set category windows-device next edit "SERVER2-GNSIF" set mac 00:50:56:84:56:52 set type windows-pc set category windows-device next edit "SERVER-SACNIC" set mac 00:0c:29:11:dd:c9 set type windows-pc set category windows-device next edit "SEVER-DOMAIN-CONTROLLER" set mac 00:50:56:84:1a:f5 set type windows-pc set category windows-device next edit "SUPERVISOR-NOCHE" set mac 00:13:8f:8b:18:98 set type windows-pc set category windows-device next edit "GERENTE-GENERAL" set mac f8:2f:a8:dc:eb:71 set type windows-pc set category windows-device next edit "SUBGERENTE-CADENA-SUMINISTRO" set mac 84:8f:69:b9:83:db set type windows-pc set category windows-device next edit "GERENTE-RRHH" set mac ac:b5:7d:06:36:45 set type windows-pc set category windows-device next edit "GERENTE-VENTAS" set mac 4c:80:93:2b:36:8a set type windows-pc set category windows-device next edit "SUBGERENTE-CADENA-SUMINISTRO-IPHONE" set mac 94:e9:6a:ac:d5:a8 set type iphone set category ios-device next edit "GERENTE-GENERAL-IPHONE" set mac 90:8d:6c:bf:c8:d1 set type iphone set category ios-device next edit "GERENTE-VENTAS-IPHONE" set mac 84:8e:0c:31:9c:47 set type iphone set category ios-device next edit "AXCONT01" set mac 00:25:22:c7:05:0b set type windows-pc set category windows-device next edit "SM-PLNPRD" set mac 74:29:af:57:73:05 set comment "PLANIFICACION" set type windows-pc set category windows-device next edit "KS-IPAD" set mac 90:8d:6c:58:86:2d set type ipad set category ios-device next edit "SUBGERENTE-MANTENIMIENTO" set mac 10:d3:8a:63:22:28 set type android-tablet set category android-device next edit "ROUTHER-PLANTA" set mac c8:3a:35:21:b0:c8 set type windows-pc set category windows-device next edit "CONTADOR_COSTOS" set mac bc:5f:f4:3d:09:c8 set type windows-pc set category windows-device next edit "ROUTHER_PRESIDENCIA" set mac c8:3a:35:21:be:c0 set type android-tablet set category android-device next edit "GERENTE-FINANZAS-PERSONAL" set mac 48:d7:05:b3:57:37 set type mac next edit "CONTADOR_GENERAL" set mac 1c:39:47:2f:26:0e set type windows-pc set category windows-device next edit "ROUTHER-DIRECCION-SUPERIOR" set mac c8:3a:35:21:b0:d8 set type windows-pc set category windows-device next edit "MULTIFUNCIONAL-KS" set mac b0:5a:da:89:8c:47 set type printer next edit "KS-PROVISIONAL" set mac 1c:39:47:2f:28:06 set type windows-pc set category windows-device next edit "CONTADOR_GENERAL_CELL" set mac f4:9f:f3:0d:ee:e1 set comment "CARLOS MEMBRENO" set avatar "data:image/jpeg;base64,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" set type android-tablet set category android-device next edit "DGRAFICO" set mac 10:9a:dd:5b:12:bf set type mac next edit "AUDITOR-01-MICHAEL-GARCIA" set mac 20:68:9d:f7:3f:6f set comment "AUDITOR-01-MICHAEL-GARCIA" set type windows-pc set category windows-device next edit "AUDITOR-02-JOSE-PALACIOS" set mac 28:c2:dd:05:7b:3e set comment "AUDITOR-02-JOSE-PALACIOS" set type windows-pc set category windows-device next edit "AUDITOR-03-CONNIE-REYES" set mac b4:82:fe:27:e1:ee set type windows-pc set category windows-device next edit "SUBGERENTE-MANTENIMIENTO2" set mac 20:6a:8a:e0:02:14 set type windows-pc set category windows-device next edit "GERENTE-GENERAL-ANDRES" set mac 0c:51:01:20:f4:94 set type iphone set category ios-device next edit "ERP-CONFERENCIA" set mac b8:ee:65:44:17:d6 set type windows-pc set category windows-device next edit "DESARROLLADOR" set mac 1c:39:47:2f:1e:c8 set type windows-pc set category windows-device next edit "CONTRALOR_VENTAS_CELL" set mac 10:d3:8a:63:22:58 set comment "SOLO WHATSAPP" set type android-tablet set category android-device next edit "ASISTENTE_PRESIDENCIA" set mac 00:27:0e:1d:19:13 set type windows-pc set category windows-device next edit "ACCESS_POINT_PROYECTO" set mac c8:3a:35:21:c6:98 next edit "SM-GTFNZ" set mac 30:52:cb:73:3b:27 set comment "GERENTE DE FINANZAS" set type windows-pc set category windows-device next edit "CONTADOR_GENERAL_PERSONAL" set mac 60:f1:89:51:d8:ac set comment "CELULAR PERSONAL ANDROID" set type router-nat-device next edit "EJECUTIVO_VENTAS03_CELL" set mac a4:ba:76:b4:7a:22 set comment "SOLO WHATSAPP TELEFONO MACEN" set type android-tablet set category android-device next edit "CELULAR_ZENIA_PERSONAL" set mac 34:4d:f7:38:41:90 set comment "SOLO WHATSAPP" set type android-tablet set category android-device next edit "LAPTOP_AUXILIAR_COMPRAS_NAC" set mac f0:4d:a2:55:cf:9c set comment "COMPRAS NACIONALES" set type windows-pc set category windows-device next edit "CELULAR_EJECUTIVA_VENTAS" set mac 50:68:0a:7b:15:2d set comment "SUGEYLY MAYORGA" set type android-phone set category android-device next edit "EJECUTIVO_VENTAS02_CELL" set mac 50:68:0a:7b:15:55 set comment "SUGEYLY MAYORGA ULTIMO" set type android-phone set category android-device next edit "SMITEDWING" set mac 48:ba:4e:5b:a1:e2 set comment "Created for DHCP Reservation" set type windows-pc set category windows-device next edit "android-65bd45ef14f5b84f" set mac cc:79:4a:18:36:c6 set comment "Created for DHCP Reservation" set type android-phone set category android-device next edit "android-230ba22a956ca6e7" set mac cc:79:4a:44:3f:0d set comment "Created for DHCP Reservation" set type android-phone set category android-device next edit "android-cb1cc63a165d75b7" set mac 64:bc:0c:28:7f:32 set comment "Created for DHCP Reservation" set type android-phone set category android-device next edit "SMITEDWINGW" set mac a8:6b:ad:90:92:4b set comment "Created for DHCP Reservation" set type windows-pc set category windows-device next edit "SMITEDWINGW-aa:6b:ad:90:92:4b" set mac aa:6b:ad:90:92:4b set master-device "SMITEDWINGW" set comment "Created for DHCP Reservation" next edit "SMITEDWINGW-a8:6b:ad:90:92:4c" set mac a8:6b:ad:90:92:4c set master-device "SMITEDWINGW" set comment "Created for DHCP Reservation" next edit "SM-GTGRL" set mac b0:52:16:cc:75:b9 set comment "Created for DHCP Reservation" set type windows-pc set category windows-device next edit "SM-SUPCONF" set mac 00:21:5a:0f:5a:14 set comment "Created for DHCP Reservation" set type windows-pc set category windows-device next edit "iPhone Cobro" set mac 84:a1:34:4f:8f:a4 set comment "Created for DHCP Reservation" set type iphone set category ios-device next edit "Iphone 12 Gerencia1" set mac 8e:5a:df:eb:f3:74 set comment "Created for DHCP Reservation" set type iphone set category ios-device next edit "IPHONE 12 GERENCIA 2" set mac de:2d:70:ba:7f:da set type iphone set category ios-device next end config user device-group edit "Mobile Devices" set member "android-phone" "android-tablet" "blackberry-phone" "blackberry-playbook" "ipad" "iphone" "windows-phone" "windows-tablet" set comment "Phones, tablets, etc." next edit "Network Devices" set member "fortinet-device" "other-network-device" "router-nat-device" set comment "Routers, firewalls, gateways, etc." next edit "Others" set member "gaming-console" "media-streaming" set comment "Other devices." next edit "IT" set member "KS-PROVISIONAL" "ASISTENTE_PRESIDENCIA" "ACCESS_POINT_PROYECTO" "SMITEDWING" "SMITEDWINGW" "SMITEDWINGW-a8:6b:ad:90:92:4c" next edit "SERVIDORES" set member "SERVER-GNSIF" "SERVIDOR-DATAMACEN" "SERVER-SACNIC" "SEVER-DOMAIN-CONTROLLER" "SERVER2-GNSIF" next edit "PRODUCCION" set member "SUPERVISOR-NOCHE" "SM-PLNPRD" "ROUTHER-PLANTA" next edit "CONTABILIDAD" set member "AXCONT01" "CONTADOR_COSTOS" next edit "DIRECCION-SUPERIOR" set member "ROUTHER-DIRECCION-SUPERIOR" next edit "AUDITORES_CONTABILIDAD" set member "AUDITOR-01-MICHAEL-GARCIA" "AUDITOR-02-JOSE-PALACIOS" "AUDITOR-03-CONNIE-REYES" next edit "VENTAS_WHATSAPP" set member "CONTRALOR_VENTAS_CELL" "EJECUTIVO_VENTAS03_CELL" "CELULAR_ZENIA_PERSONAL" "CELULAR_EJECUTIVA_VENTAS" "EJECUTIVO_VENTAS02_CELL" next end config vpn ssl web host-check-software edit "FortiClient-AV" set guid "C86EC76D-5A4C-40E7-BD94-59358E544D81" next edit "FortiClient-FW" set type fw set guid "528CB157-D384-4593-AAAA-E42DFF111CED" next edit "FortiClient-AV-Vista-Win7" set guid "385618A6-2256-708E-3FB9-7E98B93F91F9" next edit "FortiClient-FW-Vista-Win7" set type fw set guid "006D9983-6839-71D6-14E6-D7AD47ECD682" next edit "AVG-Internet-Security-AV" set guid "17DDD097-36FF-435F-9E1B-52D74245D6BF" next edit "AVG-Internet-Security-FW" set type fw set guid "8DECF618-9569-4340-B34A-D78D28969B66" next edit "AVG-Internet-Security-AV-Vista-Win7" set guid "0C939084-9E57-CBDB-EA61-0B0C7F62AF82" next edit "AVG-Internet-Security-FW-Vista-Win7" set type fw set guid "34A811A1-D438-CA83-C13E-A23981B1E8F9" next edit "CA-Anti-Virus" set guid "17CFD1EA-56CF-40B5-A06B-BD3A27397C93" next edit "CA-Internet-Security-AV" set guid "6B98D35F-BB76-41C0-876B-A50645ED099A" next edit "CA-Internet-Security-FW" set type fw set guid "38102F93-1B6E-4922-90E1-A35D8DC6DAA3" next edit "CA-Internet-Security-AV-Vista-Win7" set guid "3EED0195-0A4B-4EF3-CC4F-4F401BDC245F" next edit "CA-Internet-Security-FW-Vista-Win7" set type fw set guid "06D680B0-4024-4FAB-E710-E675E50F6324" next edit "CA-Personal-Firewall" set type fw set guid "14CB4B80-8E52-45EA-905E-67C1267B4160" next edit "F-Secure-Internet-Security-AV" set guid "E7512ED5-4245-4B4D-AF3A-382D3F313F15" next edit "F-Secure-Internet-Security-FW" set type fw set guid "D4747503-0346-49EB-9262-997542F79BF4" next edit "F-Secure-Internet-Security-AV-Vista-Win7" set guid "15414183-282E-D62C-CA37-EF24860A2F17" next edit "F-Secure-Internet-Security-FW-Vista-Win7" set type fw set guid "2D7AC0A6-6241-D774-E168-461178D9686C" next edit "Kaspersky-AV" set guid "2C4D4BC6-0793-4956-A9F9-E252435469C0" next edit "Kaspersky-FW" set type fw set guid "2C4D4BC6-0793-4956-A9F9-E252435469C0" next edit "Kaspersky-AV-Vista-Win7" set guid "AE1D740B-8F0F-D137-211D-873D44B3F4AE" next edit "Kaspersky-FW-Vista-Win7" set type fw set guid "9626F52E-C560-D06F-0A42-2E08BA60B3D5" next edit "McAfee-Internet-Security-Suite-AV" set guid "84B5EE75-6421-4CDE-A33A-DD43BA9FAD83" next edit "McAfee-Internet-Security-Suite-FW" set type fw set guid "94894B63-8C7F-4050-BDA4-813CA00DA3E8" next edit "McAfee-Internet-Security-Suite-AV-Vista-Win7" set guid "86355677-4064-3EA7-ABB3-1B136EB04637" next edit "McAfee-Internet-Security-Suite-FW-Vista-Win7" set type fw set guid "BE0ED752-0A0B-3FFF-80EC-B2269063014C" next edit "McAfee-Virus-Scan-Enterprise" set guid "918A2B0B-2C60-4016-A4AB-E868DEABF7F0" next edit "Norton-360-2.0-AV" set guid "A5F1BC7C-EA33-4247-961C-0217208396C4" next edit "Norton-360-2.0-FW" set type fw set guid "371C0A40-5A0C-4AD2-A6E5-69C02037FBF3" next edit "Norton-360-3.0-AV" set guid "E10A9785-9598-4754-B552-92431C1C35F8" next edit "Norton-360-3.0-FW" set type fw set guid "7C21A4C9-F61F-4AC4-B722-A6E19C16F220" next edit "Norton-Internet-Security-AV" set guid "E10A9785-9598-4754-B552-92431C1C35F8" next edit "Norton-Internet-Security-FW" set type fw set guid "7C21A4C9-F61F-4AC4-B722-A6E19C16F220" next edit "Norton-Internet-Security-AV-Vista-Win7" set guid "88C95A36-8C3B-2F2C-1B8B-30FCCFDC4855" next edit "Norton-Internet-Security-FW-Vista-Win7" set type fw set guid "B0F2DB13-C654-2E74-30D4-99C9310F0F2E" next edit "Symantec-Endpoint-Protection-AV" set guid "FB06448E-52B8-493A-90F3-E43226D3305C" next edit "Symantec-Endpoint-Protection-FW" set type fw set guid "BE898FE3-CD0B-4014-85A9-03DB9923DDB6" next edit "Symantec-Endpoint-Protection-AV-Vista-Win7" set guid "88C95A36-8C3B-2F2C-1B8B-30FCCFDC4855" next edit "Symantec-Endpoint-Protection-FW-Vista-Win7" set type fw set guid "B0F2DB13-C654-2E74-30D4-99C9310F0F2E" next edit "Panda-Antivirus+Firewall-2008-AV" set guid "EEE2D94A-D4C1-421A-AB2C-2CE8FE51747A" next edit "Panda-Antivirus+Firewall-2008-FW" set type fw set guid "7B090DC0-8905-4BAF-8040-FD98A41C8FB8" next edit "Panda-Internet-Security-AV" set guid "4570FB70-5C9E-47E9-B16C-A3A6A06C4BF0" next edit "Panda-Internet-Security-2006~2007-FW" set type fw set guid "4570FB70-5C9E-47E9-B16C-A3A6A06C4BF0" next edit "Panda-Internet-Security-2008~2009-FW" set type fw set guid "7B090DC0-8905-4BAF-8040-FD98A41C8FB8" next edit "Sophos-Anti-Virus" set guid "3F13C776-3CBE-4DE9-8BF6-09E5183CA2BD" next edit "Sophos-Enpoint-Secuirty-and-Control-FW" set type fw set guid "0786E95E-326A-4524-9691-41EF88FB52EA" next edit "Sophos-Enpoint-Secuirty-and-Control-AV-Vista-Win7" set guid "479CCF92-4960-B3E0-7373-BF453B467D2C" next edit "Sophos-Enpoint-Secuirty-and-Control-FW-Vista-Win7" set type fw set guid "7FA74EB7-030F-B2B8-582C-1670C5953A57" next edit "Trend-Micro-AV" set guid "7D2296BC-32CC-4519-917E-52E652474AF5" next edit "Trend-Micro-FW" set type fw set guid "3E790E9E-6A5D-4303-A7F9-185EC20F3EB6" next edit "Trend-Micro-AV-Vista-Win7" set guid "48929DFC-7A52-A34F-8351-C4DBEDBD9C50" next edit "Trend-Micro-FW-Vista-Win7" set type fw set guid "70A91CD9-303D-A217-A80E-6DEE136EDB2B" next edit "ZoneAlarm-AV" set guid "5D467B10-818C-4CAB-9FF7-6893B5B8F3CF" next edit "ZoneAlarm-FW" set type fw set guid "829BDA32-94B3-44F4-8446-F8FCFF809F8B" next edit "ZoneAlarm-AV-Vista-Win7" set guid "D61596DF-D219-341C-49B3-AD30538CBC5B" next edit "ZoneAlarm-FW-Vista-Win7" set type fw set guid "EE2E17FA-9876-3544-62EC-0405AD5FFB20" next edit "ESET-Smart-Security-AV" set guid "19259FAE-8396-A113-46DB-15B0E7DFA289" next edit "ESET-Smart-Security-FW" set type fw set guid "211E1E8B-C9F9-A04B-6D84-BC85190CE5F2" next end config vpn ssl web portal edit "full-access" set tunnel-mode enable set ipv6-tunnel-mode enable set web-mode enable set auto-connect enable set keep-alive enable set save-password enable set ip-pools "SSLVPN_TUNNEL_ADDR1" set split-tunneling disable set ipv6-pools "SSLVPN_TUNNEL_IPv6_ADDR1" config bookmark-group edit "gui-bookmarks" next end next edit "web-access" set web-mode enable next edit "tunnel-access" set tunnel-mode enable set ipv6-tunnel-mode enable set web-mode enable set auto-connect enable set keep-alive enable set save-password enable set ip-pools "SSLVPN_TUNNEL_ADDR1" set split-tunneling disable set ipv6-pools "SSLVPN_TUNNEL_IPv6_ADDR1" config bookmark-group edit "gui-bookmarks" next end set forticlient-download-method ssl-vpn next edit "SSLVPN" set tunnel-mode enable set web-mode enable set ip-pools "VPNPFsense_remote" set split-tunneling disable config bookmark-group edit "gui-bookmarks" next end next end config vpn ssl settings set servercert "Fortinet_Factory" set idle-timeout 0 set tunnel-ip-pools "SSLVPN_TUNNEL_ADDR1" set tunnel-ipv6-pools "SSLVPN_TUNNEL_IPv6_ADDR1" set port 4445 set source-interface "wan1" set source-address "all" set source-address6 "all" set default-portal "full-access" config authentication-rule edit 1 set users "arrecinos" "jconde" "hcalderon" "tlopez" "arubio" "lspencer" "aramirez" "smfinanzas" "imendieta" "aaltamirano" "earroliga" "gcontreras" "gtorres" "mgarcia" "tc26esteli2" "lcerda" "rvargas" "slopez" "jescalante" "jaraya" set groups "Guest-group" set portal "tunnel-access" next end end config vpn ssl web user-bookmark edit "arrecinos#" next edit "abarrera#" next end config voip profile edit "default" set comment "Default VoIP profile." next edit "strict" config sip set malformed-request-line discard set malformed-header-via discard set malformed-header-from discard set malformed-header-to discard set malformed-header-call-id discard set malformed-header-cseq discard set malformed-header-rack discard set malformed-header-rseq discard set malformed-header-contact discard set malformed-header-record-route discard set malformed-header-route discard set malformed-header-expires discard set malformed-header-content-type discard set malformed-header-content-length discard set malformed-header-max-forwards discard set malformed-header-allow discard set malformed-header-p-asserted-identity discard set malformed-header-sdp-v discard set malformed-header-sdp-o discard set malformed-header-sdp-s discard set malformed-header-sdp-i discard set malformed-header-sdp-c discard set malformed-header-sdp-b discard set malformed-header-sdp-z discard set malformed-header-sdp-k discard set malformed-header-sdp-a discard set malformed-header-sdp-t discard set malformed-header-sdp-r discard set malformed-header-sdp-m discard end next end config webfilter profile edit "wifi-default" set comment "Default configuration for offloading WiFi traffic." set inspection-mode flow-based set options block-invalid-url set post-action block config ftgd-wf unset options config filters edit 1 next edit 2 set category 2 set action block next edit 3 set category 7 set action block next edit 4 set category 8 set action block next edit 5 set category 9 set action block next edit 6 set category 11 set action block next edit 7 set category 13 set action block next edit 8 set category 14 set action block next edit 9 set category 15 set action block next edit 10 set category 16 set action block next edit 11 set category 26 set action block next edit 12 set category 57 set action block next edit 13 set category 61 set action block next edit 14 set category 63 set action block next edit 15 set category 64 set action block next edit 16 set category 65 set action block next edit 17 set category 66 set action block next edit 18 set category 67 set action block next edit 19 set category 86 set action block next edit 20 set category 88 set action block next edit 21 set category 90 set action block next edit 22 set category 91 set action block next end end next edit "sniffer-profile" set comment "Monitor web traffic." set inspection-mode flow-based config ftgd-wf config filters edit 1 next edit 2 set category 1 next edit 3 set category 2 next edit 4 set category 3 next edit 5 set category 4 next edit 6 set category 5 next edit 7 set category 6 next edit 8 set category 7 next edit 9 set category 8 next edit 10 set category 9 next edit 11 set category 11 next edit 12 set category 12 next edit 13 set category 13 next edit 14 set category 14 next edit 15 set category 15 next edit 16 set category 16 next edit 17 set category 17 next edit 18 set category 18 next edit 19 set category 19 next edit 20 set category 20 next edit 21 set category 23 next edit 22 set category 24 next edit 23 set category 25 next edit 24 set category 26 next edit 25 set category 28 next edit 26 set category 29 next edit 27 set category 30 next edit 28 set category 31 next edit 29 set category 33 next edit 30 set category 34 next edit 31 set category 35 next edit 32 set category 36 next edit 33 set category 37 next edit 34 set category 38 next edit 35 set category 39 next edit 36 set category 40 next edit 37 set category 41 next edit 38 set category 42 next edit 39 set category 43 next edit 40 set category 44 next edit 41 set category 46 next edit 42 set category 47 next edit 43 set category 48 next edit 44 set category 49 next edit 45 set category 50 next edit 46 set category 51 next edit 47 set category 52 next edit 48 set category 53 next edit 49 set category 54 next edit 50 set category 55 next edit 51 set category 56 next edit 52 set category 57 next edit 53 set category 58 next edit 54 set category 59 next edit 55 set category 61 next edit 56 set category 62 next edit 57 set category 63 next edit 58 set category 64 next edit 59 set category 65 next edit 60 set category 66 next edit 61 set category 67 next edit 62 set category 68 next edit 63 set category 69 next edit 64 set category 70 next edit 65 set category 71 next edit 66 set category 72 next edit 67 set category 75 next edit 68 set category 76 next edit 69 set category 77 next edit 70 set category 78 next edit 71 set category 79 next edit 72 set category 80 next edit 73 set category 81 next edit 74 set category 82 next edit 75 set category 83 next edit 76 set category 84 next edit 77 set category 85 next edit 78 set category 86 next edit 79 set category 87 next edit 80 set category 88 next edit 81 set category 89 next end end next edit "default" set inspection-mode flow-based config web set bword-table 1 set urlfilter-table 8 end config ftgd-wf set options rate-server-ip config filters edit 1 set category 1 set action block next edit 2 set category 83 set action block next edit 3 set category 5 set action block next edit 4 set category 59 set action block next edit 5 set category 12 set action block next edit 6 set category 3 set action block next edit 7 set category 4 set action block next edit 8 set category 6 set action block next edit 9 set category 62 set action block next edit 10 set category 7 set action block next edit 11 set category 64 set action block next edit 12 set category 15 set action block next edit 13 set category 11 set action block next edit 14 set category 16 set action block next edit 15 set category 2 set action block next edit 16 set category 67 set action block next edit 17 set category 13 set action block next edit 18 set category 63 set action block next edit 19 set category 66 set action block next edit 20 set category 57 set action block next edit 21 set category 9 set action block next edit 22 set category 8 set action block next edit 23 set category 14 set action block next edit 24 set category 65 set action block next edit 25 set category 88 set action block next edit 26 set category 90 set action block next edit 27 set category 91 set action block next edit 28 set category 61 set action block next edit 29 set category 26 set action block next edit 30 set category 86 set action block next edit 32 set category 17 set action block next edit 33 set category 29 set action block next edit 34 set category 34 set action block next edit 35 set category 18 set action block next edit 36 set category 54 set action block next edit 37 set category 55 set action block next edit 38 set category 46 set action block next edit 39 set category 30 set action block next edit 40 set category 77 set action block next edit 41 set category 28 set action block next edit 42 set category 58 set action block next edit 43 set category 70 set action block next edit 44 set category 87 set action block next edit 45 set category 20 set action block next edit 46 set category 35 set action block next edit 47 set category 78 set action block next edit 48 set category 36 set action block next edit 49 set category 38 set action block next edit 50 set category 85 set action block next edit 51 set category 37 set action block next edit 52 set category 39 set action block next edit 53 set category 40 set action block next edit 54 set category 79 set action block next edit 55 set category 33 set action block next edit 56 set category 80 set action block next edit 57 set category 44 set action block next edit 59 set category 71 set action block next edit 60 set category 48 set action block next edit 61 set category 25 set action block next edit 62 set category 75 set action block next end end next edit "web-filter-flow" set comment "Flow-based web filter profile." set inspection-mode flow-based config ftgd-wf config filters edit 1 set category 2 next edit 2 set category 7 next edit 3 set category 8 next edit 4 set category 9 next edit 5 set category 11 next edit 6 set category 12 next edit 7 set category 13 next edit 8 set category 14 next edit 9 set category 15 next edit 10 set category 16 next edit 11 next edit 12 set category 57 next edit 13 set category 63 next edit 14 set category 64 next edit 15 set category 65 next edit 16 set category 66 next edit 17 set category 67 next edit 18 set category 26 set action block next end end next edit "flow-monitor-all" set comment "Monitor and log all visited URLs, flow-based." set inspection-mode flow-based config ftgd-wf unset options config filters edit 1 set category 1 next edit 2 set category 3 next edit 3 set category 4 next edit 4 set category 5 next edit 5 set category 6 next edit 6 set category 12 next edit 7 set category 59 next edit 8 set category 62 next edit 9 set category 83 next edit 10 set category 2 next edit 11 set category 7 next edit 12 set category 8 next edit 13 set category 9 next edit 14 set category 11 next edit 15 set category 13 next edit 16 set category 14 next edit 17 set category 15 next edit 18 set category 16 next edit 19 set category 57 next edit 20 set category 63 next edit 21 set category 64 next edit 22 set category 65 next edit 23 set category 66 next edit 24 set category 67 next edit 25 set category 19 next edit 26 set category 24 next edit 27 set category 25 next edit 28 set category 72 next edit 29 set category 75 next edit 30 set category 76 next edit 31 set category 26 next edit 32 set category 61 next edit 33 set category 86 next edit 34 set category 17 next edit 35 set category 18 next edit 36 set category 20 next edit 37 set category 23 next edit 38 set category 28 next edit 39 set category 29 next edit 40 set category 30 next edit 41 set category 33 next edit 42 set category 34 next edit 43 set category 35 next edit 44 set category 36 next edit 45 set category 37 next edit 46 set category 38 next edit 47 set category 39 next edit 48 set category 40 next edit 49 set category 42 next edit 50 set category 44 next edit 51 set category 46 next edit 52 set category 47 next edit 53 set category 48 next edit 54 set category 54 next edit 55 set category 55 next edit 56 set category 58 next edit 57 set category 68 next edit 58 set category 69 next edit 59 set category 70 next edit 60 set category 71 next edit 61 set category 77 next edit 62 set category 78 next edit 63 set category 79 next edit 64 set category 80 next edit 65 set category 82 next edit 66 set category 85 next edit 67 set category 87 next edit 68 set category 31 next edit 69 set category 41 next edit 70 set category 43 next edit 71 set category 49 next edit 72 set category 50 next edit 73 set category 51 next edit 74 set category 52 next edit 75 set category 53 next edit 76 set category 56 next edit 77 set category 81 next edit 78 set category 84 next edit 79 next edit 80 set category 89 next end end set log-all-url enable set web-content-log disable set web-filter-activex-log disable set web-filter-command-block-log disable set web-filter-cookie-log disable set web-filter-applet-log disable set web-filter-jscript-log disable set web-filter-js-log disable set web-filter-vbs-log disable set web-filter-unknown-log disable set web-filter-referer-log disable set web-filter-cookie-removal-log disable set web-url-log disable set web-invalid-domain-log disable set web-ftgd-err-log disable set web-ftgd-quota-usage disable next edit "Navegacion General" set inspection-mode flow-based config web set urlfilter-table 9 end config ftgd-wf unset options config filters edit 24 set category 83 set action block next edit 25 set category 5 set action block next edit 26 set category 1 set action block next edit 27 set category 6 set action block next edit 6 set category 12 set action block next edit 28 set category 3 set action block next edit 29 set category 4 set action block next edit 30 set category 62 set action block next edit 31 set category 59 set action block next edit 2 set category 7 set action block next edit 4 set category 9 set action block next edit 14 set category 64 set action block next edit 1 set category 2 set action block next edit 9 set category 15 set action block next edit 5 set category 11 set action block next edit 16 set category 66 set action block next edit 12 set category 57 set action block next edit 7 set category 13 set action block next edit 3 set category 8 set action block next edit 8 set category 14 set action block next edit 13 set category 63 set action block next edit 17 set category 67 set action block next edit 15 set category 65 set action block next edit 10 set category 16 set action block next edit 21 set category 88 set action block next edit 18 set category 26 set action block next edit 22 set category 90 set action block next edit 23 set category 91 set action block next edit 19 set category 61 set action block next edit 20 set category 86 set action block next edit 32 next end end next edit "TEST" set inspection-mode flow-based config web set urlfilter-table 10 end config ftgd-wf unset options config filters edit 24 set category 1 set action block next edit 25 set category 83 set action block next edit 26 set category 5 set action block next edit 27 set category 59 set action block next edit 6 set category 12 set action block next edit 28 set category 3 set action block next edit 29 set category 4 set action block next edit 30 set category 6 set action block next edit 31 set category 62 set action block next edit 2 set category 7 set action block next edit 14 set category 64 set action block next edit 9 set category 15 set action block next edit 5 set category 11 set action block next edit 10 set category 16 set action block next edit 1 set category 2 set action block next edit 17 set category 67 set action block next edit 7 set category 13 set action block next edit 13 set category 63 set action block next edit 16 set category 66 set action block next edit 12 set category 57 set action block next edit 4 set category 9 set action block next edit 3 set category 8 set action block next edit 8 set category 14 set action block next edit 15 set category 65 set action block next edit 21 set category 88 set action block next edit 22 set category 90 set action block next edit 23 set category 91 set action block next edit 19 set category 61 set action block next edit 18 set category 26 set action block next edit 20 set category 86 set action block next edit 11 next end end next end config webfilter ftgd-local-rating edit "www.avianca.com" set rating 52 next edit "www.florsheim.com" set rating 76 next edit "www.extremotvplay.com/programacion.php" set rating 95 next end config webfilter search-engine edit "google" set hostname ".*\\.google\\..*" set url "^\\/((custom|search|images|videosearch|webhp)\\?)" set query "q=" set safesearch url set safesearch-str "&safe=active" next edit "yahoo" set hostname ".*\\.yahoo\\..*" set url "^\\/search(\\/video|\\/images){0,1}(\\?|;)" set query "p=" set safesearch url set safesearch-str "&vm=r" next edit "bing" set hostname ".*\\.bing\\..*" set url "^(\\/images|\\/videos)?(\\/search|\\/async|\\/asyncv2)\\?" set query "q=" set safesearch header next edit "yandex" set hostname ".*\\.yandex\\..*" set url "^\\/((yand|images\\/|video\\/)(search)|search\\/)\\?" set query "text=" set safesearch url set safesearch-str "&family=yes" next edit "youtube" set hostname ".*\\.youtube\\..*" set safesearch header next edit "baidu" set hostname ".*\\.baidu\\.com" set url "^\\/s?\\?" set query "wd=" next edit "baidu2" set hostname ".*\\.baidu\\.com" set url "^\\/(ns|q|m|i|v)\\?" set query "word=" next edit "baidu3" set hostname "tieba\\.baidu\\.com" set url "^\\/f\\?" set query "kw=" next end config vpn ipsec phase1-interface edit "Forticlient-P" set type dynamic set interface "wan1" set mode aggressive set peertype any set mode-cfg enable set ipv4-dns-server1 165.98.132.2 set dpd on-idle set comments "VPN: Forticlient-P (Created by VPN wizard)" set wizard-type dialup-forticlient set xauthtype auto set authusrgrp "Forticlient-Group" set ipv4-start-ip 192.168.201.177 set ipv4-end-ip 192.168.201.189 set ipv4-netmask 255.255.255.0 set ipv4-split-include "all" set save-password enable set psksecret ENC D278V1G46X+/BM0TGtZP3TlWmot+2zsKyM/03TSzh5oUE/qXu8iu1AoJCRoJctopIu7Qaz16ETPZzJcl7ZlXmzGKBRwMJrQqmyQD7Dogn74sQxQc16zQOICJGXFf045/c9FPrgi3UhPHOoFFsx5AhrQQKktkMSe5mxK84lvJcb/IG1Z55h9MiEtP/UflG/KKfLs87Q== set dpd-retryinterval 5 next edit "ipsecvpn" set type dynamic set interface "wan1" set mode aggressive set peertype any set mode-cfg enable set ipv4-dns-server1 192.168.201.8 set dpd on-idle set comments "VPN: ipsecvpn (Created by VPN wizard)" set wizard-type dialup-forticlient set xauthtype auto set authusrgrp "Forticlient-Group" set ipv4-start-ip 192.168.201.1 set ipv4-end-ip 192.168.201.254 set ipv4-netmask 255.255.255.0 set ipv4-split-include "ipsecvpn_split" set save-password enable set psksecret ENC QB7TNTemO1+kuHxZ37VmoP/w4LZnjsAU8xVrYOVPSt41cGRqzhNiBOQb+MEb1BHsoBhkUdjqq2z5SKvmvoDa0VVe3rhZiUEX3U1lPZ30QsjOph+oDzqCDtcUy2FiEjqdibHtbbVUdVXHllKZsUmJroTZP1Tw1fgxBQmjXLQG4vrl5fTRdJqCGJoVp2yxfsawcndSQA== set dpd-retryinterval 60 next edit "Macen-to-Poly" set interface "wan1" set peertype any set comments "VPN: Macen-to-Poly (Created by VPN wizard)" set wizard-type static-fortigate set remote-gw 200.49.177.162 set psksecret ENC LpzoNyet2pB5WzseoL6H2WJJdus+jM+x3CPIklHUnYARHTNfNMCNVLkeImlbS89B1ZrKMDiN43S7cqBZh8ByGP/0n6vLoYUvEwxB9JwtHvnGaXft7aX0SJbv6Mka5PHlLb4zmp3/WEonrFoiRd1eIZ3OgG0aHg2SC9tbOhpn0x35GN+tVnCFwdkSyRcm8KN155JKLg== next edit "macen-vpn" set type dynamic set interface "wan1" set mode aggressive set peertype any set mode-cfg enable set dpd on-idle set comments "VPN: macen-vpn (Created by VPN wizard)" set ipv4-start-ip 192.168.201.100 set ipv4-end-ip 192.168.201.230 set ipv4-netmask 255.255.255.0 set dns-mode auto set psksecret ENC HiQBiPgvlumHogmhA1l/4gaxjHyfFR7LRigL5oHJJmiG9oCQlNvX+okgBC+NIEHZZIrHUwi7pEP3t5obO62Fp8XEk0nhi4A7e87wRHd7kqP+lX01s+coT03oQMPS/wCtC4BoTeFIwsXzogcV8Aegm3Sljq47YvY+eVAD9m3UDGER2NCMUql3s6KPeaUWRLqT+cQztQ== set dpd-retryinterval 60 next edit "_OCVPN0-1" set interface "wan1" set ike-version 2 set peertype any set comments "Generated by OCVPN Cloud Service." set remote-gw 208.96.130.167 set psksecret ENC Hrb+qDcHwOQwZwmOkyayw938fynOUXRdQC6FCL+7/lIAhroh55xSw5CgFnRqGlYtErVJN9el5n0ZvqDqGX8E5o2EzAcnZAqLskEqsVh7hfBHPFE7R/+hdhINuAcp0iHdMmWO4i5yjgOXmxYkUs1TDot0Lu4u4XGzS6C/cX2TR3oeytNcgZI7mO4jUHGf7AeYfXGn1w== next edit "IFX - VPN" set interface "wan1" set ike-version 2 set local-gw 190.53.34.138 set peertype any set proposal aes128-sha256 set dhgrp 14 set remote-gw 190.61.26.84 set psksecret ENC rjrzUfNRkyx6Xxo0Ux4hJtZtgDDv3k9CfzCYDtVA+sDfock6OHGiu4LntVvV072obIbP/bB+4cFKwE6Zz5tNjhHwgHmmml2xFmJMicND1W0KNZEh1WfyhvpzgC/KF1bz6AL+JnMUxHGrNwALss38IEloSUNKgvN4w6PU34OOjdpuzcFIrD7e38BymV4JoPgtNgTbdg== next edit "MACEN-ESTELI" set interface "wan1" set peertype any set comments "VPN: MACEN-ESTELI (Created by VPN wizard)" set wizard-type static-fortigate set remote-gw 190.61.121.33 set psksecret ENC hNQp3365PxCt3OzTLhlljbX9Wf3iDCkWnRwyPl9IEmkxQR1J0GZqVrVhZn6z+B0chBdegZ4rW6pIXc1ZNCVVOeayaJW7AYE56wOg9csvE8uoUI/3+pRpQfIzX1d/4BkZo2rko3vJMz9BrBcmavD+r9BEuSRu3vzRgMhDG8slhIS0hwF8w/9ZD46H/6G/2FivSE9H+g== next end config vpn ipsec phase2-interface edit "Forticlient-P" set phase1name "Forticlient-P" set comments "VPN: Forticlient-P (Created by VPN wizard)" next edit "ipsecvpn" set phase1name "ipsecvpn" set comments "VPN: ipsecvpn (Created by VPN wizard)" next edit "Macen-to-Poly" set phase1name "Macen-to-Poly" set comments "VPN: Macen-to-Poly (Created by VPN wizard)" set src-addr-type name set dst-addr-type name set src-name "Macen-to-Poly_local" set dst-name "Macen-to-Poly_remote" next edit "macen-vpn" set phase1name "macen-vpn" set comments "VPN: macen-vpn (Created by VPN wizard)" next edit "_OCVPN0-1" set phase1name "_OCVPN0-1" set auto-negotiate enable set comments "Generated by OCVPN Cloud Service." set src-addr-type name set dst-addr-type name set src-name "_OCVPN0-1_local_networks" set dst-name "all" next edit "IFX - VPN" set phase1name "IFX - VPN" set proposal aes128-sha256 set dhgrp 14 set keylifeseconds 3600 set src-subnet 192.168.201.0 255.255.255.0 set dst-subnet 10.0.0.0 255.255.255.0 next edit "MACEN-ESTELI" set phase1name "MACEN-ESTELI" set comments "VPN: MACEN-ESTELI (Created by VPN wizard)" set src-addr-type name set dst-addr-type name set src-name "MACEN-ESTELI_local" set dst-name "MACEN-ESTELI_remote" next end config vpn ocvpn set status enable config subnets edit 1 set subnet 192.168.201.0 255.255.255.0 next end end config dnsfilter domain-filter edit 1 set name "TEST" config entries edit 1 set domain "youtube.com" set action allow next edit 2 set domain "facebook.com" set action allow next end next end config dnsfilter profile edit "default" set comment "Default dns filtering." config ftgd-dns set options error-allow config filters edit 1 set category 1 set action block next edit 2 set category 83 set action block next edit 3 set category 5 set action block next edit 4 set category 59 set action block next edit 5 set category 12 set action block next edit 6 set category 3 set action block next edit 7 set category 4 set action block next edit 8 set category 6 set action block next edit 9 set category 62 set action block next edit 10 set category 7 set action block next edit 11 set category 64 set action block next edit 12 set category 15 set action block next edit 13 set category 11 set action block next edit 14 set category 16 set action block next edit 15 set category 2 set action block next edit 16 set category 67 set action block next edit 17 set category 13 set action block next edit 18 set category 63 set action block next edit 19 set category 66 set action block next edit 20 set category 57 set action block next edit 21 set category 9 set action block next edit 22 set category 8 set action block next edit 23 set category 14 set action block next edit 24 set category 65 set action block next edit 25 set category 75 set action block next edit 26 set category 25 set action block next edit 27 set category 88 set action block next edit 28 set category 90 set action block next edit 29 set category 91 set action block next edit 30 set category 61 set action block next edit 31 set category 26 set action block next edit 32 set category 86 set action block next edit 33 set category 17 set action block next edit 34 set category 29 set action block next edit 35 set category 34 set action block next edit 36 set category 18 set action block next edit 37 set category 54 set action block next edit 38 set category 55 set action block next edit 39 set category 46 set action block next edit 40 set category 30 set action block next edit 41 set category 77 set action block next edit 42 set category 28 set action block next edit 43 set category 58 set action block next edit 44 set category 70 set action block next edit 45 set category 87 set action block next edit 46 set category 20 set action block next edit 47 set category 35 set action block next edit 48 set category 78 set action block next edit 49 set category 36 set action block next edit 50 set category 38 set action block next edit 51 set category 85 set action block next edit 52 set category 37 set action block next edit 53 set category 39 set action block next edit 54 set category 40 set action block next edit 55 set category 79 set action block next edit 56 set category 33 set action block next edit 57 set category 80 set action block next edit 58 set category 44 set action block next edit 59 set category 89 set action block next edit 60 set category 71 set action block next edit 61 set category 48 set action block next end end set block-botnet enable set safe-search enable next edit "TEST" config domain-filter set domain-filter-table 1 end config ftgd-dns config filters edit 1 set category 1 set action block next edit 2 set category 83 set action block next edit 3 set category 5 set action block next edit 4 set category 59 set action block next edit 5 set category 12 set action block next edit 6 set category 3 set action block next edit 7 set category 4 set action block next edit 8 set category 6 set action block next edit 9 set category 62 set action block next edit 10 set category 7 set action block next edit 11 set category 64 set action block next edit 12 set category 15 set action block next edit 13 set category 11 set action block next edit 14 set category 16 set action block next edit 15 set category 2 set action block next edit 16 set category 67 set action block next edit 17 set category 13 set action block next edit 18 set category 63 set action block next edit 19 set category 66 set action block next edit 20 set category 57 set action block next edit 21 set category 9 set action block next edit 22 set category 8 set action block next edit 23 set category 14 set action block next edit 24 set category 65 set action block next edit 25 set category 88 set action block next edit 26 set category 90 set action block next edit 27 set category 91 set action block next edit 28 set category 61 set action block next edit 29 set category 26 set action block next edit 30 set category 86 set action block next edit 31 next end end next end config antivirus settings set grayware enable end config antivirus profile edit "wifi-default" set comment "Default configuration for offloading WiFi traffic." config http set options scan end config ftp set options scan end config imap set options scan set executables virus end config pop3 set options scan set executables virus end config smtp set options scan set executables virus end next edit "sniffer-profile" set comment "Scan files and monitor viruses." config http set options scan end config ftp set options scan end config imap set options scan set executables virus end config pop3 set options scan set executables virus end config smtp set options scan set executables virus end next edit "default" set comment "Scan files and block viruses." config http set options scan set outbreak-prevention full-archive end config ftp set options scan set outbreak-prevention full-archive end config imap set options scan set executables virus set outbreak-prevention full-archive end config pop3 set options scan set executables virus set outbreak-prevention full-archive end config smtp set options scan set executables virus set outbreak-prevention full-archive end config nntp set outbreak-prevention full-archive end config smb set options scan set outbreak-prevention full-archive end next end config spamfilter profile edit "sniffer-profile" set comment "Malware and phishing URL monitoring." set flow-based enable next edit "default" set comment "Malware and phishing URL filtering." set spam-filtering enable next end config firewall schedule recurring edit "always" set day sunday monday tuesday wednesday thursday friday saturday next edit "none" next end config firewall vip edit "SparkPoly" set uuid f0d8ce28-20c0-51e9-ebc7-c082d1c750d6 set extip 192.168.2.8 set extintf "Macen-to-Poly" set portforward enable set color 15 set mappedip "192.168.201.13" set extport 5269 set mappedport 5269 next edit "DVR1" set uuid 078ec524-36f4-51ea-796c-97f269c13b89 set comment "DBR" set extip 190.53.34.138 set extintf "wan1" set portforward enable set color 13 set mappedip "192.168.201.2" set extport 6801 set mappedport 6801 next edit "DVR2" set uuid 647a74f8-36ff-51ea-5c7f-bd644a102ccc set comment "DBR" set extip 190.53.34.138 set extintf "wan1" set portforward enable set color 13 set mappedip "192.168.201.3" set extport 6802 set mappedport 6802 next edit "DVR3" set uuid 7ef0a992-36ff-51ea-95f5-92cb2fdfdf91 set comment "DBR" set extip 190.53.34.138 set extintf "wan1" set portforward enable set color 13 set mappedip "192.168.201.4" set extport 6803 set mappedport 6803 next edit "DVR4" set uuid 8cc74620-36ff-51ea-2afd-2795fbfca4cd set comment "DBR" set extip 190.53.34.138 set extintf "wan1" set portforward enable set color 13 set mappedip "192.168.201.5" set extport 6804 set mappedport 6804 next end config firewall profile-protocol-options edit "default" set comment "All default services." config http set ports 80 unset options unset post-lang end config ftp set ports 21 set options splice end config imap set ports 143 set options fragmail end config mapi set ports 135 set options fragmail end config pop3 set ports 110 set options fragmail end config smtp set ports 25 set options fragmail splice end config nntp set ports 119 set options splice end config dns set ports 53 end next edit "default_default_sc" set comment "All default services." config http set ports 80 set options servercomfort unset post-lang end config ftp set ports 21 set options splice end config imap set ports 143 set options fragmail end config mapi set ports 135 set options fragmail end config pop3 set ports 110 set options fragmail end config smtp set ports 25 set options fragmail splice end config nntp set ports 119 set options splice end config dns set ports 53 end next edit "default_Nivel_Segundo_CONTABILIDAD_" set comment "All default services." config http set ports 80 unset options set range-block enable unset post-lang end config ftp set ports 21 set options splice end config imap set ports 143 set options fragmail end config mapi set ports 135 set options fragmail end config pop3 set ports 110 set options fragmail end config smtp set ports 25 set options fragmail splice end config nntp set ports 119 set options splice end config dns set ports 53 end next edit "default_Nivel_Segundo_rb" set comment "All default services." config http set ports 80 unset options set range-block enable unset post-lang end config ftp set ports 21 set options splice end config imap set ports 143 set options fragmail end config mapi set ports 135 set options fragmail end config pop3 set ports 110 set options fragmail end config smtp set ports 25 set options fragmail splice end config nntp set ports 119 set options splice end config dns set ports 53 end next end config firewall ssl-ssh-profile edit "custom-deep-inspection" set comment "Customizable deep inspection profile." config https set ports 443 end config ftps set ports 990 end config imaps set ports 993 end config pop3s set ports 995 end config smtps set ports 465 end config ssh set ports 22 end config ssl-exempt edit 1 set fortiguard-category 31 next edit 2 set fortiguard-category 33 next edit 7 set type wildcard-fqdn set wildcard-fqdn "android" next edit 8 set type wildcard-fqdn set wildcard-fqdn "apple" next edit 9 set type wildcard-fqdn set wildcard-fqdn "appstore" next edit 10 set type wildcard-fqdn set wildcard-fqdn "citrix" next edit 11 set type wildcard-fqdn set wildcard-fqdn "eease" next edit 12 set type wildcard-fqdn set wildcard-fqdn "google-drive" next edit 13 set type wildcard-fqdn set wildcard-fqdn "google-play2" next edit 14 set type wildcard-fqdn set wildcard-fqdn "google-play3" next edit 15 set type wildcard-fqdn set wildcard-fqdn "Gotomeeting" next edit 16 set type wildcard-fqdn set wildcard-fqdn "microsoft" next edit 17 set type wildcard-fqdn set wildcard-fqdn "adobe" next edit 18 set type wildcard-fqdn set wildcard-fqdn "Adobe Login" next edit 19 set type wildcard-fqdn set wildcard-fqdn "dropbox.com" next edit 20 set type wildcard-fqdn set wildcard-fqdn "fortinet" next edit 21 set type wildcard-fqdn set wildcard-fqdn "googleapis.com" next edit 22 set type wildcard-fqdn set wildcard-fqdn "icloud" next edit 23 set type wildcard-fqdn set wildcard-fqdn "itunes" next edit 24 set type wildcard-fqdn set wildcard-fqdn "skype" next edit 25 set type wildcard-fqdn set wildcard-fqdn "verisign" next edit 26 set type wildcard-fqdn set wildcard-fqdn "Windows update 2" next edit 27 set type wildcard-fqdn set wildcard-fqdn "auth.gfx.ms" next edit 28 set type wildcard-fqdn set wildcard-fqdn "softwareupdate.vmware.com" next edit 29 set type wildcard-fqdn set wildcard-fqdn "firefox update server" next edit 30 set type wildcard-fqdn set wildcard-fqdn "live.com" next end next edit "deep-inspection" set comment "Deep inspection." config https set ports 443 end config ftps set ports 990 end config imaps set ports 993 end config pop3s set ports 995 end config smtps set ports 465 end config ssh set ports 22 end config ssl-exempt edit 1 set fortiguard-category 31 next edit 2 set fortiguard-category 33 next edit 3 set fortiguard-category 87 next edit 12 set type address set address "swscan.apple.com" next edit 13 set type address set address "update.microsoft.com" next edit 16 set type address set address "google-play" next edit 28 set type address set address "auth.gfx.ms" next edit 29 set type address set address "autoupdate.opera.com" next edit 30 set type address set address "softwareupdate.vmware.com" next end set caname "Fortinet_CA_SSLProxy" next edit "certificate-inspection" set comment "SSL handshake inspection." config https set ports 443 set status certificate-inspection end config ftps set ports 990 set status disable end config imaps set ports 993 set status disable end config pop3s set ports 995 set status disable end config smtps set ports 465 set status disable end config ssh set ports 22 set status disable end set caname "Fortinet_CA_SSLProxy" next end config waf profile edit "default" config signature config main-class 100000000 set action block set severity high end config main-class 20000000 end config main-class 30000000 set action block set severity high end config main-class 40000000 set status enable set action block end config main-class 50000000 set severity low end config main-class 60000000 end config main-class 70000000 set status enable set action block set severity high end config main-class 80000000 set status enable set severity low end config main-class 110000000 set status enable set severity high end config main-class 90000000 set status enable set action block set severity high end config main-class 10000000 end set disabled-signature 80080005 80200001 60030001 60120001 80080003 90410001 90410002 end config constraint config header-length set status enable set log enable set severity low end config content-length set status enable set log enable set severity low end config param-length set status enable set log enable set severity low end config line-length set status enable set log enable set severity low end config url-param-length set status enable set log enable set severity low end config version set log enable end config method set action block set log enable end config hostname set action block set log enable end config malformed set log enable end config max-cookie set status enable set log enable set severity low end config max-header-line set status enable set log enable set severity low end config max-url-param set log enable set severity low end config max-range-segment set status enable set log enable set severity high end end next end config firewall policy edit 28 set name "Internet Andres Rubio" set uuid a6d032ee-55f2-51eb-5569-8dafd538cb6a set srcintf "lan" set dstintf "wan1" set srcaddr "Andrea Rodriguez" "SM-ASIT IT" set dstaddr "all" set action accept set schedule "always" set service "ALL" set utm-status enable set devices "Iphone 12 Gerencia1" "IPHONE 12 GERENCIA 2" "ROUTHER-DIRECCION-SUPERIOR" set av-profile "default" set profile-protocol-options "default" set ssl-ssh-profile "certificate-inspection" set nat enable next edit 30 set name "VPN-WAN" set uuid eca5de24-4be4-51ed-f06a-1518e5af948b set srcintf "ssl.root" set dstintf "wan1" set srcaddr "all" set dstaddr "all" set action accept set schedule "always" set service "ALL" set users "jaraya" "arrecinos" "hcalderon" "jconde" set comments "Clone of internet_vpn" set nat enable next edit 7 set name "GERENTES" set uuid 6d02b56c-e6eb-51e5-0df2-c48a59280e29 set srcintf "lan" set dstintf "wan1" set srcaddr "GERENTES" "GERENTE-RRHH-WIFI" set dstaddr "all" set action accept set schedule "always" set service "ALL" set utm-status enable set devices "all" set scan-botnet-connections block set av-profile "default" set ips-sensor "default" set profile-protocol-options "default" set ssl-ssh-profile "certificate-inspection" set nat enable next edit 10 set name "TODOS" set uuid 14bcc0d0-faa2-51e5-b8e1-c7c90ddd692b set srcintf "lan" set dstintf "wan1" set srcaddr "all" set dstaddr "all" set action accept set schedule "always" set service "ALL" set utm-status enable set av-profile "default" set webfilter-profile "default" set dnsfilter-profile "default" set application-list "default" set profile-protocol-options "default" set ssl-ssh-profile "certificate-inspection" set nat enable next edit 27 set name "LIBRE TEMPORAL" set uuid 451574c6-33e5-51eb-4c29-50cfed02b355 set srcintf "lan" set dstintf "wan1" set srcaddr "all" set dstaddr "all" set action accept set status disable set schedule "always" set service "ALL" set logtraffic disable set nat enable next edit 4 set name "IT" set uuid 275cb48e-e62f-51e5-69b4-4d5be8a3942c set srcintf "IT" set dstintf "wan1" set srcaddr "all" set dstaddr "all" set action accept set schedule "always" set service "ALL" set nat enable next edit 2 set name "VPN" set uuid f865c56c-e57f-51e5-7fdb-688ffe125ee2 set srcintf "Forticlient-P" set dstintf "wan1" set srcaddr "Forticlient-P_range" set dstaddr "all" set action accept set schedule "always" set service "ALL" set utm-status enable set fsso disable set users "arubio" "jchang" "kspencer" "arrecinos" "Nlopez" "vchacon" "jconde" "jaraya" set comments "VPN: Forticlient-P (Created by VPN wizard)" set application-list "default" set ssl-ssh-profile "certificate-inspection" set nat enable next edit 23 set name "Camaras DVR1" set uuid 317c56f2-36f5-51ea-ced1-00c7772cebe5 set srcintf "wan1" set dstintf "lan" set srcaddr "all" set dstaddr "DVR1" set action accept set schedule "always" set service "DVR1" set utm-status enable set av-profile "default" set webfilter-profile "default" set dnsfilter-profile "default" set ips-sensor "default" set application-list "default" set profile-protocol-options "default" set ssl-ssh-profile "certificate-inspection" set nat enable next edit 24 set name "Camaras DVR2" set uuid 99f03c8a-36ff-51ea-6b1a-e2a99b3a4b54 set srcintf "wan1" set dstintf "lan" set srcaddr "all" set dstaddr "DVR2" set action accept set schedule "always" set service "DVR2" set utm-status enable set comments "Clone of Camaras DVR1" set av-profile "default" set webfilter-profile "default" set dnsfilter-profile "default" set ips-sensor "default" set application-list "default" set profile-protocol-options "default" set ssl-ssh-profile "certificate-inspection" set nat enable next edit 25 set name "CAMARAS DVR3" set uuid a093fb26-36ff-51ea-7da2-d4672b3a45bb set srcintf "wan1" set dstintf "lan" set srcaddr "all" set dstaddr "DVR3" set action accept set schedule "always" set service "DVR3" set utm-status enable set comments "Clone of 24" set av-profile "default" set webfilter-profile "default" set dnsfilter-profile "default" set ips-sensor "default" set application-list "default" set profile-protocol-options "default" set ssl-ssh-profile "certificate-inspection" set nat enable next edit 26 set name "CAMARAS DVR4" set uuid a5b2891a-36ff-51ea-0c81-746283126800 set srcintf "wan1" set dstintf "lan" set srcaddr "all" set dstaddr "DVR4" set action accept set schedule "always" set service "DVR4" set utm-status enable set comments "Clone of 25" set av-profile "default" set webfilter-profile "default" set dnsfilter-profile "default" set ips-sensor "default" set application-list "default" set profile-protocol-options "default" set ssl-ssh-profile "certificate-inspection" set nat enable next edit 8 set name "DIRECCION_SUPERIOR" set uuid 56cb8e9a-4b72-51e6-1dfc-2937d815d8e2 set srcintf "lan" set dstintf "wan1" set srcaddr "KS" "ROUTHER-DIRECCION-SUPERIOR" "IT" set dstaddr "all" set action accept set schedule "always" set service "ALL" set utm-status enable set fixedport enable set devices "KS-IPAD" "DIRECCION-SUPERIOR" "IT" set webfilter-profile "Navegacion General" set dnsfilter-profile "default" set application-list "TEAM_VIEWER_ALLOW" set profile-protocol-options "default" set ssl-ssh-profile "certificate-inspection" set nat enable next edit 12 set name "VENTAS_WHATSAPP" set uuid da51e230-8a6c-51e6-4ccc-01bab1e6f1d6 set srcintf "lan" set dstintf "wan1" set srcaddr "VENTAS_WHATSAPP" set dstaddr "all" set action accept set schedule "always" set service "ALL" set utm-status enable set devices "VENTAS_WHATSAPP" set application-list "SOLO_WHATSAPP" set profile-protocol-options "default" set ssl-ssh-profile "certificate-inspection" set nat enable next edit 11 set name "DGRAFICO" set uuid 5b06f390-244f-51e6-3647-e703a39d193c set srcintf "lan" set dstintf "wan1" set srcaddr "DGRAFICO" set dstaddr "all" set action accept set schedule "always" set service "ALL" set utm-status enable set devices "DGRAFICO" set comments "Clone of 10" set ips-sensor "default" set application-list "default" set profile-protocol-options "default_default_sc" set ssl-ssh-profile "certificate-inspection" set nat enable next edit 3 set uuid 598837ce-e582-51e5-2518-290ced65f089 set srcintf "Forticlient-P" set dstintf "any" set srcaddr "all" set dstaddr "all" set action accept set schedule "always" set service "ALL" set nat enable next edit 15 set name "acceso-internet-1-equipo" set uuid af64f2aa-8210-51e7-0f93-cb9ccd644f29 set srcintf "lan" set dstintf "wan1" set srcaddr "192.168.201.197" set dstaddr "all" set action accept set schedule "always" set service "ALL" set nat enable next edit 16 set name "vpn_ipsecvpn_remote" set uuid 4efc450e-847a-51e8-a5eb-b9cd3f80f2cd set srcintf "ipsecvpn" set dstintf "lan" set srcaddr "ipsecvpn_range" set dstaddr "Asistente-Informatica" set action accept set schedule "always" set service "ALL" set comments "VPN: ipsecvpn (Created by VPN wizard)" set nat enable next edit 18 set name "SSV-VPN-int" set uuid 93e53186-a4f9-51e8-a6c4-8df03de48cf9 set srcintf "ssl.root" set dstintf "lan" set srcaddr "all" set dstaddr "ipsecvpn_range" set action accept set schedule "always" set service "ALL" set users "arrecinos" "hmonje" "vchacon" "Nlopez" "jconde" "hcalderon" "tlopez" "arubio" "kspencer" "lspencer" "aramirez" "smfinanzas" "imendieta" "aaltamirano" "earroliga" "gcontreras" "gtorres" "mgarcia" "tc26esteli2" "lcerda" "rvargas" "slopez" "jescalante" "jaraya" set nat enable next edit 29 set name "server_macen-lapamilcar" set uuid 1c394928-54aa-51ed-089e-7ea1977eef6a set srcintf "lan" set dstintf "Macen-to-Poly" set srcaddr "all" set dstaddr "all" set action accept set schedule "always" set service "ALL" set logtraffic all set comments "Clone of vpn_Macen-to-Poly_local" next edit 14 set name "vpn_Macen-to-Poly_local" set uuid a3a8b47a-d303-51e8-2dfb-b2b13f038bac set srcintf "lan" set dstintf "Macen-to-Poly" set srcaddr "Macen-to-Poly_local" set dstaddr "Macen-to-Poly_remote" set action accept set schedule "always" set service "ALL" set logtraffic all set comments "VPN: Macen-to-Poly (Created by VPN wizard)" next edit 31 set name "laptop-macen" set uuid 64a5d626-54ab-51ed-5103-8402fa0c9134 set srcintf "Macen-to-Poly" set dstintf "lan" set srcaddr "all" set dstaddr "all" set action accept set schedule "always" set service "PING" set logtraffic all set comments "Clone of vpn_Macen-to-Poly_remote" next edit 17 set name "vpn_Poly-to-Macen_remote" set uuid a3aff2bc-d303-51e8-2d7e-c13a87d1ed73 set srcintf "Macen-to-Poly" set dstintf "lan" set srcaddr "Macen-to-Poly_remote" set dstaddr "Macen-to-Poly_local" set action accept set schedule "always" set service "ALL" set logtraffic all set comments "VPN: Macen-to-Poly (Created by VPN wizard)" next edit 19 set name "PolySpark" set uuid f2b7d0c2-f84d-51e8-27d0-c2e8afa99c80 set srcintf "lan" set dstintf "Macen-to-Poly" set srcaddr "SparkServer" set dstaddr "PolySpark" set action accept set schedule "always" set service "ALL" set logtraffic all next edit 21 set name "vpn_macen-vpn_remote" set uuid 1e9aedc2-4cc3-51e9-4ffe-423e2a5fb8b8 set srcintf "macen-vpn" set dstintf "lan" set srcaddr "macen-vpn_range" set dstaddr "all" set action accept set schedule "always" set service "ALL" set comments "VPN: macen-vpn (Created by VPN wizard)" set nat enable next edit 22 set name "macen-vpn" set uuid 5ad3d064-4cc4-51e9-317f-eb4c696210d0 set srcintf "macen-vpn" set dstintf "wan1" set srcaddr "macen-vpn_range" set dstaddr "all" set action accept set schedule "always" set service "ALL" set nat enable next edit 20 set name "SparkPoly" set uuid 2d2637ee-f84e-51e8-0297-401f03953789 set srcintf "Macen-to-Poly" set dstintf "lan" set srcaddr "PolySpark" set dstaddr "SparkServer" set action accept set schedule "always" set service "ALL" set logtraffic all next edit 1 set name "_OCVPN0-1_lan_in" set uuid 98dbaf24-7047-51ea-2d09-60c57b0d6860 set srcintf "_OCVPN0-1" set dstintf "lan" set srcaddr "_OCVPN0-1_remote_networks" set dstaddr "_OCVPN0-1_local_networks" set action accept set schedule "always" set service "ALL" set comments "Generated by OCVPN Cloud Service." next edit 5 set name "_OCVPN0-1_lan_out" set uuid 98e0d63e-7047-51ea-f655-a4fec9eb503b set srcintf "lan" set dstintf "_OCVPN0-1" set srcaddr "_OCVPN0-1_local_networks" set dstaddr "_OCVPN0-1_remote_networks" set action accept set schedule "always" set service "ALL" set comments "Generated by OCVPN Cloud Service." next edit 32 set name "MACEN 2 IFX LAN" set uuid d883510e-6f59-51ed-78f8-078cc0bf7620 set srcintf "lan" set dstintf "IFX - VPN" set srcaddr "all" set dstaddr "all" set action accept set schedule "always" set service "ALL" set utm-status enable set av-profile "default" set profile-protocol-options "default" set ssl-ssh-profile "certificate-inspection" next edit 33 set name "IFX 2 LAN" set uuid 158d03ce-6f5a-51ed-66f3-0aadaf43d666 set srcintf "IFX - VPN" set dstintf "lan" set srcaddr "all" set dstaddr "all" set action accept set schedule "always" set service "ALL" set utm-status enable set av-profile "default" set profile-protocol-options "default" set ssl-ssh-profile "certificate-inspection" next edit 34 set name "vpn_MACEN-ESTELI_local" set uuid 529ad396-70fd-51ed-b523-ca1a132b3cd4 set srcintf "lan" set dstintf "MACEN-ESTELI" set srcaddr "MACEN-ESTELI_local" set dstaddr "MACEN-ESTELI_remote" set action accept set schedule "always" set service "ALL" set comments "VPN: MACEN-ESTELI (Created by VPN wizard)" next edit 35 set name "vpn_MACEN-ESTELI_remote" set uuid 52a35bf6-70fd-51ed-4680-e625503f4e9d set srcintf "MACEN-ESTELI" set dstintf "lan" set srcaddr "MACEN-ESTELI_remote" set dstaddr "MACEN-ESTELI_local" set action accept set schedule "always" set service "ALL" set comments "VPN: MACEN-ESTELI (Created by VPN wizard)" next end config firewall shaping-policy edit 1 set service "ALL" set application 30156 set app-category 8 set url-category 28 set dstintf "wan1" set traffic-shaper "shared-1M-pipe" set srcaddr "all" set dstaddr "all" next end config firewall ssh local-key edit "Fortinet_SSH_RSA2048" set password ENC FoHSF3w09JGTr686wKSvitV4wnORW/8MDUG/ANE3PBtrBsCpMVfTLbYLy3TEBx/8qe9Kux/GvG8iCgHNfwbWgLY2jOcYbJIlXlEryQubkGJxtaEIJ85oM3qJpk1wbTzMzO2y9vUIHfWnPKt8GCAl+qolt3ZzLnqDJgnsL7dG4YDaC6ziyXdrWT+5U/VIvKFpiHGWhQ== set private-key "-----BEGIN OPENSSH PRIVATE KEY----- b3BlbnNzaC1rZXktdjEAAAAACmFlczI1Ni1jdHIAAAAGYmNyeXB0AAAAGAAAABBX4O58sX iX+hCW+HyCdp2AAAAAEAAAAAEAAAEXAAAAB3NzaC1yc2EAAAADAQABAAABAQDH49wAhjKz SZT8E3DhQJN5eD1j9s+/SaeSMtQLtJHTX7Ojm4vtYASXnk3GSE3wg+OZ38QPXHqXJa+eg3 1qkA5jnDJwXfdnpzyWdpg2QWnIrX37Ln/GM/J1HBvwvAwEnfE7xEpkle+jUtcO8KGs9by2 Nv73Qyaw3RxcRtxiNzk84k03fKqawb6faPuMol4qKEuVLIZKz9ERT+DPwxyGoMxNuIHczA rYRd1AaK6joL565JPcrDlG0XmdFBJZYfT2jDQhvg10+0fjF1xsDadJ43bm7DRZZdZKARdR dnVloHHenxvQ0KwyuBRFmhoEjq/IH47Jmc74VnX56QPz4TIJHnfDAAADwLEdLybeQHsuCb 5jJep8dJYe2pcpDNhYSM6MT3KR/p/14Ps4bkZbmOP0ZmhKHIt+reH3NAGWw+xDAM8EtjsE T17Hye2RxMBo4vmEshMbKFstINE/jNFDQat13zsyGFnQ0K1/YP8hfDq69VuPd5YOhc+0+7 wSdIsdR84L42leGAZkxwu63Q3f2I1uooK+yWYoVs/aRDtiKNHClu9renmckhHPyu1MSDOd 2sS/rO0atI0hY+FZ2H0lEIVnTBXsMliJL37HTscAR4xqVQwUFm0Hhz03v5IEyye/pHJlCv GWyqS5YijSGVcqI7Mhjm8QFJPRHug7WfFV5yYj/LrHbP+EvrpYcX4cvFJTSt9g1p/SxIrI RTlOKN+D3Y5kx3tf6qc2NMJs1qsKIJXKplT4azQm8uneqaB+nvgC3Xd8exyIRJPbA73LVj DlHuS5EOYnEBgrMbfsdQ0OXXNWayrtmX8QCQ/SCvj6JjOHdh6gO64wvgtc48/yeiOQV6Cv T4Wua0Oe0gyA9QrsIyOPJ2d2L1G6v0WVgXl/tFsdO0n8oYQjBogQFbx3MmWvZ4cqyf/fjI 7RD3wdFFV2bTJ/dP6xdXaJs3K4KwU0RXeHxyYKbWCdB/OVpbhJMBItiVy7KRbfLcJcm7TT 9zosoaHYm10Rg/Uiz6Fp5RoD+ioOASF0aTsKVt6k/yH+h6T7iB4Vx1iesAff24bvmuHaCa UkCrpuJWTAOi5+6gGfkkJFl4l3Rf5M3tuBHueZ+r8ab/8TpLNFy0GzoOiKD+BeDnh2B9IA xfPSyX6EJFpVIjIQGWGKv9Y0v7wxq1/XvD3f/Bfc9WrVtTTj8XemnsSDQ7QsDqUhdmTtoD aBoUCX6SNzxBtQIzIRCEhtCo03nKplS0JWqesMLYwotgJR1I4MXvEthv2q6aClrkOOgLgN sYermfadDlO4DE3XKdIPUKizUfr2ZMwjMZ4Se3pjYeyVpC4ph4fSrr8BHBumnMFwjVgI41 vweDw+48ruC3XQvflwx4dsTVdtIMRp+6ImtJ8kR5uEtI95tpGSIz7RfwWzmj0szycpadMr 0hlR+adJMQ4rK8tKpJ4YFg6Op2oGySkEubc2qSVyd92Jzrq8GER2ZPTvXtUaJNdlXTKegG /BHfz1v0H4YJEPaaMC6D2eZRUJ/QiGmtA/TmizEuPtPA+1kStbi0uzWWyfo0XWK4Db/U9s Hr01LL9JIEIw4wdbo2prOWTuAk3XtLnE+Q8AHg6wBLSiCQjXzApRrFRsyj8XHqJAlYNwZp G++yD+lQ== -----END OPENSSH PRIVATE KEY----- " set public-key "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDH49wAhjKzSZT8E3DhQJN5eD1j9s+/SaeSMtQLtJHTX7Ojm4vtYASXnk3GSE3wg+OZ38QPXHqXJa+eg31qkA5jnDJwXfdnpzyWdpg2QWnIrX37Ln/GM/J1HBvwvAwEnfE7xEpkle+jUtcO8KGs9by2Nv73Qyaw3RxcRtxiNzk84k03fKqawb6faPuMol4qKEuVLIZKz9ERT+DPwxyGoMxNuIHczArYRd1AaK6joL565JPcrDlG0XmdFBJZYfT2jDQhvg10+0fjF1xsDadJ43bm7DRZZdZKARdRdnVloHHenxvQ0KwyuBRFmhoEjq/IH47Jmc74VnX56QPz4TIJHnfD" set source built-in next edit "Fortinet_SSH_DSA1024" set password ENC sbKM+AyPiYIOV8jsIumn4oB3SK81ppPhwEsctfdO00mmMAISCjOD9asz/X9EqZzQ4IXIo57WelmoDui1C7UWGgeRDLt7SlorE2olBgSeXmWlbPOM2IsNPHu05N4J4+dChUge83w4o7beGSvdYlzE5sRpDI/XfvG984/QSx6WhDeS1CfVqVz94W2WP/qm82adeucrrg== set private-key "-----BEGIN OPENSSH PRIVATE KEY----- b3BlbnNzaC1rZXktdjEAAAAACmFlczI1Ni1jdHIAAAAGYmNyeXB0AAAAGAAAABAe3s13CM PX3psxgQM97EwgAAAAEAAAAAEAAAGyAAAAB3NzaC1kc3MAAACBAOeqDBLZA7CG021lpiEE cc/+03is6lE+Z9nZWchndwRDyFJsNkvmee7ZQTY6bT378ynnmOHGVELN2wdy6CxwwHACem ePR0UeegZC6Mhne47FGH9ykyYsmj8Yc5ZYp7OfEjGJQv1b5T6/1WE3ULZLv8oLctHv3QU0 s0IEb/UXIQYRAAAAFQDp+2WsG5rtopxKrqlDOzUqvR2dmQAAAIEArUbD06IFWhjmMonaJL W1j+TwXyHEuj1TRtfqnsHfTlsAtJhDhcrSUagAuWDzVVTO7VshKrT87hEnALt2QrT2HSMf 3TamvInHuQzRynOWAKw2PV88lhUcilgm26WToaSmVMwUGh2GGycwdAPkwVvZ7tqJSznaIi 3P8TRAlar7CDEAAACAE2neP4F/lWNcpBaFC5f9Hz2tu8enEDyZtty1PrM6klmVEMLHioG7 lxur1ss4OZckr7FZ/t3g20RFsv0zLVYhxnmZTCvhOtDxDb1oaDOTOklSaft/1YIYweb1CP GdGyxmNNVT3VXCM8E6+eK2OPguIzQ37B7uh7MV+wU6m/koaFwAAAHgiVDPA8ZeO/EtB3E2 Fpg1xUL8j2GSj7tycSAaOtp56LKtzpZMKQxzy+bb8i29bQco0HQIcf4+EB7XiRLgY2/OvO WCENtVgFyas1hw47EK5eNpmJfCK3m32GE2kdms4KPdRi3UF7A/MfWpxHqSYSCa7ThjkfgC Tu2j9yicZnQZ8q0CV8lysKRcAxEhD6O9ndx2deFHfKnrITvwEGy4TWQNpwUQnvcC+GNHU6 x2l5+ZKTHXRb5YEKermJ7ENBEZX7rlpaNGIBMZBbqo4n+Zy3FoIvrIiQEVYvOaWJkXZOZM xseFhFkNeRgfdx7MyKva1WSWWY8C0cvNw8BoxAewRv0OvPH7up+aeg0cix0K9qzfZsVDZX IBCinEQPrCvD5YZuc95hSFXXAtmoeKW4bkqloL5BwLZ2eqMyxQvLLjiI6BrNSzmPRtBtQn WwbzV8T8635ZF58dN4rZrdCqdbXtdhpGh3KAeJdlNdiNVHRBT0acDQdOH9G+K1nUXp//Rv QUewFtQOEGtfWVNs15fRhSm4FJT6oL24qnWxSFt3Ko3MCELalrzRxWJhJ/dezXdXuPFIrU n6gTCbuLKGw9RaFy8IL7NmuiEtFovd1Jofr8580Bc9ygre82si315jACJ1zTBev5 -----END OPENSSH PRIVATE KEY----- " set public-key "ssh-dss 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" set source built-in next edit "Fortinet_SSH_ECDSA256" set password ENC TN/j7KAHFzK/OVem24kpirzQ/r9KBL2n01UcYKW8mRmQhtlr375pxsWTu1i2xmm+XcZa0Nz6rCzzvCSK16bB7ssynxt8MqpS17mi0DNTLYiGLUSzudWxyON/8c9erT8Y////r6CZN8CJbY2FjiG/jxdm2CAhJECuYoqsuwakrqtrhDfg4uXs6H0MjAD51SC+3CnIMA== set private-key "-----BEGIN OPENSSH PRIVATE KEY----- b3BlbnNzaC1rZXktdjEAAAAACmFlczI1Ni1jdHIAAAAGYmNyeXB0AAAAGAAAABCVJrw6Fr ZSNklHYfSIXe/UAAAAEAAAAAEAAABoAAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlz dHAyNTYAAABBBJXXY/JY/24wH/8PgjtlomyxtjoqIlgi9tGSTSfl37QQFWrowV1L/JhAL8 bN7uf1W2rwafhjRuvl7bHS+6Cm608AAACgBuHTDJK926w4IDEeL98sQ8nEB1a8opX+u/bs TewGfDo7NMtMFGPR7Hux1Sn9a18Orh9HWFS+jMByyuUFbdzH6NHTj7sJvdbowZZf4nOO1Q c4+Dk03rxb5sPoyoxsR32xRqdL9N/s74lBJO3LtLOFdKCG8yqPXQm2AdsAeW5syuaOri0i 8HV1YLrfwyf8kUB+Wy//1c7jBNN2jNLq5UmzYQ== -----END OPENSSH PRIVATE KEY----- " set public-key "ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBJXXY/JY/24wH/8PgjtlomyxtjoqIlgi9tGSTSfl37QQFWrowV1L/JhAL8bN7uf1W2rwafhjRuvl7bHS+6Cm608=" set source built-in next edit "Fortinet_SSH_ECDSA384" set password ENC UFpUg8it+ErtFcAaxlylYvkZY6XepnLa01nsQUDgdmxzRz8+caLZ0iv9wAhFMpa9WAE3FQDlvYzB4BW5gYYI+281w3RIv362ipq72b5sarL3mito6r3iomafmrxtT/UlROQ4YetAfjDttopr5zSnM0MLv+SYdXjYgm3PQ8SKFXrFiqSh6x/9RyOxCLNQoJDr1U/WMw== set private-key "-----BEGIN OPENSSH PRIVATE KEY----- b3BlbnNzaC1rZXktdjEAAAAACmFlczI1Ni1jdHIAAAAGYmNyeXB0AAAAGAAAABBpfLhTwh wYW4bXBEVa8JwrAAAAEAAAAAEAAACIAAAAE2VjZHNhLXNoYTItbmlzdHAzODQAAAAIbmlz dHAzODQAAABhBDVaTJ7tR6odjFeuRxbRLzoNFsriXVqcItcotDILNcdAH5iQ/PmJxfyctU t5n60umLzL81NlFytdhZElOXrhsVmGyHcE/DfItJFROlh3/eUH/PO4BpDp3CXHTJGnMy0T 1AAAANBZeWaGWEpLnoROvJKFE3eomrxhebyAE/KVKPt8x12aqTaJKYNN1OjTeCTK5ZnB3G Wf2CxSRM9rUutbbJWEpYDo3lw7GNl0MnvapXrFMRu2W6ttj/j/WR5XVzFLd21f6yNuoL6J fz/yHKC7FlLgFNcRNDnZiMAxSFjvYL/urv9JKbsXo5XIzxBdjtsk1YryR0iRip54e5Yiu8 LOG9QITai71BJBJNbk5NPv0zo3SqHUCJ/lmoCUCSI/19fbKy+TdL2Net5qQQVudD48HyKY z06c -----END OPENSSH PRIVATE KEY----- " set public-key "ecdsa-sha2-nistp384 AAAAE2VjZHNhLXNoYTItbmlzdHAzODQAAAAIbmlzdHAzODQAAABhBDVaTJ7tR6odjFeuRxbRLzoNFsriXVqcItcotDILNcdAH5iQ/PmJxfyctUt5n60umLzL81NlFytdhZElOXrhsVmGyHcE/DfItJFROlh3/eUH/PO4BpDp3CXHTJGnMy0T1A==" set source built-in next edit "Fortinet_SSH_ECDSA521" set password ENC 9LqNND2Cv7KKegZLWHXoJTrEg84wab+2s9SuZ3rLNZmSaBvH2vkNtXC4v481YyXjHhN6U4Gt2rC94OTKW+E5/ElBeCD+2pR9N/YyXE5EjjKcVIyoll64B/zZuDNTdDA8NqJ0jmhD6xOyJ2k0puoaJrZJjUVLydQkSj5kpef4szvkmyke/rK6dAAfgTeUYxfzad77mg== set private-key "-----BEGIN OPENSSH PRIVATE KEY----- b3BlbnNzaC1rZXktdjEAAAAACmFlczI1Ni1jdHIAAAAGYmNyeXB0AAAAGAAAABChY15U0B crBHDEoKB4sE0uAAAAEAAAAAEAAACsAAAAE2VjZHNhLXNoYTItbmlzdHA1MjEAAAAIbmlz dHA1MjEAAACFBACB+JiOplC3+M3w7vFv3j5hpl1qNSIzB82RL7KO3zlwCRjBw/D/iwa4K5 Q1iRKNjL5pTM5BAPBwinQT4UK1eE6DUgC4atDm9j4+WbvUAH3qksDTA5eY8DMZooSxDsRm yAqldIeAtRXMNjJ2W2Ufa7IIzJiTIzAFxIKieL9St3usTz6QSgAAAQCYjvrhYiSsLwfbQj nOUv7GvV2krJD7mNSARyPrpv2XZno67B1j3JusvCjFcji2Da/4V6GGglASUvZkFuGR5O2n zhB4eOZlN7ezsGVRZQklcQQvr/6vQssnMxOuuIzjlFLdxoU0YsvORZLBGIoM0zB8YPpxUy KgtmJloBrFdpodFzyLfanOuQg1AGeTsW/br2rnbvp48d/r2h4v5zqMT+ltnXZf3dhj0Yi0 qUuv2gJMqEh0x95VRwE7gOIKvsgH/QGOE78fa9V26+Wt6YF/G5YWf6BgnquKfr6YOTe7Bx +mlUyd6LWBvFs+MwuYjznKUpHTdp0qZQl/K1Y6ZGMHIMMs -----END OPENSSH PRIVATE KEY----- " set public-key "ecdsa-sha2-nistp521 AAAAE2VjZHNhLXNoYTItbmlzdHA1MjEAAAAIbmlzdHA1MjEAAACFBACB+JiOplC3+M3w7vFv3j5hpl1qNSIzB82RL7KO3zlwCRjBw/D/iwa4K5Q1iRKNjL5pTM5BAPBwinQT4UK1eE6DUgC4atDm9j4+WbvUAH3qksDTA5eY8DMZooSxDsRmyAqldIeAtRXMNjJ2W2Ufa7IIzJiTIzAFxIKieL9St3usTz6QSg==" set source built-in next edit "Fortinet_SSH_ED25519" set password ENC hEsqUR64OJfmP3HhMjTZHS05sTDf9kXWxiP+DVZUwLAkOKuB12YSdNZEFhUAnXe3oVwUglppaAU8etD4jG5g/rwhE5MH5p8o1DDeI9qAYFnpAd6jVVnczobeAqtnG+9MxSRNcu3PKTNsMmmPYdi5EDOhAuPY55AuDcn9tn2K6fOqaTPkHf8fKCmpLuurbGW/f5h+xA== set private-key "-----BEGIN OPENSSH PRIVATE KEY----- b3BlbnNzaC1rZXktdjEAAAAACmFlczI1Ni1jdHIAAAAGYmNyeXB0AAAAGAAAABDZeJjrRj wlwHtjujmKYYltAAAAEAAAAAEAAAAzAAAAC3NzaC1lZDI1NTE5AAAAINchRLq1EoT8ePMi hS0CMI+vqi4lwEhpxmFW/MJa/TQLAAAAkLPKHmp/+2ZqsoFdWK+7UmdkbVutPjTxsPv2Xj /eZq5bAKPLpWEas+kOUFOEe4UIwB0tYep/5q1P4hpsLeHg4FlsB4Rs8Hr5F+iqoEjMp7JP FZG4ZgZQ4kD8dj9Xa9/y3gH3qNvfNVZ4rskBJ2B3G6WpxAgJtHuU1ZnKCgqXp0K2T5+MZp Xt+zOYl+R6miSkWQ== -----END OPENSSH PRIVATE KEY----- " set public-key "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINchRLq1EoT8ePMihS0CMI+vqi4lwEhpxmFW/MJa/TQL" set source built-in next end config firewall ssh local-ca edit "Fortinet_SSH_CA" set password ENC JGr0EP6YYs8J8n9T67rZPr2hFV5LT29rB1fM4syzR1h1mnoj9hmOY2lgv+LoXBGlZZikPyyiVpS2Zkaa/R4E5hpO5evYc2OelvlhNMw5pUbzYAQGrFhWQnqCAGVKbiefJu0y9ogdtTTBjWosAPJojGuBGiazHp0VJEhYUybByuqHqU9Y0lBHrsJ3e6mvwjoIIehCCg== set private-key "-----BEGIN OPENSSH PRIVATE KEY----- b3BlbnNzaC1rZXktdjEAAAAACmFlczI1Ni1jdHIAAAAGYmNyeXB0AAAAGAAAABBbnJUUc2 MOevdi7LcR8CsMAAAAEAAAAAEAAAEXAAAAB3NzaC1yc2EAAAADAQABAAABAQDHqik6O3/g y5jMYC+e8nTgE/a7WLZf7inlGM0fquXpZpl3PIkoq/OypCbfS4RTDbAtuWopugivUEeROK iOuJTnMWq6m2JV25I40zC/Y06GUXv1qi16XC26O+/ces7tyvhT0a24Hez7VfSsBWF8oWdE 8EiuYzJORIOgrdBl4ejEefxMTZCpQpVKTfVmLIX3+B+mxJR8t8N7oedUiowuklYp9L+ZPI wciEmQ4QxhHSrNBJKYAjO6Q8EtZ9/JaeXuo/p/DeeYaoicF2VqxGoO3KQs0iMCGjitdrVJ 4ofXSmPhIAk1LHB4CuIxG0gSPQtmqZiQwwWPkKg0Z/KxrbMn5pNJAAADwK2wFmxQNsEuZj fKGUKtnz+cjh/b544JwZGVeooEsmyrc4NIVUabAGCBe0nq5NbQxxL+rv6oWSnt9HnVn/xK IMqKXCU6+5psK8/zxZ5t63REltXa7q3oRRaVsubVcc4NbaftMst5S+EWZRf7C0DK0mR4k2 EMZWBPrQkhS8Smw2EdqtPOk2WEBQYxmSarEu0GNYE891z0KQhFt91wJPa7numS6vkfwIOg ZClEY7xch8fTzffw6BZQC+DGmZ0jqxW3FLsJcS7VaGCxs7te1F/sBeO+h+NJVUUjcIol58 nOkBiWxONcDk5ie4/w30SyAe5KZPMfx4tCaW1qX6mD/xYDVQ33RQ0baCJ7uru6CeyzGwiZ WUFtLPeJV+JvnMQ9HBAymhUfGQKw4oW53I6oBf79zi65IBVyYwL0ivuaCemB/dTN8HLEE6 C6+As4a30BcbdG4eIxGtWKN3IlhnBPXUgEBzIlDTmf59zc7CZZhhzahLEB3neZ+bgBh5jC naGWSpnxfYdgImBBrdLbpP2tdCkcCVhY+pU9mLBp/d0GLp/qBeWghu3gE7Vk5YzMPKpzgH kHXrnhZgt2uFzs3VwmAiEP2QCS0rLf2ZMkHBmmxCh1lIzDIISd0+2A49OBhr7jJ+syHylR 8vM9FmU8kMnlZsOiraVUW0n1DyNO2VQkCFmeh8E++AHdK5o61fIcH75loOHSA8PiEboMcT EuYtFfgq6Xnkt8Us0kpUGik8HEe2Pzh3/59jSXZM7loNMcr2b/CR0wv84Os5CxAIsCfpeo tY5zw7skMpsBugHmm6IIkZiXDErl2bkKZiZHANvYqcC1Y0XHpOVL3oeEwarV0yXB/eiILW mZblLr5A33gppR1Yzei9F4Xi+79TKToM2XA4jh2HD7Yvmv48hxzhFx9QBl3s7aM/wb/Xki EAzCzTpK4TgKcQt+55Wzn7jmtgXCWl1zvV2OJBjjJ+8P5CVcsGCPBw1sTnOonOIgLEHNO1 19wC7OPdeMyGqTWpfnYs/I94MYpTWIBWlnEZRYV8t0UInJrnyUAWh52p9mGDKmjoZRzASh blEfShOiE1LykDBiYY2X6xNYxSpkGQN841DwCHbT4LW0WBzKilLh8HI2MKGeBLlpJ3069I Kmn3Sq65rqnJGg7FqGb0eZadGW/SPKTz8p3c6HkC9Xzmc12EbVUU6xePTZuvAJaIocqDwb r0B7geUVhPizA993ZPLP+M9T9QkqBvgSsXA8+BNwFez8jXQlJpfLGHC5DcqGxt/aclA6FB wORt7Dyg== -----END OPENSSH PRIVATE KEY----- " set public-key "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDHqik6O3/gy5jMYC+e8nTgE/a7WLZf7inlGM0fquXpZpl3PIkoq/OypCbfS4RTDbAtuWopugivUEeROKiOuJTnMWq6m2JV25I40zC/Y06GUXv1qi16XC26O+/ces7tyvhT0a24Hez7VfSsBWF8oWdE8EiuYzJORIOgrdBl4ejEefxMTZCpQpVKTfVmLIX3+B+mxJR8t8N7oedUiowuklYp9L+ZPIwciEmQ4QxhHSrNBJKYAjO6Q8EtZ9/JaeXuo/p/DeeYaoicF2VqxGoO3KQs0iMCGjitdrVJ4ofXSmPhIAk1LHB4CuIxG0gSPQtmqZiQwwWPkKg0Z/KxrbMn5pNJ" set source built-in next edit "Fortinet_SSH_CA_Untrusted" set password ENC CY/EabJVieN5a/OZIaIBdO2+w4l+LQeGTIsg4FgZQ5CCiK0R3YLhEcqDwdna9ANj/VNcw1BqhOmjcLlnNOGwlTD2n/IOhrOieLdY7SGrHD3R2v3sm9XqitgVhtU1jqa3BrBz4yBRT41nmWrStxGmBubQICwflceqAe9HjQjNLdWQuXyNf1aZxokylosy9KkvogxXug== set private-key "-----BEGIN OPENSSH PRIVATE KEY----- b3BlbnNzaC1rZXktdjEAAAAACmFlczI1Ni1jdHIAAAAGYmNyeXB0AAAAGAAAABCHrGgiXa 7GWGsAFT4sVH1iAAAAEAAAAAEAAAEXAAAAB3NzaC1yc2EAAAADAQABAAABAQDhqo5cA0ha ciAc3llrszUzyP6j/sqpzE9DEo2dScrEpRUxFuPSlLl1JmA62s3nRgKoRy/ebU6uPqd+8W efVT/YhqzjJ8jsjIokwdmTh41xilNwVHR50FIDzTbEkWMeqL3qwEvKqwrArnokGHIfWzgJ 7TeyYUFnhYbEEUi6kjiBjZVEyiH2CagH3QeTOkYN+ZEOpn3GTWB5ilDmn2RSUtXhZ2mRS6 Cvy2CtXtdfTDGRlCt1v9YGCNxHXXCtCIDHcg90Y6rFbIEsBZGOl1Oo+hFM8whLCtVc0tmc HbQHQXYWST0J1YLp3AeVvRCOykb49KHMWUIjjlprPqDtYiBx3CQnAAADwGNlqDcWN6UOag +n9ic90i84m5r3uRzLjaSqWfuuGLfdz9TYTvsxqNcBuAEUXjv3oIfUtHByvHKDxCw7qnXo /jfGZQ3jdx/WEBUuX8UZeB+Acqn8LyTvkyVdknjlptqzvi85FFLM1zOgIYYHrcEruO6iuS 0cKhfR8Ga82tjp3HJZtAOsSHC5+/XD/tzAWrAXR8+WSc3Kh0A1fHo/SSihOX96Srn216PU MvckuhN72Et5KfDeDQo+AVIqn6ZLOM0bqRuw8rOIAfKTNFfKRbC0HORoQP52qV21UMDvcH 9mln63zo48sS5kGnIa4zWe1jq0gKU3vJlNxsTEOkpTFJR1tjeGPT9dEPoQa/uFf7itDPaB 7fF9kDAb1qWzJnx6Jyc1xhu1HSLMSE4JpgtU5C5NGu9yCr/5inx2ZDZ1c0DMvk+iOwb6st /JmO/STe84Dwi8v9qPSSgBdppbQj1bGlPWDR4kp0dKnaAlxa/dU2o12KzW15fd4UkgTGoU IrrNVNSHKz08djr+yHCkYG5ewjz4loxkr89YN1LwSftFMerrNZ3ZX7EIMAo3RI2K5ppvaR 0HTQjafEx5kuAvkcglhVA/ccl9n3EcYfhO0SOLxWpGXbjEKc0r3PClp18V6UZy8lS0XgOl KRWVcEI2mWxRrJatHMQWAzeA3brc4vQY7ZlCJUD4Rs4aFzN4Pk4JRcfjBbP3k2T73AkBOs wYX1hBDHRTjudOQLLeWBvwVtNSRc5Jx1dG1IBpwOEwjcAXNsKSYFIM6TXp/nCm68P2L0zs 55Or9WfWOFfIUGc5KwhDKdvoRicx+g41/Yx+rZ/1XeKlFJA5k5xOChONzSeli4iTo/Eh7n viXcnE34HYEIV7L/vhyNW0KhO8pIkrGyhmf4b2gQvwsI08Zw9ZB2CnVL1QtHcIWEv2J48P SBrEUssPaA68RJl1pb8BCk4TiM/P4dKYyCt1kHdTgxjEJi7//t3RhaDBuAr75RWX9v9OXQ O+fitWXd9vD+0IAwW+qmpP6/oLytj6+Np2zNxHqvtFUWKYfSATYT+UDuWam8bQnRiQIZCz GHNqeHdI0K3l7wxO5iMI1bgdTRG06Hlan8MktwRCY9ablGQjyy0CMGvhv44iYiqpeE4a/y s1pfkCosMeEQZBz87qwas+1hql45TNvUtcLPX/Aeld1xcHAGP+OkQ+XK0xrzn/0wNcGiVJ 2syFtDN2Oy7gHDSghCKAl34szAXnIf73B4uVkSSmnHODxwjWBgrPKLIZAcKE/fgSjaize+ 43jHIAyw== -----END OPENSSH PRIVATE KEY----- " set public-key "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDhqo5cA0haciAc3llrszUzyP6j/sqpzE9DEo2dScrEpRUxFuPSlLl1JmA62s3nRgKoRy/ebU6uPqd+8WefVT/YhqzjJ8jsjIokwdmTh41xilNwVHR50FIDzTbEkWMeqL3qwEvKqwrArnokGHIfWzgJ7TeyYUFnhYbEEUi6kjiBjZVEyiH2CagH3QeTOkYN+ZEOpn3GTWB5ilDmn2RSUtXhZ2mRS6Cvy2CtXtdfTDGRlCt1v9YGCNxHXXCtCIDHcg90Y6rFbIEsBZGOl1Oo+hFM8whLCtVc0tmcHbQHQXYWST0J1YLp3AeVvRCOykb49KHMWUIjjlprPqDtYiBx3CQn" set source built-in next end config firewall ssh setting set caname "Fortinet_SSH_CA" set untrusted-caname "Fortinet_SSH_CA_Untrusted" set hostkey-rsa2048 "Fortinet_SSH_RSA2048" set hostkey-dsa1024 "Fortinet_SSH_DSA1024" set hostkey-ecdsa256 "Fortinet_SSH_ECDSA256" set hostkey-ecdsa384 "Fortinet_SSH_ECDSA384" set hostkey-ecdsa521 "Fortinet_SSH_ECDSA521" set hostkey-ed25519 "Fortinet_SSH_ED25519" end config switch-controller security-policy 802-1X edit "802-1X-policy-default" set user-group "SSO_Guest_Users" set mac-auth-bypass disable set eap-passthru enable set guest-vlan disable set auth-fail-vlan disable set radius-timeout-overwrite disable next end config switch-controller lldp-profile edit "default" set med-tlvs inventory-management network-policy set auto-isl disable config med-network-policy edit "voice" next edit "voice-signaling" next edit "guest-voice" next edit "guest-voice-signaling" next edit "softphone-voice" next edit "video-conferencing" next edit "streaming-video" next edit "video-signaling" next end next edit "default-auto-isl" next end config switch-controller qos dot1p-map edit "voice-dot1p" set priority-0 queue-4 set priority-1 queue-4 set priority-2 queue-3 set priority-3 queue-2 set priority-4 queue-3 set priority-5 queue-1 set priority-6 queue-2 set priority-7 queue-2 next end config switch-controller qos ip-dscp-map edit "voice-dscp" config map edit "1" set cos-queue 1 set value 46 next edit "2" set cos-queue 2 set value 24,26,48,56 next edit "5" set cos-queue 3 set value 34 next end next end config switch-controller qos queue-policy edit "default" set schedule round-robin config cos-queue edit "queue-0" next edit "queue-1" next edit "queue-2" next edit "queue-3" next edit "queue-4" next edit "queue-5" next edit "queue-6" next edit "queue-7" next end next edit "voice-egress" set schedule weighted config cos-queue edit "queue-0" next edit "queue-1" set weight 0 next edit "queue-2" set weight 6 next edit "queue-3" set weight 37 next edit "queue-4" set weight 12 next edit "queue-5" next edit "queue-6" next edit "queue-7" next end next end config switch-controller qos qos-policy edit "default" next edit "voice-qos" set trust-dot1p-map "voice-dot1p" set trust-ip-dscp-map "voice-dscp" set queue-policy "voice-egress" next end config switch-controller switch-profile edit "default" next end config endpoint-control profile edit "default" config forticlient-winmac-settings set forticlient-log-upload disable end config forticlient-android-settings end config forticlient-ios-settings end next end config wireless-controller wids-profile edit "default" set comment "Default WIDS profile." set ap-scan enable set wireless-bridge enable set deauth-broadcast enable set null-ssid-probe-resp enable set long-duration-attack enable set invalid-mac-oui enable set weak-wep-iv enable set auth-frame-flood enable set assoc-frame-flood enable set spoofed-deauth enable set asleap-attack enable set eapol-start-flood enable set eapol-logoff-flood enable set eapol-succ-flood enable set eapol-fail-flood enable set eapol-pre-succ-flood enable set eapol-pre-fail-flood enable next edit "default-wids-apscan-enabled" set ap-scan enable next end config wireless-controller wtp-profile edit "FAPU323EV-default" config platform set type U323EV end set ap-country US config radio-1 set band 802.11n end config radio-2 set band 802.11ac end next edit "FAPU321EV-default" config platform set type U321EV end set ap-country US config radio-1 set band 802.11n end config radio-2 set band 802.11ac end next edit "FAPU24JEV-default" config platform set type U24JEV end set ap-country US config radio-1 set band 802.11n end config radio-2 set band 802.11ac end next edit "FAPU223EV-default" config platform set type U223EV end set ap-country US config radio-1 set band 802.11n end config radio-2 set band 802.11ac end next edit "FAPU221EV-default" config platform set type U221EV end set ap-country US config radio-1 set band 802.11n end config radio-2 set band 802.11ac end next edit "FAPU423E-default" config platform set type U423E end set ap-country US config radio-1 set band 802.11n end config radio-2 set band 802.11ac end next edit "FAPU422EV-default" config platform set type U422EV end set ap-country US config radio-1 set band 802.11n end config radio-2 set band 802.11ac end next edit "FAPU421E-default" config platform set type U421E end set ap-country US config radio-1 set band 802.11n end config radio-2 set band 802.11ac end next edit "FAPS223E-default" config platform set type S223E end set ap-country US config radio-1 set band 802.11n,g-only end config radio-2 set band 802.11ac end next edit "FAPS221E-default" config platform set type S221E end set ap-country US config radio-1 set band 802.11n,g-only end config radio-2 set band 802.11ac end next edit "FAP224E-default" config platform set type 224E end set ap-country US config radio-1 set band 802.11n,g-only end config radio-2 set band 802.11ac end next edit "FAP223E-default" config platform set type 223E end set ap-country US config radio-1 set band 802.11n,g-only end config radio-2 set band 802.11ac end next edit "FAP222E-default" config platform set type 222E end set ap-country US config radio-1 set band 802.11n,g-only end config radio-2 set band 802.11ac end next edit "FAP221E-default" config platform set type 221E end set ap-country US config radio-1 set band 802.11n,g-only end config radio-2 set band 802.11ac end next edit "FAP423E-default" config platform set type 423E end set ap-country US config radio-1 set band 802.11n end config radio-2 set band 802.11ac end next edit "FAP421E-default" config platform set type 421E end set ap-country US config radio-1 set band 802.11n end config radio-2 set band 802.11ac end next edit "FAPS423E-default" config platform set type S423E end set ap-country US config radio-1 set band 802.11n end config radio-2 set band 802.11ac end next edit "FAPS422E-default" config platform set type S422E end set ap-country US config radio-1 set band 802.11n end config radio-2 set band 802.11ac end next edit "FAPS421E-default" config platform set type S421E end set ap-country US config radio-1 set band 802.11n end config radio-2 set band 802.11ac end next edit "FAPS323CR-default" config platform set type S323CR end set ap-country US config radio-1 set band 802.11n end config radio-2 set band 802.11ac end next edit "FAPS322CR-default" config platform set type S322CR end set ap-country US config radio-1 set band 802.11n end config radio-2 set band 802.11ac end next edit "FAPS321CR-default" config platform set type S321CR end set ap-country US config radio-1 set band 802.11n end config radio-2 set band 802.11ac end next edit "FAPS313C-default" config platform set type S313C end set ap-country US config radio-1 set band 802.11ac end next edit "FAPS311C-default" config platform set type S311C end set ap-country US config radio-1 set band 802.11ac end next edit "FAPS323C-default" config platform set type S323C end set ap-country US config radio-1 set band 802.11n end config radio-2 set band 802.11ac end next edit "FAPS322C-default" config platform set type S322C end set ap-country US config radio-1 set band 802.11n end config radio-2 set band 802.11ac end next edit "FAPS321C-default" config platform set type S321C end set ap-country US config radio-1 set band 802.11n end config radio-2 set band 802.11ac end next edit "FAP321C-default" config platform set type 321C end set ap-country US config radio-1 set band 802.11n set vap-all disable end config radio-2 set band 802.11ac set vap-all disable end next edit "FAP223C-default" config platform set type 223C end set ap-country US config radio-1 set band 802.11n set vap-all disable end config radio-2 set band 802.11ac set vap-all disable end next edit "FAP112D-default" config platform set type 112D end set ap-country US config radio-1 set band 802.11n set vap-all disable end next edit "FAP24D-default" config platform set type 24D end set ap-country US config radio-1 set band 802.11n set vap-all disable end next edit "FAP21D-default" config platform set type 21D end set ap-country US config radio-1 set band 802.11n set vap-all disable end next edit "FK214B-default" config platform set type 214B end set ap-country US config radio-1 set band 802.11n set vap-all disable end next edit "FAP224D-default" config platform set type 224D end set ap-country US config radio-1 set band 802.11n-5G set vap-all disable end config radio-2 set band 802.11n set vap-all disable end next edit "FAP222C-default" config platform set type 222C end set ap-country US config radio-1 set band 802.11n set vap-all disable end config radio-2 set band 802.11ac set vap-all disable end next edit "FAP25D-default" config platform set type 25D end set ap-country US config radio-1 set band 802.11n set vap-all disable end next edit "FAP221C-default" config platform set type 221C end set ap-country US config radio-1 set band 802.11n set vap-all disable end config radio-2 set band 802.11ac set vap-all disable end next edit "FAP320C-default" config platform set type 320C end set ap-country US config radio-1 set band 802.11n set vap-all disable end config radio-2 set band 802.11ac set vap-all disable end next edit "FAP28C-default" config platform set type 28C end set ap-country US config radio-1 set band 802.11n set vap-all disable end next edit "FAP223B-default" config platform set type 223B end set ap-country US config radio-1 set band 802.11n-5G set vap-all disable end config radio-2 set band 802.11n set vap-all disable end next edit "FAP14C-default" config platform set type 14C end set ap-country US config radio-1 set band 802.11n set vap-all disable end next edit "FAP11C-default" config platform set type 11C end set ap-country US config radio-1 set band 802.11n set vap-all disable end next edit "FAP320B-default" config platform set type 320B end set ap-country US config radio-1 set band 802.11n-5G set vap-all disable end config radio-2 set band 802.11n set vap-all disable end next edit "FAP112B-default" config platform set type 112B end set ap-country US config radio-1 set band 802.11n set vap-all disable end next edit "FAP222B-default" config platform set type 222B end set ap-country US config radio-1 set band 802.11n set vap-all disable end config radio-2 set band 802.11n-5G set vap-all disable end next edit "FAP210B-default" config platform set type 210B end set ap-country US config radio-1 set band 802.11n set vap-all disable end next edit "FAP220B-default" set ap-country US config radio-1 set band 802.11n-5G set vap-all disable end config radio-2 set band 802.11n set vap-all disable end next edit "AP-11N-default" config platform set type AP-11N end set ap-country US config radio-1 set band 802.11n end next end config wireless-controller utm-profile edit "wifi-default" set comment "Default configuration for offloading WiFi traffic." set ips-sensor "wifi-default" set application-list "wifi-default" set antivirus-profile "wifi-default" set webfilter-profile "wifi-default" next end config log memory setting set status enable end config log eventfilter set router disable set wireless-activity disable end config log null-device setting set status disable end config router rip config redistribute "connected" end config redistribute "static" end config redistribute "ospf" end config redistribute "bgp" end config redistribute "isis" end end config router ripng config redistribute "connected" end config redistribute "static" end config redistribute "ospf" end config redistribute "bgp" end config redistribute "isis" end end config router static edit 2 set gateway 190.111.31.62 set device "wan1" next edit 3 set device "Macen-to-Poly" set comment "VPN: Macen-to-Poly (Created by VPN wizard)" set dstaddr "Macen-to-Poly_remote" next edit 4 set distance 254 set comment "VPN: Macen-to-Poly (Created by VPN wizard)" set blackhole enable set dstaddr "Macen-to-Poly_remote" next edit 5 set distance 1 set device "_OCVPN0-1" set comment "Generated by OCVPN Cloud Service." set dstaddr "_OCVPN0-1_remote_networks" next edit 6 set distance 254 set comment "Generated by OCVPN Cloud Service." set blackhole enable set dstaddr "_OCVPN0-1_remote_networks" next edit 7 set device "mgmt" next edit 8 set dst 10.0.0.0 255.255.255.0 set device "IFX - VPN" set comment "IFX SR" next edit 9 set device "MACEN-ESTELI" set comment "VPN: MACEN-ESTELI (Created by VPN wizard)" set dstaddr "MACEN-ESTELI_remote" next edit 10 set distance 254 set comment "VPN: MACEN-ESTELI (Created by VPN wizard)" set blackhole enable set dstaddr "MACEN-ESTELI_remote" next end config router ospf config redistribute "connected" end config redistribute "static" end config redistribute "rip" end config redistribute "bgp" end config redistribute "isis" end end config router ospf6 config redistribute "connected" end config redistribute "static" end config redistribute "rip" end config redistribute "bgp" end config redistribute "isis" end end config router bgp config redistribute "connected" end config redistribute "rip" end config redistribute "ospf" end config redistribute "static" end config redistribute "isis" end config redistribute6 "connected" end config redistribute6 "rip" end config redistribute6 "ospf" end config redistribute6 "static" end config redistribute6 "isis" end end config router isis config redistribute "connected" end config redistribute "rip" end config redistribute "ospf" end config redistribute "bgp" end config redistribute "static" end config redistribute6 "connected" end config redistribute6 "rip" end config redistribute6 "ospf" end config redistribute6 "bgp" end config redistribute6 "static" end end config router multicast end