set clock timezone 2
set vrouter trust-vr sharable
set vrouter "untrust-vr"
exit
set vrouter "trust-vr"
unset auto-route-export
exit
set auth-server "Local" id 0
set auth-server "Local" server-name "Local"
set auth default auth server "Local"
set auth radius accounting port 1646
set admin name "BUG's_BUNNY"
set admin password "What's up doc ?"
set admin auth timeout 10
set admin auth server "Local"
set admin format dos
set zone "Trust" vrouter "trust-vr"
set zone "Untrust" vrouter "trust-vr"
set zone "DMZ" vrouter "trust-vr"
set zone "VLAN" vrouter "trust-vr"
set zone "Untrust-Tun" vrouter "trust-vr"
set zone "Trust" tcp-rst 
set zone "Untrust" block 
unset zone "Untrust" tcp-rst 
set zone "DMZ" tcp-rst 
set zone "VLAN" block 
unset zone "VLAN" tcp-rst 
set zone "Untrust" screen tear-drop
set zone "Untrust" screen syn-flood
set zone "Untrust" screen ping-death
set zone "Untrust" screen ip-filter-src
set zone "Untrust" screen land
set zone "V1-Untrust" screen tear-drop
set zone "V1-Untrust" screen syn-flood
set zone "V1-Untrust" screen ping-death
set zone "V1-Untrust" screen ip-filter-src
set zone "V1-Untrust" screen land
set interface "ethernet0/0" zone "Untrust"
set interface "ethernet0/1" zone "DMZ"
set interface "bgroup0" zone "Trust"
set interface bgroup0 port ethernet0/2
set interface bgroup0 port ethernet0/3
set interface bgroup0 port ethernet0/4
set interface bgroup0 port ethernet0/5
set interface bgroup0 port ethernet0/6
unset interface vlan1 ip
set interface ethernet0/0 ip A.D.S.L/24
set interface ethernet0/0 route
set interface ethernet0/1 ip Gateway.D.M.Z/24
set interface ethernet0/1 nat
set interface bgroup0 ip Gateway.T.S.T/24
set interface bgroup0 nat
unset interface vlan1 bypass-others-ipsec
unset interface vlan1 bypass-non-ip
set interface ethernet0/0 ip manageable
set interface ethernet0/1 ip manageable
set interface bgroup0 ip manageable
set interface bgroup0 manage mtrace
set interface ethernet0/0 dhcp client enable
set interface ethernet0/1 dhcp server service
set interface bgroup0 dhcp server service
set interface ethernet0/1 dhcp server auto
set interface bgroup0 dhcp server auto
set interface ethernet0/1 dhcp server option dns1 ADSL.D.N.S1 
set interface ethernet0/1 dhcp server option dns2 ADSL.D.N.S2 
set interface bgroup0 dhcp server option dns1 ADSL.D.N.S1 
set interface bgroup0 dhcp server option dns2 ADSL.D.N.S2 
set interface ethernet0/1 dhcp server ip BLOG.S.T.C mac deadbeef0001 
set interface bgroup0 dhcp server ip Trust.S.T.R to Trust.E.N.D 
set interface bgroup0 dhcp server ip WPA.S.T.C mac deadbeef0002 
unset interface ethernet0/1 dhcp server config next-server-ip
unset interface bgroup0 dhcp server config next-server-ip
set interface "serial0/0" modem settings "USR" init "AT&F"
set interface "serial0/0" modem settings "USR" active
set interface "serial0/0" modem speed 115200
set interface "serial0/0" modem retry 3
set interface "serial0/0" modem interval 10
set interface "serial0/0" modem idle-time 10
set flow tcp-mss
unset flow tcp-syn-check
set pki authority default scep mode "auto"
set pki x509 default cert-path partial
set address "DMZ" "BLOG-SERVER" BLOG.S.T.C 255.255.255.0 "Blog Server Static address"
set ike respond-bad-spi 1
unset ike ikeid-enumeration
unset ipsec access-session enable
set ipsec access-session maximum 5000
set ipsec access-session upper-threshold 0
set ipsec access-session lower-threshold 0
set ipsec access-session dead-p2-sa-timeout 0
unset ipsec access-session log-error
unset ipsec access-session info-exch-connected
unset ipsec access-session use-error-log
set url protocol websense
exit
set policy id 3 from "DMZ" to "Untrust"  "BLOG-SERVER" "Any" "ANY" permit 
set policy id 3
exit
set policy id 2 name "TRUST-BLOG" from "Trust" to "DMZ"  "Any" "BLOG-SERVER" "ANY" permit 
set policy id 2
exit
set policy id 1 from "Trust" to "Untrust"  "Any" "Any" "ANY" permit 
set policy id 1
exit
set monitor cpu 100
set global-pro policy-manager primary outgoing-interface ethernet0/0
set global-pro policy-manager secondary outgoing-interface ethernet0/0
set nsmgmt bulkcli reboot-timeout 60
set ssh version v2
set config lock timeout 5
set snmp port listen 161
set snmp port trap 162
set vrouter "untrust-vr"
exit
set vrouter "trust-vr"
unset add-default-route
exit
set vrouter "untrust-vr"
exit
set vrouter "trust-vr"
exit