ssg5-serial-> get config
Total Config size 5116:
set clock timezone 0
set vrouter trust-vr sharable
set vrouter "untrust-vr"
exit
set vrouter "trust-vr"
unset auto-route-export
exit
set service "RDP" protocol tcp src-port 0-65535 dst-port 3389-3389
set service "PPTP1" protocol tcp src-port 0-65535 dst-port 1723-1723
set service "GRE1" protocol tcp src-port 0-65535 dst-port 47-47
set alg appleichat enable
unset alg appleichat re-assembly enable
set alg sctp enable
set auth-server "Local" id 0
set auth-server "Local" server-name "Local"
set auth default auth server "Local"
set auth radius accounting port 1646
set admin name "admin"
set admin password "nKTxK/rvOzHJcMgLDsnOvmPtf8Gjvn"
set admin http redirect
set admin auth web timeout 10
set admin auth dial-in timeout 3
set admin auth server "Local"
set admin format dos
set zone "Trust" vrouter "trust-vr"
set zone "Untrust" vrouter "trust-vr"
set zone "DMZ" vrouter "trust-vr"
set zone "VLAN" vrouter "trust-vr"
set zone "Untrust-Tun" vrouter "trust-vr"
set zone "Trust" tcp-rst
set zone "Untrust" block
unset zone "Untrust" tcp-rst
set zone "MGT" block
set zone "DMZ" tcp-rst
set zone "VLAN" block
unset zone "VLAN" tcp-rst
set zone "Untrust" screen tear-drop
set zone "Untrust" screen syn-flood
set zone "Untrust" screen ping-death
set zone "Untrust" screen ip-filter-src
set zone "Untrust" screen land
set zone "V1-Untrust" screen tear-drop
set zone "V1-Untrust" screen syn-flood
set zone "V1-Untrust" screen ping-death
set zone "V1-Untrust" screen ip-filter-src
set zone "V1-Untrust" screen land
set interface "ethernet0/0" zone "Untrust"
set interface "ethernet0/1" zone "DMZ"
set interface "bgroup0" zone "Trust"
set interface bgroup0 port ethernet0/2
set interface bgroup0 port ethernet0/3
set interface bgroup0 port ethernet0/4
set interface bgroup0 port ethernet0/5
set interface bgroup0 port ethernet0/6
unset interface vlan1 ip
set interface ethernet0/0 ip 173.209.128.222/30
set interface ethernet0/0 route
set interface ethernet0/1 ip 10.16.28.1/24
set interface ethernet0/1 nat
set interface bgroup0 ip 172.16.28.1/24
set interface bgroup0 nat
unset interface vlan1 bypass-others-ipsec
unset interface vlan1 bypass-non-ip
set interface ethernet0/0 ip manageable
set interface ethernet0/1 ip manageable
set interface bgroup0 ip manageable
set interface ethernet0/0 manage ssh
set interface ethernet0/0 manage telnet
set interface ethernet0/0 manage ssl
set interface ethernet0/0 manage web
set interface ethernet0/1 manage web
set interface bgroup0 manage mtrace
set interface bgroup0 monitor track-ip ip
unset interface bgroup0 monitor track-ip dynamic
set interface ethernet0/1 monitor track-ip ip
unset interface ethernet0/1 monitor track-ip dynamic
set interface ethernet0/0 vip interface-ip 3389 "RDP" 10.16.28.5
set interface ethernet0/0 vip interface-ip 1723 "PPTP1" 172.16.28.5
set interface ethernet0/0 vip interface-ip 47 "GRE1" 172.16.28.5
set interface "serial0/0" modem settings "USR" init "AT&F"
set interface "serial0/0" modem settings "USR" active
set interface "serial0/0" modem speed 115200
set interface "serial0/0" modem retry 3
set interface "serial0/0" modem interval 10
set interface "serial0/0" modem idle-time 10
set flow tcp-mss
unset flow tcp-syn-check
unset flow tcp-syn-bit-check
set flow reverse-route clear-text prefer
set flow reverse-route tunnel always
set pki authority default scep mode "auto"
set pki x509 default cert-path partial
set dns host dns1 24.153.23.114 src-interface ethernet0/0
set dns host dns2 24.153.23.66 src-interface ethernet0/0
set dns host dns3 0.0.0.0
set dns host schedule 06:28
set ike respond-bad-spi 1
set ike ikev2 ike-sa-soft-lifetime 60
unset ike ikeid-enumeration
unset ike dos-protection
unset ipsec access-session enable
set ipsec access-session maximum 5000
set ipsec access-session upper-threshold 0
set ipsec access-session lower-threshold 0
set ipsec access-session dead-p2-sa-timeout 0
unset ipsec access-session log-error
unset ipsec access-session info-exch-connected
unset ipsec access-session use-error-log
set vrouter "untrust-vr"
exit
set vrouter "trust-vr"
exit
set url protocol websense
exit
set policy id 1 from "Trust" to "Untrust"  "Any" "Any" "ANY" permit log
set policy id 1
exit
set policy id 2 name "DMZ Out" from "DMZ" to "Untrust"  "Any" "Any" "ANY" permit
 log
set policy id 2
exit
set policy id 3 name "DMZ Full Acess" from "Trust" to "DMZ"  "Any" "Any" "ANY" p
ermit log
set policy id 3
exit
set policy id 4 name "PPTP" from "Untrust" to "Trust"  "Any" "VIP(ethernet0/0)"
"GRE1" permit log
set policy id 4
set service "PPTP1"
set service "RDP"
exit
set nsmgmt bulkcli reboot-timeout 60
set ssh version v2
set config lock timeout 5
unset license-key auto-update
set ssl port 4443
set snmp port listen 161
set snmp port trap 162
set vrouter "untrust-vr"
exit
set vrouter "trust-vr"
unset add-default-route
set route 0.0.0.0/0 interface ethernet0/0 gateway 173.209.128.221 permanent
exit
set vrouter "untrust-vr"
exit
set vrouter "trust-vr"
exit
ssg5-serial->