! saved at 2023-04-28 06:27:38 ! model: USG60W ! firmware version: 4.65(AAKZ.1) ! hardware-watchdog-timer start ! software-watchdog-timer 60 ! interface-name ge1 wan1 interface-name ge2 wan2 interface-name ge3 lan1 interface-name ge4 lan2 interface-name ge5 dmz interface-name ge6 guest ! username admin encrypted-password $5$C9wKy1A5$mOTI7WoI$xRl1ldOt0YObelheeiAqaoCUDZUFBZKbmo9exIVMAu46WUFvb18WmiWA76m3xTOmjcZJD8O4pPh8hrnhDu5cF8lSUwwuAFuraybqiSNEeA+NwCNnETD7ej0r1C7cj/+NbZHpldOEf66T68B3/zMHuL3SL08wXk8YnLYI0ejAy/GvAuVsLoSY1AM8IT+cRSucs9MfZ0qOta7H2YCcHUs+yl3Xhp8uKIX8ofGSzDHuLRIBoEwNzJcZdeuSC0TVutyEtB5IFNe5f0yDOFpRYeHYURDBtnu9FOVd+MntdUj2stn+SX5Th7I8Fszby/EeCZs7+oz+vyKmo++rVdkjJPqJNtNruLwgkDsppfvthZIlbNc$ user-type admin ! port-grouping lan1 port 3 ! port-grouping guest port 6 ! port-grouping lan2 port 4 ! port-grouping dmz port 5 ! account pppoe WAN1_PPPoE_ACCOUNT ! account pppoe WAN2_PPPoE_ACCOUNT ! account pppoe MuneTakaFixedIP user 76484792@ip.hinet.net encrypted-password $4$N7EkfQgs$ABiuJzBnbPDEl3Q21XhSSzS0a4VLRji8bSdDf7T85fuWx9HZ7jmHHrriekL8G3O5ksk9DLGUMd+ZjHh9iiISselRqySjdfYI1I5dKMgEkRk$ authentication chap-pap service-name 122.117.24.12 compression yes idle 0 ! account pppoe MuneTakaFloatingIP user 76484792@hinet.net encrypted-password $4$Z4mwxLzT$W8/wrHXJlaKVjP5z7NwZjGKXacZVIWgj90daZOYR406y1V8xeLZOvtuWVuLjGUVigS0nDQ0LQrto4n0iD1DXaVIrbiuX2j/GMcSuA/FKB3k$ authentication chap-pap service-name MuneTakaFloatingIP compression yes idle 0 ! ezmode deactivate ! ezmode config-interface pppoe ! ezmode config-wifi MuneTakaWifi ! ezmode config-guest-wifi GuestMuneTakaWiFi ! ezmode config-vpn EZMODE_VPN_STATIC ! ip dhcp pool LAN1_POOL network 192.168.48.0 255.255.255.0 default-router 192.168.48.254 first-dns-server ZyWALL starting-address 192.168.48.1 pool-size 126 lease 2 0 0 ! ip dhcp pool LAN2_POOL network 192.168.49.0 255.255.255.0 default-router 192.168.49.254 first-dns-server ZyWALL starting-address 192.168.49.1 pool-size 126 lease 2 0 0 ! ip dhcp pool DMZ_POOL network 192.168.62.0 255.255.255.0 default-router 192.168.62.254 first-dns-server ZyWALL starting-address 192.168.62.1 pool-size 126 lease 2 0 0 ! ip dhcp pool GUEST_POOL network 192.168.63.0 255.255.255.0 default-router 192.168.63.254 first-dns-server ZyWALL starting-address 192.168.63.1 pool-size 126 lease 2 0 0 ! ip dhcp pool Static_LAN1_C82A14148FCD host 192.168.48.128 hardware-address C8:2A:14:14:8F:CD description AlexImacOSx ! ip dhcp pool Static_GUEST_2C1F23570B61 host 192.168.63.128 hardware-address 2C:1F:23:57:0B:61 description AlexIPad ! ip dhcp pool Static_GUEST_F4F15AE8162A host 192.168.63.129 hardware-address F4:F1:5A:E8:16:2A description AlexIPhone4S ! ip dhcp pool Static_DMZ_001132467045 host 192.168.62.251 hardware-address 00:11:32:46:70:45 description MunetakaNas ! ip dhcp pool Static_DMZ_001132463CAE host 192.168.62.250 hardware-address 00:11:32:46:3C:AE description MuneTakaNasETh01 ! ip dhcp pool Static_DMZ_001132463CAF host 192.168.62.249 hardware-address 00:11:32:46:3C:AF description MuneTakaNasET02 ! ip dhcp pool Static_DMZ_001132463CB0 host 192.168.62.248 hardware-address 00:11:32:46:3C:B0 description MuneTakaNasETh03 ! ip dhcp pool Static_LAN2_001E06358874 host 192.168.49.128 hardware-address 00:1E:06:35:88:74 description arch64GeMMc ! ip dhcp pool Static_LAN2_001E0633B02D host 192.168.49.129 hardware-address 00:1E:06:33:B0:2D description arch128GeMMc ! ip dhcp pool Static_LAN1_F099BF052C47 host 192.168.48.130 hardware-address F0:99:BF:05:2C:47 description AirportExtremeBaseStation ! ip dhcp pool Static_LAN1_00E04C36064F host 192.168.48.131 hardware-address 00:E0:4C:36:06:4F description surfacePro ! ip dhcp pool Static_LAN1_001E06490B4C host 192.168.48.132 hardware-address 00:1E:06:49:0B:4C description hc4Sway ! ip dhcp pool Static_LAN1_001E064900C5 host 192.168.48.136 hardware-address 00:1E:06:49:00:C5 description hc4Jammy ! ip dhcp pool Static_LAN1_001E0642A7E1 host 192.168.48.134 hardware-address 00:1E:06:42:A7:E1 description n2ArchOdrid ! ip dhcp pool Static_LAN1_001E06490714 host 192.168.48.143 hardware-address 00:1E:06:49:07:14 description hc4nas01 ! ip dhcp pool Static_LAN1_001E06491540 host 192.168.48.243 hardware-address 00:1E:06:49:15:40 description hc4Mnjaro-01 ! ip dhcp pool Static_LAN1_001E0642A63E host 192.168.48.145 hardware-address 00:1E:06:42:A6:3E description n2WayfireMnJaro ! ip dhcp pool Static_LAN1_B827EB371276 host 192.168.48.249 hardware-address B8:27:EB:37:12:76 description pi2Ngx01 ! ip dhcp pool Static_LAN1_4C20B8ED21E1 host 192.168.48.133 hardware-address 4C:20:B8:ED:21:E1 description MiniMac-M1 ! ip dhcp pool Static_LAN1_001132467045 host 192.168.48.251 hardware-address 00:11:32:46:70:45 description MuneTakaNas ! ip dhcp pool Static_LAN1_001E0642EF97 host 192.168.48.245 hardware-address 00:1E:06:42:EF:97 description N2+MnJaro ! interface wan1 ip address 0.0.0.0 0.0.0.0 type external ! interface wan2 ip address dhcp type external ! interface lan1 ip address 192.168.48.254 255.255.255.0 ip dhcp-pool LAN1_POOL type internal description 192_168_48_0/24 upstream 1048576 downstream 1048576 mtu 1500 ip dhcp-pool Static_LAN1_C82A14148FCD ip dhcp-pool Static_LAN1_F099BF052C47 ip dhcp-pool Static_LAN1_00E04C36064F ip dhcp-pool Static_LAN1_001E06490B4C ip dhcp-pool Static_LAN1_001E064900C5 ip dhcp-pool Static_LAN1_001E0642A7E1 ip dhcp-pool Static_LAN1_001E06490714 ip dhcp-pool Static_LAN1_001E06491540 ip dhcp-pool Static_LAN1_001E0642A63E ip dhcp-pool Static_LAN1_B827EB371276 ip dhcp-pool Static_LAN1_4C20B8ED21E1 ip dhcp-pool Static_LAN1_001132467045 ip dhcp-pool Static_LAN1_001E0642EF97 ! interface lan2 ip address 192.168.49.254 255.255.255.0 ip dhcp-pool LAN2_POOL type internal description 192_168_49_0/24 upstream 1048576 downstream 1048576 mtu 1500 ip dhcp-pool Static_LAN2_001E06358874 ip dhcp-pool Static_LAN2_001E0633B02D ! interface dmz ip address 192.168.62.254 255.255.255.0 ip dhcp-pool DMZ_POOL type internal description 192_168_62_0/24 upstream 1048576 downstream 1048576 mtu 1500 ip dhcp-pool Static_DMZ_001132467045 ip dhcp-pool Static_DMZ_001132463CAE ip dhcp-pool Static_DMZ_001132463CAF ip dhcp-pool Static_DMZ_001132463CB0 ! interface guest ip address 192.168.63.254 255.255.255.0 ip dhcp-pool GUEST_POOL type internal description 192_168_63_0/24 upstream 1048576 downstream 1048576 mtu 1500 ip dhcp-pool Static_GUEST_2C1F23570B61 ip dhcp-pool Static_GUEST_F4F15AE8162A ! interface wan1_ppp no shutdown account MuneTakaFixedIP bind wan1 connectivity nail-up description MuneTakaFixedIP metric 0 upstream 1048576 downstream 1048576 mtu 1492 ! interface wan2_ppp no shutdown account MuneTakaFloatingIP bind wan2 description MuneTakaFloatingIP connectivity nail-up metric 0 upstream 1048576 downstream 1048576 mtu 1492 ! address-object LAN1_SUBNET interface-subnet lan1 address-object LAN2_SUBNET interface-subnet lan2 address-object DMZ_SUBNET interface-subnet dmz address-object IP6to4-Relay 192.88.99.1 address-object MuneTakaFixedIP 122.117.12.14 address-object MuneTaToChingYenVPN_LOCAL 192.168.48.0/24 address-object MuneTaToChingYenVPN_REMOTE 192.168.11.0/24 address-object EZMODE_VPN_STATIC_LOCAL 192.168.48.0/24 address-object EZMODE_VPN_STATIC_REMOTE 192.168.11.0/24 address-object MuneTakaToYuShei_LOCAL 192.168.48.0/24 address-object MuneTakaToYuShei_REMOTE 192.168.2.0/24 address-object Lan1USG60W 192.168.48.254 address-object MuneTakaNAS 192.168.62.251 address-object MuneTakaToYsHdq_LOCAL 192.168.48.0/24 address-object MuneTakaToYsHdq_REMOTE 192.168.1.0/24 address-object MuneTakaTo_YsShei_LOCAL 192.168.48.0/23 address-object MuneTakaTo_YsShei_REMOTE 192.168.2.0/24 address-object MuneTakaTo_ChingYen_LOCAL 192.168.48.0/23 address-object MuneTakaTo_ChingYen_REMOTE 192.168.11.0/24 address-object arch64GeMMc 192.168.49.128 address-object MuneTakaTo_WuShun_LOCAL 192.168.48.0/24 address-object MuneTakaTo_WuShun_REMOTE 192.168.32.0/24 address-object hc4Sway 192.168.48.132 address-object Mune_To_Ching_LOCAL 192.168.48.0/23 address-object Mune_To_Ching_REMOTE 192.168.11.0/24 address-object pi2Nginx 192.168.48.249 ! object-group address Wiz_HTTPS_Trusted_Host_GRP ! object-group address Wiz_HTTPS_Trusted_FQDN_GRP ! object-group address Wiz_SSLVPN_Trusted_GEOIP_GRP ! address-object RFC1918_1 10.0.0.0/8 ! address-object RFC1918_2 172.16.0.0/12 ! address-object RFC1918_3 192.168.0.0/16 ! address6-object LAN1_SUBNET_STATIC interface-subnet lan1 static address6-object LAN1_SUBNET_SLAAC interface-subnet lan1 slaac 1 address6-object LAN1_SUBNET_DHCPv6 interface-subnet lan1 dhcpv6 1 address6-object LAN2_SUBNET_STATIC interface-subnet lan2 static address6-object LAN2_SUBNET_SLAAC interface-subnet lan2 slaac 1 address6-object LAN2_SUBNET_DHCPv6 interface-subnet lan2 dhcpv6 1 address6-object DMZ_SUBNET_STATIC interface-subnet dmz static address6-object DMZ_SUBNET_SLAAC interface-subnet dmz slaac 1 address6-object DMZ_SUBNET_DHCPv6 interface-subnet dmz dhcpv6 1 ! service-object Any_UDP udp range 1 65535 service-object Any_TCP tcp range 1 65535 service-object AH protocol 51 service-object AIM tcp eq 5190 service-object NEW_ICQ tcp eq 5190 service-object AUTH tcp eq 113 service-object BGP tcp eq 179 service-object BOOTP_CLIENT udp eq 68 service-object BOOTP_SERVER udp eq 67 service-object CAPWAP-CONTROL udp eq 5246 service-object CAPWAP-DATA udp eq 5247 service-object CU_SEEME_TCP1 tcp eq 7648 service-object CU_SEEME_TCP2 tcp eq 24032 service-object CU_SEEME_UDP1 udp eq 7648 service-object CU_SEEME_UDP2 udp eq 24032 service-object DNS_TCP tcp eq 53 service-object DNS_UDP udp eq 53 service-object ESP protocol 50 service-object FINGER tcp eq 79 service-object FTP tcp range 20 21 service-object FTPS tcp eq 990 service-object GRE protocol 47 service-object H323 tcp eq 1720 service-object HTTP tcp eq 80 service-object HTTPS tcp eq 443 service-object ICQ udp eq 4000 service-object IKE udp eq 500 service-object IMAP4 tcp eq 143 service-object IMAP4S tcp eq 993 service-object IP6to4 protocol 41 service-object IRC_TCP tcp eq 6667 service-object IRC_UDP udp eq 6667 service-object MSN tcp eq 1863 service-object MULTICAST protocol 2 service-object NEWS tcp eq 144 service-object NetBIOS_TCP1 tcp range 137 139 service-object NetBIOS_TCP2 tcp eq 445 service-object NetBIOS_UDP1 udp range 137 139 service-object NetBIOS_UDP2 udp eq 445 service-object NFS udp eq 2049 service-object NNTP tcp eq 119 service-object NTP udp eq 123 service-object PING icmp echo service-object POP3 tcp eq 110 service-object POP3S tcp eq 995 service-object PPTP tcp eq 1723 service-object PPTP_TUNNEL protocol 47 service-object RCMD tcp eq 512 service-object RDP tcp eq 3389 service-object REAL-AUDIO tcp eq 7070 service-object REXEC tcp eq 514 service-object RLOGIN tcp eq 513 service-object ROADRUNNER_TCP tcp eq 1026 service-object ROADRUNNER_UDP udp eq 1026 service-object RTELNET tcp eq 107 service-object RTSP_TCP tcp eq 554 service-object RTSP_UDP udp eq 554 service-object SFTP tcp eq 115 service-object SMTP tcp eq 25 service-object SMTPS tcp eq 465 service-object SNMP_TCP tcp eq 161 service-object SNMP_UDP udp eq 161 service-object SNMP-TRAPS_TCP tcp eq 162 service-object SNMP-TRAPS_UDP udp eq 162 service-object SQL-NET tcp eq 1521 service-object SSDP udp eq 1900 service-object SSH_TCP tcp eq 22 service-object SSH_UDP udp eq 22 service-object STRMWORKS udp eq 1558 service-object SYSLOG udp eq 514 service-object TACACS udp eq 49 service-object TELNET tcp eq 23 service-object TFTP udp eq 69 service-object VDOLIVE tcp eq 7000 service-object VRRP protocol 112 service-object NATT udp eq 4500 service-object RIP udp eq 520 service-object OSPF protocol 89 service-object SIP udp eq 5060 service-object Kerberos-TCP tcp eq 88 service-object MS-RPC tcp eq 135 service-object LDAP-TCP tcp eq 389 service-object LPR tcp eq 515 service-object LDAPS-TCP tcp eq 636 service-object VNC5800 tcp eq 5800 service-object VNC5900 tcp eq 5900 service-object Kerberos-UDP udp eq 88 service-object LDAP-UDP udp eq 389 service-object LDAPS-UDP udp eq 636 service-object L2TP-UDP udp eq 1701 service-object RADIUS-AUTH udp eq 1812 service-object RADIUS-ACCT udp eq 1813 service-object BONJOUR udp eq 5353 service-object ICMPv6_PTB icmpv6 packet-toobig service-object ICMPv6_RS icmpv6 router-solicitation service-object ICMPv6_RA icmpv6 router-advertisement service-object ICMPv6_NS icmpv6 neighbor-solicitation service-object ICMPv6_NA icmpv6 neighbor-advertisement service-object ICMPv6_MLD_Query icmpv6 130 service-object ICMPv6_MLD_Report icmpv6 131 service-object ICMPv6_MLD_Done icmpv6 132 service-object ICMPv6_MLD_v2 icmpv6 143 service-object DHCPv6_CLIENT udp eq 546 service-object DHCPv6_SERVER udp eq 547 service-object SSO tcp eq 2158 service-object MuneTakaNasLogin tcp range 5000 5000 service-object MuneTakaJypyterLab tcp range 43000 43000 service-object MuneTakaSshPort tcp range 1765 1765 service-object MuneTakaUSG60WHTTPsPort tcp range 43001 43001 service-object MunetakToMyVocabulary tcp range 43300 43300 service-object Remote-Assistance_HTTPS tcp eq 4443 service-object USG_HTTPS tcp eq 4443 service-object SSH_1765 tcp eq 1765 service-object pi2_HTTP_8088 tcp eq 8088 service-object Remote-Assistance_SSH-TCP tcp eq 1766 service-object Remote-Assistance_SSH-UDP udp eq 1766 service-object Wiz_HTTPS tcp eq 4443 service-object Wiz_HTTP tcp eq 8080 service-object Wiz_SSLVPN tcp eq 4443 service-object HighPorts tcp range 43000 48500 service-object synoloyMailPorts tcp range 21680 21681 service-object synology-jupyterhub tcp range 42100 42999 service-object SMB_TCP_445 tcp range 445 445 service-object SMB_TCP_137_139 tcp range 137 139 ! object-group service CU-SEEME service-object CU_SEEME_TCP1 service-object CU_SEEME_TCP2 service-object CU_SEEME_UDP1 service-object CU_SEEME_UDP2 ! object-group service DNS service-object DNS_TCP service-object DNS_UDP ! object-group service IRC service-object IRC_TCP service-object IRC_UDP ! object-group service NetBIOS service-object NetBIOS_TCP1 service-object NetBIOS_TCP2 service-object NetBIOS_UDP1 service-object NetBIOS_UDP2 ! object-group service ROADRUNNER service-object ROADRUNNER_TCP service-object ROADRUNNER_UDP ! object-group service RTSP service-object RTSP_TCP service-object RTSP_UDP ! object-group service SNMP service-object SNMP_TCP service-object SNMP_UDP ! object-group service SNMP-TRAPS service-object SNMP-TRAPS_TCP service-object SNMP-TRAPS_UDP ! object-group service SSH service-object SSH_TCP service-object SSH_UDP ! object-group service Default_Allow_ICMPv6_Group description Default Allow icmpv6 to ZyWALL service-object ICMPv6_MLD_Done service-object ICMPv6_MLD_Query service-object ICMPv6_MLD_Report service-object ICMPv6_MLD_v2 service-object ICMPv6_NA service-object ICMPv6_NS service-object ICMPv6_RA service-object ICMPv6_RS service-object ICMPv6_PTB ! object-group service Default_Allow_WAN_To_ZyWALL description System Default Allow From WAN To ZyWALL service-object AH service-object ESP service-object IKE service-object NATT service-object GRE service-object VRRP service-object USG_HTTPS service-object pi2_HTTP_8088 service-object PING service-object HTTP service-object SSH_TCP ! object-group service Default_Allow_DMZ_To_ZyWALL description System Default Allow From DMZ To ZyWALL object-group DNS object-group NetBIOS service-object SSO ! object-group service Default_Allow_v6_WAN_To_ZyWALL service-object AH service-object ESP service-object IKE service-object VRRP service-object GRE description System Default Allow IPv6 Form WAN To ZyWALL ! object-group service Default_Allow_v6_DMZ_To_ZyWALL description System Default Allow IPv6 From DMZ to ZyWALL object-group DNS object-group NetBIOS ! object-group service DHCPv6 service-object DHCPv6_CLIENT service-object DHCPv6_SERVER ! object-group service Default_Allow_v6_any_to_ZyWALL description System Default Allow IPv6 From any To ZyWALL object-group Default_Allow_ICMPv6_Group ! object-group service Default_Allow_WLAN_To_ZyWALL description System Default Allow From WLAN To ZyWALL service-object BOOTP_SERVER service-object HTTP object-group DNS ! object-group service MuneTakaNas_Allowed_Srv description Allowed Service From Wan1_PPP To MuneTakaNas service-object FTPS service-object FTP service-object MuneTakaNasLogin service-object POP3 service-object POP3S service-object SMTP service-object IMAP4 service-object IMAP4S service-object SMTPS service-object synoloyMailPorts service-object synology-jupyterhub service-object SMB_TCP_445 service-object SMB_TCP_137_139 ! object-group service MuneTaToArch64GeMMC description Munetaka To Arch64GeMMc service-object MunetakToMyVocabulary ! object-group service pi2Nginx_secrvice_group description allowed service into pi2Nginx01 service-object SSH_1765 service-object HTTP service-object PING service-object HTTPS service-object HighPorts ! object-group service Wiz_HTTPS_GRP service-object Wiz_HTTPS ! object-group service Wiz_SSLVPN_GRP service-object Wiz_SSLVPN ! object-group service Wiz_WAN_To_Device_GRP object-group Wiz_HTTPS_GRP object-group Wiz_SSLVPN_GRP service-object Wiz_HTTP ! application-object Instant_messaging description Built-in App Object application 513 application 514 application 515 application 516 application 518 application 769 application 770 application 771 application 772 application 774 application 1025 application 1027 application 1028 application 1537 application 1539 application 1793 application 2049 application 2050 application 2051 application 2052 application 2305 application 2308 application 2561 application 3073 application 3329 application 3585 application 4609 application 4611 application 4612 application 5377 application 5633 application 6145 application 7425 application 8705 application 8961 application 9217 application 9473 application 10497 application 10753 application 11265 application 14849 application 15106 application 15873 application 17409 application 26881 application 26883 application 26886 application 27137 ! application-object P2P description Built-in App Object application 16777731 application 16777734 application 16778243 application 16778246 application 16778753 application 16778754 application 16779010 application 16779011 application 16779266 application 16779267 application 16779778 application 16780038 application 16780545 application 16780550 application 16780801 application 16780803 application 16780806 application 16781062 application 16781571 application 16781574 application 16781825 application 16781827 application 16781828 application 16781830 application 16782083 application 16782086 application 16782598 application 16784897 application 16786950 application 16787974 application 16788484 application 16788486 application 16788998 application 16789507 application 16789510 application 16790278 application 16790529 application 16790534 application 16791046 application 16793094 application 16793606 application 16794630 application 16795905 application 16795906 application 16795910 application 16796678 application 16798982 application 16799238 application 16801286 application 16802054 application 16802310 application 16802566 application 16802822 application 16805894 application 16815362 ! application-object File_Transfer description Built-in App Object application 50331905 application 50331906 application 50331907 application 50331910 application 50332163 application 50332931 application 50334465 application 50334467 application 50334470 application 50334721 application 50334723 application 50334726 application 50335233 application 50335235 application 50335238 application 50335494 application 50335745 application 50335750 application 50336513 application 50336515 application 50336518 application 50337030 application 50338305 application 50340102 application 50340353 application 50340355 application 50340356 application 50340358 application 50340865 application 50340867 application 50340870 application 50341121 application 50341123 application 50341126 application 50341638 application 50342401 application 50342403 application 50342406 application 50343169 application 50343171 application 50343174 application 50343681 application 50343686 application 50343937 application 50343942 application 50349057 application 50349059 application 50349062 application 50350086 application 50350337 application 50350339 application 50350342 application 50350849 application 50350854 application 50351105 application 50351110 application 50352385 application 50352390 application 50353153 application 50353158 application 50353409 application 50353414 application 50353665 application 50353667 application 50353670 application 50353921 application 50353923 application 50353926 application 50370049 application 50370817 application 50370822 ! application-object Streaming_Media description Built-in App Object application 67109124 application 67109377 application 67109379 application 67109380 application 67109382 application 67110401 application 67110403 application 67110404 application 67110406 application 67110657 application 67110659 application 67110660 application 67110662 application 67111425 application 67111427 application 67111428 application 67111430 application 67112193 application 67112195 application 67112196 application 67112198 application 67112961 application 67112964 application 67112966 application 67113729 application 67113732 application 67113734 application 67115009 application 67115012 application 67115014 application 67115777 application 67115780 application 67115782 application 67116292 application 67116294 application 67116548 application 67116550 application 67116801 application 67116804 application 67116806 application 67117062 application 67117825 application 67117828 application 67117830 application 67118854 application 67119110 application 67119361 application 67119364 application 67119366 application 67119878 application 67120641 application 67120643 application 67120644 application 67120646 application 67120897 application 67120900 application 67120902 application 67121153 application 67121155 application 67121156 application 67121158 application 67122177 application 67122180 application 67122182 application 67122433 application 67122436 application 67122438 application 67122689 application 67122691 application 67122692 application 67122694 application 67123201 application 67123206 application 67124228 application 67124230 application 67125508 application 67125764 application 67126020 application 67127558 application 67129348 application 67131908 application 67134721 application 67134724 application 67134726 application 67135238 application 67136001 application 67136006 application 67137027 application 67137028 application 67137030 application 67137540 application 67137542 application 67138308 application 67138820 application 67139076 application 67139331 application 67139588 application 67139844 application 67140100 application 67140356 application 67140609 application 67140612 application 67140614 application 67141377 application 67141382 application 67142145 application 67142147 application 67142148 application 67142150 application 67142401 application 67142403 application 67142404 application 67142406 application 67142657 application 67142660 application 67142662 application 67142918 application 67143169 application 67143172 application 67143174 application 67143686 application 67143937 application 67143940 application 67143942 application 67144708 application 67144961 application 67144964 application 67144966 application 67145220 application 67147521 application 67147524 application 67147526 application 67148289 application 67148294 application 67149315 application 67157254 application 67157510 ! application-object Mail_and_Collaboration description Built-in App Object application 83886342 application 83886593 application 83886594 application 83887110 application 83889665 application 83889667 application 83889670 application 83890177 application 83890433 application 83890694 application 83890945 application 83891201 application 83891457 application 83891713 application 83891969 application 83892230 application 83892481 application 83892737 application 83892993 application 83893249 application 83894017 application 83894529 application 83894531 application 83894534 application 83894785 application 83894790 application 83895041 application 83895297 application 83895553 application 83895809 application 83896321 application 83896833 application 83897089 application 83899393 application 83901953 application 83901958 application 83902209 application 83902465 application 83902470 application 83902721 application 83902977 application 83902982 application 83903750 application 83904257 application 83906561 application 83906563 application 83906817 application 83906822 application 83909121 application 83910145 application 83910401 application 83910406 application 83910662 application 83911169 application 83911174 application 83911425 application 83911430 application 83911681 application 83912449 application 83912454 application 83912705 application 83913219 application 83913222 application 83913473 ! application-object Voice_over_IP description Built-in App Object application 100663553 application 100663556 application 100663812 application 100663814 application 100664322 application 100665601 application 100665857 application 100666370 application 100666372 application 100666374 application 100666626 application 100666630 application 100666886 application 100667137 application 100667138 application 100667394 application 100667905 application 100667908 application 100667910 application 100668929 application 100668930 application 100668931 application 100668934 application 100669953 application 100669958 ! application-object Database description Built-in App Object application 117440774 application 117441281 application 117441286 application 117441542 application 117442561 application 117442817 application 117444353 ! application-object Games description Built-in App Object application 134219009 application 134220801 application 134221057 application 134221062 application 134221313 application 134221569 application 134221830 application 134222593 application 134222598 application 134222849 application 134223361 application 134223362 application 134223366 application 134228225 application 134228737 application 134233603 application 134233604 application 134233606 application 134235137 application 134235142 application 134237958 application 134246145 application 134246148 application 134246150 application 134249729 application 134249734 application 134252289 application 134253569 application 134253574 application 134253825 application 134254081 application 134254082 application 134254083 application 134254086 application 134257665 application 134257667 application 134257670 application 134280449 application 134280454 ! application-object Network_Management description Built-in App Object application 150996230 application 151010563 application 151010566 application 151011846 application 151018502 application 151023110 application 151025158 ! application-object Remote_Access_Terminals description Built-in App Object application 167772417 application 167772422 application 167772674 application 167772930 application 167772934 application 167773186 application 167773446 application 167773697 application 167774465 application 167774470 application 167774721 application 167774726 application 167774978 application 167775233 application 167775490 application 167775494 application 167776001 application 167776006 application 167776769 application 167776770 application 167777025 application 167777281 application 167777286 application 167777537 application 167781121 application 167781638 application 167783169 ! application-object Bypass_Proxies_and_Tunnels description Built-in App Object application 184549889 application 184550150 application 184550657 application 184550913 application 184551174 application 184551681 application 184551686 application 184551937 application 184552705 application 184552710 application 184552961 application 184552966 application 184555521 application 184555526 application 184555782 application 184557062 application 184558081 application 184563206 application 184563462 application 184565506 application 184565761 application 184565766 application 184566018 application 184566530 application 184566786 application 184571654 application 184571905 application 184571910 application 184573953 ! application-object Web description Built-in App Object application 218106118 application 218106374 application 218106625 application 218106630 application 218107649 application 218107654 application 218107910 application 218109190 application 218110977 application 218110982 application 218113542 application 218125830 application 218129923 application 218131971 application 218134534 application 218138115 application 218138118 application 218138627 application 218138630 application 218144772 application 218144774 application 218145281 application 218145537 application 218145542 application 218145798 application 218146049 application 218146054 application 218155014 application 218156038 application 218156545 application 218156550 application 218157062 application 218157313 application 218157318 application 218159366 application 218160390 application 218160646 application 218161926 application 218162182 application 218162945 application 218162950 application 218163206 application 218163462 application 218163713 application 218163718 application 218166790 ! application-object Security_Update description Built-in App Object application 234883331 application 234883587 application 234883843 application 234884611 application 234884867 application 234885123 application 234885379 application 234885635 application 234885891 application 234886147 application 234886403 application 234886406 application 234886659 application 234886915 application 234887171 application 234887427 application 234887683 application 234888451 application 234888707 application 234888963 application 234889219 application 234889222 application 234889731 ! application-object Web_IM description Built-in App Object application 251659009 application 251659014 application 251659265 application 251659270 application 251660033 application 251660038 application 251660801 application 251660806 application 251661057 application 251661825 application 251661826 application 251662593 application 251662849 application 251662854 application 251665665 application 251665921 ! application-object Business description Built-in App Object application 285215745 application 285215750 application 285216001 application 285216006 application 285226758 application 285227270 application 285238534 application 285246982 application 285262850 application 285266438 application 285271041 application 285271046 application 285274113 application 285277446 application 285277697 ! application-object Network_Protocols description Built-in App Object application 302131462 application 302163713 application 302164225 application 302164481 application 302164486 application 302164742 application 302165254 application 302165510 application 302165766 application 302166022 application 302167553 application 302168577 application 302168833 application 302169089 application 302169345 ! application-object Mobile description Built-in App Object ! application-object Private_Protocol description Built-in App Object application 385876227 application 385876482 application 385876483 application 385876486 application 385877249 ! application-object Social_Network description Built-in App Object application 402653441 application 402653446 application 402653953 application 402653958 application 402654209 application 402654211 application 402654214 application 402654977 application 402654979 application 402654982 application 402655233 application 402655238 application 402655489 application 402655494 application 402655745 application 402655750 application 402656001 application 402656006 application 402656257 application 402657537 application 402657542 application 402657793 application 402657798 application 402658305 application 402658310 application 402658561 application 402668033 application 402668038 application 402681601 application 402681603 application 402681604 application 402681606 application 402681862 application 402682113 application 402682118 application 402682369 application 402682374 application 402682881 application 402682886 application 402683654 application 402684161 application 402684673 application 402684678 application 402685185 application 402685190 application 402685441 application 402685446 application 402687489 application 402687494 application 402687745 application 402687750 application 402688001 application 402688006 application 402689025 application 402689030 application 402689281 application 402689286 application 402689537 application 402689542 application 402689793 application 402689798 application 402690049 application 402690054 application 402690305 application 402690310 application 402690561 application 402690566 application 402690817 application 402690822 application 402691585 application 402691590 application 402691841 application 402691846 application 402692097 application 402692102 application 402693633 application 402693635 application 402693636 application 402693638 application 402696449 application 402696454 ! zymesh-profile ZyMesh_AP ssid ZyMesh_ap psk 12345678 ! wlan-security-profile default mode none ! wlan-security-profile EZMODE_SECURITY_WIFI mode wpa2 wpa-psk-encrypted $4$LJGzgc3k$6WoWb4mOasQn/GG/0130dJloC6Tw/iDMqL3gkKCBCL1IEMP6YWnnmQnP2w3bsyxruF5EYHqu5e+83idC4Sa1P//yUl8f/P4AAfNit9PjcNA$ ! wlan-security-profile EZMODE_SECURITY_GUEST_WIFI mode wpa2 wpa-psk-encrypted $4$YiUrNBJ8$qHjoClXi8a+Sz4LmoZcFO24i6Npr+TvBXfz4PkauhRPnFvTFJZ5JgCf+v07JqCm5Uhi/kTDhmhJZpsuYSHZqnSlufbVDBszo6kyIOy31d7A$ ! wlan-ssid-profile default ssid ZyXEL data-forward localbridge qos wmm security default outgoing-interface lan2 bandselect mode disable ! wlan-ssid-profile EZMODE_SSID_WIFI ssid MuneTakaWifi security EZMODE_SECURITY_WIFI outgoing-interface lan1 ! wlan-ssid-profile EZMODE_SSID_GUEST_WIFI ssid GuestMuneTakaWiFi security EZMODE_SECURITY_GUEST_WIFI outgoing-interface guest ! wlan-monitor-profile default activate scan-method auto scan-dwell 100 ! wlan-radio-profile default activate role ap band 2.4G band-mode bgnax 2g-channel 6 ch-width 20 dtim-period 2 beacon-interval 100 ampdu limit-ampdu 50000 rssi-dbm -76 rssi-kickout -105 rssi-interval 2 rssi-optype 3 rssi-retrycount 6 rssi-verifytime 10 rssi-privilegetime 300 subframe-ampdu 32 amsdu limit-amsdu 4096 block-ack guard-interval short tx-mask 7 rx-mask 7 dcs activate dcs time-interval 720 dcs sensitivity-level high dcs client-aware enable dcs dcs-2g-method auto dcs channel-deployment 3-channel dcs dcs-5g-method auto dcs dfs-aware enable dcs mode interval dcs schedule 03:00 mon tue wed thu fri sat sun ! wlan-radio-profile default2 activate role ap band 5G band-mode anacax 2g-channel 6 ch-width 20/40 dtim-period 2 beacon-interval 100 ampdu limit-ampdu 50000 rssi-dbm -76 rssi-kickout -105 rssi-interval 2 rssi-optype 3 rssi-retrycount 6 rssi-verifytime 10 rssi-privilegetime 300 subframe-ampdu 32 amsdu limit-amsdu 4096 block-ack guard-interval short tx-mask 7 rx-mask 7 dcs activate dcs time-interval 720 dcs sensitivity-level high dcs client-aware enable dcs dcs-2g-method auto dcs channel-deployment 3-channel dcs dcs-5g-method auto dcs dfs-aware enable dcs mode interval dcs schedule 03:00 mon tue wed thu fri sat sun ! wlan-radio-profile Disabled-2G role ap band 2.4G band-mode bgn 2g-channel 6 ch-width 20 dtim-period 2 beacon-interval 100 ampdu limit-ampdu 50000 rssi-dbm -76 rssi-kickout -105 rssi-interval 2 rssi-optype 3 rssi-retrycount 6 rssi-verifytime 10 rssi-privilegetime 300 subframe-ampdu 32 amsdu limit-amsdu 4096 block-ack guard-interval short tx-mask 7 rx-mask 7 dcs time-interval 720 dcs sensitivity-level high dcs client-aware enable dcs dcs-2g-method auto dcs channel-deployment 3-channel dcs dcs-5g-method auto dcs dfs-aware enable ! wlan-radio-profile Disabled-5G role ap band 5G band-mode an 2g-channel 6 ch-width 20/40 dtim-period 2 beacon-interval 100 ampdu limit-ampdu 50000 rssi-dbm -76 rssi-kickout -105 rssi-interval 2 rssi-optype 3 rssi-retrycount 6 rssi-verifytime 10 rssi-privilegetime 300 subframe-ampdu 32 amsdu limit-amsdu 4096 block-ack guard-interval short tx-mask 7 rx-mask 7 dcs time-interval 720 dcs sensitivity-level high dcs client-aware enable dcs dcs-2g-method auto dcs channel-deployment 3-channel dcs dcs-5g-method auto dcs dfs-aware enable ! wlan-radio-profile EZMODE_RADIO_24G activate dcs activate ! wlan-radio-profile EZMODE_RADIO_5G activate band 5G band-mode an dcs activate ! ap-group-profile default slot1 ap-profile default slot2 ap-profile default2 lan-provision model nwa5123-ac-hd lan1 activate pvid 1 lan-provision model nwa5123-ac-hd vlan0 activate vid 1 join lan1 untag lan-provision model nwa5301-nj lan1 activate pvid 1 lan-provision model nwa5301-nj lan2 activate pvid 1 lan-provision model nwa5301-nj lan3 activate pvid 1 lan-provision model nwa5301-nj vlan0 activate vid 1 join lan1 untag lan2 untag lan3 untag lan-provision model wac5302d-s lan1 activate pvid 1 lan-provision model wac5302d-s lan2 activate pvid 1 lan-provision model wac5302d-s lan3 activate pvid 1 lan-provision model wac5302d-s vlan0 activate vid 1 join lan1 untag lan2 untag lan3 untag lan-provision model wac6103d-i lan1 activate pvid 1 lan-provision model wac6103d-i vlan0 activate vid 1 join lan1 untag lan-provision model wac6303d-s lan1 activate pvid 1 lan-provision model wac6303d-s vlan0 activate vid 1 join lan1 untag lan-provision model wac6502d-e lan1 activate pvid 1 lan-provision model wac6502d-e vlan0 activate vid 1 join lan1 untag lan-provision model wac6502d-s lan1 activate pvid 1 lan-provision model wac6502d-s vlan0 activate vid 1 join lan1 untag lan-provision model wac6503d-s lan1 activate pvid 1 lan-provision model wac6503d-s vlan0 activate vid 1 join lan1 untag lan-provision model wac6553d-e lan1 activate pvid 1 lan-provision model wac6553d-e vlan0 activate vid 1 join lan1 untag lan-provision model wac6552d-s lan1 activate pvid 1 lan-provision model wac6552d-s vlan0 activate vid 1 join lan1 untag lan-provision model wax650s lan1 activate pvid 1 lan-provision model wax650s vlan0 activate vid 1 join lan1 untag lan-provision model wax610d lan1 activate pvid 1 lan-provision model wax610d vlan0 activate vid 1 join lan1 untag lan-provision model wac5302d-sv2 lan1 activate pvid 1 lan-provision model wac5302d-sv2 lan2 activate pvid 1 lan-provision model wac5302d-sv2 lan3 activate pvid 1 lan-provision model wac5302d-sv2 vlan0 activate vid 1 join lan1 untag lan2 untag lan3 untag lan-provision model wac500h lan1 activate pvid 1 lan-provision model wac500h lan2 activate pvid 1 lan-provision model wac500h vlan0 activate vid 1 join lan1 untag lan2 untag slot1 ssid-profile 1 default slot2 ssid-profile 1 default load-balancing slot1 mode station load-balancing slot2 mode station load-balancing slot1 max sta 10 load-balancing slot2 max sta 10 load-balancing slot1 traffic level high load-balancing slot2 traffic level high load-balancing slot1 alpha 5 load-balancing slot2 alpha 5 load-balancing slot1 beta 10 load-balancing slot2 beta 10 load-balancing slot1 sigma 60 load-balancing slot2 sigma 60 load-balancing slot1 timeout 20 load-balancing slot2 timeout 20 load-balancing slot1 liInterval 10 load-balancing slot2 liInterval 10 load-balancing slot1 kickInterval 20 load-balancing slot2 kickInterval 20 ! ap-group-profile Unclassified slot1 ap-profile Disabled-2G slot2 ap-profile Disabled-5G lan-provision model nwa5123-ac-hd lan1 activate pvid 1 lan-provision model nwa5123-ac-hd vlan0 activate vid 1 join lan1 untag lan-provision model nwa5301-nj lan1 activate pvid 1 lan-provision model nwa5301-nj lan2 activate pvid 1 lan-provision model nwa5301-nj lan3 activate pvid 1 lan-provision model nwa5301-nj vlan0 activate vid 1 join lan1 untag lan2 untag lan3 untag lan-provision model wac5302d-s lan1 activate pvid 1 lan-provision model wac5302d-s lan2 activate pvid 1 lan-provision model wac5302d-s lan3 activate pvid 1 lan-provision model wac5302d-s vlan0 activate vid 1 join lan1 untag lan2 untag lan3 untag lan-provision model wac6103d-i lan1 activate pvid 1 lan-provision model wac6103d-i vlan0 activate vid 1 join lan1 untag lan-provision model wac6303d-s lan1 activate pvid 1 lan-provision model wac6303d-s vlan0 activate vid 1 join lan1 untag lan-provision model wac6502d-e lan1 activate pvid 1 lan-provision model wac6502d-e vlan0 activate vid 1 join lan1 untag lan-provision model wac6502d-s lan1 activate pvid 1 lan-provision model wac6502d-s vlan0 activate vid 1 join lan1 untag lan-provision model wac6503d-s lan1 activate pvid 1 lan-provision model wac6503d-s vlan0 activate vid 1 join lan1 untag lan-provision model wac6553d-e lan1 activate pvid 1 lan-provision model wac6553d-e vlan0 activate vid 1 join lan1 untag lan-provision model wac6552d-s lan1 activate pvid 1 lan-provision model wac6552d-s vlan0 activate vid 1 join lan1 untag lan-provision model wax650s lan1 activate pvid 1 lan-provision model wax650s vlan0 activate vid 1 join lan1 untag lan-provision model wax610d lan1 activate pvid 1 lan-provision model wax610d vlan0 activate vid 1 join lan1 untag lan-provision model wac5302d-sv2 lan1 activate pvid 1 lan-provision model wac5302d-sv2 lan2 activate pvid 1 lan-provision model wac5302d-sv2 lan3 activate pvid 1 lan-provision model wac5302d-sv2 vlan0 activate vid 1 join lan1 untag lan2 untag lan3 untag lan-provision model wac500h lan1 activate pvid 1 lan-provision model wac500h lan2 activate pvid 1 lan-provision model wac500h vlan0 activate vid 1 join lan1 untag lan2 untag load-balancing slot1 mode station load-balancing slot2 mode station load-balancing slot1 max sta 10 load-balancing slot2 max sta 10 load-balancing slot1 traffic level high load-balancing slot2 traffic level high load-balancing slot1 alpha 5 load-balancing slot2 alpha 5 load-balancing slot1 beta 10 load-balancing slot2 beta 10 load-balancing slot1 sigma 60 load-balancing slot2 sigma 60 load-balancing slot1 timeout 20 load-balancing slot2 timeout 20 load-balancing slot1 liInterval 10 load-balancing slot2 liInterval 10 load-balancing slot1 kickInterval 20 load-balancing slot2 kickInterval 20 ! ap-group-profile EZMODE_AP_GROUP slot1 ap-profile EZMODE_RADIO_24G slot2 ap-profile EZMODE_RADIO_5G lan-provision model nwa5123-ac-hd lan1 activate pvid 1 lan-provision model nwa5123-ac-hd vlan0 activate vid 1 join lan1 untag lan-provision model nwa5301-nj lan1 activate pvid 1 lan-provision model nwa5301-nj lan2 activate pvid 1 lan-provision model nwa5301-nj lan3 activate pvid 1 lan-provision model nwa5301-nj vlan0 activate vid 1 join lan1 untag lan2 untag lan3 untag lan-provision model wac5302d-s lan1 activate pvid 1 lan-provision model wac5302d-s lan2 activate pvid 1 lan-provision model wac5302d-s lan3 activate pvid 1 lan-provision model wac5302d-s vlan0 activate vid 1 join lan1 untag lan2 untag lan3 untag lan-provision model wac6103d-i lan1 activate pvid 1 lan-provision model wac6103d-i vlan0 activate vid 1 join lan1 untag lan-provision model wac6303d-s lan1 activate pvid 1 lan-provision model wac6303d-s vlan0 activate vid 1 join lan1 untag lan-provision model wac6502d-e lan1 activate pvid 1 lan-provision model wac6502d-e vlan0 activate vid 1 join lan1 untag lan-provision model wac6502d-s lan1 activate pvid 1 lan-provision model wac6502d-s vlan0 activate vid 1 join lan1 untag lan-provision model wac6503d-s lan1 activate pvid 1 lan-provision model wac6503d-s vlan0 activate vid 1 join lan1 untag lan-provision model wac6553d-e lan1 activate pvid 1 lan-provision model wac6553d-e vlan0 activate vid 1 join lan1 untag lan-provision model wac6552d-s lan1 activate pvid 1 lan-provision model wac6552d-s vlan0 activate vid 1 join lan1 untag lan-provision model wax650s lan1 activate pvid 1 lan-provision model wax650s vlan0 activate vid 1 join lan1 untag lan-provision model wax610d lan1 activate pvid 1 lan-provision model wax610d vlan0 activate vid 1 join lan1 untag lan-provision model wac5302d-sv2 lan1 activate pvid 1 lan-provision model wac5302d-sv2 lan2 activate pvid 1 lan-provision model wac5302d-sv2 lan3 activate pvid 1 lan-provision model wac5302d-sv2 vlan0 activate vid 1 join lan1 untag lan2 untag lan3 untag lan-provision model wac500h lan1 activate pvid 1 lan-provision model wac500h lan2 activate pvid 1 lan-provision model wac500h vlan0 activate vid 1 join lan1 untag lan2 untag slot1 ssid-profile 1 EZMODE_SSID_WIFI slot2 ssid-profile 1 EZMODE_SSID_WIFI slot1 ssid-profile 2 EZMODE_SSID_GUEST_WIFI slot2 ssid-profile 2 EZMODE_SSID_GUEST_WIFI ! ap-group first-priority EZMODE_AP_GROUP ! rogue-ap detection activate ! rogue-ap containment no activate ! no auto-healing activate auto-healing healing-interval 10 auto-healing power-threshold -70 auto-healing healing-threshold -85 auto-healing margin 2 auto-healing healing-margin 10 ! capwap ap add local-ap ! ap-group-member EZMODE_AP_GROUP member local-ap ! capwap manual-add disable capwap ap fallback disable capwap ap fallback interval 30 ! isakmp policy MuneTaToChingYenVPN peer-ip chingyen.com.tw local-ip interface wan1_ppp authentication pre-share encrypted-keystring $4$jZiWGncA$THt5Gkl9EdqYz4Iz91qi4a5gxCAm+uPS8j4vqO5sgJj67q4qrqnlYTaXQo0ETnB7sCACkHpmSnGvJhWkA2moEGum9uPXrwnqPTQOaXoIvDc$ mode main dpd-interval 30 transform-set aes128-sha group2 lifetime 86400 peer-id type fqdn chingyen.com.tw ! isakmp policy EZMODE_VPN_STATIC peer-ip chingyen.com.tw local-ip interface wan1_ppp authentication pre-share encrypted-keystring $4$g2Cr1JDI$gcQtOxlOgJ9GfqZMxub9IkN0LZqn1o5IcVLM6FH/0fYtA4ptw8y2jv42vD+1Lj1hwxUM4qYlxkUX0cR89paYz7PKT19RWVwR6Kb9ZTj/Ws8$ mode main dpd-interval 30 transform-set aes128-sha group2 lifetime 86400 peer-id type fqdn chingyen.com.tw ! isakmp policy MuneTakaToYuShei peer-ip yushei.me local-ip interface wan1_ppp authentication pre-share encrypted-keystring $4$Grcztyor$WREEnDVSkZ4qeln5tAfkgyTXzWlt4r68NVNk4tL8o00sK/1t1Xcvz7J0p0stbqwFsZw1C0wGWjxd6aIQWLLDFHFI4a/+46XaejBePg18v1k$ mode main dpd-interval 30 transform-set aes128-sha group2 lifetime 86400 peer-id type fqdn yushei.me ! isakmp policy MuneTakaToYsHdq peer-ip yushei.me local-ip interface wan1_ppp authentication pre-share encrypted-keystring $4$D56PkWky$z0HLRlD2AwY0Ynmz3NScEicSqbS9vhLuRypVgTYBL6tdKX9H4vR0GgKERvyZL479OStYnPp6SFsjG9qpQMYH8A+zeOQL0pe+bmmdkCHE69c$ mode main dpd-interval 30 transform-set aes128-sha group2 lifetime 86400 peer-id type fqdn yushei.me ! isakmp policy MuneTakaTo_ChingYen peer-ip 59.126.118.193 0.0.0.0 local-ip interface wan1_ppp authentication pre-share encrypted-keystring $4$trOx.bjG$GTEoR2Dto41b/OSoEB2nXzrFtxJ0SSFGLw6EBB9O1DxKSJIpN3fmHYaSZHF9kFAX8Atj6HgdY6h2DJEK6zqgxrC3t9hK9UMMMs3wIDhqE8A$ mode main dpd-interval 30 transform-set aes128-sha group2 lifetime 86400 peer-id type any ! isakmp policy MuneTakaTo_WuShun activate local-ip interface wan1_ppp peer-ip 220.133.194.53 0.0.0.0 authentication pre-share encrypted-keystring $4$tbKYuisI$v1UbtY0rRM0rNLLNq8xSwBRbVpRi0wRUAoV7azRtOzuuyatX1Kd5M1KlYupehXX0GLHt/xd2miPf7Kg+3L5yPwy0dzV4ZiH3xCs6h8rhldo$ local-id type ip 0.0.0.0 peer-id type ip 220.134.50.246 fall-back-check-interval 300 lifetime 86400 group2 transform-set aes128-sha mode main dpd-interval 30 ! ikev2 policy MuneTakaTo_WuShun_IKEv2 activate local-ip interface wan1_ppp peer-ip 220.133.194.53 0.0.0.0 authentication pre-share encrypted-keystring $4$mtyB5qqZ$LL5MhTItGt+ekxIFBIh0oaO6eAC5a1nCLhfT/VjVOlp/+x6pGtcpbjQsJf/HnxMiEvEpgt9PBAXVXDk2tEYWdYOIug8IPsTzoezWI6mBFPM$ local-id type ip 0.0.0.0 peer-id type any fall-back-check-interval 300 lifetime 86400 group2 transform-set aes128-sha dpd-interval 30 ! isakmp policy Mune_To_Ching peer-ip 59.126.118.193 0.0.0.0 local-ip interface wan1_ppp authentication pre-share encrypted-keystring $4$FO69NwNm$K2trcWNdI1+pO9xxu5nT2kzEbi4R20lb82EH02DW6lSYoWIuecQUwFmrJxm47UHVQLR5WCVVfCo/DsoXSCtf41YJk2NRovWqk+gVceC8fP4$ mode main dpd-interval 30 transform-set aes128-sha group2 lifetime 86400 peer-id type ip 59.126.118.193 ! ikev2 policy MuneTakaTo_YuShei_IKEv2 activate local-ip interface wan1_ppp peer-ip 210.242.152.235 0.0.0.0 authentication pre-share encrypted-keystring $4$AR1SPudm$2QhobQfss5iE7zUGVxsRhgxc1nlxbEJb+64EUwtMEvXkpOBLU+bR/o2khDepSGYyxKx2IBmhGuggPAS5dfsuHt36M1rcqDYUm8400NjLu2g$ local-id type ip 0.0.0.0 peer-id type any fall-back-check-interval 300 lifetime 86400 group2 transform-set aes128-sha dpd-interval 30 ! crypto map MuneTakaTo_YsShei ipsec-isakmp MuneTakaTo_YuShei_IKEv2 encapsulation tunnel transform-set esp-aes128-sha set security-association lifetime seconds 28800 set pfs group2 scenario site-to-site-static local-policy MuneTakaTo_YsShei_LOCAL remote-policy MuneTakaTo_YsShei_REMOTE nail-up activate ! crypto map MuneTakaTo_ChingYen ipsec-isakmp MuneTakaTo_ChingYen encapsulation tunnel transform-set esp-aes128-sha set security-association lifetime seconds 28800 set pfs group2 scenario site-to-site-static local-policy MuneTakaTo_ChingYen_LOCAL remote-policy MuneTakaTo_ChingYen_REMOTE nail-up activate ! crypto map MuneTakaTo_WuShun activate adjust-mss auto ipsec-isakmp MuneTakaTo_WuShun_IKEv2 scenario site-to-site-static encapsulation tunnel transform-set esp-aes128-sha set security-association lifetime seconds 28800 set pfs group2 local-policy MuneTakaTo_WuShun_LOCAL remote-policy MuneTakaTo_WuShun_REMOTE no conn-check activate ! crypto map Mune_To_Ching ipsec-isakmp Mune_To_Ching encapsulation tunnel transform-set esp-aes128-sha set security-association lifetime seconds 28800 set pfs group2 scenario site-to-site-static local-policy Mune_To_Ching_LOCAL remote-policy Mune_To_Ching_REMOTE activate ! vpn-configuration-provision authentication default ! zone LAN1 interface lan1 ! zone LAN2 interface lan2 ! zone DMZ interface dmz ! zone WAN interface wan1 interface wan1_ppp interface wan2 interface wan2_ppp ! zone SSL_VPN ! zone IPSec_VPN crypto MuneTakaTo_YsShei crypto MuneTakaTo_ChingYen crypto MuneTakaTo_WuShun crypto Mune_To_Ching ! zone TUNNEL ! zone GUEST interface guest ! cnm-agent vantage certificate secu_manager_root_ca.crt cnm-agent authentication enable ! ip dns security-options 1 name Customize address-object-group RFC1918_1 address-object-group RFC1918_2 address-object-group RFC1918_3 ! ip dns security-options default name Default address-object-group any ! ip http server ip http port 8080 ! ip http secure-server cert default ip http secure-server ip http secure-server cipher-suite aes 3des rc4 ip http secure-port 4443 ip http secure-server force-redirect ! hostname usg60w domainname munetaka.me ! ip ssh server cert default ip ssh server ip ssh server port 1766 ! console baud 115200 ! ip ftp server cert default ip ftp server ! ntp clock daylight-saving ntp server 0.pool.ntp.org clock time-zone +08:00 ! snmp-server snmp-server version v1 snmp-server version v2c snmp-server version v3 ! two-factor-auth user any two-factor-auth service sslvpn two-factor-auth service ipsec two-factor-auth service l2tp two-factor-auth deliver-method sms two-factor-auth deliver-method email ! clock auto-sync-timezone clock auto-sync-daylight-saving ! ip ip-mac-binding dmz activate ip ip-mac-binding dmz log ip ip-mac-binding guest activate ip ip-mac-binding guest log ip ip-mac-binding lan1 activate ip ip-mac-binding lan1 log ip ip-mac-binding lan2 activate ip ip-mac-binding lan2 log ! arp reply restricted ! ip virtual-server Nginx_server interface wan1_ppp source-ip any original-ip MuneTakaFixedIP map-to pi2Nginx map-type service-group pi2Nginx_secrvice_group nat-loopback ip virtual-server WanToMuneTakaNas interface wan1_ppp source-ip any original-ip MuneTakaFixedIP map-to MuneTakaNAS map-type service-group MuneTakaNas_Allowed_Srv nat-loopback ip virtual-server MuneTakaToArch64GeMMc interface wan1_ppp source-ip any original-ip MuneTakaFixedIP map-to arch64GeMMc map-type service-group MuneTaToArch64GeMMC nat-loopback deactivate ! app HomeOffice_profile description Built-in App Profile application Instant_messaging action forward no log application P2P action reject log application File_Transfer action forward no log application Streaming_Media action reject log application Mail_and_Collaboration action forward no log application Voice_over_IP action forward no log application Database action reject log application Games action forward no log application Network_Management action forward no log application Remote_Access_Terminals action forward no log application Bypass_Proxies_and_Tunnels action reject log application Web action forward no log application Security_Update action forward no log application Web_IM action reject log application Business action forward no log application Network_Protocols action forward no log application Mobile action forward no log application Private_Protocol action reject log application Social_Network action forward no log ! app Office_profile description Built-in App Profile application Instant_messaging action reject log application P2P action reject log application File_Transfer action forward no log application Streaming_Media action reject log application Mail_and_Collaboration action forward no log application Voice_over_IP action forward no log application Database action forward no log application Games action reject log application Network_Management action forward no log application Remote_Access_Terminals action forward no log application Bypass_Proxies_and_Tunnels action forward no log application Web action forward no log application Security_Update action forward no log application Web_IM action reject log application Business action forward no log application Network_Protocols action forward no log application Mobile action forward no log application Private_Protocol action reject log application Social_Network action reject log ! app Retail_profile description Built-in App Profile application Instant_messaging action reject log application P2P action reject log application File_Transfer action reject log application Streaming_Media action reject log application Mail_and_Collaboration action reject log application Voice_over_IP action reject log application Database action reject log application Games action reject log application Network_Management action reject log application Remote_Access_Terminals action reject log application Bypass_Proxies_and_Tunnels action reject log application Web action forward no log application Security_Update action reject log application Web_IM action reject log application Business action reject log application Network_Protocols action forward no log application Mobile action reject log application Private_Protocol action reject log application Social_Network action reject log ! app Healthcare_profile description Built-in App Profile application Instant_messaging action reject log application P2P action reject log application File_Transfer action reject log application Streaming_Media action reject log application Mail_and_Collaboration action reject log application Voice_over_IP action reject log application Database action reject log application Games action reject log application Network_Management action reject log application Remote_Access_Terminals action reject log application Bypass_Proxies_and_Tunnels action reject log application Web action reject log application Security_Update action reject log application Web_IM action reject log application Business action reject log application Network_Protocols action reject log application Mobile action reject log application Private_Protocol action reject log application Social_Network action reject log ! utm-manager content-filter defaultport 80 utm-manager content-filter defaultport 3128 utm-manager content-filter defaultport 8080 utm-manager content-filter defaultport 443 ! utm-manager anti-spam defaultport 25 utm-manager anti-spam defaultport 110 ! utm-manager anti-virus defaultport 80 utm-manager anti-virus defaultport 3128 utm-manager anti-virus defaultport 8080 utm-manager anti-virus defaultport 25 utm-manager anti-virus defaultport 110 utm-manager anti-virus defaultport 143 utm-manager anti-virus defaultport 21 ! content-filter profile HomeOffice_profile description Built-in CF Profile content-filter profile HomeOffice_profile url match block content-filter profile HomeOffice_profile url match-unsafe warn content-filter profile HomeOffice_profile url unrate warn content-filter profile HomeOffice_profile url offline warn content-filter profile HomeOffice_profile match block content-filter profile HomeOffice_profile unrate warn content-filter profile HomeOffice_profile offline warn content-filter profile HomeOffice_profile match-unsafe block content-filter profile HomeOffice_profile match-unsafe log content-filter profile HomeOffice_profile match log content-filter profile HomeOffice_profile category web-ads content-filter profile HomeOffice_profile category alcohol content-filter profile HomeOffice_profile category business content-filter profile HomeOffice_profile category tobacco content-filter profile HomeOffice_profile category chat content-filter profile HomeOffice_profile category potential-criminal-activities content-filter profile HomeOffice_profile category dating-personals content-filter profile HomeOffice_profile category gambling content-filter profile HomeOffice_profile category games content-filter profile HomeOffice_profile category discrimination content-filter profile HomeOffice_profile category drugs content-filter profile HomeOffice_profile category nudity content-filter profile HomeOffice_profile category pornography content-filter profile HomeOffice_profile category violence content-filter profile HomeOffice_profile category weapons content-filter profile HomeOffice_profile category cult-occult content-filter profile HomeOffice_profile category potential-illegal-software content-filter profile HomeOffice_profile category potential-hacking-computer-crime content-filter profile HomeOffice_profile category p2p-file-sharing content-filter profile Office_profile description Built-in CF Profile content-filter profile Office_profile url match block content-filter profile HomeOffice_profile category school-cheating-information content-filter profile Office_profile url match-unsafe warn content-filter profile Office_profile url unrate warn content-filter profile HomeOffice_profile category gruesome-content content-filter profile Office_profile url offline warn content-filter profile Office_profile match block content-filter profile Office_profile unrate warn content-filter profile Office_profile offline warn content-filter profile HomeOffice_profile category sexual-materials content-filter profile HomeOffice_profile category illegal-uk content-filter profile Office_profile category web-ads content-filter profile Office_profile category alcohol content-filter profile Office_profile category potential-criminal-activities content-filter profile Office_profile category tobacco content-filter profile Office_profile category dating-personals content-filter profile Office_profile category gambling content-filter profile Office_profile category games content-filter profile Office_profile category discrimination content-filter profile Office_profile category drugs content-filter profile Office_profile category nudity content-filter profile Office_profile category pornography content-filter profile Office_profile category violence content-filter profile Office_profile category weapons content-filter profile Office_profile category cult-occult content-filter profile Office_profile category potential-hacking-computer-crime content-filter profile Office_profile category potential-illegal-software content-filter profile Retail_profile description Built-in CF Profile content-filter profile Retail_profile url match block content-filter profile Retail_profile url match-unsafe warn content-filter profile Office_profile category p2p-file-sharing content-filter profile Retail_profile url unrate warn content-filter profile Retail_profile url offline warn content-filter profile Retail_profile match block content-filter profile Office_profile category school-cheating-information content-filter profile Retail_profile unrate warn content-filter profile Office_profile category sexual-materials content-filter profile Retail_profile offline warn content-filter profile Retail_profile match-unsafe block content-filter profile Retail_profile match-unsafe log content-filter profile Retail_profile match log content-filter profile Office_profile category gruesome-content content-filter profile Office_profile category illegal-uk content-filter profile Retail_profile category web-ads content-filter profile Retail_profile category alcohol content-filter profile Retail_profile category tobacco content-filter profile Retail_profile category art-culture-heritage content-filter profile Retail_profile category business content-filter profile Retail_profile category chat content-filter profile Retail_profile category motor-vehicles content-filter profile Retail_profile category forum-bulletin-boards content-filter profile Retail_profile category computing-internet content-filter profile Retail_profile category technical-information content-filter profile Retail_profile category potential-criminal-activities content-filter profile Retail_profile category dating-personals content-filter profile Retail_profile category shareware-freeware content-filter profile Retail_profile category education-reference content-filter profile Retail_profile category entertainment content-filter profile Retail_profile category finance-banking content-filter profile Retail_profile category gambling content-filter profile Retail_profile category games content-filter profile Retail_profile category government-military content-filter profile Retail_profile category discrimination content-filter profile Retail_profile category health content-filter profile Retail_profile category drugs content-filter profile Retail_profile category job-search content-filter profile Retail_profile category streaming-media content-filter profile Retail_profile category general-news content-filter profile Retail_profile category non-profit-advocacy-ngo content-filter profile Retail_profile category personal-pages content-filter profile Retail_profile category nudity content-filter profile Retail_profile category politics-opinion content-filter profile Retail_profile category pornography content-filter profile Retail_profile category real-estate content-filter profile Retail_profile category religion-ideology content-filter profile Retail_profile category restaurants content-filter profile Retail_profile category portal-sites content-filter profile Retail_profile category search-engines content-filter profile Retail_profile category online-shopping content-filter profile Retail_profile category social-networking content-filter profile Retail_profile category sports content-filter profile Retail_profile category text-translators content-filter profile Retail_profile category travel content-filter profile Retail_profile category violence content-filter profile Retail_profile category weapons content-filter profile Retail_profile category web-mail content-filter profile Retail_profile category recreation-hobbies content-filter profile Retail_profile category cult-occult content-filter profile Retail_profile category fashion-beauty content-filter profile Retail_profile category digital-postcards content-filter profile Retail_profile category potential-hacking-computer-crime content-filter profile Retail_profile category potential-illegal-software content-filter profile Retail_profile category media-sharing content-filter profile Retail_profile category information-security content-filter profile Retail_profile category instant-messaging content-filter profile Retail_profile category p2p-file-sharing content-filter profile Retail_profile category private-ip-addresses content-filter profile Healthcare_profile description Built-in CF Profile content-filter profile Retail_profile category school-cheating-information content-filter profile Retail_profile category sexual-materials content-filter profile Healthcare_profile url match block content-filter profile Healthcare_profile url match-unsafe warn content-filter profile Healthcare_profile url unrate warn content-filter profile Healthcare_profile url offline warn content-filter profile Healthcare_profile match block content-filter profile Retail_profile category illegal-uk content-filter profile Healthcare_profile unrate warn content-filter profile Retail_profile category gruesome-content content-filter profile Healthcare_profile offline warn content-filter profile Healthcare_profile match-unsafe block content-filter profile Healthcare_profile match-unsafe log content-filter profile Healthcare_profile match log content-filter profile Healthcare_profile category web-ads content-filter profile Healthcare_profile category alcohol content-filter profile Healthcare_profile category tobacco content-filter profile Healthcare_profile category art-culture-heritage content-filter profile Healthcare_profile category business content-filter profile Healthcare_profile category motor-vehicles content-filter profile Healthcare_profile category chat content-filter profile Healthcare_profile category forum-bulletin-boards content-filter profile Healthcare_profile category technical-information content-filter profile Healthcare_profile category computing-internet content-filter profile Healthcare_profile category potential-criminal-activities content-filter profile Healthcare_profile category dating-personals content-filter profile Healthcare_profile category shareware-freeware content-filter profile Healthcare_profile category education-reference content-filter profile Healthcare_profile category entertainment content-filter profile Healthcare_profile category finance-banking content-filter profile Healthcare_profile category gambling content-filter profile Healthcare_profile category games content-filter profile Healthcare_profile category discrimination content-filter profile Healthcare_profile category government-military content-filter profile Healthcare_profile category health content-filter profile Healthcare_profile category drugs content-filter profile Healthcare_profile category job-search content-filter profile Healthcare_profile category general-news content-filter profile Healthcare_profile category streaming-media content-filter profile Healthcare_profile category non-profit-advocacy-ngo content-filter profile Healthcare_profile category nudity content-filter profile Healthcare_profile category personal-pages content-filter profile Healthcare_profile category politics-opinion content-filter profile Healthcare_profile category pornography content-filter profile Healthcare_profile category real-estate content-filter profile Healthcare_profile category religion-ideology content-filter profile Healthcare_profile category restaurants content-filter profile Healthcare_profile category portal-sites content-filter profile Healthcare_profile category search-engines content-filter profile Healthcare_profile category online-shopping content-filter profile Healthcare_profile category social-networking content-filter profile Healthcare_profile category sports content-filter profile Healthcare_profile category text-translators content-filter profile Healthcare_profile category travel content-filter profile Healthcare_profile category violence content-filter profile Healthcare_profile category weapons content-filter profile Healthcare_profile category web-mail content-filter profile Healthcare_profile category recreation-hobbies content-filter profile Healthcare_profile category fashion-beauty content-filter profile Healthcare_profile category cult-occult content-filter profile Healthcare_profile category digital-postcards content-filter profile Healthcare_profile category potential-hacking-computer-crime content-filter profile Healthcare_profile category potential-illegal-software content-filter profile Healthcare_profile category media-sharing content-filter profile Healthcare_profile category information-security content-filter profile Healthcare_profile category instant-messaging content-filter profile Healthcare_profile category p2p-file-sharing content-filter profile Healthcare_profile category school-cheating-information content-filter profile Healthcare_profile category private-ip-addresses content-filter profile Office_profile match-unsafe block content-filter profile Office_profile match-unsafe log content-filter profile Office_profile match log content-filter profile Healthcare_profile unrate log content-filter profile Healthcare_profile offline log content-filter profile HomeOffice_profile unrate log content-filter profile HomeOffice_profile offline log content-filter profile Healthcare_profile category gruesome-content content-filter profile Office_profile unrate log content-filter profile Healthcare_profile category sexual-materials content-filter profile Office_profile offline log content-filter profile Retail_profile unrate log content-filter profile Healthcare_profile category illegal-uk content-filter profile Retail_profile offline log content-filter profile EZMODE_CF content-filter profile EZMODE_CF match-unsafe warn content-filter profile EZMODE_CF match block content-filter profile EZMODE_CF unrate warn content-filter profile EZMODE_CF offline warn content-filter profile EZMODE_CF url-server ! session-limit activate session-limit limit 1000 ! session-limit6 activate session-limit6 limit 1000 ! idp signature update auto ! idp signature update weekly sun 0 ! idp anomaly activate ! idp anomaly ADP_PROFILE base all scan-detection block-period 5 flood-detection block-period 5 ! idp anomaly rule 1 from-zone WAN bind ADP_PROFILE activate ! anti-virus update auto ! anti-virus update daily 23 ! no bwm activate ! secure-policy 1 name WAN_to_pi2Nginx description Wan direct to pi2Nginx from WAN to LAN1 destinationip pi2Nginx action allow service pi2Nginx_secrvice_group ! secure-policy 2 name WAN1_PPP_to_arch64GeMMc description Wan1_ppp to arch64GeMMc from WAN to LAN2 action allow destinationip arch64GeMMc no activate ! secure-policy 3 name WAN1_PPP_To_MuneTakaNas description Wan1_PPP To MuneTakaNas from WAN to DMZ action allow destinationip MuneTakaNAS service MuneTakaNas_Allowed_Srv ! secure-policy 4 from LAN1 action allow name LAN1_Outgoing ! secure-policy 5 from LAN2 action allow name LAN2_Outgoing ! secure-policy 6 from DMZ to WAN action allow name DMZ_to_WAN ! secure-policy 7 from IPSec_VPN action allow name IPSec_VPN_Outgoing ! secure-policy 8 from SSL_VPN action allow name SSL_VPN_Outgoing ! secure-policy 9 from TUNNEL action allow name TUNNEL_Outgoing ! secure-policy 10 from LAN1 to ZyWALL action allow name LAN1_to_Device ! secure-policy 11 from LAN2 to ZyWALL action allow name LAN2_to_Device ! secure-policy 12 from DMZ to ZyWALL action allow service Default_Allow_DMZ_To_ZyWALL name DMZ_to_Device ! secure-policy 13 from WAN to ZyWALL action allow service Default_Allow_WAN_To_ZyWALL name WAN_to_Device ! secure-policy 14 from IPSec_VPN to ZyWALL action allow name IPSec_VPN_to_Device ! secure-policy 15 from SSL_VPN to ZyWALL action allow name SSL_VPN_to_Device ! secure-policy 16 from TUNNEL to ZyWALL action allow name TUNNEL_to_Device ! secure-policy 17 name Guest_Outgoing from GUEST to WAN action allow ! secure-policy 18 name Guest_to_Device from GUEST to ZyWALL service Default_Allow_DMZ_To_ZyWALL action allow ! secure-policy default-rule action deny log ! secure-policy6 1 to ZyWALL service Default_Allow_v6_any_to_ZyWALL action allow name Device_Default_Allow_Service ! secure-policy6 2 from LAN1 action allow name LAN1_Outgoing ! secure-policy6 3 from LAN2 action allow name LAN2_Outgoing ! secure-policy6 4 from DMZ to WAN action allow name DMZ_to_WAN ! secure-policy6 5 from IPSec_VPN action allow name IPSec_VPN_Outgoing ! secure-policy6 6 from SSL_VPN action allow name SSL_VPN_Outgoing ! secure-policy6 7 from TUNNEL action allow name TUNNEL_Outgoing ! secure-policy6 8 from LAN1 to ZyWALL action allow name LAN1_to_Device ! secure-policy6 9 from LAN2 to ZyWALL action allow name LAN2_to_Device ! secure-policy6 10 from DMZ to ZyWALL service Default_Allow_v6_DMZ_To_ZyWALL action allow name DMZ_to_Device ! secure-policy6 11 from WAN to ZyWALL service Default_Allow_v6_WAN_To_ZyWALL action allow name WAN_to_Device ! secure-policy6 12 from IPSec_VPN to ZyWALL action allow name IPSec_VPN_to_Device ! secure-policy6 13 from SSL_VPN to ZyWALL action allow name SSL_VPN_to_Device ! secure-policy6 14 from TUNNEL to ZyWALL action allow name TUNNEL_to_Device ! secure-policy6 default-rule action deny log ! ip route control-virtual-server-rules activate ! no alg sip transformation no alg sip inactivity-timeout ! alg sip defaultport port 5060 ! no alg h323 transformation ! alg ftp alg ftp transformation ! users retry-limit users retry-count 5 users lockout-period 30 ! users update-lease automation ! app-watch-dog activate ! web-auth web-portal logout-ip 6.6.6.6 ! web-auth type default-web-portal ! web-auth type default-user-agreement ! web-auth exceptional-service DNS ! web-auth default-rule authentication unnecessary no log ! zymesh provision-group 5C:E2:8C:70:3F:D0 ! cloud-helper set remind never ! secu-reporter activate no ! wtp-logging system-log suppression ! wtp-logging mail 1 category all level all wtp-logging mail 2 category all level all ! no usb-storage activate no diag-info copy usb-storage ! no logging usb-storage ! logging system-log suppression logging system-log category forward-web-sites disable ! logging mail 1 category all level all ! logging mail 2 category all level all ! vrpt send interface statistics interval 15 vrpt send system status interval 15 vrpt send device information interval 3600 !