Project

General

Profile

Download (350 KB)

Bug #4513 » failing-config.xml

B. Derman, 03/11/2015 09:21 PM

 
1 
<?xml version="1.0"?>
2 
<pfsense>
3 
	<version>11.6</version>
4 
	<lastchange/>
5 
	<theme>pfsense_ng_fs</theme>
6 
	<sysctl>
7 
		<item>
8 
			<descr><![CDATA[Disable the pf ftp proxy handler.]]></descr>
9 
			<tunable>debug.pfftpproxy</tunable>
10 
			<value>default</value>
11 
		</item>
12 
		<item>
13 
			<descr><![CDATA[Increase UFS read-ahead speeds to match current state of hard drives and NCQ. More information here: http://ivoras.sharanet.org/blog/tree/2010-11-19.ufs-read-ahead.html]]></descr>
14 
			<tunable>vfs.read_max</tunable>
15 
			<value>default</value>
16 
		</item>
17 
		<item>
18 
			<descr><![CDATA[Set the ephemeral port range to be lower.]]></descr>
19 
			<tunable>net.inet.ip.portrange.first</tunable>
20 
			<value>default</value>
21 
		</item>
22 
		<item>
23 
			<descr><![CDATA[Drop packets to closed TCP ports without returning a RST]]></descr>
24 
			<tunable>net.inet.tcp.blackhole</tunable>
25 
			<value>default</value>
26 
		</item>
27 
		<item>
28 
			<descr><![CDATA[Do not send ICMP port unreachable messages for closed UDP ports]]></descr>
29 
			<tunable>net.inet.udp.blackhole</tunable>
30 
			<value>default</value>
31 
		</item>
32 
		<item>
33 
			<descr><![CDATA[Randomize the ID field in IP packets (default is 0: sequential IP IDs)]]></descr>
34 
			<tunable>net.inet.ip.random_id</tunable>
35 
			<value>default</value>
36 
		</item>
37 
		<item>
38 
			<descr><![CDATA[Drop SYN-FIN packets (breaks RFC1379, but nobody uses it anyway)]]></descr>
39 
			<tunable>net.inet.tcp.drop_synfin</tunable>
40 
			<value>default</value>
41 
		</item>
42 
		<item>
43 
			<descr><![CDATA[Enable sending IPv4 redirects]]></descr>
44 
			<tunable>net.inet.ip.redirect</tunable>
45 
			<value>default</value>
46 
		</item>
47 
		<item>
48 
			<descr><![CDATA[Enable sending IPv6 redirects]]></descr>
49 
			<tunable>net.inet6.ip6.redirect</tunable>
50 
			<value>default</value>
51 
		</item>
52 
		<item>
53 
			<descr><![CDATA[Generate SYN cookies for outbound SYN-ACK packets]]></descr>
54 
			<tunable>net.inet.tcp.syncookies</tunable>
55 
			<value>default</value>
56 
		</item>
57 
		<item>
58 
			<descr><![CDATA[Maximum incoming/outgoing TCP datagram size (receive)]]></descr>
59 
			<tunable>net.inet.tcp.recvspace</tunable>
60 
			<value>default</value>
61 
		</item>
62 
		<item>
63 
			<descr><![CDATA[Maximum incoming/outgoing TCP datagram size (send)]]></descr>
64 
			<tunable>net.inet.tcp.sendspace</tunable>
65 
			<value>default</value>
66 
		</item>
67 
		<item>
68 
			<descr><![CDATA[IP Fastforwarding]]></descr>
69 
			<tunable>net.inet.ip.fastforwarding</tunable>
70 
			<value>default</value>
71 
		</item>
72 
		<item>
73 
			<descr><![CDATA[Do not delay ACK to try and piggyback it onto a data packet]]></descr>
74 
			<tunable>net.inet.tcp.delayed_ack</tunable>
75 
			<value>default</value>
76 
		</item>
77 
		<item>
78 
			<descr><![CDATA[Maximum outgoing UDP datagram size]]></descr>
79 
			<tunable>net.inet.udp.maxdgram</tunable>
80 
			<value>default</value>
81 
		</item>
82 
		<item>
83 
			<descr><![CDATA[Handling of non-IP packets which are not passed to pfil (see if_bridge(4))]]></descr>
84 
			<tunable>net.link.bridge.pfil_onlyip</tunable>
85 
			<value>default</value>
86 
		</item>
87 
		<item>
88 
			<descr><![CDATA[Set to 0 to disable filtering on the incoming and outgoing member interfaces.]]></descr>
89 
			<tunable>net.link.bridge.pfil_member</tunable>
90 
			<value>default</value>
91 
		</item>
92 
		<item>
93 
			<descr><![CDATA[Set to 1 to enable filtering on the bridge interface]]></descr>
94 
			<tunable>net.link.bridge.pfil_bridge</tunable>
95 
			<value>default</value>
96 
		</item>
97 
		<item>
98 
			<descr><![CDATA[Allow unprivileged access to tap(4) device nodes]]></descr>
99 
			<tunable>net.link.tap.user_open</tunable>
100 
			<value>default</value>
101 
		</item>
102 
		<item>
103 
			<descr><![CDATA[Randomize PID's (see src/sys/kern/kern_fork.c: sysctl_kern_randompid())]]></descr>
104 
			<tunable>kern.randompid</tunable>
105 
			<value>default</value>
106 
		</item>
107 
		<item>
108 
			<descr><![CDATA[Maximum size of the IP input queue]]></descr>
109 
			<tunable>net.inet.ip.intr_queue_maxlen</tunable>
110 
			<value>default</value>
111 
		</item>
112 
		<item>
113 
			<descr><![CDATA[Disable CTRL+ALT+Delete reboot from keyboard.]]></descr>
114 
			<tunable>hw.syscons.kbd_reboot</tunable>
115 
			<value>default</value>
116 
		</item>
117 
		<item>
118 
			<descr><![CDATA[Enable TCP Inflight mode]]></descr>
119 
			<tunable>net.inet.tcp.inflight.enable</tunable>
120 
			<value>default</value>
121 
		</item>
122 
		<item>
123 
			<descr><![CDATA[Enable TCP extended debugging]]></descr>
124 
			<tunable>net.inet.tcp.log_debug</tunable>
125 
			<value>default</value>
126 
		</item>
127 
		<item>
128 
			<descr><![CDATA[Set ICMP Limits]]></descr>
129 
			<tunable>net.inet.icmp.icmplim</tunable>
130 
			<value>default</value>
131 
		</item>
132 
		<item>
133 
			<descr><![CDATA[TCP Offload Engine]]></descr>
134 
			<tunable>net.inet.tcp.tso</tunable>
135 
			<value>default</value>
136 
		</item>
137 
		<item>
138 
			<descr><![CDATA[Maximum socket buffer size]]></descr>
139 
			<tunable>kern.ipc.maxsockbuf</tunable>
140 
			<value>default</value>
141 
		</item>
142 
	</sysctl>
143 
	<system>
144 
		<optimization>normal</optimization>
145 
		<hostname>gateway2</hostname>
146 
		<domain>siteA.com</domain>
147 
		<group>
148 
			<name>admins</name>
149 
			<description><![CDATA[System Administrators]]></description>
150 
			<scope>system</scope>
151 
			<gid>1999</gid>
152 
			<member>0</member>
153 
			<priv>page-all</priv>
154 
			<priv>user-copy-files</priv>
155 
			<priv>user-shell-access</priv>
156 
			<priv>user-ssh-tunnel</priv>
157 
		</group>
158 
		<group>
159 
			<name>all</name>
160 
			<description><![CDATA[All Users]]></description>
161 
			<scope>system</scope>
162 
			<gid>1998</gid>
163 
		</group>
164 
		<group>
165 
			<name>Guests</name>
166 
			<description><![CDATA[Wireless Guests]]></description>
167 
			<member>2002</member>
168 
			<gid>2001</gid>
169 
			<priv>user-services-captiveportal-login</priv>
170 
		</group>
171 
		<group>
172 
			<name>MobileVPNusers</name>
173 
			<description><![CDATA[Mobile VPN users]]></description>
174 
			<member>2000</member>
175 
			<gid>2000</gid>
176 
			<priv>user-ipsec-xauth-dialin</priv>
177 
		</group>
178 
		<user>
179 
			<name>admin</name>
180 
			<descr><![CDATA[System Administrator]]></descr>
181 
			<scope>system</scope>
182 
			<groupname>admins</groupname>
183 
			<password>$1$W19XXHLB$h8Lrs8T6f2.uKz/Lj1MpI0</password>
184 
			<uid>0</uid>
185 
			<priv>user-shell-access</priv>
186 
			<md5-hash>3a4b4c4dde494d2cec3e0ea68e437e17</md5-hash>
187 
			<nt-hash>3338333834323034353935373932633863623430663264336164663532353636</nt-hash>
188 
		</user>
189 
		<user>
190 
			<scope>user</scope>
191 
			<password/>
192 
			<md5-hash>a9ddef8076a0e96323ed2b1d0629a6d0</md5-hash>
193 
			<nt-hash>3431393438343561626164393135393738666234666664363161663438323931</nt-hash>
194 
			<name>dei</name>
195 
			<descr><![CDATA[DEI]]></descr>
196 
			<expires/>
197 
			<authorizedkeys/>
198 
			<ipsecpsk/>
199 
			<uid>2000</uid>
200 
			<cert>52f5f81960248</cert>
201 
		</user>
202 
		<user>
203 
			<scope>user</scope>
204 
			<password/>
205 
			<md5-hash>a9ddef8076a1e96325cd2b1d0d29a6d0</md5-hash>
206 
			<nt-hash>3431393438343565626164393135593938666214666664363161663438323931</nt-hash>
207 
			<name>guest</name>
208 
			<descr><![CDATA[Wireless Guest User]]></descr>
209 
			<expires/>
210 
			<authorizedkeys/>
211 
			<ipsecpsk/>
212 
			<uid>2002</uid>
213 
			<priv>user-services-captiveportal-login</priv>
214 
		</user>
215 
		<nextuid>2004</nextuid>
216 
		<nextgid>2003</nextgid>
217 
		<timezone>America/Vancouver</timezone>
218 
		<time-update-interval/>
219 
		<timeservers>time.apple.com</timeservers>
220 
		<webgui>
221 
			<protocol>http</protocol>
222 
			<ssl-certref>52d8ee4f992fc</ssl-certref>
223 
			<port/>
224 
			<max_procs>4</max_procs>
225 
			<quietlogin/>
226 
			<session_timeout>120</session_timeout>
227 
			<authmode>Local Database</authmode>
228 
			<backend/>
229 
			<nodnsrebindcheck/>
230 
			<loginautocomplete/>
231 
		</webgui>
232 
		<disablesegmentationoffloading/>
233 
		<disablelargereceiveoffloading/>
234 
		<dns1gwint>none</dns1gwint>
235 
		<dns2gwint>none</dns2gwint>
236 
		<dns3gwint>none</dns3gwint>
237 
		<dns4gwint>none</dns4gwint>
238 
		<enablesshd>enabled</enablesshd>
239 
		<maximumstates>32000</maximumstates>
240 
		<maximumtableentries>3500000</maximumtableentries>
241 
		<reflectiontimeout>3600</reflectiontimeout>
242 
		<maximumtables>300</maximumtables>
243 
		<kill_states/>
244 
		<aliasesresolveinterval/>
245 
		<bogons>
246 
			<interval>daily</interval>
247 
		</bogons>
248 
		<powerd_ac_mode>hadp</powerd_ac_mode>
249 
		<powerd_battery_mode>hadp</powerd_battery_mode>
250 
		<skip_rules_gw_down/>
251 
		<use_mfs_tmp_size/>
252 
		<use_mfs_var_size/>
253 
		<enablenatreflectionhelper>yes</enablenatreflectionhelper>
254 
		<language>en_US</language>
255 
		<dns1gw>none</dns1gw>
256 
		<dns2gw>none</dns2gw>
257 
		<dns3gw>none</dns3gw>
258 
		<dns4gw>none</dns4gw>
259 
		<serialspeed>9600</serialspeed>
260 
		<gitsync>
261 
			<repositoryurl/>
262 
			<branch/>
263 
		</gitsync>
264 
		<ipv6allow/>
265 
		<primaryconsole>serial</primaryconsole>
266 
		<dnslocalhost/>
267 
		<firmware>
268 
			<disablecheck/>
269 
		</firmware>
270 
		<prefer_ipv4/>
271 
		<powerd_enable/>
272 
		<powerd_normal_mode>hadp</powerd_normal_mode>
273 
		<thermal_hardware>coretemp</thermal_hardware>
274 
		<dnsserver>172.24.16.166</dnsserver>
275 
	</system>
276 
	<interfaces>
277 
		<wan>
278 
			<enable/>
279 
			<if>igb1</if>
280 
			<blockpriv/>
281 
			<blockbogons/>
282 
			<descr><![CDATA[WAN_DEI]]></descr>
283 
			<spoofmac/>
284 
			<ipaddr>dhcp</ipaddr>
285 
			<dhcphostname/>
286 
			<alias-address/>
287 
			<alias-subnet>32</alias-subnet>
288 
			<dhcprejectfrom/>
289 
			<adv_dhcp_pt_timeout/>
290 
			<adv_dhcp_pt_retry/>
291 
			<adv_dhcp_pt_select_timeout/>
292 
			<adv_dhcp_pt_reboot/>
293 
			<adv_dhcp_pt_backoff_cutoff/>
294 
			<adv_dhcp_pt_initial_interval/>
295 
			<adv_dhcp_pt_values>SavedCfg</adv_dhcp_pt_values>
296 
			<adv_dhcp_send_options/>
297 
			<adv_dhcp_request_options/>
298 
			<adv_dhcp_required_options/>
299 
			<adv_dhcp_option_modifiers/>
300 
			<adv_dhcp_config_advanced/>
301 
			<adv_dhcp_config_file_override/>
302 
			<adv_dhcp_config_file_override_path/>
303 
		</wan>
304 
		<lan>
305 
			<enable/>
306 
			<if>igb0_vlan16</if>
307 
			<descr><![CDATA[LAN1]]></descr>
308 
			<spoofmac/>
309 
			<blockbogons/>
310 
			<ipaddr>172.24.16.2</ipaddr>
311 
			<subnet>24</subnet>
312 
		</lan>
313 
		<opt1>
314 
			<descr><![CDATA[LAN2]]></descr>
315 
			<if>igb0_vlan17</if>
316 
			<spoofmac/>
317 
			<blockbogons/>
318 
			<enable/>
319 
			<ipaddr>172.24.17.2</ipaddr>
320 
			<subnet>24</subnet>
321 
		</opt1>
322 
		<opt2>
323 
			<descr><![CDATA[LAN3]]></descr>
324 
			<if>igb0_vlan18</if>
325 
			<enable/>
326 
			<blockbogons/>
327 
			<spoofmac/>
328 
			<ipaddr>172.24.18.2</ipaddr>
329 
			<subnet>24</subnet>
330 
		</opt2>
331 
	</interfaces>
332 
	<staticroutes/>
333 
	<dhcpd>
334 
		<lan>
335 
			<range>
336 
				<from>172.24.16.112</from>
337 
				<to>172.24.16.116</to>
338 
			</range>
339 
			<defaultleasetime>18000</defaultleasetime>
340 
			<maxleasetime>18060</maxleasetime>
341 
			<netmask/>
342 
			<failover_peerip/>
343 
			<gateway/>
344 
			<ddnsdomain/>
345 
			<filename/>
346 
			<staticmap/>
347 
			<denyunknown/>
348 
			<domain/>
349 
			<domainsearchlist/>
350 
			<tftp/>
351 
			<ldap/>
352 
			<rootpath/>
353 
			<numberoptions/>
354 
			<dhcpleaseinlocaltime>yes</dhcpleaseinlocaltime>
355 
			<mac_allow/>
356 
			<mac_deny/>
357 
			<nextserver/>
358 
			<dnsserver>172.24.16.1</dnsserver>
359 
			<ddnsdomainprimary/>
360 
			<ddnsdomainkeyname/>
361 
			<ddnsdomainkey/>
362 
			<filename32/>
363 
			<filename64/>
364 
		</lan>
365 
		<opt1>
366 
			<range>
367 
				<from>172.24.17.110</from>
368 
				<to>172.24.17.119</to>
369 
			</range>
370 
			<failover_peerip/>
371 
			<dhcpleaseinlocaltime>yes</dhcpleaseinlocaltime>
372 
			<defaultleasetime>18000</defaultleasetime>
373 
			<maxleasetime>18060</maxleasetime>
374 
			<netmask/>
375 
			<gateway>172.24.17.1</gateway>
376 
			<domain>siteA.com</domain>
377 
			<domainsearchlist>siteA.com</domainsearchlist>
378 
			<ddnsdomain/>
379 
			<mac_allow/>
380 
			<mac_deny/>
381 
			<tftp/>
382 
			<ldap/>
383 
			<nextserver/>
384 
			<filename/>
385 
			<rootpath/>
386 
			<numberoptions/>
387 
			<dnsserver>172.24.17.1</dnsserver>
388 
			<ddnsdomainprimary/>
389 
			<ddnsdomainkeyname/>
390 
			<ddnsdomainkey/>
391 
			<ntpserver>172.24.17.1</ntpserver>
392 
			<filename32/>
393 
			<filename64/>
394 
		</opt1>
395 
	</dhcpd>
396 
	<pptpd>
397 
		<redir/>
398 
		<localip>172.24.16.252</localip>
399 
		<remoteip>172.24.16.48</remoteip>
400 
		<radius>
401 
			<server>
402 
				<ip/>
403 
				<port/>
404 
				<acctport/>
405 
				<secret/>
406 
			</server>
407 
			<secret/>
408 
			<server2>
409 
				<ip/>
410 
				<port/>
411 
				<acctport/>
412 
				<secret2/>
413 
			</server2>
414 
			<nasip/>
415 
			<acct_update/>
416 
		</radius>
417 
		<wins/>
418 
		<req128/>
419 
		<n_pptp_units>4</n_pptp_units>
420 
		<dns1>172.24.16.1</dns1>
421 
		<mode>off</mode>
422 
	</pptpd>
423 
	<dnsmasq>
424 
		<custom_options>addn-hosts=/usr/local/etc/hosts
425 
cache-size=96000</custom_options>
426 
		<interface>lan,opt1,opt2,lo0</interface>
427 
		<enable/>
428 
		<domainoverrides>
429 
			<domain>siteA.com</domain>
430 
			<ip>172.24.16.166</ip>
431 
			<descr><![CDATA[Internal siteA.com DNS]]></descr>
432 
		</domainoverrides>
433 
		<domainoverrides>
434 
			<domain>siteB.com</domain>
435 
			<ip>172.24.16.166</ip>
436 
			<descr><![CDATA[Internal siteB.com DNS]]></descr>
437 
		</domainoverrides>
438 
		<domainoverrides>
439 
			<domain>siteC.com</domain>
440 
			<ip>172.24.16.166</ip>
441 
			<descr><![CDATA[Internal siteC.com DNS]]></descr>
442 
		</domainoverrides>
443 
		<strictbind/>
444 
		<hosts>
445 
			<host>no-ads-dev</host>
446 
			<domain>siteA.com</domain>
447 
			<ip>172.24.16.99</ip>
448 
			<descr><![CDATA[The v4 IP for the development Ad-blocking server]]></descr>
449 
			<aliases/>
450 
		</hosts>
451 
		<hosts>
452 
			<host>no-ads-server</host>
453 
			<domain>siteA.com</domain>
454 
			<ip>172.24.18.99</ip>
455 
			<descr><![CDATA[The v4 IP for the production Ad-blocking server]]></descr>
456 
			<aliases/>
457 
		</hosts>
458 
		<hosts>
459 
			<host>no-ads-server-v6</host>
460 
			<domain>siteA.com</domain>
461 
			<ip>fe80:4::ca2a:14ff:fe51:c80</ip>
462 
			<descr><![CDATA[The v6 IP for the production Ad-blocking server]]></descr>
463 
			<aliases/>
464 
		</hosts>
465 
	</dnsmasq>
466 
	<snmpd>
467 
		<syslocation/>
468 
		<syscontact/>
469 
		<rocommunity>DEI</rocommunity>
470 
		<modules>
471 
			<mibii/>
472 
			<netgraph/>
473 
			<pf/>
474 
			<hostres/>
475 
			<ucd/>
476 
			<regex/>
477 
		</modules>
478 
		<enable/>
479 
		<pollport>161</pollport>
480 
		<trapserver/>
481 
		<trapserverport/>
482 
		<trapstring/>
483 
		<bindip>lan</bindip>
484 
	</snmpd>
485 
	<diag>
486 
		<ipv6nat/>
487 
	</diag>
488 
	<bridge/>
489 
	<syslog>
490 
		<nentries>750</nentries>
491 
		<reverse/>
492 
		<filterdescriptions>1</filterdescriptions>
493 
		<sourceip/>
494 
		<ipproto>ipv4</ipproto>
495 
		<nologdefaultblock/>
496 
		<nologbogons/>
497 
		<nologprivatenets/>
498 
	</syslog>
499 
	<nat>
500 
		<rule>
501 
			<source>
502 
				<address>NUTclientsOnLAN1</address>
503 
			</source>
504 
			<destination>
505 
				<address>NUTserver</address>
506 
				<port>NUTport</port>
507 
			</destination>
508 
			<protocol>tcp</protocol>
509 
			<target>pfSenseInternal</target>
510 
			<local-port>NUTport</local-port>
511 
			<interface>lan</interface>
512 
			<descr><![CDATA[Allow certain NUT clients on LAN1]]></descr>
513 
			<associated-rule-id>nat_54ac784ef1d582.91727783</associated-rule-id>
514 
			<created>
515 
				<time>1420589134</time>
516 
				<username>admin@172.24.16.235</username>
517 
			</created>
518 
			<updated>
519 
				<time>1425641161</time>
520 
				<username>admin@172.24.16.235</username>
521 
			</updated>
522 
		</rule>
523 
		<rule>
524 
			<source>
525 
				<address>NUTclientsOnLAN2</address>
526 
			</source>
527 
			<destination>
528 
				<address>NUTserver</address>
529 
				<port>NUTport</port>
530 
			</destination>
531 
			<protocol>tcp</protocol>
532 
			<target>pfSenseInternal</target>
533 
			<local-port>NUTport</local-port>
534 
			<interface>opt1</interface>
535 
			<descr><![CDATA[Allow certain NUT clients on LAN2]]></descr>
536 
			<associated-rule-id>nat_52c28163251599.67326802</associated-rule-id>
537 
			<created>
538 
				<time>1388478819</time>
539 
				<username>admin@172.24.17.234</username>
540 
			</created>
541 
			<updated>
542 
				<time>1423791584</time>
543 
				<username>admin@172.24.16.235</username>
544 
			</updated>
545 
			<tracker>1424949565</tracker>
546 
		</rule>
547 
		<rule>
548 
			<source>
549 
				<address>DevServersAndClients</address>
550 
			</source>
551 
			<destination>
552 
				<address>WAN1_DEI</address>
553 
				<port>PublicServerPorts</port>
554 
			</destination>
555 
			<protocol>tcp</protocol>
556 
			<target>DEIdevServer</target>
557 
			<local-port>PublicServerPorts</local-port>
558 
			<interface>wan</interface>
559 
			<descr><![CDATA[Pass siteA.com test server traffic]]></descr>
560 
			<associated-rule-id>nat_4f34ef8f23d3f2.59828398</associated-rule-id>
561 
			<updated>
562 
				<time>1425802933</time>
563 
				<username>admin@172.24.16.235</username>
564 
			</updated>
565 
		</rule>
566 
		<rule>
567 
			<source>
568 
				<address>DevServersAndClients</address>
569 
			</source>
570 
			<destination>
571 
				<address>WAN3_TAK</address>
572 
				<port>PublicServerPorts</port>
573 
			</destination>
574 
			<protocol>tcp</protocol>
575 
			<target>TAKdevServer</target>
576 
			<local-port>PublicServerPorts</local-port>
577 
			<interface>wan</interface>
578 
			<descr><![CDATA[Pass siteB.com test server traffic]]></descr>
579 
			<associated-rule-id>nat_4f34efdc5ee0d7.11748463</associated-rule-id>
580 
			<updated>
581 
				<time>1420452557</time>
582 
				<username>admin@172.24.16.235</username>
583 
			</updated>
584 
			<tracker>1424949567</tracker>
585 
		</rule>
586 
		<rule>
587 
			<source>
588 
				<address>DevServersAndClients</address>
589 
			</source>
590 
			<destination>
591 
				<address>WAN2_SE</address>
592 
				<port>PublicServerPorts</port>
593 
			</destination>
594 
			<protocol>tcp</protocol>
595 
			<target>SEdevServer</target>
596 
			<local-port>PublicServerPorts</local-port>
597 
			<interface>wan</interface>
598 
			<descr><![CDATA[Pass siteC.com test server traffic]]></descr>
599 
			<associated-rule-id>nat_4f34efbc3d3a27.03111339</associated-rule-id>
600 
			<updated>
601 
				<time>1420452543</time>
602 
				<username>admin@172.24.16.235</username>
603 
			</updated>
604 
			<tracker>1424949568</tracker>
605 
		</rule>
606 
		<rule>
607 
			<source>
608 
				<any/>
609 
			</source>
610 
			<destination>
611 
				<address>WAN1_DEI</address>
612 
				<port>PublicServerPorts</port>
613 
			</destination>
614 
			<protocol>tcp</protocol>
615 
			<target>DEIvServer</target>
616 
			<local-port>PublicServerPorts</local-port>
617 
			<interface>wan</interface>
618 
			<descr><![CDATA[Pass siteA.com public server traffic]]></descr>
619 
			<associated-rule-id>nat_549565338d1bb8.05530663</associated-rule-id>
620 
			<created>
621 
				<time>1419076915</time>
622 
				<username>admin@172.24.16.235</username>
623 
			</created>
624 
			<updated>
625 
				<time>1420445048</time>
626 
				<username>admin@172.24.16.235</username>
627 
			</updated>
628 
			<tracker>1424949569</tracker>
629 
		</rule>
630 
		<rule>
631 
			<source>
632 
				<any/>
633 
			</source>
634 
			<destination>
635 
				<address>WAN3_TAK</address>
636 
				<port>PublicServerPorts</port>
637 
			</destination>
638 
			<protocol>tcp</protocol>
639 
			<target>TAKvServer</target>
640 
			<local-port>PublicServerPorts</local-port>
641 
			<interface>wan</interface>
642 
			<descr><![CDATA[Pass siteB.com public server traffic]]></descr>
643 
			<associated-rule-id>nat_5496bf6b6806d0.74246506</associated-rule-id>
644 
			<created>
645 
				<time>1419165547</time>
646 
				<username>admin@172.24.16.235</username>
647 
			</created>
648 
			<updated>
649 
				<time>1420445040</time>
650 
				<username>admin@172.24.16.235</username>
651 
			</updated>
652 
			<tracker>1424949570</tracker>
653 
		</rule>
654 
		<rule>
655 
			<source>
656 
				<any/>
657 
			</source>
658 
			<destination>
659 
				<address>WAN2_SE</address>
660 
				<port>PublicServerPorts</port>
661 
			</destination>
662 
			<protocol>tcp</protocol>
663 
			<target>SEvServer</target>
664 
			<local-port>PublicServerPorts</local-port>
665 
			<interface>wan</interface>
666 
			<descr><![CDATA[Pass siteC.com public server traffic]]></descr>
667 
			<associated-rule-id>nat_5496bf4d23c6b1.56363454</associated-rule-id>
668 
			<created>
669 
				<time>1419165517</time>
670 
				<username>admin@172.24.16.235</username>
671 
			</created>
672 
			<updated>
673 
				<time>1420445029</time>
674 
				<username>admin@172.24.16.235</username>
675 
			</updated>
676 
			<tracker>1424949571</tracker>
677 
		</rule>
678 
		<rule>
679 
			<disabled/>
680 
			<source>
681 
				<any/>
682 
			</source>
683 
			<destination>
684 
				<address>WAN1_DEI</address>
685 
				<port>21</port>
686 
			</destination>
687 
			<protocol>tcp</protocol>
688 
			<target>DEIvServer</target>
689 
			<local-port>21</local-port>
690 
			<interface>wan</interface>
691 
			<descr><![CDATA[Pass siteA.com FTP traffic]]></descr>
692 
			<associated-rule-id>nat_4f34ec0b306bb1.09804029</associated-rule-id>
693 
			<updated>
694 
				<time>1420446747</time>
695 
				<username>admin@172.24.16.235</username>
696 
			</updated>
697 
			<tracker>1424949572</tracker>
698 
		</rule>
699 
		<rule>
700 
			<disabled/>
701 
			<source>
702 
				<any/>
703 
			</source>
704 
			<destination>
705 
				<address>WAN1_DEI</address>
706 
				<port>5400-5416</port>
707 
			</destination>
708 
			<protocol>tcp</protocol>
709 
			<target>DEIvServer</target>
710 
			<local-port>5400</local-port>
711 
			<interface>wan</interface>
712 
			<descr><![CDATA[Pass siteA.com FTP traffic]]></descr>
713 
			<associated-rule-id>nat_4f34ec66a20d96.02288737</associated-rule-id>
714 
			<updated>
715 
				<time>1420446732</time>
716 
				<username>admin@172.24.16.235</username>
717 
			</updated>
718 
			<tracker>1424949573</tracker>
719 
		</rule>
720 
		<rule>
721 
			<disabled/>
722 
			<source>
723 
				<any/>
724 
			</source>
725 
			<destination>
726 
				<address>WAN1_DEI</address>
727 
				<port>2427</port>
728 
			</destination>
729 
			<protocol>tcp/udp</protocol>
730 
			<target>VoIProuter</target>
731 
			<local-port>2427</local-port>
732 
			<interface>wan</interface>
733 
			<descr><![CDATA[Pass VoIP (MGCP port for gateways)]]></descr>
734 
			<associated-rule-id>nat_4f34f155ba0fc8.73668051</associated-rule-id>
735 
			<tracker>1424949574</tracker>
736 
		</rule>
737 
		<rule>
738 
			<disabled/>
739 
			<source>
740 
				<any/>
741 
			</source>
742 
			<destination>
743 
				<address>WAN1_DEI</address>
744 
				<port>2727</port>
745 
			</destination>
746 
			<protocol>tcp/udp</protocol>
747 
			<target>VoIProuter</target>
748 
			<local-port>2727</local-port>
749 
			<interface>wan</interface>
750 
			<descr><![CDATA[Pass VoIP (MGCP port for call agents)]]></descr>
751 
			<associated-rule-id>nat_4f34f195ec63a4.01374927</associated-rule-id>
752 
			<tracker>1424949575</tracker>
753 
		</rule>
754 
		<rule>
755 
			<disabled/>
756 
			<source>
757 
				<any/>
758 
			</source>
759 
			<destination>
760 
				<address>WAN1_DEI</address>
761 
				<port>5062</port>
762 
			</destination>
763 
			<protocol>tcp/udp</protocol>
764 
			<target>VoIProuter</target>
765 
			<local-port>5062</local-port>
766 
			<interface>wan</interface>
767 
			<descr><![CDATA[Pass VoIP (control)]]></descr>
768 
			<associated-rule-id>nat_4f34f1c6f2eeb5.63147915</associated-rule-id>
769 
			<tracker>1424949576</tracker>
770 
		</rule>
771 
		<rule>
772 
			<disabled/>
773 
			<source>
774 
				<any/>
775 
			</source>
776 
			<destination>
777 
				<address>WAN1_DEI</address>
778 
				<port>16384-32767</port>
779 
			</destination>
780 
			<protocol>udp</protocol>
781 
			<target>VoIProuter</target>
782 
			<local-port>16384</local-port>
783 
			<interface>wan</interface>
784 
			<descr><![CDATA[Pass VoIP (data)]]></descr>
785 
			<associated-rule-id>nat_4f34f1f9a6f7c6.60710030</associated-rule-id>
786 
			<tracker>1424949577</tracker>
787 
		</rule>
788 
		<rule>
789 
			<disabled/>
790 
			<source>
791 
				<any/>
792 
			</source>
793 
			<destination>
794 
				<address>WAN1_DEI</address>
795 
				<port>5900-5909</port>
796 
			</destination>
797 
			<protocol>tcp</protocol>
798 
			<target>BEDiMac</target>
799 
			<local-port>5900</local-port>
800 
			<interface>wan</interface>
801 
			<descr><![CDATA[Pass traffic to VNC server]]></descr>
802 
			<associated-rule-id>nat_4f34f259975314.00748715</associated-rule-id>
803 
			<updated>
804 
				<time>1420497774</time>
805 
				<username>admin@172.24.16.235</username>
806 
			</updated>
807 
			<tracker>1424949578</tracker>
808 
		</rule>
809 
		<rule>
810 
			<disabled/>
811 
			<source>
812 
				<any/>
813 
			</source>
814 
			<destination>
815 
				<network>wanip</network>
816 
				<port>BittorrentPort</port>
817 
			</destination>
818 
			<protocol>tcp/udp</protocol>
819 
			<target>BEDiMacOnLAN1</target>
820 
			<local-port>BittorrentPort</local-port>
821 
			<interface>wan</interface>
822 
			<descr><![CDATA[Pass Transmission's bittorrent P2P traffic]]></descr>
823 
			<associated-rule-id/>
824 
			<created>
825 
				<time>1415047261</time>
826 
				<username>admin@172.24.16.234</username>
827 
			</created>
828 
			<updated>
829 
				<time>1415047713</time>
830 
				<username>admin@172.24.16.234</username>
831 
			</updated>
832 
			<tracker>1424949579</tracker>
833 
		</rule>
834 
		<rule>
835 
			<disabled/>
836 
			<source>
837 
				<any/>
838 
			</source>
839 
			<destination>
840 
				<address>WAN4_Spare</address>
841 
				<port>BittorrentPort</port>
842 
			</destination>
843 
			<protocol>tcp/udp</protocol>
844 
			<target>BEDiMacOnLAN1</target>
845 
			<local-port>BittorrentPort</local-port>
846 
			<interface>wan</interface>
847 
			<descr><![CDATA[Pass Transmission's bittorrent P2P traffic]]></descr>
848 
			<associated-rule-id/>
849 
			<created>
850 
				<time>1387526105</time>
851 
				<username>admin@172.24.16.234</username>
852 
			</created>
853 
			<updated>
854 
				<time>1409472629</time>
855 
				<username>admin@172.24.16.234</username>
856 
			</updated>
857 
			<tracker>1424949580</tracker>
858 
		</rule>
859 
		<rule>
860 
			<disabled/>
861 
			<source>
862 
				<any/>
863 
			</source>
864 
			<destination>
865 
				<address>WAN5_Test</address>
866 
				<port>BittorrentPort</port>
867 
			</destination>
868 
			<protocol>tcp/udp</protocol>
869 
			<target>BEDiMacOnLAN1</target>
870 
			<local-port>BittorrentPort</local-port>
871 
			<interface>wan</interface>
872 
			<descr><![CDATA[Pass Transmission's bittorrent P2P traffic]]></descr>
873 
			<associated-rule-id>nat_50cd94bf3dee27.37073586</associated-rule-id>
874 
			<updated>
875 
				<time>1396422587</time>
876 
				<username>admin@172.24.16.234</username>
877 
			</updated>
878 
			<tracker>1424949581</tracker>
879 
		</rule>
880 
		<rule>
881 
			<disabled/>
882 
			<source>
883 
				<any/>
884 
			</source>
885 
			<destination>
886 
				<address>WAN4_Spare</address>
887 
				<port>GnutellaPort</port>
888 
			</destination>
889 
			<protocol>tcp/udp</protocol>
890 
			<target>BEDiMacOnLAN1</target>
891 
			<local-port>GnutellaPort</local-port>
892 
			<interface>wan</interface>
893 
			<descr><![CDATA[Pass Gtk-Guntella's P2P traffic]]></descr>
894 
			<associated-rule-id/>
895 
			<created>
896 
				<time>1387526089</time>
897 
				<username>admin@172.24.16.234</username>
898 
			</created>
899 
			<updated>
900 
				<time>1414863343</time>
901 
				<username>admin@172.24.16.234</username>
902 
			</updated>
903 
			<tracker>1424949582</tracker>
904 
		</rule>
905 
		<rule>
906 
			<disabled/>
907 
			<source>
908 
				<any/>
909 
			</source>
910 
			<destination>
911 
				<address>WAN5_Test</address>
912 
				<port>GnutellaPort</port>
913 
			</destination>
914 
			<protocol>tcp/udp</protocol>
915 
			<target>BEDiMacOnLAN1</target>
916 
			<local-port>GnutellaPort</local-port>
917 
			<interface>wan</interface>
918 
			<descr><![CDATA[Pass Gtk-Guntella's P2P traffic]]></descr>
919 
			<associated-rule-id>nat_5289db443d9f36.25480489</associated-rule-id>
920 
			<updated>
921 
				<time>1393244755</time>
922 
				<username>admin@172.24.16.234</username>
923 
			</updated>
924 
			<tracker>1424949583</tracker>
925 
		</rule>
926 
		<outbound>
927 
			<rule>
928 
				<source>
929 
					<network>BEDiMacLAN1</network>
930 
				</source>
931 
				<sourceport/>
932 
				<descr><![CDATA[WAN for BED's iMac's I'net traffic]]></descr>
933 
				<target/>
934 
				<targetip/>
935 
				<targetip_subnet>0</targetip_subnet>
936 
				<interface>wan</interface>
937 
				<poolopts/>
938 
				<destination>
939 
					<any/>
940 
				</destination>
941 
				<created>
942 
					<time>1385877143</time>
943 
					<username>admin@172.24.16.234</username>
944 
				</created>
945 
				<updated>
946 
					<time>1418160381</time>
947 
					<username>admin@172.24.16.235</username>
948 
				</updated>
949 
			</rule>
950 
			<rule>
951 
				<source>
952 
					<network>DEIsLAN1</network>
953 
				</source>
954 
				<sourceport/>
955 
				<descr><![CDATA[LAN1 to WAN_DEI]]></descr>
956 
				<target/>
957 
				<targetip/>
958 
				<targetip_subnet>0</targetip_subnet>
959 
				<interface>wan</interface>
960 
				<poolopts/>
961 
				<destination>
962 
					<any/>
963 
				</destination>
964 
				<created>
965 
					<time>1389661167</time>
966 
					<username>admin@172.24.16.234</username>
967 
				</created>
968 
				<updated>
969 
					<time>1391676498</time>
970 
					<username>admin@172.24.16.234</username>
971 
				</updated>
972 
			</rule>
973 
			<rule>
974 
				<source>
975 
					<network>DEIsLAN2</network>
976 
				</source>
977 
				<sourceport/>
978 
				<descr><![CDATA[LAN2 to WAN_DEI]]></descr>
979 
				<target/>
980 
				<targetip/>
981 
				<targetip_subnet>0</targetip_subnet>
982 
				<interface>wan</interface>
983 
				<poolopts/>
984 
				<destination>
985 
					<any/>
986 
				</destination>
987 
				<created>
988 
					<time>1388456948</time>
989 
					<username>admin@172.24.17.234</username>
990 
				</created>
991 
				<updated>
992 
					<time>1391676718</time>
993 
					<username>admin@172.24.16.234</username>
994 
				</updated>
995 
			</rule>
996 
			<rule>
997 
				<source>
998 
					<network>DEIsLAN3</network>
999 
				</source>
1000 
				<sourceport/>
1001 
				<descr><![CDATA[LAN3 to WAN_DEI]]></descr>
1002 
				<target/>
1003 
				<targetip/>
1004 
				<targetip_subnet>0</targetip_subnet>
1005 
				<interface>wan</interface>
1006 
				<poolopts/>
1007 
				<destination>
1008 
					<any/>
1009 
				</destination>
1010 
				<updated>
1011 
					<time>1399184169</time>
1012 
					<username>admin@172.24.16.234</username>
1013 
				</updated>
1014 
				<created>
1015 
					<time>1399184169</time>
1016 
					<username>admin@172.24.16.234</username>
1017 
				</created>
1018 
			</rule>
1019 
			<rule>
1020 
				<source>
1021 
					<network>MobileVPNlans</network>
1022 
				</source>
1023 
				<sourceport/>
1024 
				<descr><![CDATA[Mobile virtual VPN LANs to WAN used for mobile VPNs]]></descr>
1025 
				<target>MobileVPNwan</target>
1026 
				<targetip/>
1027 
				<targetip_subnet>0</targetip_subnet>
1028 
				<interface>wan</interface>
1029 
				<poolopts/>
1030 
				<destination>
1031 
					<any/>
1032 
				</destination>
1033 
				<created>
1034 
					<time>1390079920</time>
1035 
					<username>admin@172.24.16.234</username>
1036 
				</created>
1037 
				<updated>
1038 
					<time>1425803103</time>
1039 
					<username>admin@172.24.16.235</username>
1040 
				</updated>
1041 
			</rule>
1042 
			<rule>
1043 
				<source>
1044 
					<network>127.0.0.0/8</network>
1045 
				</source>
1046 
				<sourceport/>
1047 
				<descr><![CDATA[Auto-created: localhost to WAN_DEI]]></descr>
1048 
				<target/>
1049 
				<targetip/>
1050 
				<targetip_subnet>0</targetip_subnet>
1051 
				<interface>wan</interface>
1052 
				<poolopts/>
1053 
				<destination>
1054 
					<any/>
1055 
				</destination>
1056 
				<natport>1024:65535</natport>
1057 
				<created>
1058 
					<time>1385876023</time>
1059 
					<username>Manual Outbound NAT Switch</username>
1060 
				</created>
1061 
				<updated>
1062 
					<time>1391675182</time>
1063 
					<username>admin@172.24.16.234</username>
1064 
				</updated>
1065 
			</rule>
1066 
			<mode>advanced</mode>
1067 
		</outbound>
1068 
	</nat>
1069 
	<filter>
1070 
		<rule>
1071 
			<id/>
1072 
			<type>match</type>
1073 
			<interface>wan,enc0,openvpn</interface>
1074 
			<ipprotocol>inet</ipprotocol>
1075 
			<tag/>
1076 
			<tagged/>
1077 
			<direction>any</direction>
1078 
			<floating>yes</floating>
1079 
			<max/>
1080 
			<max-src-nodes/>
1081 
			<max-src-conn/>
1082 
			<max-src-states/>
1083 
			<statetimeout/>
1084 
			<statetype>keep state</statetype>
1085 
			<os/>
1086 
			<protocol>udp</protocol>
1087 
			<source>
1088 
				<any/>
1089 
			</source>
1090 
			<destination>
1091 
				<any/>
1092 
			</destination>
1093 
			<disabled/>
1094 
			<descr><![CDATA[Reserved for WAN &amp; VPN VoiP UDP]]></descr>
1095 
			<created>
1096 
				<time>1392069648</time>
1097 
				<username>Traffic Shaper Wizard</username>
1098 
			</created>
1099 
			<updated>
1100 
				<time>1421574966</time>
1101 
				<username>admin@172.24.16.235</username>
1102 
			</updated>
1103 
			<tracker>1424949564</tracker>
1104 
		</rule>
1105 
		<rule>
1106 
			<id/>
1107 
			<type>match</type>
1108 
			<interface>lan</interface>
1109 
			<ipprotocol>inet</ipprotocol>
1110 
			<tag/>
1111 
			<tagged/>
1112 
			<direction>any</direction>
1113 
			<floating>yes</floating>
1114 
			<max/>
1115 
			<max-src-nodes/>
1116 
			<max-src-conn/>
1117 
			<max-src-states/>
1118 
			<statetimeout/>
1119 
			<statetype>keep state</statetype>
1120 
			<os/>
1121 
			<protocol>udp</protocol>
1122 
			<source>
1123 
				<any/>
1124 
			</source>
1125 
			<destination>
1126 
				<any/>
1127 
			</destination>
1128 
			<disabled/>
1129 
			<descr><![CDATA[Reserved for LAN1 VoiP UDP]]></descr>
1130 
			<updated>
1131 
				<time>1421568857</time>
1132 
				<username>admin@172.24.16.235</username>
1133 
			</updated>
1134 
			<created>
1135 
				<time>1421568857</time>
1136 
				<username>admin@172.24.16.235</username>
1137 
			</created>
1138 
			<tracker>1424949565</tracker>
1139 
		</rule>
1140 
		<rule>
1141 
			<id/>
1142 
			<type>match</type>
1143 
			<interface>opt1</interface>
1144 
			<ipprotocol>inet</ipprotocol>
1145 
			<tag/>
1146 
			<tagged/>
1147 
			<direction>any</direction>
1148 
			<floating>yes</floating>
1149 
			<max/>
1150 
			<max-src-nodes/>
1151 
			<max-src-conn/>
1152 
			<max-src-states/>
1153 
			<statetimeout/>
1154 
			<statetype>keep state</statetype>
1155 
			<os/>
1156 
			<protocol>udp</protocol>
1157 
			<source>
1158 
				<any/>
1159 
			</source>
1160 
			<destination>
1161 
				<any/>
1162 
			</destination>
1163 
			<disabled/>
1164 
			<descr><![CDATA[Reserved for LAN2 VoiP UDP]]></descr>
1165 
			<updated>
1166 
				<time>1421568886</time>
1167 
				<username>admin@172.24.16.235</username>
1168 
			</updated>
1169 
			<created>
1170 
				<time>1421568886</time>
1171 
				<username>admin@172.24.16.235</username>
1172 
			</created>
1173 
			<tracker>1424949566</tracker>
1174 
		</rule>
1175 
		<rule>
1176 
			<id/>
1177 
			<type>match</type>
1178 
			<interface>opt2</interface>
1179 
			<ipprotocol>inet</ipprotocol>
1180 
			<tag/>
1181 
			<tagged/>
1182 
			<direction>any</direction>
1183 
			<floating>yes</floating>
1184 
			<max/>
1185 
			<max-src-nodes/>
1186 
			<max-src-conn/>
1187 
			<max-src-states/>
1188 
			<statetimeout/>
1189 
			<statetype>keep state</statetype>
1190 
			<os/>
1191 
			<protocol>udp</protocol>
1192 
			<source>
1193 
				<any/>
1194 
			</source>
1195 
			<destination>
1196 
				<any/>
1197 
			</destination>
1198 
			<disabled/>
1199 
			<descr><![CDATA[Reserved for LAN3 VoiP UDP]]></descr>
1200 
			<created>
1201 
				<time>1421568895</time>
1202 
				<username>admin@172.24.16.235</username>
1203 
			</created>
1204 
			<updated>
1205 
				<time>1421654203</time>
1206 
				<username>admin@172.24.16.235</username>
1207 
			</updated>
1208 
			<tracker>1424949567</tracker>
1209 
		</rule>
1210 
		<rule>
1211 
			<id/>
1212 
			<type>match</type>
1213 
			<interface>wan,enc0,openvpn</interface>
1214 
			<ipprotocol>inet</ipprotocol>
1215 
			<tag/>
1216 
			<tagged/>
1217 
			<direction>any</direction>
1218 
			<floating>yes</floating>
1219 
			<max/>
1220 
			<max-src-nodes/>
1221 
			<max-src-conn/>
1222 
			<max-src-states/>
1223 
			<statetimeout/>
1224 
			<statetype>keep state</statetype>
1225 
			<os/>
1226 
			<protocol>tcp</protocol>
1227 
			<source>
1228 
				<address>aTVs</address>
1229 
				<not/>
1230 
			</source>
1231 
			<destination>
1232 
				<any/>
1233 
				<port>HiPriorityTCPports</port>
1234 
			</destination>
1235 
			<descr><![CDATA[WAN &amp; VPN high priority TCP]]></descr>
1236 
			<defaultqueue>WANqHigh</defaultqueue>
1237 
			<ackqueue>WANqACK</ackqueue>
1238 
			<created>
1239 
				<time>1392069648</time>
1240 
				<username>Traffic Shaper Wizard</username>
1241 
			</created>
1242 
			<updated>
1243 
				<time>1424309806</time>
1244 
				<username>admin@172.24.16.235</username>
1245 
			</updated>
1246 
			<tracker>1424949568</tracker>
1247 
		</rule>
1248 
		<rule>
1249 
			<id/>
1250 
			<type>match</type>
1251 
			<interface>lan</interface>
1252 
			<ipprotocol>inet</ipprotocol>
1253 
			<tag/>
1254 
			<tagged/>
1255 
			<direction>any</direction>
1256 
			<floating>yes</floating>
1257 
			<max/>
1258 
			<max-src-nodes/>
1259 
			<max-src-conn/>
1260 
			<max-src-states/>
1261 
			<statetimeout/>
1262 
			<statetype>keep state</statetype>
1263 
			<os/>
1264 
			<protocol>tcp</protocol>
1265 
			<source>
1266 
				<address>aTVs</address>
1267 
				<not/>
1268 
			</source>
1269 
			<destination>
1270 
				<any/>
1271 
				<port>HiPriorityTCPports</port>
1272 
			</destination>
1273 
			<descr><![CDATA[LAN1 high priority TCP]]></descr>
1274 
			<defaultqueue>LAN1qHigh</defaultqueue>
1275 
			<ackqueue>LAN1qACK</ackqueue>
1276 
			<created>
1277 
				<time>1421570649</time>
1278 
				<username>admin@172.24.16.235</username>
1279 
			</created>
1280 
			<updated>
1281 
				<time>1424309925</time>
1282 
				<username>admin@172.24.16.235</username>
1283 
			</updated>
1284 
			<tracker>1424949569</tracker>
1285 
		</rule>
1286 
		<rule>
1287 
			<id/>
1288 
			<type>match</type>
1289 
			<interface>opt1</interface>
1290 
			<ipprotocol>inet</ipprotocol>
1291 
			<tag/>
1292 
			<tagged/>
1293 
			<direction>any</direction>
1294 
			<floating>yes</floating>
1295 
			<max/>
1296 
			<max-src-nodes/>
1297 
			<max-src-conn/>
1298 
			<max-src-states/>
1299 
			<statetimeout/>
1300 
			<statetype>keep state</statetype>
1301 
			<os/>
1302 
			<protocol>tcp</protocol>
1303 
			<source>
1304 
				<address>aTVs</address>
1305 
				<not/>
1306 
			</source>
1307 
			<destination>
1308 
				<any/>
1309 
				<port>HiPriorityTCPports</port>
1310 
			</destination>
1311 
			<descr><![CDATA[LAN2 high priority TCP]]></descr>
1312 
			<defaultqueue>LAN2qHigh</defaultqueue>
1313 
			<ackqueue>LAN2qACK</ackqueue>
1314 
			<created>
1315 
				<time>1421573390</time>
1316 
				<username>admin@172.24.16.235</username>
1317 
			</created>
1318 
			<updated>
1319 
				<time>1424309963</time>
1320 
				<username>admin@172.24.16.235</username>
1321 
			</updated>
1322 
			<tracker>1424949570</tracker>
1323 
		</rule>
1324 
		<rule>
1325 
			<id/>
1326 
			<type>match</type>
1327 
			<interface>opt2</interface>
1328 
			<ipprotocol>inet</ipprotocol>
1329 
			<tag/>
1330 
			<tagged/>
1331 
			<direction>any</direction>
1332 
			<floating>yes</floating>
1333 
			<max/>
1334 
			<max-src-nodes/>
1335 
			<max-src-conn/>
1336 
			<max-src-states/>
1337 
			<statetimeout/>
1338 
			<statetype>keep state</statetype>
1339 
			<os/>
1340 
			<protocol>tcp</protocol>
1341 
			<source>
1342 
				<address>aTVs</address>
1343 
				<not/>
1344 
			</source>
1345 
			<destination>
1346 
				<any/>
1347 
				<port>HiPriorityTCPports</port>
1348 
			</destination>
1349 
			<descr><![CDATA[LAN3 high priority TCP]]></descr>
1350 
			<defaultqueue>LAN3qHigh</defaultqueue>
1351 
			<ackqueue>LAN3qACK</ackqueue>
1352 
			<created>
1353 
				<time>1421574842</time>
1354 
				<username>admin@172.24.16.235</username>
1355 
			</created>
1356 
			<updated>
1357 
				<time>1424309985</time>
1358 
				<username>admin@172.24.16.235</username>
1359 
			</updated>
1360 
			<tracker>1424949571</tracker>
1361 
		</rule>
1362 
		<rule>
1363 
			<id/>
1364 
			<type>match</type>
1365 
			<interface>wan,enc0,openvpn</interface>
1366 
			<ipprotocol>inet</ipprotocol>
1367 
			<tag/>
1368 
			<tagged/>
1369 
			<direction>any</direction>
1370 
			<floating>yes</floating>
1371 
			<max/>
1372 
			<max-src-nodes/>
1373 
			<max-src-conn/>
1374 
			<max-src-states/>
1375 
			<statetimeout/>
1376 
			<statetype>keep state</statetype>
1377 
			<os/>
1378 
			<protocol>udp</protocol>
1379 
			<source>
1380 
				<address>aTVs</address>
1381 
				<not/>
1382 
			</source>
1383 
			<destination>
1384 
				<any/>
1385 
				<port>HiPriorityUDPports</port>
1386 
			</destination>
1387 
			<descr><![CDATA[WAN &amp; VPN high priority UDP]]></descr>
1388 
			<defaultqueue>WANqHigh</defaultqueue>
1389 
			<created>
1390 
				<time>1392069648</time>
1391 
				<username>Traffic Shaper Wizard</username>
1392 
			</created>
1393 
			<updated>
1394 
				<time>1421575461</time>
1395 
				<username>admin@172.24.16.235</username>
1396 
			</updated>
1397 
			<tracker>1424949572</tracker>
1398 
		</rule>
1399 
		<rule>
1400 
			<id/>
1401 
			<type>match</type>
1402 
			<interface>lan</interface>
1403 
			<ipprotocol>inet</ipprotocol>
1404 
			<tag/>
1405 
			<tagged/>
1406 
			<direction>any</direction>
1407 
			<floating>yes</floating>
1408 
			<max/>
1409 
			<max-src-nodes/>
1410 
			<max-src-conn/>
1411 
			<max-src-states/>
1412 
			<statetimeout/>
1413 
			<statetype>keep state</statetype>
1414 
			<os/>
1415 
			<protocol>udp</protocol>
1416 
			<source>
1417 
				<address>aTVs</address>
1418 
				<not/>
1419 
			</source>
1420 
			<destination>
1421 
				<any/>
1422 
				<port>HiPriorityUDPports</port>
1423 
			</destination>
1424 
			<descr><![CDATA[LAN1 high priority UDP]]></descr>
1425 
			<defaultqueue>LAN1qHigh</defaultqueue>
1426 
			<created>
1427 
				<time>1421570709</time>
1428 
				<username>admin@172.24.16.235</username>
1429 
			</created>
1430 
			<updated>
1431 
				<time>1421573569</time>
1432 
				<username>admin@172.24.16.235</username>
1433 
			</updated>
1434 
			<tracker>1424949573</tracker>
1435 
		</rule>
1436 
		<rule>
1437 
			<id/>
1438 
			<type>match</type>
1439 
			<interface>opt1</interface>
1440 
			<ipprotocol>inet</ipprotocol>
1441 
			<tag/>
1442 
			<tagged/>
1443 
			<direction>any</direction>
1444 
			<floating>yes</floating>
1445 
			<max/>
1446 
			<max-src-nodes/>
1447 
			<max-src-conn/>
1448 
			<max-src-states/>
1449 
			<statetimeout/>
1450 
			<statetype>keep state</statetype>
1451 
			<os/>
1452 
			<protocol>udp</protocol>
1453 
			<source>
1454 
				<address>aTVs</address>
1455 
				<not/>
1456 
			</source>
1457 
			<destination>
1458 
				<any/>
1459 
				<port>HiPriorityUDPports</port>
1460 
			</destination>
1461 
			<descr><![CDATA[LAN2 high priority UDP]]></descr>
1462 
			<defaultqueue>LAN2qHigh</defaultqueue>
1463 
			<updated>
1464 
				<time>1421573356</time>
1465 
				<username>admin@172.24.16.235</username>
1466 
			</updated>
1467 
			<created>
1468 
				<time>1421573356</time>
1469 
				<username>admin@172.24.16.235</username>
1470 
			</created>
1471 
			<tracker>1424949574</tracker>
1472 
		</rule>
1473 
		<rule>
1474 
			<id/>
1475 
			<type>match</type>
1476 
			<interface>opt2</interface>
1477 
			<ipprotocol>inet</ipprotocol>
1478 
			<tag/>
1479 
			<tagged/>
1480 
			<direction>any</direction>
1481 
			<floating>yes</floating>
1482 
			<max/>
1483 
			<max-src-nodes/>
1484 
			<max-src-conn/>
1485 
			<max-src-states/>
1486 
			<statetimeout/>
1487 
			<statetype>keep state</statetype>
1488 
			<os/>
1489 
			<protocol>udp</protocol>
1490 
			<source>
1491 
				<address>aTVs</address>
1492 
				<not/>
1493 
			</source>
1494 
			<destination>
1495 
				<any/>
1496 
				<port>HiPriorityUDPports</port>
1497 
			</destination>
1498 
			<descr><![CDATA[LAN3 high priority UDP]]></descr>
1499 
			<defaultqueue>LAN3qHigh</defaultqueue>
1500 
			<updated>
1501 
				<time>1421574820</time>
1502 
				<username>admin@172.24.16.235</username>
1503 
			</updated>
1504 
			<created>
1505 
				<time>1421574820</time>
1506 
				<username>admin@172.24.16.235</username>
1507 
			</created>
1508 
			<tracker>1424949575</tracker>
1509 
		</rule>
1510 
		<rule>
1511 
			<id/>
1512 
			<type>match</type>
1513 
			<interface>wan,enc0,openvpn</interface>
1514 
			<ipprotocol>inet</ipprotocol>
1515 
			<tag/>
1516 
			<tagged/>
1517 
			<direction>any</direction>
1518 
			<floating>yes</floating>
1519 
			<max/>
1520 
			<max-src-nodes/>
1521 
			<max-src-conn/>
1522 
			<max-src-states/>
1523 
			<statetimeout/>
1524 
			<statetype>keep state</statetype>
1525 
			<os/>
1526 
			<protocol>ah</protocol>
1527 
			<source>
1528 
				<any/>
1529 
			</source>
1530 
			<destination>
1531 
				<any/>
1532 
			</destination>
1533 
			<descr><![CDATA[WAN &amp; VPN IPSEC AH (auth)]]></descr>
1534 
			<defaultqueue>WANqHigh</defaultqueue>
1535 
			<created>
1536 
				<time>1392069648</time>
1537 
				<username>Traffic Shaper Wizard</username>
1538 
			</created>
1539 
			<updated>
1540 
				<time>1421575421</time>
1541 
				<username>admin@172.24.16.235</username>
1542 
			</updated>
1543 
			<tracker>1424949576</tracker>
1544 
		</rule>
1545 
		<rule>
1546 
			<id/>
1547 
			<type>match</type>
1548 
			<interface>wan,enc0,openvpn</interface>
1549 
			<ipprotocol>inet</ipprotocol>
1550 
			<tag/>
1551 
			<tagged/>
1552 
			<direction>any</direction>
1553 
			<floating>yes</floating>
1554 
			<max/>
1555 
			<max-src-nodes/>
1556 
			<max-src-conn/>
1557 
			<max-src-states/>
1558 
			<statetimeout/>
1559 
			<statetype>keep state</statetype>
1560 
			<os/>
1561 
			<protocol>esp</protocol>
1562 
			<source>
1563 
				<any/>
1564 
			</source>
1565 
			<destination>
1566 
				<any/>
1567 
			</destination>
1568 
			<descr><![CDATA[WAN &amp; VPN IPSEC ESP (enc)]]></descr>
1569 
			<defaultqueue>WANqHigh</defaultqueue>
1570 
			<created>
1571 
				<time>1392069648</time>
1572 
				<username>Traffic Shaper Wizard</username>
1573 
			</created>
1574 
			<updated>
1575 
				<time>1421575394</time>
1576 
				<username>admin@172.24.16.235</username>
1577 
			</updated>
1578 
			<tracker>1424949577</tracker>
1579 
		</rule>
1580 
		<rule>
1581 
			<id/>
1582 
			<type>match</type>
1583 
			<interface>wan</interface>
1584 
			<ipprotocol>inet</ipprotocol>
1585 
			<tag/>
1586 
			<tagged/>
1587 
			<direction>any</direction>
1588 
			<floating>yes</floating>
1589 
			<max/>
1590 
			<max-src-nodes/>
1591 
			<max-src-conn/>
1592 
			<max-src-states/>
1593 
			<statetimeout/>
1594 
			<statetype>keep state</statetype>
1595 
			<os/>
1596 
			<protocol>icmp</protocol>
1597 
			<source>
1598 
				<any/>
1599 
			</source>
1600 
			<destination>
1601 
				<any/>
1602 
			</destination>
1603 
			<descr><![CDATA[WAN ICMP]]></descr>
1604 
			<defaultqueue>WANqHigh</defaultqueue>
1605 
			<created>
1606 
				<time>1392069648</time>
1607 
				<username>Traffic Shaper Wizard</username>
1608 
			</created>
1609 
			<updated>
1610 
				<time>1421653303</time>
1611 
				<username>admin@172.24.16.235</username>
1612 
			</updated>
1613 
			<tracker>1424949578</tracker>
1614 
		</rule>
1615 
		<rule>
1616 
			<id/>
1617 
			<type>match</type>
1618 
			<interface>wan,enc0,openvpn</interface>
1619 
			<ipprotocol>inet</ipprotocol>
1620 
			<tag/>
1621 
			<tagged/>
1622 
			<direction>any</direction>
1623 
			<floating>yes</floating>
1624 
			<max/>
1625 
			<max-src-nodes/>
1626 
			<max-src-conn/>
1627 
			<max-src-states/>
1628 
			<statetimeout/>
1629 
			<statetype>keep state</statetype>
1630 
			<os/>
1631 
			<protocol>tcp</protocol>
1632 
			<source>
1633 
				<address>aTVs</address>
1634 
			</source>
1635 
			<destination>
1636 
				<any/>
1637 
			</destination>
1638 
			<descr><![CDATA[WAN &amp; VPN medium priority TCP]]></descr>
1639 
			<defaultqueue>WANqMedium</defaultqueue>
1640 
			<ackqueue>WANqACK</ackqueue>
1641 
			<created>
1642 
				<time>1392284188</time>
1643 
				<username>admin@172.24.16.234</username>
1644 
			</created>
1645 
			<updated>
1646 
				<time>1421575354</time>
1647 
				<username>admin@172.24.16.235</username>
1648 
			</updated>
1649 
			<tracker>1424949579</tracker>
1650 
		</rule>
1651 
		<rule>
1652 
			<id/>
1653 
			<type>match</type>
1654 
			<interface>lan</interface>
1655 
			<ipprotocol>inet</ipprotocol>
1656 
			<tag/>
1657 
			<tagged/>
1658 
			<direction>any</direction>
1659 
			<floating>yes</floating>
1660 
			<max/>
1661 
			<max-src-nodes/>
1662 
			<max-src-conn/>
1663 
			<max-src-states/>
1664 
			<statetimeout/>
1665 
			<statetype>keep state</statetype>
1666 
			<os/>
1667 
			<protocol>tcp</protocol>
1668 
			<source>
1669 
				<address>aTVs</address>
1670 
			</source>
1671 
			<destination>
1672 
				<any/>
1673 
			</destination>
1674 
			<descr><![CDATA[LAN1 medium priority TCP]]></descr>
1675 
			<defaultqueue>LAN1qMedium</defaultqueue>
1676 
			<ackqueue>LAN1qACK</ackqueue>
1677 
			<created>
1678 
				<time>1421570880</time>
1679 
				<username>admin@172.24.16.235</username>
1680 
			</created>
1681 
			<updated>
1682 
				<time>1421572833</time>
1683 
				<username>admin@172.24.16.235</username>
1684 
			</updated>
1685 
			<tracker>1424949580</tracker>
1686 
		</rule>
1687 
		<rule>
1688 
			<id/>
1689 
			<type>match</type>
1690 
			<interface>opt1</interface>
1691 
			<ipprotocol>inet</ipprotocol>
1692 
			<tag/>
1693 
			<tagged/>
1694 
			<direction>any</direction>
1695 
			<floating>yes</floating>
1696 
			<max/>
1697 
			<max-src-nodes/>
1698 
			<max-src-conn/>
1699 
			<max-src-states/>
1700 
			<statetimeout/>
1701 
			<statetype>keep state</statetype>
1702 
			<os/>
1703 
			<protocol>tcp</protocol>
1704 
			<source>
1705 
				<address>aTVs</address>
1706 
			</source>
1707 
			<destination>
1708 
				<any/>
1709 
			</destination>
1710 
			<descr><![CDATA[LAN2 medium priority TCP]]></descr>
1711 
			<defaultqueue>LAN2qMedium</defaultqueue>
1712 
			<ackqueue>LAN2qACK</ackqueue>
1713 
			<updated>
1714 
				<time>1421573329</time>
1715 
				<username>admin@172.24.16.235</username>
1716 
			</updated>
1717 
			<created>
1718 
				<time>1421573329</time>
1719 
				<username>admin@172.24.16.235</username>
1720 
			</created>
1721 
			<tracker>1424949581</tracker>
1722 
		</rule>
1723 
		<rule>
1724 
			<id/>
1725 
			<type>match</type>
1726 
			<interface>opt2</interface>
1727 
			<ipprotocol>inet</ipprotocol>
1728 
			<tag/>
1729 
			<tagged/>
1730 
			<direction>any</direction>
1731 
			<floating>yes</floating>
1732 
			<max/>
1733 
			<max-src-nodes/>
1734 
			<max-src-conn/>
1735 
			<max-src-states/>
1736 
			<statetimeout/>
1737 
			<statetype>keep state</statetype>
1738 
			<os/>
1739 
			<protocol>tcp</protocol>
1740 
			<source>
1741 
				<address>aTVs</address>
1742 
			</source>
1743 
			<destination>
1744 
				<any/>
1745 
			</destination>
1746 
			<descr><![CDATA[LAN3 medium priority TCP]]></descr>
1747 
			<defaultqueue>LAN3qMedium</defaultqueue>
1748 
			<ackqueue>LAN3qACK</ackqueue>
1749 
			<updated>
1750 
				<time>1421574787</time>
1751 
				<username>admin@172.24.16.235</username>
1752 
			</updated>
1753 
			<created>
1754 
				<time>1421574787</time>
1755 
				<username>admin@172.24.16.235</username>
1756 
			</created>
1757 
			<tracker>1424949582</tracker>
1758 
		</rule>
1759 
		<rule>
1760 
			<id/>
1761 
			<type>match</type>
1762 
			<interface>wan,enc0,openvpn</interface>
1763 
			<ipprotocol>inet</ipprotocol>
1764 
			<tag/>
1765 
			<tagged/>
1766 
			<direction>any</direction>
1767 
			<floating>yes</floating>
1768 
			<max/>
1769 
			<max-src-nodes/>
1770 
			<max-src-conn/>
1771 
			<max-src-states/>
1772 
			<statetimeout/>
1773 
			<statetype>keep state</statetype>
1774 
			<os/>
1775 
			<protocol>udp</protocol>
1776 
			<source>
1777 
				<address>aTVs</address>
1778 
			</source>
1779 
			<destination>
1780 
				<any/>
1781 
			</destination>
1782 
			<descr><![CDATA[WAN &amp; VPN medium priority UDP]]></descr>
1783 
			<defaultqueue>WANqMedium</defaultqueue>
1784 
			<created>
1785 
				<time>1392284616</time>
1786 
				<username>admin@172.24.16.234</username>
1787 
			</created>
1788 
			<updated>
1789 
				<time>1421575330</time>
1790 
				<username>admin@172.24.16.235</username>
1791 
			</updated>
1792 
			<tracker>1424949583</tracker>
1793 
		</rule>
1794 
		<rule>
1795 
			<id/>
1796 
			<type>match</type>
1797 
			<interface>lan</interface>
1798 
			<ipprotocol>inet</ipprotocol>
1799 
			<tag/>
1800 
			<tagged/>
1801 
			<direction>any</direction>
1802 
			<floating>yes</floating>
1803 
			<max/>
1804 
			<max-src-nodes/>
1805 
			<max-src-conn/>
1806 
			<max-src-states/>
1807 
			<statetimeout/>
1808 
			<statetype>keep state</statetype>
1809 
			<os/>
1810 
			<protocol>udp</protocol>
1811 
			<source>
1812 
				<address>aTVs</address>
1813 
			</source>
1814 
			<destination>
1815 
				<any/>
1816 
			</destination>
1817 
			<descr><![CDATA[LAN1 medium priority UDP]]></descr>
1818 
			<defaultqueue>LAN1qMedium</defaultqueue>
1819 
			<created>
1820 
				<time>1421570904</time>
1821 
				<username>admin@172.24.16.235</username>
1822 
			</created>
1823 
			<updated>
1824 
				<time>1421573542</time>
1825 
				<username>admin@172.24.16.235</username>
1826 
			</updated>
1827 
			<tracker>1424949584</tracker>
1828 
		</rule>
1829 
		<rule>
1830 
			<id/>
1831 
			<type>match</type>
1832 
			<interface>opt1</interface>
1833 
			<ipprotocol>inet</ipprotocol>
1834 
			<tag/>
1835 
			<tagged/>
1836 
			<direction>any</direction>
1837 
			<floating>yes</floating>
1838 
			<max/>
1839 
			<max-src-nodes/>
1840 
			<max-src-conn/>
1841 
			<max-src-states/>
1842 
			<statetimeout/>
1843 
			<statetype>keep state</statetype>
1844 
			<os/>
1845 
			<protocol>udp</protocol>
1846 
			<source>
1847 
				<address>aTVs</address>
1848 
			</source>
1849 
			<destination>
1850 
				<any/>
1851 
			</destination>
1852 
			<descr><![CDATA[LAN2 medium priority UDP]]></descr>
1853 
			<defaultqueue>LAN2qMedium</defaultqueue>
1854 
			<updated>
1855 
				<time>1421573301</time>
1856 
				<username>admin@172.24.16.235</username>
1857 
			</updated>
1858 
			<created>
1859 
				<time>1421573301</time>
1860 
				<username>admin@172.24.16.235</username>
1861 
			</created>
1862 
			<tracker>1424949585</tracker>
1863 
		</rule>
1864 
		<rule>
1865 
			<id/>
1866 
			<type>match</type>
1867 
			<interface>opt2</interface>
1868 
			<ipprotocol>inet</ipprotocol>
1869 
			<tag/>
1870 
			<tagged/>
1871 
			<direction>any</direction>
1872 
			<floating>yes</floating>
1873 
			<max/>
1874 
			<max-src-nodes/>
1875 
			<max-src-conn/>
1876 
			<max-src-states/>
1877 
			<statetimeout/>
1878 
			<statetype>keep state</statetype>
1879 
			<os/>
1880 
			<protocol>udp</protocol>
1881 
			<source>
1882 
				<address>aTVs</address>
1883 
			</source>
1884 
			<destination>
1885 
				<any/>
1886 
			</destination>
1887 
			<descr><![CDATA[LAN3 medium priority UDP]]></descr>
1888 
			<defaultqueue>LAN3qMedium</defaultqueue>
1889 
			<updated>
1890 
				<time>1421574764</time>
1891 
				<username>admin@172.24.16.235</username>
1892 
			</updated>
1893 
			<created>
1894 
				<time>1421574764</time>
1895 
				<username>admin@172.24.16.235</username>
1896 
			</created>
1897 
			<tracker>1424949586</tracker>
1898 
		</rule>
1899 
		<rule>
1900 
			<id/>
1901 
			<type>match</type>
1902 
			<interface>wan,enc0,openvpn</interface>
1903 
			<ipprotocol>inet</ipprotocol>
1904 
			<tag/>
1905 
			<tagged/>
1906 
			<direction>any</direction>
1907 
			<floating>yes</floating>
1908 
			<max/>
1909 
			<max-src-nodes/>
1910 
			<max-src-conn/>
1911 
			<max-src-states/>
1912 
			<statetimeout/>
1913 
			<statetype>keep state</statetype>
1914 
			<os/>
1915 
			<protocol>tcp</protocol>
1916 
			<source>
1917 
				<any/>
1918 
			</source>
1919 
			<destination>
1920 
				<any/>
1921 
				<port>MedPriorityTCPports</port>
1922 
			</destination>
1923 
			<descr><![CDATA[WAN &amp; VPN medium priority TCP]]></descr>
1924 
			<defaultqueue>WANqMedium</defaultqueue>
1925 
			<ackqueue>WANqACK</ackqueue>
1926 
			<created>
1927 
				<time>1392117958</time>
1928 
				<username>admin@172.24.16.234</username>
1929 
			</created>
1930 
			<updated>
1931 
				<time>1421575280</time>
1932 
				<username>admin@172.24.16.235</username>
1933 
			</updated>
1934 
			<tracker>1424949587</tracker>
1935 
		</rule>
1936 
		<rule>
1937 
			<id/>
1938 
			<type>match</type>
1939 
			<interface>lan</interface>
1940 
			<ipprotocol>inet</ipprotocol>
1941 
			<tag/>
1942 
			<tagged/>
1943 
			<direction>any</direction>
1944 
			<floating>yes</floating>
1945 
			<max/>
1946 
			<max-src-nodes/>
1947 
			<max-src-conn/>
1948 
			<max-src-states/>
1949 
			<statetimeout/>
1950 
			<statetype>keep state</statetype>
1951 
			<os/>
1952 
			<protocol>tcp</protocol>
1953 
			<source>
1954 
				<any/>
1955 
			</source>
1956 
			<destination>
1957 
				<any/>
1958 
				<port>MedPriorityTCPports</port>
1959 
			</destination>
1960 
			<descr><![CDATA[LAN1 medium priority TCP]]></descr>
1961 
			<defaultqueue>LAN1qMedium</defaultqueue>
1962 
			<ackqueue>LAN1qACK</ackqueue>
1963 
			<created>
1964 
				<time>1421571183</time>
1965 
				<username>admin@172.24.16.235</username>
1966 
			</created>
1967 
			<updated>
1968 
				<time>1421572819</time>
1969 
				<username>admin@172.24.16.235</username>
1970 
			</updated>
1971 
			<tracker>1424949588</tracker>
1972 
		</rule>
1973 
		<rule>
1974 
			<id/>
1975 
			<type>match</type>
1976 
			<interface>opt1</interface>
1977 
			<ipprotocol>inet</ipprotocol>
1978 
			<tag/>
1979 
			<tagged/>
1980 
			<direction>any</direction>
1981 
			<floating>yes</floating>
1982 
			<max/>
1983 
			<max-src-nodes/>
1984 
			<max-src-conn/>
1985 
			<max-src-states/>
1986 
			<statetimeout/>
1987 
			<statetype>keep state</statetype>
1988 
			<os/>
1989 
			<protocol>tcp</protocol>
1990 
			<source>
1991 
				<any/>
1992 
			</source>
1993 
			<destination>
1994 
				<any/>
1995 
				<port>MedPriorityTCPports</port>
1996 
			</destination>
1997 
			<descr><![CDATA[LAN2 medium priority TCP]]></descr>
1998 
			<defaultqueue>LAN2qMedium</defaultqueue>
1999 
			<ackqueue>LAN2qACK</ackqueue>
2000 
			<updated>
2001 
				<time>1421573260</time>
2002 
				<username>admin@172.24.16.235</username>
2003 
			</updated>
2004 
			<created>
2005 
				<time>1421573260</time>
2006 
				<username>admin@172.24.16.235</username>
2007 
			</created>
2008 
			<tracker>1424949589</tracker>
2009 
		</rule>
2010 
		<rule>
2011 
			<id/>
2012 
			<type>match</type>
2013 
			<interface>opt2</interface>
2014 
			<ipprotocol>inet</ipprotocol>
2015 
			<tag/>
2016 
			<tagged/>
2017 
			<direction>any</direction>
2018 
			<floating>yes</floating>
2019 
			<max/>
2020 
			<max-src-nodes/>
2021 
			<max-src-conn/>
2022 
			<max-src-states/>
2023 
			<statetimeout/>
2024 
			<statetype>keep state</statetype>
2025 
			<os/>
2026 
			<protocol>tcp</protocol>
2027 
			<source>
2028 
				<any/>
2029 
			</source>
2030 
			<destination>
2031 
				<any/>
2032 
				<port>MedPriorityTCPports</port>
2033 
			</destination>
2034 
			<descr><![CDATA[LAN3 medium priority TCP]]></descr>
2035 
			<defaultqueue>LAN3qMedium</defaultqueue>
2036 
			<ackqueue>LAN3qACK</ackqueue>
2037 
			<updated>
2038 
				<time>1421574728</time>
2039 
				<username>admin@172.24.16.235</username>
2040 
			</updated>
2041 
			<created>
2042 
				<time>1421574728</time>
2043 
				<username>admin@172.24.16.235</username>
2044 
			</created>
2045 
			<tracker>1424949590</tracker>
2046 
		</rule>
2047 
		<rule>
2048 
			<id/>
2049 
			<type>match</type>
2050 
			<interface>wan,enc0,openvpn</interface>
2051 
			<ipprotocol>inet</ipprotocol>
2052 
			<tag/>
2053 
			<tagged/>
2054 
			<direction>any</direction>
2055 
			<floating>yes</floating>
2056 
			<max/>
2057 
			<max-src-nodes/>
2058 
			<max-src-conn/>
2059 
			<max-src-states/>
2060 
			<statetimeout/>
2061 
			<statetype>keep state</statetype>
2062 
			<os/>
2063 
			<protocol>udp</protocol>
2064 
			<source>
2065 
				<any/>
2066 
			</source>
2067 
			<destination>
2068 
				<any/>
2069 
				<port>MedPriorityUDPports</port>
2070 
			</destination>
2071 
			<descr><![CDATA[WAN &amp; VPN medium priority UDP]]></descr>
2072 
			<defaultqueue>WANqMedium</defaultqueue>
2073 
			<created>
2074 
				<time>1392187875</time>
2075 
				<username>admin@172.24.16.234</username>
2076 
			</created>
2077 
			<updated>
2078 
				<time>1421575257</time>
2079 
				<username>admin@172.24.16.235</username>
2080 
			</updated>
2081 
			<tracker>1424949591</tracker>
2082 
		</rule>
2083 
		<rule>
2084 
			<id/>
2085 
			<type>match</type>
2086 
			<interface>lan</interface>
2087 
			<ipprotocol>inet</ipprotocol>
2088 
			<tag/>
2089 
			<tagged/>
2090 
			<direction>any</direction>
2091 
			<floating>yes</floating>
2092 
			<max/>
2093 
			<max-src-nodes/>
2094 
			<max-src-conn/>
2095 
			<max-src-states/>
2096 
			<statetimeout/>
2097 
			<statetype>keep state</statetype>
2098 
			<os/>
2099 
			<protocol>udp</protocol>
2100 
			<source>
2101 
				<any/>
2102 
			</source>
2103 
			<destination>
2104 
				<any/>
2105 
				<port>MedPriorityUDPports</port>
2106 
			</destination>
2107 
			<descr><![CDATA[LAN1 medium priority UDP]]></descr>
2108 
			<defaultqueue>LAN1qMedium</defaultqueue>
2109 
			<created>
2110 
				<time>1421571155</time>
2111 
				<username>admin@172.24.16.235</username>
2112 
			</created>
2113 
			<updated>
2114 
				<time>1421573516</time>
2115 
				<username>admin@172.24.16.235</username>
2116 
			</updated>
2117 
			<tracker>1424949592</tracker>
2118 
		</rule>
2119 
		<rule>
2120 
			<id/>
2121 
			<type>match</type>
2122 
			<interface>opt1</interface>
2123 
			<ipprotocol>inet</ipprotocol>
2124 
			<tag/>
2125 
			<tagged/>
2126 
			<direction>any</direction>
2127 
			<floating>yes</floating>
2128 
			<max/>
2129 
			<max-src-nodes/>
2130 
			<max-src-conn/>
2131 
			<max-src-states/>
2132 
			<statetimeout/>
2133 
			<statetype>keep state</statetype>
2134 
			<os/>
2135 
			<protocol>udp</protocol>
2136 
			<source>
2137 
				<any/>
2138 
			</source>
2139 
			<destination>
2140 
				<any/>
2141 
				<port>MedPriorityUDPports</port>
2142 
			</destination>
2143 
			<descr><![CDATA[LAN2 medium priority UDP]]></descr>
2144 
			<defaultqueue>LAN2qMedium</defaultqueue>
2145 
			<updated>
2146 
				<time>1421573231</time>
2147 
				<username>admin@172.24.16.235</username>
2148 
			</updated>
2149 
			<created>
2150 
				<time>1421573231</time>
2151 
				<username>admin@172.24.16.235</username>
2152 
			</created>
2153 
			<tracker>1424949593</tracker>
2154 
		</rule>
2155 
		<rule>
2156 
			<id/>
2157 
			<type>match</type>
2158 
			<interface>opt2</interface>
2159 
			<ipprotocol>inet</ipprotocol>
2160 
			<tag/>
2161 
			<tagged/>
2162 
			<direction>any</direction>
2163 
			<floating>yes</floating>
2164 
			<max/>
2165 
			<max-src-nodes/>
2166 
			<max-src-conn/>
2167 
			<max-src-states/>
2168 
			<statetimeout/>
2169 
			<statetype>keep state</statetype>
2170 
			<os/>
2171 
			<protocol>udp</protocol>
2172 
			<source>
2173 
				<any/>
2174 
			</source>
2175 
			<destination>
2176 
				<any/>
2177 
				<port>MedPriorityUDPports</port>
2178 
			</destination>
2179 
			<descr><![CDATA[LAN3 medium priority UDP]]></descr>
2180 
			<defaultqueue>LAN3qMedium</defaultqueue>
2181 
			<updated>
2182 
				<time>1421574701</time>
2183 
				<username>admin@172.24.16.235</username>
2184 
			</updated>
2185 
			<created>
2186 
				<time>1421574701</time>
2187 
				<username>admin@172.24.16.235</username>
2188 
			</created>
2189 
			<tracker>1424949594</tracker>
2190 
		</rule>
2191 
		<rule>
2192 
			<id/>
2193 
			<type>match</type>
2194 
			<interface>wan,enc0,openvpn</interface>
2195 
			<ipprotocol>inet</ipprotocol>
2196 
			<tag/>
2197 
			<tagged/>
2198 
			<direction>any</direction>
2199 
			<floating>yes</floating>
2200 
			<max/>
2201 
			<max-src-nodes/>
2202 
			<max-src-conn/>
2203 
			<max-src-states/>
2204 
			<statetimeout/>
2205 
			<statetype>keep state</statetype>
2206 
			<os/>
2207 
			<protocol>tcp</protocol>
2208 
			<source>
2209 
				<any/>
2210 
			</source>
2211 
			<destination>
2212 
				<any/>
2213 
				<port>LoPriorityTCPports</port>
2214 
			</destination>
2215 
			<descr><![CDATA[WAN &amp; VPN low priority TCP]]></descr>
2216 
			<defaultqueue>WANqLow</defaultqueue>
2217 
			<ackqueue>WANqACK</ackqueue>
2218 
			<created>
2219 
				<time>1392069648</time>
2220 
				<username>Traffic Shaper Wizard</username>
2221 
			</created>
2222 
			<updated>
2223 
				<time>1421575207</time>
2224 
				<username>admin@172.24.16.235</username>
2225 
			</updated>
2226 
			<tracker>1424949595</tracker>
2227 
		</rule>
2228 
		<rule>
2229 
			<id/>
2230 
			<type>match</type>
2231 
			<interface>lan</interface>
2232 
			<ipprotocol>inet</ipprotocol>
2233 
			<tag/>
2234 
			<tagged/>
2235 
			<direction>any</direction>
2236 
			<floating>yes</floating>
2237 
			<max/>
2238 
			<max-src-nodes/>
2239 
			<max-src-conn/>
2240 
			<max-src-states/>
2241 
			<statetimeout/>
2242 
			<statetype>keep state</statetype>
2243 
			<os/>
2244 
			<protocol>tcp</protocol>
2245 
			<source>
2246 
				<any/>
2247 
			</source>
2248 
			<destination>
2249 
				<any/>
2250 
				<port>LoPriorityTCPports</port>
2251 
			</destination>
2252 
			<descr><![CDATA[LAN1 low priority TCP]]></descr>
2253 
			<defaultqueue>LAN1qLow</defaultqueue>
2254 
			<ackqueue>LAN1qACK</ackqueue>
2255 
			<created>
2256 
				<time>1421571096</time>
2257 
				<username>admin@172.24.16.235</username>
2258 
			</created>
2259 
			<updated>
2260 
				<time>1421572806</time>
2261 
				<username>admin@172.24.16.235</username>
2262 
			</updated>
2263 
			<tracker>1424949596</tracker>
2264 
		</rule>
2265 
		<rule>
2266 
			<id/>
2267 
			<type>match</type>
2268 
			<interface>opt1</interface>
2269 
			<ipprotocol>inet</ipprotocol>
2270 
			<tag/>
2271 
			<tagged/>
2272 
			<direction>any</direction>
2273 
			<floating>yes</floating>
2274 
			<max/>
2275 
			<max-src-nodes/>
2276 
			<max-src-conn/>
2277 
			<max-src-states/>
2278 
			<statetimeout/>
2279 
			<statetype>keep state</statetype>
2280 
			<os/>
2281 
			<protocol>tcp</protocol>
2282 
			<source>
2283 
				<any/>
2284 
			</source>
2285 
			<destination>
2286 
				<any/>
2287 
				<port>LoPriorityTCPports</port>
2288 
			</destination>
2289 
			<descr><![CDATA[LAN2 low priority TCP]]></descr>
2290 
			<defaultqueue>LAN2qLow</defaultqueue>
2291 
			<ackqueue>LAN2qACK</ackqueue>
2292 
			<updated>
2293 
				<time>1421573197</time>
2294 
				<username>admin@172.24.16.235</username>
2295 
			</updated>
2296 
			<created>
2297 
				<time>1421573197</time>
2298 
				<username>admin@172.24.16.235</username>
2299 
			</created>
2300 
			<tracker>1424949597</tracker>
2301 
		</rule>
2302 
		<rule>
2303 
			<id/>
2304 
			<type>match</type>
2305 
			<interface>opt2</interface>
2306 
			<ipprotocol>inet</ipprotocol>
2307 
			<tag/>
2308 
			<tagged/>
2309 
			<direction>any</direction>
2310 
			<floating>yes</floating>
2311 
			<max/>
2312 
			<max-src-nodes/>
2313 
			<max-src-conn/>
2314 
			<max-src-states/>
2315 
			<statetimeout/>
2316 
			<statetype>keep state</statetype>
2317 
			<os/>
2318 
			<protocol>tcp</protocol>
2319 
			<source>
2320 
				<any/>
2321 
			</source>
2322 
			<destination>
2323 
				<any/>
2324 
				<port>LoPriorityTCPports</port>
2325 
			</destination>
2326 
			<descr><![CDATA[LAN3 low priority TCP]]></descr>
2327 
			<defaultqueue>LAN3qLow</defaultqueue>
2328 
			<ackqueue>LAN3qACK</ackqueue>
2329 
			<updated>
2330 
				<time>1421574683</time>
2331 
				<username>admin@172.24.16.235</username>
2332 
			</updated>
2333 
			<created>
2334 
				<time>1421574683</time>
2335 
				<username>admin@172.24.16.235</username>
2336 
			</created>
2337 
			<tracker>1424949598</tracker>
2338 
		</rule>
2339 
		<rule>
2340 
			<id/>
2341 
			<type>match</type>
2342 
			<interface>wan,enc0,openvpn</interface>
2343 
			<ipprotocol>inet</ipprotocol>
2344 
			<tag/>
2345 
			<tagged/>
2346 
			<direction>any</direction>
2347 
			<floating>yes</floating>
2348 
			<max/>
2349 
			<max-src-nodes/>
2350 
			<max-src-conn/>
2351 
			<max-src-states/>
2352 
			<statetimeout/>
2353 
			<statetype>keep state</statetype>
2354 
			<os/>
2355 
			<protocol>udp</protocol>
2356 
			<source>
2357 
				<any/>
2358 
			</source>
2359 
			<destination>
2360 
				<any/>
2361 
				<port>LoPriorityUDPports</port>
2362 
			</destination>
2363 
			<descr><![CDATA[WAN &amp; VPN low priority UDP]]></descr>
2364 
			<defaultqueue>WANqLow</defaultqueue>
2365 
			<created>
2366 
				<time>1392069648</time>
2367 
				<username>Traffic Shaper Wizard</username>
2368 
			</created>
2369 
			<updated>
2370 
				<time>1421575181</time>
2371 
				<username>admin@172.24.16.235</username>
2372 
			</updated>
2373 
			<tracker>1424949599</tracker>
2374 
		</rule>
2375 
		<rule>
2376 
			<id/>
2377 
			<type>match</type>
2378 
			<interface>lan</interface>
2379 
			<ipprotocol>inet</ipprotocol>
2380 
			<tag/>
2381 
			<tagged/>
2382 
			<direction>any</direction>
2383 
			<floating>yes</floating>
2384 
			<max/>
2385 
			<max-src-nodes/>
2386 
			<max-src-conn/>
2387 
			<max-src-states/>
2388 
			<statetimeout/>
2389 
			<statetype>keep state</statetype>
2390 
			<os/>
2391 
			<protocol>udp</protocol>
2392 
			<source>
2393 
				<any/>
2394 
			</source>
2395 
			<destination>
2396 
				<any/>
2397 
				<port>LoPriorityUDPports</port>
2398 
			</destination>
2399 
			<descr><![CDATA[LAN1 low priority UDP]]></descr>
2400 
			<defaultqueue>LAN1qLow</defaultqueue>
2401 
			<created>
2402 
				<time>1421571065</time>
2403 
				<username>admin@172.24.16.235</username>
2404 
			</created>
2405 
			<updated>
2406 
				<time>1421573495</time>
2407 
				<username>admin@172.24.16.235</username>
2408 
			</updated>
2409 
			<tracker>1424949600</tracker>
2410 
		</rule>
2411 
		<rule>
2412 
			<id/>
2413 
			<type>match</type>
2414 
			<interface>opt1</interface>
2415 
			<ipprotocol>inet</ipprotocol>
2416 
			<tag/>
2417 
			<tagged/>
2418 
			<direction>any</direction>
2419 
			<floating>yes</floating>
2420 
			<max/>
2421 
			<max-src-nodes/>
2422 
			<max-src-conn/>
2423 
			<max-src-states/>
2424 
			<statetimeout/>
2425 
			<statetype>keep state</statetype>
2426 
			<os/>
2427 
			<protocol>udp</protocol>
2428 
			<source>
2429 
				<any/>
2430 
			</source>
2431 
			<destination>
2432 
				<any/>
2433 
				<port>LoPriorityUDPports</port>
2434 
			</destination>
2435 
			<descr><![CDATA[LAN2 low priority UDP]]></descr>
2436 
			<defaultqueue>LAN2qLow</defaultqueue>
2437 
			<updated>
2438 
				<time>1421573166</time>
2439 
				<username>admin@172.24.16.235</username>
2440 
			</updated>
2441 
			<created>
2442 
				<time>1421573166</time>
2443 
				<username>admin@172.24.16.235</username>
2444 
			</created>
2445 
			<tracker>1424949601</tracker>
2446 
		</rule>
2447 
		<rule>
2448 
			<id/>
2449 
			<type>match</type>
2450 
			<interface>opt2</interface>
2451 
			<ipprotocol>inet</ipprotocol>
2452 
			<tag/>
2453 
			<tagged/>
2454 
			<direction>any</direction>
2455 
			<floating>yes</floating>
2456 
			<max/>
2457 
			<max-src-nodes/>
2458 
			<max-src-conn/>
2459 
			<max-src-states/>
2460 
			<statetimeout/>
2461 
			<statetype>keep state</statetype>
2462 
			<os/>
2463 
			<protocol>udp</protocol>
2464 
			<source>
2465 
				<any/>
2466 
			</source>
2467 
			<destination>
2468 
				<any/>
2469 
				<port>LoPriorityUDPports</port>
2470 
			</destination>
2471 
			<descr><![CDATA[LAN3 low priority UDP]]></descr>
2472 
			<defaultqueue>LAN3qLow</defaultqueue>
2473 
			<updated>
2474 
				<time>1421574663</time>
2475 
				<username>admin@172.24.16.235</username>
2476 
			</updated>
2477 
			<created>
2478 
				<time>1421574663</time>
2479 
				<username>admin@172.24.16.235</username>
2480 
			</created>
2481 
			<tracker>1424949602</tracker>
2482 
		</rule>
2483 
		<rule>
2484 
			<id/>
2485 
			<type>match</type>
2486 
			<interface>wan,enc0,openvpn</interface>
2487 
			<ipprotocol>inet</ipprotocol>
2488 
			<tag/>
2489 
			<tagged/>
2490 
			<direction>any</direction>
2491 
			<floating>yes</floating>
2492 
			<max/>
2493 
			<max-src-nodes/>
2494 
			<max-src-conn/>
2495 
			<max-src-states/>
2496 
			<statetimeout/>
2497 
			<statetype>keep state</statetype>
2498 
			<os/>
2499 
			<protocol>tcp</protocol>
2500 
			<source>
2501 
				<any/>
2502 
			</source>
2503 
			<destination>
2504 
				<any/>
2505 
				<port>P2Pports</port>
2506 
			</destination>
2507 
			<descr><![CDATA[WAN &amp; VPN P2P TCP]]></descr>
2508 
			<defaultqueue>WANqP2P</defaultqueue>
2509 
			<ackqueue>WANqACK</ackqueue>
2510 
			<created>
2511 
				<time>1392069648</time>
2512 
				<username>Traffic Shaper Wizard</username>
2513 
			</created>
2514 
			<updated>
2515 
				<time>1421575128</time>
2516 
				<username>admin@172.24.16.235</username>
2517 
			</updated>
2518 
			<tracker>1424949603</tracker>
2519 
		</rule>
2520 
		<rule>
2521 
			<id/>
2522 
			<type>match</type>
2523 
			<interface>lan</interface>
2524 
			<ipprotocol>inet</ipprotocol>
2525 
			<tag/>
2526 
			<tagged/>
2527 
			<direction>any</direction>
2528 
			<floating>yes</floating>
2529 
			<max/>
2530 
			<max-src-nodes/>
2531 
			<max-src-conn/>
2532 
			<max-src-states/>
2533 
			<statetimeout/>
2534 
			<statetype>keep state</statetype>
2535 
			<os/>
2536 
			<protocol>tcp</protocol>
2537 
			<source>
2538 
				<any/>
2539 
			</source>
2540 
			<destination>
2541 
				<any/>
2542 
				<port>P2Pports</port>
2543 
			</destination>
2544 
			<descr><![CDATA[LAN1 P2P TCP]]></descr>
2545 
			<defaultqueue>LAN1qP2P</defaultqueue>
2546 
			<ackqueue>LAN1qACK</ackqueue>
2547 
			<updated>
2548 
				<time>1421571048</time>
2549 
				<username>admin@172.24.16.235</username>
2550 
			</updated>
2551 
			<created>
2552 
				<time>1421571048</time>
2553 
				<username>admin@172.24.16.235</username>
2554 
			</created>
2555 
			<tracker>1424949604</tracker>
2556 
		</rule>
2557 
		<rule>
2558 
			<id/>
2559 
			<type>match</type>
2560 
			<interface>opt1</interface>
2561 
			<ipprotocol>inet</ipprotocol>
2562 
			<tag/>
2563 
			<tagged/>
2564 
			<direction>any</direction>
2565 
			<floating>yes</floating>
2566 
			<max/>
2567 
			<max-src-nodes/>
2568 
			<max-src-conn/>
2569 
			<max-src-states/>
2570 
			<statetimeout/>
2571 
			<statetype>keep state</statetype>
2572 
			<os/>
2573 
			<protocol>tcp</protocol>
2574 
			<source>
2575 
				<any/>
2576 
			</source>
2577 
			<destination>
2578 
				<any/>
2579 
				<port>P2Pports</port>
2580 
			</destination>
2581 
			<descr><![CDATA[LAN2 P2P TCP]]></descr>
2582 
			<defaultqueue>LAN2qP2P</defaultqueue>
2583 
			<ackqueue>LAN2qACK</ackqueue>
2584 
			<updated>
2585 
				<time>1421573131</time>
2586 
				<username>admin@172.24.16.235</username>
2587 
			</updated>
2588 
			<created>
2589 
				<time>1421573131</time>
2590 
				<username>admin@172.24.16.235</username>
2591 
			</created>
2592 
			<tracker>1424949605</tracker>
2593 
		</rule>
2594 
		<rule>
2595 
			<id/>
2596 
			<type>match</type>
2597 
			<interface>opt2</interface>
2598 
			<ipprotocol>inet</ipprotocol>
2599 
			<tag/>
2600 
			<tagged/>
2601 
			<direction>any</direction>
2602 
			<floating>yes</floating>
2603 
			<max/>
2604 
			<max-src-nodes/>
2605 
			<max-src-conn/>
2606 
			<max-src-states/>
2607 
			<statetimeout/>
2608 
			<statetype>keep state</statetype>
2609 
			<os/>
2610 
			<protocol>tcp</protocol>
2611 
			<source>
2612 
				<any/>
2613 
			</source>
2614 
			<destination>
2615 
				<any/>
2616 
				<port>P2Pports</port>
2617 
			</destination>
2618 
			<descr><![CDATA[LAN3 P2P TCP]]></descr>
2619 
			<defaultqueue>LAN3qP2P</defaultqueue>
2620 
			<ackqueue>LAN3qACK</ackqueue>
2621 
			<updated>
2622 
				<time>1421574641</time>
2623 
				<username>admin@172.24.16.235</username>
2624 
			</updated>
2625 
			<created>
2626 
				<time>1421574641</time>
2627 
				<username>admin@172.24.16.235</username>
2628 
			</created>
2629 
			<tracker>1424949606</tracker>
2630 
		</rule>
2631 
		<rule>
2632 
			<id/>
2633 
			<type>match</type>
2634 
			<interface>wan,enc0,openvpn</interface>
2635 
			<ipprotocol>inet</ipprotocol>
2636 
			<tag/>
2637 
			<tagged/>
2638 
			<direction>any</direction>
2639 
			<floating>yes</floating>
2640 
			<max/>
2641 
			<max-src-nodes/>
2642 
			<max-src-conn/>
2643 
			<max-src-states/>
2644 
			<statetimeout/>
2645 
			<statetype>keep state</statetype>
2646 
			<os/>
2647 
			<protocol>udp</protocol>
2648 
			<source>
2649 
				<any/>
2650 
			</source>
2651 
			<destination>
2652 
				<any/>
2653 
				<port>P2Pports</port>
2654 
			</destination>
2655 
			<descr><![CDATA[WAN &amp; VPN P2P UDP]]></descr>
2656 
			<defaultqueue>WANqP2P</defaultqueue>
2657 
			<created>
2658 
				<time>1392069648</time>
2659 
				<username>Traffic Shaper Wizard</username>
2660 
			</created>
2661 
			<updated>
2662 
				<time>1421575100</time>
2663 
				<username>admin@172.24.16.235</username>
2664 
			</updated>
2665 
			<tracker>1424949607</tracker>
2666 
		</rule>
2667 
		<rule>
2668 
			<id/>
2669 
			<type>match</type>
2670 
			<interface>lan</interface>
2671 
			<ipprotocol>inet</ipprotocol>
2672 
			<tag/>
2673 
			<tagged/>
2674 
			<direction>any</direction>
2675 
			<floating>yes</floating>
2676 
			<max/>
2677 
			<max-src-nodes/>
2678 
			<max-src-conn/>
2679 
			<max-src-states/>
2680 
			<statetimeout/>
2681 
			<statetype>keep state</statetype>
2682 
			<os/>
2683 
			<protocol>udp</protocol>
2684 
			<source>
2685 
				<any/>
2686 
			</source>
2687 
			<destination>
2688 
				<any/>
2689 
				<port>P2Pports</port>
2690 
			</destination>
2691 
			<descr><![CDATA[LAN1 P2P UDP]]></descr>
2692 
			<defaultqueue>LAN1qP2P</defaultqueue>
2693 
			<updated>
2694 
				<time>1421571021</time>
2695 
				<username>admin@172.24.16.235</username>
2696 
			</updated>
2697 
			<created>
2698 
				<time>1421571021</time>
2699 
				<username>admin@172.24.16.235</username>
2700 
			</created>
2701 
			<tracker>1424949608</tracker>
2702 
		</rule>
2703 
		<rule>
2704 
			<id/>
2705 
			<type>match</type>
2706 
			<interface>opt1</interface>
2707 
			<ipprotocol>inet</ipprotocol>
2708 
			<tag/>
2709 
			<tagged/>
2710 
			<direction>any</direction>
2711 
			<floating>yes</floating>
2712 
			<max/>
2713 
			<max-src-nodes/>
2714 
			<max-src-conn/>
2715 
			<max-src-states/>
2716 
			<statetimeout/>
2717 
			<statetype>keep state</statetype>
2718 
			<os/>
2719 
			<protocol>udp</protocol>
2720 
			<source>
2721 
				<any/>
2722 
			</source>
2723 
			<destination>
2724 
				<any/>
2725 
				<port>P2Pports</port>
2726 
			</destination>
2727 
			<descr><![CDATA[LAN2 P2P UDP]]></descr>
2728 
			<defaultqueue>LAN2qP2P</defaultqueue>
2729 
			<updated>
2730 
				<time>1421573106</time>
2731 
				<username>admin@172.24.16.235</username>
2732 
			</updated>
2733 
			<created>
2734 
				<time>1421573106</time>
2735 
				<username>admin@172.24.16.235</username>
2736 
			</created>
2737 
			<tracker>1424949609</tracker>
2738 
		</rule>
2739 
		<rule>
2740 
			<id/>
2741 
			<type>match</type>
2742 
			<interface>opt2</interface>
2743 
			<ipprotocol>inet</ipprotocol>
2744 
			<tag/>
2745 
			<tagged/>
2746 
			<direction>any</direction>
2747 
			<floating>yes</floating>
2748 
			<max/>
2749 
			<max-src-nodes/>
2750 
			<max-src-conn/>
2751 
			<max-src-states/>
2752 
			<statetimeout/>
2753 
			<statetype>keep state</statetype>
2754 
			<os/>
2755 
			<protocol>udp</protocol>
2756 
			<source>
2757 
				<any/>
2758 
			</source>
2759 
			<destination>
2760 
				<any/>
2761 
				<port>P2Pports</port>
2762 
			</destination>
2763 
			<descr><![CDATA[LAN3 P2P UDP]]></descr>
2764 
			<defaultqueue>LAN3qP2P</defaultqueue>
2765 
			<updated>
2766 
				<time>1421574615</time>
2767 
				<username>admin@172.24.16.235</username>
2768 
			</updated>
2769 
			<created>
2770 
				<time>1421574615</time>
2771 
				<username>admin@172.24.16.235</username>
2772 
			</created>
2773 
			<tracker>1424949610</tracker>
2774 
		</rule>
2775 
		<rule>
2776 
			<id/>
2777 
			<tracker>1425947261</tracker>
2778 
			<type>block</type>
2779 
			<interface>wan</interface>
2780 
			<ipprotocol>inet</ipprotocol>
2781 
			<tag/>
2782 
			<tagged/>
2783 
			<max/>
2784 
			<max-src-nodes/>
2785 
			<max-src-conn/>
2786 
			<max-src-states/>
2787 
			<statetimeout/>
2788 
			<statetype>keep state</statetype>
2789 
			<os/>
2790 
			<protocol>tcp/udp</protocol>
2791 
			<source>
2792 
				<any/>
2793 
			</source>
2794 
			<destination>
2795 
				<any/>
2796 
				<port>NetBIOSports</port>
2797 
			</destination>
2798 
			<descr><![CDATA[Block NetBIOS traffic]]></descr>
2799 
			<created>
2800 
				<time>1425947261</time>
2801 
				<username>admin@172.24.16.235</username>
2802 
			</created>
2803 
			<updated>
2804 
				<time>1425947283</time>
2805 
				<username>admin@172.24.16.235</username>
2806 
			</updated>
2807 
		</rule>
2808 
		<rule>
2809 
			<id/>
2810 
			<tracker>1424949611</tracker>
2811 
			<type>block</type>
2812 
			<interface>wan</interface>
2813 
			<ipprotocol>inet</ipprotocol>
2814 
			<tag/>
2815 
			<tagged/>
2816 
			<max/>
2817 
			<max-src-nodes/>
2818 
			<max-src-conn/>
2819 
			<max-src-states/>
2820 
			<statetimeout/>
2821 
			<statetype>keep state</statetype>
2822 
			<os/>
2823 
			<protocol>icmp</protocol>
2824 
			<icmptype>redir</icmptype>
2825 
			<source>
2826 
				<any/>
2827 
			</source>
2828 
			<destination>
2829 
				<any/>
2830 
			</destination>
2831 
			<descr><![CDATA[Block ICMP Redirects (DoubleDirect mitm attack)]]></descr>
2832 
			<created>
2833 
				<time>1419296001</time>
2834 
				<username>admin@172.24.16.235</username>
2835 
			</created>
2836 
			<updated>
2837 
				<time>1425640927</time>
2838 
				<username>admin@172.24.16.235</username>
2839 
			</updated>
2840 
		</rule>
2841 
		<rule>
2842 
			<id/>
2843 
			<tracker>1424949612</tracker>
2844 
			<type>block</type>
2845 
			<interface>wan</interface>
2846 
			<ipprotocol>inet6</ipprotocol>
2847 
			<tag/>
2848 
			<tagged/>
2849 
			<max/>
2850 
			<max-src-nodes/>
2851 
			<max-src-conn/>
2852 
			<max-src-states/>
2853 
			<statetimeout/>
2854 
			<statetype>keep state</statetype>
2855 
			<os/>
2856 
			<protocol>icmp</protocol>
2857 
			<icmptype>redir</icmptype>
2858 
			<source>
2859 
				<any/>
2860 
			</source>
2861 
			<destination>
2862 
				<any/>
2863 
			</destination>
2864 
			<descr><![CDATA[Block ICMP Redirects (DoubleDirect mitm attack)]]></descr>
2865 
			<created>
2866 
				<time>1419296040</time>
2867 
				<username>admin@172.24.16.235</username>
2868 
			</created>
2869 
			<updated>
2870 
				<time>1425087043</time>
2871 
				<username>admin@172.24.16.235</username>
2872 
			</updated>
2873 
		</rule>
2874 
		<rule>
2875 
			<id/>
2876 
			<type>block</type>
2877 
			<interface>wan</interface>
2878 
			<tag/>
2879 
			<tagged/>
2880 
			<max/>
2881 
			<max-src-nodes/>
2882 
			<max-src-conn/>
2883 
			<max-src-states/>
2884 
			<statetimeout/>
2885 
			<statetype>keep state</statetype>
2886 
			<os/>
2887 
			<source>
2888 
				<address>OpenDNScrappers</address>
2889 
			</source>
2890 
			<destination>
2891 
				<any/>
2892 
			</destination>
2893 
			<descr><![CDATA[Block unwanted OpenDNS traffic]]></descr>
2894 
			<tracker>1424949613</tracker>
2895 
		</rule>
2896 
		<rule>
2897 
			<id/>
2898 
			<tracker>1424949614</tracker>
2899 
			<type>block</type>
2900 
			<interface>wan</interface>
2901 
			<ipprotocol>inet</ipprotocol>
2902 
			<tag/>
2903 
			<tagged/>
2904 
			<max/>
2905 
			<max-src-nodes/>
2906 
			<max-src-conn/>
2907 
			<max-src-states/>
2908 
			<statetimeout/>
2909 
			<statetype>keep state</statetype>
2910 
			<os/>
2911 
			<source>
2912 
				<address>pfB_Africa_v4</address>
2913 
			</source>
2914 
			<destination>
2915 
				<address>NonLicServerProductionAndDev</address>
2916 
			</destination>
2917 
			<descr><![CDATA[Block various African countries from nonDEI servers]]></descr>
2918 
			<updated>
2919 
				<time>1425260397</time>
2920 
				<username>admin@172.24.16.235</username>
2921 
			</updated>
2922 
		</rule>
2923 
		<rule>
2924 
			<id/>
2925 
			<tracker>1424949615</tracker>
2926 
			<type>block</type>
2927 
			<interface>wan</interface>
2928 
			<ipprotocol>inet</ipprotocol>
2929 
			<tag/>
2930 
			<tagged/>
2931 
			<max/>
2932 
			<max-src-nodes/>
2933 
			<max-src-conn/>
2934 
			<max-src-states/>
2935 
			<statetimeout/>
2936 
			<statetype>keep state</statetype>
2937 
			<os/>
2938 
			<source>
2939 
				<address>pfB_Asia_v4</address>
2940 
			</source>
2941 
			<destination>
2942 
				<address>NonLicServerProductionAndDev</address>
2943 
			</destination>
2944 
			<descr><![CDATA[Block various Asian countries from nonDEI servers]]></descr>
2945 
			<updated>
2946 
				<time>1425260419</time>
2947 
				<username>admin@172.24.16.235</username>
2948 
			</updated>
2949 
		</rule>
2950 
		<rule>
2951 
			<id/>
2952 
			<tracker>1424949616</tracker>
2953 
			<type>block</type>
2954 
			<interface>wan</interface>
2955 
			<ipprotocol>inet</ipprotocol>
2956 
			<tag/>
2957 
			<tagged/>
2958 
			<max/>
2959 
			<max-src-nodes/>
2960 
			<max-src-conn/>
2961 
			<max-src-states/>
2962 
			<statetimeout/>
2963 
			<statetype>keep state</statetype>
2964 
			<os/>
2965 
			<source>
2966 
				<address>pfB_Europe_v4</address>
2967 
			</source>
2968 
			<destination>
2969 
				<address>NonLicServerProductionAndDev</address>
2970 
			</destination>
2971 
			<descr><![CDATA[Block various European countries from nonDEI servers]]></descr>
2972 
			<updated>
2973 
				<time>1425260436</time>
2974 
				<username>admin@172.24.16.235</username>
2975 
			</updated>
2976 
		</rule>
2977 
		<rule>
2978 
			<id/>
2979 
			<tracker>1424949617</tracker>
2980 
			<type>block</type>
2981 
			<interface>wan</interface>
2982 
			<ipprotocol>inet</ipprotocol>
2983 
			<tag/>
2984 
			<tagged/>
2985 
			<max/>
2986 
			<max-src-nodes/>
2987 
			<max-src-conn/>
2988 
			<max-src-states/>
2989 
			<statetimeout/>
2990 
			<statetype>keep state</statetype>
2991 
			<os/>
2992 
			<source>
2993 
				<address>pfB_SAmerica_v4</address>
2994 
			</source>
2995 
			<destination>
2996 
				<address>NonLicServerProductionAndDev</address>
2997 
			</destination>
2998 
			<descr><![CDATA[Block various S.Amer'n countries from nonDEI servers]]></descr>
2999 
			<updated>
3000 
				<time>1425260460</time>
3001 
				<username>admin@172.24.16.235</username>
3002 
			</updated>
3003 
		</rule>
3004 
		<rule>
3005 
			<id/>
3006 
			<tracker>1424949618</tracker>
3007 
			<type>block</type>
3008 
			<interface>wan</interface>
3009 
			<ipprotocol>inet</ipprotocol>
3010 
			<tag/>
3011 
			<tagged/>
3012 
			<max/>
3013 
			<max-src-nodes/>
3014 
			<max-src-conn/>
3015 
			<max-src-states/>
3016 
			<statetimeout/>
3017 
			<statetype>keep state</statetype>
3018 
			<os/>
3019 
			<source>
3020 
				<address>pfB_NAmerica_v4</address>
3021 
			</source>
3022 
			<destination>
3023 
				<address>NonLicServerProductionAndDev</address>
3024 
			</destination>
3025 
			<descr><![CDATA[Block various N.Amer'n countries from nonDEI servers]]></descr>
3026 
			<updated>
3027 
				<time>1425260483</time>
3028 
				<username>admin@172.24.16.235</username>
3029 
			</updated>
3030 
		</rule>
3031 
		<rule>
3032 
			<id/>
3033 
			<tracker>1425714706</tracker>
3034 
			<type>block</type>
3035 
			<interface>wan</interface>
3036 
			<ipprotocol>inet</ipprotocol>
3037 
			<tag/>
3038 
			<tagged/>
3039 
			<max/>
3040 
			<max-src-nodes/>
3041 
			<max-src-conn/>
3042 
			<max-src-states/>
3043 
			<statetimeout/>
3044 
			<statetype>keep state</statetype>
3045 
			<os/>
3046 
			<source>
3047 
				<address>pfB_PS_v4</address>
3048 
			</source>
3049 
			<destination>
3050 
				<address>NonLicServerProductionAndDev</address>
3051 
			</destination>
3052 
			<descr><![CDATA[Block proxy &amp; satellite IPs from nonDEI servers]]></descr>
3053 
			<updated>
3054 
				<time>1425714706</time>
3055 
				<username>admin@172.24.16.235</username>
3056 
			</updated>
3057 
			<created>
3058 
				<time>1425714706</time>
3059 
				<username>admin@172.24.16.235</username>
3060 
			</created>
3061 
		</rule>
3062 
		<rule>
3063 
			<id/>
3064 
			<type>block</type>
3065 
			<interface>wan</interface>
3066 
			<ipprotocol>inet</ipprotocol>
3067 
			<tag/>
3068 
			<tagged/>
3069 
			<max/>
3070 
			<max-src-nodes/>
3071 
			<max-src-conn/>
3072 
			<max-src-states/>
3073 
			<statetimeout/>
3074 
			<statetype>keep state</statetype>
3075 
			<os/>
3076 
			<source>
3077 
				<address>BadCountries</address>
3078 
			</source>
3079 
			<destination>
3080 
				<address>NonLicServerProductionAndDev</address>
3081 
			</destination>
3082 
			<descr><![CDATA[Block various other country nets from nonDEI servers]]></descr>
3083 
			<updated>
3084 
				<time>1386372886</time>
3085 
				<username>admin@172.24.16.234</username>
3086 
			</updated>
3087 
			<tracker>1424949619</tracker>
3088 
		</rule>
3089 
		<rule>
3090 
			<id/>
3091 
			<type>block</type>
3092 
			<interface>wan</interface>
3093 
			<ipprotocol>inet</ipprotocol>
3094 
			<tag/>
3095 
			<tagged/>
3096 
			<max/>
3097 
			<max-src-nodes/>
3098 
			<max-src-conn/>
3099 
			<max-src-states/>
3100 
			<statetimeout/>
3101 
			<statetype>keep state</statetype>
3102 
			<os/>
3103 
			<source>
3104 
				<address>BadGuyBTadsList</address>
3105 
			</source>
3106 
			<destination>
3107 
				<address>LicServerProductionAndDev</address>
3108 
				<not/>
3109 
			</destination>
3110 
			<descr><![CDATA[Block Ad/tracker systems from all except DEI server]]></descr>
3111 
			<updated>
3112 
				<time>1420508844</time>
3113 
				<username>admin@172.24.16.235</username>
3114 
			</updated>
3115 
			<tracker>1424949620</tracker>
3116 
		</rule>
3117 
		<rule>
3118 
			<id/>
3119 
			<type>block</type>
3120 
			<interface>wan</interface>
3121 
			<ipprotocol>inet</ipprotocol>
3122 
			<tag/>
3123 
			<tagged/>
3124 
			<max/>
3125 
			<max-src-nodes/>
3126 
			<max-src-conn/>
3127 
			<max-src-states/>
3128 
			<statetimeout/>
3129 
			<statetype>keep state</statetype>
3130 
			<os/>
3131 
			<source>
3132 
				<address>BadGuyBTfSpammerList</address>
3133 
			</source>
3134 
			<destination>
3135 
				<any/>
3136 
			</destination>
3137 
			<descr><![CDATA[Block spammer systems from all sites]]></descr>
3138 
			<updated>
3139 
				<time>1386373194</time>
3140 
				<username>admin@172.24.16.234</username>
3141 
			</updated>
3142 
			<tracker>1424949621</tracker>
3143 
		</rule>
3144 
		<rule>
3145 
			<id/>
3146 
			<type>block</type>
3147 
			<interface>wan</interface>
3148 
			<ipprotocol>inet</ipprotocol>
3149 
			<tag/>
3150 
			<tagged/>
3151 
			<max/>
3152 
			<max-src-nodes/>
3153 
			<max-src-conn/>
3154 
			<max-src-states/>
3155 
			<statetimeout/>
3156 
			<statetype>keep state</statetype>
3157 
			<os/>
3158 
			<source>
3159 
				<address>BadGuyBThijackedList</address>
3160 
			</source>
3161 
			<destination>
3162 
				<any/>
3163 
			</destination>
3164 
			<descr><![CDATA[Block hijacked systems from all sites]]></descr>
3165 
			<updated>
3166 
				<time>1386373243</time>
3167 
				<username>admin@172.24.16.234</username>
3168 
			</updated>
3169 
			<tracker>1424949622</tracker>
3170 
		</rule>
3171 
		<rule>
3172 
			<id/>
3173 
			<type>block</type>
3174 
			<interface>wan</interface>
3175 
			<ipprotocol>inet</ipprotocol>
3176 
			<tag/>
3177 
			<tagged/>
3178 
			<max/>
3179 
			<max-src-nodes/>
3180 
			<max-src-conn/>
3181 
			<max-src-states/>
3182 
			<statetimeout/>
3183 
			<statetype>keep state</statetype>
3184 
			<os/>
3185 
			<source>
3186 
				<address>BadGuyBTshieldList</address>
3187 
			</source>
3188 
			<destination>
3189 
				<any/>
3190 
			</destination>
3191 
			<descr><![CDATA[Block hacker systems from all sites]]></descr>
3192 
			<updated>
3193 
				<time>1386373311</time>
3194 
				<username>admin@172.24.16.234</username>
3195 
			</updated>
3196 
			<tracker>1424949623</tracker>
3197 
		</rule>
3198 
		<rule>
3199 
			<id/>
3200 
			<type>block</type>
3201 
			<interface>wan</interface>
3202 
			<ipprotocol>inet</ipprotocol>
3203 
			<tag/>
3204 
			<tagged/>
3205 
			<max/>
3206 
			<max-src-nodes/>
3207 
			<max-src-conn/>
3208 
			<max-src-states/>
3209 
			<statetimeout/>
3210 
			<statetype>keep state</statetype>
3211 
			<os/>
3212 
			<source>
3213 
				<address>BadGuyBTspiderList</address>
3214 
			</source>
3215 
			<destination>
3216 
				<any/>
3217 
			</destination>
3218 
			<descr><![CDATA[Block undesirable spiders/crawlers from all sites]]></descr>
3219 
			<updated>
3220 
				<time>1394839782</time>
3221 
				<username>admin@172.24.16.234</username>
3222 
			</updated>
3223 
			<created>
3224 
				<time>1394839782</time>
3225 
				<username>admin@172.24.16.234</username>
3226 
			</created>
3227 
			<tracker>1424949624</tracker>
3228 
		</rule>
3229 
		<rule>
3230 
			<id/>
3231 
			<type>block</type>
3232 
			<interface>wan</interface>
3233 
			<ipprotocol>inet</ipprotocol>
3234 
			<tag/>
3235 
			<tagged/>
3236 
			<max/>
3237 
			<max-src-nodes/>
3238 
			<max-src-conn/>
3239 
			<max-src-states/>
3240 
			<statetimeout/>
3241 
			<statetype>keep state</statetype>
3242 
			<os/>
3243 
			<source>
3244 
				<address>BadGuyBTspywareList</address>
3245 
			</source>
3246 
			<destination>
3247 
				<any/>
3248 
			</destination>
3249 
			<descr><![CDATA[Block spyware systems from all sites]]></descr>
3250 
			<updated>
3251 
				<time>1386373160</time>
3252 
				<username>admin@172.24.16.234</username>
3253 
			</updated>
3254 
			<tracker>1424949625</tracker>
3255 
		</rule>
3256 
		<rule>
3257 
			<id/>
3258 
			<type>block</type>
3259 
			<interface>wan</interface>
3260 
			<ipprotocol>inet</ipprotocol>
3261 
			<tag/>
3262 
			<tagged/>
3263 
			<max/>
3264 
			<max-src-nodes/>
3265 
			<max-src-conn/>
3266 
			<max-src-states/>
3267 
			<statetimeout/>
3268 
			<statetype>keep state</statetype>
3269 
			<os/>
3270 
			<source>
3271 
				<address>BadGuyBTwebexploitList</address>
3272 
			</source>
3273 
			<destination>
3274 
				<any/>
3275 
			</destination>
3276 
			<descr><![CDATA[Block web exploit systems from all sites]]></descr>
3277 
			<updated>
3278 
				<time>1394843140</time>
3279 
				<username>admin@172.24.16.234</username>
3280 
			</updated>
3281 
			<created>
3282 
				<time>1394843140</time>
3283 
				<username>admin@172.24.16.234</username>
3284 
			</created>
3285 
			<tracker>1424949626</tracker>
3286 
		</rule>
3287 
		<rule>
3288 
			<id/>
3289 
			<type>block</type>
3290 
			<interface>wan</interface>
3291 
			<ipprotocol>inet</ipprotocol>
3292 
			<tag/>
3293 
			<tagged/>
3294 
			<max/>
3295 
			<max-src-nodes/>
3296 
			<max-src-conn/>
3297 
			<max-src-states/>
3298 
			<statetimeout/>
3299 
			<statetype>keep state</statetype>
3300 
			<os/>
3301 
			<source>
3302 
				<address>BadGuyDROPlist</address>
3303 
			</source>
3304 
			<destination>
3305 
				<any/>
3306 
			</destination>
3307 
			<descr><![CDATA[Block criminal-controlled systems from all sites]]></descr>
3308 
			<updated>
3309 
				<time>1386373366</time>
3310 
				<username>admin@172.24.16.234</username>
3311 
			</updated>
3312 
			<tracker>1424949627</tracker>
3313 
		</rule>
3314 
		<rule>
3315 
			<id/>
3316 
			<type>block</type>
3317 
			<interface>wan</interface>
3318 
			<ipprotocol>inet</ipprotocol>
3319 
			<tag/>
3320 
			<tagged/>
3321 
			<max/>
3322 
			<max-src-nodes/>
3323 
			<max-src-conn/>
3324 
			<max-src-states/>
3325 
			<statetimeout/>
3326 
			<statetype>keep state</statetype>
3327 
			<os/>
3328 
			<source>
3329 
				<address>BadGuyEDROPlist</address>
3330 
			</source>
3331 
			<destination>
3332 
				<any/>
3333 
			</destination>
3334 
			<descr><![CDATA[Block criminal-controlled systems from all sites]]></descr>
3335 
			<updated>
3336 
				<time>1386373391</time>
3337 
				<username>admin@172.24.16.234</username>
3338 
			</updated>
3339 
			<tracker>1424949628</tracker>
3340 
		</rule>
3341 
		<rule>
3342 
			<id/>
3343 
			<type>block</type>
3344 
			<interface>wan</interface>
3345 
			<tag/>
3346 
			<tagged/>
3347 
			<max/>
3348 
			<max-src-nodes/>
3349 
			<max-src-conn/>
3350 
			<max-src-states/>
3351 
			<statetimeout/>
3352 
			<statetype>keep state</statetype>
3353 
			<os/>
3354 
			<source>
3355 
				<address>BadNets</address>
3356 
			</source>
3357 
			<destination>
3358 
				<any/>
3359 
			</destination>
3360 
			<descr><![CDATA[Block undesired networks from all sites]]></descr>
3361 
			<tracker>1424949629</tracker>
3362 
		</rule>
3363 
		<rule>
3364 
			<id/>
3365 
			<type>block</type>
3366 
			<interface>wan</interface>
3367 
			<ipprotocol>inet</ipprotocol>
3368 
			<tag/>
3369 
			<tagged/>
3370 
			<max/>
3371 
			<max-src-nodes/>
3372 
			<max-src-conn/>
3373 
			<max-src-states/>
3374 
			<statetimeout/>
3375 
			<statetype>keep state</statetype>
3376 
			<os/>
3377 
			<source>
3378 
				<address>BadGuys</address>
3379 
			</source>
3380 
			<destination>
3381 
				<any/>
3382 
			</destination>
3383 
			<descr><![CDATA[Block undesired IPs from all sites]]></descr>
3384 
			<updated>
3385 
				<time>1396082084</time>
3386 
				<username>admin@172.24.16.234</username>
3387 
			</updated>
3388 
			<tracker>1424949630</tracker>
3389 
		</rule>
3390 
		<rule>
3391 
			<id/>
3392 
			<type>block</type>
3393 
			<interface>wan</interface>
3394 
			<ipprotocol>inet</ipprotocol>
3395 
			<tag/>
3396 
			<tagged/>
3397 
			<max/>
3398 
			<max-src-nodes/>
3399 
			<max-src-conn/>
3400 
			<max-src-states/>
3401 
			<statetimeout/>
3402 
			<statetype>keep state</statetype>
3403 
			<os/>
3404 
			<source>
3405 
				<address>EmergingThreats</address>
3406 
			</source>
3407 
			<destination>
3408 
				<any/>
3409 
			</destination>
3410 
			<descr><![CDATA[Block various threat IPs and networks]]></descr>
3411 
			<updated>
3412 
				<time>1391395721</time>
3413 
				<username>admin@172.24.16.234</username>
3414 
			</updated>
3415 
			<created>
3416 
				<time>1391395721</time>
3417 
				<username>admin@172.24.16.234</username>
3418 
			</created>
3419 
			<tracker>1424949631</tracker>
3420 
		</rule>
3421 
		<rule>
3422 
			<id/>
3423 
			<type>block</type>
3424 
			<interface>wan</interface>
3425 
			<ipprotocol>inet</ipprotocol>
3426 
			<tag/>
3427 
			<tagged/>
3428 
			<max/>
3429 
			<max-src-nodes/>
3430 
			<max-src-conn/>
3431 
			<max-src-states/>
3432 
			<statetimeout/>
3433 
			<statetype>keep state</statetype>
3434 
			<os/>
3435 
			<source>
3436 
				<address>ForumSpammerNets</address>
3437 
			</source>
3438 
			<destination>
3439 
				<any/>
3440 
			</destination>
3441 
			<descr><![CDATA[Block forum spammer networks]]></descr>
3442 
			<updated>
3443 
				<time>1390783803</time>
3444 
				<username>admin@172.24.16.234</username>
3445 
			</updated>
3446 
			<created>
3447 
				<time>1390783803</time>
3448 
				<username>admin@172.24.16.234</username>
3449 
			</created>
3450 
			<tracker>1424949632</tracker>
3451 
		</rule>
3452 
		<rule>
3453 
			<id/>
3454 
			<type>block</type>
3455 
			<interface>wan</interface>
3456 
			<ipprotocol>inet</ipprotocol>
3457 
			<tag/>
3458 
			<tagged/>
3459 
			<max/>
3460 
			<max-src-nodes/>
3461 
			<max-src-conn/>
3462 
			<max-src-states/>
3463 
			<statetimeout/>
3464 
			<statetype>keep state</statetype>
3465 
			<os/>
3466 
			<source>
3467 
				<address>ForumSpammers1</address>
3468 
			</source>
3469 
			<destination>
3470 
				<any/>
3471 
			</destination>
3472 
			<descr><![CDATA[Block forum spammers]]></descr>
3473 
			<updated>
3474 
				<time>1390782796</time>
3475 
				<username>admin@172.24.16.234</username>
3476 
			</updated>
3477 
			<created>
3478 
				<time>1390782796</time>
3479 
				<username>admin@172.24.16.234</username>
3480 
			</created>
3481 
			<tracker>1424949633</tracker>
3482 
		</rule>
3483 
		<rule>
3484 
			<id/>
3485 
			<type>block</type>
3486 
			<interface>wan</interface>
3487 
			<ipprotocol>inet</ipprotocol>
3488 
			<tag/>
3489 
			<tagged/>
3490 
			<max/>
3491 
			<max-src-nodes/>
3492 
			<max-src-conn/>
3493 
			<max-src-states/>
3494 
			<statetimeout/>
3495 
			<statetype>keep state</statetype>
3496 
			<os/>
3497 
			<source>
3498 
				<address>ForumSpammers2</address>
3499 
			</source>
3500 
			<destination>
3501 
				<any/>
3502 
			</destination>
3503 
			<descr><![CDATA[Block forum spammers]]></descr>
3504 
			<updated>
3505 
				<time>1390783241</time>
3506 
				<username>admin@172.24.16.234</username>
3507 
			</updated>
3508 
			<created>
3509 
				<time>1390783241</time>
3510 
				<username>admin@172.24.16.234</username>
3511 
			</created>
3512 
			<tracker>1424949634</tracker>
3513 
		</rule>
3514 
		<rule>
3515 
			<id/>
3516 
			<type>block</type>
3517 
			<interface>wan</interface>
3518 
			<ipprotocol>inet</ipprotocol>
3519 
			<tag/>
3520 
			<tagged/>
3521 
			<max/>
3522 
			<max-src-nodes/>
3523 
			<max-src-conn/>
3524 
			<max-src-states/>
3525 
			<statetimeout/>
3526 
			<statetype>keep state</statetype>
3527 
			<os/>
3528 
			<source>
3529 
				<address>ForumSpammers3</address>
3530 
			</source>
3531 
			<destination>
3532 
				<any/>
3533 
			</destination>
3534 
			<descr><![CDATA[Block forum spammers]]></descr>
3535 
			<updated>
3536 
				<time>1390783337</time>
3537 
				<username>admin@172.24.16.234</username>
3538 
			</updated>
3539 
			<created>
3540 
				<time>1390783337</time>
3541 
				<username>admin@172.24.16.234</username>
3542 
			</created>
3543 
			<tracker>1424949635</tracker>
3544 
		</rule>
3545 
		<rule>
3546 
			<id/>
3547 
			<type>block</type>
3548 
			<interface>wan</interface>
3549 
			<ipprotocol>inet</ipprotocol>
3550 
			<tag/>
3551 
			<tagged/>
3552 
			<max/>
3553 
			<max-src-nodes/>
3554 
			<max-src-conn/>
3555 
			<max-src-states/>
3556 
			<statetimeout/>
3557 
			<statetype>keep state</statetype>
3558 
			<os/>
3559 
			<source>
3560 
				<address>ForumSpammers4</address>
3561 
			</source>
3562 
			<destination>
3563 
				<any/>
3564 
			</destination>
3565 
			<descr><![CDATA[Block forum spammers]]></descr>
3566 
			<updated>
3567 
				<time>1390783383</time>
3568 
				<username>admin@172.24.16.234</username>
3569 
			</updated>
3570 
			<created>
3571 
				<time>1390783383</time>
3572 
				<username>admin@172.24.16.234</username>
3573 
			</created>
3574 
			<tracker>1424949636</tracker>
3575 
		</rule>
3576 
		<rule>
3577 
			<id/>
3578 
			<type>block</type>
3579 
			<interface>wan</interface>
3580 
			<ipprotocol>inet</ipprotocol>
3581 
			<tag/>
3582 
			<tagged/>
3583 
			<max/>
3584 
			<max-src-nodes/>
3585 
			<max-src-conn/>
3586 
			<max-src-states/>
3587 
			<statetimeout/>
3588 
			<statetype>keep state</statetype>
3589 
			<os/>
3590 
			<source>
3591 
				<address>ForumSpammers5</address>
3592 
			</source>
3593 
			<destination>
3594 
				<any/>
3595 
			</destination>
3596 
			<descr><![CDATA[Block forum spammers]]></descr>
3597 
			<updated>
3598 
				<time>1390783498</time>
3599 
				<username>admin@172.24.16.234</username>
3600 
			</updated>
3601 
			<created>
3602 
				<time>1390783498</time>
3603 
				<username>admin@172.24.16.234</username>
3604 
			</created>
3605 
			<tracker>1424949637</tracker>
3606 
		</rule>
3607 
		<rule>
3608 
			<id/>
3609 
			<tracker>1424949638</tracker>
3610 
			<type>block</type>
3611 
			<interface>wan</interface>
3612 
			<ipprotocol>inet</ipprotocol>
3613 
			<tag/>
3614 
			<tagged/>
3615 
			<max/>
3616 
			<max-src-nodes/>
3617 
			<max-src-conn/>
3618 
			<max-src-states/>
3619 
			<statetimeout/>
3620 
			<statetype>keep state</statetype>
3621 
			<os/>
3622 
			<source>
3623 
				<address>MalwareSites</address>
3624 
			</source>
3625 
			<destination>
3626 
				<any/>
3627 
			</destination>
3628 
			<descr><![CDATA[Block malware systems]]></descr>
3629 
			<created>
3630 
				<time>1422573344</time>
3631 
				<username>admin@172.24.16.235</username>
3632 
			</created>
3633 
			<updated>
3634 
				<time>1425880856</time>
3635 
				<username>admin@172.24.16.235</username>
3636 
			</updated>
3637 
		</rule>
3638 
		<rule>
3639 
			<id/>
3640 
			<tracker>1424949639</tracker>
3641 
			<type>block</type>
3642 
			<interface>wan</interface>
3643 
			<ipprotocol>inet</ipprotocol>
3644 
			<tag/>
3645 
			<tagged/>
3646 
			<max/>
3647 
			<max-src-nodes/>
3648 
			<max-src-conn/>
3649 
			<max-src-states/>
3650 
			<statetimeout/>
3651 
			<statetype>keep state</statetype>
3652 
			<os/>
3653 
			<source>
3654 
				<address>TorServerExitIPs</address>
3655 
			</source>
3656 
			<destination>
3657 
				<any/>
3658 
			</destination>
3659 
			<descr><![CDATA[Block Tor-server exit IPs]]></descr>
3660 
			<created>
3661 
				<time>1417922467</time>
3662 
				<username>admin@172.24.16.235</username>
3663 
			</created>
3664 
			<updated>
3665 
				<time>1425880824</time>
3666 
				<username>admin@172.24.16.235</username>
3667 
			</updated>
3668 
		</rule>
3669 
		<rule>
3670 
			<source>
3671 
				<address>DevServersAndClients</address>
3672 
			</source>
3673 
			<interface>wan</interface>
3674 
			<protocol>tcp</protocol>
3675 
			<destination>
3676 
				<address>DEIdevServer</address>
3677 
				<port>PublicServerPorts</port>
3678 
			</destination>
3679 
			<descr><![CDATA[NAT Pass siteA.com test server traffic]]></descr>
3680 
			<associated-rule-id>nat_4f34ef8f23d3f2.59828398</associated-rule-id>
3681 
			<tracker>1424949641</tracker>
3682 
		</rule>
3683 
		<rule>
3684 
			<source>
3685 
				<address>DevServersAndClients</address>
3686 
			</source>
3687 
			<interface>wan</interface>
3688 
			<protocol>tcp</protocol>
3689 
			<destination>
3690 
				<address>TAKdevServer</address>
3691 
				<port>PublicServerPorts</port>
3692 
			</destination>
3693 
			<descr><![CDATA[NAT Pass siteB.com test server traffic]]></descr>
3694 
			<associated-rule-id>nat_4f34efdc5ee0d7.11748463</associated-rule-id>
3695 
			<tracker>1424949642</tracker>
3696 
		</rule>
3697 
		<rule>
3698 
			<source>
3699 
				<address>DevServersAndClients</address>
3700 
			</source>
3701 
			<interface>wan</interface>
3702 
			<protocol>tcp</protocol>
3703 
			<destination>
3704 
				<address>SEdevServer</address>
3705 
				<port>PublicServerPorts</port>
3706 
			</destination>
3707 
			<descr><![CDATA[NAT Pass siteC.com test server traffic]]></descr>
3708 
			<associated-rule-id>nat_4f34efbc3d3a27.03111339</associated-rule-id>
3709 
			<tracker>1424949643</tracker>
3710 
		</rule>
3711 
		<rule>
3712 
			<id/>
3713 
			<tracker>1424949644</tracker>
3714 
			<type>pass</type>
3715 
			<interface>wan</interface>
3716 
			<ipprotocol>inet</ipprotocol>
3717 
			<tag/>
3718 
			<tagged/>
3719 
			<max/>
3720 
			<max-src-nodes/>
3721 
			<max-src-conn/>
3722 
			<max-src-states/>
3723 
			<statetimeout/>
3724 
			<statetype>keep state</statetype>
3725 
			<os/>
3726 
			<protocol>tcp</protocol>
3727 
			<source>
3728 
				<any/>
3729 
			</source>
3730 
			<destination>
3731 
				<address>DEIvServer</address>
3732 
				<port>PublicServerPorts</port>
3733 
			</destination>
3734 
			<descr><![CDATA[NAT Pass siteA.com public server traffic]]></descr>
3735 
			<associated-rule-id>nat_549565338d1bb8.05530663</associated-rule-id>
3736 
			<created>
3737 
				<time>1419076915</time>
3738 
				<username>NAT Port Forward</username>
3739 
			</created>
3740 
			<updated>
3741 
				<time>1425087230</time>
3742 
				<username>admin@172.24.16.235</username>
3743 
			</updated>
3744 
		</rule>
3745 
		<rule>
3746 
			<source>
3747 
				<any/>
3748 
			</source>
3749 
			<interface>wan</interface>
3750 
			<protocol>tcp</protocol>
3751 
			<destination>
3752 
				<address>TAKvServer</address>
3753 
				<port>PublicServerPorts</port>
3754 
			</destination>
3755 
			<descr><![CDATA[NAT Pass siteB.com public server traffic]]></descr>
3756 
			<associated-rule-id>nat_5496bf6b6806d0.74246506</associated-rule-id>
3757 
			<created>
3758 
				<time>1419165547</time>
3759 
				<username>NAT Port Forward</username>
3760 
			</created>
3761 
			<tracker>1424949645</tracker>
3762 
		</rule>
3763 
		<rule>
3764 
			<source>
3765 
				<any/>
3766 
			</source>
3767 
			<interface>wan</interface>
3768 
			<protocol>tcp</protocol>
3769 
			<destination>
3770 
				<address>SEvServer</address>
3771 
				<port>PublicServerPorts</port>
3772 
			</destination>
3773 
			<descr><![CDATA[NAT Pass siteC.com public server traffic]]></descr>
3774 
			<associated-rule-id>nat_5496bf4d23c6b1.56363454</associated-rule-id>
3775 
			<created>
3776 
				<time>1419165517</time>
3777 
				<username>NAT Port Forward</username>
3778 
			</created>
3779 
			<tracker>1424949646</tracker>
3780 
		</rule>
3781 
		<rule>
3782 
			<source>
3783 
				<any/>
3784 
			</source>
3785 
			<interface>wan</interface>
3786 
			<protocol>tcp</protocol>
3787 
			<destination>
3788 
				<address>DEIvServer</address>
3789 
				<port>21</port>
3790 
			</destination>
3791 
			<descr><![CDATA[NAT Pass siteA.com FTP traffic]]></descr>
3792 
			<associated-rule-id>nat_4f34ec0b306bb1.09804029</associated-rule-id>
3793 
			<disabled/>
3794 
			<tracker>1424949647</tracker>
3795 
		</rule>
3796 
		<rule>
3797 
			<source>
3798 
				<any/>
3799 
			</source>
3800 
			<interface>wan</interface>
3801 
			<protocol>tcp</protocol>
3802 
			<destination>
3803 
				<address>DEIvServer</address>
3804 
				<port>5400-5416</port>
3805 
			</destination>
3806 
			<descr><![CDATA[NAT Pass siteA.com FTP traffic]]></descr>
3807 
			<associated-rule-id>nat_4f34ec66a20d96.02288737</associated-rule-id>
3808 
			<disabled/>
3809 
			<tracker>1424949648</tracker>
3810 
		</rule>
3811 
		<rule>
3812 
			<source>
3813 
				<any/>
3814 
			</source>
3815 
			<interface>wan</interface>
3816 
			<protocol>tcp/udp</protocol>
3817 
			<destination>
3818 
				<address>VoIProuter</address>
3819 
				<port>2427</port>
3820 
			</destination>
3821 
			<descr><![CDATA[NAT Pass VoIP (MGCP port for gateways)]]></descr>
3822 
			<associated-rule-id>nat_4f34f155ba0fc8.73668051</associated-rule-id>
3823 
			<disabled/>
3824 
			<tracker>1424949649</tracker>
3825 
		</rule>
3826 
		<rule>
3827 
			<source>
3828 
				<any/>
3829 
			</source>
3830 
			<interface>wan</interface>
3831 
			<protocol>tcp/udp</protocol>
3832 
			<destination>
3833 
				<address>VoIProuter</address>
3834 
				<port>2727</port>
3835 
			</destination>
3836 
			<descr><![CDATA[NAT Pass VoIP (MGCP port for call agents)]]></descr>
3837 
			<associated-rule-id>nat_4f34f195ec63a4.01374927</associated-rule-id>
3838 
			<disabled/>
3839 
			<tracker>1424949650</tracker>
3840 
		</rule>
3841 
		<rule>
3842 
			<source>
3843 
				<any/>
3844 
			</source>
3845 
			<interface>wan</interface>
3846 
			<protocol>tcp/udp</protocol>
3847 
			<destination>
3848 
				<address>VoIProuter</address>
3849 
				<port>5062</port>
3850 
			</destination>
3851 
			<descr><![CDATA[NAT Pass VoIP (control)]]></descr>
3852 
			<associated-rule-id>nat_4f34f1c6f2eeb5.63147915</associated-rule-id>
3853 
			<disabled/>
3854 
			<tracker>1424949651</tracker>
3855 
		</rule>
3856 
		<rule>
3857 
			<source>
3858 
				<any/>
3859 
			</source>
3860 
			<interface>wan</interface>
3861 
			<protocol>udp</protocol>
3862 
			<destination>
3863 
				<address>VoIProuter</address>
3864 
				<port>16384-32767</port>
3865 
			</destination>
3866 
			<descr><![CDATA[NAT Pass VoIP (data)]]></descr>
3867 
			<associated-rule-id>nat_4f34f1f9a6f7c6.60710030</associated-rule-id>
3868 
			<disabled/>
3869 
			<tracker>1424949652</tracker>
3870 
		</rule>
3871 
		<rule>
3872 
			<source>
3873 
				<any/>
3874 
			</source>
3875 
			<interface>wan</interface>
3876 
			<protocol>tcp</protocol>
3877 
			<destination>
3878 
				<address>BEDiMac</address>
3879 
				<port>5900-5909</port>
3880 
			</destination>
3881 
			<descr><![CDATA[NAT Pass traffic to VNC server]]></descr>
3882 
			<associated-rule-id>nat_4f34f259975314.00748715</associated-rule-id>
3883 
			<disabled/>
3884 
			<tracker>1424949653</tracker>
3885 
		</rule>
3886 
		<rule>
3887 
			<id/>
3888 
			<type>pass</type>
3889 
			<interface>wan</interface>
3890 
			<ipprotocol>inet</ipprotocol>
3891 
			<tag/>
3892 
			<tagged/>
3893 
			<max/>
3894 
			<max-src-nodes/>
3895 
			<max-src-conn/>
3896 
			<max-src-states/>
3897 
			<statetimeout/>
3898 
			<statetype>keep state</statetype>
3899 
			<os/>
3900 
			<protocol>udp</protocol>
3901 
			<source>
3902 
				<address>SPDsWAN</address>
3903 
			</source>
3904 
			<destination>
3905 
				<address>WAN1_DEI</address>
3906 
				<port>500</port>
3907 
			</destination>
3908 
			<descr><![CDATA[Allow office-to-office IPSec VPN access]]></descr>
3909 
			<updated>
3910 
				<time>1424339928</time>
3911 
				<username>admin@172.24.16.235</username>
3912 
			</updated>
3913 
			<tracker>1424949654</tracker>
3914 
		</rule>
3915 
		<rule>
3916 
			<id/>
3917 
			<type>pass</type>
3918 
			<interface>wan</interface>
3919 
			<ipprotocol>inet</ipprotocol>
3920 
			<tag/>
3921 
			<tagged/>
3922 
			<max/>
3923 
			<max-src-nodes/>
3924 
			<max-src-conn/>
3925 
			<max-src-states/>
3926 
			<statetimeout/>
3927 
			<statetype>keep state</statetype>
3928 
			<os/>
3929 
			<protocol>udp</protocol>
3930 
			<source>
3931 
				<any/>
3932 
			</source>
3933 
			<destination>
3934 
				<address>MobileVPNwan</address>
3935 
				<port>500</port>
3936 
			</destination>
3937 
			<descr><![CDATA[Allow mobile IPSec VPN access]]></descr>
3938 
			<created>
3939 
				<time>1391769679</time>
3940 
				<username>admin@172.24.16.234</username>
3941 
			</created>
3942 
			<updated>
3943 
				<time>1419242887</time>
3944 
				<username>admin@172.24.16.235</username>
3945 
			</updated>
3946 
			<tracker>1424949655</tracker>
3947 
		</rule>
3948 
		<rule>
3949 
			<id/>
3950 
			<type>pass</type>
3951 
			<interface>wan</interface>
3952 
			<ipprotocol>inet</ipprotocol>
3953 
			<tag/>
3954 
			<tagged/>
3955 
			<max/>
3956 
			<max-src-nodes/>
3957 
			<max-src-conn/>
3958 
			<max-src-states/>
3959 
			<statetimeout/>
3960 
			<statetype>keep state</statetype>
3961 
			<os/>
3962 
			<protocol>udp</protocol>
3963 
			<source>
3964 
				<any/>
3965 
			</source>
3966 
			<destination>
3967 
				<address>MobileVPNwan</address>
3968 
				<port>4500</port>
3969 
			</destination>
3970 
			<descr><![CDATA[Allow mobile IPSec VPN access]]></descr>
3971 
			<updated>
3972 
				<time>1419242907</time>
3973 
				<username>admin@172.24.16.235</username>
3974 
			</updated>
3975 
			<tracker>1424949656</tracker>
3976 
		</rule>
3977 
		<rule>
3978 
			<id/>
3979 
			<type>pass</type>
3980 
			<interface>wan</interface>
3981 
			<ipprotocol>inet</ipprotocol>
3982 
			<tag/>
3983 
			<tagged/>
3984 
			<max/>
3985 
			<max-src-nodes/>
3986 
			<max-src-conn/>
3987 
			<max-src-states/>
3988 
			<statetimeout/>
3989 
			<statetype>keep state</statetype>
3990 
			<os/>
3991 
			<protocol>udp</protocol>
3992 
			<source>
3993 
				<any/>
3994 
			</source>
3995 
			<destination>
3996 
				<address>MobileVPNwan</address>
3997 
				<port>OpenVPNudpPorts</port>
3998 
			</destination>
3999 
			<descr><![CDATA[Allow OpenVPN access via various UDP ports]]></descr>
4000 
			<created>
4001 
				<time>1389685227</time>
4002 
				<username>OpenVPN Wizard</username>
4003 
			</created>
4004 
			<updated>
4005 
				<time>1419248849</time>
4006 
				<username>admin@172.24.16.235</username>
4007 
			</updated>
4008 
			<tracker>1424949657</tracker>
4009 
		</rule>
4010 
		<rule>
4011 
			<id/>
4012 
			<type>pass</type>
4013 
			<interface>wan</interface>
4014 
			<ipprotocol>inet</ipprotocol>
4015 
			<tag/>
4016 
			<tagged/>
4017 
			<max/>
4018 
			<max-src-nodes/>
4019 
			<max-src-conn/>
4020 
			<max-src-states/>
4021 
			<statetimeout/>
4022 
			<statetype>keep state</statetype>
4023 
			<os/>
4024 
			<protocol>tcp</protocol>
4025 
			<source>
4026 
				<any/>
4027 
			</source>
4028 
			<destination>
4029 
				<address>MobileVPNwan</address>
4030 
				<port>OpenVPNtcpPort</port>
4031 
			</destination>
4032 
			<descr><![CDATA[Allow OpenVPN access via TCP port]]></descr>
4033 
			<created>
4034 
				<time>1391499097</time>
4035 
				<username>admin@172.24.16.234</username>
4036 
			</created>
4037 
			<updated>
4038 
				<time>1419242940</time>
4039 
				<username>admin@172.24.16.235</username>
4040 
			</updated>
4041 
			<tracker>1424949658</tracker>
4042 
		</rule>
4043 
		<rule>
4044 
			<id/>
4045 
			<type>block</type>
4046 
			<interface>wan</interface>
4047 
			<ipprotocol>inet</ipprotocol>
4048 
			<tag/>
4049 
			<tagged/>
4050 
			<max/>
4051 
			<max-src-nodes/>
4052 
			<max-src-conn/>
4053 
			<max-src-states/>
4054 
			<statetimeout/>
4055 
			<statetype>keep state</statetype>
4056 
			<os/>
4057 
			<protocol>tcp/udp</protocol>
4058 
			<source>
4059 
				<address>P2Phostiles1</address>
4060 
			</source>
4061 
			<destination>
4062 
				<address>BEDiMac</address>
4063 
				<port>P2Pports</port>
4064 
			</destination>
4065 
			<descr><![CDATA[Block IPs hostile towards peer-to-peer]]></descr>
4066 
			<created>
4067 
				<time>1385284106</time>
4068 
				<username>admin@172.24.16.234</username>
4069 
			</created>
4070 
			<updated>
4071 
				<time>1390783072</time>
4072 
				<username>admin@172.24.16.234</username>
4073 
			</updated>
4074 
			<tracker>1424949659</tracker>
4075 
		</rule>
4076 
		<rule>
4077 
			<id/>
4078 
			<type>block</type>
4079 
			<interface>wan</interface>
4080 
			<ipprotocol>inet</ipprotocol>
4081 
			<tag/>
4082 
			<tagged/>
4083 
			<max/>
4084 
			<max-src-nodes/>
4085 
			<max-src-conn/>
4086 
			<max-src-states/>
4087 
			<statetimeout/>
4088 
			<statetype>keep state</statetype>
4089 
			<os/>
4090 
			<protocol>tcp/udp</protocol>
4091 
			<source>
4092 
				<address>P2Phostiles2</address>
4093 
			</source>
4094 
			<destination>
4095 
				<address>BEDiMac</address>
4096 
				<port>P2Pports</port>
4097 
			</destination>
4098 
			<descr><![CDATA[Block IPs hostile towards peer-to-peer]]></descr>
4099 
			<created>
4100 
				<time>1385285327</time>
4101 
				<username>admin@172.24.16.234</username>
4102 
			</created>
4103 
			<updated>
4104 
				<time>1388989281</time>
4105 
				<username>admin@172.24.16.234</username>
4106 
			</updated>
4107 
			<tracker>1424949660</tracker>
4108 
		</rule>
4109 
		<rule>
4110 
			<id/>
4111 
			<type>block</type>
4112 
			<interface>wan</interface>
4113 
			<ipprotocol>inet</ipprotocol>
4114 
			<tag/>
4115 
			<tagged/>
4116 
			<max/>
4117 
			<max-src-nodes/>
4118 
			<max-src-conn/>
4119 
			<max-src-states/>
4120 
			<statetimeout/>
4121 
			<statetype>keep state</statetype>
4122 
			<os/>
4123 
			<protocol>tcp/udp</protocol>
4124 
			<source>
4125 
				<address>P2Phostiles3</address>
4126 
			</source>
4127 
			<destination>
4128 
				<address>BEDiMac</address>
4129 
				<port>P2Pports</port>
4130 
			</destination>
4131 
			<descr><![CDATA[Block IPs hostile towards peer-to-peer]]></descr>
4132 
			<created>
4133 
				<time>1385285342</time>
4134 
				<username>admin@172.24.16.234</username>
4135 
			</created>
4136 
			<updated>
4137 
				<time>1388989275</time>
4138 
				<username>admin@172.24.16.234</username>
4139 
			</updated>
4140 
			<tracker>1424949661</tracker>
4141 
		</rule>
4142 
		<rule>
4143 
			<id/>
4144 
			<type>block</type>
4145 
			<interface>wan</interface>
4146 
			<ipprotocol>inet</ipprotocol>
4147 
			<tag/>
4148 
			<tagged/>
4149 
			<max/>
4150 
			<max-src-nodes/>
4151 
			<max-src-conn/>
4152 
			<max-src-states/>
4153 
			<statetimeout/>
4154 
			<statetype>keep state</statetype>
4155 
			<os/>
4156 
			<protocol>tcp/udp</protocol>
4157 
			<source>
4158 
				<address>P2Phostiles4</address>
4159 
			</source>
4160 
			<destination>
4161 
				<address>BEDiMac</address>
4162 
				<port>P2Pports</port>
4163 
			</destination>
4164 
			<descr><![CDATA[Block IPs hostile towards peer-to-peer]]></descr>
4165 
			<created>
4166 
				<time>1385285359</time>
4167 
				<username>admin@172.24.16.234</username>
4168 
			</created>
4169 
			<updated>
4170 
				<time>1388989267</time>
4171 
				<username>admin@172.24.16.234</username>
4172 
			</updated>
4173 
			<tracker>1424949662</tracker>
4174 
		</rule>
4175 
		<rule>
4176 
			<id/>
4177 
			<type>block</type>
4178 
			<interface>wan</interface>
4179 
			<ipprotocol>inet</ipprotocol>
4180 
			<tag/>
4181 
			<tagged/>
4182 
			<max/>
4183 
			<max-src-nodes/>
4184 
			<max-src-conn/>
4185 
			<max-src-states/>
4186 
			<statetimeout/>
4187 
			<statetype>keep state</statetype>
4188 
			<os/>
4189 
			<protocol>tcp/udp</protocol>
4190 
			<source>
4191 
				<address>P2Phostiles5</address>
4192 
			</source>
4193 
			<destination>
4194 
				<address>BEDiMac</address>
4195 
				<port>P2Pports</port>
4196 
			</destination>
4197 
			<descr><![CDATA[Block IPs hostile towards peer-to-peer]]></descr>
4198 
			<created>
4199 
				<time>1387158770</time>
4200 
				<username>admin@172.24.16.234</username>
4201 
			</created>
4202 
			<updated>
4203 
				<time>1388989258</time>
4204 
				<username>admin@172.24.16.234</username>
4205 
			</updated>
4206 
			<tracker>1424949663</tracker>
4207 
		</rule>
4208 
		<rule>
4209 
			<id/>
4210 
			<type>block</type>
4211 
			<interface>wan</interface>
4212 
			<ipprotocol>inet</ipprotocol>
4213 
			<tag/>
4214 
			<tagged/>
4215 
			<max/>
4216 
			<max-src-nodes/>
4217 
			<max-src-conn/>
4218 
			<max-src-states/>
4219 
			<statetimeout/>
4220 
			<statetype>keep state</statetype>
4221 
			<os/>
4222 
			<protocol>tcp/udp</protocol>
4223 
			<source>
4224 
				<address>P2Phostiles6</address>
4225 
			</source>
4226 
			<destination>
4227 
				<address>BEDiMac</address>
4228 
				<port>P2Pports</port>
4229 
			</destination>
4230 
			<descr><![CDATA[Block IPs hostile towards peer-to-peer]]></descr>
4231 
			<updated>
4232 
				<time>1414108130</time>
4233 
				<username>admin@172.24.16.234</username>
4234 
			</updated>
4235 
			<created>
4236 
				<time>1414108130</time>
4237 
				<username>admin@172.24.16.234</username>
4238 
			</created>
4239 
			<tracker>1424949664</tracker>
4240 
		</rule>
4241 
		<rule>
4242 
			<id/>
4243 
			<type>pass</type>
4244 
			<interface>wan</interface>
4245 
			<ipprotocol>inet</ipprotocol>
4246 
			<tag/>
4247 
			<tagged/>
4248 
			<max/>
4249 
			<max-src-nodes/>
4250 
			<max-src-conn/>
4251 
			<max-src-states/>
4252 
			<statetimeout/>
4253 
			<statetype>keep state</statetype>
4254 
			<os/>
4255 
			<protocol>tcp/udp</protocol>
4256 
			<source>
4257 
				<any/>
4258 
			</source>
4259 
			<destination>
4260 
				<address>BEDiMacOnLAN1</address>
4261 
				<port>BittorrentPort</port>
4262 
			</destination>
4263 
			<descr><![CDATA[NAT Pass Transmission's bittorrent P2P traffic]]></descr>
4264 
			<associated-rule-id>nat_50cd94bf3dee27.37073586</associated-rule-id>
4265 
			<updated>
4266 
				<time>1385632497</time>
4267 
				<username>admin@172.24.16.234</username>
4268 
			</updated>
4269 
			<disabled/>
4270 
			<tracker>1424949665</tracker>
4271 
		</rule>
4272 
		<rule>
4273 
			<id/>
4274 
			<type>pass</type>
4275 
			<interface>wan</interface>
4276 
			<ipprotocol>inet</ipprotocol>
4277 
			<tag/>
4278 
			<tagged/>
4279 
			<max/>
4280 
			<max-src-nodes/>
4281 
			<max-src-conn/>
4282 
			<max-src-states/>
4283 
			<statetimeout/>
4284 
			<statetype>keep state</statetype>
4285 
			<os/>
4286 
			<protocol>tcp/udp</protocol>
4287 
			<source>
4288 
				<any/>
4289 
			</source>
4290 
			<destination>
4291 
				<address>BEDiMacOnLAN1</address>
4292 
				<port>GnutellaPort</port>
4293 
			</destination>
4294 
			<descr><![CDATA[NAT Pass Gtk-Guntella's P2P traffic]]></descr>
4295 
			<associated-rule-id>nat_5289db443d9f36.25480489</associated-rule-id>
4296 
			<updated>
4297 
				<time>1389606513</time>
4298 
				<username>admin@172.24.16.234</username>
4299 
			</updated>
4300 
			<disabled/>
4301 
			<tracker>1424949666</tracker>
4302 
		</rule>
4303 
		<rule>
4304 
			<id/>
4305 
			<type>block</type>
4306 
			<interface>wan</interface>
4307 
			<ipprotocol>inet</ipprotocol>
4308 
			<tag/>
4309 
			<tagged/>
4310 
			<max/>
4311 
			<max-src-nodes/>
4312 
			<max-src-conn/>
4313 
			<max-src-states/>
4314 
			<statetimeout/>
4315 
			<statetype>keep state</statetype>
4316 
			<os/>
4317 
			<source>
4318 
				<any/>
4319 
			</source>
4320 
			<destination>
4321 
				<any/>
4322 
			</destination>
4323 
			<descr><![CDATA[Block remaining IPv4 WAN traffic]]></descr>
4324 
			<updated>
4325 
				<time>1424935228</time>
4326 
				<username>admin@172.24.16.235</username>
4327 
			</updated>
4328 
			<tracker>1424949667</tracker>
4329 
		</rule>
4330 
		<rule>
4331 
			<id/>
4332 
			<type>block</type>
4333 
			<interface>wan</interface>
4334 
			<ipprotocol>inet6</ipprotocol>
4335 
			<tag/>
4336 
			<tagged/>
4337 
			<max/>
4338 
			<max-src-nodes/>
4339 
			<max-src-conn/>
4340 
			<max-src-states/>
4341 
			<statetimeout/>
4342 
			<statetype>keep state</statetype>
4343 
			<os/>
4344 
			<source>
4345 
				<any/>
4346 
			</source>
4347 
			<destination>
4348 
				<any/>
4349 
			</destination>
4350 
			<descr><![CDATA[Block remaining IPv6 WAN traffic]]></descr>
4351 
			<created>
4352 
				<time>1385879911</time>
4353 
				<username>admin@172.24.16.234</username>
4354 
			</created>
4355 
			<updated>
4356 
				<time>1424478586</time>
4357 
				<username>admin@172.24.16.235</username>
4358 
			</updated>
4359 
			<tracker>1424949668</tracker>
4360 
		</rule>
4361 
		<rule>
4362 
			<id/>
4363 
			<tracker>1425947157</tracker>
4364 
			<type>reject</type>
4365 
			<interface>lan</interface>
4366 
			<ipprotocol>inet</ipprotocol>
4367 
			<tag/>
4368 
			<tagged/>
4369 
			<max/>
4370 
			<max-src-nodes/>
4371 
			<max-src-conn/>
4372 
			<max-src-states/>
4373 
			<statetimeout/>
4374 
			<statetype>keep state</statetype>
4375 
			<os/>
4376 
			<protocol>tcp/udp</protocol>
4377 
			<source>
4378 
				<any/>
4379 
			</source>
4380 
			<destination>
4381 
				<any/>
4382 
				<port>NetBIOSports</port>
4383 
			</destination>
4384 
			<descr><![CDATA[Block NetBIOS traffic]]></descr>
4385 
			<updated>
4386 
				<time>1425947157</time>
4387 
				<username>admin@172.24.16.235</username>
4388 
			</updated>
4389 
			<created>
4390 
				<time>1425947157</time>
4391 
				<username>admin@172.24.16.235</username>
4392 
			</created>
4393 
		</rule>
4394 
		<rule>
4395 
			<id/>
4396 
			<type>reject</type>
4397 
			<interface>lan</interface>
4398 
			<ipprotocol>inet</ipprotocol>
4399 
			<tag/>
4400 
			<tagged/>
4401 
			<max/>
4402 
			<max-src-nodes/>
4403 
			<max-src-conn/>
4404 
			<max-src-states/>
4405 
			<statetimeout/>
4406 
			<statetype>keep state</statetype>
4407 
			<os/>
4408 
			<protocol>tcp/udp</protocol>
4409 
			<source>
4410 
				<any/>
4411 
			</source>
4412 
			<destination>
4413 
				<address>NotLAN1lans</address>
4414 
				<port>NonCrossLANports</port>
4415 
			</destination>
4416 
			<descr><![CDATA[Block certain cross-LAN traffic going out from LAN1]]></descr>
4417 
			<created>
4418 
				<time>1422825892</time>
4419 
				<username>admin@172.24.16.235</username>
4420 
			</created>
4421 
			<updated>
4422 
				<time>1422827455</time>
4423 
				<username>admin@172.24.16.235</username>
4424 
			</updated>
4425 
			<tracker>1424949669</tracker>
4426 
		</rule>
4427 
		<rule>
4428 
			<id/>
4429 
			<type>reject</type>
4430 
			<interface>lan</interface>
4431 
			<ipprotocol>inet</ipprotocol>
4432 
			<tag/>
4433 
			<tagged/>
4434 
			<max/>
4435 
			<max-src-nodes/>
4436 
			<max-src-conn/>
4437 
			<max-src-states/>
4438 
			<statetimeout/>
4439 
			<statetype>keep state</statetype>
4440 
			<os/>
4441 
			<protocol>udp</protocol>
4442 
			<source>
4443 
				<address>TestRouter</address>
4444 
				<port>mDNSport</port>
4445 
			</source>
4446 
			<destination>
4447 
				<any/>
4448 
			</destination>
4449 
			<descr><![CDATA[Block mDNS (Avahi) from pfSense test router]]></descr>
4450 
			<updated>
4451 
				<time>1424395361</time>
4452 
				<username>admin@172.24.16.235</username>
4453 
			</updated>
4454 
			<created>
4455 
				<time>1424395361</time>
4456 
				<username>admin@172.24.16.235</username>
4457 
			</created>
4458 
			<tracker>1424949670</tracker>
4459 
		</rule>
4460 
		<rule>
4461 
			<id/>
4462 
			<type>reject</type>
4463 
			<interface>lan</interface>
4464 
			<ipprotocol>inet</ipprotocol>
4465 
			<tag/>
4466 
			<tagged/>
4467 
			<max/>
4468 
			<max-src-nodes/>
4469 
			<max-src-conn/>
4470 
			<max-src-states/>
4471 
			<statetimeout/>
4472 
			<statetype>keep state</statetype>
4473 
			<os/>
4474 
			<source>
4475 
				<any/>
4476 
			</source>
4477 
			<destination>
4478 
				<address>IPv4linkLocalNetBlk</address>
4479 
			</destination>
4480 
			<log/>
4481 
			<descr><![CDATA[Block traffic to IPv4 link-local addresses]]></descr>
4482 
			<updated>
4483 
				<time>1424937027</time>
4484 
				<username>admin@172.24.16.235</username>
4485 
			</updated>
4486 
			<created>
4487 
				<time>1424937027</time>
4488 
				<username>admin@172.24.16.235</username>
4489 
			</created>
4490 
			<tracker>1424949671</tracker>
4491 
		</rule>
4492 
		<rule>
4493 
			<id/>
4494 
			<type>pass</type>
4495 
			<interface>lan</interface>
4496 
			<ipprotocol>inet</ipprotocol>
4497 
			<tag/>
4498 
			<tagged/>
4499 
			<max/>
4500 
			<max-src-nodes/>
4501 
			<max-src-conn/>
4502 
			<max-src-states/>
4503 
			<statetimeout/>
4504 
			<statetype>keep state</statetype>
4505 
			<os/>
4506 
			<source>
4507 
				<address>WhitelistedHosts</address>
4508 
			</source>
4509 
			<destination>
4510 
				<address>WhitelistedDestinations</address>
4511 
			</destination>
4512 
			<descr><![CDATA[Allow whitelisted hosts to whitelisted addresses]]></descr>
4513 
			<created>
4514 
				<time>1401389557</time>
4515 
				<username>admin@172.24.16.234</username>
4516 
			</created>
4517 
			<updated>
4518 
				<time>1420510454</time>
4519 
				<username>admin@172.24.16.235</username>
4520 
			</updated>
4521 
			<tracker>1424949672</tracker>
4522 
		</rule>
4523 
		<rule>
4524 
			<id/>
4525 
			<type>reject</type>
4526 
			<interface>lan</interface>
4527 
			<ipprotocol>inet</ipprotocol>
4528 
			<tag/>
4529 
			<tagged/>
4530 
			<max/>
4531 
			<max-src-nodes/>
4532 
			<max-src-conn/>
4533 
			<max-src-states/>
4534 
			<statetimeout/>
4535 
			<statetype>keep state</statetype>
4536 
			<os/>
4537 
			<source>
4538 
				<any/>
4539 
			</source>
4540 
			<destination>
4541 
				<address>AdBlockServer</address>
4542 
			</destination>
4543 
			<descr><![CDATA[Prevent traffic to IPv4 Ad-block server]]></descr>
4544 
			<created>
4545 
				<time>1420507380</time>
4546 
				<username>admin@172.24.16.235</username>
4547 
			</created>
4548 
			<updated>
4549 
				<time>1420509997</time>
4550 
				<username>admin@172.24.16.235</username>
4551 
			</updated>
4552 
			<disabled/>
4553 
			<tracker>1424949673</tracker>
4554 
		</rule>
4555 
		<rule>
4556 
			<id/>
4557 
			<type>reject</type>
4558 
			<interface>lan</interface>
4559 
			<ipprotocol>inet6</ipprotocol>
4560 
			<tag/>
4561 
			<tagged/>
4562 
			<max/>
4563 
			<max-src-nodes/>
4564 
			<max-src-conn/>
4565 
			<max-src-states/>
4566 
			<statetimeout/>
4567 
			<statetype>keep state</statetype>
4568 
			<os/>
4569 
			<source>
4570 
				<any/>
4571 
			</source>
4572 
			<destination>
4573 
				<address>AdBlockServer</address>
4574 
			</destination>
4575 
			<descr><![CDATA[Prevent traffic to IPv6 Ad-block server]]></descr>
4576 
			<created>
4577 
				<time>1420507391</time>
4578 
				<username>admin@172.24.16.235</username>
4579 
			</created>
4580 
			<updated>
4581 
				<time>1420509986</time>
4582 
				<username>admin@172.24.16.235</username>
4583 
			</updated>
4584 
			<tracker>1424949674</tracker>
4585 
		</rule>
4586 
		<rule>
4587 
			<id/>
4588 
			<type>reject</type>
4589 
			<interface>lan</interface>
4590 
			<ipprotocol>inet</ipprotocol>
4591 
			<tag/>
4592 
			<tagged/>
4593 
			<max/>
4594 
			<max-src-nodes/>
4595 
			<max-src-conn/>
4596 
			<max-src-states/>
4597 
			<statetimeout/>
4598 
			<statetype>keep state</statetype>
4599 
			<os/>
4600 
			<source>
4601 
				<any/>
4602 
			</source>
4603 
			<destination>
4604 
				<address>PhoneHomeBlocks</address>
4605 
			</destination>
4606 
			<descr><![CDATA[Block specific &quot;app phone home&quot; IPs]]></descr>
4607 
			<updated>
4608 
				<time>1420509566</time>
4609 
				<username>admin@172.24.16.235</username>
4610 
			</updated>
4611 
			<created>
4612 
				<time>1420509566</time>
4613 
				<username>admin@172.24.16.235</username>
4614 
			</created>
4615 
			<tracker>1424949675</tracker>
4616 
		</rule>
4617 
		<rule>
4618 
			<id/>
4619 
			<type>reject</type>
4620 
			<interface>lan</interface>
4621 
			<ipprotocol>inet</ipprotocol>
4622 
			<tag/>
4623 
			<tagged/>
4624 
			<max/>
4625 
			<max-src-nodes/>
4626 
			<max-src-conn/>
4627 
			<max-src-states/>
4628 
			<statetimeout/>
4629 
			<statetype>keep state</statetype>
4630 
			<os/>
4631 
			<source>
4632 
				<any/>
4633 
			</source>
4634 
			<destination>
4635 
				<address>AdSense</address>
4636 
			</destination>
4637 
			<descr><![CDATA[Prevent AdSense ads from showing on our networks]]></descr>
4638 
			<created>
4639 
				<time>1394348097</time>
4640 
				<username>admin@172.24.16.234</username>
4641 
			</created>
4642 
			<updated>
4643 
				<time>1424340364</time>
4644 
				<username>admin@172.24.16.235</username>
4645 
			</updated>
4646 
			<tracker>1424949676</tracker>
4647 
		</rule>
4648 
		<rule>
4649 
			<id/>
4650 
			<type>reject</type>
4651 
			<interface>lan</interface>
4652 
			<ipprotocol>inet</ipprotocol>
4653 
			<tag/>
4654 
			<tagged/>
4655 
			<max/>
4656 
			<max-src-nodes/>
4657 
			<max-src-conn/>
4658 
			<max-src-states/>
4659 
			<statetimeout/>
4660 
			<statetype>keep state</statetype>
4661 
			<os/>
4662 
			<source>
4663 
				<address>DevServers</address>
4664 
				<not/>
4665 
			</source>
4666 
			<destination>
4667 
				<address>BadGuyBTadsList</address>
4668 
			</destination>
4669 
			<descr><![CDATA[Block traffic to Ad trackers]]></descr>
4670 
			<created>
4671 
				<time>1420507591</time>
4672 
				<username>admin@172.24.16.235</username>
4673 
			</created>
4674 
			<updated>
4675 
				<time>1420509441</time>
4676 
				<username>admin@172.24.16.235</username>
4677 
			</updated>
4678 
			<tracker>1424949677</tracker>
4679 
		</rule>
4680 
		<rule>
4681 
			<id/>
4682 
			<type>reject</type>
4683 
			<interface>lan</interface>
4684 
			<ipprotocol>inet</ipprotocol>
4685 
			<tag/>
4686 
			<tagged/>
4687 
			<max/>
4688 
			<max-src-nodes/>
4689 
			<max-src-conn/>
4690 
			<max-src-states/>
4691 
			<statetimeout/>
4692 
			<statetype>keep state</statetype>
4693 
			<os/>
4694 
			<source>
4695 
				<any/>
4696 
			</source>
4697 
			<destination>
4698 
				<address>BadGuyBTfSpammerList</address>
4699 
			</destination>
4700 
			<descr><![CDATA[Block LAN1 traffic to spammers]]></descr>
4701 
			<updated>
4702 
				<time>1400222035</time>
4703 
				<username>admin@172.24.17.234</username>
4704 
			</updated>
4705 
			<tracker>1424949678</tracker>
4706 
		</rule>
4707 
		<rule>
4708 
			<id/>
4709 
			<type>reject</type>
4710 
			<interface>lan</interface>
4711 
			<ipprotocol>inet</ipprotocol>
4712 
			<tag/>
4713 
			<tagged/>
4714 
			<max/>
4715 
			<max-src-nodes/>
4716 
			<max-src-conn/>
4717 
			<max-src-states/>
4718 
			<statetimeout/>
4719 
			<statetype>keep state</statetype>
4720 
			<os/>
4721 
			<source>
4722 
				<any/>
4723 
			</source>
4724 
			<destination>
4725 
				<address>BadGuyBThijackedList</address>
4726 
			</destination>
4727 
			<descr><![CDATA[Block LAN1 traffic to hijacked systems]]></descr>
4728 
			<updated>
4729 
				<time>1400222027</time>
4730 
				<username>admin@172.24.17.234</username>
4731 
			</updated>
4732 
			<tracker>1424949679</tracker>
4733 
		</rule>
4734 
		<rule>
4735 
			<id/>
4736 
			<type>reject</type>
4737 
			<interface>lan</interface>
4738 
			<ipprotocol>inet</ipprotocol>
4739 
			<tag/>
4740 
			<tagged/>
4741 
			<max/>
4742 
			<max-src-nodes/>
4743 
			<max-src-conn/>
4744 
			<max-src-states/>
4745 
			<statetimeout/>
4746 
			<statetype>keep state</statetype>
4747 
			<os/>
4748 
			<source>
4749 
				<any/>
4750 
			</source>
4751 
			<destination>
4752 
				<address>BadGuyBTshieldList</address>
4753 
			</destination>
4754 
			<descr><![CDATA[Block LAN1 traffic to hacker systems]]></descr>
4755 
			<updated>
4756 
				<time>1400222022</time>
4757 
				<username>admin@172.24.17.234</username>
4758 
			</updated>
4759 
			<tracker>1424949680</tracker>
4760 
		</rule>
4761 
		<rule>
4762 
			<id/>
4763 
			<type>reject</type>
4764 
			<interface>lan</interface>
4765 
			<ipprotocol>inet</ipprotocol>
4766 
			<tag/>
4767 
			<tagged/>
4768 
			<max/>
4769 
			<max-src-nodes/>
4770 
			<max-src-conn/>
4771 
			<max-src-states/>
4772 
			<statetimeout/>
4773 
			<statetype>keep state</statetype>
4774 
			<os/>
4775 
			<source>
4776 
				<any/>
4777 
			</source>
4778 
			<destination>
4779 
				<address>BadGuyBTspiderList</address>
4780 
			</destination>
4781 
			<descr><![CDATA[Block LAN1 traffic to bad spider/crawler's systems]]></descr>
4782 
			<created>
4783 
				<time>1394839879</time>
4784 
				<username>admin@172.24.16.234</username>
4785 
			</created>
4786 
			<updated>
4787 
				<time>1400222015</time>
4788 
				<username>admin@172.24.17.234</username>
4789 
			</updated>
4790 
			<tracker>1424949681</tracker>
4791 
		</rule>
4792 
		<rule>
4793 
			<id/>
4794 
			<type>reject</type>
4795 
			<interface>lan</interface>
4796 
			<ipprotocol>inet</ipprotocol>
4797 
			<tag/>
4798 
			<tagged/>
4799 
			<max/>
4800 
			<max-src-nodes/>
4801 
			<max-src-conn/>
4802 
			<max-src-states/>
4803 
			<statetimeout/>
4804 
			<statetype>keep state</statetype>
4805 
			<os/>
4806 
			<source>
4807 
				<any/>
4808 
			</source>
4809 
			<destination>
4810 
				<address>BadGuyBTspywareList</address>
4811 
			</destination>
4812 
			<descr><![CDATA[Block LAN1 traffic to spyware systems]]></descr>
4813 
			<updated>
4814 
				<time>1400222009</time>
4815 
				<username>admin@172.24.17.234</username>
4816 
			</updated>
4817 
			<tracker>1424949682</tracker>
4818 
		</rule>
4819 
		<rule>
4820 
			<id/>
4821 
			<type>reject</type>
4822 
			<interface>lan</interface>
4823 
			<ipprotocol>inet</ipprotocol>
4824 
			<tag/>
4825 
			<tagged/>
4826 
			<max/>
4827 
			<max-src-nodes/>
4828 
			<max-src-conn/>
4829 
			<max-src-states/>
4830 
			<statetimeout/>
4831 
			<statetype>keep state</statetype>
4832 
			<os/>
4833 
			<source>
4834 
				<any/>
4835 
			</source>
4836 
			<destination>
4837 
				<address>BadGuyBTwebexploitList</address>
4838 
			</destination>
4839 
			<descr><![CDATA[Block LAN1 traffic to web exploit systems]]></descr>
4840 
			<created>
4841 
				<time>1394843236</time>
4842 
				<username>admin@172.24.16.234</username>
4843 
			</created>
4844 
			<updated>
4845 
				<time>1400222003</time>
4846 
				<username>admin@172.24.17.234</username>
4847 
			</updated>
4848 
			<tracker>1424949683</tracker>
4849 
		</rule>
4850 
		<rule>
4851 
			<id/>
4852 
			<type>reject</type>
4853 
			<interface>lan</interface>
4854 
			<ipprotocol>inet</ipprotocol>
4855 
			<tag/>
4856 
			<tagged/>
4857 
			<max/>
4858 
			<max-src-nodes/>
4859 
			<max-src-conn/>
4860 
			<max-src-states/>
4861 
			<statetimeout/>
4862 
			<statetype>keep state</statetype>
4863 
			<os/>
4864 
			<source>
4865 
				<any/>
4866 
			</source>
4867 
			<destination>
4868 
				<address>BadGuyDROPlist</address>
4869 
			</destination>
4870 
			<descr><![CDATA[Block LAN1 traffic to criminal-controlled systems]]></descr>
4871 
			<updated>
4872 
				<time>1400221997</time>
4873 
				<username>admin@172.24.17.234</username>
4874 
			</updated>
4875 
			<tracker>1424949684</tracker>
4876 
		</rule>
4877 
		<rule>
4878 
			<id/>
4879 
			<type>reject</type>
4880 
			<interface>lan</interface>
4881 
			<ipprotocol>inet</ipprotocol>
4882 
			<tag/>
4883 
			<tagged/>
4884 
			<max/>
4885 
			<max-src-nodes/>
4886 
			<max-src-conn/>
4887 
			<max-src-states/>
4888 
			<statetimeout/>
4889 
			<statetype>keep state</statetype>
4890 
			<os/>
4891 
			<source>
4892 
				<any/>
4893 
			</source>
4894 
			<destination>
4895 
				<address>BadGuyEDROPlist</address>
4896 
			</destination>
4897 
			<descr><![CDATA[Block LAN1 traffic to criminal-controlled systems]]></descr>
4898 
			<updated>
4899 
				<time>1400221990</time>
4900 
				<username>admin@172.24.17.234</username>
4901 
			</updated>
4902 
			<tracker>1424949685</tracker>
4903 
		</rule>
4904 
		<rule>
4905 
			<id/>
4906 
			<type>reject</type>
4907 
			<interface>lan</interface>
4908 
			<ipprotocol>inet</ipprotocol>
4909 
			<tag/>
4910 
			<tagged/>
4911 
			<max/>
4912 
			<max-src-nodes/>
4913 
			<max-src-conn/>
4914 
			<max-src-states/>
4915 
			<statetimeout/>
4916 
			<statetype>keep state</statetype>
4917 
			<os/>
4918 
			<source>
4919 
				<any/>
4920 
			</source>
4921 
			<destination>
4922 
				<address>BadNets</address>
4923 
			</destination>
4924 
			<descr><![CDATA[Block LAN1 traffic to undesired networks]]></descr>
4925 
			<updated>
4926 
				<time>1400221984</time>
4927 
				<username>admin@172.24.17.234</username>
4928 
			</updated>
4929 
			<tracker>1424949686</tracker>
4930 
		</rule>
4931 
		<rule>
4932 
			<id/>
4933 
			<type>reject</type>
4934 
			<interface>lan</interface>
4935 
			<ipprotocol>inet</ipprotocol>
4936 
			<tag/>
4937 
			<tagged/>
4938 
			<max/>
4939 
			<max-src-nodes/>
4940 
			<max-src-conn/>
4941 
			<max-src-states/>
4942 
			<statetimeout/>
4943 
			<statetype>keep state</statetype>
4944 
			<os/>
4945 
			<source>
4946 
				<any/>
4947 
			</source>
4948 
			<destination>
4949 
				<address>BadGuys</address>
4950 
			</destination>
4951 
			<descr><![CDATA[Block LAN1 traffic to bad-guy systems]]></descr>
4952 
			<updated>
4953 
				<time>1400221959</time>
4954 
				<username>admin@172.24.17.234</username>
4955 
			</updated>
4956 
			<tracker>1424949687</tracker>
4957 
		</rule>
4958 
		<rule>
4959 
			<id/>
4960 
			<type>reject</type>
4961 
			<interface>lan</interface>
4962 
			<ipprotocol>inet</ipprotocol>
4963 
			<tag/>
4964 
			<tagged/>
4965 
			<max/>
4966 
			<max-src-nodes/>
4967 
			<max-src-conn/>
4968 
			<max-src-states/>
4969 
			<statetimeout/>
4970 
			<statetype>keep state</statetype>
4971 
			<os/>
4972 
			<source>
4973 
				<any/>
4974 
			</source>
4975 
			<destination>
4976 
				<address>EmergingThreats</address>
4977 
			</destination>
4978 
			<descr><![CDATA[Block LAN1 traffic to various threat IPs &amp; networks]]></descr>
4979 
			<created>
4980 
				<time>1391395861</time>
4981 
				<username>admin@172.24.16.234</username>
4982 
			</created>
4983 
			<updated>
4984 
				<time>1400221953</time>
4985 
				<username>admin@172.24.17.234</username>
4986 
			</updated>
4987 
			<tracker>1424949688</tracker>
4988 
		</rule>
4989 
		<rule>
4990 
			<id/>
4991 
			<type>reject</type>
4992 
			<interface>lan</interface>
4993 
			<ipprotocol>inet</ipprotocol>
4994 
			<tag/>
4995 
			<tagged/>
4996 
			<max/>
4997 
			<max-src-nodes/>
4998 
			<max-src-conn/>
4999 
			<max-src-states/>
5000 
			<statetimeout/>
5001 
			<statetype>keep state</statetype>
5002 
			<os/>
5003 
			<source>
5004 
				<any/>
5005 
			</source>
5006 
			<destination>
5007 
				<address>ForumSpammerNets</address>
5008 
			</destination>
5009 
			<descr><![CDATA[Block LAN1 traffic to forum spammer networks]]></descr>
5010 
			<created>
5011 
				<time>1390784317</time>
5012 
				<username>admin@172.24.16.234</username>
5013 
			</created>
5014 
			<updated>
5015 
				<time>1400221947</time>
5016 
				<username>admin@172.24.17.234</username>
5017 
			</updated>
5018 
			<tracker>1424949689</tracker>
5019 
		</rule>
5020 
		<rule>
5021 
			<id/>
5022 
			<type>reject</type>
5023 
			<interface>lan</interface>
5024 
			<ipprotocol>inet</ipprotocol>
5025 
			<tag/>
5026 
			<tagged/>
5027 
			<max/>
5028 
			<max-src-nodes/>
5029 
			<max-src-conn/>
5030 
			<max-src-states/>
5031 
			<statetimeout/>
5032 
			<statetype>keep state</statetype>
5033 
			<os/>
5034 
			<source>
5035 
				<any/>
5036 
			</source>
5037 
			<destination>
5038 
				<address>ForumSpammers1</address>
5039 
			</destination>
5040 
			<descr><![CDATA[Block LAN1 traffic to forum spammer systems]]></descr>
5041 
			<created>
5042 
				<time>1390784020</time>
5043 
				<username>admin@172.24.16.234</username>
5044 
			</created>
5045 
			<updated>
5046 
				<time>1400221941</time>
5047 
				<username>admin@172.24.17.234</username>
5048 
			</updated>
5049 
			<tracker>1424949690</tracker>
5050 
		</rule>
5051 
		<rule>
5052 
			<id/>
5053 
			<type>reject</type>
5054 
			<interface>lan</interface>
5055 
			<ipprotocol>inet</ipprotocol>
5056 
			<tag/>
5057 
			<tagged/>
5058 
			<max/>
5059 
			<max-src-nodes/>
5060 
			<max-src-conn/>
5061 
			<max-src-states/>
5062 
			<statetimeout/>
5063 
			<statetype>keep state</statetype>
5064 
			<os/>
5065 
			<source>
5066 
				<any/>
5067 
			</source>
5068 
			<destination>
5069 
				<address>ForumSpammers2</address>
5070 
			</destination>
5071 
			<descr><![CDATA[Block LAN1 traffic to forum spammer systems]]></descr>
5072 
			<created>
5073 
				<time>1390784281</time>
5074 
				<username>admin@172.24.16.234</username>
5075 
			</created>
5076 
			<updated>
5077 
				<time>1400221935</time>
5078 
				<username>admin@172.24.17.234</username>
5079 
			</updated>
5080 
			<tracker>1424949691</tracker>
5081 
		</rule>
5082 
		<rule>
5083 
			<id/>
5084 
			<type>reject</type>
5085 
			<interface>lan</interface>
5086 
			<ipprotocol>inet</ipprotocol>
5087 
			<tag/>
5088 
			<tagged/>
5089 
			<max/>
5090 
			<max-src-nodes/>
5091 
			<max-src-conn/>
5092 
			<max-src-states/>
5093 
			<statetimeout/>
5094 
			<statetype>keep state</statetype>
5095 
			<os/>
5096 
			<source>
5097 
				<any/>
5098 
			</source>
5099 
			<destination>
5100 
				<address>ForumSpammers3</address>
5101 
			</destination>
5102 
			<descr><![CDATA[Block LAN1 traffic to forum spammer systems]]></descr>
5103 
			<created>
5104 
				<time>1390784256</time>
5105 
				<username>admin@172.24.16.234</username>
5106 
			</created>
5107 
			<updated>
5108 
				<time>1400221929</time>
5109 
				<username>admin@172.24.17.234</username>
5110 
			</updated>
5111 
			<tracker>1424949692</tracker>
5112 
		</rule>
5113 
		<rule>
5114 
			<id/>
5115 
			<type>reject</type>
5116 
			<interface>lan</interface>
5117 
			<ipprotocol>inet</ipprotocol>
5118 
			<tag/>
5119 
			<tagged/>
5120 
			<max/>
5121 
			<max-src-nodes/>
5122 
			<max-src-conn/>
5123 
			<max-src-states/>
5124 
			<statetimeout/>
5125 
			<statetype>keep state</statetype>
5126 
			<os/>
5127 
			<source>
5128 
				<any/>
5129 
			</source>
5130 
			<destination>
5131 
				<address>ForumSpammers4</address>
5132 
			</destination>
5133 
			<descr><![CDATA[Block LAN1 traffic to forum spammer systems]]></descr>
5134 
			<created>
5135 
				<time>1390784230</time>
5136 
				<username>admin@172.24.16.234</username>
5137 
			</created>
5138 
			<updated>
5139 
				<time>1400221922</time>
5140 
				<username>admin@172.24.17.234</username>
5141 
			</updated>
5142 
			<tracker>1424949693</tracker>
5143 
		</rule>
5144 
		<rule>
5145 
			<id/>
5146 
			<type>reject</type>
5147 
			<interface>lan</interface>
5148 
			<ipprotocol>inet</ipprotocol>
5149 
			<tag/>
5150 
			<tagged/>
5151 
			<max/>
5152 
			<max-src-nodes/>
5153 
			<max-src-conn/>
5154 
			<max-src-states/>
5155 
			<statetimeout/>
5156 
			<statetype>keep state</statetype>
5157 
			<os/>
5158 
			<source>
5159 
				<any/>
5160 
			</source>
5161 
			<destination>
5162 
				<address>ForumSpammers5</address>
5163 
			</destination>
5164 
			<descr><![CDATA[Block LAN1 traffic to forum spammer systems]]></descr>
5165 
			<created>
5166 
				<time>1390784181</time>
5167 
				<username>admin@172.24.16.234</username>
5168 
			</created>
5169 
			<updated>
5170 
				<time>1400221915</time>
5171 
				<username>admin@172.24.17.234</username>
5172 
			</updated>
5173 
			<tracker>1424949694</tracker>
5174 
		</rule>
5175 
		<rule>
5176 
			<id/>
5177 
			<type>reject</type>
5178 
			<interface>lan</interface>
5179 
			<ipprotocol>inet</ipprotocol>
5180 
			<tag/>
5181 
			<tagged/>
5182 
			<max/>
5183 
			<max-src-nodes/>
5184 
			<max-src-conn/>
5185 
			<max-src-states/>
5186 
			<statetimeout/>
5187 
			<statetype>keep state</statetype>
5188 
			<os/>
5189 
			<source>
5190 
				<any/>
5191 
			</source>
5192 
			<destination>
5193 
				<address>MalwareSites</address>
5194 
			</destination>
5195 
			<descr><![CDATA[Block LAN1 traffic to malware systems]]></descr>
5196 
			<updated>
5197 
				<time>1422573515</time>
5198 
				<username>admin@172.24.16.235</username>
5199 
			</updated>
5200 
			<created>
5201 
				<time>1422573515</time>
5202 
				<username>admin@172.24.16.235</username>
5203 
			</created>
5204 
			<tracker>1424949695</tracker>
5205 
		</rule>
5206 
		<rule>
5207 
			<id/>
5208 
			<type>pass</type>
5209 
			<interface>lan</interface>
5210 
			<ipprotocol>inet</ipprotocol>
5211 
			<tag/>
5212 
			<tagged/>
5213 
			<max/>
5214 
			<max-src-nodes/>
5215 
			<max-src-conn/>
5216 
			<max-src-states/>
5217 
			<statetimeout/>
5218 
			<statetype>keep state</statetype>
5219 
			<os/>
5220 
			<protocol>tcp/udp</protocol>
5221 
			<source>
5222 
				<address>vServer</address>
5223 
			</source>
5224 
			<destination>
5225 
				<address>vServerLocalDest</address>
5226 
			</destination>
5227 
			<descr><![CDATA[Allow required vServer local traffic]]></descr>
5228 
			<updated>
5229 
				<time>1424056343</time>
5230 
				<username>admin@172.24.16.235</username>
5231 
			</updated>
5232 
			<created>
5233 
				<time>1424056343</time>
5234 
				<username>admin@172.24.16.235</username>
5235 
			</created>
5236 
			<tracker>1424949696</tracker>
5237 
		</rule>
5238 
		<rule>
5239 
			<id/>
5240 
			<tracker>1425777088</tracker>
5241 
			<type>pass</type>
5242 
			<interface>lan</interface>
5243 
			<ipprotocol>inet</ipprotocol>
5244 
			<tag/>
5245 
			<tagged/>
5246 
			<max/>
5247 
			<max-src-nodes/>
5248 
			<max-src-conn/>
5249 
			<max-src-states/>
5250 
			<statetimeout/>
5251 
			<statetype>keep state</statetype>
5252 
			<os/>
5253 
			<protocol>tcp/udp</protocol>
5254 
			<source>
5255 
				<address>vServer</address>
5256 
			</source>
5257 
			<destination>
5258 
				<address>vServerRemoteDest</address>
5259 
			</destination>
5260 
			<descr><![CDATA[Allow required vServer remote/Internet traffic]]></descr>
5261 
			<created>
5262 
				<time>1425777088</time>
5263 
				<username>admin@172.24.16.235</username>
5264 
			</created>
5265 
			<updated>
5266 
				<time>1425777156</time>
5267 
				<username>admin@172.24.16.235</username>
5268 
			</updated>
5269 
		</rule>
5270 
		<rule>
5271 
			<id/>
5272 
			<type>pass</type>
5273 
			<interface>lan</interface>
5274 
			<ipprotocol>inet</ipprotocol>
5275 
			<tag/>
5276 
			<tagged/>
5277 
			<max/>
5278 
			<max-src-nodes/>
5279 
			<max-src-conn/>
5280 
			<max-src-states/>
5281 
			<statetimeout/>
5282 
			<statetype>keep state</statetype>
5283 
			<os/>
5284 
			<protocol>tcp/udp</protocol>
5285 
			<source>
5286 
				<address>vServer</address>
5287 
			</source>
5288 
			<destination>
5289 
				<address>NotLAN1lans</address>
5290 
				<not/>
5291 
				<port>vServerExternalDestPorts</port>
5292 
			</destination>
5293 
			<descr><![CDATA[Allow required vServer I'net traffic]]></descr>
5294 
			<created>
5295 
				<time>1423916696</time>
5296 
				<username>admin@172.24.16.235</username>
5297 
			</created>
5298 
			<updated>
5299 
				<time>1423988434</time>
5300 
				<username>admin@172.24.16.235</username>
5301 
			</updated>
5302 
			<tracker>1424949697</tracker>
5303 
		</rule>
5304 
		<rule>
5305 
			<id/>
5306 
			<type>pass</type>
5307 
			<interface>lan</interface>
5308 
			<ipprotocol>inet</ipprotocol>
5309 
			<tag/>
5310 
			<tagged/>
5311 
			<max/>
5312 
			<max-src-nodes/>
5313 
			<max-src-conn/>
5314 
			<max-src-states/>
5315 
			<statetimeout/>
5316 
			<statetype>keep state</statetype>
5317 
			<os/>
5318 
			<protocol>tcp/udp</protocol>
5319 
			<source>
5320 
				<address>vServer</address>
5321 
			</source>
5322 
			<destination>
5323 
				<address>Setnet</address>
5324 
				<port>FTPport</port>
5325 
			</destination>
5326 
			<descr><![CDATA[Allow vServer access to &quot;SetNet&quot; storage]]></descr>
5327 
			<created>
5328 
				<time>1424043337</time>
5329 
				<username>admin@172.24.16.235</username>
5330 
			</created>
5331 
			<updated>
5332 
				<time>1424043364</time>
5333 
				<username>admin@172.24.16.235</username>
5334 
			</updated>
5335 
			<tracker>1424949698</tracker>
5336 
		</rule>
5337 
		<rule>
5338 
			<id/>
5339 
			<type>pass</type>
5340 
			<interface>lan</interface>
5341 
			<ipprotocol>inet</ipprotocol>
5342 
			<tag/>
5343 
			<tagged/>
5344 
			<max/>
5345 
			<max-src-nodes/>
5346 
			<max-src-conn/>
5347 
			<max-src-states/>
5348 
			<statetimeout/>
5349 
			<statetype>keep state</statetype>
5350 
			<os/>
5351 
			<protocol>icmp</protocol>
5352 
			<icmptype>echoreq</icmptype>
5353 
			<source>
5354 
				<address>vServer</address>
5355 
			</source>
5356 
			<destination>
5357 
				<any/>
5358 
			</destination>
5359 
			<descr><![CDATA[Allow pings to originate from vServer]]></descr>
5360 
			<updated>
5361 
				<time>1424171515</time>
5362 
				<username>admin@172.24.16.235</username>
5363 
			</updated>
5364 
			<created>
5365 
				<time>1424171515</time>
5366 
				<username>admin@172.24.16.235</username>
5367 
			</created>
5368 
			<tracker>1424949699</tracker>
5369 
		</rule>
5370 
		<rule>
5371 
			<id/>
5372 
			<type>reject</type>
5373 
			<interface>lan</interface>
5374 
			<ipprotocol>inet</ipprotocol>
5375 
			<tag/>
5376 
			<tagged/>
5377 
			<max/>
5378 
			<max-src-nodes/>
5379 
			<max-src-conn/>
5380 
			<max-src-states/>
5381 
			<statetimeout/>
5382 
			<statetype>keep state</statetype>
5383 
			<os/>
5384 
			<source>
5385 
				<address>vServer</address>
5386 
			</source>
5387 
			<destination>
5388 
				<any/>
5389 
			</destination>
5390 
			<log/>
5391 
			<descr><![CDATA[Block all (other) connections from vServer]]></descr>
5392 
			<created>
5393 
				<time>1423988597</time>
5394 
				<username>admin@172.24.16.235</username>
5395 
			</created>
5396 
			<updated>
5397 
				<time>1423995669</time>
5398 
				<username>admin@172.24.16.235</username>
5399 
			</updated>
5400 
			<tracker>1424949700</tracker>
5401 
		</rule>
5402 
		<rule>
5403 
			<id/>
5404 
			<type>pass</type>
5405 
			<interface>lan</interface>
5406 
			<ipprotocol>inet</ipprotocol>
5407 
			<tag/>
5408 
			<tagged/>
5409 
			<max/>
5410 
			<max-src-nodes/>
5411 
			<max-src-conn/>
5412 
			<max-src-states/>
5413 
			<statetimeout/>
5414 
			<statetype>keep state</statetype>
5415 
			<os/>
5416 
			<source>
5417 
				<address>aTVmain</address>
5418 
			</source>
5419 
			<destination>
5420 
				<address>aTVmainAirplayers</address>
5421 
			</destination>
5422 
			<descr><![CDATA[Allow AppleTV airplay with certain devices]]></descr>
5423 
			<created>
5424 
				<time>1423786914</time>
5425 
				<username>admin@172.24.16.235</username>
5426 
			</created>
5427 
			<updated>
5428 
				<time>1423789408</time>
5429 
				<username>admin@172.24.16.235</username>
5430 
			</updated>
5431 
			<tracker>1424949701</tracker>
5432 
		</rule>
5433 
		<rule>
5434 
			<id/>
5435 
			<type>pass</type>
5436 
			<interface>lan</interface>
5437 
			<ipprotocol>inet</ipprotocol>
5438 
			<tag/>
5439 
			<tagged/>
5440 
			<max/>
5441 
			<max-src-nodes/>
5442 
			<max-src-conn/>
5443 
			<max-src-states/>
5444 
			<statetimeout/>
5445 
			<statetype>keep state</statetype>
5446 
			<os/>
5447 
			<source>
5448 
				<address>aTVconfrooms</address>
5449 
			</source>
5450 
			<destination>
5451 
				<address>aTVbrAirplayers</address>
5452 
			</destination>
5453 
			<descr><![CDATA[Allow confroom Apple TVs to airplay w/certain devices]]></descr>
5454 
			<created>
5455 
				<time>1423787699</time>
5456 
				<username>admin@172.24.16.235</username>
5457 
			</created>
5458 
			<updated>
5459 
				<time>1423793708</time>
5460 
				<username>admin@172.24.16.235</username>
5461 
			</updated>
5462 
			<tracker>1424949702</tracker>
5463 
		</rule>
5464 
		<rule>
5465 
			<id/>
5466 
			<type>reject</type>
5467 
			<interface>lan</interface>
5468 
			<ipprotocol>inet</ipprotocol>
5469 
			<tag/>
5470 
			<tagged/>
5471 
			<max/>
5472 
			<max-src-nodes/>
5473 
			<max-src-conn/>
5474 
			<max-src-states/>
5475 
			<statetimeout/>
5476 
			<statetype>keep state</statetype>
5477 
			<os/>
5478 
			<source>
5479 
				<address>aTVs</address>
5480 
			</source>
5481 
			<destination>
5482 
				<address>NotLAN1lans</address>
5483 
			</destination>
5484 
			<descr><![CDATA[Prevent AppleTV access to any other LANs]]></descr>
5485 
			<created>
5486 
				<time>1419297438</time>
5487 
				<username>admin@172.24.16.235</username>
5488 
			</created>
5489 
			<updated>
5490 
				<time>1423791819</time>
5491 
				<username>admin@172.24.16.235</username>
5492 
			</updated>
5493 
			<tracker>1424949703</tracker>
5494 
		</rule>
5495 
		<rule>
5496 
			<source>
5497 
				<address>NUTclientsOnLAN1</address>
5498 
			</source>
5499 
			<interface>lan</interface>
5500 
			<protocol>tcp</protocol>
5501 
			<destination>
5502 
				<address>pfSenseInternal</address>
5503 
				<port>NUTport</port>
5504 
			</destination>
5505 
			<descr><![CDATA[NAT Allow certain NUT clients on LAN1]]></descr>
5506 
			<associated-rule-id>nat_54ac784ef1d582.91727783</associated-rule-id>
5507 
			<created>
5508 
				<time>1420589134</time>
5509 
				<username>NAT Port Forward</username>
5510 
			</created>
5511 
			<tracker>1424949704</tracker>
5512 
		</rule>
5513 
		<rule>
5514 
			<id/>
5515 
			<type>pass</type>
5516 
			<interface>lan</interface>
5517 
			<ipprotocol>inet</ipprotocol>
5518 
			<tag/>
5519 
			<tagged/>
5520 
			<max/>
5521 
			<max-src-nodes/>
5522 
			<max-src-conn/>
5523 
			<max-src-states/>
5524 
			<statetimeout/>
5525 
			<statetype>keep state</statetype>
5526 
			<os/>
5527 
			<source>
5528 
				<address>InternalOnlySystems</address>
5529 
			</source>
5530 
			<destination>
5531 
				<address>InternalOnlyDestinations</address>
5532 
			</destination>
5533 
			<descr><![CDATA[Allow &quot;internal only&quot; servers to internal addresses]]></descr>
5534 
			<updated>
5535 
				<time>1420499720</time>
5536 
				<username>admin@172.24.16.235</username>
5537 
			</updated>
5538 
			<tracker>1424949705</tracker>
5539 
		</rule>
5540 
		<rule>
5541 
			<id/>
5542 
			<tracker>1425942180</tracker>
5543 
			<type>reject</type>
5544 
			<interface>lan</interface>
5545 
			<ipprotocol>inet</ipprotocol>
5546 
			<tag/>
5547 
			<tagged/>
5548 
			<max/>
5549 
			<max-src-nodes/>
5550 
			<max-src-conn/>
5551 
			<max-src-states/>
5552 
			<statetimeout/>
5553 
			<statetype>keep state</statetype>
5554 
			<os/>
5555 
			<source>
5556 
				<address>InternalOnlySystems</address>
5557 
			</source>
5558 
			<destination>
5559 
				<address>InternalOnlyBlocks</address>
5560 
			</destination>
5561 
			<descr><![CDATA[Block &quot;internal only&quot; server's &quot;phone home&quot; traffic]]></descr>
5562 
			<created>
5563 
				<time>1425942180</time>
5564 
				<username>admin@172.24.16.235</username>
5565 
			</created>
5566 
			<updated>
5567 
				<time>1425942293</time>
5568 
				<username>admin@172.24.16.235</username>
5569 
			</updated>
5570 
		</rule>
5571 
		<rule>
5572 
			<id/>
5573 
			<tracker>1424949706</tracker>
5574 
			<type>reject</type>
5575 
			<interface>lan</interface>
5576 
			<ipprotocol>inet</ipprotocol>
5577 
			<tag/>
5578 
			<tagged/>
5579 
			<max/>
5580 
			<max-src-nodes/>
5581 
			<max-src-conn/>
5582 
			<max-src-states/>
5583 
			<statetimeout/>
5584 
			<statetype>keep state</statetype>
5585 
			<os/>
5586 
			<source>
5587 
				<address>InternalOnlySystems</address>
5588 
			</source>
5589 
			<destination>
5590 
				<any/>
5591 
			</destination>
5592 
			<log/>
5593 
			<descr><![CDATA[Block &quot;internal only&quot; server's traffic to I'net]]></descr>
5594 
			<updated>
5595 
				<time>1425893990</time>
5596 
				<username>admin@172.24.16.235</username>
5597 
			</updated>
5598 
		</rule>
5599 
		<rule>
5600 
			<id/>
5601 
			<type>pass</type>
5602 
			<interface>lan</interface>
5603 
			<ipprotocol>inet</ipprotocol>
5604 
			<tag/>
5605 
			<tagged/>
5606 
			<max/>
5607 
			<max-src-nodes/>
5608 
			<max-src-conn/>
5609 
			<max-src-states/>
5610 
			<statetimeout/>
5611 
			<statetype>keep state</statetype>
5612 
			<os/>
5613 
			<source>
5614 
				<address>NoInetLAN1devices</address>
5615 
			</source>
5616 
			<destination>
5617 
				<address>DEIsLAN1</address>
5618 
			</destination>
5619 
			<descr><![CDATA[Allow LAN1's &quot;no I'net&quot; devices access to LAN1]]></descr>
5620 
			<created>
5621 
				<time>1400046291</time>
5622 
				<username>admin@172.24.16.234</username>
5623 
			</created>
5624 
			<updated>
5625 
				<time>1420500568</time>
5626 
				<username>admin@172.24.16.235</username>
5627 
			</updated>
5628 
			<tracker>1424949707</tracker>
5629 
		</rule>
5630 
		<rule>
5631 
			<id/>
5632 
			<type>reject</type>
5633 
			<interface>lan</interface>
5634 
			<ipprotocol>inet</ipprotocol>
5635 
			<tag/>
5636 
			<tagged/>
5637 
			<max/>
5638 
			<max-src-nodes/>
5639 
			<max-src-conn/>
5640 
			<max-src-states/>
5641 
			<statetimeout/>
5642 
			<statetype>keep state</statetype>
5643 
			<os/>
5644 
			<source>
5645 
				<address>NoInetLAN1devices</address>
5646 
			</source>
5647 
			<destination>
5648 
				<any/>
5649 
			</destination>
5650 
			<descr><![CDATA[Block LAN1's &quot;no I'net&quot; devices from the I'net]]></descr>
5651 
			<updated>
5652 
				<time>1420500554</time>
5653 
				<username>admin@172.24.16.235</username>
5654 
			</updated>
5655 
			<tracker>1424949708</tracker>
5656 
		</rule>
5657 
		<rule>
5658 
			<id/>
5659 
			<type>pass</type>
5660 
			<interface>lan</interface>
5661 
			<ipprotocol>inet</ipprotocol>
5662 
			<tag/>
5663 
			<tagged/>
5664 
			<max/>
5665 
			<max-src-nodes/>
5666 
			<max-src-conn/>
5667 
			<max-src-states/>
5668 
			<statetimeout/>
5669 
			<statetype>keep state</statetype>
5670 
			<os/>
5671 
			<source>
5672 
				<address>BEDvirtualizedMacs</address>
5673 
			</source>
5674 
			<destination>
5675 
				<address>InternalOnlyDestinations</address>
5676 
			</destination>
5677 
			<descr><![CDATA[Allow virtualized Macs to &quot;internal only&quot; addresses]]></descr>
5678 
			<updated>
5679 
				<time>1420499976</time>
5680 
				<username>admin@172.24.16.235</username>
5681 
			</updated>
5682 
			<tracker>1424949709</tracker>
5683 
		</rule>
5684 
		<rule>
5685 
			<id/>
5686 
			<type>reject</type>
5687 
			<interface>lan</interface>
5688 
			<ipprotocol>inet</ipprotocol>
5689 
			<tag/>
5690 
			<tagged/>
5691 
			<max/>
5692 
			<max-src-nodes/>
5693 
			<max-src-conn/>
5694 
			<max-src-states/>
5695 
			<statetimeout/>
5696 
			<statetype>keep state</statetype>
5697 
			<os/>
5698 
			<source>
5699 
				<address>BEDvirtualizedMacs</address>
5700 
			</source>
5701 
			<destination>
5702 
				<any/>
5703 
			</destination>
5704 
			<descr><![CDATA[Block virtualized Mac traffic to I'net]]></descr>
5705 
			<updated>
5706 
				<time>1420500646</time>
5707 
				<username>admin@172.24.16.235</username>
5708 
			</updated>
5709 
			<tracker>1424949710</tracker>
5710 
		</rule>
5711 
		<rule>
5712 
			<id/>
5713 
			<type>pass</type>
5714 
			<interface>lan</interface>
5715 
			<ipprotocol>inet</ipprotocol>
5716 
			<tag/>
5717 
			<tagged/>
5718 
			<max/>
5719 
			<max-src-nodes/>
5720 
			<max-src-conn/>
5721 
			<max-src-states/>
5722 
			<statetimeout/>
5723 
			<statetype>keep state</statetype>
5724 
			<os/>
5725 
			<source>
5726 
				<address>BEDvirtualizedPCs</address>
5727 
			</source>
5728 
			<destination>
5729 
				<address>InternalOnlyDestinations</address>
5730 
			</destination>
5731 
			<descr><![CDATA[Allow virtualized PCs to &quot;internal only&quot; addresses]]></descr>
5732 
			<updated>
5733 
				<time>1420500094</time>
5734 
				<username>admin@172.24.16.235</username>
5735 
			</updated>
5736 
			<tracker>1424949711</tracker>
5737 
		</rule>
5738 
		<rule>
5739 
			<id/>
5740 
			<type>reject</type>
5741 
			<interface>lan</interface>
5742 
			<ipprotocol>inet</ipprotocol>
5743 
			<tag/>
5744 
			<tagged/>
5745 
			<max/>
5746 
			<max-src-nodes/>
5747 
			<max-src-conn/>
5748 
			<max-src-states/>
5749 
			<statetimeout/>
5750 
			<statetype>keep state</statetype>
5751 
			<os/>
5752 
			<source>
5753 
				<address>BEDvirtualizedPCs</address>
5754 
			</source>
5755 
			<destination>
5756 
				<any/>
5757 
			</destination>
5758 
			<descr><![CDATA[Block virtualized PC traffic to I'net]]></descr>
5759 
			<updated>
5760 
				<time>1420500669</time>
5761 
				<username>admin@172.24.16.235</username>
5762 
			</updated>
5763 
			<tracker>1424949712</tracker>
5764 
		</rule>
5765 
		<rule>
5766 
			<id/>
5767 
			<type>reject</type>
5768 
			<interface>lan</interface>
5769 
			<ipprotocol>inet</ipprotocol>
5770 
			<tag/>
5771 
			<tagged/>
5772 
			<max/>
5773 
			<max-src-nodes/>
5774 
			<max-src-conn/>
5775 
			<max-src-states/>
5776 
			<statetimeout/>
5777 
			<statetype>keep state</statetype>
5778 
			<os/>
5779 
			<source>
5780 
				<address>BEDiMacOnLAN1</address>
5781 
			</source>
5782 
			<destination>
5783 
				<address>P2Phostiles1</address>
5784 
			</destination>
5785 
			<descr><![CDATA[Block P2P traffic to IPs hostile to peer-to-peer]]></descr>
5786 
			<created>
5787 
				<time>1385283771</time>
5788 
				<username>admin@172.24.16.234</username>
5789 
			</created>
5790 
			<updated>
5791 
				<time>1400222214</time>
5792 
				<username>admin@172.24.17.234</username>
5793 
			</updated>
5794 
			<disabled/>
5795 
			<tracker>1424949713</tracker>
5796 
		</rule>
5797 
		<rule>
5798 
			<id/>
5799 
			<type>reject</type>
5800 
			<interface>lan</interface>
5801 
			<ipprotocol>inet</ipprotocol>
5802 
			<tag/>
5803 
			<tagged/>
5804 
			<max/>
5805 
			<max-src-nodes/>
5806 
			<max-src-conn/>
5807 
			<max-src-states/>
5808 
			<statetimeout/>
5809 
			<statetype>keep state</statetype>
5810 
			<os/>
5811 
			<source>
5812 
				<address>BEDiMacOnLAN1</address>
5813 
			</source>
5814 
			<destination>
5815 
				<address>P2Phostiles2</address>
5816 
			</destination>
5817 
			<descr><![CDATA[Block P2P traffic to IPs hostile to peer-to-peer]]></descr>
5818 
			<created>
5819 
				<time>1385285255</time>
5820 
				<username>admin@172.24.16.234</username>
5821 
			</created>
5822 
			<updated>
5823 
				<time>1400222201</time>
5824 
				<username>admin@172.24.17.234</username>
5825 
			</updated>
5826 
			<disabled/>
5827 
			<tracker>1424949714</tracker>
5828 
		</rule>
5829 
		<rule>
5830 
			<id/>
5831 
			<type>reject</type>
5832 
			<interface>lan</interface>
5833 
			<ipprotocol>inet</ipprotocol>
5834 
			<tag/>
5835 
			<tagged/>
5836 
			<max/>
5837 
			<max-src-nodes/>
5838 
			<max-src-conn/>
5839 
			<max-src-states/>
5840 
			<statetimeout/>
5841 
			<statetype>keep state</statetype>
5842 
			<os/>
5843 
			<source>
5844 
				<address>BEDiMacOnLAN1</address>
5845 
			</source>
5846 
			<destination>
5847 
				<address>P2Phostiles3</address>
5848 
			</destination>
5849 
			<descr><![CDATA[Block P2P traffic to IPs hostile to peer-to-peer]]></descr>
5850 
			<created>
5851 
				<time>1385285268</time>
5852 
				<username>admin@172.24.16.234</username>
5853 
			</created>
5854 
			<updated>
5855 
				<time>1400222195</time>
5856 
				<username>admin@172.24.17.234</username>
5857 
			</updated>
5858 
			<disabled/>
5859 
			<tracker>1424949715</tracker>
5860 
		</rule>
5861 
		<rule>
5862 
			<id/>
5863 
			<type>reject</type>
5864 
			<interface>lan</interface>
5865 
			<ipprotocol>inet</ipprotocol>
5866 
			<tag/>
5867 
			<tagged/>
5868 
			<max/>
5869 
			<max-src-nodes/>
5870 
			<max-src-conn/>
5871 
			<max-src-states/>
5872 
			<statetimeout/>
5873 
			<statetype>keep state</statetype>
5874 
			<os/>
5875 
			<source>
5876 
				<address>BEDiMacOnLAN1</address>
5877 
			</source>
5878 
			<destination>
5879 
				<address>P2Phostiles4</address>
5880 
			</destination>
5881 
			<descr><![CDATA[Block P2P traffic to IPs hostile to peer-to-peer]]></descr>
5882 
			<created>
5883 
				<time>1385285286</time>
5884 
				<username>admin@172.24.16.234</username>
5885 
			</created>
5886 
			<updated>
5887 
				<time>1400222189</time>
5888 
				<username>admin@172.24.17.234</username>
5889 
			</updated>
5890 
			<disabled/>
5891 
			<tracker>1424949716</tracker>
5892 
		</rule>
5893 
		<rule>
5894 
			<id/>
5895 
			<type>reject</type>
5896 
			<interface>lan</interface>
5897 
			<ipprotocol>inet</ipprotocol>
5898 
			<tag/>
5899 
			<tagged/>
5900 
			<max/>
5901 
			<max-src-nodes/>
5902 
			<max-src-conn/>
5903 
			<max-src-states/>
5904 
			<statetimeout/>
5905 
			<statetype>keep state</statetype>
5906 
			<os/>
5907 
			<source>
5908 
				<address>BEDiMacOnLAN1</address>
5909 
			</source>
5910 
			<destination>
5911 
				<address>P2Phostiles5</address>
5912 
			</destination>
5913 
			<descr><![CDATA[Block P2P traffic to IPs hostile to peer-to-peer]]></descr>
5914 
			<created>
5915 
				<time>1387158838</time>
5916 
				<username>admin@172.24.16.234</username>
5917 
			</created>
5918 
			<updated>
5919 
				<time>1400222182</time>
5920 
				<username>admin@172.24.17.234</username>
5921 
			</updated>
5922 
			<disabled/>
5923 
			<tracker>1424949717</tracker>
5924 
		</rule>
5925 
		<rule>
5926 
			<id/>
5927 
			<type>reject</type>
5928 
			<interface>lan</interface>
5929 
			<ipprotocol>inet</ipprotocol>
5930 
			<tag/>
5931 
			<tagged/>
5932 
			<max/>
5933 
			<max-src-nodes/>
5934 
			<max-src-conn/>
5935 
			<max-src-states/>
5936 
			<statetimeout/>
5937 
			<statetype>keep state</statetype>
5938 
			<os/>
5939 
			<source>
5940 
				<address>BEDiMacOnLAN1</address>
5941 
			</source>
5942 
			<destination>
5943 
				<address>P2Phostiles6</address>
5944 
			</destination>
5945 
			<descr><![CDATA[Block P2P traffic to IPs hostile to peer-to-peer]]></descr>
5946 
			<updated>
5947 
				<time>1414108158</time>
5948 
				<username>admin@172.24.16.234</username>
5949 
			</updated>
5950 
			<created>
5951 
				<time>1414108158</time>
5952 
				<username>admin@172.24.16.234</username>
5953 
			</created>
5954 
			<disabled/>
5955 
			<tracker>1424949718</tracker>
5956 
		</rule>
5957 
		<rule>
5958 
			<id/>
5959 
			<type>pass</type>
5960 
			<interface>lan</interface>
5961 
			<ipprotocol>inet</ipprotocol>
5962 
			<tag/>
5963 
			<tagged/>
5964 
			<max/>
5965 
			<max-src-nodes/>
5966 
			<max-src-conn/>
5967 
			<max-src-states/>
5968 
			<statetimeout/>
5969 
			<statetype>keep state</statetype>
5970 
			<os/>
5971 
			<source>
5972 
				<any/>
5973 
			</source>
5974 
			<destination>
5975 
				<any/>
5976 
			</destination>
5977 
			<descr><![CDATA[Pass (remaining) IPv4 LAN1 traffic to I'net]]></descr>
5978 
			<updated>
5979 
				<time>1419238570</time>
5980 
				<username>admin@172.24.16.235</username>
5981 
			</updated>
5982 
			<tracker>1424949719</tracker>
5983 
		</rule>
5984 
		<rule>
5985 
			<id/>
5986 
			<type>reject</type>
5987 
			<interface>lan</interface>
5988 
			<ipprotocol>inet</ipprotocol>
5989 
			<tag/>
5990 
			<tagged/>
5991 
			<max/>
5992 
			<max-src-nodes/>
5993 
			<max-src-conn/>
5994 
			<max-src-states/>
5995 
			<statetimeout/>
5996 
			<statetype>keep state</statetype>
5997 
			<os/>
5998 
			<source>
5999 
				<any/>
6000 
			</source>
6001 
			<destination>
6002 
				<any/>
6003 
			</destination>
6004 
			<descr><![CDATA[Block remaining IPv4 LAN1 traffic]]></descr>
6005 
			<updated>
6006 
				<time>1424939198</time>
6007 
				<username>admin@172.24.16.235</username>
6008 
			</updated>
6009 
			<tracker>1424949720</tracker>
6010 
		</rule>
6011 
		<rule>
6012 
			<id/>
6013 
			<type>block</type>
6014 
			<interface>lan</interface>
6015 
			<ipprotocol>inet6</ipprotocol>
6016 
			<tag/>
6017 
			<tagged/>
6018 
			<max/>
6019 
			<max-src-nodes/>
6020 
			<max-src-conn/>
6021 
			<max-src-states/>
6022 
			<statetimeout/>
6023 
			<statetype>keep state</statetype>
6024 
			<os/>
6025 
			<source>
6026 
				<any/>
6027 
			</source>
6028 
			<destination>
6029 
				<any/>
6030 
			</destination>
6031 
			<descr><![CDATA[Block remaining IPv6 LAN1 traffic]]></descr>
6032 
			<created>
6033 
				<time>1385880262</time>
6034 
				<username>admin@172.24.16.234</username>
6035 
			</created>
6036 
			<updated>
6037 
				<time>1424478546</time>
6038 
				<username>admin@172.24.16.235</username>
6039 
			</updated>
6040 
			<tracker>1424949721</tracker>
6041 
		</rule>
6042 
		<rule>
6043 
			<id/>
6044 
			<tracker>1425947231</tracker>
6045 
			<type>reject</type>
6046 
			<interface>enc0</interface>
6047 
			<ipprotocol>inet</ipprotocol>
6048 
			<tag/>
6049 
			<tagged/>
6050 
			<max/>
6051 
			<max-src-nodes/>
6052 
			<max-src-conn/>
6053 
			<max-src-states/>
6054 
			<statetimeout/>
6055 
			<statetype>keep state</statetype>
6056 
			<os/>
6057 
			<protocol>tcp/udp</protocol>
6058 
			<source>
6059 
				<any/>
6060 
			</source>
6061 
			<destination>
6062 
				<any/>
6063 
				<port>NetBIOSports</port>
6064 
			</destination>
6065 
			<descr><![CDATA[Block NetBIOS traffic]]></descr>
6066 
			<updated>
6067 
				<time>1425947231</time>
6068 
				<username>admin@172.24.16.235</username>
6069 
			</updated>
6070 
			<created>
6071 
				<time>1425947231</time>
6072 
				<username>admin@172.24.16.235</username>
6073 
			</created>
6074 
		</rule>
6075 
		<rule>
6076 
			<id/>
6077 
			<type>reject</type>
6078 
			<interface>enc0</interface>
6079 
			<ipprotocol>inet</ipprotocol>
6080 
			<tag/>
6081 
			<tagged/>
6082 
			<max/>
6083 
			<max-src-nodes/>
6084 
			<max-src-conn/>
6085 
			<max-src-states/>
6086 
			<statetimeout/>
6087 
			<statetype>keep state</statetype>
6088 
			<os/>
6089 
			<source>
6090 
				<any/>
6091 
			</source>
6092 
			<destination>
6093 
				<address>IPv4linkLocalNetBlk</address>
6094 
			</destination>
6095 
			<log/>
6096 
			<descr><![CDATA[Block traffic to IPv4 link-local addresses]]></descr>
6097 
			<updated>
6098 
				<time>1424937119</time>
6099 
				<username>admin@172.24.16.235</username>
6100 
			</updated>
6101 
			<created>
6102 
				<time>1424937119</time>
6103 
				<username>admin@172.24.16.235</username>
6104 
			</created>
6105 
			<tracker>1424949722</tracker>
6106 
		</rule>
6107 
		<rule>
6108 
			<id/>
6109 
			<type>pass</type>
6110 
			<interface>enc0</interface>
6111 
			<ipprotocol>inet</ipprotocol>
6112 
			<tag/>
6113 
			<tagged/>
6114 
			<max/>
6115 
			<max-src-nodes/>
6116 
			<max-src-conn/>
6117 
			<max-src-states/>
6118 
			<statetimeout/>
6119 
			<statetype>keep state</statetype>
6120 
			<os/>
6121 
			<source>
6122 
				<address>WhitelistedHosts</address>
6123 
			</source>
6124 
			<destination>
6125 
				<address>WhitelistedDestinations</address>
6126 
			</destination>
6127 
			<descr><![CDATA[Allow whitelisted hosts to whitelisted addresses]]></descr>
6128 
			<created>
6129 
				<time>1401393353</time>
6130 
				<username>admin@172.24.16.234</username>
6131 
			</created>
6132 
			<updated>
6133 
				<time>1420510496</time>
6134 
				<username>admin@172.24.16.235</username>
6135 
			</updated>
6136 
			<tracker>1424949723</tracker>
6137 
		</rule>
6138 
		<rule>
6139 
			<id/>
6140 
			<type>reject</type>
6141 
			<interface>enc0</interface>
6142 
			<ipprotocol>inet</ipprotocol>
6143 
			<tag/>
6144 
			<tagged/>
6145 
			<max/>
6146 
			<max-src-nodes/>
6147 
			<max-src-conn/>
6148 
			<max-src-states/>
6149 
			<statetimeout/>
6150 
			<statetype>keep state</statetype>
6151 
			<os/>
6152 
			<source>
6153 
				<any/>
6154 
			</source>
6155 
			<destination>
6156 
				<address>AdBlockServer</address>
6157 
			</destination>
6158 
			<descr><![CDATA[Prevent traffic to IPv4 Ad-block server]]></descr>
6159 
			<created>
6160 
				<time>1401085018</time>
6161 
				<username>admin@172.24.16.234</username>
6162 
			</created>
6163 
			<updated>
6164 
				<time>1420507194</time>
6165 
				<username>admin@172.24.16.235</username>
6166 
			</updated>
6167 
			<disabled/>
6168 
			<tracker>1424949724</tracker>
6169 
		</rule>
6170 
		<rule>
6171 
			<id/>
6172 
			<type>reject</type>
6173 
			<interface>enc0</interface>
6174 
			<ipprotocol>inet6</ipprotocol>
6175 
			<tag/>
6176 
			<tagged/>
6177 
			<max/>
6178 
			<max-src-nodes/>
6179 
			<max-src-conn/>
6180 
			<max-src-states/>
6181 
			<statetimeout/>
6182 
			<statetype>keep state</statetype>
6183 
			<os/>
6184 
			<source>
6185 
				<any/>
6186 
			</source>
6187 
			<destination>
6188 
				<address>AdBlockServer</address>
6189 
			</destination>
6190 
			<descr><![CDATA[Prevent traffic to IPv6 Ad-block server]]></descr>
6191 
			<created>
6192 
				<time>1397551161</time>
6193 
				<username>admin@172.24.16.234</username>
6194 
			</created>
6195 
			<updated>
6196 
				<time>1420507177</time>
6197 
				<username>admin@172.24.16.235</username>
6198 
			</updated>
6199 
			<tracker>1424949725</tracker>
6200 
		</rule>
6201 
		<rule>
6202 
			<id/>
6203 
			<type>reject</type>
6204 
			<interface>enc0</interface>
6205 
			<ipprotocol>inet</ipprotocol>
6206 
			<tag/>
6207 
			<tagged/>
6208 
			<max/>
6209 
			<max-src-nodes/>
6210 
			<max-src-conn/>
6211 
			<max-src-states/>
6212 
			<statetimeout/>
6213 
			<statetype>keep state</statetype>
6214 
			<os/>
6215 
			<source>
6216 
				<any/>
6217 
			</source>
6218 
			<destination>
6219 
				<address>AdSense</address>
6220 
			</destination>
6221 
			<descr><![CDATA[Prevent AdSense ads from showing on our networks]]></descr>
6222 
			<created>
6223 
				<time>1394348187</time>
6224 
				<username>admin@172.24.16.234</username>
6225 
			</created>
6226 
			<updated>
6227 
				<time>1394840145</time>
6228 
				<username>admin@172.24.16.234</username>
6229 
			</updated>
6230 
			<tracker>1424949726</tracker>
6231 
		</rule>
6232 
		<rule>
6233 
			<id/>
6234 
			<type>reject</type>
6235 
			<interface>enc0</interface>
6236 
			<ipprotocol>inet</ipprotocol>
6237 
			<tag/>
6238 
			<tagged/>
6239 
			<max/>
6240 
			<max-src-nodes/>
6241 
			<max-src-conn/>
6242 
			<max-src-states/>
6243 
			<statetimeout/>
6244 
			<statetype>keep state</statetype>
6245 
			<os/>
6246 
			<source>
6247 
				<any/>
6248 
			</source>
6249 
			<destination>
6250 
				<address>BadGuyBTadsList</address>
6251 
			</destination>
6252 
			<descr><![CDATA[Block IPSec traffic to Ad trackers]]></descr>
6253 
			<created>
6254 
				<time>1394840414</time>
6255 
				<username>admin@172.24.16.234</username>
6256 
			</created>
6257 
			<updated>
6258 
				<time>1420507690</time>
6259 
				<username>admin@172.24.16.235</username>
6260 
			</updated>
6261 
			<tracker>1424949727</tracker>
6262 
		</rule>
6263 
		<rule>
6264 
			<id/>
6265 
			<type>reject</type>
6266 
			<interface>enc0</interface>
6267 
			<ipprotocol>inet</ipprotocol>
6268 
			<tag/>
6269 
			<tagged/>
6270 
			<max/>
6271 
			<max-src-nodes/>
6272 
			<max-src-conn/>
6273 
			<max-src-states/>
6274 
			<statetimeout/>
6275 
			<statetype>keep state</statetype>
6276 
			<os/>
6277 
			<source>
6278 
				<any/>
6279 
			</source>
6280 
			<destination>
6281 
				<address>BadGuyBTfSpammerList</address>
6282 
			</destination>
6283 
			<descr><![CDATA[Block IPSec traffic to spammers]]></descr>
6284 
			<created>
6285 
				<time>1394840522</time>
6286 
				<username>admin@172.24.16.234</username>
6287 
			</created>
6288 
			<updated>
6289 
				<time>1400222767</time>
6290 
				<username>admin@172.24.17.234</username>
6291 
			</updated>
6292 
			<tracker>1424949728</tracker>
6293 
		</rule>
6294 
		<rule>
6295 
			<id/>
6296 
			<type>reject</type>
6297 
			<interface>enc0</interface>
6298 
			<ipprotocol>inet</ipprotocol>
6299 
			<tag/>
6300 
			<tagged/>
6301 
			<max/>
6302 
			<max-src-nodes/>
6303 
			<max-src-conn/>
6304 
			<max-src-states/>
6305 
			<statetimeout/>
6306 
			<statetype>keep state</statetype>
6307 
			<os/>
6308 
			<source>
6309 
				<any/>
6310 
			</source>
6311 
			<destination>
6312 
				<address>BadGuyBThijackedList</address>
6313 
			</destination>
6314 
			<descr><![CDATA[Block IPSec traffic to hijacked systems]]></descr>
6315 
			<created>
6316 
				<time>1394840535</time>
6317 
				<username>admin@172.24.16.234</username>
6318 
			</created>
6319 
			<updated>
6320 
				<time>1400222775</time>
6321 
				<username>admin@172.24.17.234</username>
6322 
			</updated>
6323 
			<tracker>1424949729</tracker>
6324 
		</rule>
6325 
		<rule>
6326 
			<id/>
6327 
			<type>reject</type>
6328 
			<interface>enc0</interface>
6329 
			<ipprotocol>inet</ipprotocol>
6330 
			<tag/>
6331 
			<tagged/>
6332 
			<max/>
6333 
			<max-src-nodes/>
6334 
			<max-src-conn/>
6335 
			<max-src-states/>
6336 
			<statetimeout/>
6337 
			<statetype>keep state</statetype>
6338 
			<os/>
6339 
			<source>
6340 
				<any/>
6341 
			</source>
6342 
			<destination>
6343 
				<address>BadGuyBTshieldList</address>
6344 
			</destination>
6345 
			<descr><![CDATA[Block IPSec traffic to hacker systems]]></descr>
6346 
			<created>
6347 
				<time>1394840546</time>
6348 
				<username>admin@172.24.16.234</username>
6349 
			</created>
6350 
			<updated>
6351 
				<time>1400222781</time>
6352 
				<username>admin@172.24.17.234</username>
6353 
			</updated>
6354 
			<tracker>1424949730</tracker>
6355 
		</rule>
6356 
		<rule>
6357 
			<id/>
6358 
			<type>reject</type>
6359 
			<interface>enc0</interface>
6360 
			<ipprotocol>inet</ipprotocol>
6361 
			<tag/>
6362 
			<tagged/>
6363 
			<max/>
6364 
			<max-src-nodes/>
6365 
			<max-src-conn/>
6366 
			<max-src-states/>
6367 
			<statetimeout/>
6368 
			<statetype>keep state</statetype>
6369 
			<os/>
6370 
			<source>
6371 
				<any/>
6372 
			</source>
6373 
			<destination>
6374 
				<address>BadGuyBTspiderList</address>
6375 
			</destination>
6376 
			<descr><![CDATA[Block IPSec traffic to bad spider/crawler's systems]]></descr>
6377 
			<created>
6378 
				<time>1394840558</time>
6379 
				<username>admin@172.24.16.234</username>
6380 
			</created>
6381 
			<updated>
6382 
				<time>1400222786</time>
6383 
				<username>admin@172.24.17.234</username>
6384 
			</updated>
6385 
			<tracker>1424949731</tracker>
6386 
		</rule>
6387 
		<rule>
6388 
			<id/>
6389 
			<type>reject</type>
6390 
			<interface>enc0</interface>
6391 
			<ipprotocol>inet</ipprotocol>
6392 
			<tag/>
6393 
			<tagged/>
6394 
			<max/>
6395 
			<max-src-nodes/>
6396 
			<max-src-conn/>
6397 
			<max-src-states/>
6398 
			<statetimeout/>
6399 
			<statetype>keep state</statetype>
6400 
			<os/>
6401 
			<source>
6402 
				<any/>
6403 
			</source>
6404 
			<destination>
6405 
				<address>BadGuyBTspywareList</address>
6406 
			</destination>
6407 
			<descr><![CDATA[Block IPSec traffic to spyware systems]]></descr>
6408 
			<created>
6409 
				<time>1394840590</time>
6410 
				<username>admin@172.24.16.234</username>
6411 
			</created>
6412 
			<updated>
6413 
				<time>1400222792</time>
6414 
				<username>admin@172.24.17.234</username>
6415 
			</updated>
6416 
			<tracker>1424949732</tracker>
6417 
		</rule>
6418 
		<rule>
6419 
			<id/>
6420 
			<type>reject</type>
6421 
			<interface>enc0</interface>
6422 
			<ipprotocol>inet</ipprotocol>
6423 
			<tag/>
6424 
			<tagged/>
6425 
			<max/>
6426 
			<max-src-nodes/>
6427 
			<max-src-conn/>
6428 
			<max-src-states/>
6429 
			<statetimeout/>
6430 
			<statetype>keep state</statetype>
6431 
			<os/>
6432 
			<source>
6433 
				<any/>
6434 
			</source>
6435 
			<destination>
6436 
				<address>BadGuyBTwebexploitList</address>
6437 
			</destination>
6438 
			<descr><![CDATA[Block IPSec traffic to web exploit systems]]></descr>
6439 
			<created>
6440 
				<time>1394843298</time>
6441 
				<username>admin@172.24.16.234</username>
6442 
			</created>
6443 
			<updated>
6444 
				<time>1400222797</time>
6445 
				<username>admin@172.24.17.234</username>
6446 
			</updated>
6447 
			<tracker>1424949733</tracker>
6448 
		</rule>
6449 
		<rule>
6450 
			<id/>
6451 
			<type>reject</type>
6452 
			<interface>enc0</interface>
6453 
			<ipprotocol>inet</ipprotocol>
6454 
			<tag/>
6455 
			<tagged/>
6456 
			<max/>
6457 
			<max-src-nodes/>
6458 
			<max-src-conn/>
6459 
			<max-src-states/>
6460 
			<statetimeout/>
6461 
			<statetype>keep state</statetype>
6462 
			<os/>
6463 
			<source>
6464 
				<any/>
6465 
			</source>
6466 
			<destination>
6467 
				<address>BadGuyDROPlist</address>
6468 
			</destination>
6469 
			<descr><![CDATA[Block IPSec traffic to criminal-controlled systems]]></descr>
6470 
			<created>
6471 
				<time>1394840606</time>
6472 
				<username>admin@172.24.16.234</username>
6473 
			</created>
6474 
			<updated>
6475 
				<time>1400222802</time>
6476 
				<username>admin@172.24.17.234</username>
6477 
			</updated>
6478 
			<tracker>1424949734</tracker>
6479 
		</rule>
6480 
		<rule>
6481 
			<id/>
6482 
			<type>reject</type>
6483 
			<interface>enc0</interface>
6484 
			<ipprotocol>inet</ipprotocol>
6485 
			<tag/>
6486 
			<tagged/>
6487 
			<max/>
6488 
			<max-src-nodes/>
6489 
			<max-src-conn/>
6490 
			<max-src-states/>
6491 
			<statetimeout/>
6492 
			<statetype>keep state</statetype>
6493 
			<os/>
6494 
			<source>
6495 
				<any/>
6496 
			</source>
6497 
			<destination>
6498 
				<address>BadGuyEDROPlist</address>
6499 
			</destination>
6500 
			<descr><![CDATA[Block IPSec traffic to criminal-controlled systems]]></descr>
6501 
			<created>
6502 
				<time>1394840615</time>
6503 
				<username>admin@172.24.16.234</username>
6504 
			</created>
6505 
			<updated>
6506 
				<time>1400222809</time>
6507 
				<username>admin@172.24.17.234</username>
6508 
			</updated>
6509 
			<tracker>1424949735</tracker>
6510 
		</rule>
6511 
		<rule>
6512 
			<id/>
6513 
			<type>reject</type>
6514 
			<interface>enc0</interface>
6515 
			<ipprotocol>inet</ipprotocol>
6516 
			<tag/>
6517 
			<tagged/>
6518 
			<max/>
6519 
			<max-src-nodes/>
6520 
			<max-src-conn/>
6521 
			<max-src-states/>
6522 
			<statetimeout/>
6523 
			<statetype>keep state</statetype>
6524 
			<os/>
6525 
			<source>
6526 
				<any/>
6527 
			</source>
6528 
			<destination>
6529 
				<address>BadNets</address>
6530 
			</destination>
6531 
			<descr><![CDATA[Block IPSec traffic to undesired networks]]></descr>
6532 
			<created>
6533 
				<time>1394840625</time>
6534 
				<username>admin@172.24.16.234</username>
6535 
			</created>
6536 
			<updated>
6537 
				<time>1400222815</time>
6538 
				<username>admin@172.24.17.234</username>
6539 
			</updated>
6540 
			<tracker>1424949736</tracker>
6541 
		</rule>
6542 
		<rule>
6543 
			<id/>
6544 
			<type>reject</type>
6545 
			<interface>enc0</interface>
6546 
			<ipprotocol>inet</ipprotocol>
6547 
			<tag/>
6548 
			<tagged/>
6549 
			<max/>
6550 
			<max-src-nodes/>
6551 
			<max-src-conn/>
6552 
			<max-src-states/>
6553 
			<statetimeout/>
6554 
			<statetype>keep state</statetype>
6555 
			<os/>
6556 
			<source>
6557 
				<any/>
6558 
			</source>
6559 
			<destination>
6560 
				<address>BadGuys</address>
6561 
			</destination>
6562 
			<descr><![CDATA[Block IPSec traffic to bad-guy systems]]></descr>
6563 
			<created>
6564 
				<time>1394840645</time>
6565 
				<username>admin@172.24.16.234</username>
6566 
			</created>
6567 
			<updated>
6568 
				<time>1400222828</time>
6569 
				<username>admin@172.24.17.234</username>
6570 
			</updated>
6571 
			<tracker>1424949737</tracker>
6572 
		</rule>
6573 
		<rule>
6574 
			<id/>
6575 
			<type>reject</type>
6576 
			<interface>enc0</interface>
6577 
			<ipprotocol>inet</ipprotocol>
6578 
			<tag/>
6579 
			<tagged/>
6580 
			<max/>
6581 
			<max-src-nodes/>
6582 
			<max-src-conn/>
6583 
			<max-src-states/>
6584 
			<statetimeout/>
6585 
			<statetype>keep state</statetype>
6586 
			<os/>
6587 
			<source>
6588 
				<any/>
6589 
			</source>
6590 
			<destination>
6591 
				<address>EmergingThreats</address>
6592 
			</destination>
6593 
			<descr><![CDATA[Block IPSec traffic to various threat IPs &amp; networks]]></descr>
6594 
			<created>
6595 
				<time>1394840655</time>
6596 
				<username>admin@172.24.16.234</username>
6597 
			</created>
6598 
			<updated>
6599 
				<time>1400222834</time>
6600 
				<username>admin@172.24.17.234</username>
6601 
			</updated>
6602 
			<tracker>1424949738</tracker>
6603 
		</rule>
6604 
		<rule>
6605 
			<id/>
6606 
			<type>reject</type>
6607 
			<interface>enc0</interface>
6608 
			<ipprotocol>inet</ipprotocol>
6609 
			<tag/>
6610 
			<tagged/>
6611 
			<max/>
6612 
			<max-src-nodes/>
6613 
			<max-src-conn/>
6614 
			<max-src-states/>
6615 
			<statetimeout/>
6616 
			<statetype>keep state</statetype>
6617 
			<os/>
6618 
			<source>
6619 
				<any/>
6620 
			</source>
6621 
			<destination>
6622 
				<address>ForumSpammerNets</address>
6623 
			</destination>
6624 
			<descr><![CDATA[Block IPSec traffic to forum spammer networks]]></descr>
6625 
			<created>
6626 
				<time>1394840664</time>
6627 
				<username>admin@172.24.16.234</username>
6628 
			</created>
6629 
			<updated>
6630 
				<time>1400222840</time>
6631 
				<username>admin@172.24.17.234</username>
6632 
			</updated>
6633 
			<tracker>1424949739</tracker>
6634 
		</rule>
6635 
		<rule>
6636 
			<id/>
6637 
			<type>reject</type>
6638 
			<interface>enc0</interface>
6639 
			<ipprotocol>inet</ipprotocol>
6640 
			<tag/>
6641 
			<tagged/>
6642 
			<max/>
6643 
			<max-src-nodes/>
6644 
			<max-src-conn/>
6645 
			<max-src-states/>
6646 
			<statetimeout/>
6647 
			<statetype>keep state</statetype>
6648 
			<os/>
6649 
			<source>
6650 
				<any/>
6651 
			</source>
6652 
			<destination>
6653 
				<address>ForumSpammers1</address>
6654 
			</destination>
6655 
			<descr><![CDATA[Block IPSec traffic to forum spammer systems]]></descr>
6656 
			<created>
6657 
				<time>1394840672</time>
6658 
				<username>admin@172.24.16.234</username>
6659 
			</created>
6660 
			<updated>
6661 
				<time>1400222846</time>
6662 
				<username>admin@172.24.17.234</username>
6663 
			</updated>
6664 
			<tracker>1424949740</tracker>
6665 
		</rule>
6666 
		<rule>
6667 
			<id/>
6668 
			<type>reject</type>
6669 
			<interface>enc0</interface>
6670 
			<ipprotocol>inet</ipprotocol>
6671 
			<tag/>
6672 
			<tagged/>
6673 
			<max/>
6674 
			<max-src-nodes/>
6675 
			<max-src-conn/>
6676 
			<max-src-states/>
6677 
			<statetimeout/>
6678 
			<statetype>keep state</statetype>
6679 
			<os/>
6680 
			<source>
6681 
				<any/>
6682 
			</source>
6683 
			<destination>
6684 
				<address>ForumSpammers2</address>
6685 
			</destination>
6686 
			<descr><![CDATA[Block IPSec traffic to forum spammer systems]]></descr>
6687 
			<created>
6688 
				<time>1394840682</time>
6689 
				<username>admin@172.24.16.234</username>
6690 
			</created>
6691 
			<updated>
6692 
				<time>1400222852</time>
6693 
				<username>admin@172.24.17.234</username>
6694 
			</updated>
6695 
			<tracker>1424949741</tracker>
6696 
		</rule>
6697 
		<rule>
6698 
			<id/>
6699 
			<type>reject</type>
6700 
			<interface>enc0</interface>
6701 
			<ipprotocol>inet</ipprotocol>
6702 
			<tag/>
6703 
			<tagged/>
6704 
			<max/>
6705 
			<max-src-nodes/>
6706 
			<max-src-conn/>
6707 
			<max-src-states/>
6708 
			<statetimeout/>
6709 
			<statetype>keep state</statetype>
6710 
			<os/>
6711 
			<source>
6712 
				<any/>
6713 
			</source>
6714 
			<destination>
6715 
				<address>ForumSpammers3</address>
6716 
			</destination>
6717 
			<descr><![CDATA[Block IPSec traffic to forum spammer systems]]></descr>
6718 
			<created>
6719 
				<time>1394840694</time>
6720 
				<username>admin@172.24.16.234</username>
6721 
			</created>
6722 
			<updated>
6723 
				<time>1400222858</time>
6724 
				<username>admin@172.24.17.234</username>
6725 
			</updated>
6726 
			<tracker>1424949742</tracker>
6727 
		</rule>
6728 
		<rule>
6729 
			<id/>
6730 
			<type>reject</type>
6731 
			<interface>enc0</interface>
6732 
			<ipprotocol>inet</ipprotocol>
6733 
			<tag/>
6734 
			<tagged/>
6735 
			<max/>
6736 
			<max-src-nodes/>
6737 
			<max-src-conn/>
6738 
			<max-src-states/>
6739 
			<statetimeout/>
6740 
			<statetype>keep state</statetype>
6741 
			<os/>
6742 
			<source>
6743 
				<any/>
6744 
			</source>
6745 
			<destination>
6746 
				<address>ForumSpammers4</address>
6747 
			</destination>
6748 
			<descr><![CDATA[Block IPSec traffic to forum spammer systems]]></descr>
6749 
			<created>
6750 
				<time>1394840724</time>
6751 
				<username>admin@172.24.16.234</username>
6752 
			</created>
6753 
			<updated>
6754 
				<time>1400222864</time>
6755 
				<username>admin@172.24.17.234</username>
6756 
			</updated>
6757 
			<tracker>1424949743</tracker>
6758 
		</rule>
6759 
		<rule>
6760 
			<id/>
6761 
			<type>reject</type>
6762 
			<interface>enc0</interface>
6763 
			<ipprotocol>inet</ipprotocol>
6764 
			<tag/>
6765 
			<tagged/>
6766 
			<max/>
6767 
			<max-src-nodes/>
6768 
			<max-src-conn/>
6769 
			<max-src-states/>
6770 
			<statetimeout/>
6771 
			<statetype>keep state</statetype>
6772 
			<os/>
6773 
			<source>
6774 
				<any/>
6775 
			</source>
6776 
			<destination>
6777 
				<address>ForumSpammers5</address>
6778 
			</destination>
6779 
			<descr><![CDATA[Block IPSec traffic to forum spammer systems]]></descr>
6780 
			<created>
6781 
				<time>1394840733</time>
6782 
				<username>admin@172.24.16.234</username>
6783 
			</created>
6784 
			<updated>
6785 
				<time>1400222870</time>
6786 
				<username>admin@172.24.17.234</username>
6787 
			</updated>
6788 
			<tracker>1424949744</tracker>
6789 
		</rule>
6790 
		<rule>
6791 
			<id/>
6792 
			<type>reject</type>
6793 
			<interface>enc0</interface>
6794 
			<ipprotocol>inet</ipprotocol>
6795 
			<tag/>
6796 
			<tagged/>
6797 
			<max/>
6798 
			<max-src-nodes/>
6799 
			<max-src-conn/>
6800 
			<max-src-states/>
6801 
			<statetimeout/>
6802 
			<statetype>keep state</statetype>
6803 
			<os/>
6804 
			<source>
6805 
				<any/>
6806 
			</source>
6807 
			<destination>
6808 
				<address>MalwareSites</address>
6809 
			</destination>
6810 
			<descr><![CDATA[Block IPSec traffic to malware systems]]></descr>
6811 
			<updated>
6812 
				<time>1422573600</time>
6813 
				<username>admin@172.24.16.235</username>
6814 
			</updated>
6815 
			<created>
6816 
				<time>1422573600</time>
6817 
				<username>admin@172.24.16.235</username>
6818 
			</created>
6819 
			<tracker>1424949745</tracker>
6820 
		</rule>
6821 
		<rule>
6822 
			<id/>
6823 
			<type>pass</type>
6824 
			<interface>enc0</interface>
6825 
			<ipprotocol>inet</ipprotocol>
6826 
			<tag/>
6827 
			<tagged/>
6828 
			<max/>
6829 
			<max-src-nodes/>
6830 
			<max-src-conn/>
6831 
			<max-src-states/>
6832 
			<statetimeout/>
6833 
			<statetype>keep state</statetype>
6834 
			<os/>
6835 
			<source>
6836 
				<address>MobileIPSecVPNlan</address>
6837 
			</source>
6838 
			<destination>
6839 
				<any/>
6840 
			</destination>
6841 
			<descr><![CDATA[Allow IPv4 IPSec traffic from mobile clients]]></descr>
6842 
			<updated>
6843 
				<time>1390613012</time>
6844 
				<username>admin@172.24.16.234</username>
6845 
			</updated>
6846 
			<tracker>1424949746</tracker>
6847 
		</rule>
6848 
		<rule>
6849 
			<id/>
6850 
			<type>pass</type>
6851 
			<interface>enc0</interface>
6852 
			<ipprotocol>inet</ipprotocol>
6853 
			<tag/>
6854 
			<tagged/>
6855 
			<max/>
6856 
			<max-src-nodes/>
6857 
			<max-src-conn/>
6858 
			<max-src-states/>
6859 
			<statetimeout/>
6860 
			<statetype>keep state</statetype>
6861 
			<os/>
6862 
			<source>
6863 
				<address>SPDiMac</address>
6864 
			</source>
6865 
			<destination>
6866 
				<address>DEIsLAN3</address>
6867 
			</destination>
6868 
			<descr><![CDATA[Allow SPD's iMac IPv4 IPSec access to LAN3]]></descr>
6869 
			<created>
6870 
				<time>1419535386</time>
6871 
				<username>admin@172.24.16.235</username>
6872 
			</created>
6873 
			<updated>
6874 
				<time>1419535456</time>
6875 
				<username>admin@172.24.16.235</username>
6876 
			</updated>
6877 
			<tracker>1424949747</tracker>
6878 
		</rule>
6879 
		<rule>
6880 
			<id/>
6881 
			<type>reject</type>
6882 
			<interface>enc0</interface>
6883 
			<ipprotocol>inet</ipprotocol>
6884 
			<tag/>
6885 
			<tagged/>
6886 
			<max/>
6887 
			<max-src-nodes/>
6888 
			<max-src-conn/>
6889 
			<max-src-states/>
6890 
			<statetimeout/>
6891 
			<statetype>keep state</statetype>
6892 
			<os/>
6893 
			<source>
6894 
				<any/>
6895 
			</source>
6896 
			<destination>
6897 
				<address>DEIsLAN3</address>
6898 
			</destination>
6899 
			<descr><![CDATA[Prevent IPv4 IPSec LAN3 access]]></descr>
6900 
			<created>
6901 
				<time>1419535235</time>
6902 
				<username>admin@172.24.16.235</username>
6903 
			</created>
6904 
			<updated>
6905 
				<time>1419535472</time>
6906 
				<username>admin@172.24.16.235</username>
6907 
			</updated>
6908 
			<tracker>1424949748</tracker>
6909 
		</rule>
6910 
		<rule>
6911 
			<id/>
6912 
			<type>pass</type>
6913 
			<interface>enc0</interface>
6914 
			<ipprotocol>inet</ipprotocol>
6915 
			<tag/>
6916 
			<tagged/>
6917 
			<max/>
6918 
			<max-src-nodes/>
6919 
			<max-src-conn/>
6920 
			<max-src-states/>
6921 
			<statetimeout/>
6922 
			<statetype>keep state</statetype>
6923 
			<os/>
6924 
			<source>
6925 
				<address>SPDsLAN</address>
6926 
			</source>
6927 
			<destination>
6928 
				<any/>
6929 
			</destination>
6930 
			<descr><![CDATA[Allow IPv4 IPSec traffic from SPD's office]]></descr>
6931 
			<updated>
6932 
				<time>1386368402</time>
6933 
				<username>admin@172.24.16.234</username>
6934 
			</updated>
6935 
			<tracker>1424949749</tracker>
6936 
		</rule>
6937 
		<rule>
6938 
			<id/>
6939 
			<type>reject</type>
6940 
			<interface>enc0</interface>
6941 
			<ipprotocol>inet</ipprotocol>
6942 
			<tag/>
6943 
			<tagged/>
6944 
			<max/>
6945 
			<max-src-nodes/>
6946 
			<max-src-conn/>
6947 
			<max-src-states/>
6948 
			<statetimeout/>
6949 
			<statetype>keep state</statetype>
6950 
			<os/>
6951 
			<source>
6952 
				<any/>
6953 
			</source>
6954 
			<destination>
6955 
				<any/>
6956 
			</destination>
6957 
			<log/>
6958 
			<descr><![CDATA[Block remaining IPv4 IPsec traffic]]></descr>
6959 
			<created>
6960 
				<time>1390183335</time>
6961 
				<username>admin@172.24.16.234</username>
6962 
			</created>
6963 
			<updated>
6964 
				<time>1424916026</time>
6965 
				<username>admin@172.24.16.235</username>
6966 
			</updated>
6967 
			<tracker>1424949750</tracker>
6968 
		</rule>
6969 
		<rule>
6970 
			<id/>
6971 
			<type>block</type>
6972 
			<interface>enc0</interface>
6973 
			<ipprotocol>inet6</ipprotocol>
6974 
			<tag/>
6975 
			<tagged/>
6976 
			<max/>
6977 
			<max-src-nodes/>
6978 
			<max-src-conn/>
6979 
			<max-src-states/>
6980 
			<statetimeout/>
6981 
			<statetype>keep state</statetype>
6982 
			<os/>
6983 
			<source>
6984 
				<any/>
6985 
			</source>
6986 
			<destination>
6987 
				<any/>
6988 
			</destination>
6989 
			<descr><![CDATA[Block remaining IPv6 IPsec traffic]]></descr>
6990 
			<created>
6991 
				<time>1385881133</time>
6992 
				<username>admin@172.24.16.234</username>
6993 
			</created>
6994 
			<updated>
6995 
				<time>1424478309</time>
6996 
				<username>admin@172.24.16.235</username>
6997 
			</updated>
6998 
			<tracker>1424949751</tracker>
6999 
		</rule>
7000 
		<rule>
7001 
			<id/>
7002 
			<type>pass</type>
7003 
			<interface>l2tp</interface>
7004 
			<ipprotocol>inet</ipprotocol>
7005 
			<tag/>
7006 
			<tagged/>
7007 
			<max/>
7008 
			<max-src-nodes/>
7009 
			<max-src-conn/>
7010 
			<max-src-states/>
7011 
			<statetimeout/>
7012 
			<statetype>keep state</statetype>
7013 
			<os/>
7014 
			<source>
7015 
				<any/>
7016 
			</source>
7017 
			<destination>
7018 
				<any/>
7019 
			</destination>
7020 
			<log/>
7021 
			<descr><![CDATA[Allow all IPv4 L2TP VPN traffic]]></descr>
7022 
			<updated>
7023 
				<time>1385881006</time>
7024 
				<username>admin@172.24.16.234</username>
7025 
			</updated>
7026 
			<tracker>1424949752</tracker>
7027 
		</rule>
7028 
		<rule>
7029 
			<id/>
7030 
			<type>block</type>
7031 
			<interface>l2tp</interface>
7032 
			<ipprotocol>inet</ipprotocol>
7033 
			<tag/>
7034 
			<tagged/>
7035 
			<max/>
7036 
			<max-src-nodes/>
7037 
			<max-src-conn/>
7038 
			<max-src-states/>
7039 
			<statetimeout/>
7040 
			<statetype>keep state</statetype>
7041 
			<os/>
7042 
			<source>
7043 
				<any/>
7044 
			</source>
7045 
			<destination>
7046 
				<any/>
7047 
			</destination>
7048 
			<log/>
7049 
			<descr><![CDATA[Block all remaining IPv4 traffic]]></descr>
7050 
			<updated>
7051 
				<time>1385881044</time>
7052 
				<username>admin@172.24.16.234</username>
7053 
			</updated>
7054 
			<tracker>1424949753</tracker>
7055 
		</rule>
7056 
		<rule>
7057 
			<id/>
7058 
			<type>block</type>
7059 
			<interface>l2tp</interface>
7060 
			<ipprotocol>inet6</ipprotocol>
7061 
			<tag/>
7062 
			<tagged/>
7063 
			<max/>
7064 
			<max-src-nodes/>
7065 
			<max-src-conn/>
7066 
			<max-src-states/>
7067 
			<statetimeout/>
7068 
			<statetype>keep state</statetype>
7069 
			<os/>
7070 
			<source>
7071 
				<any/>
7072 
			</source>
7073 
			<destination>
7074 
				<any/>
7075 
			</destination>
7076 
			<log/>
7077 
			<descr><![CDATA[Block all remaining IPv6 traffic]]></descr>
7078 
			<updated>
7079 
				<time>1385881035</time>
7080 
				<username>admin@172.24.16.234</username>
7081 
			</updated>
7082 
			<created>
7083 
				<time>1385881035</time>
7084 
				<username>admin@172.24.16.234</username>
7085 
			</created>
7086 
			<disabled/>
7087 
			<tracker>1424949754</tracker>
7088 
		</rule>
7089 
		<rule>
7090 
			<id/>
7091 
			<tracker>1425947250</tracker>
7092 
			<type>reject</type>
7093 
			<interface>openvpn</interface>
7094 
			<ipprotocol>inet</ipprotocol>
7095 
			<tag/>
7096 
			<tagged/>
7097 
			<max/>
7098 
			<max-src-nodes/>
7099 
			<max-src-conn/>
7100 
			<max-src-states/>
7101 
			<statetimeout/>
7102 
			<statetype>keep state</statetype>
7103 
			<os/>
7104 
			<protocol>tcp/udp</protocol>
7105 
			<source>
7106 
				<any/>
7107 
			</source>
7108 
			<destination>
7109 
				<any/>
7110 
				<port>NetBIOSports</port>
7111 
			</destination>
7112 
			<descr><![CDATA[Block NetBIOS traffic]]></descr>
7113 
			<updated>
7114 
				<time>1425947250</time>
7115 
				<username>admin@172.24.16.235</username>
7116 
			</updated>
7117 
			<created>
7118 
				<time>1425947250</time>
7119 
				<username>admin@172.24.16.235</username>
7120 
			</created>
7121 
		</rule>
7122 
		<rule>
7123 
			<id/>
7124 
			<type>reject</type>
7125 
			<interface>openvpn</interface>
7126 
			<ipprotocol>inet</ipprotocol>
7127 
			<tag/>
7128 
			<tagged/>
7129 
			<max/>
7130 
			<max-src-nodes/>
7131 
			<max-src-conn/>
7132 
			<max-src-states/>
7133 
			<statetimeout/>
7134 
			<statetype>keep state</statetype>
7135 
			<os/>
7136 
			<source>
7137 
				<any/>
7138 
			</source>
7139 
			<destination>
7140 
				<address>IPv4linkLocalNetBlk</address>
7141 
			</destination>
7142 
			<log/>
7143 
			<descr><![CDATA[Block traffic to IPv4 link-local addresses]]></descr>
7144 
			<updated>
7145 
				<time>1424937141</time>
7146 
				<username>admin@172.24.16.235</username>
7147 
			</updated>
7148 
			<created>
7149 
				<time>1424937141</time>
7150 
				<username>admin@172.24.16.235</username>
7151 
			</created>
7152 
			<tracker>1424949755</tracker>
7153 
		</rule>
7154 
		<rule>
7155 
			<id/>
7156 
			<type>pass</type>
7157 
			<interface>openvpn</interface>
7158 
			<ipprotocol>inet</ipprotocol>
7159 
			<tag/>
7160 
			<tagged/>
7161 
			<max/>
7162 
			<max-src-nodes/>
7163 
			<max-src-conn/>
7164 
			<max-src-states/>
7165 
			<statetimeout/>
7166 
			<statetype>keep state</statetype>
7167 
			<os/>
7168 
			<source>
7169 
				<address>WhitelistedHosts</address>
7170 
			</source>
7171 
			<destination>
7172 
				<address>WhitelistedDestinations</address>
7173 
			</destination>
7174 
			<descr><![CDATA[Allow whitelisted hosts to whitelisted addresses]]></descr>
7175 
			<created>
7176 
				<time>1401393393</time>
7177 
				<username>admin@172.24.16.234</username>
7178 
			</created>
7179 
			<updated>
7180 
				<time>1420510519</time>
7181 
				<username>admin@172.24.16.235</username>
7182 
			</updated>
7183 
			<tracker>1424949756</tracker>
7184 
		</rule>
7185 
		<rule>
7186 
			<id/>
7187 
			<type>reject</type>
7188 
			<interface>openvpn</interface>
7189 
			<ipprotocol>inet</ipprotocol>
7190 
			<tag/>
7191 
			<tagged/>
7192 
			<max/>
7193 
			<max-src-nodes/>
7194 
			<max-src-conn/>
7195 
			<max-src-states/>
7196 
			<statetimeout/>
7197 
			<statetype>keep state</statetype>
7198 
			<os/>
7199 
			<source>
7200 
				<any/>
7201 
			</source>
7202 
			<destination>
7203 
				<address>AdBlockServer</address>
7204 
			</destination>
7205 
			<descr><![CDATA[Prevent traffic to IPv4 Ad-block server]]></descr>
7206 
			<updated>
7207 
				<time>1420507207</time>
7208 
				<username>admin@172.24.16.235</username>
7209 
			</updated>
7210 
			<disabled/>
7211 
			<tracker>1424949757</tracker>
7212 
		</rule>
7213 
		<rule>
7214 
			<id/>
7215 
			<type>reject</type>
7216 
			<interface>openvpn</interface>
7217 
			<ipprotocol>inet6</ipprotocol>
7218 
			<tag/>
7219 
			<tagged/>
7220 
			<max/>
7221 
			<max-src-nodes/>
7222 
			<max-src-conn/>
7223 
			<max-src-states/>
7224 
			<statetimeout/>
7225 
			<statetype>keep state</statetype>
7226 
			<os/>
7227 
			<source>
7228 
				<any/>
7229 
			</source>
7230 
			<destination>
7231 
				<address>AdBlockServer</address>
7232 
			</destination>
7233 
			<descr><![CDATA[Prevent traffic to IPv6 Ad-block server]]></descr>
7234 
			<updated>
7235 
				<time>1420507160</time>
7236 
				<username>admin@172.24.16.235</username>
7237 
			</updated>
7238 
			<tracker>1424949758</tracker>
7239 
		</rule>
7240 
		<rule>
7241 
			<id/>
7242 
			<type>reject</type>
7243 
			<interface>openvpn</interface>
7244 
			<ipprotocol>inet</ipprotocol>
7245 
			<tag/>
7246 
			<tagged/>
7247 
			<max/>
7248 
			<max-src-nodes/>
7249 
			<max-src-conn/>
7250 
			<max-src-states/>
7251 
			<statetimeout/>
7252 
			<statetype>keep state</statetype>
7253 
			<os/>
7254 
			<source>
7255 
				<any/>
7256 
			</source>
7257 
			<destination>
7258 
				<address>AdSense</address>
7259 
			</destination>
7260 
			<descr><![CDATA[Prevent AdSense ads from showing on our networks]]></descr>
7261 
			<created>
7262 
				<time>1394348255</time>
7263 
				<username>admin@172.24.16.234</username>
7264 
			</created>
7265 
			<updated>
7266 
				<time>1394840163</time>
7267 
				<username>admin@172.24.16.234</username>
7268 
			</updated>
7269 
			<tracker>1424949759</tracker>
7270 
		</rule>
7271 
		<rule>
7272 
			<id/>
7273 
			<type>reject</type>
7274 
			<interface>openvpn</interface>
7275 
			<ipprotocol>inet</ipprotocol>
7276 
			<tag/>
7277 
			<tagged/>
7278 
			<max/>
7279 
			<max-src-nodes/>
7280 
			<max-src-conn/>
7281 
			<max-src-states/>
7282 
			<statetimeout/>
7283 
			<statetype>keep state</statetype>
7284 
			<os/>
7285 
			<source>
7286 
				<any/>
7287 
			</source>
7288 
			<destination>
7289 
				<address>BadGuyBTadsList</address>
7290 
			</destination>
7291 
			<descr><![CDATA[Block OpenVPN traffic to Ad trackers]]></descr>
7292 
			<created>
7293 
				<time>1394842103</time>
7294 
				<username>admin@172.24.16.234</username>
7295 
			</created>
7296 
			<updated>
7297 
				<time>1420507708</time>
7298 
				<username>admin@172.24.16.235</username>
7299 
			</updated>
7300 
			<tracker>1424949760</tracker>
7301 
		</rule>
7302 
		<rule>
7303 
			<id/>
7304 
			<type>reject</type>
7305 
			<interface>openvpn</interface>
7306 
			<ipprotocol>inet</ipprotocol>
7307 
			<tag/>
7308 
			<tagged/>
7309 
			<max/>
7310 
			<max-src-nodes/>
7311 
			<max-src-conn/>
7312 
			<max-src-states/>
7313 
			<statetimeout/>
7314 
			<statetype>keep state</statetype>
7315 
			<os/>
7316 
			<source>
7317 
				<any/>
7318 
			</source>
7319 
			<destination>
7320 
				<address>BadGuyBTfSpammerList</address>
7321 
			</destination>
7322 
			<descr><![CDATA[Block OpenVPN traffic to spammers]]></descr>
7323 
			<created>
7324 
				<time>1394842092</time>
7325 
				<username>admin@172.24.16.234</username>
7326 
			</created>
7327 
			<updated>
7328 
				<time>1400222957</time>
7329 
				<username>admin@172.24.17.234</username>
7330 
			</updated>
7331 
			<tracker>1424949761</tracker>
7332 
		</rule>
7333 
		<rule>
7334 
			<id/>
7335 
			<type>reject</type>
7336 
			<interface>openvpn</interface>
7337 
			<ipprotocol>inet</ipprotocol>
7338 
			<tag/>
7339 
			<tagged/>
7340 
			<max/>
7341 
			<max-src-nodes/>
7342 
			<max-src-conn/>
7343 
			<max-src-states/>
7344 
			<statetimeout/>
7345 
			<statetype>keep state</statetype>
7346 
			<os/>
7347 
			<source>
7348 
				<any/>
7349 
			</source>
7350 
			<destination>
7351 
				<address>BadGuyBThijackedList</address>
7352 
			</destination>
7353 
			<descr><![CDATA[Block OpenVPN traffic to hijacked systems]]></descr>
7354 
			<created>
7355 
				<time>1394842082</time>
7356 
				<username>admin@172.24.16.234</username>
7357 
			</created>
7358 
			<updated>
7359 
				<time>1400222962</time>
7360 
				<username>admin@172.24.17.234</username>
7361 
			</updated>
7362 
			<tracker>1424949762</tracker>
7363 
		</rule>
7364 
		<rule>
7365 
			<id/>
7366 
			<type>reject</type>
7367 
			<interface>openvpn</interface>
7368 
			<ipprotocol>inet</ipprotocol>
7369 
			<tag/>
7370 
			<tagged/>
7371 
			<max/>
7372 
			<max-src-nodes/>
7373 
			<max-src-conn/>
7374 
			<max-src-states/>
7375 
			<statetimeout/>
7376 
			<statetype>keep state</statetype>
7377 
			<os/>
7378 
			<source>
7379 
				<any/>
7380 
			</source>
7381 
			<destination>
7382 
				<address>BadGuyBTshieldList</address>
7383 
			</destination>
7384 
			<descr><![CDATA[Block OpenVPN traffic to hacker systems]]></descr>
7385 
			<created>
7386 
				<time>1394842073</time>
7387 
				<username>admin@172.24.16.234</username>
7388 
			</created>
7389 
			<updated>
7390 
				<time>1400222968</time>
7391 
				<username>admin@172.24.17.234</username>
7392 
			</updated>
7393 
			<tracker>1424949763</tracker>
7394 
		</rule>
7395 
		<rule>
7396 
			<id/>
7397 
			<type>reject</type>
7398 
			<interface>openvpn</interface>
7399 
			<ipprotocol>inet</ipprotocol>
7400 
			<tag/>
7401 
			<tagged/>
7402 
			<max/>
7403 
			<max-src-nodes/>
7404 
			<max-src-conn/>
7405 
			<max-src-states/>
7406 
			<statetimeout/>
7407 
			<statetype>keep state</statetype>
7408 
			<os/>
7409 
			<source>
7410 
				<any/>
7411 
			</source>
7412 
			<destination>
7413 
				<address>BadGuyBTspiderList</address>
7414 
			</destination>
7415 
			<descr><![CDATA[Block OpenVPN traffic 2 bad spider/crawler's systems]]></descr>
7416 
			<created>
7417 
				<time>1394842064</time>
7418 
				<username>admin@172.24.16.234</username>
7419 
			</created>
7420 
			<updated>
7421 
				<time>1400222974</time>
7422 
				<username>admin@172.24.17.234</username>
7423 
			</updated>
7424 
			<tracker>1424949764</tracker>
7425 
		</rule>
7426 
		<rule>
7427 
			<id/>
7428 
			<type>reject</type>
7429 
			<interface>openvpn</interface>
7430 
			<ipprotocol>inet</ipprotocol>
7431 
			<tag/>
7432 
			<tagged/>
7433 
			<max/>
7434 
			<max-src-nodes/>
7435 
			<max-src-conn/>
7436 
			<max-src-states/>
7437 
			<statetimeout/>
7438 
			<statetype>keep state</statetype>
7439 
			<os/>
7440 
			<source>
7441 
				<any/>
7442 
			</source>
7443 
			<destination>
7444 
				<address>BadGuyBTspywareList</address>
7445 
			</destination>
7446 
			<descr><![CDATA[Block OpenVPN traffic to spyware systems]]></descr>
7447 
			<created>
7448 
				<time>1394842048</time>
7449 
				<username>admin@172.24.16.234</username>
7450 
			</created>
7451 
			<updated>
7452 
				<time>1400222980</time>
7453 
				<username>admin@172.24.17.234</username>
7454 
			</updated>
7455 
			<tracker>1424949765</tracker>
7456 
		</rule>
7457 
		<rule>
7458 
			<id/>
7459 
			<type>reject</type>
7460 
			<interface>openvpn</interface>
7461 
			<ipprotocol>inet</ipprotocol>
7462 
			<tag/>
7463 
			<tagged/>
7464 
			<max/>
7465 
			<max-src-nodes/>
7466 
			<max-src-conn/>
7467 
			<max-src-states/>
7468 
			<statetimeout/>
7469 
			<statetype>keep state</statetype>
7470 
			<os/>
7471 
			<source>
7472 
				<any/>
7473 
			</source>
7474 
			<destination>
7475 
				<address>BadGuyBTwebexploitList</address>
7476 
			</destination>
7477 
			<descr><![CDATA[Block OpenVPN traffic to web exploit systems]]></descr>
7478 
			<created>
7479 
				<time>1394843335</time>
7480 
				<username>admin@172.24.16.234</username>
7481 
			</created>
7482 
			<updated>
7483 
				<time>1400222986</time>
7484 
				<username>admin@172.24.17.234</username>
7485 
			</updated>
7486 
			<tracker>1424949766</tracker>
7487 
		</rule>
7488 
		<rule>
7489 
			<id/>
7490 
			<type>reject</type>
7491 
			<interface>openvpn</interface>
7492 
			<ipprotocol>inet</ipprotocol>
7493 
			<tag/>
7494 
			<tagged/>
7495 
			<max/>
7496 
			<max-src-nodes/>
7497 
			<max-src-conn/>
7498 
			<max-src-states/>
7499 
			<statetimeout/>
7500 
			<statetype>keep state</statetype>
7501 
			<os/>
7502 
			<source>
7503 
				<any/>
7504 
			</source>
7505 
			<destination>
7506 
				<address>BadGuyDROPlist</address>
7507 
			</destination>
7508 
			<descr><![CDATA[Block OpenVPN traffic to criminal-controlled systems]]></descr>
7509 
			<created>
7510 
				<time>1394842038</time>
7511 
				<username>admin@172.24.16.234</username>
7512 
			</created>
7513 
			<updated>
7514 
				<time>1400222991</time>
7515 
				<username>admin@172.24.17.234</username>
7516 
			</updated>
7517 
			<tracker>1424949767</tracker>
7518 
		</rule>
7519 
		<rule>
7520 
			<id/>
7521 
			<type>reject</type>
7522 
			<interface>openvpn</interface>
7523 
			<ipprotocol>inet</ipprotocol>
7524 
			<tag/>
7525 
			<tagged/>
7526 
			<max/>
7527 
			<max-src-nodes/>
7528 
			<max-src-conn/>
7529 
			<max-src-states/>
7530 
			<statetimeout/>
7531 
			<statetype>keep state</statetype>
7532 
			<os/>
7533 
			<source>
7534 
				<any/>
7535 
			</source>
7536 
			<destination>
7537 
				<address>BadGuyEDROPlist</address>
7538 
			</destination>
7539 
			<descr><![CDATA[Block OpenVPN traffic to criminal-controlled systems]]></descr>
7540 
			<created>
7541 
				<time>1394842028</time>
7542 
				<username>admin@172.24.16.234</username>
7543 
			</created>
7544 
			<updated>
7545 
				<time>1400222997</time>
7546 
				<username>admin@172.24.17.234</username>
7547 
			</updated>
7548 
			<tracker>1424949768</tracker>
7549 
		</rule>
7550 
		<rule>
7551 
			<id/>
7552 
			<type>reject</type>
7553 
			<interface>openvpn</interface>
7554 
			<ipprotocol>inet</ipprotocol>
7555 
			<tag/>
7556 
			<tagged/>
7557 
			<max/>
7558 
			<max-src-nodes/>
7559 
			<max-src-conn/>
7560 
			<max-src-states/>
7561 
			<statetimeout/>
7562 
			<statetype>keep state</statetype>
7563 
			<os/>
7564 
			<source>
7565 
				<any/>
7566 
			</source>
7567 
			<destination>
7568 
				<address>BadNets</address>
7569 
			</destination>
7570 
			<descr><![CDATA[Block OpenVPN traffic to undesired networks]]></descr>
7571 
			<created>
7572 
				<time>1394842017</time>
7573 
				<username>admin@172.24.16.234</username>
7574 
			</created>
7575 
			<updated>
7576 
				<time>1400223003</time>
7577 
				<username>admin@172.24.17.234</username>
7578 
			</updated>
7579 
			<tracker>1424949769</tracker>
7580 
		</rule>
7581 
		<rule>
7582 
			<id/>
7583 
			<type>reject</type>
7584 
			<interface>openvpn</interface>
7585 
			<ipprotocol>inet</ipprotocol>
7586 
			<tag/>
7587 
			<tagged/>
7588 
			<max/>
7589 
			<max-src-nodes/>
7590 
			<max-src-conn/>
7591 
			<max-src-states/>
7592 
			<statetimeout/>
7593 
			<statetype>keep state</statetype>
7594 
			<os/>
7595 
			<source>
7596 
				<any/>
7597 
			</source>
7598 
			<destination>
7599 
				<address>BadGuys</address>
7600 
			</destination>
7601 
			<descr><![CDATA[Block OpenVPN traffic to bad-guy systems]]></descr>
7602 
			<created>
7603 
				<time>1394841990</time>
7604 
				<username>admin@172.24.16.234</username>
7605 
			</created>
7606 
			<updated>
7607 
				<time>1400223015</time>
7608 
				<username>admin@172.24.17.234</username>
7609 
			</updated>
7610 
			<tracker>1424949770</tracker>
7611 
		</rule>
7612 
		<rule>
7613 
			<id/>
7614 
			<type>reject</type>
7615 
			<interface>openvpn</interface>
7616 
			<ipprotocol>inet</ipprotocol>
7617 
			<tag/>
7618 
			<tagged/>
7619 
			<max/>
7620 
			<max-src-nodes/>
7621 
			<max-src-conn/>
7622 
			<max-src-states/>
7623 
			<statetimeout/>
7624 
			<statetype>keep state</statetype>
7625 
			<os/>
7626 
			<source>
7627 
				<any/>
7628 
			</source>
7629 
			<destination>
7630 
				<address>EmergingThreats</address>
7631 
			</destination>
7632 
			<descr><![CDATA[Block OpenVPN traffic to various threat IPs &amp; net's]]></descr>
7633 
			<created>
7634 
				<time>1394841982</time>
7635 
				<username>admin@172.24.16.234</username>
7636 
			</created>
7637 
			<updated>
7638 
				<time>1400223021</time>
7639 
				<username>admin@172.24.17.234</username>
7640 
			</updated>
7641 
			<tracker>1424949771</tracker>
7642 
		</rule>
7643 
		<rule>
7644 
			<id/>
7645 
			<type>reject</type>
7646 
			<interface>openvpn</interface>
7647 
			<ipprotocol>inet</ipprotocol>
7648 
			<tag/>
7649 
			<tagged/>
7650 
			<max/>
7651 
			<max-src-nodes/>
7652 
			<max-src-conn/>
7653 
			<max-src-states/>
7654 
			<statetimeout/>
7655 
			<statetype>keep state</statetype>
7656 
			<os/>
7657 
			<source>
7658 
				<any/>
7659 
			</source>
7660 
			<destination>
7661 
				<address>ForumSpammerNets</address>
7662 
			</destination>
7663 
			<descr><![CDATA[Block OpenVPN traffic to forum spammer networks]]></descr>
7664 
			<created>
7665 
				<time>1394841963</time>
7666 
				<username>admin@172.24.16.234</username>
7667 
			</created>
7668 
			<updated>
7669 
				<time>1400223027</time>
7670 
				<username>admin@172.24.17.234</username>
7671 
			</updated>
7672 
			<tracker>1424949772</tracker>
7673 
		</rule>
7674 
		<rule>
7675 
			<id/>
7676 
			<type>reject</type>
7677 
			<interface>openvpn</interface>
7678 
			<ipprotocol>inet</ipprotocol>
7679 
			<tag/>
7680 
			<tagged/>
7681 
			<max/>
7682 
			<max-src-nodes/>
7683 
			<max-src-conn/>
7684 
			<max-src-states/>
7685 
			<statetimeout/>
7686 
			<statetype>keep state</statetype>
7687 
			<os/>
7688 
			<source>
7689 
				<any/>
7690 
			</source>
7691 
			<destination>
7692 
				<address>ForumSpammers1</address>
7693 
			</destination>
7694 
			<descr><![CDATA[Block OpenVPN traffic to forum spammer systems]]></descr>
7695 
			<created>
7696 
				<time>1394841955</time>
7697 
				<username>admin@172.24.16.234</username>
7698 
			</created>
7699 
			<updated>
7700 
				<time>1400223033</time>
7701 
				<username>admin@172.24.17.234</username>
7702 
			</updated>
7703 
			<tracker>1424949773</tracker>
7704 
		</rule>
7705 
		<rule>
7706 
			<id/>
7707 
			<type>reject</type>
7708 
			<interface>openvpn</interface>
7709 
			<ipprotocol>inet</ipprotocol>
7710 
			<tag/>
7711 
			<tagged/>
7712 
			<max/>
7713 
			<max-src-nodes/>
7714 
			<max-src-conn/>
7715 
			<max-src-states/>
7716 
			<statetimeout/>
7717 
			<statetype>keep state</statetype>
7718 
			<os/>
7719 
			<source>
7720 
				<any/>
7721 
			</source>
7722 
			<destination>
7723 
				<address>ForumSpammers2</address>
7724 
			</destination>
7725 
			<descr><![CDATA[Block OpenVPN traffic to forum spammer systems]]></descr>
7726 
			<created>
7727 
				<time>1394841947</time>
7728 
				<username>admin@172.24.16.234</username>
7729 
			</created>
7730 
			<updated>
7731 
				<time>1400223039</time>
7732 
				<username>admin@172.24.17.234</username>
7733 
			</updated>
7734 
			<tracker>1424949774</tracker>
7735 
		</rule>
7736 
		<rule>
7737 
			<id/>
7738 
			<type>reject</type>
7739 
			<interface>openvpn</interface>
7740 
			<ipprotocol>inet</ipprotocol>
7741 
			<tag/>
7742 
			<tagged/>
7743 
			<max/>
7744 
			<max-src-nodes/>
7745 
			<max-src-conn/>
7746 
			<max-src-states/>
7747 
			<statetimeout/>
7748 
			<statetype>keep state</statetype>
7749 
			<os/>
7750 
			<source>
7751 
				<any/>
7752 
			</source>
7753 
			<destination>
7754 
				<address>ForumSpammers3</address>
7755 
			</destination>
7756 
			<descr><![CDATA[Block OpenVPN traffic to forum spammer systems]]></descr>
7757 
			<created>
7758 
				<time>1394841938</time>
7759 
				<username>admin@172.24.16.234</username>
7760 
			</created>
7761 
			<updated>
7762 
				<time>1400223045</time>
7763 
				<username>admin@172.24.17.234</username>
7764 
			</updated>
7765 
			<tracker>1424949775</tracker>
7766 
		</rule>
7767 
		<rule>
7768 
			<id/>
7769 
			<type>reject</type>
7770 
			<interface>openvpn</interface>
7771 
			<ipprotocol>inet</ipprotocol>
7772 
			<tag/>
7773 
			<tagged/>
7774 
			<max/>
7775 
			<max-src-nodes/>
7776 
			<max-src-conn/>
7777 
			<max-src-states/>
7778 
			<statetimeout/>
7779 
			<statetype>keep state</statetype>
7780 
			<os/>
7781 
			<source>
7782 
				<any/>
7783 
			</source>
7784 
			<destination>
7785 
				<address>ForumSpammers4</address>
7786 
			</destination>
7787 
			<descr><![CDATA[Block OpenVPN traffic to forum spammer systems]]></descr>
7788 
			<created>
7789 
				<time>1394841928</time>
7790 
				<username>admin@172.24.16.234</username>
7791 
			</created>
7792 
			<updated>
7793 
				<time>1400223051</time>
7794 
				<username>admin@172.24.17.234</username>
7795 
			</updated>
7796 
			<tracker>1424949776</tracker>
7797 
		</rule>
7798 
		<rule>
7799 
			<id/>
7800 
			<type>reject</type>
7801 
			<interface>openvpn</interface>
7802 
			<ipprotocol>inet</ipprotocol>
7803 
			<tag/>
7804 
			<tagged/>
7805 
			<max/>
7806 
			<max-src-nodes/>
7807 
			<max-src-conn/>
7808 
			<max-src-states/>
7809 
			<statetimeout/>
7810 
			<statetype>keep state</statetype>
7811 
			<os/>
7812 
			<source>
7813 
				<any/>
7814 
			</source>
7815 
			<destination>
7816 
				<address>ForumSpammers5</address>
7817 
			</destination>
7818 
			<descr><![CDATA[Block OpenVPN traffic to forum spammer systems]]></descr>
7819 
			<created>
7820 
				<time>1394841919</time>
7821 
				<username>admin@172.24.16.234</username>
7822 
			</created>
7823 
			<updated>
7824 
				<time>1400223057</time>
7825 
				<username>admin@172.24.17.234</username>
7826 
			</updated>
7827 
			<tracker>1424949777</tracker>
7828 
		</rule>
7829 
		<rule>
7830 
			<id/>
7831 
			<type>reject</type>
7832 
			<interface>openvpn</interface>
7833 
			<ipprotocol>inet</ipprotocol>
7834 
			<tag/>
7835 
			<tagged/>
7836 
			<max/>
7837 
			<max-src-nodes/>
7838 
			<max-src-conn/>
7839 
			<max-src-states/>
7840 
			<statetimeout/>
7841 
			<statetype>keep state</statetype>
7842 
			<os/>
7843 
			<source>
7844 
				<any/>
7845 
			</source>
7846 
			<destination>
7847 
				<address>MalwareSites</address>
7848 
			</destination>
7849 
			<descr><![CDATA[Block OpenVPN traffic to malware systems]]></descr>
7850 
			<updated>
7851 
				<time>1422573626</time>
7852 
				<username>admin@172.24.16.235</username>
7853 
			</updated>
7854 
			<created>
7855 
				<time>1422573626</time>
7856 
				<username>admin@172.24.16.235</username>
7857 
			</created>
7858 
			<tracker>1424949778</tracker>
7859 
		</rule>
7860 
		<rule>
7861 
			<id/>
7862 
			<type>pass</type>
7863 
			<interface>openvpn</interface>
7864 
			<ipprotocol>inet</ipprotocol>
7865 
			<tag/>
7866 
			<tagged/>
7867 
			<max/>
7868 
			<max-src-nodes/>
7869 
			<max-src-conn/>
7870 
			<max-src-states/>
7871 
			<statetimeout/>
7872 
			<statetype>keep state</statetype>
7873 
			<os/>
7874 
			<source>
7875 
				<address>MobileOpenVPNlans</address>
7876 
			</source>
7877 
			<destination>
7878 
				<any/>
7879 
			</destination>
7880 
			<descr><![CDATA[Allow IPv4 OpenVPN mobile traffic]]></descr>
7881 
			<created>
7882 
				<time>1389685227</time>
7883 
				<username>OpenVPN Wizard</username>
7884 
			</created>
7885 
			<updated>
7886 
				<time>1419071078</time>
7887 
				<username>admin@172.24.16.235</username>
7888 
			</updated>
7889 
			<tracker>1424949779</tracker>
7890 
		</rule>
7891 
		<rule>
7892 
			<id/>
7893 
			<type>reject</type>
7894 
			<interface>openvpn</interface>
7895 
			<ipprotocol>inet</ipprotocol>
7896 
			<tag/>
7897 
			<tagged/>
7898 
			<max/>
7899 
			<max-src-nodes/>
7900 
			<max-src-conn/>
7901 
			<max-src-states/>
7902 
			<statetimeout/>
7903 
			<statetype>keep state</statetype>
7904 
			<os/>
7905 
			<source>
7906 
				<any/>
7907 
			</source>
7908 
			<destination>
7909 
				<any/>
7910 
			</destination>
7911 
			<log/>
7912 
			<descr><![CDATA[Block remaining IPv4 OpenVPN traffic]]></descr>
7913 
			<created>
7914 
				<time>1389686151</time>
7915 
				<username>admin@172.24.16.234</username>
7916 
			</created>
7917 
			<updated>
7918 
				<time>1424915926</time>
7919 
				<username>admin@172.24.16.235</username>
7920 
			</updated>
7921 
			<tracker>1424949780</tracker>
7922 
		</rule>
7923 
		<rule>
7924 
			<id/>
7925 
			<type>block</type>
7926 
			<interface>openvpn</interface>
7927 
			<ipprotocol>inet6</ipprotocol>
7928 
			<tag/>
7929 
			<tagged/>
7930 
			<max/>
7931 
			<max-src-nodes/>
7932 
			<max-src-conn/>
7933 
			<max-src-states/>
7934 
			<statetimeout/>
7935 
			<statetype>keep state</statetype>
7936 
			<os/>
7937 
			<source>
7938 
				<any/>
7939 
			</source>
7940 
			<destination>
7941 
				<any/>
7942 
			</destination>
7943 
			<descr><![CDATA[Block remaining IPv6 OpenVPN traffic]]></descr>
7944 
			<created>
7945 
				<time>1392373270</time>
7946 
				<username>admin@172.24.16.234</username>
7947 
			</created>
7948 
			<updated>
7949 
				<time>1424478333</time>
7950 
				<username>admin@172.24.16.235</username>
7951 
			</updated>
7952 
			<tracker>1424949781</tracker>
7953 
		</rule>
7954 
		<rule>
7955 
			<id/>
7956 
			<tracker>1425947133</tracker>
7957 
			<type>reject</type>
7958 
			<interface>opt1</interface>
7959 
			<ipprotocol>inet</ipprotocol>
7960 
			<tag/>
7961 
			<tagged/>
7962 
			<max/>
7963 
			<max-src-nodes/>
7964 
			<max-src-conn/>
7965 
			<max-src-states/>
7966 
			<statetimeout/>
7967 
			<statetype>keep state</statetype>
7968 
			<os/>
7969 
			<protocol>tcp/udp</protocol>
7970 
			<source>
7971 
				<any/>
7972 
			</source>
7973 
			<destination>
7974 
				<any/>
7975 
				<port>NetBIOSports</port>
7976 
			</destination>
7977 
			<descr><![CDATA[Block NetBIOS traffic]]></descr>
7978 
			<updated>
7979 
				<time>1425947133</time>
7980 
				<username>admin@172.24.16.235</username>
7981 
			</updated>
7982 
			<created>
7983 
				<time>1425947133</time>
7984 
				<username>admin@172.24.16.235</username>
7985 
			</created>
7986 
		</rule>
7987 
		<rule>
7988 
			<id/>
7989 
			<type>reject</type>
7990 
			<interface>opt1</interface>
7991 
			<ipprotocol>inet</ipprotocol>
7992 
			<tag/>
7993 
			<tagged/>
7994 
			<max/>
7995 
			<max-src-nodes/>
7996 
			<max-src-conn/>
7997 
			<max-src-states/>
7998 
			<statetimeout/>
7999 
			<statetype>keep state</statetype>
8000 
			<os/>
8001 
			<protocol>tcp/udp</protocol>
8002 
			<source>
8003 
				<any/>
8004 
			</source>
8005 
			<destination>
8006 
				<address>NotLAN2lans</address>
8007 
				<port>NonCrossLANports</port>
8008 
			</destination>
8009 
			<descr><![CDATA[Block certain cross-LAN traffic going out from LAN2]]></descr>
8010 
			<created>
8011 
				<time>1422825842</time>
8012 
				<username>admin@172.24.16.235</username>
8013 
			</created>
8014 
			<updated>
8015 
				<time>1422827434</time>
8016 
				<username>admin@172.24.16.235</username>
8017 
			</updated>
8018 
			<tracker>1424949782</tracker>
8019 
		</rule>
8020 
		<rule>
8021 
			<id/>
8022 
			<type>reject</type>
8023 
			<interface>opt1</interface>
8024 
			<ipprotocol>inet</ipprotocol>
8025 
			<tag/>
8026 
			<tagged/>
8027 
			<max/>
8028 
			<max-src-nodes/>
8029 
			<max-src-conn/>
8030 
			<max-src-states/>
8031 
			<statetimeout/>
8032 
			<statetype>keep state</statetype>
8033 
			<os/>
8034 
			<protocol>udp</protocol>
8035 
			<source>
8036 
				<address>TestRouter</address>
8037 
				<port>mDNSport</port>
8038 
			</source>
8039 
			<destination>
8040 
				<any/>
8041 
			</destination>
8042 
			<descr><![CDATA[Block mDNS (Avahi) from pfSense test router]]></descr>
8043 
			<updated>
8044 
				<time>1424395415</time>
8045 
				<username>admin@172.24.16.235</username>
8046 
			</updated>
8047 
			<created>
8048 
				<time>1424395415</time>
8049 
				<username>admin@172.24.16.235</username>
8050 
			</created>
8051 
			<tracker>1424949783</tracker>
8052 
		</rule>
8053 
		<rule>
8054 
			<id/>
8055 
			<type>reject</type>
8056 
			<interface>opt1</interface>
8057 
			<ipprotocol>inet</ipprotocol>
8058 
			<tag/>
8059 
			<tagged/>
8060 
			<max/>
8061 
			<max-src-nodes/>
8062 
			<max-src-conn/>
8063 
			<max-src-states/>
8064 
			<statetimeout/>
8065 
			<statetype>keep state</statetype>
8066 
			<os/>
8067 
			<source>
8068 
				<any/>
8069 
			</source>
8070 
			<destination>
8071 
				<address>IPv4linkLocalNetBlk</address>
8072 
			</destination>
8073 
			<log/>
8074 
			<descr><![CDATA[Block traffic to IPv4 link-local addresses]]></descr>
8075 
			<updated>
8076 
				<time>1424937075</time>
8077 
				<username>admin@172.24.16.235</username>
8078 
			</updated>
8079 
			<created>
8080 
				<time>1424937075</time>
8081 
				<username>admin@172.24.16.235</username>
8082 
			</created>
8083 
			<tracker>1424949784</tracker>
8084 
		</rule>
8085 
		<rule>
8086 
			<id/>
8087 
			<type>pass</type>
8088 
			<interface>opt1</interface>
8089 
			<ipprotocol>inet</ipprotocol>
8090 
			<tag/>
8091 
			<tagged/>
8092 
			<max/>
8093 
			<max-src-nodes/>
8094 
			<max-src-conn/>
8095 
			<max-src-states/>
8096 
			<statetimeout/>
8097 
			<statetype>keep state</statetype>
8098 
			<os/>
8099 
			<source>
8100 
				<address>WhitelistedHosts</address>
8101 
			</source>
8102 
			<destination>
8103 
				<address>WhitelistedDestinations</address>
8104 
			</destination>
8105 
			<descr><![CDATA[Allow whitelisted hosts to whitelisted addresses]]></descr>
8106 
			<created>
8107 
				<time>1401389585</time>
8108 
				<username>admin@172.24.16.234</username>
8109 
			</created>
8110 
			<updated>
8111 
				<time>1420510471</time>
8112 
				<username>admin@172.24.16.235</username>
8113 
			</updated>
8114 
			<tracker>1424949785</tracker>
8115 
		</rule>
8116 
		<rule>
8117 
			<id/>
8118 
			<type>reject</type>
8119 
			<interface>opt1</interface>
8120 
			<ipprotocol>inet</ipprotocol>
8121 
			<tag/>
8122 
			<tagged/>
8123 
			<max/>
8124 
			<max-src-nodes/>
8125 
			<max-src-conn/>
8126 
			<max-src-states/>
8127 
			<statetimeout/>
8128 
			<statetype>keep state</statetype>
8129 
			<os/>
8130 
			<source>
8131 
				<any/>
8132 
			</source>
8133 
			<destination>
8134 
				<address>AdBlockServer</address>
8135 
			</destination>
8136 
			<descr><![CDATA[Prevent traffic to IPv4 Ad-block server]]></descr>
8137 
			<created>
8138 
				<time>1401085057</time>
8139 
				<username>admin@172.24.16.234</username>
8140 
			</created>
8141 
			<updated>
8142 
				<time>1420507351</time>
8143 
				<username>admin@172.24.16.235</username>
8144 
			</updated>
8145 
			<disabled/>
8146 
			<tracker>1424949786</tracker>
8147 
		</rule>
8148 
		<rule>
8149 
			<id/>
8150 
			<type>reject</type>
8151 
			<interface>opt1</interface>
8152 
			<ipprotocol>inet6</ipprotocol>
8153 
			<tag/>
8154 
			<tagged/>
8155 
			<max/>
8156 
			<max-src-nodes/>
8157 
			<max-src-conn/>
8158 
			<max-src-states/>
8159 
			<statetimeout/>
8160 
			<statetype>keep state</statetype>
8161 
			<os/>
8162 
			<source>
8163 
				<any/>
8164 
			</source>
8165 
			<destination>
8166 
				<address>AdBlockServer</address>
8167 
			</destination>
8168 
			<descr><![CDATA[Prevent traffic to IPv6 Ad-block server]]></descr>
8169 
			<created>
8170 
				<time>1399188696</time>
8171 
				<username>admin@172.24.16.234</username>
8172 
			</created>
8173 
			<updated>
8174 
				<time>1420507340</time>
8175 
				<username>admin@172.24.16.235</username>
8176 
			</updated>
8177 
			<tracker>1424949787</tracker>
8178 
		</rule>
8179 
		<rule>
8180 
			<id/>
8181 
			<type>reject</type>
8182 
			<interface>opt1</interface>
8183 
			<ipprotocol>inet</ipprotocol>
8184 
			<tag/>
8185 
			<tagged/>
8186 
			<max/>
8187 
			<max-src-nodes/>
8188 
			<max-src-conn/>
8189 
			<max-src-states/>
8190 
			<statetimeout/>
8191 
			<statetype>keep state</statetype>
8192 
			<os/>
8193 
			<source>
8194 
				<any/>
8195 
			</source>
8196 
			<destination>
8197 
				<address>PhoneHomeBlocks</address>
8198 
			</destination>
8199 
			<descr><![CDATA[Block specific &quot;app phone home&quot; IPs]]></descr>
8200 
			<created>
8201 
				<time>1389571146</time>
8202 
				<username>admin@172.24.16.234</username>
8203 
			</created>
8204 
			<updated>
8205 
				<time>1400222318</time>
8206 
				<username>admin@172.24.17.234</username>
8207 
			</updated>
8208 
			<tracker>1424949788</tracker>
8209 
		</rule>
8210 
		<rule>
8211 
			<id/>
8212 
			<type>reject</type>
8213 
			<interface>opt1</interface>
8214 
			<ipprotocol>inet</ipprotocol>
8215 
			<tag/>
8216 
			<tagged/>
8217 
			<max/>
8218 
			<max-src-nodes/>
8219 
			<max-src-conn/>
8220 
			<max-src-states/>
8221 
			<statetimeout/>
8222 
			<statetype>keep state</statetype>
8223 
			<os/>
8224 
			<source>
8225 
				<any/>
8226 
			</source>
8227 
			<destination>
8228 
				<address>AdSense</address>
8229 
			</destination>
8230 
			<descr><![CDATA[Prevent AdSense ads from showing on our networks]]></descr>
8231 
			<created>
8232 
				<time>1394348142</time>
8233 
				<username>admin@172.24.16.234</username>
8234 
			</created>
8235 
			<updated>
8236 
				<time>1394840129</time>
8237 
				<username>admin@172.24.16.234</username>
8238 
			</updated>
8239 
			<tracker>1424949789</tracker>
8240 
		</rule>
8241 
		<rule>
8242 
			<id/>
8243 
			<type>reject</type>
8244 
			<interface>opt1</interface>
8245 
			<ipprotocol>inet</ipprotocol>
8246 
			<tag/>
8247 
			<tagged/>
8248 
			<max/>
8249 
			<max-src-nodes/>
8250 
			<max-src-conn/>
8251 
			<max-src-states/>
8252 
			<statetimeout/>
8253 
			<statetype>keep state</statetype>
8254 
			<os/>
8255 
			<source>
8256 
				<any/>
8257 
			</source>
8258 
			<destination>
8259 
				<address>BadGuyBTadsList</address>
8260 
			</destination>
8261 
			<descr><![CDATA[Block LAN2 traffic to Ad trackers]]></descr>
8262 
			<created>
8263 
				<time>1389571344</time>
8264 
				<username>admin@172.24.16.234</username>
8265 
			</created>
8266 
			<updated>
8267 
				<time>1420507662</time>
8268 
				<username>admin@172.24.16.235</username>
8269 
			</updated>
8270 
			<tracker>1424949790</tracker>
8271 
		</rule>
8272 
		<rule>
8273 
			<id/>
8274 
			<type>reject</type>
8275 
			<interface>opt1</interface>
8276 
			<ipprotocol>inet</ipprotocol>
8277 
			<tag/>
8278 
			<tagged/>
8279 
			<max/>
8280 
			<max-src-nodes/>
8281 
			<max-src-conn/>
8282 
			<max-src-states/>
8283 
			<statetimeout/>
8284 
			<statetype>keep state</statetype>
8285 
			<os/>
8286 
			<source>
8287 
				<any/>
8288 
			</source>
8289 
			<destination>
8290 
				<address>BadGuyBTfSpammerList</address>
8291 
			</destination>
8292 
			<descr><![CDATA[Block LAN2 traffic to spammers]]></descr>
8293 
			<created>
8294 
				<time>1389571426</time>
8295 
				<username>admin@172.24.16.234</username>
8296 
			</created>
8297 
			<updated>
8298 
				<time>1400222341</time>
8299 
				<username>admin@172.24.17.234</username>
8300 
			</updated>
8301 
			<tracker>1424949791</tracker>
8302 
		</rule>
8303 
		<rule>
8304 
			<id/>
8305 
			<type>reject</type>
8306 
			<interface>opt1</interface>
8307 
			<ipprotocol>inet</ipprotocol>
8308 
			<tag/>
8309 
			<tagged/>
8310 
			<max/>
8311 
			<max-src-nodes/>
8312 
			<max-src-conn/>
8313 
			<max-src-states/>
8314 
			<statetimeout/>
8315 
			<statetype>keep state</statetype>
8316 
			<os/>
8317 
			<source>
8318 
				<any/>
8319 
			</source>
8320 
			<destination>
8321 
				<address>BadGuyBThijackedList</address>
8322 
			</destination>
8323 
			<descr><![CDATA[Block LAN2 traffic to hijacked systems]]></descr>
8324 
			<created>
8325 
				<time>1389573746</time>
8326 
				<username>admin@172.24.16.234</username>
8327 
			</created>
8328 
			<updated>
8329 
				<time>1400222347</time>
8330 
				<username>admin@172.24.17.234</username>
8331 
			</updated>
8332 
			<tracker>1424949792</tracker>
8333 
		</rule>
8334 
		<rule>
8335 
			<id/>
8336 
			<type>reject</type>
8337 
			<interface>opt1</interface>
8338 
			<ipprotocol>inet</ipprotocol>
8339 
			<tag/>
8340 
			<tagged/>
8341 
			<max/>
8342 
			<max-src-nodes/>
8343 
			<max-src-conn/>
8344 
			<max-src-states/>
8345 
			<statetimeout/>
8346 
			<statetype>keep state</statetype>
8347 
			<os/>
8348 
			<source>
8349 
				<any/>
8350 
			</source>
8351 
			<destination>
8352 
				<address>BadGuyBTshieldList</address>
8353 
			</destination>
8354 
			<descr><![CDATA[Block LAN2 traffic to hacker systems]]></descr>
8355 
			<created>
8356 
				<time>1389573761</time>
8357 
				<username>admin@172.24.16.234</username>
8358 
			</created>
8359 
			<updated>
8360 
				<time>1400222353</time>
8361 
				<username>admin@172.24.17.234</username>
8362 
			</updated>
8363 
			<tracker>1424949793</tracker>
8364 
		</rule>
8365 
		<rule>
8366 
			<id/>
8367 
			<type>reject</type>
8368 
			<interface>opt1</interface>
8369 
			<ipprotocol>inet</ipprotocol>
8370 
			<tag/>
8371 
			<tagged/>
8372 
			<max/>
8373 
			<max-src-nodes/>
8374 
			<max-src-conn/>
8375 
			<max-src-states/>
8376 
			<statetimeout/>
8377 
			<statetype>keep state</statetype>
8378 
			<os/>
8379 
			<source>
8380 
				<any/>
8381 
			</source>
8382 
			<destination>
8383 
				<address>BadGuyBTspiderList</address>
8384 
			</destination>
8385 
			<descr><![CDATA[Block LAN2 traffic to bad spider/crawler's systems]]></descr>
8386 
			<created>
8387 
				<time>1394839953</time>
8388 
				<username>admin@172.24.16.234</username>
8389 
			</created>
8390 
			<updated>
8391 
				<time>1400222360</time>
8392 
				<username>admin@172.24.17.234</username>
8393 
			</updated>
8394 
			<tracker>1424949794</tracker>
8395 
		</rule>
8396 
		<rule>
8397 
			<id/>
8398 
			<type>reject</type>
8399 
			<interface>opt1</interface>
8400 
			<ipprotocol>inet</ipprotocol>
8401 
			<tag/>
8402 
			<tagged/>
8403 
			<max/>
8404 
			<max-src-nodes/>
8405 
			<max-src-conn/>
8406 
			<max-src-states/>
8407 
			<statetimeout/>
8408 
			<statetype>keep state</statetype>
8409 
			<os/>
8410 
			<source>
8411 
				<any/>
8412 
			</source>
8413 
			<destination>
8414 
				<address>BadGuyBTspywareList</address>
8415 
			</destination>
8416 
			<descr><![CDATA[Block LAN2 traffic to spyware systems]]></descr>
8417 
			<created>
8418 
				<time>1389573771</time>
8419 
				<username>admin@172.24.16.234</username>
8420 
			</created>
8421 
			<updated>
8422 
				<time>1400222366</time>
8423 
				<username>admin@172.24.17.234</username>
8424 
			</updated>
8425 
			<tracker>1424949795</tracker>
8426 
		</rule>
8427 
		<rule>
8428 
			<id/>
8429 
			<type>reject</type>
8430 
			<interface>opt1</interface>
8431 
			<ipprotocol>inet</ipprotocol>
8432 
			<tag/>
8433 
			<tagged/>
8434 
			<max/>
8435 
			<max-src-nodes/>
8436 
			<max-src-conn/>
8437 
			<max-src-states/>
8438 
			<statetimeout/>
8439 
			<statetype>keep state</statetype>
8440 
			<os/>
8441 
			<source>
8442 
				<any/>
8443 
			</source>
8444 
			<destination>
8445 
				<address>BadGuyBTwebexploitList</address>
8446 
			</destination>
8447 
			<descr><![CDATA[Block LAN2 traffic to web exploit systems]]></descr>
8448 
			<created>
8449 
				<time>1394843265</time>
8450 
				<username>admin@172.24.16.234</username>
8451 
			</created>
8452 
			<updated>
8453 
				<time>1400222372</time>
8454 
				<username>admin@172.24.17.234</username>
8455 
			</updated>
8456 
			<tracker>1424949796</tracker>
8457 
		</rule>
8458 
		<rule>
8459 
			<id/>
8460 
			<type>reject</type>
8461 
			<interface>opt1</interface>
8462 
			<ipprotocol>inet</ipprotocol>
8463 
			<tag/>
8464 
			<tagged/>
8465 
			<max/>
8466 
			<max-src-nodes/>
8467 
			<max-src-conn/>
8468 
			<max-src-states/>
8469 
			<statetimeout/>
8470 
			<statetype>keep state</statetype>
8471 
			<os/>
8472 
			<source>
8473 
				<any/>
8474 
			</source>
8475 
			<destination>
8476 
				<address>BadGuyDROPlist</address>
8477 
			</destination>
8478 
			<descr><![CDATA[Block LAN2 traffic to criminal-controlled systems]]></descr>
8479 
			<created>
8480 
				<time>1389573781</time>
8481 
				<username>admin@172.24.16.234</username>
8482 
			</created>
8483 
			<updated>
8484 
				<time>1400222379</time>
8485 
				<username>admin@172.24.17.234</username>
8486 
			</updated>
8487 
			<tracker>1424949797</tracker>
8488 
		</rule>
8489 
		<rule>
8490 
			<id/>
8491 
			<type>reject</type>
8492 
			<interface>opt1</interface>
8493 
			<ipprotocol>inet</ipprotocol>
8494 
			<tag/>
8495 
			<tagged/>
8496 
			<max/>
8497 
			<max-src-nodes/>
8498 
			<max-src-conn/>
8499 
			<max-src-states/>
8500 
			<statetimeout/>
8501 
			<statetype>keep state</statetype>
8502 
			<os/>
8503 
			<source>
8504 
				<any/>
8505 
			</source>
8506 
			<destination>
8507 
				<address>BadGuyEDROPlist</address>
8508 
			</destination>
8509 
			<descr><![CDATA[Block LAN2 traffic to criminal-controlled systems]]></descr>
8510 
			<created>
8511 
				<time>1389573791</time>
8512 
				<username>admin@172.24.16.234</username>
8513 
			</created>
8514 
			<updated>
8515 
				<time>1400222385</time>
8516 
				<username>admin@172.24.17.234</username>
8517 
			</updated>
8518 
			<tracker>1424949798</tracker>
8519 
		</rule>
8520 
		<rule>
8521 
			<id/>
8522 
			<type>reject</type>
8523 
			<interface>opt1</interface>
8524 
			<ipprotocol>inet</ipprotocol>
8525 
			<tag/>
8526 
			<tagged/>
8527 
			<max/>
8528 
			<max-src-nodes/>
8529 
			<max-src-conn/>
8530 
			<max-src-states/>
8531 
			<statetimeout/>
8532 
			<statetype>keep state</statetype>
8533 
			<os/>
8534 
			<source>
8535 
				<any/>
8536 
			</source>
8537 
			<destination>
8538 
				<address>BadNets</address>
8539 
			</destination>
8540 
			<descr><![CDATA[Block LAN2 traffic to undesired networks]]></descr>
8541 
			<created>
8542 
				<time>1389573802</time>
8543 
				<username>admin@172.24.16.234</username>
8544 
			</created>
8545 
			<updated>
8546 
				<time>1400222391</time>
8547 
				<username>admin@172.24.17.234</username>
8548 
			</updated>
8549 
			<tracker>1424949799</tracker>
8550 
		</rule>
8551 
		<rule>
8552 
			<id/>
8553 
			<type>reject</type>
8554 
			<interface>opt1</interface>
8555 
			<ipprotocol>inet</ipprotocol>
8556 
			<tag/>
8557 
			<tagged/>
8558 
			<max/>
8559 
			<max-src-nodes/>
8560 
			<max-src-conn/>
8561 
			<max-src-states/>
8562 
			<statetimeout/>
8563 
			<statetype>keep state</statetype>
8564 
			<os/>
8565 
			<source>
8566 
				<any/>
8567 
			</source>
8568 
			<destination>
8569 
				<address>BadGuys</address>
8570 
			</destination>
8571 
			<descr><![CDATA[Block LAN2 traffic to bad-guy systems]]></descr>
8572 
			<created>
8573 
				<time>1389573863</time>
8574 
				<username>admin@172.24.16.234</username>
8575 
			</created>
8576 
			<updated>
8577 
				<time>1400222402</time>
8578 
				<username>admin@172.24.17.234</username>
8579 
			</updated>
8580 
			<tracker>1424949800</tracker>
8581 
		</rule>
8582 
		<rule>
8583 
			<id/>
8584 
			<type>reject</type>
8585 
			<interface>opt1</interface>
8586 
			<ipprotocol>inet</ipprotocol>
8587 
			<tag/>
8588 
			<tagged/>
8589 
			<max/>
8590 
			<max-src-nodes/>
8591 
			<max-src-conn/>
8592 
			<max-src-states/>
8593 
			<statetimeout/>
8594 
			<statetype>keep state</statetype>
8595 
			<os/>
8596 
			<source>
8597 
				<any/>
8598 
			</source>
8599 
			<destination>
8600 
				<address>EmergingThreats</address>
8601 
			</destination>
8602 
			<descr><![CDATA[Block LAN2 traffic to various threat IPs &amp; networks]]></descr>
8603 
			<created>
8604 
				<time>1391395887</time>
8605 
				<username>admin@172.24.16.234</username>
8606 
			</created>
8607 
			<updated>
8608 
				<time>1400222408</time>
8609 
				<username>admin@172.24.17.234</username>
8610 
			</updated>
8611 
			<tracker>1424949801</tracker>
8612 
		</rule>
8613 
		<rule>
8614 
			<id/>
8615 
			<type>reject</type>
8616 
			<interface>opt1</interface>
8617 
			<ipprotocol>inet</ipprotocol>
8618 
			<tag/>
8619 
			<tagged/>
8620 
			<max/>
8621 
			<max-src-nodes/>
8622 
			<max-src-conn/>
8623 
			<max-src-states/>
8624 
			<statetimeout/>
8625 
			<statetype>keep state</statetype>
8626 
			<os/>
8627 
			<source>
8628 
				<any/>
8629 
			</source>
8630 
			<destination>
8631 
				<address>ForumSpammerNets</address>
8632 
			</destination>
8633 
			<descr><![CDATA[Block LAN2 traffic to forum spammer networks]]></descr>
8634 
			<created>
8635 
				<time>1390784601</time>
8636 
				<username>admin@172.24.16.234</username>
8637 
			</created>
8638 
			<updated>
8639 
				<time>1400222413</time>
8640 
				<username>admin@172.24.17.234</username>
8641 
			</updated>
8642 
			<tracker>1424949802</tracker>
8643 
		</rule>
8644 
		<rule>
8645 
			<id/>
8646 
			<type>reject</type>
8647 
			<interface>opt1</interface>
8648 
			<ipprotocol>inet</ipprotocol>
8649 
			<tag/>
8650 
			<tagged/>
8651 
			<max/>
8652 
			<max-src-nodes/>
8653 
			<max-src-conn/>
8654 
			<max-src-states/>
8655 
			<statetimeout/>
8656 
			<statetype>keep state</statetype>
8657 
			<os/>
8658 
			<source>
8659 
				<any/>
8660 
			</source>
8661 
			<destination>
8662 
				<address>ForumSpammers1</address>
8663 
			</destination>
8664 
			<descr><![CDATA[Block LAN2 traffic to forum spammer systems]]></descr>
8665 
			<created>
8666 
				<time>1390784469</time>
8667 
				<username>admin@172.24.16.234</username>
8668 
			</created>
8669 
			<updated>
8670 
				<time>1400222419</time>
8671 
				<username>admin@172.24.17.234</username>
8672 
			</updated>
8673 
			<tracker>1424949803</tracker>
8674 
		</rule>
8675 
		<rule>
8676 
			<id/>
8677 
			<type>reject</type>
8678 
			<interface>opt1</interface>
8679 
			<ipprotocol>inet</ipprotocol>
8680 
			<tag/>
8681 
			<tagged/>
8682 
			<max/>
8683 
			<max-src-nodes/>
8684 
			<max-src-conn/>
8685 
			<max-src-states/>
8686 
			<statetimeout/>
8687 
			<statetype>keep state</statetype>
8688 
			<os/>
8689 
			<source>
8690 
				<any/>
8691 
			</source>
8692 
			<destination>
8693 
				<address>ForumSpammers2</address>
8694 
			</destination>
8695 
			<descr><![CDATA[Block LAN2 traffic to forum spammer systems]]></descr>
8696 
			<created>
8697 
				<time>1390784498</time>
8698 
				<username>admin@172.24.16.234</username>
8699 
			</created>
8700 
			<updated>
8701 
				<time>1400222425</time>
8702 
				<username>admin@172.24.17.234</username>
8703 
			</updated>
8704 
			<tracker>1424949804</tracker>
8705 
		</rule>
8706 
		<rule>
8707 
			<id/>
8708 
			<type>reject</type>
8709 
			<interface>opt1</interface>
8710 
			<ipprotocol>inet</ipprotocol>
8711 
			<tag/>
8712 
			<tagged/>
8713 
			<max/>
8714 
			<max-src-nodes/>
8715 
			<max-src-conn/>
8716 
			<max-src-states/>
8717 
			<statetimeout/>
8718 
			<statetype>keep state</statetype>
8719 
			<os/>
8720 
			<source>
8721 
				<any/>
8722 
			</source>
8723 
			<destination>
8724 
				<address>ForumSpammers3</address>
8725 
			</destination>
8726 
			<descr><![CDATA[Block LAN2 traffic to forum spammer systems]]></descr>
8727 
			<created>
8728 
				<time>1390784575</time>
8729 
				<username>admin@172.24.16.234</username>
8730 
			</created>
8731 
			<updated>
8732 
				<time>1400222432</time>
8733 
				<username>admin@172.24.17.234</username>
8734 
			</updated>
8735 
			<tracker>1424949805</tracker>
8736 
		</rule>
8737 
		<rule>
8738 
			<id/>
8739 
			<type>reject</type>
8740 
			<interface>opt1</interface>
8741 
			<ipprotocol>inet</ipprotocol>
8742 
			<tag/>
8743 
			<tagged/>
8744 
			<max/>
8745 
			<max-src-nodes/>
8746 
			<max-src-conn/>
8747 
			<max-src-states/>
8748 
			<statetimeout/>
8749 
			<statetype>keep state</statetype>
8750 
			<os/>
8751 
			<source>
8752 
				<any/>
8753 
			</source>
8754 
			<destination>
8755 
				<address>ForumSpammers4</address>
8756 
			</destination>
8757 
			<descr><![CDATA[Block LAN2 traffic to forum spammer systems]]></descr>
8758 
			<created>
8759 
				<time>1390784721</time>
8760 
				<username>admin@172.24.16.234</username>
8761 
			</created>
8762 
			<updated>
8763 
				<time>1400222438</time>
8764 
				<username>admin@172.24.17.234</username>
8765 
			</updated>
8766 
			<tracker>1424949806</tracker>
8767 
		</rule>
8768 
		<rule>
8769 
			<id/>
8770 
			<type>reject</type>
8771 
			<interface>opt1</interface>
8772 
			<ipprotocol>inet</ipprotocol>
8773 
			<tag/>
8774 
			<tagged/>
8775 
			<max/>
8776 
			<max-src-nodes/>
8777 
			<max-src-conn/>
8778 
			<max-src-states/>
8779 
			<statetimeout/>
8780 
			<statetype>keep state</statetype>
8781 
			<os/>
8782 
			<source>
8783 
				<any/>
8784 
			</source>
8785 
			<destination>
8786 
				<address>ForumSpammers5</address>
8787 
			</destination>
8788 
			<descr><![CDATA[Block LAN2 traffic to forum spammer systems]]></descr>
8789 
			<created>
8790 
				<time>1390784694</time>
8791 
				<username>admin@172.24.16.234</username>
8792 
			</created>
8793 
			<updated>
8794 
				<time>1400222444</time>
8795 
				<username>admin@172.24.17.234</username>
8796 
			</updated>
8797 
			<tracker>1424949807</tracker>
8798 
		</rule>
8799 
		<rule>
8800 
			<id/>
8801 
			<type>reject</type>
8802 
			<interface>opt1</interface>
8803 
			<ipprotocol>inet</ipprotocol>
8804 
			<tag/>
8805 
			<tagged/>
8806 
			<max/>
8807 
			<max-src-nodes/>
8808 
			<max-src-conn/>
8809 
			<max-src-states/>
8810 
			<statetimeout/>
8811 
			<statetype>keep state</statetype>
8812 
			<os/>
8813 
			<source>
8814 
				<any/>
8815 
			</source>
8816 
			<destination>
8817 
				<address>MalwareSites</address>
8818 
			</destination>
8819 
			<descr><![CDATA[Block LAN2 traffic to malware systems]]></descr>
8820 
			<updated>
8821 
				<time>1422573555</time>
8822 
				<username>admin@172.24.16.235</username>
8823 
			</updated>
8824 
			<created>
8825 
				<time>1422573555</time>
8826 
				<username>admin@172.24.16.235</username>
8827 
			</created>
8828 
			<tracker>1424949808</tracker>
8829 
		</rule>
8830 
		<rule>
8831 
			<id/>
8832 
			<type>reject</type>
8833 
			<interface>opt1</interface>
8834 
			<ipprotocol>inet</ipprotocol>
8835 
			<tag/>
8836 
			<tagged/>
8837 
			<max/>
8838 
			<max-src-nodes/>
8839 
			<max-src-conn/>
8840 
			<max-src-states/>
8841 
			<statetimeout/>
8842 
			<statetype>keep state</statetype>
8843 
			<os/>
8844 
			<source>
8845 
				<address>WiFiRouters</address>
8846 
			</source>
8847 
			<destination>
8848 
				<address>DEIsLAN3</address>
8849 
			</destination>
8850 
			<descr><![CDATA[Block WiFi router access to LAN3]]></descr>
8851 
			<created>
8852 
				<time>1423795746</time>
8853 
				<username>admin@172.24.16.235</username>
8854 
			</created>
8855 
			<updated>
8856 
				<time>1423795772</time>
8857 
				<username>admin@172.24.16.235</username>
8858 
			</updated>
8859 
			<tracker>1424949809</tracker>
8860 
		</rule>
8861 
		<rule>
8862 
			<id/>
8863 
			<type>pass</type>
8864 
			<interface>opt1</interface>
8865 
			<ipprotocol>inet</ipprotocol>
8866 
			<tag/>
8867 
			<tagged/>
8868 
			<max/>
8869 
			<max-src-nodes/>
8870 
			<max-src-conn/>
8871 
			<max-src-states/>
8872 
			<statetimeout/>
8873 
			<statetype>keep state</statetype>
8874 
			<os/>
8875 
			<source>
8876 
				<address>aTVmainAirplayers</address>
8877 
			</source>
8878 
			<destination>
8879 
				<address>aTVmain</address>
8880 
			</destination>
8881 
			<descr><![CDATA[Allow some devices to airplay with main Apple TV]]></descr>
8882 
			<updated>
8883 
				<time>1423790908</time>
8884 
				<username>admin@172.24.16.235</username>
8885 
			</updated>
8886 
			<created>
8887 
				<time>1423790908</time>
8888 
				<username>admin@172.24.16.235</username>
8889 
			</created>
8890 
			<tracker>1424949810</tracker>
8891 
		</rule>
8892 
		<rule>
8893 
			<id/>
8894 
			<type>pass</type>
8895 
			<interface>opt1</interface>
8896 
			<ipprotocol>inet</ipprotocol>
8897 
			<tag/>
8898 
			<tagged/>
8899 
			<max/>
8900 
			<max-src-nodes/>
8901 
			<max-src-conn/>
8902 
			<max-src-states/>
8903 
			<statetimeout/>
8904 
			<statetype>keep state</statetype>
8905 
			<os/>
8906 
			<source>
8907 
				<address>DEIwirelessGuests</address>
8908 
			</source>
8909 
			<destination>
8910 
				<address>aTVmain</address>
8911 
			</destination>
8912 
			<descr><![CDATA[Allow WiFi guests to airplay with main Apple TV]]></descr>
8913 
			<created>
8914 
				<time>1423785607</time>
8915 
				<username>admin@172.24.16.235</username>
8916 
			</created>
8917 
			<updated>
8918 
				<time>1423787053</time>
8919 
				<username>admin@172.24.16.235</username>
8920 
			</updated>
8921 
			<tracker>1424949811</tracker>
8922 
		</rule>
8923 
		<rule>
8924 
			<id/>
8925 
			<type>reject</type>
8926 
			<interface>opt1</interface>
8927 
			<ipprotocol>inet</ipprotocol>
8928 
			<tag/>
8929 
			<tagged/>
8930 
			<max/>
8931 
			<max-src-nodes/>
8932 
			<max-src-conn/>
8933 
			<max-src-states/>
8934 
			<statetimeout/>
8935 
			<statetype>keep state</statetype>
8936 
			<os/>
8937 
			<source>
8938 
				<address>DEIwirelessGuests</address>
8939 
			</source>
8940 
			<destination>
8941 
				<address>NotLAN2lans</address>
8942 
			</destination>
8943 
			<descr><![CDATA[Prevent WiFi guests' access to any other LANs]]></descr>
8944 
			<created>
8945 
				<time>1392329477</time>
8946 
				<username>admin@172.24.16.234</username>
8947 
			</created>
8948 
			<updated>
8949 
				<time>1419325668</time>
8950 
				<username>admin@172.24.16.235</username>
8951 
			</updated>
8952 
			<tracker>1424949812</tracker>
8953 
		</rule>
8954 
		<rule>
8955 
			<id/>
8956 
			<type>reject</type>
8957 
			<interface>opt1</interface>
8958 
			<ipprotocol>inet</ipprotocol>
8959 
			<tag/>
8960 
			<tagged/>
8961 
			<max/>
8962 
			<max-src-nodes/>
8963 
			<max-src-conn/>
8964 
			<max-src-states/>
8965 
			<statetimeout/>
8966 
			<statetype>keep state</statetype>
8967 
			<os/>
8968 
			<source>
8969 
				<address>aTVs</address>
8970 
			</source>
8971 
			<destination>
8972 
				<address>NotLAN2lans</address>
8973 
			</destination>
8974 
			<descr><![CDATA[Prevent AppleTV access to any other LANs]]></descr>
8975 
			<updated>
8976 
				<time>1420923837</time>
8977 
				<username>admin@172.24.16.235</username>
8978 
			</updated>
8979 
			<created>
8980 
				<time>1420923837</time>
8981 
				<username>admin@172.24.16.235</username>
8982 
			</created>
8983 
			<tracker>1424949813</tracker>
8984 
		</rule>
8985 
		<rule>
8986 
			<id/>
8987 
			<type>pass</type>
8988 
			<interface>opt1</interface>
8989 
			<ipprotocol>inet</ipprotocol>
8990 
			<tag/>
8991 
			<tagged/>
8992 
			<max/>
8993 
			<max-src-nodes/>
8994 
			<max-src-conn/>
8995 
			<max-src-states/>
8996 
			<statetimeout/>
8997 
			<statetype>keep state</statetype>
8998 
			<os/>
8999 
			<protocol>tcp</protocol>
9000 
			<source>
9001 
				<address>NUTclientsOnLAN2</address>
9002 
			</source>
9003 
			<destination>
9004 
				<address>pfSenseInternal</address>
9005 
				<port>NUTport</port>
9006 
			</destination>
9007 
			<descr><![CDATA[NAT Allow certain NUT clients on LAN2]]></descr>
9008 
			<associated-rule-id>nat_52c28163251599.67326802</associated-rule-id>
9009 
			<created>
9010 
				<time>1388478819</time>
9011 
				<username>NAT Port Forward</username>
9012 
			</created>
9013 
			<updated>
9014 
				<time>1388655953</time>
9015 
				<username>admin@172.24.17.234</username>
9016 
			</updated>
9017 
			<tracker>1424949814</tracker>
9018 
		</rule>
9019 
		<rule>
9020 
			<id/>
9021 
			<type>pass</type>
9022 
			<interface>opt1</interface>
9023 
			<ipprotocol>inet</ipprotocol>
9024 
			<tag/>
9025 
			<tagged/>
9026 
			<max/>
9027 
			<max-src-nodes/>
9028 
			<max-src-conn/>
9029 
			<max-src-states/>
9030 
			<statetimeout/>
9031 
			<statetype>keep state</statetype>
9032 
			<os/>
9033 
			<source>
9034 
				<address>InternalOnlySystems</address>
9035 
			</source>
9036 
			<destination>
9037 
				<address>InternalOnlyDestinations</address>
9038 
			</destination>
9039 
			<descr><![CDATA[Allow &quot;internal only&quot; servers to internal addresses]]></descr>
9040 
			<updated>
9041 
				<time>1420587603</time>
9042 
				<username>admin@172.24.16.235</username>
9043 
			</updated>
9044 
			<created>
9045 
				<time>1420587603</time>
9046 
				<username>admin@172.24.16.235</username>
9047 
			</created>
9048 
			<tracker>1424949815</tracker>
9049 
		</rule>
9050 
		<rule>
9051 
			<id/>
9052 
			<tracker>1425942349</tracker>
9053 
			<type>reject</type>
9054 
			<interface>opt1</interface>
9055 
			<ipprotocol>inet</ipprotocol>
9056 
			<tag/>
9057 
			<tagged/>
9058 
			<max/>
9059 
			<max-src-nodes/>
9060 
			<max-src-conn/>
9061 
			<max-src-states/>
9062 
			<statetimeout/>
9063 
			<statetype>keep state</statetype>
9064 
			<os/>
9065 
			<source>
9066 
				<address>InternalOnlySystems</address>
9067 
			</source>
9068 
			<destination>
9069 
				<address>InternalOnlyBlocks</address>
9070 
			</destination>
9071 
			<descr><![CDATA[Block &quot;internal only&quot; server's &quot;phone home&quot; traffic]]></descr>
9072 
			<updated>
9073 
				<time>1425942349</time>
9074 
				<username>admin@172.24.16.235</username>
9075 
			</updated>
9076 
			<created>
9077 
				<time>1425942349</time>
9078 
				<username>admin@172.24.16.235</username>
9079 
			</created>
9080 
		</rule>
9081 
		<rule>
9082 
			<id/>
9083 
			<tracker>1424949816</tracker>
9084 
			<type>reject</type>
9085 
			<interface>opt1</interface>
9086 
			<ipprotocol>inet</ipprotocol>
9087 
			<tag/>
9088 
			<tagged/>
9089 
			<max/>
9090 
			<max-src-nodes/>
9091 
			<max-src-conn/>
9092 
			<max-src-states/>
9093 
			<statetimeout/>
9094 
			<statetype>keep state</statetype>
9095 
			<os/>
9096 
			<source>
9097 
				<address>InternalOnlySystems</address>
9098 
			</source>
9099 
			<destination>
9100 
				<any/>
9101 
			</destination>
9102 
			<log/>
9103 
			<descr><![CDATA[Block &quot;internal only&quot; server's traffic to I'net]]></descr>
9104 
			<created>
9105 
				<time>1420587662</time>
9106 
				<username>admin@172.24.16.235</username>
9107 
			</created>
9108 
			<updated>
9109 
				<time>1425942377</time>
9110 
				<username>admin@172.24.16.235</username>
9111 
			</updated>
9112 
		</rule>
9113 
		<rule>
9114 
			<id/>
9115 
			<type>pass</type>
9116 
			<interface>opt1</interface>
9117 
			<ipprotocol>inet</ipprotocol>
9118 
			<tag/>
9119 
			<tagged/>
9120 
			<max/>
9121 
			<max-src-nodes/>
9122 
			<max-src-conn/>
9123 
			<max-src-states/>
9124 
			<statetimeout/>
9125 
			<statetype>keep state</statetype>
9126 
			<os/>
9127 
			<source>
9128 
				<address>NoInetLAN2devices</address>
9129 
			</source>
9130 
			<destination>
9131 
				<address>DEIsLAN2</address>
9132 
			</destination>
9133 
			<descr><![CDATA[Allow LAN2's &quot;no I'net&quot; devices access to LAN2]]></descr>
9134 
			<created>
9135 
				<time>1420454581</time>
9136 
				<username>admin@172.24.16.235</username>
9137 
			</created>
9138 
			<updated>
9139 
				<time>1420500522</time>
9140 
				<username>admin@172.24.16.235</username>
9141 
			</updated>
9142 
			<tracker>1424949817</tracker>
9143 
		</rule>
9144 
		<rule>
9145 
			<id/>
9146 
			<type>reject</type>
9147 
			<interface>opt1</interface>
9148 
			<ipprotocol>inet</ipprotocol>
9149 
			<tag/>
9150 
			<tagged/>
9151 
			<max/>
9152 
			<max-src-nodes/>
9153 
			<max-src-conn/>
9154 
			<max-src-states/>
9155 
			<statetimeout/>
9156 
			<statetype>keep state</statetype>
9157 
			<os/>
9158 
			<source>
9159 
				<address>NoInetLAN2devices</address>
9160 
			</source>
9161 
			<destination>
9162 
				<any/>
9163 
			</destination>
9164 
			<descr><![CDATA[Block LAN2's &quot;no I'net&quot; devices from the I'net]]></descr>
9165 
			<created>
9166 
				<time>1420454635</time>
9167 
				<username>admin@172.24.16.235</username>
9168 
			</created>
9169 
			<updated>
9170 
				<time>1420500507</time>
9171 
				<username>admin@172.24.16.235</username>
9172 
			</updated>
9173 
			<tracker>1424949818</tracker>
9174 
		</rule>
9175 
		<rule>
9176 
			<id/>
9177 
			<type>pass</type>
9178 
			<interface>opt1</interface>
9179 
			<ipprotocol>inet</ipprotocol>
9180 
			<tag/>
9181 
			<tagged/>
9182 
			<max/>
9183 
			<max-src-nodes/>
9184 
			<max-src-conn/>
9185 
			<max-src-states/>
9186 
			<statetimeout/>
9187 
			<statetype>keep state</statetype>
9188 
			<os/>
9189 
			<source>
9190 
				<any/>
9191 
			</source>
9192 
			<destination>
9193 
				<any/>
9194 
			</destination>
9195 
			<descr><![CDATA[Pass (remaining) IPv4 LAN2 traffic to I'net]]></descr>
9196 
			<created>
9197 
				<time>1388538287</time>
9198 
				<username>admin@172.24.17.234</username>
9199 
			</created>
9200 
			<updated>
9201 
				<time>1419238533</time>
9202 
				<username>admin@172.24.16.235</username>
9203 
			</updated>
9204 
			<tracker>1424949819</tracker>
9205 
		</rule>
9206 
		<rule>
9207 
			<id/>
9208 
			<type>reject</type>
9209 
			<interface>opt1</interface>
9210 
			<ipprotocol>inet</ipprotocol>
9211 
			<tag/>
9212 
			<tagged/>
9213 
			<max/>
9214 
			<max-src-nodes/>
9215 
			<max-src-conn/>
9216 
			<max-src-states/>
9217 
			<statetimeout/>
9218 
			<statetype>keep state</statetype>
9219 
			<os/>
9220 
			<source>
9221 
				<any/>
9222 
			</source>
9223 
			<destination>
9224 
				<any/>
9225 
			</destination>
9226 
			<descr><![CDATA[Block remaining IPv4 LAN2 traffic]]></descr>
9227 
			<created>
9228 
				<time>1388475082</time>
9229 
				<username>admin@172.24.17.234</username>
9230 
			</created>
9231 
			<updated>
9232 
				<time>1424915998</time>
9233 
				<username>admin@172.24.16.235</username>
9234 
			</updated>
9235 
			<tracker>1424949820</tracker>
9236 
		</rule>
9237 
		<rule>
9238 
			<id/>
9239 
			<type>block</type>
9240 
			<interface>opt1</interface>
9241 
			<ipprotocol>inet6</ipprotocol>
9242 
			<tag/>
9243 
			<tagged/>
9244 
			<max/>
9245 
			<max-src-nodes/>
9246 
			<max-src-conn/>
9247 
			<max-src-states/>
9248 
			<statetimeout/>
9249 
			<statetype>keep state</statetype>
9250 
			<os/>
9251 
			<source>
9252 
				<any/>
9253 
			</source>
9254 
			<destination>
9255 
				<any/>
9256 
			</destination>
9257 
			<descr><![CDATA[Block remaining IPv6 LAN2 traffic]]></descr>
9258 
			<created>
9259 
				<time>1390088197</time>
9260 
				<username>admin@172.24.16.234</username>
9261 
			</created>
9262 
			<updated>
9263 
				<time>1424478497</time>
9264 
				<username>admin@172.24.16.235</username>
9265 
			</updated>
9266 
			<tracker>1424949821</tracker>
9267 
		</rule>
9268 
		<rule>
9269 
			<id/>
9270 
			<tracker>1425775446</tracker>
9271 
			<type>reject</type>
9272 
			<interface>opt2</interface>
9273 
			<ipprotocol>inet</ipprotocol>
9274 
			<tag/>
9275 
			<tagged/>
9276 
			<max/>
9277 
			<max-src-nodes/>
9278 
			<max-src-conn/>
9279 
			<max-src-states/>
9280 
			<statetimeout/>
9281 
			<statetype>keep state</statetype>
9282 
			<os/>
9283 
			<protocol>tcp/udp</protocol>
9284 
			<source>
9285 
				<any/>
9286 
			</source>
9287 
			<destination>
9288 
				<any/>
9289 
				<port>NetBIOSports</port>
9290 
			</destination>
9291 
			<descr><![CDATA[Block NetBIOS traffic]]></descr>
9292 
			<created>
9293 
				<time>1425775446</time>
9294 
				<username>admin@172.24.16.235</username>
9295 
			</created>
9296 
			<updated>
9297 
				<time>1425947091</time>
9298 
				<username>admin@172.24.16.235</username>
9299 
			</updated>
9300 
		</rule>
9301 
		<rule>
9302 
			<id/>
9303 
			<type>reject</type>
9304 
			<interface>opt2</interface>
9305 
			<ipprotocol>inet</ipprotocol>
9306 
			<tag/>
9307 
			<tagged/>
9308 
			<max/>
9309 
			<max-src-nodes/>
9310 
			<max-src-conn/>
9311 
			<max-src-states/>
9312 
			<statetimeout/>
9313 
			<statetype>keep state</statetype>
9314 
			<os/>
9315 
			<protocol>tcp/udp</protocol>
9316 
			<source>
9317 
				<any/>
9318 
			</source>
9319 
			<destination>
9320 
				<address>NotLAN3lans</address>
9321 
				<port>NonCrossLANports</port>
9322 
			</destination>
9323 
			<descr><![CDATA[Block certain cross-LAN traffic going out from LAN3]]></descr>
9324 
			<created>
9325 
				<time>1422792297</time>
9326 
				<username>admin@172.24.16.235</username>
9327 
			</created>
9328 
			<updated>
9329 
				<time>1422827413</time>
9330 
				<username>admin@172.24.16.235</username>
9331 
			</updated>
9332 
			<tracker>1424949822</tracker>
9333 
		</rule>
9334 
		<rule>
9335 
			<id/>
9336 
			<type>reject</type>
9337 
			<interface>opt2</interface>
9338 
			<ipprotocol>inet</ipprotocol>
9339 
			<tag/>
9340 
			<tagged/>
9341 
			<max/>
9342 
			<max-src-nodes/>
9343 
			<max-src-conn/>
9344 
			<max-src-states/>
9345 
			<statetimeout/>
9346 
			<statetype>keep state</statetype>
9347 
			<os/>
9348 
			<protocol>udp</protocol>
9349 
			<source>
9350 
				<address>TestRouter</address>
9351 
				<port>mDNSport</port>
9352 
			</source>
9353 
			<destination>
9354 
				<any/>
9355 
			</destination>
9356 
			<descr><![CDATA[Block mDNS (Avahi) from pfSense test router]]></descr>
9357 
			<updated>
9358 
				<time>1424395454</time>
9359 
				<username>admin@172.24.16.235</username>
9360 
			</updated>
9361 
			<created>
9362 
				<time>1424395454</time>
9363 
				<username>admin@172.24.16.235</username>
9364 
			</created>
9365 
			<tracker>1424949823</tracker>
9366 
		</rule>
9367 
		<rule>
9368 
			<id/>
9369 
			<type>reject</type>
9370 
			<interface>opt2</interface>
9371 
			<ipprotocol>inet</ipprotocol>
9372 
			<tag/>
9373 
			<tagged/>
9374 
			<max/>
9375 
			<max-src-nodes/>
9376 
			<max-src-conn/>
9377 
			<max-src-states/>
9378 
			<statetimeout/>
9379 
			<statetype>keep state</statetype>
9380 
			<os/>
9381 
			<source>
9382 
				<any/>
9383 
			</source>
9384 
			<destination>
9385 
				<address>IPv4linkLocalNetBlk</address>
9386 
			</destination>
9387 
			<log/>
9388 
			<descr><![CDATA[Block traffic to IPv4 link-local addresses]]></descr>
9389 
			<updated>
9390 
				<time>1424937104</time>
9391 
				<username>admin@172.24.16.235</username>
9392 
			</updated>
9393 
			<created>
9394 
				<time>1424937104</time>
9395 
				<username>admin@172.24.16.235</username>
9396 
			</created>
9397 
			<tracker>1424949824</tracker>
9398 
		</rule>
9399 
		<rule>
9400 
			<id/>
9401 
			<type>pass</type>
9402 
			<interface>opt2</interface>
9403 
			<ipprotocol>inet</ipprotocol>
9404 
			<tag/>
9405 
			<tagged/>
9406 
			<max/>
9407 
			<max-src-nodes/>
9408 
			<max-src-conn/>
9409 
			<max-src-states/>
9410 
			<statetimeout/>
9411 
			<statetype>keep state</statetype>
9412 
			<os/>
9413 
			<source>
9414 
				<address>WhitelistedHosts</address>
9415 
			</source>
9416 
			<destination>
9417 
				<address>WhitelistedDestinations</address>
9418 
			</destination>
9419 
			<descr><![CDATA[Allow whitelisted hosts to whitelisted addresses]]></descr>
9420 
			<updated>
9421 
				<time>1420510545</time>
9422 
				<username>admin@172.24.16.235</username>
9423 
			</updated>
9424 
			<created>
9425 
				<time>1420510545</time>
9426 
				<username>admin@172.24.16.235</username>
9427 
			</created>
9428 
			<tracker>1424949825</tracker>
9429 
		</rule>
9430 
		<rule>
9431 
			<id/>
9432 
			<type>reject</type>
9433 
			<interface>opt2</interface>
9434 
			<ipprotocol>inet</ipprotocol>
9435 
			<tag/>
9436 
			<tagged/>
9437 
			<max/>
9438 
			<max-src-nodes/>
9439 
			<max-src-conn/>
9440 
			<max-src-states/>
9441 
			<statetimeout/>
9442 
			<statetype>keep state</statetype>
9443 
			<os/>
9444 
			<source>
9445 
				<any/>
9446 
			</source>
9447 
			<destination>
9448 
				<address>AdBlockServer</address>
9449 
			</destination>
9450 
			<descr><![CDATA[Prevent traffic to IPv4 Ad-block server]]></descr>
9451 
			<created>
9452 
				<time>1401085084</time>
9453 
				<username>admin@172.24.16.234</username>
9454 
			</created>
9455 
			<updated>
9456 
				<time>1420510082</time>
9457 
				<username>admin@172.24.16.235</username>
9458 
			</updated>
9459 
			<tracker>1424949826</tracker>
9460 
		</rule>
9461 
		<rule>
9462 
			<id/>
9463 
			<type>reject</type>
9464 
			<interface>opt2</interface>
9465 
			<ipprotocol>inet6</ipprotocol>
9466 
			<tag/>
9467 
			<tagged/>
9468 
			<max/>
9469 
			<max-src-nodes/>
9470 
			<max-src-conn/>
9471 
			<max-src-states/>
9472 
			<statetimeout/>
9473 
			<statetype>keep state</statetype>
9474 
			<os/>
9475 
			<source>
9476 
				<any/>
9477 
			</source>
9478 
			<destination>
9479 
				<address>AdBlockServer</address>
9480 
			</destination>
9481 
			<descr><![CDATA[Prevent traffic to IPv6 Ad-block server]]></descr>
9482 
			<created>
9483 
				<time>1399188733</time>
9484 
				<username>admin@172.24.16.234</username>
9485 
			</created>
9486 
			<updated>
9487 
				<time>1420510067</time>
9488 
				<username>admin@172.24.16.235</username>
9489 
			</updated>
9490 
			<tracker>1424949827</tracker>
9491 
		</rule>
9492 
		<rule>
9493 
			<id/>
9494 
			<type>reject</type>
9495 
			<interface>opt2</interface>
9496 
			<ipprotocol>inet</ipprotocol>
9497 
			<tag/>
9498 
			<tagged/>
9499 
			<max/>
9500 
			<max-src-nodes/>
9501 
			<max-src-conn/>
9502 
			<max-src-states/>
9503 
			<statetimeout/>
9504 
			<statetype>keep state</statetype>
9505 
			<os/>
9506 
			<source>
9507 
				<any/>
9508 
			</source>
9509 
			<destination>
9510 
				<address>PhoneHomeBlocks</address>
9511 
			</destination>
9512 
			<descr><![CDATA[Block specific &quot;app phone home&quot; IPs]]></descr>
9513 
			<created>
9514 
				<time>1399188144</time>
9515 
				<username>admin@172.24.16.234</username>
9516 
			</created>
9517 
			<updated>
9518 
				<time>1400222556</time>
9519 
				<username>admin@172.24.17.234</username>
9520 
			</updated>
9521 
			<tracker>1424949828</tracker>
9522 
		</rule>
9523 
		<rule>
9524 
			<id/>
9525 
			<type>reject</type>
9526 
			<interface>opt2</interface>
9527 
			<ipprotocol>inet</ipprotocol>
9528 
			<tag/>
9529 
			<tagged/>
9530 
			<max/>
9531 
			<max-src-nodes/>
9532 
			<max-src-conn/>
9533 
			<max-src-states/>
9534 
			<statetimeout/>
9535 
			<statetype>keep state</statetype>
9536 
			<os/>
9537 
			<source>
9538 
				<address>PrivateWebServers</address>
9539 
				<not/>
9540 
			</source>
9541 
			<destination>
9542 
				<address>AdSense</address>
9543 
			</destination>
9544 
			<descr><![CDATA[Prevent AdSense ads from showing on our networks]]></descr>
9545 
			<created>
9546 
				<time>1399188788</time>
9547 
				<username>admin@172.24.16.234</username>
9548 
			</created>
9549 
			<updated>
9550 
				<time>1419074362</time>
9551 
				<username>admin@172.24.16.235</username>
9552 
			</updated>
9553 
			<tracker>1424949829</tracker>
9554 
		</rule>
9555 
		<rule>
9556 
			<id/>
9557 
			<type>reject</type>
9558 
			<interface>opt2</interface>
9559 
			<ipprotocol>inet</ipprotocol>
9560 
			<tag/>
9561 
			<tagged/>
9562 
			<max/>
9563 
			<max-src-nodes/>
9564 
			<max-src-conn/>
9565 
			<max-src-states/>
9566 
			<statetimeout/>
9567 
			<statetype>keep state</statetype>
9568 
			<os/>
9569 
			<source>
9570 
				<address>PrivateWebServers</address>
9571 
				<not/>
9572 
			</source>
9573 
			<destination>
9574 
				<address>BadGuyBTadsList</address>
9575 
			</destination>
9576 
			<descr><![CDATA[Block nonPublic-server traffic to Ad trackers]]></descr>
9577 
			<created>
9578 
				<time>1399189225</time>
9579 
				<username>admin@172.24.16.234</username>
9580 
			</created>
9581 
			<updated>
9582 
				<time>1420509750</time>
9583 
				<username>admin@172.24.16.235</username>
9584 
			</updated>
9585 
			<tracker>1424949830</tracker>
9586 
		</rule>
9587 
		<rule>
9588 
			<id/>
9589 
			<type>reject</type>
9590 
			<interface>opt2</interface>
9591 
			<ipprotocol>inet</ipprotocol>
9592 
			<tag/>
9593 
			<tagged/>
9594 
			<max/>
9595 
			<max-src-nodes/>
9596 
			<max-src-conn/>
9597 
			<max-src-states/>
9598 
			<statetimeout/>
9599 
			<statetype>keep state</statetype>
9600 
			<os/>
9601 
			<source>
9602 
				<any/>
9603 
			</source>
9604 
			<destination>
9605 
				<address>BadGuyBTfSpammerList</address>
9606 
			</destination>
9607 
			<descr><![CDATA[Block LAN3 traffic to spammers]]></descr>
9608 
			<created>
9609 
				<time>1399188531</time>
9610 
				<username>admin@172.24.16.234</username>
9611 
			</created>
9612 
			<updated>
9613 
				<time>1400222569</time>
9614 
				<username>admin@172.24.17.234</username>
9615 
			</updated>
9616 
			<tracker>1424949831</tracker>
9617 
		</rule>
9618 
		<rule>
9619 
			<id/>
9620 
			<type>reject</type>
9621 
			<interface>opt2</interface>
9622 
			<ipprotocol>inet</ipprotocol>
9623 
			<tag/>
9624 
			<tagged/>
9625 
			<max/>
9626 
			<max-src-nodes/>
9627 
			<max-src-conn/>
9628 
			<max-src-states/>
9629 
			<statetimeout/>
9630 
			<statetype>keep state</statetype>
9631 
			<os/>
9632 
			<source>
9633 
				<any/>
9634 
			</source>
9635 
			<destination>
9636 
				<address>BadGuyBThijackedList</address>
9637 
			</destination>
9638 
			<descr><![CDATA[Block LAN3 traffic to hijacked systems]]></descr>
9639 
			<created>
9640 
				<time>1399188522</time>
9641 
				<username>admin@172.24.16.234</username>
9642 
			</created>
9643 
			<updated>
9644 
				<time>1400222575</time>
9645 
				<username>admin@172.24.17.234</username>
9646 
			</updated>
9647 
			<tracker>1424949832</tracker>
9648 
		</rule>
9649 
		<rule>
9650 
			<id/>
9651 
			<type>reject</type>
9652 
			<interface>opt2</interface>
9653 
			<ipprotocol>inet</ipprotocol>
9654 
			<tag/>
9655 
			<tagged/>
9656 
			<max/>
9657 
			<max-src-nodes/>
9658 
			<max-src-conn/>
9659 
			<max-src-states/>
9660 
			<statetimeout/>
9661 
			<statetype>keep state</statetype>
9662 
			<os/>
9663 
			<source>
9664 
				<any/>
9665 
			</source>
9666 
			<destination>
9667 
				<address>BadGuyBTshieldList</address>
9668 
			</destination>
9669 
			<descr><![CDATA[Block LAN3 traffic to hacker systems]]></descr>
9670 
			<created>
9671 
				<time>1399188513</time>
9672 
				<username>admin@172.24.16.234</username>
9673 
			</created>
9674 
			<updated>
9675 
				<time>1400222581</time>
9676 
				<username>admin@172.24.17.234</username>
9677 
			</updated>
9678 
			<tracker>1424949833</tracker>
9679 
		</rule>
9680 
		<rule>
9681 
			<id/>
9682 
			<type>reject</type>
9683 
			<interface>opt2</interface>
9684 
			<ipprotocol>inet</ipprotocol>
9685 
			<tag/>
9686 
			<tagged/>
9687 
			<max/>
9688 
			<max-src-nodes/>
9689 
			<max-src-conn/>
9690 
			<max-src-states/>
9691 
			<statetimeout/>
9692 
			<statetype>keep state</statetype>
9693 
			<os/>
9694 
			<source>
9695 
				<any/>
9696 
			</source>
9697 
			<destination>
9698 
				<address>BadGuyBTspiderList</address>
9699 
			</destination>
9700 
			<descr><![CDATA[Block LAN3 traffic to bad spider/crawler's systems]]></descr>
9701 
			<created>
9702 
				<time>1399188503</time>
9703 
				<username>admin@172.24.16.234</username>
9704 
			</created>
9705 
			<updated>
9706 
				<time>1400222588</time>
9707 
				<username>admin@172.24.17.234</username>
9708 
			</updated>
9709 
			<tracker>1424949834</tracker>
9710 
		</rule>
9711 
		<rule>
9712 
			<id/>
9713 
			<type>reject</type>
9714 
			<interface>opt2</interface>
9715 
			<ipprotocol>inet</ipprotocol>
9716 
			<tag/>
9717 
			<tagged/>
9718 
			<max/>
9719 
			<max-src-nodes/>
9720 
			<max-src-conn/>
9721 
			<max-src-states/>
9722 
			<statetimeout/>
9723 
			<statetype>keep state</statetype>
9724 
			<os/>
9725 
			<source>
9726 
				<any/>
9727 
			</source>
9728 
			<destination>
9729 
				<address>BadGuyBTspywareList</address>
9730 
			</destination>
9731 
			<descr><![CDATA[Block LAN3 traffic to spyware systems]]></descr>
9732 
			<created>
9733 
				<time>1399188493</time>
9734 
				<username>admin@172.24.16.234</username>
9735 
			</created>
9736 
			<updated>
9737 
				<time>1400222594</time>
9738 
				<username>admin@172.24.17.234</username>
9739 
			</updated>
9740 
			<tracker>1424949835</tracker>
9741 
		</rule>
9742 
		<rule>
9743 
			<id/>
9744 
			<type>reject</type>
9745 
			<interface>opt2</interface>
9746 
			<ipprotocol>inet</ipprotocol>
9747 
			<tag/>
9748 
			<tagged/>
9749 
			<max/>
9750 
			<max-src-nodes/>
9751 
			<max-src-conn/>
9752 
			<max-src-states/>
9753 
			<statetimeout/>
9754 
			<statetype>keep state</statetype>
9755 
			<os/>
9756 
			<source>
9757 
				<any/>
9758 
			</source>
9759 
			<destination>
9760 
				<address>BadGuyBTwebexploitList</address>
9761 
			</destination>
9762 
			<descr><![CDATA[Block LAN3 traffic to web exploit systems]]></descr>
9763 
			<created>
9764 
				<time>1399188483</time>
9765 
				<username>admin@172.24.16.234</username>
9766 
			</created>
9767 
			<updated>
9768 
				<time>1400222599</time>
9769 
				<username>admin@172.24.17.234</username>
9770 
			</updated>
9771 
			<tracker>1424949836</tracker>
9772 
		</rule>
9773 
		<rule>
9774 
			<id/>
9775 
			<type>reject</type>
9776 
			<interface>opt2</interface>
9777 
			<ipprotocol>inet</ipprotocol>
9778 
			<tag/>
9779 
			<tagged/>
9780 
			<max/>
9781 
			<max-src-nodes/>
9782 
			<max-src-conn/>
9783 
			<max-src-states/>
9784 
			<statetimeout/>
9785 
			<statetype>keep state</statetype>
9786 
			<os/>
9787 
			<source>
9788 
				<any/>
9789 
			</source>
9790 
			<destination>
9791 
				<address>BadGuyDROPlist</address>
9792 
			</destination>
9793 
			<descr><![CDATA[Block LAN3 traffic to criminal-controlled systems]]></descr>
9794 
			<created>
9795 
				<time>1399188474</time>
9796 
				<username>admin@172.24.16.234</username>
9797 
			</created>
9798 
			<updated>
9799 
				<time>1400222605</time>
9800 
				<username>admin@172.24.17.234</username>
9801 
			</updated>
9802 
			<tracker>1424949837</tracker>
9803 
		</rule>
9804 
		<rule>
9805 
			<id/>
9806 
			<type>reject</type>
9807 
			<interface>opt2</interface>
9808 
			<ipprotocol>inet</ipprotocol>
9809 
			<tag/>
9810 
			<tagged/>
9811 
			<max/>
9812 
			<max-src-nodes/>
9813 
			<max-src-conn/>
9814 
			<max-src-states/>
9815 
			<statetimeout/>
9816 
			<statetype>keep state</statetype>
9817 
			<os/>
9818 
			<source>
9819 
				<any/>
9820 
			</source>
9821 
			<destination>
9822 
				<address>BadGuyEDROPlist</address>
9823 
			</destination>
9824 
			<descr><![CDATA[Block LAN3 traffic to criminal-controlled systems]]></descr>
9825 
			<created>
9826 
				<time>1399188463</time>
9827 
				<username>admin@172.24.16.234</username>
9828 
			</created>
9829 
			<updated>
9830 
				<time>1400222610</time>
9831 
				<username>admin@172.24.17.234</username>
9832 
			</updated>
9833 
			<tracker>1424949838</tracker>
9834 
		</rule>
9835 
		<rule>
9836 
			<id/>
9837 
			<type>reject</type>
9838 
			<interface>opt2</interface>
9839 
			<ipprotocol>inet</ipprotocol>
9840 
			<tag/>
9841 
			<tagged/>
9842 
			<max/>
9843 
			<max-src-nodes/>
9844 
			<max-src-conn/>
9845 
			<max-src-states/>
9846 
			<statetimeout/>
9847 
			<statetype>keep state</statetype>
9848 
			<os/>
9849 
			<source>
9850 
				<any/>
9851 
			</source>
9852 
			<destination>
9853 
				<address>BadNets</address>
9854 
			</destination>
9855 
			<descr><![CDATA[Block LAN3 traffic to undesired networks]]></descr>
9856 
			<created>
9857 
				<time>1399188454</time>
9858 
				<username>admin@172.24.16.234</username>
9859 
			</created>
9860 
			<updated>
9861 
				<time>1400222616</time>
9862 
				<username>admin@172.24.17.234</username>
9863 
			</updated>
9864 
			<tracker>1424949839</tracker>
9865 
		</rule>
9866 
		<rule>
9867 
			<id/>
9868 
			<type>reject</type>
9869 
			<interface>opt2</interface>
9870 
			<ipprotocol>inet</ipprotocol>
9871 
			<tag/>
9872 
			<tagged/>
9873 
			<max/>
9874 
			<max-src-nodes/>
9875 
			<max-src-conn/>
9876 
			<max-src-states/>
9877 
			<statetimeout/>
9878 
			<statetype>keep state</statetype>
9879 
			<os/>
9880 
			<source>
9881 
				<any/>
9882 
			</source>
9883 
			<destination>
9884 
				<address>BadGuys</address>
9885 
			</destination>
9886 
			<descr><![CDATA[Block LAN3 traffic to bad-guy systems]]></descr>
9887 
			<created>
9888 
				<time>1399188434</time>
9889 
				<username>admin@172.24.16.234</username>
9890 
			</created>
9891 
			<updated>
9892 
				<time>1400222627</time>
9893 
				<username>admin@172.24.17.234</username>
9894 
			</updated>
9895 
			<tracker>1424949840</tracker>
9896 
		</rule>
9897 
		<rule>
9898 
			<id/>
9899 
			<type>reject</type>
9900 
			<interface>opt2</interface>
9901 
			<ipprotocol>inet</ipprotocol>
9902 
			<tag/>
9903 
			<tagged/>
9904 
			<max/>
9905 
			<max-src-nodes/>
9906 
			<max-src-conn/>
9907 
			<max-src-states/>
9908 
			<statetimeout/>
9909 
			<statetype>keep state</statetype>
9910 
			<os/>
9911 
			<source>
9912 
				<any/>
9913 
			</source>
9914 
			<destination>
9915 
				<address>EmergingThreats</address>
9916 
			</destination>
9917 
			<descr><![CDATA[Block LAN3 traffic to various threat IPs &amp; networks]]></descr>
9918 
			<created>
9919 
				<time>1399188425</time>
9920 
				<username>admin@172.24.16.234</username>
9921 
			</created>
9922 
			<updated>
9923 
				<time>1400222632</time>
9924 
				<username>admin@172.24.17.234</username>
9925 
			</updated>
9926 
			<tracker>1424949841</tracker>
9927 
		</rule>
9928 
		<rule>
9929 
			<id/>
9930 
			<type>reject</type>
9931 
			<interface>opt2</interface>
9932 
			<ipprotocol>inet</ipprotocol>
9933 
			<tag/>
9934 
			<tagged/>
9935 
			<max/>
9936 
			<max-src-nodes/>
9937 
			<max-src-conn/>
9938 
			<max-src-states/>
9939 
			<statetimeout/>
9940 
			<statetype>keep state</statetype>
9941 
			<os/>
9942 
			<source>
9943 
				<any/>
9944 
			</source>
9945 
			<destination>
9946 
				<address>ForumSpammerNets</address>
9947 
			</destination>
9948 
			<descr><![CDATA[Block LAN3 traffic to forum spammer networks]]></descr>
9949 
			<created>
9950 
				<time>1399188414</time>
9951 
				<username>admin@172.24.16.234</username>
9952 
			</created>
9953 
			<updated>
9954 
				<time>1400222638</time>
9955 
				<username>admin@172.24.17.234</username>
9956 
			</updated>
9957 
			<tracker>1424949842</tracker>
9958 
		</rule>
9959 
		<rule>
9960 
			<id/>
9961 
			<type>reject</type>
9962 
			<interface>opt2</interface>
9963 
			<ipprotocol>inet</ipprotocol>
9964 
			<tag/>
9965 
			<tagged/>
9966 
			<max/>
9967 
			<max-src-nodes/>
9968 
			<max-src-conn/>
9969 
			<max-src-states/>
9970 
			<statetimeout/>
9971 
			<statetype>keep state</statetype>
9972 
			<os/>
9973 
			<source>
9974 
				<any/>
9975 
			</source>
9976 
			<destination>
9977 
				<address>ForumSpammers1</address>
9978 
			</destination>
9979 
			<descr><![CDATA[Block LAN3 traffic to forum spammer systems]]></descr>
9980 
			<created>
9981 
				<time>1399188404</time>
9982 
				<username>admin@172.24.16.234</username>
9983 
			</created>
9984 
			<updated>
9985 
				<time>1400222644</time>
9986 
				<username>admin@172.24.17.234</username>
9987 
			</updated>
9988 
			<tracker>1424949843</tracker>
9989 
		</rule>
9990 
		<rule>
9991 
			<id/>
9992 
			<type>reject</type>
9993 
			<interface>opt2</interface>
9994 
			<ipprotocol>inet</ipprotocol>
9995 
			<tag/>
9996 
			<tagged/>
9997 
			<max/>
9998 
			<max-src-nodes/>
9999 
			<max-src-conn/>
10000 
			<max-src-states/>
10001 
			<statetimeout/>
10002 
			<statetype>keep state</statetype>
10003 
			<os/>
10004 
			<source>
10005 
				<any/>
10006 
			</source>
10007 
			<destination>
10008 
				<address>ForumSpammers2</address>
10009 
			</destination>
10010 
			<descr><![CDATA[Block LAN3 traffic to forum spammer systems]]></descr>
10011 
			<created>
10012 
				<time>1399188394</time>
10013 
				<username>admin@172.24.16.234</username>
10014 
			</created>
10015 
			<updated>
10016 
				<time>1400222651</time>
10017 
				<username>admin@172.24.17.234</username>
10018 
			</updated>
10019 
			<tracker>1424949844</tracker>
10020 
		</rule>
10021 
		<rule>
10022 
			<id/>
10023 
			<type>reject</type>
10024 
			<interface>opt2</interface>
10025 
			<ipprotocol>inet</ipprotocol>
10026 
			<tag/>
10027 
			<tagged/>
10028 
			<max/>
10029 
			<max-src-nodes/>
10030 
			<max-src-conn/>
10031 
			<max-src-states/>
10032 
			<statetimeout/>
10033 
			<statetype>keep state</statetype>
10034 
			<os/>
10035 
			<source>
10036 
				<any/>
10037 
			</source>
10038 
			<destination>
10039 
				<address>ForumSpammers3</address>
10040 
			</destination>
10041 
			<descr><![CDATA[Block LAN3 traffic to forum spammer systems]]></descr>
10042 
			<created>
10043 
				<time>1399188384</time>
10044 
				<username>admin@172.24.16.234</username>
10045 
			</created>
10046 
			<updated>
10047 
				<time>1400222662</time>
10048 
				<username>admin@172.24.17.234</username>
10049 
			</updated>
10050 
			<tracker>1424949845</tracker>
10051 
		</rule>
10052 
		<rule>
10053 
			<id/>
10054 
			<type>reject</type>
10055 
			<interface>opt2</interface>
10056 
			<ipprotocol>inet</ipprotocol>
10057 
			<tag/>
10058 
			<tagged/>
10059 
			<max/>
10060 
			<max-src-nodes/>
10061 
			<max-src-conn/>
10062 
			<max-src-states/>
10063 
			<statetimeout/>
10064 
			<statetype>keep state</statetype>
10065 
			<os/>
10066 
			<source>
10067 
				<any/>
10068 
			</source>
10069 
			<destination>
10070 
				<address>ForumSpammers4</address>
10071 
			</destination>
10072 
			<descr><![CDATA[Block LAN3 traffic to forum spammer systems]]></descr>
10073 
			<created>
10074 
				<time>1399188374</time>
10075 
				<username>admin@172.24.16.234</username>
10076 
			</created>
10077 
			<updated>
10078 
				<time>1400222668</time>
10079 
				<username>admin@172.24.17.234</username>
10080 
			</updated>
10081 
			<tracker>1424949846</tracker>
10082 
		</rule>
10083 
		<rule>
10084 
			<id/>
10085 
			<type>reject</type>
10086 
			<interface>opt2</interface>
10087 
			<ipprotocol>inet</ipprotocol>
10088 
			<tag/>
10089 
			<tagged/>
10090 
			<max/>
10091 
			<max-src-nodes/>
10092 
			<max-src-conn/>
10093 
			<max-src-states/>
10094 
			<statetimeout/>
10095 
			<statetype>keep state</statetype>
10096 
			<os/>
10097 
			<source>
10098 
				<any/>
10099 
			</source>
10100 
			<destination>
10101 
				<address>ForumSpammers5</address>
10102 
			</destination>
10103 
			<descr><![CDATA[Block LAN3 traffic to forum spammer systems]]></descr>
10104 
			<created>
10105 
				<time>1399188360</time>
10106 
				<username>admin@172.24.16.234</username>
10107 
			</created>
10108 
			<updated>
10109 
				<time>1400222674</time>
10110 
				<username>admin@172.24.17.234</username>
10111 
			</updated>
10112 
			<tracker>1424949847</tracker>
10113 
		</rule>
10114 
		<rule>
10115 
			<id/>
10116 
			<type>reject</type>
10117 
			<interface>opt2</interface>
10118 
			<ipprotocol>inet</ipprotocol>
10119 
			<tag/>
10120 
			<tagged/>
10121 
			<max/>
10122 
			<max-src-nodes/>
10123 
			<max-src-conn/>
10124 
			<max-src-states/>
10125 
			<statetimeout/>
10126 
			<statetype>keep state</statetype>
10127 
			<os/>
10128 
			<source>
10129 
				<any/>
10130 
			</source>
10131 
			<destination>
10132 
				<address>MalwareSites</address>
10133 
			</destination>
10134 
			<descr><![CDATA[Block LAN3 traffic to malware systems]]></descr>
10135 
			<updated>
10136 
				<time>1422573577</time>
10137 
				<username>admin@172.24.16.235</username>
10138 
			</updated>
10139 
			<created>
10140 
				<time>1422573577</time>
10141 
				<username>admin@172.24.16.235</username>
10142 
			</created>
10143 
			<tracker>1424949848</tracker>
10144 
		</rule>
10145 
		<rule>
10146 
			<id/>
10147 
			<tracker>1425164143</tracker>
10148 
			<type>reject</type>
10149 
			<interface>opt2</interface>
10150 
			<ipprotocol>inet</ipprotocol>
10151 
			<tag/>
10152 
			<tagged/>
10153 
			<max/>
10154 
			<max-src-nodes/>
10155 
			<max-src-conn/>
10156 
			<max-src-states/>
10157 
			<statetimeout/>
10158 
			<statetype>keep state</statetype>
10159 
			<os/>
10160 
			<protocol>udp</protocol>
10161 
			<source>
10162 
				<address>InternalOnlySystems</address>
10163 
			</source>
10164 
			<destination>
10165 
				<address>LocalMulticastNetBlk</address>
10166 
				<port>mDNSport</port>
10167 
			</destination>
10168 
			<descr><![CDATA[Block &quot;internal only&quot; server's mDNS/leakage traffic]]></descr>
10169 
			<updated>
10170 
				<time>1425164143</time>
10171 
				<username>admin@172.24.16.235</username>
10172 
			</updated>
10173 
			<created>
10174 
				<time>1425164143</time>
10175 
				<username>admin@172.24.16.235</username>
10176 
			</created>
10177 
		</rule>
10178 
		<rule>
10179 
			<id/>
10180 
			<tracker>1425942435</tracker>
10181 
			<type>reject</type>
10182 
			<interface>opt2</interface>
10183 
			<ipprotocol>inet</ipprotocol>
10184 
			<tag/>
10185 
			<tagged/>
10186 
			<max/>
10187 
			<max-src-nodes/>
10188 
			<max-src-conn/>
10189 
			<max-src-states/>
10190 
			<statetimeout/>
10191 
			<statetype>keep state</statetype>
10192 
			<os/>
10193 
			<source>
10194 
				<address>InternalOnlySystems</address>
10195 
			</source>
10196 
			<destination>
10197 
				<address>InternalOnlyBlocks</address>
10198 
			</destination>
10199 
			<descr><![CDATA[Block &quot;internal only&quot; server's &quot;phone home&quot; traffic]]></descr>
10200 
			<updated>
10201 
				<time>1425942435</time>
10202 
				<username>admin@172.24.16.235</username>
10203 
			</updated>
10204 
			<created>
10205 
				<time>1425942435</time>
10206 
				<username>admin@172.24.16.235</username>
10207 
			</created>
10208 
		</rule>
10209 
		<rule>
10210 
			<id/>
10211 
			<tracker>1424949849</tracker>
10212 
			<type>reject</type>
10213 
			<interface>opt2</interface>
10214 
			<ipprotocol>inet</ipprotocol>
10215 
			<tag/>
10216 
			<tagged/>
10217 
			<max/>
10218 
			<max-src-nodes/>
10219 
			<max-src-conn/>
10220 
			<max-src-states/>
10221 
			<statetimeout/>
10222 
			<statetype>keep state</statetype>
10223 
			<os/>
10224 
			<source>
10225 
				<address>InternalOnlySystems</address>
10226 
			</source>
10227 
			<destination>
10228 
				<any/>
10229 
			</destination>
10230 
			<log/>
10231 
			<descr><![CDATA[Block &quot;internal only&quot; server's traffic to I'net]]></descr>
10232 
			<created>
10233 
				<time>1420587670</time>
10234 
				<username>admin@172.24.16.235</username>
10235 
			</created>
10236 
			<updated>
10237 
				<time>1425775373</time>
10238 
				<username>admin@172.24.16.235</username>
10239 
			</updated>
10240 
		</rule>
10241 
		<rule>
10242 
			<id/>
10243 
			<type>reject</type>
10244 
			<interface>opt2</interface>
10245 
			<ipprotocol>inet</ipprotocol>
10246 
			<tag/>
10247 
			<tagged/>
10248 
			<max/>
10249 
			<max-src-nodes/>
10250 
			<max-src-conn/>
10251 
			<max-src-states/>
10252 
			<statetimeout/>
10253 
			<statetype>keep state</statetype>
10254 
			<os/>
10255 
			<source>
10256 
				<any/>
10257 
			</source>
10258 
			<destination>
10259 
				<address>NotLAN3lans</address>
10260 
			</destination>
10261 
			<descr><![CDATA[Prevent LAN3 access to any other LANs]]></descr>
10262 
			<created>
10263 
				<time>1419065466</time>
10264 
				<username>admin@172.24.16.235</username>
10265 
			</created>
10266 
			<updated>
10267 
				<time>1419299416</time>
10268 
				<username>admin@172.24.16.235</username>
10269 
			</updated>
10270 
			<tracker>1424949850</tracker>
10271 
		</rule>
10272 
		<rule>
10273 
			<id/>
10274 
			<type>pass</type>
10275 
			<interface>opt2</interface>
10276 
			<ipprotocol>inet</ipprotocol>
10277 
			<tag/>
10278 
			<tagged/>
10279 
			<max/>
10280 
			<max-src-nodes/>
10281 
			<max-src-conn/>
10282 
			<max-src-states/>
10283 
			<statetimeout/>
10284 
			<statetype>keep state</statetype>
10285 
			<os/>
10286 
			<source>
10287 
				<address>PrivateWebServers</address>
10288 
			</source>
10289 
			<destination>
10290 
				<any/>
10291 
			</destination>
10292 
			<disabled/>
10293 
			<descr><![CDATA[Pass private LAN3 server traffic to I'net]]></descr>
10294 
			<created>
10295 
				<time>1423729681</time>
10296 
				<username>admin@172.24.16.235</username>
10297 
			</created>
10298 
			<updated>
10299 
				<time>1424478440</time>
10300 
				<username>admin@172.24.16.235</username>
10301 
			</updated>
10302 
			<tracker>1424949851</tracker>
10303 
		</rule>
10304 
		<rule>
10305 
			<id/>
10306 
			<type>pass</type>
10307 
			<interface>opt2</interface>
10308 
			<ipprotocol>inet</ipprotocol>
10309 
			<tag/>
10310 
			<tagged/>
10311 
			<max/>
10312 
			<max-src-nodes/>
10313 
			<max-src-conn/>
10314 
			<max-src-states/>
10315 
			<statetimeout/>
10316 
			<statetype>keep state</statetype>
10317 
			<os/>
10318 
			<source>
10319 
				<any/>
10320 
			</source>
10321 
			<destination>
10322 
				<any/>
10323 
			</destination>
10324 
			<descr><![CDATA[Pass (remaining) IPv4 LAN3 traffic to I'net]]></descr>
10325 
			<created>
10326 
				<time>1399188295</time>
10327 
				<username>admin@172.24.16.234</username>
10328 
			</created>
10329 
			<updated>
10330 
				<time>1419238492</time>
10331 
				<username>admin@172.24.16.235</username>
10332 
			</updated>
10333 
			<disabled/>
10334 
			<tracker>1424949852</tracker>
10335 
		</rule>
10336 
		<rule>
10337 
			<id/>
10338 
			<type>reject</type>
10339 
			<interface>opt2</interface>
10340 
			<ipprotocol>inet</ipprotocol>
10341 
			<tag/>
10342 
			<tagged/>
10343 
			<max/>
10344 
			<max-src-nodes/>
10345 
			<max-src-conn/>
10346 
			<max-src-states/>
10347 
			<statetimeout/>
10348 
			<statetype>keep state</statetype>
10349 
			<os/>
10350 
			<source>
10351 
				<any/>
10352 
			</source>
10353 
			<destination>
10354 
				<any/>
10355 
			</destination>
10356 
			<log/>
10357 
			<descr><![CDATA[Block remaining IPv4 LAN3 traffic]]></descr>
10358 
			<created>
10359 
				<time>1399188073</time>
10360 
				<username>admin@172.24.16.234</username>
10361 
			</created>
10362 
			<updated>
10363 
				<time>1424915978</time>
10364 
				<username>admin@172.24.16.235</username>
10365 
			</updated>
10366 
			<tracker>1424949853</tracker>
10367 
		</rule>
10368 
		<rule>
10369 
			<id/>
10370 
			<type>block</type>
10371 
			<interface>opt2</interface>
10372 
			<ipprotocol>inet6</ipprotocol>
10373 
			<tag/>
10374 
			<tagged/>
10375 
			<max/>
10376 
			<max-src-nodes/>
10377 
			<max-src-conn/>
10378 
			<max-src-states/>
10379 
			<statetimeout/>
10380 
			<statetype>keep state</statetype>
10381 
			<os/>
10382 
			<source>
10383 
				<any/>
10384 
			</source>
10385 
			<destination>
10386 
				<any/>
10387 
			</destination>
10388 
			<descr><![CDATA[Block remaining IPv6 LAN3 traffic]]></descr>
10389 
			<created>
10390 
				<time>1399188063</time>
10391 
				<username>admin@172.24.16.234</username>
10392 
			</created>
10393 
			<updated>
10394 
				<time>1424478396</time>
10395 
				<username>admin@172.24.16.235</username>
10396 
			</updated>
10397 
			<tracker>1424949854</tracker>
10398 
		</rule>
10399 
		<rule>
10400 
			<id/>
10401 
			<type>pass</type>
10402 
			<interface>pptp</interface>
10403 
			<tag/>
10404 
			<tagged/>
10405 
			<max/>
10406 
			<max-src-nodes/>
10407 
			<max-src-conn/>
10408 
			<max-src-states/>
10409 
			<statetimeout/>
10410 
			<statetype>keep state</statetype>
10411 
			<os/>
10412 
			<source>
10413 
				<any/>
10414 
			</source>
10415 
			<destination>
10416 
				<any/>
10417 
			</destination>
10418 
			<log/>
10419 
			<descr><![CDATA[Allow all PPTP VPN traffic]]></descr>
10420 
			<tracker>1424949855</tracker>
10421 
		</rule>
10422 
		<rule>
10423 
			<id/>
10424 
			<type>block</type>
10425 
			<interface>pptp</interface>
10426 
			<tag/>
10427 
			<tagged/>
10428 
			<max/>
10429 
			<max-src-nodes/>
10430 
			<max-src-conn/>
10431 
			<max-src-states/>
10432 
			<statetimeout/>
10433 
			<statetype>keep state</statetype>
10434 
			<os/>
10435 
			<source>
10436 
				<any/>
10437 
			</source>
10438 
			<destination>
10439 
				<any/>
10440 
			</destination>
10441 
			<log/>
10442 
			<descr><![CDATA[Block all remaining traffic]]></descr>
10443 
			<tracker>1424949856</tracker>
10444 
		</rule>
10445 
	</filter>
10446 
	<shaper>
10447 
		<queue>
10448 
			<interface>lan</interface>
10449 
			<name>lan</name>
10450 
			<scheduler>FAIRQ</scheduler>
10451 
			<bandwidth>250</bandwidth>
10452 
			<bandwidthtype>Mb</bandwidthtype>
10453 
			<queue>
10454 
				<name>LAN1qDefault</name>
10455 
				<interface>lan</interface>
10456 
				<qlimit>500</qlimit>
10457 
				<priority>3</priority>
10458 
				<enabled>on</enabled>
10459 
				<default>default</default>
10460 
				<ecn>ecn</ecn>
10461 
				<bandwidth>30</bandwidth>
10462 
				<bandwidthtype>Mb</bandwidthtype>
10463 
				<buckets>128</buckets>
10464 
			</queue>
10465 
			<queue>
10466 
				<name>LAN1qACK</name>
10467 
				<interface>lan</interface>
10468 
				<priority>6</priority>
10469 
				<enabled>on</enabled>
10470 
				<ecn>ecn</ecn>
10471 
				<bandwidth>60</bandwidth>
10472 
				<bandwidthtype>Mb</bandwidthtype>
10473 
				<buckets>128</buckets>
10474 
			</queue>
10475 
			<queue>
10476 
				<name>LAN1qP2P</name>
10477 
				<interface>lan</interface>
10478 
				<priority>1</priority>
10479 
				<enabled>on</enabled>
10480 
				<ecn>ecn</ecn>
10481 
				<bandwidth>10</bandwidth>
10482 
				<bandwidthtype>Mb</bandwidthtype>
10483 
				<buckets>128</buckets>
10484 
			</queue>
10485 
			<queue>
10486 
				<name>LAN1qVoIP</name>
10487 
				<interface>lan</interface>
10488 
				<priority>7</priority>
10489 
				<ecn>ecn</ecn>
10490 
				<bandwidth>22</bandwidth>
10491 
				<bandwidthtype>Mb</bandwidthtype>
10492 
				<buckets>128</buckets>
10493 
			</queue>
10494 
			<queue>
10495 
				<name>LAN1qHigh</name>
10496 
				<interface>lan</interface>
10497 
				<priority>5</priority>
10498 
				<enabled>on</enabled>
10499 
				<ecn>ecn</ecn>
10500 
				<bandwidth>55</bandwidth>
10501 
				<bandwidthtype>Mb</bandwidthtype>
10502 
				<buckets>128</buckets>
10503 
			</queue>
10504 
			<queue>
10505 
				<name>LAN1qMedium</name>
10506 
				<interface>lan</interface>
10507 
				<priority>4</priority>
10508 
				<enabled>on</enabled>
10509 
				<ecn>ecn</ecn>
10510 
				<bandwidth>45</bandwidth>
10511 
				<bandwidthtype>Mb</bandwidthtype>
10512 
				<buckets>128</buckets>
10513 
			</queue>
10514 
			<queue>
10515 
				<interface>lan</interface>
10516 
				<priority>2</priority>
10517 
				<name>LAN1qLow</name>
10518 
				<bandwidth>18</bandwidth>
10519 
				<bandwidthtype>Mb</bandwidthtype>
10520 
				<ecn>ecn</ecn>
10521 
				<enabled>on</enabled>
10522 
				<buckets>128</buckets>
10523 
			</queue>
10524 
			<enabled>on</enabled>
10525 
		</queue>
10526 
		<queue>
10527 
			<interface>opt1</interface>
10528 
			<name>opt1</name>
10529 
			<scheduler>FAIRQ</scheduler>
10530 
			<bandwidth>250</bandwidth>
10531 
			<bandwidthtype>Mb</bandwidthtype>
10532 
			<enabled>on</enabled>
10533 
			<queue>
10534 
				<name>LAN2qDefault</name>
10535 
				<interface>opt1</interface>
10536 
				<qlimit>500</qlimit>
10537 
				<priority>3</priority>
10538 
				<enabled>on</enabled>
10539 
				<default>default</default>
10540 
				<ecn>ecn</ecn>
10541 
				<bandwidth>30</bandwidth>
10542 
				<bandwidthtype>Mb</bandwidthtype>
10543 
				<buckets>128</buckets>
10544 
			</queue>
10545 
			<queue>
10546 
				<name>LAN2qACK</name>
10547 
				<interface>opt1</interface>
10548 
				<priority>6</priority>
10549 
				<enabled>on</enabled>
10550 
				<ecn>ecn</ecn>
10551 
				<bandwidth>60</bandwidth>
10552 
				<bandwidthtype>Mb</bandwidthtype>
10553 
				<buckets>128</buckets>
10554 
			</queue>
10555 
			<queue>
10556 
				<name>LAN2qP2P</name>
10557 
				<interface>opt1</interface>
10558 
				<priority>1</priority>
10559 
				<enabled>on</enabled>
10560 
				<ecn>ecn</ecn>
10561 
				<bandwidth>10</bandwidth>
10562 
				<bandwidthtype>Mb</bandwidthtype>
10563 
				<buckets>128</buckets>
10564 
			</queue>
10565 
			<queue>
10566 
				<name>LAN2qVoIP</name>
10567 
				<interface>opt1</interface>
10568 
				<priority>7</priority>
10569 
				<ecn>ecn</ecn>
10570 
				<bandwidth>22</bandwidth>
10571 
				<bandwidthtype>Mb</bandwidthtype>
10572 
				<buckets>128</buckets>
10573 
			</queue>
10574 
			<queue>
10575 
				<name>LAN2qHigh</name>
10576 
				<interface>opt1</interface>
10577 
				<priority>5</priority>
10578 
				<enabled>on</enabled>
10579 
				<ecn>ecn</ecn>
10580 
				<bandwidth>55</bandwidth>
10581 
				<bandwidthtype>Mb</bandwidthtype>
10582 
				<buckets>128</buckets>
10583 
			</queue>
10584 
			<queue>
10585 
				<name>LAN2qMedium</name>
10586 
				<interface>opt1</interface>
10587 
				<priority>4</priority>
10588 
				<enabled>on</enabled>
10589 
				<ecn>ecn</ecn>
10590 
				<bandwidth>45</bandwidth>
10591 
				<bandwidthtype>Mb</bandwidthtype>
10592 
				<buckets>128</buckets>
10593 
			</queue>
10594 
			<queue>
10595 
				<interface>opt1</interface>
10596 
				<priority>2</priority>
10597 
				<name>LAN2qLow</name>
10598 
				<bandwidth>18</bandwidth>
10599 
				<bandwidthtype>Mb</bandwidthtype>
10600 
				<ecn>ecn</ecn>
10601 
				<enabled>on</enabled>
10602 
				<buckets>128</buckets>
10603 
			</queue>
10604 
		</queue>
10605 
		<queue>
10606 
			<interface>wan</interface>
10607 
			<name>wan</name>
10608 
			<scheduler>FAIRQ</scheduler>
10609 
			<bandwidth>1.2</bandwidth>
10610 
			<bandwidthtype>Mb</bandwidthtype>
10611 
			<queue>
10612 
				<name>WANqACK</name>
10613 
				<interface>wan</interface>
10614 
				<priority>6</priority>
10615 
				<enabled>on</enabled>
10616 
				<ecn>ecn</ecn>
10617 
				<bandwidth>300</bandwidth>
10618 
				<bandwidthtype>Kb</bandwidthtype>
10619 
				<buckets>128</buckets>
10620 
			</queue>
10621 
			<queue>
10622 
				<name>WANqDefault</name>
10623 
				<interface>wan</interface>
10624 
				<priority>3</priority>
10625 
				<enabled>on</enabled>
10626 
				<default>default</default>
10627 
				<ecn>ecn</ecn>
10628 
				<bandwidth>150</bandwidth>
10629 
				<bandwidthtype>Kb</bandwidthtype>
10630 
				<buckets>128</buckets>
10631 
			</queue>
10632 
			<queue>
10633 
				<name>WANqP2P</name>
10634 
				<interface>wan</interface>
10635 
				<priority>1</priority>
10636 
				<enabled>on</enabled>
10637 
				<ecn>ecn</ecn>
10638 
				<bandwidth>50</bandwidth>
10639 
				<bandwidthtype>Kb</bandwidthtype>
10640 
				<buckets>128</buckets>
10641 
			</queue>
10642 
			<queue>
10643 
				<name>WANqVoIP</name>
10644 
				<interface>wan</interface>
10645 
				<priority>7</priority>
10646 
				<ecn>ecn</ecn>
10647 
				<bandwidth>110</bandwidth>
10648 
				<bandwidthtype>Kb</bandwidthtype>
10649 
				<buckets>128</buckets>
10650 
			</queue>
10651 
			<queue>
10652 
				<name>WANqHigh</name>
10653 
				<interface>wan</interface>
10654 
				<priority>5</priority>
10655 
				<enabled>on</enabled>
10656 
				<ecn>ecn</ecn>
10657 
				<bandwidth>275</bandwidth>
10658 
				<bandwidthtype>Kb</bandwidthtype>
10659 
				<buckets>128</buckets>
10660 
			</queue>
10661 
			<queue>
10662 
				<name>WANqMedium</name>
10663 
				<interface>wan</interface>
10664 
				<priority>4</priority>
10665 
				<enabled>on</enabled>
10666 
				<ecn>ecn</ecn>
10667 
				<bandwidth>225</bandwidth>
10668 
				<bandwidthtype>Kb</bandwidthtype>
10669 
				<buckets>128</buckets>
10670 
			</queue>
10671 
			<queue>
10672 
				<interface>wan</interface>
10673 
				<priority>2</priority>
10674 
				<name>WANqLow</name>
10675 
				<bandwidth>90</bandwidth>
10676 
				<bandwidthtype>Kb</bandwidthtype>
10677 
				<ecn>ecn</ecn>
10678 
				<enabled>on</enabled>
10679 
				<buckets>128</buckets>
10680 
			</queue>
10681 
			<enabled>on</enabled>
10682 
		</queue>
10683 
		<queue>
10684 
			<interface>opt2</interface>
10685 
			<name>opt2</name>
10686 
			<scheduler>FAIRQ</scheduler>
10687 
			<bandwidth>250</bandwidth>
10688 
			<bandwidthtype>Mb</bandwidthtype>
10689 
			<enabled>on</enabled>
10690 
			<queue>
10691 
				<interface>opt2</interface>
10692 
				<qlimit>500</qlimit>
10693 
				<priority>3</priority>
10694 
				<name>LAN3qDefault</name>
10695 
				<bandwidth>30</bandwidth>
10696 
				<bandwidthtype>Mb</bandwidthtype>
10697 
				<enabled>on</enabled>
10698 
				<default>default</default>
10699 
				<ecn>ecn</ecn>
10700 
				<buckets>128</buckets>
10701 
			</queue>
10702 
			<queue>
10703 
				<interface>opt2</interface>
10704 
				<priority>6</priority>
10705 
				<name>LAN3qACK</name>
10706 
				<bandwidth>60</bandwidth>
10707 
				<bandwidthtype>Mb</bandwidthtype>
10708 
				<enabled>on</enabled>
10709 
				<ecn>ecn</ecn>
10710 
				<buckets>128</buckets>
10711 
			</queue>
10712 
			<queue>
10713 
				<interface>opt2</interface>
10714 
				<priority>1</priority>
10715 
				<name>LAN3qP2P</name>
10716 
				<bandwidth>10</bandwidth>
10717 
				<bandwidthtype>Mb</bandwidthtype>
10718 
				<enabled>on</enabled>
10719 
				<ecn>ecn</ecn>
10720 
				<buckets>128</buckets>
10721 
			</queue>
10722 
			<queue>
10723 
				<interface>opt2</interface>
10724 
				<priority>7</priority>
10725 
				<name>LAN3qVoIP</name>
10726 
				<bandwidth>22</bandwidth>
10727 
				<bandwidthtype>Mb</bandwidthtype>
10728 
				<ecn>ecn</ecn>
10729 
				<buckets>128</buckets>
10730 
			</queue>
10731 
			<queue>
10732 
				<interface>opt2</interface>
10733 
				<priority>5</priority>
10734 
				<name>LAN3qHigh</name>
10735 
				<bandwidth>55</bandwidth>
10736 
				<bandwidthtype>Mb</bandwidthtype>
10737 
				<enabled>on</enabled>
10738 
				<ecn>ecn</ecn>
10739 
				<buckets>128</buckets>
10740 
			</queue>
10741 
			<queue>
10742 
				<interface>opt2</interface>
10743 
				<priority>4</priority>
10744 
				<name>LAN3qMedium</name>
10745 
				<bandwidth>45</bandwidth>
10746 
				<bandwidthtype>Mb</bandwidthtype>
10747 
				<enabled>on</enabled>
10748 
				<ecn>ecn</ecn>
10749 
				<buckets>128</buckets>
10750 
			</queue>
10751 
			<queue>
10752 
				<interface>opt2</interface>
10753 
				<priority>2</priority>
10754 
				<name>LAN3qLow</name>
10755 
				<bandwidth>18</bandwidth>
10756 
				<bandwidthtype>Mb</bandwidthtype>
10757 
				<enabled>on</enabled>
10758 
				<ecn>ecn</ecn>
10759 
				<buckets>128</buckets>
10760 
			</queue>
10761 
		</queue>
10762 
	</shaper>
10763 
	<ipsec>
10764 
		<phase1>
10765 
			<ikeid>1</ikeid>
10766 
			<iketype>ikev1</iketype>
10767 
			<mode>main</mode>
10768 
			<interface>wan</interface>
10769 
			<remote-gateway>someplace.dnsalias.com</remote-gateway>
10770 
			<protocol>inet</protocol>
10771 
			<myid_type>myaddress</myid_type>
10772 
			<myid_data/>
10773 
			<peerid_type>peeraddress</peerid_type>
10774 
			<peerid_data/>
10775 
			<encryption-algorithm>
10776 
				<name>blowfish</name>
10777 
				<keylen>128</keylen>
10778 
			</encryption-algorithm>
10779 
			<hash-algorithm>md5</hash-algorithm>
10780 
			<dhgroup>2</dhgroup>
10781 
			<lifetime>28800</lifetime>
10782 
			<pre-shared-key>ourLittleSecret</pre-shared-key>
10783 
			<private-key/>
10784 
			<certref/>
10785 
			<caref/>
10786 
			<authentication_method>pre_shared_key</authentication_method>
10787 
			<descr><![CDATA[VPN &lt;--&gt; SPD's Network]]></descr>
10788 
			<nat_traversal>on</nat_traversal>
10789 
			<dpd_delay>10</dpd_delay>
10790 
			<dpd_maxfail>5</dpd_maxfail>
10791 
		</phase1>
10792 
		<phase1>
10793 
			<ikeid>2</ikeid>
10794 
			<iketype>ikev1</iketype>
10795 
			<mode>main</mode>
10796 
			<interface>wan_vip4</interface>
10797 
			<mobile/>
10798 
			<protocol>inet</protocol>
10799 
			<myid_type>asn1dn</myid_type>
10800 
			<myid_data/>
10801 
			<peerid_type>asn1dn</peerid_type>
10802 
			<peerid_data/>
10803 
			<encryption-algorithm>
10804 
				<name>aes</name>
10805 
				<keylen>128</keylen>
10806 
			</encryption-algorithm>
10807 
			<hash-algorithm>sha1</hash-algorithm>
10808 
			<dhgroup>2</dhgroup>
10809 
			<lifetime>28800</lifetime>
10810 
			<pre-shared-key/>
10811 
			<private-key/>
10812 
			<certref>52f5f7edd9a2e</certref>
10813 
			<caref>52d8ed3d6ca7b</caref>
10814 
			<authentication_method>xauth_rsa_server</authentication_method>
10815 
			<descr><![CDATA[Mobile client VPNs (with certs)]]></descr>
10816 
			<nat_traversal>force</nat_traversal>
10817 
		</phase1>
10818 
		<client>
10819 
			<enable/>
10820 
			<user_source>Local Database</user_source>
10821 
			<group_source>system</group_source>
10822 
			<pool_address>172.24.64.0</pool_address>
10823 
			<pool_netbits>29</pool_netbits>
10824 
			<save_passwd/>
10825 
			<dns_domain>siteA.com</dns_domain>
10826 
			<dns_server1>172.24.16.1</dns_server1>
10827 
			<dns_server2/>
10828 
			<dns_server3/>
10829 
			<dns_server4/>
10830 
		</client>
10831 
		<phase2>
10832 
			<ikeid>1</ikeid>
10833 
			<mode>tunnel</mode>
10834 
			<localid>
10835 
				<type>lan</type>
10836 
			</localid>
10837 
			<remoteid>
10838 
				<type>network</type>
10839 
				<address>172.24.32.0</address>
10840 
				<netbits>24</netbits>
10841 
			</remoteid>
10842 
			<protocol>esp</protocol>
10843 
			<encryption-algorithm-option>
10844 
				<name>blowfish</name>
10845 
				<keylen>auto</keylen>
10846 
			</encryption-algorithm-option>
10847 
			<hash-algorithm-option>hmac_md5</hash-algorithm-option>
10848 
			<pfsgroup>2</pfsgroup>
10849 
			<lifetime>7200</lifetime>
10850 
			<pinghost>172.24.32.1</pinghost>
10851 
			<descr><![CDATA[phase2 for Primary LAN1 &lt;--&gt; SPD's Network]]></descr>
10852 
			<uniqid>54ef013ce0d6f</uniqid>
10853 
			<reqid>1</reqid>
10854 
		</phase2>
10855 
		<phase2>
10856 
			<ikeid>2</ikeid>
10857 
			<mode>tunnel</mode>
10858 
			<localid>
10859 
				<type>network</type>
10860 
				<address>0.0.0.0</address>
10861 
				<netbits>0</netbits>
10862 
			</localid>
10863 
			<remoteid>
10864 
				<type>mobile</type>
10865 
			</remoteid>
10866 
			<protocol>esp</protocol>
10867 
			<encryption-algorithm-option>
10868 
				<name>aes</name>
10869 
				<keylen>128</keylen>
10870 
			</encryption-algorithm-option>
10871 
			<hash-algorithm-option>hmac_sha1</hash-algorithm-option>
10872 
			<pfsgroup>0</pfsgroup>
10873 
			<lifetime>3600</lifetime>
10874 
			<pinghost/>
10875 
			<descr><![CDATA[phase2 for mobile client VPNs]]></descr>
10876 
			<mobile/>
10877 
			<uniqid>54ef013ce0d90</uniqid>
10878 
			<reqid>2</reqid>
10879 
		</phase2>
10880 
		<phase2>
10881 
			<ikeid>2</ikeid>
10882 
			<mode>tunnel</mode>
10883 
			<disabled/>
10884 
			<localid>
10885 
				<type>opt1</type>
10886 
			</localid>
10887 
			<remoteid>
10888 
				<type>mobile</type>
10889 
			</remoteid>
10890 
			<protocol>esp</protocol>
10891 
			<encryption-algorithm-option>
10892 
				<name>aes</name>
10893 
				<keylen>128</keylen>
10894 
			</encryption-algorithm-option>
10895 
			<hash-algorithm-option>hmac_sha1</hash-algorithm-option>
10896 
			<pfsgroup>0</pfsgroup>
10897 
			<lifetime>3600</lifetime>
10898 
			<pinghost/>
10899 
			<descr><![CDATA[phase2 for mobile client VPNs]]></descr>
10900 
			<mobile/>
10901 
			<uniqid>54ef013ce0da7</uniqid>
10902 
			<reqid>3</reqid>
10903 
		</phase2>
10904 
		<phase2>
10905 
			<ikeid>1</ikeid>
10906 
			<mode>tunnel</mode>
10907 
			<localid>
10908 
				<type>network</type>
10909 
				<address>172.24.48.0</address>
10910 
				<netbits>29</netbits>
10911 
			</localid>
10912 
			<remoteid>
10913 
				<type>network</type>
10914 
				<address>172.24.32.0</address>
10915 
				<netbits>24</netbits>
10916 
			</remoteid>
10917 
			<protocol>esp</protocol>
10918 
			<encryption-algorithm-option>
10919 
				<name>blowfish</name>
10920 
				<keylen>auto</keylen>
10921 
			</encryption-algorithm-option>
10922 
			<hash-algorithm-option>hmac_md5</hash-algorithm-option>
10923 
			<pfsgroup>2</pfsgroup>
10924 
			<lifetime>7200</lifetime>
10925 
			<pinghost/>
10926 
			<descr><![CDATA[phase2 for OpenVPN udp:1194 &lt;--&gt; SPD's Network]]></descr>
10927 
			<uniqid>54ef013ce0dbd</uniqid>
10928 
			<reqid>4</reqid>
10929 
		</phase2>
10930 
		<phase2>
10931 
			<ikeid>1</ikeid>
10932 
			<mode>tunnel</mode>
10933 
			<localid>
10934 
				<type>network</type>
10935 
				<address>172.24.48.32</address>
10936 
				<netbits>29</netbits>
10937 
			</localid>
10938 
			<remoteid>
10939 
				<type>network</type>
10940 
				<address>172.24.32.0</address>
10941 
				<netbits>24</netbits>
10942 
			</remoteid>
10943 
			<protocol>esp</protocol>
10944 
			<encryption-algorithm-option>
10945 
				<name>blowfish</name>
10946 
				<keylen>auto</keylen>
10947 
			</encryption-algorithm-option>
10948 
			<hash-algorithm-option>hmac_md5</hash-algorithm-option>
10949 
			<pfsgroup>2</pfsgroup>
10950 
			<lifetime>7200</lifetime>
10951 
			<pinghost/>
10952 
			<descr><![CDATA[phase2 for OpenVPN udp:1701 &lt;--&gt; SPD's Network]]></descr>
10953 
			<uniqid>54ef013ce0ddc</uniqid>
10954 
			<reqid>5</reqid>
10955 
		</phase2>
10956 
		<phase2>
10957 
			<ikeid>1</ikeid>
10958 
			<mode>tunnel</mode>
10959 
			<localid>
10960 
				<type>network</type>
10961 
				<address>172.24.48.64</address>
10962 
				<netbits>29</netbits>
10963 
			</localid>
10964 
			<remoteid>
10965 
				<type>network</type>
10966 
				<address>172.24.32.0</address>
10967 
				<netbits>24</netbits>
10968 
			</remoteid>
10969 
			<protocol>esp</protocol>
10970 
			<encryption-algorithm-option>
10971 
				<name>blowfish</name>
10972 
				<keylen>auto</keylen>
10973 
			</encryption-algorithm-option>
10974 
			<hash-algorithm-option>hmac_md5</hash-algorithm-option>
10975 
			<pfsgroup>2</pfsgroup>
10976 
			<lifetime>7200</lifetime>
10977 
			<pinghost/>
10978 
			<descr><![CDATA[phase2 for OpenVPN udp:16400 &lt;--&gt; SPD's Network]]></descr>
10979 
			<uniqid>54ef013ce0df3</uniqid>
10980 
			<reqid>6</reqid>
10981 
		</phase2>
10982 
		<phase2>
10983 
			<ikeid>1</ikeid>
10984 
			<mode>tunnel</mode>
10985 
			<localid>
10986 
				<type>network</type>
10987 
				<address>172.24.48.96</address>
10988 
				<netbits>29</netbits>
10989 
			</localid>
10990 
			<remoteid>
10991 
				<type>network</type>
10992 
				<address>172.24.32.0</address>
10993 
				<netbits>24</netbits>
10994 
			</remoteid>
10995 
			<protocol>esp</protocol>
10996 
			<encryption-algorithm-option>
10997 
				<name>blowfish</name>
10998 
				<keylen>auto</keylen>
10999 
			</encryption-algorithm-option>
11000 
			<hash-algorithm-option>hmac_md5</hash-algorithm-option>
11001 
			<pfsgroup>2</pfsgroup>
11002 
			<lifetime>7200</lifetime>
11003 
			<pinghost/>
11004 
			<descr><![CDATA[phase2 for OpenVPN udp:50000 &lt;--&gt; SPD's Network]]></descr>
11005 
			<uniqid>54ef013ce0e09</uniqid>
11006 
			<reqid>7</reqid>
11007 
		</phase2>
11008 
		<phase2>
11009 
			<ikeid>1</ikeid>
11010 
			<mode>tunnel</mode>
11011 
			<localid>
11012 
				<type>network</type>
11013 
				<address>172.24.48.128</address>
11014 
				<netbits>29</netbits>
11015 
			</localid>
11016 
			<remoteid>
11017 
				<type>network</type>
11018 
				<address>172.24.32.0</address>
11019 
				<netbits>24</netbits>
11020 
			</remoteid>
11021 
			<protocol>esp</protocol>
11022 
			<encryption-algorithm-option>
11023 
				<name>blowfish</name>
11024 
				<keylen>auto</keylen>
11025 
			</encryption-algorithm-option>
11026 
			<hash-algorithm-option>hmac_md5</hash-algorithm-option>
11027 
			<pfsgroup>2</pfsgroup>
11028 
			<lifetime>7200</lifetime>
11029 
			<pinghost/>
11030 
			<descr><![CDATA[phase2 for OpenVPN tcp:443 &lt;--&gt; SPD's Network]]></descr>
11031 
			<uniqid>54ef013ce0e1e</uniqid>
11032 
			<reqid>8</reqid>
11033 
		</phase2>
11034 
		<phase2>
11035 
			<ikeid>1</ikeid>
11036 
			<mode>tunnel</mode>
11037 
			<localid>
11038 
				<type>network</type>
11039 
				<address>172.24.64.0</address>
11040 
				<netbits>29</netbits>
11041 
			</localid>
11042 
			<remoteid>
11043 
				<type>network</type>
11044 
				<address>172.24.32.0</address>
11045 
				<netbits>24</netbits>
11046 
			</remoteid>
11047 
			<protocol>esp</protocol>
11048 
			<encryption-algorithm-option>
11049 
				<name>blowfish</name>
11050 
				<keylen>auto</keylen>
11051 
			</encryption-algorithm-option>
11052 
			<hash-algorithm-option>hmac_md5</hash-algorithm-option>
11053 
			<pfsgroup>2</pfsgroup>
11054 
			<lifetime>7200</lifetime>
11055 
			<pinghost/>
11056 
			<descr><![CDATA[phase2 for Mobile IPSec &lt;--&gt; SPD's Network]]></descr>
11057 
			<uniqid>54ef013ce0e35</uniqid>
11058 
			<reqid>9</reqid>
11059 
		</phase2>
11060 
		<phase2>
11061 
			<ikeid>1</ikeid>
11062 
			<mode>tunnel</mode>
11063 
			<localid>
11064 
				<type>opt1</type>
11065 
			</localid>
11066 
			<remoteid>
11067 
				<type>network</type>
11068 
				<address>172.24.32.0</address>
11069 
				<netbits>24</netbits>
11070 
			</remoteid>
11071 
			<protocol>esp</protocol>
11072 
			<encryption-algorithm-option>
11073 
				<name>blowfish</name>
11074 
				<keylen>auto</keylen>
11075 
			</encryption-algorithm-option>
11076 
			<hash-algorithm-option>hmac_md5</hash-algorithm-option>
11077 
			<pfsgroup>2</pfsgroup>
11078 
			<lifetime>7200</lifetime>
11079 
			<pinghost/>
11080 
			<descr><![CDATA[phase2 for WiFi LAN2 &lt;--&gt; SPD's Network]]></descr>
11081 
			<uniqid>54ef013ce0e4a</uniqid>
11082 
			<reqid>10</reqid>
11083 
		</phase2>
11084 
		<phase2>
11085 
			<ikeid>1</ikeid>
11086 
			<mode>tunnel</mode>
11087 
			<localid>
11088 
				<type>opt2</type>
11089 
			</localid>
11090 
			<remoteid>
11091 
				<type>network</type>
11092 
				<address>172.24.32.0</address>
11093 
				<netbits>24</netbits>
11094 
			</remoteid>
11095 
			<protocol>esp</protocol>
11096 
			<encryption-algorithm-option>
11097 
				<name>blowfish</name>
11098 
				<keylen>auto</keylen>
11099 
			</encryption-algorithm-option>
11100 
			<hash-algorithm-option>hmac_md5</hash-algorithm-option>
11101 
			<pfsgroup>2</pfsgroup>
11102 
			<lifetime>7200</lifetime>
11103 
			<pinghost/>
11104 
			<descr><![CDATA[phase2 for DMZ-like LAN3 &lt;--&gt; SPD's Network]]></descr>
11105 
			<uniqid>54ef013ce0e5f</uniqid>
11106 
			<reqid>11</reqid>
11107 
		</phase2>
11108 
		<enable/>
11109 
		<compression/>
11110 
	</ipsec>
11111 
	<aliases>
11112 
		<alias>
11113 
			<name>AdBlockServer</name>
11114 
			<address>172.24.18.99 fe80:4::ca2a:14ff:fe51:c80</address>
11115 
			<descr><![CDATA[Addresses for ad-blocking server]]></descr>
11116 
			<type>host</type>
11117 
			<detail><![CDATA[IPv4 address for ad-blocking server||IPv6 address for ad-blocking server]]></detail>
11118 
		</alias>
11119 
		<alias>
11120 
			<name>AdSense</name>
11121 
			<address>pagead2.googlesyndication.com</address>
11122 
			<descr><![CDATA[IPs required by Google AdSense]]></descr>
11123 
			<type>host</type>
11124 
			<detail><![CDATA[IPs for pagead2.googlesyndication.com]]></detail>
11125 
		</alias>
11126 
		<alias>
11127 
			<name>AFPport</name>
11128 
			<address>548</address>
11129 
			<descr><![CDATA[Port used by Apple File Sharing]]></descr>
11130 
			<type>port</type>
11131 
			<detail><![CDATA[AFP]]></detail>
11132 
		</alias>
11133 
		<alias>
11134 
			<name>ARDagentPort</name>
11135 
			<address>3283</address>
11136 
			<descr><![CDATA[Port used by Apple Remote Desktop agent]]></descr>
11137 
			<type>port</type>
11138 
			<detail><![CDATA[ARD Agent]]></detail>
11139 
		</alias>
11140 
		<alias>
11141 
			<name>aTVbrAirplayers</name>
11142 
			<address>BEDiPhone LDDiPhone MobileOpenVPNlans</address>
11143 
			<descr><![CDATA[Wireless devices that can airplay to confroom Apple TVs]]></descr>
11144 
			<type>host</type>
11145 
			<detail><![CDATA[ || || ]]></detail>
11146 
		</alias>
11147 
		<alias>
11148 
			<name>aTVconfrooms</name>
11149 
			<address>172.24.16.140 172.24.16.142 172.24.17.140 172.24.17.142</address>
11150 
			<descr><![CDATA[Apple TVs in the confrooms]]></descr>
11151 
			<type>host</type>
11152 
			<detail><![CDATA[aTV 1 v2 #0 in east confroom||aTV 2 v3 #2 in master confroom||aTV 1 v2 #0 (wireless) in east confroom||aTV 2 v3 #2 (wireless) in master confroom]]></detail>
11153 
		</alias>
11154 
		<alias>
11155 
			<name>aTVmain</name>
11156 
			<address>172.24.16.141 172.24.17.141</address>
11157 
			<descr><![CDATA[Apple TV in BED's office]]></descr>
11158 
			<type>host</type>
11159 
			<detail><![CDATA[aTV 2 v3 #1||aTV 2 v3 #1 wireless]]></detail>
11160 
		</alias>
11161 
		<alias>
11162 
			<name>aTVmainAirplayers</name>
11163 
			<address>DEIwirelessGuests BEDiPhone LDDiPhone LDDiPad MobileOpenVPNlans</address>
11164 
			<descr><![CDATA[Wireless devices that can airplay to Apple TVs]]></descr>
11165 
			<type>host</type>
11166 
			<detail><![CDATA[ || || || || ]]></detail>
11167 
		</alias>
11168 
		<alias>
11169 
			<name>aTVs</name>
11170 
			<address>aTVmain aTVconfrooms</address>
11171 
			<descr><![CDATA[All Apple TVs, both wired and wireless]]></descr>
11172 
			<type>host</type>
11173 
			<detail><![CDATA[aTV in BED's office||aTVs in confrooms]]></detail>
11174 
		</alias>
11175 
		<alias>
11176 
			<name>BadCountries</name>
11177 
			<url>http://24.207.40.122/Resources/BlockLists/BadCountries.txt</url>
11178 
			<updatefreq>1</updatefreq>
11179 
			<address>http://24.207.40.122/Resources/BlockLists/BadCountries.txt</address>
11180 
			<descr><![CDATA[DEI : country nets missed by pfBlocker]]></descr>
11181 
			<type>urltable</type>
11182 
			<detail/>
11183 
		</alias>
11184 
		<alias>
11185 
			<name>BadGuyBTadsList</name>
11186 
			<url>http://24.207.40.122/Resources/BlockLists/BluetackAdsList.txt</url>
11187 
			<updatefreq>1</updatefreq>
11188 
			<address>http://24.207.40.122/Resources/BlockLists/BluetackAdsList.txt</address>
11189 
			<descr><![CDATA[Bluetack : ad trackers and bad porn sites]]></descr>
11190 
			<type>urltable</type>
11191 
			<detail/>
11192 
		</alias>
11193 
		<alias>
11194 
			<name>BadGuyBTfSpammerList</name>
11195 
			<url>http://24.207.40.122/Resources/BlockLists/BluetackFspammerList.txt</url>
11196 
			<updatefreq>1</updatefreq>
11197 
			<address>http://24.207.40.122/Resources/BlockLists/BluetackFspammerList.txt</address>
11198 
			<descr><![CDATA[Bluetack : forum-spammer IPs]]></descr>
11199 
			<type>urltable</type>
11200 
			<detail/>
11201 
		</alias>
11202 
		<alias>
11203 
			<name>BadGuyBThijackedList</name>
11204 
			<url>http://24.207.40.122/Resources/BlockLists/BluetackHijackedList.txt</url>
11205 
			<updatefreq>1</updatefreq>
11206 
			<address>http://24.207.40.122/Resources/BlockLists/BluetackHijackedList.txt</address>
11207 
			<descr><![CDATA[Bluetack : hijacked and spammer IPs]]></descr>
11208 
			<type>urltable</type>
11209 
			<detail/>
11210 
		</alias>
11211 
		<alias>
11212 
			<name>BadGuyBTshieldList</name>
11213 
			<url>http://24.207.40.122/Resources/BlockLists/BluetackShieldList.txt</url>
11214 
			<updatefreq>1</updatefreq>
11215 
			<address>http://24.207.40.122/Resources/BlockLists/BluetackShieldList.txt</address>
11216 
			<descr><![CDATA[Bluetack : hackers and such]]></descr>
11217 
			<type>urltable</type>
11218 
			<detail/>
11219 
		</alias>
11220 
		<alias>
11221 
			<name>BadGuyBTspiderList</name>
11222 
			<url>http://24.207.40.122/Resources/BlockLists/BluetackSpiderList.txt</url>
11223 
			<updatefreq>1</updatefreq>
11224 
			<address>http://24.207.40.122/Resources/BlockLists/BluetackSpiderList.txt</address>
11225 
			<descr><![CDATA[Bluetack : undesirable spider/crawler sites]]></descr>
11226 
			<type>urltable</type>
11227 
			<detail/>
11228 
		</alias>
11229 
		<alias>
11230 
			<name>BadGuyBTspywareList</name>
11231 
			<url>http://24.207.40.122/Resources/BlockLists/BluetackSpywareList.txt</url>
11232 
			<updatefreq>1</updatefreq>
11233 
			<address>http://24.207.40.122/Resources/BlockLists/BluetackSpywareList.txt</address>
11234 
			<descr><![CDATA[Bluetack : malicious spyware and adware IPs]]></descr>
11235 
			<type>urltable</type>
11236 
			<detail/>
11237 
		</alias>
11238 
		<alias>
11239 
			<name>BadGuyBTwebexploitList</name>
11240 
			<url>http://24.207.40.122/Resources/BlockLists/BluetackWebexploitList.txt</url>
11241 
			<updatefreq>1</updatefreq>
11242 
			<address>http://24.207.40.122/Resources/BlockLists/BluetackWebexploitList.txt</address>
11243 
			<descr><![CDATA[Bluetack : web exploit system IPs]]></descr>
11244 
			<type>urltable</type>
11245 
			<detail/>
11246 
		</alias>
11247 
		<alias>
11248 
			<name>BadGuyDROPlist</name>
11249 
			<url>http://24.207.40.122/Resources/BlockLists/SpamhausDROPlist.txt</url>
11250 
			<updatefreq>1</updatefreq>
11251 
			<address>http://24.207.40.122/Resources/BlockLists/SpamhausDROPlist.txt</address>
11252 
			<descr><![CDATA[Spamhaus : zombie-bots and spammers]]></descr>
11253 
			<type>urltable</type>
11254 
			<detail/>
11255 
		</alias>
11256 
		<alias>
11257 
			<name>BadGuyEDROPlist</name>
11258 
			<url>http://24.207.40.122/Resources/BlockLists/SpamhausEDROPlist.txt</url>
11259 
			<updatefreq>1</updatefreq>
11260 
			<address>http://24.207.40.122/Resources/BlockLists/SpamhausEDROPlist.txt</address>
11261 
			<descr><![CDATA[Spamhaus : zombie-bots and spammers]]></descr>
11262 
			<type>urltable</type>
11263 
			<detail/>
11264 
		</alias>
11265 
		<alias>
11266 
			<name>BadGuys</name>
11267 
			<url>http://24.207.40.122/Resources/BlockLists/BadGuyIPs.txt</url>
11268 
			<updatefreq>1</updatefreq>
11269 
			<address>http://24.207.40.122/Resources/BlockLists/BadGuyIPs.txt</address>
11270 
			<descr><![CDATA[DEI : hackers and spammers]]></descr>
11271 
			<type>urltable</type>
11272 
			<detail/>
11273 
		</alias>
11274 
		<alias>
11275 
			<name>BadNets</name>
11276 
			<url>http://24.207.40.122/Resources/BlockLists/BadNets.txt</url>
11277 
			<updatefreq>1</updatefreq>
11278 
			<address>http://24.207.40.122/Resources/BlockLists/BadNets.txt</address>
11279 
			<descr><![CDATA[DEI : (Sub)Networks we disallow from all sites]]></descr>
11280 
			<type>urltable</type>
11281 
			<detail/>
11282 
		</alias>
11283 
		<alias>
11284 
			<name>BEDiMac</name>
11285 
			<address>BEDiMacOnLAN1 BEDiMacLAN2 BEDiMacLAN3</address>
11286 
			<descr><![CDATA[BED's iMac on any BED LAN]]></descr>
11287 
			<type>host</type>
11288 
			<detail><![CDATA[BED's iMac (on LAN1)||BED's iMac (on LAN2)||BED's iMac (on LAN3)]]></detail>
11289 
		</alias>
11290 
		<alias>
11291 
			<name>BEDiMacLAN2</name>
11292 
			<address>172.24.17.235</address>
11293 
			<descr><![CDATA[BED's iMac on LAN2]]></descr>
11294 
			<type>host</type>
11295 
			<detail><![CDATA[BED's iMac (on LAN2)]]></detail>
11296 
		</alias>
11297 
		<alias>
11298 
			<name>BEDiMacLAN3</name>
11299 
			<address>172.24.18.235</address>
11300 
			<descr><![CDATA[BED's iMac]]></descr>
11301 
			<type>host</type>
11302 
			<detail><![CDATA[BED's iMac (on LAN3)]]></detail>
11303 
		</alias>
11304 
		<alias>
11305 
			<name>BEDiMacOnLAN1</name>
11306 
			<address>172.24.16.235</address>
11307 
			<descr><![CDATA[BED's iMac]]></descr>
11308 
			<type>host</type>
11309 
			<detail><![CDATA[BED's iMac (on LAN1)]]></detail>
11310 
		</alias>
11311 
		<alias>
11312 
			<name>BEDiPhone</name>
11313 
			<address>172.24.17.222</address>
11314 
			<descr><![CDATA[BED's iPhone]]></descr>
11315 
			<type>host</type>
11316 
			<detail><![CDATA[BEDs iPhone]]></detail>
11317 
		</alias>
11318 
		<alias>
11319 
			<name>BEDvirtualizedMacs</name>
11320 
			<address>172.24.16.30 172.24.16.31 172.24.16.32 172.24.16.35</address>
11321 
			<descr><![CDATA[BEDs virtualized OS X environments]]></descr>
11322 
			<type>host</type>
11323 
			<detail><![CDATA[OS X 10.6 Server with ArchiCAD||OS X 10.6 Server||OS X 10.6 Server for testing &quot;Transfer for 10.5&quot;||OS X &quot;whatever&quot;]]></detail>
11324 
		</alias>
11325 
		<alias>
11326 
			<name>BEDvirtualizedPCs</name>
11327 
			<address>172.24.16.20 172.24.16.21 172.24.16.22 172.24.16.23 172.24.16.24 172.24.16.25</address>
11328 
			<descr><![CDATA[BEDs virtualized Windows environments]]></descr>
11329 
			<type>host</type>
11330 
			<detail><![CDATA[Windows XP Pro with MBZ Maintenance DVD||Windows 2000 Pro||Windows 2003 Server||Windows XP Pro (32-bit)||Windows 7 Pro (32-bit)||Windows &quot;whatever&quot;]]></detail>
11331 
		</alias>
11332 
		<alias>
11333 
			<name>BittorrentPort</name>
11334 
			<address>46346</address>
11335 
			<descr><![CDATA[Port used by Bittorrent peer-to-peer]]></descr>
11336 
			<type>port</type>
11337 
			<detail><![CDATA[Bittorrent P2P]]></detail>
11338 
		</alias>
11339 
		<alias>
11340 
			<name>BluRayPlayer</name>
11341 
			<address>172.24.17.135</address>
11342 
			<descr><![CDATA[LG Blu-Ray player]]></descr>
11343 
			<type>host</type>
11344 
			<detail><![CDATA[LG Blu-Ray player (wireless)]]></detail>
11345 
		</alias>
11346 
		<alias>
11347 
			<name>CanonMX922</name>
11348 
			<address>172.24.17.131</address>
11349 
			<descr><![CDATA[Canon MX922 printer]]></descr>
11350 
			<type>host</type>
11351 
			<detail><![CDATA[Canon MX922 printer (wireless)]]></detail>
11352 
		</alias>
11353 
		<alias>
11354 
			<name>CVSport</name>
11355 
			<address>2401</address>
11356 
			<descr><![CDATA[Port used by Concurrent Version System]]></descr>
11357 
			<type>port</type>
11358 
			<detail><![CDATA[CVS]]></detail>
11359 
		</alias>
11360 
		<alias>
11361 
			<name>CVSserver</name>
11362 
			<address>172.24.16.234</address>
11363 
			<descr><![CDATA[The CVS version-control server]]></descr>
11364 
			<type>host</type>
11365 
			<detail><![CDATA[CVS server]]></detail>
11366 
		</alias>
11367 
		<alias>
11368 
			<name>DEIdevServer</name>
11369 
			<address>172.24.16.4</address>
11370 
			<descr><![CDATA[Development/test server for siteA.com]]></descr>
11371 
			<type>host</type>
11372 
			<detail><![CDATA[devServer for siteA.com]]></detail>
11373 
		</alias>
11374 
		<alias>
11375 
			<name>DEIsLAN1</name>
11376 
			<address>172.24.16.0/24</address>
11377 
			<descr><![CDATA[Primary LAN at BED's office]]></descr>
11378 
			<type>network</type>
11379 
			<detail><![CDATA[Primary LAN at BED's office]]></detail>
11380 
		</alias>
11381 
		<alias>
11382 
			<name>DEIsLAN2</name>
11383 
			<address>172.24.17.0/24</address>
11384 
			<descr><![CDATA[Secondary/wireless LAN at BED's office]]></descr>
11385 
			<type>network</type>
11386 
			<detail><![CDATA[Secondary/wireless LAN at BED's office]]></detail>
11387 
		</alias>
11388 
		<alias>
11389 
			<name>DEIsLAN3</name>
11390 
			<address>172.24.18.0/24</address>
11391 
			<descr><![CDATA[DMZ-like LAN at BED's office]]></descr>
11392 
			<type>network</type>
11393 
			<detail><![CDATA[DMZ-like LAN at BED's office]]></detail>
11394 
		</alias>
11395 
		<alias>
11396 
			<name>DEIvServer</name>
11397 
			<address>172.24.18.4</address>
11398 
			<descr><![CDATA[vServer for siteA.com]]></descr>
11399 
			<type>host</type>
11400 
			<detail><![CDATA[vServer for siteA.com]]></detail>
11401 
		</alias>
11402 
		<alias>
11403 
			<name>DEIwirelessGuests</name>
11404 
			<address>172.24.17.110 172.24.17.111 172.24.17.112 172.24.17.113 172.24.17.114 172.24.17.115 172.24.17.116 172.24.17.117 172.24.17.118 172.24.17.119</address>
11405 
			<descr><![CDATA[DHCP-assigned wireless guest IPs at BED's office]]></descr>
11406 
			<type>host</type>
11407 
			<detail><![CDATA[Wireless guest 1||Wireless guest 2||Wireless guest 3||Wireless guest 4||Wireless guest 5||Wireless guest 6||Wireless guest 7||Wireless guest 8||Wireless guest 9||Wireless guest 10]]></detail>
11408 
		</alias>
11409 
		<alias>
11410 
			<name>DevServers</name>
11411 
			<address>DEIdevServer SEdevServer TAKdevServer</address>
11412 
			<descr><![CDATA[Development/test  servers (virtualized)]]></descr>
11413 
			<type>host</type>
11414 
			<detail><![CDATA[devServer for siteA.com||devServer for siteC.com||devServer for siteB.com]]></detail>
11415 
		</alias>
11416 
		<alias>
11417 
			<name>DevServersAndClients</name>
11418 
			<address>172.24.18.100 InternalDevServer DevServers</address>
11419 
			<descr><![CDATA[Systems used to test servers before deployment]]></descr>
11420 
			<type>host</type>
11421 
			<detail><![CDATA[Client (172.24.18.100 is a placeholder)|| || ]]></detail>
11422 
		</alias>
11423 
		<alias>
11424 
			<name>DNSport</name>
11425 
			<address>53</address>
11426 
			<descr><![CDATA[Port used by Domain Name System]]></descr>
11427 
			<type>port</type>
11428 
			<detail><![CDATA[DNS]]></detail>
11429 
		</alias>
11430 
		<alias>
11431 
			<name>EmailAuthPorts</name>
11432 
			<address>465 587</address>
11433 
			<descr><![CDATA[Ports used for encrypted email client to server traffic]]></descr>
11434 
			<type>port</type>
11435 
			<detail><![CDATA[SMTPS||Mail Submission (TLS)]]></detail>
11436 
		</alias>
11437 
		<alias>
11438 
			<name>EmailPorts</name>
11439 
			<address>SMTPports POP3ports IMAPports EmailAuthPorts</address>
11440 
			<descr><![CDATA[Ports used by email]]></descr>
11441 
			<type>port</type>
11442 
			<detail><![CDATA[SMTP||POP3||IMAP||SMTPS &amp; Mail Submission (TLS)]]></detail>
11443 
		</alias>
11444 
		<alias>
11445 
			<name>EmergingThreats</name>
11446 
			<url>http://24.207.40.122/Resources/BlockLists/EmergingThreatsList.txt</url>
11447 
			<updatefreq>1</updatefreq>
11448 
			<address>http://24.207.40.122/Resources/BlockLists/EmergingThreatsList.txt</address>
11449 
			<descr><![CDATA[Emerging Threats: various bad-guy IPs]]></descr>
11450 
			<type>urltable</type>
11451 
			<detail/>
11452 
		</alias>
11453 
		<alias>
11454 
			<name>ForumSpammerNets</name>
11455 
			<url>http://24.207.40.122/Resources/BlockLists/ForumSpammerNets.txt</url>
11456 
			<updatefreq>1</updatefreq>
11457 
			<address>http://24.207.40.122/Resources/BlockLists/ForumSpammerNets.txt</address>
11458 
			<descr><![CDATA[Stop Forum Spam : toxic IP ranges]]></descr>
11459 
			<type>urltable</type>
11460 
			<detail/>
11461 
		</alias>
11462 
		<alias>
11463 
			<name>ForumSpammers1</name>
11464 
			<url>http://24.207.40.122/Resources/BlockLists/ForumSpammers1.txt</url>
11465 
			<updatefreq>1</updatefreq>
11466 
			<address>http://24.207.40.122/Resources/BlockLists/ForumSpammers1.txt</address>
11467 
			<descr><![CDATA[Stop Forum Spam : spammer IPs]]></descr>
11468 
			<type>urltable</type>
11469 
			<detail/>
11470 
		</alias>
11471 
		<alias>
11472 
			<name>ForumSpammers2</name>
11473 
			<url>http://24.207.40.122/Resources/BlockLists/ForumSpammers2.txt</url>
11474 
			<updatefreq>1</updatefreq>
11475 
			<address>http://24.207.40.122/Resources/BlockLists/ForumSpammers2.txt</address>
11476 
			<descr><![CDATA[Stop Forum Spam : spammer IPs]]></descr>
11477 
			<type>urltable</type>
11478 
			<detail/>
11479 
		</alias>
11480 
		<alias>
11481 
			<name>ForumSpammers3</name>
11482 
			<url>http://24.207.40.122/Resources/BlockLists/ForumSpammers3.txt</url>
11483 
			<updatefreq>1</updatefreq>
11484 
			<address>http://24.207.40.122/Resources/BlockLists/ForumSpammers3.txt</address>
11485 
			<descr><![CDATA[Stop Forum Spam : spammer IPs]]></descr>
11486 
			<type>urltable</type>
11487 
			<detail/>
11488 
		</alias>
11489 
		<alias>
11490 
			<name>ForumSpammers4</name>
11491 
			<url>http://24.207.40.122/Resources/BlockLists/ForumSpammers4.txt</url>
11492 
			<updatefreq>1</updatefreq>
11493 
			<address>http://24.207.40.122/Resources/BlockLists/ForumSpammers4.txt</address>
11494 
			<descr><![CDATA[Stop Forum Spam : spammer IPs]]></descr>
11495 
			<type>urltable</type>
11496 
			<detail/>
11497 
		</alias>
11498 
		<alias>
11499 
			<name>ForumSpammers5</name>
11500 
			<url>http://24.207.40.122/Resources/BlockLists/ForumSpammers5.txt</url>
11501 
			<updatefreq>1</updatefreq>
11502 
			<address>http://24.207.40.122/Resources/BlockLists/ForumSpammers5.txt</address>
11503 
			<descr><![CDATA[Stop Forum Spam : spammer IPs]]></descr>
11504 
			<type>urltable</type>
11505 
			<detail/>
11506 
		</alias>
11507 
		<alias>
11508 
			<name>FTPport</name>
11509 
			<address>21</address>
11510 
			<descr><![CDATA[Port used by File Transfer Protocol]]></descr>
11511 
			<type>port</type>
11512 
			<detail><![CDATA[FTP]]></detail>
11513 
		</alias>
11514 
		<alias>
11515 
			<name>GnutellaPort</name>
11516 
			<address>46346</address>
11517 
			<descr><![CDATA[Port used for gnutella peer-to-peer]]></descr>
11518 
			<type>port</type>
11519 
			<detail><![CDATA[Gnutella P2P]]></detail>
11520 
		</alias>
11521 
		<alias>
11522 
			<name>HiPriorityTCPports</name>
11523 
			<address>SSHport DNSport NTPport ARDagentPort EmailPorts OpenVPNtcpPort VNCports WebPorts</address>
11524 
			<descr><![CDATA[TCP ports scheduled with high priority]]></descr>
11525 
			<type>port</type>
11526 
			<detail><![CDATA[SSH||DNS||NTP||ARD Agent||Email||OpenVPN TCP||VNC||Web]]></detail>
11527 
		</alias>
11528 
		<alias>
11529 
			<name>HiPriorityUDPports</name>
11530 
			<address>DNSport NTPport SNMPport 192 IPsecPorts 995 ARDagentPort mDNSport NUTport OpenVPNudpPorts</address>
11531 
			<descr><![CDATA[UDP ports scheduled with high priority]]></descr>
11532 
			<type>port</type>
11533 
			<detail><![CDATA[DNS||NTP||SNMP||OSU Airport||IPSec ISAKMP/IKE &amp; NAT/T||POP3 SSL||ARD Agent||mDNS||NUT||OpenVPN UDP]]></detail>
11534 
		</alias>
11535 
		<alias>
11536 
			<name>HP1810switches</name>
11537 
			<address>172.24.16.252 172.24.16.253 172.24.16.254</address>
11538 
			<descr><![CDATA[HP 1810-8G v2 managed switches]]></descr>
11539 
			<type>host</type>
11540 
			<detail><![CDATA[HP 1810-82 Switch by pfSense Router||HP 1810-82 Switch by DEI Server||HP 1810-82 Switch in L's Office]]></detail>
11541 
		</alias>
11542 
		<alias>
11543 
			<name>HP2605printer</name>
11544 
			<address>172.24.16.130</address>
11545 
			<descr><![CDATA[HP 2605dn printer]]></descr>
11546 
			<type>host</type>
11547 
			<detail><![CDATA[HP 2605dn printer]]></detail>
11548 
		</alias>
11549 
		<alias>
11550 
			<name>IMAPports</name>
11551 
			<address>143 993</address>
11552 
			<descr><![CDATA[Ports used by Internet Message Access Protocol]]></descr>
11553 
			<type>port</type>
11554 
			<detail><![CDATA[IMAP||IMAP SSL]]></detail>
11555 
		</alias>
11556 
		<alias>
11557 
			<name>InternalDevServer</name>
11558 
			<address>172.24.16.106</address>
11559 
			<descr><![CDATA[Internal development/test machine (virtualized)]]></descr>
11560 
			<type>host</type>
11561 
			<detail><![CDATA[Internal devServer system]]></detail>
11562 
		</alias>
11563 
		<alias>
11564 
			<name>InternalOnlyBlocks</name>
11565 
			<address>17.135.67.4 17.146.232.12 17.151.28.6 17.164.1.22</address>
11566 
			<descr><![CDATA[Specific IPs (e.g., phone-homes) blocked for internal-only systems]]></descr>
11567 
			<type>host</type>
11568 
			<detail><![CDATA[guzzoni.apple.com - Siri/dictation||also swscan.apple.com ???||Siri/dictation ???||swscan.apple.com - software updates]]></detail>
11569 
		</alias>
11570 
		<alias>
11571 
			<name>InternalOnlyDestinations</name>
11572 
			<address>DEIsLAN1 PublicWebServers PrivateWebServers AdBlockServer LocalMulticastNetBlk Setnet pfSenseInternal</address>
11573 
			<descr><![CDATA[Addresses to which &quot;internal only&quot; systems have access]]></descr>
11574 
			<type>network</type>
11575 
			<detail><![CDATA[DEI's primary LAN||Public/external web servers||Private/internal web servers||Ad-blocking server||Link-local multicast addresses||Setnet &quot;storage&quot;||pfSense for NAT/proxy reflection]]></detail>
11576 
		</alias>
11577 
		<alias>
11578 
			<name>InternalOnlySystems</name>
11579 
			<address>MiniServ vServer vServerHost</address>
11580 
			<descr><![CDATA[Internal servers that are not to have I'net access]]></descr>
11581 
			<type>host</type>
11582 
			<detail><![CDATA[ || || ]]></detail>
11583 
		</alias>
11584 
		<alias>
11585 
			<name>IPsecPorts</name>
11586 
			<address>500 4500</address>
11587 
			<descr><![CDATA[Ports used by Internet Protocol Security]]></descr>
11588 
			<type>port</type>
11589 
			<detail><![CDATA[IPSec ISAKMP/IKE||IPsec NAT-T]]></detail>
11590 
		</alias>
11591 
		<alias>
11592 
			<name>IPv4linkLocalNetBlk</name>
11593 
			<address>169.254.0.0/16</address>
11594 
			<descr><![CDATA[Non-routable/link-local IPv4 addresses]]></descr>
11595 
			<type>network</type>
11596 
			<detail><![CDATA[Entry added Mon, 09 Mar 2015 23:45:57 -0700]]></detail>
11597 
		</alias>
11598 
		<alias>
11599 
			<name>KitchenMac</name>
11600 
			<address>172.24.16.16</address>
11601 
			<descr><![CDATA[The iMac located in the kitchen]]></descr>
11602 
			<type>host</type>
11603 
			<detail><![CDATA[Kitchen iMac]]></detail>
11604 
		</alias>
11605 
		<alias>
11606 
			<name>LDDiMac</name>
11607 
			<address>172.24.16.227</address>
11608 
			<descr><![CDATA[LDD's iMac]]></descr>
11609 
			<type>host</type>
11610 
			<detail><![CDATA[LDD's iMac]]></detail>
11611 
		</alias>
11612 
		<alias>
11613 
			<name>LDDiPad</name>
11614 
			<address>172.24.17.224</address>
11615 
			<descr><![CDATA[LDD's v1 iPad]]></descr>
11616 
			<type>host</type>
11617 
			<detail><![CDATA[LDDs iPad]]></detail>
11618 
		</alias>
11619 
		<alias>
11620 
			<name>LDDiPhone</name>
11621 
			<address>172.24.17.221</address>
11622 
			<descr><![CDATA[LDD's iPhone]]></descr>
11623 
			<type>host</type>
11624 
			<detail><![CDATA[LDDs iPhone]]></detail>
11625 
		</alias>
11626 
		<alias>
11627 
			<name>LDDlaptop</name>
11628 
			<address>172.24.16.13 172.24.17.13</address>
11629 
			<descr><![CDATA[LDDs laptop]]></descr>
11630 
			<type>host</type>
11631 
			<detail><![CDATA[LDDs laptop (wired)||LDDs laptop (wireless)]]></detail>
11632 
		</alias>
11633 
		<alias>
11634 
			<name>LDDlaptopPPC</name>
11635 
			<address>172.24.16.167 172.24.17.167</address>
11636 
			<descr><![CDATA[LDDs PPC laptop]]></descr>
11637 
			<type>host</type>
11638 
			<detail><![CDATA[LDDs PPC laptop (wired)||LDDs PPC laptop (WiFi)]]></detail>
11639 
		</alias>
11640 
		<alias>
11641 
			<name>LicServerProductionAndDev</name>
11642 
			<address>DEIvServer DEIdevServer</address>
11643 
			<descr><![CDATA[Private production and development licensing servers]]></descr>
11644 
			<type>host</type>
11645 
			<detail><![CDATA[vServer for siteA.com||devServer for siteA.com]]></detail>
11646 
		</alias>
11647 
		<alias>
11648 
			<name>LocalMulticastNetBlk</name>
11649 
			<address>224.0.0.0/24</address>
11650 
			<descr><![CDATA[Link-local multicast addresses]]></descr>
11651 
			<type>network</type>
11652 
			<detail><![CDATA[Link-local multicast addresses]]></detail>
11653 
		</alias>
11654 
		<alias>
11655 
			<name>LoPriorityTCPports</name>
11656 
			<address>119 563</address>
11657 
			<descr><![CDATA[TCP ports scheduled with low priority]]></descr>
11658 
			<type>port</type>
11659 
			<detail><![CDATA[NNTP||NNTP TLS]]></detail>
11660 
		</alias>
11661 
		<alias>
11662 
			<name>LoPriorityUDPports</name>
11663 
			<address>137 138</address>
11664 
			<descr><![CDATA[UDP ports scheduled with low priority]]></descr>
11665 
			<type>port</type>
11666 
			<detail><![CDATA[WINS||NETBIOS]]></detail>
11667 
		</alias>
11668 
		<alias>
11669 
			<name>MalwareSites</name>
11670 
			<url>http://24.207.40.122/Resources/BlockLists/MalwareSites.txt</url>
11671 
			<updatefreq>1</updatefreq>
11672 
			<address>http://24.207.40.122/Resources/BlockLists/MalwareSites.txt</address>
11673 
			<descr><![CDATA[Malware Domain List.com: malware site IPs]]></descr>
11674 
			<type>urltable</type>
11675 
			<detail/>
11676 
		</alias>
11677 
		<alias>
11678 
			<name>mDNSport</name>
11679 
			<address>5353</address>
11680 
			<descr><![CDATA[Port used by multicast Domain Name Services]]></descr>
11681 
			<type>port</type>
11682 
			<detail><![CDATA[mDNS]]></detail>
11683 
		</alias>
11684 
		<alias>
11685 
			<name>MedPriorityTCPports</name>
11686 
			<address>554 AFPport 631 CVSport</address>
11687 
			<descr><![CDATA[TCP ports scheduled with medium priority]]></descr>
11688 
			<type>port</type>
11689 
			<detail><![CDATA[RTSP||AFP||IPP||CVS]]></detail>
11690 
		</alias>
11691 
		<alias>
11692 
			<name>MedPriorityUDPports</name>
11693 
			<address>554</address>
11694 
			<descr><![CDATA[UDP ports scheduled with medium priority]]></descr>
11695 
			<type>port</type>
11696 
			<detail><![CDATA[RTSP]]></detail>
11697 
		</alias>
11698 
		<alias>
11699 
			<name>MiniServ</name>
11700 
			<address>172.24.16.206</address>
11701 
			<descr><![CDATA[Mac Mini server]]></descr>
11702 
			<type>host</type>
11703 
			<detail><![CDATA[Mac Mini server||]]></detail>
11704 
		</alias>
11705 
		<alias>
11706 
			<name>MobileIPSecVPNlan</name>
11707 
			<address>172.24.64.0/29</address>
11708 
			<descr><![CDATA[Virtual LAN given to mobile IPSec clients]]></descr>
11709 
			<type>network</type>
11710 
			<detail><![CDATA[Virtual LAN given to mobile IPSec clients]]></detail>
11711 
		</alias>
11712 
		<alias>
11713 
			<name>MobileOpenVPNlans</name>
11714 
			<address>OpenVPNudp1194LAN OpenVPNudp1701LAN OpenVPNudp16400LAN OpenVPNudp50000LAN OpenVPNtcp443LAN</address>
11715 
			<descr><![CDATA[All virtual LANs for mobile OpenVPN clients]]></descr>
11716 
			<type>network</type>
11717 
			<detail><![CDATA[Virtual LAN given to OpenVPN via udp:1194 clients||Virtual LAN given to OpenVPN via udp:1701 clients||Virtual LAN given to OpenVPN via udp:16400 clients||Virtual LAN given to OpenVPN via udp:50000 clients||Virtual LAN given to OpenVPN via tcp:443 clients]]></detail>
11718 
		</alias>
11719 
		<alias>
11720 
			<name>MobileVPNlans</name>
11721 
			<address>MobileIPSecVPNlan MobileOpenVPNlans</address>
11722 
			<descr><![CDATA[All virtual LANs for mobile VPN clients]]></descr>
11723 
			<type>network</type>
11724 
			<detail><![CDATA[Virtual LAN given to mobile IPSec VPN clients||All virtual LANs for mobile OpenVPN clients]]></detail>
11725 
		</alias>
11726 
		<alias>
11727 
			<name>MobileVPNwan</name>
11728 
			<address>WAN4_Spare</address>
11729 
			<descr><![CDATA[The WAN address used for mobile VPN traffic]]></descr>
11730 
			<type>host</type>
11731 
			<detail><![CDATA[WAN used for mobile VPN]]></detail>
11732 
		</alias>
11733 
		<alias>
11734 
			<name>MulticastNetBlk</name>
11735 
			<address>224.0.0.0/4</address>
11736 
			<descr><![CDATA[Multicast addresses]]></descr>
11737 
			<type>network</type>
11738 
			<detail><![CDATA[Multicast addresses]]></detail>
11739 
		</alias>
11740 
		<alias>
11741 
			<name>NetBIOSports</name>
11742 
			<address>137 138 139</address>
11743 
			<descr><![CDATA[Ports used by NetBIOS]]></descr>
11744 
			<type>port</type>
11745 
			<detail><![CDATA[NetBIOS name service (UDP)||NetBIOS datagram (UDP)||NetBIOS Session (TCP)]]></detail>
11746 
		</alias>
11747 
		<alias>
11748 
			<name>NoInetLAN1devices</name>
11749 
			<address>HP1810switches HP2605printer</address>
11750 
			<descr><![CDATA[IPs of LAN1 devices not allowed direct I'net access]]></descr>
11751 
			<type>host</type>
11752 
			<detail><![CDATA[HP 1810-8G v2 Switches||HP 2605 Color Laser Printer]]></detail>
11753 
		</alias>
11754 
		<alias>
11755 
			<name>NoInetLAN2devices</name>
11756 
			<address>BluRayPlayer CanonMX922</address>
11757 
			<descr><![CDATA[IPs of LAN2 devices not allowed direct Internet access]]></descr>
11758 
			<type>host</type>
11759 
			<detail><![CDATA[LG BP620 Blu-Ray Player||Canon Pixma MX922 Color Inkjet Printer]]></detail>
11760 
		</alias>
11761 
		<alias>
11762 
			<name>NonCrossLANports</name>
11763 
			<address>AFPport RetrospectPort</address>
11764 
			<descr><![CDATA[Ports for which LAN-toLAN traffic is prohibited]]></descr>
11765 
			<type>port</type>
11766 
			<detail><![CDATA[AFP||Retrospect]]></detail>
11767 
		</alias>
11768 
		<alias>
11769 
			<name>NonLicServerProductionAndDev</name>
11770 
			<address>SEvServer TAKvServer SEdevServer TAKdevServer</address>
11771 
			<descr><![CDATA[Non-licensing production and development servers]]></descr>
11772 
			<type>host</type>
11773 
			<detail><![CDATA[vServer for siteC.com||vServer for siteB.com||devServer for siteC.com||devServer for siteB.com]]></detail>
11774 
		</alias>
11775 
		<alias>
11776 
			<name>NotLAN1lans</name>
11777 
			<address>DEIsLAN2 DEIsLAN3 SPDsLAN MobileVPNlans</address>
11778 
			<descr><![CDATA[All LANs except LAN1]]></descr>
11779 
			<type>network</type>
11780 
			<detail><![CDATA[ || || || ]]></detail>
11781 
		</alias>
11782 
		<alias>
11783 
			<name>NotLAN2lans</name>
11784 
			<address>DEIsLAN1 DEIsLAN3 SPDsLAN MobileVPNlans</address>
11785 
			<descr><![CDATA[All LANs except LAN2]]></descr>
11786 
			<type>network</type>
11787 
			<detail><![CDATA[ || || || ]]></detail>
11788 
		</alias>
11789 
		<alias>
11790 
			<name>NotLAN3lans</name>
11791 
			<address>DEIsLAN1 DEIsLAN2 SPDsLAN MobileVPNlans</address>
11792 
			<descr><![CDATA[All LANs except LAN3]]></descr>
11793 
			<type>network</type>
11794 
			<detail><![CDATA[ || || || ]]></detail>
11795 
		</alias>
11796 
		<alias>
11797 
			<name>NTPport</name>
11798 
			<address>123</address>
11799 
			<descr><![CDATA[Port used by NTP]]></descr>
11800 
			<type>port</type>
11801 
			<detail><![CDATA[NTP]]></detail>
11802 
		</alias>
11803 
		<alias>
11804 
			<name>NUTclientsOnLAN1</name>
11805 
			<address>BEDiMacOnLAN1 MiniServ InternalDevServer vServer vServerHost</address>
11806 
			<descr><![CDATA[Systems on LAN1 that can use NUT services]]></descr>
11807 
			<type>host</type>
11808 
			<detail><![CDATA[ || || || || ]]></detail>
11809 
		</alias>
11810 
		<alias>
11811 
			<name>NUTclientsOnLAN2</name>
11812 
			<address>BEDiMacLAN2</address>
11813 
			<descr><![CDATA[Systems on LAN2 that can use NUT services]]></descr>
11814 
			<type>host</type>
11815 
			<detail/>
11816 
		</alias>
11817 
		<alias>
11818 
			<name>NUTport</name>
11819 
			<address>3493</address>
11820 
			<descr><![CDATA[Port used by NUT]]></descr>
11821 
			<type>port</type>
11822 
			<detail><![CDATA[NUT]]></detail>
11823 
		</alias>
11824 
		<alias>
11825 
			<name>NUTserver</name>
11826 
			<address>172.24.16.1</address>
11827 
			<descr><![CDATA[The NUT server system]]></descr>
11828 
			<type>host</type>
11829 
			<detail><![CDATA[NUT server]]></detail>
11830 
		</alias>
11831 
		<alias>
11832 
			<name>OpenDNScrappers</name>
11833 
			<address>208.67.216.136 208.67.222.222 208.67.220.220 208.67.222.220 208.67.220.222</address>
11834 
			<descr><![CDATA[OpenDNS systems that make unwanted connections]]></descr>
11835 
			<type>host</type>
11836 
			<detail><![CDATA[guide.opendns.com||resolver1.opendns.com||resolver2.opendns.com||resolver3.opendns.com||resolver4.opendns.com]]></detail>
11837 
		</alias>
11838 
		<alias>
11839 
			<name>OpenVPNtcp443LAN</name>
11840 
			<address>172.24.48.128/29</address>
11841 
			<descr><![CDATA[Virtual LAN given to OpenVPN via tcp:443 clients]]></descr>
11842 
			<type>network</type>
11843 
			<detail><![CDATA[Virtual LAN given to OpenVPN via tcp:443 clients]]></detail>
11844 
		</alias>
11845 
		<alias>
11846 
			<name>OpenVPNtcpPort</name>
11847 
			<address>443</address>
11848 
			<descr><![CDATA[TCP port used by OpenVPN]]></descr>
11849 
			<type>port</type>
11850 
			<detail><![CDATA[OpenVPN TCP]]></detail>
11851 
		</alias>
11852 
		<alias>
11853 
			<name>OpenVPNudp1194LAN</name>
11854 
			<address>172.24.48.0/29</address>
11855 
			<descr><![CDATA[Virtual LAN for OpenVPN clients via udp:1194]]></descr>
11856 
			<type>network</type>
11857 
			<detail><![CDATA[Virtual LAN for OpenVPN clients via udp:1194]]></detail>
11858 
		</alias>
11859 
		<alias>
11860 
			<name>OpenVPNudp16400LAN</name>
11861 
			<address>172.24.48.64/29</address>
11862 
			<descr><![CDATA[Virtual LAN for OpenVPN clients via udp:16400]]></descr>
11863 
			<type>network</type>
11864 
			<detail><![CDATA[Virtual LAN for OpenVPN clients via udp:16400]]></detail>
11865 
		</alias>
11866 
		<alias>
11867 
			<name>OpenVPNudp1701LAN</name>
11868 
			<address>172.24.48.32/29</address>
11869 
			<descr><![CDATA[Virtual LAN for OpenVPN clients via udp:1701]]></descr>
11870 
			<type>network</type>
11871 
			<detail><![CDATA[Virtual LAN for OpenVPN clients via udp:1701]]></detail>
11872 
		</alias>
11873 
		<alias>
11874 
			<name>OpenVPNudp50000LAN</name>
11875 
			<address>172.24.48.96/29</address>
11876 
			<descr><![CDATA[Virtual LAN for OpenVPN clients via udp:50000]]></descr>
11877 
			<type>network</type>
11878 
			<detail><![CDATA[Virtual LAN for OpenVPN clients via udp:50000]]></detail>
11879 
		</alias>
11880 
		<alias>
11881 
			<name>OpenVPNudp64032LAN</name>
11882 
			<address>172.24.64.240/30</address>
11883 
			<descr><![CDATA[Virtual LAN for OpenVPN clients via udp:64032]]></descr>
11884 
			<type>network</type>
11885 
			<detail><![CDATA[Virtual LAN for OpenVPN clients via udp:64032]]></detail>
11886 
		</alias>
11887 
		<alias>
11888 
			<name>OpenVPNudpPorts</name>
11889 
			<address>1194 1701 16400 50000</address>
11890 
			<descr><![CDATA[UDP ports used by OpenVPN]]></descr>
11891 
			<type>port</type>
11892 
			<detail><![CDATA[OpenVPN UDP||OpenVPN UDP||OpenVPN UDP||OpenVPN UDP]]></detail>
11893 
		</alias>
11894 
		<alias>
11895 
			<name>P2Phostiles1</name>
11896 
			<url>http://24.207.40.122/Resources/BlockLists/P2Phostiles1.txt</url>
11897 
			<updatefreq>1</updatefreq>
11898 
			<address>http://24.207.40.122/Resources/BlockLists/P2Phostiles1.txt</address>
11899 
			<descr><![CDATA[DEI : Peer-to-Peer Hostiles]]></descr>
11900 
			<type>urltable</type>
11901 
			<detail/>
11902 
		</alias>
11903 
		<alias>
11904 
			<name>P2Phostiles2</name>
11905 
			<url>http://24.207.40.122/Resources/BlockLists/P2Phostiles2.txt</url>
11906 
			<updatefreq>1</updatefreq>
11907 
			<address>http://24.207.40.122/Resources/BlockLists/P2Phostiles2.txt</address>
11908 
			<descr><![CDATA[DEI : Peer-to-Peer Hostiles]]></descr>
11909 
			<type>urltable</type>
11910 
			<detail/>
11911 
		</alias>
11912 
		<alias>
11913 
			<name>P2Phostiles3</name>
11914 
			<url>http://24.207.40.122/Resources/BlockLists/P2Phostiles3.txt</url>
11915 
			<updatefreq>1</updatefreq>
11916 
			<address>http://24.207.40.122/Resources/BlockLists/P2Phostiles3.txt</address>
11917 
			<descr><![CDATA[DEI : Peer-to-Peer Hostiles]]></descr>
11918 
			<type>urltable</type>
11919 
			<detail/>
11920 
		</alias>
11921 
		<alias>
11922 
			<name>P2Phostiles4</name>
11923 
			<url>http://24.207.40.122/Resources/BlockLists/P2Phostiles4.txt</url>
11924 
			<updatefreq>1</updatefreq>
11925 
			<address>http://24.207.40.122/Resources/BlockLists/P2Phostiles4.txt</address>
11926 
			<descr><![CDATA[DEI : Peer-to-Peer Hostiles]]></descr>
11927 
			<type>urltable</type>
11928 
			<detail/>
11929 
		</alias>
11930 
		<alias>
11931 
			<name>P2Phostiles5</name>
11932 
			<url>http://24.207.40.122/Resources/BlockLists/P2Phostiles5.txt</url>
11933 
			<updatefreq>1</updatefreq>
11934 
			<address>http://24.207.40.122/Resources/BlockLists/P2Phostiles5.txt</address>
11935 
			<descr><![CDATA[DEI : Peer-to-Peer Hostiles]]></descr>
11936 
			<type>urltable</type>
11937 
			<detail/>
11938 
		</alias>
11939 
		<alias>
11940 
			<name>P2Phostiles6</name>
11941 
			<url>http://24.207.40.122/Resources/BlockLists/P2Phostiles6.txt</url>
11942 
			<updatefreq>1</updatefreq>
11943 
			<address>http://24.207.40.122/Resources/BlockLists/P2Phostiles6.txt</address>
11944 
			<descr><![CDATA[DEI : Peer-to-Peer Hostiles]]></descr>
11945 
			<type>urltable</type>
11946 
			<detail/>
11947 
		</alias>
11948 
		<alias>
11949 
			<name>P2Pports</name>
11950 
			<address>BittorrentPort GnutellaPort</address>
11951 
			<descr><![CDATA[Ports used for peer-to-peer]]></descr>
11952 
			<type>port</type>
11953 
			<detail><![CDATA[Bittorrent P2P||Gnutella P2P]]></detail>
11954 
		</alias>
11955 
		<alias>
11956 
			<name>pfB_Africa_v4</name>
11957 
			<url>http://127.0.0.1:80/pfblockerng/pfblockerng.php?pfb=pfB_Africa_v4</url>
11958 
			<updatefreq>32</updatefreq>
11959 
			<address/>
11960 
			<descr><![CDATA[pfBlockerNG _v4  Country Alias]]></descr>
11961 
			<type>urltable</type>
11962 
			<detail><![CDATA[DO NOT EDIT THIS ALIAS]]></detail>
11963 
		</alias>
11964 
		<alias>
11965 
			<name>pfB_Africa_v6</name>
11966 
			<url>http://127.0.0.1:80/pfblockerng/pfblockerng.php?pfb=pfB_Africa_v6</url>
11967 
			<updatefreq>32</updatefreq>
11968 
			<address/>
11969 
			<descr><![CDATA[pfBlockerNG _v6  Country Alias]]></descr>
11970 
			<type>urltable</type>
11971 
			<detail><![CDATA[DO NOT EDIT THIS ALIAS]]></detail>
11972 
		</alias>
11973 
		<alias>
11974 
			<name>pfB_Asia_v4</name>
11975 
			<url>http://127.0.0.1:80/pfblockerng/pfblockerng.php?pfb=pfB_Asia_v4</url>
11976 
			<updatefreq>32</updatefreq>
11977 
			<address/>
11978 
			<descr><![CDATA[pfBlockerNG _v4  Country Alias]]></descr>
11979 
			<type>urltable</type>
11980 
			<detail><![CDATA[DO NOT EDIT THIS ALIAS]]></detail>
11981 
		</alias>
11982 
		<alias>
11983 
			<name>pfB_Asia_v6</name>
11984 
			<url>http://127.0.0.1:80/pfblockerng/pfblockerng.php?pfb=pfB_Asia_v6</url>
11985 
			<updatefreq>32</updatefreq>
11986 
			<address/>
11987 
			<descr><![CDATA[pfBlockerNG _v6  Country Alias]]></descr>
11988 
			<type>urltable</type>
11989 
			<detail><![CDATA[DO NOT EDIT THIS ALIAS]]></detail>
11990 
		</alias>
11991 
		<alias>
11992 
			<name>pfB_Europe_v4</name>
11993 
			<url>http://127.0.0.1:80/pfblockerng/pfblockerng.php?pfb=pfB_Europe_v4</url>
11994 
			<updatefreq>32</updatefreq>
11995 
			<address/>
11996 
			<descr><![CDATA[pfBlockerNG _v4  Country Alias]]></descr>
11997 
			<type>urltable</type>
11998 
			<detail><![CDATA[DO NOT EDIT THIS ALIAS]]></detail>
11999 
		</alias>
12000 
		<alias>
12001 
			<name>pfB_Europe_v6</name>
12002 
			<url>http://127.0.0.1:80/pfblockerng/pfblockerng.php?pfb=pfB_Europe_v6</url>
12003 
			<updatefreq>32</updatefreq>
12004 
			<address/>
12005 
			<descr><![CDATA[pfBlockerNG _v6  Country Alias]]></descr>
12006 
			<type>urltable</type>
12007 
			<detail><![CDATA[DO NOT EDIT THIS ALIAS]]></detail>
12008 
		</alias>
12009 
		<alias>
12010 
			<name>pfB_NAmerica_v4</name>
12011 
			<url>http://127.0.0.1:80/pfblockerng/pfblockerng.php?pfb=pfB_NAmerica_v4</url>
12012 
			<updatefreq>32</updatefreq>
12013 
			<address/>
12014 
			<descr><![CDATA[pfBlockerNG _v4  Country Alias]]></descr>
12015 
			<type>urltable</type>
12016 
			<detail><![CDATA[DO NOT EDIT THIS ALIAS]]></detail>
12017 
		</alias>
12018 
		<alias>
12019 
			<name>pfB_NAmerica_v6</name>
12020 
			<url>http://127.0.0.1:80/pfblockerng/pfblockerng.php?pfb=pfB_NAmerica_v6</url>
12021 
			<updatefreq>32</updatefreq>
12022 
			<address/>
12023 
			<descr><![CDATA[pfBlockerNG _v6  Country Alias]]></descr>
12024 
			<type>urltable</type>
12025 
			<detail><![CDATA[DO NOT EDIT THIS ALIAS]]></detail>
12026 
		</alias>
12027 
		<alias>
12028 
			<name>pfB_PS_v4</name>
12029 
			<url>http://127.0.0.1:80/pfblockerng/pfblockerng.php?pfb=pfB_PS_v4</url>
12030 
			<updatefreq>32</updatefreq>
12031 
			<address/>
12032 
			<descr><![CDATA[pfBlockerNG _v4  Country Alias]]></descr>
12033 
			<type>urltable</type>
12034 
			<detail><![CDATA[DO NOT EDIT THIS ALIAS]]></detail>
12035 
		</alias>
12036 
		<alias>
12037 
			<name>pfB_SAmerica_v4</name>
12038 
			<url>http://127.0.0.1:80/pfblockerng/pfblockerng.php?pfb=pfB_SAmerica_v4</url>
12039 
			<updatefreq>32</updatefreq>
12040 
			<address/>
12041 
			<descr><![CDATA[pfBlockerNG _v4  Country Alias]]></descr>
12042 
			<type>urltable</type>
12043 
			<detail><![CDATA[DO NOT EDIT THIS ALIAS]]></detail>
12044 
		</alias>
12045 
		<alias>
12046 
			<name>pfB_SAmerica_v6</name>
12047 
			<url>http://127.0.0.1:80/pfblockerng/pfblockerng.php?pfb=pfB_SAmerica_v6</url>
12048 
			<updatefreq>32</updatefreq>
12049 
			<address/>
12050 
			<descr><![CDATA[pfBlockerNG _v6  Country Alias]]></descr>
12051 
			<type>urltable</type>
12052 
			<detail><![CDATA[DO NOT EDIT THIS ALIAS]]></detail>
12053 
		</alias>
12054 
		<alias>
12055 
			<name>pfSenseInternal</name>
12056 
			<address>127.0.0.1</address>
12057 
			<descr><![CDATA[The pfSense router, itself (i.e., localhost)]]></descr>
12058 
			<type>host</type>
12059 
			<detail><![CDATA[pfSense localhost]]></detail>
12060 
		</alias>
12061 
		<alias>
12062 
			<name>PhoneHomeBlocks</name>
12063 
			<address>obdev.at www.obdev.at forums.obdev.at mail.obdev.at wtf.obdev.at parallels.com registration.parallels.com update.parallels.com blist.parallels.com pd6.blist.parallels.com pd7.blist.parallels.com pdfm7.blist.parallels.com toggleable.com javascript-blocker.toggleable.com lion.toggleable.com crystalidea.com</address>
12064 
			<descr><![CDATA[Various sites to which apps may phone home]]></descr>
12065 
			<type>host</type>
12066 
			<detail><![CDATA[Little Snitch||Little Snitch||Little Snitch||Little Snitch||Little Snitch||Parallels||Parallels||Parallels||Parallels||Parallels||Parallels||Parallels||JavaScript Blocker||JavaScript Blocker||JavaScript Blocker||Macs Fan Control]]></detail>
12067 
		</alias>
12068 
		<alias>
12069 
			<name>POP3ports</name>
12070 
			<address>110 995</address>
12071 
			<descr><![CDATA[Ports used by Post Office Protocol]]></descr>
12072 
			<type>port</type>
12073 
			<detail><![CDATA[POP3 &amp; APOP||POP3/S]]></detail>
12074 
		</alias>
12075 
		<alias>
12076 
			<name>PrivateWebServers</name>
12077 
			<address>DEIvServer SEvServer TAKvServer</address>
12078 
			<descr><![CDATA[Private/internal IPs for our public web servers]]></descr>
12079 
			<type>host</type>
12080 
			<detail><![CDATA[vServer for siteA.com||vServer for siteC.com||vServer for siteB.com]]></detail>
12081 
		</alias>
12082 
		<alias>
12083 
			<name>PublicServerPorts</name>
12084 
			<address>WebPorts EmailPorts</address>
12085 
			<descr><![CDATA[Ports mapped to our internal/private servers]]></descr>
12086 
			<type>port</type>
12087 
			<detail><![CDATA[Web||Email]]></detail>
12088 
		</alias>
12089 
		<alias>
12090 
			<name>PublicWebServers</name>
12091 
			<address>12.34.56.2 12.34.56.3 12.34.56.4</address>
12092 
			<descr><![CDATA[Public/external IPs for our public web servers]]></descr>
12093 
			<type>host</type>
12094 
			<detail><![CDATA[siteA.com||siteC.com||siteB.com]]></detail>
12095 
		</alias>
12096 
		<alias>
12097 
			<name>RetrospectPort</name>
12098 
			<address>497</address>
12099 
			<descr><![CDATA[Port used by Retrospect]]></descr>
12100 
			<type>port</type>
12101 
			<detail><![CDATA[Retrospect]]></detail>
12102 
		</alias>
12103 
		<alias>
12104 
			<name>SEdevServer</name>
12105 
			<address>172.24.16.6</address>
12106 
			<descr><![CDATA[Development/test server for siteC.com]]></descr>
12107 
			<type>host</type>
12108 
			<detail><![CDATA[devServer for siteC.com]]></detail>
12109 
		</alias>
12110 
		<alias>
12111 
			<name>Setnet</name>
12112 
			<address>fishh2o.com</address>
12113 
			<descr><![CDATA[The system where the &quot;Setnet&quot; IPs/etc. are stored]]></descr>
12114 
			<type>host</type>
12115 
			<detail><![CDATA[Setnet &quot;storage&quot; system]]></detail>
12116 
		</alias>
12117 
		<alias>
12118 
			<name>SEvServer</name>
12119 
			<address>172.24.18.6</address>
12120 
			<descr><![CDATA[vServer for siteC.com]]></descr>
12121 
			<type>host</type>
12122 
			<detail><![CDATA[vServer for siteC.com]]></detail>
12123 
		</alias>
12124 
		<alias>
12125 
			<name>SMTPports</name>
12126 
			<address>25 7725</address>
12127 
			<descr><![CDATA[Ports used by Simple Mail Transfer Protocol]]></descr>
12128 
			<type>port</type>
12129 
			<detail><![CDATA[SMTP||SMTP (DEI)]]></detail>
12130 
		</alias>
12131 
		<alias>
12132 
			<name>SNMPport</name>
12133 
			<address>161</address>
12134 
			<descr><![CDATA[Port used by SNMP]]></descr>
12135 
			<type>port</type>
12136 
			<detail><![CDATA[SNMP]]></detail>
12137 
		</alias>
12138 
		<alias>
12139 
			<name>SPDiMac</name>
12140 
			<address>172.24.32.134</address>
12141 
			<descr><![CDATA[SPD's iMac]]></descr>
12142 
			<type>host</type>
12143 
			<detail><![CDATA[SPD's iMac]]></detail>
12144 
		</alias>
12145 
		<alias>
12146 
			<name>SPDsLAN</name>
12147 
			<address>172.24.32.0/24</address>
12148 
			<descr><![CDATA[LAN at SPD's office]]></descr>
12149 
			<type>network</type>
12150 
			<detail><![CDATA[LAN at SPD's office]]></detail>
12151 
		</alias>
12152 
		<alias>
12153 
			<name>SPDsWAN</name>
12154 
			<address>someplace.dnsalias.com</address>
12155 
			<descr><![CDATA[SPD's dynamic WAN IP address]]></descr>
12156 
			<type>host</type>
12157 
			<detail><![CDATA[SPD's dynamic WAN IP address]]></detail>
12158 
		</alias>
12159 
		<alias>
12160 
			<name>SSHport</name>
12161 
			<address>22</address>
12162 
			<descr><![CDATA[Port used by ssh]]></descr>
12163 
			<type>port</type>
12164 
			<detail><![CDATA[SSH]]></detail>
12165 
		</alias>
12166 
		<alias>
12167 
			<name>TAKdevServer</name>
12168 
			<address>172.24.16.5</address>
12169 
			<descr><![CDATA[Development/test server for siteB.com]]></descr>
12170 
			<type>host</type>
12171 
			<detail><![CDATA[devServer for siteB.com]]></detail>
12172 
		</alias>
12173 
		<alias>
12174 
			<name>TAKvServer</name>
12175 
			<address>172.24.18.5</address>
12176 
			<descr><![CDATA[vServer for siteB.com]]></descr>
12177 
			<type>host</type>
12178 
			<detail><![CDATA[vServer for siteB.com]]></detail>
12179 
		</alias>
12180 
		<alias>
12181 
			<name>TestRouter</name>
12182 
			<address>172.24.16.2 172.24.17.2 172.24.18.2</address>
12183 
			<descr><![CDATA[pfSense test router]]></descr>
12184 
			<type>host</type>
12185 
			<detail><![CDATA[ || || ]]></detail>
12186 
		</alias>
12187 
		<alias>
12188 
			<name>TorServerExitIPs</name>
12189 
			<url>http://24.207.40.122/Resources/BlockLists/TorServerExitIPs.txt</url>
12190 
			<updatefreq>1</updatefreq>
12191 
			<address>http://24.207.40.122/Resources/BlockLists/TorServerExitIPs.txt</address>
12192 
			<descr><![CDATA[torproject.org: Tor-server exit IPs]]></descr>
12193 
			<type>urltable</type>
12194 
			<detail/>
12195 
		</alias>
12196 
		<alias>
12197 
			<name>VNCports</name>
12198 
			<address>5900:5930</address>
12199 
			<descr><![CDATA[Ports used by ARD, VNC &amp; Screen Sharing]]></descr>
12200 
			<type>port</type>
12201 
			<detail><![CDATA[ARD, VNC &amp; Screen Sharing]]></detail>
12202 
		</alias>
12203 
		<alias>
12204 
			<name>VoIProuter</name>
12205 
			<address>172.24.16.251</address>
12206 
			<descr><![CDATA[LinkSys VoIP Router]]></descr>
12207 
			<type>host</type>
12208 
			<detail><![CDATA[LinkSys VoIP Router||]]></detail>
12209 
		</alias>
12210 
		<alias>
12211 
			<name>vServer</name>
12212 
			<address>172.24.16.166 172.24.18.99</address>
12213 
			<descr><![CDATA[DEI's virtualized server &quot;machine&quot;]]></descr>
12214 
			<type>host</type>
12215 
			<detail><![CDATA[vServer (LAN1)||vServer no-ads-server (LAN3)]]></detail>
12216 
		</alias>
12217 
		<alias>
12218 
			<name>vServerExternalDestPorts</name>
12219 
			<address>DNSport SMTPports WebPorts WhoIsPort</address>
12220 
			<descr><![CDATA[Ports thru which vServer I'net traffic is allowed]]></descr>
12221 
			<type>port</type>
12222 
			<detail><![CDATA[DNS||SMTP||Web||WhoIs]]></detail>
12223 
		</alias>
12224 
		<alias>
12225 
			<name>vServerHost</name>
12226 
			<address>172.24.16.234 172.24.17.234 172.24.18.234</address>
12227 
			<descr><![CDATA[The system that hosts the vServer virtual machine]]></descr>
12228 
			<type>host</type>
12229 
			<detail><![CDATA[System that hosts vServer (on LAN1)||System that hosts vServer (on LAN2)||System that hosts vServer (on LAN3)]]></detail>
12230 
		</alias>
12231 
		<alias>
12232 
			<name>vServerLocalDest</name>
12233 
			<address>DEIsLAN1 LocalMulticastNetBlk pfSenseInternal</address>
12234 
			<descr><![CDATA[Allow required vServer access to local destinations]]></descr>
12235 
			<type>host</type>
12236 
			<detail><![CDATA[ || || ]]></detail>
12237 
		</alias>
12238 
		<alias>
12239 
			<name>vServerRemoteDest</name>
12240 
			<address>vmx.spamcop.net Setnet PublicWebServers</address>
12241 
			<descr><![CDATA[Allow required vServer access to remote destinations]]></descr>
12242 
			<type>host</type>
12243 
			<detail><![CDATA[Spam-reporting server||Setnet &quot;storage&quot;||Our web servers]]></detail>
12244 
		</alias>
12245 
		<alias>
12246 
			<name>WAN1_DEI</name>
12247 
			<address>12.34.56.2</address>
12248 
			<descr><![CDATA[WAN1 siteA.com]]></descr>
12249 
			<type>host</type>
12250 
			<detail><![CDATA[WAN1 siteA.com]]></detail>
12251 
		</alias>
12252 
		<alias>
12253 
			<name>WAN2_SE</name>
12254 
			<address>12.34.56.3</address>
12255 
			<descr><![CDATA[WAN2 siteC.com]]></descr>
12256 
			<type>host</type>
12257 
			<detail><![CDATA[WAN2 siteC.com]]></detail>
12258 
		</alias>
12259 
		<alias>
12260 
			<name>WAN3_TAK</name>
12261 
			<address>12.34.56.4</address>
12262 
			<descr><![CDATA[WAN3 siteB.com]]></descr>
12263 
			<type>host</type>
12264 
			<detail><![CDATA[WAN3 siteB.com]]></detail>
12265 
		</alias>
12266 
		<alias>
12267 
			<name>WAN4_Spare</name>
12268 
			<address>12.34.56.5</address>
12269 
			<descr><![CDATA[WAN4 unused/spare (was reqcontrol.com)]]></descr>
12270 
			<type>host</type>
12271 
			<detail><![CDATA[WAN4 unused/spare]]></detail>
12272 
		</alias>
12273 
		<alias>
12274 
			<name>WAN5_Test</name>
12275 
			<address>12.34.56.6</address>
12276 
			<descr><![CDATA[WAN5 Testing]]></descr>
12277 
			<type>host</type>
12278 
			<detail><![CDATA[WAN5 Testing]]></detail>
12279 
		</alias>
12280 
		<alias>
12281 
			<name>WAN_GW</name>
12282 
			<address>12.34.56.1</address>
12283 
			<descr><![CDATA[WAN Gateway]]></descr>
12284 
			<type>host</type>
12285 
			<detail><![CDATA[WAN Gateway]]></detail>
12286 
		</alias>
12287 
		<alias>
12288 
			<name>WebPorts</name>
12289 
			<address>80 443</address>
12290 
			<descr><![CDATA[Ports used by web services]]></descr>
12291 
			<type>port</type>
12292 
			<detail><![CDATA[HTTP||HTTPS]]></detail>
12293 
		</alias>
12294 
		<alias>
12295 
			<name>WhitelistedDestinations</name>
12296 
			<address>SPDsWAN answers.yahoo.com finance.yahoo.com news.yahoo.com l.yimg.com lifelabs.com download.macromedia.com cdn.sstatic.net help.dnsmadeeasy.com Setnet</address>
12297 
			<descr><![CDATA[Whitelisted FQDNs (overrides all blocking)]]></descr>
12298 
			<type>host</type>
12299 
			<detail><![CDATA[ || || || || || || || || || ]]></detail>
12300 
		</alias>
12301 
		<alias>
12302 
			<name>WhitelistedHosts</name>
12303 
			<address>BEDiMac BEDiPhone LDDlaptop LDDiMac LDDiPhone LDDiPad LDDlaptopPPC DEIwirelessGuests KitchenMac MobileVPNlans</address>
12304 
			<descr><![CDATA[Hosts allowed access to whitelisted addresses]]></descr>
12305 
			<type>host</type>
12306 
			<detail><![CDATA[ || || || || || || || || || ]]></detail>
12307 
		</alias>
12308 
		<alias>
12309 
			<name>WhoIsPort</name>
12310 
			<address>43</address>
12311 
			<descr><![CDATA[Port used by whois]]></descr>
12312 
			<type>port</type>
12313 
			<detail><![CDATA[whois]]></detail>
12314 
		</alias>
12315 
		<alias>
12316 
			<name>WiFiRouters</name>
12317 
			<address>172.24.17.252 172.24.17.253 172.24.17.254</address>
12318 
			<descr><![CDATA[WiFi access-point/router devices]]></descr>
12319 
			<type>host</type>
12320 
			<detail><![CDATA[DEI Wireless 0 (L's Office)||DEI Wireless 1 (Upstairs East confroom)||DEI Wireless 2 (Living Room)]]></detail>
12321 
		</alias>
12322 
	</aliases>
12323 
	<proxyarp/>
12324 
	<cron>
12325 
		<item>
12326 
			<minute>1,31</minute>
12327 
			<hour>0-5</hour>
12328 
			<mday>*</mday>
12329 
			<month>*</month>
12330 
			<wday>*</wday>
12331 
			<who>root</who>
12332 
			<command>/usr/bin/nice -n20 adjkerntz -a</command>
12333 
		</item>
12334 
		<item>
12335 
			<minute>1</minute>
12336 
			<hour>3</hour>
12337 
			<mday>*</mday>
12338 
			<month>*</month>
12339 
			<wday>*</wday>
12340 
			<who>root</who>
12341 
			<command>/usr/bin/nice -n20 /etc/rc.update_bogons.sh</command>
12342 
		</item>
12343 
		<item>
12344 
			<minute>*/60</minute>
12345 
			<hour>*</hour>
12346 
			<mday>*</mday>
12347 
			<month>*</month>
12348 
			<wday>*</wday>
12349 
			<who>root</who>
12350 
			<command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 sshlockout</command>
12351 
		</item>
12352 
		<item>
12353 
			<minute>1</minute>
12354 
			<hour>1</hour>
12355 
			<mday>*</mday>
12356 
			<month>*</month>
12357 
			<wday>*</wday>
12358 
			<who>root</who>
12359 
			<command>/usr/bin/nice -n20 /etc/rc.dyndns.update</command>
12360 
		</item>
12361 
		<item>
12362 
			<minute>*/60</minute>
12363 
			<hour>*</hour>
12364 
			<mday>*</mday>
12365 
			<month>*</month>
12366 
			<wday>*</wday>
12367 
			<who>root</who>
12368 
			<command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 virusprot</command>
12369 
		</item>
12370 
		<item>
12371 
			<minute>30</minute>
12372 
			<hour>12</hour>
12373 
			<mday>*</mday>
12374 
			<month>*</month>
12375 
			<wday>*</wday>
12376 
			<who>root</who>
12377 
			<command>/usr/bin/nice -n20 /etc/rc.update_urltables</command>
12378 
		</item>
12379 
		<item>
12380 
			<minute>*/60</minute>
12381 
			<hour>*</hour>
12382 
			<mday>*</mday>
12383 
			<month>*</month>
12384 
			<wday>*</wday>
12385 
			<who>root</who>
12386 
			<command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 webConfiguratorlockout</command>
12387 
		</item>
12388 
		<item>
12389 
			<minute>15</minute>
12390 
			<hour>*</hour>
12391 
			<mday>*</mday>
12392 
			<month>*</month>
12393 
			<wday>*</wday>
12394 
			<who>root</who>
12395 
			<command>/usr/local/bin/php /usr/local/www/pfblockerng/pfblockerng.php cron &gt;&gt; /var/log/pfblockerng/pfblockerng.log 2&gt;&amp;1</command>
12396 
		</item>
12397 
		<item>
12398 
			<minute>0</minute>
12399 
			<hour>19</hour>
12400 
			<mday>1,2,3,4,5,6,7</mday>
12401 
			<month>*</month>
12402 
			<wday>2</wday>
12403 
			<who>root</who>
12404 
			<command>/usr/local/bin/php /usr/local/www/pfblockerng/pfblockerng.php dc &gt;&gt; /var/log/pfblockerng/geoip.log 2&gt;&amp;1</command>
12405 
		</item>
12406 
	</cron>
12407 
	<wol>
12408 
		<wolentry>
12409 
			<interface>lan</interface>
12410 
			<mac>00:23:df:8f:89:3e</mac>
12411 
			<descr><![CDATA[Kitchen iMac (iMac16)]]></descr>
12412 
		</wolentry>
12413 
		<wolentry>
12414 
			<interface>lan</interface>
12415 
			<mac>3c:07:54:3a:29:c6</mac>
12416 
			<descr><![CDATA[L's iMac (iMac227)]]></descr>
12417 
		</wolentry>
12418 
		<wolentry>
12419 
			<interface>opt1</interface>
12420 
			<mac>00:11:24:85:45:fc</mac>
12421 
			<descr><![CDATA[L's laptop (G4PB167)]]></descr>
12422 
		</wolentry>
12423 
		<wolentry>
12424 
			<interface>opt1</interface>
12425 
			<mac>00:17:f2:e7:1d:80</mac>
12426 
			<descr><![CDATA[L's laptop (MBp13 wireless)]]></descr>
12427 
		</wolentry>
12428 
		<wolentry>
12429 
			<interface>lan</interface>
12430 
			<mac>00:17:f2:c3:5a:06</mac>
12431 
			<descr><![CDATA[L's laptop (MBp13)]]></descr>
12432 
		</wolentry>
12433 
	</wol>
12434 
	<rrd>
12435 
		<category>quality</category>
12436 
		<style>inverse</style>
12437 
		<period>absolute</period>
12438 
		<enable/>
12439 
	</rrd>
12440 
	<load_balancer>
12441 
		<monitor_type>
12442 
			<name>ICMP</name>
12443 
			<type>icmp</type>
12444 
			<descr><![CDATA[ICMP]]></descr>
12445 
			<options/>
12446 
		</monitor_type>
12447 
		<monitor_type>
12448 
			<name>TCP</name>
12449 
			<type>tcp</type>
12450 
			<descr><![CDATA[Generic TCP]]></descr>
12451 
			<options/>
12452 
		</monitor_type>
12453 
		<monitor_type>
12454 
			<name>HTTP</name>
12455 
			<type>http</type>
12456 
			<descr><![CDATA[Generic HTTP]]></descr>
12457 
			<options>
12458 
				<path>/</path>
12459 
				<host/>
12460 
				<code>200</code>
12461 
			</options>
12462 
		</monitor_type>
12463 
		<monitor_type>
12464 
			<name>HTTPS</name>
12465 
			<type>https</type>
12466 
			<descr><![CDATA[Generic HTTPS]]></descr>
12467 
			<options>
12468 
				<path>/</path>
12469 
				<host/>
12470 
				<code>200</code>
12471 
			</options>
12472 
		</monitor_type>
12473 
		<monitor_type>
12474 
			<name>SMTP</name>
12475 
			<type>send</type>
12476 
			<descr><![CDATA[Generic SMTP]]></descr>
12477 
			<options>
12478 
				<send/>
12479 
				<expect>220 *</expect>
12480 
			</options>
12481 
		</monitor_type>
12482 
	</load_balancer>
12483 
	<widgets>
12484 
		<sequence>interfaces-container:col1:show,interface_statistics-container:col1:show,system_information-container:col1:show,traffic_graphs-container:col1:close,captive_portal_status-container:col1:close,carp_status-container:col1:close,cpu_graphs-container:col1:close,gmirror_status-container:col1:close,installed_packages-container:col1:close,load_balancer_status-container:col2:close,picture-container:col2:close,rss-container:col2:close,wake_on_lan-container:col2:none,gateways-container:col2:show,services_status-container:col2:show,openvpn-container:col2:show,ipsec-container:col2:show,log-container:col2:show,dyn_dns_status-container:col2:none,smart_status-container:col2:none,thermal_sensors-container:col2:close,ntp_status-container:col2:none,pfblockerng-container:col2:close</sequence>
12485 
	</widgets>
12486 
	<revision>
12487 
	</revision>
12488 
	<openvpn>
12489 
		<openvpn-server>
12490 
			<vpnid>1</vpnid>
12491 
			<mode>server_tls_user</mode>
12492 
			<authmode>Local Database</authmode>
12493 
			<protocol>UDP</protocol>
12494 
			<dev_mode>tun</dev_mode>
12495 
			<ipaddr>12.34.56.5</ipaddr>
12496 
			<interface>wan_vip4</interface>
12497 
			<local_port>1194</local_port>
12498 
			<description><![CDATA[udp:1194]]></description>
12499 
			<custom_options>mute-replay-warnings;
12500 
ping 3;
12501 
ping-exit 7;
12502 
inactive 1200;
12503 
verb 1;
12504 
push &quot;explicit-exit-notify&quot;;
12505 
push &quot;ping 3&quot;;
12506 
push &quot;ping-exit 7&quot;;
12507 
push &quot;inactive 1200&quot;;</custom_options>
12508 
			<tls>Iw0KIyAyMDQ4IGJpdCBPcGVuVlBOIHN0YXRpYyBrZXkNCiMNCi0tLS0tQkVHSU4gT3BlblZQTiBTdGF0aWMga2V5IFYxLS0tLS0NCmI2NGM2NzkyNjIyMDEwNjNlN2IyYThmNGIwYWUzM2UyDQoyZDE3NDIyNmQ0NmFiODMwZWMwYmYxNWYyNjU0ZGM5Zg0KNDZmYzhjYTkzNTE4MDFkMzE2ZTVkNDdmMjg0NjJmNmQNCjE3Yzk2OTI4MDU3MzNjOGNhNTM1ZDdlYzAyYzhhODVjDQo3NTg3YmQ2YzY0ZmZlYjliYjQ3YmU0NzYwYzExNDg3MQ0KNzRkNTBlMDI3ZjI5MjhiN2MzMmI4Njc1ZTU0NWNmZTgNCmY0MWJhZjNmNmZjYjNhMWU1NDA5OGQzMDhlZmQxODQ3DQo0YzhlNjU5YTE0NmM3ZmJiYmMwY2U5MDRlZWYxZmY0Zg0KOTE4MjY1NmI5NjliMjQ5YzJmYWYyMTEwZWNiZjMyOTkNCjlkN2ZmODFjZmM3M2M0ZjJjZTM0MDMwMTZlZjExZGU5DQpjNmNkOTYxZThkZDg4MmNlZGQwYTYyYzQ5MDM2MzE2Ng0KYzEzNDQ5YTEwNWU0NTM1ZDljNzQwZmM5ZGMxMGJhOGINCmIwNmFmOTRhYzc3NThjZWEzNjdiMzg5OTYzZTY0ZTM4DQo3ZWE5MjQ2M2ZlZWQ2NjNlNmFlMzhhOGRkNWJmYTE5Yg0KMzM0N2JmMjk1ZGM0M2Y1NTdkODM2N2Y0YzE3YTdjZGUNCjNlMTE5MDQxZjA3MWYyMmMwYTQ4ZmM1NjZhZDg1ZDdlDQotLS0tLUVORCBPcGVuVlBOIFN0YXRpYyBrZXkgVjEtLS0tLQ0K</tls>
12509 
			<caref>52d8ed3d6cf7b</caref>
12510 
			<crlref/>
12511 
			<certref>52f5f7edd9d2e</certref>
12512 
			<dh_length>1024</dh_length>
12513 
			<cert_depth>1</cert_depth>
12514 
			<strictusercn/>
12515 
			<crypto>AES-128-CBC</crypto>
12516 
			<engine>none</engine>
12517 
			<tunnel_network>172.24.48.0/29</tunnel_network>
12518 
			<tunnel_networkv6/>
12519 
			<remote_network/>
12520 
			<remote_networkv6/>
12521 
			<gwredir>yes</gwredir>
12522 
			<local_network>172.24.17.0/24</local_network>
12523 
			<local_networkv6/>
12524 
			<maxclients>6</maxclients>
12525 
			<compression>adaptive</compression>
12526 
			<passtos/>
12527 
			<client2client>yes</client2client>
12528 
			<dynamic_ip>yes</dynamic_ip>
12529 
			<pool_enable>yes</pool_enable>
12530 
			<topology_subnet>yes</topology_subnet>
12531 
			<serverbridge_dhcp/>
12532 
			<serverbridge_interface>none</serverbridge_interface>
12533 
			<serverbridge_dhcp_start/>
12534 
			<serverbridge_dhcp_end/>
12535 
			<dns_domain>siteA.com</dns_domain>
12536 
			<dns_server1>172.24.16.1</dns_server1>
12537 
			<dns_server2/>
12538 
			<dns_server3/>
12539 
			<dns_server4/>
12540 
			<ntp_server1>172.24.16.1</ntp_server1>
12541 
			<ntp_server2/>
12542 
			<netbios_enable/>
12543 
			<netbios_ntype>0</netbios_ntype>
12544 
			<netbios_scope/>
12545 
			<duplicate_cn/>
12546 
		</openvpn-server>
12547 
		<openvpn-server>
12548 
			<vpnid>3</vpnid>
12549 
			<mode>server_tls_user</mode>
12550 
			<authmode>Local Database</authmode>
12551 
			<protocol>UDP</protocol>
12552 
			<dev_mode>tun</dev_mode>
12553 
			<ipaddr>12.34.56.5</ipaddr>
12554 
			<interface>wan_vip4</interface>
12555 
			<local_port>1701</local_port>
12556 
			<description><![CDATA[udp:1701]]></description>
12557 
			<custom_options>mute-replay-warnings;
12558 
ping 3;
12559 
ping-exit 7;
12560 
inactive 1200;
12561 
verb 1;
12562 
push &quot;explicit-exit-notify&quot;;
12563 
push &quot;ping 3&quot;;
12564 
push &quot;ping-exit 7&quot;;
12565 
push &quot;inactive 1200&quot;;</custom_options>
12566 
			<tls>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</tls>
12567 
			<caref>52d8ed3d6cf7b</caref>
12568 
			<crlref/>
12569 
			<certref>52f5f7edd9d2e</certref>
12570 
			<dh_length>1024</dh_length>
12571 
			<cert_depth>1</cert_depth>
12572 
			<strictusercn/>
12573 
			<crypto>AES-128-CBC</crypto>
12574 
			<engine>none</engine>
12575 
			<tunnel_network>172.24.48.32/29</tunnel_network>
12576 
			<tunnel_networkv6/>
12577 
			<remote_network/>
12578 
			<remote_networkv6/>
12579 
			<gwredir>yes</gwredir>
12580 
			<local_network/>
12581 
			<local_networkv6/>
12582 
			<maxclients>6</maxclients>
12583 
			<compression>adaptive</compression>
12584 
			<passtos/>
12585 
			<client2client>yes</client2client>
12586 
			<dynamic_ip>yes</dynamic_ip>
12587 
			<pool_enable>yes</pool_enable>
12588 
			<topology_subnet>yes</topology_subnet>
12589 
			<serverbridge_dhcp/>
12590 
			<serverbridge_interface>none</serverbridge_interface>
12591 
			<serverbridge_dhcp_start/>
12592 
			<serverbridge_dhcp_end/>
12593 
			<dns_domain>siteA.com</dns_domain>
12594 
			<dns_server1>172.24.16.1</dns_server1>
12595 
			<dns_server2/>
12596 
			<dns_server3/>
12597 
			<dns_server4/>
12598 
			<ntp_server1>172.24.16.1</ntp_server1>
12599 
			<ntp_server2/>
12600 
			<netbios_enable/>
12601 
			<netbios_ntype>0</netbios_ntype>
12602 
			<netbios_scope/>
12603 
			<duplicate_cn/>
12604 
		</openvpn-server>
12605 
		<openvpn-server>
12606 
			<vpnid>4</vpnid>
12607 
			<mode>server_tls_user</mode>
12608 
			<authmode>Local Database</authmode>
12609 
			<protocol>UDP</protocol>
12610 
			<dev_mode>tun</dev_mode>
12611 
			<ipaddr>12.34.56.5</ipaddr>
12612 
			<interface>wan_vip4</interface>
12613 
			<local_port>16400</local_port>
12614 
			<description><![CDATA[udp:16400]]></description>
12615 
			<custom_options>mute-replay-warnings;
12616 
ping 3;
12617 
ping-exit 7;
12618 
inactive 1200;
12619 
verb 1;
12620 
push &quot;explicit-exit-notify&quot;;
12621 
push &quot;ping 3&quot;;
12622 
push &quot;ping-exit 7&quot;;
12623 
push &quot;inactive 1200&quot;;</custom_options>
12624 
			<tls>Iw0KIyAyMDQ4IGJpdCBPcGVuVlBOIHN0YXRpYyBrZXkNCiMNCi0tLS0tQkVHSU4gT3BlblZQTiBTdGF0aWMga2V5IFYxLS0tLS0NCmI2NGM2NzkyNjIyMDEwNjNlN2IyYThmNGIwYWUzM2UyDQoyZDE3NDIyNmQ0NmFiODMwZWMwYmYxNWYyNjU0ZGM5Zg0KNDZmYzhjYTkzNTE4MDFkMzE2ZTVkNDdmMjg0NjJmNmQNCjE3Yzk2OTI4MDU3MzNjOGNhNTM1ZDdlYzAyYzhhODVjDQo3NTg3YmQ2YzY0ZmZlYjliYjQ3YmU0NzYwYzExNDg3MQ0KNzRkNTBlMDI3ZjI5MjhiN2MzMmI4Njc1ZTU0NWNmZTgNCmY0MWJhZjNmNmZjYjNhMWU1NDA5OGQzMDhlZmQxODQ3DQo0YzhlNjU5YTE0NmM3ZmJiYmMwY2U5MDRlZWYxZmY0Zg0KOTE4MjY1NmI5NjliMjQ5YzJmYWYyMTEwZWNiZjMyOTkNCjlkN2ZmODFjZmM3M2M0ZjJjZTM0MDMwMTZlZjExZGU5DQpjNmNkOTYxZThkZDg4MmNlZGQwYTYyYzQ5MDM2MzE2Ng0KYzEzNDQ5YTEwNWU0NTM1ZDljNzQwZmM5ZGMxMGJhOGINCmIwNmFmOTRhYzc3NThjZWEzNjdiMzg5OTYzZTY0ZTM4DQo3ZWE5MjQ2M2ZlZWQ2NjNlNmFlMzhhOGRkNWJmYTE5Yg0KMzM0N2JmMjk1ZGM0M2Y1NTdkODM2N2Y0YzE3YTdjZGUNCjNlMTE5MDQxZjA3MWYyMmMwYTQ4ZmM1NjZhZDg1ZDdlDQotLS0tLUVORCBPcGVuVlBOIFN0YXRpYyBrZXkgVjEtLS0tLQ0K</tls>
12625 
			<caref>52d8ed3d6cf7b</caref>
12626 
			<crlref/>
12627 
			<certref>52f5f7edd9d2e</certref>
12628 
			<dh_length>1024</dh_length>
12629 
			<cert_depth>1</cert_depth>
12630 
			<strictusercn/>
12631 
			<crypto>AES-128-CBC</crypto>
12632 
			<engine>none</engine>
12633 
			<tunnel_network>172.24.48.64/29</tunnel_network>
12634 
			<tunnel_networkv6/>
12635 
			<remote_network/>
12636 
			<remote_networkv6/>
12637 
			<gwredir>yes</gwredir>
12638 
			<local_network/>
12639 
			<local_networkv6/>
12640 
			<maxclients>6</maxclients>
12641 
			<compression>adaptive</compression>
12642 
			<passtos/>
12643 
			<client2client>yes</client2client>
12644 
			<dynamic_ip>yes</dynamic_ip>
12645 
			<pool_enable>yes</pool_enable>
12646 
			<topology_subnet>yes</topology_subnet>
12647 
			<serverbridge_dhcp/>
12648 
			<serverbridge_interface>none</serverbridge_interface>
12649 
			<serverbridge_dhcp_start/>
12650 
			<serverbridge_dhcp_end/>
12651 
			<dns_domain>siteA.com</dns_domain>
12652 
			<dns_server1>172.24.16.1</dns_server1>
12653 
			<dns_server2/>
12654 
			<dns_server3/>
12655 
			<dns_server4/>
12656 
			<ntp_server1>172.24.16.1</ntp_server1>
12657 
			<ntp_server2/>
12658 
			<netbios_enable/>
12659 
			<netbios_ntype>0</netbios_ntype>
12660 
			<netbios_scope/>
12661 
			<duplicate_cn/>
12662 
		</openvpn-server>
12663 
		<openvpn-server>
12664 
			<vpnid>5</vpnid>
12665 
			<mode>server_tls_user</mode>
12666 
			<authmode>Local Database</authmode>
12667 
			<protocol>UDP</protocol>
12668 
			<dev_mode>tun</dev_mode>
12669 
			<ipaddr>12.34.56.5</ipaddr>
12670 
			<interface>wan_vip4</interface>
12671 
			<local_port>50000</local_port>
12672 
			<description><![CDATA[udp:50000]]></description>
12673 
			<custom_options>mute-replay-warnings;
12674 
ping 3;
12675 
ping-exit 7;
12676 
inactive 1200;
12677 
verb 1;
12678 
push &quot;explicit-exit-notify&quot;;
12679 
push &quot;ping 3&quot;;
12680 
push &quot;ping-exit 7&quot;;
12681 
push &quot;inactive 1200&quot;;</custom_options>
12682 
			<tls>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</tls>
12683 
			<caref>52d8ed3d6cf7b</caref>
12684 
			<crlref/>
12685 
			<certref>52f5f7edd9d2e</certref>
12686 
			<dh_length>1024</dh_length>
12687 
			<cert_depth>1</cert_depth>
12688 
			<strictusercn/>
12689 
			<crypto>AES-128-CBC</crypto>
12690 
			<engine>none</engine>
12691 
			<tunnel_network>172.24.48.96/29</tunnel_network>
12692 
			<tunnel_networkv6/>
12693 
			<remote_network/>
12694 
			<remote_networkv6/>
12695 
			<gwredir>yes</gwredir>
12696 
			<local_network/>
12697 
			<local_networkv6/>
12698 
			<maxclients>6</maxclients>
12699 
			<compression>adaptive</compression>
12700 
			<passtos/>
12701 
			<client2client>yes</client2client>
12702 
			<dynamic_ip>yes</dynamic_ip>
12703 
			<pool_enable>yes</pool_enable>
12704 
			<topology_subnet>yes</topology_subnet>
12705 
			<serverbridge_dhcp/>
12706 
			<serverbridge_interface>none</serverbridge_interface>
12707 
			<serverbridge_dhcp_start/>
12708 
			<serverbridge_dhcp_end/>
12709 
			<dns_domain>siteA.com</dns_domain>
12710 
			<dns_server1>172.24.16.1</dns_server1>
12711 
			<dns_server2/>
12712 
			<dns_server3/>
12713 
			<dns_server4/>
12714 
			<ntp_server1>172.24.16.1</ntp_server1>
12715 
			<ntp_server2/>
12716 
			<netbios_enable/>
12717 
			<netbios_ntype>0</netbios_ntype>
12718 
			<netbios_scope/>
12719 
			<duplicate_cn/>
12720 
		</openvpn-server>
12721 
		<openvpn-server>
12722 
			<vpnid>2</vpnid>
12723 
			<mode>server_tls_user</mode>
12724 
			<authmode>Local Database</authmode>
12725 
			<protocol>TCP</protocol>
12726 
			<dev_mode>tun</dev_mode>
12727 
			<ipaddr>12.34.56.5</ipaddr>
12728 
			<interface>wan_vip4</interface>
12729 
			<local_port>443</local_port>
12730 
			<description><![CDATA[tcp:443]]></description>
12731 
			<custom_options>tcp-nodelay;
12732 
mute-replay-warnings;
12733 
ping 3;
12734 
ping-exit 7;
12735 
inactive 1200;
12736 
verb 1;
12737 
push &quot;explicit-exit-notify&quot;;
12738 
push &quot;ping 3&quot;;
12739 
push &quot;ping-exit 7&quot;;
12740 
push &quot;inactive 1200&quot;;</custom_options>
12741 
			<tls>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</tls>
12742 
			<caref>52d8ed3d6cf7b</caref>
12743 
			<crlref/>
12744 
			<certref>52f5f7edd9d2e</certref>
12745 
			<dh_length>1024</dh_length>
12746 
			<cert_depth>1</cert_depth>
12747 
			<strictusercn/>
12748 
			<crypto>AES-128-CBC</crypto>
12749 
			<engine>none</engine>
12750 
			<tunnel_network>172.24.48.128/29</tunnel_network>
12751 
			<tunnel_networkv6/>
12752 
			<remote_network/>
12753 
			<remote_networkv6/>
12754 
			<gwredir>yes</gwredir>
12755 
			<local_network/>
12756 
			<local_networkv6/>
12757 
			<maxclients>6</maxclients>
12758 
			<compression>adaptive</compression>
12759 
			<passtos/>
12760 
			<client2client>yes</client2client>
12761 
			<dynamic_ip>yes</dynamic_ip>
12762 
			<pool_enable>yes</pool_enable>
12763 
			<topology_subnet>yes</topology_subnet>
12764 
			<serverbridge_dhcp/>
12765 
			<serverbridge_interface>none</serverbridge_interface>
12766 
			<serverbridge_dhcp_start/>
12767 
			<serverbridge_dhcp_end/>
12768 
			<dns_domain>siteA.com</dns_domain>
12769 
			<dns_server1>172.24.16.1</dns_server1>
12770 
			<dns_server2/>
12771 
			<dns_server3/>
12772 
			<dns_server4/>
12773 
			<ntp_server1>172.24.16.1</ntp_server1>
12774 
			<ntp_server2/>
12775 
			<netbios_enable/>
12776 
			<netbios_ntype>0</netbios_ntype>
12777 
			<netbios_scope/>
12778 
			<duplicate_cn/>
12779 
		</openvpn-server>
12780 
		<openvpn-server>
12781 
			<vpnid>6</vpnid>
12782 
			<disable/>
12783 
			<mode>p2p_shared_key</mode>
12784 
			<protocol>UDP</protocol>
12785 
			<dev_mode>tun</dev_mode>
12786 
			<ipaddr/>
12787 
			<interface>wan</interface>
12788 
			<local_port>64016</local_port>
12789 
			<description><![CDATA[udp:64016 &lt;--&gt; SPD's Office]]></description>
12790 
			<custom_options>verb 1;
12791 
keepalive 10 60;</custom_options>
12792 
			<shared_key>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</shared_key>
12793 
			<crypto>AES-128-CBC</crypto>
12794 
			<engine>none</engine>
12795 
			<tunnel_network>172.24.48.224/30</tunnel_network>
12796 
			<tunnel_networkv6/>
12797 
			<remote_network>172.24.32.0/24</remote_network>
12798 
			<remote_networkv6/>
12799 
			<gwredir/>
12800 
			<local_network>172.24.16.0/24</local_network>
12801 
			<local_networkv6/>
12802 
			<maxclients>1</maxclients>
12803 
			<compression>adaptive</compression>
12804 
			<passtos/>
12805 
			<client2client/>
12806 
			<dynamic_ip/>
12807 
			<pool_enable>yes</pool_enable>
12808 
			<topology_subnet/>
12809 
			<serverbridge_dhcp/>
12810 
			<serverbridge_interface>none</serverbridge_interface>
12811 
			<serverbridge_dhcp_start/>
12812 
			<serverbridge_dhcp_end/>
12813 
			<netbios_enable/>
12814 
			<netbios_ntype>0</netbios_ntype>
12815 
			<netbios_scope/>
12816 
		</openvpn-server>
12817 
		<openvpn-client>
12818 
			<vpnid>7</vpnid>
12819 
			<disable/>
12820 
			<protocol>UDP</protocol>
12821 
			<dev_mode>tun</dev_mode>
12822 
			<ipaddr/>
12823 
			<interface>wan</interface>
12824 
			<local_port>64032</local_port>
12825 
			<server_addr> someplace.dnsalias.com</server_addr>
12826 
			<server_port>64032</server_port>
12827 
			<resolve_retry/>
12828 
			<proxy_addr/>
12829 
			<proxy_port/>
12830 
			<proxy_authtype>none</proxy_authtype>
12831 
			<proxy_user/>
12832 
			<proxy_passwd/>
12833 
			<description><![CDATA[udp:64032 &lt;--&gt; SPD's Office]]></description>
12834 
			<mode>p2p_shared_key</mode>
12835 
			<custom_options>verb 1;
12836 
keepalive 10 60;</custom_options>
12837 
			<shared_key>Iw0KIyAyMDQ4IGJpdCBPcGVuVlBOIHN0YXRpYyBrZXkNCiMNCi0tLS0tQkVHSU4gT3BlblZQTiBTdGF0aWMga2V5IFYxLS0tLS0NCmFmYTwhNjViNWQ4ODhkZjU1ZWVmZWVkNWFmZWE3NjBmDQoyNmRkZmMzZjI0ODA3YTUyNDAyMmNlMWYzNDdiNWE5Nw0KMjFjNTNkY2M4YWQwMThhYzk4ODlkMmE4YzUxYjAxNTENCjhmYWY1ZjA0MTJlNTAyMjM2MWIyODcwZTEyMTU2YmVjDQo3MTJhYmQ5N2YxMmExYTY3YTkxYjBkZWVjYTFhZDg4OA0KMDUwNmE0NTU5YWQwZjlkMTE1MjQ4ZWE5Mjc3YWFhNGENCjJjYWM2NjRmMjhhZDc3YmVjZjU4ZGNiOWRjN2YxNjQxDQo2YjI0MTNlODM1OWZhMjE3MTJlZWZlODJlMDRmYWUzYQ0KOTA2YTYxN2JiMjQ3NzRiZjA3NjkyZjZmYTQyYjkzOGYNCjU2YjAxZjlkN2U1OWFmYWRlYTZlNzU5ZTkyMGRmMDQ4DQowZDUzMWZhZWFhNjljZDU5MDdjMzhkODVlZjM2MzRiYQ0KMmZmYmJkYTY3MGRmMzY4YjgwY2E0ZTI2NjUxOGU0OTENCjVkNGU4MDI3MzYzZjJhNTIxZDZlODJjOWY1YmZjMzJiDQoyNjgxZGQ4ZTY1NmJmNjVhYTI3YzFkMjQwZmZkMWM1Yw0KYTgzMmNkNDA3OGE1ZDk2Y2IwMWE0ZGMzZWRhYTYwNTYNCmNkNDM3NWNhODI2ZWRlMTRlMmRlYWE2MTdmZTIxY2I5DQotLS0tLUVORCBPcGVuVlBOIFN0YXRpYyBrZXkgVjEtLS0tLQ0K</shared_key>
12838 
			<crypto>AES-128-CBC</crypto>
12839 
			<engine>none</engine>
12840 
			<tunnel_network>172.24.48.240/30</tunnel_network>
12841 
			<tunnel_networkv6/>
12842 
			<remote_network>172.24.32.0/24</remote_network>
12843 
			<remote_networkv6/>
12844 
			<use_shaper/>
12845 
			<compression>adaptive</compression>
12846 
			<passtos/>
12847 
		</openvpn-client>
12848 
	</openvpn>
12849 
	<l7shaper>
12850 
		<container/>
12851 
	</l7shaper>
12852 
	<dnshaper/>
12853 
	<cert>
12854 
		<refid>52d8ee4f992fc</refid>
12855 
		<descr><![CDATA[gateway.siteA.com server certificate]]></descr>
12856 
		<caref>52d8ed3d6cf7b</caref>
12857 
		<crt>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</crt>
12858 
		<prv>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</prv>
12859 
		<type>server</type>
12860 
	</cert>
12861 
	<cert>
12862 
		<refid>52f5f7edd9d2e</refid>
12863 
		<descr><![CDATA[12.34.56.5 server certificate]]></descr>
12864 
		<caref>52d8ed3d6cf7b</caref>
12865 
		<crt>LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSUZCVENDQSsyZ0F3SUJBZ0lCQ1RBTkJna3Foa2lHOXcwQkFRc0ZBRENCbERFTE1Ba0dBMVVFQmhNQ1EwRXgKQ3pBSkJnTlZCQWdUQWtKRE1RNHdEQVlEVlFRSEV3VkVaV3gwWVRFYk1Ca0dBMVVFQ2hNU1JHVnliV0Z1SUVWdQpkR1Z5Y0hKcGMyVnpNVFV3TXdZSktvWklodmNOQVFrQkZpWjFjMlV0ZEdobExXTnZiblJoWTNRdGRYTXRabTl5CmJVQjNkM2N1WkdWeWJXRnVMbU52YlRFVU1CSUdBMVVFQXhNTGFXNTBaWEp1WVd3dFkyRXdIaGNOTVRRd01qQTQKTURreU5UQXlXaGNOTWpRd01qQTJNRGt5TlRBeVdqQ0JsakVMTUFrR0ExVUVCaE1DUTBFeEN6QUpCZ05WQkFnVApBa0pETVE0d0RBWURWUVFIRXdWRVpXeDBZVEViTUJrR0ExVUVDaE1TUkdWeWJXRnVJRVZ1ZEdWeWNISnBjMlZ6Ck1UVXdNd1lKS29aSWh2Y05BUWtCRmlaMWMyVXRkR2hsTFdOdmJuUmhZM1F0ZFhNdFptOXliVUIzZDNjdVpHVnkKYldGdUxtTnZiVEVXTUJRR0ExVUVBeE1OTWpRdU1qQTNMalF3TGpFeU5UQ0NBU0l3RFFZSktvWklodmNOQVFFQgpCUUFEZ2dFUEFEQ0NBUW9DZ2dFQkFMOHBJU0NkdGhPZ3FUdm56clhBL0FjQ04zT0xGNVJ3OG52dy9sRk1RSnZUCkxoSlN4aXdCanQ2UEwxeFMzRHN6RzlMck9UNlJYYjZzSzJ5b1NZdThUSWVIZGFvS2swOWN6dS9TYkJKbWZqUnQKemJuTjgyU0JDK2VCd0crc0Y5ZENiWkdkKzJON3Q1Z3pWWDIzNG9JMndtSXpjNTVta3ZVQUV6Y294WTU0QzR4VAo5K3hmeXJ1TSs0bVRxRks3MzloNkxIM3NXcWE5TE05bjBBT3dxa3VSbk9RU25FTDhXeEl5T0p4K3hsWVQvZEpqCkN3aEI4QVpBY2xQRytVYkUwM1lPcng3L1l4T0ZlN1RXNXIxVjExU3pCWnY2WFNUWnFLQ0YrMGZiRWdoa0gvcGUKNjVnUHZTNjdmY0p3M2phYTlkQVdheUpOeUdkU2NBQkliZEd0bDY1bHRSc0NBd0VBQWFPQ0FWd3dnZ0ZZTUFrRwpBMVVkRXdRQ01BQXdFUVlKWUlaSUFZYjRRZ0VCQkFRREFnWkFNRE1HQ1dDR1NBR0crRUlCRFFRbUZpUlBjR1Z1ClUxTk1JRWRsYm1WeVlYUmxaQ0JUWlhKMlpYSWdRMlZ5ZEdsbWFXTmhkR1V3SFFZRFZSME9CQllFRkI5K1lHZ0oKbDRlWHgyVU9sWDZDbmpIVGFBRXZNSUhCQmdOVkhTTUVnYmt3Z2JhQUZHYXR0Y1pZM1poZWVZUVI5bm9GZDk5dgpWUlVDb1lHYXBJR1hNSUdVTVFzd0NRWURWUVFHRXdKRFFURUxNQWtHQTFVRUNCTUNRa014RGpBTUJnTlZCQWNUCkJVUmxiSFJoTVJzd0dRWURWUVFLRXhKRVpYSnRZVzRnUlc1MFpYSndjbWx6WlhNeE5UQXpCZ2txaGtpRzl3MEIKQ1FFV0puVnpaUzEwYUdVdFkyOXVkR0ZqZEMxMWN5MW1iM0p0UUhkM2R5NWtaWEp0WVc0dVkyOXRNUlF3RWdZRApWUVFERXd0cGJuUmxjbTVoYkMxallZSUJBREFUQmdOVkhTVUVEREFLQmdnckJnRUZCUWNEQVRBTEJnTlZIUThFCkJBTUNCYUF3RFFZSktvWklodmNOQVFFTEJRQURnZ0VCQUt5WHBOWWtJelFRd3poQy9iTlVaSW1ZUDlKRXc2dFQKb2VTeS9YYUV5YWRvK0pDRnZxOVd2WUMrcXp4Mjc1b0RVRGtjYkxmVEM0L1lPbW9JV0w2endVc0VvTkhWejBPZApxampnMzg5cGNLWlVzU1MzT3k4UG12a3IzRHlLbWdPUE1pTGIvRHlBMUZkYks5ZHBEWGhLTHNPdWV2TGd2cGhFCnpOc0dFVDYxekVVRVNVNGdGcHd5cVgySVV3S05NK2JIUDlGUTc3aGV6U1NoN2k4KzJvSjltby91bUNyRUhlK3YKU1hKVHN5Y21HSlhpSy80bzZNbU9BMmhqb1E2V2dnbVZzbXEzUkpCa0xQZUhPTHIwWnZja25DYVNnQVZUNXkvZApHN3NGSzhjTmR4SFhNYkdjUGRFNktzL2U2ME1DYmlUejBMVXBlMFJZMVpBa2VuRGIzOFhpMUk0PQotLS0tLUVORCBDRVJUSUZJQ0FURS0tLS0tCg==</crt>
12866 
		<prv>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</prv>
12867 
		<type>server</type>
12868 
	</cert>
12869 
	<cert>
12870 
		<refid>52f5f80900248</refid>
12871 
		<descr><![CDATA[12.34.56.5 user certificate]]></descr>
12872 
		<caref>52d8ed3d6cf7b</caref>
12873 
		<crt>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</crt>
12874 
		<prv>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</prv>
12875 
		<type>user</type>
12876 
	</cert>
12877 
	<ppps/>
12878 
	<gateways/>
12879 
	<virtualip>
12880 
		<vip>
12881 
			<mode>ipalias</mode>
12882 
			<interface>wan</interface>
12883 
			<descr><![CDATA[WAN2_SE VIP]]></descr>
12884 
			<type>single</type>
12885 
			<subnet_bits>29</subnet_bits>
12886 
			<subnet>12.34.56.3</subnet>
12887 
		</vip>
12888 
		<vip>
12889 
			<mode>ipalias</mode>
12890 
			<interface>wan</interface>
12891 
			<descr><![CDATA[WAN3_TAK VIP]]></descr>
12892 
			<type>single</type>
12893 
			<subnet_bits>29</subnet_bits>
12894 
			<subnet>12.34.56.4</subnet>
12895 
		</vip>
12896 
		<vip>
12897 
			<mode>ipalias</mode>
12898 
			<interface>wan</interface>
12899 
			<descr><![CDATA[WAN4_Spare VIP]]></descr>
12900 
			<type>single</type>
12901 
			<subnet_bits>29</subnet_bits>
12902 
			<subnet>12.34.56.5</subnet>
12903 
		</vip>
12904 
	</virtualip>
12905 
	<notifications>
12906 
		<growl>
12907 
			<ipaddress/>
12908 
			<password/>
12909 
			<name>PHP-Growl</name>
12910 
			<notification_name>pfSense growl alert</notification_name>
12911 
			<disable/>
12912 
		</growl>
12913 
		<smtp>
12914 
			<ipaddress>172.24.16.166</ipaddress>
12915 
			<port/>
12916 
			<notifyemailaddress/>
12917 
			<username/>
12918 
			<password/>
12919 
			<fromaddress/>
12920 
			<disable/>
12921 
			<tls/>
12922 
		</smtp>
12923 
	</notifications>
12924 
	<installedpackages>
12925 
		<openntpd>
12926 
			<config>
12927 
				<enable>on</enable>
12928 
				<interface>lan</interface>
12929 
			</config>
12930 
		</openntpd>
12931 
		<package>
12932 
			<name>nut</name>
12933 
			<descr><![CDATA[Network UPS Tools]]></descr>
12934 
			<website>http://www.networkupstools.org/</website>
12935 
			<category>Network Management</category>
12936 
			<version>2.7.2_6 pkg 2.0.4</version>
12937 
			<status>BETA</status>
12938 
			<required_version>2.2</required_version>
12939 
			<maintainer>rswagoner@gmail.com</maintainer>
12940 
			<config_file>https://packages.pfsense.org/packages/config/nut/nut.xml</config_file>
12941 
			<configurationfile>nut.xml</configurationfile>
12942 
			<depends_on_package_pbi>nut-2.7.2_6-amd64.pbi</depends_on_package_pbi>
12943 
			<build_pbi>
12944 
				<port>sysutils/nut</port>
12945 
			</build_pbi>
12946 
			<pkginfolink>https://doc.pfsense.org/index.php/Nut_package</pkginfolink>
12947 
			<depends_on_package_base_url>https://files.pfsense.org/packages/10/All/</depends_on_package_base_url>
12948 
		</package>
12949 
		<package>
12950 
			<name>OpenVPN Client Export Utility</name>
12951 
			<descr><![CDATA[Allows a pre-configured OpenVPN Windows Client or Mac OSX's Viscosity configuration bundle to be exported directly from pfSense.]]></descr>
12952 
			<category>Security</category>
12953 
			<depends_on_package_pbi>zip-3.0_1-amd64.pbi p7zip-9.20.1_2-amd64.pbi</depends_on_package_pbi>
12954 
			<build_port_path>/usr/ports/archivers/p7zip</build_port_path>
12955 
			<build_port_path>/usr/ports/archivers/zip</build_port_path>
12956 
			<version>1.2.15</version>
12957 
			<status>RELEASE</status>
12958 
			<required_version>2.2</required_version>
12959 
			<config_file>https://packages.pfsense.org/packages/config/openvpn-client-export/openvpn-client-export.xml</config_file>
12960 
			<configurationfile>openvpn-client-export.xml</configurationfile>
12961 
			<depends_on_package_base_url>https://files.pfsense.org/packages/10/All/</depends_on_package_base_url>
12962 
		</package>
12963 
		<package>
12964 
			<name>Avahi</name>
12965 
			<pkginfolink>https://doc.pfsense.org/index.php/Avahi_package</pkginfolink>
12966 
			<website>http://www.avahi.org/</website>
12967 
			<descr><![CDATA[Avahi is a system which facilitates service discovery on a local network. This means that you can plug your laptop or computer into a network and instantly be able to view other people who you can chat with, find printers to print to or find files being shared. This kind of technology is already found in Apple MacOS X (branded Rendezvous, Bonjour and sometimes Zeroconf) and is very convenient. Avahi is mainly based on Lennart Poettering's flexmdns mDNS implementation for Linux which has been discontinued in favour of Avahi.]]></descr>
12968 
			<category>Network Management</category>
12969 
			<build_options>avahi_UNSET_FORCE=GTK;cairo_UNSET_FORCE=X11 XCB</build_options>
12970 
			<build_pbi>
12971 
				<port>net/avahi</port>
12972 
				<ports_after>net/avahi-app devel/dbus</ports_after>
12973 
			</build_pbi>
12974 
			<depends_on_package_pbi>avahi-0.6.31-amd64.pbi</depends_on_package_pbi>
12975 
			<version>0.6.31 pkg v1.09</version>
12976 
			<status>BETA</status>
12977 
			<required_version>2.2</required_version>
12978 
			<config_file>https://packages.pfsense.org/packages/config/avahi/avahi.xml</config_file>
12979 
			<configurationfile>avahi.xml</configurationfile>
12980 
			<after_install_info>Please visit the Avahi settings tab and select which interfaces you do not wish Avahi to listen on and click save to start the service.</after_install_info>
12981 
			<depends_on_package_base_url>https://files.pfsense.org/packages/10/All/</depends_on_package_base_url>
12982 
		</package>
12983 
		<package>
12984 
			<name>pfBlockerNG</name>
12985 
			<website/>
12986 
			<descr><![CDATA[pfBlockerNG is the Next Generation of pfBlocker.&lt;br /&gt;
12987 
				Manage IPv4/v6 List Sources into 'Deny, Permit or Match' formats&lt;br /&gt;
12988 
				Country Blocking Database by MaxMind Inc. (GeoLite Free version).&lt;br /&gt;
12989 
				De-Duplication, Suppression, and Reputation enhancements.&lt;br /&gt;
12990 
				Provision to download from diverse List formats. Advanced Integration&lt;br /&gt;
12991 
				for Emerging Threats IQRisk IP Reputation Threat Sources.]]></descr>
12992 
			<category>Firewall</category>
12993 
			<pkginfolink>https://forum.pfsense.org/index.php?topic=86212.0</pkginfolink>
12994 
			<config_file>https://packages.pfsense.org/packages/config/pfblockerng/pfblockerng.xml</config_file>
12995 
			<version>1.05</version>
12996 
			<status>Beta</status>
12997 
			<required_version>2.2</required_version>
12998 
			<maintainer>BBCan177@gmail.com</maintainer>
12999 
			<configurationfile>pfblockerng.xml</configurationfile>
13000 
			<depends_on_package_pbi>pfblockerng-1.6.3_1-amd64.pbi</depends_on_package_pbi>
13001 
			<build_pbi>
13002 
				<port>net/GeoIP</port>
13003 
				<ports_after>net-mgmt/grepcidr</ports_after>
13004 
				<custom_name>pfblockerng</custom_name>
13005 
			</build_pbi>
13006 
			<depends_on_package_base_url>https://files.pfsense.org/packages/10/All/</depends_on_package_base_url>
13007 
		</package>
13008 
		<menu>
13009 
			<name>NUT</name>
13010 
			<tooltiptext>Set Network UPS Tools settings.</tooltiptext>
13011 
			<section>Services</section>
13012 
			<url>/status_nut.php</url>
13013 
		</menu>
13014 
		<menu>
13015 
			<name>Avahi</name>
13016 
			<tooltiptext>Modify avahi settings.</tooltiptext>
13017 
			<section>Services</section>
13018 
			<url>pkg_edit.php?xml=avahi.xml&amp;id=0</url>
13019 
		</menu>
13020 
		<menu>
13021 
			<name>pfBlockerNG</name>
13022 
			<configfile>pfblockerng.xml</configfile>
13023 
			<tooltiptext>Configure pfBlockerNG</tooltiptext>
13024 
			<section>Firewall</section>
13025 
			<url>/pkg_edit.php?xml=pfblockerng.xml</url>
13026 
		</menu>
13027 
		<nut>
13028 
			<config>
13029 
				<monitor>local</monitor>
13030 
				<powerdown/>
13031 
				<custom_upsconf/>
13032 
				<custom_upsdconf/>
13033 
				<custom_upsdusers/>
13034 
				<custom_upsmonconf/>
13035 
				<allowaddr/>
13036 
				<allowuser>UPSuser</allowuser>
13037 
				<allowpass>nutUPS</allowpass>
13038 
				<name>APC-SMX1500RM2U</name>
13039 
				<driver>usbhid-ups05</driver>
13040 
				<port>auto</port>
13041 
				<upstype/>
13042 
				<cable/>
13043 
				<snmpname/>
13044 
				<snmpaddr/>
13045 
				<snmpcommunity/>
13046 
				<snmpversion>v2c</snmpversion>
13047 
				<snmpmib>ietf</snmpmib>
13048 
				<snmpfreq/>
13049 
				<snmpdisabletransfer/>
13050 
				<remotename/>
13051 
				<remoteaddr/>
13052 
				<remoteuser/>
13053 
				<remotepass/>
13054 
			</config>
13055 
		</nut>
13056 
		<avahi>
13057 
			<config>
13058 
				<enable/>
13059 
				<browsedomains>siteA.com</browsedomains>
13060 
				<denyinterfaces>opt2,wan,lo0</denyinterfaces>
13061 
				<disable_ipv6>on</disable_ipv6>
13062 
				<disable_ipv4>on</disable_ipv4>
13063 
			</config>
13064 
		</avahi>
13065 
		<service>
13066 
			<name>nut</name>
13067 
			<rcfile>nut.sh</rcfile>
13068 
			<executable>upsmon</executable>
13069 
			<description><![CDATA[UPS monitoring daemon]]></description>
13070 
		</service>
13071 
		<service>
13072 
			<name>avahi</name>
13073 
			<rcfile>avahi-daemon.sh</rcfile>
13074 
			<executable>avahi-daemon</executable>
13075 
			<description><![CDATA[Avahi zeroconf/mDNS daemon]]></description>
13076 
		</service>
13077 
		<tab>
13078 
			<name>Client Export</name>
13079 
			<tabgroup>OpenVPN</tabgroup>
13080 
			<url>/vpn_openvpn_export.php</url>
13081 
		</tab>
13082 
		<tab>
13083 
			<name>Shared Key Export</name>
13084 
			<tabgroup>OpenVPN</tabgroup>
13085 
			<url>/vpn_openvpn_export_shared.php</url>
13086 
		</tab>
13087 
		<tab>
13088 
			<text>General</text>
13089 
			<url>/pkg_edit.php?xml=pfblockerng.xml&amp;id=0</url>
13090 
			<active/>
13091 
		</tab>
13092 
		<pfblockerngafrica>
13093 
			<config>
13094 
				<countries4>DZ,AO,BJ,BW,BF,BI,CM,CV,CF,TD,KM,CD,CG,CI,DJ,EG,GQ,ER,ET,GA,GM,GH,GW,GN,KE,LS,LR,LY,MG,MW,ML,MR,MU,YT,MA,MZ,NA,NE,NG,RE,RW,SH,ST,SN,SC,SL,SO,SD,SZ,TZ,TG,TN,UG,ZM,ZW</countries4>
13095 
				<countries6>DZ,AO,BJ,BW,BF,BI,CM,TD,CD,CG,CI,DJ,EG,GQ,GA,GM,GH,GW,GN,KE,LS,LR,LY,MG,MW,ML,MR,MU,MA,MZ,NA,NE,NG,RE,RW,ST,SN,SC,SL,SO,SD,SZ,TZ,TN,UG,ZM,ZW</countries6>
13096 
				<action>Alias_Native</action>
13097 
				<aliaslog>disabled</aliaslog>
13098 
			</config>
13099 
		</pfblockerngafrica>
13100 
		<pfblockerngasia>
13101 
			<config>
13102 
				<countries4>AF,AM,AP,AZ,BH,BD,BT,KH,CN,CX,CC,GE,ID,IR,IQ,JO,KZ,KP,KR,KW,KG,LB,MY,PK,PS,PH,QA,SA,SY,TJ,TH,TL,TM,UZ,VN,YE</countries4>
13103 
				<countries6>AF,AM,AP,AZ,BH,BD,BT,KH,CN,GE,ID,IR,IQ,JO,KZ,KR,KW,KG,LB,MY,PK,PS,PH,QA,SA,SY,TJ,TH,TL,TM,UZ,VN,YE</countries6>
13104 
				<action>Alias_Native</action>
13105 
				<aliaslog>disabled</aliaslog>
13106 
			</config>
13107 
		</pfblockerngasia>
13108 
		<pfblockerngeurope>
13109 
			<config>
13110 
				<countries4>AL,BY,BA,BG,HR,CZ,EE,FR,GR,HU,IT,LV,LT,LU,MK,MD,ME,PL,PT,RO,RU,RS,SK,SI,ES,SJ,UA</countries4>
13111 
				<countries6>AL,AT,BY,BA,BG,HR,CZ,EE,FR,GR,HU,IT,LV,LT,LU,MK,MD,ME,PL,PT,RO,RU,RS,SK,SI,ES,UA</countries6>
13112 
				<action>Alias_Native</action>
13113 
				<aliaslog>disabled</aliaslog>
13114 
			</config>
13115 
		</pfblockerngeurope>
13116 
		<pfblockerngnorthamerica>
13117 
			<config>
13118 
				<countries4>DO,SV,HT,JM,MX,PA</countries4>
13119 
				<countries6>DO,SV,HT,JM,MX,PA</countries6>
13120 
				<action>Alias_Native</action>
13121 
				<aliaslog>disabled</aliaslog>
13122 
			</config>
13123 
		</pfblockerngnorthamerica>
13124 
		<pfblockerngsouthamerica>
13125 
			<config>
13126 
				<countries4>AR,BO,CL,CO,EC,FK,GF,GY,PY,PE,SR,UY,VE</countries4>
13127 
				<countries6>AR,BO,CL,CO,EC,GF,GY,PY,PE,SR,UY,VE</countries6>
13128 
				<action>Alias_Native</action>
13129 
				<aliaslog>disabled</aliaslog>
13130 
			</config>
13131 
		</pfblockerngsouthamerica>
13132 
		<pfblockerngproxyandsatellite>
13133 
			<config>
13134 
				<countries4>A1,A2</countries4>
13135 
				<action>Alias_Native</action>
13136 
				<aliaslog>disabled</aliaslog>
13137 
			</config>
13138 
		</pfblockerngproxyandsatellite>
13139 
		<pfblockerng>
13140 
			<config>
13141 
				<enable_cb>on</enable_cb>
13142 
				<pfb_keep>on</pfb_keep>
13143 
				<pfb_min>15</pfb_min>
13144 
				<pfb_hour>5</pfb_hour>
13145 
				<pfb_dailystart>6</pfb_dailystart>
13146 
				<enable_dup/>
13147 
				<suppression/>
13148 
				<enable_log/>
13149 
				<database_cc/>
13150 
				<log_maxlines>20000</log_maxlines>
13151 
				<inbound_interface/>
13152 
				<inbound_deny_action>block</inbound_deny_action>
13153 
				<outbound_interface/>
13154 
				<outbound_deny_action>reject</outbound_deny_action>
13155 
				<openvpn_action/>
13156 
				<enable_float/>
13157 
				<pass_order>order_0</pass_order>
13158 
				<autorule_suffix>autorule</autorule_suffix>
13159 
				<credits/>
13160 
				<pfblocker_cb/>
13161 
				<pfb_reuse/>
13162 
			</config>
13163 
		</pfblockerng>
13164 
	</installedpackages>
13165 
	<l2tp>
13166 
		<radius>
13167 
			<server/>
13168 
			<secret/>
13169 
		</radius>
13170 
		<remoteip>172.24.16.0</remoteip>
13171 
		<localip>172.24.48.1</localip>
13172 
		<l2tp_subnet>24</l2tp_subnet>
13173 
		<mode>off</mode>
13174 
		<interface>wan</interface>
13175 
		<n_l2tp_units>4</n_l2tp_units>
13176 
		<secret>anotherSecret</secret>
13177 
		<paporchap>chap</paporchap>
13178 
		<dns1>172.24.16.1</dns1>
13179 
	</l2tp>
13180 
	<ezshaper>
13181 
		<step1>
13182 
			<numberofconnections>2</numberofconnections>
13183 
			<numberoflocalinterfaces>2</numberoflocalinterfaces>
13184 
		</step1>
13185 
		<step3>
13186 
			<connuploadspeed>%</connuploadspeed>
13187 
			<conndownloadspeed>%</conndownloadspeed>
13188 
			<enable>on</enable>
13189 
			<provider>Generic</provider>
13190 
			<connupload>5</connupload>
13191 
			<conndownload>5</conndownload>
13192 
		</step3>
13193 
		<step5>
13194 
			<enable>on</enable>
13195 
			<bandwidthunit>%</bandwidthunit>
13196 
			<bittorrent>on</bittorrent>
13197 
			<gnutella>on</gnutella>
13198 
		</step5>
13199 
		<step7>
13200 
			<enable>on</enable>
13201 
			<msrdp>D</msrdp>
13202 
			<vnc>H</vnc>
13203 
			<appleremotedesktop>H</appleremotedesktop>
13204 
			<pcanywhere>D</pcanywhere>
13205 
			<irc>D</irc>
13206 
			<jabber>D</jabber>
13207 
			<icq>D</icq>
13208 
			<aolinstantmessenger>D</aolinstantmessenger>
13209 
			<msnmessenger>D</msnmessenger>
13210 
			<teamspeak>D</teamspeak>
13211 
			<pptp>D</pptp>
13212 
			<ipsec>H</ipsec>
13213 
			<streamingmp3>D</streamingmp3>
13214 
			<rtsp>D</rtsp>
13215 
			<http>H</http>
13216 
			<smtp>L</smtp>
13217 
			<pop3>H</pop3>
13218 
			<imap>H</imap>
13219 
			<lotusnotes>D</lotusnotes>
13220 
			<dns>H</dns>
13221 
			<icmp>H</icmp>
13222 
			<smb>L</smb>
13223 
			<snmp>L</snmp>
13224 
			<mysqlserver>D</mysqlserver>
13225 
			<nntp>L</nntp>
13226 
			<cvsup>D</cvsup>
13227 
			<slingbox>D</slingbox>
13228 
			<hbci>D</hbci>
13229 
		</step7>
13230 
		<step2>
13231 
			<uploadscheduler>PRIQ</uploadscheduler>
13232 
			<connupload>1.1</connupload>
13233 
			<connuploadspeed>Mb</connuploadspeed>
13234 
			<conndownload>9.8</conndownload>
13235 
			<conndownloadspeed>Mb</conndownloadspeed>
13236 
			<conn0downloadscheduler>PRIQ</conn0downloadscheduler>
13237 
			<conn0interface>lan</conn0interface>
13238 
			<conn1downloadscheduler>PRIQ</conn1downloadscheduler>
13239 
			<conn1interface>opt1</conn1interface>
13240 
		</step2>
13241 
	</ezshaper>
13242 
	<ntpd>
13243 
		<interface>lan,opt1,opt2</interface>
13244 
	</ntpd>
13245 
	<dhcrelay/>
13246 
	<dhcpdv6/>
13247 
	<dhcrelay6/>
13248 
	<vlans>
13249 
		<vlan>
13250 
			<if>igb0</if>
13251 
			<tag>16</tag>
13252 
			<descr><![CDATA[172.24.16.x VLAN]]></descr>
13253 
			<vlanif>igb0_vlan16</vlanif>
13254 
		</vlan>
13255 
		<vlan>
13256 
			<if>igb0</if>
13257 
			<tag>17</tag>
13258 
			<descr><![CDATA[172.24.17.x VLAN]]></descr>
13259 
			<vlanif>igb0_vlan17</vlanif>
13260 
		</vlan>
13261 
		<vlan>
13262 
			<if>igb0</if>
13263 
			<tag>18</tag>
13264 
			<descr><![CDATA[172.24.18.x VLAN]]></descr>
13265 
			<vlanif>igb0_vlan18</vlanif>
13266 
		</vlan>
13267 
	</vlans>
13268 
	<bridges/>
13269 
	<captiveportal>
13270 
		<wireless_guests>
13271 
			<zone>Wireless_Guests</zone>
13272 
			<descr><![CDATA[Captive portal for guest wireless users]]></descr>
13273 
			<localauth_priv/>
13274 
			<zoneid>2</zoneid>
13275 
			<interface>opt1</interface>
13276 
			<maxproc/>
13277 
			<maxprocperip>10</maxprocperip>
13278 
			<timeout>240</timeout>
13279 
			<idletimeout>20</idletimeout>
13280 
			<freelogins_count/>
13281 
			<freelogins_resettimeout/>
13282 
			<auth_method>local</auth_method>
13283 
			<reauthenticateacct/>
13284 
			<httpsname>lan2gateway.siteA.com</httpsname>
13285 
			<preauthurl/>
13286 
			<bwdefaultdn/>
13287 
			<bwdefaultup/>
13288 
			<certref>52d8ec4f992fc</certref>
13289 
			<radius_protocol/>
13290 
			<redirurl/>
13291 
			<radiusip/>
13292 
			<radiusip2/>
13293 
			<radiusip3/>
13294 
			<radiusip4/>
13295 
			<radiusport/>
13296 
			<radiusport2/>
13297 
			<radiusport3/>
13298 
			<radiusport4/>
13299 
			<radiusacctport/>
13300 
			<radiuskey/>
13301 
			<radiuskey2/>
13302 
			<radiuskey3/>
13303 
			<radiuskey4/>
13304 
			<radiusvendor>default</radiusvendor>
13305 
			<radiussrcip_attribute>wan</radiussrcip_attribute>
13306 
			<radmac_format>default</radmac_format>
13307 
			<radiusnasid/>
13308 
			<page>
13309 
				<htmltext>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</htmltext>
13310 
			</page>
13311 
			<passthrumacadd/>
13312 
			<httpslogin/>
13313 
		</wireless_guests>
13314 
	</captiveportal>
13315 
	<ca>
13316 
		<refid>52d8ed3d6cf7b</refid>
13317 
		<descr><![CDATA[pfSense Internal Certificate Authority]]></descr>
13318 
		<crt>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</crt>
13319 
		<prv>LS0tLS1CRUdJTiBQUklWQVRFIEtFWS0tLS0tCk1JSaV2QUlCQURBTkJna3Foa2lHOXcwQkFRrUZBQVNDQktZd2dnU2lBZ0VBQW9J1kFRQzVJczIvclRjaWh4VnUKbzVuTzNPcG1vSHVqT3ZKN0UzbXVjQ0E0L05GZnpNRmlXQ0U0Ykh4ZEI2WHA1a0lnTVdZQ2tPMEVnQ2RIelM2bAoyTU1qSzY3WlJUQzZVUEs1LzM4Z0NtV0NQcWhmWFVDRExHU3c3MkRKWFp5emM3Y1pWWC9ISkhHdGNhMkhoVVRHClJnSkM2VlR6RjBaT2VQekJnQXl0UkJUdGgxWW5XREhkQjh1eW1KMW1NeVRveWl0SWplbkFHZlQyNVFWNDArRHoKdjFpSkhZYzlxWGlJRkpwMmVwdis0bE1iSUo5bk02Z0d5ZHhqbk03a2E0SjdjUGF4dDNlcDlXeDZSOVNJcFNvYQpGbDFPNUlLRVhscnJMemc3a25YaWIxMmovVmxOQVl3UHY1MVZMVE9QWTI2dWEzODNPYVJ0RUdxdWg2RmF2TXdOCkVweWsrcnU3QWdNQkFBRUNnZ0VBSGlVRG1WVXI2QXhVdWdvYmJpcGNaRTkzTWpIVDc2UlJLTTBMQWh4d1B3Z0kKNk9sdXAxQkt3NThPTGRLWEs4Uy9WbVdnb2gzM3gySXFXVWk5SlVua2syNEhyQjZvRnc3NTlRNmNUcVBES0p2MwplQ1JQVk52MVIzUmRvbjZSN3FjVVFpbTE5TWJRdVlOQ21vSWx0aDFsL3Byb2tMaDBkMUZSUHhrWnl6OUJFUEN0CmJMUlNhd1h6YWpIdnFnSmloSktrVEdyYThFNmlFVlJjemQ4SWdEcnFMYVBqUG9Vc2EvZHRheEFrZFh5THh5eTUKK3dBY3pxdTIyRFhhOU9KWEZLVGlvM3JVNkJBNkJ6VXVwQWVWb0JIQzBsd2JEUXRXVTFMdHJ4SG0xN3pkS2R6WQpGcjhoZklueG85UFYzSkVYZ04yOHJ1enBxQ2lNenZqSXBqRVZuY3Jwc1FLQmdRRGVNTTczQW9BeVR6dU5sQXFZClo1UG5wMXNzN1ZjSnFHMUpyTnRSdklJVmpGNDNIczhCWkdRa1Q5TW1SaWRhVG9aVmdFNjk0MUFwUUw5U0Uzb3QKY0ZoVEYzY3ZwT3c0NDJSMkppQU1mNkljVWhhT2x0ZE1RY0xETUs1R09VMW1jejR0R3RQc25aRzdXcFlLYXRYNgpKempuNnQvTFhkZmVhNU9OeGVibmJsdlBxUUtCZ1FEVlRwSHpvSVJRNDR3d3JaVkVLdlZ0M0FXd0k1NUp2RDBWCnB1ZFVDcUxTeEk1Nm5rR2Q3L1FJUXVYVDBDQ24wcTkwS294TS85MzN0amxxYTdrdUZqYkkweUswbm9semY5ak8KQm5vc28vN2txNDJOVGJCWFN0Z2tkTWZ1U0Rob1ZtUnhVYStLaUZ3ejlaL2p2UkpqS2xCOW8yRE9CY0tTRTlvYgp4OVk4TlovZXd3S0JnRGVhdldEQnBuVndzTFdvczlJYU1jQ0tlRjNRODdRK0MwT2gxNjBuNE9JbG83cGxvbVoxCnlqM3dJQ1oyN2doQ21JbXpONEY3N3FhMFJtenk1T09VTnZac2ErNW5kcHB5QmNVdm0xdWxZVnQzQzZBWmpiM08Kd3ovMzRkVS9KK2lZdEptekdoQWdDc1Y1VVExQVdWWm1GRzZ0cjk0RUdTN1hlekRDc3h0OTJjb3BBb0dBYzdrTApuN1B1OVA5dVdCNWtRN1pXcm9KV3A2ZTdRVitaZUR5emRibkxlak5lNVJFa29pM0RKQlEvSWJuaGJZcjAyejRXCkhkUVd0VVFzUkJzclBPQ2FXanVKc1pudEVqZERCUXNvanoxdGxOdXBrUWFiNjgvVUVYczEySVZmN09NcDNQeW4KRXE1RjczNkxmdjlka1dVc2crejJJTytwRHAwc2tEUExlNkRRR2djQ2dZQmtGWFpGbXZCR2JKWnVWT2crRHYxTwprcnJQaHVVd2diOXZNck0zcExDSURIV21hS0VJS0RuN0NnWWczb0pFUmhzL1o0N1hRdE9RYklrOXd1ZDB0Wkd4CkFQQWxEcjRKR3NZVjF0YmRlRHJVb0FMN28xN3VicWVxQ01vbWFGak41T1c5RFc3RjVhcUhlTkJxaGtxMWxoT0IKMTJBVWd6WmJTN3IrbUd1cFJBc3dQUT09Ci0tLS0tRU5EIFBSSVZBVEUgS0VZLS0tLS0K</prv>
13320 
		<serial>10</serial>
13321 
	</ca>
13322 
	<ovpnserver>
13323 
		<step1>
13324 
			<type>local</type>
13325 
		</step1>
13326 
		<step6>
13327 
			<authcertca>52d81d3d6c37b</authcertca>
13328 
		</step6>
13329 
		<step9>
13330 
			<authcertname>52f5f2e4d9d2e</authcertname>
13331 
		</step9>
13332 
		<step10>
13333 
			<protocol>UDP</protocol>
13334 
			<localport>1234</localport>
13335 
			<descr><![CDATA[OpenVPN Remote Access]]></descr>
13336 
			<tlsauth>on</tlsauth>
13337 
			<gentlskey>on</gentlskey>
13338 
			<dhkey>1024</dhkey>
13339 
			<crypto>AES-128-CBC</crypto>
13340 
			<engine>none</engine>
13341 
			<tunnelnet>172.24.48.0/24</tunnelnet>
13342 
			<rdrgw>on</rdrgw>
13343 
			<localnet>172.24.17.0/24</localnet>
13344 
			<concurrentcon>10</concurrentcon>
13345 
			<compression>on</compression>
13346 
			<interclient>on</interclient>
13347 
			<dynip>on</dynip>
13348 
			<addrpool>on</addrpool>
13349 
			<defaultdomain>siteA.com</defaultdomain>
13350 
			<dns1>172.24.16.1</dns1>
13351 
			<ntp1>172.24.16.1</ntp1>
13352 
			<nbttype>0</nbttype>
13353 
			<interface>lan</interface>
13354 
		</step10>
13355 
		<step11>
13356 
			<ovpnrule>on</ovpnrule>
13357 
			<ovpnallow>on</ovpnallow>
13358 
		</step11>
13359 
	</ovpnserver>
13360 
</pfsense>
(2-2/2)