aboutsummaryrefslogtreecommitdiffstats
path: root/docs/APPC CDT Guide/template_Configure_vABC_0.0.1.txt
blob: 861dbcc5f33f8b8cbbff6355ef4587299a1ad44c (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
1001
1002
1003
1004
1005
1006
1007
1008
1009
1010
1011
1012
1013
1014
1015
1016
1017
1018
1019
1020
1021
1022
1023
1024
1025
1026
1027
1028
1029
1030
1031
1032
1033
1034
1035
1036
1037
1038
1039
1040
1041
1042
1043
1044
1045
1046
1047
1048
1049
1050
1051
1052
1053
1054
1055
1056
1057
1058
1059
1060
1061
1062
1063
1064
1065
1066
1067
1068
1069
1070
1071
1072
1073
1074
1075
1076
1077
1078
1079
1080
1081
1082
1083
1084
1085
1086
1087
1088
1089
1090
1091
1092
1093
1094
1095
1096
1097
1098
1099
1100
1101
1102
1103
1104
1105
1106
1107
1108
1109
1110
1111
1112
1113
1114
1115
1116
1117
1118
1119
1120
1121
1122
1123
1124
1125
1126
1127
1128
1129
1130
1131
1132
1133
1134
1135
1136
1137
1138
1139
1140
1141
1142
1143
1144
1145
1146
1147
1148
1149
1150
1151
1152
1153
1154
1155
1156
1157
1158
1159
1160
1161
1162
1163
1164
1165
1166
1167
1168
1169
1170
1171
1172
1173
1174
1175
1176
1177
1178
1179
1180
1181
1182
1183
1184
1185
1186
1187
1188
1189
1190
1191
1192
1193
1194
1195
1196
1197
1198
1199
1200
1201
1202
1203
1204
1205
1206
1207
1208
1209
1210
1211
1212
1213
1214
1215
1216
1217
1218
1219
1220
1221
1222
1223
1224
1225
1226
1227
1228
1229
1230
1231
1232
1233
1234
1235
1236
1237
1238
1239
1240
1241
1242
1243
1244
1245
1246
1247
1248
1249
1250
1251
1252
1253
1254
1255
1256
1257
1258
1259
1260
1261
1262
1263
1264
1265
1266
1267
1268
1269
1270
1271
1272
1273
1274
1275
1276
1277
1278
1279
1280
1281
1282
1283
1284
1285
1286
1287
1288
1289
1290
1291
1292
1293
1294
1295
1296
1297
1298
1299
1300
1301
1302
1303
1304
1305
1306
1307
1308
1309
1310
1311
1312
1313
1314
1315
1316
1317
1318
1319
1320
1321
1322
1323
1324
1325
1326
1327
1328
1329
1330
1331
1332
1333
1334
1335
1336
1337
1338
1339
1340
1341
1342
1343
1344
1345
1346
1347
1348
1349
1350
1351
1352
1353
1354
1355
1356
1357
1358
1359
1360
1361
1362
1363
1364
1365
1366
1367
1368
1369
1370
1371
1372
1373
1374
1375
1376
1377
1378
1379
1380
1381
1382
1383
1384
1385
1386
1387
1388
1389
1390
1391
1392
1393
1394
1395
1396
1397
1398
1399
1400
1401
1402
1403
1404
1405
1406
1407
1408
1409
1410
1411
1412
1413
1414
1415
1416
1417
1418
1419
1420
1421
1422
1423
1424
1425
1426
1427
1428
1429
1430
1431
1432
1433
1434
1435
1436
1437
1438
1439
1440
1441
1442
1443
1444
1445
1446
1447
1448
1449
1450
1451
1452
1453
1454
1455
1456
1457
1458
1459
1460
1461
1462
1463
1464
1465
1466
1467
1468
1469
1470
1471
1472
1473
1474
1475
1476
1477
1478
1479
1480
1481
1482
1483
1484
1485
1486
1487
1488
1489
1490
1491
1492
1493
1494
1495
1496
1497
1498
1499
1500
1501
1502
1503
1504
1505
1506
1507
1508
1509
1510
1511
1512
1513
1514
1515
1516
1517
1518
1519
1520
1521
1522
1523
1524
1525
1526
1527
1528
1529
1530
1531
1532
1533
1534
1535
<rpc-reply xmlns:junos="http://xml.juniper.net/junos/15.1X49/junos">
    <configuration junos:changed-seconds="1478714723" junos:changed-localtime="2016-11-09 18:05:23 UTC">
            <version>15.1X49-D50.3</version>
            <groups>
                <name>${nodename}</name>
                <system>
                    <host-name>dbqx0001vm001</host-name>
                    <backup-router>
                        <address>${BUrouterIP}</address>
                        <destination>${DestinationSubnet}</destination>
                    </backup-router>
                    <services>
                        <ssh>
                            <max-sessions-per-connection>32</max-sessions-per-connection>
                        </ssh>
                    </services>
                    <syslog>
                        <file>
                            <name>default-log-messages</name>
                            <contents>
                                <name>any</name>
                                <info/>
                            </contents>
                            <match>(requested 'commit' operation)|(copying configuration to juniper.save)|(commit complete)|ifAdminStatus|(FRU power)|(FRU removal)|(FRU insertion)|(link UP)|transitioned|Transferred|transfer-file|(license add)|(license delete)|(package -X update)|(package -X delete)|(FRU Online)|(FRU Offline)|(plugged in)|(unplugged)|GRES</match>
                            <structured-data>
                            </structured-data>
                        </file>
                    </syslog>
                </system>
                <interfaces>
                    <interface>
                        <name>fxp0</name>
                        <unit>
                            <name>0</name>
                            <family>
                                <inet>
                                    <address>
                                        <name>135.69.228.8/25</name>
                                    </address>
                                </inet>
                            </family>
                        </unit>
                    </interface>
                </interfaces>
            </groups>
            <groups>
                <name>node1</name>
                <system>
                    <host-name>dbqx0001vm002</host-name>
                    <backup-router>
                        <address>135.69.228.1</address>
                        <destination>0.0.0.0/0</destination>
                    </backup-router>
                    <services>
                        <ssh>
                            <max-sessions-per-connection>32</max-sessions-per-connection>
                        </ssh>
                    </services>
                    <syslog>
                        <file>
                            <name>default-log-messages</name>
                            <contents>
                                <name>any</name>
                                <info/>
                            </contents>
                            <match>(requested 'commit' operation)|(copying configuration to juniper.save)|(commit complete)|ifAdminStatus|(FRU power)|(FRU removal)|(FRU insertion)|(link UP)|transitioned|Transferred|transfer-file|(license add)|(license delete)|(package -X update)|(package -X delete)|(FRU Online)|(FRU Offline)|(plugged in)|(unplugged)|GRES</match>
                            <structured-data>
                            </structured-data>
                        </file>
                    </syslog>
                </system>
                <interfaces>
                    <interface>
                        <name>fxp0</name>
                        <unit>
                            <name>0</name>
                            <family>
                                <inet>
                                    <address>
                                        <name>135.69.228.9/25</name>
                                    </address>
                                </inet>
                            </family>
                        </unit>
                    </interface>
                </interfaces>
            </groups>
            <apply-groups>groupname</apply-groups>
            <system>
                <root-authentication>
                    <encrypted-password>$5$rKyWGmrv$sMeym/XUklUeJX2hKpcp5TzCG5R8jcmJ2901HcNGSeB</encrypted-password>
                </root-authentication>
                <name-server>
                    <name>135.188.34.84</name>
                </name-server>
                <login>
                    <message>\n\t\tWARNING NOTICE\n\tThis system is restricted solely to AT&amp;T authorized users for\n\tlegitimate business purposes only.The actual or attempted\n\tunauthorized access, use, or modification of this system is\n\tstrictly prohibited by AT&amp;T. Unauthorized users are subject to\n\tCompany disciplinary proceedings and/or criminal and civil\n\tpenalties under state, federal, or other applicable domestic and\n\tforeign laws. The use of this system may be monitored and\n\trecorded for administrative and security reasons. Anyone\n\taccessing this system expressly consents to such monitoring and\n\t is advised that if monitoring reveals possible evidence of\n\tcriminal activity, AT&amp;T may provide the evidence of such\n\tactivity to law enforcement officials. All users must comply\n\twith AT&amp;T company policies regarding the protection of AT&amp;T\n\tinformation assets.\n\n</message>
                </login>
                <services>
                    <ssh>
                        <protocol-version>v2</protocol-version>
                    </ssh>
                    <netconf>
                        <ssh>
                        </ssh>
                    </netconf>
                </services>
                <syslog>
                    <user>
                        <name>*</name>
                        <contents>
                            <name>any</name>
                            <emergency/>
                        </contents>
                    </user>
                    <host>
                        <name>135.144.0.62</name>
                        <contents>
                            <name>any</name>
                            <any/>
                        </contents>
                        <structured-data>
                        </structured-data>
                    </host>
                    <file>
                        <name>messages</name>
                        <contents>
                            <name>any</name>
                            <any/>
                        </contents>
                        <contents>
                            <name>authorization</name>
                            <info/>
                        </contents>
                    </file>
                    <file>
                        <name>interactive-commands</name>
                        <contents>
                            <name>interactive-commands</name>
                            <any/>
                        </contents>
                    </file>
                    <file>
                        <name>session_log</name>
                        <contents>
                            <name>any</name>
                            <info/>
                        </contents>
                        <structured-data>
                        </structured-data>
                    </file>
                    <file>
                        <name>policy_session</name>
                        <match>RT_FLOW</match>
                    </file>
                </syslog>
                <license>
                    <autoupdate>
                        <url>
                            <name>https://ae1.juniper.net/junos/key_retrieval</name>
                        </url>
                    </autoupdate>
                </license>
                <ntp>
                    <server>
                        <name>192.20.201.162</name>
                    </server>
                </ntp>
            </system>
            <chassis>
                <cluster>
                    <control-link-recovery/>
                    <reth-count>2</reth-count>
                    <heartbeat-interval>1000</heartbeat-interval>
                    <heartbeat-threshold>3</heartbeat-threshold>
                    <redundancy-group>
                        <name>0</name>
                        <node>
                            <name>0</name>
                            <priority>100</priority>
                        </node>
                        <node>
                            <name>1</name>
                            <priority>1</priority>
                        </node>
                    </redundancy-group>
                    <redundancy-group>
                        <name>1</name>
                        <node>
                            <name>0</name>
                            <priority>100</priority>
                        </node>
                        <node>
                            <name>1</name>
                            <priority>1</priority>
                        </node>
                        <interface-monitor>
                            <name>ge-0/0/1</name>
                            <weight>255</weight>
                        </interface-monitor>
                        <interface-monitor>
                            <name>ge-7/0/1</name>
                            <weight>255</weight>
                        </interface-monitor>
                        <interface-monitor>
                            <name>ge-0/0/2</name>
                            <weight>255</weight>
                        </interface-monitor>
                        <interface-monitor>
                            <name>ge-7/0/2</name>
                            <weight>255</weight>
                        </interface-monitor>
                        <ip-monitoring>
                            <global-weight>255</global-weight>
                            <retry-interval>1</retry-interval>
                            <retry-count>5</retry-count>
                            <family>
                                <inet>
                                    <address>
                                        <name>10.68.16.1</name>
                                        <weight>255</weight>
                                        <interface>
                                            <logical-interface-name>reth1.0</logical-interface-name>
                                            <secondary-ip-address>10.68.16.17</secondary-ip-address>
                                        </interface>
                                    </address>
                                    <address>
                                        <name>12.102.197.129</name>
                                        <weight>255</weight>
                                        <interface>
                                            <logical-interface-name>reth0.0</logical-interface-name>
                                            <secondary-ip-address>12.102.197.135</secondary-ip-address>
                                        </interface>
                                    </address>
                                </inet>
                            </family>
                        </ip-monitoring>
                    </redundancy-group>
                </cluster>
            </chassis>
            <services>
                <application-identification>
                </application-identification>
            </services>
            <security>
                <idp>
                    <idp-policy>
                        <name>Space-IPS-Policy</name>
                        <rulebase-ips>
                            <rule>
                                <name>DBE-Q-IPS-policy-template-1</name>
                                <match>
                                    <from-zone>any</from-zone>
                                    <to-zone>any</to-zone>
                                    <application>default</application>
                                    <attacks>
                                        <predefined-attacks>APP:ADOBE-COLDFUSION-WEBSOCKET</predefined-attacks>
                                        <predefined-attacks>APP:ADOBE-FLASH-RTMP-RCE</predefined-attacks>
                                        <predefined-attacks>APP:AMANDA:AMANDA-ROOT-OF2</predefined-attacks>
                                        <predefined-attacks>APP:APPLE-MACOSX-ODP-RCE</predefined-attacks>
                                        <predefined-attacks>APP:ASUS-WRT-INFOSVR-COMND-EXEC</predefined-attacks>
                                        <predefined-attacks>APP:CA:ARCSRV:BCK-MESSAGE</predefined-attacks>
                                        <predefined-attacks>APP:CA:ARCSRV:BCKUP-AUTHSRV-DOS</predefined-attacks>
                                        <predefined-attacks>APP:CA:ARCSRV:METHD-EXPOSURE</predefined-attacks>
                                        <predefined-attacks>APP:CA:ARCSRV:RPC-MEMRCORRUPT</predefined-attacks>
                                        <predefined-attacks>APP:CA:ARCSRV:SQLOF-1</predefined-attacks>
                                        <predefined-attacks>APP:CA:ARCSRV:TAPE-ENGNE-DOS</predefined-attacks>
                                        <predefined-attacks>APP:CA:DBA-SVR-POINT</predefined-attacks>
                                        <predefined-attacks>APP:CA:RPC-MSG-BO</predefined-attacks>
                                        <predefined-attacks>APP:CISCO:ASA-IKE-BO</predefined-attacks>
                                        <predefined-attacks>APP:CISCO:CISCO-EPNM-DESERIAL-1</predefined-attacks>
                                        <predefined-attacks>APP:CISCO:VIDEO-SURVEILANCE-XSS</predefined-attacks>
                                        <predefined-attacks>APP:CITRIX:PROVISIONING-OPCODE</predefined-attacks>
                                        <predefined-attacks>APP:CITRIX:STREAMPROCESS-BOF</predefined-attacks>
                                        <predefined-attacks>APP:DIGIUM-ASTERISK-OF</predefined-attacks>
                                        <predefined-attacks>APP:EMC-ALPHASTOR-BOF</predefined-attacks>
                                        <predefined-attacks>APP:EMC-ALPHASTORE-CMDEXEC</predefined-attacks>
                                        <predefined-attacks>APP:EMC-APLHASTORE-FMTSTR</predefined-attacks>
                                        <predefined-attacks>APP:EMC-NETWORKER-NSRD-BO</predefined-attacks>
                                        <predefined-attacks>APP:EMC-NETWORKER-NSRINDEXD-OF</predefined-attacks>
                                        <predefined-attacks>APP:EMC-NSRINDEXD-BO</predefined-attacks>
                                        <predefined-attacks>APP:EMC-REPLICATION-MGR-CMD-EXE</predefined-attacks>
                                        <predefined-attacks>APP:ESIGNAL:OVERFLOW-EXPLOIT</predefined-attacks>
                                        <predefined-attacks>APP:FLEXERA-FLEXNET-BO</predefined-attacks>
                                        <predefined-attacks>APP:FREEBSD-BSPATCH-RCE</predefined-attacks>
                                        <predefined-attacks>APP:HP-DATA-PROTECTOR-OP-DOS</predefined-attacks>
                                        <predefined-attacks>APP:HP-DATA-PRTCTR-EXEC-BAR-CE</predefined-attacks>
                                        <predefined-attacks>APP:HP-DATA-PRTCTR-OP-27</predefined-attacks>
                                        <predefined-attacks>APP:HP-DATA-PRTCTR-OP211-264</predefined-attacks>
                                        <predefined-attacks>APP:HP-DATA-PRTCTR-OP215-263</predefined-attacks>
                                        <predefined-attacks>APP:HP-DATA-PRTCTR-OP227-BO</predefined-attacks>
                                        <predefined-attacks>APP:HP-DATA-PRTCTR-OP234-BO</predefined-attacks>
                                        <predefined-attacks>APP:HP-DATA-PRTCTR-OP235-BO</predefined-attacks>
                                        <predefined-attacks>APP:HP-DATA-PRTCTR-OP259-BO</predefined-attacks>
                                        <predefined-attacks>APP:HP-DATA-PRTCTR-OP260-BO</predefined-attacks>
                                        <predefined-attacks>APP:HP-DATA-PRTCTR-OP28-11</predefined-attacks>
                                        <predefined-attacks>APP:HP-DATA-PRTCTR-OPCODE</predefined-attacks>
                                        <predefined-attacks>APP:HP-DATA-PRTCTR-OPCODES</predefined-attacks>
                                        <predefined-attacks>APP:HP-DATA-PRTCTR-RDS-DOS</predefined-attacks>
                                        <predefined-attacks>APP:HP-LEFTHAND-HYDRA-DIAG-OF</predefined-attacks>
                                        <predefined-attacks>APP:HP-LEFTHAND-HYDRA-PING-OF</predefined-attacks>
                                        <predefined-attacks>APP:HP-LOADRUNNER-BO</predefined-attacks>
                                        <predefined-attacks>APP:HP-LOADRUNNER-RCE</predefined-attacks>
                                        <predefined-attacks>APP:HP-LOADRUNNER-SSL</predefined-attacks>
                                        <predefined-attacks>APP:HP-LOGIN-BOF</predefined-attacks>
                                        <predefined-attacks>APP:HP-MGMT-UAM-BO</predefined-attacks>
                                        <predefined-attacks>APP:HP-NNM-HLEN-BOF</predefined-attacks>
                                        <predefined-attacks>APP:HP-OPENVIEW-DTPRTCTR-BO</predefined-attacks>
                                        <predefined-attacks>APP:HP-OPNVIEWSTORAGE-BOF</predefined-attacks>
                                        <predefined-attacks>APP:HP-OPNVW-STORAGE-DATA-BO</predefined-attacks>
                                        <predefined-attacks>APP:HP-PROCURVE-BYPASS</predefined-attacks>
                                        <predefined-attacks>APP:HP-PROTECTOR-DIR-TRAV</predefined-attacks>
                                        <predefined-attacks>APP:HP-SAN-IQ-CMD-INJ</predefined-attacks>
                                        <predefined-attacks>APP:HP-STORAGEWORKS-OPC22-BO</predefined-attacks>
                                        <predefined-attacks>APP:HP-SYS-IPRANGE-OF</predefined-attacks>
                                        <predefined-attacks>APP:HP-SYS-RCE</predefined-attacks>
                                        <predefined-attacks>APP:HP-VIRTUAL-SAN</predefined-attacks>
                                        <predefined-attacks>APP:HPE-NA-RMI-DESER</predefined-attacks>
                                        <predefined-attacks>APP:HPIM-SOM-EUACCNT-BYPASS</predefined-attacks>
                                        <predefined-attacks>APP:HPLOADRUNNER-XDR-BO</predefined-attacks>
                                        <predefined-attacks>APP:HPOV:CMD-INJ</predefined-attacks>
                                        <predefined-attacks>APP:IBM:DOMINO-BYPASS</predefined-attacks>
                                        <predefined-attacks>APP:IBM:DOMINO-BYPASS-1</predefined-attacks>
                                        <predefined-attacks>APP:IBM:FORMVIEWER-XFDL-BOF</predefined-attacks>
                                        <predefined-attacks>APP:IBM:FXCLI-EXECBO</predefined-attacks>
                                        <predefined-attacks>APP:IBM:LDAP-MODIFYREQUEST-BO</predefined-attacks>
                                        <predefined-attacks>APP:IBM:OPCODE-1330-CMD-INJ</predefined-attacks>
                                        <predefined-attacks>APP:IBM:TIV-OP1329-BOF</predefined-attacks>
                                        <predefined-attacks>APP:IBM:TIV-OP1331-CMDINJ</predefined-attacks>
                                        <predefined-attacks>APP:IBM:TIV-OP1339-CMDINJ</predefined-attacks>
                                        <predefined-attacks>APP:IBM:TIVOLI-FASTBACK-OP-BO</predefined-attacks>
                                        <predefined-attacks>APP:IBM:TIVOLI-OP4115-BO</predefined-attacks>
                                        <predefined-attacks>APP:IBM:TIVOLI-SRV-OP1301</predefined-attacks>
                                        <predefined-attacks>APP:IBM:TIVOLI-SRV-OP1335</predefined-attacks>
                                        <predefined-attacks>APP:IBM:TSM-CVE-2015-0119-BO</predefined-attacks>
                                        <predefined-attacks>APP:IPMI-CIPHER-ZERO</predefined-attacks>
                                        <predefined-attacks>APP:KERBEROS:BLDPRINCIPAL-VA1</predefined-attacks>
                                        <predefined-attacks>APP:KERBEROS:BLDPRINCIPAL-VA2</predefined-attacks>
                                        <predefined-attacks>APP:KERBEROS:CHKSUM-PRIV-ESC</predefined-attacks>
                                        <predefined-attacks>APP:KERBEROS:INV-TOKEN-DOS-TCP</predefined-attacks>
                                        <predefined-attacks>APP:KERBEROS:INV-TOKEN-DOS-UDP</predefined-attacks>
                                        <predefined-attacks>APP:KERBEROS:KRB5-DOS</predefined-attacks>
                                        <predefined-attacks>APP:KERBEROS:MULTI-REALM-DOS</predefined-attacks>
                                        <predefined-attacks>APP:KERBEROS:SPNEGO-5-DOS</predefined-attacks>
                                        <predefined-attacks>APP:KERBEROS:WIN-KERB-FALLBACK</predefined-attacks>
                                        <predefined-attacks>APP:KERBEROS:XREALM-KDC-DOS</predefined-attacks>
                                        <predefined-attacks>APP:MCAFEE-AM-INPUT-SSL</predefined-attacks>
                                        <predefined-attacks>APP:MISC:ACTMQ-SHUTDN-CMD</predefined-attacks>
                                        <predefined-attacks>APP:MISC:ADOBE-RTMP-UAF</predefined-attacks>
                                        <predefined-attacks>APP:MISC:ALIENVALT-BAKUP-COM-RE</predefined-attacks>
                                        <predefined-attacks>APP:MISC:APACHE-QPID-SEQSET-DOS</predefined-attacks>
                                        <predefined-attacks>APP:MISC:APACHE-SVN-IO</predefined-attacks>
                                        <predefined-attacks>APP:MISC:ARCSERVE-BKUP</predefined-attacks>
                                        <predefined-attacks>APP:MISC:BIGANT-DDNF-BO</predefined-attacks>
                                        <predefined-attacks>APP:MISC:CLEARSCADA-OPF-PARSE</predefined-attacks>
                                        <predefined-attacks>APP:MISC:CVE-2014-0549-RTMP-MC</predefined-attacks>
                                        <predefined-attacks>APP:MISC:DIASOFT-EXECCMD-CE</predefined-attacks>
                                        <predefined-attacks>APP:MISC:ENTERASYS-NETSIGHT-BOF</predefined-attacks>
                                        <predefined-attacks>APP:MISC:EZHOMETECH-EZSERVER-BO</predefined-attacks>
                                        <predefined-attacks>APP:MISC:FREEBSD-MBUF-DOS</predefined-attacks>
                                        <predefined-attacks>APP:MISC:GITORIOUS-RCE</predefined-attacks>
                                        <predefined-attacks>APP:MISC:HP-INODE-BO</predefined-attacks>
                                        <predefined-attacks>APP:MISC:HP-OA-HEALTH-BO</predefined-attacks>
                                        <predefined-attacks>APP:MISC:NAGIOS-NRPE-CE</predefined-attacks>
                                        <predefined-attacks>APP:MISC:OBJ-BO</predefined-attacks>
                                        <predefined-attacks>APP:MISC:OBJ-OBJDB-BO</predefined-attacks>
                                        <predefined-attacks>APP:MISC:SAM-ACTQ-MULTI</predefined-attacks>
                                        <predefined-attacks>APP:MISC:SCHNEIDER-INDUSOFT-RCE</predefined-attacks>
                                        <predefined-attacks>APP:MISC:SERCOMM-DEVICE-RCE</predefined-attacks>
                                        <predefined-attacks>APP:MISC:SPREE-SEARCH-CMD-EXE</predefined-attacks>
                                        <predefined-attacks>APP:MISC:WSHARK-ENTTEC-BO</predefined-attacks>
                                        <predefined-attacks>APP:MISC:XEROX-MFP-COMND-EXEC</predefined-attacks>
                                        <predefined-attacks>APP:MISC:ZABBIC-NODE-PROCESS-CE</predefined-attacks>
                                        <predefined-attacks>APP:MISC:ZEND-SERVER-CE</predefined-attacks>
                                        <predefined-attacks>APP:MIT-KERBEROS-5-POLICY-DOS</predefined-attacks>
                                        <predefined-attacks>APP:MS-SNABASE-EXE-DOS</predefined-attacks>
                                        <predefined-attacks>APP:MSDOTNET-CVE-2014-1806</predefined-attacks>
                                        <predefined-attacks>APP:NOVELL:MESSENGER-BOF</predefined-attacks>
                                        <predefined-attacks>APP:NOVELL:MESSENGER-LOGIN</predefined-attacks>
                                        <predefined-attacks>APP:NOVELL:ZENWORKS-DIR-TRAV</predefined-attacks>
                                        <predefined-attacks>APP:NOVELL:ZENWORKS-MGT-UPLOAD</predefined-attacks>
                                        <predefined-attacks>APP:OPENVIEW-STORAGE-BO</predefined-attacks>
                                        <predefined-attacks>APP:ORACLE:WEBLOGIC-FILE-UPLOAD</predefined-attacks>
                                        <predefined-attacks>APP:ORACLE:WEBLOGIC-SRV-RCE</predefined-attacks>
                                        <predefined-attacks>APP:PERSISTENT-COMMAND-EXEC</predefined-attacks>
                                        <predefined-attacks>APP:PROXY:SQUID-SSLBUMP-CERT</predefined-attacks>
                                        <predefined-attacks>APP:QEMU-VNC-SETPIXEL-PTR-DEREF</predefined-attacks>
                                        <predefined-attacks>APP:QUEST-BIG-BRO-FD</predefined-attacks>
                                        <predefined-attacks>APP:RDP-BRUTE-FORCE</predefined-attacks>
                                        <predefined-attacks>APP:REAL:REAL-MPG-WIDTH</predefined-attacks>
                                        <predefined-attacks>APP:REDIS-GETNUM-IO</predefined-attacks>
                                        <predefined-attacks>APP:REMOTE:CVE-2015-2373-RCE</predefined-attacks>
                                        <predefined-attacks>APP:REMOTE:NETTRANSPORT-DM</predefined-attacks>
                                        <predefined-attacks>APP:REMOTE:RDP-HEAP-BO</predefined-attacks>
                                        <predefined-attacks>APP:REMOTE:RDP-MEM-OBJ</predefined-attacks>
                                        <predefined-attacks>APP:SAFENET-VPN-OF</predefined-attacks>
                                        <predefined-attacks>APP:SAP:3DM-FILE-BOF</predefined-attacks>
                                        <predefined-attacks>APP:SAP:3DVIS-FLIC-BO</predefined-attacks>
                                        <predefined-attacks>APP:SAP:INT-GRAPHICS-PARAMS-XSS</predefined-attacks>
                                        <predefined-attacks>APP:SAP:NETWEAVER-BO</predefined-attacks>
                                        <predefined-attacks>APP:SAP:NETWEAVER-DIAGI-DOS</predefined-attacks>
                                        <predefined-attacks>APP:SAP:NETWEAVER-DOS</predefined-attacks>
                                        <predefined-attacks>APP:SAP:NETWEAVER-SOAP-RCE</predefined-attacks>
                                        <predefined-attacks>APP:SNORT:BACKORIFICE-DOS</predefined-attacks>
                                        <predefined-attacks>APP:SQUID-BUMP-DOS</predefined-attacks>
                                        <predefined-attacks>APP:SYMC:ALTIRIS-DS-SQL-INJ</predefined-attacks>
                                        <predefined-attacks>APP:SYMC:ENCRYPTED-CMD-EXEC</predefined-attacks>
                                        <predefined-attacks>APP:TMIC:SP-CREATE-BIND-OF</predefined-attacks>
                                        <predefined-attacks>APP:TMIC:SP-EARTH-AGENT-OF</predefined-attacks>
                                        <predefined-attacks>APP:UPNP:LIBUPNP-DSN-BOF</predefined-attacks>
                                        <predefined-attacks>APP:UPNP:LIBUPNP-ROOT-DSN-BOF</predefined-attacks>
                                        <predefined-attacks>APP:UPNP:LIBUPNP-UUID-BOF</predefined-attacks>
                                        <predefined-attacks>APP:VCENTER-JMX-RCE</predefined-attacks>
                                        <predefined-attacks>APP:VCENTER-JMX-RCE2</predefined-attacks>
                                        <predefined-attacks>APP:VINZANT-ARCHTCTR-AUTHWKNESS</predefined-attacks>
                                        <predefined-attacks>CHAT:IRC:BOTNET:RA1NX-BOT-CE</predefined-attacks>
                                        <predefined-attacks>CHAT:IRC:BOTNET:W3TW0RK-RCE</predefined-attacks>
                                        <predefined-attacks>DB:IBM-SOLIDBD-WHERE-DOS</predefined-attacks>
                                        <predefined-attacks>DB:IBM-SOLIDDB-ROWNUM</predefined-attacks>
                                        <predefined-attacks>DB:MONGODB-NATIVEHELPER-RCE</predefined-attacks>
                                        <predefined-attacks>DB:MYSQL:BENCHMARK-DOS</predefined-attacks>
                                        <predefined-attacks>DB:MYSQL:BRUTE-FORCE</predefined-attacks>
                                        <predefined-attacks>DB:MYSQL:CLIENT-BOF</predefined-attacks>
                                        <predefined-attacks>DB:MYSQL:GRANT-FILE-BO</predefined-attacks>
                                        <predefined-attacks>DB:MYSQL:ORACLE-XPATH-DOS</predefined-attacks>
                                        <predefined-attacks>DB:MYSQL:ROOT-PRIVILEGE</predefined-attacks>
                                        <predefined-attacks>DB:MYSQL:UPDATEXML-DOS</predefined-attacks>
                                        <predefined-attacks>DB:MYSQL:USER-ENUMERATION</predefined-attacks>
                                        <predefined-attacks>DB:MYSQL:WIN-RCE</predefined-attacks>
                                        <predefined-attacks>DB:MYSQL:WINDOWS-REMOTE-ROOT</predefined-attacks>
                                        <predefined-attacks>DB:ORACLE:DBMS:OUTPUT-TO-JAVA</predefined-attacks>
                                        <predefined-attacks>DB:ORACLE:DECLARE-EXEC</predefined-attacks>
                                        <predefined-attacks>DB:ORACLE:EVTDUMP</predefined-attacks>
                                        <predefined-attacks>DB:ORACLE:SYS:LPXFSMSAX-NAME-BO</predefined-attacks>
                                        <predefined-attacks>DB:POSTGRESQL:DBNAME-CLIFLAGINJ</predefined-attacks>
                                        <predefined-attacks>DB:POSTGRESQL:GEO-OPS-PATH-IN</predefined-attacks>
                                        <predefined-attacks>DB:POSTGRESQL:POSTGRE-DBSEC-BP</predefined-attacks>
                                        <predefined-attacks>DDOS:LOIC-WEB</predefined-attacks>
                                        <predefined-attacks>DHCP:SERVER:GNU-BASH-CMD-EXE</predefined-attacks>
                                        <predefined-attacks>DHCP:SERVER:ISC-MAL-CLID</predefined-attacks>
                                        <predefined-attacks>DNS:AUDIT:UNASSIGNED-OPCODE</predefined-attacks>
                                        <predefined-attacks>DNS:AUDIT:Z-RESERVED-OPT</predefined-attacks>
                                        <predefined-attacks>DNS:BIND-DBC-ASSERT-DOS</predefined-attacks>
                                        <predefined-attacks>DNS:EXPLOIT:BIND-KEYPARSE-DOS</predefined-attacks>
                                        <predefined-attacks>DNS:EXPLOIT:CLIBCVE-2015-7547BO</predefined-attacks>
                                        <predefined-attacks>DNS:EXPLOIT:LIBCVE-2015-7547BO2</predefined-attacks>
                                        <predefined-attacks>DNS:GNUTLS-DANE-BOF</predefined-attacks>
                                        <predefined-attacks>DNS:ISC-ASSERTION-DOS</predefined-attacks>
                                        <predefined-attacks>DNS:ISC-BIND-DNSSEC-DOS</predefined-attacks>
                                        <predefined-attacks>DNS:ISC-BIND-DOS</predefined-attacks>
                                        <predefined-attacks>DNS:ISC-BIND-EDNS-OPT-DOS</predefined-attacks>
                                        <predefined-attacks>DNS:ISC-BIND-PACKAGE-DOS</predefined-attacks>
                                        <predefined-attacks>DNS:MS-ISA-CE</predefined-attacks>
                                        <predefined-attacks>DNS:NGINX-RESOLVER-DOS</predefined-attacks>
                                        <predefined-attacks>DNS:OVERFLOW:GNU-C-GLIBC</predefined-attacks>
                                        <predefined-attacks>DNS:OVERFLOW:TFTPD32</predefined-attacks>
                                        <predefined-attacks>DNS:PDNS-AUTHSERV-DOS</predefined-attacks>
                                        <predefined-attacks>DNS:POWERDNS-NAMESRVR-UDP-DOS</predefined-attacks>
                                        <predefined-attacks>DNS:POWERDNS-NAMSRVR-TCP-DOS</predefined-attacks>
                                        <predefined-attacks>DNS:REPERR:NULL-RDATA-LEN</predefined-attacks>
                                        <predefined-attacks>DNS:RRSIG-QUERY</predefined-attacks>
                                        <predefined-attacks>DNS:SQUID-DNS-DOS-1</predefined-attacks>
                                        <predefined-attacks>DNS:TUNNEL:I2P-DNS-QUERY</predefined-attacks>
                                        <predefined-attacks>DNS:TUNNEL:NULL-RECORD</predefined-attacks>
                                        <predefined-attacks>DNS:WORDPRESS-SOAK-SOAK-MALWARE</predefined-attacks>
                                        <predefined-attacks>DOS:DELL-NETVAULT-DOS</predefined-attacks>
                                        <predefined-attacks>DOS:FREEBSD-ROUTED-DAEMON</predefined-attacks>
                                        <predefined-attacks>DOS:SLOWHTTPTEST-TOOL</predefined-attacks>
                                        <predefined-attacks>DOS:WINDOWS:HTTP-SYS</predefined-attacks>
                                        <predefined-attacks>DOS:WINDOWS:ISCSI-TARGET</predefined-attacks>
                                        <predefined-attacks>HTTP:ADOBE-FLASH-PLAYER-BO</predefined-attacks>
                                        <predefined-attacks>HTTP:ADOBE-FLASHPLYR-PRIV-ESC</predefined-attacks>
                                        <predefined-attacks>HTTP:ANGLER-EXPKIT-URI</predefined-attacks>
                                        <predefined-attacks>HTTP:APACHE:APACHE-CHUNKREQ-DOS</predefined-attacks>
                                        <predefined-attacks>HTTP:APACHE:APR-UTIL-LIB-DOS</predefined-attacks>
                                        <predefined-attacks>HTTP:APACHE:COUCHDB-UUID-DOS</predefined-attacks>
                                        <predefined-attacks>HTTP:APACHE:HTTPD-ERROR-400</predefined-attacks>
                                        <predefined-attacks>HTTP:APACHE:HTTPD-MODLOG-COOKIE</predefined-attacks>
                                        <predefined-attacks>HTTP:APACHE:MOD-LOG-CONFIG-DOS</predefined-attacks>
                                        <predefined-attacks>HTTP:APACHE:MOD-REWRITE-CMD-EXE</predefined-attacks>
                                        <predefined-attacks>HTTP:APACHE:REST-RCE</predefined-attacks>
                                        <predefined-attacks>HTTP:APACHE:REV-PROXY-EXPLOIT</predefined-attacks>
                                        <predefined-attacks>HTTP:APACHE:STRUTS-CI-SECBYPASS</predefined-attacks>
                                        <predefined-attacks>HTTP:APACHE:STRUTS-OGNL-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:APACHE:STRUTS-RST-DMI-EXEC</predefined-attacks>
                                        <predefined-attacks>HTTP:APACHE:STRUTS-URL-DOS</predefined-attacks>
                                        <predefined-attacks>HTTP:APACHE:STRUTS-XSLT-FI</predefined-attacks>
                                        <predefined-attacks>HTTP:BACKDOOR-UPATRE-UA</predefined-attacks>
                                        <predefined-attacks>HTTP:C99-SHELL-BACKDOOR</predefined-attacks>
                                        <predefined-attacks>HTTP:CARBERP-BACKDOOR-RCE</predefined-attacks>
                                        <predefined-attacks>HTTP:CGI:BASH-INJECTION-HEADER</predefined-attacks>
                                        <predefined-attacks>HTTP:CGI:MS-OFFICE-URL-BOF</predefined-attacks>
                                        <predefined-attacks>HTTP:CISCO:DOWNLOADSERVLET-FU</predefined-attacks>
                                        <predefined-attacks>HTTP:CLAMAV-ENCRYPT-PDF-MC2</predefined-attacks>
                                        <predefined-attacks>HTTP:CLANSPHERE-COOKIE-LFI</predefined-attacks>
                                        <predefined-attacks>HTTP:DIR:HTTP-ACCEPT-ENCODING</predefined-attacks>
                                        <predefined-attacks>HTTP:DIR:HTTP-ACCEPT-HDR</predefined-attacks>
                                        <predefined-attacks>HTTP:DIR:HTTP-ACCEPT-LANG</predefined-attacks>
                                        <predefined-attacks>HTTP:DIR:HTTP-AUTH-HDR</predefined-attacks>
                                        <predefined-attacks>HTTP:DIR:HTTP-CONT-TYPE</predefined-attacks>
                                        <predefined-attacks>HTTP:DIR:HTTP-CONTENT-MD5</predefined-attacks>
                                        <predefined-attacks>HTTP:DIR:HTTP-HOST-HDR</predefined-attacks>
                                        <predefined-attacks>HTTP:DIR:HTTP-REFERER-HDR</predefined-attacks>
                                        <predefined-attacks>HTTP:DIR:ZIMBRA-SERVER-LDAP</predefined-attacks>
                                        <predefined-attacks>HTTP:DLINK-AUTHENTICATION-BO</predefined-attacks>
                                        <predefined-attacks>HTTP:DOS:APACHE-TOMCAT-CHUNKED2</predefined-attacks>
                                        <predefined-attacks>HTTP:DOS:HAPROXY-REQDENY</predefined-attacks>
                                        <predefined-attacks>HTTP:DOS:MIT-KERBEROS-5-POLICY</predefined-attacks>
                                        <predefined-attacks>HTTP:DOS:PHP-UPLOAD</predefined-attacks>
                                        <predefined-attacks>HTTP:DOS:SCHNEIDER-EXPRT-SCADA</predefined-attacks>
                                        <predefined-attacks>HTTP:DOS:SQUID-HDR-RANGE</predefined-attacks>
                                        <predefined-attacks>HTTP:DRUPAL-CODER-RCE</predefined-attacks>
                                        <predefined-attacks>HTTP:EK-ANGLER-JAVA</predefined-attacks>
                                        <predefined-attacks>HTTP:EXPLOIT:ILLEGAL-HOST-CHAR</predefined-attacks>
                                        <predefined-attacks>HTTP:FORTINET-HELLO-MSG-DOS</predefined-attacks>
                                        <predefined-attacks>HTTP:HTTP-INVALID-PORT-VALUE</predefined-attacks>
                                        <predefined-attacks>HTTP:HTTP_PROXY-ATTACK</predefined-attacks>
                                        <predefined-attacks>HTTP:IIS:ASP-NET-MVC-SEC-BYPASS</predefined-attacks>
                                        <predefined-attacks>HTTP:IIS:ASPX-URL</predefined-attacks>
                                        <predefined-attacks>HTTP:IIS:ASPX-URL-1</predefined-attacks>
                                        <predefined-attacks>HTTP:IIS:ENCODING:SINGLE-DIG-1</predefined-attacks>
                                        <predefined-attacks>HTTP:IIS:ENCODING:SINGLE-DIG-2</predefined-attacks>
                                        <predefined-attacks>HTTP:IIS:IIS-6-7-AUTH-BYPASS</predefined-attacks>
                                        <predefined-attacks>HTTP:IIS:INT-OVERFLOW-DOS</predefined-attacks>
                                        <predefined-attacks>HTTP:IIS:WEB-CONFIG-INFO-LEAK</predefined-attacks>
                                        <predefined-attacks>HTTP:IIS:WEBDAV:WINDOWS-SHELL</predefined-attacks>
                                        <predefined-attacks>HTTP:INFO-LEAK:BOOT-INI</predefined-attacks>
                                        <predefined-attacks>HTTP:INFO-LEAK:BOOT-INI-TCP</predefined-attacks>
                                        <predefined-attacks>HTTP:INVALID:EXPECT</predefined-attacks>
                                        <predefined-attacks>HTTP:JAVA-UPDATE-RCE</predefined-attacks>
                                        <predefined-attacks>HTTP:JENKINS-CI-SERVER-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:LIBGD-GD2GETHEADER-IO</predefined-attacks>
                                        <predefined-attacks>HTTP:LIBGD-HEAP-BO</predefined-attacks>
                                        <predefined-attacks>HTTP:LIBREOFFICE-INTEGR-UNDRFLW</predefined-attacks>
                                        <predefined-attacks>HTTP:MALICIOUS-SESSION-COOKIE</predefined-attacks>
                                        <predefined-attacks>HTTP:MAMBO-MYSQL-INF-DISCLOSURE</predefined-attacks>
                                        <predefined-attacks>HTTP:MANAGENGINE-EVTLG-INF-DISC</predefined-attacks>
                                        <predefined-attacks>HTTP:MAXTHON-HISTORY-XSS</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:AVIRA-MGNT-HEADER-BOF</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:CHASYS-BO</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:COOL-EXKIT-JAR-DL</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:CUTEZIP-BO</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:CVE-2014-6332-RCE</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:DAZ-STUDIO-SCRIPT-RCE</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:ERS-VIEWER-BO</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:GITLIST-URI-REQ-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:GRAPHITE-RCE</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:GSM-SIMEDIT-BO</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:IRFVIEW-JP2-BO</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:JBOSS-SEAM-EL-RCE</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:JOOMLA-UNSER-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:MAPLE-MAPLET-CMD-EXEC</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:MINIUPNPD-SOAP-ACTION</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:MS-FOREFRONT-DOS</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:MS-OWA-URL-REDIR</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:RUBY-RAILS-SECRET-RCE</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:SPLUNK-CUSTOM-APP-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:WESTERN-DIGITAL-LFI</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:WINRAR-FILENM-SPOOF</predefined-attacks>
                                        <predefined-attacks>HTTP:MISC:WIRESHARK-LUA-RCE</predefined-attacks>
                                        <predefined-attacks>HTTP:MONKEY-HTTPD-BO</predefined-attacks>
                                        <predefined-attacks>HTTP:MS-VBSCRIPT-UAF-RCE</predefined-attacks>
                                        <predefined-attacks>HTTP:MS-WIN-FOLDER-GUID-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:NAGIOS-CONFMGR-SQLINJ</predefined-attacks>
                                        <predefined-attacks>HTTP:NEUTRINO-EK-SB</predefined-attacks>
                                        <predefined-attacks>HTTP:NGINX-RQST-URI-SECBYPASS</predefined-attacks>
                                        <predefined-attacks>HTTP:NODEJS-DOS</predefined-attacks>
                                        <predefined-attacks>HTTP:NOVELL:GROUPWISE-NETAGT-BO</predefined-attacks>
                                        <predefined-attacks>HTTP:ORACLE:CONF-ACCESS</predefined-attacks>
                                        <predefined-attacks>HTTP:ORACLE:GENERIC-SIGNATUR-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:ORACLE:OUTSIDE-PRDOX-BO2</predefined-attacks>
                                        <predefined-attacks>HTTP:ORACLE:SSO-ACCESS</predefined-attacks>
                                        <predefined-attacks>HTTP:PHP:CDF-INFINITE-LOOP-DOS</predefined-attacks>
                                        <predefined-attacks>HTTP:PHP:CORE-INT-OF-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:PHP:DATEINTERVAL-DOS</predefined-attacks>
                                        <predefined-attacks>HTTP:PHP:EXIF-NULL-PTR-DEREF</predefined-attacks>
                                        <predefined-attacks>HTTP:PHP:INVISION-IPS-COMM</predefined-attacks>
                                        <predefined-attacks>HTTP:PHP:JOOMLA-ADMIN-SCAN</predefined-attacks>
                                        <predefined-attacks>HTTP:PHP:OPENEMR-GLOBALS-AB</predefined-attacks>
                                        <predefined-attacks>HTTP:PHP:PHAR-PARSE-TARFILE-ID</predefined-attacks>
                                        <predefined-attacks>HTTP:PHP:PHPMYADMIN:SETUP-SCAN</predefined-attacks>
                                        <predefined-attacks>HTTP:PHP:PHPSPLOIT-POSTEXP</predefined-attacks>
                                        <predefined-attacks>HTTP:PHP:SPL-OBJECT-UNSERIALIZE</predefined-attacks>
                                        <predefined-attacks>HTTP:PHP:TAR-FILE-PTR</predefined-attacks>
                                        <predefined-attacks>HTTP:PHP:WP-BRUTE-FORCE-LOGIN</predefined-attacks>
                                        <predefined-attacks>HTTP:PHP:WP-INCLUDES-ACCESS</predefined-attacks>
                                        <predefined-attacks>HTTP:PHP:WP-README-SCAN</predefined-attacks>
                                        <predefined-attacks>HTTP:PHP:XAMPP-FILE-WRITE</predefined-attacks>
                                        <predefined-attacks>HTTP:PHP:ZIPARCHIVE-IO</predefined-attacks>
                                        <predefined-attacks>HTTP:PROXY:SQUID-DOS</predefined-attacks>
                                        <predefined-attacks>HTTP:REGIN-CNC-TRAFFIC</predefined-attacks>
                                        <predefined-attacks>HTTP:REQERR:INV-IPV6-HOST-HDR</predefined-attacks>
                                        <predefined-attacks>HTTP:REQERR:NULL-IN-HEADER</predefined-attacks>
                                        <predefined-attacks>HTTP:SOLARWINDS-AUTH-BYPASS</predefined-attacks>
                                        <predefined-attacks>HTTP:SOLARWINDS-POLICYBYPASS</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:ACCEPT-HDR-1</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:ACCEPT-HDR-3</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:ACCEPT-LANG-HDR-1</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:ACCEPT-LANG-HDR-3</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:AND-NUMBER-EQUALS</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:CHAR</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:CHAR-ENCODE</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:COMMENT</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:COMPARISON</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:CONCAT</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:CONT-MD5-HDR-1</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:CONT-MD5-HDR-3</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:CONT-TYPE-HDR-1</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:CONT-TYPE-HDR-3</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:CONVERT</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:CONVERT-INJ-OF</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:HAVIJ-UA</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:HTTP-AUTH-HDR-1</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:HTTP-AUTH-HDR-3</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:HTTP-HOST-HDR-1</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:HTTP-HOST-HDR-3</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:HTTP-REQ-HDR-3</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:INSERT-VALUES</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:INTO-OUTFILE</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:IS_SRVROLEMEMBER</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:MS-SQL-FUNCTIONS</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:MS-SQL-TABLE-NAME</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:MYSQL-TABLE-NAME</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:NULLBYTE-COMMENT</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:PL-SQL</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:PROC-GENERIC</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:REFERER-HDR-1</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:REFERER-HDR-3</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:SLASH-STAR</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:SQLMAP-ACTIVITY</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:SYSOBJECTS</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:UA-HDR-1</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:UA-HDR-3</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:UNION-SELECT</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:USER-ADD</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:VERSION-DETECT</predefined-attacks>
                                        <predefined-attacks>HTTP:SQL:INJ:WAITFOR-DELAY</predefined-attacks>
                                        <predefined-attacks>HTTP:SQUID-BUMP-DOS</predefined-attacks>
                                        <predefined-attacks>HTTP:STATIC-SERVER-BOF</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ACTIVEX:KVIEW-KCHARTXY</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:2013-5065-PDF</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:ACROFORM-NULL-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CONVFILTER-UAF</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2009-2985-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2009-3791-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2009-3959-OF</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2010-2202-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2013-0622-SB</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2013-3353</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2013-3355-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2013-5324-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2013-5325-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2013-5329-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0511-BO</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0512-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0517-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0521</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0522-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0523-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0524-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0531-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0537-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0538-UF</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0539-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0545-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0547-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0548-PB</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0550-BO</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0553-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0554</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0555-BO</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0559-BO</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0564-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0565-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0567-OF</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0568-SE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0574-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0574-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0576-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0577-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0578-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0580-SB</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0584-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-0586-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-4671</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-8440-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-8441-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-8447-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-8449-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-8450-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-8451-ID</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-8455-UF</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-8459-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-8460-BO</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-8461-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-9159-BO</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-9160-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2014-9162-ID</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0087-ID</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0089-ID</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0090-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0093-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0301-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0302-ID</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0303-SB</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0305-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0306-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0307-DS</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0313-ID</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0314-BO</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0315-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0317-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0319-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0320-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0321-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0322-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0323-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0324-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0325-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0326-DS</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0328-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0329-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0330-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0333-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0334-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0335-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0337-PB</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0338-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0339-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0340-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0341-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0342-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0346-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0347-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0348-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0349-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0350-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0351-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0352-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0353-CE</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0354-MC</predefined-attacks>
                                        <predefined-attacks>HTTP:STC:ADOBE:CVE-2015-0355-MC</predefined-attacks>
                                    </attacks>
                                </match>
                                <then>
                                    <action>
                                        <no-action/>
                                    </action>
                                    <ip-action>
                                        <ip-notify/>
                                        <target>source-address</target>
                                        <log/>
                                        <log-create/>
                                    </ip-action>
                                    <notification>
                                        <log-attacks>
                                            <alert/>
                                        </log-attacks>
                                    </notification>
                                </then>
                            </rule>
                            <rule>
                                <name>DBE-Q-IPS-policy-template-2</name>
                                <match>
                                    <from-zone>any</from-zone>
                                    <to-zone>any</to-zone>
                                    <application>default</application>
                                    <attacks>
                                        <predefined-attack-groups>[Recommended]Critical - ICMP</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]ICMP - All</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]ICMP - Critical</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]ICMP - Info</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]ICMP - Major</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]ICMP - Minor</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]ICMP - Warning</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Info - ICMP</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Major - ICMP</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Minor - ICMP</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Misc_Critical - ICMP</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Misc_ICMP - All</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Misc_ICMP - Critical</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Misc_ICMP - Info</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Misc_ICMP - Major</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Misc_ICMP - Minor</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Misc_ICMP - Warning</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Misc_Info - ICMP</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Misc_Major - ICMP</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Misc_Minor - ICMP</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Misc_Warning - ICMP</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Response_Critical - ICMP</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Response_ICMP - All</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Response_ICMP - Critical</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Response_ICMP - Info</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Response_ICMP - Major</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Response_ICMP - Minor</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Response_ICMP - Warning</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Response_Info - ICMP</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Response_Major - ICMP</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Response_Minor - ICMP</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Response_Warning - ICMP</predefined-attack-groups>
                                        <predefined-attack-groups>[Recommended]Warning - ICMP</predefined-attack-groups>
                                    </attacks>
                                </match>
                                <then>
                                    <action>
                                        <recommended/>
                                    </action>
                                    <ip-action>
                                        <ip-notify/>
                                        <target>source-address</target>
                                    </ip-action>
                                    <notification>
                                        <log-attacks>
                                            <alert/>
                                        </log-attacks>
                                    </notification>
                                </then>
                            </rule>
                        </rulebase-ips>
                    </idp-policy>
                    <active-policy>Space-IPS-Policy</active-policy>
                </idp>
                <forwarding-options>
                    <family>
                        <inet6>
                            <mode>flow-based</mode>
                        </inet6>
                    </family>
                </forwarding-options>
                <screen>
                    <ids-option>
                        <name>untrust-screen</name>
                        <alarm-without-drop/>
                        <icmp>
                            <ip-sweep>
                                <threshold>5000</threshold>
                            </ip-sweep>
                            <fragment/>
                            <large/>
                            <ping-death/>
                        </icmp>
                        <ip>
                            <bad-option/>
                            <record-route-option/>
                            <timestamp-option/>
                            <security-option/>
                            <stream-option/>
                            <spoofing/>
                            <source-route-option/>
                            <loose-source-route-option/>
                            <strict-source-route-option/>
                            <unknown-protocol/>
                            <tear-drop/>
                        </ip>
                        <tcp>
                            <syn-fin/>
                            <fin-no-ack/>
                            <tcp-no-flag/>
                            <syn-frag/>
                            <port-scan>
                                <threshold>5000</threshold>
                            </port-scan>
                            <syn-ack-ack-proxy>
                            </syn-ack-ack-proxy>
                            <syn-flood>
                                <alarm-threshold>1024</alarm-threshold>
                                <attack-threshold>200</attack-threshold>
                                <source-threshold>1024</source-threshold>
                                <destination-threshold>2048</destination-threshold>
                                <undocumented><queue-size>2000</queue-size></undocumented>
                                <timeout>20</timeout>
                            </syn-flood>
                            <land/>
                        </tcp>
                    </ids-option>
                </screen>
                <nat>
                    <source>
                        <pool>
                            <name>sp_dmzpfsnat</name>
                            <address>
                                <name>10.68.16.13/32</name>
                            </address>
                            <address>
                                <name>10.68.16.14/32</name>
                            </address>
                            <address>
                                <name>10.68.16.15/32</name>
                            </address>
                            <address>
                                <name>10.68.16.16/32</name>
                            </address>
                            <port>
                                <range>
                                    <low>1024</low>
                                    <to>
                                        <high>63486</high>
                                    </to>
                                </range>
                            </port>
                            <pool-utilization-alarm>
                                <raise-threshold>80</raise-threshold>
                                <clear-threshold>70</clear-threshold>
                            </pool-utilization-alarm>
                        </pool>
                        <rule-set>
                            <name>rs_mis2dmzpfsnat</name>
                            <from>
                                <zone>sz_dbemis</zone>
                            </from>
                            <to>
                                <zone>trust</zone>
                            </to>
                            <rule>
                                <name>nr_dmzpsnat</name>
                                <src-nat-rule-match>
                                    <destination-address>10.68.16.4/32</destination-address>
                                    <destination-address>10.68.16.5/32</destination-address>
                                </src-nat-rule-match>
                                <then>
                                    <source-nat>
                                        <pool>
                                            <pool-name>sp_dmzpfsnat</pool-name>
                                        </pool>
                                    </source-nat>
                                </then>
                            </rule>
                        </rule-set>
                    </source>
                    <destination>
                        <pool>
                            <name>dp_dmzpf01ap1dnat</name>
                            <address>
                                <ipaddr>10.68.16.4/32</ipaddr>
                            </address>
                        </pool>
                        <pool>
                            <name>dp_dmzpf02ap1dnat</name>
                            <address>
                                <ipaddr>10.68.16.5/32</ipaddr>
                            </address>
                        </pool>
                        <rule-set>
                            <name>rs_mis2dmzpfdnat</name>
                            <from>
                                <zone>sz_dbemis</zone>
                            </from>
                            <rule>
                                <name>nr_p01ap1dnat</name>
                                <dest-nat-rule-match>
                                    <destination-address>
                                        <dst-addr>12.102.197.133/32</dst-addr>
                                    </destination-address>
                                </dest-nat-rule-match>
                                <then>
                                    <destination-nat>
                                        <pool>
                                            <pool-name>dp_dmzpf01ap1dnat</pool-name>
                                        </pool>
                                    </destination-nat>
                                </then>
                            </rule>
                            <rule>
                                <name>nr_p02ap1dnat</name>
                                <dest-nat-rule-match>
                                    <destination-address>
                                        <dst-addr>12.102.197.134/32</dst-addr>
                                    </destination-address>
                                </dest-nat-rule-match>
                                <then>
                                    <destination-nat>
                                        <pool>
                                            <pool-name>dp_dmzpf02ap1dnat</pool-name>
                                        </pool>
                                    </destination-nat>
                                </then>
                            </rule>
                        </rule-set>
                    </destination>
                    <proxy-arp>
                        <interface>
                            <name>reth0.0</name>
                            <address>
                                <name>12.102.197.133/32</name>
                            </address>
                            <address>
                                <name>12.102.197.134/32</name>
                            </address>
                        </interface>
                        <interface>
                            <name>reth1.0</name>
                            <address>
                                <name>10.68.16.13/32</name>
                            </address>
                            <address>
                                <name>10.68.16.14/32</name>
                            </address>
                            <address>
                                <name>10.68.16.15/32</name>
                            </address>
                            <address>
                                <name>10.68.16.16/32</name>
                            </address>
                        </interface>
                    </proxy-arp>
                </nat>
                <policies>
                    <policy>
                        <from-zone-name>trust</from-zone-name>
                        <to-zone-name>trust</to-zone-name>
                        <policy>
                            <name>default-permit</name>
                            <match>
                                <source-address>any</source-address>
                                <destination-address>any</destination-address>
                                <application>any</application>
                            </match>
                            <then>
                                <permit>
                                </permit>
                                <log>
                                    <session-init/>
                                    <session-close/>
                                </log>
                            </then>
                        </policy>
                    </policy>
                    <policy>
                        <from-zone-name>trust</from-zone-name>
                        <to-zone-name>untrust</to-zone-name>
                        <policy>
                            <name>default-permit</name>
                            <match>
                                <source-address>any</source-address>
                                <destination-address>any</destination-address>
                                <application>any</application>
                            </match>
                            <then>
                                <permit>
                                </permit>
                                <log>
                                    <session-init/>
                                    <session-close/>
                                </log>
                            </then>
                        </policy>
                    </policy>
                    <policy>
                        <from-zone-name>sz_dbemis</from-zone-name>
                        <to-zone-name>trust</to-zone-name>
                        <policy>
                            <name>sp_bwxspapi</name>
                            <match>
                                <source-address>any</source-address>
                                <destination-address>as_bwdmzpxspapsrvrs_2</destination-address>
                                <application>ps_bwapi_3</application>
                            </match>
                            <then>
                                <permit>
                                </permit>
                                <log>
                                    <session-init/>
                                    <session-close/>
                                </log>
                                <count>
                                </count>
                            </then>
                        </policy>
                        <policy>
                            <name>sp_bwpdeny</name>
                            <match>
                                <source-address>any</source-address>
                                <destination-address>any</destination-address>
                                <application>any</application>
                            </match>
                            <then>
                                <deny/>
                                <log>
                                    <session-init/>
                                </log>
                                <count>
                                </count>
                            </then>
                        </policy>
                    </policy>
                    <policy>
                        <from-zone-name>trust</from-zone-name>
                        <to-zone-name>sz_dbemis</to-zone-name>
                        <policy>
                            <name>sp_bwzdeny</name>
                            <match>
                                <source-address>any</source-address>
                                <destination-address>any</destination-address>
                                <application>any</application>
                            </match>
                            <then>
                                <deny/>
                                <log>
                                    <session-init/>
                                </log>
                                <count>
                                </count>
                            </then>
                        </policy>
                    </policy>
                    <policy>
                        <from-zone-name>untrust</from-zone-name>
                        <to-zone-name>trust</to-zone-name>
                        <policy>
                            <name>default-deny</name>
                            <match>
                                <source-address>any</source-address>
                                <destination-address>any</destination-address>
                                <application>any</application>
                            </match>
                            <then>
                                <deny/>
                                <log>
                                    <session-init/>
                                    <session-close/>
                                </log>
                            </then>
                        </policy>
                    </policy>
                </policies>
                <zones>
                    <security-zone>
                        <name>trust</name>
                        <tcp-rst/>
                        <address-book>
                            <address>
                                <name>ad_bwxsp02ap1pf</name>
                                <ip-prefix>10.68.16.5/32</ip-prefix>
                            </address>
                            <address>
                                <name>ad_bwxsp01ap1pf_1</name>
                                <ip-prefix>10.68.16.4/32</ip-prefix>
                            </address>
                            <address-set>
                                <name>as_bwdmzpxspapsrvrs_2</name>
                                <address>
                                    <name>ad_bwxsp01ap1pf_1</name>
                                </address>
                                <address>
                                    <name>ad_bwxsp02ap1pf</name>
                                </address>
                            </address-set>
                        </address-book>
                        <host-inbound-traffic>
                            <system-services>
                                <name>all</name>
                            </system-services>
                            <protocols>
                                <name>all</name>
                            </protocols>
                        </host-inbound-traffic>
                        <interfaces>
                            <name>reth1.0</name>
                        </interfaces>
                    </security-zone>
                    <security-zone>
                        <name>untrust</name>
                        <screen>untrust-screen</screen>
                    </security-zone>
                    <security-zone>
                        <name>sz_dbemis</name>
                        <screen>untrust-screen</screen>
                        <interfaces>
                            <name>reth0.0</name>
                        </interfaces>
                    </security-zone>
                </zones>
            </security>
            <interfaces>
                <interface>
                    <name>ge-0/0/1</name>
                    <gigether-options>
                        <redundant-parent>
                            <parent>reth0</parent>
                        </redundant-parent>
                    </gigether-options>
                </interface>
                <interface>
                    <name>ge-0/0/2</name>
                    <gigether-options>
                        <redundant-parent>
                            <parent>reth1</parent>
                        </redundant-parent>
                    </gigether-options>
                </interface>
                <interface>
                    <name>ge-7/0/1</name>
                    <gigether-options>
                        <redundant-parent>
                            <parent>reth0</parent>
                        </redundant-parent>
                    </gigether-options>
                </interface>
                <interface>
                    <name>ge-7/0/2</name>
                    <gigether-options>
                        <redundant-parent>
                            <parent>reth1</parent>
                        </redundant-parent>
                    </gigether-options>
                </interface>
                <interface>
                    <name>fab0</name>
                    <fabric-options>
                        <member-interfaces>
                            <name>ge-0/0/0</name>
                        </member-interfaces>
                    </fabric-options>
                </interface>
                <interface>
                    <name>fab1</name>
                    <fabric-options>
                        <member-interfaces>
                            <name>ge-7/0/0</name>
                        </member-interfaces>
                    </fabric-options>
                </interface>
                <interface>
                    <name>fxp0</name>
                    <unit>
                        <name>0</name>
                    </unit>
                </interface>
                <interface>
                    <name>reth0</name>
                    <redundant-ether-options>
                        <redundancy-group>1</redundancy-group>
                    </redundant-ether-options>
                    <unit>
                        <name>0</name>
                        <family>
                            <inet>
                                <filter>
                                    <input>
                                        <filter-name>ff_pdscp</filter-name>
                                    </input>
                                </filter>
                                <address>
                                    <name>12.102.197.132/25</name>
                                </address>
                            </inet>
                            <inet6>
                                <filter>
                                    <input>
                                        <filter-name>ff_v6pdscp</filter-name>
                                    </input>
                                </filter>
                                <address>
                                    <name>2001:1890:1001:23ed::3:1/64</name>
                                </address>
                                <address>
                                    <name>2001:1890:1001:23ed::3:2/64</name>
                                </address>
                                <address>
                                    <name>2001:1890:1001:23ed::3:3/64</name>
                                </address>
                            </inet6>
                        </family>
                    </unit>
                </interface>
                <interface>
                    <name>reth1</name>
                    <redundant-ether-options>
                        <redundancy-group>1</redundancy-group>
                    </redundant-ether-options>
                    <unit>
                        <name>0</name>
                        <family>
                            <inet>
                                <filter>
                                    <input>
                                        <filter-name>ff_pdscp</filter-name>
                                    </input>
                                </filter>
                                <address>
                                    <name>10.68.16.12/22</name>
                                </address>
                            </inet>
                            <inet6>
                                <filter>
                                    <input>
                                        <filter-name>ff_v6pdscp</filter-name>
                                    </input>
                                </filter>
                                <address>
                                    <name>2001:1890:1001:23ec::3:1/64</name>
                                </address>
                                <address>
                                    <name>2001:1890:1001:23ec::3:2/64</name>
                                </address>
                                <address>
                                    <name>2001:1890:1001:23ec::3:3/64</name>
                                </address>
                                <address>
                                    <name>2001:1890:1001:23ec::3:4/64</name>
                                </address>
                                <address>
                                    <name>2001:1890:1001:23ec::3:5/64</name>
                                </address>
                            </inet6>
                        </family>
                    </unit>
                </interface>
            </interfaces>
            <snmp>
                <community>
                    <name>vsbk68</name>
                    <authorization>read-only</authorization>
                    <clients>
                        <name>130.6.45.42/32</name>
                    </clients>
                    <clients>
                        <name>130.6.45.41/32</name>
                    </clients>
                    <clients>
                        <name>130.6.44.254/32</name>
                    </clients>
                    <clients>
                        <name>130.6.44.253/32</name>
                    </clients>
                    <clients>
                        <name>135.25.175.114/32</name>
                    </clients>
                    <clients>
                        <name>135.21.235.37/32</name>
                    </clients>
                </community>
                <community>
                    <name>space15</name>
                    <authorization>read-write</authorization>
                    <clients>
                        <name>135.144.0.60/32</name>
                    </clients>
                    <clients>
                        <name>135.144.0.59/32</name>
                    </clients>
                    <clients>
                        <name>135.144.0.61/32</name>
                    </clients>
                </community>
                <trap-group>
                    <name>GFP</name>
                    <version>v2</version>
                    <destination-port>162</destination-port>
                    <targets>
                        <name>135.89.33.175</name>
                    </targets>
                    <targets>
                        <name>199.37.245.24</name>
                    </targets>
                </trap-group>
                <trap-group>
                    <name>space</name>
                    <targets>
                        <name>135.144.0.60</name>
                    </targets>
                </trap-group>
                <health-monitor>
                    <idp>
                    </idp>
                </health-monitor>
            </snmp>
            <routing-options>
                <interface-routes>
                    <rib-group>
                        <inet>rg_mis2dmzp</inet>
                        <inet6>rg_v6mis2dmzp</inet6>
                    </rib-group>
                </interface-routes>
                <static>
                    <route>
                        <name>0.0.0.0/0</name>
                        <next-hop>135.69.228.1</next-hop>
                    </route>
                </static>
                <rib-groups>
                    <name>rg_mis2dmzp</name>
                    <import-rib>vrf-untrust.inet.0</import-rib>
                    <import-rib>inet.0</import-rib>
                </rib-groups>
                <rib-groups>
                    <name>rg_v6mis2dmzp</name>
                    <import-rib>vrf-untrust.inet6.0</import-rib>
                    <import-rib>inet6.0</import-rib>
                </rib-groups>
            </routing-options>
            <class-of-service>
                <interfaces>
                    <interface>
                        <name>reth0</name>
                        <unit>
                            <name>0</name>
                            <rewrite-rules>
                                <dscp>
                                    <name>cr_pdscpaf</name>
                                </dscp>
                                <dscp-ipv6>
                                    <name>cr_v6pdscpaf</name>
                                </dscp-ipv6>
                            </rewrite-rules>
                        </unit>
                    </interface>
                    <interface>
                        <name>reth1</name>
                        <unit>
                            <name>0</name>
                            <rewrite-rules>
                                <dscp>
                                    <name>cr_pdscpaf</name>
                                </dscp>
                                <dscp-ipv6>
                                    <name>cr_v6pdscpaf</name>
                                </dscp-ipv6>
                            </rewrite-rules>
                        </unit>
                    </interface>
                </interfaces>
                <rewrite-rules>
                    <dscp>
                        <name>cr_pdscpaf</name>
                        <forwarding-class>
                            <name>assured-forwarding</name>
                            <loss-priority>
                                <name>low</name>
                                <code-point>011010</code-point>
                            </loss-priority>
                        </forwarding-class>
                    </dscp>
                    <dscp-ipv6>
                        <name>cr_v6pdscpaf</name>
                        <forwarding-class>
                            <name>assured-forwarding</name>
                            <loss-priority>
                                <name>low</name>
                                <code-point>011010</code-point>
                            </loss-priority>
                        </forwarding-class>
                    </dscp-ipv6>
                </rewrite-rules>
            </class-of-service>
            <firewall>
                <family>
                    <inet>
                        <filter>
                            <name>ff_pdscp</name>
                            <term>
                                <name>fr_pdscp</name>
                                <from>
                                    <interface>
                                        <name>reth0</name>
                                    </interface>
                                    <interface>
                                        <name>reth1</name>
                                    </interface>
                                </from>
                                <then>
                                    <forwarding-class>assured-forwarding</forwarding-class>
                                    <accept/>
                                </then>
                            </term>
                        </filter>
                    </inet>
                    <inet6>
                        <filter>
                            <name>ff_v6pdscp</name>
                            <term>
                                <name>fr_v6pdscp</name>
                                <from>
                                    <interface>
                                        <name>reth0</name>
                                    </interface>
                                    <interface>
                                        <name>reth1</name>
                                    </interface>
                                </from>
                                <then>
                                    <forwarding-class>assured-forwarding</forwarding-class>
                                    <accept/>
                                </then>
                            </term>
                        </filter>
                    </inet6>
                </family>
            </firewall>
            <routing-instances>
                <instance>
                    <name>vrf-untrust</name>
                    <instance-type>virtual-router</instance-type>
                    <interface>
                        <name>reth0.0</name>
                    </interface>
                    <routing-options>
                        <interface-routes>
                            <rib-group>
                                <inet>rg_mis2dmzp</inet>
                                <inet6>rg_v6mis2dmzp</inet6>
                            </rib-group>
                        </interface-routes>
                        <rib>
                            <name>vrf-untrust.inet6.0</name>
                            <static>
                                <route>
                                    <name>0::/0</name>
                                    <next-hop>2001:1890:1001:23ed::1</next-hop>
                                </route>
                            </static>
                        </rib>
                        <static>
                            <route>
                                <name>0.0.0.0/0</name>
                                <next-hop>12.102.197.129</next-hop>
                            </route>
                        </static>
                    </routing-options>
                </instance>
            </routing-instances>
            <applications>
                <application>
                    <name>ap_xsi-xml-https</name>
                    <protocol>tcp</protocol>
                    <destination-port>443</destination-port>
                </application>
                <application-set>
                    <name>ps_bwapi_3</name>
                    <application>
                        <name>ap_xsi-xml-https</name>
                    </application>
                </application-set>
            </applications>
    </configuration>