hostname FWSM-CORE
enable password 8Ry2YjIyt7RRXU24 encrypted
names
dns-guard
!
interface Vlan2
 nameif dmz
 security-level 50
 ip address 172.16.2.1 255.255.255.0 
!
interface Vlan10
 nameif inside10
 security-level 100
 ip address 172.16.10.1 255.255.255.0 
!
interface Vlan11
 nameif inside11
 security-level 99
 ip address 172.16.11.1 255.255.255.0 
!
interface Vlan12
 nameif inside12
 security-level 98
 ip address 172.16.12.1 255.255.255.0 
!
interface Vlan516
 nameif inside516
 security-level 97
 ip address 172.16.16.1 255.255.255.0 
!
interface Vlan517
 nameif inside517
 security-level 94
 ip address 172.16.17.1 255.255.255.0 
!
interface Vlan518
 nameif inside518
 security-level 96
 ip address 172.16.18.1 255.255.255.0 
!
interface Vlan1000
 nameif outside
 security-level 0
 ip address 172.16.99.1 255.255.255.0 
!
passwd 2KFQnbNIdI.2KYOU encrypted
ftp mode passive
object-group network INSIDE11-CCM
 description ***** network inside11 ccm *******
 network-object host 172.16.11.10
 network-object host 172.16.11.11
 network-object host 172.16.11.12
 network-object host 172.16.11.15
 network-object host 172.16.11.16
 network-object host 172.16.11.17
object-group network INSIDE12-CCM
 description ***** network inside12 ccm *******
 network-object host 172.16.12.10
 network-object host 172.16.12.11
 network-object host 172.16.12.12
 network-object host 172.16.12.13
object-group network INSIDE10-IPCC
 description ***** network inside10 ipcc components ******* 
 network-object host 172.16.10.10
 network-object host 172.16.10.11
 network-object host 172.16.10.12
 network-object host 172.16.10.13
 network-object host 172.16.10.14
 network-object host 172.16.10.15
 network-object host 172.16.10.16
 network-object host 172.16.10.17
 network-object host 172.16.10.18
 network-object host 172.16.10.19
 network-object host 172.16.10.20
 network-object host 172.16.10.21
 network-object host 172.16.10.22
 network-object host 172.16.10.23
 network-object host 172.16.10.24
 network-object host 172.16.10.25
 network-object host 172.16.10.26
 network-object host 172.16.10.27
 network-object host 172.16.10.28
 network-object host 172.16.10.29
 network-object host 172.16.10.31
 network-object host 172.16.10.50
 network-object host 172.16.10.34
 network-object host 172.16.10.32
 network-object host 172.16.10.35
 network-object host 172.16.10.80
 network-object host 172.16.10.81
 network-object host 172.16.10.82
 network-object host 172.16.10.83
 network-object host 172.16.10.84
 network-object host 172.16.10.140
 network-object host 172.16.10.143
 network-object host 172.16.10.146
 network-object host 172.16.10.149
 network-object host 172.16.10.119
 network-object host 172.16.10.120
 network-object host 172.16.10.123
 network-object host 172.16.10.121
 network-object host 172.16.10.122
 network-object host 172.16.10.124
 network-object host 172.16.10.125
 network-object host 172.16.10.130
 network-object host 172.16.10.131
 network-object host 172.16.10.141
 network-object host 172.16.10.142
 network-object host 172.16.10.144
 network-object host 172.16.10.145
 network-object host 172.16.10.147
 network-object host 172.16.10.148
 network-object host 172.16.10.150
 network-object host 172.16.10.151
 network-object host 172.16.10.139
 network-object host 172.16.10.86
 network-object host 172.16.10.90
 network-object host 172.16.10.91
 network-object host 172.16.10.1
 network-object host 172.16.10.36
object-group network INSIDE-IS516-IPCC
 description ***** network INside is516 ******
 network-object host 172.16.16.10
 network-object host 172.16.16.11
 network-object host 172.16.16.12
 network-object host 172.16.16.13
 network-object host 172.16.16.14
 network-object host 172.16.16.15
 network-object host 172.16.16.16
 network-object host 172.16.16.17
 network-object host 172.16.16.18
 network-object host 172.16.16.19
 network-object host 172.16.16.20
 network-object host 172.16.16.21
 network-object host 172.16.16.22
 network-object host 172.16.16.23
 network-object host 172.16.16.24
 network-object host 172.16.16.25
 network-object host 172.16.16.26
 network-object host 172.16.16.27
 network-object host 172.16.16.28
 network-object host 172.16.16.30
 network-object host 172.16.16.50
 network-object host 172.16.16.29
 network-object host 172.16.16.80
 network-object host 172.16.16.81
 network-object host 172.16.16.82
 network-object host 172.16.16.83
 network-object host 172.16.16.84
 network-object host 172.16.16.34
 network-object host 172.16.16.35
object-group network INSIDE-IS517-CCM
 description ***** network INside IS517 CCM ******
 network-object host 172.16.17.10
 network-object host 172.16.17.11
 network-object host 172.16.17.14
 network-object host 172.16.17.15
object-group network INSIDE-IS518-CCM
 description ***** network INside IS518 CCM ******
 network-object host 172.16.18.10
 network-object host 172.16.18.11
 network-object host 172.16.18.12
 network-object host 172.16.18.13
 network-object host 172.16.18.14
object-group network INSIDE
 description ***** combine all inside ****
 group-object INSIDE11-CCM
 group-object INSIDE12-CCM
 group-object INSIDE10-IPCC
 group-object INSIDE-IS516-IPCC
 group-object INSIDE-IS517-CCM
 group-object INSIDE-IS518-CCM
object-group network OUTSIDE-IS2
 description ***** network outside is2 ******
 network-object host 172.16.13.10
 network-object host 172.16.13.11
 network-object host 172.16.13.12
 network-object host 172.16.13.13
object-group network OUTSIDE-IS3
 description ***** network outside is3 ******
 network-object host 172.16.14.10
 network-object host 172.16.14.11
 network-object host 172.16.14.12
 network-object host 172.16.14.13
 network-object host 172.16.14.14
 network-object host 172.16.14.15
 network-object host 172.16.14.16
 network-object host 172.16.14.17
 network-object host 172.16.14.18
 network-object host 172.16.14.19
 network-object host 172.16.14.20
 network-object host 172.16.14.31
 network-object host 172.16.14.30
object-group network OUTSIDE-IS4
 description ***** network outside is4 ******
 network-object host 172.16.15.10
 network-object host 172.16.15.11
 network-object host 172.16.15.12
object-group network OUTSIDE-IS8
 description ***** network outside is8 ******
 network-object host 172.16.19.10
 network-object host 172.16.19.11
 network-object host 172.16.19.12
 network-object host 172.16.19.13
 network-object host 172.16.19.14
 network-object host 172.16.19.15
 network-object host 172.16.19.16
 network-object host 172.16.19.17
 network-object host 172.16.19.18
object-group network OUTSIDE-IS9
 description ***** network outside is9 ******
 network-object host 172.16.20.10
 network-object host 172.16.20.11
 network-object host 172.16.20.12
 network-object host 172.16.20.13
 network-object host 172.16.20.14
 network-object host 172.16.20.15
 network-object host 172.16.20.16
 network-object host 172.16.20.17
 network-object host 172.16.20.18
object-group network OUTSIDE-IS10
 description ***** network outside is10 ******
 network-object host 172.16.21.10
 network-object host 172.16.21.11
 network-object host 172.16.21.12
 network-object host 172.16.21.14
 network-object host 172.16.21.13
 network-object host 172.16.21.15
 network-object host 172.16.21.16
 network-object host 172.16.21.17
 network-object host 172.16.21.18
 network-object host 172.16.21.19
object-group network OUTSIDE-IS11
 description ***** network outside is11 ******
 network-object host 172.16.22.10
 network-object host 172.16.22.11
 network-object host 172.16.23.11
 network-object host 172.16.23.12
 network-object host 172.16.23.10
 network-object host 172.16.23.13
object-group network OUTSIDE
 description ***** combine all outside ***
 group-object OUTSIDE-IS2
 group-object OUTSIDE-IS3
 group-object OUTSIDE-IS4
 group-object OUTSIDE-IS8
 group-object OUTSIDE-IS9
 group-object OUTSIDE-IS10
 group-object OUTSIDE-IS11
object-group network GATEWAY
 description ***** Gateways ******
 network-object host 172.16.2.30
 network-object host 172.16.2.60
 network-object host 172.16.2.20
object-group network PHONE
 description ***** IP phones *****
object-group service SECURE-VOICE-TCP tcp
 port-object eq 2443
 port-object eq 3804
 port-object eq 5061
object-group service PHONE-VOICE-TCP tcp
 description *** TCP protocols used by phones
 port-object range 2000 2002
 port-object eq 2443
 port-object eq ctiqbe
 port-object eq 8080
 port-object eq www
 port-object eq sip
 port-object eq domain
 port-object range 137 netbios-ssn
 port-object eq 5061
 port-object eq 3804
object-group service PHONE-VOICE-UDP udp
 description *** UDP protocols used by phones
 port-object eq tftp
 port-object eq domain
 port-object eq sip
 port-object eq bootps
 port-object eq 445
 port-object range netbios-ns netbios-dgm
object-group service IPCC-TCP tcp
 port-object eq 38983
 port-object eq 6293
 port-object eq 65432
 port-object eq 42027
 port-object eq 37606
 port-object range 59000 59030
object-group icmp-type ICMP-PING
 description **** specific icmp*****
 icmp-object echo
 icmp-object echo-reply
object-group service WEBVIEW tcp
 description **** Distributer,webview,Internet scrip******
 port-object eq 1433
 port-object eq www
 port-object eq https
 port-object eq 1099
object-group service OUTDIALER udp
 description **** Outbound Dialer *****
 port-object range 32000 32100
 port-object range 39100 39200
 port-object eq tftp
object-group service CTI tcp
 description ***** CTI Server and support tool ******
 port-object range 42027 42107
 port-object eq 39200
 port-object eq 39100
 port-object eq 8189
object-group service TDM tcp
 description ***** TDM and IP Peripheral ****
 port-object range 5000 5001
 port-object eq 2000
object-group service WIND-ADMIN tcp
 description ***** Wind Auth, Remote Admin, Network manage ***
 port-object eq 445
 port-object eq ldap
 port-object eq ldaps
 port-object eq 3268
 port-object eq domain
 port-object eq 88
 port-object eq 1433
 port-object eq telnet
 port-object eq 3389
 port-object eq pcanywhere-data
 port-object eq 5900
 port-object eq 5800
 port-object eq www
 port-object eq 8080
 port-object range 134 netbios-ssn
object-group service CAD tcp
 description ***** CAD and desktop service **********
 port-object range 59020 59021
 port-object range 59000 59011
 port-object eq 37350
 port-object eq 38983
 port-object eq 8088
 port-object eq 65432
 port-object eq www
 port-object eq 42027
 port-object eq 43027
 port-object eq 1433
object-group service CAD-UDP udp
 description ***** CAD and desktop service **********
 port-object eq 27871
 port-object range 59005 59016
object-group service WIND-ADMIN-UDP udp
 description ***** Wind Auth, Remote Admin, Network manage ***
 port-object eq 445
 port-object eq 389
 port-object eq domain
 port-object eq 88
 port-object eq ntp
 port-object eq 1434
 port-object eq syslog
 port-object eq pcanywhere-status
 port-object range 134 139
object-group service VOICEMON tcp
 description ***** desktop voice mon, remote monitor suite **********
 port-object range 135 netbios-ssn
 port-object eq 445
 port-object eq 40012
 port-object eq 40080
object-group service VOICEMON-UDP udp
 description ***** desktop voice mon, remote monitor suite **********
 port-object range 135 139
 port-object eq 445
object-group service CCMANAGEMENT tcp
 description ***** unified contact center management *****
 port-object eq www
 port-object eq https
 port-object eq 1433
 port-object eq ldap
 port-object eq 7500
 port-object eq 2099
object-group service CCMANAGEMENT-UDP udp
 description ***** unified contact center management *****
 port-object eq 389
 port-object eq 445
 port-object eq 9000
object-group network PHONE-IN
 description ***** INSIDE phones *****
 network-object 172.16.16.0 255.255.255.0
 network-object 172.16.17.0 255.255.255.0
 network-object 172.16.18.0 255.255.255.0
object-group network PHONE-OUT
 description ***** OUTSIDE phones *****
 network-object 172.16.13.0 255.255.255.0
 network-object 172.16.14.0 255.255.255.0
 network-object 172.16.15.0 255.255.255.0
 network-object 172.16.20.0 255.255.255.0
 network-object 172.16.202.0 255.255.255.0
 network-object 172.16.208.0 255.255.255.0
 network-object 172.16.206.0 255.255.255.0
 network-object 172.16.21.0 255.255.255.0
 network-object 172.16.22.0 255.255.255.0
 network-object 172.16.19.0 255.255.255.0
 network-object 172.16.23.0 255.255.255.0
 network-object 172.16.219.0 255.255.255.0
 network-object 172.16.221.0 255.255.255.0
 network-object 172.16.229.0 255.255.255.0
 network-object 172.16.180.0 255.255.255.0
 network-object 172.16.188.0 255.255.255.0
object-group service any-GW udp
 description ***** voice reservation call *****
 port-object range 32000 32100
 port-object range 39100 39200
object-group service any udp
 port-object range 16384 32768
object-group network INSIDE-NET
 description ***** for all inside *******
 network-object 172.16.10.0 255.255.255.0
 network-object 172.16.11.0 255.255.255.0
 network-object 172.16.12.0 255.255.255.0
 network-object 172.16.16.0 255.255.255.0
 network-object 172.16.17.0 255.255.255.0
 network-object 172.16.18.0 255.255.255.0
object-group network VOICE-MON
 description ***** for voice monitor server *****
 network-object host 172.16.13.10
 network-object host 172.16.14.10
object-group network OUTSIDE-CAD
 description ***** forAgents desktop *****
 network-object host 172.16.212.13
 network-object host 172.16.212.14
 network-object host 172.16.212.15
 network-object host 172.16.212.10
object-group network INSIDE-PUB
 description ***** forPUB IN IS1 AND SI5 *****
 network-object host 172.16.18.10
 network-object host 172.16.11.10
object-group network INSIDE-AW
 description ***** for AW IN IS1 AND SI5 *****
 network-object host 172.16.10.21
 network-object host 172.16.10.31
object-group network OUTSIDE-PG
 description ***** for PG outside *****
 network-object host 172.16.20.13
 network-object host 172.16.14.14
 network-object host 172.16.20.14
 network-object host 172.16.14.15
object-group network OUTSIDE-COMP
 description ***** for all outside phones, simclient, simagent *******
 network-object 172.16.206.0 255.255.255.0
 network-object 172.16.203.0 255.255.255.0
 network-object 172.16.208.0 255.255.255.0
 network-object 172.16.216.0 255.255.255.0
 network-object 172.16.23.0 255.255.255.0
 network-object 172.16.13.0 255.255.255.0
 network-object 172.16.20.0 255.255.255.0
 network-object 172.16.15.0 255.255.255.0
 network-object 172.16.14.0 255.255.255.0
 network-object 172.16.19.0 255.255.255.0
 network-object 172.16.21.0 255.255.255.0
 network-object 172.16.22.0 255.255.255.0
 network-object 172.16.221.0 255.255.255.0
 network-object 172.16.219.0 255.255.255.0
 network-object 172.16.229.0 255.255.255.0
 network-object 172.16.180.0 255.255.255.0
object-group network OUTSIDE-GK
 description ***** for all outside GK *******
 network-object 172.16.121.0 255.255.255.0
 network-object 172.16.131.0 255.255.255.0
 network-object 172.16.141.0 255.255.255.0
 network-object 172.16.162.0 255.255.255.0
 network-object 172.16.161.0 255.255.255.0
 network-object 172.16.171.0 255.255.255.0
 network-object 172.16.181.0 255.255.255.0
 network-object 172.16.191.0 255.255.255.0
 network-object 172.16.122.0 255.255.255.0
 network-object 172.16.132.0 255.255.255.0
 network-object 172.16.142.0 255.255.255.0
 network-object 172.16.172.0 255.255.255.0
 network-object 172.16.182.0 255.255.255.0
 network-object 172.16.192.0 255.255.255.0
 network-object 172.16.173.0 255.255.255.0
 network-object 172.16.184.0 255.255.255.0
 network-object 172.16.163.0 255.255.255.0
 network-object 172.16.164.0 255.255.255.0
 network-object host 172.16.200.2
object-group network OUTSIDE-TRUST
 description ***** for all outside trusted server *******
 network-object host 172.16.13.11
 network-object host 172.16.14.14
 network-object host 172.16.14.15
 network-object host 172.16.14.16
 network-object host 172.16.14.17
 network-object host 172.16.19.11
 network-object host 172.16.19.12
 network-object host 172.16.20.13
 network-object host 172.16.20.14
 network-object host 172.16.20.15
 network-object host 172.16.20.16
 network-object host 172.16.23.10
 network-object host 172.16.23.11
 network-object host 172.16.19.10
 network-object host 172.16.13.10
object-group network OUTSIDE-AGENTS
 description ***** for all outside agents, simclients, phones, CAD *******
 network-object host 172.16.13.10
 network-object host 172.16.13.11
 network-object host 172.16.13.12
 network-object host 172.16.13.13
 network-object host 172.16.14.10
 network-object host 172.16.14.11
 network-object host 172.16.14.12
 network-object host 172.16.14.13
 network-object host 172.16.14.18
 network-object host 172.16.14.19
 network-object host 172.16.15.10
 network-object host 172.16.15.11
 network-object host 172.16.15.12
 network-object host 172.16.19.13
 network-object host 172.16.19.14
 network-object host 172.16.19.15
 network-object host 172.16.19.16
 network-object host 172.16.19.17
 network-object host 172.16.20.10
 network-object host 172.16.20.11
 network-object host 172.16.20.12
 network-object host 172.16.20.17
 network-object host 172.16.20.18
 network-object host 172.16.21.10
 network-object host 172.16.21.11
 network-object host 172.16.21.12
 network-object host 172.16.22.10
 network-object host 172.16.22.11
 network-object host 172.16.16.26
 network-object host 172.16.202.11
 network-object host 172.16.202.12
 network-object host 172.16.202.10
 network-object host 172.16.208.13
 network-object host 172.16.208.11
 network-object host 172.16.208.12
 network-object host 172.16.208.14
 network-object host 172.16.208.10
 network-object host 172.16.13.104
 network-object host 172.16.15.100
 network-object host 172.16.206.14
 network-object host 172.16.20.100
 network-object host 172.16.20.101
 network-object host 172.16.19.18
 network-object host 172.16.21.14
 network-object host 172.16.21.13
 network-object host 172.16.21.17
 network-object host 172.16.219.10
 network-object host 172.16.219.11
 network-object host 172.16.221.10
 network-object host 172.16.221.11
 network-object host 172.16.218.10
 network-object host 172.16.218.11
 network-object host 172.16.218.12
 network-object host 172.16.229.2
 network-object host 172.16.229.3
 network-object host 172.16.229.4
 network-object host 172.16.229.5
 network-object host 172.16.229.6
 network-object host 172.16.229.7
 network-object host 172.16.21.18
object-group network OUTSIDE-IS2AGENT
 network-object host 172.16.13.11
 network-object host 172.16.13.12
 network-object host 172.16.13.13
object-group network OUTSIDE-IS3AGENT
 network-object host 172.16.14.11
 network-object host 172.16.14.12
 network-object host 172.16.14.13
 network-object host 172.16.14.18
 network-object host 172.16.14.19
 network-object host 172.16.14.30
 network-object host 172.16.14.31
object-group network OUTSIDE-IS4AGENT
 network-object host 172.16.15.10
 network-object host 172.16.15.11
 network-object host 172.16.15.12
object-group network OUTSIDE-IS6AGENT
 network-object host 172.16.19.13
 network-object host 172.16.19.14
 network-object host 172.16.19.15
 network-object host 172.16.19.16
 network-object host 172.16.19.17
 network-object host 172.16.19.18
object-group network OUTSIDE-IS7AGENT
 network-object host 172.16.20.10
 network-object host 172.16.20.11
 network-object host 172.16.20.12
 network-object host 172.16.20.17
 network-object host 172.16.20.18
 network-object host 172.16.20.101
 network-object host 172.16.20.100
 network-object host 172.16.20.19
object-group network OUTSIDE-IS8AGENT
 network-object host 172.16.21.10
 network-object host 172.16.21.11
 network-object host 172.16.21.12
 network-object host 172.16.21.14
 network-object host 172.16.21.13
 network-object host 172.16.21.17
 network-object host 172.16.21.18
object-group network OUTSIDE-IS9AGENT
 network-object host 172.16.22.10
 network-object host 172.16.22.11
object-group network OUTSIDE-IS216AGENT
 network-object host 172.16.216.12
 network-object host 172.16.216.11
 network-object host 172.16.216.10
object-group network OUTSIDE-208
 description ***** for outside 208 components *****
 network-object host 172.16.208.13
 network-object host 172.16.208.11
 network-object host 172.16.208.12
 network-object host 172.16.208.14
 network-object host 172.16.208.10
object-group network OUTSIDE-206
 description ***** for outside 206 components *****
 network-object host 172.16.206.10
 network-object host 172.16.206.11
 network-object host 172.16.206.12
 network-object host 172.16.206.13
 network-object host 172.16.206.14
object-group network OUTSIDE-202
 description ***** for outside 202 components *****
 network-object host 172.16.202.15
object-group network INSIDE-AD
 description ***** Active Directory and DNS ---
 network-object host 172.16.10.50
 network-object host 172.16.16.50
object-group network OUTSIDE-218
 description ***** for outside 218 components *****
 network-object host 172.16.218.10
 network-object host 172.16.218.11
 network-object host 172.16.218.12
object-group network OUTSIDE-LABCORE
 description ***** network outside lab core ******
 network-object host 171.68.226.120
 network-object host 64.102.6.247
 network-object host 161.44.140.250
object-group network INSIDE-CTIOS
 description ***** All inside CTIOS servers *****
 network-object host 172.16.10.12
 network-object host 172.16.10.14
 network-object host 172.16.10.16
object-group network OUTSIDE-DESK-213
 description ***** forAgents desktop *****
 network-object host 172.16.213.2
 network-object host 172.16.213.3
 network-object host 172.16.213.4
 network-object host 172.16.213.5
object-group network OUTSIDE-23
 description ***** network outside 23 ******
 network-object host 172.16.23.11
 network-object host 172.16.23.12
 network-object host 172.16.23.10
 network-object host 172.16.23.13
object-group service DHCP-AD-UDP udp
 description ****** port use with DHCP and AD **
 port-object range 135 139
 port-object eq netbios-ns
 port-object eq 389
 port-object eq 88
 port-object eq domain
 port-object eq ntp
 port-object eq 1025
object-group service DHCP-AD-TCP tcp
 description ****** port use with DHCP and AD **
 port-object range 41002 41017
 port-object eq 445
 port-object eq ldap
 port-object eq netbios-ssn
 port-object eq 137
 port-object eq 135
 port-object eq https
 port-object eq 1026
 port-object eq domain
object-group network OUTSIDE-203
 network-object host 172.16.203.4
 network-object host 172.16.203.6
 network-object host 172.16.203.2
 network-object host 172.16.203.3
 network-object host 172.16.203.5
object-group network CUOM-SERVER
 description CUOM
 network-object host 10.86.143.22
object-group service CUOM-UDP udp
 port-object eq snmp
 port-object eq domain
 port-object eq 389
 port-object eq snmptrap
 port-object eq syslog
 port-object eq 5666
object-group service CUOM-TCP tcp
 port-object eq www
 port-object eq 1741
 port-object eq 8443
 port-object eq 8080
 port-object range 1987 2006
 port-object range 3827 3834
 port-object eq https
 port-object eq 135
 port-object eq netbios-ssn
 port-object eq 445
 port-object eq 593
 port-object eq ssh
 port-object eq 2000
object-group service CUPS-TCP tcp
 port-object eq https
 port-object eq www
 port-object eq 50001
object-group service CUPS-UDP udp
 port-object eq sip
 port-object eq 50000
 port-object eq 8500
 port-object range 50001 50020
object-group network INSIDE-CUPS
 network-object host 172.16.10.34
 network-object host 172.16.16.34
 network-object host 172.16.10.36
 network-object host 172.16.16.35
object-group network INSIDE-PG
 description All inside PG
 network-object host 172.16.10.12
 network-object host 172.16.10.13
 network-object host 172.16.10.14
 network-object host 172.16.10.15
 network-object host 172.16.10.16
 network-object host 172.16.10.17
 network-object host 172.16.10.28
 network-object host 172.16.10.29
 network-object host 172.16.16.12
 network-object host 172.16.16.13
 network-object host 172.16.16.14
 network-object host 172.16.16.15
 network-object host 172.16.16.16
 network-object host 172.16.16.17
 network-object host 172.16.16.27
 network-object host 172.16.16.28
 network-object host 172.16.10.20
 network-object host 172.16.16.20
 network-object host 172.16.10.83
 network-object host 172.16.16.83
object-group network OUTSIDE-219AGENT
 network-object host 172.16.219.10
 network-object host 172.16.219.11
object-group network OUTSIDE-221AGENT
 network-object host 172.16.221.10
 network-object host 172.16.221.11
object-group service DESKTOP-CTIOS tcp
 port-object eq 42028
 port-object eq 43028
object-group network INSIDE-LDAP
 network-object host 172.16.10.35
object-group service EX-ADV-CLIENT-LDAP tcp
 port-object eq https
 port-object eq ldap
object-group service CCM-EX-ADV-AGENT tcp
 port-object eq ctiqbe
object-group service CM-PHONE tcp
 port-object eq https
object-group network REMOVE-ALLOW-ALL
 network-object 172.16.229.0 255.255.255.0
 network-object 172.16.221.0 255.255.255.0
 network-object 172.16.219.0 255.255.255.0
 network-object host 172.16.200.10
 network-object host 172.16.200.2
 network-object host 172.16.200.5
 network-object host 172.16.200.20
 network-object host 172.16.200.21
object-group network OUTSIDE-PROXY
 network-object host 161.44.248.127
 network-object host 161.44.124.122
 network-object host 64.102.6.247
 network-object host 64.102.2.51
 network-object host 171.68.226.120
object-group network OUTSIDE-CUBE-GW
 network-object host 172.16.162.3
object-group service CUBE-CM-UDP udp
 port-object range 25000 45535
 port-object range 23000 24999
object-group network NEW-CAMELOT-SITE8
 network-object 172.16.180.0 255.255.255.0
 network-object 172.16.188.0 255.255.255.0
object-group network INSIDE-CCM-NET
 network-object 172.16.18.0 255.255.255.0
 network-object 172.16.17.0 255.255.255.0
 network-object 172.16.11.0 255.255.255.0
 network-object 172.16.12.0 255.255.255.0
object-group network NEW-FISHBOWL
 network-object 10.86.134.0 255.255.255.0
access-list allow-all extended permit ip any any 
access-list outside extended permit icmp any any 
access-list outside extended permit tcp object-group PHONE-OUT object-group WIND-ADMIN object-group INSIDE 
access-list outside extended permit udp object-group OUTSIDE-CAD object-group CAD-UDP object-group INSIDE10-IPCC 
access-list outside extended permit udp object-group OUTSIDE host 172.16.10.50 eq domain 
access-list outside extended permit udp object-group OUTSIDE host 172.16.16.50 eq domain 
access-list outside extended permit udp 172.16.206.0 255.255.255.0 host 172.16.18.10 eq tftp 
access-list outside extended permit udp 172.16.202.0 255.255.255.0 host 172.16.11.10 eq tftp 
access-list outside extended permit udp 172.16.208.0 255.255.255.0 host 172.16.10.50 eq domain 
access-list outside extended permit udp host 172.16.23.10 host 172.16.10.50 eq domain 
access-list outside extended permit udp host 172.16.23.10 host 172.16.16.50 eq domain 
access-list outside extended permit tcp 172.16.208.0 255.255.255.0 object-group INSIDE-IS518-CCM eq 2000 
access-list outside extended permit udp host 172.16.206.12 host 172.16.16.50 eq domain 
access-list outside extended permit udp host 172.16.206.13 host 172.16.16.50 eq domain 
access-list outside extended permit udp host 172.16.206.12 host 172.16.10.50 eq domain 
access-list outside extended permit udp host 172.16.206.13 host 172.16.10.50 eq domain 
access-list outside extended permit udp host 172.16.202.10 host 172.16.10.50 eq domain 
access-list outside extended permit udp host 172.16.202.10 host 172.16.16.50 eq domain 
access-list outside extended permit udp host 172.16.202.12 host 172.16.10.50 eq domain 
access-list outside extended permit udp host 172.16.202.12 host 172.16.16.50 eq domain 
access-list outside extended permit udp host 172.16.15.100 object-group INSIDE-PUB eq tftp 
access-list outside extended permit udp host 172.16.208.12 object-group INSIDE-PUB eq tftp 
access-list outside extended permit udp host 172.16.13.104 object-group INSIDE-PUB eq tftp 
access-list outside extended permit udp host 172.16.208.14 object-group INSIDE-PUB eq tftp 
access-list outside extended permit tcp host 172.16.13.10 host 172.16.12.10 eq www 
access-list outside extended permit udp host 172.16.20.13 host 172.16.16.50 eq netbios-ns 
access-list outside extended permit udp host 172.16.20.17 host 172.16.16.50 eq netbios-ns 
access-list outside extended permit udp host 172.16.19.14 host 172.16.16.50 eq netbios-ns 
access-list outside extended permit tcp host 172.16.20.17 host 172.16.16.50 eq 445 
access-list outside extended permit tcp host 172.16.13.10 object-group INSIDE-AW eq 1433 
access-list outside extended permit tcp 172.16.206.0 255.255.255.0 host 172.16.18.11 range 2000 2002 
access-list outside extended permit tcp host 172.16.20.101 host 172.16.12.12 range 2000 2002 
access-list outside extended permit tcp 172.16.208.0 255.255.255.0 host 172.16.12.12 range 2000 2002 
access-list outside extended permit tcp 172.16.202.0 255.255.255.0 host 172.16.11.11 range 2000 2002 
access-list outside extended permit tcp 172.16.206.0 255.255.255.0 host 172.16.12.12 range 2000 2002 
access-list outside extended permit tcp 172.16.202.0 255.255.255.0 host 172.16.17.10 range 2000 2002 
access-list outside extended permit tcp 172.16.202.0 255.255.255.0 host 172.16.11.10 range 2000 2002 
access-list outside extended permit tcp host 172.16.13.10 host 172.16.12.10 eq 8433 
access-list outside extended permit tcp object-group OUTSIDE-PG object-group INSIDE10-IPCC range 40002 40017 
access-list outside extended permit tcp object-group OUTSIDE-PG object-group INSIDE-IS516-IPCC range 41002 41017 
access-list outside extended permit tcp object-group OUTSIDE host 172.16.16.50 eq 445 
access-list outside extended permit udp object-group OUTSIDE host 172.16.16.50 eq 389 
access-list outside extended permit tcp object-group OUTSIDE host 172.16.10.50 eq ldap 
access-list outside extended permit tcp object-group OUTSIDE-PG object-group INSIDE-AW eq 1433 
access-list outside extended permit tcp object-group OUTSIDE host 172.16.16.50 range 137 netbios-ssn 
access-list outside extended permit udp object-group OUTSIDE host 172.16.16.50 range netbios-ns 139 
access-list outside extended permit tcp object-group OUTSIDE host 172.16.10.50 range 137 netbios-ssn 
access-list outside extended permit udp object-group OUTSIDE host 172.16.10.50 range netbios-ns 139 
access-list outside extended permit udp 172.16.15.0 255.255.255.0 host 172.16.16.50 eq domain 
access-list outside extended permit udp 172.16.216.0 255.255.255.0 host 172.16.16.50 eq domain 
access-list outside extended permit udp 172.16.13.0 255.255.255.0 host 172.16.16.50 eq domain 
access-list outside extended permit udp 172.16.20.0 255.255.255.0 host 172.16.16.50 eq domain 
access-list outside extended permit udp 172.16.23.0 255.255.255.0 host 172.16.16.50 eq domain 
access-list outside extended permit udp 172.16.15.0 255.255.255.0 host 172.16.10.50 eq domain 
access-list outside extended permit udp 172.16.216.0 255.255.255.0 host 172.16.10.50 eq domain 
access-list outside extended permit udp 172.16.13.0 255.255.255.0 host 172.16.10.50 eq domain 
access-list outside extended permit udp 172.16.20.0 255.255.255.0 host 172.16.10.50 eq domain 
access-list outside extended permit udp 172.16.23.0 255.255.255.0 host 172.16.10.50 eq domain 
access-list outside extended permit tcp 172.16.13.0 255.255.255.0 object-group INSIDE-IS518-CCM eq www 
access-list outside extended permit tcp 172.16.13.0 255.255.255.0 object-group INSIDE12-CCM eq www 
access-list outside extended permit tcp 172.16.15.0 255.255.255.0 object-group INSIDE11-CCM range 2000 2002 
access-list outside extended permit tcp 172.16.20.0 255.255.255.0 object-group INSIDE-IS518-CCM range 2000 2002 
access-list outside extended permit tcp 172.16.13.0 255.255.255.0 object-group INSIDE11-CCM range 2000 2002 
access-list outside extended permit tcp 172.16.15.0 255.255.255.0 object-group INSIDE-IS517-CCM range 2000 2002 
access-list outside extended permit tcp 172.16.216.0 255.255.255.0 host 172.16.16.50 eq 445 
access-list outside extended permit udp object-group OUTSIDE host 172.16.10.50 eq 389 
access-list outside extended permit udp 172.16.23.0 255.255.255.0 host 172.16.10.50 eq 389 
access-list outside extended permit udp 172.16.23.0 255.255.255.0 host 172.16.16.50 eq 389 
access-list outside extended permit tcp object-group OUTSIDE host 172.16.16.50 eq ldap 
access-list outside extended permit udp 172.16.23.0 255.255.255.0 host 172.16.10.50 range 135 139 
access-list outside extended permit udp 172.16.23.0 255.255.255.0 host 172.16.16.50 range 135 139 
access-list outside extended permit udp 172.16.216.0 255.255.255.0 host 172.16.10.50 range 135 139 
access-list outside extended permit udp 172.16.216.0 255.255.255.0 host 172.16.16.50 range 135 139 
access-list outside extended permit udp object-group OUTSIDE host 172.16.16.50 eq 88 
access-list outside extended permit tcp object-group OUTSIDE-COMP host 172.16.10.50 range 135 netbios-ssn 
access-list outside extended permit tcp object-group OUTSIDE-COMP host 172.16.16.50 range 135 netbios-ssn 
access-list outside extended permit tcp object-group OUTSIDE-COMP host 172.16.10.50 eq 445 
access-list outside extended permit tcp object-group OUTSIDE-COMP host 172.16.16.50 eq 445 
access-list outside extended permit tcp host 172.16.13.10 object-group INSIDE10-IPCC eq 42027 
access-list outside extended permit tcp host 172.16.13.10 object-group INSIDE-IS518-CCM eq 8443 
access-list outside extended permit tcp host 172.16.13.10 object-group INSIDE12-CCM eq 8443 
access-list outside extended permit tcp host 172.16.13.10 object-group INSIDE-IS516-IPCC eq 43027 
access-list outside extended permit udp object-group OUTSIDE host 172.16.2.20 eq 1719 
access-list outside extended permit udp 172.16.191.0 255.255.255.0 host 172.16.2.20 eq 1719 
access-list outside extended permit udp 172.16.171.0 255.255.255.0 host 172.16.2.20 eq 1719 
access-list outside extended permit tcp object-group OUTSIDE-COMP host 172.16.10.50 eq 1025 
access-list outside extended permit tcp object-group OUTSIDE-COMP host 172.16.16.50 eq 1025 
access-list outside extended permit udp 172.16.181.0 255.255.255.0 host 172.16.2.20 eq 1719 
access-list outside extended permit udp 172.16.161.0 255.255.255.0 host 172.16.2.20 eq 1719 
access-list outside extended permit udp 172.16.121.0 255.255.255.0 host 172.16.2.20 eq 1719 
access-list outside extended permit udp 172.16.131.0 255.255.255.0 host 172.16.2.20 eq 1719 
access-list outside extended permit tcp object-group OUTSIDE-COMP host 172.16.10.50 eq 88 
access-list outside extended permit tcp object-group OUTSIDE-COMP host 172.16.16.50 eq 88 
access-list outside extended permit udp object-group OUTSIDE-COMP host 172.16.10.50 eq 88 
access-list outside extended permit udp object-group OUTSIDE-COMP host 172.16.16.50 eq 88 
access-list outside extended permit udp 172.16.141.0 255.255.255.0 host 172.16.2.20 eq 1719 
access-list outside extended permit udp object-group OUTSIDE-COMP object-group INSIDE object-group any 
access-list outside extended permit tcp object-group OUTSIDE-GK object-group INSIDE eq 8000 
access-list outside extended permit udp host 172.16.13.11 host 172.16.11.10 eq tftp 
access-list outside extended permit ip object-group OUTSIDE-TRUST object-group INSIDE 
access-list outside extended permit udp object-group OUTSIDE-GK host 172.16.2.20 eq 1719 
access-list outside extended permit udp object-group OUTSIDE-GK host 172.16.16.10 eq domain 
access-list outside extended permit udp object-group OUTSIDE-GK host 172.16.10.50 eq domain 
access-list outside extended permit udp object-group OUTSIDE-GK host 172.16.16.50 eq domain 
access-list outside extended permit tcp object-group OUTSIDE-GK host 172.16.10.24 eq www 
access-list outside extended permit tcp object-group OUTSIDE-GK host 172.16.16.24 eq www 
access-list outside extended permit tcp object-group OUTSIDE-GK host 172.16.10.22 eq www 
access-list outside extended permit tcp object-group OUTSIDE-GK host 172.16.16.22 eq www 
access-list outside extended permit tcp object-group OUTSIDE-GK host 172.16.10.23 eq www 
access-list outside extended permit tcp object-group OUTSIDE-GK host 172.16.16.23 eq www 
access-list outside extended permit tcp object-group OUTSIDE-AGENTS host 172.16.10.50 eq 1026 
access-list outside extended permit udp host 172.16.216.12 host 172.16.16.50 eq 389 
access-list outside extended permit udp host 172.16.216.12 host 172.16.10.50 eq 389 
access-list outside extended permit udp object-group OUTSIDE-AGENTS host 172.16.16.50 eq 389 
access-list outside extended permit udp object-group OUTSIDE-AGENTS host 172.16.10.50 eq 389 
access-list outside extended permit udp object-group OUTSIDE-AGENTS host 172.16.11.10 eq tftp 
access-list outside extended permit udp object-group OUTSIDE-AGENTS host 172.16.16.50 eq ntp 
access-list outside extended permit udp object-group OUTSIDE-AGENTS host 172.16.10.50 eq ntp 
access-list outside extended permit tcp object-group OUTSIDE-AGENTS host 172.16.10.12 eq 42028 
access-list outside extended permit tcp object-group OUTSIDE-AGENTS host 172.16.16.12 eq 42028 
access-list outside extended permit tcp object-group OUTSIDE-AGENTS host 172.16.10.12 eq 65432 
access-list outside extended permit udp object-group OUTSIDE-AGENTS host 172.16.18.10 eq tftp 
access-list outside extended permit tcp object-group OUTSIDE-IS3AGENT host 172.16.11.11 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS3AGENT host 172.16.17.11 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS4AGENT host 172.16.11.11 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS4AGENT host 172.16.17.11 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS6AGENT host 172.16.18.11 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS6AGENT host 172.16.18.12 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS7AGENT host 172.16.12.10 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS8AGENT host 172.16.12.11 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS9AGENT host 172.16.12.11 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS6AGENT host 172.16.12.13 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS6AGENT host 172.16.12.12 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS3AGENT host 172.16.11.12 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS3AGENT host 172.16.17.10 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS7AGENT host 172.16.12.13 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS2AGENT host 172.16.17.10 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS8AGENT host 172.16.18.14 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS8AGENT host 172.16.12.10 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS2AGENT host 172.16.10.12 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-IS2AGENT host 172.16.16.12 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-IS9AGENT host 172.16.18.14 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS3AGENT host 172.16.16.12 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-IS3AGENT host 172.16.10.12 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-IS8AGENT host 172.16.18.13 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS2AGENT host 172.16.16.12 eq 65432 
access-list outside extended permit tcp host 172.16.121.2 host 172.16.10.23 range 40616 40630 
access-list outside extended permit udp object-group OUTSIDE-IS216AGENT host 172.16.10.50 eq 389 
access-list outside extended permit udp object-group OUTSIDE-IS216AGENT host 172.16.16.50 eq 389 
access-list outside extended permit tcp object-group OUTSIDE-IS216AGENT host 172.16.10.50 eq ldap 
access-list outside extended permit tcp object-group OUTSIDE-IS216AGENT host 172.16.16.50 eq ldap 
access-list outside extended permit tcp object-group OUTSIDE-IS216AGENT host 172.16.16.11 eq ldap 
access-list outside extended permit tcp object-group OUTSIDE-IS216AGENT host 172.16.10.10 eq ldap 
access-list outside extended permit tcp object-group OUTSIDE-IS4AGENT host 172.16.16.12 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-IS4AGENT host 172.16.10.12 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-IS6AGENT host 172.16.16.12 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-IS6AGENT host 172.16.10.12 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-IS7AGENT host 172.16.16.12 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-IS7AGENT host 172.16.10.12 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-IS8AGENT host 172.16.16.12 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-IS8AGENT host 172.16.10.12 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-IS9AGENT host 172.16.16.12 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-IS9AGENT host 172.16.10.12 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-IS3AGENT host 172.16.16.12 eq 65432 
access-list outside extended permit tcp object-group OUTSIDE-IS4AGENT host 172.16.16.12 eq 65432 
access-list outside extended permit tcp object-group OUTSIDE-IS6AGENT host 172.16.16.12 eq 65432 
access-list outside extended permit tcp object-group OUTSIDE-IS7AGENT host 172.16.16.12 eq 65432 
access-list outside extended permit tcp object-group OUTSIDE-IS8AGENT host 172.16.16.12 eq 65432 
access-list outside extended permit tcp object-group OUTSIDE-IS9AGENT host 172.16.16.12 eq 65432 
access-list outside extended permit tcp object-group OUTSIDE-IS6AGENT host 172.16.10.14 eq 42028 
access-list outside extended permit tcp object-group OUTSIDE-IS6AGENT host 172.16.16.14 eq 43028 
access-list outside extended permit tcp object-group OUTSIDE-IS2AGENT host 172.16.16.12 range 59000 59010 
access-list outside extended permit tcp object-group OUTSIDE-IS4AGENT host 172.16.16.12 range 59000 59010 
access-list outside extended permit tcp object-group OUTSIDE-CAD host 172.16.10.12 range 59000 59010 
access-list outside extended permit tcp object-group OUTSIDE-CAD host 172.16.10.50 eq 1026 
access-list outside extended permit tcp object-group OUTSIDE-AGENTS host 172.16.16.50 eq ldap 
access-list outside extended permit tcp object-group OUTSIDE-AGENTS host 172.16.10.10 eq ldap 
access-list outside extended permit tcp object-group OUTSIDE-AGENTS host 172.16.16.10 eq ldap 
access-list outside extended permit tcp object-group OUTSIDE-AGENTS host 172.16.16.11 eq ldap 
access-list outside extended permit udp 172.16.99.0 255.255.255.0 host 172.16.10.21 eq tftp 
access-list outside extended permit tcp object-group OUTSIDE-GK host 172.16.10.22 range 1024 65535 
access-list outside extended permit tcp object-group OUTSIDE-GK host 172.16.16.22 range 1024 65535 
access-list outside extended permit tcp object-group OUTSIDE-GK host 172.16.10.23 range 1024 65535 
access-list outside extended permit tcp object-group OUTSIDE-GK host 172.16.16.23 range 1024 65535 
access-list outside extended permit udp object-group OUTSIDE-GK host 172.16.10.22 range 1024 65535 
access-list outside extended permit udp object-group OUTSIDE-GK host 172.16.16.22 range 1024 65535 
access-list outside extended permit udp object-group OUTSIDE-GK host 172.16.10.23 range 1024 65535 
access-list outside extended permit udp object-group OUTSIDE-GK host 172.16.16.23 range 1024 65535 
access-list outside extended permit tcp object-group OUTSIDE-CAD host 172.16.10.12 object-group CAD 
access-list outside extended permit tcp object-group OUTSIDE-208 object-group INSIDE11-CCM eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-208 object-group INSIDE12-CCM eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-208 object-group INSIDE-IS517-CCM eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-208 object-group INSIDE-IS518-CCM eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-206 object-group INSIDE11-CCM eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-206 object-group INSIDE12-CCM eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-206 object-group INSIDE-IS517-CCM eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-206 object-group INSIDE-IS518-CCM eq 2000 
access-list outside extended permit udp object-group OUTSIDE-206 object-group INSIDE11-CCM eq tftp 
access-list outside extended permit udp object-group OUTSIDE-206 object-group INSIDE12-CCM eq tftp 
access-list outside extended permit udp object-group OUTSIDE-206 object-group INSIDE-IS517-CCM eq tftp 
access-list outside extended permit udp object-group OUTSIDE-206 object-group INSIDE-IS518-CCM eq tftp 
access-list outside extended permit udp object-group OUTSIDE-202 object-group INSIDE-AD eq domain 
access-list outside extended permit udp object-group OUTSIDE-218 object-group INSIDE-AD eq domain 
access-list outside extended permit tcp object-group OUTSIDE-IS216AGENT object-group INSIDE-AD eq 1026 
access-list outside extended permit tcp object-group OUTSIDE-IS9 object-group INSIDE-AD eq 1026 
access-list outside extended permit udp object-group OUTSIDE-IS6AGENT object-group INSIDE-AD eq domain 
access-list outside extended permit tcp object-group OUTSIDE-IS6AGENT object-group INSIDE-AD eq 1026 
access-list outside extended permit udp object-group OUTSIDE-IS3AGENT object-group INSIDE-AD eq domain 
access-list outside extended permit tcp object-group OUTSIDE-IS3AGENT object-group INSIDE-AD eq 1026 
access-list outside extended permit tcp object-group OUTSIDE-IS216AGENT host 172.16.10.14 eq 42028 
access-list outside extended permit tcp object-group OUTSIDE-IS216AGENT host 172.16.16.14 eq 43028 
access-list outside extended permit tcp object-group OUTSIDE-IS8AGENT host 172.16.18.11 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS8AGENT host 172.16.11.10 eq 2000 
access-list outside extended permit udp object-group OUTSIDE-206 object-group INSIDE-AD eq domain 
access-list outside extended permit udp object-group OUTSIDE-IS6AGENT object-group INSIDE11-CCM eq tftp 
access-list outside extended permit udp object-group OUTSIDE-IS6AGENT object-group INSIDE12-CCM eq tftp 
access-list outside extended permit tcp object-group OUTSIDE-IS6AGENT object-group INSIDE12-CCM eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS6AGENT object-group INSIDE11-CCM eq 2000 
access-list outside extended permit udp object-group OUTSIDE-IS3AGENT object-group INSIDE-AD eq netbios-ns 
access-list outside extended permit tcp object-group OUTSIDE-IS4AGENT object-group INSIDE-AD eq 1026 
access-list outside extended permit tcp object-group OUTSIDE-IS6AGENT object-group INSIDE-AD eq ldap 
access-list outside extended permit tcp object-group OUTSIDE-IS6AGENT object-group INSIDE-IS517-CCM eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-IS6AGENT object-group INSIDE-IS518-CCM eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-DESK-213 object-group INSIDE-AD eq 1026 
access-list outside extended permit tcp object-group OUTSIDE-DESK-213 host 172.16.10.14 eq 42028 
access-list outside extended permit tcp object-group OUTSIDE-DESK-213 host 172.16.16.14 eq 43028 
access-list outside extended permit udp object-group OUTSIDE-DESK-213 object-group INSIDE-AD eq domain 
access-list outside extended permit tcp object-group OUTSIDE-DESK-213 object-group INSIDE-CTIOS eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-DESK-213 object-group INSIDE-CTIOS eq 65432 
access-list outside extended permit tcp object-group OUTSIDE-23 object-group INSIDE-AD eq netbios-ssn 
access-list outside extended permit tcp object-group OUTSIDE-23 object-group INSIDE-AD eq 1026 
access-list outside extended permit udp object-group OUTSIDE-23 object-group INSIDE-AD eq domain 
access-list outside extended permit udp object-group OUTSIDE-23 object-group INSIDE-AD eq ntp 
access-list outside extended permit udp object-group OUTSIDE-IS3AGENT object-group INSIDE-AD eq 389 
access-list outside extended permit ip host 10.86.143.126 object-group INSIDE-NET 
access-list outside extended permit tcp object-group OUTSIDE-IS9AGENT object-group INSIDE-AD eq 1026 
access-list outside extended permit udp object-group OUTSIDE-IS7AGENT object-group INSIDE-AD eq 389 
access-list outside extended permit tcp object-group OUTSIDE-IS8AGENT object-group INSIDE-AD eq 1026 
access-list outside extended permit udp object-group OUTSIDE-IS3AGENT object-group INSIDE-AD eq ntp 
access-list outside extended permit tcp object-group OUTSIDE-IS3AGENT object-group INSIDE-AD eq domain 
access-list outside extended permit tcp object-group OUTSIDE-203 object-group INSIDE-AD object-group DHCP-AD-TCP 
access-list outside extended permit udp object-group OUTSIDE-203 object-group INSIDE-AD object-group DHCP-AD-UDP 
access-list outside extended permit tcp object-group OUTSIDE-IS7AGENT object-group INSIDE-AD object-group DHCP-AD-TCP 
access-list outside extended permit tcp object-group OUTSIDE-IS2 host 172.16.11.10 eq www 
access-list outside extended permit tcp object-group OUTSIDE-IS2 host 172.16.11.10 eq https 
access-list outside extended permit tcp object-group OUTSIDE-IS216AGENT object-group INSIDE-AD object-group DHCP-AD-TCP 
access-list outside extended permit tcp object-group OUTSIDE-218 host 172.16.11.10 eq https 
access-list outside extended permit tcp object-group OUTSIDE-208 host 172.16.11.10 eq 8080 
access-list outside extended permit tcp 10.86.143.0 255.255.255.0 object-group GATEWAY eq telnet 
access-list outside extended permit tcp 172.16.13.0 255.255.255.0 object-group INSIDE-AD object-group DHCP-AD-TCP 
access-list outside extended permit udp 172.16.216.0 255.255.255.0 object-group INSIDE-AD object-group DHCP-AD-UDP 
access-list outside extended permit tcp 172.16.216.0 255.255.255.0 object-group INSIDE-AD object-group DHCP-AD-TCP 
access-list outside extended permit tcp 172.16.21.0 255.255.255.0 object-group INSIDE-AD object-group DHCP-AD-TCP 
access-list outside extended permit udp 172.16.20.0 255.255.255.0 object-group INSIDE-AD object-group DHCP-AD-UDP 
access-list outside extended permit udp host 10.86.143.51 object-group INSIDE-NET eq tftp 
access-list outside extended permit udp object-group CUOM-SERVER object-group INSIDE object-group CUOM-UDP 
access-list outside extended permit tcp object-group CUOM-SERVER object-group INSIDE object-group CUOM-TCP 
access-list outside extended permit udp object-group OUTSIDE-COMP object-group INSIDE-CUPS object-group CUPS-UDP 
access-list outside extended permit tcp object-group OUTSIDE-COMP object-group INSIDE-CUPS object-group CUPS-TCP 
access-list outside extended permit tcp 172.16.23.0 255.255.255.0 object-group INSIDE12-CCM eq 8443 
access-list outside extended permit tcp 172.16.23.0 255.255.255.0 object-group INSIDE11-CCM eq 8443 
access-list outside extended permit tcp 172.16.20.0 255.255.255.0 object-group INSIDE-AD object-group DHCP-AD-TCP 
access-list outside extended permit tcp 10.86.143.0 255.255.255.0 host 172.16.10.34 eq 8443 
access-list outside extended permit tcp 172.16.14.0 255.255.255.0 object-group INSIDE-AD object-group DHCP-AD-TCP 
access-list outside extended permit udp 172.16.14.0 255.255.255.0 object-group INSIDE-AD object-group DHCP-AD-UDP 
access-list outside extended permit ip host 10.86.143.125 object-group INSIDE-NET 
access-list outside extended permit tcp 172.16.19.0 255.255.255.0 object-group INSIDE11-CCM eq sip 
access-list outside extended permit tcp 172.16.19.0 255.255.255.0 object-group INSIDE12-CCM eq sip 
access-list outside extended permit ip host 10.86.143.9 object-group INSIDE-NET 
access-list outside extended permit tcp 10.86.143.0 255.255.255.0 object-group GATEWAY eq 161 
access-list outside extended permit udp 10.86.143.0 255.255.255.0 object-group GATEWAY eq snmp 
access-list outside extended permit tcp 172.16.99.0 255.255.255.0 object-group INSIDE-AD object-group DHCP-AD-TCP 
access-list outside extended permit udp 172.16.99.0 255.255.255.0 object-group INSIDE-AD object-group DHCP-AD-UDP 
access-list outside extended permit tcp 172.16.21.0 255.255.255.0 object-group INSIDE11-CCM eq sip 
access-list outside extended permit udp 172.16.21.0 255.255.255.0 object-group INSIDE11-CCM eq sip 
access-list outside extended permit tcp 172.16.21.0 255.255.255.0 object-group INSIDE12-CCM eq sip 
access-list outside extended permit udp 172.16.21.0 255.255.255.0 object-group INSIDE12-CCM eq sip 
access-list outside extended permit tcp 172.16.58.0 255.255.255.0 object-group INSIDE-AD object-group DHCP-AD-TCP 
access-list outside extended permit udp 172.16.58.0 255.255.255.0 object-group INSIDE-AD object-group DHCP-AD-UDP 
access-list outside extended permit tcp 172.16.21.0 255.255.255.0 object-group INSIDE-NET eq 42028 
access-list outside extended permit tcp 172.16.21.0 255.255.255.0 object-group INSIDE-NET eq 43028 
access-list outside extended permit udp 172.16.161.0 255.255.255.0 object-group INSIDE-NET eq 24657 
access-list outside extended permit udp 172.16.161.0 255.255.255.0 object-group INSIDE-NET object-group any 
access-list outside extended permit tcp 10.86.143.0 255.255.255.0 object-group INSIDE-NET eq 5900 
access-list outside extended permit tcp 172.16.182.0 255.255.255.0 object-group INSIDE-NET eq www 
access-list outside extended permit tcp 172.16.182.0 255.255.255.0 object-group INSIDE-NET eq sip 
access-list outside extended permit udp 172.16.182.0 255.255.255.0 object-group INSIDE-NET eq www 
access-list outside extended permit udp 172.16.182.0 255.255.255.0 object-group INSIDE-NET eq sip 
access-list outside extended permit udp 172.16.182.0 255.255.255.0 object-group INSIDE-NET eq 31161 
access-list outside extended permit udp 172.16.181.0 255.255.255.0 object-group INSIDE-NET eq sip 
access-list outside extended permit udp 172.16.182.0 255.255.255.0 object-group INSIDE-NET object-group any 
access-list outside extended permit ip 10.86.143.0 255.255.255.0 object-group INSIDE-NET 
access-list outside extended permit ip 161.44.0.0 255.255.0.0 object-group INSIDE-NET 
access-list outside extended permit tcp 172.16.21.0 255.255.255.0 object-group INSIDE-NET eq https 
access-list outside extended permit ip 10.86.242.0 255.255.255.0 object-group INSIDE-NET 
access-list outside extended permit udp any any eq tftp 
access-list outside extended permit tcp 172.16.21.0 255.255.255.0 object-group INSIDE-AW eq 1433 
access-list outside extended permit udp 172.16.21.0 255.255.255.0 object-group INSIDE-PG eq snmp 
access-list outside extended permit udp object-group OUTSIDE-GK host 172.16.10.21 range 1024 65535 
access-list outside extended permit udp 172.16.171.0 255.255.255.0 host 172.16.10.21 range 33440 33500 
access-list outside extended permit udp 172.16.173.0 255.255.255.0 host 172.16.10.21 range 33440 33500 
access-list outside extended permit udp object-group OUTSIDE-GK object-group INSIDE-CUPS object-group CUPS-UDP 
access-list outside extended permit tcp 172.16.184.0 255.255.255.0 object-group INSIDE-NET eq www 
access-list outside extended permit tcp 172.16.184.0 255.255.255.0 object-group INSIDE-NET eq sip 
access-list outside extended permit udp 172.16.184.0 255.255.255.0 object-group INSIDE-NET eq www 
access-list outside extended permit udp 172.16.184.0 255.255.255.0 object-group INSIDE-NET eq sip 
access-list outside extended permit udp 172.16.184.0 255.255.255.0 object-group INSIDE-NET eq 31161 
access-list outside extended permit udp 172.16.184.0 255.255.255.0 object-group INSIDE-NET object-group any 
access-list outside extended permit tcp object-group OUTSIDE-GK host 172.16.10.18 eq www 
access-list outside extended permit tcp object-group OUTSIDE-GK host 172.16.10.18 range 1024 65535 
access-list outside extended permit udp object-group OUTSIDE-GK host 172.16.10.18 range 1024 65535 
access-list outside extended permit tcp object-group OUTSIDE-GK host 172.16.16.18 eq www 
access-list outside extended permit tcp object-group OUTSIDE-GK host 172.16.16.18 range 1024 65535 
access-list outside extended permit udp object-group OUTSIDE-GK host 172.16.16.18 range 1024 65535 
access-list outside extended permit tcp object-group OUTSIDE-219AGENT host 172.16.11.16 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-219AGENT host 172.16.11.17 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-221AGENT host 172.16.17.14 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-221AGENT host 172.16.17.15 eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-219AGENT host 172.16.10.80 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-219AGENT host 172.16.10.81 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-219AGENT host 172.16.10.83 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-219AGENT host 172.16.10.84 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-221AGENT host 172.16.16.80 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-221AGENT host 172.16.16.81 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-221AGENT host 172.16.16.83 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-221AGENT host 172.16.16.84 eq 38983 
access-list outside extended permit tcp object-group OUTSIDE-221AGENT host 172.16.16.83 eq 65432 
access-list outside extended permit tcp object-group OUTSIDE-221AGENT host 172.16.16.80 eq 65432 
access-list outside extended permit tcp object-group OUTSIDE-221AGENT host 172.16.10.80 eq 65432 
access-list outside extended permit tcp object-group OUTSIDE-221AGENT host 172.16.10.83 eq 65432 
access-list outside extended permit tcp object-group OUTSIDE-221AGENT host 172.16.10.80 eq 42028 
access-list outside extended permit tcp object-group OUTSIDE-221AGENT host 172.16.10.83 eq 42028 
access-list outside extended permit tcp object-group OUTSIDE-221AGENT host 172.16.16.80 eq 43028 
access-list outside extended permit tcp object-group OUTSIDE-221AGENT host 172.16.16.83 eq 43028 
access-list outside extended permit udp object-group OUTSIDE-219AGENT object-group INSIDE-AD eq domain 
access-list outside extended permit udp object-group OUTSIDE-221AGENT object-group INSIDE-AD eq domain 
access-list outside extended permit tcp object-group OUTSIDE-219AGENT object-group INSIDE-AD eq 1026 
access-list outside extended permit tcp object-group OUTSIDE-221AGENT object-group INSIDE-AD eq 1026 
access-list outside extended permit udp object-group OUTSIDE-219AGENT object-group INSIDE11-CCM eq tftp 
access-list outside extended permit tcp object-group OUTSIDE-219AGENT object-group INSIDE11-CCM eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-221AGENT object-group INSIDE11-CCM eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-221AGENT object-group INSIDE-IS517-CCM eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-219AGENT object-group INSIDE-IS517-CCM eq 2000 
access-list outside extended permit tcp object-group OUTSIDE-GK host 172.16.10.19 eq www 
access-list outside extended permit tcp object-group OUTSIDE-GK host 172.16.10.19 range 1024 65535 
access-list outside extended permit udp object-group OUTSIDE-GK host 172.16.10.19 range 1024 65535 
access-list outside extended permit tcp object-group OUTSIDE-GK host 172.16.16.19 eq www 
access-list outside extended permit tcp object-group OUTSIDE-GK host 172.16.16.19 range 1024 65535 
access-list outside extended permit udp object-group OUTSIDE-GK host 172.16.16.19 range 1024 65535 
access-list outside extended permit tcp object-group OUTSIDE-218 172.16.10.0 255.255.255.0 object-group DESKTOP-CTIOS 
access-list outside extended permit tcp object-group OUTSIDE-218 172.16.16.0 255.255.255.0 object-group DESKTOP-CTIOS 
access-list outside extended permit tcp object-group OUTSIDE-COMP object-group INSIDE-AD object-group DHCP-AD-TCP 
access-list outside extended permit udp object-group OUTSIDE-COMP object-group INSIDE-AD object-group DHCP-AD-UDP 
access-list outside extended permit tcp object-group OUTSIDE-IS7AGENT host 172.16.10.16 eq 42028 
access-list outside extended permit tcp object-group OUTSIDE-IS7AGENT host 172.16.10.16 eq 43028 
access-list outside extended permit tcp object-group OUTSIDE-IS7AGENT host 172.16.16.16 eq 43028 
access-list outside extended permit tcp object-group OUTSIDE-IS7AGENT host 172.16.16.16 eq 42028 
access-list outside extended permit tcp 172.16.20.0 255.255.255.0 object-group INSIDE-NET eq 42028 
access-list outside extended permit tcp 172.16.20.0 255.255.255.0 object-group INSIDE-NET eq 43028 
access-list outside extended permit tcp object-group OUTSIDE-219AGENT object-group INSIDE-LDAP object-group EX-ADV-CLIENT-LDAP 
access-list outside extended permit tcp object-group OUTSIDE-221AGENT object-group INSIDE-LDAP object-group EX-ADV-CLIENT-LDAP 
access-list outside extended permit udp object-group OUTSIDE-219AGENT object-group INSIDE11-CCM eq sip 
access-list outside extended permit tcp object-group OUTSIDE-221AGENT object-group INSIDE11-CCM object-group CCM-EX-ADV-AGENT 
access-list outside extended permit tcp object-group OUTSIDE-219AGENT object-group INSIDE11-CCM object-group CCM-EX-ADV-AGENT 
access-list outside extended permit tcp object-group OUTSIDE-221AGENT object-group INSIDE12-CCM object-group CCM-EX-ADV-AGENT 
access-list outside extended permit tcp object-group OUTSIDE-219AGENT object-group INSIDE12-CCM object-group CCM-EX-ADV-AGENT 
access-list outside extended permit udp 172.16.172.0 255.255.255.0 object-group INSIDE-NET eq sip 
access-list outside extended permit udp 172.16.172.0 255.255.255.0 object-group INSIDE-NET object-group any 
access-list outside extended permit udp object-group OUTSIDE-GK 172.16.11.0 255.255.255.0 range 25000 65535 
access-list outside extended permit tcp 172.16.20.0 255.255.255.0 host 172.16.11.10 range 2000 2002 
access-list outside extended permit tcp 172.16.99.0 255.255.255.0 172.16.10.0 255.255.255.0 eq telnet 
access-list outside extended permit tcp 172.16.229.0 255.255.255.0 object-group INSIDE11-CCM range 2000 2002 
access-list outside extended permit tcp any any eq ftp 
access-list outside extended permit tcp 172.16.21.0 255.255.255.0 object-group INSIDE-IS518-CCM eq sip 
access-list outside extended permit udp 172.16.21.0 255.255.255.0 object-group INSIDE-IS518-CCM eq sip 
access-list outside extended permit tcp 172.16.229.0 255.255.255.0 object-group INSIDE11-CCM eq sip 
access-list outside extended permit udp 172.16.229.0 255.255.255.0 object-group INSIDE11-CCM eq sip 
access-list outside extended permit ip object-group REMOVE-ALLOW-ALL object-group INSIDE-NET 
access-list outside extended permit udp object-group OUTSIDE-CUBE-GW host 172.16.12.10 object-group CUBE-CM-UDP 
access-list outside extended permit udp object-group OUTSIDE-CUBE-GW host 172.16.12.11 object-group CUBE-CM-UDP 
access-list outside extended permit udp object-group OUTSIDE-CUBE-GW host 172.16.17.10 object-group CUBE-CM-UDP 
access-list outside extended permit udp object-group OUTSIDE-CUBE-GW host 172.16.17.11 object-group CUBE-CM-UDP 
access-list outside extended permit udp object-group OUTSIDE-CUBE-GW host 172.16.18.11 object-group CUBE-CM-UDP 
access-list outside extended permit udp object-group OUTSIDE-CUBE-GW host 172.16.11.10 object-group CUBE-CM-UDP 
access-list outside extended permit udp object-group OUTSIDE-CUBE-GW host 172.16.11.12 object-group CUBE-CM-UDP 
access-list outside extended permit udp object-group OUTSIDE-CUBE-GW host 172.16.11.11 object-group CUBE-CM-UDP 
access-list outside extended permit tcp object-group NEW-CAMELOT-SITE8 object-group INSIDE-CCM-NET eq 2000 
access-list outside extended permit udp object-group NEW-CAMELOT-SITE8 object-group INSIDE-CCM-NET eq tftp 
access-list outside extended permit tcp object-group NEW-CAMELOT-SITE8 object-group INSIDE-CCM-NET eq sip 
access-list outside extended permit udp object-group NEW-CAMELOT-SITE8 object-group INSIDE-CCM-NET eq sip 
access-list outside extended permit tcp object-group NEW-CAMELOT-SITE8 object-group INSIDE-CCM-NET eq www 
access-list outside extended permit tcp object-group NEW-CAMELOT-SITE8 object-group INSIDE-CCM-NET eq https 
access-list outside extended permit udp object-group NEW-FISHBOWL object-group INSIDE-NET 
access-list outside extended permit tcp object-group NEW-FISHBOWL object-group INSIDE-NET 
access-list outside extended permit tcp host 64.102.17.71 object-group INSIDE-NET eq ssh 
access-list outside extended permit tcp host 10.86.134.254 host 172.16.10.18 eq https 
access-list outside extended permit tcp host 10.86.134.254 host 172.16.10.18 eq www 
access-list outside extended permit tcp host 10.86.134.254 host 172.16.10.22 eq www 
access-list outside extended permit tcp host 10.86.134.254 host 172.16.10.22 eq https 
access-list outside extended permit udp 172.16.130.0 255.255.255.0 object-group INSIDE-AD object-group DHCP-AD-UDP 
access-list outside extended permit tcp 172.16.130.0 255.255.255.0 object-group INSIDE-AD object-group DHCP-AD-TCP 
access-list outside extended permit udp 172.16.130.0 255.255.255.0 host 172.16.16.50 eq domain 
access-list outside extended permit udp 172.16.130.0 255.255.255.0 host 172.16.10.50 eq domain 
access-list outside extended permit udp 172.16.173.0 255.255.255.0 object-group INSIDE-NET eq sip 
access-list outside extended permit udp 172.16.173.0 255.255.255.0 object-group INSIDE-NET object-group any 
access-list outside extended permit tcp 10.86.143.0 255.255.255.0 host 172.16.10.36 eq 8443 
access-list outside extended permit tcp object-group OUTSIDE-IS8AGENT object-group INSIDE12-CCM eq 2000 
access-list outside extended permit udp 172.16.162.0 255.255.255.0 host 172.16.2.30 eq 1719 
access-list outside extended permit udp 172.16.162.0 255.255.255.0 object-group INSIDE-NET object-group any 
access-list outside extended permit udp 172.16.162.0 255.255.255.0 host 172.16.2.20 eq 1719 
access-list outside extended permit tcp object-group OUTSIDE-GK object-group INSIDE-NET eq sip 
access-list outside extended permit udp object-group OUTSIDE-GK object-group INSIDE-NET eq sip 
access-list outside extended permit udp 172.16.200.0 255.255.255.0 object-group INSIDE-AD eq domain 
access-list outside extended permit udp object-group PHONE-OUT object-group PHONE-IN object-group any 
access-list dmz extended permit udp object-group INSIDE object-group any-GW object-group GATEWAY 
access-list dmz extended permit udp object-group OUTSIDE object-group any-GW object-group GATEWAY 
access-list dmz extended permit icmp any any 
access-list dmz extended permit udp object-group INSIDE object-group GATEWAY eq 1719 
access-list dmz extended permit udp object-group GATEWAY object-group CUOM-SERVER object-group CUOM-UDP 
access-list dmz extended permit tcp object-group GATEWAY object-group CUOM-SERVER object-group CUOM-TCP 
access-list dmz extended permit udp object-group GATEWAY host 172.16.10.35 eq 1719 
access-list dmz extended permit tcp object-group GATEWAY 10.86.143.0 255.255.255.0 eq telnet 
access-list dmz extended permit tcp object-group GATEWAY 10.86.143.0 255.255.255.0 eq 161 
access-list dmz extended permit udp object-group GATEWAY 10.86.143.0 255.255.255.0 eq snmp 
access-list dmz extended permit udp 172.16.2.0 255.255.255.0 172.16.163.0 255.255.255.0 eq 54640 
access-list dmz extended permit udp 172.16.2.0 255.255.255.0 object-group OUTSIDE-CUBE-GW eq 54640 
access-list inside remark *** All ICMP traffic INSIDE  *******
access-list inside remark ***                              *******
access-list inside extended permit icmp any any 
access-list inside extended permit ip object-group INSIDE-NET object-group INSIDE-NET 
access-list inside extended permit ip object-group INSIDE object-group OUTSIDE 
access-list inside extended permit tcp object-group VOICE-MON object-group VOICEMON object-group INSIDE 
access-list inside extended permit udp object-group VOICE-MON object-group VOICEMON-UDP object-group INSIDE 
access-list inside extended permit udp object-group INSIDE host 172.16.2.20 eq 1719 
access-list inside extended permit udp object-group INSIDE object-group OUTSIDE-COMP object-group any 
access-list inside extended permit udp object-group INSIDE object-group OUTSIDE-GK object-group any 
access-list inside extended permit tcp object-group OUTSIDE-GK object-group INSIDE eq 8000 
access-list inside extended permit udp 192.168.0.0 255.255.0.0 host 172.16.16.50 
access-list inside extended permit udp 192.168.0.0 255.255.0.0 host 172.16.10.50 
access-list inside extended permit udp host 172.16.16.50 192.168.0.0 255.255.0.0 
access-list inside extended permit udp host 172.16.10.50 192.168.0.0 255.255.0.0 
access-list inside extended permit ip object-group INSIDE-NET object-group OUTSIDE-GK 
access-list inside extended permit udp host 172.16.10.21 172.16.99.0 255.255.255.0 eq tftp 
access-list inside extended permit tcp object-group INSIDE-AD object-group OUTSIDE-IS216AGENT eq netbios-ssn 
access-list inside extended permit udp object-group INSIDE-AD object-group OUTSIDE-LABCORE eq domain 
access-list inside extended permit udp object-group GATEWAY object-group INSIDE-NET object-group any-GW 
access-list inside extended permit udp object-group INSIDE-NET object-group GATEWAY object-group any-GW 
access-list inside extended permit ip object-group INSIDE-NET host 10.86.143.126 
access-list inside extended permit udp 172.16.10.0 255.255.255.0 172.16.50.0 255.255.255.0 object-group DHCP-AD-UDP 
access-list inside extended permit udp object-group INSIDE object-group CUOM-SERVER object-group CUOM-UDP 
access-list inside extended permit tcp object-group INSIDE object-group CUOM-SERVER object-group CUOM-TCP 
access-list inside extended permit ip object-group INSIDE-NET host 10.86.143.125 
access-list inside extended permit ip object-group INSIDE-NET host 10.86.143.9 
access-list inside extended permit tcp object-group INSIDE-NET 10.86.143.0 255.255.255.0 
access-list inside extended permit udp object-group INSIDE-NET 10.86.143.0 255.255.255.0 
access-list inside extended permit udp any any eq tftp 
access-list inside extended permit udp host 172.16.10.35 host 172.16.2.30 eq 1719 
access-list inside extended permit tcp object-group INSIDE-AD object-group OUTSIDE-COMP object-group DHCP-AD-TCP 
access-list inside extended permit udp object-group INSIDE-CUPS object-group PHONE-OUT object-group CUPS-UDP 
access-list inside extended permit udp 172.16.10.0 255.255.255.0 host 172.24.81.241 eq 1719 
access-list inside extended permit tcp object-group INSIDE-CUPS object-group PHONE-OUT object-group CUPS-TCP 
access-list inside extended permit ip object-group INSIDE-NET object-group OUTSIDE-PROXY 
access-list inside extended permit ip object-group INSIDE-NET object-group REMOVE-ALLOW-ALL 
access-list inside extended permit ip object-group INSIDE-NET object-group NEW-FISHBOWL 
pager lines 25
logging enable
logging list loglist message 711001
logging list loglist message 725001-725014
logging list loglist message 717001-717038
logging buffer-size 1000000
logging monitor notifications
logging buffered loglist
logging trap warnings
logging host outside 10.86.143.36
logging host inside10 172.16.10.100
logging debug-trace
mtu dmz 1500
mtu inside10 1500
mtu inside11 1500
mtu inside12 1500
mtu inside516 1500
mtu inside517 1500
mtu inside518 1500
mtu outside 1500
no failover
icmp permit any dmz
icmp permit any inside10
icmp permit any inside11
icmp permit any inside12
icmp permit any inside516
icmp permit any inside517
icmp permit any inside518
icmp permit any outside
no asdm history enable
arp timeout 14400
access-group dmz in interface dmz
access-group inside in interface inside10
access-group inside in interface inside11
access-group inside in interface inside12
access-group inside in interface inside516
access-group inside in interface inside517
access-group inside in interface inside518
access-group outside in interface outside
!
router ospf 10
 network 0.0.0.0 0.0.0.0 area 0
 log-adj-changes
!
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 12:00:00 h225 1:00:00 mgcp 0:05:00
timeout mgcp-pat 0:05:00 sip 0:30:00 sip_media 0:02:00
timeout sip-invite 0:10:00 sip-disconnect 0:02:00
timeout uauth 0:05:00 absolute
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
service reset no-connection
telnet timeout 20
ssh timeout 5
console timeout 0
!
class-map inspection_default
 match default-inspection-traffic
!
!
policy-map global_policy
 class inspection_default
  inspect dns maximum-length 512 
  inspect ftp 
  inspect h323 h225 
  inspect h323 ras 
  inspect netbios 
  inspect rsh 
  inspect smtp 
  inspect sqlnet 
  inspect sunrpc 
  inspect tftp 
  inspect xdmcp 
!
service-policy global_policy global
prompt hostname context 
Cryptochecksum:d3940dd608a0b86fde08f1048c779f36
: end
