set cli config-output-format set
set cli scripting-mode on
configure
set network interface ethernet ethernet1/1 layer3 ndp-proxy enabled no
set network interface ethernet ethernet1/1 layer3 ip 10.163.2.20/24
set network interface ethernet ethernet1/1 layer3 lldp enable no
set network interface ethernet ethernet1/1 layer3 interface-management-profile NP_IM_INTERNAL
set network interface ethernet ethernet1/1 comment "internal network"
set network interface ethernet ethernet1/2 layer3 ndp-proxy enabled no
set network interface ethernet ethernet1/2 layer3 lldp enable no
set network interface ethernet ethernet1/2 layer3 interface-management-profile NP_IM_EXTERNAL
set network interface ethernet ethernet1/2 layer3 ip 10.163.3.20/24
set network interface ethernet ethernet1/2 comment "external network"
set network profiles monitor-profile default interval 3
set network profiles monitor-profile default threshold 5
set network profiles monitor-profile default action wait-recover
set network profiles interface-management-profile NP_IM_INTERNAL http no
set network profiles interface-management-profile NP_IM_INTERNAL https yes
set network profiles interface-management-profile NP_IM_INTERNAL ssh yes
set network profiles interface-management-profile NP_IM_INTERNAL ping yes
set network profiles interface-management-profile NP_IM_INTERNAL telnet no
set network profiles interface-management-profile NP_IM_EXTERNAL http no
set network profiles interface-management-profile NP_IM_EXTERNAL https no
set network profiles interface-management-profile NP_IM_EXTERNAL ssh yes
set network profiles interface-management-profile NP_IM_EXTERNAL ping yes
set network profiles interface-management-profile NP_IM_EXTERNAL telnet no
set network virtual-router VR_EXTERNAL ecmp algorithm ip-modulo
set network virtual-router VR_EXTERNAL protocol bgp enable no
set network virtual-router VR_EXTERNAL protocol bgp routing-options graceful-restart enable yes
set network virtual-router VR_EXTERNAL protocol rip enable no
set network virtual-router VR_EXTERNAL protocol ospf enable no
set network virtual-router VR_EXTERNAL protocol ospfv3 enable no
set network virtual-router VR_EXTERNAL interface ethernet1/2
set network virtual-router VR_EXTERNAL routing-table ip static-route SR_DEFAULT destination 0.0.0.0/0
set network virtual-router VR_EXTERNAL routing-table ip static-route SR_DEFAULT interface ethernet1/2
set network virtual-router VR_EXTERNAL routing-table ip static-route SR_DEFAULT nexthop ip-address 10.163.3.1
set network virtual-router VR_EXTERNAL routing-table ip static-route SR_172.16.0.0_12 destination 172.16.0.0/12
set network virtual-router VR_EXTERNAL routing-table ip static-route SR_172.16.0.0_12 interface ethernet1/2
set network virtual-router VR_EXTERNAL routing-table ip static-route SR_172.16.0.0_12 nexthop next-vr VR_INTERNAL
set network virtual-router VR_EXTERNAL routing-table ip static-route SR_192.168.0.0_16 destination 192.168.0.0/16
set network virtual-router VR_EXTERNAL routing-table ip static-route SR_192.168.0.0_16 interface ethernet1/2
set network virtual-router VR_EXTERNAL routing-table ip static-route SR_192.168.0.0_16 nexthop next-vr VR_INTERNAL
set network virtual-router VR_EXTERNAL routing-table ip static-route SR_10.0.0.0_8 destination 10.0.0.0/8
set network virtual-router VR_EXTERNAL routing-table ip static-route SR_10.0.0.0_8 interface ethernet1/2
set network virtual-router VR_EXTERNAL routing-table ip static-route SR_10.0.0.0_8 nexthop next-vr VR_INTERNAL
set network virtual-router VR_INTERNAL ecmp algorithm ip-modulo
set network virtual-router VR_INTERNAL protocol bgp enable no
set network virtual-router VR_INTERNAL protocol bgp routing-options graceful-restart enable yes
set network virtual-router VR_INTERNAL protocol rip enable no
set network virtual-router VR_INTERNAL protocol ospf enable no
set network virtual-router VR_INTERNAL protocol ospfv3 enable no
set network virtual-router VR_INTERNAL interface ethernet1/1
set network virtual-router VR_INTERNAL routing-table ip static-route SR_DEFAULT destination 0.0.0.0/0
set network virtual-router VR_INTERNAL routing-table ip static-route SR_DEFAULT interface ethernet1/1
set network virtual-router VR_INTERNAL routing-table ip static-route SR_DEFAULT nexthop ip-address 10.163.2.1
set deviceconfig system type dhcp-client send-hostname yes
set deviceconfig system type dhcp-client send-client-id no
set deviceconfig system type dhcp-client accept-dhcp-hostname no
set deviceconfig system type dhcp-client accept-dhcp-domain no
set deviceconfig system update-server updates.paloaltonetworks.com
set deviceconfig system update-schedule threats recurring weekly day-of-week wednesday
set deviceconfig system update-schedule threats recurring weekly at 01:02
set deviceconfig system update-schedule threats recurring weekly action download-only
set deviceconfig system timezone Canada/Eastern
set deviceconfig system service disable-telnet yes
set deviceconfig system service disable-http yes
set deviceconfig system hostname fwazrcchp02
set deviceconfig system domain gazmet.com
set deviceconfig system ntp-servers primary-ntp-server ntp-server-address timedmz1.gazmet.com
set deviceconfig system ntp-servers primary-ntp-server authentication-type none
set deviceconfig system ntp-servers secondary-ntp-server ntp-server-address timedmz2.gazmet.com
set deviceconfig system ntp-servers secondary-ntp-server authentication-type none
set deviceconfig system dns-setting servers primary 10.68.1.74
set deviceconfig system dns-setting servers secondary 10.16.50.19
set deviceconfig setting config rematch yes
set deviceconfig system panorama local-panorama panorama-server avmtl-panorama-p001.gazmet.com
set deviceconfig setting management hostname-type-in-syslog FQDN
set deviceconfig setting management initcfg type dhcp-client send-hostname yes
set deviceconfig setting management initcfg type dhcp-client send-client-id no
set deviceconfig setting management initcfg type dhcp-client accept-dhcp-hostname no
set deviceconfig setting management initcfg type dhcp-client accept-dhcp-domain no
set deviceconfig setting management initcfg hostname fwazrcchp02
set deviceconfig setting management initcfg username master
set deviceconfig setting management initcfg public-key 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
set mgt-config users master phash $1$hddqkagq$lajwKchF6MOvCbv589RqP.
set mgt-config users master public-key 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
set mgt-config users master permissions role-based superuser yes
set mgt-config password-complexity enabled yes
set mgt-config password-complexity minimum-length 8
exit
set cli scripting-mode off