TWTPCAFW17# sh run : Saved : : Serial Number: FCH22327JPK : Hardware: ASA5525, 8192 MB RAM, CPU Lynnfield 2394 MHz, 1 CPU (4 cores) : ASA Version 9.8(3)29 ! hostname TWTPCAFW17 domain-name DXC.com names no mac-address auto ! interface GigabitEthernet0/0 nameif outside security-level 0 ip address 134.251.78.157 255.255.255.240 standby 134.251.78.158 ! interface GigabitEthernet0/1 nameif inside security-level 100 ip address 134.251.85.227 255.255.255.192 standby 134.251.85.228 ! interface GigabitEthernet0/2 nameif dxc_mgmt security-level 80 ip address 134.251.84.227 255.255.255.192 standby 134.251.84.228 ! interface GigabitEthernet0/3 speed 100 duplex full nameif Int-Sub security-level 0 no ip address ! interface GigabitEthernet0/3.1 vlan 61 nameif RC_SMS security-level 31 ip address 134.251.87.125 255.255.255.224 standby 134.251.87.126 ! interface GigabitEthernet0/3.2 vlan 62 nameif RC_eNavi security-level 32 ip address 134.251.87.237 255.255.255.224 standby 134.251.87.238 ! interface GigabitEthernet0/3.3 vlan 63 nameif RC_eDM-AP security-level 33 ip address 172.30.0.126 255.255.255.128 standby 172.30.0.125 ! interface GigabitEthernet0/4 no nameif no security-level no ip address ! interface GigabitEthernet0/5 no nameif no security-level no ip address ! interface GigabitEthernet0/6 no nameif no security-level no ip address ! interface GigabitEthernet0/7 description LAN/STATE Failover Interface ! interface Management0/0 management-only nameif management security-level 100 ip address 192.168.1.1 255.255.255.0 ! banner motd ****************************************************************************** banner motd This system is restricted to authorized users for official purposes. banner motd User activity is monitored and recorded by system personnel. banner motd Anyone using this network expressly consents to such monitoring and banner motd recording. banner motd BE ADVISED, if possible criminal activity is detected, system records, banner motd along with certain personal information, may be presented banner motd to law enforcement officials. banner motd ****************************************************************************** boot system disk0:/asa983-29-smp-k8.bin ftp mode passive clock timezone CST 8 dns server-group DefaultDNS domain-name DXC.com same-security-traffic permit inter-interface same-security-traffic permit intra-interface object network TRC_eNavi-Web-P01 host 134.251.87.235 object network TRC_eNavi-Web-T01 host 134.251.87.236 object network TRC_eNavi-Mail01 host 134.251.87.227 object network TRC_eNavi-Mail02 host 134.251.87.228 object network TRC_eDM-Mail01 host 134.251.87.241 object network TRC_eDM-Mail02 host 134.251.87.242 object network TRC_eDM-Mail03 host 134.251.87.243 object network TRC_eDM-Mail04 host 134.251.87.244 object network TRC_eDM-Mail05 host 134.251.87.245 object network TRC_eDM-Mail06 host 134.251.87.246 object network TRC_eDM-Mail07 host 134.251.87.247 object network TRC_eDM-Mail08 host 134.251.87.248 object network TRC_eDM-Mail09 host 134.251.87.249 object network TRC_eDM-Mail10 host 134.251.87.250 object network TRC_eDM-Mail11 host 134.251.87.251 object network TRC_eDM-Mail12 host 134.251.87.252 object network DXC_SMS-P01 host 134.251.87.110 object network DXC_SMS-T01 host 134.251.85.163 object network DXC_Wintel-T01 host 134.251.87.99 object network TRC_eNavi_STG01 host 134.251.87.229 object network TRC_eNavi_Real01 host 134.251.87.225 object network TRC_eNavi_Real02 host 134.251.87.226 object network DXC_VPN01 host 134.251.87.119 object network UAT_AP_VM_134.251.86.229 host 134.251.86.229 object network DXC_VPN02 host 134.251.87.120 object network DXC_SAPPOC host 134.251.87.118 object network IP_134.251.87.254 host 134.251.87.254 object-group network grp_Mgmt_NMS network-object host 134.251.80.207 network-object host 134.251.80.52 network-object host 134.251.80.53 network-object host 134.251.80.54 network-object host 134.251.80.8 network-object host 134.251.80.6 network-object host 134.251.80.200 object-group network grp_Office_GNS01 network-object host 134.251.80.52 network-object host 134.251.80.53 network-object host 134.251.80.54 network-object host 134.251.81.105 network-object host 134.251.81.106 network-object host 134.251.81.107 network-object host 134.251.84.13 object-group network DM_INLINE_NETWORK_2 network-object 134.251.78.144 255.255.255.240 network-object 134.251.87.224 255.255.255.224 network-object 134.251.87.96 255.255.255.224 network-object 172.30.0.0 255.255.255.128 network-object 113.21.86.32 255.255.255.248 object-group network DM_INLINE_NETWORK_3 network-object 134.251.78.144 255.255.255.240 network-object 134.251.87.224 255.255.255.224 network-object 134.251.87.96 255.255.255.224 network-object 172.30.0.0 255.255.255.128 object-group service DM_INLINE_TCP_3 tcp port-object eq www port-object eq https object-group network DM_INLINE_NETWORK_4 network-object 134.251.78.144 255.255.255.240 network-object 134.251.87.96 255.255.255.224 object-group network DM_INLINE_NETWORK_5 group-object grp_Mgmt_NMS group-object grp_Office_GNS01 object-group network DM_INLINE_NETWORK_6 network-object 113.21.86.32 255.255.255.248 network-object 134.251.78.144 255.255.255.240 object-group network grp_RC-UAT_AP network-object host 134.251.85.180 network-object host 134.251.85.181 network-object host 134.251.85.182 network-object host 134.251.85.183 object-group network grp_RC-eNavi_Web-Mail network-object host 134.251.87.225 network-object host 134.251.87.226 network-object host 134.251.87.227 network-object host 134.251.87.228 object-group network grp_In_PDPA network-object host 204.104.44.241 network-object host 204.104.44.242 network-object host 204.104.44.243 network-object host 204.104.44.244 network-object host 204.104.44.245 object-group network grp_Mgmt_TNG network-object host 134.251.80.6 network-object host 134.251.80.7 object-group service TCP-CA-TNG tcp port-object range 11501 11504 port-object eq 1721 port-object eq 4105 port-object eq 6668 port-object range 7000 7003 port-object eq 7774 port-object eq 8090 port-object eq 9990 port-object eq pim-auto-rp object-group service UDP-CA-TNG udp port-object eq 4104 port-object eq 6665 port-object eq 7004 port-object eq echo port-object eq pim-auto-rp port-object eq snmp port-object eq snmptrap port-object eq syslog object-group network grp_Office_Wintel network-object 134.251.81.96 255.255.255.224 network-object host 134.251.84.13 object-group service DM_INLINE_TCP_1 tcp port-object eq 445 port-object eq www object-group service DM_INLINE_TCP_2 tcp port-object eq 445 port-object eq www object-group network DM_INLINE_NETWORK_7 network-object 134.251.78.144 255.255.255.240 network-object 134.251.87.96 255.255.255.224 object-group service DM_INLINE_SERVICE_1 service-object ip service-object icmp echo object-group network grp_To_NetworkDevice network-object 134.251.78.144 255.255.255.240 network-object host 134.251.87.123 network-object host 134.251.87.124 object-group service DM_INLINE_TCP_4 tcp port-object eq www port-object eq https object-group network DM_INLINE_NETWORK_1 network-object object TRC_eNavi_Real01 network-object object TRC_eNavi_Real02 object-group network DM_INLINE_NETWORK_8 network-object object TRC_eNavi_Real01 network-object object TRC_eNavi_Real02 object-group network grp_Mgmt_McAfee network-object host 155.61.83.76 network-object host 155.61.83.78 object-group network grp_Mgmt_NMS02-03 network-object host 134.251.80.52 network-object host 134.251.80.53 network-object host 134.251.80.54 object-group network grp_Service_CyberArk network-object host 134.251.84.4 network-object host 134.251.84.5 object-group service TCP_CyberArk-To-Server tcp port-object eq 135 port-object eq 3389 port-object eq 445 port-object eq netbios-ssn object-group service DM_INLINE_TCP_5 tcp port-object eq www port-object eq https object-group service DM_INLINE_TCP_6 tcp port-object eq www port-object eq https object-group service TCP_Internet-SMS tcp port-object eq 7002 port-object eq 7102 port-object range 9600 9601 object-group network grp_Office_MR01 network-object host 134.251.80.206 network-object host 134.251.80.207 network-object host 134.251.81.100 network-object host 134.251.81.101 network-object host 134.251.81.104 network-object host 134.251.84.13 network-object host 134.251.84.14 object-group service TCP_MR01 tcp port-object eq 10081 port-object eq 3389 port-object range 8044 8045 port-object eq ssh object-group service UDP_MR01 udp port-object eq 1161 port-object eq snmp object-group service DM_INLINE_TCP_7 tcp port-object eq 10704 port-object range 10701 10702 object-group service DM_INLINE_TCP_8 tcp port-object eq 3389 port-object eq 8980 object-group service DM_INLINE_TCP_9 tcp port-object eq 1135 port-object eq 2100 object-group service DM_INLINE_TCP_10 tcp port-object range ftp ssh port-object eq 8080 port-object eq https port-object eq sqlnet object-group service DM_INLINE_TCP_11 tcp port-object eq 2401 port-object eq 3389 object-group service DM_INLINE_TCP_12 tcp port-object eq 1433 port-object eq 3389 object-group service TCP_VPN-To-Lab227 tcp port-object eq 3389 port-object eq 8080 port-object eq www port-object eq https port-object eq ssh object-group service TCP_VPN-To-Lab228 tcp port-object range 50000 50001 port-object eq 55000 port-object eq 7001 port-object eq 8005 port-object eq 8009 port-object eq www port-object eq https port-object eq smtp port-object eq ssh object-group service TCP_VPN-To-Lab229 tcp port-object range 50000 50001 port-object eq 55000 port-object eq 7001 port-object eq 8005 port-object eq 8009 port-object eq www port-object eq https port-object eq smtp port-object eq ssh object-group service TCP_VPN-To-Lab230 tcp port-object eq 10080 port-object eq 10443 port-object eq 10880 port-object eq 15000 port-object eq 18080 port-object eq 47893 port-object eq 52479 port-object eq 5353 port-object eq 7001 port-object eq 9080 port-object eq 9157 port-object eq 9443 port-object eq www port-object eq https port-object eq ssh object-group service TCP_VPN-To-Lab231 tcp port-object eq 10389 port-object eq 10636 port-object eq 1414 port-object eq 46727 port-object eq 5353 port-object eq 7001 port-object eq 7080 port-object eq 7443 port-object eq 9157 port-object eq 9443 port-object eq ldap port-object eq ssh object-group service TCP_VPN-To-Lab232 tcp port-object eq 8080 port-object eq 9990 port-object eq www port-object eq https port-object eq ssh object-group network ALL_PUBLIC_IP network-object host 134.251.87.227 network-object host 134.251.87.228 network-object host 134.251.87.235 network-object host 134.251.87.236 network-object host 134.251.87.241 network-object host 134.251.87.242 network-object host 134.251.87.243 network-object host 134.251.87.244 network-object host 134.251.87.245 network-object host 134.251.87.246 network-object host 134.251.87.247 network-object host 134.251.87.248 network-object host 134.251.87.249 network-object host 134.251.87.250 network-object host 134.251.87.251 network-object host 134.251.87.252 object-group network NCCC_UAT_AP_DB network-object host 134.251.84.35 network-object host 134.251.86.227 network-object host 134.251.86.228 object-group service DM_INLINE_TCP_13 tcp port-object eq 1433 port-object eq 3389 object-group service DM_INLINE_TCP_14 tcp port-object eq 1433 port-object range ssh telnet port-object eq 3389 port-object eq 8080 port-object eq 9990 port-object eq www object-group network DM_INLINE_NETWORK_9 network-object host 134.251.86.212 network-object host 134.251.86.213 object-group service DM_INLINE_TCP_15 tcp port-object eq 7070 port-object eq 7093 port-object eq ssh object-group network DM_INLINE_NETWORK_10 network-object 134.251.85.128 255.255.255.192 group-object grp_Mgmt_NMS02-03 object-group network DM_INLINE_NETWORK_11 network-object host 134.251.86.166 network-object host 134.251.86.167 network-object host 134.251.86.195 network-object host 134.251.86.212 network-object host 134.251.86.213 network-object host 134.251.86.214 object-group service DM_INLINE_TCP_16 tcp port-object range 49152 65534 port-object eq 990 port-object eq sqlnet port-object eq ssh object-group service DM_INLINE_TCP_17 tcp port-object eq www port-object eq https object-group network DM_INLINE_NETWORK_12 network-object host 122.147.129.93 network-object host 124.9.11.172 object-group network DM_INLINE_NETWORK_13 network-object host 134.251.87.229 network-object object TRC_eNavi-Web-T01 object-group service DM_INLINE_TCP_18 tcp port-object eq 445 port-object eq netbios-ssn object-group network DM_INLINE_NETWORK_15 network-object 134.251.0.0 255.255.0.0 network-object 192.85.139.0 255.255.255.0 network-object 204.104.44.0 255.255.255.0 object-group service DM_INLINE_TCP_19 tcp port-object eq 8001 port-object eq 8031 object-group service DM_INLINE_TCP_20 tcp port-object eq 50001 port-object eq 7001 port-object eq ssh object-group network DM_INLINE_NETWORK_16 network-object host 134.251.86.227 network-object host 134.251.86.228 object-group service DM_INLINE_TCP_21 tcp port-object range 8002 8003 port-object eq 8080 port-object eq https object-group network DM_INLINE_NETWORK_17 network-object host 134.251.86.231 network-object host 134.251.86.232 network-object host 134.251.86.233 object-group service DM_INLINE_TCP_22 tcp port-object eq 5667 port-object eq 8088 port-object eq 9736 port-object eq ssh object-group network DM_INLINE_NETWORK_18 network-object host 134.251.80.52 network-object host 134.251.80.53 network-object host 134.251.80.54 object-group network DM_INLINE_NETWORK_19 network-object host 134.251.85.130 network-object host 134.251.85.176 object-group network DM_INLINE_NETWORK_20 network-object host 134.251.85.140 network-object host 134.251.85.177 object-group network DM_INLINE_NETWORK_21 network-object host 134.251.85.148 network-object host 134.251.85.184 object-group service DM_INLINE_TCP_23 tcp port-object eq 8001 port-object eq 8011 port-object eq 8021 port-object range 8051 8052 object-group service DM_INLINE_TCP_24 tcp port-object eq 8001 port-object range 8021 8022 object-group service DM_INLINE_TCP_25 tcp port-object eq 8001 port-object range 8031 8032 object-group service DM_INLINE_TCP_26 tcp port-object eq 8001 port-object range 8041 8042 object-group network DM_INLINE_NETWORK_22 network-object host 134.251.85.134 network-object host 134.251.85.165 object-group service DM_INLINE_TCP_27 tcp port-object eq 8001 port-object range 8041 8042 object-group network DM_INLINE_NETWORK_23 network-object host 134.251.87.227 network-object host 134.251.87.228 object-group network DM_INLINE_NETWORK_24 network-object host 124.9.11.189 network-object host 124.9.49.157 object-group service DM_INLINE_TCP_28 tcp port-object eq 30000 port-object eq 5000 port-object eq 8009 port-object eq 8080 port-object eq 8443 port-object eq 8801 port-object eq 8802 port-object eq 8811 port-object eq 8812 port-object eq 8821 port-object eq 8822 port-object eq 8831 port-object eq 8832 port-object eq 8841 port-object eq 8842 port-object eq 8851 port-object eq 8861 port-object eq 8871 port-object eq 8881 port-object eq 8891 port-object eq 8901 port-object eq 9411 port-object eq www port-object eq https object-group network DM_INLINE_NETWORK_25 network-object object DXC_VPN01 network-object object DXC_VPN02 object-group network DM_INLINE_NETWORK_26 network-object host 134.251.87.119 network-object host 134.251.87.120 object-group network DM_INLINE_NETWORK_27 network-object host 134.251.79.182 network-object host 134.251.86.106 network-object host 134.251.86.107 object-group service DM_INLINE_TCP_29 tcp port-object eq www port-object eq https object-group network DM_INLINE_NETWORK_28 network-object host 134.251.80.6 network-object host 134.251.84.13 object-group service DM_INLINE_SERVICE_2 service-object icmp echo service-object tcp destination eq 3299 object-group service DM_INLINE_SERVICE_3 service-object icmp echo-reply service-object tcp destination eq 3299 object-group service TCP-SAP-Client service-object tcp destination eq 1128 service-object tcp destination eq 22491 service-object tcp destination eq 30013 service-object tcp destination eq 30015 service-object tcp destination range 3201 3202 service-object tcp destination eq 3204 service-object tcp destination eq 3299 service-object tcp destination eq 3301 service-object tcp destination eq 3304 service-object tcp destination eq 3602 service-object tcp destination eq 3902 service-object tcp destination eq 3904 service-object tcp destination range 40100 40102 service-object tcp destination eq 40180 service-object tcp destination range 40300 40302 service-object tcp destination eq 40380 service-object tcp destination eq 4300 service-object tcp destination eq 50013 service-object tcp destination eq 50014 service-object tcp destination eq 50101 service-object tcp destination eq 50113 service-object tcp destination eq 50114 service-object tcp destination range 50213 50214 service-object tcp destination eq 50300 service-object tcp destination eq 50304 service-object tcp destination eq 50307 service-object tcp destination eq 50313 service-object tcp destination eq 50314 service-object tcp destination range 50413 50414 service-object tcp destination eq 64983 service-object tcp destination eq 8000 service-object tcp destination eq 8102 service-object tcp destination eq 8104 object-group service DM_INLINE_TCP_30 tcp port-object eq 3299 port-object eq 50101 object-group service TCP_VPN-To-Lab233 tcp port-object eq 3389 port-object eq ssh port-object eq 7001 port-object eq 55000 object-group service TCP_VPN-To-Lab234 tcp port-object range 55001 55003 port-object eq ssh port-object eq 7001 object-group network grp_TRC-Akamai_DDoS network-object 103.5.34.128 255.255.255.192 network-object 104.115.38.0 255.255.255.0 network-object 104.84.150.0 255.255.255.0 network-object 139.175.41.0 255.255.255.0 network-object 139.175.87.0 255.255.255.0 network-object 163.28.5.0 255.255.255.0 network-object 173.223.20.0 255.255.255.0 network-object 184.26.91.0 255.255.255.0 network-object 2.23.5.0 255.255.255.0 network-object 202.144.210.64 255.255.255.192 network-object 203.211.2.0 255.255.255.0 network-object 203.211.4.0 255.255.255.0 network-object 203.66.199.0 255.255.255.0 network-object 23.15.14.0 255.255.255.0 network-object 23.198.11.0 255.255.255.0 network-object 23.209.102.0 255.255.255.0 network-object 23.210.215.0 255.255.255.0 network-object 23.214.88.0 255.255.255.0 network-object 23.218.93.0 255.255.255.0 network-object 23.220.247.0 255.255.255.0 network-object 23.38.109.0 255.255.255.0 network-object 23.43.48.0 255.255.255.0 network-object 23.43.49.0 255.255.255.0 network-object 23.45.14.0 255.255.255.0 network-object 23.47.58.0 255.255.255.0 network-object 92.123.122.0 255.255.255.0 object-group service TCP-CTBC-eLN-APIGW tcp port-object eq ssh port-object eq 8443 port-object eq 1675 port-object eq 2022 port-object eq 2023 port-object eq 9993 port-object eq 8080 object-group service MR_WEB tcp port-object eq 8080 port-object eq 8443 port-object eq 8009 object-group service DM_INLINE_TCP_31 tcp port-object eq 3389 port-object eq www port-object eq https port-object eq sqlnet object-group service DM_INLINE_TCP_32 tcp group-object TCP-CTBC-eLN-APIGW port-object eq 1688 access-list outside_access_in remark NMS ES-Guest test 20190718 access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_1 host 192.46.82.37 host 134.251.87.110 access-list outside_access_in remark 20210729 TRC request to block access-list outside_access_in extended deny ip host 134.102.222.222 any access-list outside_access_in remark 20190612 echp-reply from ouside device and chief WAN IP #019313 access-list outside_access_in extended permit icmp object-group DM_INLINE_NETWORK_6 object-group DM_INLINE_NETWORK_5 echo-reply access-list outside_access_in remark 20190612 echp-reply from ouside device and chief WAN IP #019313 access-list outside_access_in extended permit icmp any any echo-reply access-list outside_access_in remark 20190612 echp-reply from ouside device and chief WAN IP #019313 access-list outside_access_in extended permit icmp any any time-exceeded access-list outside_access_in remark 20190612 echp-reply from ouside device and chief WAN IP #019313 access-list outside_access_in extended permit icmp any any unreachable access-list outside_access_in remark 20190612 echp-reply from ouside device and chief WAN IP #019313 access-list outside_access_in extended permit icmp host 34.205.22.201 any access-list outside_access_in remark 20190612 ITO Network request NTP Services for Outside devices #019313 access-list outside_access_in extended permit udp 134.251.78.144 255.255.255.240 object-group grp_Mgmt_NTP eq ntp access-list outside_access_in remark 20190612 ITO Network request Outside devices send SNMP-Trap #019313 access-list outside_access_in extended permit udp 134.251.78.144 255.255.255.240 object-group grp_Mgmt_NMS eq snmptrap access-list outside_access_in remark 20190612 ITO Network request Outside devices send Syslog #019313 access-list outside_access_in extended permit udp 134.251.78.144 255.255.255.240 object-group grp_Mgmt_NMS02-03 eq syslog access-list outside_access_in remark 20190612 ITO Network request Outside devices send tftp #019313 access-list outside_access_in extended permit udp 134.251.78.144 255.255.255.240 object-group grp_Mgmt_NMS02-03 eq tftp access-list outside_access_in remark 20190612 ITO Network request Outside devices send tacacs #019313 access-list outside_access_in extended permit tcp 134.251.78.144 255.255.255.240 host 134.251.80.51 eq tacacs access-list outside_access_in remark 20190612 ITO Network request Outside devices send send snmptrap to TNG #019313 access-list outside_access_in extended permit udp 134.251.78.144 255.255.255.240 host 134.251.80.6 eq snmptrap access-list outside_access_in remark 20200319 ITO/Chevalier Req for DXC-TW VPN accessing#019810 access-list outside_access_in extended permit udp any object-group DM_INLINE_NETWORK_25 eq 1194 access-list outside_access_in remark 20210719 CR020565 ITO/Jimmy request Time Machien and SAP PCoE POC access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_2 host 169.145.197.110 object DXC_SAPPOC access-list outside_access_in remark 20210728 CR020576 ITO/Jimmy request SAP PCoE POC access-list outside_access_in extended permit tcp any object DXC_SAPPOC object-group DM_INLINE_TCP_30 access-list outside_access_in remark 20140909 ITO/Matt Req for internet access Rakuten Prod. Web#015775 access-list outside_access_in extended permit tcp any object TRC_eNavi-Web-P01 eq www access-list outside_access_in remark 20140909 ITO/Matt Req for internet access Rakuten Prod. Web#015775 access-list outside_access_in extended permit tcp any object TRC_eNavi-Web-P01 eq https access-list outside_access_in remark 20140909 ITO/Matt Req for internet access Rakuten Prod. Web#015775 access-list outside_access_in extended permit tcp any object TRC_eNavi-Web-P01 range 8443 8444 access-list outside_access_in remark 20141225 ITO/Matt Req for internet access Rakuten STG Web#016084 access-list outside_access_in extended permit tcp any object TRC_eNavi-Web-T01 eq www access-list outside_access_in remark 20141225 ITO/Matt Req for internet access Rakuten STG Web#016084 access-list outside_access_in extended permit tcp any object TRC_eNavi-Web-T01 eq https access-list outside_access_in remark 20141225 ITO/Matt Req for internet access Rakuten STG Web#016084 access-list outside_access_in extended permit tcp any object TRC_eNavi-Web-T01 range 8443 8444 access-list outside_access_in remark 20160622 ITO/Matt Req for internet access TRC-eDM for reciever trace mail#017246 access-list outside_access_in extended permit tcp any 134.251.87.240 255.255.255.240 eq smtp access-list outside_access_in remark 20160622 ITO/Matt Req for internet access TRC-eDM for reciever trace mail#017246 access-list outside_access_in extended permit tcp any 134.251.87.240 255.255.255.240 eq www access-list outside_access_in remark 20170913 Sylvia Lu Req for internet access TRC-eDM for eDM click-tracingl #018164(0851) access-list outside_access_in extended permit tcp any 134.251.87.240 255.255.255.240 eq https access-list outside_access_in remark Implicit rule access-list outside_access_in extended permit tcp 134.251.78.144 255.255.255.240 host 134.251.82.15 eq tacacs access-list outside_access_in remark 20211227 SCIC/Lachlan Req to TRC FW for Akamai DDoS Protection #020799(2112-0832) access-list outside_access_in extended permit tcp object-group grp_TRC-Akamai_DDoS object TRC_eNavi-Web-P01 eq https access-list outside_access_in remark Implicit rule access-list outside_access_in extended deny ip any any access-list dxc_mgmt_access_in remark 20220314 CR020884 2203-0141/Lachlan Chen req for Q1 VA SCAN access-list dxc_mgmt_access_in extended permit ip host 134.251.84.20 object-group DM_INLINE_NETWORK_15 access-list dxc_mgmt_access_in remark 20201120 CR020211 for Teanble Scan access-list dxc_mgmt_access_in extended permit tcp host 134.251.84.20 host 134.251.87.110 object-group DM_INLINE_TCP_18 inactive access-list dxc_mgmt_access_in remark NMS monitor 20190715 access-list dxc_mgmt_access_in extended permit tcp host 134.251.80.53 gt 1024 134.251.78.144 255.255.255.240 eq telnet access-list dxc_mgmt_access_in remark GCC req for HP internal vulnerability scan access-list dxc_mgmt_access_in extended permit ip host 134.251.80.53 any inactive access-list dxc_mgmt_access_in remark 20190905 GCC/Jerry Hsu req CyberArk access SMS #019467 access-list dxc_mgmt_access_in extended permit tcp object-group grp_Service_CyberArk host 134.251.87.110 object-group TCP_CyberArk-To-Server access-list dxc_mgmt_access_in remark 20190612 ITO Network request Send ICMP to network devices #019313 access-list dxc_mgmt_access_in extended permit icmp object-group grp_Mgmt_NMS object-group DM_INLINE_NETWORK_2 log default access-list dxc_mgmt_access_in remark 20190612 ITO Network request Send ICMP to network devices #019313 access-list dxc_mgmt_access_in extended permit icmp object-group grp_Office_GNS01 object-group DM_INLINE_NETWORK_4 access-list dxc_mgmt_access_in remark 20190612 ITO Network request Send ICMP to network devices #019313 access-list dxc_mgmt_access_in extended permit icmp 134.251.80.0 255.255.248.0 object-group DM_INLINE_NETWORK_7 access-list dxc_mgmt_access_in remark 20190612 ITO Network request Send SNMP to network devices #019313 access-list dxc_mgmt_access_in extended permit udp object-group grp_Mgmt_NMS object-group DM_INLINE_NETWORK_3 eq snmp access-list dxc_mgmt_access_in remark EDS TNG-Unicenter Service Access for system monitor access-list dxc_mgmt_access_in extended permit tcp object-group grp_Mgmt_TNG 134.251.87.96 255.255.255.224 object-group TCP-CA-TNG access-list dxc_mgmt_access_in remark EDS TNG-Unicenter Service Access for system monitor access-list dxc_mgmt_access_in extended permit udp object-group grp_Mgmt_TNG 134.251.87.96 255.255.255.224 object-group UDP-CA-TNG access-list dxc_mgmt_access_in remark 20190612 ITO Network request GNS access Device #019313 access-list dxc_mgmt_access_in extended permit tcp object-group grp_Office_GNS01 object-group grp_To_NetworkDevice eq ssh access-list dxc_mgmt_access_in remark 20141127 EDS Taiwan System Administrator access(removed ANY #016007) access-list dxc_mgmt_access_in extended permit tcp object-group grp_Office_Wintel 134.251.87.96 255.255.255.224 eq ssh access-list dxc_mgmt_access_in remark 20141127 EDS Taiwan System Administrator access(removed ANY #016007) access-list dxc_mgmt_access_in extended permit tcp object-group grp_Office_Wintel 134.251.87.96 255.255.255.224 eq 3389 access-list dxc_mgmt_access_in remark 20200319 ITO/Chevalier Req for VPN Server management #019810 access-list dxc_mgmt_access_in extended permit tcp object-group grp_Office_MR01 host 134.251.87.119 object-group TCP_MR01 access-list dxc_mgmt_access_in remark 20200319 ITO/Chevalier Req for VPN Server management #019810 access-list dxc_mgmt_access_in extended permit udp object-group grp_Office_MR01 host 134.251.87.119 object-group UDP_MR01 access-list dxc_mgmt_access_in remark 20210701 CR020540 ITO/Jimmy request Time Machien and SAP PCoE POC access-list dxc_mgmt_access_in extended permit tcp object-group grp_Office_MR01 host 134.251.87.118 eq ssh access-list dxc_mgmt_access_in remark 20210701 CR020540 ITO/Jimmy request Time Machien and SAP PCoE POC access-list dxc_mgmt_access_in extended permit tcp object-group grp_Office_MR01 host 134.251.87.118 eq 3389 access-list dxc_mgmt_access_in remark 20210721 CR020571 ITO/Jimmy request Time Machien and SAP PCoE POC SAP-Client access-list dxc_mgmt_access_in extended permit object-group TCP-SAP-Client object-group grp_Office_MR01 host 134.251.87.118 access-list dxc_mgmt_access_in remark 20150417 ESS/Jerry Hsu Req for CCSSM Project from ESM >> HP-TRC-SMS #016327 access-list dxc_mgmt_access_in remark 20181115 GCC/Cena Chung req Wintel to McAfee Anti-virus #018945(1811-1130) access-list dxc_mgmt_access_in extended permit tcp object-group grp_Mgmt_McAfee host 134.251.87.110 eq 8288 access-list dxc_mgmt_access_in remark twtpsfpb001-file >> Any for M-R BSM Log access-list dxc_mgmt_access_in extended permit tcp host 134.251.80.3 host 134.251.87.110 range 8044 8045 access-list dxc_mgmt_access_in remark 20140731 Kyle Req for Rakuten HP-SIEM >>twtpwksmp001 send to Smart Connector(#015698) access-list dxc_mgmt_access_in extended permit tcp host 134.251.80.44 host 134.251.87.110 eq 445 access-list dxc_mgmt_access_in remark twtpsops001-OPSware >> All M-R Server for system management access-list dxc_mgmt_access_in extended permit tcp host 134.251.80.85 host 134.251.87.110 eq 1002 access-list dxc_mgmt_access_in remark GCC req for HP internal vulnerability scan access-list dxc_mgmt_access_in remark #020899 ITO/Kevin Hsu req TRC SRV for OpManager Monitoring access-list dxc_mgmt_access_in extended permit udp host 134.251.82.8 134.251.87.96 255.255.255.224 eq snmp access-list dxc_mgmt_access_in remark 20220323 #020899 ITO/Kevin Hsu req TRC SRV for McAfee access-list dxc_mgmt_access_in extended permit tcp object-group grp_Mgmt_McAfee host 134.251.87.111 eq 8288 access-list dxc_mgmt_access_in extended permit icmp any any access-list RC_SMS_access_in extended permit icmp any any access-list RC_SMS_access_in extended permit icmp any any echo-reply access-list RC_SMS_access_in remark Ticket System access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.84.107 object-group DM_INLINE_TCP_29 access-list RC_SMS_access_in remark 20210517 for NCCC Refresh Project WFH Temporary Policy access-list RC_SMS_access_in extended permit ip object-group DM_INLINE_NETWORK_26 192.168.20.0 255.255.255.0 access-list RC_SMS_access_in remark 20210610 Urgent TS Java 7 issue and add a temporary rule for ILOM access access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 object-group DM_INLINE_NETWORK_27 eq https access-list RC_SMS_access_in remark 20210503 CR020459 ECS Development server access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.80.199 object-group DM_INLINE_TCP_28 access-list RC_SMS_access_in remark 20210319 CR888888 Weblogic UAT VPN access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.85.134 object-group DM_INLINE_TCP_27 access-list RC_SMS_access_in remark 20210315 2103-0129 CR020392 VPN2UAT access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 object-group DM_INLINE_NETWORK_19 object-group DM_INLINE_TCP_23 access-list RC_SMS_access_in remark 20210315 2103-0129 CR020392 VPN2UAT access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 object-group DM_INLINE_NETWORK_20 object-group DM_INLINE_TCP_24 access-list RC_SMS_access_in remark 20210315 2103-0129 CR020392 VPN2UAT access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 object-group DM_INLINE_NETWORK_21 object-group DM_INLINE_TCP_25 access-list RC_SMS_access_in remark 20210315 2103-0129 CR020392 VPN2UAT access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 object-group DM_INLINE_NETWORK_22 object-group DM_INLINE_TCP_26 access-list RC_SMS_access_in remark Network Team Management access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 object-group DM_INLINE_NETWORK_18 eq 3389 access-list RC_SMS_access_in remark 20210305 CR020371 Tmax access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 object-group DM_INLINE_NETWORK_17 object-group DM_INLINE_TCP_22 access-list RC_SMS_access_in remark 20210609 CR020512 Time Machine POC access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.86.234 eq 3389 access-list RC_SMS_access_in remark 20210220 CR020335 NCCC Refresh Proejct access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 object-group DM_INLINE_NETWORK_16 object-group DM_INLINE_TCP_21 access-list RC_SMS_access_in remark 20210202 CR020337 OPENVPN to LAB 2101-0072 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.80.199 object-group DM_INLINE_TCP_20 access-list RC_SMS_access_in remark 20210202 CR020237 OPENVPN TO UAT 2101-0071 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.85.148 object-group DM_INLINE_TCP_19 access-list RC_SMS_access_in remark 20201120 CR020211 for global proxy for Windows Servers access-list RC_SMS_access_in extended permit tcp host 134.251.87.110 object-group DM_INLINE_NETWORK_14 eq 8088 access-list RC_SMS_access_in remark 20201019 CR020155 for NCCC Refresh Project access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.86.229 eq 8080 access-list RC_SMS_access_in remark 20201008 CR020155 for NCCC Refresh Project access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 object-group DM_INLINE_NETWORK_11 object-group DM_INLINE_TCP_16 inactive access-list RC_SMS_access_in remark CR 020050 NCCC Refresh Project Adding Firewall Rule access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 object-group DM_INLINE_NETWORK_9 object-group DM_INLINE_TCP_15 access-list RC_SMS_access_in remark CR 020050 NCCC Refresh Project Adding Firewall Rule access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.86.229 object-group DM_INLINE_TCP_14 access-list RC_SMS_access_in remark CR 020050 NCCC Refresh Project Adding Firewall Rule access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.84.36 object-group DM_INLINE_TCP_13 access-list RC_SMS_access_in remark 20200805 CR020050 for NCCC Refresh Project access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 object-group NCCC_UAT_AP_DB eq 990 access-list RC_SMS_access_in remark 20200805 CR020050 for NCCC Refresh Project access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 object-group NCCC_UAT_AP_DB range 49152 65534 access-list RC_SMS_access_in remark 20210701 CR020540 ITO/Jimmy request Time Machien and SAP PCoE POC access-list RC_SMS_access_in extended permit udp host 134.251.87.118 object-group grp_Mgmt_NTP eq ntp access-list RC_SMS_access_in remark 20210701 CR020540 ITO/Jimmy request Time Machien and SAP PCoE POC access-list RC_SMS_access_in extended permit udp host 134.251.87.118 object-group grp_Mgmt_DNS eq domain access-list RC_SMS_access_in remark 20210701 CR020540 ITO/Jimmy request Time Machien and SAP PCoE POC access-list RC_SMS_access_in extended permit tcp host 134.251.87.118 object-group grp_Mgmt_Mail eq smtp access-list RC_SMS_access_in remark 20210701 CR020540 ITO/Jimmy request Time Machien and SAP PCoE POC access-list RC_SMS_access_in extended permit tcp host 134.251.87.118 object-group grp_Mgmt_Proxy eq 8080 access-list RC_SMS_access_in remark 20210719 CR020565 ITO/Jimmy request Time Machien and SAP PCoE POC access-list RC_SMS_access_in extended permit object-group DM_INLINE_SERVICE_3 host 134.251.87.118 host 169.145.197.110 access-list RC_SMS_access_in remark NTP Service for system administration access-list RC_SMS_access_in extended permit udp 134.251.87.96 255.255.255.224 object-group grp_Mgmt_NTP eq ntp access-list RC_SMS_access_in remark 20190612 ITO Network request NW devices send SNMP-Trap #019313 access-list RC_SMS_access_in extended permit udp 134.251.87.96 255.255.255.224 object-group grp_Mgmt_NMS eq snmptrap access-list RC_SMS_access_in remark 20190612 ITO Network request Outside devices send Syslog #019313 access-list RC_SMS_access_in extended permit udp 134.251.87.96 255.255.255.224 object-group grp_Mgmt_NMS02-03 eq syslog access-list RC_SMS_access_in remark 20190612 ITO Network request Outside devices send tftp #019313 access-list RC_SMS_access_in extended permit udp 134.251.87.96 255.255.255.224 object-group grp_Mgmt_NMS02-03 eq tftp access-list RC_SMS_access_in remark 20190612 ITO Network request Outside devices send tacacs #019313 access-list RC_SMS_access_in extended permit tcp 134.251.87.96 255.255.255.224 host 134.251.80.51 eq tacacs access-list RC_SMS_access_in remark 20120910 ITO/Andy Liu req send Mail Service #013740 access-list RC_SMS_access_in extended permit tcp 134.251.87.96 255.255.255.224 object-group grp_Mgmt_Mail eq smtp access-list RC_SMS_access_in remark 20120910 ITO/Andy Liu req DNS server #013740 access-list RC_SMS_access_in extended permit udp 134.251.87.96 255.255.255.224 object-group grp_Mgmt_DNS eq domain access-list RC_SMS_access_in remark ITO CA-TNG Service Required access-list RC_SMS_access_in extended permit tcp 134.251.87.96 255.255.255.224 object-group grp_Mgmt_TNG object-group TCP-CA-TNG access-list RC_SMS_access_in remark ITO CA-TNG Service Required access-list RC_SMS_access_in extended permit udp 134.251.87.96 255.255.255.224 object-group grp_Mgmt_TNG object-group UDP-CA-TNG access-list RC_SMS_access_in remark 20101216 ITO/Jimmy EDS Global OPSware Management Service access-list RC_SMS_access_in extended permit tcp 134.251.87.96 255.255.255.224 host 134.251.80.85 eq 3001 access-list RC_SMS_access_in remark 20121204 ITO/Andy Liu req to HP SA Proxy GW (DDMI) #016039 access-list RC_SMS_access_in extended permit tcp 134.251.87.96 255.255.255.224 host 134.251.80.85 eq 3466 access-list RC_SMS_access_in remark 20181115 GCC/Cena Chung req Wintel to McAfee Anti-virus #018945(1811-1130) access-list RC_SMS_access_in extended permit tcp host 134.251.87.110 object-group grp_Mgmt_McAfee eq https access-list RC_SMS_access_in remark 20181115 GCC/Cena Chung req Wintel to McAfee Anti-virus #018945(1811-1130) access-list RC_SMS_access_in extended permit tcp host 134.251.87.110 object-group grp_Mgmt_McAfee eq 8280 access-list RC_SMS_access_in remark 20150416 ESS/Jerry Hsu req From HP-TRC-SMS>>ESM for CCSSM Project #016327 access-list RC_SMS_access_in remark 20141202 ITO/Andy Liu Req for security log to triple-wire server via xcom#016039 access-list RC_SMS_access_in extended permit tcp host 134.251.87.110 host 134.251.80.3 eq 8044 access-list RC_SMS_access_in remark 20200319 ITO/Chevalier Req for VPN Server to Terminal #018910 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 object-group DM_INLINE_NETWORK_28 eq 3389 access-list RC_SMS_access_in remark 20200319 ITO/Chevalier Req for VPN Server to Terminal #018910 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.84.14 eq 3389 access-list RC_SMS_access_in remark 20200410 Apps/Jennifer Jih Req for VPN Server to Terminal #019855 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.84.12 eq 3389 access-list RC_SMS_access_in remark 20200401 Apps/Hannibal Req for VPN Server to UAT #019839 access-list RC_SMS_access_in extended permit ip host 134.251.87.119 object-group DM_INLINE_NETWORK_10 access-list RC_SMS_access_in remark 20200401 Apps/Hannibal Req for VPN Server to Starteam #019839 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.80.46 object-group DM_INLINE_TCP_7 access-list RC_SMS_access_in remark 20200401 Apps/Hannibal Req for VPN Server to ServiceDesk #019839 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.80.11 object-group DM_INLINE_TCP_9 access-list RC_SMS_access_in remark 20200401 Apps/Hannibal Req for VPN Server to Archiva - ICCS Lib #019839 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.80.20 object-group DM_INLINE_TCP_8 access-list RC_SMS_access_in remark 20200410 Apps/Jennifer Jih Req for VPN Server to testing server #019855 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.80.194 object-group DM_INLINE_TCP_10 access-list RC_SMS_access_in remark 20200415 Apps/Hannibal Req for VPN Server to DXC-TCB SIT #019864 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.80.227 object-group TCP_VPN-To-Lab227 access-list RC_SMS_access_in remark 20200415 Apps/Hannibal Req for VPN Server to DXC-TCB SIT #019864 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.80.228 object-group TCP_VPN-To-Lab228 access-list RC_SMS_access_in remark 20200415 Apps/Hannibal Req for VPN Server to DXC-TCB SIT #019864 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.80.229 object-group TCP_VPN-To-Lab229 access-list RC_SMS_access_in remark 20200415 Apps/Hannibal Req for VPN Server to DXC-TCB SIT #019864 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.80.230 object-group TCP_VPN-To-Lab230 access-list RC_SMS_access_in remark 20200415 Apps/Hannibal Req for VPN Server to DXC-TCB SIT #019864 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.80.231 object-group TCP_VPN-To-Lab231 access-list RC_SMS_access_in remark 20200415 Apps/Hannibal Req for VPN Server to DXC-TCB SIT #019864 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.80.232 object-group TCP_VPN-To-Lab232 access-list RC_SMS_access_in remark 20200401 Apps/Hannibal Req for VPN Server to Simluator #019839 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.81.79 eq 3389 access-list RC_SMS_access_in remark 20200410 Apps/Jennifer Jih Req for VPN Server to testing server #019855 access-list RC_SMS_access_in remark 20200410 Apps/Jennifer Jih Req for VPN Server to testing SQL server #019855 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.83.118 object-group DM_INLINE_TCP_12 access-list RC_SMS_access_in remark 20141009 ITO/Matt Req HP-RC-Wintel-SMS > SFTP via XCOM #015872 access-list RC_SMS_access_in extended permit tcp host 134.251.87.110 host 204.104.44.21 eq 8045 access-list RC_SMS_access_in remark 20141009 ITO/Matt Req HP-RC-Wintel-SMS > Internet SMS #015872 access-list RC_SMS_access_in extended permit tcp host 134.251.87.110 host 211.72.227.195 range 9600 9601 access-list RC_SMS_access_in remark 20141009 ITO/Matt Req HP-RC-Wintel-SMS > Internet SMS #015872 access-list RC_SMS_access_in extended permit tcp host 134.251.87.110 host 211.72.227.195 eq 7002 access-list RC_SMS_access_in remark 20141009 ITO/Matt Req HP-RC-Wintel-SMS > Internet SMS #015872 access-list RC_SMS_access_in extended permit tcp host 134.251.87.110 host 211.72.227.195 eq 7102 access-list RC_SMS_access_in remark 20170622 Apps/Freddie Req HP-RC-Wintel-SMS > Internet SMS #018020(1706-0619) access-list RC_SMS_access_in extended permit tcp host 134.251.87.110 host 60.250.14.67 range 9600 9601 access-list RC_SMS_access_in remark 20170622 Apps/Freddie Req HP-RC-Wintel-SMS > Internet SMS #018020(1706-0619) access-list RC_SMS_access_in extended permit tcp host 134.251.87.110 host 60.250.14.67 eq 7002 access-list RC_SMS_access_in remark 20170622 Apps/Freddie Req HP-RC-Wintel-SMS > Internet SMS #018020(1706-0619) access-list RC_SMS_access_in extended permit tcp host 134.251.87.110 host 60.250.14.67 eq 7102 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.84.35 eq ssh access-list RC_SMS_access_in remark 20200804 CR020050 for NCCC Refresh Project access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 object-group NCCC_UAT_AP_DB eq ssh access-list RC_SMS_access_in remark 20200805 CR020050 for NCCC Refresh Project access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.84.35 eq sqlnet access-list RC_SMS_access_in remark 20200821 CR020050 for NCCC Refresh Project access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.83.71 eq 2401 access-list RC_SMS_access_in remark 20200821 CR020050 for NCCC Refresh Project access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.83.71 eq 3389 access-list RC_SMS_access_in remark 20200930 CR020090 for NCCC Refresh Project access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.86.228 range 7001 7002 access-list RC_SMS_access_in remark 20210811 CR020592 Jennifer Jih LOCAL VPN->Old UAT for Redis access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.85.175 eq 6379 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.80.233 eq 1500 access-list RC_SMS_access_in remark 20210906(2109-0528 TCB/MEGA project for OpenVPN connection: DXC_HSM) access-list RC_SMS_access_in remark 20210906(2109-0528 TCB/MEGA project for OpenVPN connection: MEGA) access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.80.235 object-group TCP_VPN-To-Lab233 access-list RC_SMS_access_in remark 20210906(2109-0528 TCB/MEGA project for OpenVPN connection: MEGA) access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.80.236 object-group TCP_VPN-To-Lab234 access-list RC_SMS_access_in remark 20210906(2109-0528 TCB/MEGA project for OpenVPN connection: MEGA_DEV) access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.80.237 object-group TCP_VPN-To-Lab234 access-list RC_SMS_access_in remark 20210906(2109-0528 TCB/MEGA project for OpenVPN connection: MEGA_SIT) access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.80.238 object-group TCP_VPN-To-Lab234 access-list RC_SMS_access_in remark 20210906(2109-0528 TCB/MEGA project for OpenVPN connection: MEGA_UAT) access-list RC_SMS_access_in extended permit tcp host 134.251.87.118 host 155.56.96.48 eq https log access-list RC_SMS_access_in remark 20210929 requested by Jimmy and will post-send request access-list RC_SMS_access_in extended permit tcp host 134.251.87.120 host 192.168.13.142 eq https access-list RC_SMS_access_in remark 20211020 DXC 9F 172.25.90.20 NCCC for testing WEB mail server#020701(2110-0629) access-list RC_SMS_access_in remark #2112-0825 Network device to ISE SRV tacacs+ access-list RC_SMS_access_in extended permit tcp 134.251.87.96 255.255.255.224 host 134.251.82.15 eq tacacs access-list RC_SMS_access_in remark 20220210 APPS/CTBC/Jason Chien req Open VPN -> eLoan UAT API GW #020844(2202-0084) access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.83.151 object-group TCP-CTBC-eLN-APIGW access-list RC_SMS_access_in remark 20220210 APPS/CTBC/Jason Chien req Open VPN -> eLoan UAT DB #020844(2202-0084) access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.83.149 eq 3389 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.83.149 eq 8433 access-list RC_SMS_access_in remark 20220307 APPS/CTBC/Jason Chien req Open VPN -> eLoan UAT AP #020877(2203-0135) access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.83.151 eq 1688 access-list RC_SMS_access_in remark 20220315 NCCC/Jennifer Jih req Open VPN -> NCCC Test #020884(2203-0136) access-list RC_SMS_access_in extended permit tcp host 134.251.87.120 host 192.168.20.219 eq ssh access-list RC_SMS_access_in remark 20220315 NCCC/Jennifer Jih req Open VPN -> NCCC Test #020884(2203-0136) access-list RC_SMS_access_in extended permit tcp host 134.251.87.120 host 192.168.20.220 eq ssh access-list RC_SMS_access_in remark #020899 ITO/Kevin Hsu req TRC SRV for OpManager Monitoring access-list RC_SMS_access_in extended permit udp 134.251.87.96 255.255.255.224 host 134.251.82.8 range snmp snmptrap access-list RC_SMS_access_in remark #020899 ITO/Kevin Hsu req TRC SRV for XCOM access-list RC_SMS_access_in extended permit tcp host 134.251.87.111 host 134.251.80.3 range 8044 8045 access-list RC_SMS_access_in remark #020899 ITO/Kevin Hsu req TRC SRV for McAfee access-list RC_SMS_access_in extended permit tcp host 134.251.87.111 object-group grp_Mgmt_McAfee eq https access-list RC_SMS_access_in remark #020899 ITO/Kevin Hsu req TRC SRV for McAfee access-list RC_SMS_access_in extended permit tcp host 134.251.87.111 object-group grp_Mgmt_McAfee eq 8280 access-list RC_SMS_access_in remark #020899 ITO/Kevin Hsu req TRC SRV for Mail Srv access-list RC_SMS_access_in extended permit tcp host 134.251.87.111 object-group grp_Mgmt_Mail eq smtp access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.83.147 eq ssh access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.83.148 eq ssh access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.83.147 object-group MR_WEB access-list RC_SMS_access_in remark 20220415 ITO/Kevin Hsu req for openVPN to Experian jump Station(192.168.26.13) no CR yet access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 192.168.26.13 eq 3389 access-list RC_SMS_access_in remark 20220426 ITO/Jason req for eLOAN API GW(SIT) #020955 (2204-0273) access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.83.152 object-group DM_INLINE_TCP_32 access-list RC_SMS_access_in remark 20220426 ITO/Jimmy req for JAVA training 20220419 CR020935(2204-0250) #020935 access-list RC_SMS_access_in extended permit tcp host 134.251.87.119 host 134.251.86.231 object-group DM_INLINE_TCP_31 access-list RC_eNavi_access_in extended permit icmp any any access-list RC_eNavi_access_in extended permit icmp any any echo-reply access-list RC_eNavi_access_in remark CR020221 for TRC SFTP access-list RC_eNavi_access_in extended permit tcp object-group DM_INLINE_NETWORK_13 object-group DM_INLINE_NETWORK_12 eq ssh access-list RC_eNavi_access_in remark Allow ICMP to Any (Including Internet and HP intranet (Management)) access-list RC_eNavi_access_in extended permit icmp 134.251.87.224 255.255.255.240 any access-list RC_eNavi_access_in remark 20140909 ITO/Matt req for Rakuten-Web-DMZ > RC-Mang-Srv01Zabbix agent #015775 access-list RC_eNavi_access_in extended permit tcp 134.251.87.224 255.255.255.240 host 134.251.86.133 eq 10051 access-list RC_eNavi_access_in remark 20141111 ITO/Matt req for Rakuten-Web-DMZ > RC-Mang-Srv01Zabbix agent #015969 access-list RC_eNavi_access_in extended permit udp 134.251.87.224 255.255.255.240 host 134.251.86.133 eq ntp access-list RC_eNavi_access_in remark 20141111 ITO/Matt req for Rakuten-Web-DMZ > RC-Mang-Srv01Zabbix agent #015969 access-list RC_eNavi_access_in extended permit udp 134.251.87.224 255.255.255.240 host 134.251.86.133 eq snmptrap access-list RC_eNavi_access_in remark 20140909 ITO/Matt req for Rakuten-Web-DMZ > RC-Mang-Srv02 Zabbix agent #015775 access-list RC_eNavi_access_in extended permit tcp 134.251.87.224 255.255.255.240 host 134.251.86.134 eq 10051 access-list RC_eNavi_access_in remark 20141111 ITO/Matt req for Rakuten-Web-DMZ > RC-Mang-Srv02 Zabbix agent #015969 access-list RC_eNavi_access_in extended permit udp 134.251.87.224 255.255.255.240 host 134.251.86.134 eq ntp access-list RC_eNavi_access_in remark 20141111 ITO/Matt req for Rakuten-Web-DMZ > RC-Mang-Srv02 Zabbix agent #015969 access-list RC_eNavi_access_in extended permit udp 134.251.87.224 255.255.255.240 host 134.251.86.134 eq snmptrap access-list RC_eNavi_access_in remark 20140909 ITO/Matt req for Rakuten-Web-DMZ > RC-UAT-Mang Zabbix agent #015775 access-list RC_eNavi_access_in extended permit tcp 134.251.87.224 255.255.255.224 host 134.251.85.182 eq 10051 access-list RC_eNavi_access_in remark 20141111 ITO/Matt req for Rakuten-Web-DMZ > RC-UAT-Mang Zabbix agent #015969 access-list RC_eNavi_access_in extended permit udp 134.251.87.224 255.255.255.224 host 134.251.85.182 eq ntp access-list RC_eNavi_access_in remark 20141111 ITO/Matt req for Rakuten-Web-DMZ > RC-UAT-Mang Zabbix agent #015969 access-list RC_eNavi_access_in extended permit udp 134.251.87.224 255.255.255.224 host 134.251.85.182 eq snmptrap access-list RC_eNavi_access_in remark [20160622 ITO/Matt req eNavi-Web(Agent) > Tripwire server #017453(1167)] access-list RC_eNavi_access_in extended permit tcp 134.251.87.224 255.255.255.224 host 172.30.0.11 eq 9898 access-list RC_eNavi_access_in remark [20160622 ITO/Matt req eNavi-Web(Agent) > Tripwire server #017453(1167)] access-list RC_eNavi_access_in extended permit tcp 134.251.87.224 255.255.255.224 host 172.30.0.11 eq 8080 access-list RC_eNavi_access_in remark [20160622 ITO/Matt req TRC-F5(Agent) > Tripwire server #017453(1167)] access-list RC_eNavi_access_in extended permit tcp host 134.251.87.231 host 172.30.0.11 range ssh telnet access-list RC_eNavi_access_in remark [20160622 ITO/Matt req TRC-F5(Agent) > Tripwire server #017453(1167)] access-list RC_eNavi_access_in extended permit tcp host 134.251.87.232 host 172.30.0.11 range ssh telnet access-list RC_eNavi_access_in remark 20140806 ABS/Kevin Lin req for Rakuten-Web01 > Rakuten-DMZ #015698(1408-1023) access-list RC_eNavi_access_in extended permit tcp host 134.251.87.225 134.251.86.128 255.255.255.224 range 8000 9000 access-list RC_eNavi_access_in remark 20140806 ABS/Kevin Lin req for Rakuten-Web02 > Rakuten-DMZ #015698(1408-1023) access-list RC_eNavi_access_in extended permit tcp host 134.251.87.226 134.251.86.128 255.255.255.224 range 8000 9000 access-list RC_eNavi_access_in remark 20140806 ABS/Kevin Lin req for Rakuten-STG-Web > Rakuten-UAT-AP #015698(1408-1023) access-list RC_eNavi_access_in extended permit tcp host 134.251.87.229 object-group grp_RC-UAT_AP range 8000 9000 access-list RC_eNavi_access_in remark 20140818 ITO/Matt req for Rakuten-Web-Mail > Pro. Proxy redirect #015713 access-list RC_eNavi_access_in extended permit tcp object-group grp_RC-eNavi_Web-Mail host 134.251.86.133 range 9000 9999 access-list RC_eNavi_access_in remark 20140818 ITO/Matt req for Rakuten-Web-Mail > Pro. Proxy redirect #015713 access-list RC_eNavi_access_in extended permit tcp object-group grp_RC-eNavi_Web-Mail host 134.251.86.134 range 9000 9999 access-list RC_eNavi_access_in remark 20140818 ITO/Matt req for Rakuten STG Proxy redirect #015713 access-list RC_eNavi_access_in extended permit tcp host 134.251.87.229 host 134.251.85.182 range 9000 9999 access-list RC_eNavi_access_in remark 20190807 ABS/Jin-Huei Wang req TRC-eNavi-Web >> NCCC Portal for new card verifying #019418 access-list RC_eNavi_access_in extended permit tcp object-group DM_INLINE_NETWORK_8 host 61.220.34.58 eq https access-list RC_eNavi_access_in remark 20190807 ABS/Jin-Huei Wang req TRC-eNavi-Web-STG >> NCCC Portal for new card verifying #019418 access-list RC_eNavi_access_in extended permit tcp object TRC_eNavi_STG01 host 61.220.34.58 eq https access-list RC_eNavi_access_in remark 20190807 ABS/Jin-Huei Wang req TRC-eNavi-server send SMS #019418 access-list RC_eNavi_access_in extended permit tcp object-group DM_INLINE_NETWORK_1 host 61.67.130.121 object-group DM_INLINE_TCP_3 access-list RC_eNavi_access_in remark 20190807 ABS/Jin-Huei Wang req TRC-eNavi-STG send SMS #019418 access-list RC_eNavi_access_in extended permit tcp object TRC_eNavi_STG01 host 61.67.130.121 object-group DM_INLINE_TCP_4 access-list RC_eNavi_access_in remark 20140909 ITO/Matt req Rakuten-mail01 >> Internet email service#015775 access-list RC_eNavi_access_in extended permit tcp host 134.251.87.227 any eq smtp access-list RC_eNavi_access_in remark 20140909 ITO/Matt req Rakuten-mail02 >> Internet email service#015775 access-list RC_eNavi_access_in extended permit tcp host 134.251.87.228 any eq smtp access-list RC_eNavi_access_in remark 20160622 ITO/Matt req TRC-eDM >> Internet email service#017246 access-list RC_eNavi_access_in extended permit tcp 134.251.87.240 255.255.255.240 any eq smtp access-list RC_eNavi_access_in remark 20160622 ITO/Matt req TRC-eDM >> Internet DNS#017246 access-list RC_eNavi_access_in extended permit udp 134.251.87.240 255.255.255.240 any eq domain access-list RC_eNavi_access_in remark 20140922 ITO/Matt req Rakuten-mail01 >> Internet email service#015807 access-list RC_eNavi_access_in remark 20140922 ITO/Matt req Rakuten-mail02 >> Internet email service#015807 access-list RC_eNavi_access_in extended permit tcp host 134.251.87.228 any eq www access-list RC_eNavi_access_in remark 20140922 ITO/Matt req Rakuten-mail01 >> Internet email service#015807 access-list RC_eNavi_access_in extended permit tcp host 134.251.87.227 any eq https access-list RC_eNavi_access_in remark 20140922 ITO/Matt req Rakuten-mail02 >> Internet email service#015807 access-list RC_eNavi_access_in extended permit tcp host 134.251.87.228 any eq https access-list RC_eNavi_access_in remark 20140909 ITO/Matt req Rakuten-mail01 >> Internet DNS service#015775 access-list RC_eNavi_access_in extended permit udp host 134.251.87.227 any eq domain access-list RC_eNavi_access_in remark 20140909 ITO/Matt req Rakuten-mail02 >> Internet DNS service#015775 access-list RC_eNavi_access_in extended permit udp host 134.251.87.228 any eq domain access-list RC_eNavi_access_in remark 20210429 TRC and RICB Data Transfer access-list RC_eNavi_access_in extended permit tcp object-group DM_INLINE_NETWORK_23 object-group DM_INLINE_NETWORK_24 eq ssh access-list RC_eNavi_access_in extended permit tcp object-group ALL_PUBLIC_IP host 210.61.215.21 eq https access-list RC_eNavi_access_in extended permit tcp object-group ALL_PUBLIC_IP host 219.87.3.141 eq https access-list RC_eNavi_access_in extended permit tcp object-group ALL_PUBLIC_IP host 210.61.215.21 eq 38182 access-list RC_eNavi_access_in extended permit tcp object-group ALL_PUBLIC_IP host 219.87.3.141 eq 38182 access-list RC_eNavi_access_in extended permit tcp object-group ALL_PUBLIC_IP host 210.61.215.21 eq www access-list RC_eNavi_access_in extended permit tcp object-group ALL_PUBLIC_IP host 219.87.3.141 eq www access-list RC_eNavi_access_in extended permit tcp host 134.251.87.227 any eq www access-list RC_eNavi_access_in extended permit tcp host 134.251.87.229 any eq https access-list RC_eNavi_access_in remark 20220111 #020816(2201-0004) ABS/Ma Lihjiun req TRC Connect to 60.251.36.134 via proxy TSWWEN1101 access-list RC_eNavi_access_in extended permit tcp host 134.251.87.229 host 60.251.36.134 eq 8002 access-list RC_eNavi_access_in extended permit tcp host 134.251.87.229 host 60.251.36.134 eq 8102 access-list RC_eNavi_access_in remark Implicit rule access-list RC_eNavi_access_in extended deny ip any any access-list RC_eDM-AP_access_in extended permit icmp any any access-list RC_eDM-AP_access_in extended permit icmp any any echo-reply access-list RC_eDM-AP_access_in remark 20160622 ITO/Matt req for Rakuten-eDM AP&DB > RC-Mang-Srv01Zabbix agent #017246 access-list RC_eDM-AP_access_in extended permit tcp 172.30.0.0 255.255.255.128 host 134.251.86.133 eq 10051 access-list RC_eDM-AP_access_in remark 20160622 ITO/Matt req for Rakuten-eDM AP&DB > RC-Mang-Srv01Zabbix agent #017246 access-list RC_eDM-AP_access_in extended permit icmp 172.30.0.0 255.255.255.128 any access-list RC_eDM-AP_access_in remark 20160622 ITO/Matt req for Rakuten-eDM AP&DB > RC-Mang-Srv01for NTP #017246 access-list RC_eDM-AP_access_in extended permit udp 172.30.0.0 255.255.255.128 host 134.251.86.133 eq ntp access-list RC_eDM-AP_access_in remark 20160622 ITO/Matt req for Rakuten-eDM AP&DB > RC-Mang-Srv01for snmptrap #017246 access-list RC_eDM-AP_access_in extended permit udp 172.30.0.0 255.255.255.128 host 134.251.86.133 eq snmptrap access-list RC_eDM-AP_access_in remark 20160622 ITO/Matt req for Rakuten-eDM AP&DB > RC-Mang-Srv02 Zabbix agent #017246 access-list RC_eDM-AP_access_in extended permit tcp 172.30.0.0 255.255.255.128 host 134.251.86.134 eq 10051 access-list RC_eDM-AP_access_in remark 20160622 ITO/Matt req for Rakuten-eDM AP&DB > RC-Mang-Srv02 for NTP #017246 access-list RC_eDM-AP_access_in extended permit udp 172.30.0.0 255.255.255.128 host 134.251.86.134 eq ntp access-list RC_eDM-AP_access_in remark 20160622 ITO/Matt req for Rakuten-eDM AP&DB > RC-Mang-Srv02 for snmptrap #017246 access-list RC_eDM-AP_access_in extended permit udp 172.30.0.0 255.255.255.128 host 134.251.86.134 eq snmptrap access-list RC_eDM-AP_access_in remark 20160622 ITO/Matt req for Rakuten-eDM AP&DB > RC-Mang-UAT Zabbix agent #017246 access-list RC_eDM-AP_access_in extended permit tcp 172.30.0.0 255.255.255.128 host 134.251.85.182 eq 10051 access-list RC_eDM-AP_access_in remark 20160622 ITO/Matt req for Rakuten-eDM AP&DB > RC-Mang-UAT for NTP #017246 access-list RC_eDM-AP_access_in extended permit udp 172.30.0.0 255.255.255.128 host 134.251.85.182 eq ntp access-list RC_eDM-AP_access_in remark 20160622 ITO/Matt req for Rakuten-eDM AP&DB > RC-Mang-UAT for snmptrap #017246 access-list RC_eDM-AP_access_in extended permit udp 172.30.0.0 255.255.255.128 host 134.251.85.182 eq snmptrap access-list RC_eDM-AP_access_in remark 20160930 ITO/Matt req TRC eDM to NAS for file sharing #017453(1167) access-list RC_eDM-AP_access_in extended permit tcp 172.30.0.0 255.255.255.128 host 134.251.86.137 eq 445 access-list RC_eDM-AP_access_in remark 20170207 ITO/Matt req TRC eDM > eNavi for sending internal alert mail #017728 access-list RC_eDM-AP_access_in extended permit tcp 172.30.0.0 255.255.255.128 134.251.87.224 255.255.255.224 eq smtp access-list RC_eDM-AP_access_in remark 20160622 ITO/Matt req TRC Tripwire server > eNavi(Agent) #017453(1167) access-list RC_eDM-AP_access_in extended permit tcp host 172.30.0.11 134.251.86.128 255.255.255.224 eq 9898 access-list RC_eDM-AP_access_in remark 20160622 ITO/Matt req TRC Tripwire server > eNavi(Agent) #017453(1167) access-list RC_eDM-AP_access_in extended permit tcp host 172.30.0.11 134.251.86.128 255.255.255.224 eq 8080 access-list RC_eDM-AP_access_in remark 20160622 ITO/Matt req TRC Tripwire server > eNavi-Web(Agent) #017453(1167) access-list RC_eDM-AP_access_in extended permit tcp host 172.30.0.11 134.251.87.224 255.255.255.224 eq 9898 access-list RC_eDM-AP_access_in remark 20160622 ITO/Matt req TRC Tripwire server > eNavi-Web(Agent) #017453(1167) access-list RC_eDM-AP_access_in extended permit tcp host 172.30.0.11 134.251.87.224 255.255.255.224 eq 8080 access-list RC_eDM-AP_access_in remark 20160622 ITO/Matt req TRC Tripwire server > f5 #017453(1167) access-list RC_eDM-AP_access_in extended permit tcp host 172.30.0.11 host 134.251.87.231 range ssh telnet access-list RC_eDM-AP_access_in remark 20160622 ITO/Matt req TRC Tripwire server > f5 #017453(1167) access-list RC_eDM-AP_access_in extended permit tcp host 172.30.0.11 host 134.251.87.232 range ssh telnet access-list RC_eDM-AP_access_in remark Implicit rule access-list RC_eDM-AP_access_in extended deny ip any any access-list inside_access_in extended permit icmp any any access-list inside_access_in extended permit icmp any any echo-reply access-list inside_access_in remark 20201016 CR020155 for NCCC Refresh Project access-list inside_access_in extended permit tcp host 134.251.86.229 host 60.250.14.104 object-group DM_INLINE_TCP_17 access-list inside_access_in remark 20201016 CR020155 for NCCC Refresh Project access-list inside_access_in extended permit tcp host 134.251.86.229 host 211.72.227.230 eq https access-list inside_access_in remark 20141009 ITO/Matt req PDPA room caccessing HP-RC-Wintel-SMS via RDP #015872 access-list inside_access_in extended permit tcp object-group grp_In_PDPA host 134.251.87.110 eq 3389 access-list inside_access_in remark 20141009 ITO/Matt req MF >> HP-Rakuten-Wintel-SMS#015872 access-list inside_access_in extended permit tcp host 204.105.0.107 host 134.251.87.110 eq 8044 access-list inside_access_in remark 20141009 ITO/Matt req MF >> HP-Rakuten-Wintel-SMS for GW SMS accessing#015872 access-list inside_access_in extended permit tcp host 204.105.0.107 host 134.251.87.110 eq 3065 access-list inside_access_in remark 20141009 ITO/Matt req for HP-Rakuten-Wintel-UAT > SMS for version change#015872 access-list inside_access_in extended permit tcp host 134.251.85.163 host 134.251.87.110 eq 8045 access-list inside_access_in remark 20181029 Apps/Jason Chien req TRC eNavi GW to SMS for 3D send SMS #018906(1810-1058) access-list inside_access_in extended permit tcp host 204.104.44.20 host 134.251.87.110 eq 3066 access-list inside_access_in remark 20191203 ABS/Peter Yu req for DXC-TRC-UAT > internet SMS for SMS Testing #019644 access-list inside_access_in extended permit tcp host 134.251.85.163 host 211.72.227.195 object-group TCP_Internet-SMS access-list inside_access_in remark 20191203 ABS/Peter Yu req for DXC-TRC-UAT > internet SMS for SMS Testing #019644 access-list inside_access_in extended permit tcp host 134.251.85.163 host 60.250.14.67 object-group TCP_Internet-SMS access-list inside_access_in remark 20140912 ITO/Matt req mail relay from Rakuten-UAT > Web zone #015775 access-list inside_access_in extended permit tcp object-group grp_RC-UAT_AP 134.251.87.224 255.255.255.240 eq smtp access-list inside_access_in remark 20140922 ITO/Matt req Proxy redirect from Rakuten-UAT > Web zone #015807 access-list inside_access_in extended permit tcp object-group grp_RC-UAT_AP 134.251.87.224 255.255.255.240 range 9000 9999 access-list inside_access_in remark 20141111 ABS/Kevin Lin req Rakuten STG BIG-IP management console access #015969 access-list inside_access_in extended permit udp object-group grp_RC-UAT_AP host 134.251.87.233 eq snmp access-list inside_access_in remark 20140806 ABS/Kevin Lin req Rakuten STG BIG-IP management console access #015713 access-list inside_access_in extended permit tcp object-group grp_RC-UAT_AP host 134.251.87.233 eq ssh access-list inside_access_in remark 20140806 ABS/Kevin Lin req Rakuten STG BIG-IP management console access #015713 access-list inside_access_in extended permit tcp object-group grp_RC-UAT_AP host 134.251.87.233 eq https access-list inside_access_in remark 20140806 ABS/Kevin Lin req SSH from Rakuten-UAT > STG-WEB #015698(1408-1023) access-list inside_access_in extended permit tcp object-group grp_RC-UAT_AP host 134.251.87.229 eq ssh access-list inside_access_in remark 20160930 ITO/Matt req TRC UAT Send mail to eDM #017453(1167) access-list inside_access_in extended permit tcp object-group grp_RC-UAT_AP host 172.30.0.5 object-group DM_INLINE_TCP_1 access-list inside_access_in remark 20190807 Apps/Jin-Huei Wang Req for TRC-UAT-AP send mail to eDM #019418 access-list inside_access_in extended permit tcp object-group grp_RC-UAT_AP host 172.30.0.7 object-group DM_INLINE_TCP_2 access-list inside_access_in remark 20140806 ABS/Kevin Lin req mail relay from Rakuten-DMZ > Web zone#015698(1408-1023) access-list inside_access_in extended permit tcp 134.251.86.128 255.255.255.224 134.251.87.224 255.255.255.240 eq smtp access-list inside_access_in remark 20140922 ITO/Matt req Proxy redirect from Rakuten-DMZ > Web zone#015807 access-list inside_access_in extended permit tcp 134.251.86.128 255.255.255.224 134.251.87.224 255.255.255.240 range 9000 9999 access-list inside_access_in remark 20140806 ABS/Kevin Lin req SSH from Rakuten-DMZ > Web zone#015698(1408-1023) access-list inside_access_in extended permit tcp 134.251.86.128 255.255.255.224 object-group grp_RC-eNavi_Web-Mail eq ssh access-list inside_access_in remark 20190919 Apps/Jin-Huei req TRC-DMZ > Mail01 for API service#019494 access-list inside_access_in extended permit tcp 134.251.86.128 255.255.255.224 host 134.251.87.227 object-group DM_INLINE_TCP_5 access-list inside_access_in remark 20190919 Apps/Jin-Huei req TRC-DMZ > Mail02 for API service#019494 access-list inside_access_in extended permit tcp 134.251.86.128 255.255.255.224 host 134.251.87.228 object-group DM_INLINE_TCP_6 access-list inside_access_in remark 20140818 ITO/Matt req Rakuten Prod. BIF-IP management console access#015713 access-list inside_access_in extended permit tcp 134.251.86.128 255.255.255.224 host 134.251.87.231 eq ssh access-list inside_access_in remark 20140818 ITO/Matt req Rakuten Prod. BIF-IP management console access#015713 access-list inside_access_in extended permit tcp 134.251.86.128 255.255.255.224 host 134.251.87.231 eq https access-list inside_access_in remark 20141111 ITO/Matt req Rakuten Prod. BIF-IP management console access#015969 access-list inside_access_in extended permit udp 134.251.86.128 255.255.255.224 host 134.251.87.231 eq snmp access-list inside_access_in remark 20140818 ITO/Matt req Rakuten Prod. BIF-IP management console access#015713 access-list inside_access_in extended permit tcp 134.251.86.128 255.255.255.224 host 134.251.87.232 eq ssh access-list inside_access_in remark 20140818 ITO/Matt req Rakuten Prod. BIF-IP management console access#015713 access-list inside_access_in extended permit tcp 134.251.86.128 255.255.255.224 host 134.251.87.232 eq https access-list inside_access_in remark 20141111 ITO/Matt req Rakuten Prod. BIF-IP management console access#015969 access-list inside_access_in extended permit udp 134.251.86.128 255.255.255.224 host 134.251.87.232 eq snmp access-list inside_access_in remark 20160622 ITO/Matt req eNavi(Agent) > Tripwire server #017453(1167) access-list inside_access_in extended permit tcp 134.251.86.128 255.255.255.224 host 172.30.0.11 eq 9898 access-list inside_access_in remark 20160622 ITO/Matt req eNavi(Agent) > Tripwire server #017453(1167) access-list inside_access_in extended permit tcp 134.251.86.128 255.255.255.224 host 172.30.0.11 eq 8080 access-list inside_access_in remark 20160930 ITO/Matt req TRC eNavi-Web Send mail to eDM #017453(1167) access-list inside_access_in extended permit tcp 134.251.86.128 255.255.255.224 host 172.30.0.5 eq www access-list inside_access_in remark 20160930 ITO/Matt req TRC eNavi-Web Send mail to eDM #017453(1167) access-list inside_access_in extended permit tcp 134.251.86.128 255.255.255.224 host 172.30.0.5 eq 445 access-list inside_access_in remark 20190807 Apps/Jin-Huei Wang Req for TRC-eNavi-AP send mail to eDM #019418 access-list inside_access_in extended permit tcp 134.251.86.128 255.255.255.224 host 172.30.0.7 eq www access-list inside_access_in remark 20190807 Apps/Jin-Huei Wang Req for TRC-eNavi-AP send mail to eDM #019418 access-list inside_access_in extended permit tcp 134.251.86.128 255.255.255.224 host 172.30.0.7 eq 445 access-list inside_access_in remark 20140909 ITO/Matt req Rakuten-Mang01 > Web Zone Zabbix agent#015775 access-list inside_access_in extended permit tcp host 134.251.86.133 134.251.87.224 255.255.255.224 eq 10050 access-list inside_access_in remark 20160622ITO/Matt req Rakuten-Mang01 > eDM Zone Zabbix agent#017246 access-list inside_access_in extended permit tcp host 134.251.86.133 172.30.0.0 255.255.255.128 eq 10050 access-list inside_access_in remark 20140909 ITO/Matt req Rakuten-Mang02 > Web Zone Zabbix agent#015775 access-list inside_access_in extended permit tcp host 134.251.86.134 134.251.87.224 255.255.255.224 eq 10050 access-list inside_access_in remark 20160622 ITO/Matt req Rakuten-Mang02 > eDM Zone Zabbix agent#017246 access-list inside_access_in extended permit tcp host 134.251.86.134 172.30.0.0 255.255.255.128 eq 10050 access-list inside_access_in remark 20140909 ITO/Matt req Rakuten-Mang-UAT > Web Zone Zabbix agent#015775 access-list inside_access_in extended permit tcp host 134.251.85.182 134.251.87.224 255.255.255.224 eq 10050 access-list inside_access_in remark 20160622 ITO/Matt req Rakuten-Mang-UAT > eDM Zone Zabbix agent#017246 access-list inside_access_in extended permit tcp host 134.251.85.182 172.30.0.0 255.255.255.128 eq 10050 access-list inside_access_in remark 20160622 ITO/Matt req for TW-RC Office >> Rakuten-eDM-AP&DB via RDP #017246 access-list inside_access_in extended permit tcp 192.168.47.32 255.255.255.240 172.30.0.0 255.255.255.128 eq 3389 access-list inside_access_in remark 20160622 ITO/Matt req for TW-RC Office >> Rakuten-eDM-AP&DB via http #017246 access-list inside_access_in extended permit tcp 192.168.47.32 255.255.255.240 172.30.0.0 255.255.255.128 eq www access-list inside_access_in remark 20160930 ITO/Matt req for TW-RC Office >> Rakuten-eDM-AP&DB via https #017453(1167) access-list inside_access_in extended permit tcp 192.168.47.32 255.255.255.240 172.30.0.0 255.255.255.128 eq https access-list inside_access_in remark 20160930 ITO/Matt req for TW-RC Office >> TRC eNavi-Web via https #017453(1167) access-list inside_access_in extended permit tcp 192.168.47.32 255.255.255.240 134.251.87.224 255.255.255.224 eq https access-list inside_access_in remark 20220414 Kevin temp for active Product key for Windows Server no CR yet access-list CAP1_in extended permit ip host 134.251.87.253 any4 access-list CAP1_in extended permit ip any4 host 134.251.87.253 access-list CAP1_in extended permit ip host 134.251.87.240 any4 access-list CAP1_in extended permit ip any4 host 134.251.87.240 access-list CAP1_in extended permit ip host 134.251.87.254 any4 access-list CAP1_in extended permit icmp host 134.251.87.246 any4 access-list CAP1_in extended permit icmp any4 host 134.251.87.246 access-list CAP2_in extended permit ip 192.168.26.8 255.255.255.248 any4 access-list CAP2_in extended permit ip any4 192.168.26.8 255.255.255.248 pager lines 24 logging enable logging standby logging list configuration level emergencies class config logging list configuration message 111005-111007 logging buffer-size 1000000 logging trap warnings logging history configuration logging asdm informational logging host dxc_mgmt 134.251.80.52 logging message 111008 level critical mtu outside 1500 mtu inside 1500 mtu dxc_mgmt 1500 mtu Int-Sub 1500 mtu RC_SMS 1500 mtu RC_eNavi 1500 mtu RC_eDM-AP 1500 mtu management 1500 failover failover lan unit primary failover lan interface folink GigabitEthernet0/7 failover key ***** failover link folink GigabitEthernet0/7 failover interface ip folink 10.0.0.1 255.255.255.0 standby 10.0.0.2 no monitor-interface Int-Sub monitor-interface RC_SMS monitor-interface RC_eNavi monitor-interface RC_eDM-AP no monitor-interface management icmp unreachable rate-limit 1 burst-size 1 icmp permit any dxc_mgmt asdm image disk0:/asdm-781.bin no asdm history enable arp RC_eNavi 134.251.87.254 b82a.72d0.6365 arp timeout 14400 arp permit-nonconnected arp rate-limit 16384 ! object network TRC_eNavi-Web-P01 nat (RC_eNavi,outside) static object network TRC_eNavi-Web-T01 nat (RC_eNavi,outside) static object network TRC_eNavi-Mail01 nat (RC_eNavi,outside) static object network TRC_eNavi-Mail02 nat (RC_eNavi,outside) static object network TRC_eDM-Mail01 nat (RC_eNavi,outside) static object network TRC_eDM-Mail02 nat (RC_eNavi,outside) static object network TRC_eDM-Mail03 nat (RC_eNavi,outside) static object network TRC_eDM-Mail04 nat (RC_eNavi,outside) static object network TRC_eDM-Mail05 nat (RC_eNavi,outside) static object network TRC_eDM-Mail06 nat (RC_eNavi,outside) static object network TRC_eDM-Mail07 nat (RC_eNavi,outside) static object network TRC_eDM-Mail08 nat (RC_eNavi,outside) static object network TRC_eDM-Mail09 nat (RC_eNavi,outside) static object network TRC_eDM-Mail10 nat (RC_eNavi,outside) static object network TRC_eDM-Mail11 nat (RC_eNavi,outside) static object network TRC_eDM-Mail12 nat (RC_eNavi,outside) static object network DXC_SMS-P01 nat (RC_SMS,outside) static object network DXC_SMS-T01 nat (inside,outside) static object network TRC_eNavi_STG01 nat (RC_eNavi,outside) dynamic object network TRC_eNavi_Real01 nat (RC_eNavi,outside) dynamic object network TRC_eNavi_Real02 nat (RC_eNavi,outside) dynamic object network DXC_VPN01 nat (RC_SMS,outside) static object network UAT_AP_VM_134.251.86.229 nat (inside,outside) static object network DXC_VPN02 nat (RC_SMS,outside) static object network DXC_SAPPOC nat (RC_SMS,outside) static access-group outside_access_in in interface outside access-group dxc_mgmt_access_in in interface dxc_mgmt access-group RC_SMS_access_in in interface RC_SMS access-group RC_eNavi_access_in in interface RC_eNavi access-group RC_eDM-AP_access_in in interface RC_eDM-AP route outside 0.0.0.0 0.0.0.0 134.251.78.147 1 route outside 113.21.86.32 255.255.255.248 134.251.78.147 1 route dxc_mgmt 134.251.79.182 255.255.255.255 134.251.84.254 1 route dxc_mgmt 134.251.80.0 255.255.252.0 134.251.84.254 1 route dxc_mgmt 134.251.84.0 255.255.255.224 134.251.84.254 1 route inside 134.251.84.32 255.255.255.240 134.251.85.215 1 route dxc_mgmt 134.251.84.107 255.255.255.255 134.251.84.254 1 route inside 134.251.85.128 255.255.255.192 134.251.85.215 1 route inside 134.251.85.140 255.255.255.255 134.251.85.243 1 route inside 134.251.85.177 255.255.255.255 134.251.85.243 1 route inside 134.251.86.106 255.255.255.255 134.251.85.215 1 route inside 134.251.86.107 255.255.255.255 134.251.85.215 1 route inside 134.251.86.128 255.255.255.224 134.251.85.213 1 route inside 134.251.86.160 255.255.255.240 134.251.85.229 1 route inside 134.251.86.176 255.255.255.240 134.251.85.229 1 route inside 134.251.86.192 255.255.255.240 134.251.85.229 1 route inside 134.251.86.208 255.255.255.240 134.251.85.240 1 route inside 134.251.86.224 255.255.255.224 134.251.85.215 1 route dxc_mgmt 155.61.83.76 255.255.255.255 134.251.84.254 1 route dxc_mgmt 155.61.83.78 255.255.255.255 134.251.84.254 1 route inside 192.85.139.0 255.255.255.192 134.251.85.240 1 route inside 192.168.20.0 255.255.255.0 134.251.85.215 1 route inside 192.168.26.8 255.255.255.248 134.251.85.243 1 route inside 192.168.26.13 255.255.255.255 134.251.85.243 1 route inside 192.168.47.32 255.255.255.240 134.251.85.213 1 route inside 204.104.44.0 255.255.255.192 134.251.85.213 1 route inside 204.104.44.240 255.255.255.240 134.251.85.215 1 route inside 204.105.0.0 255.255.255.0 134.251.85.240 1 timeout xlate 3:00:00 timeout pat-xlate 0:00:30 timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 sctp 0:02:00 icmp 0:00:02 timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00 timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00 timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute timeout tcp-proxy-reassembly 0:01:00 timeout floating-conn 0:00:00 timeout conn-holddown 0:00:15 timeout igp stale-route 0:01:10 aaa-server TACAS protocol tacacs+ aaa-server TACAS (dxc_mgmt) host 134.251.82.15 key ***** user-identity default-domain LOCAL aaa authentication enable console TACAS LOCAL aaa authentication http console TACAS LOCAL aaa authentication serial console TACAS LOCAL aaa authentication ssh console TACAS LOCAL aaa authentication telnet console TACAS LOCAL aaa accounting enable console TACAS aaa accounting serial console TACAS aaa accounting ssh console TACAS aaa accounting telnet console TACAS aaa accounting command privilege 15 TACAS aaa authentication login-history http server enable http 134.251.81.106 255.255.255.255 dxc_mgmt http 134.251.80.53 255.255.255.255 dxc_mgmt http 134.251.80.54 255.255.255.255 dxc_mgmt http 134.251.84.13 255.255.255.255 dxc_mgmt http 134.251.81.105 255.255.255.255 dxc_mgmt http 134.251.80.52 255.255.255.255 dxc_mgmt http 134.251.81.107 255.255.255.255 dxc_mgmt snmp-server host dxc_mgmt 134.251.80.207 community ***** snmp-server host dxc_mgmt 134.251.80.52 community ***** snmp-server host dxc_mgmt 134.251.80.53 community ***** version 2c snmp-server host dxc_mgmt 134.251.80.8 community ***** snmp-server host dxc_mgmt 134.251.80.200 community ***** snmp-server host dxc_mgmt 134.251.80.54 community ***** version 2c snmp-server location Taipei, Taiwan no snmp-server contact snmp-server community ***** snmp-server enable traps syslog crypto ipsec security-association pmtu-aging infinite crypto ca trustpool policy telnet 134.251.80.53 255.255.255.255 dxc_mgmt telnet timeout 5 ssh stricthostkeycheck ssh 134.251.80.53 255.255.255.255 dxc_mgmt ssh 134.251.81.106 255.255.255.255 dxc_mgmt ssh 134.251.80.54 255.255.255.255 dxc_mgmt ssh 134.251.81.107 255.255.255.255 dxc_mgmt ssh 134.251.81.105 255.255.255.255 dxc_mgmt ssh 134.251.84.13 255.255.255.255 dxc_mgmt ssh 134.251.80.52 255.255.255.255 dxc_mgmt ssh timeout 60 ssh version 2 ssh key-exchange group dh-group1-sha1 console timeout 5 management-access dxc_mgmt dhcpd address 192.168.1.2-192.168.1.254 management dhcpd enable management ! threat-detection basic-threat threat-detection statistics access-list no threat-detection statistics tcp-intercept tftp-server dxc_mgmt 134.251.80.53 TWTPCAFW17-ASA ssl cipher default low ssl cipher tlsv1 low ssl cipher tlsv1.1 low ssl cipher tlsv1.2 low ssl cipher dtlsv1 low dynamic-access-policy-record DfltAccessPolicy ! class-map inspection_default match default-inspection-traffic ! ! policy-map type inspect dns preset_dns_map parameters message-length maximum client auto message-length maximum 512 no tcp-inspection policy-map global_policy class inspection_default inspect dns preset_dns_map inspect ftp inspect h323 h225 inspect h323 ras inspect rsh inspect rtsp inspect esmtp inspect sqlnet inspect skinny inspect sunrpc inspect xdmcp inspect sip inspect netbios inspect tftp inspect ip-options ! service-policy global_policy global prompt hostname context no call-home reporting anonymous Cryptochecksum:00160b5fbba980a8d2b5510694314063 : end