From f10454371567b269f19d8a48a1b85b284b732b9d Mon Sep 17 00:00:00 2001 From: NikTripathi Date: Fri, 20 May 2022 18:07:34 +0530 Subject: [PATCH] Cisco meraki solution package 1.0.12 --- .../Connector_Syslog_CiscoMeraki.json | 2 +- Solutions/CiscoMeraki/Package/1.0.12.zip | Bin 0 -> 49966 bytes .../CiscoMeraki/Package/mainTemplate.json | 20 +++++++++--------- 3 files changed, 11 insertions(+), 11 deletions(-) create mode 100644 Solutions/CiscoMeraki/Package/1.0.12.zip diff --git a/Solutions/CiscoMeraki/Data Connectors/Connector_Syslog_CiscoMeraki.json b/Solutions/CiscoMeraki/Data Connectors/Connector_Syslog_CiscoMeraki.json index fc2ba23d4e..11030e4cee 100644 --- a/Solutions/CiscoMeraki/Data Connectors/Connector_Syslog_CiscoMeraki.json +++ b/Solutions/CiscoMeraki/Data Connectors/Connector_Syslog_CiscoMeraki.json @@ -106,7 +106,7 @@ }, { "title": "2. Configure the logs to be collected", - "description":"Follow the configuration steps below to get Cisco Meraki device logs into Azure Sentinel. Refer to the [Azure Monitor Documentation](https://docs.microsoft.com/azure/azure-monitor/agents/data-sources-json) for more details on these steps.\n For Cisco Meraki logs, we have issues while parsing the data by OMS agent data using default settings. \nSo we advice to capture the logs into custom table **meraki_CL** using below instructions. \n1. Login to the server where you have installed OMS agent.\n2. Download config file [meraki.conf](https://aka.ms/sentinel-ciscomerakioms-conf) \n\t\twget -v https://aka.ms/sentinel-ciscomerakioms-conf -O meraki.conf \n3. Copy meraki.conf to the /etc/opt/microsoft/omsagent/**workspace_id**/conf/omsagent.d/ folder. \n\t\tcp meraki.conf /etc/opt/microsoft/omsagent/<>/conf/omsagent.d/\n4. Edit meraki.conf as follows:\n\n\t a. meraki.conf uses the port **22033** by default. Ensure this port is not being used by any other source on your server\n\n\t b. If you would like to change the default port for **meraki.conf** make sure that you dont use default Azure monotoring /log analytic agent ports I.e.(For example CEF uses TCP port **25226** or **25224**) \n\n\t c. replace **workspace_id** with real value of your Workspace ID (lines 14,15,16,19)\n5. Save changes and restart the Azure Log Analytics agent for Linux service with the following command:\n\t\tsudo /opt/microsoft/omsagent/bin/service_control restart\n6. Modify /etc/rsyslog.conf file - add below template preferably at the beginning / before directives section \n\t\t$template meraki,\"%timestamp% %hostname% %msg%\\n\" \n7. Create a custom conf file in /etc/rsyslog.d/ for example 10-meraki.conf and add following filter conditions \n\t\t if $rawmsg contains \"flows\" then @@127.0.0.1:22033;meraki\n\t\t & stop \n\t\t if $rawmsg contains \"urls\" then @@127.0.0.1:22033;meraki\n\t\t & stop\n\t\t if $rawmsg contains \"ids-alerts\" then @@127.0.0.1:22033;meraki\n\t\t & stop\n\t\t if $rawmsg contains \"events\" then @@127.0.0.1:22033;meraki\n\t\t & stop\n\t\t if $rawmsg contains \"ip_flow_start\" then @@127.0.0.1:22033;meraki\n\t\t & stop\n\t\t if $rawmsg contains \"ip_flow_end\" then @@127.0.0.1:22033;meraki\n\t\t & stop \n8. Restart rsyslog\n\t\t systemctl restart rsyslog", + "description":"Follow the configuration steps below to get Cisco Meraki device logs into Azure Sentinel. Refer to the [Azure Monitor Documentation](https://docs.microsoft.com/azure/azure-monitor/agents/data-sources-json) for more details on these steps.\n For Cisco Meraki logs, we have issues while parsing the data by OMS agent data using default settings. \nSo we advice to capture the logs into custom table **meraki_CL** using below instructions. \n1. Login to the server where you have installed OMS agent.\n2. Download config file [meraki.conf](https://aka.ms/sentinel-ciscomerakioms-conf) \n\t\twget -v https://aka.ms/sentinel-ciscomerakioms-conf -O meraki.conf \n3. Copy meraki.conf to the /etc/opt/microsoft/omsagent/**workspace_id**/conf/omsagent.d/ folder. \n\t\tcp meraki.conf /etc/opt/microsoft/omsagent/<>/conf/omsagent.d/\n4. Edit meraki.conf as follows:\n\n\t a. meraki.conf uses the port **22033** by default. Ensure this port is not being used by any other source on your server\n\n\t b. If you would like to change the default port for **meraki.conf** make sure that you dont use default Azure monotoring /log analytic agent ports I.e.(For example CEF uses TCP port **25226** or **25224**) \n\n\t c. replace **workspace_id** with real value of your Workspace ID (lines 14,15,16,19)\n5. Save changes and restart the Azure Log Analytics agent for Linux service with the following command:\n\t\tsudo /opt/microsoft/omsagent/bin/service_control restart\n6. Modify /etc/rsyslog.conf file - add below template preferably at the beginning / before directives section \n\t\t$template meraki,\"%timestamp% %hostname% %msg%\\n\" \n7. Create a custom conf file in /etc/rsyslog.d/ for example 10-meraki.conf and add following filter conditions.\n\n\t With an added statement you will need to create a filter which will specify the logs coming from the Cisco Meraki to be forwarded to the custom table.\n\n\t reference: [Filter Conditions — rsyslog 8.18.0.master documentation](https://rsyslog.readthedocs.io/en/latest/configuration/filters.html)\n\n\t Here is an example of filtering that can be defined, this is not complete and will require additional testing for each installation.\n\t\t if $rawmsg contains \"flows\" then @@127.0.0.1:22033;meraki\n\t\t & stop \n\t\t if $rawmsg contains \"urls\" then @@127.0.0.1:22033;meraki\n\t\t & stop\n\t\t if $rawmsg contains \"ids-alerts\" then @@127.0.0.1:22033;meraki\n\t\t & stop\n\t\t if $rawmsg contains \"events\" then @@127.0.0.1:22033;meraki\n\t\t & stop\n\t\t if $rawmsg contains \"ip_flow_start\" then @@127.0.0.1:22033;meraki\n\t\t & stop\n\t\t if $rawmsg contains \"ip_flow_end\" then @@127.0.0.1:22033;meraki\n\t\t & stop \n8. Restart rsyslog\n\t\t systemctl restart rsyslog", "instructions":[ { "parameters": { diff --git a/Solutions/CiscoMeraki/Package/1.0.12.zip b/Solutions/CiscoMeraki/Package/1.0.12.zip new file mode 100644 index 0000000000000000000000000000000000000000..9a3810f7fadaf0010f0086fc6cc1e734f41bd787 GIT binary patch literal 49966 zcmV)cK&Zb^O9KQH000080PlLSREEycf9?zb0I6I602crN0Aq4xVRU6xX+&jaX>MtB zX>V>WYIARH?Obhd+c*;bybJ7qAbbnNDJ(h7+uaq{U1XEqUT|qQXtTSxOM-%yXqy{a z)QVD4x7YuEGo&O_675)NoTPw_MK`9%nc>XCnP=$4pT7H+kk0oi7_$lOyda%%n#Sry zzi&qT361E8O<0ur^kbGVKai9Bnd)!(&;4yLPS`bPH~qte(Ukpqe8h%4;whJr|2h*X z|83&`p=9)zPEYF^(hpF5erh8 z^v%HRy^tg6{}GQaIyXE_$DseOd+`Ubg7MKfE#Lld5nV*jo*hqOnWQvIUp#w8-k*)R zBBg^#VG1d1An-WIk_5)Zl<z)o;-oXBe)vXI=szGapYN?_~P zJYYnyYmiJw3DZdF5ePBi>4qYaOi9APFEEa4hcZDyVHRi`Ze(&LBn_2M4jI@EX5<ai*a)x0R)&QV|vX9cwVImtb->3jp=|3Kpq2m|HO$BO^-n7grdG4Sj@=z zI}j$crBskJmP{0pL-MO)+Ps<1bP&m@afrI?7Qr_MVN!xu9|>b%U$7As{oIM3vNU-q zYU*$L?@hSg$du)gVxVS1r?}Dct4Q8pa8$-@l~-^SRbS;%R0WXqY%_V2#Kwg@8j)0z z6ysM!yGOtd3Oh{LkR|3Zn}EWhaghQ81uQhioojd!1IL*W6aC%~@S)!HCi>rCwfIS) zY2V1efI}>KlxnB|B1UkKF-QT}F(oGJDE)9EA(_ZT74jmMB5dGc zN)$|IKAOA$=_Palv4|Hbct{aSH{f!xmIi-j9K7HVksoX#_!T3th|V^wdK$e0DX$a) zo{A}0uMGBSmP!LTg-2^DvqaBUF@?S30m9P*{uUsX#X?RIBLtE}>>G3(p|Ua)C%E{;Z3B+%>)@R*nnVWsbbtr7xv>VYG^7i3ZIb_yrj*j1ix-#B3}vv{ z=~-D-Wdl2{S_u~(f&g$*z)nr5bV5J3XArww`~pxn?tNX>r+%r~);ez?6~~dnJfiw# zU{pUYwD$p5N%}SuY>~8z2pxq5lTYM`2YTjE$Q#wMCtl9pe70RCWI&znf}%$ekM##w zUwIfZUAO+lL(Bz*5CAMABbGvDCc{KdFa^NF(G0vZj8?4sT-j9TnkzmKtf-}POfLfZ zb0V|2VLzO5dGqQ6SAZET)oGI1f{GvW9}2;+tHuq(QyNvs+-CakeKApAo80%Qj9tAw+R!vJY^FtC&q%*%~7=R>B9K@qVwXSv(Y0sO|R;a zjf+n2qN6QwKmEJ`qAzPWMQlTH4x2f`_Sh^X*^_dhT^88`%j>Pl1GDO^$h*;0E6$Zk z13^P}##3$0!kNr4!$zg6Cv>-E&w)>VNE`KL?)f-_**`%kxN0nsv8kGkQi9@8M*;X* z>tOhz(ul6oB2A%f{^yhb$PBo7q)ShQ83vgGnxspR7E&-J2N5gJl#kwo_70gjGA$NS z2)rS?HB0gnR}BFHdJd(1O6V{}B3#**p<*iUeQM$Yotl+xb&9&Xz`PAJet&qfXb=6o zp#UO44w@y`?^M12*?wCs!OJ1U(?>ITV4N@qOsL5ciAji%+9HKLnZXYb04QES$8!t- zBX>A2!X8fWkEVwNZjC`=&EXsnP@7qb0S+XzxI$MfZ1O@rg#HJ)HabA}eOj&NL$il^ z%%ncu(1Z!U);)`tN)P@=fDl6i1P>LX6Hup253Lxq)I6OQO$+R;N5&cM0e;|70Od47 zdTkXvDUzQm+Sp zcdTnG=sHxbHP`J)**fbfHt*OgB9pZp#R5`inNab92XZX7^S)Ch${RBg7ne4MSI7hs1F~>=Z$i@X-j0PUwUAHPhzQ0KE>VK3;}K zGfn|=58@cFrN%rM10{hfYdi+_Yw`t_7|POE@hXsftqNH?vsFBzZq+FwKw*P~jOA0gV`=(}1God-?JAGk+4i=i$p! zyu%k>8TR)&!0+vkMq1_1rHWNyMhhbF&YaN3f_ZrgUoM|FOmOBaJ+*z#(#sa)EhE;> zT{*jd68GATKsQ2Nk1xKKbMm3yXW16L!3phsE_X<$e7XU^1J1v^)&(~$<(%3LghPy;G-4mnkaOyN-17c@;QjaV)AQc;-u~zB zU7BIZbx99iL;nDXzpVfWK;((?YHe1L5rSs9wR7Gp-Z%P#Be{} zq2RDd&m7)+XA#?v%OYmQreUdMEq&iry%Efm{sbQr!|Cw~Nx-&O(Crmf z|3duoReyPe=;hYgFF#koU6!qg(0vPy<1!-9cfOG%|HKX(sr&<#uP{5%W?QXyze>bd zzqhn_R|8I^;K5y+#zkQ^za_Ci{1=7!R_RYa%#|%H z6Xxo`7jyuEsh5DPB=Gr&&=x^64_E7m|ola$E#hY$r%IrIkaE?QpJ-Ikk?!PNU0s6alx*Nqr z1%4_Q`3sl3_2hpu)k3sc;g(kai>MZ2YfD}7Ykz2Qi|}pVz0NIpZqaL@Wu6ST#zxv~ zp{c&st--zqZXw)S=9X*!s%i_l)-speomSD^@!jj(lJ6Q_TT7ehI(|8)g{EbqyVEAR zw(wh`yW1)XyS{s!Tk>6_U~6d;1;=M#Ei^3?h21t$u!Y|eg}qi$*z?`%+>-Aa1zSs- zC^)W|T4-7(3j3|RweP#vxh3D#Teg-q-g40C7MhygG72hcV^?*Gl^^M8K3P*?#h}|AQF`^|d?ji08?@6v307>vmA|+=w z8>KRq$VPvo(cJ*~^S}NJA+67ZJ!cErdO=$AC#GH~LtpsQ2w79;B*6tT zBXInU?=B-COCrr0nff6)<-+#KB@5|2Z{et46)OP^DX;^a8qB!9O(Vs*z62MeRlpFx z0A9RVOd6%(-Uah!(H!m$(#sB;(xn@HN8P0ycNa3@FGHJs6Z*@b-RZ?tKA5-)n$fs~ z4I0oqwch#>SqkQK$z&N3k1>ZiB=Si>g&;IsSW$Ej;){s{7kGiXf+X8IK zLPl<2(r}NtXjH+XWl$*qsL%uH{cvC*#_cS}=k~QeFb*?9UDtnP&PL-5Eosl3$8J=~Z{*=a>s>gb9{)+kwT)an9oe@m!a(^6 zDay6@%6GZF`Xm$&oBI3tm387c5K_b+#@P>lSI&O;k8$?HPwwnTO z{G+=p4>aU-;xed z*0PNdTWnmeq(q&W(F$PC7+&Udh@kX(LbGa=Nwy5eq@4D892PLoVV+E|Q~NehKB>@t zxuD}K8VZ&dGrn3Tq%opGL=9mIn3mNgnyS8;&|f>=WTO(WjGMGI(YiCWmLgFA=2$=0 z|G8s*!y+>@$bM?!S|Y=yk){~yVApV?6PB2fLa<0!tkfg@w=W{x!QW{ysRz~$7l*{SOLzu_*p9WD?V9;?ANaJ?4)W;rT{ zS4s9hfPl?5jYi@%Axq_}Id+YR^)NKB-^Jk@9RPV^djsR;MmMuv z3F&%(4J_9{yjlnv*exD+@kJf`RYBLa;~HuW>{)@OnO)bg(riEjJ8vO=BSf3+t^#w? zwJaPv{|odGnnTmPxjUZ%@*)%R&8cT6HZrE zd~URV4o4FnGrCNh=_NZfW;R?7P{@cY@swr7rNHIf=~Q0l&pfv^tnOO5Y9k$Ob}%xf zM+$O+Cnn+@)hap?NNAuP$XP?nPAFKz42@4(JAcn6eOvC#LTQn&ZBv1&`XAYHcb#-4 z*3W^JRzw+)!`<{$C4YPbpt4nvoOqBu19i&Ak@}*hKkRMR#bG^N9G2y9QU8rYpe9w0^vk){pC`;pwzqgWNMK+k7|GUAR}!bJ^%J z1?S<)H2Z8P%|5Fm>eFd<4LP-jo;!#%6X(_8N-IGfA49WjTqPIG-1KOTO*E!Tyn1|j{hj-yPY#~XX5?P zjt_n*C+tawl;^%WB;i$UdkM1gmv|J7QNi6+aySjHW{=yF_T_)}FR%NTHyzwl6XcOc zb0Q~KasaVMZs%N(8Gm33@4^q|sZ=x}`~@-+uW$5?_XP1&WkRUu5WYa`s^K9K+675c z%MhCebi!SZX6WS=GBTx01)?T*GI5#?m*HfAs&g99SdBIb}ZfQv>fs#CC5{n*B@G9uE5Ii36v zrB*IH9}nwCD+%6dAbDK!Jb=Yc!EE60w3Zg)rQ=*^--(4RD&s+Kgx}@wkaB&Pnz#T( zf_ue!tfdqPV}Hj$YOn_5@|a!`I`i9KIC*V>it4M6K2YwepqM%TsBepiMoU!ZAg7fU z7gu^UenFye$;{i?$=rhYyWm1_wJDe<5oaq`dSx!tbHRFQMUCNWFaJf`X4%6j3Ax-Y z`zX`bNAxF>-p51oA^UO3L+13#acQPBqIh}uKIWiw5I9g!11zR|wN9NHR&uT_Q-Vu| zQ8 z51f*lm4NSsd6Ac4jnCraFyT^0>YIoKwIWK6)mJj1kvTz{IH|)Bf`BtotR@5tNgLOD zM_u|Gs*$`|dXjVpg;V*BKp|x)=#l?|^k_~W7#TuxBiB5Ho3V&QNK&JfIaA{MBX8ur zB7+_|pUU(~jz=jWl|v=sz?4l?q7G`w6EfVxRTg&^zgL0C{RojPfsagm{kNUKN)4Pg7i|Dy!>}>d`yJp0D*3jrqA@A_7V zXDL-lVdBTFl-(0ysSB%Em+bEwdfDIKIcHi0+y)U>T`9Sc4}`^XOExGZsFCtShfk-l zHp5TgJ6OWPnm+C2d-%V8988~-Q|IAk@uH^ntfyiMV1vfgispMzGf0&C`xo3>e%#+z z^z*s76vdd3r9q}N%wR+=dAzRxl$Ka?-v^7RtON{F(9MgoASH2Zju`2uf)D(pyqs&= ziA_|&BvnPe<6*Rf4E>VYbMUV!t|Z2s7u?9F*rZ4cHM&$%=>?vn9Nl)geUI*_BEGGFQ+-$7$vql&AsbxR|+~wZ=ZJgREnNCogcb-(7)?2K$_2}{wEdNP!NQ2N?oP}jI z{d}mpRn5hAZbTv4d6wx+TR72~|LD1Kj80JFj}YAJfx_?DxzLHGX`D2D@{l;0?YFXuSJry1kq?qCVS1(Nx6(R5JENn#)Ma9No6G&CJcKD&x)-);SC8H;tC zKB~TuT)H8vly_Akm1$qa83wLlGONnBuC5s@l{ge}->JKoKBPgw`I&DovCl0@rTKy5 z+oG3wmR;=xs(-D88r@e5qHI>`=B%*rLHmx>itLd&EP@(N==mpfCIag(d6RqWT}sd; zk4$HOLM$0R2+Un3(>LzTqy#c&ovg^a%NuP1d1Wa9^x<%PS{S6Ci5`@_H$Ebzj#Lvq zrb>edb&#Y6QfsP2AQASRVJ%7853uel)XD;x00GFsKOkx3UaVh8ogP5jYK<;QWfQJJ z1(4PC(P0lV%3zhb zs)g*c$nHaO-%nhm4|t?l{r&wUpB{5(f4`3dliNL~kKq=I(4OYi4l)$hq5jKXOw_Ml z6;O}7qaJzf@F;^4suLCA#S2XPMiHUC3;?9LLdqrUwEg|z@Zj(e><&(*{RyyoLir4q zFbD>JF)yDm^bLI50fJL+MSQ>%68*#mxV`T8qFZS4lO(-=lsT@;@0DZDsW(%88T+v$ zg_9}vNXaqqwxBRZvqWWAn>djF%alDHtfo3lRv#uSvf0OEm+FV?_2fYcf}HnQuZ=U3 zeU!afa{Bs>(#!4XRic;U;qV#Imh9kXm;+G0P_8JJj!&wbZ^FI4#)NxPQRurdCnN7!4?u!T;8Sr%>W}lB>6t;uEfN2e;fMGO_c`2I^$1(!Q*_t}V;K0gE zEHDO&mFjaUPxT@~hpP~&z2ke-J@pVAW(qd$H6Tmf*4@*75daZEFwbcmoF>}%k%(EG!aq3($*3w!6@_+yHzeMYU zJns#j_YQgsDiFviUp!;wfg}!)lxr#X`^@X3wM5j+ElBwa7O6lqF~xVMsAY=A ztqAZk!l&f3kUoM7p;=)u2bGLkQw*ozPqO~{>Z`%<3;70}!3!BX|E#=3WB3!;+YiWE ze9O>nhHfo3?g)#z3)%RHwMQZUbROchmV)h?_d;0H`s zJ4ymxeE(B-LSO>87)jRETWO#A+^MKmiuu0!v|I`iI@9Zhg{c(DhEfC*CyX!`65);| z$Pg1T-B3=0pNelu!)mwcgS3ohp~#lOnW`X-cjil1)Mk-8K5-x*a~P^3n=UdS#Ec;f zjjtKz5%8<8LiAXjicPPNt+8szeLg%L-@LuNlEY4}&O7?;GKLOHN}#roa604@9fiqz z-NZbEfA;pQ=hrv6uA+6I&jdw#3+M z>thMkGBwz4Ok?}CiuP!&uPIQF8&S8?wm+(EceOHrpX1pe)%}d0g^V&A0G0j!^7ene z>74eFVQI=Xl7;Fd=NrkGg_JVcBUvv^@F$xKIsCm^)l=N@HWZyGIrqeLGL0Ia?OAt% z=)gL7ZXK8}ElN%`RUBtB5B6+*BB&>WlUNPEdPKc#qrqA-mXU^hJZk|+~cak^REtQY8?dRul%gOGW){_Iqf%4hR zS0@y1WHwjW>utq8d*Z4S0_zUpq$fs39wd311r<8=bDHEOOkewcOv8|_+IVaP>(9Zc z)g|$d;i%R5GwJt}vQ5LNohb#P0->zcs4ZLi6>&E%1!T`h4w9u+@~%2(1jX;t<8qsN zy8P*<)l1ykC3ra&tBpS};TT0p_a(iQ96YcfRmZ>$Mc*ZaTZqjdEYV*(-71tyJtjWY zqdATDk09!_OElT3&4L;hGlIi@fw&lfOKQgeAov}ECdaUjw7(j)+M|*4?>+pdGa8BZ z-DvbU8d;;!_(S!D8~6*qK0{kNE8v6M?Ylvj47=p8OO8H(3R1p0cLyIboV*TvNc3Mq z)Ko7?Xe-tLtkX3$r=&+$F99CpfRhtS1;}9z@@6?v041=8A38-=Z{vy<2Egp&QCnVy zVz&qWn}x>=-Gm2!`-m0s7z$^o=fpVj@!>1H)Q)`D2hv#@sD&)f2w4Y$A`1RH4hC6l=(3C0?_* z+6E^vK3U9hiIu_H4j2n%#|19@0_6>m>AW0`_6nqiSyC#Rw=D;rj?+xJ1s%@j*ik7Y~LNorew%?vgZAU1OsOb)| zf%X8&VU~0pGo^zV9+Dh_T?Z#!)&MJPCQl~;WW^#>MXu)tihXzt@#Nj{x!UPnST=mq33qsMYj$k7A=6SD6^ zxAuxvq?G7$Sl^q=w5iv3gBFmFtyK`HG-zK^yLwJi9xfnvm{WIbhKwRv3``g!H08Yl z<=XyN#J!;QT9KYWYXZ9!4fLj;h`tK_$hZ9pPsqpeBH2KXe_7>%we{8n>67@`Mk+<6 zUC{{20Izg@mI|WaAtn$bEpIYORl=$g=Uu!TYxJrZSbw2yhWAPQ`oB|`1}hbpqmqaq zczFb^ttjeI#jkpRIsapel(*68;dCc+NnLm1wWc0&4%t(TK+iBIjZjQWjKPfP{?aCaWW za?+fQbdlgQkIExnr7m7?hKm@dU)G=i6AHMWaf z&GA=SPG&@Li?XJ8C3#ES&-)EcSBFO4bUH0RQzv@xNzLtLbYdjiC4QR)+(;lV-AOD{ zao*Pxi6-P8%g9ysZHy;XwMX?g4B|eW5U@O5$-e>dB@*WW-%nRkV{7`DN#? z^%=XF)8X;6ntWAMo`^wtKm)?x1zzPMkVgJeiVuOe#S)Z;N5;Z)+{0EOvN3ttUgU^i zO9rl~!~M;a^NT)?YPRYp6y-Vh#uR5bDwXlCjYytE05VxdH7uMX3q^CdEmigUv~^kZ z2IJZiLG$D}H7=u~BFwC{t{k={O?)9EJEL2YrZ{@+(D6<@oaw`go5`0%Ry}r0(r=co zd+K{zk)Fa>`2v|OX`ctzOw^cKManz?g^L{ua@9B9jyRrqDIs5*_DQ%kX&UZI+1zp6 ziu}f2Z*_bz-qx@Ub=w%fB@5S4v<>AjQp?qyN)mdy7ukgJd%@%z54R!D^@6*l&?gnG zr%lFg+HOkoqM*D$-#}0VTqnby)u(m#VDGSEsS`HaiiyYUx1lP}=Wj{$#HHb)qW`jX zp~7+FtxbC7i&K0r&1SkKO7_KAzSL$*+UH)x!jmxM57ga;KF9HRR0|Po$paEJj=t2Y zD{GvOQAcjJEr8V_9eJvzQ9b%e8C$dZZ#`@0c0gQ6xa4CSJdkCbqxX5QJ|qP5+<0FKbdBR~Gy$OwCK5pufYu&3!UZEX8IhD4-^8Oc*d= zFgAtFdgA`~(c%qbkYu2``fF$OLV;4sMM|Z%OdQh;iw*u4e0z>ys>x;f{ujK|XZQqKg*54y=tieCv3_^a=WAZPz? zDS8DMGsWYbHrXh&m5NqWA+NVf?rY;5Uk$+|NSCif+yQam`&L}oc%=eg1g^beGU}=- z>(Uxx8Ij8HrS0o&0m%S>-M8pBb=1+3B4q-Zu4t% z9OwZ`(0o7)49yzaIb;GrpPPX$wF2D{MJ)>9u<7{8iV+||GwU+~fokxbuLg>X|2`-8 zyodN4KTtBlcnPR9QfXiGbc2!JM!wO^`*|Mj^QRPNdeHX5Y=)i|xtg)Qe~JG)>U!28 zDO1&BsM*%+CFaHnIUZ1XDd_T{#?M#(SwBCQ5WHFd$p%B+@yO04M))d=7tmA4my4w5 zsDw72iz}~~n>c&=t@km|IBdOf;eMioZEysJ`XD^BnQSlK7qM3Z*z|g+6H#3m-7Zb< zOw_%;M}|pT11zr>Kt>58io&(uFT0tE;9&<*aikF8dVL{#!a>h=u2lpFkuI(Xv4X6+ z)Dd(ou2&Yi{T|9y6h-JJgebb2hx1BtmmDRJ=)^7z%N#fp^@XlJ_{DHL;F0OQJeN1r z2nolVJ2X4o!QU2H{pYd=+aRHMa|hE)++^Ub0qA4$dqHM^4{47?!tbm z%JbQ?8Y1CYETZu52<0CBgc)&|(wh>aG=)JiO1flryF4+{qg$kqHxiC5PFVU5N#a!k zdIv$l``=TdXFQT{Ey?m2D}>SR5V5FiR9S|>K;AKTM1kBnC@&f$;afbvT9~1CvL=40 zSJ*VYAr=SD+9V+OZZJ@Rpq%-8_d1>?z1Musv*1ks*Go{>oHKJvm~OItk??4N`x@7Z zICd1T<`1Cmziwr?=k{x8hhHo0mqY0^K7scbB?%5kJ?a{v{)nRc@=g+BlyS)J+Kw$M zM=3nF6mVptkV)(<0lMVQDMqdULAJA);ejCGSWDF+JW3VJIH_jr!+(eRIJlj@-N3-~ zvOSDO>Q*tr{=xBNB0Nwxx8}*eLLYQORn5?fwxo_B$O=qyB|3r(!ki0&hVsC{i_tp~ zg)N08QM4#Y8OvJ~SrL4L!zQ9LF(Yt4;0Hx0GmBk~rhUf21i|mVR<;^2*nE{prJoy8U2Yu>`&l^EJ`n+&v8dFhLzP(a4=5e%rnF_ zhp-;5UWaYyb61x@y+r}T4|WO|nbQ2xNe2o|IfAi=a2UHs4o@)0@xttTH4d-x%q~Mf zS>^2Qj94@prR^9zP{&PHJWdW3d~6Ri1AHkIOAW{abc>m2s1*il@p%!RL37LUhg^+cZ2@W*i^nqD$v;}jb6@FTlR+4T;w^cRKNK|N#e#08$ zP}OFvSd_&L-w$yd#26C*%r0O>MVv|-;GV*KYcN{z4w9jW2Oak#BcDyB+vQ=P#ARqM z3KP3c+!!GCk^M*n5>#e+6dU;`ccWKCr(J+RvHxBKZ@>I=`_Sc=7nvi7TifRJ7Wt3y z32tcPi?_jkw!6%8_OpNBMko$|clSOhSaUEih9_+zkzi!4P`&WdnQ&7JsJu%MG6jky zhdLP7I`G@>5(3kf(>Do$q667NP?g!;QqW-b&*z`P8qJWfEZ*L6`8ya}3FD`81=}E@ z*q4O3!d?8R6Y=?a!mW^yY@Sf@JGe5!Q$L+AvmFwe#TjQH+`$`6(EEJOa4RGv`zQ?+ zzk@3n$YlL=u5c?PB-<2nO&IL_0ZI#w&>nS!X8EmT#_#Mbc1tA02VV{tiNY8j9iV&M z6bfc=R8etyXB8FSZfUMyprUL7M<_0#qsD0PESdLuSMpXkfz+o%aMoR@7x#Owl%?DP zJHxSkIDnOiQ{h}V29QJ=M0+YlC?pIT@kq*#7Y`zl2GJG|LLp(?IC@1tlLnlNPS^M* zVOzxJ5gsruA;$}kJM7F<+N}1%=J~5pt05Ae#cIjKxQ9JiRX03}koJ5I9c__NZ6+a7 z2x1W@jO#!CfU|!ifIiz50Ate$o$#BdE}j*zpY0puJnw{`=o$Rwhx-mk zJa79E@2m#fkM1(`ULAu+_p*h-w@9U!T1Um{DL}3jG=S3llG@dplIn=}%la|1?$L7Bw6=23VN=4Xn;qKt&+xE$~Rfvf~&I~B$-4*K)w zuCvBSxQ-oT2i6^|suU~1I~i0NHcwmc_b>z2I>39z8%yusbGN~xNm30KvmJzM?8}Aj zzxCjxrTHEAmo6G4;a_3>-YZQ`IvU@wC~&t&LchZHoy!F$6$LA-)VDJ4XqHsV6&W~c zxI+{$(a+NvM~#qhY!CFEaNtQ|Nf-3(^Nq973<=9-3zxrxvETD%4Dey=>i8Qb9IGJ` zp3`FvVU#=g(^gdl^c7haSq9ojRb`Q4S?cbTj>br+cF$~t=&?j)yL!2Du5?x~Myd*u z0K>?Ui=j*Xg#FZu!x|?LRD|*;;B{X%8jl?q^yIHAUNlI;w{(RQL>OySjC+&u>py<$ z!K#aY>y*?u8^iB9=fY0J&m_=`2jd9Md{%(oKCHcm#I=Llf^qcbg~ERBYSb2-yFT>X z)w3Rwr1Xohf>x2g;K7hfNbuFnNSsNE0+7rHJ!bc{p3+PNUBEAFR>DDAZC4>#RhKa8 zBYfQ_sT1^oF9ymTwa|2D2cM^O9Y!R}IFhE2Ih)R&*yDps)^MpzCdjCqWsD5g1GYa9J{=j=Xp*qyDxx z-bnYvsBeh9fOWRI7bm@qY^13t?&(-WP`sO=xq64nxkl-&(oDBzy!g9~Z=bZQqE({2TQpC%)jzquBEuWY2m?k}`Dis|&ffEiAk@{%zti zeecU$c$6aUI>ruc)jX(xgo@gAFWn<-JF4TRh!E0F(xj0jOFF_sY0H%>7v216Yot!D zA0=Te-7G?>qhOu#1P_`E$#BjAoe)k$YlBC8OAE$}H~6QW&4R_t^?2>vy0dlyYFYm1RiGzi35r#ihNCO?TV) z#UzZhVtO&DzS(E~n=8LpGCp>;viArNPVrwh z*JN{6>Y3J$#EVg!mLsG1SY55ygV)el83VI?&zn^8RK^k0(_51ehv2$}9 z#eSBI3STe#EDzYC&=gu{L-GXsk-vIcg%N#=TqTJ!8-Iw;bwNXF!%!57Y zhwe#Vei>ZapjbBqDxt{b1B1S_FnCFG48tb~G<&|`h$U?oH-{ScnnRUWK_f|by7 zRzfaD9G7%1S1vFeJ8|Jcb2W!i@ZR!6~N z^j2|Nj*Q~py%;Upe_A~rh?c6V-(YcyE;zw!4iiy1f?h66r_$I62p8k!JM4FZkYzI&OCV)z(l+H5@Zhdy5a8QM<3f26S)-r-2Nxnk6R zxfG|tV$vO;j;2yj60ks767oq|RQR^u@a;Pg&;SX)G!goOFmQ)?yKCZDXv6UMe`x;- z{b9r&G6QYk7(lUK=~OC_`j^pXsEGKzwlZjB2$ru#s^C9FEK2wl5LuyG?7(m+sMx>I zrLp5L7|9Bo(TTbeKw0RRXrVt!?PBwOK|gpY{mmOE*QBjk`vg>i#zMp*#Zkz%YuM32 zjqsGpsLiMf)I>$<@3K)tkns}@!tb=(Q&(p=b`o@g;00Ms2bgTZngHDpg)yQ+zd}YE zINaU8z!$0_AI(rmFxr|l4GAXpT+l)zQB>e-h^aK&ZtmPkqQPaEtZyuM&H-^xE_nN{ zDF(+fma10L?iis-=lYH)6Na5`hVuaG!y$%a75e>I%jn-Oc+(^Lk-Lmn8=zFVLFcss zR|G=4i}}PG&6(gvGjXHgx7|AV=B)!-)8!n}k2}{k=>Hy8^&5McXLuH)X!nzZK*1*R zB^ddn=&=R{Wxq8_yW~j5A@g@BYRoVVq9yAOghIj~ISaRb{*jZM_Ybs_kmpev?Rk~Q zl|6Ifsb{DTt=vAg87IFn2-P$G?i(`Ph|JI&-u;&6YBx^FuAy8%ilgjm!RS_wvQ~6$pv+EeQVBSLKVShL*&!5h`A7%)YKSOg>)Bi-LjemxubqAgZU zGEQe0EGJw}n@LmoIfls|B_@;sWzjX&$q_1QNR!x+9&@YZALsSMISc151D$>k15+K< zZD=pRDa?qI^zTp!RR^y_EY56>Non^}58 z*VX8ji6aUFwk9D#)1;Y#Q?m(Xwlx(OG0f4w&1}G-v7n%Yo50!BEf3eiT8c+_dr6c4 zE>6n^Mgsh%%Ae0(`?+WpG1`D>=(JFGBaD~7M#o=O-g8Ey-nnt79>x+19z6Z^TOa0h z_G1NQj41{=*%*{VJUG7!W^~WO_plSp=x3;ZqZ!?GEI^*rX=lN+^9!1Z@cO~R5BC;= zX`Oz$3Z`{BIT5CHUt$Uleu9Iai(-F?clB+4N!Ok|;G}^jkkB9fxulEm`H(pIGi1bk z|1;EtTc7fuAv|YeEW*zIHD~5F65Y1`i-XGB6^5+9^~7?RM`AIj2yX7w-q?u$A#Ph0 zK6$iz8_Wr>iD<{$$s~Rfh30Hn0;Q#gZ==v*8h$iBa~7`_X**?7BF z?ussH9nA-AJ=;CwiW&LaZZ{JSk7$mJs7*10F%HqD$YUCYmy)DOjdx|(5L4q34t$ub z&E1SLEEN423L?L-Q%<%rq@A8wa+gBI>AMvwE`Im>R*~TasU>^r0A|EmUskFz5r|HW zQJ78k2!&1l2t^p{(vD()o8U(c5ZtOT+NH&|w83FK8Z@#(AiPXB>dFWIbmQLyH~Xkj zT3n0y62ziGqGVlHznyW=BrT?WCq|`Xnp}uRE*HD8c+k>d+S{@ihlD~V=S2rA$G~O; zHY2bZBrFI&#b%hJmIl=(*+3%UkO_L(ixVZV8-d*j>;@&~53w8exTQh1i0)fxBrGyf zFZz7D2~0;|Is(%{hxtQHhc#?zaBZ4RED{o#B+yx;z-$C&BQP5zEC@fvY#4)<2GgM^ z=|Lt#6ZGvSFdBi;2#f{^3&Kw^8rHC-!L?|9H?c@aWRhOAZE%tjn2o?}&|&@*v$17A zNqOJWouu3@K%(}7Qu~mcglSW1|a9M6vgWwMth`kdUK80{LPO?%NqT?foi753Gs zFNAJ3NP}yO-NYgxk@|pB_;qO|>8za7sR5y|sRE(Mkfh$4w!DKbBjz~`VGv%X=$W^H znTS*4xzuSAOp9)56bU~BFli9UT7`g#DXM$rZzexPGHnGe2_jq?)F+vH_h_Q2!eSwB zB8LoY67qv*0NW0e5HCr-$Nrlk1vq8W#Zg<{=fe6Y+}8RB&IkIL2CfDg_rf%|e|At1 zI#nA;YzoH!lrohR3F?Fa%Z~&wu*m^~FKJ-#B@+y0t4v6~28I(ZRspa!);jF<0K{fN zCJ!1Xu*A`E!W{~QaEDSMyhxN+Qr&Q;Y9YAQD^Xomb%U*7!d+o6U{f&!$~)p-@C1?3 z+$Hw{TWG{91ULK6S&6<9i~XVloerCp z)E8iQ@cYcXpT#5w-}cY9s*zjXz&$2IJgYO**8>r_N2yDuF!2X2|ckE=? zK+P;Yqi!azPFM6bTAcFY#*7i-lWAH$UMAXj-4$jZtm_Nk)76Co;v|5+7TW`PFYqBy zL5Rf@qZZHlFP6^wKH>0wWJ6Poq7aRYFBah*`$RO=*z0g3K(kRph!i3e1DVtpIYCU5 z=Yhq%cf+=8#C&TwjiLmVb99V)dzCQOOkG5B{+{kx@?I{~yAXiac#1286Y z$G{|0`ZU-W9@fbw)LDE@@D>cJgRTmS>6NMwjeswfC9au{rV4vGl5l6YAz_nAe4$8D z>w)$A%)P;EV*>M0(ZdA6c0A%!fhjV*vx(h``{MI4veE_m`?++`;#^cTZt# zsS44sd0~+=_gLhMd}Ac+2VVfWei4IIk;Q|>0H`D6TH@VvN5qIRSdwI2-28;AA%I79 zFHU+JnHO{zGm#37nJk3DMjAq4KilwWfA2ld@OhF!>e?7!h*JjLK=5aP+0Cy%<4ec3 zhjU=cffnC(4oplM#3xx*kFiEmi^T(n@k6~%Jw(k9nb4OJjxrh8fWQWX0vlk!lWc&; zSfi=MK9a)tPqYC>&N%838d!mIc&-%~GinFI?`a1dlAx`@-lVs2X;7bT3kpoUcv}Mo zo*um3x>(eZ@EwOGIOMvGdJB`Vw$j$Jpv}3hK7XgS6^u6G!ZutsNvgrN4hS~{kwa9L zg24Vx7L=|qoBf1UC7ZEkR02Y|!$|uu(4-Mzh@U13F)DmN!$xy7nD*{dookXp5JPyd zd2n`266!gvCe|IJVx%eyb-O94o4v4^1Y?7Q`;@Ukl@Q!0%j~PL`6-ObHIUd;jKQS_ zN-SR*$KY{_X#GiFiSr=QLZ`zf_XG?~wi3g`ghFpOF|b=t4AipF#0^a1z|gV$3=#}% zLj{9Br=DH_UiQk62z?C>t7YKQp;9>ZRE21mb+bv4c-la;xcf^^Q!ZyvQU&(%1fzx= zxVKPm5PtQiD?fOC?eV3TFs>!Wb!2k5vQTr2t}bc1JIM?{4M|E!Fw@R?) z@*_msz_FyWxn+0RQrXqUV`e14gVV5?Ln$0X#7&W5DPnLz7Qrc8BHl_A`#9>s8A2MoBNls3JLgH)>IG9*&i63Ya(Ag~3GVmPn`2Dm9@NEu@jOPer;L=IE3 zn7|wa=HO8b2j;+l3reZez&L27O9De8h9Ln=UbO?bxu<2heGy0&VZmCfQDt&^%W)4DX zlg=1}^MN*;GI@#zseUcE@3bjQriIC@{Btb2&on6(&y*L?SuUP4sntMXQLcgFD>(`) z-xyf9$KXQ-7<@UTCKu&5LQ)jeV_c(|a*_l>>47L|{bCq!q*32c&ebH^Ae4T8-Y zOSm)$)O=AEq-EXBw2u@gHq)#LPUwhyKynkGHqECsWAedlxMO(w_seWx_Rwsg(<1~w z>u?)JC(wVJnqzIQ-iU*X&EBjruM{uIV`nd130$|QC@+c87W*2b?fhD&H zr5Gm6c}4vCj(&Z{%Y`>vMiJ+#+ebbT2060j5_wQ}nlR=O@fJs+TI|q?gItJMge=mF z^#N=45XZWJF?R@wI6rwqeuFvlA3tBPot-?0eU|eQA15W0tTUdDu=aKgEPWn>TgG&F zbUa_Gf@zc6&-OOaY*G{B$zGwR2P(lF~Wl{3V`Kby*F zBj7*9KKjY$Vbks-n+J(RpP4*@v5l~Uu}uIPW`CEl?I%x%<1~gnO9zQW-x)fB(T%X5 zHoDm}a{ON7n>7!IW9yneW5tulI7|Kw?@><8%L7+BY18szOeU8}=m^2Lsbw~^q*2QdEBcC^H{kQuoSDCXv z&*ctG{CK;O^kebXlhhZEuZC)(=QRs^=37g!$OW&4Hs+!*@w${{sdn(IAZcUuR|5>g zrSuCl`3u&^&dTK|{LdMhLtM@pUZkA(v82tC6r;py3AGLmTTM^`xD5&CimN*ubdVKvgN^FzcOe7M?=3i00ukF`) zyZ1U@j>>uM^X(P61@->iCU-Q(lIIXtE zJ7Klni5V%gi$ExF`PV9!Y!~NTBVV0y1<*qAwOxrEI8NX=&?@*I@#uthyOf_b3Xz=3 z6;K%f%@xO~T&dFr|K+$I_W}Mb00AYX64&dr^KGsMz6alc@6|#rp9J6ZI8Ljf?@Jtq zN}#VxuRX5TY2&iEd`X0;X898QSVs+1W&ju9fL6b1s1opdVODOb;Ac>49iXZCA^4%N zhaW`_=l~-~Goxit|9tTUtH4ykMr)AP5~v-12M}vj6_&*Hi(I~^7S^aRXw@oj5(CSl zqEHrqRW9GDVH!a-==&NVAJD>KA*dJw5mQ(J(hJL;QN4-?gxuwmNJzMP^nX;n2>!AH=Ka?`>B*EO4tfRKS04o9Gm!a3$aTsVv`Br_(_i@XL>;;q6zfGgwDsfXKX@Ii{yb>g84q($i4Zy;S1$12hC! z;^M7rSB^B>wT?d7X1BsDC$2W{>G)zY$}h&@SIEI(4>k44ci&Fias_e0jq2jtF|ks) z!D#f69dCiya-hA!=){YaR%r(KDOR9_*2`RDoSM(0@%Md`D<2cmSkHn%HqmuOIVMG= z8(UAton0fB9A|)dOQ1PUEsw^pATrcTAz^z?05;iHJ0-M${<)mV959E~Qa>@J_q@j$C87D9fRD}J8BwGvmX z04XNI$6=)Iq^C74er67>emF0xxw0B7b@bde8y-L%gjcAZVPmRrM^S1`55OwS7qcEW zihMSv^8UD8wZ?n7yUxn9aTqZ61sIcZ-E_0_RRWw@^ekh0yPj@)IQsxY1Bkd8(N@h9 z_c;J+g;Gw{xm32P>|Rr&Qz@-Pg+(u~=kzHrC;7oT9bIjU;%BCk+Hc;{WiW=gf>d7s zYd6{m2`-f!#M9Dg#d9qM^s7_yQ|a*hieG|}^SN#cfWA>BrSaW$WW8>V0Hf+Y$5r&G ztTe+-t_L-?=DXuTFI;Udlw^5Vm~@s}QAu^Q>~1h@52|rx@uimHyWLlI2nd4p2SU91iw+{P0U0)Y|cWq$^LWBVPO% z!oIxBM7ZYh7^&35!<-&j&bov2AXSS}QrsWndP zE*ItZ`OKs{%4T!(f*KC1xz}j9Fc@Wq`!JfnhR0b?n)RFdZW#^B1>ir(9V<6!wVl1KH==~$_SyTeJoze|OCz@+tn5z_eG zIwFYEdZY$AnY3!Cz(0I#C|_S;aT<&9n^gIjF1NbbS#dI&w>}SpO^lCys=2}Yv7hT? z%FEb12TaVzCWmJ5#t^WqcGcW`luh=_$HqohNBmTI6W_z}!9wg-6RUn${K$5vqt-zh z_Hx>36=^p0?R4GfzHX0{~ z*5i5a?WpVrsus)lghe-s2M7>BpP#B(wIUzKi_aW4mQ&?XRISWU+g3&2Y0=8*xKp~B z#A@1}w$`x*bjylmh2Bsyiabvj%KOB497}zGULMQ6W}B0*NNcv;$6Ft{-J%q& zz=0&o;^Mg1KNo0t4)@5D3TOBwS1N@UNloR#o9Qh7IqJ>e{GVTdrh3?=LjxO|f;s%U zCgbmspMcAh8_-%|?-4p`hHJKMNVC$s^Nx(hSIx92;O9ln^2SuN3D{~0c8}6quLpfq z0|WST20^e58Cjo_;cdZ|k>jkswZU{)P*#Va1+QV^-H*EAozX*)6Mk?63{>i zw*fu^GlV~52h{kShxV`pjBg?pDa`m?COn-NW;I|s=AG%_$ko$e8G%d)FeF^98PWBQ z+Ez!Ik4tG(SIyj?{1$gZkKQAzP9ZYlyR zQHA)8Ayihn_;#EWH(Y;IpN3m{G>PP2gQe>y70M9InzI6^q&3U!inY`@A5F}c$(CH} z?~&5v34a`{VE0jx$!v3zd?sDlv_1~CiXKbUM~Qs&Yd0OIB8lvLSsKe&Tz{?JU2YtdG;)u(fJ{{$K13BRjph zK8dfRQ8PEK^c#FC(TYd6`BX|w?-~b0nlkOG>r+Dhj79k58|*=cIn-ae7*8pmnaC1M z)>^EurWg6>CY|2pqt%fjWY<|>`hdZS@`KGJzv<+1pQ8SjtcCN(GlUpbqawZ39u(Dripk(a~My1vuJ zUXPy+Q@dSStmvC&`M6yRn+^xqOXR=c1U^h6J@EReG5L^$lHN=l8mFYp zG(jz0b(@NZ^PB9bGN~kmH#yf)bBT4cmycIk$*O9IUggr2cxu&DqLoSn=(WFGe2t6m z+j%%V=8B_CS8kuei_|8srn~!Sx1L@s8yU4({~CUvdf)&qmf^4~s?*V`n9dYC!$Ci* zERe|EKb`39M@kx{H+@8*3!z7pDVfISF<_H6cz0i zntxm7yKXg|Nu?tF*Yt*qt~F7LmDTKKl`Bf)%?H;xSQ~FVb%^=r#O) zHHnH^v=iq6uW(cypyeov;a%%Xc~9}R2$vq@V{eU!_{l4|K`-4epW=fi7ZkOCk=xboJhX&tkFfP%bdBZU^rzSA`Yn)j> zsCka(Hz2hG#D)GKs);jL1Tz@=SmJQ2A4qVuD)5pa1^KoyR~WM7%8eeLS!S4BOs@ol z42Kl(q|eKPNey}0y_%sDgD^Cy!FuoviR%GV=`<2~6or&Q$Hubd0=+#WEniwGPy z%X4%1RdF`s;1(NK1>b3Krw#m50RPlE?iKw5{ucMf2T%}v=4J>3e||-%dGxtpAQ)v} zp<=v>zQmu=w=+)a7=KI(z}@3sbG1bol<8Nw*E~O50F_n6@Tqg06@W+p>RaY@Jmy~C zyYa7957gG@W`%g9@|u%co!87b)~-hTpVeG$r7U;isgmT{C4ic4ZI&O~L!~NZHp8%( zkBzqV%0`Q3<*)R#1!ls+p3^q-s6MD{CZMKLVsOZ&_^pK})6DxDqAN3ra*HEPX|!l17wcS<5Ih`rc^SB6R_mK}l0^Tlp-J6%pH z2Fj`~?xa*^vQ3GT*hZ{Zc3LmH{z?z{!&crT^<$yB4C8K`i{5NG1EHcOZ;~{I*l)8T|w( z0Xk}}D|MhDWfL7Ifub}hSFyL`s+G+V>$?Dyg!&BB_c6QAb@GiJxBARhyJ@M4zHXM| zhxs8fsn_SDrgk_A@x^qwPpZ*T=7ZYtS=Y+;M#W!~!y+cRR z(^~X2Nv0|@uA*_3PIRaZ_4H~0-H39%nVb{{^Ftf_SK4nEn^d?8HzVhlH8}hH*E1>MPTg&Gg2kuR5%LOiQ4Pv-c)k zsv_Ci@LzG|`>yX)E&G%VDtcGn{>lkwKtvq+_R7U1f--|Bz52hu0XSx=fSGwt-R_F6 zu1YnC*b#e(XYbfVK=Xj*H)fTiSbV(a9o?o0df zLsXj&yxq>(xg^8u2C^vop)%l=ErG*pHdt&J*B6`3l2mAwt+H!(rbx;1LjjltwBuuf zTU~kue>laOO%_v8-6~6bn;*jS8a1yCkR`7}MUh%zLB|d}eB&u%^b!HKGjLUz=#+F@6r8~$BCJ^}a_aj#yBY)m(5CFBiY zb@#|NdLDiowi4N}n3LdRvrrk;+O>Em;ayB0aJ1$#1te@}G>m>NMSB3v@b8v<`DYz0 zr^LHIYi&8+Gzf#{@z>#>;aA{eE38$6qFOTeDymYet=oqx;7{+s3C(V+wI zu{xBahT8hoN7m72p z(ey+!r2<}Q@#kpnpt>shZ7uu=rf(*B0t>5Jc`A%;xYgfI=}4Kk)@H~fs=noWBh=ar zd3cVJbMQ-BpL#-5f`ls8UFlOpo(ZEe3pxZ3VZh#uJx4&th)^kGdp{hkZBo<-NKI#2 zEODSojTeJ`8E!Q&r873v@F!ecV;#~1ZMxH4U|Tzi^z3#i@Coo^!}CflFdh1KHmOut z2oChVx8BL&ZxQdoNZNqW(SPN$sBqVRMsq<#|HQ%;eGkT?!8Nf9R&jo!I6f3oQYo8QsPCSGIRFkjN*_5Qsgz@B7@14;63Rv)O6@Auti&x7&Dl4#tRRC z)>@P11;v^pO?!_CP8(fUh0-Pn6@wTsP)U@;U^}LRaz!;gzAc)iVwnkltwS_is**FN z?GG_w!v-^Lrd81KkO+U2c3WQWjD>QgV$aJ0QYEL=xt15PpiHj}psNHj8{-QN_2|uh zU)~FB-$92ps2l2CtSsF~I3g{qhpI%xiqnl14~o7HYeG@=Za8UmBmBD_O*429ii`vi zHVM9{2jHuNjMc+Gpjer^;E(7r08&G|)&z#5)&h8K)UEk*9N?j52=ijQGHli9mOP|u z<1W(;Ml8N-1@x$^*2fbB-{W<*F)FsyQ5*P8%9wWABBnfNKM_`nK895_v#uoj6cT9`${Mx479%CG2 z5Ar(>4jg$>ZjbnJQ(YC+7TV=_rU)(hcAFB{kO}cfNzU7KQvl7w%*5_aZMH+RM1Rkk z2tO&}D*-CWMP_ZyWC!E;QN=4Y>-!1Q>{soY!HH`INWdU`M(o4bxMUy&1gDzC0Q1JG zvS>p@jRlaiVfQDqHmynhjxuC~mFZF{U3J(VlOKXr+qB!E4AC5_)vUeNTDop2Z$a}y z*&>?E)b(_6MbhlRpNcMFNHbw2m-~U->@#L};-cz!CN7uAVqIW{gCbg8i<@HJYj+d} zbY+zAslJ=%k$$i%jHxBVHuG`;o+=f%y)tc&id$|UTK2SdAa$`ZOY9a)uUc4WOg^v8 z1VP=BSaB|OcYxjMn&oD=ip_1R*u#u+-%%c~WjeNms|ol&sGtA1m-s9>Vu^}AhShws|` zBmJa6b*)P&XfC!bQPzsi7M(NI)=o8>0@R%@harKNL453fg1pS}dWmL zIj0- zj;|kRk^Aq7Sz0*lH^^Zdz=AHzq+%WV z3{{~rKXtmSt7bfy-n|h6BCwr+ktfJjHbJ8^m=-Osw%*yLx8LyQ) zTX@3(DqV`gnJwJY$Uavt@P<$>&Nghb(9#6DjCZuz(>w!11v zQ2V~cxlrEcYaWaAb!#^2EZhdq4eM>l;viZS+f<3sH>H8zt`xPc;G^z@FkG*;W^7t6 zjQKtAFDs?I){m`XWPn9yBB+L54#oyXFGNh*k#2jyTNbx~FdOX`@cPtKs~dmYC=C0{ z;%36yX5DgeznotcSOF_wk)+pEur$yW4?{ap!82m*l`SYwfHl!s7OT^;wHBAPpxk7* zfo(KMt78m%-g-WcC4rF_)8%Mcq-l1pR#*FZ)!s=>N#7Im0otmw8>Wb1t2H%}t+B?uhE8_DDpvfJ|doAuD%7b}HIH*ZzwB0BRL15}qJrrax3acR)2?DoALsxSqt=HvM> z&jcPi-?RCqwOwzPtG-?8F@`zCg2qrRc!NK4^8v|q#^jc3Y#VC6ZdLkJv2FWCLFP=48i?!8 z+>+$wKq%#RmST42j%EYP58&p)2-cui-`USwZJ84% zond|K(`0=+$NRO;w&t%0Zl;xNes2s&0pkJNCnC}8c+QBcuj}TZtrJFnV;BpP-D}2d zH`{p7pe$L7zGij;Eni%1SsJJcFTn1;wqpdMupm)gtl*k3DfaRdQANPQMJy3?RhySl zbyJ(q`-@7+^QyXK%-bWSWbC{>08(~7-)`eT6y>I1^cU*^FB97tO0YDsZae6FQnIxU zD-6`K&P+=B+AH-58JG}$J!AnSTy3!)!h88fK=y@Jp`+!o+Rk&Twq#D2+D@GoJL8=j zNG;B57NK5I&AV1p7IZLe#ggyu+KVEGH(On;Zd84&Yt57`R%{OkXx#|tjUQc{>?a^y!9NLTJx58Fe@_H&$V|5L$h! z%@KJETk8M^#iZi&uC(?1$!KeJE4aZni!y8rXm{-qr5;->8MB__*aR|KQ9?Bj?`BMW zG-{Akn2J#=%KVs@O@1`@(IH~OCey;&z}9Hx-p16cOlxl`n|e)jy~(zhr8|=3AF}+n0s^0OsZK+4K;o6MAx?HCn zno;l^irb}vHMJ7Yafv7fD_xU;2RTkp@A-fyyfT14y5k%W}Rb}WxEOQ5CJK-3$_U~ z5!#}XF`eeibTGut5r+{%lcPlB%xHg%c2S&$oyu(JO$c)+3LUJWd37Eba-xS9*%8WW zn-0K@LWR%~wPrXgHb8>`VPR#d%_o&K)O0ikHZz;d!~YpT!G8MKG05NxBE%>y4Daz$Z;X$@nhj0x54wK==r zRgt2vItZ{Lw$8Veilv(M1~JEW00mY&vo);*<;{qtl-;Z&wQFj*&&jKGi8ESpo*xw1m+xzoo{EFn}jy(=?f?*u(PxL{D&xpm&H`7fi0-W_Sz5+xy+p zSZAYLwzUP~rHdIzegc2FxMqsIAZ->nneX;?b!Y1WCQZXCabnY*(ukcAMM(3pdU;bH0?(7;j2^-ao0^Wc(B=|}aBh9E1OmELgQX}N)Nlxu zw@?FK8bg97yK@yL+az6K{Gza70#~1RnrPEeOt6rnehp~mVl{Ech$tf%tz+KSvbSZv zSvDECSr)4pU4)%oUv#i)g8-_3lv>fH+$a?sFf%|mTnf5L1tYNeHh~#vJz!jxm^vFIL?BC5C=$pTt+VV>Lxu(>npGyR$>e~sYwJ$A z-+)R}zE_uUeCCgrmd7kK5}nERw8L`6(z*xJ4U`+aB2nN^N@I+Df(U zPNXWZRlp%M&N;T7FO0#y9#n3`i;NZ>XgZIoHeqeeW^V2foV*b#w* z6EmNvBPf8Y;!dau)3I!ub60h37Cg3JRwf8XAdK(wWqa0PNvo@swzY|Cf*uLHtXby5 zuDbq=hu5Sq)LVmHZ>f>fZH&tTB2N}YTp(rEFZZ!#q0!WvydqQ4tXja;r_QQA7#6G%HHW5j8_WsB>WPaJ%5xnOsQYk zVjAJktE#f%*4+}Ycq7DE*ZH_rD?i%#Wxs6oifeUV6nuNK8uXT}Qm0Me8jV+w?Y^N& z-JxtU0Mx1{xfiZNFntg0NXs zsMTmGx~vs&&TLgd`@yzP_Yn$l#9bNZ?5!-=Dnxl0cyc2wSEAxkzQ+dO`)!fzs}(=+ zbl%nvWirDvCsfqsx_ymShJAXj$4&V z1glFEB^&@ilH6E8hxmTwcs*mgt{UdL#nhcSE}#WPAMF6j`3^Fu(w< zf@d=ot199nMjF(hif^;4rdBWR5C)fKW6RN6!=~OvQG6SG1=HVo7dKZ+3`mIcAgDZrf!R z`1|Z`CT=)>T;6zX$+Jj(QEwBv+aXv&+BcDD9x4GJ)9Rse3xPPJ!_k7-$#*MTazQFV zc{r2$6>-z8uK7l(A`LOZ z5+GNYdO=%@B@45G_5oa`yzIIrsCxBpMU7*{)*E{JO~76$c*g8vVMxG;CI@y6ZV~nBY8Y z7ix_r=MiAHy>Ii(8B5i_glYdXgUJ+h{+ZNdtcMMkldE<=;tq`I0{gXTV-%ymf? z28unh=vKhikxhr!<<)$)clhcgjM=jWTwiO$WzX9C^mfPt#I^4$>k2?Ad4n}~^|dcn zB<-YWectSmc||j4aJ@{Ft#*Cg9Ki-Vn-R*EL%9+u&Afr$;pGB?cf4U9o~}yk>ULuH zicG%jQhOWTGo6j9Z982HFDUd-Am_jqme+Jp*=*~OWjfn zZB*Hbt^`|gU+NaS=8UGAh=G{w5;)<~YzylPox&HGT^0@2ZZ6s)(J5_okwSq~_I5q8 zY;xV8MJ^pqa~5r+=&>wR<`7DuA`|)b?oRX3bUX>e>-F7#RSHh zEp|3ixVm3b`ITdJCdzQthWBoN<`;o8&58Arb+mylUUpU+XrNYEj^FP$0*xtqbOix- ztnad$3NsT4VqKy4I%&5mg$je&3wTr~r*NY`DbXIoHH_tYu%Z3!Y6Z_MScEme$bHDj zsfYC&GF+NboBbB4w;Xlhdd-ow--=yvOo_YmNGJ_3uUlkbZn>G+reQ7swAsOVU*}wP zRc+u?T53+HPFJ6MTtkgRteiS;4>{Dpxgn~s?V#rcBZ+gc{d(-GRkK4cY~B+3hKayU z0?28JZC2={f6u_bS%M)oYLR=1FEv`g%q={g zSP*8hy`W`aG5Ne{Fl9tvXw^|L)E1I&!R}#JwnoG4_ZI<=tjluHXj6sxL@EZ@$fhen zL1+U1MqN>?C9#sHX|mRGYGoJc!*d>KjD$@U55O9}s_Z0sZE1{e=-#%(w~CvRz-Ww7 zKCyKJ&w5j7S*e-6g;*jp+&0-fzhCxerR|{NF13ojhr=%h;EP`P1+)#n7%vASmt#tt z?&1){Xq=|)$zh4rH)zqRY-p&4jK>APxsY~kbPXWeSe^4)b2{0W!4{hVjhVUU$S@!_4$9V=Cn~+)hAQz_UK0hB7x?!-!F` zS9_u?uPf7DXap^PwYC>ELUmwkppf~YLw=bu{A7WrJ6{s zgz{ibF9*!Uavy>#nr2m_(e{YYPv)w|Ks5Tc)g&s@PNCL57+x>!*uto_ zRc-|n%pdx8Z-tgRO~)Q-Es-n=C|{S4@;WTKL%z^la}_}`7WAME7fY+@X3Q_~Ia$Vv z+_Vl=j9Pm~aBZSVuW@ct+-NY#grQFj!U|z%;v(NvnuDBLOaM>)S0W(u+N<0!HG?Jp`zYbd&{F zY8hFn!x95QONJf?z%UI3c~sg8eUfk(k+ocMx$B7xaJpa&pv~ScLYsJ<&DRPOX*usB zW1@tcEW6P7;=0^t0cLODC@`zcn5~bPpu-WYWtPP?uv?aG`6FjA)v7z-GXUp@!UZeX zV->bTb{BrJ0zoT(%PtnBfj*`~-2{3esv6nYj^xvDduP!q zOr@GlYwD8mnlrg*wXJ!%ZU~jyin5HU+k<@;K&Z8ZSt7Bg%9{~GJLX*56j^J_75pme z(~u0jX%=!R0m?)0h=p1RW2@E4Xjeo~k~TS^n`8WNugK{ zT+^S zoQ8R$GwX1>hA9h3Vb-vX?yLZ}DZGr>1_g}vj#HOBzXnKEoS?F-V6aw{3X2Kjpo<2c zC#-^ww;f9%hm#VfW3$#eU#J7M>y50k!Pkc@sIt{@3gA<$Gj6Sxf$FtefbXltGR(BA z&{0lV+!k{ zA}zEn-rRJYHkb@V!}?a4F3h`z+MVRr{;)(l1dRI)t-PR7r@h(vtMRfUj(0dPpd-J{ zpp(tOXpeZOCy;+UbbUwgGJ?#L6?gCQCqjb<1@u!exOV%ci$( zVafzs^TU$Mh_Ypy?P{OWIj0kJ`1!184uuJ=R0j|?t^{-58pwFuMAK^KF?QLS)q1m{ zUJO)dQW!UuyS}(5G=Q=_pJgCb+LRER9C>X|+|kOqwx3ovjN8=JzHgaE6T7C(?~_%7 zGzMX_=5)2|`#8|%o}`yYOuol>v=eABfix^>%|lxfUhMHQZR|E=do(iZs}k1MN{E$b z_%}mFyNFzt3m!b%;blsME!~=#`8Oli!N>=JI~7*ay4ba58s>0wnR3|{?r+CyuEogx zk-WW_N3K;|zs4?M>8>`8-1|~$9b$Z^eG#6Z^yuwzirnhxR+d5a@Fnglez&**I3uHr;;6Q{Y zTi)2|)lI#N^aI^-={7K<6xP$Lh(C6lY60#;WE&eR!x^OeN`u&yYw#|=$rFVL+6=>b4%04-eO$)bZmsJNMl$Ei@OH(H zYTUs07ge-7VQ)B_?oH<<0As#d$E6DmK|{$! zD?Ou0%TtluZIRW)0T0*x_JAJ3TVHd-UxpQ)kvD`sFBa==*Qa>d0wx#h2$1jZVY-JE z>(hd?q%L$KHN8wYti3jbq3To0_v_OM&SY zQ;}UoZUBkb6{y*BS!yqc0p2sfB2H^NWxg~UxXg}g!@1iGaLZPZpuQ1tyh4mO$Vcd8*a{bZo#*#h##hrE28i-lXmUTIoO{ z7ePZ~9H0Tq{s76dlP$Ld=*c#MLSq3yGVE6DDZ1AKhj+|ghoYpi;sS86=)+{i?o}lt z&svlP<9MJJYE);)5WLf?l5Mxwu@=lK5H@21B6rAuUKc0ONUc?eK$RO3Ix4Cjx73u; zcxut!X4f%Pe&aXVb-BN^I?g;lVp#`;ob{lNb=Mxrpad0wQ7=Z;N(;6$slXSBz}@qSY(DDc2x2jQlVnddBWY@%}#82ND-8i))$@et191#4;Hqvim7tX5|2 zGO#J+pzj-uGUy9}N4V=!N!-o}VQEgVP951>z|SqMnBia#FB`4pUf<&-2Ok%>O-T3lk|>a z<`DD*mNXlAZ!~}XFcZzke{bnI+!fGeGB1?g|ozwy|xM}8fq@x zxOEtx2pCO)#%uIUy&9CJpRS3j+kQ#*8BCH zY>j8rfuj#-RV2HDQ1lIxY3m-`p$hAIn6KX3g*ovPfXTXznqLe5AD2dlt0 z@%-}C7uO5F)t+Kavptd&biV8$TB(lIRth=5R#6pf(H_m?I-p$xw8Ret8LN$UR9ksPMHM1!JqgU~2J2H?v_;gX9ZTvbtRGNAtk6Za-qgBj%>xQx{!iB0^wG@kL zC{}S|^^JkcX7;g`MqsIkK9 zlWxC7LExhA6FiE*o$CmviS9fmV1DyV~5kYNnwJ|l-3NNPGA(86en}OGMP=bU30bs+J$oINqF8 z!~Aa?_IDj=AAsk4vuOCxbW*V^OGIDxh8>q$ck_sk77dJAGlQDWtt??MGwQAN{_qsL zVhZz>Y)lotU+9?3cD>z|Ro1TJdBwFVt4Xt1sliiduy1fYuxV{$L-PJy-7Wy#4p?0k z3SkPhRyTfFYb$!CKWrBFdz%RWbgGVEikbC-#T=;bl+&>$gRu>NQb8tco*L_gemx&f zP;;t5RTQq}hboxhBH-z$rkAy{?ss~@(i!<(3>k6#p0}jn!E9nXeq$sT3L9xoON*w} zsZrgT)|we4VQ4{}*mqik2?VLzO3kVj3drcc|NC^{*Wt{r;}Kn_gU3z>jtv#Clsm@K z{cT{#3IK(MyVvYo@ZYzPEn-y!f1d{O0i{@CBo=lK2dEj(Y4H;gs% zojUwQfZwi80DRdP0(U&|?dsu>5C{0-()VMP>jy>2lyuP{_3M+$UjA+a@aoxu)D?gE zb{^eS;tPVI>yi*1&-U#vxr<{9&xFS3roA>!HNX9OePH1S+ph(lEsZ7JRdi|dwwq%w z|2U6Q5yQIfn?vJH+#By5SJG;ZqsY2+KI-m#BHP`gd|w=wbE7s|dPwEf`Fdb-j|bVk zJ+1EL|2n|4)41p~I@dLw|0)#XZ+`pzpBF>s!hsGsos*^TcH4=)`S$C-3V@m|7?SN2 z-pXCvhEo92RsIfvf8diSo{9MlthM_8xjz2xc!>Umgu=f;;s4&$yEN7dmlNg~$Or>VMV z<};`wZLmBjL8RgzCGBln&(L@I@y+3gpuQ~M7NF@$(qAL(em$wTq6?A!z6!P!k@OlK zm;35-&g-Ei>E;R1Cjx7xayAjb!mPj`Z=MZldhVSQkY9L1ynD0fi@|-K&y2FCxERGWSw5zy136*swT< zDgO44zkfUb-W9+7;|8_qkJgP2I|T$3j-2~`W&H zhA#gt`Y{*(n2T-^$~C3%toB@Eql7o}90BiN3x_BE%G-a-MgOWx0Mq2Uhw)rL_lxsu zjAQHpAV26Qnx5bP8OjBi|GQcfwPF4(g(@UVdcwN(u5y}n z>}~nFb?t3QJm5b}on=(qaJR3ah2jpy-6`%qxJ$9(?(XhhpxEHh%xQ?V5z_Pk64@}F9Ulu4xYlcJfrOqgU}hd^ zmzgPLl3CI2VT{qo(e&+zZI1v*IvpV%)MulX=d@-pL#vd#-Eke{1?x*K#Tey^%EFjjVC*#2!;si>l%XSi#WscL^ z-OidO@l2JN6yQvwqu2sRpy@%a{%AYPmzg@bUu@ZxV&dC~%O8;4F(^YDmS|RX&ihL$ zFzDO=eQ8UlOp}~_lU{dX#aC+zdr-eCQ(H_qjoNp^7{T!tr^r4|vp3F`qM;ePPgHqth+5fE_5i(O<&7-a%!5#;e6fv9o}*!Qs(dsZ0KIv3SS3!wkG+`2oA z|8rAscGKpNa=AXE5LW7v7@%`Y9QaZT?Hgieh=-#VoD1&J2R= zn4%_g@M;4glGHpo9kNOB32)cP&A#OMrj5#IuE%*lBFO*_|AXJkEjE{ISw3DxpnP@P z$wmhX#D;#RD)0gR0!IZk%1(PL;d#bczBt+MHs0*Tk*t%K24VyNU~X&D-rg2&zSZhK9fa@leNyGMy_n$m z`g+Ij>XdU!6s)Y zrpB%D2a$!~kzBV0rm@z&U8Po*^TR1-Lcmm6TutiR=cNJPw|>H>w?@15JQBAB$Zl8< zk0)R)xEm&(v{}yBn_Keq$736-`PddnBX|4+q%phqG#F(XY0Ys;+vx9*^6U3Xy&$Ek zF=!MUSTYYncAVhzKHSvi3*UIBKMEn2!)hn=*605a`E|Mu#(hF5JzX?>*GN!auclbD zrii6=cd#IZY+HPBbMX$rnsy>TleAifhtnLmZi{D9FSf(8tT|;9S$7SWY zXY>aFLZj)cz-h2Jj_&W=07%x`R{3V$)(BuA-r0MWc_T*F4^?XVNoE+XA&w7KT0v7p zv!AC^xD6DztRyAo0$|1K3%`(gNi1x-uUiokdvAoA&D)Bq+8aZ7-)QQ42l2nqeht)Q zuJdBbJpu4MUN{^Q<4!yD^Jvv@7 zF0*0zPmCL0_c?y7q3!H<{M|&2RSwxl6WgbSa^=p5nm7pEL!-!0h8xdAP0GvMX9*u& zrXR2TtXv1#@!@9^-`_Ckdo#U(gys%eTJMxuZK_e}d1Ip$KEDWi3br2cu?KeAUNsWM zJUa|graUW5Z~Omxckz8bPH#APeqehWj=$j!sHweD6N*(h2tlh8t=T_4a-jbF9VOqFva#}v~xm>}V&-cvV8>C0x zf91z0#K+8{>8^cFVn1;^b8WCekLI_8+o3ijvE}lLOV&i2&W;PG$#uUY| zNo*z%J1PK@&HYWY!^4yGK&Wy9AG4=;+WpT7Dkx`fIpl4i4&FAm>8;1Jyt(k{uEE=3BUt;%=I2JraR`|$Fq1#eiS9Kd$M&#$@7(-L ziT_U6o2E)0Hj=gmFnY%82RdpOAe(q?@OEWvIVC=wKKku`D$AQaAZmP`oHV1)g|v68 z{>%MU2?z(~A*Kb;$vkn072(@i`2_3j7LlP{<9~Cs1*1`bB6b24Di;N58jpj1u zII5_;x^(9mta^9oV62HfwW=6-F{^Eah+%3D-5p>w$XRw|yUowQ>Z}5m?B1KaSsAI! zJhQu)Rc9Dp=c!vQ#`24UAE(Zp3dRHaDu;VU$FI1dQ8sBj2UN6LfD%2Wqd<)NU4 z;XqYx!c<(oObG$`Yh&+6f6AkVj;FnXm{(iws|oZ?SrjbQD`sxnLP#La`!6GG1YS}FmlA5aw?*@Xf< z*$(wlg>QjlC9DretXc$Lz)e1Ie7vlJsGCEYgHRU_v0l8=JEN{~RQtW8^y2$bI!Ouv zQjxn-zrMM1@+bXHEI*=;@W8fzal%r9U^za(lT3yy?{h~O=iafKa2srFXBOJC&eVL= z)a)2>mK#Ag7)7juR1ygc{&ZJEsS0BnaRIE^FA5E;LNy742?B*lyqQ&)KHsWu&{zub z2eLC5ol5KW)wU){@rM<#=Qyu(eJS)F$Bf6-^>vI?e#{y^-I&O6<81h$lr2ZfXHUde zzL2lIeRDMF2|RiZtQ)rU#@XC^`d8W%zqj7qsX8|_@chj&#GrNESr-43eC~9e-?AiR ziXMJ;2})6klERwqtq5-yaCp0Wq-fl53~uTT**vc_W(e?=krD-_MK@RtanKdCG?JAd_LW(R+~4!p+4!S7*nF(@8 z=Qh2cZIblEn$G*0ZJoe96;pi%_QY;0%P>2aD8XFBFJ@2wo97e}!jb{({K3m31pr_U@8SI%r_Uj5 z)#05Y)KQy|iBnTK){JpXA*e)zIyOo(K~4huSU}J(vcqes=Xj?*@Xg!e9{IwTn&2`taK&NcE2wp01fk2PECC5**G ze#@5z3^{+y`@FST*QvWZ%(UbZ(mK}?puzqnOQp~*vSjBN6KWx?tG#C{K~(vza6W;g zaDICA!0$RVVICD4wCNtVd-_!#F`WWm4`_O3@#>tsyX{WM<(}2AQ$D3ouf*tDo!W5T zlWR-ydMqDPDtK7ddDbtbP<6tZY5u+zQ1`e!B)0NU3v;-7X@N5DH5==c>o=)zUeYwJ z^W}cXr7G#y_henPCvWc?Z8hvFqY+&*B#5TOtG#OKL`7b1D?3K}_mUI6LAEQ*E-Oa8 z_>(F*ol}NN2vIh9R!`?9@vFC9VI1q?qYvPb-;&EyA=_(sO&(3eAvEg1j2XdB@Dss( zo3{c*U>kN0+O*Y?@sH}=&VWD^CSBe!H2o`H+>^Un{I7Ms^JPKOj`=fZ&_pgfIjn4N z=UV4v#j68eN*SaD1#U8QMCMb!u(HGoJT+C%(|6tYeI8K6*D+n@e7a0Ufe5F^LHrIy zFsl7mTZR?{SUe3Z+_mqORxVTZ;qPyGX(=a}Q-L^$-52jIsoaEh+X&xQp~9AW5F&nD z{<#qI8@KP{;Q2z!4+|4g|4E%e0_$EVw{1gR?c++KR%g+y8MLeWEx(Wpe@QpZOlgSGB^#Nba}vpO38MGfgOJ4dR)F z@hwdVhWx^_-U61J0Wp1F03>CfV5_jqrJuDR+8 zVEr5*wtKR6N#D~6jciDl(i5hL_pILN=|L_Pp5Bpg=e#!j#tZk^W9(jU-u|3-6CUiA zzO~6{;J_K|SbPlG8H$u=FqlGmUDXZ%>D_NMZoXA~WpUgl@m%tZBIqx8Ck{d!XoRi! z_6D&phi}=!lfQ4R7{q0U9yL^&gUTPfvS8Z{Vm6#EKV7ZuS(lPM82%Yb^de**(@Lmr z0uk-#O@D<{Z+g8%l__nl8ZrakAt#P$q#fIa-8gYOaW4D)a5ddf%3%=1V`zmoSa3^D zf7bF1A|i4W9AUe8iQ%7H!EM|C{&24qXMU&Gd~sAtxV=^M0%KZv(3Ym>C;ZeIQ=m z!ErbT&R2!UKFBA_<`?2m@4dJhH)vWv(XMIR3C^R z15!gSMq9t>_jDoF6{rOEUi3L;9&7-n48jb!AZ|MMH^E<$ZslPz?h#YDi#CTOAev6j8RAcPt@JVVKE*wig3Oxhp z4Ji9~la#pVN!1M9jCNhEJ5yJG0ZVE3I02X^C-h~}3|C@Ttd7W2G!M$c)0)1uyV!2| zKK8`b0XdodAb9V;dLGa20}YV*bP{%`KW^w}5~}fN$fNnDb-vAA2zAsKlr3?kFzLAU z`t|+5$3C8$Mg$EP6Y>2^_`9##g>cn0HS}`~KCK$85;FwmznNc}kk5hV{653l<(E>v z2~i?gnf&83k4I@4-=5ptobHME#ldc(?cP=`F4($LuGyl+Bnsl3?!{3x^?s<7)AIO1*jwbbr!z0tAFhzLAEy1o`sD29_FaDP7q83@N}*q zsGU^;HM#=9X6ifhr&nCrBTQ1$R4oMm+5@RZL(5!botu7F#?m>t{+MPJyFM01EY%mv zO&mBRSH%xXmM&C$ z1Dz62_i}yvpf?L6#D1IClHUnRZ~tmQFnJVm!!Kg!Je2AORc>H?(T6&!;R!*hG(e-;2og?j8= zy;FBPIOD>SsIXWk*OGrFb>Qw9v^g_K{bUONtrz<<4E(B)*d{ob2FHu+v<~@sjao2H zw~!W=(GWB_q2@aUe+|R({_y=;n)q+Bg-cjBUcc2u80b)k+uG&$SJ8l&;Gq23M-LHltoX;>`${yN$5mgk-oietx8f=NE`ViC~ux+@7*sdM)v|GJAe(bau4vNeT&Dames z>*--fvYza#I8q1;qn<#qlK#Xpw!mVoxM5F&t8 zV#Fn1LtBeWU6C+IrDdmgOi^yfWf~}^UW-b7l`3q?36v32YuxX|eVpX7CQbTS;{wDz zK@%r4$5-IJPP(Bdm)qz`(=Vznv=4y+NmqY;hAq~;?i1a5dN|&y>EnNJlI1uMVT^ix zUY;P77PKv^zs_x*W5&6^z6;5@MkH`|dJ%AaK6sv-jT;htxXSQtcM-}vcpb}{7P}sE zotC@hi%Tm3jC{>as&`#tGWC=`lH1S?arI`luD(#5d!Ly&ob@2dcpItx>fa}KNtN(q zwt3$}sQV!Y=A3v|X&uK`V{4&Z^TT1#1GL^Zv^b_9bKFZ!xZoT9Y}Zu94|6jUF2G~C zXVm)&J^^}73hEW7ep(JexK%?5(m}?V) z<=uhc)0_=hFn&-5xGkbn%B}1+Kh^KF%+}%pJa$8^Rw3-qU}q4{+E{?1pH?@&8CF_Y z@1N=;Z+0iFv}weR!99kb*SnmC(iXz=qp$;wEs5jS{ArU?C)bn=&SO$CD~IEx4$jYJ zt-I5(SBj6nV6Td1(%bwb6=;|<4sK(%Ih@CgoEp$`*?ch4EQ?^3ztP}!FJOGzzy7)x z%1uq&(xZ5Ub+;q_m8ubCjE2+s5nSFEX(xB?N(l#=jwKf40vX}}MwKS7P4Y70^XfVM zQ_1{8E(K@&&u1-v4>kI%hrGY9^Ep(gT5qJ?cdr)I(q_pYb@?9;ztq1Zqdb{DvKbgM zk6kia|7bt0X?zJT`vKPiQZ|L3zcZ z5eqYwk-S|%J9>Kfl|$|?$jl#lld|ts!Nrp~3e$^utig*p4>!!0-3DSE+^UQO`hY04 z@Qo$3n+}-6w#lWyD4b~~1?R_pa5l@>#2D)UX+5&G#k=)f3e~4~lKrExpmXWi*+^uS zQf61fG`nl-C~oV4rdFye@eJ+{mB{sN{es;x*MYY;|NN8p5f`aK^`n!{pAl6X%(Zye zF|z>Rc8W67#Suek2}h{m$D<psF)ZUp+8-qUt%C*|;cMy{9 z|7d>`NAa`6%jmmVSn6DVRC^OJADmM@ zd19MOOo1%xU1@HzV<`hUv7S|E0r%bx0sB#%iMjXAh5$mGBXb_CP~k#FdgH#HG-jcr z*no&H{@-ocJ+kBj3rFBECM+MzK>`LgI_SyEuoG)HO18>dK`fr%UDKG4lY&mVCcN7_ z-YOP^5jSdtrVnV|RvxR&SDaAfzlfwPADUf?7KtBBcNE}%N%VoD|5i%8qec$}nv{jg zn1ym7l}UPRz|K%OV#8nPO@2{Wv#=Sq`~&M%ix4#ib@kQCD{4SZmhC74xJ_Jk1AN8C zoalbd5-rc`H8!NCSI)1Yy6rfK}8!9Yo+>1;eMoMy!udzItIvP((N|hF+n-bM}cIG6_YuTqdKJ4o6+|+%-in1iHFJ4smZe&-#URni}its8@whP3leqEKrKWwqyjx=vv;s_=q z<&E1T5BTkz%PUQ8o~)i>uE24eGi1UnY?M&=-d!>57B9n@ut;DCkgwf_w3x}&xPUz) z02HG4fqtA?{fJDAvcbIQ>5V4L10nqK@_y4$hb(Y#V4W8{6)XXQYK z)mOMT^%lGF593Y)HR4NI#ScicbRgrJ95J;*t+q1FPyJ#Ba4eF((q7qmLW;lzR@ZG{ zPW)PE%F&nkX{>>)MV!}qi3|BjpJT$#vw>to>fug| zqJ7$i6ldP9d>ZN8BaG?E-4sqoV{bn8Mhn}-#aBp&?Y9QTBGx)HM64WN2?{ zxZv8s_wqp`jF(+*kx;vhMHfHViNCu<)G#AKlYjn}?cz$Cg~9#T&96pe-F-Lep9zn| zX;pG2{<*mmof5XlZrm(i%@5u3o8_XgMR#|to|oq_ zWjH8&;@Vsn?P{egvljb-amE1LZ?0JcLYrd$)Hv~j)VM()v@2$)hH8t6tV1VfqoCop z^o2-c7KK~PK`SiXXBzo^4a~3du>;)%p=*tO_f+&a=k1{&2c#JksqWWfAufdDx7qJR zeO|F;d+tV~!$KN?<@*=vFJH*-6J;?OKvGn=wVlPilt=Y4g;o2rCJ9XsJD9$16=36} z>tBNX_vtli&n_eAha5GAKCCW;T7tBJvb{SPhixNjTL~f0PTKr=Gpn-$5)xzHuWtl8 zAm-b@Lh<*~4)2-9^c~W^i1{~PsMaV*8D+Kt->-~_Je_9G$OX%0<5^Ys1+n8;Er+u( z3felp(R+f^dAquABJdp%K-L56ih)4#|Hrl<9sY)T05z z>c)M|s#1)SA<=o*X*nD?6Px2!7(=Cx7G9a95nSAr**mNL&@j^Cbjrfn=Pu88n9n() zY?%x&6HQh#&{9znTNLG|Up)EEZ3qMy(iyktwNjmR)5{qC9zLiCPb>K{CYGH+s!mLY zZ-3~{HaJHIh?l-gsBLu&CfRsbVx`!T|dZIz-*c97>3{h^URAa2eyuC?;VsNZ(N!CM@!jX3>Kuf@tvI;r z{~#}}r~g4-f42S$c^REcGrRs5?&5_L@Fa4A2@{xfa{9``liACo>i&4OJwT1aVyX4u zk!r}SvhDj744^*UQ!GA3eP(8};JxYj3{Q|#^`9myZgrSdr(Y${s~@daX->B+W!7yg z>%whLmdNjCi-wM-$F8P>qNs1VEkmm)3~Z12`bLuhk3XCQ-v-snF3(uf@&X@kTPNc6 zuUIw^N1R*j2RH`)Kk7m=L29!X24O;? zrPV$KqL>oD``lzr{BnQePN{3L?!isOh&Vk8z`O;sR34Jnp|eQ8Nup5IKR`sUQ3u4L zH?)sJ{S43_e2OmxAg_$D8;OpZ?E$_xM&d3-Um3znZv$K}#c2mB3?t^dItt1xw&(w8e|xX(Itg@G{Q-GLl)m^wol$Y> zXPw!h#GEv*crLg|lS^YA=v7;kXg<6znR+9`m#atf{=6k1g4uf>Qe4#r_R!J(6in?= z|J>KA&uuSg$Tx>J(h0+rW7v=Gepq*OE}y$c8m+PA>X+1`858s3GL<)Py9db%JuuAH z{EDjGE)l?T=s(s8(X2g4^PxRKk2x9-!qaG)B)Zgf4E+7*XRGHT%?D$ zV2NJm>GOhOvo*-4eO#@muluS$J@t8@)I;Q7sC5;|s0LKf?|tYP=Bj2i+rN*l?^PTE zDji>hRbKmymKA;#W#G&B%<^Dy427_K*Jrw3zU|Dc$aJ}=X$hkpgCU8;${qgkGvB!*{Pe@38FE=-Jn*Ay-&t<>(texqn>m z^X;V!b$s+n!eu-g>TB@C_5zMztLismIie569^bumP^H*2myh6AOUS(4Nr>Lirb+Sr zHZisdM`(A02Z#Xz>vZNUDCtdPT|kosF%T&>Ckh3jX>;OVKI9Ru@v zu{xArx}!0yWX^mC2A=(AID<7^qFYj@R`yMI1l{8fnFM+?9@4EYjmfK5lJ-0rb$^-a zQV`gNVxi2s0Og0(3$9&NqztAhqe-Cc&%2%9IY?AyC(E?D8VfW3@O`?iMQzHJY^9LH zYIvllVHL8h9C-#P_T5o=NfH;*ER{OB?AwodKmLtVQ|o7oqPa~7L|Yck zRU06lJu@bdJjShTJewuwCMob{*RG5LN^mEEK$`}mBr2fIdCZoOg~V$;dmGvSH4Usv zD@&@PMRLiLv94j`9M+vZAg$hj20X8o2KsBP4V?}&YkF4 zB}Ox+H?E~<$f}Pg7#TkG6|vINwf69S(O>+5KWzxWM8_6Ib&`p&^(?So`mV6B<7*WU zEBTDYW*){!hc0MG0vM_gzFga4v7zK2PEu%;O`SY$12$f&9cm zae5Sco#)Da%Ut;9T3buV_L}Y=mG6hE3)z#Ead4BUHT?B?!8^aalIV?^Eb9^CxPR2b zTC+X#&aJ8K``k5{4nJKw28XS5Q@+o%794J;mka-3Bs|7c^&xUmeAO3kPXsTI>*?l@ zmDuB*2=zZ>`5 zxS%)2cdvsNs0)&(e%R}R`s{W8(#3;X?q|gv=(KHm=+XH0m%5DwIQEwo+~fFKY~92c zY$xlP==+)ccyWA*+$ZaW_Lm~6P%Q+|XEFQlHquRfC+p9?ry0DLy4Wp>vEL?YuP%@M z)nPAPNDZe8LV{~)|FEIbDj!nMvo(8s45}G{r{pPJpn(>iPya(F68{M@Jinq;@Nw?z zsR(>2`SbvTqrm>cm-ffnblp`^Q&SgvU8tDB2q|OoZ$zrp*bssw+n78kJ=GB^zceCf z$xBuk^;u*jK;7SgaALne4~4R7da6muGPjir$)%3bLFegf>z>-kvu6)>8#trC>8h*f zM43yOWsV#rcVdIWJ<0Xc-U0S9btHTD(O;v)3-|pMDyq97U7v`)fRj|S%C@a4gvgu~ zQvWiG6Y?AJoQ|%CA{SphpGM3%QaiF!DL2$SC{9&tBE4)$58R?+&W+n9BEsnL`)3u*j z616*eh!)~Uh!$e=mf}rOZ2=KCUHul5#weQfa#UuSQbccG(!ZF$Dd~| zTmHH>J6f=`P2GTb4n&lBHIjgw5znPDrQc&hXY=&~=fc`7 zF|c@svsuf!f}n5Q6Sp3Jkj*iRj+cq+qvbiziEYzQxBcrYgaSY19jpADxr`5#BB0(y zzsLm$Zf{3U6OzEFkfdWpD4qFjElo^ZzNja&gNgDcIWvRuxzYz;9wbO2_TM9Ebm_Py zWjW+qt19{U4N)HUW=_Rb_7|`BRIA9yZHk+i<(_%#9zR=@<>~5eGL*9SM*+VpaEvbH z+P2sVML2Q~^gq(T&T;W6SPSb;N*1^#eZLN&fjvM_jMlYE%f?Am8XNw8{fma0sP{@m z8DSVc=d03eT6Qzsst+xWJs=b zpEnN*e&}TuF>VDUx@_Jx+4;Yzr9W(R9oiNmMeU8oTHHAAn5qxz1= ztp7H>qj{cY{xtNjJ|Wi$S!*#ZdUDI;VDL(2&Ys%J?{Ue@r)63GdJyN3t!3^2fFuKF z9>Es4idqoK=s?HpOhgk@AS+{soh?4hOXnBr_c3NVN8ZhfP-F#lArKgJ%T(et81)JC zIiZhT$zD))kx`{yF;=BXM~C8DIdyWSPCtEhNw*QGm`aeQg7znK1#Lca6u9JbkcTX% zQkAv;EPJ)YRc~v+&Mp`sz#yh%&P?&kE`=uPO*EGqlgkD2@|J!Tq6S6Iq@e_dLz%mL zroP27J`Qq{HW2L-1(1J(7i=N!0ZF6l&(LE5)XitolVzZ|6(5PT}uDY+CHnPAWVvc7^Y!wt&RU&9EpK ze44n$1M5q!)5xHb;jNosg`^D|Dh?q$F_%vqU<$Wt?l6+-fq7`hd;a3?OdcF@i z`6qMwm4AlQW-5z9?o+JDNy38Vwz>I(VWxgyWzt?3ZT{UJQzuC!L}DQ_na7=Ta~7R% zAirDzyLE2*e3?iB&SaguWieK@smVV5az93Tx-N@F$PpBD40F%ojA4O!DZO+huOkT^ z3B7%LiDWZx&bj^g$*$Q=idW?a(OH z%+B^Dt+$}{ANw+E2MD5T-fXDTK^#x1giGS`a0FM=e08}on?hg;04!L!d} zrAVs5tH!yQY5pAqB}x%L=gqh`0{|Yft!!H1U))zNFDx4aAKaI7szztIAM6ikSw=m; zTNj-j8{U>ZJ2k?*wDl4VvVSWrfYT#5gAmztI~h6ACwzpHT8Qn4_Uy{hCMhLz=Mct> z291C`uwxKOUp4Tj@Up+fYr#_$Ku`I6G}vQ>UT@PqjViyUt`hCfVL8g6#mVLPKH$Xj z9gNoWC6vh@x=LT9ia5B6U{dZl$|1i3ZfX9rQ>7@ap3N3FIe8RSv`UO99jl`9ufIf; zNG661*0kR!FU%7?8XHivdP41AfZYBFcnI{$ZaG$cYOPHxm1qt&?%-8PHxwpF$bcW4lN1 zw3vpjCz^$ymCO|LXp^`)q%+*}_(C|6^XVNPCR%`L(+tC~ys4QxzD)@Ds2>6Ad0B-B zj9nc1ZMI_q>dr9J3-{Q=Vq69=*;|{FwDK>cQBa>IVJ=cr@W(W07sEyhD-H<%N}?5y z!)hM%Zw#d>iU-nm#R8Y6uQbV#Ll87Z(-VV9aAq)|JBvsVYSr7?ypAG_mc{V{8FXtF z2{F1?t`fvLZ+VwQ&Z>G^hs>w^E+V&IDq&PvGe*)ESZc=E4VilBb_@M793l1vi{Yeh zGkKTs^$u{&B}e=Pi-i&HxYI`V1Ps7dI+>__CK3_J8;4yEis74mm`%mee7>u$jOGx9 z29&Gnopw^;_kK55|J0uMGp*B@>LsT(LS5?Zt&0nPAYkZ>HEoi)f+?E`RH85*||DcIV#ps?RBcOon4z??BwmY{`{Guh)2{x zDpFK$+6%0=wxP1Epl=RLhTrtdv3dUSUzC zUsEJ`dV7!Y(7Fb2uKf#Nw&}`=!WQX;;sD9JDXJWq4p*H%q?zN7v+I8w|CiGG{`z_$ zYI(e??E;&+b+@sJ-?BF2%f*ta0^lrOG5PUS@b5K!H1YStTgr1gH1v-%${pd;(GE05 zt7hWXe&)2O2ZH$Dwvs6tllErUm3Ljz8h(?or?Hwkc-KQYjk=oHX16w-=o6{=&6iBd z3+pu5wY}Qb$!UmZ{6&I`->2olN^<*#ddQu2P9Q8I=KdgeuX(BgvlOz z4T2aVMJT5fxRZygME(npb1sh)4%<($mP*D+Wtpc75B?I|uWL}cGIWe8{4B*MhSUr;zw6w-bR zOp{f*>Sj{Opcr%FU#-;rxEGJOOfTEcWr=y8=#t)+jH7l<_GG0*Sl@GXI2B@Io^Gtv zdpQ6o4ns~(PD0}!UB>)2whQ$*q{c&so*o)*#Ex;6;01zJ?-G{@vovezX~-EbwFAv}TvHmYt40_loV< zDt@TV(%6*e2(h=3Z;I8@jO_-cpA4WTc7GV=AJ?|h5up;Lv^$o+*b~B5I)Ao1hwl_T-{=MKnsXe#AD!s=^ zpMHV+^GBhiY6Ziy2e=lg!0>RhybHlUt)3S|KQzmvYW{8IT!4En)&-p21%;o_rwRft z-We7(3ExD{knUg>wSUAtZYe9Qo4YR^=6w6Y#*B}=Io&=r+Z_{X^Gj=fR&iC@hqHO# z!jnRo?ejcVuka8-jThcgL~)BA%YHkmrj^N}6^G%jn*R2b(2qZRenb0{mSW@Xe?Q-i zMD;laj5$9V)YHTNc7(R8C(wQPZFXR95WvtD2Ky#TIC6(fU=6yFz7@5t+**Km`rWK% zwK^Jf2|VoVDMv~>8uSEs-<&`EIcaUFrMXtT5;$=&_g|jej6CwcyZBr-S{WLiZuJ<2 zNQTjY=J4s$4pD1W)2wo2U&g-Elao!e(bJ`pebsYU?*+KLRUg{c>yGW6=s22QZQ^|l zz(c^=-{9zxdW}@^FKf8lX#NM@iAPyCvSO1%;Cc9Xe%17@Dfy2`njQe2dd^gIwCh4l zmtFZ^0U^GVUrue*|_o}4hyY}3v?D}SQ6tJp!C z!@8BNG-CNmZVna^zJtT#aIXR!5BzCsa@4lsQPos)eSUUr{=;IZuHoG6Qc4!*jbP)` zyeGd2fLOB~K&tM5mXDDp8V^JpyBGhqDSEQ6X>U!EUiLR1aSu|$#Z#FRcP{U#ug49$ zat)7js>G|L=s%mN&#=4p4xqeOpRW!Pu-f*`{Dp(Ne+0z37;EK;_O2gY@suOjx&r>{ zQv23E{&RWmh>JtV6FBRVL~E}nsAr1#=k2zlcJZ}&eD5R~fCrU{5SxRa@(-&jBR!2R z)vPM(#G6ZvYj0fgcBA?DG=o8QncTR(*%?6IM|MfzB`^rz>A z|Im5(dI+^ZBS{%G&p+U2%{>YoEO2>aA|oil!bUPr`UesnP*c0`Ij9A})2iGlL)1EW zB!`A&YRbZ9IcQ`cip?rFc>4QK6KN9+(^8%@i}%;_MMI0#rGB6{Hotn`SVzhLeFMTz zy>C2wTZ$@1Mww#mriRIBE;>ZI)(4hw1A0+U*?;EBvMe3UYW6+QT}7AYY; zGhWzy-&a}wdzp8`fui|eEc7u?{B}v1?^?zqBTC5Y|KiY>-HnQ_^uX~UkA+AswA<;T z6m^sPl(c`A6hqq@XQRXOPBtqGhJx>y0AEP+ZP;r_&*U|W3xKUEr7-SKK{}6-5$Pn}FyphE7V8Xae~vflhuwNR6rvq7%+Gor5L6ZvFmkFk!3y#kO(0 z6Sr->fr0*TJi1c|=M6<(UKB|-k-#vyLpwVUcPgLJFiB`Km(I6bHR=%sk$D)U94`@p zZLJ(#*-Z^$5GD6*o6@G55F#4^{&zOQLGa|B-XPU>DY;F}@K@+_wEnDBa&9{w155nO8ETJT4D|OuIUqSqwgF~O7iKdl+L_utK}0U-QK}q zp|wey8X}YM0JTMf{b6o_23M_X8>{yBDXZ#Wlpt);;b5iba{SvN%8~DT@W0(Jsu`e8 zR(7L5B-M{zWl}`lS4L%wf>bb5+p+LeL_z^aQIC1>1WQ$l0}A+8nLnw7ij~T9sQ^bU z8f3;Ln$OGP#;+w=sIZp*1|thCuU$^ddHZT@*L`2QQ#D&2(7@|MP$I|nOfDZY;s4F4 z)oauSouHO3U+BGNHK{~2$kynEfPM}7QToL zohaE6nV703(;=0&YLdH?it^G7w4MwBo{0>kSTld&FAF#Urrkx}OHmn$j6a18HAqGb z61SJNSw~&MtI|YRqOsEF{DgwF_TMQwMol%4nPXY+?vUHpEqgbPsNZ`w9sZDB7EfQ_ zf>h_P3gjb0*EDAQDrme0Cq7s4eJ9)vHJCtG!aj?pQgO@OmqXAi;*x4GY3VWI#7LU9{arAH>2(N@qulf<2m&IqaR>C?GC#S=*_a|v1I@`!7*0PF3? zwT2DZD?zBTOLUnaIfr~XU4JP}eImYv-W2b0IL#mq&f&#b)vkI zDrRI#Djpw)kz$Q|8;#(^zIn81w6h_%k>$saux^^-IcY=1{7+*0*!{4>d<3&FmVF8% zc#@DHxlH2%xUU{<385?!alt)Y;b9eN2}N;qcn{BAZM3)xDQfoz~r;Y~U()V43lKtrFW(8~ytp_-p-*Iy{Hw59;iUe$6 ze*eWJeZ8ht6idPk-O)|+ciU(0ICy#6AjY>Qsx$(_s7eO|BH z9w=X1loQf6ns6964R?u)6h@bxSPl>}IaovaR~;yYIl`QJE9_f7ZMyd2z*U-M#F2^$+&m znj87uKizj_+7)||)UCEVtzyNl9zCyhzO_a5zv15h?@KinH2Pld@?QUT%fIEnC7P%H z{CTU~t*~g@zAyQ{e)pbrYd>/conf/omsagent.d/\n4. Edit meraki.conf as follows:\n\n\t a. meraki.conf uses the port **22033** by default. Ensure this port is not being used by any other source on your server\n\n\t b. If you would like to change the default port for **meraki.conf** make sure that you dont use default Azure monotoring /log analytic agent ports I.e.(For example CEF uses TCP port **25226** or **25224**) \n\n\t c. replace **workspace_id** with real value of your Workspace ID (lines 14,15,16,19)\n5. Save changes and restart the Azure Log Analytics agent for Linux service with the following command:\n\t\tsudo /opt/microsoft/omsagent/bin/service_control restart\n6. Modify /etc/rsyslog.conf file - add below template preferably at the beginning / before directives section \n\t\t$template meraki,\"%timestamp% %hostname% %msg%\\n\" \n7. Create a custom conf file in /etc/rsyslog.d/ for example 10-meraki.conf and add following filter conditions \n\t\t if $rawmsg contains \"flows\" then @@127.0.0.1:22033;meraki\n\t\t & stop \n\t\t if $rawmsg contains \"urls\" then @@127.0.0.1:22033;meraki\n\t\t & stop\n\t\t if $rawmsg contains \"ids-alerts\" then @@127.0.0.1:22033;meraki\n\t\t & stop\n\t\t if $rawmsg contains \"events\" then @@127.0.0.1:22033;meraki\n\t\t & stop\n\t\t if $rawmsg contains \"ip_flow_start\" then @@127.0.0.1:22033;meraki\n\t\t & stop\n\t\t if $rawmsg contains \"ip_flow_end\" then @@127.0.0.1:22033;meraki\n\t\t & stop \n8. Restart rsyslog\n\t\t systemctl restart rsyslog", + "description":"Follow the configuration steps below to get Cisco Meraki device logs into Azure Sentinel. Refer to the [Azure Monitor Documentation](https://docs.microsoft.com/azure/azure-monitor/agents/data-sources-json) for more details on these steps.\n For Cisco Meraki logs, we have issues while parsing the data by OMS agent data using default settings. \nSo we advice to capture the logs into custom table **meraki_CL** using below instructions. \n1. Login to the server where you have installed OMS agent.\n2. Download config file [meraki.conf](https://aka.ms/sentinel-ciscomerakioms-conf) \n\t\twget -v https://aka.ms/sentinel-ciscomerakioms-conf -O meraki.conf \n3. Copy meraki.conf to the /etc/opt/microsoft/omsagent/**workspace_id**/conf/omsagent.d/ folder. \n\t\tcp meraki.conf /etc/opt/microsoft/omsagent/<>/conf/omsagent.d/\n4. Edit meraki.conf as follows:\n\n\t a. meraki.conf uses the port **22033** by default. Ensure this port is not being used by any other source on your server\n\n\t b. If you would like to change the default port for **meraki.conf** make sure that you dont use default Azure monotoring /log analytic agent ports I.e.(For example CEF uses TCP port **25226** or **25224**) \n\n\t c. replace **workspace_id** with real value of your Workspace ID (lines 14,15,16,19)\n5. Save changes and restart the Azure Log Analytics agent for Linux service with the following command:\n\t\tsudo /opt/microsoft/omsagent/bin/service_control restart\n6. Modify /etc/rsyslog.conf file - add below template preferably at the beginning / before directives section \n\t\t$template meraki,\"%timestamp% %hostname% %msg%\\n\" \n7. Create a custom conf file in /etc/rsyslog.d/ for example 10-meraki.conf and add following filter conditions.\n\n\t With an added statement you will need to create a filter which will specify the logs coming from the Cisco Meraki to be forwarded to the custom table.\n\n\t reference: [Filter Conditions — rsyslog 8.18.0.master documentation](https://rsyslog.readthedocs.io/en/latest/configuration/filters.html)\n\n\t Here is an example of filtering that can be defined, this is not complete and will require additional testing for each installation.\n\t\t if $rawmsg contains \"flows\" then @@127.0.0.1:22033;meraki\n\t\t & stop \n\t\t if $rawmsg contains \"urls\" then @@127.0.0.1:22033;meraki\n\t\t & stop\n\t\t if $rawmsg contains \"ids-alerts\" then @@127.0.0.1:22033;meraki\n\t\t & stop\n\t\t if $rawmsg contains \"events\" then @@127.0.0.1:22033;meraki\n\t\t & stop\n\t\t if $rawmsg contains \"ip_flow_start\" then @@127.0.0.1:22033;meraki\n\t\t & stop\n\t\t if $rawmsg contains \"ip_flow_end\" then @@127.0.0.1:22033;meraki\n\t\t & stop \n8. Restart rsyslog\n\t\t systemctl restart rsyslog", "instructions": [ { "parameters": { @@ -6464,7 +6464,7 @@ "type": "Microsoft.OperationalInsights/workspaces/providers/metadata", "apiVersion": "2021-03-01-preview", "properties": { - "version": "1.0.11", + "version": "1.0.12", "kind": "Solution", "contentId": "[variables('_sourceId')]", "parentId": "[variables('_sourceId')]", @@ -6489,42 +6489,42 @@ { "kind": "DataConnector", "contentId": "[variables('_CiscoMerakiConnector')]", - "version": "1.0.11" + "version": "1.0.12" }, { "kind": "Parser", "contentId": "[variables('_CiscoMeraki_Parser')]", - "version": "1.0.11" + "version": "1.0.12" }, { "kind": "Playbook", "contentId": "[variables('_playbook1-MerakiConnector')]", - "version": "1.0.11" + "version": "1.0.12" }, { "kind": "Playbook", "contentId": "[variables('_playbook2-Block-Device-Client')]", - "version": "1.0.11" + "version": "1.0.12" }, { "kind": "Playbook", "contentId": "[variables('_playbook3-Block-IP-Address')]", - "version": "1.0.11" + "version": "1.0.12" }, { "kind": "Playbook", "contentId": "[variables('_playbook4-Block-URL')]", - "version": "1.0.11" + "version": "1.0.12" }, { "kind": "Playbook", "contentId": "[variables('_playbook5-IP-Address-Enrichment')]", - "version": "1.0.11" + "version": "1.0.12" }, { "kind": "Playbook", "contentId": "[variables('_playbook6-URL-Enrichment')]", - "version": "1.0.11" + "version": "1.0.12" } ] },