From deb7a3aa9d066ae4b25aa995628a9ac7d33e3c34 Mon Sep 17 00:00:00 2001
From: Czar Echavez <Czar.Echavez@envitia.com>
Date: Wed, 21 Feb 2024 14:49:59 +0000
Subject: [PATCH] #2257: massive docs addition for config file

---
 docs/_static/firewall_acl.png                 | Bin 0 -> 36036 bytes
 docs/_static/switched_p2p_network.png         | Bin 0 -> 9178 bytes
 docs/source/config.rst                        |  19 ++
 docs/source/configuration/agents.rst          | 181 ++++++++++--
 docs/source/configuration/game.rst            |  38 +++
 docs/source/configuration/io_settings.rst     |  81 +++++-
 docs/source/configuration/simulation.rst      |  89 +++++-
 .../common/common_host_node_attributes.rst    |  41 +++
 .../common/common_network_node_attributes.rst |  49 ++++
 .../nodes/common/common_node_attributes.rst   |  13 +
 .../nodes/common/node_type_list.rst           |  18 ++
 .../simulation/nodes/computer.rst             |  39 +++
 .../simulation/nodes/firewall.rst             | 258 ++++++++++++++++++
 .../configuration/simulation/nodes/router.rst | 125 +++++++++
 .../configuration/simulation/nodes/server.rst |  39 +++
 .../configuration/simulation/nodes/switch.rst |  37 +++
 .../simulation/software/applications.rst      |  10 +
 .../simulation/software/services.rst          |  10 +
 docs/source/configuration/training_config.rst |  50 ++++
 .../config/_package_data/example_config.yaml  |  20 +-
 src/primaite/game/agent/actions.py            |   4 +-
 src/primaite/game/agent/rewards.py            |   5 +-
 src/primaite/game/game.py                     |  10 +-
 .../hardware/nodes/network/firewall.py        |  12 +-
 .../network/hardware/nodes/network/router.py  |   8 +-
 .../network/transmission/network_layer.py     |   9 +-
 .../network/transmission/transport_layer.py   |   6 +-
 tests/assets/configs/dmz_network.yaml         |   2 +-
 28 files changed, 1101 insertions(+), 72 deletions(-)
 create mode 100644 docs/_static/firewall_acl.png
 create mode 100644 docs/_static/switched_p2p_network.png
 create mode 100644 docs/source/configuration/simulation/nodes/common/common_host_node_attributes.rst
 create mode 100644 docs/source/configuration/simulation/nodes/common/common_network_node_attributes.rst
 create mode 100644 docs/source/configuration/simulation/nodes/common/common_node_attributes.rst
 create mode 100644 docs/source/configuration/simulation/nodes/common/node_type_list.rst
 create mode 100644 docs/source/configuration/simulation/nodes/computer.rst
 create mode 100644 docs/source/configuration/simulation/nodes/firewall.rst
 create mode 100644 docs/source/configuration/simulation/nodes/router.rst
 create mode 100644 docs/source/configuration/simulation/nodes/server.rst
 create mode 100644 docs/source/configuration/simulation/nodes/switch.rst
 create mode 100644 docs/source/configuration/simulation/software/applications.rst
 create mode 100644 docs/source/configuration/simulation/software/services.rst

diff --git a/docs/_static/firewall_acl.png b/docs/_static/firewall_acl.png
new file mode 100644
index 0000000000000000000000000000000000000000..1cdd25263cf0817dde59ae02124ab17879197237
GIT binary patch
literal 36036
zcmeHv2|Scr|2Pv_L)k;LQo`6tp(Nc1sT*Y**|Q9Wu^W?6DYTL`ZCZqqeVIX0Sxa_f
z5?Qhv`xx^-&!DTjz02=?-~W4mzwW17GiT0o&i8!x?K~F^^>x;<Ze*pSqg(gW;e$qW
zbZcVi=wQOkYr)9%B>GD54?W6A=Kx)Lt?&RHo%DdGwuz^UkDa5lE!}o`t))-f<=_rT
zl;?K&gWKigtlZqBZ5*xaJ*-?%(yq3iU<mx~g0yk8bF{Ttnj;67Q;>qoNy*8ckd@so
zzh6!T`b$+>7Or%9X}*=ct?TlFN0EMx&dyfb<qj!I!@*J##*VHwNN*JQsDA?dB?||`
z@&~{t@Pm@V(nlX9g`Hqzznh!0t+DMHT}J@NAw_v*X?Z0uETMb&#8JKNa$4ZCv!jzO
z_(#Xq+6f6gqUGR$bO9rWWaVU~!P2xnk6YPUc{r|G0y>ker<MKEd5$URsTla_>_2|+
zq^`2Hf}GQ-LjWFV4%*fO<%o1$KDNBHthB<?51zhmwo9WnwrEFdupu-ZWo_lWJS@93
zat7&PW9zXr6P#XdyS(;x_<k@I`XjHkjA`)2)e1mOqkthmp49T=j>{OgbMrfT@|2a2
z%HgBOz3h*9BaeBX`t@onYr6R8cv!hP97WpLI)jC6e3qeClm#F{P}=w|ji@LAWI_Y>
z9xMASZwn0^cl2913Jq{D&CAio7Pa*3@<dN0(%I9|?fXG%q^ql~^)mUFCt7)UKs2Wv
zaCyiM>AZZp<pDQv@b6|o1IK@ZQfSoJ(Z<tZ`4n=>OQ(Rw58FE0JFM(1tE9U0i;LCD
z<mHo~9IOBfE<OJnsx0Ag1)Cm7Bv@}1(N_PwGReh9%hnk}_6i=C_W>ODk3ahj8y??e
z=zp@D-~I!7)}H%M9#K#@2)A=qF>yV9YK6VfR?c3_D7SI(1MmZZ_eOd+EujtN>AS+s
z9!M`&8=Ck-vg+;N=xKZ0%?hx+{6TNPY+%g6)5RHl1M1)x(eboh=DpuJ5^d<u@%jsP
zb!>r5dwTc+2v@jSVHqdOysW6S{N4K(&X9!`fcV>C6<4gxvsz|G`)^A_GyfiffjP_c
z{&Vml_4+He_+46neW9&a(ZbHr!`9mhVkqc`|7J4CuAp<74Bx)5B7>aD?~p-mg?|4%
zbddiI9UNUfZ9QDAAi@622!;}T8QaSgkyBj$zKSA$5y4p2>#GD~6+s+b&p<lqzh6WY
zeoc^-@2d#%dlK^BCm<?+CLl;J&%Y=^<X6nZUydNl?#(Iz`HeW(y4viATrXgnt(~n<
zC`aq>ZT0tt-PXs^(`4C-L!VE9&v0o)@CfwnAY^+X`%n7<=@;4;S74Z-hn6QoUun-l
z6QM7^JVyJr^4t=rwl=@<`F?SGmfZ#v(#wP9YJf+6*Mcr93QsE!dl0bDe9YgSN7L|s
zZnS^b=UBxUE829mOR+NMVe4$=>4^T`hy6YK_V<AB3m}F_p!R?XTK0T?t>EQXOz_H1
zOXymD>hE)EmNxt2Emuwm(GCznUUu20tZcc2`TxO|fJdz$?`~y5H|WeDMEpKpS`FqO
zeTKZQUt??qL(AaHLC^j(hykA85}<z%0p&q-3LM36uIryavpk#TFaE8Wf1g{qLZg47
zc36>g$jPUPHcif#^uwP>`ifThMUz0!(H8kbt+GU*e~ETj_UrzpcA%NJKgazq67r3#
za`68y?XcoXEc3d;is-IL)(`FQH?)KNisSXSW5Lxrh$g^)A?>hiTUTj^r3}Dd$B&a+
zaio`7U4Di2R|(|G&}wtNLf;jM`2U{)SV_$Nh8TaDAm^J8{nw|(Z_@xvwrEuv=AUz_
z{}J;?v#v`{wKC29hRiEuHNSb>|9-D}g)9H2;rwS)d8_1f#Y(M~)0MIRj9dLJOSR0w
zit@kmasTy(Q+{QO<t-IfwAG4c`tNqDzXcw@2LB&3oWJ-~zcS2!h@O9J{lA)FUM?`L
zvIYM#{Uf&$$$!%%f9QX&Qb6D7pKq@Je?b2%o%?UApC9@MsH(s9=Xc`bKNPUPhW?RL
zUe?h6CjIlRMDagc|F5Qh6qm$qmHx5y`RkQIq`uWSmZ|p_u7k)fm+60>B!8J0;Wrdn
ziQiWFfh!)+YCrJ5Fkbs@Wong-{B<JeUsL2;6!+Jo$Zu;?|0=I(x!yr@nf}RA$bZsl
z`g?03vNS#aS5J4YB)L~i^omQc;=%mugSKDQ5)>fE3#uio?D*duvq}95{Qo1#&VO5>
z^!uF7x7z66D3tzV<&!1;`j?bKmV{mo{<mW)n#=J+JN#)>^*bTeuf*#wt{whw6iQb#
z_$v4MH@?I7Z4!T@{}FUoJ8L1Gkx<*OE7BG80~|nkdLW%_e>J$Y3urO^H}*+Nee1|u
zHj&?azEwV+>Iw>0yWNWa3BQ{b9RER!E$z4OnweMYBigSk?bAy?EI$A>w=Z?w=H3re
zpraF``|05R6FwHh1j|Pjjki@k4eLFXSj@lB77@&Y+|9G=!r{#<FXa?E*+co_QoizB
zy$yf;`t<eNj=~MGmv_ov%wBtQ&vu{njNPHiC|SSvUpcq3KVZ&3F0ti+wA@CCqlO>#
z>!PyN$eE<6gzGZ)!&AfA&3+s=;(FQ#>qsU3iIk-58TFXmQc_ZiCCpr6n!$ARFb3KO
z&HMQ6tksA2hjV{7DtQNggL!Gj@>KYRU>J()(3S6=4u&1)_-+6%24k(>FQ9nfmmR?K
zta_@ewgdwq%o1=WtB=epP|)^}fPY!uYk4yJmOFUi^T)P+2L}Lb&36Mo0Q-faKQOk;
z)_=}pjjU!KZ?`wr5?--z9hS*_`SL~y_ddYKV)FEic6Ri#!Y~FtaV}Op{@@5w6E`-F
zAx%b6yWNb1tDg-p=^A=iBWoUAn$qMBeX;!DsqL!IIheWLoY2JHc0{m8&|xQG(sT_%
zgILXHu%?*PTald%fZZY9{_)rkl>Fe5|E+@amZ6OCR)z}p!Gi~RYlV;AF{B^V4M04T
z84o)xrunIkktg=WIXbKjEa;r5PL)h;-FsU$6^+lIX&)Jw)1-lA6JcQ9#_dMW{X4%e
zX^^eVdBGR8`uO|$`d=_6h`Nt|0UsS;3_P(O!F1U53}*OODWnJz%Ci+#8<jUZ0X`}$
z+h060Od9dIey(CpwZNIaPsc0(`WQz?&-hSSOcTLC&kuL+U--NrY@QQL+A3WFeLNbx
zWZ~iGg4tqKJcHbWBBf37bL;snp^rN>HL*LHn7IV@BZk;w*D!G?D0li;qxurPcO+Bd
zktMCdYUniI&lknxs$_5h(TlIAg={u#+#G!v(NF5`j?!@56fjoWJ5o66s^rr4^6Mj_
zZ(pJvu_UnOxWT?g=a$UP?}rvYI=?Fko7QDbafdPN*#4>chTbl-wYrGYFl$S^1U&Vo
z%pu)RXBb|ewlv}k%pw`IHk$<Tb6Y2G*F?ktPsH(c%_A1Q1BiaM*i79#Us5l6q&*jj
z^kyUa4L&2GIV^p;LVF3`L>F)A(SpJB>8v^pYCvH`{)h1{VtIPSXwXby@9cPYjSOb4
zs`o*R#aSiSj+P-pVeY;l>LR6PYt-Hki{7{^V}0D>`Y#Jb&~Wjq*Vdkj#@7$(Vwgy6
zP8lxVJ2Uco<9b`|lU*9i@)sY-1U@#`wFsPQv>R-CcGLu^zA#p9*Pi22^Y*%U3{`r_
zIZSbLnn<cavTMnFV}=rOuGTxwa^W+-i>XY>>=_iPMmg81_NX%9V}dHmE}yU%cMrc?
z!s=+KrZzb4rE@M%82F^%J&cIF`nG(OJ*wx;)!r~6SBHo)Lx!+28MB_y47HKGd%nH5
z?c>Y~(b>6=r@i6EYU%+w#FO4v1=|K$TSU~*FZs`PJr&Z*lVGQmjK3C=<SWoJ;T%wY
z<@0jCm^e12E~*tK&vT{Fd(@Q;mw78;kJpoZ%|r~9^2O99L}zv;lOt4AVM>EPXtwd0
zh*fcakP0trqp54YtuJAq>5i0X&P$i6<|p+*PuktXr>k}<Uk;_ix&!g(o*zuqd=JyI
zz)wcx8}6O<W?%C;3bW9SX4*Wo2VG|{#a7)Iso^t*$g;0XdRUk@C@oj05uO-I9>w8`
z->~stq+~1#*m)a;GY>@vX<gP4V({1?FuxEh1t)9heN7&uz(~WnMAwLSnI-4Vs}>`>
zhj5`v^U1>_IsGG%{mx{kNSJ);WqCdrLocr(qE_+?ih<eeB|e%zxa&+>;g@Wo!`>06
zz17-=bkTNf)i)zG{3adz-!~VxSWjz<W-;2$I(rW~3sj!X{c54m#LC3J8e=zIuMS)E
zWSzve5^{*Gp1CDqruJl~4?`}K6c}o{iJZQU(N15`em4ViHSoO?jNkP!bLBZ;H_Ol&
zlN~VvCnR8^L9<=x@bUS<49g&=A!n>$QcVIuDppFOc^AB#(Hg^4#?h;tdVUQv`wn=|
z{D!sJoiJ2(u1+1_ji<b^Gl0o`b6eX=g?DQ!91O-E2HbM>lb7zDwa^yiy6vF{UQp8-
zy2``j+mX29!1SFRyZlFsXL2ff&(<NPqefk?CfYM)St2alD|m<HPjopwh*`I8J#jN7
zOdv{$xn~=Ea_)H&Ox|ZQxs+XlnT^qYmg*KUv{x+_;6-J+K1HjlF3^9id}<mEz3Tyb
z@Ab$7ttT-y+a0Bhq0V54W?qdyOD>Y@`GYC#ZwlJ2Eq%Y-oPPG4P-{aKd^Cpa%4xaT
zxuso%$a{&z6HBNHEi>I-F6A7hKJP$QdgCTU7^>*u+A05%$YuRuE!K=7OkJZ_3a&BV
zfA34-Hap^$c8vT`ky<Pv;$4C1Z2A0#qyY{mqZy@k9vlkgfHRvYQvsUHQWL8h#C|y#
zZ^L-NeHuq4<7zY(yESsC@lp!r_*bE~EEAINRq?q6y{d?TKC*C`m;)uK#>{1stC^=b
zX}S2tG7cDkX-t<FnR1|kvAV#qea#=}T(PT~d7+X;H?{<XT8e&<QOGEn|2kb)(j@)~
z<`(E0`9urSwDv2SR`s^<?0hq>vuJUC@Va0Ib^|jEGtQ5Bzc3z!F?*di`9U`x88~P<
zOuEQgJ=J%C4L{Yc`XT^Q^p``DWnd4O1BRU}oh<x^vyC3g&-vzQD`j!bhuuD<$=-Jk
zhK9==emTNv!r64R56{W~EX)30$jB5i^q}m<O<oj7|9mh(>{MtuLRxGrE18l;p<GWY
z)w{l{DMTUtv=j|e9SG7|T}^d+K2FGu&hOcf%hSud;od1N#8u?g#K14qBjsPIm#(c7
zQrfM6?rP>O0?K80^c8#EU5@cDLcLs<+9ZBPydjm(8=busYb*uRN@vQBeUOl9YIFQ+
z`aKu%H+$-Z<>K&nF`T`jJD%W+qN6e5hLQNYILp(P@7{{Y?=(QXAKdSIuDtdzRyEDu
z(@8(t;lMhZZEzcPZ#8x%&P~qKL#++Y9eK}N3%!wQ?G*Bia#zevZ~ow10@{>RF1naG
zK>a`(%ddakTNB@Ior5HHjwpp?Fo_0aQXcfiE4iE{Uht<<W|Ya(!%kGG1*&4RS;KkD
zpiL$E2`cY{(uo%ReL}?9LnJbh+R0&eXwF{3md(WS^JlgDmK}$MkBV7ns#gkew4Q^Z
z4%g7Pd7NVpess~9A*{L&XjDBpo(st0sgqgOm64Fu87|6oX>ST3w-a62Y8PFej^e06
zWTb%x#S>K}mHSfLR>G)!bj0i_p1pFYv$!yyRI3&b8R1m@#It1c$HlICu2*YzFs{3g
z0FH>6Tli#z(8YT!uh`!7`IK)qHAHYcR@F4skEZ8Rym|#6J-62s;oAD*fz-U6x3Kp}
zN2{=^$Nl_)hw-)KTuzOJOjYzy%LIqDgAC7Qov2MNR7|!=b&x-$@8tn2wRQ_?ofd=D
zVch1|_twEwS=fDpOe{Svr9J1$^TBRz4v82gtj_`(r`n^8<r-i(@gs;g0ZGMlW`nny
zQj`3iu*l2}@F(NuYLK=5EC$|c!$1!;?}nF4y)gF&O8ZNUrFurOuf+zB=doJz=FUWQ
z12J#x<~q(n-I4c7>M$oZ_WVtmk^F{;*Fqd^=eTVQ^{-sn4TxUnPv1gxXV<ow>GSo5
zlPeiY8d>$!Vz-LNj6CJfEP3?+A06br)m;JWLq8{sRIy=Wt=_E2<WR*TM|XF}i}eC>
z$$h|f)ahAN%g1*4R*&S@XoYh~X*A@Y#?HOh5zWr+53???-?OI3^7yr*^MZ%FK)jbn
z$2q{Syg`Ti0)KSfc$iiW$YB_vf^!nY)`*?mB81&c^6doH^E|=SCfAkFR??qJPK=c-
z)>bNt79TntRyNu5_Iiy0X1<}f8Mip)i@a(+z}M<#hASSs)k<8P&aJr@rT%pWVRs$7
z*60NYKBWt^<}0qede88gu?JPu6)hzJ5C159M@sw+-G#U}hXB8Yp8J*3B5jDSyIo=J
z=;*jJV{_xajpBz1<1#MO6ROg8f93xr#smk{?%o6_2Ll1~l{k%zSb>^(#@(}nxokR+
zbGgdT^t6CYsAl;{z~$L4z~nQ61&-bbX4JT3fEBFl>n~$WlX0hCrBVzLc6?lnb{6!q
zaT4@wK|IMY`N+EWp^&h^sv+mtm*q`g_2(3P^=>iN>LS<~g<~+j1qpRVJK^MeY!LAn
zW1(X$oka@^^cYX9FXJnRy9~Q$j|H$+tElVnOCtg=vcYjG8ajR3#ggSC!eR1R!4hy1
z>xK6RSxm<6&GN*$2SiGn;paE-BYvg5jv;z^x$a%uz|2;Xp+b+m83_)X59mAFa@z9q
zy6ouiV3>TAis!w&gTL&3iEnJ(<NmQYVeBz*-g^^+MRN3grWW+ZU@gwvSGIhd<vUIB
z%J*M%JE0j~^JJD>ew;D-fpHUNVcc%Cv$&=-gejhBlMiBUe(tS!vUAYnJyAs_4q=B)
ze*GyQ1YaZqBxTjlhTQ-nl<ELhe&4023cJT@VtMFGvu_s+cttKs&Moz3z;M<8Z?!E!
zJ+NS|jK8ElV16LACLh%oCvRV?U~KO7a~JEJz5xK-IY8^(Zn3cAFM~<Xz5^VF%{=Zq
zJJ!|9iJ8?h)eE~zLM4;UvYeXJd&M>8eqw~p=^y*^=M4=lya`@4;>iIo_O@3^7pBd9
z3gH~Gh!n;!_P(Ky9qv@VUky8>qRpm4yu^|5cD=yQ_<6ZqxLV2e%!QD&)v1%y<`()i
zi0a;sGad_{B;l1&rM_Fo*6qv+7SMkWtIfSz?&QI6h!>#oT?Xk0!+c>ZT86|@0FzHP
zdAW7`59VEBD6p5^=YQLvo;P;x)d6sZ-R!9W^!&kJDqGlDE^kK!3hG+mvRTfXSNo6T
zr}~cM_wDt+{nJ>M47?mR{L~o=?_P*Ipj$x-s9H&3?IFYj;EK25ZXdYaD0>ISY7}P^
zGLpps`>?ARubr)b0xO}{jg)2VA;!+n?=Z{>o_a7e+pDfN7vq2a^XnM@0Nz;laWBvN
znj_+ednSdG@`D$u_G*UdAj-h9EKC`}DOEVwxxCjr9#I*vtf7UfAas7RSnHaNh#SER
z5uZ_TdKh;J9Z%5<#sCaAQ5Lw-)?WwPO;KO)kHF4R?=ny@Z6H;bIFQrVuVY%nCC&!t
zR~lmlc`cYKS$l%cy{fGn_hoy7E9$oPWO%q65qR5U@}UNLPMIQ*t{BqM{S?1jjrt<l
z9Dp|+yjEbl81?R~uwF2JBdm#kK=xtqg3xh|Kq9o{ZFQ!}PePf(Z%&BKFzz|7RK7(M
z!9hP*C45-@nx5w3_IovVyP)-|w;cT{auBRneD$$)??gtVO8j=LEXc80KN`&9j>g#b
z9T*w^8F4ES(^@Az!@bR4bIs)q(U@Za96K}->*xm~CIyabE?#+@TrvtRr<c6OZ)}|j
zhs~~NGAwatyw!R!czE!XEyp&|pLU2*uf4Z>?*^@BcXh`U$CerH`<-t-%A)3sbrNc>
z;ROJaWj{`}vb@2)Ky99x-370z#SPiVkXf$nyF-5n3`?jpaf@Y!1y5=FUEV21ef`mZ
z=nXCRu#SG;?AqN-a=dQ>v9&j9GMTwzwEzb*U5nZV4)N9@%RvQNFYEAiKc=f>79*t1
z*Vz1pr(0|7enPMVv<Q5iA7bdSY|W2`c)+&LayqMu!ti!eJ>5Mp%#$1fd`qz4mVK{z
zqA}KAQ%BXH<r?~eHwCP@wdOW!Pl=}eJ3A8)Fl+`yTk}@u8i3a3<tc>(XuVVSe<}`n
zLt%KVEaz2iw%EAdK5H8soWhpfD-aEv$QUwvv#*4;`UOdb-1;TxoDHW#@G;ng%%!?g
z;FN;}uWqtteS?#oYM4ocmK#86a+c6nVf7e2EbqwM%I^j-5?5wPHMVE#TL7(G+wP6E
z(0aQ+-0$2Exay<O?LBtV)UOw^PHhl?&=OXlu0}s+jF#@%WXWjPIu}D3^3d4-f=K}{
zK|jY|(T9LBG=T*VM=eRp0GYPjr0N|eV(=Huhp>E^`r9uA`RHLNW)sU^&55fv09rv8
zzIA=jdVG#XqhesauUGU$<YO>iuUdDrTn48Q)G|*_3|^2_<NssnaRLk8uZ)FFAoVDd
zfzWcjtg2(RYNHB}lb7W8^|4)f*t(yxZ2C($gjMQ0e7djHBzkwM_UDCfN=?pOw{g>z
zXU74@`z1Dbv|PqRc@O8#qWt{1-uQUTd@APbB9ThQ)NmW@eQy>t_vP&~^~Krl-clw}
z=aCZfNH0hdn77Q_>fvrEWdufpf7=B1JWT70rHMwAh+0l>oNsUS?cPQ5D6%;>-nC$7
zS6bXd+(Xy4mpcnGPBiCgMWN7lwJMZ1y4_sM6U$ni?;+X95=&;0<B#M#dQx-osFEkY
z;uyb$PYPwBUc)Eeo{P2G_r|-0%To`k^Ym>`MpSDs_9okh!cf2&=(}!vfqNT|4oF8h
z=_l=NbtV*Kv+xTUo4Hp^7~Cv3&@8y#&7?8ApVTc%&GVgVG>*|AcZG{CwvJob%P*X;
zhf*Q~4XN=NK~qm_yh})lz5KXY?W(!Y5i&U%QW`-EKIDdk`k=f#mf^4rw+<+Kl6ErB
z3xlaqY*qm3-r2wUBDZ+lNU9>ipr@ROB$gCY-hKeNqmB-*X7gct%pxgSIRm#iKVfja
zEP)6JF^%eaO1?NRmD}-QamHCRg_@}5os+yy)@Sm)PJA+D$iAwuz$$g}<KyG+3+c38
zDfcZX<`gmZSayyJp7FFA9&D<}9O(=q4-Xr3b8gz(GSr%tI!71{YEEyk3N&}zH?$}{
zq!~7)oK|c_VH*w`T|+56G#}_SNL{DgfnY*i(A3XdH(13Ga<V=;{2k7fDa%w|c_~5U
zJ$D-2oNiv#d^KyZv#9yjQ}aO!hoi%z2s9&MXtpdHJ$w2wA2Wt%9#3twr2NbsNh!pU
z3)#}AB+Wy-o0|wTH!K$?Vrq0{ia&N1e+V3Hd2U_lVa^qQ7SI|k{8Yqpfy2(YC6s}U
zeuV#!XyD{A(pWjCa@4+Q6Vf}$3<W4-)Lu6kQ6fEea?j$k+|IM}Z$E4|qaN74&B=Sh
z1-SV~d(wT>JbDfb#oTnQ9M(TiDD=*)oUEh(PRp&ZR4FO+VWFItot8nDVZtLG!&41S
z!j#I*%8ivr?UQ`%@(qXT!~=Hld;!tOWb*Cv)?o$fl!2;lyqHSZ3-rMz_rv=xxm}$A
zxxE~xo+JFa1jfTA^5w=e`L2P~8e~wzVxUPxp=eX6Xm#k6@`C0>r~jx+8Rr&zwmLVx
z+{Hp|C9fMKC*u4yOTDuj-y6;;7uu~YcRSjOvt!St&H$g-Maq1jP0q|I-Se4H8?HXC
zzzCb)Hd{7d{2@Ca@8L*#xt5e$N_L4x_y|)p#fdWFSA+`@jLffhdCeamuT?Q~hMYJ<
zs^E{!(r`&4$PS@5mm8RuNt^rZNTuG+B?gg;7%T^gcI2;?A1Bv*z}-YVgJnr>Dd%vY
zZko+J-a33JY<!wJJl0iSRbknT$-}c;6e%fL_#%@_r9QQ!d@W*2cDsfa*OE97;<=_T
zTa+e=HRPOjSEt%UwdSPzS^+@gvdikY^hk<PC$7{)Z#8|29|{^%CYQfyl;%jnEY9_U
zG!L@5G*f@mK0nVne;rIUWvW>|R_hRIkIN~`hulv$=<GSMSi=`fQOuIuMFzR2(I8o6
za;zq`EeF>n=l@KNe0kxB)7K-6y+^v^Df9^HY4rtDV?>zKVmg<Z%QMbUB+g_gol-t?
z&XCKS;!Wbv?sv*4R+{xU54(hX(vfi&&o1NLkC{T6n-6RnXx-wG-K}L*yW<qKE{k80
zf-aCv`x!Cqtz^$uJ#s6<)q?O0M<G<eqoT)%lo9Xt9*&AGkUq-QbFUQfPRM0GkLgEi
zmWLk4QC)SW{E6hw3H^R98O?VThM&AXJ1TS1&&B8n8%3P~Xf6zNoR$r9)$7`_HSK0s
zdX(tmSorYpQ4FOSQ(W{g4C0wQFQRUNX<6BL*DW)(*vI$ck>sYB0PExBZ^GW;T47l@
zyY!zC=&18k%^z;2OBok7t*e|8?K<sv)ci5t%rT(LFEHC_ZqdtUc9iYe6h)_YKHkVG
zMBGdZ;DN|}Al}$A(2E3^6g4NCyLkfnXqH3v*3Gs@ckyOUrhB%%qb}4@6O0uA?w^Wi
zknNteYIyT2((-Ge9U#Bt#2ZT(w#eE)Oxz-LO>NtPammEZFUdLK<kGsNeTf?{URvn|
zXz%>ch*5HQAW{uL#;}#1rC2)O?F~9-HWUyLbQ+kW)8nT{9Y6ru?8kN{Z~N}O8@ZZF
zaFli&5EN3`={9qPY75VnQZwYscdE7XM*6!`Rj#K@Aonr$o^=`+GCwa#__@U#RoD4U
zd6c8~EEsK`$g<9>KaKm4jmeuHLBj#<PDJUj^Ab<wn+IT3{o9Wpu8+3qqLv#d6tu^e
z-SVEf-k+URIwVRY9!W0#S#iNP8z#R%Nzn>#OFln?@%TVoZ#H;;P$NXpb!Wduaw|?-
z>7|JN4L1W{A2BuOhHwlgzcyhQPqDU7E;W0GXCLO6+Vi!;Ao_%O5}L#njq!c8c}k*p
zC%jx>zHXhDw~J?8O1RP@NrRe2C}z*aOeH&UI(g&p>~%BYb>~GpT1)jr2m$T6B|Sp%
z8xJX+STuLWwwlMR?H;kcMNr#khxxgo2s-;$K!mK^;o2q`Wsm?7cyyiQzL0z)Y-{lv
zyGJuI4DBhO<G-3ol;GLjD9SosxesgAqdUya&VTaGjSRyLvc4aYdP!+_>LZl0i<?l7
znso6!F|2+zb^J=UenEQda1Ob!-MTO$!Hw*k_e|34Q`*$)ayYKFy`Vt3(W2Vm_L-m<
zGvM4l;WjArWqyO(`#IW=hr}0~HE5L^i6-jI*KyRSTN7~=N@;JYW1Q6bg=WCp6YXb@
zQ+U*}6Q`SH5P_#~iCeoF0W<ruR*yvHQ5Q$4uF3`l8s1Uto=yW5W~OLu+Zj`llc$dZ
z_9*nenC2-(d`6%+EoL{(kL71~ZYeyCRh`W65ZqNVemlp5?Ps3Y$73&rWTMF|8#J_}
zdUlIZJt8BYua5=Mh;7?={Cxix;>WFd)3c~Qj4^)eCE3jj*M}hS9%9F_9sK=ztx)A#
z6?pL|vAM%?K%g%xMT9}?$ww$W_T~aH%haKVk+-XGdp<kgVt5UFy~`=-b^4l%Hxt>Q
z=;0K4(N?1nu*VSnI`|RIMeT9bSURjCSnz|j9{rs1!=U*R+H!#${iVtX)#%5XBW#`z
zox`+)@xs81SB(zXb~|`M_fWicIV~E|j{B%~0j%e@^>}6V7fTU$C0&>`@bz9BHrtDf
zQQy^u{s?Y<1ULW3f*aybJh21i_rqlwZ{51}ddPyv%Ld{|W8sa*#o@jnDDBZw8DKfT
zK>9gHv$nael|R-t_4Qnqn*X#js&3zm0{Gty)%de<qk<P|JN!~G8~#{}*O5D{Ai>OQ
zrSw*hApv=t;WIT1r0pa&fvm9`s=q$PZf1l~V;!~c*84Z?p_;d0C7W*w8fR^Z4guNA
za0vk|DUix3+VTuvy={}#%mgUII;qd~T<?8RCGDg>`)N&K?Cn>t;qQ1sYOSLsP7wPX
zL`l{<np8y=72?FD9GLudpYw#O@^DV&<e+&+)WCxnr9$-Zi-_AlIkVq0qbEkcyYlSz
zdI3`qgrXTHEw2ZYq%s^N;qn)BFf%WNBF(GWfm*0wn+-b=aN%e)-T~;6_x)aGDbTz-
z(7ei|eg1KkqL?B=anZy($#_&>ZFXTS=e|ip)Yzv|_CpTL4DWaVbk%uryjWqNuv8D0
z3Y=Z<R`P|{5v01tnG0itl$;&dstivgfrMN>sNcjx$t@{`x&+nkQ`J|k?~^?k1GIK2
z=hz)WI0GuQtgpu$g|Kq>8D3a*lU1Jw$PNzce_6x1x876y&2<Cy*7J!qpn8$3b{q8b
z30Q!fV%O2^!@>Auu)Q1>{}~V>A}c9XoUwQB5w?ZP+&0*jf+rUExs!pcbYjtZ`1xy>
zPnI(*>fz^Z85@C&=%w&vA3KnqyvR+<cm7@v!y7Hox}qaoaEvw`WFmb8^b>*^lPwd1
z@3Evosn#lvUvj8X+ciqw?b@OromOTAzX~$L9MQj<g{Eb0rStC}BlYoe-#dj1X2ej?
zU5BBCR&^Szsw%DIWivnNjPHbZ&kCF8L0ND-l(}A&uD*+}mJ~b0y&X{+_4zpB^|)$*
z8&m}ehDvdJWa#G-PVME1z0C-cx5k>6cO1c=6Rk+aU+zYEF6HoPJrw_RLL2*>e_?ey
z#GxANq!3~Nsiqgiao;ilBw>%zy351frS$Wlb%PPqE5FMO*fl&n`m}Zkq#7KjhufR?
zPJKLH6Shw18teTbCkNbpu8rbu^xz!EmuC0H`c{-jYTJ#&6I8&~0gQHLpmjsc9{ap0
z=7u&g&HG)+>xnAW)XOdffDjoiJ0W^66A)j|7Syu6qsSMf_Gq|0H@7ep3R!&B!exra
z4v?VuO)UnbagE8XeaV;-LWSAD?AWMP^Ji}y*&MYnJKh_ETd*a4(3MdXQg(Ho9wD@E
z!eOY3y;pTMIZ_LWhh|A2q;Df|sKvVHe|CWJOTs7TKM+fcrrVs_&EGkt=RfqFZnbYu
z2}MzKE$592ZxzjdeOlA>%rri;GhntWye7w`J?^@=fi%^;rIp?3fQg!ZvN|DP>Zzp*
zNHB~l;ASgi+Hx!c#w&Vz<B_h-2_Q-GSQXV<?NLZk)WP~bKh;IbW@Rtl^zp08$0FWX
zt)DnPMsnMT9j>w23@Sw7Y|lW-KuIT3*wHnwD=bHXT^k{>P^N7$ThJY;76)S8hppL8
z#{ThVF-)lJ?s9vwix>axl;ZSY!gFgK|IGp=1+wQO%IZgjkVVhWq^KRF3!4-=v$stw
z`Z~V8uM$-0FTI9B>rhJ*UH!y8jY)%`inll+^`dm^g1<?48E4#lGMmQ2*QUr!3r~#%
z*3hpYm+_)##M7z%mXv8*&b-sl4jPTad0ONzH-ugrC4+K|WG|?Pe70g*5<q-3TM#am
zt-=~p3BNp1sj=u@7{Y}XDeOy~2hMP%=w6@9)+~F22J;R8HzB#awu~}EBwF-@M!Z@y
z#;|9pJ$CoN?D6}hbQc&@4WdfX9aD8vLD;$Jc4V%$t%+q>x-F*CeVTYch*F34Hudz@
z@yvnnd;9onLET!IRtA%5ofoV1aZuISE`AuaP$o!#N|&nHWv|>KbjVlNV}q_b@quq^
zow1;|2C5&*%op(cSC{l#=iu3shg}obb(;*IBuL~@)qGaNlI9uVJhLS^8~DLFl-h@d
zQ;HpX+AXi!A@7ZX;61m~+eHG7dZ%Lj_7tLjN~|wm-^v*jtM2wNyaiPa?(KlW8Pg4m
zaJ(S{)Mzuz(LL2{iCbuD0p-@c@v4QUa8pAND~7SXUgS70QvGPs4UPqXH^;!Er$BsH
zyw5M^4hUU}MoY-Gg*8nab|+4&<QZX8nnR8VGR5b>Q1EwF8$lJf`_aw4P!)F(^;1gp
zkj9`VR5<~-Lnb@1=Dq{TjbfMQ`EByCl<q=Po4(f4A^up9RnsQ3|2%toz*bA^AmY12
zr{dW+QS9O6oMi_}1s63swy4!{^a5Ur+~?U}KY=19l~(T@yu95Q0>rFO^``qyxO~J7
z?rl(E<OaTet^;=^t#IG;O=Am3;>Px2z3F5uE0xbR!hAsL1!3GgMa2LFLuL|1Kg)HL
zP50l6%0Y&(=f1D8&^uI0A(m>9*U9d1;d-MD+O(`YVI)v+JYAxDW?Je6MY+7TFr>Bk
zQCeZBMw(35?UBqKUdXJY<7&#y6OfZY5~Yrd)@X6=yP=zRB?KP_F-BfD=uUGF3K1P<
z5KK4`vX%8spGv?l`ki=l;egfLD2Q=tpx{<9ncUGAXQ)Ts0%xQj+;4Hr2&$bSuT<~e
z6vi!%DDC4H|KtFB3e^c;+#7A?z18I&GB(qNp{2e;L>I);xplZrqJyUp`|DBYd-w$I
zv&TeH=XM`Ctr5W$UFZI8RfV&3bOuKaEVOO~t0;Ai@pe{=B&p75BX+@>LW;IL02X9Z
z4OE2f1x!=td?HK>L4oP&>JDn;O>7M;PuokchdB!MSDa(O;pXCTjus%j+uLBEVeUF4
zv-nviPGfOA%KeI39R3_*$#iyxVn*?F+d2P6!dcJ|pT9p?Qw~&}++VH&2o3LsdhYOF
z!GzY|o51h4mSjntvW&s-9yc=p4S08yK*zGndSy!(8;?LYER$L&V~;tCzx!}g&@n%%
zclWbgqU=JG+R4iGCNJ><eL4e!x-&15$IN=6Misw^p}W^lV;ERLI}YE5!wq85_kc&I
z6L&OT>6w~>_3ShMOpa}t2&`;v)Caa|>GMIHz2~l<@@8P=2J`t08#YH@*BoN}q&8aA
z;M|_`Ox1V7Cd+HEX~%*QX$)Q7n)r5X1_+KTs{4wv5<x~1q_z6uWrD^dYCtkG?rBCz
zfhu5UUl&i@iG9!`UY}oG%n@J@1TA_Q13}MyaT#M(b>+nH41UXi=L1xusUUx-c@L7N
z9Sblos9(x)_jVQ&%QTtoU$XMKB!1Gwo-$IX3DvZN$?^viTpoH81HJtV9a~gYyuO|w
zz2Y`dNU3KFwVoXXIprd$y;@j7)`C`%u$p*f<&>78Hs*tbzWL$dmgo0WL9SXd?<7{R
zjjf^|$}X!XzjW_@&D%bxo(d|`JJ+QO05>f;NFt{*LjX55J)i<(_{wF7Xrh%_E@@UX
zRuAc)nI(aIU;I{`$d|Ze7pUl;K&Z8Ewwp~vc8zL{Z<MYtAXI{GIECC!zri?0J6v&k
zCIJ{5Q|H>8W{Pj|tZdNWaDzL;!!2AW&`%M!<27=Z>X`%v=F3|_PeG-52E!As3;Dq;
zxeuo!@-y%Gg1(g83StFMEakw<!bcrA42DD*#ZZe(O$rn1*mz?ld2?uKDw(MP){~5O
zypFEdwgT)ePOf<|6;v_%EZ3lNy_g}WYiH3aa>p3XNF$`}!Z-7TgKjTV8?yFU<Cjo6
zazvy$Q+MvQ5HiizDP5%c*azLzn?N3UVs9qH9vX<50*=f{k%hw=_%Gzs71hhf66CKp
zTll*a`U?bI!vQTwU<<Hgd*7H;$}Yp_2P)Gs$yw}I^XjvbvqB%)!&8%ScG0=PQx)>D
zzV?sauYY6=$ch}QNznAb#<Jnzd5xW0gchZEBK&7YT!`#Ki=bI0A6Su43!m#lN03+7
zA-#t!*k87p+Gw?#3w237@0xBNGfDvn$bx=Mr}Qf02KaJ%PCX1c4MGXfp^qXKvGjoU
z+v<G>UPE=)=lsFkN%LY_eag)D4zcorW-mrs-`6kAUWa#lg6)X>Z8Ml5;vKlsa)=AG
z@P^m^rp5Qax`kKF3_p8`+vN1=OHTOr46LB4{)(w-egpCmBaC6u3_n_WgO`E%gybjj
z*~YNWS1j8=3&u9_CVG0<ZC23ovF<V`yGC2!84-Tg`?wx~QofN>Pfh%CbMc+iK-2wr
z?0+3f#Abjzs$054R?&Ukw!NnVy4_Jx$lC6R=4KcWgp+(gAlP9HPk3VwU<Y7cl!2Wk
zgSqi#S3j$TN(gSHhbaQyak^Zf$}LvUnx`qHw*HlIKqb$cebm=4-z(F@Y{7M#s>qDi
z^`HQ+Il>>DA0;!>^Nt`hGky`75Ip-DYG20=fHhKu)V7LiiWxxwbyV`dO<ox5pm>N{
zPS9ziqYEuZx+8kLRUm*sU+)nP2%t9<7<^{@OOi@H`HQ;x_!Vw0B4`uh7K5A9GxmB~
z+xIXq9|Y|Y^s(gGEpyjJlb}U(H{E%|;W1Mc7;trgLtHaBScG=34SNdPAw!1}wHy(=
z2~FcBs?d*Lp*7w&@Mean5?TaR>0wu4`IdCO>LrI4d&2uhV#u@Cm?U0=(4gFgD`(*n
zLom_q(&0Jm%vGbwj6oyaRr^e7yX99l&w}oP^k9+df!DQfShz0mEP<~*A+E948`n`8
zvsd$~NDs8?mN^l9aQ99Px(`4P+Byf{0pP|U;99Riz*X%ld94$S_hcMG=qsZS=?80q
z&J!ADuW8J6LC7fSp}#aF2Cd5fcGL~rr)nvs-MGsPIc3bz6NF7B&wA9|q5(cKuBZ-U
zcqj>Kp#{(7Jzxx57(H-w)ewH(a@Ij~+RkZc!$e#4a1eCG5YGW!HVD?-sTPYYnX^NE
z!ee_w`7Ink+Y;OlQEuW2T0(n4?cKSoB~nDKY47+e?i$ekSCaWWQ5E%Ym<olJ;IhES
z>3A~ZVo^7ndk}Cg)+#58pBybB>1TnGaqr{Qq|-j><_?{td8yqj_Iut123Y6!$IxLX
zz?pA}TFY<KMDRisGZspQk?Phw!Rw*oB;n1Yapd_Ii?>y;0lYZ@#<K;t6B{8GXc4u{
zt0(5Tn4%_n-r9j8_prWIOP4QsIJaG-eA$gLgd86<Ke94XWY|6#csgi%nIX9mLg7r2
zNwSLj8Q<Ita(IwN$}`s(Pjs&20;O=Yq<zG!6RK->rDQ-}5k@H~{YsR^VxI3<DO0?C
za$pW6pqc8tzF~9_D&Tt8l{H7ml(ck!G(ydIcV#>j=nmxO29l?Hi)T6|?U>{RpuU5|
zQRR~HE4`3s3#F&*K-H-R@?iFos^zQ3*SRx4AO1WAs`k=-NBEmR$rnEDQ1u>m?Z|Ui
z)j1Fuy7%iDRJ%*AqQ*iOXB~;t#k-rGN|;)|sP<|Ox~D;s<e|<GF_=Q`jU{DNOH_>_
z<`xrWdY)wAq8xCf51Ad2c9C1m@B#24-etyvn<x7byZ9dwM$GaMqn9dzfWLLsFfFuf
zt659<fv1w{#sxRg+2)UL&Z`3d%ry4=feg%`6DU${v6<#;g(n4B38fX*O|`RWyGigB
z-o0124wZvXNVJqVfAVYwx#J`9>hPt7)Z`#P)rX~zBpJ#v-m(K}xT$Bz?B~Q6wz~0K
zDH%Zl^B4_N#B}>`<&FhJcRO(r?bL~LnF2vDlC5=7MavmI+?H(zLaWwd{}~TyZ`J2U
z{)E_*1q8oceHo3n054>-038*PH@877b2t1Z+sD>(nbf|_kXD&3<ce2ELTzRXS276R
z^khrPsfIwMp-VMj&&q~usDlojKuABCOBP_gYYI{;MSTn4?m&>gxs{sfE6-uCVS@oC
z=B(77A=h!|%`LoFv&K(9j%LR+^Ugk<YT!*bFU(Slqy!95+nx12b6rLE`Ars?WHfd<
zr;%0BDfS0bJr+-U0OesA4^W<SAzp?a*2f#0j{;YHvvW76pLiK6f*av$9Z@O+A@t3p
z;|YZKUuUvT%036NEbegsr8{m_UjVC6NUm1Hul-VBs0U@!pesdf^np6KHE{gG=#YTD
zrK`Lt0<Aq6%394<yv;rvZCvmmyWM<*+Kvn&#gi=5U$${_H=WI}JXo?YQPr2NY=Bj*
z04;8I-CKdAr-44nll9}^%I@K9^~3dM4&W9+@UxS&iv)dyoV*XwGImT^IC&-i2xr`3
za~ET$XP~jz>Sf!re8o{j?Qw*~BNevs<XrsFC@47NK~-)@lzV;{cQdC)r21ghIXiIr
z=wh%5nM+U%P>a<Qc+vu<1A^7S<0A||mfV-zoLdZep(x*FFEq)^Y*?^*gi$>!v>)7V
zs8z4xf9;iGuVK&j-U!q?M-{y58rMdRoNNLsbZP677B<HFvQ;n2U*{*W+s&jotL!KW
z{(7LUJqUD}R26=p_!>-Y*T_yc?L7)~F6}l|Fz8r%TC6>tszGriqw6X+`8%hZ+7z}Q
zw*)tTNOo<-7gDJ)V1iP>Lw{};A5+I!BIwS%Wx24Sb6epD;A<mg%!j33qzoILKd)5Q
zu2nvqVbwQrfU$ST)TTV%6Y7-a8~2Bkk@oA51j;ZH)4l-erYJIBD*(AP%RdXr-@Yh>
zEyTs=;@Q<AL9elW`za9ocZKey>}8#sAGD;-7v;W5pFEK2)^UUc9mIGc@kzc$$nAj_
zXFyLG*J0of>*=Sh0s2490M9r%-%)UnW{lkD2cmjoI!!piB$Fs`Cw$-8$jzF;co>73
zX60s@W&1qYAX+0+{CpF*n4Gx@*i*lc!dl>Z8Y8&87O7PW*@cRMRE;=G$X5hc&-Q`V
z@To_tVL;f}fa@$0o<K9%4F(tm+~jLNU@!1~Acrt`48;y?IG@-j*d7j5nt@79UUUc=
zxH1JUjAN(3CEMnEy#fH@-I{ntPhpRdAmA|QYf#=Vd;qs`!Rmt`&`sB=k%d4H4rc3D
z>7kjigrNC*a}Si8z{OsMCJ<YhMa5Y|pwrRw*So)=SuYjJqz*|JnZ^X+Lq`*vze%wY
z0-YWveWyDb1^ER3C}QOE*W99`6LE*$3-G@kNnNlu;{^PN4@PEdSfcodJ{<|&LK<pP
z5C*?p)8i6@Kf!}sW&BFpZQRrJg0ml=_wT(DEK&w;nQRBzWB{<rhpo;*5QmD5K|N35
z93p4Yqn(7k(=FC4e)T;qV8-*UcQAlZddI<So|-&CML^d>+@K88Z0>DN0-e<gG3Mw~
zB+!D_QXwq0abV9$#KWvcIWX%8a9D2%o1-Ab1v;SpX&ulYqvIl7Jo&*6G<2b5xmBVF
z_hG0Z=Kf^BQ4KtX2z`0iLqPJe$3O>i41sRwOyq`3J&C*E*SQBFA50tgrxEN=e_9Xj
zmtVpEX)Q@1@vIjQkQa%eJ>anT9?;Btoiha}I8B5s%xcC1^dY)f30`{FkZPdZY>5dZ
zfop}?p}n`|?e|9H#~SXw&(GL<Al3`Kd;$9z2uwxj$Mb-XqYsG<nE_WMm+&~?6P771
zoz8dSt$2K9Rz677qs1GH1p&(BK0EM1V(}74^!v~A5CS&CSfdZX^4}@E${m`G69MQk
z0;cfz+p{s?RH1AVn(sI=XK#sEW<is8fvA7iso@P`ns?mj84tJ8^ATxX?to6)fhO7h
z)Ep3mNBR!kPBr{zQ*=O0Bv|Az0P?X-wl09TjFCsomdPYw$=%l!y9qS<%``M*+VX;7
z_lM{rkgem2YG9H38w?Q-uQf^ocv$%jgKvl+#--Fs>~z2)C%{2Yyl8_Mr3(Q6V$JRn
z+sfu42nR<%@#@IQLU2S0GfjFUba2IwL;axC5BB>ZQ~yClF*cQfDfR`Ooc!ul8G*x2
zHK64(XDq1lYc$DZVjifi@4Of;funbF60_TS)lQ!ohz07BVJ+}qILaQa2U?KJ<c6jT
zqp=Ig{KTe#aOlSm!2fB;J9`uQyn*H8Nw-EN;z7rIr)ZO-fm+{RUjQ66I;<7LS;@S!
z@uTolcX^>71$2R#yj2uLvoq$fY+keM8gKKTy2PL#!3{F(?V}Rx=b>eL*FSpp=?N&j
z_5{}fqZF)J0u*k5wY3eHD3*C{380&k&^NdXuwyT~?V&G^^zY=Hdzv$MGNyiq9;EAm
z+7D&?=n1A77A!p^wGUGh1-5tq0&m@@%sF5z@4&Hbtm$pNrX~e(9ANV&pz3gv--CMx
zu#7JmmyYl<tDzqPd+9v{z)Tt~gKzZKArk^)%pR0de%cS&;p-cgfWLm^PzZ$TWlx<B
z>&Ui*EJyp)_t0CAmeV@F^Tcvih2f!;p=s&Q?E$HYiH8iJwb9G3F48-)bW;6Yg6p8z
zkzt6I5C+McoTYOnqR|`of$^23iWq$7(kay*+bEbo2+s_GUa0_%(zbk*wpK?PMwjzL
z!T9^j^t*rUJpwxXa!%#PL4Hu=2Wu_8kL-txxRiX;bN?H)mS5=<^xg=l1jqp{?(7}I
zuQ{qrgzlQoy^jj|D6Hak$G1Nv{GrIfdmvFyhdl#wzkEWcxuH<yHtYd^>_2c<_I9bF
zB&3;Ri+~ZG*bK6o49p+58~R}d?+T)Kaf+&UfMhAgA>yr}XV3^L*$HG68y9-SH6BZT
zvIC(FWJf@d2)(uj`l84an{uaUq+l@4Kz+_e_0zXdwAhoCW>cGhO-(Dec7x0pT+&br
z+d6zEtWQ>hJe1W-N~Q*oJ01{p`=DF}^S7cUv~VBGM<b9SlO49$!$LD4yTC$^557}@
zY{VVjM-T8rXxZ|t*rehc3$(R)frUP?#TFElfgLu-3Zi94^ZSx|!T+S82MaW`{RDgp
z@%1}GwgI#S!K}pJ8@EEW9$SNYD5%mzfKadZ)BTOm&mu5I!jscF2kVj_%r*&lp@5mz
z1PGJwG-LxCJTiiUu9hD`*N^b{-x>2;^NRhZtW@A3P<2JQv!w&PT`DB<%j$m0d)274
zS&mDOWFhf30eJ>gSI-`ZnFV2BCD!VSo;s6p^Xj2V+UqR8%U1B63O-LLa%s;|6gNn6
zo*pF<&u@_*LX=RZ+gG=@(CR|8W=Qb*jQ2s)bA8E3Z@zNr?#^QWx`;Q>bw|)`BSkgO
zwf0%L1xcQv)SXvXMs{{AQb6Ztym*q&UEjGcG4X{X1y3o3$<&3un!yZQ=g6K;&xWJJ
zvz<#9AqT%*DZORt>PYp^iK?f9{*(5)we32hfiLG;>w<EMLIiu=zJ7e1Qw%y__WGiw
z<VxO(--D98Tqd#L_*NhHYyrnV1&i3FS(~8Rz;`i4Wsp|5xm04vj1FywE_Im&q<cyZ
zpUq7|YY&06QVe;3wEz@_a8iqr!m1xS+{)LvVDmt?OinCx2WpWF^}(?<8#0F}iTV#c
zR~m!*!pX!sP>}LSnQbyfW><`XdRBYg`7NLqB-u4;G)i9h`e&t%Y&nl(<5GiZa3Ki3
zrPc}nXAJ%>YxL?OOeZM9<mw8rR%BMSP~#}MhOfd1?_E=0v|nK_45wh!0%pfN#`)1w
z#K0K>l*1c--ZfZdx#&Tr;=n7m+Hj+2Ij!|`<CUVhm`+eOLV<FdH2-reXTmJ9a5$&8
zBOm1=TlgkJyTbb_>H|NdckhE&jXYe+7hmErIYBQ+uKofpBk^KW#-N*g=mT0QO*q9I
zwp!=?dqC+Vw+x-kncE$9?gg$;piKq5HHri-ndbU}m$b$i3Wtd_jtoYsjW~GgkgfY)
z3$s=)>IN2wG>!(2`d6u?L<Bs3fA_O#&s!@aNROI;W*GOeqlrM_%R*F=ei@=_fc355
zHBQJy<$WlUIe`dEe0vkUo~-TCa+O^z&T{UZahrLip+X6GLr@JZzdBm%JvZIvRycZu
z_Ijq7K4S~t2LwU$9_ik@pM|c6MA9PB1t6$%6|XKpW{3r=%_~M}KWq&8&kiu!Nz5Kt
zFW{<WK4^Rqx&{bd`IMV6ZJE~qZh$dJcNht=mVt(wF*AqR8AC)^%(Q1=8X+q&s}7NV
z5)p=m8eqThGfQpR&&NyDuGSU>#}dm_0hZ)*+SEZ{tM4)Z;hH3FAvYv1dd}Sf*Rfs@
z;(s<S0Ix{#ng%b{2_k)cnvv8;EVjxaS3#Yj`Bl&qK-OE0Zt>1}fjLgd>06zx#OtlR
z)!@x4XmD+9vH@q?Y-$s+=cXQ1X3z$S%m~)hw~!5Uhehm$^D9g4^MZYr<foanRRsx#
zHezGm%a;f58q$wTDP%s>1^~VShV>Ob4p>Od#~^!Pw3VFdd+|ql@<-0~|4VjUQ$jP~
zrWAOI?TKjyT2`H5El^J!`cL*lY7^u$0KWr=b>|&?n*4|zRH9rN$CiQuL&){B(Z3AQ
z!@NMbV(@a|snzd;UghU~o2r=zq+n0CYtyPtxCG2VDoN$>TFB*G*~l;zl%{L*;-M<c
rH+X)4xP*%zSX}0b{}eCcsZ5fmxVN-k7#*Mk|NW$`e=z+3;@tlOR%kwB

literal 0
HcmV?d00001

diff --git a/docs/_static/switched_p2p_network.png b/docs/_static/switched_p2p_network.png
new file mode 100644
index 0000000000000000000000000000000000000000..d1769942882cc4e936b291a88ed88a9712db8592
GIT binary patch
literal 9178
zcmeHN2~?9;_D8W;Td5uysRb2|4nhan5(0=sL=dEwZD5FKB}DijAt7G~VND>YwQi-j
zfL7E1Q)OujX;B105*<cSDKHfg3ra);43vOuA%TSd`@VcpTt@p}=6^b8JcpCKci+AD
zz5Bb%yDx|R{=Q!N?-{+Pqobqmy~*RxIy$q9z&P(+J@9#%BUl2yX2t#4YlBW{<5H=P
z&O#Yy;}%X#QY4K5>6qc&H6t^eEftRAnBhIla5xH!WgS7IM6oF`an?+T14v*!29BUb
z(x3<p56%{6Z)J<K!r2Dd;mz=F1V`{;XKRgjAZ*p}Q=%XyrqBmYp)nW~Gn^;E+7_s?
zAkml+aAF)7`UZgyAZKfa-vCBn!NFcLOmeXQ7*O0;ECxh^c5J4Bb9fT)j$jKww%EKW
z$mdftoI4mZXmkjCc|qZH7!h%&vf&s&@wCI)Sp(JRo`IA|3Y#`V1!5D#p+sryA$j`*
zB?S7CSP|ZIx<8!_k;pz8I}#vv91Uh-X5+2xtnD=moMaZHp+-Onv~aK?qB1U=!obLO
z8p;ls9Raa5oWOdV8GfUgts7uP{_yS?(qO`*fK#I$@CV>oVd69l@kmyRPjCn&$!U{M
zV0=_SA{>wy@}f4a&X^=GHibp?fg>OWP#lq@QEO+92S-Fs8Ii1^I3i#ogebOlA8cEM
z5J*eWnt~o2u*K6Npg2sMMv?==3=WO;JTV+*GNEwH{g_4yn~nG!H4r03!VJthjKBhh
zKgWR(0$+j@p^|739IA%b3FoLe3qs!n(W0o@o$VafXjWn<T4v0WI4T8%pho^BuV`@8
zqREC~pl^oLW-e=)Vv^h;1_HJgM{FMuasPeUr)aRB=FtB}U5eX=Ps2HG!JpXMd)P)Y
zoVG9nL$u+QKw-pVkcY!DtauK@CS%*jagw#6%!cEc5oqosiJC~IaiBmJ1;jkwBN0Rz
zpiwz73^21plNX67kT)Di8+cmxJhKPg<Mp6EgVqZI3C&?A1GSh&CkziPj`4VGp7<;(
z>=1e6B-9xZ;egR7SRh6{)r@fd7H0t-%-63!JyKd<2#Htv0ql#y^~?`(i8M|)RYU$g
z`v9*6_}||N_?MjUG#N1e{GJ^_&_?yYzay}_bw*WsDGwlKgd1{|fNH~pnV<yCtUb>c
zDkzD@*@9IiWE=v<w$=n7g3LUST7uLwbb?@qPMDz3AVN<kGo+BUXJY6~E2lXp6!Fpp
z_Cn1AEdm_RMoT9Ud1Xn!>Mw`Fjso2mdSSkj4-L)NSD{zd&>2ON@QNC#rLiFfg+oht
z{z86L;ruN}cy<tfm<Afdr<EMP20H=*BtXR8_JtCyfeVvDO68lYv}Ut^x~0AS^IPJz
z7Hf^uApbwu5)b-Oa6LS|uU?M~#*N+*Z{qxImkB`=h5yItqs@^SiSXw1K{^4@y|9yK
zNd5n$4_3_IrVpA=Z_@{a?{DnIu*cBr(&zaL<_(=Ncw{r&VFrx6{;<0$j>CrO&<jK?
zYyYJk^9wZ(r|qC;Tm}wW+RTpGPTO2)i{rndWkxIEKY3?qYwEKX?aW$<u4>=VngvV%
z`GrIC^rCq_PSep@l;iE;7L*h^aBuCt)h&j451jLjmQWKeU;exQLc5<0s5_{p7Jv2B
zduZ?npE(kX9E*wBx&|gYcOBlpYE|?OQ;T<Vmb|OCYuC=OyT|VzH@cb7bLvDOw@F>y
zXIy!Y+shf)I;Ns0mPlnM@FyE0@e?c7r|Zm`J?GtprVCfFuB96t`5Xtv8sdf7dO;b_
z*3H7!XB=?1LwHf5UJ&u^;#&|v`26lbc%s{P0v~neJZon|<hdcs&j!1H5!W|$sJAn(
zjSsTVEfcOzo|aur&zWC2H6Fv=(>>2$6qCU%wU!8!15H+v@oU5;Q*?Y<Ae>d6y1=P6
zdCo1zeM3F-t|tn}%AbdQ{HUR+!>4<Xr*Tq5dbdYE*qW3oHIC?<YOwJWHSDhztQT!p
zoXq_U9h(x#y3wuUtl?4p75T}tQL*#9W`i73F0WT{)&$vvP_x@Gl&sVXapI5EABE!{
zmYN@eN$MW+<LG!(Q)_x#Iq{TB>h4WcK{_gCB^mv^r^Q^7oF?@u?4_^w8O+<$dR*jY
z*eIDAe$;-dvVY#A_H41@MmIXXHA2Wsh*@CnCox@=V{VFy)jJaNlgDnLHc1sm{>^Kt
zonvR=LwiOX#V!g5b6Lu4MM5{6#zx1xMtS;0+uLhzG&}D5{4Es!Nl+~L;zKeowo=*m
z-QMa!QFThWN$Tj&L-jV|`F^e{&RBWoxiF>Pnnps>Pe0G5-;np_@|O#^vWuN16&*(E
ziLT7u)2UY%la?O9r%nZA{<2rJb+c&l(8hyC-R(W<Z8B+-%g9d-W!vDIcnf*w@+Ms*
z7PtM{cawg>$iKdzvRA<U;=|CSE9qO;;OkXnQ`Nj5Hu~0mv@UbxYs2!E(6|i69fwat
z{X}DPZ^I%*<iv2j%>voQZgr?A<<h1skX>W@qV`JtoXC9D7^^G8@q_89k*1-$;hFk_
zqDk3!(UZxphMq5snM;=Qr=E1S(S^%8(k2H6EOW`cCs(iNB;D;=2aM><p_hL2NpsrJ
zmASS3Lh-uK*f-4DbBk_Tp6t$U#(5kQE^wV<P5vo5`Bxvu`{z|1D!D{VEZ}9gsg?c0
z{O{M?Nw|HKTs%-ANi#03mQ{7iCH%p%HFumZ|50)%y7icPP9?XdxrQJrd!p#gHMvwj
z1W;tk!!Dl4>is-cvTo?IZmp&8QrZ3fOqb#736jjZ<8fKx1rlR2bb4LXmrd`K<Ea-r
zMBVMTcI>CiZzf9R5}Gip_Yk{=7`kyFdoWghVAj~eVrhFvGs(Flx%c#dKS}Rz003sv
z<NUoBYQq#&BaLhKn&<M^+?9W77?&32E}v@uCUc$hr6<>n=Vn%`#@j0#E7<~}NZA)w
zQ>%A-xKe6abXE{s^Id6G^x7-|k(-e8aKHHnYPomXq7lRC*op&n+rM0|G<YzYb8|>B
zRJ#C{2y9&KkJSW-O2ukrXN|nWSin~+I$O#7WrEc4UpfIWM$GDg3w&bF4;2$OHKVr%
zM3>|p+zQ=+N{Otp>#J!OV5(L3+}o*&wnCo#s(o?eaz&|By{$~pIIFNm&V9r^qISrW
zQ8R=`zH-cZlA9=YRZqwDHpakVUH@?ExO=TB-WN`RN~B!{)4`zuYZ}w5+JEY@bg~go
z4G-N8^wU2pILZrdNl!U4@bE|T#hduET_oww>UP;WEAH4{le8tvc|%t^TS(+(GLQ)a
z?hB0lGnFoVqjMW-JKWY3#|i5O14T7ojw>z|o*rzIiL0A*3-4QkvA3`(y=vu!NyCoO
zRfJT!kjLji=jIo6H5Bvyk?cG=@Ig^?-S%J8okiWQcY-@USuGsON=ca8|31OvZ|N!d
zMykoQ_Zbc+Yc8g<Yb^%9;7zOKb4_wT7Di{)#MfI@%$I<OWsNjAF31Hqj>igX#@mK&
zZMISMfA~#-yA;XN$L)#Lxo-DW`<g`Q*~X`Y(EF!))Z3d?iM-N}P3Ep1EFGP|<uwMm
z##}zAnkTE&?HgTuTk7XmEzI+Ebt0x7oG#iqTvTQA_gvdNL65<MJuXw+?K_)0#Dwp1
zWf{2jNSe1d(T|gSCH!esXIZ`V+KH+00P$76h~!_`^wFeCUYnRuZA~u$GW3hn$5iXm
zJbt*e`&NJd`4OTtKINUUg+EGJPRmxfDjpqO>AE}R-mG|KNXz}Eysz}R-Pt6jq`=1Y
zFQ*6bMQ4AkBPSS19!ly+{`VjFR>jDBpGf`E18>|X5$c-qj@4{Ym+;2V^JLXL!*ZUU
zs=-lmPrV`NmqIW7B1k1&Yttn#;TL~974q$H>A_j?{FD@*?D4ze&Eo0tv~B!0F>#o9
zLv5G0{IBu1;ePVtiix_D4SPBsf(WUv;Li(_59VfwFK!W$)gvH>O{Q>vN!~X7gXEz}
z>s=M}WtYQFl7FUUckG8N4<R}2)0G=)DKVMe;F)}ouRJjl8+Kal@4U>vF8};gVu<k4
z0p~PE*gavj@OvYFn}X`4&0F*8)Z3M+MCDR^PisG%KYm^QM<RVaasQp4>a4qAlg5aN
z)=sJMnV#~}SSy9~+IYpyMDm<_{OOZHN;M%*@KEMlqF**?@OX4ly@cwc<Q|k7Kl(#^
z_~F7MgDb*`l@=Jkeo+gz#UL#HR?$1%#*4kic0Ag4+CJJ%;dwQnW{D!$JY%aZku1#f
zEU#A{@RpeNZ$2YiTwhTd)fPSMv-u2@I9$?y;=)#>{W<?tNC*+MKTvFt_%l?}Ulb4<
zWaBAn@&3l}Q_#B@wOIFCu1ekgz0Kh&(rQVSfcD)DN2|kCW7koIXz$@135}hB4`p8s
zP_esTaTML?pz801UytgSi9Gs3f8_P26qKxzocHLvvl3N!7U_Zdzs_zsDsl@p^ct(r
zhF`Gl3evy?43vp>+;Y6GTvW`xirSFFYhF~mEfZCE4C%#6!h?hTKra@uw8e&m+K>eY
zEp0h?7**H|8mYIS0LT8PgEAO8zlfIqZDHx<$aBTjc`ZBU+%(7oW%aJOzM&PoH7;~z
zn+-}PX2mN8I^Ub8eN`8L=aTB}!})jjW_){~H@)Pib<Jf*S{7HdJOKZ!qvO5N*Q0bp
H*slKq!@S9I

literal 0
HcmV?d00001

diff --git a/docs/source/config.rst b/docs/source/config.rst
index 46631ab9..b7bce731 100644
--- a/docs/source/config.rst
+++ b/docs/source/config.rst
@@ -8,6 +8,25 @@ Primaite v3 config
 PrimAITE uses a single configuration file to define everything needed to train and evaluate an RL policy in a custom cybersecurity scenario. This includes the configuration of the network, the scripted or trained agents that interact with the network, as well as settings that define how to perform training in Stable Baselines 3 or Ray RLLib.
 The entire config is used by the ``PrimaiteSession`` object for users who wish to let PrimAITE handle the agent definition and training. If you wish to define custom agents and control the training loop yourself, you can use the config with the ``PrimaiteGame``, and ``PrimaiteGymEnv`` objects instead. That way, only the network configuration and agent setup parts of the config are used, and the training section is ignored.
 
+Example Configuration Hierarchy
+###############################
+The top level configuration items in a configuration file is as follows
+
+.. code-block:: yaml
+
+    training_config:
+    ...
+    io_settings:
+    ...
+    game:
+    ...
+    agents:
+    ...
+    simulation:
+    ...
+
+These are expanded upon in the Configurable items section below
+
 Configurable items
 ##################
 
diff --git a/docs/source/configuration/agents.rst b/docs/source/configuration/agents.rst
index 4d81c89d..f32843b1 100644
--- a/docs/source/configuration/agents.rst
+++ b/docs/source/configuration/agents.rst
@@ -7,39 +7,168 @@
 ==========
 Agents can be scripted (deterministic and stochastic), or controlled by a reinforcement learning algorithm. Not to be confused with an RL agent, the term agent here is used to refer to an entity that sends requests to the simulated network. In this part of the config, each agent's action space, observation space, and reward function can be defined. All three are defined in a modular way.
 
-**type**: Specifies which class should be used for the agent. ``ProxyAgent`` is used for agents that receive instructions from an RL algorithm. Scripted agents like ``RedDatabaseCorruptingAgent`` and ``GreenWebBrowsingAgent`` generate their own behaviour.
+``agents`` hierarchy
+--------------------
 
-**team**: Specifies if the agent is malicious (RED), benign (GREEN), or defensive (BLUE). Currently this value is not used for anything.
+.. code-block:: yaml
 
-**observation space:**
-    * ``type``: selects which python class from the ``primaite.game.agent.observation`` module is used for the overall observation structure.
-    * ``options``: allows configuring the chosen observation type. The ``UC2BlueObservation`` should be used for RL Agents.
-        * ``num_services_per_node``, ``num_folders_per_node``, ``num_files_per_folder``, ``num_nics_per_node`` all define the shape of the observation space. The size and shape of the obs space must remain constant, but the number of files, folders, ACL rules, and other components can change within an episode. Therefore padding is performed and these options set the size of the obs space.
-        * ``nodes``: list of nodes that will be present in this agent's observation space. The ``node_ref`` relates to the human-readable unique reference defined later in the ``simulation`` part of the config. Each node can also be configured with services, and files that should be monitored.
-        * ``links``: list of links that will be present in this agent's observation space. The ``link_ref`` relates to the human-readable unique reference defined later in the ``simulation`` part of the config.
-        * ``acl``: configure how the agent reads the access control list on the router in the simulation. ``router_node_ref`` is for selecting which router's ACL table should be used. ``ip_address_order`` sets the encoding of ip addresses as integers within the observation space.
+    agents:
+        - ref: red_agent_example
+            ...
+        - ref: blue_agent_example
+            ...
+        - ref: green_agent_example
+            team: GREEN
+            type: GreenWebBrowsingAgent
+            observation_space:
+                type: UC2GreenObservation
+            action_space:
+                action_list:
+                - type: DONOTHING
+                - type: NODE_APPLICATION_EXECUTE
+            options:
+                nodes:
+                - node_name: client_2
+                  applications:
+                    - application_name: WebBrowser
+                max_folders_per_node: 1
+                max_files_per_folder: 1
+                max_services_per_node: 1
+                max_applications_per_node: 1
+
+            reward_function:
+                reward_components:
+                - type: DUMMY
+
+            agent_settings:
+                start_settings:
+                    start_step: 5
+                    frequency: 4
+            variance: 3
+            flatten_obs: False
+
+``ref``
+-------
+The reference to be used for the given agent.
+
+``team``
+--------
+Specifies if the agent is malicious (``RED``), benign (``GREEN``), or defensive (``BLUE``). Currently this value is not used for anything other than for human readability in the configuration file.
+
+``type``
+--------
+Specifies which class should be used for the agent. ``ProxyAgent`` is used for agents that receive instructions from an RL algorithm. Scripted agents like ``RedDatabaseCorruptingAgent`` and ``GreenWebBrowsingAgent`` generate their own behaviour.
+
+Available agent types:
+
+- ``GreenWebBrowsingAgent``
+- ``ProxyAgent``
+- ``RedDatabaseCorruptingAgent``
+
+``observation_space``
+---------------------
+Defines the observation space of the agent.
+
+``type``
+^^^^^^^^
+
+selects which python class from the :py:mod:`primaite.game.agent.observation` module is used for the overall observation structure.
+
+``options``
+^^^^^^^^^^^
+
+Allows configuration of the chosen observation type. These are optional.
+
+    * ``num_services_per_node``, ``num_folders_per_node``, ``num_files_per_folder``, ``num_nics_per_node`` all define the shape of the observation space. The size and shape of the obs space must remain constant, but the number of files, folders, ACL rules, and other components can change within an episode. Therefore padding is performed and these options set the size of the obs space.
+    * ``nodes``: list of nodes that will be present in this agent's observation space. The ``node_ref`` relates to the human-readable unique reference defined later in the ``simulation`` part of the config. Each node can also be configured with services, and files that should be monitored.
+    * ``links``: list of links that will be present in this agent's observation space. The ``link_ref`` relates to the human-readable unique reference defined later in the ``simulation`` part of the config.
+    * ``acl``: configure how the agent reads the access control list on the router in the simulation. ``router_node_ref`` is for selecting which router's ACL table should be used. ``ip_address_order`` sets the encoding of ip addresses as integers within the observation space.
+
+For more information see :py:mod:`primaite.game.agent.observations`
+
+``action_space``
+----------------
 
-**action space:**
 The action space is configured to be made up of individual action types. Once configured, the agent can select an action type and some optional action parameters at every step. For example: The ``NODE_SERVICE_SCAN`` action takes the parameters ``node_id`` and ``service_id``.
 
-Description of configurable items:
-    * ``action_list``: a list of action modules. The options are listed in the ``primaite.game.agent.actions`` module.
-    * ``action_map``: (optional). Restricts the possible combinations of action type / action parameter values to reduce the overall size of the action space. By default, every possible combination of actions and parameters will be assigned an integer for the agent's ``MultiDiscrete`` action space. Instead, the ``action_map`` allows you to list the actions corresponding to each integer in the ``MultiDiscrete`` space.
-    * ``options``: Options that apply too all action components.
-        * ``nodes``: list the nodes that the agent can act on, the order of this list defines the mapping between nodes and ``node_id`` integers.
-        * ``max_folders_per_node``, ``max_files_per_folder``, ``max_services_per_node``, ``max_nics_per_node``, ``max_acl_rules`` all are used to define the size of the action space.
+``action_list``
+^^^^^^^^^^^^^^^
 
-**reward function:**
-Similar to action space, this is defined as a list of components.
+A list of action modules. The options are listed in the :py:mod:`primaite.game.agent.actions.ActionManager.act_class_identifiers` module.
 
-Description of configurable items:
-    * ``reward_components`` a list of reward components from the ``primaite.game.agent.reward`` module.
-        * ``weight``: relative importance of this reward component. The total reward for a step is a weighted sum of all reward components.
-        * ``options``: list of options passed to the reward component during initialisation, the exact options required depend on the reward component.
+``action_map``
+^^^^^^^^^^^^^^
 
-**agent_settings**:
-Settings passed to the agent during initialisation. These depend on the agent class.
+Restricts the possible combinations of action type / action parameter values to reduce the overall size of the action space. By default, every possible combination of actions and parameters will be assigned an integer for the agent's ``MultiDiscrete`` action space. Instead, the ``action_map`` allows you to list the actions corresponding to each integer in the ``MultiDiscrete`` space.
 
-Reinforcement learning agents use the ``ProxyAgent`` class, they accept these agent settings:
+This is Optional.
 
-**flatten_obs**: If true, gymnasium flattening will be performed on the observation space before sending to the agent. Set this to true if your agent does not support nested observation spaces.
+``options``
+^^^^^^^^^^^
+
+Options that apply to all action components. These are optional.
+
+    * ``nodes``: list the nodes that the agent can act on, the order of this list defines the mapping between nodes and ``node_id`` integers.
+    * ``max_folders_per_node``, ``max_files_per_folder``, ``max_services_per_node``, ``max_nics_per_node``, ``max_acl_rules`` all are used to define the size of the action space.
+
+For more information see :py:mod:`primaite.game.agent.actions`
+
+``reward_function``
+-------------------
+
+Similar to action space, this is defined as a list of components from the :py:mod:`primaite.game.agent.rewards` module.
+
+``reward_components``
+^^^^^^^^^^^^^^^^^^^^^
+
+A list of reward types from :py:mod:`primaite.game.agent.rewards.RewardFunction.rew_class_identifiers`
+
+e.g.
+
+.. code-block:: yaml
+
+    reward_components:
+        - type: DUMMY
+        - type: DATABASE_FILE_INTEGRITY
+
+
+``agent_settings``
+------------------
+
+Settings passed to the agent during initialisation. Determines how the agent will behave during training.
+
+e.g.
+
+.. code-block:: yaml
+
+    agent_settings:
+        start_settings:
+            start_step: 25
+            frequency: 20
+            variance: 5
+
+``start_step``
+^^^^^^^^^^^^^^
+
+Optional. Default value is ``5``.
+
+The timestep where the agent begins performing actions.
+
+``frequency``
+^^^^^^^^^^^^^
+
+Optional. Default value is ``5``.
+
+The number of timesteps the agent will wait before performing another action.
+
+``variance``
+^^^^^^^^^^^^
+
+Optional. Default value is ``0``.
+
+The amount of timesteps that the frequency can randomly change.
+
+``flatten_obs``
+---------------
+
+If ``True``, gymnasium flattening will be performed on the observation space before sending to the agent. Set this to ``True`` if your agent does not support nested observation spaces.
diff --git a/docs/source/configuration/game.rst b/docs/source/configuration/game.rst
index 797c3813..e43ea224 100644
--- a/docs/source/configuration/game.rst
+++ b/docs/source/configuration/game.rst
@@ -6,3 +6,41 @@
 ``game``
 ========
 This section defines high-level settings that apply across the game, currently it's used to help shape the action and observation spaces by restricting which ports and internet protocols should be considered. Here, users can also set the maximum number of steps in an episode.
+
+``game`` hierarchy
+------------------
+
+.. code-block:: yaml
+
+    game:
+        max_episode_length: 256
+        ports:
+            - ARP
+            - DNS
+            - HTTP
+            - POSTGRES_SERVER
+        protocols:
+            - ICMP
+            - TCP
+            - UDP
+
+``max_episode_length``
+----------------------
+
+Optional. Default value is ``256``.
+
+The maximum number of episodes a Reinforcement Learning agent(s) can be trained for.
+
+``ports``
+---------
+
+A list of ports that the Reinforcement Learning agent(s) are able to see in the observation space.
+
+See :ref:`List of Ports <List of Ports>` for a list of ports.
+
+``protocols``
+-------------
+
+A list of protocols that the Reinforcement Learning agent(s) are able to see in the observation space.
+
+See :ref:`List of IPProtocols <List of IPProtocols>` for a list of protocols.
diff --git a/docs/source/configuration/io_settings.rst b/docs/source/configuration/io_settings.rst
index 11d044bb..96cc28fe 100644
--- a/docs/source/configuration/io_settings.rst
+++ b/docs/source/configuration/io_settings.rst
@@ -7,20 +7,83 @@
 ===============
 This section configures how PrimAITE saves data during simulation and training.
 
-**save_final_model**: Only used if training with PrimaiteSession, if true, the policy will be saved after the final training iteration.
+``io_settings`` hierarchy
+-------------------------
 
-**save_checkpoints**: Only used if training with PrimaiteSession, if true, the policy will be saved periodically during training.
+.. code-block:: yaml
 
-**checkpoint_interval**: Only used if training with PrimaiteSession and if ``save_checkpoints`` is true. Defines how often to save the policy during training.
+    io_settings:
+        save_final_model: True
+        save_checkpoints: False
+        checkpoint_interval: 10
+        # save_logs: True
+        # save_transactions: False
+        # save_tensorboard_logs: False
+        save_step_metadata: False
+        save_pcap_logs: False
+        save_sys_logs: False
 
-**save_logs**: *currently unused*.
+``save_final_model``
+--------------------
 
-**save_transactions**: *currently unused*.
+Optional. Default value is ``True``.
 
-**save_tensorboard_logs**: *currently unused*.
+Only used if training with PrimaiteSession.
+If ``True``, the policy will be saved after the final training iteration.
 
-**save_step_metadata**: Whether to save the RL agents' action, environment state, and other data at every single step.
 
-**save_pcap_logs**: Whether to save pcap files of all network traffic during the simulation.
+``save_checkpoints``
+--------------------
 
-**save_sys_logs**: Whether to save system logs from all nodes during the simulation.
+Optional. Default value is ``False``.
+
+Only used if training with PrimaiteSession.
+If ``True``, the policy will be saved periodically during training.
+
+
+``checkpoint_interval``
+-----------------------
+
+Optional. Default value is ``10``.
+
+Only used if training with PrimaiteSession and if ``save_checkpoints`` is ``True``.
+Defines how often to save the policy during training.
+
+
+``save_logs``
+-------------
+
+*currently unused*.
+
+``save_transactions``
+---------------------
+
+*currently unused*.
+
+``save_tensorboard_logs``
+-------------------------
+
+*currently unused*.
+
+``save_step_metadata``
+----------------------
+
+Optional. Default value is ``False``.
+
+If ``True``, The RL agent(s) actions, environment states and other data will be saved at every single step.
+
+
+``save_pcap_logs``
+------------------
+
+Optional. Default value is ``False``.
+
+If ``True``, then the pcap files which contain all network traffic during the simulation will be saved.
+
+
+``save_sys_logs``
+-----------------
+
+Optional. Default value is ``False``.
+
+If ``True``, then the log files which contain all node actions during the simulation will be saved.
diff --git a/docs/source/configuration/simulation.rst b/docs/source/configuration/simulation.rst
index eb13e2be..d8497212 100644
--- a/docs/source/configuration/simulation.rst
+++ b/docs/source/configuration/simulation.rst
@@ -9,6 +9,17 @@ In this section the network layout is defined. This part of the config follows a
 
 At the top level of the network are ``nodes`` and ``links``.
 
+e.g.
+
+.. code-block:: yaml
+
+    simulation:
+        network:
+            nodes:
+            ...
+            links:
+            ...
+
 **nodes:**
     * ``type``: one of ``router``, ``switch``, ``computer``, or ``server``, this affects what other sub-options should be defined.
     * ``hostname`` - a non-unique name used for logging and outputs.
@@ -19,9 +30,75 @@ At the top level of the network are ``nodes`` and ``links``.
     * ``applications`` (computer and servers only): Similar to services. A list of application to install on the node.
     * ``network_interfaces`` (computers and servers only): If the node has multiple networking devices, the second, third, fourth, etc... must be defined here with an ``ip_address`` and ``subnet_mask``.
 
-**links:**
-    * ``ref``: unique identifier for this link
-    * ``endpoint_a_ref``: Reference to the node at the first end of the link
-    * ``endpoint_a_port``: The ethernet port or switch port index of the second node
-    * ``endpoint_b_ref``: Reference to the node at the second end of the link
-    * ``endpoint_b_port``: The ethernet port or switch port index on the second node
+``nodes``
+---------
+
+This is where the list of nodes are defined. Some items will differ according to the node type, however, there will be common items such as a node's reference (which is used by the agent), the node's ``type`` and ``hostname``
+
+To see the configuration for these nodes, refer to the following:
+
+.. toctree::
+    :maxdepth: 1
+
+    simulation/nodes/computer.rst
+    simulation/nodes/firewall.rst
+    simulation/nodes/router.rst
+    simulation/nodes/server.rst
+    simulation/nodes/switch.rst
+
+``links``
+---------
+
+This is where the links between the nodes are formed.
+
+e.g.
+
+In order to recreate the network below, we will need to create 2 links:
+
+- a link from computer_1 to the switch
+- a link from computer_2 to the switch
+
+.. image:: ../../_static/switched_p2p_network.png
+
+this results in:
+
+.. code-block:: yaml
+
+    links:
+        - ref: computer_1___switch
+        endpoint_a_ref: computer_1
+        endpoint_a_port: 1 # port 1 on computer_1
+        endpoint_b_ref: switch
+        endpoint_b_port: 1 # port 1 on switch
+        - ref: computer_2___switch
+        endpoint_a_ref: computer_2
+        endpoint_a_port: 1 # port 1 on computer_2
+        endpoint_b_ref: switch
+        endpoint_b_port: 2 # port 2 on switch
+
+``ref``
+^^^^^^^
+
+The human readable name for the link. Not used in code, however is useful for a human to understand what the link is for.
+
+``endpoint_a_ref``
+^^^^^^^^^^^^^^^^^^
+
+The name of the node which must be connected.
+
+``endpoint_a_port``
+^^^^^^^^^^^^^^^^^^^
+
+The port on ``endpoint_a_ref`` which is to be connected to ``endpoint_b_port``.
+This accepts an integer value e.g. if port 1 is to be connected, the configuration should be ``endpoint_a_port: 1``
+
+``endpoint_b_ref``
+^^^^^^^^^^^^^^^^^^
+
+The name of the node which must be connected.
+
+``endpoint_b_port``
+^^^^^^^^^^^^^^^^^^^
+
+The port on ``endpoint_b_ref`` which is to be connected to ``endpoint_a_port``.
+This accepts an integer value e.g. if port 1 is to be connected, the configuration should be ``endpoint_b_port: 1``
diff --git a/docs/source/configuration/simulation/nodes/common/common_host_node_attributes.rst b/docs/source/configuration/simulation/nodes/common/common_host_node_attributes.rst
new file mode 100644
index 00000000..265c7106
--- /dev/null
+++ b/docs/source/configuration/simulation/nodes/common/common_host_node_attributes.rst
@@ -0,0 +1,41 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+``ip_address``
+^^^^^^^^^^^^^^
+
+The IP address of the |NODE| in the network.
+
+``subnet_mask``
+^^^^^^^^^^^^^^^
+
+Optional. Default value is ``255.255.255.0``.
+
+The subnet mask for the |NODE| to use.
+
+``default_gateway``
+^^^^^^^^^^^^^^^^^^^
+
+The IP address that the |NODE| will use as the default gateway. Typically, this is the IP address of the closest router that the |NODE| is connected to.
+
+``dns_server``
+^^^^^^^^^^^^^^
+
+Optional. Default value is ``None``
+
+The IP address of the node which holds an instance of the DNS server. Some applications may use a domain name e.g. the WebBrowser (TODO: WebBrowser page)
+
+``applications``
+^^^^^^^^^^^^^^^^
+
+A list of applications which are not considered system software that need to be installed on the |NODE|.
+
+See :ref:`Applications <applications_config>`
+
+``services``
+^^^^^^^^^^^^
+
+A list of services which are not considered system software that need to be installed on the |NODE|.
+
+See :ref:`Services <services_config>`
diff --git a/docs/source/configuration/simulation/nodes/common/common_network_node_attributes.rst b/docs/source/configuration/simulation/nodes/common/common_network_node_attributes.rst
new file mode 100644
index 00000000..83007145
--- /dev/null
+++ b/docs/source/configuration/simulation/nodes/common/common_network_node_attributes.rst
@@ -0,0 +1,49 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+``routes``
+----------
+
+A list of routes which tells the |NODE| where to forward the packet to depending on the target IP address.
+
+e.g.
+
+.. code-block:: yaml
+
+    nodes:
+        - ref: node
+        ...
+        routes:
+            - address: 192.168.0.10
+            subnet_mask: 255.255.255.0
+            next_hop_ip_address: 192.168.1.1
+            metric: 0
+
+``address``
+"""""""""""
+
+The target IP address for the route. If the packet destination IP address matches this, the router will route the packet according to the ``next_hop_ip_address``.
+
+This must be a valid octet i.e. in the range of ``0.0.0.0`` and ``255.255.255.255``.
+
+``subnet_mask``
+"""""""""""""""
+
+Optional. Default value is ``255.255.255.0``.
+
+The subnet mask setting for the route.
+
+``next_hop_ip_address``
+"""""""""""""""""""""""
+
+The IP address of the next hop IP address that the packet will follow if the address matches the packet's destination IP address.
+
+This must be a valid octet i.e. in the range of ``0.0.0.0`` and ``255.255.255.255``.
+
+``metric``
+""""""""""
+
+Optional. Default value is ``0``. This value accepts floats.
+
+The cost or distance of a route. The higher the value, the more cost or distance is attributed to the route.
diff --git a/docs/source/configuration/simulation/nodes/common/common_node_attributes.rst b/docs/source/configuration/simulation/nodes/common/common_node_attributes.rst
new file mode 100644
index 00000000..c1523518
--- /dev/null
+++ b/docs/source/configuration/simulation/nodes/common/common_node_attributes.rst
@@ -0,0 +1,13 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+``ref``
+-------
+
+Human readable name used as reference for the |NODE|. Not used in code.
+
+``hostname``
+------------
+
+The hostname of the |NODE|. This will be used to reference the |NODE|.
diff --git a/docs/source/configuration/simulation/nodes/common/node_type_list.rst b/docs/source/configuration/simulation/nodes/common/node_type_list.rst
new file mode 100644
index 00000000..ceee8207
--- /dev/null
+++ b/docs/source/configuration/simulation/nodes/common/node_type_list.rst
@@ -0,0 +1,18 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+``type``
+--------
+
+The type of node to add.
+
+Available options are:
+
+- ``computer``
+- ``firewall``
+- ``router``
+- ``server``
+- ``switch``
+
+To create a |NODE|, type must be |NODE_TYPE|.
diff --git a/docs/source/configuration/simulation/nodes/computer.rst b/docs/source/configuration/simulation/nodes/computer.rst
new file mode 100644
index 00000000..bbdf087d
--- /dev/null
+++ b/docs/source/configuration/simulation/nodes/computer.rst
@@ -0,0 +1,39 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+.. _computer_configuration:
+
+``computer``
+============
+
+A basic representation of a computer within the simulation.
+
+See :py:mod:`primaite.simulator.network.hardware.nodes.host.computer.Computer`
+
+example computer
+----------------
+
+.. code-block:: yaml
+
+    nodes:
+        - ref: client_1
+        hostname: client_1
+        type: computer
+        ip_address: 192.168.0.10
+        subnet_mask: 255.255.255.0
+        default_gateway: 192.168.0.1
+        dns_server: 192.168.1.10
+        applications:
+            ...
+        services:
+            ...
+
+.. include:: common/common_node_attributes.rst
+
+.. include:: common/node_type_list.rst
+
+.. include:: common/common_host_node_attributes.rst
+
+.. |NODE| replace:: computer
+.. |NODE_TYPE| replace:: ``computer``
diff --git a/docs/source/configuration/simulation/nodes/firewall.rst b/docs/source/configuration/simulation/nodes/firewall.rst
new file mode 100644
index 00000000..b1e4e5e1
--- /dev/null
+++ b/docs/source/configuration/simulation/nodes/firewall.rst
@@ -0,0 +1,258 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+.. _firewall_configuration:
+
+``firewall``
+============
+
+A basic representation of a network router within the simulation.
+
+The firewall is similar to how :ref:`Router <router_configuration>` works, with the difference being how firewall has specific ACL rules for inbound and outbound traffic as well as firewall being limited to 3 ports.
+
+See :py:mod:`primaite.simulator.network.hardware.nodes.network.firewall.Firewall`
+
+example firewall
+----------------
+
+.. code-block:: yaml
+
+    nodes:
+        - ref: firewall
+        hostname: firewall
+        type: firewall
+        start_up_duration: 0
+        shut_down_duration: 0
+        ports:
+            external_port: # port 1
+                ip_address: 192.168.20.1
+                subnet_mask: 255.255.255.0
+            internal_port: # port 2
+                ip_address: 192.168.1.2
+                subnet_mask: 255.255.255.0
+            dmz_port: # port 3
+                ip_address: 192.168.10.1
+                subnet_mask: 255.255.255.0
+        acl:
+            internal_inbound_acl:
+                ...
+            internal_outbound_acl:
+                ...
+            dmz_inbound_acl:
+                ...
+            dmz_outbound_acl:
+                ...
+            external_inbound_acl:
+                ...
+            external_outbound_acl:
+                ...
+        routes:
+            ...
+
+.. include:: common/common_node_attributes.rst
+
+.. include:: common/node_type_list.rst
+
+``ports``
+---------
+
+The firewall node only has 3 ports. These specifically are:
+
+- ``external_port`` (port 1)
+- ``internal_port`` (port 2)
+- ``dmz_port`` (port 3) (can be optional)
+
+The ports should be defined with an ip address and subnet mask e.g.
+
+.. code-block:: yaml
+
+    nodes:
+        - ref: firewall
+        ...
+        ports:
+            external_port: # port 1
+                ip_address: 192.168.20.1
+                subnet_mask: 255.255.255.0
+            internal_port: # port 2
+                ip_address: 192.168.1.2
+                subnet_mask: 255.255.255.0
+            dmz_port: # port 3
+                ip_address: 192.168.10.1
+                subnet_mask: 255.255.255.0
+
+``ip_address``
+""""""""""""""
+
+The IP address for the given port. This must be a valid octet i.e. in the range of ``0.0.0.0`` and ``255.255.255.255``.
+
+``subnet_mask``
+"""""""""""""""
+
+Optional. Default value is ``255.255.255.0``.
+
+The subnet mask setting for the port.
+
+``acl``
+-------
+
+There are 6 ACLs that can be defined for a firewall
+
+- ``internal_inbound_acl`` for traffic going towards the internal network
+- ``internal_outbound_acl`` for traffic coming from the internal network
+- ``dmz_inbound_acl`` for traffic going towards the dmz network
+- ``dmz_outbound_acl`` for traffic coming from the dmz network
+- ``external_inbound_acl`` for traffic coming from the external network
+- ``external_outbound_acl`` for traffic going towards the external network
+
+.. image:: ../../../../_static/firewall_acl.png
+
+By default, ``external_inbound_acl`` and ``external_outbound_acl`` will permit any traffic through.
+
+See :py:mod:`primaite.simulator.network.hardware.nodes.network.router.AccessControlList`
+
+See :ref:`List of Ports <List of Ports>` for a list of ports.
+
+``internal_inbound_acl``
+""""""""""""""""""""""""
+
+ACL rules for packets that have a destination IP address in what is considered the internal network.
+
+example:
+
+.. code-block:: yaml
+
+    nodes:
+        - ref: firewall
+        ...
+        acl:
+            internal_inbound_acl:
+                22: # position 22 on ACL list
+                    action: PERMIT  # allow packets that
+                    src_port: ARP   # are emitted from the ARP port
+                    dst_port: ARP   # are going towards an ARP port
+                23: # position 23 on ACL list
+                    action: PERMIT  # allow packets that
+                    protocol: ICMP  # are ICMP
+
+``internal_outbound_acl``
+"""""""""""""""""""""""""
+
+ACL rules for packets that have a source IP address in what is considered the internal network and is going towards the DMZ network or the external network.
+
+example:
+
+.. code-block:: yaml
+
+    nodes:
+        - ref: firewall
+        ...
+        acl:
+            internal_outbound_acl:
+                22: # position 22 on ACL list
+                    action: PERMIT  # allow packets that
+                    src_port: ARP   # are emitted from the ARP port
+                    dst_port: ARP   # are going towards an ARP port
+                23: # position 23 on ACL list
+                    action: PERMIT  # allow packets that
+                    protocol: ICMP  # are ICMP
+
+
+``dmz_inbound_acl``
+"""""""""""""""""""
+
+ACL rules for packets that have a destination IP address in what is considered the DMZ network.
+
+example:
+
+.. code-block:: yaml
+
+    nodes:
+        - ref: firewall
+        ...
+        acl:
+            dmz_inbound_acl:
+                22: # position 22 on ACL list
+                    action: PERMIT  # allow packets that
+                    src_port: ARP   # are emitted from the ARP port
+                    dst_port: ARP   # are going towards an ARP port
+                23: # position 23 on ACL list
+                    action: PERMIT  # allow packets that
+                    protocol: ICMP  # are ICMP
+
+``dmz_outbound_acl``
+""""""""""""""""""""
+
+ACL rules for packets that have a source IP address in what is considered the DMZ network and is going towards the internal network or the external network.
+
+example:
+
+.. code-block:: yaml
+
+    nodes:
+        - ref: firewall
+        ...
+        acl:
+            dmz_outbound_acl:
+                22: # position 22 on ACL list
+                    action: PERMIT  # allow packets that
+                    src_port: ARP   # are emitted from the ARP port
+                    dst_port: ARP   # are going towards an ARP port
+                23: # position 23 on ACL list
+                    action: PERMIT  # allow packets that
+                    protocol: ICMP  # are ICMP
+
+
+
+``external_inbound_acl``
+""""""""""""""""""""""""
+
+Optional. By default, this will allow any traffic through.
+
+ACL rules for packets that have a destination IP address in what is considered the external network.
+
+example:
+
+.. code-block:: yaml
+
+    nodes:
+        - ref: firewall
+        ...
+        acl:
+            external_inbound_acl:
+                22: # position 22 on ACL list
+                    action: PERMIT  # allow packets that
+                    src_port: ARP   # are emitted from the ARP port
+                    dst_port: ARP   # are going towards an ARP port
+                23: # position 23 on ACL list
+                    action: PERMIT  # allow packets that
+                    protocol: ICMP  # are ICMP
+
+``external_outbound_acl``
+"""""""""""""""""""""""""
+
+Optional. By default, this will allow any traffic through.
+
+ACL rules for packets that have a source IP address in what is considered the external network and is going towards the DMZ network or the internal network.
+
+example:
+
+.. code-block:: yaml
+
+    nodes:
+        - ref: firewall
+        ...
+        acl:
+            external_outbound_acl:
+                22: # position 22 on ACL list
+                    action: PERMIT  # allow packets that
+                    src_port: ARP   # are emitted from the ARP port
+                    dst_port: ARP   # are going towards an ARP port
+                23: # position 23 on ACL list
+                    action: PERMIT  # allow packets that
+                    protocol: ICMP  # are ICMP
+
+.. include:: common/common_network_node_attributes.rst
+
+.. |NODE| replace:: firewall
+.. |NODE_TYPE| replace:: ``firewall``
diff --git a/docs/source/configuration/simulation/nodes/router.rst b/docs/source/configuration/simulation/nodes/router.rst
new file mode 100644
index 00000000..8a8efc06
--- /dev/null
+++ b/docs/source/configuration/simulation/nodes/router.rst
@@ -0,0 +1,125 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+.. _router_configuration:
+
+``router``
+==========
+
+A basic representation of a network router within the simulation.
+
+See :py:mod:`primaite.simulator.network.hardware.nodes.network.router.Router`
+
+example router
+--------------
+
+.. code-block:: yaml
+
+    nodes:
+        - ref: router_1
+        hostname: router_1
+        type: router
+        num_ports: 5
+        ports:
+            ...
+        acl:
+            ...
+
+.. include:: common/common_node_attributes.rst
+
+.. include:: common/node_type_list.rst
+
+``num_ports``
+-------------
+
+Optional. Default value is ``5``.
+
+The number of ports the router will have.
+
+``ports``
+---------
+
+Sets up the router's ports with an IP address and a subnet mask.
+
+Example of setting ports for a router with 2 ports:
+
+.. code-block:: yaml
+
+    nodes:
+        - ref: router_1
+        ...
+        ports:
+            1:
+                ip_address: 192.168.1.1
+                subnet_mask: 255.255.255.0
+            2:
+                ip_address: 192.168.10.1
+                subnet_mask: 255.255.255.0
+
+``ip_address``
+""""""""""""""
+
+The IP address for the given port. This must be a valid octet i.e. in the range of ``0.0.0.0`` and ``255.255.255.255``.
+
+``subnet_mask``
+"""""""""""""""
+
+Optional. Default value is ``255.255.255.0``.
+
+The subnet mask setting for the port.
+
+``acl``
+-------
+
+Sets up the ACL rules for the router.
+
+e.g.
+
+.. code-block:: yaml
+
+    nodes:
+        - ref: router_1
+        ...
+        acl:
+            1:
+                action: PERMIT
+                src_port: ARP
+                dst_port: ARP
+            2:
+                action: PERMIT
+                protocol: ICMP
+
+See :py:mod:`primaite.simulator.network.hardware.nodes.network.router.AccessControlList`
+
+See :ref:`List of Ports <List of Ports>` for a list of ports.
+
+``action``
+""""""""""
+
+Available options are
+
+- ``PERMIT`` : Allows the specified ``protocol`` or ``src_port`` and ``dst_port`` pairs
+- ``DENY`` : Blocks the specified ``protocol`` or ``src_port`` and ``dst_port`` pairs
+
+``src_port``
+""""""""""""
+
+Is used alongside ``dst_port``. Specifies the port where a packet originates. Used by the ACL Rule to determine if a packet with a specific source port is allowed to pass through the network node.
+
+``dst_port``
+""""""""""""
+
+Is used alongside ``src_port``. Specifies the port where a packet is destined to arrive. Used by the ACL Rule to determine if a packet with a specific destination port is allowed to pass through the network node.
+
+``protocol``
+""""""""""""
+
+Specifies which protocols are allowed by the ACL Rule to pass through the network node.
+
+See :ref:`List of IPProtocols <List of IPProtocols>` for a list of protocols.
+
+.. include:: common/common_network_node_attributes.rst
+
+.. |NODE| replace:: router
+.. |NODE_TYPE| replace:: ``router``
diff --git a/docs/source/configuration/simulation/nodes/server.rst b/docs/source/configuration/simulation/nodes/server.rst
new file mode 100644
index 00000000..7f51eaf2
--- /dev/null
+++ b/docs/source/configuration/simulation/nodes/server.rst
@@ -0,0 +1,39 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+.. _server_configuration:
+
+``server``
+==========
+
+A basic representation of a server within the simulation.
+
+See :py:mod:`primaite.simulator.network.hardware.nodes.host.server.Server`
+
+example server
+--------------
+
+.. code-block:: yaml
+
+    nodes:
+        - ref: server_1
+        hostname: server_1
+        type: server
+        ip_address: 192.168.10.10
+        subnet_mask: 255.255.255.0
+        default_gateway: 192.168.10.1
+        dns_server: 192.168.1.10
+        applications:
+            ...
+        services:
+            ...
+
+.. include:: common/common_node_attributes.rst
+
+.. include:: common/node_type_list.rst
+
+.. include:: common/common_host_node_attributes.rst
+
+.. |NODE| replace:: server
+.. |NODE_TYPE| replace:: ``server``
diff --git a/docs/source/configuration/simulation/nodes/switch.rst b/docs/source/configuration/simulation/nodes/switch.rst
new file mode 100644
index 00000000..4d57f76e
--- /dev/null
+++ b/docs/source/configuration/simulation/nodes/switch.rst
@@ -0,0 +1,37 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+.. _switch_configuration:
+
+``switch``
+==========
+
+A basic representation of a network switch within the simulation.
+
+See :py:mod:`primaite.simulator.network.hardware.nodes.network.switch.Switch`
+
+example switch
+--------------
+
+.. code-block:: yaml
+
+    nodes:
+        - ref: switch_1
+        hostname: switch_1
+        type: switch
+        num_ports: 8
+
+.. include:: common/common_node_attributes.rst
+
+.. include:: common/node_type_list.rst
+
+``num_ports``
+-------------
+
+Optional. Default value is ``8``.
+
+The number of ports the switch will have.
+
+.. |NODE| replace:: switch
+.. |NODE_TYPE| replace:: ``switch``
diff --git a/docs/source/configuration/simulation/software/applications.rst b/docs/source/configuration/simulation/software/applications.rst
new file mode 100644
index 00000000..75e0c64c
--- /dev/null
+++ b/docs/source/configuration/simulation/software/applications.rst
@@ -0,0 +1,10 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+.. _applications_config:
+
+``applications``
+================
+
+apps
diff --git a/docs/source/configuration/simulation/software/services.rst b/docs/source/configuration/simulation/software/services.rst
new file mode 100644
index 00000000..5f1783af
--- /dev/null
+++ b/docs/source/configuration/simulation/software/services.rst
@@ -0,0 +1,10 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+.. _services_config:
+
+``services``
+============
+
+services
diff --git a/docs/source/configuration/training_config.rst b/docs/source/configuration/training_config.rst
index cde6cf52..3e63f69b 100644
--- a/docs/source/configuration/training_config.rst
+++ b/docs/source/configuration/training_config.rst
@@ -4,6 +4,22 @@
 
 ``training_config``
 ===================
+Configuration items relevant to how the Reinforcement Learning agent(s) will be trained.
+
+``training_config`` hierarchy
+-----------------------------
+
+.. code-block:: yaml
+
+    training_config:
+        rl_framework: SB3 # or RLLIB_single_agent or RLLIB_multi_agent
+        rl_algorithm: PPO # or A2C
+        n_learn_episodes: 5
+        max_steps_per_episode: 200
+        n_eval_episodes: 1
+        deterministic_eval: True
+        seed: 123
+
 
 ``rl_framework``
 ----------------
@@ -23,3 +39,37 @@ Options available are:
 
 - ``PPO`` (Proximal Policy Optimisation)
 - ``A2C`` (Advantage Actor Critic)
+
+``n_learn_episodes``
+--------------------
+The number of episodes to train the agent(s).
+This should be an integer value above ``0``
+
+``max_steps_per_episode``
+-------------------------
+The number of steps each episode will last for.
+This should be an integer value above ``0``.
+
+
+``n_eval_episodes``
+-------------------
+Optional. Default value is ``0``.
+
+The number of evaluation episodes to run the trained agent for.
+This should be an integer value above ``0``.
+
+``deterministic_eval``
+----------------------
+Optional. By default this value is ``False``.
+
+If this is set to ``True``, the agents will act deterministically instead of stochastically.
+
+
+
+``seed``
+--------
+Optional.
+
+The seed is used (alongside ``deterministic_eval``) to reproduce a previous instance of training and evaluation of an RL agent.
+The seed should be an integer value.
+Useful for debugging.
diff --git a/src/primaite/config/_package_data/example_config.yaml b/src/primaite/config/_package_data/example_config.yaml
index 6eab6c54..ae248f23 100644
--- a/src/primaite/config/_package_data/example_config.yaml
+++ b/src/primaite/config/_package_data/example_config.yaml
@@ -583,8 +583,8 @@ simulation:
     nodes:
 
     - ref: router_1
-      type: router
       hostname: router_1
+      type: router
       num_ports: 5
       ports:
         1:
@@ -619,18 +619,18 @@ simulation:
           protocol: ICMP
 
     - ref: switch_1
-      type: switch
       hostname: switch_1
+      type: switch
       num_ports: 8
 
     - ref: switch_2
-      type: switch
       hostname: switch_2
+      type: switch
       num_ports: 8
 
     - ref: domain_controller
-      type: server
       hostname: domain_controller
+      type: server
       ip_address: 192.168.1.10
       subnet_mask: 255.255.255.0
       default_gateway: 192.168.1.1
@@ -642,8 +642,8 @@ simulation:
             arcd.com: 192.168.1.12 # web server
 
     - ref: web_server
-      type: server
       hostname: web_server
+      type: server
       ip_address: 192.168.1.12
       subnet_mask: 255.255.255.0
       default_gateway: 192.168.1.1
@@ -658,8 +658,8 @@ simulation:
 
 
     - ref: database_server
-      type: server
       hostname: database_server
+      type: server
       ip_address: 192.168.1.14
       subnet_mask: 255.255.255.0
       default_gateway: 192.168.1.1
@@ -673,8 +673,8 @@ simulation:
         type: FTPClient
 
     - ref: backup_server
-      type: server
       hostname: backup_server
+      type: server
       ip_address: 192.168.1.16
       subnet_mask: 255.255.255.0
       default_gateway: 192.168.1.1
@@ -684,8 +684,8 @@ simulation:
         type: FTPServer
 
     - ref: security_suite
-      type: server
       hostname: security_suite
+      type: server
       ip_address: 192.168.1.110
       subnet_mask: 255.255.255.0
       default_gateway: 192.168.1.1
@@ -696,8 +696,8 @@ simulation:
           subnet_mask: 255.255.255.0
 
     - ref: client_1
-      type: computer
       hostname: client_1
+      type: computer
       ip_address: 192.168.10.21
       subnet_mask: 255.255.255.0
       default_gateway: 192.168.10.1
@@ -719,8 +719,8 @@ simulation:
         type: DNSClient
 
     - ref: client_2
-      type: computer
       hostname: client_2
+      type: computer
       ip_address: 192.168.10.22
       subnet_mask: 255.255.255.0
       default_gateway: 192.168.10.1
diff --git a/src/primaite/game/agent/actions.py b/src/primaite/game/agent/actions.py
index 1793d420..b85cf86c 100644
--- a/src/primaite/game/agent/actions.py
+++ b/src/primaite/game/agent/actions.py
@@ -572,7 +572,7 @@ class NetworkNICDisableAction(NetworkNICAbstractAction):
 class ActionManager:
     """Class which manages the action space for an agent."""
 
-    _act_class_identifiers: Dict[str, type] = {
+    act_class_identifiers: Dict[str, type] = {
         "DONOTHING": DoNothingAction,
         "NODE_SERVICE_SCAN": NodeServiceScanAction,
         "NODE_SERVICE_STOP": NodeServiceStopAction,
@@ -753,7 +753,7 @@ class ActionManager:
             # and `options` is an optional dict of options to pass to the init method of the action class
             act_type = act_spec.get("type")
             act_options = act_spec.get("options", {})
-            self.actions[act_type] = self._act_class_identifiers[act_type](self, **global_action_args, **act_options)
+            self.actions[act_type] = self.act_class_identifiers[act_type](self, **global_action_args, **act_options)
 
         self.action_map: Dict[int, Tuple[str, Dict]] = {}
         """
diff --git a/src/primaite/game/agent/rewards.py b/src/primaite/game/agent/rewards.py
index b5d5f998..27c39b65 100644
--- a/src/primaite/game/agent/rewards.py
+++ b/src/primaite/game/agent/rewards.py
@@ -245,12 +245,13 @@ class WebpageUnavailablePenalty(AbstractReward):
 class RewardFunction:
     """Manages the reward function for the agent."""
 
-    __rew_class_identifiers: Dict[str, Type[AbstractReward]] = {
+    rew_class_identifiers: Dict[str, Type[AbstractReward]] = {
         "DUMMY": DummyReward,
         "DATABASE_FILE_INTEGRITY": DatabaseFileIntegrity,
         "WEB_SERVER_404_PENALTY": WebServer404Penalty,
         "WEBPAGE_UNAVAILABLE_PENALTY": WebpageUnavailablePenalty,
     }
+    """List of reward class identifiers."""
 
     def __init__(self):
         """Initialise the reward function object."""
@@ -297,7 +298,7 @@ class RewardFunction:
         for rew_component_cfg in config["reward_components"]:
             rew_type = rew_component_cfg["type"]
             weight = rew_component_cfg.get("weight", 1.0)
-            rew_class = cls.__rew_class_identifiers[rew_type]
+            rew_class = cls.rew_class_identifiers[rew_type]
             rew_instance = rew_class.from_config(config=rew_component_cfg.get("options", {}))
             new.register_component(component=rew_instance, weight=weight)
         return new
diff --git a/src/primaite/game/game.py b/src/primaite/game/game.py
index b860fb2a..909b27a4 100644
--- a/src/primaite/game/game.py
+++ b/src/primaite/game/game.py
@@ -231,24 +231,24 @@ class PrimaiteGame:
                 new_node = Computer(
                     hostname=node_cfg["hostname"],
                     ip_address=node_cfg["ip_address"],
-                    subnet_mask=node_cfg["subnet_mask"],
+                    subnet_mask=IPv4Address(node_cfg.get("subnet_mask", "255.255.255.0")),
                     default_gateway=node_cfg["default_gateway"],
-                    dns_server=node_cfg["dns_server"],
+                    dns_server=node_cfg.get("dns_server", None),
                     operating_state=NodeOperatingState.ON,
                 )
             elif n_type == "server":
                 new_node = Server(
                     hostname=node_cfg["hostname"],
                     ip_address=node_cfg["ip_address"],
-                    subnet_mask=node_cfg["subnet_mask"],
+                    subnet_mask=IPv4Address(node_cfg.get("subnet_mask", "255.255.255.0")),
                     default_gateway=node_cfg["default_gateway"],
-                    dns_server=node_cfg.get("dns_server"),
+                    dns_server=node_cfg.get("dns_server", None),
                     operating_state=NodeOperatingState.ON,
                 )
             elif n_type == "switch":
                 new_node = Switch(
                     hostname=node_cfg["hostname"],
-                    num_ports=node_cfg.get("num_ports"),
+                    num_ports=int(node_cfg.get("num_ports", "8")),
                     operating_state=NodeOperatingState.ON,
                 )
             elif n_type == "router":
diff --git a/src/primaite/simulator/network/hardware/nodes/network/firewall.py b/src/primaite/simulator/network/hardware/nodes/network/firewall.py
index f48d0561..903ce3f3 100644
--- a/src/primaite/simulator/network/hardware/nodes/network/firewall.py
+++ b/src/primaite/simulator/network/hardware/nodes/network/firewall.py
@@ -506,22 +506,24 @@ class Firewall(Router):
             # configure internal port
             new.configure_internal_port(
                 ip_address=IPV4Address(internal_port.get("ip_address")),
-                subnet_mask=IPV4Address(internal_port.get("subnet_mask")),
+                subnet_mask=IPV4Address(internal_port.get("subnet_mask", "255.255.255.0")),
             )
 
             # configure external port
             new.configure_external_port(
                 ip_address=IPV4Address(external_port.get("ip_address")),
-                subnet_mask=IPV4Address(external_port.get("subnet_mask")),
+                subnet_mask=IPV4Address(external_port.get("subnet_mask", "255.255.255.0")),
             )
 
             # configure dmz port
             new.configure_dmz_port(
-                ip_address=IPV4Address(dmz_port.get("ip_address")), subnet_mask=IPV4Address(dmz_port.get("subnet_mask"))
+                ip_address=IPV4Address(dmz_port.get("ip_address")),
+                subnet_mask=IPV4Address(dmz_port.get("subnet_mask", "255.255.255.0")),
             )
         if "acl" in cfg:
             # acl rules for internal_inbound_acl
             if cfg["acl"]["internal_inbound_acl"]:
+                new.internal_inbound_acl.max_acl_rules
                 new.internal_inbound_acl._default_config = cfg["acl"]["internal_inbound_acl"]
                 new.internal_inbound_acl._reset_rules_to_default()
 
@@ -553,8 +555,8 @@ class Firewall(Router):
             for route in cfg.get("routes"):
                 new.route_table.add_route(
                     address=IPv4Address(route.get("address")),
-                    subnet_mask=IPv4Address(route.get("subnet_mask")),
+                    subnet_mask=IPv4Address(route.get("subnet_mask", "255.255.255.0")),
                     next_hop_ip_address=IPv4Address(route.get("next_hop_ip_address")),
-                    metric=float(route.get("metric")),
+                    metric=float(route.get("metric", 0)),
                 )
         return new
diff --git a/src/primaite/simulator/network/hardware/nodes/network/router.py b/src/primaite/simulator/network/hardware/nodes/network/router.py
index d52028a8..b3d7f7bf 100644
--- a/src/primaite/simulator/network/hardware/nodes/network/router.py
+++ b/src/primaite/simulator/network/hardware/nodes/network/router.py
@@ -1482,7 +1482,7 @@ class Router(NetworkNode):
         """
         new = Router(
             hostname=cfg["hostname"],
-            num_ports=cfg.get("num_ports"),
+            num_ports=int(cfg.get("num_ports", "5")),
             operating_state=NodeOperatingState.ON,
         )
         if "ports" in cfg:
@@ -1490,7 +1490,7 @@ class Router(NetworkNode):
                 new.configure_port(
                     port=port_num,
                     ip_address=port_cfg["ip_address"],
-                    subnet_mask=port_cfg["subnet_mask"],
+                    subnet_mask=IPv4Address(port_cfg.get("subnet_mask", "255.255.255.0")),
                 )
         if "acl" in cfg:
             new.acl._default_config = cfg["acl"]  # save the config to allow resetting
@@ -1499,8 +1499,8 @@ class Router(NetworkNode):
             for route in cfg.get("routes"):
                 new.route_table.add_route(
                     address=IPv4Address(route.get("address")),
-                    subnet_mask=IPv4Address(route.get("subnet_mask")),
+                    subnet_mask=IPv4Address(route.get("subnet_mask", "255.255.255.0")),
                     next_hop_ip_address=IPv4Address(route.get("next_hop_ip_address")),
-                    metric=float(route.get("metric")),
+                    metric=float(route.get("metric", 0)),
                 )
         return new
diff --git a/src/primaite/simulator/network/transmission/network_layer.py b/src/primaite/simulator/network/transmission/network_layer.py
index bdf4babc..dc848ade 100644
--- a/src/primaite/simulator/network/transmission/network_layer.py
+++ b/src/primaite/simulator/network/transmission/network_layer.py
@@ -9,11 +9,18 @@ _LOGGER = getLogger(__name__)
 
 
 class IPProtocol(Enum):
-    """Enum representing transport layer protocols in IP header."""
+    """
+    Enum representing transport layer protocols in IP header.
+
+    .. _List of IPProtocols:
+    """
 
     TCP = "tcp"
+    """Transmission Control Protocol."""
     UDP = "udp"
+    """User Datagram Protocol."""
     ICMP = "icmp"
+    """Internet Control Message Protocol."""
 
 
 class Precedence(Enum):
diff --git a/src/primaite/simulator/network/transmission/transport_layer.py b/src/primaite/simulator/network/transmission/transport_layer.py
index 7c7509ab..c73e451a 100644
--- a/src/primaite/simulator/network/transmission/transport_layer.py
+++ b/src/primaite/simulator/network/transmission/transport_layer.py
@@ -5,7 +5,11 @@ from pydantic import BaseModel
 
 
 class Port(Enum):
-    """Enumeration of common known TCP/UDP ports used by protocols for operation of network applications."""
+    """
+    Enumeration of common known TCP/UDP ports used by protocols for operation of network applications.
+
+    .. _List of Ports:
+    """
 
     NONE = 0
     "Place holder for a non-port."
diff --git a/tests/assets/configs/dmz_network.yaml b/tests/assets/configs/dmz_network.yaml
index 971ed8cd..880735d9 100644
--- a/tests/assets/configs/dmz_network.yaml
+++ b/tests/assets/configs/dmz_network.yaml
@@ -20,7 +20,7 @@
 #   .      ----------------      --------------      --------------            .
 #   .      |  dmz_server  |------|  switch_2  |------|  firewall  |            .
 #   .      ----------------      --------------      --------------            .
-#   .        (Computer)                                     |                  .
+#   .        (Server)                                       |                  .
 #   ........................................................|...................
 #                                                           |
 #    External Network                                       |