opnsense/OPNsense
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

/firewall_rules_edit.php made changes @ 2026-03-07T19:48:20.090000 (root@10.0.20.24)

Browse Source
This commit is contained in:
System Administrator
2026-03-07 19:48:21 +10:30
committed by System Administrator
parent 3f019b036b
commit c67db0b44a
1 changed files with 333 additions and 194 deletions
Download Patch File Download Diff File Expand all files Collapse all files
config.xml
+333 -194
View File
@@ -310,11 +310,6 @@
<disablenatreflection>yes</disablenatreflection>
<usevirtualterminal>1</usevirtualterminal>
<disableconsolemenu/>
<disablevlanhwfilter>1</disablevlanhwfilter>
<disablechecksumoffloading>1</disablechecksumoffloading>
<disablesegmentationoffloading>1</disablesegmentationoffloading>
<disablelargereceiveoffloading>1</disablelargereceiveoffloading>
<ipv6allow/>
<powerd_ac_mode>hadp</powerd_ac_mode>
<powerd_battery_mode>hadp</powerd_battery_mode>
<powerd_normal_mode>hadp</powerd_normal_mode>
@@ -1159,341 +1154,445 @@ e+7APPmE4+Hdfyhcws1MAAAAG3Jvb3RAZ29uZG9yMi5kc3MubXl3aXJlLm9yZwEC&#13;
<outbound>
<mode>automatic</mode>
</outbound>
<rule>
<protocol>tcp</protocol>
<rule uuid="bfc775b9-c571-4798-ad94-f08bdff21787">
<sequence>100</sequence>
<disabled>1</disabled>
<nordr>0</nordr>
<interface>wan</interface>
<category/>
<ipprotocol>inet</ipprotocol>
<descr>HASS.io</descr>
<tag/>
<tagged/>
<poolopts/>
<associated-rule-id/>
<target>hass</target>
<local-port>8123</local-port>
<protocol>tcp</protocol>
<source>
<any>1</any>
<network/>
<port/>
<not>0</not>
</source>
<destination>
<network>wanip</network>
<port>8123</port>
<not>0</not>
</destination>
<updated>
<username>root@10.0.1.131</username>
<time>1707537476.8948</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
<target>hass</target>
<local-port>8123</local-port>
<poolopts/>
<log>0</log>
<category/>
<descr>HASS.io</descr>
<tag/>
<tagged/>
<nosync>0</nosync>
<natreflection/>
<pass/>
<associated-rule-id/>
<created>
<username>root@10.0.1.201</username>
<time>1614422429.1527</time>
<description>/firewall_nat_edit.php made changes</description>
</created>
<disabled>1</disabled>
<updated>
<username>root@10.0.1.131</username>
<time>1707537476.8948</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
</rule>
<rule>
<protocol>tcp</protocol>
<rule uuid="811a2670-c22b-419d-aeb4-0e107adda999">
<sequence>200</sequence>
<disabled>0</disabled>
<nordr>0</nordr>
<interface>wan</interface>
<category/>
<ipprotocol>inet</ipprotocol>
<descr>debian vm</descr>
<tag/>
<tagged/>
<poolopts/>
<associated-rule-id>nat_603a31025c4875.51279624</associated-rule-id>
<target>terminal</target>
<local-port>22</local-port>
<protocol>tcp</protocol>
<source>
<any>1</any>
<network/>
<port/>
<not>0</not>
</source>
<destination>
<network>wanip</network>
<port>22</port>
<not>0</not>
</destination>
<updated>
<username>root@10.0.40.31</username>
<time>1709875603.2834</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
<target>terminal</target>
<local-port>22</local-port>
<poolopts/>
<log>0</log>
<category/>
<descr>debian vm</descr>
<tag/>
<tagged/>
<nosync>0</nosync>
<natreflection/>
<pass/>
<associated-rule-id/>
<created>
<username>root@10.0.1.201</username>
<time>1614426370.3781</time>
<description>/firewall_nat_edit.php made changes</description>
</created>
<updated>
<username>root@10.0.40.31</username>
<time>1709875603.2834</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
</rule>
<rule>
<protocol>tcp</protocol>
<rule uuid="a80478c4-32fe-43ac-87a9-02ced7d9beaf">
<sequence>300</sequence>
<disabled>1</disabled>
<nordr>0</nordr>
<interface>wan</interface>
<category/>
<ipprotocol>inet</ipprotocol>
<descr>debian2 vm</descr>
<tag/>
<tagged/>
<poolopts/>
<associated-rule-id/>
<target>10.0.1.103</target>
<local-port>22</local-port>
<protocol>tcp</protocol>
<source>
<any>1</any>
<network/>
<port/>
<not>0</not>
</source>
<destination>
<network>wanip</network>
<port>22</port>
<not>0</not>
</destination>
<updated>
<username>root@10.0.1.102</username>
<time>1653512457.5365</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
<target>10.0.1.103</target>
<local-port>22</local-port>
<poolopts/>
<log>0</log>
<category/>
<descr>debian2 vm</descr>
<tag/>
<tagged/>
<nosync>0</nosync>
<natreflection/>
<pass/>
<associated-rule-id/>
<created>
<username>root@10.0.1.100</username>
<time>1644062755.6808</time>
<description>/firewall_nat_edit.php made changes</description>
</created>
<disabled>1</disabled>
<updated>
<username>root@10.0.1.102</username>
<time>1653512457.5365</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
</rule>
<rule>
<protocol>tcp</protocol>
<rule uuid="5d0cff29-3e05-4806-aa71-3dd2815652a1">
<sequence>400</sequence>
<disabled>0</disabled>
<nordr>0</nordr>
<interface>wan</interface>
<category/>
<ipprotocol>inet</ipprotocol>
<descr>nginx reverse proxy ssl</descr>
<tag/>
<tagged/>
<poolopts/>
<associated-rule-id>nat_609ab30d1bcb08.88985266</associated-rule-id>
<target>nginx</target>
<local-port>443</local-port>
<protocol>tcp</protocol>
<source>
<any>1</any>
<network/>
<port/>
<not>0</not>
</source>
<destination>
<network>wanip</network>
<port>443</port>
<not>0</not>
</destination>
<updated>
<username>root@10.0.1.131</username>
<time>1707521483.7973</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
<target>nginx</target>
<local-port>443</local-port>
<poolopts/>
<log>0</log>
<category/>
<descr>nginx reverse proxy ssl</descr>
<tag/>
<tagged/>
<nosync>0</nosync>
<natreflection/>
<pass/>
<associated-rule-id/>
<created>
<username>root@10.0.8.6</username>
<time>1620751117.1139</time>
<description>/firewall_nat_edit.php made changes</description>
</created>
<updated>
<username>root@10.0.1.131</username>
<time>1707521483.7973</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
</rule>
<rule>
<protocol>tcp</protocol>
<rule uuid="6b8e0fe0-4d35-4fab-88af-60ff1bebe361">
<sequence>500</sequence>
<disabled>0</disabled>
<nordr>0</nordr>
<interface>wan</interface>
<category/>
<ipprotocol>inet</ipprotocol>
<descr>nginx reverse proxy server</descr>
<tag/>
<tagged/>
<poolopts/>
<associated-rule-id>nat_61d69bc2d88db3.30171087</associated-rule-id>
<target>nginx</target>
<local-port>80</local-port>
<protocol>tcp</protocol>
<source>
<any>1</any>
<network/>
<port/>
<not>0</not>
</source>
<destination>
<network>wanip</network>
<port>80</port>
<not>0</not>
</destination>
<updated>
<username>root@10.0.1.131</username>
<time>1707521505.2924</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
<target>nginx</target>
<local-port>80</local-port>
<poolopts/>
<log>0</log>
<category/>
<descr>nginx reverse proxy server</descr>
<tag/>
<tagged/>
<nosync>0</nosync>
<natreflection/>
<pass/>
<associated-rule-id/>
<created>
<username>root@10.0.1.100</username>
<time>1641454530.8871</time>
<description>/firewall_nat_edit.php made changes</description>
</created>
<updated>
<username>root@10.0.1.131</username>
<time>1707521505.2924</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
</rule>
<rule>
<protocol>tcp</protocol>
<rule uuid="7724054a-89e3-4291-963a-5e8f5e6fd172">
<sequence>600</sequence>
<disabled>0</disabled>
<nordr>0</nordr>
<interface>wan</interface>
<category/>
<ipprotocol>inet</ipprotocol>
<descr>velocity for minecraft java</descr>
<tag/>
<tagged/>
<poolopts/>
<associated-rule-id>pass</associated-rule-id>
<target>velocity</target>
<local-port>25565</local-port>
<protocol>tcp</protocol>
<source>
<any>1</any>
<network/>
<port/>
<not>0</not>
</source>
<destination>
<network>wanip</network>
<port>25565</port>
<not>0</not>
</destination>
<updated>
<username>root@10.0.20.24</username>
<time>1759730875.89</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
<target>velocity</target>
<local-port>25565</local-port>
<poolopts/>
<log>0</log>
<category/>
<descr>velocity for minecraft java</descr>
<tag/>
<tagged/>
<nosync>0</nosync>
<natreflection/>
<pass>pass</pass>
<associated-rule-id/>
<created>
<username>root@10.0.1.201</username>
<time>1636418784.8863</time>
<description>/firewall_nat_edit.php made changes</description>
</created>
<updated>
<username>root@10.0.20.24</username>
<time>1759730875.89</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
</rule>
<rule>
<protocol>udp</protocol>
<rule uuid="f8733251-b42e-444b-8664-bf71e370b582">
<sequence>700</sequence>
<disabled>0</disabled>
<nordr>0</nordr>
<interface>wan</interface>
<category/>
<ipprotocol>inet</ipprotocol>
<descr>velocity for minecraft bedrock</descr>
<tag/>
<tagged/>
<poolopts/>
<associated-rule-id>pass</associated-rule-id>
<target>velocity</target>
<local-port>19132</local-port>
<protocol>udp</protocol>
<source>
<any>1</any>
<network/>
<port/>
<not>0</not>
</source>
<destination>
<network>wanip</network>
<port>19132</port>
<not>0</not>
</destination>
<updated>
<username>root@10.0.20.24</username>
<time>1759730854.14</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
<target>velocity</target>
<local-port>19132</local-port>
<poolopts/>
<log>0</log>
<category/>
<descr>velocity for minecraft bedrock</descr>
<tag/>
<tagged/>
<nosync>0</nosync>
<natreflection/>
<pass>pass</pass>
<associated-rule-id/>
<created>
<username>root@10.0.1.201</username>
<time>1636679797.8341</time>
<description>/firewall_nat_edit.php made changes</description>
</created>
<updated>
<username>root@10.0.20.24</username>
<time>1759730854.14</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
</rule>
<rule>
<protocol>tcp</protocol>
<rule uuid="d1b631c3-bc69-4dc2-82e8-b0fb186b7c03">
<sequence>800</sequence>
<disabled>1</disabled>
<nordr>0</nordr>
<interface>wan</interface>
<category/>
<ipprotocol>inet</ipprotocol>
<descr>Jellyfin services</descr>
<tag/>
<tagged/>
<poolopts/>
<associated-rule-id/>
<target>jellyfin</target>
<local-port>8096</local-port>
<protocol>tcp</protocol>
<source>
<any>1</any>
<network/>
<port/>
<not>0</not>
</source>
<destination>
<network>wanip</network>
<port>8096</port>
<not>0</not>
</destination>
<updated>
<username>root@10.0.1.131</username>
<time>1707526414.609</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
<target>jellyfin</target>
<local-port>8096</local-port>
<poolopts/>
<log>0</log>
<category/>
<descr>Jellyfin services</descr>
<tag/>
<tagged/>
<nosync>0</nosync>
<natreflection/>
<pass/>
<associated-rule-id/>
<created>
<username>root@10.0.1.100</username>
<time>1643200665.4482</time>
<description>/firewall_nat_edit.php made changes</description>
</created>
<disabled>1</disabled>
<updated>
<username>root@10.0.1.131</username>
<time>1707526414.609</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
</rule>
<rule>
<protocol>udp</protocol>
<rule uuid="139df162-bc11-4add-b634-8ced1a7cd71b">
<sequence>900</sequence>
<disabled>1</disabled>
<nordr>0</nordr>
<interface>wan</interface>
<category/>
<ipprotocol>inet</ipprotocol>
<descr/>
<tag/>
<tagged/>
<poolopts/>
<associated-rule-id/>
<target>10.0.1.102</target>
<local-port>3478</local-port>
<protocol>udp</protocol>
<source>
<any>1</any>
<network/>
<port/>
<not>0</not>
</source>
<destination>
<network>wanip</network>
<port>3478</port>
<not>0</not>
</destination>
<updated>
<username>root@10.0.1.102</username>
<time>1657539043.7507</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
<target>10.0.1.102</target>
<local-port>3478</local-port>
<poolopts/>
<log>0</log>
<category/>
<descr/>
<tag/>
<tagged/>
<nosync>0</nosync>
<natreflection/>
<pass/>
<associated-rule-id/>
<created>
<username>root@10.0.1.102</username>
<time>1657539043.7507</time>
<description>/firewall_nat_edit.php made changes</description>
</created>
<disabled>1</disabled>
<updated>
<username>root@10.0.1.102</username>
<time>1657539043.7507</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
</rule>
<rule>
<protocol>udp</protocol>
<interface>wan</interface>
<category/>
<ipprotocol>inet</ipprotocol>
<descr>Steam related</descr>
<tag/>
<tagged/>
<poolopts/>
<associated-rule-id/>
<rule uuid="ce45d4cd-d637-4f66-b43c-baa96c98ef66">
<sequence>1000</sequence>
<disabled>1</disabled>
<target>10.0.1.102</target>
<local-port>4379</local-port>
<nordr>0</nordr>
<interface>wan</interface>
<ipprotocol>inet</ipprotocol>
<protocol>udp</protocol>
<source>
<any>1</any>
<network/>
<port/>
<not>0</not>
</source>
<destination>
<network>wanip</network>
<port>4379-4380</port>
<not>0</not>
</destination>
<updated>
<username>root@10.0.20.24</username>
<time>1759563737.18</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
<target>10.0.1.102</target>
<local-port>4379</local-port>
<poolopts/>
<log>0</log>
<category/>
<descr>Steam related</descr>
<tag/>
<tagged/>
<nosync>0</nosync>
<natreflection/>
<pass/>
<associated-rule-id/>
<created>
<username>root@10.0.1.102</username>
<time>1657539103.3851</time>
<description>/firewall_nat_edit.php made changes</description>
</created>
<updated>
<username>root@10.0.20.24</username>
<time>1759563737.18</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
</rule>
<rule>
<protocol>tcp/udp</protocol>
<rule uuid="75d2a8e9-1bc2-49e3-91a6-f3b5d8ec8d6f">
<sequence>1100</sequence>
<disabled>1</disabled>
<nordr>0</nordr>
<interface>wan</interface>
<category/>
<ipprotocol>inet</ipprotocol>
<descr>deluge</descr>
<tag/>
<tagged/>
<poolopts/>
<associated-rule-id/>
<target>10.0.10.13</target>
<local-port>6881</local-port>
<protocol>tcp/udp</protocol>
<source>
<any>1</any>
<network/>
<port/>
<not>0</not>
</source>
<destination>
<network>wanip</network>
<port>6881</port>
<not>0</not>
</destination>
<updated>
<username>root@10.0.20.24</username>
<time>1745257291.1951</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
<target>10.0.10.13</target>
<local-port>6881</local-port>
<poolopts/>
<log>0</log>
<category/>
<descr>deluge</descr>
<tag/>
<tagged/>
<nosync>0</nosync>
<natreflection/>
<pass/>
<associated-rule-id/>
<created>
<username>root@10.0.1.102</username>
<time>1658838913.8119</time>
<description>/firewall_nat_edit.php made changes</description>
</created>
<disabled>1</disabled>
<updated>
<username>root@10.0.20.24</username>
<time>1745257291.1951</time>
<description>/firewall_nat_edit.php made changes</description>
</updated>
</rule>
</nat>
<filter>
@@ -2602,6 +2701,33 @@ e+7APPmE4+Hdfyhcws1MAAAAG3Jvb3RAZ29uZG9yMi5kc3MubXl3aXJlLm9yZwEC&#13;
<description>/firewall_rules_edit.php made changes</description>
</created>
</rule>
<rule uuid="51061438-1804-443c-8ab0-6c15898c4444">
<type>pass</type>
<interface>opt2</interface>
<ipprotocol>inet</ipprotocol>
<statetype>keep state</statetype>
<descr>General VLAN access to NFS on TrueNAS</descr>
<direction>in</direction>
<quick>1</quick>
<protocol>tcp/udp</protocol>
<source>
<network>opt2</network>
</source>
<destination>
<address>TrueNAS</address>
<port>2049</port>
</destination>
<updated>
<username>root@10.0.20.24</username>
<time>1772875099.80</time>
<description>/firewall_rules_edit.php made changes</description>
</updated>
<created>
<username>root@10.0.20.24</username>
<time>1772875099.80</time>
<description>/firewall_rules_edit.php made changes</description>
</created>
</rule>
<rule uuid="f07a8be1-8117-45ed-912b-a56f7112d279">
<type>pass</type>
<interface>opt2</interface>
@@ -4777,9 +4903,9 @@ e+7APPmE4+Hdfyhcws1MAAAAG3Jvb3RAZ29uZG9yMi5kc3MubXl3aXJlLm9yZwEC&#13;
<column_count>2</column_count>
</widgets>
<revision>
<username>(system)</username>
<description>/usr/local/opnsense/scripts/firmware/register.php made changes</description>
<time>1772817603.32</time>
<username>root@10.0.20.24</username>
<description>/firewall_rules_edit.php made changes</description>
<time>1772875100.09</time>
</revision>
<OPNsense>
<Firewall>
@@ -5347,7 +5473,7 @@ e+7APPmE4+Hdfyhcws1MAAAAG3Jvb3RAZ29uZG9yMi5kc3MubXl3aXJlLm9yZwEC&#13;
<zones/>
<templates/>
</captiveportal>
<IDS version="1.1.1" persisted_at="1768032568.41" description="Intrusion detection">
<IDS version="1.1.2" persisted_at="1772818222.43" description="Intrusion detection">
<rules/>
<policies/>
<userDefinedRules/>
@@ -5355,7 +5481,8 @@ e+7APPmE4+Hdfyhcws1MAAAAG3Jvb3RAZ29uZG9yMi5kc3MubXl3aXJlLm9yZwEC&#13;
<fileTags/>
<general>
<enabled>0</enabled>
<ips>0</ips>
<mode>pcap</mode>
<divert_listeners>1</divert_listeners>
<promisc>0</promisc>
<interfaces>wan</interfaces>
<homenet>192.168.0.0/16,10.0.0.0/8,172.16.0.0/12</homenet>
@@ -5467,6 +5594,17 @@ e+7APPmE4+Hdfyhcws1MAAAAG3Jvb3RAZ29uZG9yMi5kc3MubXl3aXJlLm9yZwEC&#13;
<loopbacks version="1.0.0"/>
<vxlans version="1.0.2"/>
<neighbors version="1.0.0"/>
<settings version="1.0.0" persisted_at="1772818226.19" description="Global interface settings">
<disablechecksumoffloading>1</disablechecksumoffloading>
<disablesegmentationoffloading>1</disablesegmentationoffloading>
<disablelargereceiveoffloading>1</disablelargereceiveoffloading>
<disablevlanhwfilter>1</disablevlanhwfilter>
<disableipv6>0</disableipv6>
<dhcp6_norelease>0</dhcp6_norelease>
<dhcp6_debug>0</dhcp6_debug>
<dhcp6_duid/>
<dhcp6_ratimeout>10</dhcp6_ratimeout>
</settings>
</Interfaces>
<proxy version="1.0.6">
<general>
@@ -6655,7 +6793,7 @@ e+7APPmE4+Hdfyhcws1MAAAAG3Jvb3RAZ29uZG9yMi5kc3MubXl3aXJlLm9yZwEC&#13;
</validations>
<actions/>
</AcmeClient>
<Nginx version="1.35.1" persisted_at="1759561807.18">
<Nginx version="1.35.2" persisted_at="1772817986.38" description="nginx web server, reverse proxy and waf">
<general>
<enabled>0</enabled>
<ban_ttl>4320</ban_ttl>
@@ -7119,6 +7257,7 @@ e+7APPmE4+Hdfyhcws1MAAAAG3Jvb3RAZ29uZG9yMi5kc3MubXl3aXJlLm9yZwEC&#13;
<ntp>0</ntp>
<zfs>0</zfs>
</NodeExporter>
<radvd version="1.0.0" persisted_at="1772818227.93" description="Radvd configuration"/>
</OPNsense>
<ca uuid="a5958133-3563-452b-9bb4-7075fe182997">
<refid>65b4a0e1c3356</refid>