3349 lines
123 KiB
XML
3349 lines
123 KiB
XML
<?xml version="1.0"?>
|
|
<opnsense>
|
|
<theme>opnsense</theme>
|
|
<sysctl>
|
|
<item>
|
|
<descr>Increase UFS read-ahead speeds to match the state of hard drives and NCQ.</descr>
|
|
<tunable>vfs.read_max</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Set the ephemeral port range to be lower.</descr>
|
|
<tunable>net.inet.ip.portrange.first</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Drop packets to closed TCP ports without returning a RST</descr>
|
|
<tunable>net.inet.tcp.blackhole</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Do not send ICMP port unreachable messages for closed UDP ports</descr>
|
|
<tunable>net.inet.udp.blackhole</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Randomize the ID field in IP packets</descr>
|
|
<tunable>net.inet.ip.random_id</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>
|
|
Source routing is another way for an attacker to try to reach non-routable addresses behind your box.
|
|
It can also be used to probe for information about your internal networks. These functions come enabled
|
|
as part of the standard FreeBSD core system.
|
|
</descr>
|
|
<tunable>net.inet.ip.sourceroute</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>
|
|
Source routing is another way for an attacker to try to reach non-routable addresses behind your box.
|
|
It can also be used to probe for information about your internal networks. These functions come enabled
|
|
as part of the standard FreeBSD core system.
|
|
</descr>
|
|
<tunable>net.inet.ip.accept_sourceroute</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>
|
|
This option turns off the logging of redirect packets because there is no limit and this could fill
|
|
up your logs consuming your whole hard drive.
|
|
</descr>
|
|
<tunable>net.inet.icmp.log_redirect</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Drop SYN-FIN packets (breaks RFC1379, but nobody uses it anyway)</descr>
|
|
<tunable>net.inet.tcp.drop_synfin</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Enable sending IPv6 redirects</descr>
|
|
<tunable>net.inet6.ip6.redirect</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Enable privacy settings for IPv6 (RFC 4941)</descr>
|
|
<tunable>net.inet6.ip6.use_tempaddr</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Prefer privacy addresses and use them over the normal addresses</descr>
|
|
<tunable>net.inet6.ip6.prefer_tempaddr</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Generate SYN cookies for outbound SYN-ACK packets</descr>
|
|
<tunable>net.inet.tcp.syncookies</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Maximum incoming/outgoing TCP datagram size (receive)</descr>
|
|
<tunable>net.inet.tcp.recvspace</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Maximum incoming/outgoing TCP datagram size (send)</descr>
|
|
<tunable>net.inet.tcp.sendspace</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Do not delay ACK to try and piggyback it onto a data packet</descr>
|
|
<tunable>net.inet.tcp.delayed_ack</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Maximum outgoing UDP datagram size</descr>
|
|
<tunable>net.inet.udp.maxdgram</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Handling of non-IP packets which are not passed to pfil (see if_bridge(4))</descr>
|
|
<tunable>net.link.bridge.pfil_onlyip</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Set to 1 to additionally filter on the physical interface for locally destined packets</descr>
|
|
<tunable>net.link.bridge.pfil_local_phys</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Set to 0 to disable filtering on the incoming and outgoing member interfaces.</descr>
|
|
<tunable>net.link.bridge.pfil_member</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Set to 1 to enable filtering on the bridge interface</descr>
|
|
<tunable>net.link.bridge.pfil_bridge</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Allow unprivileged access to tap(4) device nodes</descr>
|
|
<tunable>net.link.tap.user_open</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Randomize PID's (see src/sys/kern/kern_fork.c: sysctl_kern_randompid())</descr>
|
|
<tunable>kern.randompid</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Maximum size of the IP input queue</descr>
|
|
<tunable>net.inet.ip.intr_queue_maxlen</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Disable CTRL+ALT+Delete reboot from keyboard.</descr>
|
|
<tunable>hw.syscons.kbd_reboot</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Hint at default settings for serial console in case the autodetect is not working</descr>
|
|
<tunable>hw.uart.console</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Enable TCP extended debugging</descr>
|
|
<tunable>net.inet.tcp.log_debug</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Set ICMP Limits</descr>
|
|
<tunable>net.inet.icmp.icmplim</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>TCP Offload Engine</descr>
|
|
<tunable>net.inet.tcp.tso</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>UDP Checksums</descr>
|
|
<tunable>net.inet.udp.checksum</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Maximum socket buffer size</descr>
|
|
<tunable>kern.ipc.maxsockbuf</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Page Table Isolation (Meltdown mitigation, requires reboot.)</descr>
|
|
<tunable>vm.pmap.pti</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Disable Indirect Branch Restricted Speculation (Spectre V2 mitigation)</descr>
|
|
<tunable>hw.ibrs_disable</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Hide processes running as other groups</descr>
|
|
<tunable>security.bsd.see_other_gids</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Hide processes running as other users</descr>
|
|
<tunable>security.bsd.see_other_uids</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
<item>
|
|
<descr>Enable/disable sending of ICMP redirects in response to IP packets for which a better,
|
|
and for the sender directly reachable, route and next hop is known.
|
|
</descr>
|
|
<tunable>net.inet.ip.redirect</tunable>
|
|
<value>0</value>
|
|
</item>
|
|
<item>
|
|
<descr>
|
|
Redirect attacks are the purposeful mass-issuing of ICMP type 5 packets. In a normal network, redirects
|
|
to the end stations should not be required. This option enables the NIC to drop all inbound ICMP redirect
|
|
packets without returning a response.
|
|
</descr>
|
|
<tunable>net.inet.icmp.drop_redirect</tunable>
|
|
<value>1</value>
|
|
</item>
|
|
<item>
|
|
<descr>Maximum outgoing UDP datagram size</descr>
|
|
<tunable>net.local.dgram.maxdgram</tunable>
|
|
<value>default</value>
|
|
</item>
|
|
</sysctl>
|
|
<system>
|
|
<optimization>normal</optimization>
|
|
<hostname>gondor2</hostname>
|
|
<domain>dss.mywire.org</domain>
|
|
<dnsallowoverride>1</dnsallowoverride>
|
|
<group>
|
|
<name>admins</name>
|
|
<description>System Administrators</description>
|
|
<scope>system</scope>
|
|
<gid>1999</gid>
|
|
<member>0</member>
|
|
<member>2000</member>
|
|
<priv>page-all</priv>
|
|
</group>
|
|
<user>
|
|
<name>root</name>
|
|
<descr>System Administrator</descr>
|
|
<scope>system</scope>
|
|
<groupname>admins</groupname>
|
|
<password>$2y$10$V5R3OFK0X8dz/shqsIj3AuuhVvT/TR8gA6u9s.j0gknxplOMg4tyC</password>
|
|
<uid>0</uid>
|
|
</user>
|
|
<user>
|
|
<password>$2y$11$77rIEmn8xjecWoKfve.cZ.Fb5PIDN6PR8mM4MdlHubJiuBMiWacqW</password>
|
|
<scope>user</scope>
|
|
<name>dion</name>
|
|
<descr>Dion</descr>
|
|
<expires/>
|
|
<authorizedkeys/>
|
|
<ipsecpsk/>
|
|
<otp_seed>LYA2AG53OBHL35L6NMGE4KEM4ZPHYAWI</otp_seed>
|
|
<email>dionscarman@gmail.com</email>
|
|
<uid>2000</uid>
|
|
<cert>65b4a1c0bffcf</cert>
|
|
</user>
|
|
<nextuid>2001</nextuid>
|
|
<nextgid>2000</nextgid>
|
|
<timezone>Australia/Adelaide</timezone>
|
|
<timeservers>0.opnsense.pool.ntp.org 1.opnsense.pool.ntp.org 2.opnsense.pool.ntp.org 3.opnsense.pool.ntp.org</timeservers>
|
|
<webgui>
|
|
<protocol>http</protocol>
|
|
<ssl-certref>60132b5e4fc3d</ssl-certref>
|
|
<port>8004</port>
|
|
<ssl-ciphers/>
|
|
<interfaces/>
|
|
<compression/>
|
|
<nohttpreferercheck>1</nohttpreferercheck>
|
|
</webgui>
|
|
<disablenatreflection>yes</disablenatreflection>
|
|
<usevirtualterminal>1</usevirtualterminal>
|
|
<disableconsolemenu>1</disableconsolemenu>
|
|
<disablevlanhwfilter>1</disablevlanhwfilter>
|
|
<disablechecksumoffloading>1</disablechecksumoffloading>
|
|
<disablesegmentationoffloading>1</disablesegmentationoffloading>
|
|
<disablelargereceiveoffloading>1</disablelargereceiveoffloading>
|
|
<ipv6allow/>
|
|
<powerd_ac_mode>hadp</powerd_ac_mode>
|
|
<powerd_battery_mode>hadp</powerd_battery_mode>
|
|
<powerd_normal_mode>hadp</powerd_normal_mode>
|
|
<bogons>
|
|
<interval>monthly</interval>
|
|
</bogons>
|
|
<crypto_hardware>aesni</crypto_hardware>
|
|
<pf_share_forward>1</pf_share_forward>
|
|
<lb_use_sticky>1</lb_use_sticky>
|
|
<ssh>
|
|
<group>admins</group>
|
|
<noauto>1</noauto>
|
|
<interfaces/>
|
|
<kex/>
|
|
<ciphers/>
|
|
<macs/>
|
|
<keys/>
|
|
<enabled>enabled</enabled>
|
|
<passwordauth>1</passwordauth>
|
|
<permitrootlogin>1</permitrootlogin>
|
|
</ssh>
|
|
<backup>
|
|
<nextcloud version="1.0.0">
|
|
<enabled>0</enabled>
|
|
<url/>
|
|
<user/>
|
|
<password/>
|
|
<password_encryption/>
|
|
<backupdir>OPNsense-Backup</backupdir>
|
|
</nextcloud>
|
|
<git version="1.0.0">
|
|
<enabled>1</enabled>
|
|
<url>ssh://omv.dss.mywire.org:222/opnsense/OPNsense.git</url>
|
|
<branch>main</branch>
|
|
<privkey>-----BEGIN OPENSSH PRIVATE KEY-----
|
|
b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAABlwAAAAdzc2gtcn
|
|
NhAAAAAwEAAQAAAYEA25Gs26MQjjEEZuv6FOIkW0DFRDeclHMVicOSE3XAgB6L7bWUTH6F
|
|
O05CDMrJZffv+sAuJsKbX8q4PJ5xIcRhenDhx4Yb3uq67Z0furWNPr/Dxfe3G9y+xLF8ce
|
|
UzEmAXhHo55uklZMLJWvO5rgZEf902RZ+SXUr/fc25CQPdyuu40T7tuygMQvJfIwyGKNEM
|
|
hVu90yRFJWqkpCfnNigD8IYuGjnrK3rp8W2JSbXL2CTYMQTPR7kpgmmdZlMi/u8SHWVrpE
|
|
ii7DfohattUjSrAguXa1PiOoD+KemkiIY+I2Q3qB9lMLOiYSgvcawl4r35MVAGssSXeXbX
|
|
gcOQkdsEijWePNLV2HvtsF4XuYxxeyjHN8pGlQ/AypGiFyPO9EjppyRl8xYCHR7dB1Rkt2
|
|
PXX5Ud4ZmXrr5e9ceawOfu/UNPwiNvTP7TV/k/DNjdp0EQPOfnjq2tHI6BxgV3ARQON96y
|
|
H1smtKCZW18DOXFPb4KWCMf5tPqt93paoA/BlD+zAAAFkNlJkPjZSZD4AAAAB3NzaC1yc2
|
|
EAAAGBANuRrNujEI4xBGbr+hTiJFtAxUQ3nJRzFYnDkhN1wIAei+21lEx+hTtOQgzKyWX3
|
|
7/rALibCm1/KuDyecSHEYXpw4ceGG97quu2dH7q1jT6/w8X3txvcvsSxfHHlMxJgF4R6Oe
|
|
bpJWTCyVrzua4GRH/dNkWfkl1K/33NuQkD3crruNE+7bsoDELyXyMMhijRDIVbvdMkRSVq
|
|
pKQn5zYoA/CGLho56yt66fFtiUm1y9gk2DEEz0e5KYJpnWZTIv7vEh1la6RIouw36IWrbV
|
|
I0qwILl2tT4jqA/inppIiGPiNkN6gfZTCzomEoL3GsJeK9+TFQBrLEl3l214HDkJHbBIo1
|
|
njzS1dh77bBeF7mMcXsoxzfKRpUPwMqRohcjzvRI6ackZfMWAh0e3QdUZLdj11+VHeGZl6
|
|
6+XvXHmsDn7v1DT8Ijb0z+01f5PwzY3adBEDzn546trRyOgcYFdwEUDjfesh9bJrSgmVtf
|
|
AzlxT2+ClgjH+bT6rfd6WqAPwZQ/swAAAAMBAAEAAAGAJ0dsMO5+67EBJJhaaJn7/wcbQx
|
|
Tfwf7Ef5yo6SpLgZ/1UFUHbpfDpdReJIOye7dbCvSOTQjLWtudEdsWSgAjoA/JlDP9kGdV
|
|
gWR2ZKRN3EfZ8fRaoXVf+zf1Fzr1Y/gkvOJQsWpL8jaWZtrrAKLGZklgiBv/xwi/o/XFgE
|
|
NczgxVR7mGNdD4QJGzS0XWSj77im/bCYaXiBYH1gX9asbFzaVzYeWymFiouTPrN3B6QvR0
|
|
aHB/1EjfkCDss31z6T9DHXxFsB8qLF/BMTeus+mkCd/6+giL282bxSplzT0uv3g1ohSPAO
|
|
U4MnfJzAZ0TvlOlF3HdWJW4qHtdc3L/WvmTfqTXYFb+vdxG/CRhoCPfw9WopyBLNRhw44f
|
|
GAXLIqfXW4isd/3emIvAWUXkrlVfcugJpOEL3+H1MH0mmdIVwi2gpMD7ddbIa54vG/U+K6
|
|
ZTqLJd0ve8zUO2clzz22VOyr0cqwfWdIbXS6XIxSriZ9JidHxlmPBWc0tHfWCrrhWhAAAA
|
|
wB47Ju/GHUpX30Hm9LImxZxO89srxHAVLltkANAgO4Ct6rtVMDIjR1fjoV6SEMPwaQQbmq
|
|
hi57TNisUZpd2BHgCiVbuepDWTufdVwGNIaFvD3vBXk/19LN60BDCSYRKNE5XINLTRJK+9
|
|
sb/PdDwIaKAUHJIt1nm0XzAWvhQgEb8ZU/JF4z7d+GBPiptPBrEzePXRGI4A3TkTLjBbAd
|
|
Jii1mmsGeV1bSxJ2rG+GgzxfGHTVbZFTX/PGfAWkjP4CXRCgAAAMEA807zz3n208xTIjt7
|
|
HXxR7FgIMxa2vt8nxXW00RKr57zOFZSB5EkkCzR5LJKCK7cI49DhAhH23LM7oWJufwGExD
|
|
WI1YH87oZeR5o/9qrPwCmH5XJ52HhhvvwiPEcDlphq1PntU8C6TW/ovWNFDZSHmG8cSbYo
|
|
g/CAPPdNMpdVgJtf00kaUsKLIeSlr7YeXrsZs79SJ14GEl8UnpivaN7/rNqKc8IHuklm6K
|
|
qrcacvXbdj2zfDwA7JkVOqMTl/GH2nAAAAwQDnBbdoZaMFmX3I6Oq0DrsBhmKLOXXNs6oi
|
|
/HmM8B8aDMros5DQ0mgoXBSEJ953Dq2fw+Otg6GjpXlLeilAtOihYn0qErbuQGkqtyVtw7
|
|
eTBQ/widn7ywVu+160llPfPYJUCwcmfOCbfSZQRNeZ3mIGvqsawXERhbOyNkBNZ5RqU9o4
|
|
XAfK7zJpHmjBOOK5iILUJClVBcQaVRPB8kcE7EDDh1scm58Z18THfXudFjWr2R78w5weMS
|
|
r6xRExm0fWpxUAAAAbcm9vdEBnb25kb3IyLmRzcy5teXdpcmUub3Jn
|
|
-----END OPENSSH PRIVATE KEY-----</privkey>
|
|
<user>opnsense</user>
|
|
<password>opnsense3128!</password>
|
|
</git>
|
|
</backup>
|
|
<serialspeed>115200</serialspeed>
|
|
<primaryconsole>video</primaryconsole>
|
|
<language>en_US</language>
|
|
<dnsallowoverride_exclude/>
|
|
<dnsserver/>
|
|
<dns1gw>none</dns1gw>
|
|
<dns2gw>none</dns2gw>
|
|
<dns3gw>none</dns3gw>
|
|
<dns4gw>none</dns4gw>
|
|
<dns5gw>none</dns5gw>
|
|
<dns6gw>none</dns6gw>
|
|
<dns7gw>none</dns7gw>
|
|
<dns8gw>none</dns8gw>
|
|
<authserver/>
|
|
<serialusb>1</serialusb>
|
|
<prefer_ipv4>1</prefer_ipv4>
|
|
<firmware version="1.0.1">
|
|
<mirror/>
|
|
<flavour/>
|
|
<plugins>os-acme-client,os-ddclient,os-git-backup,os-nginx,os-wol</plugins>
|
|
<type/>
|
|
<subscription/>
|
|
</firmware>
|
|
<backupcount>5</backupcount>
|
|
<remotebackup>
|
|
<GDriveEnabled>on</GDriveEnabled>
|
|
<GDriveEmail>111886561813089399264</GDriveEmail>
|
|
<GDriveP12key>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</GDriveP12key>
|
|
<GDriveFolderID>1rq_I9W6E96oWuB5tfzLYR2M6Zc_2bgpc</GDriveFolderID>
|
|
<GDrivePrefixHostname>on</GDrivePrefixHostname>
|
|
<GDriveBackupCount>10</GDriveBackupCount>
|
|
<GDrivePassword>tQ;ELd8"%YW=@VB</GDrivePassword>
|
|
</remotebackup>
|
|
</system>
|
|
<interfaces>
|
|
<wan>
|
|
<if>pppoe1</if>
|
|
<descr>InternodeNBN</descr>
|
|
<enable>1</enable>
|
|
<lock>1</lock>
|
|
<spoofmac/>
|
|
<blockpriv>1</blockpriv>
|
|
<blockbogons>1</blockbogons>
|
|
<ipaddr>pppoe</ipaddr>
|
|
</wan>
|
|
<lan>
|
|
<if>vtnet0</if>
|
|
<descr/>
|
|
<enable>1</enable>
|
|
<spoofmac/>
|
|
<ipaddr>10.0.1.1</ipaddr>
|
|
<subnet>24</subnet>
|
|
</lan>
|
|
<lo0>
|
|
<internal_dynamic>1</internal_dynamic>
|
|
<descr>Loopback</descr>
|
|
<enable>1</enable>
|
|
<if>lo0</if>
|
|
<ipaddr>127.0.0.1</ipaddr>
|
|
<ipaddrv6>::1</ipaddrv6>
|
|
<subnet>8</subnet>
|
|
<subnetv6>128</subnetv6>
|
|
<type>none</type>
|
|
<virtual>1</virtual>
|
|
</lo0>
|
|
<openvpn>
|
|
<internal_dynamic>1</internal_dynamic>
|
|
<enable>1</enable>
|
|
<if>openvpn</if>
|
|
<descr>OpenVPN</descr>
|
|
<type>group</type>
|
|
<virtual>1</virtual>
|
|
<networks/>
|
|
</openvpn>
|
|
</interfaces>
|
|
<dhcpd>
|
|
<lan>
|
|
<enable>1</enable>
|
|
<ddnsdomainalgorithm>hmac-md5</ddnsdomainalgorithm>
|
|
<numberoptions>
|
|
<item/>
|
|
</numberoptions>
|
|
<range>
|
|
<from>10.0.1.200</from>
|
|
<to>10.0.1.245</to>
|
|
</range>
|
|
<winsserver/>
|
|
<dnsserver>10.0.1.4</dnsserver>
|
|
<ntpserver/>
|
|
<staticmap>
|
|
<mac>56:8d:ae:f7:7f:f0</mac>
|
|
<ipaddr>10.0.1.4</ipaddr>
|
|
<hostname>bombadil</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>e0:3f:49:b2:12:35</mac>
|
|
<ipaddr>10.0.1.11</ipaddr>
|
|
<hostname>omv</hostname>
|
|
<descr>OpenMediaVault</descr>
|
|
<defaultleasetime>86400</defaultleasetime>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>00:26:6c:28:0a:a1</mac>
|
|
<ipaddr>10.0.1.12</ipaddr>
|
|
<hostname>proxmox</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>32:99:3e:df:d8:50</mac>
|
|
<ipaddr>10.0.1.13</ipaddr>
|
|
<hostname>docker</hostname>
|
|
<descr>debian ct for docker</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>ba:f3:5a:9e:b7:33</mac>
|
|
<ipaddr>10.0.1.15</ipaddr>
|
|
<hostname>nginx</hostname>
|
|
<descr>nginx reverse proxy server</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>3a:2f:5c:14:f2:0b</mac>
|
|
<ipaddr>10.0.1.21</ipaddr>
|
|
<hostname>nextcloud</hostname>
|
|
<descr>Nextcloud turnkey VM</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>3a:eb:61:8d:27:08</mac>
|
|
<ipaddr>10.0.1.22</ipaddr>
|
|
<hostname>seafile</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>86:fa:fd:13:d4:25</mac>
|
|
<ipaddr>10.0.1.23</ipaddr>
|
|
<hostname>heimdall</hostname>
|
|
<descr>heimdall application dashboard</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>de:f9:0c:c1:d5:5c</mac>
|
|
<ipaddr>10.0.1.24</ipaddr>
|
|
<hostname>jellyfin</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>52:81:b4:45:f0:0a</mac>
|
|
<ipaddr>10.0.1.25</ipaddr>
|
|
<hostname>elrond</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>4a:91:89:08:73:d8</mac>
|
|
<ipaddr>10.0.1.26</ipaddr>
|
|
<hostname>boromir</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>e2:8b:aa:80:6b:a6</mac>
|
|
<ipaddr>10.0.1.27</ipaddr>
|
|
<hostname>ansible</hostname>
|
|
<descr>debian ct on rohan</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>d2:40:37:56:ef:6b</mac>
|
|
<ipaddr>10.0.1.31</ipaddr>
|
|
<hostname>mc1</hostname>
|
|
<descr>minecraft on debian</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>d2:17:2f:bc:1b:16</mac>
|
|
<ipaddr>10.0.1.32</ipaddr>
|
|
<hostname>mc2</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>06:98:19:95:51:21</mac>
|
|
<ipaddr>10.0.1.33</ipaddr>
|
|
<hostname>minecraft3</hostname>
|
|
<descr>minecraft server harry potter</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>c2:ec:33:bb:bb:f8</mac>
|
|
<ipaddr>10.0.1.34</ipaddr>
|
|
<hostname>minecraft4</hostname>
|
|
<descr>minecraft server for HTTYD</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>8e:61:fc:24:89:85</mac>
|
|
<ipaddr>10.0.1.41</ipaddr>
|
|
<hostname>certbot-vm</hostname>
|
|
<descr>certbot vm for testing</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>de:24:76:34:28:8f</mac>
|
|
<ipaddr>10.0.1.43</ipaddr>
|
|
<hostname>tvheadend</hostname>
|
|
<descr>tvheadend server on (rohan)</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>ea:e6:3f:bc:dd:36</mac>
|
|
<ipaddr>10.0.1.51</ipaddr>
|
|
<hostname>mc1-test</hostname>
|
|
<descr>minecraft server 1</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>dc:a6:32:e0:85:2a</mac>
|
|
<ipaddr>10.0.1.61</ipaddr>
|
|
<hostname>kodi</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>7a:72:1a:bd:a1:98</mac>
|
|
<ipaddr>10.0.1.81</ipaddr>
|
|
<hostname>web1</hostname>
|
|
<descr>test web server #1</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>ca:c0:3e:24:99:03</mac>
|
|
<ipaddr>10.0.1.82</ipaddr>
|
|
<hostname>web2</hostname>
|
|
<descr>test web server #2</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:ae:c5:76:86:84</mac>
|
|
<ipaddr>10.0.1.99</ipaddr>
|
|
<hostname>omvslah</hostname>
|
|
<descr>Skyes OpenMediaVault</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>4a:02:45:30:ea:02</mac>
|
|
<ipaddr>10.0.1.100</ipaddr>
|
|
<hostname>debian</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>18:c0:4d:db:2a:7c</mac>
|
|
<ipaddr>10.0.1.101</ipaddr>
|
|
<hostname>SimRig</hostname>
|
|
<descr>Sim Racing PC</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>f4:8c:50:1a:36:9b</mac>
|
|
<ipaddr>10.0.1.102</ipaddr>
|
|
<hostname>dion-latitude</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>66:a3:f0:c7:5e:89</mac>
|
|
<ipaddr>10.0.1.103</ipaddr>
|
|
<hostname>debian2</hostname>
|
|
<descr>debian2 vm</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>7a:3b:72:16:fd:b3</mac>
|
|
<ipaddr>10.0.1.104</ipaddr>
|
|
<hostname>vm-desktop</hostname>
|
|
<descr>alpine linux with wm</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>8c:88:2b:00:10:8d</mac>
|
|
<ipaddr>10.0.1.105</ipaddr>
|
|
<hostname>games2</hostname>
|
|
<descr>Gaming PC for the boys. GTX 570Ti</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>08:d4:0c:64:98:ad</mac>
|
|
<ipaddr>10.0.1.106</ipaddr>
|
|
<hostname>Logan-Archie-Harry</hostname>
|
|
<descr>Laptop for the boys</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>26:50:b1:d7:14:7b</mac>
|
|
<ipaddr>10.0.1.111</ipaddr>
|
|
<hostname>pocof3</hostname>
|
|
<descr>poco F3 android</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>52:fe:2b:0e:1c:89</mac>
|
|
<ipaddr>10.0.1.112</ipaddr>
|
|
<hostname>pocof1</hostname>
|
|
<descr>Poco F1 android</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>ec:71:db:49:8e:24</mac>
|
|
<ipaddr>10.0.1.121</ipaddr>
|
|
<hostname>Camera1</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>ec:71:db:8c:07:4e</mac>
|
|
<ipaddr>10.0.1.122</ipaddr>
|
|
<hostname>Camera2</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>16:e9:1e:ab:33:e2</mac>
|
|
<ipaddr>10.0.1.131</ipaddr>
|
|
<hostname>Trading-PC</hostname>
|
|
<descr>Win10 Virtual PC for trading</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>b2:b7:70:3a:28:41</mac>
|
|
<ipaddr>10.0.1.132</ipaddr>
|
|
<hostname>debian-vm</hostname>
|
|
<descr>debian VM with desktop</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>c6:19:1e:a6:d6:fc</mac>
|
|
<ipaddr>10.0.1.151</ipaddr>
|
|
<hostname>hass</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>08:d4:2b:13:8d:d8</mac>
|
|
<ipaddr>10.0.1.152</ipaddr>
|
|
<hostname>nexus10</hostname>
|
|
<descr>Nexus 10 Android Tablet</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>dc:a6:32:e0:85:29</mac>
|
|
<ipaddr>10.0.1.161</ipaddr>
|
|
<hostname>Legolas</hostname>
|
|
<descr>Legolas ethernet</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>fc:aa:14:c1:5a:9b</mac>
|
|
<ipaddr>10.0.1.165</ipaddr>
|
|
<hostname>games2-lan</hostname>
|
|
<descr>Boys Gaming PC ethernet connection</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>40:55:39:cc:77:00</mac>
|
|
<ipaddr>10.0.1.250</ipaddr>
|
|
<hostname>anduin</hostname>
|
|
<descr>Cisco router</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
</lan>
|
|
<opt2>
|
|
<enable>1</enable>
|
|
<ddnsdomainalgorithm>hmac-md5</ddnsdomainalgorithm>
|
|
<numberoptions>
|
|
<item/>
|
|
</numberoptions>
|
|
<range>
|
|
<from>10.0.3.201</from>
|
|
<to>10.0.3.230</to>
|
|
</range>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</opt2>
|
|
</dhcpd>
|
|
<snmpd>
|
|
<syslocation/>
|
|
<syscontact/>
|
|
<rocommunity>public</rocommunity>
|
|
</snmpd>
|
|
<syslog>
|
|
<reverse/>
|
|
</syslog>
|
|
<nat>
|
|
<outbound>
|
|
<mode>automatic</mode>
|
|
</outbound>
|
|
<rule>
|
|
<protocol>tcp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>HASS.io</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_603a219d254010.34486638</associated-rule-id>
|
|
<target>10.0.1.151</target>
|
|
<local-port>8123</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>8123</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1615196292.8821</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1614422429.1527</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>debian vm</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_603a31025c4875.51279624</associated-rule-id>
|
|
<target>10.0.1.100</target>
|
|
<local-port>22</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>22</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1615196312.2989</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1614426370.3781</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>debian2 vm</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_61fe6823a62ff9.38653503</associated-rule-id>
|
|
<target>10.0.1.103</target>
|
|
<local-port>22</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>22</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.102</username>
|
|
<time>1653512457.5365</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1644062755.6808</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>nginx reverse proxy ssl</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_609ab30d1bcb08.88985266</associated-rule-id>
|
|
<target>10.0.1.15</target>
|
|
<local-port>443</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>443</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1641638154.6759</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.8.6</username>
|
|
<time>1620751117.1139</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>minecraft java mc1</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_6189c4e0d85e51.54054052</associated-rule-id>
|
|
<target>10.0.1.105</target>
|
|
<local-port>25565</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>25565</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1653663005.639</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1636418784.8863</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>minecraft java mc2</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_61eca513f3ab54.12999814</associated-rule-id>
|
|
<target>10.0.1.32</target>
|
|
<local-port>25566</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>25566</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1650480076.0696</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1642898708.0049</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>minecraft3 java</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_61f372df8b6171.53361896</associated-rule-id>
|
|
<target>10.0.1.33</target>
|
|
<local-port>25567</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>25567</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1643344607.571</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1643344607.571</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>minecraft4 java</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_61f373074cc973.44719320</associated-rule-id>
|
|
<target>10.0.1.34</target>
|
|
<local-port>25568</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>25568</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1643344647.3146</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1643344647.3146</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule>
|
|
<protocol>udp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>minecraft bedrock mc1</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>pass</associated-rule-id>
|
|
<target>10.0.1.105</target>
|
|
<local-port>19132</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>19132</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1653663045.8422</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1636679797.8341</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule>
|
|
<protocol>udp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>minecraft bedrock mc2</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_61eca544a8b730.21185118</associated-rule-id>
|
|
<target>10.0.1.32</target>
|
|
<local-port>19133</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>19133</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1650480106.5294</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1642898756.6911</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule>
|
|
<protocol>udp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>minecraft3 bedrock</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_61f3734f494c02.95558635</associated-rule-id>
|
|
<target>10.0.1.33</target>
|
|
<local-port>19134</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>19134</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1643344719.3003</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1643344719.3003</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule>
|
|
<protocol>udp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>minecraft4 bedrock</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_61f3736fb310c2.90636878</associated-rule-id>
|
|
<target>10.0.1.34</target>
|
|
<local-port>19135</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>19135</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1643344751.7335</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1643344751.7335</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>nginx reverse proxy server</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_61d69bc2d88db3.30171087</associated-rule-id>
|
|
<target>10.0.1.15</target>
|
|
<local-port>80</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>80</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1641454530.8871</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1641454530.8871</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>Jellyfin services</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_61f140996d6708.06843852</associated-rule-id>
|
|
<target>10.0.1.24</target>
|
|
<local-port>8096</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>8096</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1643200665.4482</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1643200665.4482</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>bitwarden</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_62261aed26de09.52732628</associated-rule-id>
|
|
<target>10.0.1.11</target>
|
|
<local-port>18080</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>18080</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1646664541.3989</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1646664429.1593</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule>
|
|
<protocol>udp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr/>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_62cc09e3b73e87.61248567</associated-rule-id>
|
|
<target>10.0.1.102</target>
|
|
<local-port>3478</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>3478</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.102</username>
|
|
<time>1657539043.7507</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.102</username>
|
|
<time>1657539043.7507</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule>
|
|
<protocol>udp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr/>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_62cc0a1f5e00c2.77730298</associated-rule-id>
|
|
<target>10.0.1.102</target>
|
|
<local-port>4379</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>4379-4380</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.102</username>
|
|
<time>1657539289.6432</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.102</username>
|
|
<time>1657539103.3851</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp/udp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>Stick Fight the Game</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_62cc0abca222d4.02229027</associated-rule-id>
|
|
<target>10.0.1.101</target>
|
|
<local-port>27015</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>27015</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.101</username>
|
|
<time>1659107376.6966</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.102</username>
|
|
<time>1657539260.6642</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp/udp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr/>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_62dfdf81c63009.25391203</associated-rule-id>
|
|
<target>10.0.1.11</target>
|
|
<local-port>6881</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>6881</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.102</username>
|
|
<time>1658839016.2625</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.102</username>
|
|
<time>1658838913.8119</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp/udp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr/>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_62e3ed166f0e56.88516001</associated-rule-id>
|
|
<target>10.0.1.101</target>
|
|
<local-port>24642</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>24642</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.101</username>
|
|
<time>1659104534.455</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.101</username>
|
|
<time>1659104534.455</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr/>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_65b268fb447592.11055352</associated-rule-id>
|
|
<target>10.0.1.11</target>
|
|
<local-port>2283</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>2283</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1706191099.2806</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1706191099.2806</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
</nat>
|
|
<filter>
|
|
<rule uuid="bd8f4c2b-3b9d-4f73-b62d-02eb1762187d">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.151</address>
|
|
<port>8123</port>
|
|
</destination>
|
|
<descr>HASS.io</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_603a219d254010.34486638</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1614422429.1526</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="74bc44f0-b6c0-4902-9fcb-a50013337a54">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.100</address>
|
|
<port>22</port>
|
|
</destination>
|
|
<descr>debian vm</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_603a31025c4875.51279624</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1614426370.378</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="4407677b-3978-42b5-80f6-ecb5a6cf9e6e">
|
|
<type>pass</type>
|
|
<interface>wan</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow VPN Traffic</descr>
|
|
<direction>in</direction>
|
|
<log>1</log>
|
|
<quick>1</quick>
|
|
<protocol>udp</protocol>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
<port>1194</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1616007856.1696</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1615823502.0367</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="45ff83b0-1439-4cf3-8f44-de9f72bdaf15">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.15</address>
|
|
<port>443</port>
|
|
</destination>
|
|
<descr>nginx reverse proxy ssl</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_609ab30d1bcb08.88985266</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.8.6</username>
|
|
<time>1620751117.1139</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="4147ea59-703e-4abf-80e7-f9568c7bf2ba">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.105</address>
|
|
<port>25565</port>
|
|
</destination>
|
|
<descr>minecraft java mc1</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_6189c4e0d85e51.54054052</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1636418784.8863</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="fb6e91ad-c299-41c5-a1e0-7f1ef8ac7141">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.15</address>
|
|
<port>80</port>
|
|
</destination>
|
|
<descr>nginx reverse proxy server</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_61d69bc2d88db3.30171087</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1641454530.887</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="b6e77a60-1ca6-4511-9a10-7c752300e173">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.32</address>
|
|
<port>25566</port>
|
|
</destination>
|
|
<descr>minecraft java mc2</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_61eca513f3ab54.12999814</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1642898707.9981</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="f30e261f-748b-4174-96a0-efbcbbd7e66d">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>udp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.32</address>
|
|
<port>19133</port>
|
|
</destination>
|
|
<descr>minecraft bedrock mc2</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_61eca544a8b730.21185118</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1642898756.6911</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="7f27ea86-0a18-4012-ae8b-7aa7593315f9">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.24</address>
|
|
<port>8096</port>
|
|
</destination>
|
|
<descr>Jellyfin services</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_61f140996d6708.06843852</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1643200665.4481</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="771327dd-7d0c-4813-b5f6-9d98e298cf26">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.33</address>
|
|
<port>25567</port>
|
|
</destination>
|
|
<descr>minecraft3 java</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_61f372df8b6171.53361896</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1643344607.5709</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="1c91ee5b-d9b9-497e-a844-68c6c14cca46">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.34</address>
|
|
<port>25568</port>
|
|
</destination>
|
|
<descr>minecraft4 java</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_61f373074cc973.44719320</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1643344647.3145</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="b8c17f55-88b1-4a67-8ec8-a58b48cef120">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>udp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.33</address>
|
|
<port>19134</port>
|
|
</destination>
|
|
<descr>minecraft3 bedrock</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_61f3734f494c02.95558635</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1643344719.3002</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="1b6857aa-c1e8-4e84-8296-0b33473251e7">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>udp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.34</address>
|
|
<port>19135</port>
|
|
</destination>
|
|
<descr>minecraft4 bedrock</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_61f3736fb310c2.90636878</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1643344751.7335</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="7c8f1276-fd6f-4ae3-ac36-5ec438bab333">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.103</address>
|
|
<port>22</port>
|
|
</destination>
|
|
<descr>debian2 vm</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_61fe6823a62ff9.38653503</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1644062755.6807</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="b7d0a23e-32ec-49e8-a105-f8e16c31f2cc">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.11</address>
|
|
<port>18080</port>
|
|
</destination>
|
|
<descr>bitwarden</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_62261aed26de09.52732628</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1646664429.1592</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="a1b5df33-b6f9-48c8-93af-9ea5efb905cc">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>udp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.102</address>
|
|
<port>3478</port>
|
|
</destination>
|
|
<descr/>
|
|
<category/>
|
|
<associated-rule-id>nat_62cc09e3b73e87.61248567</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.102</username>
|
|
<time>1657539043.7506</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="807959ad-8cb6-4f55-b0bd-cc8b74c090c3">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>udp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.102</address>
|
|
<port>4379-4380</port>
|
|
</destination>
|
|
<descr/>
|
|
<category/>
|
|
<associated-rule-id>nat_62cc0a1f5e00c2.77730298</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.102</username>
|
|
<time>1657539103.3851</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="5e2b65e5-99cc-4b0c-bd2d-eb06c24c2f15">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp/udp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.101</address>
|
|
<port>27015</port>
|
|
</destination>
|
|
<descr>Stick Fight the Game</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_62cc0abca222d4.02229027</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.102</username>
|
|
<time>1657539260.6641</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="4bf759e7-dd86-4376-97ec-a2cf113bbebc">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp/udp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.11</address>
|
|
<port>6881</port>
|
|
</destination>
|
|
<descr/>
|
|
<category/>
|
|
<associated-rule-id>nat_62dfdf81c63009.25391203</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.102</username>
|
|
<time>1658838913.8118</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="836718b3-e09a-4d22-a1a2-b8a1c00c9d39">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp/udp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.101</address>
|
|
<port>24642</port>
|
|
</destination>
|
|
<descr/>
|
|
<category/>
|
|
<associated-rule-id>nat_62e3ed166f0e56.88516001</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.101</username>
|
|
<time>1659104534.4549</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="4611df68-eec9-4bdc-830e-b5b43605b8bb">
|
|
<associated-rule-id>nat_65b268fb447592.11055352</associated-rule-id>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.11</address>
|
|
<port>2283</port>
|
|
</destination>
|
|
<descr/>
|
|
<category/>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1706191099.2804</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="e12ab0b1-b578-4e30-8f05-05e45672d21b">
|
|
<type>pass</type>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>Default allow LAN to any rule</descr>
|
|
<interface>lan</interface>
|
|
<source>
|
|
<network>lan</network>
|
|
</source>
|
|
<destination>
|
|
<any/>
|
|
</destination>
|
|
</rule>
|
|
<rule uuid="b8faa49e-9173-469f-822e-1ee8a0c77caa">
|
|
<type>pass</type>
|
|
<ipprotocol>inet6</ipprotocol>
|
|
<descr>Default allow LAN IPv6 to any rule</descr>
|
|
<interface>lan</interface>
|
|
<source>
|
|
<network>lan</network>
|
|
</source>
|
|
<destination>
|
|
<any/>
|
|
</destination>
|
|
</rule>
|
|
<rule uuid="b673b9d5-65d6-48d9-875f-e763b59aa2f2">
|
|
<type>pass</type>
|
|
<interface>lan</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow OpenVPN traffic</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<network>openvpn</network>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1706322827.5379</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1706322781.2623</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="8e4b2b83-b65f-49c1-9c86-93f62aafbf35">
|
|
<descr>OpenVPN wizard</descr>
|
|
<direction>in</direction>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>anyip</network>
|
|
<port>1194</port>
|
|
</destination>
|
|
<interface>any</interface>
|
|
<protocol>udp</protocol>
|
|
<type>pass</type>
|
|
<enabled>on</enabled>
|
|
<created>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1615819436.1986</time>
|
|
<description>/wizard.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="9d02a4e5-ffc1-4384-8343-959de8c63e5c">
|
|
<type>pass</type>
|
|
<interface>openvpn</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>OpenVPN wizard</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<address>10.0.8.0/24</address>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1616009403.2661</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1615819436.1987</time>
|
|
<description>/wizard.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
</filter>
|
|
<rrd>
|
|
<enable/>
|
|
</rrd>
|
|
<load_balancer>
|
|
<monitor_type>
|
|
<name>ICMP</name>
|
|
<type>icmp</type>
|
|
<descr>ICMP</descr>
|
|
<options/>
|
|
</monitor_type>
|
|
<monitor_type>
|
|
<name>TCP</name>
|
|
<type>tcp</type>
|
|
<descr>Generic TCP</descr>
|
|
<options/>
|
|
</monitor_type>
|
|
<monitor_type>
|
|
<name>HTTP</name>
|
|
<type>http</type>
|
|
<descr>Generic HTTP</descr>
|
|
<options>
|
|
<path>/</path>
|
|
<host/>
|
|
<code>200</code>
|
|
</options>
|
|
</monitor_type>
|
|
<monitor_type>
|
|
<name>HTTPS</name>
|
|
<type>https</type>
|
|
<descr>Generic HTTPS</descr>
|
|
<options>
|
|
<path>/</path>
|
|
<host/>
|
|
<code>200</code>
|
|
</options>
|
|
</monitor_type>
|
|
<monitor_type>
|
|
<name>SMTP</name>
|
|
<type>send</type>
|
|
<descr>Generic SMTP</descr>
|
|
<options>
|
|
<send/>
|
|
<expect>220 *</expect>
|
|
</options>
|
|
</monitor_type>
|
|
</load_balancer>
|
|
<ntpd>
|
|
<prefer>0.opnsense.pool.ntp.org</prefer>
|
|
</ntpd>
|
|
<widgets>
|
|
<sequence>system_information-container:00000000-col3:show,services_status-container:00000001-col4:show,gateways-container:00000002-col4:show,interface_list-container:00000003-col4:show</sequence>
|
|
<column_count>2</column_count>
|
|
</widgets>
|
|
<revision>
|
|
<username>root@10.0.1.102</username>
|
|
<description>/diag_backup.php made changes</description>
|
|
<time>1706534887.1141</time>
|
|
</revision>
|
|
<OPNsense>
|
|
<Firewall>
|
|
<Category version="1.0.0">
|
|
<categories/>
|
|
</Category>
|
|
<Alias version="1.0.1">
|
|
<geoip>
|
|
<url/>
|
|
</geoip>
|
|
<aliases/>
|
|
</Alias>
|
|
<Lvtemplate version="0.0.1">
|
|
<templates/>
|
|
</Lvtemplate>
|
|
</Firewall>
|
|
<captiveportal version="1.0.1">
|
|
<zones/>
|
|
<templates/>
|
|
</captiveportal>
|
|
<IDS version="1.0.9">
|
|
<rules/>
|
|
<policies/>
|
|
<userDefinedRules/>
|
|
<files/>
|
|
<fileTags/>
|
|
<general>
|
|
<enabled>0</enabled>
|
|
<ips>0</ips>
|
|
<promisc>0</promisc>
|
|
<interfaces>wan</interfaces>
|
|
<homenet>192.168.0.0/16,10.0.0.0/8,172.16.0.0/12</homenet>
|
|
<defaultPacketSize/>
|
|
<UpdateCron/>
|
|
<AlertLogrotate>W0D23</AlertLogrotate>
|
|
<AlertSaveLogs>4</AlertSaveLogs>
|
|
<MPMAlgo>ac</MPMAlgo>
|
|
<detect>
|
|
<Profile>medium</Profile>
|
|
<toclient_groups/>
|
|
<toserver_groups/>
|
|
</detect>
|
|
<syslog>0</syslog>
|
|
<syslog_eve>0</syslog_eve>
|
|
<LogPayload>0</LogPayload>
|
|
<verbosity/>
|
|
</general>
|
|
</IDS>
|
|
<IPsec version="1.0.1">
|
|
<general>
|
|
<enabled/>
|
|
</general>
|
|
<keyPairs/>
|
|
<preSharedKeys/>
|
|
</IPsec>
|
|
<Interfaces>
|
|
<loopbacks version="1.0.0"/>
|
|
<vxlans version="1.0.1"/>
|
|
</Interfaces>
|
|
<proxy version="1.0.6">
|
|
<general>
|
|
<enabled>0</enabled>
|
|
<error_pages>opnsense</error_pages>
|
|
<icpPort/>
|
|
<logging>
|
|
<enable>
|
|
<accessLog>1</accessLog>
|
|
<storeLog>1</storeLog>
|
|
</enable>
|
|
<ignoreLogACL/>
|
|
<target/>
|
|
</logging>
|
|
<alternateDNSservers/>
|
|
<dnsV4First>0</dnsV4First>
|
|
<forwardedForHandling>on</forwardedForHandling>
|
|
<uriWhitespaceHandling>strip</uriWhitespaceHandling>
|
|
<enablePinger>1</enablePinger>
|
|
<useViaHeader>1</useViaHeader>
|
|
<suppressVersion>0</suppressVersion>
|
|
<connecttimeout/>
|
|
<VisibleEmail>admin@localhost.local</VisibleEmail>
|
|
<VisibleHostname/>
|
|
<cache>
|
|
<local>
|
|
<enabled>0</enabled>
|
|
<directory>/var/squid/cache</directory>
|
|
<cache_mem>256</cache_mem>
|
|
<maximum_object_size/>
|
|
<maximum_object_size_in_memory/>
|
|
<memory_cache_mode>always</memory_cache_mode>
|
|
<size>100</size>
|
|
<l1>16</l1>
|
|
<l2>256</l2>
|
|
<cache_linux_packages>0</cache_linux_packages>
|
|
<cache_windows_updates>0</cache_windows_updates>
|
|
</local>
|
|
</cache>
|
|
<traffic>
|
|
<enabled>0</enabled>
|
|
<maxDownloadSize>2048</maxDownloadSize>
|
|
<maxUploadSize>1024</maxUploadSize>
|
|
<OverallBandwidthTrotteling>1024</OverallBandwidthTrotteling>
|
|
<perHostTrotteling>256</perHostTrotteling>
|
|
</traffic>
|
|
<parentproxy>
|
|
<enabled>0</enabled>
|
|
<host/>
|
|
<enableauth>0</enableauth>
|
|
<user>username</user>
|
|
<password>password</password>
|
|
<port/>
|
|
<localdomains/>
|
|
<localips/>
|
|
</parentproxy>
|
|
</general>
|
|
<forward>
|
|
<interfaces>lan</interfaces>
|
|
<port>3128</port>
|
|
<sslbumpport>3129</sslbumpport>
|
|
<sslbump>0</sslbump>
|
|
<sslurlonly>0</sslurlonly>
|
|
<sslcertificate/>
|
|
<sslnobumpsites/>
|
|
<ssl_crtd_storage_max_size>4</ssl_crtd_storage_max_size>
|
|
<sslcrtd_children>5</sslcrtd_children>
|
|
<snmp_enable>0</snmp_enable>
|
|
<snmp_port>3401</snmp_port>
|
|
<snmp_password>public</snmp_password>
|
|
<ftpInterfaces/>
|
|
<ftpPort>2121</ftpPort>
|
|
<ftpTransparentMode>0</ftpTransparentMode>
|
|
<addACLforInterfaceSubnets>1</addACLforInterfaceSubnets>
|
|
<transparentMode>0</transparentMode>
|
|
<acl>
|
|
<allowedSubnets/>
|
|
<unrestricted/>
|
|
<bannedHosts/>
|
|
<whiteList/>
|
|
<blackList/>
|
|
<browser/>
|
|
<mimeType/>
|
|
<googleapps/>
|
|
<youtube/>
|
|
<safePorts>80:http,21:ftp,443:https,70:gopher,210:wais,1025-65535:unregistered ports,280:http-mgmt,488:gss-http,591:filemaker,777:multiling http</safePorts>
|
|
<sslPorts>443:https</sslPorts>
|
|
<remoteACLs>
|
|
<blacklists/>
|
|
<UpdateCron/>
|
|
</remoteACLs>
|
|
</acl>
|
|
<icap>
|
|
<enable>0</enable>
|
|
<RequestURL>icap://[::1]:1344/avscan</RequestURL>
|
|
<ResponseURL>icap://[::1]:1344/avscan</ResponseURL>
|
|
<SendClientIP>1</SendClientIP>
|
|
<SendUsername>0</SendUsername>
|
|
<EncodeUsername>0</EncodeUsername>
|
|
<UsernameHeader>X-Username</UsernameHeader>
|
|
<EnablePreview>1</EnablePreview>
|
|
<PreviewSize>1024</PreviewSize>
|
|
<OptionsTTL>60</OptionsTTL>
|
|
<exclude/>
|
|
</icap>
|
|
<authentication>
|
|
<method/>
|
|
<authEnforceGroup/>
|
|
<realm>OPNsense proxy authentication</realm>
|
|
<credentialsttl>2</credentialsttl>
|
|
<children>5</children>
|
|
</authentication>
|
|
</forward>
|
|
<pac/>
|
|
<error_pages>
|
|
<template/>
|
|
</error_pages>
|
|
</proxy>
|
|
<Syslog version="1.0.1">
|
|
<general>
|
|
<enabled>1</enabled>
|
|
</general>
|
|
<destinations/>
|
|
</Syslog>
|
|
<TrafficShaper version="1.0.3">
|
|
<pipes/>
|
|
<queues/>
|
|
<rules/>
|
|
</TrafficShaper>
|
|
<unboundplus version="1.0.8">
|
|
<general>
|
|
<enabled>1</enabled>
|
|
<port>53</port>
|
|
<stats/>
|
|
<active_interface/>
|
|
<dnssec>0</dnssec>
|
|
<dns64>0</dns64>
|
|
<dns64prefix/>
|
|
<noarecords>0</noarecords>
|
|
<regdhcp>1</regdhcp>
|
|
<regdhcpdomain>dss.mywire.org</regdhcpdomain>
|
|
<regdhcpstatic>1</regdhcpstatic>
|
|
<noreglladdr6>0</noreglladdr6>
|
|
<noregrecords>0</noregrecords>
|
|
<txtsupport>0</txtsupport>
|
|
<cacheflush>0</cacheflush>
|
|
<local_zone_type>transparent</local_zone_type>
|
|
<outgoing_interface/>
|
|
<enable_wpad>0</enable_wpad>
|
|
</general>
|
|
<advanced>
|
|
<hideidentity>0</hideidentity>
|
|
<hideversion>0</hideversion>
|
|
<prefetch>0</prefetch>
|
|
<prefetchkey>0</prefetchkey>
|
|
<dnssecstripped>0</dnssecstripped>
|
|
<serveexpired>0</serveexpired>
|
|
<serveexpiredreplyttl/>
|
|
<serveexpiredttl/>
|
|
<serveexpiredttlreset>0</serveexpiredttlreset>
|
|
<serveexpiredclienttimeout/>
|
|
<qnameminstrict>0</qnameminstrict>
|
|
<extendedstatistics>0</extendedstatistics>
|
|
<logqueries>0</logqueries>
|
|
<logreplies>0</logreplies>
|
|
<logtagqueryreply>0</logtagqueryreply>
|
|
<logservfail/>
|
|
<loglocalactions/>
|
|
<logverbosity>1</logverbosity>
|
|
<valloglevel>0</valloglevel>
|
|
<privatedomain/>
|
|
<privateaddress>0.0.0.0/8,10.0.0.0/8,100.64.0.0/10,169.254.0.0/16,172.16.0.0/12,192.0.2.0/24,192.168.0.0/16,198.18.0.0/15,198.51.100.0/24,203.0.113.0/24,233.252.0.0/24,::1/128,2001:db8::/32,fc00::/8,fd00::/8,fe80::/10</privateaddress>
|
|
<insecuredomain/>
|
|
<msgcachesize/>
|
|
<rrsetcachesize/>
|
|
<outgoingnumtcp/>
|
|
<incomingnumtcp/>
|
|
<numqueriesperthread/>
|
|
<outgoingrange/>
|
|
<jostletimeout/>
|
|
<cachemaxttl/>
|
|
<cachemaxnegativettl/>
|
|
<cacheminttl/>
|
|
<infrahostttl/>
|
|
<infrakeepprobing/>
|
|
<infracachenumhosts/>
|
|
<unwantedreplythreshold/>
|
|
</advanced>
|
|
<acls>
|
|
<default_action>allow</default_action>
|
|
<acl uuid="06e5b90a-aad8-4158-8dc6-ace9a196b122">
|
|
<enabled>1</enabled>
|
|
<name>VPN Traffic</name>
|
|
<action>allow</action>
|
|
<networks>10.0.8.0/24</networks>
|
|
<description/>
|
|
</acl>
|
|
</acls>
|
|
<dnsbl>
|
|
<enabled>0</enabled>
|
|
<safesearch/>
|
|
<type/>
|
|
<lists/>
|
|
<whitelists/>
|
|
<blocklists/>
|
|
<wildcards/>
|
|
<address/>
|
|
<nxdomain/>
|
|
</dnsbl>
|
|
<forwarding>
|
|
<enabled>0</enabled>
|
|
</forwarding>
|
|
<dots/>
|
|
<hosts/>
|
|
<aliases/>
|
|
<domains/>
|
|
</unboundplus>
|
|
<monit version="1.0.12">
|
|
<general>
|
|
<enabled>0</enabled>
|
|
<interval>120</interval>
|
|
<startdelay>120</startdelay>
|
|
<mailserver>127.0.0.1</mailserver>
|
|
<port>25</port>
|
|
<username/>
|
|
<password/>
|
|
<ssl>0</ssl>
|
|
<sslversion>auto</sslversion>
|
|
<sslverify>1</sslverify>
|
|
<logfile>syslog facility log_daemon</logfile>
|
|
<statefile/>
|
|
<eventqueuePath/>
|
|
<eventqueueSlots/>
|
|
<httpdEnabled>0</httpdEnabled>
|
|
<httpdUsername>root</httpdUsername>
|
|
<httpdPassword>X1LCuz2XumSZYuyw2a03ThQZXdp6VmK</httpdPassword>
|
|
<httpdPort>2812</httpdPort>
|
|
<httpdAllow/>
|
|
<mmonitUrl/>
|
|
<mmonitTimeout>5</mmonitTimeout>
|
|
<mmonitRegisterCredentials>1</mmonitRegisterCredentials>
|
|
</general>
|
|
<alert uuid="1ef4ef8a-4a86-4131-bb72-583b611b0695">
|
|
<enabled>0</enabled>
|
|
<recipient>root@localhost.local</recipient>
|
|
<noton>0</noton>
|
|
<events/>
|
|
<format/>
|
|
<reminder>10</reminder>
|
|
<description/>
|
|
</alert>
|
|
<service uuid="bcacb248-5394-4bf9-964c-720b1039fdbc">
|
|
<enabled>1</enabled>
|
|
<name>$HOST</name>
|
|
<description/>
|
|
<type>system</type>
|
|
<pidfile/>
|
|
<match/>
|
|
<path/>
|
|
<timeout>300</timeout>
|
|
<starttimeout>30</starttimeout>
|
|
<address/>
|
|
<interface/>
|
|
<start/>
|
|
<stop/>
|
|
<tests>aef8bd79-3049-4a29-a09e-cc3902f89efe,ea1add8a-a8ff-4ee7-a4ad-b89ab2e940a1,d28ab101-663f-431e-a949-03511b5a3352,d6c3dd5a-e48f-4936-9d20-12a364043c73</tests>
|
|
<depends/>
|
|
<polltime/>
|
|
</service>
|
|
<service uuid="75f0ad56-29a3-46ec-98fa-fcfdc7144acd">
|
|
<enabled>1</enabled>
|
|
<name>RootFs</name>
|
|
<description/>
|
|
<type>filesystem</type>
|
|
<pidfile/>
|
|
<match/>
|
|
<path>/</path>
|
|
<timeout>300</timeout>
|
|
<starttimeout>30</starttimeout>
|
|
<address/>
|
|
<interface/>
|
|
<start/>
|
|
<stop/>
|
|
<tests>6a40b9a4-82cc-49f9-918e-dc8d4dd2fe5e</tests>
|
|
<depends/>
|
|
<polltime/>
|
|
</service>
|
|
<service uuid="0d0030fb-f855-4d8f-8bf2-c97fa933820a">
|
|
<enabled>0</enabled>
|
|
<name>carp_status_change</name>
|
|
<description/>
|
|
<type>custom</type>
|
|
<pidfile/>
|
|
<match/>
|
|
<path>/usr/local/opnsense/scripts/OPNsense/Monit/carp_status</path>
|
|
<timeout>300</timeout>
|
|
<starttimeout>30</starttimeout>
|
|
<address/>
|
|
<interface/>
|
|
<start/>
|
|
<stop/>
|
|
<tests>79c074fb-3628-43b0-b220-1c6d1e98b59c</tests>
|
|
<depends/>
|
|
<polltime/>
|
|
</service>
|
|
<service uuid="77acaa55-8f0f-49b1-ab75-f2e5ddd032e0">
|
|
<enabled>0</enabled>
|
|
<name>gateway_alert</name>
|
|
<description/>
|
|
<type>custom</type>
|
|
<pidfile/>
|
|
<match/>
|
|
<path>/usr/local/opnsense/scripts/OPNsense/Monit/gateway_alert</path>
|
|
<timeout>300</timeout>
|
|
<starttimeout>30</starttimeout>
|
|
<address/>
|
|
<interface/>
|
|
<start/>
|
|
<stop/>
|
|
<tests>bdfd739e-1a4d-43e1-aeaf-8ebce8a03c5c</tests>
|
|
<depends/>
|
|
<polltime/>
|
|
</service>
|
|
<test uuid="6d7a518c-b936-4fc5-9cea-afc061b286a0">
|
|
<name>Ping</name>
|
|
<type>NetworkPing</type>
|
|
<condition>failed ping</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
<test uuid="e47418c7-9435-485a-987a-1e23e1af82d0">
|
|
<name>NetworkLink</name>
|
|
<type>NetworkInterface</type>
|
|
<condition>failed link</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
<test uuid="fcc48a8f-a388-4461-982b-b92121bb12f0">
|
|
<name>NetworkSaturation</name>
|
|
<type>NetworkInterface</type>
|
|
<condition>saturation is greater than 75%</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
<test uuid="aef8bd79-3049-4a29-a09e-cc3902f89efe">
|
|
<name>MemoryUsage</name>
|
|
<type>SystemResource</type>
|
|
<condition>memory usage is greater than 75%</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
<test uuid="ea1add8a-a8ff-4ee7-a4ad-b89ab2e940a1">
|
|
<name>CPUUsage</name>
|
|
<type>SystemResource</type>
|
|
<condition>cpu usage is greater than 75%</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
<test uuid="d28ab101-663f-431e-a949-03511b5a3352">
|
|
<name>LoadAvg1</name>
|
|
<type>SystemResource</type>
|
|
<condition>loadavg (1min) is greater than 6</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
<test uuid="d6c3dd5a-e48f-4936-9d20-12a364043c73">
|
|
<name>LoadAvg5</name>
|
|
<type>SystemResource</type>
|
|
<condition>loadavg (5min) is greater than 4.5</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
<test uuid="022fd0a1-3ae0-4e3b-874b-0a74bc92d9aa">
|
|
<name>LoadAvg15</name>
|
|
<type>SystemResource</type>
|
|
<condition>loadavg (15min) is greater than 3</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
<test uuid="6a40b9a4-82cc-49f9-918e-dc8d4dd2fe5e">
|
|
<name>SpaceUsage</name>
|
|
<type>SpaceUsage</type>
|
|
<condition>space usage is greater than 75%</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
<test uuid="79c074fb-3628-43b0-b220-1c6d1e98b59c">
|
|
<name>ChangedStatus</name>
|
|
<type>ProgramStatus</type>
|
|
<condition>changed status</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
<test uuid="bdfd739e-1a4d-43e1-aeaf-8ebce8a03c5c">
|
|
<name>NonZeroStatus</name>
|
|
<type>ProgramStatus</type>
|
|
<condition>status != 0</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
</monit>
|
|
<OpenVPNExport version="0.0.1">
|
|
<servers>
|
|
<server uuid="be786708-4ea8-45d1-a2e6-94689322cc58">
|
|
<vpnid>1</vpnid>
|
|
<hostname>gondor2.dss.mywire.org</hostname>
|
|
<template>PlainOpenVPN</template>
|
|
<local_port>1194</local_port>
|
|
<random_local_port>1</random_local_port>
|
|
<validate_server_cn>1</validate_server_cn>
|
|
<cryptoapi>0</cryptoapi>
|
|
<auth_nocache>0</auth_nocache>
|
|
<plain_config/>
|
|
</server>
|
|
</servers>
|
|
</OpenVPNExport>
|
|
<Netflow version="1.0.1">
|
|
<capture>
|
|
<interfaces>wan,lan</interfaces>
|
|
<egress_only>wan</egress_only>
|
|
<version>v9</version>
|
|
<targets>127.0.0.1:2056</targets>
|
|
</capture>
|
|
<collect>
|
|
<enable>1</enable>
|
|
</collect>
|
|
<activeTimeout>1800</activeTimeout>
|
|
<inactiveTimeout>15</inactiveTimeout>
|
|
</Netflow>
|
|
<HAProxy version="3.1.0">
|
|
<general>
|
|
<enabled>0</enabled>
|
|
<gracefulStop>0</gracefulStop>
|
|
<seamlessReload>0</seamlessReload>
|
|
<storeOcsp>0</storeOcsp>
|
|
<showIntro>1</showIntro>
|
|
<peers>
|
|
<enabled>0</enabled>
|
|
<name1/>
|
|
<listen1/>
|
|
<port1>1024</port1>
|
|
<name2/>
|
|
<listen2/>
|
|
<port2>1024</port2>
|
|
</peers>
|
|
<tuning>
|
|
<root>0</root>
|
|
<maxConnections/>
|
|
<nbproc>1</nbproc>
|
|
<nbthread>1</nbthread>
|
|
<sslServerVerify>ignore</sslServerVerify>
|
|
<maxDHSize>2048</maxDHSize>
|
|
<bufferSize>16384</bufferSize>
|
|
<checkBufferSize>16384</checkBufferSize>
|
|
<spreadChecks>2</spreadChecks>
|
|
<bogusProxyEnabled>0</bogusProxyEnabled>
|
|
<luaMaxMem>0</luaMaxMem>
|
|
<customOptions/>
|
|
<ssl_defaultsEnabled>0</ssl_defaultsEnabled>
|
|
<ssl_bindOptions>prefer-client-ciphers</ssl_bindOptions>
|
|
<ssl_minVersion>TLSv1.2</ssl_minVersion>
|
|
<ssl_maxVersion/>
|
|
<ssl_cipherList>ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256</ssl_cipherList>
|
|
<ssl_cipherSuites>TLS_AES_128_GCM_SHA256:TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256</ssl_cipherSuites>
|
|
</tuning>
|
|
<defaults>
|
|
<maxConnections/>
|
|
<timeoutClient>30s</timeoutClient>
|
|
<timeoutConnect>30s</timeoutConnect>
|
|
<timeoutCheck/>
|
|
<timeoutServer>30s</timeoutServer>
|
|
<retries>3</retries>
|
|
<redispatch>x-1</redispatch>
|
|
<init_addr>last,libc</init_addr>
|
|
<customOptions/>
|
|
</defaults>
|
|
<logging>
|
|
<host>127.0.0.1</host>
|
|
<facility>local0</facility>
|
|
<level>info</level>
|
|
<length/>
|
|
</logging>
|
|
<stats>
|
|
<enabled>0</enabled>
|
|
<port>8822</port>
|
|
<remoteEnabled>0</remoteEnabled>
|
|
<remoteBind/>
|
|
<authEnabled>0</authEnabled>
|
|
<users/>
|
|
<allowedUsers/>
|
|
<allowedGroups/>
|
|
<customOptions/>
|
|
</stats>
|
|
<cache>
|
|
<enabled>0</enabled>
|
|
<totalMaxSize>4</totalMaxSize>
|
|
<maxAge>60</maxAge>
|
|
<maxObjectSize/>
|
|
</cache>
|
|
</general>
|
|
<frontends/>
|
|
<backends/>
|
|
<servers/>
|
|
<healthchecks/>
|
|
<acls/>
|
|
<actions/>
|
|
<luas/>
|
|
<errorfiles/>
|
|
<mapfiles/>
|
|
<groups/>
|
|
<users/>
|
|
<cpus/>
|
|
<resolvers/>
|
|
<mailers/>
|
|
<maintenance>
|
|
<cronjobs>
|
|
<syncCerts>0</syncCerts>
|
|
<syncCertsCron/>
|
|
<updateOcsp>0</updateOcsp>
|
|
<updateOcspCron/>
|
|
<reloadService>0</reloadService>
|
|
<reloadServiceCron/>
|
|
<restartService>0</restartService>
|
|
<restartServiceCron/>
|
|
</cronjobs>
|
|
</maintenance>
|
|
</HAProxy>
|
|
<cron version="1.0.4">
|
|
<jobs/>
|
|
</cron>
|
|
<AcmeClient version="3.5.0">
|
|
<settings>
|
|
<enabled>0</enabled>
|
|
<autoRenewal>0</autoRenewal>
|
|
<UpdateCron/>
|
|
<environment/>
|
|
<challengePort>43580</challengePort>
|
|
<TLSchallengePort>43581</TLSchallengePort>
|
|
<restartTimeout>600</restartTimeout>
|
|
<haproxyIntegration>0</haproxyIntegration>
|
|
<haproxyAclRef/>
|
|
<haproxyActionRef/>
|
|
<haproxyServerRef/>
|
|
<haproxyBackendRef/>
|
|
<logLevel>normal</logLevel>
|
|
<showIntro>1</showIntro>
|
|
</settings>
|
|
<accounts>
|
|
<account uuid="c98a5105-118e-4cd1-bb72-4cb55e6e31f2">
|
|
<id>60749160892162.61336632</id>
|
|
<enabled>1</enabled>
|
|
<name>Gondor2</name>
|
|
<description/>
|
|
<email>dionscarman@gmail.com</email>
|
|
<ca>letsencrypt_test</ca>
|
|
<custom_ca/>
|
|
<eab_kid/>
|
|
<eab_hmac/>
|
|
<key>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</key>
|
|
<statusCode>200</statusCode>
|
|
<statusLastUpdate>1618252788</statusLastUpdate>
|
|
</account>
|
|
</accounts>
|
|
<certificates>
|
|
<certificate uuid="1f60ae39-92f7-4f8c-bbf2-909ca559998e">
|
|
<id>607493d4e63660.15040073</id>
|
|
<enabled>1</enabled>
|
|
<name>gondor2.d1s.mywire.org</name>
|
|
<description/>
|
|
<altNames/>
|
|
<account>c98a5105-118e-4cd1-bb72-4cb55e6e31f2</account>
|
|
<validationMethod>f3b8ea57-92f8-4f3a-b83d-60821988f6ef</validationMethod>
|
|
<keyLength>key_4096</keyLength>
|
|
<ocsp>0</ocsp>
|
|
<restartActions/>
|
|
<autoRenewal>1</autoRenewal>
|
|
<renewInterval>60</renewInterval>
|
|
<aliasmode>none</aliasmode>
|
|
<domainalias/>
|
|
<challengealias/>
|
|
<certRefId/>
|
|
<lastUpdate/>
|
|
<statusCode>400</statusCode>
|
|
<statusLastUpdate>1643117421</statusLastUpdate>
|
|
</certificate>
|
|
</certificates>
|
|
<validations>
|
|
<validation uuid="318186d5-d0bb-4091-95e9-cd94fb43daca">
|
|
<id>6074921152a415.69020233</id>
|
|
<enabled>1</enabled>
|
|
<name>http_portfwd_on_wan</name>
|
|
<description/>
|
|
<method>dns01</method>
|
|
<http_service>opnsense</http_service>
|
|
<http_opn_autodiscovery>1</http_opn_autodiscovery>
|
|
<http_opn_interface>wan</http_opn_interface>
|
|
<http_opn_ipaddresses/>
|
|
<http_haproxyInject>1</http_haproxyInject>
|
|
<http_haproxyFrontends/>
|
|
<tlsalpn_service>acme</tlsalpn_service>
|
|
<tlsalpn_acme_autodiscovery>1</tlsalpn_acme_autodiscovery>
|
|
<tlsalpn_acme_interface>wan</tlsalpn_acme_interface>
|
|
<tlsalpn_acme_ipaddresses/>
|
|
<dns_service>dns_nsupdate</dns_service>
|
|
<dns_sleep>120</dns_sleep>
|
|
<dns_active24_token/>
|
|
<dns_ad_key/>
|
|
<dns_ali_key/>
|
|
<dns_ali_secret/>
|
|
<dns_autodns_user/>
|
|
<dns_autodns_password/>
|
|
<dns_autodns_context/>
|
|
<dns_aws_id/>
|
|
<dns_aws_secret/>
|
|
<dns_azuredns_subscriptionid/>
|
|
<dns_azuredns_tenantid/>
|
|
<dns_azuredns_appid/>
|
|
<dns_azuredns_clientsecret/>
|
|
<dns_bunny_api_key/>
|
|
<dns_cf_email/>
|
|
<dns_cf_key/>
|
|
<dns_cf_token/>
|
|
<dns_cf_account_id/>
|
|
<dns_cf_zone_id/>
|
|
<dns_cloudns_auth_id/>
|
|
<dns_cloudns_sub_auth_id/>
|
|
<dns_cloudns_auth_password/>
|
|
<dns_cx_key/>
|
|
<dns_cx_secret/>
|
|
<dns_cyon_user/>
|
|
<dns_cyon_password/>
|
|
<dns_da_key/>
|
|
<dns_da_insecure>1</dns_da_insecure>
|
|
<dns_ddnss_token/>
|
|
<dns_dgon_key/>
|
|
<dns_dnsexit_auth_user/>
|
|
<dns_dnsexit_auth_pass/>
|
|
<dns_dnsexit_api/>
|
|
<dns_dnsimple_token/>
|
|
<dns_dnsservices_user/>
|
|
<dns_dnsservices_password/>
|
|
<dns_doapi_token/>
|
|
<dns_do_pid/>
|
|
<dns_do_password/>
|
|
<dns_domeneshop_token/>
|
|
<dns_domeneshop_secret/>
|
|
<dns_dp_id/>
|
|
<dns_dp_key/>
|
|
<dns_dh_key/>
|
|
<dns_duckdns_token/>
|
|
<dns_dyn_customer/>
|
|
<dns_dyn_user/>
|
|
<dns_dyn_password/>
|
|
<dns_dynu_clientid/>
|
|
<dns_dynu_secret/>
|
|
<dns_freedns_user/>
|
|
<dns_freedns_password/>
|
|
<dns_gandi_livedns_key/>
|
|
<dns_gandi_livedns_token/>
|
|
<dns_gcloud_key/>
|
|
<dns_googledomains_access_token/>
|
|
<dns_googledomains_zone/>
|
|
<dns_gd_key/>
|
|
<dns_gd_secret/>
|
|
<dns_hostingde_server/>
|
|
<dns_hostingde_apiKey/>
|
|
<dns_he_user/>
|
|
<dns_he_password/>
|
|
<dns_infoblox_credentials/>
|
|
<dns_infoblox_server/>
|
|
<dns_inwx_user/>
|
|
<dns_inws_password/>
|
|
<dns_ionos_prefix/>
|
|
<dns_ionos_secret/>
|
|
<dns_ipv64_token/>
|
|
<dns_ispconfig_user/>
|
|
<dns_ispconfig_password/>
|
|
<dns_ispconfig_api/>
|
|
<dns_ispconfig_insecure>1</dns_ispconfig_insecure>
|
|
<dns_jd_id/>
|
|
<dns_jd_region/>
|
|
<dns_jd_secret/>
|
|
<dns_joker_username/>
|
|
<dns_joker_password/>
|
|
<dns_kinghost_username/>
|
|
<dns_kinghost_password/>
|
|
<dns_knot_server/>
|
|
<dns_knot_key/>
|
|
<dns_lexicon_provider>cloudflare</dns_lexicon_provider>
|
|
<dns_lexicon_user/>
|
|
<dns_lexicon_token/>
|
|
<dns_linode_key/>
|
|
<dns_linode_v4_key/>
|
|
<dns_loopia_api>https://api.loopia.se/RPCSERV</dns_loopia_api>
|
|
<dns_loopia_user/>
|
|
<dns_loopia_password/>
|
|
<dns_lua_email/>
|
|
<dns_lua_key/>
|
|
<dns_miab_user/>
|
|
<dns_miab_password/>
|
|
<dns_miab_server/>
|
|
<dns_me_key/>
|
|
<dns_me_secret/>
|
|
<dns_mythic_beasts_key/>
|
|
<dns_mythic_beasts_secret/>
|
|
<dns_namecheap_user/>
|
|
<dns_namecheap_api/>
|
|
<dns_namecheap_sourceip/>
|
|
<dns_namecom_user/>
|
|
<dns_namecom_token/>
|
|
<dns_namesilo_key/>
|
|
<dns_nederhost_key/>
|
|
<dns_netcup_cid/>
|
|
<dns_netcup_key/>
|
|
<dns_netcup_pw/>
|
|
<dns_njalla_token/>
|
|
<dns_nsone_key/>
|
|
<dns_nsupdate_server/>
|
|
<dns_nsupdate_zone/>
|
|
<dns_nsupdate_key/>
|
|
<dns_online_key/>
|
|
<dns_opnsense_host>localhost</dns_opnsense_host>
|
|
<dns_opnsense_port>443</dns_opnsense_port>
|
|
<dns_opnsense_key/>
|
|
<dns_opnsense_token/>
|
|
<dns_opnsense_insecure>0</dns_opnsense_insecure>
|
|
<dns_ovh_app_key/>
|
|
<dns_ovh_app_secret/>
|
|
<dns_ovh_consumer_key/>
|
|
<dns_ovh_endpoint/>
|
|
<dns_pleskxml_user/>
|
|
<dns_pleskxml_pass/>
|
|
<dns_pleskxml_uri/>
|
|
<dns_pdns_url/>
|
|
<dns_pdns_serverid/>
|
|
<dns_pdns_token/>
|
|
<dns_porkbun_key/>
|
|
<dns_porkbun_secret/>
|
|
<dns_sl_key/>
|
|
<dns_selfhost_user/>
|
|
<dns_selfhost_password/>
|
|
<dns_selfhost_map/>
|
|
<dns_servercow_username/>
|
|
<dns_servercow_password/>
|
|
<dns_simply_api_key/>
|
|
<dns_simply_account_name/>
|
|
<dns_transip_username/>
|
|
<dns_transip_key/>
|
|
<dns_udr_user/>
|
|
<dns_udr_password/>
|
|
<dns_uno_key/>
|
|
<dns_uno_user/>
|
|
<dns_vscale_key/>
|
|
<dns_vultr_key/>
|
|
<dns_yandex_token/>
|
|
<dns_zilore_key/>
|
|
<dns_zm_key/>
|
|
<dns_gdnsdk_user/>
|
|
<dns_gdnsdk_password/>
|
|
<dns_acmedns_user/>
|
|
<dns_acmedns_password/>
|
|
<dns_acmedns_subdomain/>
|
|
<dns_acmedns_updateurl/>
|
|
<dns_acmedns_baseurl/>
|
|
<dns_acmeproxy_endpoint/>
|
|
<dns_acmeproxy_username/>
|
|
<dns_acmeproxy_password/>
|
|
<dns_variomedia_key/>
|
|
<dns_schlundtech_user/>
|
|
<dns_schlundtech_password/>
|
|
<dns_easydns_apitoken/>
|
|
<dns_easydns_apikey/>
|
|
<dns_euserv_user/>
|
|
<dns_euserv_password/>
|
|
<dns_leaseweb_key/>
|
|
<dns_cn_user/>
|
|
<dns_cn_password/>
|
|
<dns_arvan_token/>
|
|
<dns_hetzner_token/>
|
|
<dns_hexonet_login/>
|
|
<dns_hexonet_password/>
|
|
<dns_1984hosting_user/>
|
|
<dns_1984hosting_password/>
|
|
<dns_kas_login/>
|
|
<dns_kas_authdata/>
|
|
<dns_kas_authtype>sha1</dns_kas_authtype>
|
|
<dns_desec_token/>
|
|
<dns_desec_name/>
|
|
<dns_infomaniak_token/>
|
|
<dns_zone_username/>
|
|
<dns_zone_key/>
|
|
<dns_dynv6_token/>
|
|
<dns_cpanel_user/>
|
|
<dns_cpanel_token/>
|
|
<dns_cpanel_hostname/>
|
|
<dns_regru_username/>
|
|
<dns_regru_password/>
|
|
<dns_world4you_username/>
|
|
<dns_world4you_password/>
|
|
</validation>
|
|
<validation uuid="f3b8ea57-92f8-4f3a-b83d-60821988f6ef">
|
|
<id>60749378bb3d08.12067917</id>
|
|
<enabled>1</enabled>
|
|
<name>nsupdate_internal</name>
|
|
<description/>
|
|
<method>dns01</method>
|
|
<http_service>opnsense</http_service>
|
|
<http_opn_autodiscovery>1</http_opn_autodiscovery>
|
|
<http_opn_interface>wan</http_opn_interface>
|
|
<http_opn_ipaddresses/>
|
|
<http_haproxyInject>1</http_haproxyInject>
|
|
<http_haproxyFrontends/>
|
|
<tlsalpn_service>acme</tlsalpn_service>
|
|
<tlsalpn_acme_autodiscovery>1</tlsalpn_acme_autodiscovery>
|
|
<tlsalpn_acme_interface>wan</tlsalpn_acme_interface>
|
|
<tlsalpn_acme_ipaddresses/>
|
|
<dns_service>dns_nsupdate</dns_service>
|
|
<dns_sleep>120</dns_sleep>
|
|
<dns_active24_token/>
|
|
<dns_ad_key/>
|
|
<dns_ali_key/>
|
|
<dns_ali_secret/>
|
|
<dns_autodns_user/>
|
|
<dns_autodns_password/>
|
|
<dns_autodns_context/>
|
|
<dns_aws_id/>
|
|
<dns_aws_secret/>
|
|
<dns_azuredns_subscriptionid/>
|
|
<dns_azuredns_tenantid/>
|
|
<dns_azuredns_appid/>
|
|
<dns_azuredns_clientsecret/>
|
|
<dns_bunny_api_key/>
|
|
<dns_cf_email/>
|
|
<dns_cf_key/>
|
|
<dns_cf_token/>
|
|
<dns_cf_account_id/>
|
|
<dns_cf_zone_id/>
|
|
<dns_cloudns_auth_id/>
|
|
<dns_cloudns_sub_auth_id/>
|
|
<dns_cloudns_auth_password/>
|
|
<dns_cx_key/>
|
|
<dns_cx_secret/>
|
|
<dns_cyon_user/>
|
|
<dns_cyon_password/>
|
|
<dns_da_key/>
|
|
<dns_da_insecure>1</dns_da_insecure>
|
|
<dns_ddnss_token/>
|
|
<dns_dgon_key/>
|
|
<dns_dnsexit_auth_user/>
|
|
<dns_dnsexit_auth_pass/>
|
|
<dns_dnsexit_api/>
|
|
<dns_dnsimple_token/>
|
|
<dns_dnsservices_user/>
|
|
<dns_dnsservices_password/>
|
|
<dns_doapi_token/>
|
|
<dns_do_pid/>
|
|
<dns_do_password/>
|
|
<dns_domeneshop_token/>
|
|
<dns_domeneshop_secret/>
|
|
<dns_dp_id/>
|
|
<dns_dp_key/>
|
|
<dns_dh_key/>
|
|
<dns_duckdns_token/>
|
|
<dns_dyn_customer/>
|
|
<dns_dyn_user/>
|
|
<dns_dyn_password/>
|
|
<dns_dynu_clientid/>
|
|
<dns_dynu_secret/>
|
|
<dns_freedns_user/>
|
|
<dns_freedns_password/>
|
|
<dns_gandi_livedns_key/>
|
|
<dns_gandi_livedns_token/>
|
|
<dns_gcloud_key/>
|
|
<dns_googledomains_access_token/>
|
|
<dns_googledomains_zone/>
|
|
<dns_gd_key/>
|
|
<dns_gd_secret/>
|
|
<dns_hostingde_server/>
|
|
<dns_hostingde_apiKey/>
|
|
<dns_he_user/>
|
|
<dns_he_password/>
|
|
<dns_infoblox_credentials/>
|
|
<dns_infoblox_server/>
|
|
<dns_inwx_user/>
|
|
<dns_inws_password/>
|
|
<dns_ionos_prefix/>
|
|
<dns_ionos_secret/>
|
|
<dns_ipv64_token/>
|
|
<dns_ispconfig_user/>
|
|
<dns_ispconfig_password/>
|
|
<dns_ispconfig_api/>
|
|
<dns_ispconfig_insecure>1</dns_ispconfig_insecure>
|
|
<dns_jd_id/>
|
|
<dns_jd_region/>
|
|
<dns_jd_secret/>
|
|
<dns_joker_username/>
|
|
<dns_joker_password/>
|
|
<dns_kinghost_username/>
|
|
<dns_kinghost_password/>
|
|
<dns_knot_server/>
|
|
<dns_knot_key/>
|
|
<dns_lexicon_provider>cloudflare</dns_lexicon_provider>
|
|
<dns_lexicon_user/>
|
|
<dns_lexicon_token/>
|
|
<dns_linode_key/>
|
|
<dns_linode_v4_key/>
|
|
<dns_loopia_api>https://api.loopia.se/RPCSERV</dns_loopia_api>
|
|
<dns_loopia_user/>
|
|
<dns_loopia_password/>
|
|
<dns_lua_email/>
|
|
<dns_lua_key/>
|
|
<dns_miab_user/>
|
|
<dns_miab_password/>
|
|
<dns_miab_server/>
|
|
<dns_me_key/>
|
|
<dns_me_secret/>
|
|
<dns_mythic_beasts_key/>
|
|
<dns_mythic_beasts_secret/>
|
|
<dns_namecheap_user/>
|
|
<dns_namecheap_api/>
|
|
<dns_namecheap_sourceip/>
|
|
<dns_namecom_user/>
|
|
<dns_namecom_token/>
|
|
<dns_namesilo_key/>
|
|
<dns_nederhost_key/>
|
|
<dns_netcup_cid/>
|
|
<dns_netcup_key/>
|
|
<dns_netcup_pw/>
|
|
<dns_njalla_token/>
|
|
<dns_nsone_key/>
|
|
<dns_nsupdate_server>gondor2.d1s.mywire.org</dns_nsupdate_server>
|
|
<dns_nsupdate_zone>d1s.mywire.org</dns_nsupdate_zone>
|
|
<dns_nsupdate_key>key "rndc-key" {
|
|
algorithm hmac-md5;
|
|
secret "540682128f302207ad6d1f34f9f0bda1";
|
|
};</dns_nsupdate_key>
|
|
<dns_online_key/>
|
|
<dns_opnsense_host>localhost</dns_opnsense_host>
|
|
<dns_opnsense_port>443</dns_opnsense_port>
|
|
<dns_opnsense_key/>
|
|
<dns_opnsense_token/>
|
|
<dns_opnsense_insecure>0</dns_opnsense_insecure>
|
|
<dns_ovh_app_key/>
|
|
<dns_ovh_app_secret/>
|
|
<dns_ovh_consumer_key/>
|
|
<dns_ovh_endpoint/>
|
|
<dns_pleskxml_user/>
|
|
<dns_pleskxml_pass/>
|
|
<dns_pleskxml_uri/>
|
|
<dns_pdns_url/>
|
|
<dns_pdns_serverid/>
|
|
<dns_pdns_token/>
|
|
<dns_porkbun_key/>
|
|
<dns_porkbun_secret/>
|
|
<dns_sl_key/>
|
|
<dns_selfhost_user/>
|
|
<dns_selfhost_password/>
|
|
<dns_selfhost_map/>
|
|
<dns_servercow_username/>
|
|
<dns_servercow_password/>
|
|
<dns_simply_api_key/>
|
|
<dns_simply_account_name/>
|
|
<dns_transip_username/>
|
|
<dns_transip_key/>
|
|
<dns_udr_user/>
|
|
<dns_udr_password/>
|
|
<dns_uno_key/>
|
|
<dns_uno_user/>
|
|
<dns_vscale_key/>
|
|
<dns_vultr_key/>
|
|
<dns_yandex_token/>
|
|
<dns_zilore_key/>
|
|
<dns_zm_key/>
|
|
<dns_gdnsdk_user/>
|
|
<dns_gdnsdk_password/>
|
|
<dns_acmedns_user/>
|
|
<dns_acmedns_password/>
|
|
<dns_acmedns_subdomain/>
|
|
<dns_acmedns_updateurl/>
|
|
<dns_acmedns_baseurl/>
|
|
<dns_acmeproxy_endpoint/>
|
|
<dns_acmeproxy_username/>
|
|
<dns_acmeproxy_password/>
|
|
<dns_variomedia_key/>
|
|
<dns_schlundtech_user/>
|
|
<dns_schlundtech_password/>
|
|
<dns_easydns_apitoken/>
|
|
<dns_easydns_apikey/>
|
|
<dns_euserv_user/>
|
|
<dns_euserv_password/>
|
|
<dns_leaseweb_key/>
|
|
<dns_cn_user/>
|
|
<dns_cn_password/>
|
|
<dns_arvan_token/>
|
|
<dns_hetzner_token/>
|
|
<dns_hexonet_login/>
|
|
<dns_hexonet_password/>
|
|
<dns_1984hosting_user/>
|
|
<dns_1984hosting_password/>
|
|
<dns_kas_login/>
|
|
<dns_kas_authdata/>
|
|
<dns_kas_authtype>sha1</dns_kas_authtype>
|
|
<dns_desec_token/>
|
|
<dns_desec_name/>
|
|
<dns_infomaniak_token/>
|
|
<dns_zone_username/>
|
|
<dns_zone_key/>
|
|
<dns_dynv6_token/>
|
|
<dns_cpanel_user/>
|
|
<dns_cpanel_token/>
|
|
<dns_cpanel_hostname/>
|
|
<dns_regru_username/>
|
|
<dns_regru_password/>
|
|
<dns_world4you_username/>
|
|
<dns_world4you_password/>
|
|
</validation>
|
|
</validations>
|
|
<actions/>
|
|
</AcmeClient>
|
|
<Nginx version="1.32.1">
|
|
<general>
|
|
<enabled>0</enabled>
|
|
<ban_ttl>0</ban_ttl>
|
|
</general>
|
|
<webgui>
|
|
<limitnetworks>0</limitnetworks>
|
|
</webgui>
|
|
<http>
|
|
<workerprocesses>1</workerprocesses>
|
|
<workerconnections>1024</workerconnections>
|
|
<sendfile>0</sendfile>
|
|
<keepalive_timeout>60</keepalive_timeout>
|
|
<reset_timedout>0</reset_timedout>
|
|
<default_type/>
|
|
<server_names_hash_bucket_size/>
|
|
<server_names_hash_max_size/>
|
|
<ban_response>403</ban_response>
|
|
<headers_more_enable/>
|
|
</http>
|
|
</Nginx>
|
|
<DynDNS version="1.5.1">
|
|
<general>
|
|
<enabled>1</enabled>
|
|
<verbose>0</verbose>
|
|
<allowipv6>0</allowipv6>
|
|
<daemon_delay>300</daemon_delay>
|
|
<backend>ddclient</backend>
|
|
</general>
|
|
<accounts>
|
|
<account uuid="1fd86a1c-7f06-402a-8968-6a1d0f638990">
|
|
<enabled>1</enabled>
|
|
<service>dynu</service>
|
|
<protocol/>
|
|
<server/>
|
|
<username>truman11</username>
|
|
<password>DjSlS8752!</password>
|
|
<resourceId/>
|
|
<hostnames>dss.mywire.org</hostnames>
|
|
<wildcard>0</wildcard>
|
|
<zone/>
|
|
<checkip>web_dyndns</checkip>
|
|
<checkip_timeout>10</checkip_timeout>
|
|
<force_ssl>1</force_ssl>
|
|
<ttl>300</ttl>
|
|
<interface>wan</interface>
|
|
<description>Dynu</description>
|
|
</account>
|
|
</accounts>
|
|
</DynDNS>
|
|
<Swanctl version="1.0.0">
|
|
<Connections/>
|
|
<locals/>
|
|
<remotes/>
|
|
<children/>
|
|
<Pools/>
|
|
<VTIs/>
|
|
<SPDs/>
|
|
</Swanctl>
|
|
<OpenVPN version="1.0.0">
|
|
<Overwrites/>
|
|
<Instances/>
|
|
<StaticKeys/>
|
|
</OpenVPN>
|
|
<Gateways version="0.0.1"/>
|
|
</OPNsense>
|
|
<ca>
|
|
<refid>65b4a0e1c3356</refid>
|
|
<descr>OPNsense-CA</descr>
|
|
<crt>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</crt>
|
|
<prv>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</prv>
|
|
<serial>2</serial>
|
|
</ca>
|
|
<gateways>
|
|
<gateway_item/>
|
|
</gateways>
|
|
<cert>
|
|
<refid>65b4a165605f7</refid>
|
|
<descr>OpenVPN Cert</descr>
|
|
<caref>65b4a0e1c3356</caref>
|
|
<crt>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</crt>
|
|
<prv>LS0tLS1CRUdJTiBQUklWQVRFIEtFWS0tLS0tCk1JSUV2QUlCQURBTkJna3Foa2lHOXcwQkFRRUZBQVNDQktZd2dnU2lBZ0VBQW9JQkFRQzFkaVdWd3FSc1dHZWwKTDcyVVQyVUd6MnU1R3hOcndJb2ZnTUNTSjF5cGcwOFdHWWYzUTJTdHQ5MzBoYWRJSkNpZDBZRjhHZjhvbDMrUApHcXBzcFU4SCthZWdNV2s1MjFVK3p4NURLNFQ1QjRmK2tkVWJQNXQ4cTQ5OFAzWTVIZ3BkNGxDNkdNS3ZLbEhFClUvTkllL2hhckJYWFJGMkxUS2tRM1Z6V3ZkWDYyQkJTZ0tIcVZzTVVndlgvWExGcHJMdGplS1dDT0ZicWdybFAKaWphdnRmbnpNRUpjK1RTbXZicEI4Rk1wdVB2SHFoT0p2czlLVXY3UFU4T2xUSUMzdFdDMkRZci9UUDExUGpzdApHK3BRZnNTRGVyaWV4VWdWMlZlenBKWGZHMmNOSFhXamZ6NU9yaXpBc0pseTZkZWhyTFRxeVZ6VFhwZ1NlVUh5CnZvbDFyaDFGQWdNQkFBRUNnZ0VBVW90d0JYUUpQNC9uZGVrRm9CV05xMDluZlVpbnlQaEkzSlBCQmJzS0Y4STMKazZJQmk2VUlnMDJFbGRyR2diYVJFMWxlUVluQjNFRXVNWGE3MTdoSy95Rzk4czBIUk41VkpNRXF6dnRZL2I5RApTYllrN3NROGdyVzRDNWtDdW5ERDNuazRwNjdqd0xMTGh6ZDVENXYxR2FuMk5YcFA0ekg0SmtmTUY1TTdaMk5rCnJjOWNpZUpBV0NiYk9FbDVwSmwwWG02OHNFdjk2T2ZES3ZuaCtSK251QVZsOXQ3OE5TaDgwajFiRDROd1NzWE8KSG56QmtXNFgrY0NCU1poNkNJNlRTV0tVUUx5WnFSdC9scW1TZlMwMjV6TXBPTmx4dEhLVHYvUGdNUFVDdyt2Qgp3ZXk3QTZVajFoMVA2TURIU2RCNzloQ21PODNQR1h0STZGM1BPVTZ6QVFLQmdRRHdHZUwra2lQTnhRUmdud2dRCkxkb09BWU9Pc2swc2RDUnpXQ3JkTG1FNHJZZTAvZU9tVzZmSXRiUlpjK1ZHdzNaWFZzOXRWdnhLN2d4WU5QdzkKMmdVUjVzK0ZVRVNrR2dISUIzOTdkMUJKSVZPaFRQKy8yTUsyRW1wQ2FobVdnaGdiM0ZLUUhPZ0ZmZ09tMmR0cgpXR3VLdy9zTS9OK2RtVVFHaXhmZFVPbDVNUUtCZ1FEQmVqaWlFQnljenRUZlh0aitJUGhaYjRoaUpaek1QSXVVCkZmZlFtYXVVdVlwNjdJWUZZT3pxRWhzNjVYczZFRmZ1VDZBMWFuOHdCR0VOVGpsOXc5R3BZeGpQQWJQTDdia1AKZTYyOEcreGxCTmdldlJhSjN3RlZZM2pvYTNLbThGeW1mNUlhajV6d2crVEg5QnZJdzc1Wm1YVE1BUTIweVVuUwpHRm5vS0g3Z1ZRS0JnQ2hNc0FUNmtuZmZNYlRsL0h4NnRiYlVHampCUktMSmU3VEFmN0ZRTDVGTHp4Tlo2ZlBxClBtYzUyR09MU0Zod1JsU3loVzVjdzB2d1dMSVZjcUVQRHZyS090cXRkbGYwNVllbGVvaEdwbnNmMU9HbUF1YzQKZ3JYOHNVa2tkZGNGVHZhZUxGMXovSjJ2WVAySVk0UEkrNFAzRVJSRS9XTitiaVNMQkI1cGprYUJBb0dBRXVybwpickEwbkFCOVAvbitMWnI3cllNQ1N0WnlwbVdsSUMybHRYZlJGeEd0UUtldjB3YlBJM1B4eGFoNmpBcmREaWdxCitnNFhzWkk4Q3hrQzloRVhod0J4aEl3ZUVHcUdGY1Y2RDFLTG9yVCtqTUxnV1VxOHpxU1RSZVo3cDJjSktCNkIKSXFlNEtLdzh5bkJMNXkxOGh6WkIvVkI5RHBnLzU1TUo5M0UrTnFFQ2dZQllUWlJHWkZmS2F4OEJJSEhBM21PeQpDcnpDTVp6cVhmVVVHSVQxWHNuTkJxYndCendSaDFhMmRzakJHZWZmVHltaXVVanpZRXBlUHY0SEszZWpEUGdnClJLbVFhQ0RVVTRvd3VJTW9XeHk0Tml4ZGhCeS9rMkdkQXZBUUJFblUxSWdHVktwZWphVG5KOXVMNHNKRGNqUXUKY1kxWm50UTVDdHNjZEJYR1Z6VjdNUT09Ci0tLS0tRU5EIFBSSVZBVEUgS0VZLS0tLS0K</prv>
|
|
</cert>
|
|
<cert>
|
|
<refid>65b4a1c0bffcf</refid>
|
|
<descr>Dion Cert</descr>
|
|
<caref>65b4a0e1c3356</caref>
|
|
<crt>LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSUVsakNDQTM2Z0F3SUJBZ0lCQWpBTkJna3Foa2lHOXcwQkFRc0ZBREI0TVFzd0NRWURWUVFHRXdKQlZURUwKTUFrR0ExVUVDQXdDVTBFeEVUQVBCZ05WQkFjTUNFRmtaV3hoYVdSbE1SRXdEd1lEVlFRS0RBaFBVRTV6Wlc1egpaVEVnTUI0R0NTcUdTSWIzRFFFSkFSWVJjM0JoYlVCdmNHNXpaVzV6WlM1dmNtY3hGREFTQmdOVkJBTU1DMDlRClRuTmxibk5sTFVOQk1CNFhEVEkwTURFeU56QTJNalV3TkZvWERUSTFNREl5TnpBMk1qVXdORm93ZGpFTE1Ba0cKQTFVRUJoTUNRVlV4Q3pBSkJnTlZCQWdNQWxOQk1SRXdEd1lEVlFRSERBaEJaR1ZzWVdsa1pURVJNQThHQTFVRQpDZ3dJVDFCT2MyVnVjMlV4SURBZUJna3Foa2lHOXcwQkNRRVdFWE53WVcxQWIzQnVjMlZ1YzJVdWIzSm5NUkl3CkVBWURWUVFEREFsa2FXOXVMV05sY25Rd2dnRWlNQTBHQ1NxR1NJYjNEUUVCQVFVQUE0SUJEd0F3Z2dFS0FvSUIKQVFDamlvT1VCUFdqdFQ4bmJyYlM5bGU0VDZJMENvRjM2MVN5NWVwVTd3QyszVTZ6OUh6QWlrVzJ4K2RuUVluagp4NUhDQ0lpczUvQ2tKWFNtVmJCUEp4MVd3REFqNTIva0EvbEI4UDRpeUhzNTk3ajJSSThqNUsrczVaczRkWkYzCmVSM1I4YlpvNFJ5M2pkSWlhRE5hdUpVWUxlRHhjMTY4aW1RK0wvOXIybGZuWXVZZ0FhNEM3cnk1QUNHL1FpREMKRVFMRWpJeGJZb0dNWXM4T2JSQlBJUXV3a2JaVUxjUW5laHB0K1VjL3ZqZURYeWk2L3dFV0liRkFvb0JGWDN2ZwpzNlZGUTZzOEFUM01jTGc5OVZyaGFBdVpuT3RwZGxNRFgwdCtXV0p0OXJ6NGNZMzFmSC9yMkZudTJIZ2p1ZlZ1CnZ3NlJBbENnUklHMnd5bEpiT3diQzFIMUFnTUJBQUdqZ2dFck1JSUJKekFKQmdOVkhSTUVBakFBTUFzR0ExVWQKRHdRRUF3SUY0REEwQmdsZ2hrZ0JodmhDQVEwRUp4WWxUMUJPYzJWdWMyVWdSMlZ1WlhKaGRHVmtJRU5zYVdWdQpkQ0JEWlhKMGFXWnBZMkYwWlRBZEJnTlZIUTRFRmdRVWRBTHhkRDN6UjBTTndaQVA5YjRtdUl5RjF3d3dnYUlHCkExVWRJd1NCbWpDQmw0QVVka0piK1JWSHRCZFZmUDNPcnBXTlNhamFuOENoZktSNk1IZ3hDekFKQmdOVkJBWVQKQWtGVk1Rc3dDUVlEVlFRSURBSlRRVEVSTUE4R0ExVUVCd3dJUVdSbGJHRnBaR1V4RVRBUEJnTlZCQW9NQ0U5UQpUbk5sYm5ObE1TQXdIZ1lKS29aSWh2Y05BUWtCRmhGemNHRnRRRzl3Ym5ObGJuTmxMbTl5WnpFVU1CSUdBMVVFCkF3d0xUMUJPYzJWdWMyVXRRMEdDQVFBd0V3WURWUjBsQkF3d0NnWUlLd1lCQlFVSEF3SXdEUVlKS29aSWh2Y04KQVFFTEJRQURnZ0VCQUtZdk1yZ2xSOHltQnRZenlQUk5BZGtRblJCOVhFMXVDcld0NGpKRjJsYkh4L3REWkg0bApyV0hSZld0RnN6ZmFiQmdEOU9ROHBUZWdaMHJ6MjArSDZNclV1dUZUaE11ZzRKNmgydHpuTzdENnR6SDBCbVh6Ckl2VVNJeGNyZTExRUdlYWs3bjdld3k3NlhhQVowam9EZ0lpcG1PMVJtdVJtSy9mT2d5TjEwYUc5UFFYVElGMDQKdUdTQUlwUHdRZ2JIVG9HdCtpTlhhSnZjSUE1MnRQRWZCWWRieTgyd1VvVVpBYVFzUFdzSXZmYjR3Z0pnL1FhbQpBYldYUjRUaUFBU3psN21OakkrVTlXK0pQTjg5KzREY0kydklmTHVIeTBrSStveGhlNEpBYkd6RDN3MkFlMnZsCnVwZ0ViekJQWkw1MDBhQkN4eTNxZjJlQU0zUUllbHg3TS93PQotLS0tLUVORCBDRVJUSUZJQ0FURS0tLS0tCg==</crt>
|
|
<prv>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</prv>
|
|
</cert>
|
|
<ppps>
|
|
<ppp>
|
|
<ptpid>1</ptpid>
|
|
<type>pppoe</type>
|
|
<if>pppoe1</if>
|
|
<ports>vtnet1</ports>
|
|
<username>dionscarman@internode.on.net</username>
|
|
<password>eXZ3aDRta2h6</password>
|
|
</ppp>
|
|
</ppps>
|
|
<vlans version="1.0.0">
|
|
<vlan uuid="918f9bdf-eca5-4039-a6c4-4068d2574592">
|
|
<if>vtnet0</if>
|
|
<tag>40</tag>
|
|
<pcp>0</pcp>
|
|
<descr>Guest</descr>
|
|
<vlanif>vtnet0_vlan4</vlanif>
|
|
</vlan>
|
|
<vlan uuid="ca2f6f3a-a4ae-4406-bd30-b19947fd049a">
|
|
<if>vtnet0</if>
|
|
<tag>20</tag>
|
|
<pcp>0</pcp>
|
|
<descr>General</descr>
|
|
<vlanif>vtnet0_vlan2</vlanif>
|
|
</vlan>
|
|
<vlan uuid="6dd30682-e17c-454f-9c82-8eb689fcd632">
|
|
<if>vtnet0</if>
|
|
<tag>30</tag>
|
|
<pcp>0</pcp>
|
|
<descr>IoT Network</descr>
|
|
<vlanif>vtnet0_vlan3</vlanif>
|
|
</vlan>
|
|
</vlans>
|
|
<dyndnses>
|
|
<dyndns>
|
|
<type>dnsomatic</type>
|
|
<username>truman11</username>
|
|
<password>DjSlS8752!</password>
|
|
<host>d1s.mywire.org</host>
|
|
<mx/>
|
|
<wildcard>1</wildcard>
|
|
<enable>1</enable>
|
|
<interface>wan</interface>
|
|
<zoneid/>
|
|
<resourceid/>
|
|
<ttl/>
|
|
<updateurl/>
|
|
<resultmatch/>
|
|
<requestif>wan</requestif>
|
|
<descr/>
|
|
<force>1</force>
|
|
<id>0</id>
|
|
</dyndns>
|
|
</dyndnses>
|
|
<openvpn>
|
|
<openvpn-server>
|
|
<mode>server_tls_user</mode>
|
|
<protocol>UDP</protocol>
|
|
<dev_mode>tun</dev_mode>
|
|
<local_port>1194</local_port>
|
|
<description>VPN Server</description>
|
|
<digest>SHA256</digest>
|
|
<tunnel_network>10.0.8.0/24</tunnel_network>
|
|
<gwredir>yes</gwredir>
|
|
<topology_subnet>yes</topology_subnet>
|
|
<netbios_ntype>0</netbios_ntype>
|
|
<verbosity_level>3</verbosity_level>
|
|
<tlsmode>crypt</tlsmode>
|
|
<vpnid>1</vpnid>
|
|
<authmode>Local Database</authmode>
|
|
<interface>wan</interface>
|
|
<custom_options/>
|
|
<tls>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</tls>
|
|
<caref>65b4a0e1c3356</caref>
|
|
<crlref/>
|
|
<certref>65b4a165605f7</certref>
|
|
<cert_depth>1</cert_depth>
|
|
</openvpn-server>
|
|
<openvpn-client/>
|
|
</openvpn>
|
|
<crl/>
|
|
<wol version="1.0.0">
|
|
<wolentry uuid="aa839866-9bb4-48c5-a846-c4da5cca3625">
|
|
<interface>lan</interface>
|
|
<mac>00:26:6c:28:0a:a1</mac>
|
|
<descr>Proxmox</descr>
|
|
</wolentry>
|
|
<wolentry uuid="d72a272f-5ff9-43fa-8d0c-29570ddf6ac3">
|
|
<interface>lan</interface>
|
|
<mac>00:1f:c6:9d:f7:a8</mac>
|
|
<descr>Rohan</descr>
|
|
</wolentry>
|
|
<wolentry uuid="9b5d2a3b-4b06-499a-8f17-2005208e12c4">
|
|
<interface>lan</interface>
|
|
<mac>18:c0:4d:db:2a:7c</mac>
|
|
<descr>SimRig</descr>
|
|
</wolentry>
|
|
</wol>
|
|
<staticroutes version="1.0.0">
|
|
<route/>
|
|
</staticroutes>
|
|
<virtualip version="1.0.0">
|
|
<vip/>
|
|
</virtualip>
|
|
<bridges>
|
|
<bridged/>
|
|
</bridges>
|
|
<gifs>
|
|
<gif/>
|
|
</gifs>
|
|
<gres>
|
|
<gre/>
|
|
</gres>
|
|
<dhcpdv6/>
|
|
<laggs version="1.0.0"/>
|
|
<wireless>
|
|
<clone/>
|
|
</wireless>
|
|
<ifgroups version="1.0.0"/>
|
|
</opnsense>
|