7359 lines
245 KiB
XML
7359 lines
245 KiB
XML
<?xml version="1.0"?>
|
|
<opnsense>
|
|
<theme>opnsense</theme>
|
|
<sysctl version="1.0.1">
|
|
<item uuid="c795d7a7-27b8-4d55-a947-e072d337a51b">
|
|
<tunable>vfs.read_max</tunable>
|
|
<value/>
|
|
<descr>Increase UFS read-ahead speeds to match the state of hard drives and NCQ.</descr>
|
|
</item>
|
|
<item uuid="93404a66-daa6-495a-a90e-b8e602577134">
|
|
<tunable>net.inet.ip.portrange.first</tunable>
|
|
<value/>
|
|
<descr>Set the ephemeral port range to be lower.</descr>
|
|
</item>
|
|
<item uuid="752da915-86a1-48e7-8b4a-22e9e20b6521">
|
|
<tunable>net.inet.tcp.blackhole</tunable>
|
|
<value/>
|
|
<descr>Drop packets to closed TCP ports without returning a RST</descr>
|
|
</item>
|
|
<item uuid="cadc561c-18ff-4ad5-b99f-2685a5bd6f80">
|
|
<tunable>net.inet.udp.blackhole</tunable>
|
|
<value/>
|
|
<descr>Do not send ICMP port unreachable messages for closed UDP ports</descr>
|
|
</item>
|
|
<item uuid="66d7d4e3-1dd7-4a71-bde6-00128eeabdb0">
|
|
<tunable>net.inet.ip.random_id</tunable>
|
|
<value/>
|
|
<descr>Randomize the ID field in IP packets</descr>
|
|
</item>
|
|
<item uuid="a210afe5-9d70-4d5d-9c57-7b0e2f04270e">
|
|
<tunable>net.inet.ip.sourceroute</tunable>
|
|
<value/>
|
|
<descr>
|
|
Source routing is another way for an attacker to try to reach non-routable addresses behind your box.
|
|
It can also be used to probe for information about your internal networks. These functions come enabled
|
|
as part of the standard FreeBSD core system.
|
|
</descr>
|
|
</item>
|
|
<item uuid="03bb1ce5-ecef-4f7a-951c-78f2feeefad0">
|
|
<tunable>net.inet.ip.accept_sourceroute</tunable>
|
|
<value/>
|
|
<descr>
|
|
Source routing is another way for an attacker to try to reach non-routable addresses behind your box.
|
|
It can also be used to probe for information about your internal networks. These functions come enabled
|
|
as part of the standard FreeBSD core system.
|
|
</descr>
|
|
</item>
|
|
<item uuid="ab5a3b06-4eb7-44bc-b9f8-a74c668833b7">
|
|
<tunable>net.inet.icmp.log_redirect</tunable>
|
|
<value/>
|
|
<descr>
|
|
This option turns off the logging of redirect packets because there is no limit and this could fill
|
|
up your logs consuming your whole hard drive.
|
|
</descr>
|
|
</item>
|
|
<item uuid="bd45727f-82ed-4a25-b7a4-28384a72736e">
|
|
<tunable>net.inet.tcp.drop_synfin</tunable>
|
|
<value/>
|
|
<descr>Drop SYN-FIN packets (breaks RFC1379, but nobody uses it anyway)</descr>
|
|
</item>
|
|
<item uuid="edd53567-0ca9-4070-9d8b-dabe7fbd40e8">
|
|
<tunable>net.inet6.ip6.redirect</tunable>
|
|
<value/>
|
|
<descr>Enable sending IPv6 redirects</descr>
|
|
</item>
|
|
<item uuid="5e99dedf-efe9-41ca-a89a-51e0204d9999">
|
|
<tunable>net.inet6.ip6.use_tempaddr</tunable>
|
|
<value/>
|
|
<descr>Enable privacy settings for IPv6 (RFC 4941)</descr>
|
|
</item>
|
|
<item uuid="496ca683-4684-4a0e-b87b-6ad1277f826b">
|
|
<tunable>net.inet6.ip6.prefer_tempaddr</tunable>
|
|
<value/>
|
|
<descr>Prefer privacy addresses and use them over the normal addresses</descr>
|
|
</item>
|
|
<item uuid="9d3979d7-9c52-4f70-a766-e3d836847324">
|
|
<tunable>net.inet.tcp.syncookies</tunable>
|
|
<value/>
|
|
<descr>Generate SYN cookies for outbound SYN-ACK packets</descr>
|
|
</item>
|
|
<item uuid="54bb7829-07e6-45ed-87db-49a439471d9a">
|
|
<tunable>net.inet.tcp.recvspace</tunable>
|
|
<value/>
|
|
<descr>Maximum incoming/outgoing TCP datagram size (receive)</descr>
|
|
</item>
|
|
<item uuid="4e149fc4-1ea1-4756-8cbf-ea6b54edd92f">
|
|
<tunable>net.inet.tcp.sendspace</tunable>
|
|
<value/>
|
|
<descr>Maximum incoming/outgoing TCP datagram size (send)</descr>
|
|
</item>
|
|
<item uuid="adae6421-3815-4c2f-9e56-ec48d4a5fb4b">
|
|
<tunable>net.inet.tcp.delayed_ack</tunable>
|
|
<value/>
|
|
<descr>Do not delay ACK to try and piggyback it onto a data packet</descr>
|
|
</item>
|
|
<item uuid="e89637dd-9690-46ac-bdd8-636a37b72f7a">
|
|
<tunable>net.inet.udp.maxdgram</tunable>
|
|
<value/>
|
|
<descr>Maximum outgoing UDP datagram size</descr>
|
|
</item>
|
|
<item uuid="d9dfc03a-8791-4e40-b782-c3125c9d02d5">
|
|
<tunable>net.link.bridge.pfil_onlyip</tunable>
|
|
<value/>
|
|
<descr>Handling of non-IP packets which are not passed to pfil (see if_bridge(4))</descr>
|
|
</item>
|
|
<item uuid="8fc5319f-a9e5-459c-9479-67d979b912f1">
|
|
<tunable>net.link.bridge.pfil_local_phys</tunable>
|
|
<value/>
|
|
<descr>Set to 1 to additionally filter on the physical interface for locally destined packets</descr>
|
|
</item>
|
|
<item uuid="feb81ef2-c372-4e93-8bfe-9e866b598f76">
|
|
<tunable>net.link.bridge.pfil_member</tunable>
|
|
<value/>
|
|
<descr>Set to 0 to disable filtering on the incoming and outgoing member interfaces.</descr>
|
|
</item>
|
|
<item uuid="d2a342d5-9816-4e25-b0eb-161ddbdf5cd8">
|
|
<tunable>net.link.bridge.pfil_bridge</tunable>
|
|
<value/>
|
|
<descr>Set to 1 to enable filtering on the bridge interface</descr>
|
|
</item>
|
|
<item uuid="df3fa872-0fd7-4363-9c67-e582a3e12ca3">
|
|
<tunable>net.link.tap.user_open</tunable>
|
|
<value/>
|
|
<descr>Allow unprivileged access to tap(4) device nodes</descr>
|
|
</item>
|
|
<item uuid="688c8847-2589-4282-bc27-12a7f8d5688a">
|
|
<tunable>kern.randompid</tunable>
|
|
<value/>
|
|
<descr>Randomize PID's (see src/sys/kern/kern_fork.c: sysctl_kern_randompid())</descr>
|
|
</item>
|
|
<item uuid="28f3ab06-277b-43d4-9e5e-0eb3ed6f4afa">
|
|
<tunable>net.inet.ip.intr_queue_maxlen</tunable>
|
|
<value/>
|
|
<descr>Maximum size of the IP input queue</descr>
|
|
</item>
|
|
<item uuid="2c710b63-0ce1-4058-9505-9df541e9f063">
|
|
<tunable>hw.syscons.kbd_reboot</tunable>
|
|
<value/>
|
|
<descr>Disable CTRL+ALT+Delete reboot from keyboard.</descr>
|
|
</item>
|
|
<item uuid="5c951659-8762-4a31-b886-5d55709cd7e7">
|
|
<tunable>hw.uart.console</tunable>
|
|
<value/>
|
|
<descr>Hint at default settings for serial console in case the autodetect is not working</descr>
|
|
</item>
|
|
<item uuid="b8688914-daa2-4dbd-9d01-043ca63db0a5">
|
|
<tunable>net.inet.tcp.log_debug</tunable>
|
|
<value/>
|
|
<descr>Enable TCP extended debugging</descr>
|
|
</item>
|
|
<item uuid="a5691f11-cdc2-454a-a8a4-51c6f8f853f3">
|
|
<tunable>net.inet.icmp.icmplim</tunable>
|
|
<value/>
|
|
<descr>Set ICMP Limits</descr>
|
|
</item>
|
|
<item uuid="0e4135b4-461a-4d4f-936e-001fa58d4667">
|
|
<tunable>net.inet.tcp.tso</tunable>
|
|
<value/>
|
|
<descr>TCP Offload Engine</descr>
|
|
</item>
|
|
<item uuid="8ee6beb3-0ab9-4fa6-b667-2d3c08a83dd2">
|
|
<tunable>net.inet.udp.checksum</tunable>
|
|
<value/>
|
|
<descr>UDP Checksums</descr>
|
|
</item>
|
|
<item uuid="a1e10575-d471-43fe-930e-20c77d78897b">
|
|
<tunable>kern.ipc.maxsockbuf</tunable>
|
|
<value/>
|
|
<descr>Maximum socket buffer size</descr>
|
|
</item>
|
|
<item uuid="eabf308f-9894-4bfd-90bb-1a506c9a7108">
|
|
<tunable>vm.pmap.pti</tunable>
|
|
<value/>
|
|
<descr>Page Table Isolation (Meltdown mitigation, requires reboot.)</descr>
|
|
</item>
|
|
<item uuid="995fe235-6bd6-411a-b25c-6c09666f8031">
|
|
<tunable>hw.ibrs_disable</tunable>
|
|
<value/>
|
|
<descr>Disable Indirect Branch Restricted Speculation (Spectre V2 mitigation)</descr>
|
|
</item>
|
|
<item uuid="212c6f5e-bcc1-44e1-b94f-b3fb18c97b60">
|
|
<tunable>security.bsd.see_other_gids</tunable>
|
|
<value/>
|
|
<descr>Hide processes running as other groups</descr>
|
|
</item>
|
|
<item uuid="9f95c1a9-633d-4c0b-b3fc-25e4aede784d">
|
|
<tunable>security.bsd.see_other_uids</tunable>
|
|
<value/>
|
|
<descr>Hide processes running as other users</descr>
|
|
</item>
|
|
<item uuid="94ec46c8-81bb-45d4-a4b3-bf578dfa4a36">
|
|
<tunable>net.inet.ip.redirect</tunable>
|
|
<value>0</value>
|
|
<descr>Enable/disable sending of ICMP redirects in response to IP packets for which a better,
|
|
and for the sender directly reachable, route and next hop is known.
|
|
</descr>
|
|
</item>
|
|
<item uuid="44f0a82f-be39-4739-9210-d4ebbe651d84">
|
|
<tunable>net.inet.icmp.drop_redirect</tunable>
|
|
<value>1</value>
|
|
<descr>
|
|
Redirect attacks are the purposeful mass-issuing of ICMP type 5 packets. In a normal network, redirects
|
|
to the end stations should not be required. This option enables the NIC to drop all inbound ICMP redirect
|
|
packets without returning a response.
|
|
</descr>
|
|
</item>
|
|
<item uuid="a3d12be1-a443-40d0-a54e-89b525dc0390">
|
|
<tunable>net.local.dgram.maxdgram</tunable>
|
|
<value/>
|
|
<descr>Maximum outgoing UDP datagram size</descr>
|
|
</item>
|
|
<item uuid="abdce8f4-c9c3-42f8-b9a5-763c452d371e">
|
|
<tunable>dev.netmap.buf_num</tunable>
|
|
<value>1000000</value>
|
|
<descr>Automatically added by Zenarmor: Netmap Generic/Native Driver</descr>
|
|
</item>
|
|
<item>
|
|
<tunable>dev.netmap.ring_num</tunable>
|
|
<value>1024</value>
|
|
<descr>Automatically added by Zenarmor</descr>
|
|
</item>
|
|
</sysctl>
|
|
<system>
|
|
<optimization>normal</optimization>
|
|
<hostname>gondor2</hostname>
|
|
<domain>dss.mywire.org</domain>
|
|
<dnsallowoverride>1</dnsallowoverride>
|
|
<group uuid="1be47588-447d-4be6-b18c-b765e9f73038">
|
|
<gid>1999</gid>
|
|
<name>admins</name>
|
|
<scope>system</scope>
|
|
<description>System Administrators</description>
|
|
<priv>page-all</priv>
|
|
<member>0,2000</member>
|
|
</group>
|
|
<user uuid="ac2e88a0-7806-475a-bbbc-0f9c23edd8b5">
|
|
<uid>0</uid>
|
|
<name>root</name>
|
|
<disabled>0</disabled>
|
|
<scope>system</scope>
|
|
<expires/>
|
|
<authorizedkeys/>
|
|
<otp_seed/>
|
|
<shell/>
|
|
<password>$2y$10$V5R3OFK0X8dz/shqsIj3AuuhVvT/TR8gA6u9s.j0gknxplOMg4tyC</password>
|
|
<landing_page/>
|
|
<comment/>
|
|
<email/>
|
|
<apikeys/>
|
|
<priv/>
|
|
<language/>
|
|
<descr>System Administrator</descr>
|
|
<dashboard/>
|
|
</user>
|
|
<user uuid="cdc7df4f-c56d-4912-ae33-cfdba8928db7">
|
|
<uid>2000</uid>
|
|
<name>dion</name>
|
|
<disabled>0</disabled>
|
|
<scope>user</scope>
|
|
<expires/>
|
|
<authorizedkeys/>
|
|
<otp_seed>LYA2AG53OBHL35L6NMGE4KEM4ZPHYAWI</otp_seed>
|
|
<shell/>
|
|
<password>$2y$11$77rIEmn8xjecWoKfve.cZ.Fb5PIDN6PR8mM4MdlHubJiuBMiWacqW</password>
|
|
<landing_page/>
|
|
<comment/>
|
|
<email>dionscarman@gmail.com</email>
|
|
<apikeys/>
|
|
<priv/>
|
|
<language/>
|
|
<descr>Dion</descr>
|
|
<dashboard/>
|
|
</user>
|
|
<nextuid>2001</nextuid>
|
|
<nextgid>2000</nextgid>
|
|
<timezone>Australia/Adelaide</timezone>
|
|
<timeservers>0.opnsense.pool.ntp.org 1.opnsense.pool.ntp.org 2.opnsense.pool.ntp.org 3.opnsense.pool.ntp.org</timeservers>
|
|
<webgui>
|
|
<protocol>http</protocol>
|
|
<ssl-certref>60132b5e4fc3d</ssl-certref>
|
|
<port>8004</port>
|
|
<ssl-ciphers/>
|
|
<interfaces/>
|
|
<compression/>
|
|
<nohttpreferercheck>1</nohttpreferercheck>
|
|
</webgui>
|
|
<disablenatreflection>yes</disablenatreflection>
|
|
<usevirtualterminal>1</usevirtualterminal>
|
|
<disableconsolemenu/>
|
|
<disablevlanhwfilter>1</disablevlanhwfilter>
|
|
<disablechecksumoffloading>1</disablechecksumoffloading>
|
|
<disablesegmentationoffloading>1</disablesegmentationoffloading>
|
|
<disablelargereceiveoffloading>1</disablelargereceiveoffloading>
|
|
<ipv6allow/>
|
|
<powerd_ac_mode>hadp</powerd_ac_mode>
|
|
<powerd_battery_mode>hadp</powerd_battery_mode>
|
|
<powerd_normal_mode>hadp</powerd_normal_mode>
|
|
<bogons>
|
|
<interval>monthly</interval>
|
|
</bogons>
|
|
<crypto_hardware>aesni</crypto_hardware>
|
|
<pf_share_forward>1</pf_share_forward>
|
|
<lb_use_sticky>1</lb_use_sticky>
|
|
<ssh>
|
|
<group>admins</group>
|
|
<noauto>1</noauto>
|
|
<interfaces/>
|
|
<kex/>
|
|
<ciphers/>
|
|
<macs/>
|
|
<keys/>
|
|
<enabled>enabled</enabled>
|
|
<passwordauth>1</passwordauth>
|
|
<permitrootlogin>1</permitrootlogin>
|
|
</ssh>
|
|
<backup>
|
|
<nextcloud version="1.0.0">
|
|
<enabled>0</enabled>
|
|
<url/>
|
|
<user/>
|
|
<password/>
|
|
<password_encryption/>
|
|
<backupdir>OPNsense-Backup</backupdir>
|
|
</nextcloud>
|
|
<git version="1.0.0">
|
|
<enabled>1</enabled>
|
|
<url>ssh://docker.dss.mywire.org:222/opnsense/OPNsense.git</url>
|
|
<branch>main</branch>
|
|
<privkey>-----BEGIN OPENSSH PRIVATE KEY-----
|
|
b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW
|
|
QyNTUxOQAAACDP5vkf5UfCrx0gxRfPWKyplHvuwDz5hOPh3X8oXMLNTAAAAKAgiKUyIIil
|
|
MgAAAAtzc2gtZWQyNTUxOQAAACDP5vkf5UfCrx0gxRfPWKyplHvuwDz5hOPh3X8oXMLNTA
|
|
AAAEDJKcyJaUCgNMTKViAR3qCMCgL5oRU0AbdG0q29IDGpQ8/m+R/lR8KvHSDFF89YrKmU
|
|
e+7APPmE4+Hdfyhcws1MAAAAG3Jvb3RAZ29uZG9yMi5kc3MubXl3aXJlLm9yZwEC
|
|
-----END OPENSSH PRIVATE KEY-----
|
|
</privkey>
|
|
<user>git</user>
|
|
<password/>
|
|
</git>
|
|
</backup>
|
|
<serialspeed/>
|
|
<primaryconsole/>
|
|
<language>en_US</language>
|
|
<dnsallowoverride_exclude/>
|
|
<dnsserver/>
|
|
<dns1gw>none</dns1gw>
|
|
<dns2gw>none</dns2gw>
|
|
<dns3gw>none</dns3gw>
|
|
<dns4gw>none</dns4gw>
|
|
<dns5gw>none</dns5gw>
|
|
<dns6gw>none</dns6gw>
|
|
<dns7gw>none</dns7gw>
|
|
<dns8gw>none</dns8gw>
|
|
<authserver/>
|
|
<serialusb/>
|
|
<prefer_ipv4>1</prefer_ipv4>
|
|
<firmware version="1.0.1">
|
|
<mirror/>
|
|
<flavour/>
|
|
<plugins>os-acme-client,os-ddclient,os-gdrive-backup,os-git-backup,os-nginx,os-sensei,os-sensei-updater,os-sunnyvalley,os-wol</plugins>
|
|
<type/>
|
|
<subscription/>
|
|
</firmware>
|
|
<backupcount>5</backupcount>
|
|
<remotebackup>
|
|
<GDriveEnabled>on</GDriveEnabled>
|
|
<GDriveEmail>111886561813089399264</GDriveEmail>
|
|
<GDriveP12key>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</GDriveP12key>
|
|
<GDriveFolderID>1rq_I9W6E96oWuB5tfzLYR2M6Zc_2bgpc</GDriveFolderID>
|
|
<GDrivePrefixHostname>on</GDrivePrefixHostname>
|
|
<GDriveBackupCount>10</GDriveBackupCount>
|
|
<GDrivePassword>tQ;ELd8"%YW=@VB</GDrivePassword>
|
|
</remotebackup>
|
|
<secondaryconsole/>
|
|
</system>
|
|
<interfaces>
|
|
<wan>
|
|
<if>pppoe0</if>
|
|
<descr>NBNwired</descr>
|
|
<enable>1</enable>
|
|
<lock>1</lock>
|
|
<spoofmac/>
|
|
<blockpriv>1</blockpriv>
|
|
<blockbogons>1</blockbogons>
|
|
<ipaddr>pppoe</ipaddr>
|
|
</wan>
|
|
<lan>
|
|
<if>vtnet1</if>
|
|
<descr/>
|
|
<enable>1</enable>
|
|
<spoofmac/>
|
|
<ipaddr>10.0.1.1</ipaddr>
|
|
<subnet>24</subnet>
|
|
</lan>
|
|
<lo0>
|
|
<internal_dynamic>1</internal_dynamic>
|
|
<descr>Loopback</descr>
|
|
<enable>1</enable>
|
|
<if>lo0</if>
|
|
<ipaddr>127.0.0.1</ipaddr>
|
|
<ipaddrv6>::1</ipaddrv6>
|
|
<subnet>8</subnet>
|
|
<subnetv6>128</subnetv6>
|
|
<type>none</type>
|
|
<virtual>1</virtual>
|
|
</lo0>
|
|
<openvpn>
|
|
<internal_dynamic>1</internal_dynamic>
|
|
<enable>1</enable>
|
|
<if>openvpn</if>
|
|
<descr>OpenVPN</descr>
|
|
<type>group</type>
|
|
<virtual>1</virtual>
|
|
<networks/>
|
|
</openvpn>
|
|
<opt1>
|
|
<if>vlan01</if>
|
|
<descr>Servers</descr>
|
|
<enable>1</enable>
|
|
<spoofmac/>
|
|
<ipaddr>10.0.10.1</ipaddr>
|
|
<subnet>24</subnet>
|
|
</opt1>
|
|
<opt2>
|
|
<if>vlan02</if>
|
|
<descr>General</descr>
|
|
<enable>1</enable>
|
|
<spoofmac/>
|
|
<ipaddr>10.0.20.1</ipaddr>
|
|
<subnet>24</subnet>
|
|
</opt2>
|
|
<opt3>
|
|
<if>vlan03</if>
|
|
<descr>IOTnetwork</descr>
|
|
<enable>1</enable>
|
|
<spoofmac/>
|
|
<ipaddr>10.0.30.1</ipaddr>
|
|
<subnet>24</subnet>
|
|
</opt3>
|
|
<opt4>
|
|
<if>vlan04</if>
|
|
<descr>Guest</descr>
|
|
<enable>1</enable>
|
|
<lock>1</lock>
|
|
<spoofmac/>
|
|
<ipaddr>10.0.40.1</ipaddr>
|
|
<subnet>24</subnet>
|
|
</opt4>
|
|
<wireguard>
|
|
<internal_dynamic>1</internal_dynamic>
|
|
<descr>WireGuard (Group)</descr>
|
|
<if>wireguard</if>
|
|
<virtual>1</virtual>
|
|
<enable>1</enable>
|
|
<type>group</type>
|
|
<networks/>
|
|
</wireguard>
|
|
<opt5>
|
|
<if>wg0</if>
|
|
<descr>WireGuardVPN</descr>
|
|
<enable>1</enable>
|
|
<lock>1</lock>
|
|
<spoofmac/>
|
|
</opt5>
|
|
<opt6>
|
|
<if>vlan05</if>
|
|
<descr>Kids</descr>
|
|
<enable>1</enable>
|
|
<lock>1</lock>
|
|
<spoofmac/>
|
|
<ipaddr>10.0.50.1</ipaddr>
|
|
<subnet>24</subnet>
|
|
<mtu>1500</mtu>
|
|
</opt6>
|
|
</interfaces>
|
|
<dhcpd>
|
|
<lan>
|
|
<enable>1</enable>
|
|
<ddnsdomainalgorithm>hmac-md5</ddnsdomainalgorithm>
|
|
<numberoptions>
|
|
<item/>
|
|
</numberoptions>
|
|
<range>
|
|
<from>10.0.1.200</from>
|
|
<to>10.0.1.245</to>
|
|
</range>
|
|
<winsserver/>
|
|
<dnsserver>10.0.1.4</dnsserver>
|
|
<ntpserver/>
|
|
<staticmap>
|
|
<mac>bc:24:11:a7:1a:ea</mac>
|
|
<ipaddr>10.0.1.4</ipaddr>
|
|
<hostname>shelob</hostname>
|
|
<descr>Pi-Hole server</descr>
|
|
<winsserver/>
|
|
<dnsserver>10.0.1.1</dnsserver>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>e0:3f:49:b2:12:35</mac>
|
|
<ipaddr>10.0.1.11</ipaddr>
|
|
<hostname>omv</hostname>
|
|
<descr>OpenMediaVault</descr>
|
|
<defaultleasetime>86400</defaultleasetime>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>00:26:6c:28:0a:a1</mac>
|
|
<ipaddr>10.0.1.12</ipaddr>
|
|
<hostname>proxmox</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>ba:f3:5a:9e:b7:33</mac>
|
|
<ipaddr>10.0.1.15</ipaddr>
|
|
<hostname>nginx</hostname>
|
|
<descr>nginx reverse proxy server</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:fd:6c:73</mac>
|
|
<ipaddr>10.0.1.20</ipaddr>
|
|
<hostname>smolxp</hostname>
|
|
<descr>Minimal XP to manage cisco router</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>86:fa:fd:13:d4:25</mac>
|
|
<ipaddr>10.0.1.23</ipaddr>
|
|
<hostname>heimdall</hostname>
|
|
<descr>heimdall application dashboard</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>52:81:b4:45:f0:0a</mac>
|
|
<ipaddr>10.0.1.25</ipaddr>
|
|
<hostname>elrond</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>4a:91:89:08:73:d8</mac>
|
|
<ipaddr>10.0.1.26</ipaddr>
|
|
<hostname>boromir</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>e2:8b:aa:80:6b:a6</mac>
|
|
<ipaddr>10.0.1.27</ipaddr>
|
|
<hostname>ansible</hostname>
|
|
<descr>debian ct on rohan</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>8e:61:fc:24:89:85</mac>
|
|
<ipaddr>10.0.1.41</ipaddr>
|
|
<hostname>certbot-vm</hostname>
|
|
<descr>certbot vm for testing</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>18:c0:4d:db:2a:7c</mac>
|
|
<ipaddr>10.0.1.101</ipaddr>
|
|
<hostname>SimRig</hostname>
|
|
<descr>Sim Racing PC</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>f4:8c:50:1a:36:9b</mac>
|
|
<ipaddr>10.0.1.102</ipaddr>
|
|
<hostname>dion-latitude</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>66:a3:f0:c7:5e:89</mac>
|
|
<ipaddr>10.0.1.103</ipaddr>
|
|
<hostname>debian2</hostname>
|
|
<descr>debian2 vm</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>7a:3b:72:16:fd:b3</mac>
|
|
<ipaddr>10.0.1.104</ipaddr>
|
|
<hostname>vm-desktop</hostname>
|
|
<descr>alpine linux with wm</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>ec:71:db:49:8e:24</mac>
|
|
<ipaddr>10.0.1.121</ipaddr>
|
|
<hostname>Camera1</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>ec:71:db:8c:07:4e</mac>
|
|
<ipaddr>10.0.1.122</ipaddr>
|
|
<hostname>Camera2</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:df:76:99</mac>
|
|
<ipaddr>10.0.1.135</ipaddr>
|
|
<hostname>macos</hostname>
|
|
<descr>Mac OS virtual machine</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>dc:a6:32:e0:85:29</mac>
|
|
<ipaddr>10.0.1.161</ipaddr>
|
|
<hostname>Legolas</hostname>
|
|
<descr>Legolas ethernet</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>40:55:39:cc:77:00</mac>
|
|
<ipaddr>10.0.1.250</ipaddr>
|
|
<hostname>anduin</hostname>
|
|
<descr>Cisco router</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<pool/>
|
|
</lan>
|
|
<opt2>
|
|
<enable>1</enable>
|
|
<ddnsdomainalgorithm>hmac-md5</ddnsdomainalgorithm>
|
|
<numberoptions>
|
|
<item/>
|
|
</numberoptions>
|
|
<range>
|
|
<from>10.0.20.151</from>
|
|
<to>10.0.20.199</to>
|
|
</range>
|
|
<winsserver/>
|
|
<dnsserver>10.0.1.4</dnsserver>
|
|
<ntpserver/>
|
|
<staticmap>
|
|
<mac>c8:8a:d8:12:ce:5e</mac>
|
|
<ipaddr>10.0.20.16</ipaddr>
|
|
<hostname>GoogleTV</hostname>
|
|
<descr>Lounge TV</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>18:c0:4d:db:2a:7c</mac>
|
|
<ipaddr>10.0.20.20</ipaddr>
|
|
<hostname>simrig</hostname>
|
|
<descr>Gaming PC</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>a4:bb:6d:9a:9a:f2</mac>
|
|
<ipaddr>10.0.20.21</ipaddr>
|
|
<hostname>optiplex</hostname>
|
|
<descr>Optiplex for Trading</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>f4:8c:50:1a:36:9b</mac>
|
|
<ipaddr>10.0.20.22</ipaddr>
|
|
<hostname>laptop</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>9c:5a:81:75:74:20</mac>
|
|
<ipaddr>10.0.20.23</ipaddr>
|
|
<hostname>pocof3</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>3c:9c:0f:fa:fe:15</mac>
|
|
<ipaddr>10.0.20.24</ipaddr>
|
|
<hostname>xps131</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:09:20:07</mac>
|
|
<ipaddr>10.0.20.30</ipaddr>
|
|
<hostname>win11</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:df:76:99</mac>
|
|
<ipaddr>10.0.20.35</ipaddr>
|
|
<hostname>macos</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:83:20:b3</mac>
|
|
<ipaddr>10.0.20.43</ipaddr>
|
|
<hostname>whonix-gw</hostname>
|
|
<descr>whonix gateway</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>4a:02:45:30:ea:02</mac>
|
|
<ipaddr>10.0.20.101</ipaddr>
|
|
<hostname>debian</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:77:77:88</mac>
|
|
<ipaddr>10.0.20.102</ipaddr>
|
|
<hostname>arch</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>5c:80:b6:47:f6:7b</mac>
|
|
<ipaddr>10.0.20.121</ipaddr>
|
|
<hostname>optiplex-wifi</hostname>
|
|
<descr>Optiplex MicroPC for Trading (WiFi)</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:8a:5c:82</mac>
|
|
<ipaddr>10.0.20.147</ipaddr>
|
|
<hostname>zorin</hostname>
|
|
<descr>VM with ZorinOS</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:11:aa:aa</mac>
|
|
<ipaddr>10.0.20.148</ipaddr>
|
|
<hostname>winux</hostname>
|
|
<descr>VM with winux os</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:9c:39:39</mac>
|
|
<ipaddr>10.0.20.149</ipaddr>
|
|
<hostname>gentoo</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<pool/>
|
|
</opt2>
|
|
<opt1>
|
|
<enable>1</enable>
|
|
<ddnsdomainalgorithm>hmac-md5</ddnsdomainalgorithm>
|
|
<numberoptions>
|
|
<item/>
|
|
</numberoptions>
|
|
<range>
|
|
<from>10.0.10.100</from>
|
|
<to>10.0.10.199</to>
|
|
</range>
|
|
<winsserver/>
|
|
<dnsserver>10.0.1.4</dnsserver>
|
|
<ntpserver/>
|
|
<staticmap>
|
|
<mac>e0:3f:49:b2:12:35</mac>
|
|
<ipaddr>10.0.10.11</ipaddr>
|
|
<hostname>omv</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:96:40:ba</mac>
|
|
<ipaddr>10.0.10.12</ipaddr>
|
|
<hostname>truenas</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:cb:c8:85</mac>
|
|
<ipaddr>10.0.10.13</ipaddr>
|
|
<hostname>docker</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:4a:8d:97</mac>
|
|
<ipaddr>10.0.10.14</ipaddr>
|
|
<hostname>musicbrainz</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:07:e0:0f</mac>
|
|
<ipaddr>10.0.10.16</ipaddr>
|
|
<hostname>musicbrainz-docker</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:ab:76:a3</mac>
|
|
<ipaddr>10.0.10.21</ipaddr>
|
|
<hostname>web</hostname>
|
|
<descr>simple apache web server</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:45:07:6e</mac>
|
|
<ipaddr>10.0.10.22</ipaddr>
|
|
<hostname>nexiitech</hostname>
|
|
<descr>ecommerce site for NexiiTech</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>de:f9:0c:c1:d5:5c</mac>
|
|
<ipaddr>10.0.10.24</ipaddr>
|
|
<hostname>jellyfin</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:ee:62:5c</mac>
|
|
<ipaddr>10.0.10.26</ipaddr>
|
|
<hostname>gpodder</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:9e:e9:f7</mac>
|
|
<ipaddr>10.0.10.27</ipaddr>
|
|
<hostname>nextcloud</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:bc:75:fc</mac>
|
|
<ipaddr>10.0.10.28</ipaddr>
|
|
<hostname>nextcloud2</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:05:07:bc</mac>
|
|
<ipaddr>10.0.10.30</ipaddr>
|
|
<hostname>velocity</hostname>
|
|
<descr>velocity proxy server for minecraft</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:2c:3e:09</mac>
|
|
<ipaddr>10.0.10.31</ipaddr>
|
|
<hostname>minecraft1</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:7e:10:ae</mac>
|
|
<ipaddr>10.0.10.32</ipaddr>
|
|
<hostname>minecraft2</hostname>
|
|
<descr>minecraft 'scarman' server</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:60:b0:46</mac>
|
|
<ipaddr>10.0.10.33</ipaddr>
|
|
<hostname>minecraft3</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:dc:09:45</mac>
|
|
<ipaddr>10.0.10.34</ipaddr>
|
|
<hostname>minecraft4</hostname>
|
|
<descr>minecraft server</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:f1:e7:c2</mac>
|
|
<ipaddr>10.0.10.40</ipaddr>
|
|
<hostname>ollama</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:e5:19:c4</mac>
|
|
<ipaddr>10.0.10.41</ipaddr>
|
|
<hostname>openwebui</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:a7:36:14</mac>
|
|
<ipaddr>10.0.10.42</ipaddr>
|
|
<hostname>diffusion</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:a2:64:33</mac>
|
|
<ipaddr>10.0.10.43</ipaddr>
|
|
<hostname>stable-vd</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:43:0b:c4</mac>
|
|
<ipaddr>10.0.10.51</ipaddr>
|
|
<hostname>fakentp2</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:a5:41:ea</mac>
|
|
<ipaddr>10.0.10.52</ipaddr>
|
|
<hostname>fakentp</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:a7:1a:ea</mac>
|
|
<ipaddr>10.0.10.53</ipaddr>
|
|
<hostname>pihole</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
</opt1>
|
|
<opt4>
|
|
<enable>1</enable>
|
|
<ddnsdomainalgorithm>hmac-md5</ddnsdomainalgorithm>
|
|
<numberoptions>
|
|
<item/>
|
|
</numberoptions>
|
|
<range>
|
|
<from>10.0.40.100</from>
|
|
<to>10.0.40.199</to>
|
|
</range>
|
|
<winsserver/>
|
|
<dnsserver>10.0.1.4</dnsserver>
|
|
<ntpserver/>
|
|
<staticmap>
|
|
<mac>c8:8a:d8:12:ce:5e</mac>
|
|
<ipaddr>10.0.40.16</ipaddr>
|
|
<hostname>google-tv</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>56:b5:94:ff:55:f1</mac>
|
|
<ipaddr>10.0.40.21</ipaddr>
|
|
<hostname>kidsphone</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>16:e9:1e:ab:33:e2</mac>
|
|
<ipaddr>10.0.40.31</ipaddr>
|
|
<hostname>trading1</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>66:1f:7a:58:86:ba</mac>
|
|
<ipaddr>10.0.40.32</ipaddr>
|
|
<hostname>trading2</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>bc:24:11:2a:27:40</mac>
|
|
<ipaddr>10.0.40.33</ipaddr>
|
|
<hostname>trading3</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
</opt4>
|
|
<opt3>
|
|
<enable>1</enable>
|
|
<ddnsdomainalgorithm>hmac-md5</ddnsdomainalgorithm>
|
|
<numberoptions>
|
|
<item/>
|
|
</numberoptions>
|
|
<range>
|
|
<from>10.0.30.21</from>
|
|
<to>10.0.30.199</to>
|
|
</range>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
<staticmap>
|
|
<mac>c6:19:1e:a6:d6:fc</mac>
|
|
<ipaddr>10.0.30.11</ipaddr>
|
|
<hostname>hass</hostname>
|
|
<domain>dss.mywire.org</domain>
|
|
<winsserver/>
|
|
<dnsserver>10.0.1.4</dnsserver>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>00:0a:f5:46:2a:9f</mac>
|
|
<ipaddr>10.0.30.12</ipaddr>
|
|
<hostname>ticwatch5</hostname>
|
|
<descr>Dion's Mobvoi Ticwatch 5 pro enduro</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>b8:27:eb:a6:f8:ce</mac>
|
|
<ipaddr>10.0.30.15</ipaddr>
|
|
<hostname>pi3</hostname>
|
|
<descr>Raspberry Pi 3</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>2c:3a:e8:1a:44:72</mac>
|
|
<ipaddr>10.0.30.18</ipaddr>
|
|
<hostname>wifi-clock</hostname>
|
|
<descr>wifi-clock ESP-1A4472</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>70:89:76:0a:28:63</mac>
|
|
<ipaddr>10.0.30.19</ipaddr>
|
|
<hostname>star-projector</hostname>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>dc:a6:32:e0:85:2a</mac>
|
|
<ipaddr>10.0.30.20</ipaddr>
|
|
<hostname>3dprint</hostname>
|
|
<descr>Raspberry Pi 4 with OctoPrint</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
</opt3>
|
|
<opt6>
|
|
<enable>1</enable>
|
|
<ddnsdomainalgorithm>hmac-md5</ddnsdomainalgorithm>
|
|
<numberoptions>
|
|
<item/>
|
|
</numberoptions>
|
|
<range>
|
|
<from>10.0.50.200</from>
|
|
<to>10.0.50.230</to>
|
|
</range>
|
|
<winsserver/>
|
|
<dnsserver>10.0.1.4</dnsserver>
|
|
<ntpserver/>
|
|
<staticmap>
|
|
<mac>8c:88:2b:00:10:8d</mac>
|
|
<ipaddr>10.0.50.11</ipaddr>
|
|
<hostname>kidspc</hostname>
|
|
<descr>Desktop PC for the kids (WiFi)</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>f4:60:e2:f8:e2:80</mac>
|
|
<ipaddr>10.0.50.12</ipaddr>
|
|
<hostname>pocof1</hostname>
|
|
<descr>Phone for the kids</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>00:1f:32:6a:fd:4a</mac>
|
|
<ipaddr>10.0.50.13</ipaddr>
|
|
<hostname>Wii</hostname>
|
|
<descr>Nintendo Wii console</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>94:be:46:ee:df:81</mac>
|
|
<ipaddr>10.0.50.142</ipaddr>
|
|
<hostname>logan-tab</hostname>
|
|
<descr>Logan's tablet</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>70:bc:10:2f:df:29</mac>
|
|
<ipaddr>10.0.50.143</ipaddr>
|
|
<hostname>XBOXONE</hostname>
|
|
<descr>Logan's Xbox</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>a4:34:d9:8e:e3:b5</mac>
|
|
<ipaddr>10.0.50.151</ipaddr>
|
|
<hostname>As-PC</hostname>
|
|
<descr>Archie's laptop (Metabox N170RD)</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>94:be:46:ee:df:89</mac>
|
|
<ipaddr>10.0.50.152</ipaddr>
|
|
<hostname>archie-tab</hostname>
|
|
<descr>Archie's tablet</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
<staticmap>
|
|
<mac>94:be:46:ee:df:85</mac>
|
|
<ipaddr>10.0.50.172</ipaddr>
|
|
<hostname>harry-tab</hostname>
|
|
<descr>Harry's tablet</descr>
|
|
<winsserver/>
|
|
<dnsserver/>
|
|
<ntpserver/>
|
|
</staticmap>
|
|
</opt6>
|
|
</dhcpd>
|
|
<snmpd>
|
|
<syslocation/>
|
|
<syscontact/>
|
|
<rocommunity>public</rocommunity>
|
|
</snmpd>
|
|
<syslog>
|
|
<reverse/>
|
|
<preservelogs>10</preservelogs>
|
|
<maxfilesize>100</maxfilesize>
|
|
</syslog>
|
|
<nat>
|
|
<outbound>
|
|
<mode>automatic</mode>
|
|
</outbound>
|
|
<rule>
|
|
<protocol>tcp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>HASS.io</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_603a219d254010.34486638</associated-rule-id>
|
|
<target>hass</target>
|
|
<local-port>8123</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>8123</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707537476.8948</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1614422429.1527</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>debian vm</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_603a31025c4875.51279624</associated-rule-id>
|
|
<target>terminal</target>
|
|
<local-port>22</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>22</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.40.31</username>
|
|
<time>1709875603.2834</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1614426370.3781</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>debian2 vm</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_61fe6823a62ff9.38653503</associated-rule-id>
|
|
<target>10.0.1.103</target>
|
|
<local-port>22</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>22</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.102</username>
|
|
<time>1653512457.5365</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1644062755.6808</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>nginx reverse proxy ssl</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_609ab30d1bcb08.88985266</associated-rule-id>
|
|
<target>nginx</target>
|
|
<local-port>443</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>443</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707521483.7973</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.8.6</username>
|
|
<time>1620751117.1139</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>nginx reverse proxy server</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_61d69bc2d88db3.30171087</associated-rule-id>
|
|
<target>nginx</target>
|
|
<local-port>80</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>80</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707521505.2924</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1641454530.8871</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>velocity for minecraft java</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>pass</associated-rule-id>
|
|
<target>velocity</target>
|
|
<local-port>25565</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>25565</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1759730875.89</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1636418784.8863</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule>
|
|
<protocol>udp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>velocity for minecraft bedrock</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>pass</associated-rule-id>
|
|
<target>velocity</target>
|
|
<local-port>19132</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>19132</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1759730854.14</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1636679797.8341</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>Jellyfin services</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_61f140996d6708.06843852</associated-rule-id>
|
|
<target>jellyfin</target>
|
|
<local-port>8096</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>8096</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707526414.609</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1643200665.4482</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule>
|
|
<protocol>udp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr/>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_62cc09e3b73e87.61248567</associated-rule-id>
|
|
<target>10.0.1.102</target>
|
|
<local-port>3478</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>3478</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.102</username>
|
|
<time>1657539043.7507</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.102</username>
|
|
<time>1657539043.7507</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule>
|
|
<protocol>udp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>Steam related</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_62cc0a1f5e00c2.77730298</associated-rule-id>
|
|
<disabled>1</disabled>
|
|
<target>10.0.1.102</target>
|
|
<local-port>4379</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>4379-4380</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1759563737.18</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.102</username>
|
|
<time>1657539103.3851</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule>
|
|
<protocol>tcp/udp</protocol>
|
|
<interface>wan</interface>
|
|
<category/>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>deluge</descr>
|
|
<tag/>
|
|
<tagged/>
|
|
<poolopts/>
|
|
<associated-rule-id>nat_62dfdf81c63009.25391203</associated-rule-id>
|
|
<target>10.0.10.13</target>
|
|
<local-port>6881</local-port>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>6881</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1745257291.1951</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.102</username>
|
|
<time>1658838913.8119</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
</nat>
|
|
<filter>
|
|
<rule uuid="bd8f4c2b-3b9d-4f73-b62d-02eb1762187d">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>hass</address>
|
|
<port>8123</port>
|
|
</destination>
|
|
<descr>HASS.io</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_603a219d254010.34486638</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1614422429.1526</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="74bc44f0-b6c0-4902-9fcb-a50013337a54">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>terminal</address>
|
|
<port>22</port>
|
|
</destination>
|
|
<descr>debian vm</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_603a31025c4875.51279624</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.201</username>
|
|
<time>1614426370.378</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="4407677b-3978-42b5-80f6-ecb5a6cf9e6e">
|
|
<type>pass</type>
|
|
<interface>wan</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow VPN Traffic</descr>
|
|
<direction>in</direction>
|
|
<log>1</log>
|
|
<quick>1</quick>
|
|
<protocol>udp</protocol>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
<port>1194</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1616007856.1696</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1615823502.0367</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="45ff83b0-1439-4cf3-8f44-de9f72bdaf15">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>nginx</address>
|
|
<port>443</port>
|
|
</destination>
|
|
<descr>nginx reverse proxy ssl</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_609ab30d1bcb08.88985266</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.8.6</username>
|
|
<time>1620751117.1139</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="fb6e91ad-c299-41c5-a1e0-7f1ef8ac7141">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>nginx</address>
|
|
<port>80</port>
|
|
</destination>
|
|
<descr>nginx reverse proxy server</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_61d69bc2d88db3.30171087</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1641454530.887</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="7f27ea86-0a18-4012-ae8b-7aa7593315f9">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>jellyfin</address>
|
|
<port>8096</port>
|
|
</destination>
|
|
<descr>Jellyfin services</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_61f140996d6708.06843852</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1643200665.4481</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="7c8f1276-fd6f-4ae3-ac36-5ec438bab333">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.103</address>
|
|
<port>22</port>
|
|
</destination>
|
|
<descr>debian2 vm</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_61fe6823a62ff9.38653503</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1644062755.6807</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="a1b5df33-b6f9-48c8-93af-9ea5efb905cc">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>udp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.102</address>
|
|
<port>3478</port>
|
|
</destination>
|
|
<descr/>
|
|
<category/>
|
|
<associated-rule-id>nat_62cc09e3b73e87.61248567</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.102</username>
|
|
<time>1657539043.7506</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="807959ad-8cb6-4f55-b0bd-cc8b74c090c3">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>udp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.1.102</address>
|
|
<port>4379-4380</port>
|
|
</destination>
|
|
<descr>Steam related</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_62cc0a1f5e00c2.77730298</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.102</username>
|
|
<time>1657539103.3851</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="4bf759e7-dd86-4376-97ec-a2cf113bbebc">
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<interface>wan</interface>
|
|
<statetype>keep state</statetype>
|
|
<protocol>tcp/udp</protocol>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<destination>
|
|
<address>10.0.10.13</address>
|
|
<port>6881</port>
|
|
</destination>
|
|
<descr>deluge</descr>
|
|
<category/>
|
|
<associated-rule-id>nat_62dfdf81c63009.25391203</associated-rule-id>
|
|
<created>
|
|
<username>root@10.0.1.102</username>
|
|
<time>1658838913.8118</time>
|
|
<description>/firewall_nat_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="cfc585cb-320d-40e1-a194-0b0b6c14a0db">
|
|
<type>pass</type>
|
|
<interface>wan</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow WireGuard VPN service</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>udp</protocol>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>wanip</network>
|
|
<port>51820</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707481396.3724</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707481396.3724</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="e12ab0b1-b578-4e30-8f05-05e45672d21b">
|
|
<type>pass</type>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<descr>Default allow LAN to any rule</descr>
|
|
<interface>lan</interface>
|
|
<source>
|
|
<network>lan</network>
|
|
</source>
|
|
<destination>
|
|
<any/>
|
|
</destination>
|
|
</rule>
|
|
<rule uuid="b8faa49e-9173-469f-822e-1ee8a0c77caa">
|
|
<type>pass</type>
|
|
<ipprotocol>inet6</ipprotocol>
|
|
<descr>Default allow LAN IPv6 to any rule</descr>
|
|
<interface>lan</interface>
|
|
<source>
|
|
<network>lan</network>
|
|
</source>
|
|
<destination>
|
|
<any/>
|
|
</destination>
|
|
</rule>
|
|
<rule uuid="b673b9d5-65d6-48d9-875f-e763b59aa2f2">
|
|
<type>pass</type>
|
|
<interface>lan</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow OpenVPN traffic</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<network>openvpn</network>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1706322827.5379</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1706322781.2623</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="d9fc36db-6575-4d42-a50c-c8bb15b5c235">
|
|
<type>pass</type>
|
|
<interface>lan</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>icmp</protocol>
|
|
<source>
|
|
<network>lan</network>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1706988544.8646</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1706988544.8646</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="5d4bc873-6e82-4b96-8255-3cc77f2b08a1">
|
|
<type>pass</type>
|
|
<interface>lan</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>terminal</address>
|
|
</source>
|
|
<destination>
|
|
<network>opt2</network>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707430662.6533</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707430662.6534</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="63a76257-828e-48ad-80c0-994fe2f1bbe2">
|
|
<type>pass</type>
|
|
<interface>lan</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<address>hass</address>
|
|
</source>
|
|
<destination>
|
|
<network>opt3</network>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707549961.63</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707549961.63</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="e16624c1-5872-45c3-95bd-05b0d32b17b8">
|
|
<type>pass</type>
|
|
<interface>lan</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<address>terminal</address>
|
|
</source>
|
|
<destination>
|
|
<address>adminpc</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.40.31</username>
|
|
<time>1709875874.8257</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707550028.1013</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="d1dfcdc9-3aff-4b5e-aacb-e51e1e2d1e4d">
|
|
<type>pass</type>
|
|
<interface>lan</interface>
|
|
<ipprotocol>inet46</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>nginx</address>
|
|
</source>
|
|
<destination>
|
|
<address>docker</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1709643656.4549</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1709643656.4549</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="330ba4d0-9679-4ece-b309-e3b6888fafa1">
|
|
<type>pass</type>
|
|
<interface>lan</interface>
|
|
<ipprotocol>inet46</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>nginx</address>
|
|
</source>
|
|
<destination>
|
|
<address>OMV</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1709643694.3913</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1709643694.3913</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="8e4b2b83-b65f-49c1-9c86-93f62aafbf35">
|
|
<descr>OpenVPN wizard</descr>
|
|
<direction>in</direction>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<network>anyip</network>
|
|
<port>1194</port>
|
|
</destination>
|
|
<interface>any</interface>
|
|
<protocol>udp</protocol>
|
|
<type>pass</type>
|
|
<enabled>on</enabled>
|
|
<created>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1615819436.1986</time>
|
|
<description>/wizard.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="9d02a4e5-ffc1-4384-8343-959de8c63e5c">
|
|
<type>pass</type>
|
|
<interface>openvpn</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>OpenVPN wizard</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<address>10.0.8.0/24</address>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1616009403.2661</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.100</username>
|
|
<time>1615819436.1987</time>
|
|
<description>/wizard.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="e10dc9f0-6098-4ae6-a13d-f7b8f1677845">
|
|
<type>pass</type>
|
|
<interface>opt1</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow DNS with PiHole</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt1</network>
|
|
</source>
|
|
<destination>
|
|
<address>PiHole</address>
|
|
<port>53</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707547112.2749</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1706979088.001</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="ef05173d-3207-44e6-be5a-ab5865921731">
|
|
<type>pass</type>
|
|
<interface>opt1</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<network>opt1</network>
|
|
</source>
|
|
<destination>
|
|
<network>opt1ip</network>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1706987557.4493</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1706987557.4494</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="09060a76-2b1b-49e0-bdd0-91fc27340304">
|
|
<type>pass</type>
|
|
<interface>opt1</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<network>opt1</network>
|
|
</source>
|
|
<destination>
|
|
<address>OMV</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1706986347.5078</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1706986347.5078</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="fcbe5d40-3e62-4e42-8bc7-0e9ba0956de5">
|
|
<type>pass</type>
|
|
<interface>opt1</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<address>docker</address>
|
|
</source>
|
|
<destination>
|
|
<address>jellyfin</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1710774625.7509</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1710774625.7509</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="d6898298-9a04-406d-9a26-716223086b14">
|
|
<type>pass</type>
|
|
<interface>opt1</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<address>docker</address>
|
|
</source>
|
|
<destination>
|
|
<address>kodi</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1710774710.6636</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1710774710.6636</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="172207b9-4733-4e77-a45b-8729fc1c021f">
|
|
<type>pass</type>
|
|
<interface>opt1</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>test for HASS in heimdall dash</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>docker</address>
|
|
</source>
|
|
<destination>
|
|
<address>hass</address>
|
|
<port>8123</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1759726378.18</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1759726378.18</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="91393324-4ed4-4811-a78d-1dc6f6c2fabb">
|
|
<type>pass</type>
|
|
<interface>opt1</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<address>10.0.20.101</address>
|
|
</source>
|
|
<destination>
|
|
<address>10.0.1.1</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1706989912.1401</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1706986693.7814</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="dd36a8db-8c73-42ac-84dd-27ce16262521">
|
|
<type>pass</type>
|
|
<interface>opt1</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>temporary allow shellinabox</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<address>10.0.10.21/24</address>
|
|
</source>
|
|
<destination>
|
|
<address>10.0.1.100/24</address>
|
|
<port>22</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1708316902.6574</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1708316902.6574</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="be9ed7a7-ae79-4452-ba58-9fd8e67e90f4">
|
|
<type>pass</type>
|
|
<interface>opt1</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>allow heimdall to access octoprint api</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>docker</address>
|
|
</source>
|
|
<destination>
|
|
<address>_3dprint</address>
|
|
<port>80</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1760099717.01</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1760090564.25</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="0ef7be3f-207c-451e-8962-2d99fddb4b24">
|
|
<type>pass</type>
|
|
<interface>opt1</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow internet</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<network>opt1</network>
|
|
</source>
|
|
<destination>
|
|
<address>PrivateNet</address>
|
|
<not>1</not>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1706979594.5941</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1706979448.8036</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="8282e3e0-125b-49af-9d2d-93dfff34a642">
|
|
<type>pass</type>
|
|
<interface>opt1</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow server 'web' access for webcam stream</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<address>10.0.10.21</address>
|
|
</source>
|
|
<destination>
|
|
<address>_3dprint</address>
|
|
<port>80</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1760440631.05</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1760440631.05</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="759ceae6-d2b4-4208-92f9-44a850dbee94">
|
|
<type>block</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet6</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Block IPv6</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<network>opt2</network>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1770553492.54</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1770553492.54</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="80be946d-df06-4bea-a87c-8eac4e0f30d8">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow DNS with PiHole</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt2</network>
|
|
</source>
|
|
<destination>
|
|
<address>PiHole</address>
|
|
<port>53</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1770553374.39</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707427166.936</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="0698b950-ac5f-4bcf-b843-21068b3d3e6d">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow ICMPv4 to all networks</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>icmp</protocol>
|
|
<source>
|
|
<network>opt2</network>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707427422.542</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707427422.542</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="7cb06cbf-31f3-4d22-acf2-ab205ecf211f">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow laptop access to everything</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<address>laptop</address>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1741221642.9798</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707621868.5463</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="70895c79-8b22-4145-92f1-d7b482efe6bc">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow admin pc access to everything</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<address>adminpc</address>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.40.31</username>
|
|
<time>1709869700.6548</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.40.31</username>
|
|
<time>1709869678.7819</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="a6f335ff-552c-49db-95fa-b9ee5a256aed">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow access to Home Assistant</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<network>opt2</network>
|
|
</source>
|
|
<destination>
|
|
<address>hass</address>
|
|
<port>8123</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1709598508.4467</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707649481.3002</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="7d0bf55c-9c55-4338-8c26-8eddb1e42100">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow access to Kodi</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt2</network>
|
|
</source>
|
|
<destination>
|
|
<address>kodi</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1709598550.2058</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707650343.5798</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="8ebf49e3-879b-4957-9e9f-92acb63dd780">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow access to *arr stack</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<network>opt2</network>
|
|
</source>
|
|
<destination>
|
|
<address>docker</address>
|
|
<port>arrPorts</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1709598834.1033</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1708430887.7457</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="51aeac8c-3090-4b04-a488-e2ee74e27721">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow access to Deluge</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<network>opt2</network>
|
|
</source>
|
|
<destination>
|
|
<address>docker</address>
|
|
<port>delugePorts</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1709598860.6735</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1708680670.0552</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="1c89bce8-727a-4caa-a3aa-d44682490ec8">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow Immich photo backup</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt2</network>
|
|
</source>
|
|
<destination>
|
|
<address>docker</address>
|
|
<port>2283</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1709598665.3309</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707736637.1791</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="a867c87c-eb8a-4887-8efd-33aaea1aa85c">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow tvheadend</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt2</network>
|
|
</source>
|
|
<destination>
|
|
<address>docker</address>
|
|
<port>9981</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1716267901.0137</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1716267901.0137</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="5b877356-c527-4249-8867-8f26c5048055">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow tvheadend HTSP</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt2</network>
|
|
</source>
|
|
<destination>
|
|
<address>docker</address>
|
|
<port>9982</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1747807919.1973</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1747807919.1973</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="ec78b7c4-d053-4c80-b176-e6f1a605476c">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Calibre book library</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt2</network>
|
|
</source>
|
|
<destination>
|
|
<address>docker</address>
|
|
<port>8080-8081</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1741156170.0258</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1741156120.7693</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="dc38a458-6152-43cd-9310-676eaa45bd64">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow Jellyfin</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt2</network>
|
|
</source>
|
|
<destination>
|
|
<address>jellyfin</address>
|
|
<port>8096</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1709989788.1432</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1709989788.1432</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="44d43cf9-51d1-4055-b2c9-9bfdf071448f">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow nginx access</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt2</network>
|
|
</source>
|
|
<destination>
|
|
<address>nginx</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707429455.0626</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707429455.0626</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="b9b28015-dfcc-4c75-be32-8ed0f4beb18d">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow nextcloud access</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt2</network>
|
|
</source>
|
|
<destination>
|
|
<address>10.0.10.27</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1713550265.7684</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1713550265.7684</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="dfefab08-ba71-4b7b-b804-bdad80a82612">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow samba access</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt2</network>
|
|
</source>
|
|
<destination>
|
|
<address>TrueNAS</address>
|
|
<port>445</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1727080611.3076</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1727080611.3076</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="f07a8be1-8117-45ed-912b-a56f7112d279">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow samba access</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt2</network>
|
|
</source>
|
|
<destination>
|
|
<address>_3dprint</address>
|
|
<port>445</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1734482870.5361</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1734482870.5362</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="45ba06ed-0fea-4228-b182-c2d4572f7e75">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Minecraft proxy server</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt2</network>
|
|
</source>
|
|
<destination>
|
|
<address>minecraft</address>
|
|
<port>MinecraftPorts</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1760527317.97</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1741327386.7798</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="8bd22705-8518-43fb-b5fe-ca5d826c94ec">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>tvheadend htsp</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<address>dion_phone</address>
|
|
</source>
|
|
<destination>
|
|
<address>docker</address>
|
|
<port>9982</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1711199077.1993</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1711199077.1993</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="385459aa-74a3-4da4-9156-21ef7f0856fc">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Phone to Proxmox access</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<address>dion_phone</address>
|
|
</source>
|
|
<destination>
|
|
<address>Proxmox_Dell</address>
|
|
<port>8006</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1769811046.75</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1711264570.4081</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="548b4f83-fa9f-485e-98e8-d5db076755f8">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>watch to phone test</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<address>dion_phone</address>
|
|
</source>
|
|
<destination>
|
|
<address>10.0.30.12</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1759472489.87</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1759472489.87</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="8ea81135-fb04-47ca-bac2-0363b0cfc773">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>optiplex</address>
|
|
</source>
|
|
<destination>
|
|
<address>Trading1</address>
|
|
<port>3389</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1719447045.8191</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1719446901.2341</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="fa7be3ce-e1d9-495e-9150-6c42d32ab821">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>XPS131</address>
|
|
</source>
|
|
<destination>
|
|
<address>Trading1</address>
|
|
<port>3389</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1719447059.8022</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1719447059.8022</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="1f8c38b1-4f23-4c02-bf51-4a98788d4d54">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>optiplex</address>
|
|
</source>
|
|
<destination>
|
|
<address>Trading2</address>
|
|
<port>3389</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1719446929.0224</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1719446929.0224</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="9c394684-cafd-45d2-8072-6475941f9e42">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>XPS131</address>
|
|
</source>
|
|
<destination>
|
|
<address>Trading2</address>
|
|
<port>3389</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1719447073.3668</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1719447073.3668</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="7d8dc8f2-dbe1-4c19-a12e-ea054eb978ca">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>optiplex</address>
|
|
</source>
|
|
<destination>
|
|
<address>adminpc</address>
|
|
<port>3389</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1719446999.5369</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1719446999.5369</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="5230127e-6c3a-429e-8f89-27ab433aac99">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>XPS131</address>
|
|
</source>
|
|
<destination>
|
|
<address>adminpc</address>
|
|
<port>3389</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1719447086.5735</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1719447086.5735</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="2726c0fb-2825-4faa-a0e0-1cc121dcabea">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt2</network>
|
|
</source>
|
|
<destination>
|
|
<address>_3dprint</address>
|
|
<port>80</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1724750608.4293</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1724750608.4293</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="528df5e6-3d5e-4165-8887-638bb30a4ee2">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow SSH from 'debian' to 'TrueNAS'</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<address>10.0.20.101/24</address>
|
|
</source>
|
|
<destination>
|
|
<address>TrueNAS</address>
|
|
<port>22</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1739751820.1319</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1739751820.1319</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="6bf775da-c6c0-4e7c-aae9-3d7ab7224ac3">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>allow NFS to debian</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>10.0.20.101/32</address>
|
|
</source>
|
|
<destination>
|
|
<address>TrueNAS</address>
|
|
<port>2049</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1755704450.50</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1755704450.50</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="f252e56d-17a1-4fe3-809a-50bee17074c7">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>allow NFS to debian</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>10.0.20.101/32</address>
|
|
</source>
|
|
<destination>
|
|
<address>TrueNAS</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1755726818.89</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1755704415.90</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="64c71c01-5710-44a4-8cd4-0ddd201c7cc8">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow Dions phone to access Standard Notes server</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<address>dion_phone</address>
|
|
</source>
|
|
<destination>
|
|
<address>docker</address>
|
|
<port>3125</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1759243277.66</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1759243277.66</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="7f31a0ad-0a61-433a-a7b0-d7b962cc3e6a">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<address>optiplex</address>
|
|
</source>
|
|
<destination>
|
|
<address>Proxmox_Dell</address>
|
|
<port>8006</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1745990216.3065</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1745990216.3065</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="61bcf5e2-3714-418f-bb4b-6b41931ac732">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow access to 'memos' server</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<network>opt2</network>
|
|
</source>
|
|
<destination>
|
|
<address>docker</address>
|
|
<port>5230</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1759405998.50</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1759405998.50</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="850ca602-7442-49aa-bad8-d759dbdb23cf">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow my phone to admin pihole</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<address>dion_phone</address>
|
|
</source>
|
|
<destination>
|
|
<address>PiHole</address>
|
|
<port>443</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1769710119.11</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1769710119.11</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="e128dcf1-03c3-4577-b267-ecd5ecbbeb20">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>temporary - connect phone to guest tv</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<address>dion_phone</address>
|
|
</source>
|
|
<destination>
|
|
<address>10.0.40.109/32</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1770555072.25</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1770555049.56</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="45556904-9b06-478a-bf1f-606055aead04">
|
|
<type>pass</type>
|
|
<interface>opt2</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow only internet</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<network>opt2</network>
|
|
</source>
|
|
<destination>
|
|
<address>PrivateNet</address>
|
|
<not>1</not>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1770553397.83</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707427477.6187</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="271114ae-5faa-460f-bd27-d1f3e30e4fe3">
|
|
<type>pass</type>
|
|
<interface>opt3</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<address>hass</address>
|
|
</source>
|
|
<destination>
|
|
<address>PiHole</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707550853.7772</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707550853.7772</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="1d872487-e429-472a-8288-62cb895fe503">
|
|
<type>pass</type>
|
|
<interface>opt3</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>star projector temporary allow internet</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<address>10.0.30.19</address>
|
|
</source>
|
|
<destination>
|
|
<address>PiHole</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1708617308.651</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1708617308.651</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="0ea4d7f7-44e2-4928-a8e7-606ef3433464">
|
|
<type>pass</type>
|
|
<interface>opt3</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<network>opt3</network>
|
|
</source>
|
|
<destination>
|
|
<address>PiHole</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1708613135.8892</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1708613073.8242</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="ee15d0e3-6a0a-4c6b-8422-08f3688ef96f">
|
|
<type>pass</type>
|
|
<interface>opt3</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow HASS server internet access</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<address>hass</address>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707551071.675</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707525728.9361</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="e015c3cc-c114-4abc-aff2-deb122f2d989">
|
|
<type>pass</type>
|
|
<interface>opt3</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<address>_3dprint</address>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1724749450.8068</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1724749187.7868</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="40cca934-09da-4f84-b775-073abf813ab8">
|
|
<type>pass</type>
|
|
<interface>opt3</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow internet to Ticwatch watch</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<address>10.0.30.12/24</address>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1724750360.1236</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1721189703.937</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="5637df41-415a-4c76-a4c5-94ec9b3909ad">
|
|
<type>block</type>
|
|
<interface>opt3</interface>
|
|
<ipprotocol>inet46</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Block everything</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<network>opt3</network>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707525762.0221</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707525541.855</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="1baf645d-caeb-4133-bafc-32d578fb90ea">
|
|
<type>pass</type>
|
|
<interface>opt3</interface>
|
|
<ipprotocol>inet46</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Pass everything</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<network>opt3</network>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707550788.5586</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707550788.5586</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="364c91b5-7e6d-44f5-8ed6-350f4af21e12">
|
|
<type>pass</type>
|
|
<interface>opt3</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Lounge wifi clock ntp access to 'fakentp'</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>udp</protocol>
|
|
<source>
|
|
<address>10.0.30.18</address>
|
|
</source>
|
|
<destination>
|
|
<address>10.0.10.52</address>
|
|
<port>123</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1744077648.4365</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1743940951.1421</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="07aea752-c923-46cd-ade2-9f765bbf610b">
|
|
<type>pass</type>
|
|
<interface>opt3</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Lounge wifi clock ntp access to 'fakentp2'</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>udp</protocol>
|
|
<source>
|
|
<address>10.0.30.18/32</address>
|
|
</source>
|
|
<destination>
|
|
<address>10.0.10.51/32</address>
|
|
<port>123</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1744083105.8936</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1744083105.8936</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="82df5a9d-3b0d-4b0a-b9c9-f353311d1a92">
|
|
<type>block</type>
|
|
<interface>opt3</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Lounge wifi clock BLOCK ALL</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<address>10.0.30.18/24</address>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1710295810.6416</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1710292269.9707</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="9dcb20ae-7657-49ff-a2fc-462509ead469">
|
|
<type>pass</type>
|
|
<interface>opt3</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Lounge wifi clock ntp access</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>10.0.30.18/24</address>
|
|
</source>
|
|
<destination>
|
|
<address>10.0.1.1/24</address>
|
|
<port>123</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1710295731.7297</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1710295731.7297</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="88d54bae-fd1c-4d71-a9e8-714860d66ab7">
|
|
<type>pass</type>
|
|
<interface>opt3</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<network>opt3</network>
|
|
</source>
|
|
<destination>
|
|
<address>PrivateNet</address>
|
|
<not>1</not>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707551291.9458</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707551291.9458</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="a3b333ae-8fbd-46e1-83eb-961bbd9018a7">
|
|
<type>block</type>
|
|
<interface>opt4</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>block everything</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1711431704.243</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1711431704.243</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="f987a8fd-4abc-4d62-995f-1e8b786c54de">
|
|
<type>pass</type>
|
|
<interface>opt4</interface>
|
|
<ipprotocol>inet46</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow DNS</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt4</network>
|
|
</source>
|
|
<destination>
|
|
<address>PiHole</address>
|
|
<port>53</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707543031.5898</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707431046.1502</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="94ec3fbf-d0db-4af1-ab6d-d8336db9aa96">
|
|
<type>block</type>
|
|
<interface>opt4</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Block other DNS</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt4</network>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
<port>53</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1762156837.74</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1762156837.74</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="96028957-db33-4113-8ec5-6af8c2978631">
|
|
<type>block</type>
|
|
<interface>opt4</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Block DoT</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<network>opt4</network>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
<port>853</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1762157096.47</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1762157096.47</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="73890d08-084b-401b-a671-6794252f6b48">
|
|
<type>pass</type>
|
|
<interface>opt4</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow samba to TrueNAS</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>Trading1</address>
|
|
</source>
|
|
<destination>
|
|
<address>TrueNAS</address>
|
|
<port>445</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1739320584.6998</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707629117.5311</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="ba86ee0b-a0d5-4680-bc53-afae56a5e033">
|
|
<type>pass</type>
|
|
<interface>opt4</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow samba to TrueNAS</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>Trading2</address>
|
|
</source>
|
|
<destination>
|
|
<address>TrueNAS</address>
|
|
<port>445</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1739320559.106</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707630357.6498</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="54d40b1a-3c0b-4b1a-9964-d20d163f181b">
|
|
<type>pass</type>
|
|
<interface>opt4</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow samba to TrueNAS</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>Trading3</address>
|
|
</source>
|
|
<destination>
|
|
<address>TrueNAS</address>
|
|
<port>445</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1769703176.17</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1769703176.17</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="b6ba4244-ea27-4355-a046-0153fcdcdf8a">
|
|
<type>pass</type>
|
|
<interface>opt4</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<address>Trading2</address>
|
|
</source>
|
|
<destination>
|
|
<address>10.0.1.15/24</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1716964196.73</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1709090446.0588</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="e89a96ef-9668-42f1-942a-f2c913f06ab2">
|
|
<type>pass</type>
|
|
<interface>opt4</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<address>Trading1</address>
|
|
</source>
|
|
<destination>
|
|
<address>10.0.1.1/24</address>
|
|
<port>8004</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.40.32</username>
|
|
<time>1709093963.3453</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.40.32</username>
|
|
<time>1709093888.4992</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="c93fb25d-4230-480c-a1e2-feb08d9b4bc7">
|
|
<type>pass</type>
|
|
<interface>opt4</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<address>Trading2</address>
|
|
</source>
|
|
<destination>
|
|
<address>Proxmox_Dell</address>
|
|
<port>8006</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1709090652.7083</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1709090652.7083</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="3b767d2f-9185-4d81-9138-4af2c5568b0d">
|
|
<type>pass</type>
|
|
<interface>opt4</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<address>Trading1</address>
|
|
</source>
|
|
<destination>
|
|
<address>Proxmox_Dell</address>
|
|
<port>8006</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.40.31</username>
|
|
<time>1709094008.9782</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.40.31</username>
|
|
<time>1709094008.9782</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="c015cac3-5143-4e5a-84f7-28286aaaa851">
|
|
<type>pass</type>
|
|
<interface>opt4</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>Trading1</address>
|
|
</source>
|
|
<destination>
|
|
<address>docker</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.40.31</username>
|
|
<time>1709464010.2126</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.40.31</username>
|
|
<time>1709464010.2126</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="cdfb9154-1fd4-4870-8df4-7d6c9d431df1">
|
|
<type>pass</type>
|
|
<interface>opt4</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>Trading2</address>
|
|
</source>
|
|
<destination>
|
|
<address>docker</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1716964273.7838</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1716964273.7839</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="59c5a1b9-a165-426d-b1fd-3a3898d94e8f">
|
|
<type>pass</type>
|
|
<interface>opt4</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>test access to fakentp2 server (+30min)</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>udp</protocol>
|
|
<source>
|
|
<address>Trading1</address>
|
|
</source>
|
|
<destination>
|
|
<address>10.0.10.51/32</address>
|
|
<port>123</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1744106017.1145</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1744105968.0254</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="c3435cab-fc31-4565-9d96-43f9afb796a5">
|
|
<type>block</type>
|
|
<interface>opt4</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>block internet on kids phone</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>10.0.40.21</address>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
<port>80</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1712146970.3963</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1711431463.6993</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="0e5510eb-e9b1-428b-a6f4-1d259c5b8f14">
|
|
<type>block</type>
|
|
<interface>opt4</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>block internet on kids phone</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>10.0.40.21</address>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
<port>443</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1712146990.2238</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1711431488.8459</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="d2f128aa-e315-4c85-8e26-1081569ba8d7">
|
|
<type>pass</type>
|
|
<interface>opt4</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>allow jellyfin on the TV (guest network)</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<address>10.0.40.16/32</address>
|
|
</source>
|
|
<destination>
|
|
<address>nginx,jellyfin</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1770555879.37</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1770555846.78</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="e7fa117a-c3c2-427a-b442-20b9bc3f5936">
|
|
<type>pass</type>
|
|
<interface>opt4</interface>
|
|
<ipprotocol>inet46</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<network>opt4</network>
|
|
</source>
|
|
<destination>
|
|
<address>PrivateNet</address>
|
|
<not>1</not>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707431109.5159</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707431109.5159</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="aa07a584-08ef-4b9e-b251-94f4334fd16f">
|
|
<type>pass</type>
|
|
<interface>opt5</interface>
|
|
<ipprotocol>inet46</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow DNS</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt5</network>
|
|
</source>
|
|
<destination>
|
|
<network>opt5ip</network>
|
|
<port>53</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707483258.2361</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707481597.0233</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="6c89f9c1-dc9a-41e0-81bf-d3f73b1c9938">
|
|
<type>pass</type>
|
|
<interface>opt5</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow laptop everything through wireguard</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<address>10.0.8.11/24</address>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1716868425.6118</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1716868425.6118</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="e9c57d60-6669-4e72-b681-ffeeecbcbefb">
|
|
<type>pass</type>
|
|
<interface>opt5</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<network>opt5</network>
|
|
</source>
|
|
<destination>
|
|
<address>PiHole</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707483309.9944</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707483309.9944</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="81037093-f697-49cb-b9b0-69f7d9943956">
|
|
<type>pass</type>
|
|
<interface>opt5</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt5</network>
|
|
</source>
|
|
<destination>
|
|
<address>nginx</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1739242956.907</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1739242956.9071</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="583ffe3d-5e71-4c0c-91fc-cd0105d55a5a">
|
|
<type>pass</type>
|
|
<interface>opt5</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<network>opt5</network>
|
|
</source>
|
|
<destination>
|
|
<address>hass</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707537096.0468</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707537096.0469</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="6b8e3cd3-14e5-4273-b3b4-bb09a4b21d78">
|
|
<type>pass</type>
|
|
<interface>opt5</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<network>opt5</network>
|
|
</source>
|
|
<destination>
|
|
<address>jellyfin</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707527675.6357</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707527675.6357</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="02593fee-3329-45ab-b425-e86f1cb9e77b">
|
|
<type>pass</type>
|
|
<interface>opt5</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow Immich photo backup</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt5</network>
|
|
</source>
|
|
<destination>
|
|
<address>docker</address>
|
|
<port>2283</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707736579.1971</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707736532.0126</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="78ef3f51-3a98-4536-99d6-67a624ceeee1">
|
|
<type>pass</type>
|
|
<interface>opt5</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<network>opt5</network>
|
|
</source>
|
|
<destination>
|
|
<address>docker</address>
|
|
<port>arrPorts</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1708429775.968</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1708429740.9501</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="b269db14-5f98-409c-a62e-36a876057db6">
|
|
<type>pass</type>
|
|
<interface>opt5</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<network>opt5</network>
|
|
</source>
|
|
<destination>
|
|
<address>OMV</address>
|
|
<port>arrPorts</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1708430788.2194</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1708430788.2194</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="792562f1-9ab5-4432-8b72-d9cfb8462f28">
|
|
<type>pass</type>
|
|
<interface>opt5</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<network>opt5</network>
|
|
</source>
|
|
<destination>
|
|
<address>Trading1</address>
|
|
<port>3389</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.40.32</username>
|
|
<time>1709091757.9581</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.40.32</username>
|
|
<time>1709091757.9581</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="14a8b7a6-58fc-4a2a-96cc-ecba47115d7e">
|
|
<type>pass</type>
|
|
<interface>opt5</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<network>opt5</network>
|
|
</source>
|
|
<destination>
|
|
<address>Trading2</address>
|
|
<port>3389</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.40.32</username>
|
|
<time>1709091736.0747</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.40.32</username>
|
|
<time>1709091705.2488</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="b1f797e5-e2f3-46ba-8fbd-52d66bb14a77">
|
|
<type>pass</type>
|
|
<interface>opt5</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>connect to optiplex micro PC</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<network>opt5</network>
|
|
</source>
|
|
<destination>
|
|
<address>optiplex</address>
|
|
<port>3389</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1719296472.3604</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1719296472.3604</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="01924ea6-10c6-46d2-a395-72bea7a85646">
|
|
<type>pass</type>
|
|
<interface>opt5</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>allow wireguard phone access to adminpc remote desktop</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt5</network>
|
|
</source>
|
|
<destination>
|
|
<address>adminpc</address>
|
|
<port>3389</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.40.31</username>
|
|
<time>1710811099.2762</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.40.31</username>
|
|
<time>1710810990.7969</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="1e386bdb-2f17-49a6-89ef-59e7464d3de0">
|
|
<type>pass</type>
|
|
<interface>opt5</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt5</network>
|
|
</source>
|
|
<destination>
|
|
<address>TrueNAS</address>
|
|
<port>445</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1740463811.8869</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.30</username>
|
|
<time>1740463811.8869</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="aeb41a42-9def-4950-97ed-e236f8ea8da2">
|
|
<type>pass</type>
|
|
<interface>opt5</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<network>opt5</network>
|
|
</source>
|
|
<destination>
|
|
<address>kodi</address>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.40.31</username>
|
|
<time>1716788323.4712</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.40.31</username>
|
|
<time>1716788323.4713</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="ddf91477-de7c-485e-a323-3603b05484e8">
|
|
<type>pass</type>
|
|
<interface>opt5</interface>
|
|
<ipprotocol>inet46</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<network>opt5</network>
|
|
</source>
|
|
<destination>
|
|
<address>PrivateNet</address>
|
|
<not>1</not>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707481679.3684</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707481679.3685</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="0207389f-ac7a-4971-ac86-5e671fe8acdc">
|
|
<type>block</type>
|
|
<interface>opt6</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>block everything</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1709598005.8729</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1708743394.9286</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="01c41bb5-b0c5-4c19-b5de-651201f8788f">
|
|
<type>pass</type>
|
|
<interface>opt6</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow DNS to pihole</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt6</network>
|
|
</source>
|
|
<destination>
|
|
<address>PiHole</address>
|
|
<port>53</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707738256.5856</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707738256.5857</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="5ce269b3-334c-485c-9e8b-a97b3abe541c">
|
|
<type>block</type>
|
|
<interface>opt6</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Block other DNS</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt6</network>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
<port>53</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1762155741.10</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1762155741.10</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="50471840-09cb-4a19-8dca-a96149d0bed8">
|
|
<type>block</type>
|
|
<interface>opt6</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Block DoT requests</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<network>opt6</network>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
<port>853</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1762155955.82</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1762155955.82</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="34fbae85-cf92-4955-8f04-713957707957">
|
|
<type>block</type>
|
|
<interface>opt6</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>block poco f1</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<address>10.0.50.12</address>
|
|
</source>
|
|
<destination>
|
|
<any>1</any>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1712810938.4886</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.22</username>
|
|
<time>1712111897.313</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
<disabled>1</disabled>
|
|
</rule>
|
|
<rule uuid="06c48e11-f0b8-4d39-916b-84e99453743e">
|
|
<type>pass</type>
|
|
<interface>opt6</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<network>opt6</network>
|
|
</source>
|
|
<destination>
|
|
<address>minecraft</address>
|
|
<port>MinecraftPorts</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1760527455.10</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1760527455.10</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="f26d9aaf-e20b-4422-b5a3-d3ea16a306e8">
|
|
<type>pass</type>
|
|
<interface>opt6</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp</protocol>
|
|
<source>
|
|
<any>1</any>
|
|
</source>
|
|
<destination>
|
|
<address>jellyfin</address>
|
|
<port>8096</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1757727999.52</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1757727999.52</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="f7fb940a-184f-4085-8b56-c840572aacce">
|
|
<type>pass</type>
|
|
<interface>opt6</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow SMB to Archie's laptop</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>10.0.50.151</address>
|
|
</source>
|
|
<destination>
|
|
<address>TrueNAS</address>
|
|
<port>445</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1762819033.76</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1762818308.29</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="92aea04a-4b73-4fb8-a359-ebc71f45abe3">
|
|
<type>pass</type>
|
|
<interface>opt6</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow SMB to Archie's laptop</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<protocol>tcp/udp</protocol>
|
|
<source>
|
|
<address>TrueNAS</address>
|
|
</source>
|
|
<destination>
|
|
<address>10.0.50.151/32</address>
|
|
<port>139</port>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1762818713.01</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.20.24</username>
|
|
<time>1762818713.01</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
<rule uuid="c587e9c0-0368-4d7b-96d1-4273ee506a6d">
|
|
<type>pass</type>
|
|
<interface>opt6</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<statetype>keep state</statetype>
|
|
<descr>Allow only internet</descr>
|
|
<direction>in</direction>
|
|
<quick>1</quick>
|
|
<source>
|
|
<network>opt6</network>
|
|
</source>
|
|
<destination>
|
|
<address>PrivateNet</address>
|
|
<not>1</not>
|
|
</destination>
|
|
<updated>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707738315.6713</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</updated>
|
|
<created>
|
|
<username>root@10.0.1.131</username>
|
|
<time>1707738296.2775</time>
|
|
<description>/firewall_rules_edit.php made changes</description>
|
|
</created>
|
|
</rule>
|
|
</filter>
|
|
<rrd/>
|
|
<load_balancer>
|
|
<monitor_type>
|
|
<name>ICMP</name>
|
|
<type>icmp</type>
|
|
<descr>ICMP</descr>
|
|
<options/>
|
|
</monitor_type>
|
|
<monitor_type>
|
|
<name>TCP</name>
|
|
<type>tcp</type>
|
|
<descr>Generic TCP</descr>
|
|
<options/>
|
|
</monitor_type>
|
|
<monitor_type>
|
|
<name>HTTP</name>
|
|
<type>http</type>
|
|
<descr>Generic HTTP</descr>
|
|
<options>
|
|
<path>/</path>
|
|
<host/>
|
|
<code>200</code>
|
|
</options>
|
|
</monitor_type>
|
|
<monitor_type>
|
|
<name>HTTPS</name>
|
|
<type>https</type>
|
|
<descr>Generic HTTPS</descr>
|
|
<options>
|
|
<path>/</path>
|
|
<host/>
|
|
<code>200</code>
|
|
</options>
|
|
</monitor_type>
|
|
<monitor_type>
|
|
<name>SMTP</name>
|
|
<type>send</type>
|
|
<descr>Generic SMTP</descr>
|
|
<options>
|
|
<send/>
|
|
<expect>220 *</expect>
|
|
</options>
|
|
</monitor_type>
|
|
</load_balancer>
|
|
<ntpd>
|
|
<prefer>0.opnsense.pool.ntp.org</prefer>
|
|
</ntpd>
|
|
<widgets>
|
|
<sequence>system_information-container:00000000-col3:show,services_status-container:00000001-col4:show,gateways-container:00000002-col4:show,interface_list-container:00000003-col4:show</sequence>
|
|
<column_count>2</column_count>
|
|
</widgets>
|
|
<revision>
|
|
<username>root@10.0.20.24</username>
|
|
<description>/firewall_rules.php made changes</description>
|
|
<time>1770555888.11</time>
|
|
</revision>
|
|
<OPNsense>
|
|
<Firewall>
|
|
<Category version="1.0.0" persisted_at="1770555879.39" description="Firewall categories">
|
|
<categories/>
|
|
</Category>
|
|
<Alias version="1.0.1" persisted_at="1769703107.10" description="Firewall aliases">
|
|
<geoip>
|
|
<url/>
|
|
</geoip>
|
|
<aliases>
|
|
<alias uuid="3b9d82a3-efb6-4cf7-b6a3-0f65d8b52d09">
|
|
<enabled>1</enabled>
|
|
<name>PrivateNet</name>
|
|
<type>network</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.0.0/8
|
|
172.16.0.0/12
|
|
192.168.0.0/16</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description>All local networks</description>
|
|
</alias>
|
|
<alias uuid="567fbbee-5f10-4f8d-93e2-3226f5562934">
|
|
<enabled>1</enabled>
|
|
<name>OMV</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.1.11</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description>OMV Server</description>
|
|
</alias>
|
|
<alias uuid="2e31c1e9-7378-459d-947d-527a6e0e3b75">
|
|
<enabled>1</enabled>
|
|
<name>Proxmox_Dell</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.1.6</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description>Dell R630</description>
|
|
</alias>
|
|
<alias uuid="99f12716-eca9-4ddd-b108-b52933c20288">
|
|
<enabled>1</enabled>
|
|
<name>nginx</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.1.15</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description>nginx instance</description>
|
|
</alias>
|
|
<alias uuid="b6a2e9c5-98fb-4b0f-9686-e1ab3156fd83">
|
|
<enabled>1</enabled>
|
|
<name>Trading1</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.40.31</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description>VM for trading</description>
|
|
</alias>
|
|
<alias uuid="b05f4a11-b242-4eac-80d2-5446e6a81889">
|
|
<enabled>1</enabled>
|
|
<name>Trading2</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.40.32</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description>VM for trading</description>
|
|
</alias>
|
|
<alias uuid="caac6fa3-e4dd-4b88-98f5-d27254eaf2c7">
|
|
<enabled>1</enabled>
|
|
<name>terminal</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.20.101</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description>vm for shell access (debian)</description>
|
|
</alias>
|
|
<alias uuid="c5242bf3-3d90-49d8-a542-6138f945805e">
|
|
<enabled>1</enabled>
|
|
<name>minecraft</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.10.30</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description>minecraft velocity proxy</description>
|
|
</alias>
|
|
<alias uuid="2eb54136-bcd6-4faf-b542-9c2c3a4b6257">
|
|
<enabled>0</enabled>
|
|
<name>minecraft2</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.10.32</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description/>
|
|
</alias>
|
|
<alias uuid="3b57d195-a89e-4c2d-9c55-56b7fa2a8402">
|
|
<enabled>0</enabled>
|
|
<name>minecraft3</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.10.33</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description/>
|
|
</alias>
|
|
<alias uuid="328e9ec2-4947-450d-a2c9-f23137c42abc">
|
|
<enabled>0</enabled>
|
|
<name>minecraft4</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.10.34</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description/>
|
|
</alias>
|
|
<alias uuid="c3f47d02-474e-41bf-bc59-a7a24664a78a">
|
|
<enabled>1</enabled>
|
|
<name>PiHole</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.1.4</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description/>
|
|
</alias>
|
|
<alias uuid="2754d862-fa4a-4981-bb9a-346b72a41120">
|
|
<enabled>1</enabled>
|
|
<name>hass</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.30.11</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description/>
|
|
</alias>
|
|
<alias uuid="98fc47c2-b549-4bb1-a20e-f924e5c5b8f6">
|
|
<enabled>1</enabled>
|
|
<name>jellyfin</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.10.24</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description>jellyfin server</description>
|
|
</alias>
|
|
<alias uuid="a93ae192-e281-45ae-b445-702ebdc9bcb5">
|
|
<enabled>1</enabled>
|
|
<name>docker</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.10.13</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description/>
|
|
</alias>
|
|
<alias uuid="12d794c4-562e-49f1-be9f-031c6d1a89e5">
|
|
<enabled>1</enabled>
|
|
<name>laptop</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.20.22
|
|
10.0.20.24</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description/>
|
|
</alias>
|
|
<alias uuid="97ea91c6-bc82-4dff-bae7-5fb85eb28f07">
|
|
<enabled>1</enabled>
|
|
<name>dion_phone</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.20.23</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description/>
|
|
</alias>
|
|
<alias uuid="1b8f1d72-b619-4ee8-ac80-fe878b4726db">
|
|
<enabled>1</enabled>
|
|
<name>kodi</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.20.15</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description/>
|
|
</alias>
|
|
<alias uuid="a0133e50-7954-4fe5-b1d8-a535f9f85939">
|
|
<enabled>1</enabled>
|
|
<name>WebPorts</name>
|
|
<type>port</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>80
|
|
443</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description/>
|
|
</alias>
|
|
<alias uuid="203c9296-7403-4300-a686-ea3bf481f558">
|
|
<enabled>1</enabled>
|
|
<name>arrPorts</name>
|
|
<type>port</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>6969
|
|
7878
|
|
8686
|
|
8787
|
|
8989
|
|
8080
|
|
8081</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description>ports used by the *arr services</description>
|
|
</alias>
|
|
<alias uuid="6adb024a-c408-4bb3-bdfd-e511f98b75d2">
|
|
<enabled>1</enabled>
|
|
<name>delugePorts</name>
|
|
<type>port</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>8112
|
|
58846</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description/>
|
|
</alias>
|
|
<alias uuid="4da6c353-976d-4236-b1c4-8b5e09f656e9">
|
|
<enabled>1</enabled>
|
|
<name>adminpc</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.20.30</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description>Windows VM for admin</description>
|
|
</alias>
|
|
<alias uuid="976553a4-4d99-4100-aec1-eb4e19de9f17">
|
|
<enabled>1</enabled>
|
|
<name>optiplex</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.20.21</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description>Desktop Micro PC</description>
|
|
</alias>
|
|
<alias uuid="093516d6-d0a3-4b59-8b70-27ba3fbd73a0">
|
|
<enabled>1</enabled>
|
|
<name>XPS131</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.20.24</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description>Dell XPS 13 2-in-1 laptop</description>
|
|
</alias>
|
|
<alias uuid="d5b9fd5f-9f46-4609-830c-8aa3a51bf2c7">
|
|
<enabled>1</enabled>
|
|
<name>_3dprint</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.30.20</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description/>
|
|
</alias>
|
|
<alias uuid="2757c8d8-cb10-4507-b939-13ccb4741a3a">
|
|
<enabled>1</enabled>
|
|
<name>TrueNAS</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.10.12</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description/>
|
|
</alias>
|
|
<alias uuid="0b9a5025-ab8a-4e39-9744-0492d51001e1">
|
|
<enabled>1</enabled>
|
|
<name>MinecraftPorts</name>
|
|
<type>port</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>19132
|
|
25565</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description/>
|
|
</alias>
|
|
<alias uuid="ba54141b-b107-45aa-9498-0b27e64c7039">
|
|
<enabled>1</enabled>
|
|
<name>velocity</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.10.30</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description>minecraft proxy server (velocity)</description>
|
|
</alias>
|
|
<alias uuid="0ae14e1b-1094-4093-9038-70748b623865">
|
|
<enabled>1</enabled>
|
|
<name>Trading3</name>
|
|
<type>host</type>
|
|
<path_expression/>
|
|
<proto/>
|
|
<interface/>
|
|
<counters>0</counters>
|
|
<updatefreq/>
|
|
<content>10.0.40.33</content>
|
|
<password/>
|
|
<username/>
|
|
<authtype/>
|
|
<expire/>
|
|
<categories/>
|
|
<description>VM for trading</description>
|
|
</alias>
|
|
</aliases>
|
|
</Alias>
|
|
<Lvtemplate version="0.0.1">
|
|
<templates/>
|
|
</Lvtemplate>
|
|
<Filter version="1.0.4">
|
|
<rules/>
|
|
<snatrules/>
|
|
<npt/>
|
|
<onetoone/>
|
|
</Filter>
|
|
</Firewall>
|
|
<captiveportal version="1.0.4">
|
|
<zones/>
|
|
<templates/>
|
|
</captiveportal>
|
|
<IDS version="1.1.1" persisted_at="1768032568.41" description="Intrusion detection">
|
|
<rules/>
|
|
<policies/>
|
|
<userDefinedRules/>
|
|
<files/>
|
|
<fileTags/>
|
|
<general>
|
|
<enabled>0</enabled>
|
|
<ips>0</ips>
|
|
<promisc>0</promisc>
|
|
<interfaces>wan</interfaces>
|
|
<homenet>192.168.0.0/16,10.0.0.0/8,172.16.0.0/12</homenet>
|
|
<defaultPacketSize/>
|
|
<UpdateCron/>
|
|
<AlertLogrotate>W0D23</AlertLogrotate>
|
|
<AlertSaveLogs>4</AlertSaveLogs>
|
|
<MPMAlgo>ac</MPMAlgo>
|
|
<detect>
|
|
<Profile>medium</Profile>
|
|
<toclient_groups/>
|
|
<toserver_groups/>
|
|
</detect>
|
|
<syslog>0</syslog>
|
|
<syslog_eve>0</syslog_eve>
|
|
<LogPayload>0</LogPayload>
|
|
<verbosity/>
|
|
<eveLog>
|
|
<http>
|
|
<enable>0</enable>
|
|
<extended>0</extended>
|
|
<dumpAllHeaders/>
|
|
</http>
|
|
<tls>
|
|
<enable>0</enable>
|
|
<extended>0</extended>
|
|
<sessionResumption>0</sessionResumption>
|
|
<custom/>
|
|
</tls>
|
|
</eveLog>
|
|
</general>
|
|
</IDS>
|
|
<IPsec version="1.0.5" persisted_at="1759561793.94">
|
|
<general>
|
|
<enabled/>
|
|
<preferred_oldsa>0</preferred_oldsa>
|
|
<disablevpnrules>0</disablevpnrules>
|
|
<passthrough_networks/>
|
|
<user_source/>
|
|
<local_group/>
|
|
</general>
|
|
<charon>
|
|
<max_ikev1_exchanges/>
|
|
<threads>16</threads>
|
|
<ikesa_table_size>32</ikesa_table_size>
|
|
<ikesa_table_segments>4</ikesa_table_segments>
|
|
<init_limit_half_open>1000</init_limit_half_open>
|
|
<ignore_acquire_ts>1</ignore_acquire_ts>
|
|
<install_routes>0</install_routes>
|
|
<cisco_unity>0</cisco_unity>
|
|
<make_before_break>0</make_before_break>
|
|
<retransmit_tries/>
|
|
<retransmit_timeout/>
|
|
<retransmit_base/>
|
|
<retransmit_jitter/>
|
|
<retransmit_limit/>
|
|
<syslog>
|
|
<daemon>
|
|
<ike_name>1</ike_name>
|
|
<log_level>0</log_level>
|
|
<app>1</app>
|
|
<asn>1</asn>
|
|
<cfg>1</cfg>
|
|
<chd>1</chd>
|
|
<dmn>1</dmn>
|
|
<enc>1</enc>
|
|
<esp>1</esp>
|
|
<ike>1</ike>
|
|
<imc>1</imc>
|
|
<imv>1</imv>
|
|
<job>1</job>
|
|
<knl>1</knl>
|
|
<lib>1</lib>
|
|
<mgr>1</mgr>
|
|
<net>1</net>
|
|
<pts>1</pts>
|
|
<tls>1</tls>
|
|
<tnc>1</tnc>
|
|
</daemon>
|
|
</syslog>
|
|
<plugins>
|
|
<attr>
|
|
<subnet/>
|
|
<split-include/>
|
|
<x_28674/>
|
|
<x_28675/>
|
|
<x_28672/>
|
|
<x_28673>0</x_28673>
|
|
<x_28679/>
|
|
<dns/>
|
|
<nbns/>
|
|
</attr>
|
|
<eap-radius>
|
|
<servers/>
|
|
<accounting>0</accounting>
|
|
<class_group>0</class_group>
|
|
</eap-radius>
|
|
<xauth-pam>
|
|
<pam_service>ipsec</pam_service>
|
|
<session>0</session>
|
|
<trim_email>1</trim_email>
|
|
</xauth-pam>
|
|
</plugins>
|
|
</charon>
|
|
<keyPairs/>
|
|
<preSharedKeys/>
|
|
</IPsec>
|
|
<Interfaces>
|
|
<loopbacks version="1.0.0"/>
|
|
<vxlans version="1.0.2"/>
|
|
<neighbors version="1.0.0"/>
|
|
</Interfaces>
|
|
<proxy version="1.0.6">
|
|
<general>
|
|
<enabled>0</enabled>
|
|
<error_pages>opnsense</error_pages>
|
|
<icpPort/>
|
|
<logging>
|
|
<enable>
|
|
<accessLog>1</accessLog>
|
|
<storeLog>1</storeLog>
|
|
</enable>
|
|
<ignoreLogACL/>
|
|
<target/>
|
|
</logging>
|
|
<alternateDNSservers/>
|
|
<dnsV4First>0</dnsV4First>
|
|
<forwardedForHandling>on</forwardedForHandling>
|
|
<uriWhitespaceHandling>strip</uriWhitespaceHandling>
|
|
<enablePinger>1</enablePinger>
|
|
<useViaHeader>1</useViaHeader>
|
|
<suppressVersion>0</suppressVersion>
|
|
<connecttimeout/>
|
|
<VisibleEmail>admin@localhost.local</VisibleEmail>
|
|
<VisibleHostname/>
|
|
<cache>
|
|
<local>
|
|
<enabled>0</enabled>
|
|
<directory>/var/squid/cache</directory>
|
|
<cache_mem>256</cache_mem>
|
|
<maximum_object_size/>
|
|
<maximum_object_size_in_memory/>
|
|
<memory_cache_mode>always</memory_cache_mode>
|
|
<size>100</size>
|
|
<l1>16</l1>
|
|
<l2>256</l2>
|
|
<cache_linux_packages>0</cache_linux_packages>
|
|
<cache_windows_updates>0</cache_windows_updates>
|
|
</local>
|
|
</cache>
|
|
<traffic>
|
|
<enabled>0</enabled>
|
|
<maxDownloadSize>2048</maxDownloadSize>
|
|
<maxUploadSize>1024</maxUploadSize>
|
|
<OverallBandwidthTrotteling>1024</OverallBandwidthTrotteling>
|
|
<perHostTrotteling>256</perHostTrotteling>
|
|
</traffic>
|
|
<parentproxy>
|
|
<enabled>0</enabled>
|
|
<host/>
|
|
<enableauth>0</enableauth>
|
|
<user>username</user>
|
|
<password>password</password>
|
|
<port/>
|
|
<localdomains/>
|
|
<localips/>
|
|
</parentproxy>
|
|
</general>
|
|
<forward>
|
|
<interfaces>lan</interfaces>
|
|
<port>3128</port>
|
|
<sslbumpport>3129</sslbumpport>
|
|
<sslbump>0</sslbump>
|
|
<sslurlonly>0</sslurlonly>
|
|
<sslcertificate/>
|
|
<sslnobumpsites/>
|
|
<ssl_crtd_storage_max_size>4</ssl_crtd_storage_max_size>
|
|
<sslcrtd_children>5</sslcrtd_children>
|
|
<snmp_enable>0</snmp_enable>
|
|
<snmp_port>3401</snmp_port>
|
|
<snmp_password>public</snmp_password>
|
|
<ftpInterfaces/>
|
|
<ftpPort>2121</ftpPort>
|
|
<ftpTransparentMode>0</ftpTransparentMode>
|
|
<addACLforInterfaceSubnets>1</addACLforInterfaceSubnets>
|
|
<transparentMode>0</transparentMode>
|
|
<acl>
|
|
<allowedSubnets/>
|
|
<unrestricted/>
|
|
<bannedHosts/>
|
|
<whiteList/>
|
|
<blackList/>
|
|
<browser/>
|
|
<mimeType/>
|
|
<googleapps/>
|
|
<youtube/>
|
|
<safePorts>80:http,21:ftp,443:https,70:gopher,210:wais,1025-65535:unregistered ports,280:http-mgmt,488:gss-http,591:filemaker,777:multiling http</safePorts>
|
|
<sslPorts>443:https</sslPorts>
|
|
<remoteACLs>
|
|
<blacklists/>
|
|
<UpdateCron/>
|
|
</remoteACLs>
|
|
</acl>
|
|
<icap>
|
|
<enable>0</enable>
|
|
<RequestURL>icap://[::1]:1344/avscan</RequestURL>
|
|
<ResponseURL>icap://[::1]:1344/avscan</ResponseURL>
|
|
<SendClientIP>1</SendClientIP>
|
|
<SendUsername>0</SendUsername>
|
|
<EncodeUsername>0</EncodeUsername>
|
|
<UsernameHeader>X-Username</UsernameHeader>
|
|
<EnablePreview>1</EnablePreview>
|
|
<PreviewSize>1024</PreviewSize>
|
|
<OptionsTTL>60</OptionsTTL>
|
|
<exclude/>
|
|
</icap>
|
|
<authentication>
|
|
<method/>
|
|
<authEnforceGroup/>
|
|
<realm>OPNsense proxy authentication</realm>
|
|
<credentialsttl>2</credentialsttl>
|
|
<children>5</children>
|
|
</authentication>
|
|
</forward>
|
|
<pac/>
|
|
<error_pages>
|
|
<template/>
|
|
</error_pages>
|
|
</proxy>
|
|
<Syslog version="1.0.2">
|
|
<general>
|
|
<enabled>1</enabled>
|
|
<loglocal>1</loglocal>
|
|
<maxpreserve>10</maxpreserve>
|
|
<maxfilesize>100</maxfilesize>
|
|
</general>
|
|
<destinations/>
|
|
</Syslog>
|
|
<TrafficShaper version="1.0.3" persisted_at="1766116233.44">
|
|
<pipes>
|
|
<pipe uuid="fa5adc31-06ca-4df3-855a-d281352183b4">
|
|
<number>10000</number>
|
|
<enabled>1</enabled>
|
|
<bandwidth>30</bandwidth>
|
|
<bandwidthMetric>Mbit</bandwidthMetric>
|
|
<queue/>
|
|
<mask>dst-ip</mask>
|
|
<buckets/>
|
|
<scheduler/>
|
|
<codel_enable>0</codel_enable>
|
|
<codel_target/>
|
|
<codel_interval/>
|
|
<codel_ecn_enable>0</codel_ecn_enable>
|
|
<pie_enable>0</pie_enable>
|
|
<fqcodel_quantum/>
|
|
<fqcodel_limit/>
|
|
<fqcodel_flows/>
|
|
<origin>TrafficShaper</origin>
|
|
<delay/>
|
|
<description>PipeDown-30Mbps</description>
|
|
</pipe>
|
|
<pipe uuid="7aaacdbc-c96f-4d1f-99e4-e2c2bf40f6b3">
|
|
<number>10001</number>
|
|
<enabled>1</enabled>
|
|
<bandwidth>15</bandwidth>
|
|
<bandwidthMetric>Mbit</bandwidthMetric>
|
|
<queue/>
|
|
<mask>src-ip</mask>
|
|
<buckets/>
|
|
<scheduler/>
|
|
<codel_enable>0</codel_enable>
|
|
<codel_target/>
|
|
<codel_interval/>
|
|
<codel_ecn_enable>0</codel_ecn_enable>
|
|
<pie_enable>0</pie_enable>
|
|
<fqcodel_quantum/>
|
|
<fqcodel_limit/>
|
|
<fqcodel_flows/>
|
|
<origin>TrafficShaper</origin>
|
|
<delay/>
|
|
<description>PipeUp-15Mbps</description>
|
|
</pipe>
|
|
</pipes>
|
|
<queues/>
|
|
<rules>
|
|
<rule uuid="3b15690e-3299-40aa-aa83-8a7608a09644">
|
|
<enabled>1</enabled>
|
|
<sequence>1</sequence>
|
|
<interface>wan</interface>
|
|
<interface2/>
|
|
<proto>ip</proto>
|
|
<iplen/>
|
|
<source>any</source>
|
|
<source_not>0</source_not>
|
|
<src_port>any</src_port>
|
|
<destination>10.0.50.0/24</destination>
|
|
<destination_not>0</destination_not>
|
|
<dst_port>any</dst_port>
|
|
<dscp/>
|
|
<direction/>
|
|
<target>fa5adc31-06ca-4df3-855a-d281352183b4</target>
|
|
<description>ShapeDownload</description>
|
|
<origin>TrafficShaper</origin>
|
|
</rule>
|
|
<rule uuid="8545b183-b695-4cf4-8564-6b286b8d459c">
|
|
<enabled>1</enabled>
|
|
<sequence>2</sequence>
|
|
<interface>wan</interface>
|
|
<interface2/>
|
|
<proto>ip</proto>
|
|
<iplen/>
|
|
<source>10.0.50.0/24</source>
|
|
<source_not>0</source_not>
|
|
<src_port>any</src_port>
|
|
<destination>any</destination>
|
|
<destination_not>0</destination_not>
|
|
<dst_port>any</dst_port>
|
|
<dscp/>
|
|
<direction/>
|
|
<target>7aaacdbc-c96f-4d1f-99e4-e2c2bf40f6b3</target>
|
|
<description>ShapeUpload</description>
|
|
<origin>TrafficShaper</origin>
|
|
</rule>
|
|
</rules>
|
|
</TrafficShaper>
|
|
<unboundplus version="1.0.13" persisted_at="1768032571.73" description="Unbound configuration">
|
|
<general>
|
|
<enabled>1</enabled>
|
|
<port>53</port>
|
|
<stats/>
|
|
<active_interface/>
|
|
<dnssec>0</dnssec>
|
|
<dns64>0</dns64>
|
|
<dns64prefix/>
|
|
<noarecords>0</noarecords>
|
|
<regdhcp>1</regdhcp>
|
|
<regdhcpdomain>dss.mywire.org</regdhcpdomain>
|
|
<regdhcpstatic>1</regdhcpstatic>
|
|
<noreglladdr6>0</noreglladdr6>
|
|
<noregrecords>0</noregrecords>
|
|
<txtsupport>0</txtsupport>
|
|
<cacheflush>0</cacheflush>
|
|
<safesearch/>
|
|
<local_zone_type>transparent</local_zone_type>
|
|
<outgoing_interface/>
|
|
<enable_wpad>0</enable_wpad>
|
|
</general>
|
|
<advanced>
|
|
<hideidentity>0</hideidentity>
|
|
<hideversion>0</hideversion>
|
|
<prefetch>0</prefetch>
|
|
<prefetchkey>0</prefetchkey>
|
|
<dnssecstripped>0</dnssecstripped>
|
|
<aggressivensec>1</aggressivensec>
|
|
<serveexpired>0</serveexpired>
|
|
<serveexpiredreplyttl/>
|
|
<serveexpiredttl/>
|
|
<serveexpiredttlreset>0</serveexpiredttlreset>
|
|
<serveexpiredclienttimeout/>
|
|
<qnameminstrict>0</qnameminstrict>
|
|
<extendedstatistics>0</extendedstatistics>
|
|
<logqueries>0</logqueries>
|
|
<logreplies>0</logreplies>
|
|
<logtagqueryreply>0</logtagqueryreply>
|
|
<logservfail/>
|
|
<loglocalactions/>
|
|
<logverbosity>1</logverbosity>
|
|
<valloglevel>0</valloglevel>
|
|
<privatedomain/>
|
|
<privateaddress>0.0.0.0/8,10.0.0.0/8,100.64.0.0/10,169.254.0.0/16,172.16.0.0/12,192.0.2.0/24,192.168.0.0/16,198.18.0.0/15,198.51.100.0/24,203.0.113.0/24,233.252.0.0/24,::1/128,2001:db8::/32,fc00::/8,fd00::/8,fe80::/10</privateaddress>
|
|
<insecuredomain/>
|
|
<msgcachesize/>
|
|
<rrsetcachesize/>
|
|
<outgoingnumtcp/>
|
|
<incomingnumtcp/>
|
|
<numqueriesperthread/>
|
|
<outgoingrange/>
|
|
<jostletimeout/>
|
|
<discardtimeout/>
|
|
<cachemaxttl/>
|
|
<cachemaxnegativettl/>
|
|
<cacheminttl/>
|
|
<infrahostttl/>
|
|
<infrakeepprobing/>
|
|
<infracachenumhosts/>
|
|
<unwantedreplythreshold/>
|
|
</advanced>
|
|
<acls>
|
|
<default_action>allow</default_action>
|
|
<acl uuid="06e5b90a-aad8-4158-8dc6-ace9a196b122">
|
|
<enabled>1</enabled>
|
|
<name>VPN Traffic</name>
|
|
<action>allow</action>
|
|
<networks>10.0.8.0/24</networks>
|
|
<description/>
|
|
</acl>
|
|
</acls>
|
|
<dnsbl/>
|
|
<forwarding>
|
|
<enabled>0</enabled>
|
|
</forwarding>
|
|
<dots/>
|
|
<hosts/>
|
|
<aliases/>
|
|
</unboundplus>
|
|
<monit version="1.0.14" persisted_at="1759561794.59">
|
|
<general>
|
|
<enabled>0</enabled>
|
|
<interval>120</interval>
|
|
<startdelay>120</startdelay>
|
|
<mailserver>127.0.0.1</mailserver>
|
|
<port>25</port>
|
|
<username/>
|
|
<password/>
|
|
<ssl>0</ssl>
|
|
<sslversion>auto</sslversion>
|
|
<sslverify>1</sslverify>
|
|
<logfile>syslog facility log_daemon</logfile>
|
|
<statefile/>
|
|
<eventqueuePath/>
|
|
<eventqueueSlots/>
|
|
<httpdEnabled>0</httpdEnabled>
|
|
<httpdUsername>root</httpdUsername>
|
|
<httpdPassword>X1LCuz2XumSZYuyw2a03ThQZXdp6VmK</httpdPassword>
|
|
<httpdPort>2812</httpdPort>
|
|
<httpdAllow/>
|
|
<mmonitUrl/>
|
|
<mmonitTimeout>5</mmonitTimeout>
|
|
<mmonitRegisterCredentials>1</mmonitRegisterCredentials>
|
|
</general>
|
|
<alert uuid="1ef4ef8a-4a86-4131-bb72-583b611b0695">
|
|
<enabled>0</enabled>
|
|
<recipient>root@localhost.local</recipient>
|
|
<noton>0</noton>
|
|
<events/>
|
|
<format/>
|
|
<reminder>10</reminder>
|
|
<description/>
|
|
</alert>
|
|
<service uuid="bcacb248-5394-4bf9-964c-720b1039fdbc">
|
|
<enabled>1</enabled>
|
|
<name>$HOST</name>
|
|
<description/>
|
|
<type>system</type>
|
|
<pidfile/>
|
|
<match/>
|
|
<path/>
|
|
<timeout>300</timeout>
|
|
<starttimeout>30</starttimeout>
|
|
<address/>
|
|
<interface/>
|
|
<start/>
|
|
<stop/>
|
|
<tests>aef8bd79-3049-4a29-a09e-cc3902f89efe,ea1add8a-a8ff-4ee7-a4ad-b89ab2e940a1,d28ab101-663f-431e-a949-03511b5a3352,d6c3dd5a-e48f-4936-9d20-12a364043c73</tests>
|
|
<depends/>
|
|
<polltime/>
|
|
</service>
|
|
<service uuid="75f0ad56-29a3-46ec-98fa-fcfdc7144acd">
|
|
<enabled>1</enabled>
|
|
<name>RootFs</name>
|
|
<description/>
|
|
<type>filesystem</type>
|
|
<pidfile/>
|
|
<match/>
|
|
<path>/</path>
|
|
<timeout>300</timeout>
|
|
<starttimeout>30</starttimeout>
|
|
<address/>
|
|
<interface/>
|
|
<start/>
|
|
<stop/>
|
|
<tests>6a40b9a4-82cc-49f9-918e-dc8d4dd2fe5e</tests>
|
|
<depends/>
|
|
<polltime/>
|
|
</service>
|
|
<service uuid="0d0030fb-f855-4d8f-8bf2-c97fa933820a">
|
|
<enabled>0</enabled>
|
|
<name>carp_status_change</name>
|
|
<description/>
|
|
<type>custom</type>
|
|
<pidfile/>
|
|
<match/>
|
|
<path>/usr/local/opnsense/scripts/monit/carp_status.php</path>
|
|
<timeout>300</timeout>
|
|
<starttimeout>30</starttimeout>
|
|
<address/>
|
|
<interface/>
|
|
<start/>
|
|
<stop/>
|
|
<tests>79c074fb-3628-43b0-b220-1c6d1e98b59c</tests>
|
|
<depends/>
|
|
<polltime/>
|
|
</service>
|
|
<service uuid="77acaa55-8f0f-49b1-ab75-f2e5ddd032e0">
|
|
<enabled>0</enabled>
|
|
<name>gateway_alert</name>
|
|
<description/>
|
|
<type>custom</type>
|
|
<pidfile/>
|
|
<match/>
|
|
<path>/usr/local/opnsense/scripts/monit/gateway_alert.php</path>
|
|
<timeout>300</timeout>
|
|
<starttimeout>30</starttimeout>
|
|
<address/>
|
|
<interface/>
|
|
<start/>
|
|
<stop/>
|
|
<tests>bdfd739e-1a4d-43e1-aeaf-8ebce8a03c5c</tests>
|
|
<depends/>
|
|
<polltime/>
|
|
</service>
|
|
<test uuid="6d7a518c-b936-4fc5-9cea-afc061b286a0">
|
|
<name>Ping</name>
|
|
<type>NetworkPing</type>
|
|
<condition>failed ping</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
<test uuid="e47418c7-9435-485a-987a-1e23e1af82d0">
|
|
<name>NetworkLink</name>
|
|
<type>NetworkInterface</type>
|
|
<condition>failed link</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
<test uuid="fcc48a8f-a388-4461-982b-b92121bb12f0">
|
|
<name>NetworkSaturation</name>
|
|
<type>NetworkInterface</type>
|
|
<condition>saturation is greater than 75%</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
<test uuid="aef8bd79-3049-4a29-a09e-cc3902f89efe">
|
|
<name>MemoryUsage</name>
|
|
<type>SystemResource</type>
|
|
<condition>memory usage is greater than 75%</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
<test uuid="ea1add8a-a8ff-4ee7-a4ad-b89ab2e940a1">
|
|
<name>CPUUsage</name>
|
|
<type>SystemResource</type>
|
|
<condition>cpu usage is greater than 75%</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
<test uuid="d28ab101-663f-431e-a949-03511b5a3352">
|
|
<name>LoadAvg1</name>
|
|
<type>SystemResource</type>
|
|
<condition>loadavg (1min) is greater than 6</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
<test uuid="d6c3dd5a-e48f-4936-9d20-12a364043c73">
|
|
<name>LoadAvg5</name>
|
|
<type>SystemResource</type>
|
|
<condition>loadavg (5min) is greater than 4.5</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
<test uuid="022fd0a1-3ae0-4e3b-874b-0a74bc92d9aa">
|
|
<name>LoadAvg15</name>
|
|
<type>SystemResource</type>
|
|
<condition>loadavg (15min) is greater than 3</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
<test uuid="6a40b9a4-82cc-49f9-918e-dc8d4dd2fe5e">
|
|
<name>SpaceUsage</name>
|
|
<type>SpaceUsage</type>
|
|
<condition>space usage is greater than 75%</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
<test uuid="79c074fb-3628-43b0-b220-1c6d1e98b59c">
|
|
<name>ChangedStatus</name>
|
|
<type>ProgramStatus</type>
|
|
<condition>changed status</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
<test uuid="bdfd739e-1a4d-43e1-aeaf-8ebce8a03c5c">
|
|
<name>NonZeroStatus</name>
|
|
<type>ProgramStatus</type>
|
|
<condition>status != 0</condition>
|
|
<action>alert</action>
|
|
<path/>
|
|
</test>
|
|
</monit>
|
|
<OpenVPNExport version="0.0.1">
|
|
<servers>
|
|
<server uuid="be786708-4ea8-45d1-a2e6-94689322cc58">
|
|
<vpnid>1</vpnid>
|
|
<hostname>gondor2.dss.mywire.org</hostname>
|
|
<template>PlainOpenVPN</template>
|
|
<local_port>1194</local_port>
|
|
<random_local_port>1</random_local_port>
|
|
<validate_server_cn>1</validate_server_cn>
|
|
<cryptoapi>0</cryptoapi>
|
|
<auth_nocache>0</auth_nocache>
|
|
<plain_config/>
|
|
</server>
|
|
</servers>
|
|
</OpenVPNExport>
|
|
<Netflow version="1.0.1" persisted_at="1765351415.88">
|
|
<capture>
|
|
<interfaces>opt6,wan</interfaces>
|
|
<egress_only>wan</egress_only>
|
|
<version>v9</version>
|
|
<targets>127.0.0.1:2056</targets>
|
|
</capture>
|
|
<collect>
|
|
<enable>1</enable>
|
|
</collect>
|
|
<activeTimeout>1800</activeTimeout>
|
|
<inactiveTimeout>15</inactiveTimeout>
|
|
</Netflow>
|
|
<HAProxy version="3.1.0">
|
|
<general>
|
|
<enabled>0</enabled>
|
|
<gracefulStop>0</gracefulStop>
|
|
<seamlessReload>0</seamlessReload>
|
|
<storeOcsp>0</storeOcsp>
|
|
<showIntro>1</showIntro>
|
|
<peers>
|
|
<enabled>0</enabled>
|
|
<name1/>
|
|
<listen1/>
|
|
<port1>1024</port1>
|
|
<name2/>
|
|
<listen2/>
|
|
<port2>1024</port2>
|
|
</peers>
|
|
<tuning>
|
|
<root>0</root>
|
|
<maxConnections/>
|
|
<nbproc>1</nbproc>
|
|
<nbthread>1</nbthread>
|
|
<sslServerVerify>ignore</sslServerVerify>
|
|
<maxDHSize>2048</maxDHSize>
|
|
<bufferSize>16384</bufferSize>
|
|
<checkBufferSize>16384</checkBufferSize>
|
|
<spreadChecks>2</spreadChecks>
|
|
<bogusProxyEnabled>0</bogusProxyEnabled>
|
|
<luaMaxMem>0</luaMaxMem>
|
|
<customOptions/>
|
|
<ssl_defaultsEnabled>0</ssl_defaultsEnabled>
|
|
<ssl_bindOptions>prefer-client-ciphers</ssl_bindOptions>
|
|
<ssl_minVersion>TLSv1.2</ssl_minVersion>
|
|
<ssl_maxVersion/>
|
|
<ssl_cipherList>ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256</ssl_cipherList>
|
|
<ssl_cipherSuites>TLS_AES_128_GCM_SHA256:TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256</ssl_cipherSuites>
|
|
</tuning>
|
|
<defaults>
|
|
<maxConnections/>
|
|
<timeoutClient>30s</timeoutClient>
|
|
<timeoutConnect>30s</timeoutConnect>
|
|
<timeoutCheck/>
|
|
<timeoutServer>30s</timeoutServer>
|
|
<retries>3</retries>
|
|
<redispatch>x-1</redispatch>
|
|
<init_addr>last,libc</init_addr>
|
|
<customOptions/>
|
|
</defaults>
|
|
<logging>
|
|
<host>127.0.0.1</host>
|
|
<facility>local0</facility>
|
|
<level>info</level>
|
|
<length/>
|
|
</logging>
|
|
<stats>
|
|
<enabled>0</enabled>
|
|
<port>8822</port>
|
|
<remoteEnabled>0</remoteEnabled>
|
|
<remoteBind/>
|
|
<authEnabled>0</authEnabled>
|
|
<users/>
|
|
<allowedUsers/>
|
|
<allowedGroups/>
|
|
<customOptions/>
|
|
</stats>
|
|
<cache>
|
|
<enabled>0</enabled>
|
|
<totalMaxSize>4</totalMaxSize>
|
|
<maxAge>60</maxAge>
|
|
<maxObjectSize/>
|
|
</cache>
|
|
</general>
|
|
<frontends/>
|
|
<backends/>
|
|
<servers/>
|
|
<healthchecks/>
|
|
<acls/>
|
|
<actions/>
|
|
<luas/>
|
|
<errorfiles/>
|
|
<mapfiles/>
|
|
<groups/>
|
|
<users/>
|
|
<cpus/>
|
|
<resolvers/>
|
|
<mailers/>
|
|
<maintenance>
|
|
<cronjobs>
|
|
<syncCerts>0</syncCerts>
|
|
<syncCertsCron/>
|
|
<updateOcsp>0</updateOcsp>
|
|
<updateOcspCron/>
|
|
<reloadService>0</reloadService>
|
|
<reloadServiceCron/>
|
|
<restartService>0</restartService>
|
|
<restartServiceCron/>
|
|
</cronjobs>
|
|
</maintenance>
|
|
</HAProxy>
|
|
<cron version="1.0.4" persisted_at="1768032324.88">
|
|
<jobs>
|
|
<job uuid="2ac8573f-27b6-405e-99d8-5ac9422a3a4b">
|
|
<origin>Zenarmor</origin>
|
|
<enabled>1</enabled>
|
|
<minutes>*</minutes>
|
|
<hours>*</hours>
|
|
<days>*</days>
|
|
<months>*</months>
|
|
<weekdays>*</weekdays>
|
|
<who>root</who>
|
|
<command>zenarmor periodicals</command>
|
|
<parameters/>
|
|
<description>Zenarmor periodicals</description>
|
|
</job>
|
|
</jobs>
|
|
</cron>
|
|
<AcmeClient version="4.3.0" persisted_at="1755684060.74">
|
|
<settings>
|
|
<enabled>0</enabled>
|
|
<autoRenewal>0</autoRenewal>
|
|
<UpdateCron/>
|
|
<environment/>
|
|
<challengePort>43580</challengePort>
|
|
<TLSchallengePort>43581</TLSchallengePort>
|
|
<restartTimeout>600</restartTimeout>
|
|
<haproxyIntegration>0</haproxyIntegration>
|
|
<haproxyAclRef/>
|
|
<haproxyActionRef/>
|
|
<haproxyServerRef/>
|
|
<haproxyBackendRef/>
|
|
<logLevel>normal</logLevel>
|
|
<showIntro>1</showIntro>
|
|
</settings>
|
|
<accounts>
|
|
<account uuid="c98a5105-118e-4cd1-bb72-4cb55e6e31f2">
|
|
<id>60749160892162.61336632</id>
|
|
<enabled>1</enabled>
|
|
<name>Gondor2</name>
|
|
<description/>
|
|
<email>dionscarman@gmail.com</email>
|
|
<ca>letsencrypt_test</ca>
|
|
<custom_ca/>
|
|
<eab_kid/>
|
|
<eab_hmac/>
|
|
<key>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</key>
|
|
<statusCode>200</statusCode>
|
|
<statusLastUpdate>1618252788</statusLastUpdate>
|
|
</account>
|
|
</accounts>
|
|
<certificates>
|
|
<certificate uuid="1f60ae39-92f7-4f8c-bbf2-909ca559998e">
|
|
<id>607493d4e63660.15040073</id>
|
|
<enabled>1</enabled>
|
|
<name>gondor2.d1s.mywire.org</name>
|
|
<description/>
|
|
<altNames/>
|
|
<account>c98a5105-118e-4cd1-bb72-4cb55e6e31f2</account>
|
|
<validationMethod>f3b8ea57-92f8-4f3a-b83d-60821988f6ef</validationMethod>
|
|
<keyLength>key_4096</keyLength>
|
|
<ocsp>0</ocsp>
|
|
<restartActions/>
|
|
<autoRenewal>1</autoRenewal>
|
|
<renewInterval>60</renewInterval>
|
|
<aliasmode>none</aliasmode>
|
|
<domainalias/>
|
|
<challengealias/>
|
|
<certRefId/>
|
|
<lastUpdate/>
|
|
<statusCode>400</statusCode>
|
|
<statusLastUpdate>1643117421</statusLastUpdate>
|
|
</certificate>
|
|
</certificates>
|
|
<validations>
|
|
<validation uuid="318186d5-d0bb-4091-95e9-cd94fb43daca">
|
|
<id>6074921152a415.69020233</id>
|
|
<enabled>1</enabled>
|
|
<name>http_portfwd_on_wan</name>
|
|
<description/>
|
|
<method>dns01</method>
|
|
<http_service>opnsense</http_service>
|
|
<http_opn_autodiscovery>1</http_opn_autodiscovery>
|
|
<http_opn_interface>wan</http_opn_interface>
|
|
<http_opn_ipaddresses/>
|
|
<http_haproxyInject>1</http_haproxyInject>
|
|
<http_haproxyFrontends/>
|
|
<tlsalpn_service>acme</tlsalpn_service>
|
|
<tlsalpn_acme_autodiscovery>1</tlsalpn_acme_autodiscovery>
|
|
<tlsalpn_acme_interface>wan</tlsalpn_acme_interface>
|
|
<tlsalpn_acme_ipaddresses/>
|
|
<dns_service>dns_nsupdate</dns_service>
|
|
<dns_sleep>120</dns_sleep>
|
|
<dns_active24_token/>
|
|
<dns_ad_key/>
|
|
<dns_ali_key/>
|
|
<dns_ali_secret/>
|
|
<dns_autodns_user/>
|
|
<dns_autodns_password/>
|
|
<dns_autodns_context/>
|
|
<dns_aws_id/>
|
|
<dns_aws_secret/>
|
|
<dns_azuredns_subscriptionid/>
|
|
<dns_azuredns_tenantid/>
|
|
<dns_azuredns_appid/>
|
|
<dns_azuredns_clientsecret/>
|
|
<dns_bunny_api_key/>
|
|
<dns_cf_email/>
|
|
<dns_cf_key/>
|
|
<dns_cf_token/>
|
|
<dns_cf_account_id/>
|
|
<dns_cf_zone_id/>
|
|
<dns_cloudns_auth_id/>
|
|
<dns_cloudns_sub_auth_id/>
|
|
<dns_cloudns_auth_password/>
|
|
<dns_cx_key/>
|
|
<dns_cx_secret/>
|
|
<dns_cyon_user/>
|
|
<dns_cyon_password/>
|
|
<dns_da_key/>
|
|
<dns_da_insecure>1</dns_da_insecure>
|
|
<dns_ddnss_token/>
|
|
<dns_dgon_key/>
|
|
<dns_dnsexit_auth_user/>
|
|
<dns_dnsexit_auth_pass/>
|
|
<dns_dnsexit_api/>
|
|
<dns_dnshome_password/>
|
|
<dns_dnshome_subdomain/>
|
|
<dns_dnsimple_token/>
|
|
<dns_dnsservices_user/>
|
|
<dns_dnsservices_password/>
|
|
<dns_doapi_token/>
|
|
<dns_do_pid/>
|
|
<dns_do_password/>
|
|
<dns_domeneshop_token/>
|
|
<dns_domeneshop_secret/>
|
|
<dns_dp_id/>
|
|
<dns_dp_key/>
|
|
<dns_dh_key/>
|
|
<dns_duckdns_token/>
|
|
<dns_dyn_customer/>
|
|
<dns_dyn_user/>
|
|
<dns_dyn_password/>
|
|
<dns_dynu_clientid/>
|
|
<dns_dynu_secret/>
|
|
<dns_freedns_user/>
|
|
<dns_freedns_password/>
|
|
<dns_fornex_api_key/>
|
|
<dns_gandi_livedns_key/>
|
|
<dns_gandi_livedns_token/>
|
|
<dns_gcloud_key/>
|
|
<dns_googledomains_access_token/>
|
|
<dns_googledomains_zone/>
|
|
<dns_gd_key/>
|
|
<dns_gd_secret/>
|
|
<dns_hostingde_server/>
|
|
<dns_hostingde_apiKey/>
|
|
<dns_he_user/>
|
|
<dns_he_password/>
|
|
<dns_infoblox_credentials/>
|
|
<dns_infoblox_server/>
|
|
<dns_inwx_user/>
|
|
<dns_inws_password/>
|
|
<dns_inwx_password/>
|
|
<dns_inwx_shared_secret/>
|
|
<dns_ionos_prefix/>
|
|
<dns_ionos_secret/>
|
|
<dns_ipv64_token/>
|
|
<dns_ispconfig_user/>
|
|
<dns_ispconfig_password/>
|
|
<dns_ispconfig_api/>
|
|
<dns_ispconfig_insecure>1</dns_ispconfig_insecure>
|
|
<dns_jd_id/>
|
|
<dns_jd_region/>
|
|
<dns_jd_secret/>
|
|
<dns_joker_username/>
|
|
<dns_joker_password/>
|
|
<dns_kinghost_username/>
|
|
<dns_kinghost_password/>
|
|
<dns_knot_server/>
|
|
<dns_knot_key/>
|
|
<dns_lexicon_provider>cloudflare</dns_lexicon_provider>
|
|
<dns_lexicon_user/>
|
|
<dns_lexicon_token/>
|
|
<dns_limacity_apikey/>
|
|
<dns_linode_key/>
|
|
<dns_linode_v4_key/>
|
|
<dns_loopia_api>https://api.loopia.se/RPCSERV</dns_loopia_api>
|
|
<dns_loopia_user/>
|
|
<dns_loopia_password/>
|
|
<dns_lua_email/>
|
|
<dns_lua_key/>
|
|
<dns_miab_user/>
|
|
<dns_miab_password/>
|
|
<dns_miab_server/>
|
|
<dns_me_key/>
|
|
<dns_me_secret/>
|
|
<dns_mydnsjp_masterid/>
|
|
<dns_mydnsjp_password/>
|
|
<dns_mythic_beasts_key/>
|
|
<dns_mythic_beasts_secret/>
|
|
<dns_namecheap_user/>
|
|
<dns_namecheap_api/>
|
|
<dns_namecheap_sourceip/>
|
|
<dns_namecom_user/>
|
|
<dns_namecom_token/>
|
|
<dns_namesilo_key/>
|
|
<dns_nederhost_key/>
|
|
<dns_netcup_cid/>
|
|
<dns_netcup_key/>
|
|
<dns_netcup_pw/>
|
|
<dns_njalla_token/>
|
|
<dns_nsone_key/>
|
|
<dns_nsupdate_server/>
|
|
<dns_nsupdate_zone/>
|
|
<dns_nsupdate_key/>
|
|
<dns_oci_cli_user/>
|
|
<dns_oci_cli_tenancy/>
|
|
<dns_oci_cli_region/>
|
|
<dns_oci_cli_key/>
|
|
<dns_online_key/>
|
|
<dns_opnsense_host>localhost</dns_opnsense_host>
|
|
<dns_opnsense_port>443</dns_opnsense_port>
|
|
<dns_opnsense_key/>
|
|
<dns_opnsense_token/>
|
|
<dns_opnsense_insecure>0</dns_opnsense_insecure>
|
|
<dns_ovh_app_key/>
|
|
<dns_ovh_app_secret/>
|
|
<dns_ovh_consumer_key/>
|
|
<dns_ovh_endpoint/>
|
|
<dns_pleskxml_user/>
|
|
<dns_pleskxml_pass/>
|
|
<dns_pleskxml_uri/>
|
|
<dns_pdns_url/>
|
|
<dns_pdns_serverid/>
|
|
<dns_pdns_token/>
|
|
<dns_porkbun_key/>
|
|
<dns_porkbun_secret/>
|
|
<dns_sl_key/>
|
|
<dns_selfhost_user/>
|
|
<dns_selfhost_password/>
|
|
<dns_selfhost_map/>
|
|
<dns_servercow_username/>
|
|
<dns_servercow_password/>
|
|
<dns_simply_api_key/>
|
|
<dns_simply_account_name/>
|
|
<dns_transip_username/>
|
|
<dns_transip_key/>
|
|
<dns_udr_user/>
|
|
<dns_udr_password/>
|
|
<dns_uno_key/>
|
|
<dns_uno_user/>
|
|
<dns_vscale_key/>
|
|
<dns_vultr_key/>
|
|
<dns_yandex_token/>
|
|
<dns_zilore_key/>
|
|
<dns_zm_key/>
|
|
<dns_gdnsdk_user/>
|
|
<dns_gdnsdk_password/>
|
|
<dns_acmedns_user/>
|
|
<dns_acmedns_password/>
|
|
<dns_acmedns_subdomain/>
|
|
<dns_acmedns_updateurl/>
|
|
<dns_acmedns_baseurl/>
|
|
<dns_acmeproxy_endpoint/>
|
|
<dns_acmeproxy_username/>
|
|
<dns_acmeproxy_password/>
|
|
<dns_variomedia_key/>
|
|
<dns_schlundtech_user/>
|
|
<dns_schlundtech_password/>
|
|
<dns_easydns_apitoken/>
|
|
<dns_easydns_apikey/>
|
|
<dns_euserv_user/>
|
|
<dns_euserv_password/>
|
|
<dns_leaseweb_key/>
|
|
<dns_cn_user/>
|
|
<dns_cn_password/>
|
|
<dns_arvan_token/>
|
|
<dns_artfiles_username/>
|
|
<dns_artfiles_password/>
|
|
<dns_hetzner_token/>
|
|
<dns_hexonet_login/>
|
|
<dns_hexonet_password/>
|
|
<dns_1984hosting_user/>
|
|
<dns_1984hosting_password/>
|
|
<dns_kas_login/>
|
|
<dns_kas_authdata/>
|
|
<dns_kas_authtype>sha1</dns_kas_authtype>
|
|
<dns_desec_token/>
|
|
<dns_desec_name/>
|
|
<dns_infomaniak_token/>
|
|
<dns_zone_username/>
|
|
<dns_zone_key/>
|
|
<dns_dynv6_token/>
|
|
<dns_cpanel_user/>
|
|
<dns_cpanel_token/>
|
|
<dns_cpanel_hostname/>
|
|
<dns_regru_username/>
|
|
<dns_regru_password/>
|
|
<dns_nic_username/>
|
|
<dns_nic_password/>
|
|
<dns_nic_client/>
|
|
<dns_nic_secret/>
|
|
<dns_websupport_api_key/>
|
|
<dns_websupport_api_secret/>
|
|
<dns_world4you_username/>
|
|
<dns_world4you_password/>
|
|
<dns_aurora_key/>
|
|
<dns_aurora_secret/>
|
|
<dns_conoha_user/>
|
|
<dns_conoha_password/>
|
|
<dns_conoha_tenantid/>
|
|
<dns_conoha_idapi>https://identity.xxxx.conoha.io/v2.0</dns_conoha_idapi>
|
|
<dns_constellix_key/>
|
|
<dns_constellix_secret/>
|
|
<dns_exoscale_key/>
|
|
<dns_exoscale_secret/>
|
|
<dns_internetbs_key/>
|
|
<dns_internetbs_password/>
|
|
<dns_pointhq_key/>
|
|
<dns_pointhq_email/>
|
|
<dns_rackspace_user/>
|
|
<dns_rackspace_key/>
|
|
<dns_rage4_token/>
|
|
<dns_rage4_user/>
|
|
<dns_scaleway_token/>
|
|
</validation>
|
|
<validation uuid="f3b8ea57-92f8-4f3a-b83d-60821988f6ef">
|
|
<id>60749378bb3d08.12067917</id>
|
|
<enabled>1</enabled>
|
|
<name>nsupdate_internal</name>
|
|
<description/>
|
|
<method>dns01</method>
|
|
<http_service>opnsense</http_service>
|
|
<http_opn_autodiscovery>1</http_opn_autodiscovery>
|
|
<http_opn_interface>wan</http_opn_interface>
|
|
<http_opn_ipaddresses/>
|
|
<http_haproxyInject>1</http_haproxyInject>
|
|
<http_haproxyFrontends/>
|
|
<tlsalpn_service>acme</tlsalpn_service>
|
|
<tlsalpn_acme_autodiscovery>1</tlsalpn_acme_autodiscovery>
|
|
<tlsalpn_acme_interface>wan</tlsalpn_acme_interface>
|
|
<tlsalpn_acme_ipaddresses/>
|
|
<dns_service>dns_nsupdate</dns_service>
|
|
<dns_sleep>120</dns_sleep>
|
|
<dns_active24_token/>
|
|
<dns_ad_key/>
|
|
<dns_ali_key/>
|
|
<dns_ali_secret/>
|
|
<dns_autodns_user/>
|
|
<dns_autodns_password/>
|
|
<dns_autodns_context/>
|
|
<dns_aws_id/>
|
|
<dns_aws_secret/>
|
|
<dns_azuredns_subscriptionid/>
|
|
<dns_azuredns_tenantid/>
|
|
<dns_azuredns_appid/>
|
|
<dns_azuredns_clientsecret/>
|
|
<dns_bunny_api_key/>
|
|
<dns_cf_email/>
|
|
<dns_cf_key/>
|
|
<dns_cf_token/>
|
|
<dns_cf_account_id/>
|
|
<dns_cf_zone_id/>
|
|
<dns_cloudns_auth_id/>
|
|
<dns_cloudns_sub_auth_id/>
|
|
<dns_cloudns_auth_password/>
|
|
<dns_cx_key/>
|
|
<dns_cx_secret/>
|
|
<dns_cyon_user/>
|
|
<dns_cyon_password/>
|
|
<dns_da_key/>
|
|
<dns_da_insecure>1</dns_da_insecure>
|
|
<dns_ddnss_token/>
|
|
<dns_dgon_key/>
|
|
<dns_dnsexit_auth_user/>
|
|
<dns_dnsexit_auth_pass/>
|
|
<dns_dnsexit_api/>
|
|
<dns_dnshome_password/>
|
|
<dns_dnshome_subdomain/>
|
|
<dns_dnsimple_token/>
|
|
<dns_dnsservices_user/>
|
|
<dns_dnsservices_password/>
|
|
<dns_doapi_token/>
|
|
<dns_do_pid/>
|
|
<dns_do_password/>
|
|
<dns_domeneshop_token/>
|
|
<dns_domeneshop_secret/>
|
|
<dns_dp_id/>
|
|
<dns_dp_key/>
|
|
<dns_dh_key/>
|
|
<dns_duckdns_token/>
|
|
<dns_dyn_customer/>
|
|
<dns_dyn_user/>
|
|
<dns_dyn_password/>
|
|
<dns_dynu_clientid/>
|
|
<dns_dynu_secret/>
|
|
<dns_freedns_user/>
|
|
<dns_freedns_password/>
|
|
<dns_fornex_api_key/>
|
|
<dns_gandi_livedns_key/>
|
|
<dns_gandi_livedns_token/>
|
|
<dns_gcloud_key/>
|
|
<dns_googledomains_access_token/>
|
|
<dns_googledomains_zone/>
|
|
<dns_gd_key/>
|
|
<dns_gd_secret/>
|
|
<dns_hostingde_server/>
|
|
<dns_hostingde_apiKey/>
|
|
<dns_he_user/>
|
|
<dns_he_password/>
|
|
<dns_infoblox_credentials/>
|
|
<dns_infoblox_server/>
|
|
<dns_inwx_user/>
|
|
<dns_inws_password/>
|
|
<dns_inwx_password/>
|
|
<dns_inwx_shared_secret/>
|
|
<dns_ionos_prefix/>
|
|
<dns_ionos_secret/>
|
|
<dns_ipv64_token/>
|
|
<dns_ispconfig_user/>
|
|
<dns_ispconfig_password/>
|
|
<dns_ispconfig_api/>
|
|
<dns_ispconfig_insecure>1</dns_ispconfig_insecure>
|
|
<dns_jd_id/>
|
|
<dns_jd_region/>
|
|
<dns_jd_secret/>
|
|
<dns_joker_username/>
|
|
<dns_joker_password/>
|
|
<dns_kinghost_username/>
|
|
<dns_kinghost_password/>
|
|
<dns_knot_server/>
|
|
<dns_knot_key/>
|
|
<dns_lexicon_provider>cloudflare</dns_lexicon_provider>
|
|
<dns_lexicon_user/>
|
|
<dns_lexicon_token/>
|
|
<dns_limacity_apikey/>
|
|
<dns_linode_key/>
|
|
<dns_linode_v4_key/>
|
|
<dns_loopia_api>https://api.loopia.se/RPCSERV</dns_loopia_api>
|
|
<dns_loopia_user/>
|
|
<dns_loopia_password/>
|
|
<dns_lua_email/>
|
|
<dns_lua_key/>
|
|
<dns_miab_user/>
|
|
<dns_miab_password/>
|
|
<dns_miab_server/>
|
|
<dns_me_key/>
|
|
<dns_me_secret/>
|
|
<dns_mydnsjp_masterid/>
|
|
<dns_mydnsjp_password/>
|
|
<dns_mythic_beasts_key/>
|
|
<dns_mythic_beasts_secret/>
|
|
<dns_namecheap_user/>
|
|
<dns_namecheap_api/>
|
|
<dns_namecheap_sourceip/>
|
|
<dns_namecom_user/>
|
|
<dns_namecom_token/>
|
|
<dns_namesilo_key/>
|
|
<dns_nederhost_key/>
|
|
<dns_netcup_cid/>
|
|
<dns_netcup_key/>
|
|
<dns_netcup_pw/>
|
|
<dns_njalla_token/>
|
|
<dns_nsone_key/>
|
|
<dns_nsupdate_server>gondor2.d1s.mywire.org</dns_nsupdate_server>
|
|
<dns_nsupdate_zone>d1s.mywire.org</dns_nsupdate_zone>
|
|
<dns_nsupdate_key>key "rndc-key" {
|
|
algorithm hmac-md5;
|
|
secret "540682128f302207ad6d1f34f9f0bda1";
|
|
};</dns_nsupdate_key>
|
|
<dns_oci_cli_user/>
|
|
<dns_oci_cli_tenancy/>
|
|
<dns_oci_cli_region/>
|
|
<dns_oci_cli_key/>
|
|
<dns_online_key/>
|
|
<dns_opnsense_host>localhost</dns_opnsense_host>
|
|
<dns_opnsense_port>443</dns_opnsense_port>
|
|
<dns_opnsense_key/>
|
|
<dns_opnsense_token/>
|
|
<dns_opnsense_insecure>0</dns_opnsense_insecure>
|
|
<dns_ovh_app_key/>
|
|
<dns_ovh_app_secret/>
|
|
<dns_ovh_consumer_key/>
|
|
<dns_ovh_endpoint/>
|
|
<dns_pleskxml_user/>
|
|
<dns_pleskxml_pass/>
|
|
<dns_pleskxml_uri/>
|
|
<dns_pdns_url/>
|
|
<dns_pdns_serverid/>
|
|
<dns_pdns_token/>
|
|
<dns_porkbun_key/>
|
|
<dns_porkbun_secret/>
|
|
<dns_sl_key/>
|
|
<dns_selfhost_user/>
|
|
<dns_selfhost_password/>
|
|
<dns_selfhost_map/>
|
|
<dns_servercow_username/>
|
|
<dns_servercow_password/>
|
|
<dns_simply_api_key/>
|
|
<dns_simply_account_name/>
|
|
<dns_transip_username/>
|
|
<dns_transip_key/>
|
|
<dns_udr_user/>
|
|
<dns_udr_password/>
|
|
<dns_uno_key/>
|
|
<dns_uno_user/>
|
|
<dns_vscale_key/>
|
|
<dns_vultr_key/>
|
|
<dns_yandex_token/>
|
|
<dns_zilore_key/>
|
|
<dns_zm_key/>
|
|
<dns_gdnsdk_user/>
|
|
<dns_gdnsdk_password/>
|
|
<dns_acmedns_user/>
|
|
<dns_acmedns_password/>
|
|
<dns_acmedns_subdomain/>
|
|
<dns_acmedns_updateurl/>
|
|
<dns_acmedns_baseurl/>
|
|
<dns_acmeproxy_endpoint/>
|
|
<dns_acmeproxy_username/>
|
|
<dns_acmeproxy_password/>
|
|
<dns_variomedia_key/>
|
|
<dns_schlundtech_user/>
|
|
<dns_schlundtech_password/>
|
|
<dns_easydns_apitoken/>
|
|
<dns_easydns_apikey/>
|
|
<dns_euserv_user/>
|
|
<dns_euserv_password/>
|
|
<dns_leaseweb_key/>
|
|
<dns_cn_user/>
|
|
<dns_cn_password/>
|
|
<dns_arvan_token/>
|
|
<dns_artfiles_username/>
|
|
<dns_artfiles_password/>
|
|
<dns_hetzner_token/>
|
|
<dns_hexonet_login/>
|
|
<dns_hexonet_password/>
|
|
<dns_1984hosting_user/>
|
|
<dns_1984hosting_password/>
|
|
<dns_kas_login/>
|
|
<dns_kas_authdata/>
|
|
<dns_kas_authtype>sha1</dns_kas_authtype>
|
|
<dns_desec_token/>
|
|
<dns_desec_name/>
|
|
<dns_infomaniak_token/>
|
|
<dns_zone_username/>
|
|
<dns_zone_key/>
|
|
<dns_dynv6_token/>
|
|
<dns_cpanel_user/>
|
|
<dns_cpanel_token/>
|
|
<dns_cpanel_hostname/>
|
|
<dns_regru_username/>
|
|
<dns_regru_password/>
|
|
<dns_nic_username/>
|
|
<dns_nic_password/>
|
|
<dns_nic_client/>
|
|
<dns_nic_secret/>
|
|
<dns_websupport_api_key/>
|
|
<dns_websupport_api_secret/>
|
|
<dns_world4you_username/>
|
|
<dns_world4you_password/>
|
|
<dns_aurora_key/>
|
|
<dns_aurora_secret/>
|
|
<dns_conoha_user/>
|
|
<dns_conoha_password/>
|
|
<dns_conoha_tenantid/>
|
|
<dns_conoha_idapi>https://identity.xxxx.conoha.io/v2.0</dns_conoha_idapi>
|
|
<dns_constellix_key/>
|
|
<dns_constellix_secret/>
|
|
<dns_exoscale_key/>
|
|
<dns_exoscale_secret/>
|
|
<dns_internetbs_key/>
|
|
<dns_internetbs_password/>
|
|
<dns_pointhq_key/>
|
|
<dns_pointhq_email/>
|
|
<dns_rackspace_user/>
|
|
<dns_rackspace_key/>
|
|
<dns_rage4_token/>
|
|
<dns_rage4_user/>
|
|
<dns_scaleway_token/>
|
|
</validation>
|
|
</validations>
|
|
<actions/>
|
|
</AcmeClient>
|
|
<Nginx version="1.35.1" persisted_at="1759561807.18">
|
|
<general>
|
|
<enabled>0</enabled>
|
|
<ban_ttl>4320</ban_ttl>
|
|
</general>
|
|
<webgui>
|
|
<limitnetworks>0</limitnetworks>
|
|
</webgui>
|
|
<http>
|
|
<workerprocesses>1</workerprocesses>
|
|
<workerconnections>1024</workerconnections>
|
|
<sendfile>0</sendfile>
|
|
<keepalive_timeout>60</keepalive_timeout>
|
|
<reset_timedout>0</reset_timedout>
|
|
<default_type/>
|
|
<server_names_hash_bucket_size/>
|
|
<server_names_hash_max_size/>
|
|
<variables_hash_max_size/>
|
|
<variables_hash_bucket_size/>
|
|
<ban_response>403</ban_response>
|
|
<log_perm_ban>0</log_perm_ban>
|
|
<bots_ua>Python-urllib,Nmap,python-requests,libwww-perl,MJ12bot,Jorgee,fasthttp,libwww,Telesphoreo,A6-Indexer,ltx71,okhttp,ZmEu,sqlmap,LMAO/2.0,l9explore,l9tcpid,Masscan,zgrab,Ronin/2.0,Hakai/2.0,Indy\sLibrary,^Mozilla/[\d\.]+$,Morfeus\sFucking\sScanner,MSIE\s[0-6]\.\d+</bots_ua>
|
|
<headers_more_enable/>
|
|
</http>
|
|
</Nginx>
|
|
<DynDNS version="1.5.1">
|
|
<general>
|
|
<enabled>1</enabled>
|
|
<verbose>0</verbose>
|
|
<allowipv6>0</allowipv6>
|
|
<daemon_delay>300</daemon_delay>
|
|
<backend>ddclient</backend>
|
|
</general>
|
|
<accounts>
|
|
<account uuid="1fd86a1c-7f06-402a-8968-6a1d0f638990">
|
|
<enabled>1</enabled>
|
|
<service>dynu</service>
|
|
<protocol/>
|
|
<server/>
|
|
<username>truman11</username>
|
|
<password>DjSlS8752!</password>
|
|
<resourceId/>
|
|
<hostnames>dss.mywire.org</hostnames>
|
|
<wildcard>0</wildcard>
|
|
<zone/>
|
|
<checkip>if</checkip>
|
|
<checkip_timeout>10</checkip_timeout>
|
|
<force_ssl>1</force_ssl>
|
|
<ttl>300</ttl>
|
|
<interface>wan</interface>
|
|
<description>Dynu</description>
|
|
</account>
|
|
</accounts>
|
|
</DynDNS>
|
|
<Swanctl version="1.0.0">
|
|
<Connections/>
|
|
<locals/>
|
|
<remotes/>
|
|
<children/>
|
|
<Pools/>
|
|
<VTIs/>
|
|
<SPDs/>
|
|
</Swanctl>
|
|
<OpenVPN version="1.0.1">
|
|
<Overwrites/>
|
|
<Instances/>
|
|
<StaticKeys/>
|
|
</OpenVPN>
|
|
<Gateways version="1.0.0">
|
|
<gateway_item uuid="9e256f27-3bf7-4f92-9e42-6868d89f0c3a">
|
|
<disabled>0</disabled>
|
|
<name>4G_gateway</name>
|
|
<descr/>
|
|
<interface>opt7</interface>
|
|
<ipprotocol>inet</ipprotocol>
|
|
<gateway>192.168.1.1</gateway>
|
|
<defaultgw>0</defaultgw>
|
|
<fargw>0</fargw>
|
|
<monitor_disable>0</monitor_disable>
|
|
<monitor_noroute>0</monitor_noroute>
|
|
<monitor>8.8.4.4</monitor>
|
|
<force_down>0</force_down>
|
|
<priority>255</priority>
|
|
<weight>1</weight>
|
|
<latencylow/>
|
|
<latencyhigh/>
|
|
<losslow/>
|
|
<losshigh/>
|
|
<interval/>
|
|
<time_period/>
|
|
<loss_interval/>
|
|
<data_length/>
|
|
</gateway_item>
|
|
</Gateways>
|
|
<wireguard>
|
|
<server version="1.0.1" persisted_at="1770077279.49" description="WireGuard instance configuration">
|
|
<servers>
|
|
<server uuid="8e2b4ef0-f38c-4c56-be46-c4240551f0ef">
|
|
<enabled>1</enabled>
|
|
<name>WireGuardVPN</name>
|
|
<instance>0</instance>
|
|
<pubkey>8k++HneXqiLm6hIjgY1cuv9MSm2Uv+xGSNHW6Otc1CU=</pubkey>
|
|
<privkey>yK8oCWrXxdyntZQLn45847qbGwTlybXufSbVqDXaoFI=</privkey>
|
|
<port>51820</port>
|
|
<mtu/>
|
|
<dns>10.0.1.4</dns>
|
|
<tunneladdress>10.0.8.1</tunneladdress>
|
|
<disableroutes>0</disableroutes>
|
|
<gateway/>
|
|
<carp_depend_on/>
|
|
<peers>d13df78b-0ca7-48ea-8bea-18d0dd30da2b,9a75fa70-916f-4e33-937d-f2c9b2be79f2,9e2b8390-3664-41e6-9bd2-a78ab1d7e2bc,0343e323-9c14-45cb-ad07-714d401563db</peers>
|
|
<debug>0</debug>
|
|
<endpoint>wireguard.dss.mywire.org:51820</endpoint>
|
|
<peer_dns>10.0.8.1</peer_dns>
|
|
</server>
|
|
</servers>
|
|
</server>
|
|
<general version="0.0.1" persisted_at="1770077282.64" description="WireGuard configuration">
|
|
<enabled>1</enabled>
|
|
</general>
|
|
<client version="1.0.0" persisted_at="1770077279.52" description="WireGuard peer configuration">
|
|
<clients>
|
|
<client uuid="d13df78b-0ca7-48ea-8bea-18d0dd30da2b">
|
|
<enabled>1</enabled>
|
|
<name>AndroidPhone</name>
|
|
<pubkey>UcMvV5ln3DOMZcX172hLiBFyxGur7h1wNVEdzLtk0T8=</pubkey>
|
|
<psk/>
|
|
<tunneladdress>10.0.8.12/32</tunneladdress>
|
|
<serveraddress/>
|
|
<serverport/>
|
|
<keepalive/>
|
|
</client>
|
|
<client uuid="9e2b8390-3664-41e6-9bd2-a78ab1d7e2bc">
|
|
<enabled>1</enabled>
|
|
<name>Dell_Laptop</name>
|
|
<pubkey>fQeYJLVL9av6+Ln04KPgGybRLLq+TVp9n4FQ5zMV6Hc=</pubkey>
|
|
<psk/>
|
|
<tunneladdress>10.0.8.11/32</tunneladdress>
|
|
<serveraddress/>
|
|
<serverport/>
|
|
<keepalive/>
|
|
</client>
|
|
<client uuid="9a75fa70-916f-4e33-937d-f2c9b2be79f2">
|
|
<enabled>1</enabled>
|
|
<name>DellXPS13Win</name>
|
|
<pubkey>nJTf1MoV63f2Wh+spqY2Wc0ZTL3Q82bomH43J94SSUE=</pubkey>
|
|
<psk/>
|
|
<tunneladdress>10.0.8.10/32</tunneladdress>
|
|
<serveraddress/>
|
|
<serverport/>
|
|
<keepalive/>
|
|
</client>
|
|
<client uuid="0343e323-9c14-45cb-ad07-714d401563db">
|
|
<enabled>1</enabled>
|
|
<name>XPS13Linux</name>
|
|
<pubkey>8k++HneXqiLm6hIjgY1cuv9MSm2Uv+xGSNHW6Otc1CU=</pubkey>
|
|
<psk/>
|
|
<tunneladdress>10.0.8.13/32</tunneladdress>
|
|
<serveraddress/>
|
|
<serverport/>
|
|
<keepalive/>
|
|
</client>
|
|
</clients>
|
|
</client>
|
|
</wireguard>
|
|
<Kea>
|
|
<dhcp4 version="1.0.4" persisted_at="1755684059.72">
|
|
<general>
|
|
<enabled>0</enabled>
|
|
<manual_config>0</manual_config>
|
|
<interfaces/>
|
|
<valid_lifetime>4000</valid_lifetime>
|
|
<fwrules>1</fwrules>
|
|
<dhcp_socket_type>raw</dhcp_socket_type>
|
|
</general>
|
|
<ha>
|
|
<enabled>0</enabled>
|
|
<this_server_name/>
|
|
<max_unacked_clients>2</max_unacked_clients>
|
|
</ha>
|
|
<subnets/>
|
|
<reservations/>
|
|
<ha_peers/>
|
|
</dhcp4>
|
|
<ctrl_agent version="0.0.1">
|
|
<general>
|
|
<enabled>0</enabled>
|
|
<http_host>127.0.0.1</http_host>
|
|
<http_port>8000</http_port>
|
|
</general>
|
|
</ctrl_agent>
|
|
<dhcp6 version="1.0.0">
|
|
<general>
|
|
<enabled>0</enabled>
|
|
<manual_config>0</manual_config>
|
|
<interfaces/>
|
|
<valid_lifetime>4000</valid_lifetime>
|
|
<fwrules>1</fwrules>
|
|
</general>
|
|
<ha>
|
|
<enabled>0</enabled>
|
|
<this_server_name/>
|
|
<max_unacked_clients>2</max_unacked_clients>
|
|
</ha>
|
|
<subnets/>
|
|
<reservations/>
|
|
<pd_pools/>
|
|
<ha_peers/>
|
|
</dhcp6>
|
|
</Kea>
|
|
<Zenarmor version="0.0.0" persisted_at="1768032321.53">
|
|
<zenvpn>
|
|
<enabled>1</enabled>
|
|
</zenvpn>
|
|
<logger>
|
|
<severityLevel>INFO</severityLevel>
|
|
<rotation>1d</rotation>
|
|
<retire>3</retire>
|
|
</logger>
|
|
<sso>
|
|
<enabled>false</enabled>
|
|
<exemptDeviceCategories/>
|
|
<redirectBaseUrl/>
|
|
<sessionExpireTimeout>86400</sessionExpireTimeout>
|
|
<sessionInactivityTimeout>28800</sessionInactivityTimeout>
|
|
</sso>
|
|
<cti>
|
|
<enabled>false</enabled>
|
|
<globalCtiHost>cti.zenarmor.net</globalCtiHost>
|
|
<globalCtiPort>2096</globalCtiPort>
|
|
</cti>
|
|
<general>
|
|
<installTimestamp>1768032306</installTimestamp>
|
|
<heartbeatTimer>40 1,9,18 * * *</heartbeatTimer>
|
|
<coreFileEnable>false</coreFileEnable>
|
|
<showWanIface>false</showWanIface>
|
|
<flavor>100</flavor>
|
|
<healthCheck>true</healthCheck>
|
|
<healthShare>true</healthShare>
|
|
<healthTimer>3,13,23,33,43,53 * * * *</healthTimer>
|
|
<updateTimer>54 * * * *</updateTimer>
|
|
<licenseCheckTimer>35 2,5,8,12,20 * * *</licenseCheckTimer>
|
|
<heartbeatMonit>true</heartbeatMonit>
|
|
<heartbeatData>true</heartbeatData>
|
|
<hwbypass>false</hwbypass>
|
|
<SenseiTempSize>50</SenseiTempSize>
|
|
<CloudManagementEnable>false</CloudManagementEnable>
|
|
<CloudManagementAdmin/>
|
|
<CloudManagementUUID/>
|
|
<license>
|
|
<plan/>
|
|
<key/>
|
|
<startDate/>
|
|
<endDate/>
|
|
<Size>0</Size>
|
|
</license>
|
|
<support>
|
|
<key/>
|
|
<plan/>
|
|
<startDate/>
|
|
<endDate/>
|
|
</support>
|
|
<clientemail/>
|
|
<customerid>0000000000</customerid>
|
|
<sendcategory>true</sendcategory>
|
|
<bigquery>
|
|
<ProjectID/>
|
|
<CredentialFile/>
|
|
<Dataset/>
|
|
<MongoStreamEnabled>false</MongoStreamEnabled>
|
|
<MongoStreamURI/>
|
|
</bigquery>
|
|
<database>
|
|
<Type>MN</Type>
|
|
<Host>127.0.0.1</Host>
|
|
<Port/>
|
|
<User/>
|
|
<Pass>b64:</Pass>
|
|
<Version/>
|
|
<FullVersion/>
|
|
<Remote>false</Remote>
|
|
<Prefix>zenarmor_0000000000_6dbaff93-f916-4cdf-b122-01a8613d5195_</Prefix>
|
|
<ClusterUUID/>
|
|
<retireAfter>2</retireAfter>
|
|
<dbpath>/var/db/mongodb</dbpath>
|
|
</database>
|
|
<swapRate>60</swapRate>
|
|
<swapRateEnabled>true</swapRateEnabled>
|
|
<maxmemoryusage>3072</maxmemoryusage>
|
|
<backupPath>/usr/local/datastore/backup</backupPath>
|
|
<traceFSSize>100M</traceFSSize>
|
|
</general>
|
|
<shun>
|
|
<networks/>
|
|
<vlans/>
|
|
<macs/>
|
|
</shun>
|
|
<bypass>
|
|
<enable>false</enable>
|
|
<mode>false</mode>
|
|
</bypass>
|
|
<haconfig>
|
|
<enable>false</enable>
|
|
<configUpdateTime/>
|
|
<policyUpdateTime/>
|
|
</haconfig>
|
|
<netflow>
|
|
<enabled>false</enabled>
|
|
<version>9</version>
|
|
<collectorip>127.0.0.1</collectorip>
|
|
<collectorport>9996</collectorport>
|
|
</netflow>
|
|
<updater>
|
|
<enabled>true</enabled>
|
|
<autocheck>true</autocheck>
|
|
<lastupdate/>
|
|
</updater>
|
|
<anonymize>
|
|
<localAddress>false</localAddress>
|
|
<remoteAddress>false</remoteAddress>
|
|
</anonymize>
|
|
<onboot>
|
|
<eastpect>YES</eastpect>
|
|
<elasticsearch>NO</elasticsearch>
|
|
<mongod>YES</mongod>
|
|
<senpai>YES</senpai>
|
|
</onboot>
|
|
<reports>
|
|
<refresh>60000</refresh>
|
|
<interval>3600000</interval>
|
|
<custominterval>
|
|
<start/>
|
|
<end/>
|
|
</custominterval>
|
|
<sum>volume</sum>
|
|
<size>10</size>
|
|
<showhostname>false</showhostname>
|
|
<showBlock>false</showBlock>
|
|
<showLocal>false</showLocal>
|
|
<generate>
|
|
<enabled>false</enabled>
|
|
<sum>volume</sum>
|
|
<timer>45 0 * * *</timer>
|
|
<pdf>false</pdf>
|
|
<mail>
|
|
<server>127.0.0.1</server>
|
|
<port>25</port>
|
|
<secured>NO</secured>
|
|
<username/>
|
|
<password/>
|
|
<from/>
|
|
<to/>
|
|
<nosslverify>false</nosslverify>
|
|
<provider>smtp-server</provider>
|
|
<recipients/>
|
|
</mail>
|
|
</generate>
|
|
</reports>
|
|
<agentrestapi>
|
|
<enabled>false</enabled>
|
|
</agentrestapi>
|
|
<dnsEncrihmentConfig>
|
|
<servers/>
|
|
<reverse>false</reverse>
|
|
<aliases>true</aliases>
|
|
</dnsEncrihmentConfig>
|
|
<communityid>
|
|
<enabled>true</enabled>
|
|
<seed>0</seed>
|
|
</communityid>
|
|
<bigquery>
|
|
<enabled>true</enabled>
|
|
</bigquery>
|
|
<intrusiondetection>
|
|
<enabled>true</enabled>
|
|
</intrusiondetection>
|
|
<streamReportConfig>
|
|
<enabled>false</enabled>
|
|
<server>127.0.0.1</server>
|
|
<port>514</port>
|
|
<protocol>UDP</protocol>
|
|
<indexes/>
|
|
</streamReportConfig>
|
|
<streamReportDataExternal>
|
|
<enabled>false</enabled>
|
|
<uri/>
|
|
<server/>
|
|
<port>9200</port>
|
|
<esVersion/>
|
|
<User/>
|
|
<Pass>b64:</Pass>
|
|
<ClusterUUID/>
|
|
</streamReportDataExternal>
|
|
<dns>
|
|
<localDomain>dss.mywire.org</localDomain>
|
|
</dns>
|
|
<tls>
|
|
<enabled>false</enabled>
|
|
<certname/>
|
|
<passtopsites>false</passtopsites>
|
|
</tls>
|
|
<zenconsole>
|
|
<centralManagement>true</centralManagement>
|
|
<reportInfastructureError>true</reportInfastructureError>
|
|
</zenconsole>
|
|
<enrich>
|
|
<tcpServiceEnable>true</tcpServiceEnable>
|
|
<tcpServiceIP>127.0.0.1</tcpServiceIP>
|
|
<cloudWebcatEnrich>true</cloudWebcatEnrich>
|
|
<cloudResponseTimeout>0</cloudResponseTimeout>
|
|
<dns>true</dns>
|
|
<user>true</user>
|
|
<routerIdentification>true</routerIdentification>
|
|
</enrich>
|
|
<installation>
|
|
<whereDidYouHear/>
|
|
<whereDidYouHearOther/>
|
|
</installation>
|
|
<rules>
|
|
<decision_is_block>no</decision_is_block>
|
|
<webcategoriesType/>
|
|
</rules>
|
|
</Zenarmor>
|
|
<DHCRelay version="1.0.1"/>
|
|
<trust>
|
|
<general version="1.0.1">
|
|
<store_intermediate_certs>0</store_intermediate_certs>
|
|
<install_crls>0</install_crls>
|
|
<fetch_crls>0</fetch_crls>
|
|
<enable_legacy_sect>1</enable_legacy_sect>
|
|
<enable_config_constraints>0</enable_config_constraints>
|
|
<CipherString/>
|
|
<Ciphersuites/>
|
|
<SignatureAlgorithms/>
|
|
<groups/>
|
|
<MinProtocol/>
|
|
<MinProtocol_DTLS/>
|
|
</general>
|
|
</trust>
|
|
</OPNsense>
|
|
<ca uuid="a5958133-3563-452b-9bb4-7075fe182997">
|
|
<refid>65b4a0e1c3356</refid>
|
|
<descr>OPNsense-CA</descr>
|
|
<crt>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</crt>
|
|
<prv>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</prv>
|
|
<serial>2</serial>
|
|
<caref/>
|
|
</ca>
|
|
<gateways>
|
|
<gateway_item/>
|
|
</gateways>
|
|
<cert uuid="0a04edca-d3a6-4df5-9633-57788707ec1d">
|
|
<refid>65b4a165605f7</refid>
|
|
<descr>OpenVPN Cert</descr>
|
|
<caref>65b4a0e1c3356</caref>
|
|
<crt>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</crt>
|
|
<csr/>
|
|
<prv>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</prv>
|
|
</cert>
|
|
<cert uuid="53309b87-f6f6-465d-8e3a-220600b60b5e">
|
|
<refid>65b4a1c0bffcf</refid>
|
|
<descr>Dion Cert</descr>
|
|
<caref>65b4a0e1c3356</caref>
|
|
<crt>LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSUVsakNDQTM2Z0F3SUJBZ0lCQWpBTkJna3Foa2lHOXcwQkFRc0ZBREI0TVFzd0NRWURWUVFHRXdKQlZURUwKTUFrR0ExVUVDQXdDVTBFeEVUQVBCZ05WQkFjTUNFRmtaV3hoYVdSbE1SRXdEd1lEVlFRS0RBaFBVRTV6Wlc1egpaVEVnTUI0R0NTcUdTSWIzRFFFSkFSWVJjM0JoYlVCdmNHNXpaVzV6WlM1dmNtY3hGREFTQmdOVkJBTU1DMDlRClRuTmxibk5sTFVOQk1CNFhEVEkwTURFeU56QTJNalV3TkZvWERUSTFNREl5TnpBMk1qVXdORm93ZGpFTE1Ba0cKQTFVRUJoTUNRVlV4Q3pBSkJnTlZCQWdNQWxOQk1SRXdEd1lEVlFRSERBaEJaR1ZzWVdsa1pURVJNQThHQTFVRQpDZ3dJVDFCT2MyVnVjMlV4SURBZUJna3Foa2lHOXcwQkNRRVdFWE53WVcxQWIzQnVjMlZ1YzJVdWIzSm5NUkl3CkVBWURWUVFEREFsa2FXOXVMV05sY25Rd2dnRWlNQTBHQ1NxR1NJYjNEUUVCQVFVQUE0SUJEd0F3Z2dFS0FvSUIKQVFDamlvT1VCUFdqdFQ4bmJyYlM5bGU0VDZJMENvRjM2MVN5NWVwVTd3QyszVTZ6OUh6QWlrVzJ4K2RuUVluagp4NUhDQ0lpczUvQ2tKWFNtVmJCUEp4MVd3REFqNTIva0EvbEI4UDRpeUhzNTk3ajJSSThqNUsrczVaczRkWkYzCmVSM1I4YlpvNFJ5M2pkSWlhRE5hdUpVWUxlRHhjMTY4aW1RK0wvOXIybGZuWXVZZ0FhNEM3cnk1QUNHL1FpREMKRVFMRWpJeGJZb0dNWXM4T2JSQlBJUXV3a2JaVUxjUW5laHB0K1VjL3ZqZURYeWk2L3dFV0liRkFvb0JGWDN2ZwpzNlZGUTZzOEFUM01jTGc5OVZyaGFBdVpuT3RwZGxNRFgwdCtXV0p0OXJ6NGNZMzFmSC9yMkZudTJIZ2p1ZlZ1CnZ3NlJBbENnUklHMnd5bEpiT3diQzFIMUFnTUJBQUdqZ2dFck1JSUJKekFKQmdOVkhSTUVBakFBTUFzR0ExVWQKRHdRRUF3SUY0REEwQmdsZ2hrZ0JodmhDQVEwRUp4WWxUMUJPYzJWdWMyVWdSMlZ1WlhKaGRHVmtJRU5zYVdWdQpkQ0JEWlhKMGFXWnBZMkYwWlRBZEJnTlZIUTRFRmdRVWRBTHhkRDN6UjBTTndaQVA5YjRtdUl5RjF3d3dnYUlHCkExVWRJd1NCbWpDQmw0QVVka0piK1JWSHRCZFZmUDNPcnBXTlNhamFuOENoZktSNk1IZ3hDekFKQmdOVkJBWVQKQWtGVk1Rc3dDUVlEVlFRSURBSlRRVEVSTUE4R0ExVUVCd3dJUVdSbGJHRnBaR1V4RVRBUEJnTlZCQW9NQ0U5UQpUbk5sYm5ObE1TQXdIZ1lKS29aSWh2Y05BUWtCRmhGemNHRnRRRzl3Ym5ObGJuTmxMbTl5WnpFVU1CSUdBMVVFCkF3d0xUMUJPYzJWdWMyVXRRMEdDQVFBd0V3WURWUjBsQkF3d0NnWUlLd1lCQlFVSEF3SXdEUVlKS29aSWh2Y04KQVFFTEJRQURnZ0VCQUtZdk1yZ2xSOHltQnRZenlQUk5BZGtRblJCOVhFMXVDcld0NGpKRjJsYkh4L3REWkg0bApyV0hSZld0RnN6ZmFiQmdEOU9ROHBUZWdaMHJ6MjArSDZNclV1dUZUaE11ZzRKNmgydHpuTzdENnR6SDBCbVh6Ckl2VVNJeGNyZTExRUdlYWs3bjdld3k3NlhhQVowam9EZ0lpcG1PMVJtdVJtSy9mT2d5TjEwYUc5UFFYVElGMDQKdUdTQUlwUHdRZ2JIVG9HdCtpTlhhSnZjSUE1MnRQRWZCWWRieTgyd1VvVVpBYVFzUFdzSXZmYjR3Z0pnL1FhbQpBYldYUjRUaUFBU3psN21OakkrVTlXK0pQTjg5KzREY0kydklmTHVIeTBrSStveGhlNEpBYkd6RDN3MkFlMnZsCnVwZ0ViekJQWkw1MDBhQkN4eTNxZjJlQU0zUUllbHg3TS93PQotLS0tLUVORCBDRVJUSUZJQ0FURS0tLS0tCg==</crt>
|
|
<csr/>
|
|
<prv>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</prv>
|
|
</cert>
|
|
<ppps>
|
|
<ppp>
|
|
<ptpid>0</ptpid>
|
|
<type>pppoe</type>
|
|
<if>pppoe0</if>
|
|
<ports>vtnet2</ports>
|
|
<username>dionscarman@iinet.net.au</username>
|
|
<password>RGpTIzMxMjg4MDA0IQ==</password>
|
|
<provider/>
|
|
<bandwidth/>
|
|
<mtu/>
|
|
<mru/>
|
|
<mrru/>
|
|
</ppp>
|
|
</ppps>
|
|
<vlans version="1.0.0">
|
|
<vlan uuid="918f9bdf-eca5-4039-a6c4-4068d2574592">
|
|
<if>vtnet1</if>
|
|
<tag>40</tag>
|
|
<pcp>0</pcp>
|
|
<proto/>
|
|
<descr>Guest</descr>
|
|
<vlanif>vlan04</vlanif>
|
|
</vlan>
|
|
<vlan uuid="b97be690-5743-4d35-8a92-090ade350a38">
|
|
<if>vtnet1</if>
|
|
<tag>10</tag>
|
|
<pcp>0</pcp>
|
|
<proto/>
|
|
<descr>Servers</descr>
|
|
<vlanif>vlan01</vlanif>
|
|
</vlan>
|
|
<vlan uuid="fc24dad7-ed4b-48a3-928e-530a908cbb48">
|
|
<if>vtnet1</if>
|
|
<tag>20</tag>
|
|
<pcp>0</pcp>
|
|
<proto/>
|
|
<descr>General</descr>
|
|
<vlanif>vlan02</vlanif>
|
|
</vlan>
|
|
<vlan uuid="391802bc-d531-426f-bfd0-88cdb95744c7">
|
|
<if>vtnet1</if>
|
|
<tag>30</tag>
|
|
<pcp>0</pcp>
|
|
<proto/>
|
|
<descr>IOT network</descr>
|
|
<vlanif>vlan03</vlanif>
|
|
</vlan>
|
|
<vlan uuid="68fd51d3-bd3b-4849-8002-01be8721a12f">
|
|
<if>vtnet1</if>
|
|
<tag>50</tag>
|
|
<pcp>0</pcp>
|
|
<proto/>
|
|
<descr>Kids</descr>
|
|
<vlanif>vlan05</vlanif>
|
|
</vlan>
|
|
</vlans>
|
|
<dyndnses>
|
|
<dyndns>
|
|
<type>dnsomatic</type>
|
|
<username>truman11</username>
|
|
<password>DjSlS8752!</password>
|
|
<host>d1s.mywire.org</host>
|
|
<mx/>
|
|
<wildcard>1</wildcard>
|
|
<enable>1</enable>
|
|
<interface>wan</interface>
|
|
<zoneid/>
|
|
<resourceid/>
|
|
<ttl/>
|
|
<updateurl/>
|
|
<resultmatch/>
|
|
<requestif>wan</requestif>
|
|
<descr/>
|
|
<force>1</force>
|
|
<id>0</id>
|
|
</dyndns>
|
|
</dyndnses>
|
|
<openvpn>
|
|
<openvpn-server/>
|
|
<openvpn-client/>
|
|
</openvpn>
|
|
<crl/>
|
|
<wol version="1.0.0">
|
|
<wolentry uuid="aa839866-9bb4-48c5-a846-c4da5cca3625">
|
|
<interface>lan</interface>
|
|
<mac>00:26:6c:28:0a:a1</mac>
|
|
<descr>Proxmox</descr>
|
|
</wolentry>
|
|
<wolentry uuid="d72a272f-5ff9-43fa-8d0c-29570ddf6ac3">
|
|
<interface>lan</interface>
|
|
<mac>00:1f:c6:9d:f7:a8</mac>
|
|
<descr>Rohan</descr>
|
|
</wolentry>
|
|
<wolentry uuid="9b5d2a3b-4b06-499a-8f17-2005208e12c4">
|
|
<interface>lan</interface>
|
|
<mac>18:c0:4d:db:2a:7c</mac>
|
|
<descr>SimRig</descr>
|
|
</wolentry>
|
|
<wolentry uuid="81d3b011-b560-49f2-8927-dede61af626b">
|
|
<interface>opt2</interface>
|
|
<mac>5c:80:b6:47:f6:7b</mac>
|
|
<descr>OptiPlex Micro</descr>
|
|
</wolentry>
|
|
</wol>
|
|
<staticroutes version="1.0.0">
|
|
<route/>
|
|
</staticroutes>
|
|
<virtualip version="1.0.1">
|
|
<vip/>
|
|
</virtualip>
|
|
<bridges version="1.0.0"/>
|
|
<gifs version="1.0.0"/>
|
|
<gres version="1.0.0"/>
|
|
<dhcpdv6/>
|
|
<laggs version="1.0.0">
|
|
<lagg/>
|
|
</laggs>
|
|
<wireless>
|
|
<clone/>
|
|
</wireless>
|
|
<ifgroups version="1.0.0"/>
|
|
<hasync version="1.0.2">
|
|
<disablepreempt>0</disablepreempt>
|
|
<disconnectppps>0</disconnectppps>
|
|
<pfsyncinterface/>
|
|
<pfsyncpeerip/>
|
|
<pfsyncversion>1400</pfsyncversion>
|
|
<synchronizetoip/>
|
|
<verifypeer>0</verifypeer>
|
|
<username/>
|
|
<password/>
|
|
<syncitems/>
|
|
</hasync>
|
|
<dnsmasq version="1.0.8" persisted_at="1759561793.24">
|
|
<enable/>
|
|
<regdhcp/>
|
|
<regdhcpstatic/>
|
|
<dhcpfirst/>
|
|
<strict_order/>
|
|
<domain_needed/>
|
|
<no_private_reverse/>
|
|
<no_resolv>0</no_resolv>
|
|
<log_queries/>
|
|
<no_hosts/>
|
|
<strictbind/>
|
|
<dnssec/>
|
|
<regdhcpdomain/>
|
|
<interface/>
|
|
<port/>
|
|
<dns_forward_max/>
|
|
<cache_size/>
|
|
<local_ttl/>
|
|
<add_mac/>
|
|
<add_subnet>0</add_subnet>
|
|
<strip_subnet>0</strip_subnet>
|
|
<dhcp>
|
|
<no_interface/>
|
|
<fqdn>1</fqdn>
|
|
<domain/>
|
|
<local>1</local>
|
|
<lease_max/>
|
|
<authoritative>0</authoritative>
|
|
<default_fw_rules>1</default_fw_rules>
|
|
<reply_delay/>
|
|
<enable_ra>0</enable_ra>
|
|
<nosync>0</nosync>
|
|
</dhcp>
|
|
<no_ident>1</no_ident>
|
|
</dnsmasq>
|
|
</opnsense>
|