mirror of
https://github.com/fwbuilder/fwbuilder
synced 2026-03-19 17:57:22 +01:00
test case for redirection rule for PF
This commit is contained in:
Vadim Kurland
parent
b31eb1ba68
commit
02ce7747b6
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:34 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:58:05 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall-base-rulesets.fw
|
||||
# files: firewall-base-rulesets.conf
|
||||
@ -163,7 +163,7 @@ configure_interfaces() {
|
||||
update_addresses_of_interface "en2 192.168.100.1/0xffffff00" ""
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:34 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:58:05 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:35 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:58:06 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall-ipv6-1.fw pf-ipv6.fw
|
||||
# files: firewall-ipv6-1-Policy_ipv4.conf /etc/fw/pf-ipv6-Policy_ipv4.conf
|
||||
@ -175,7 +175,7 @@ configure_interfaces() {
|
||||
update_addresses_of_interface "lo ::1/128 127.0.0.1/0xff000000" ""
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:35 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:58:06 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -5,7 +5,7 @@
|
||||
# Tables: (5)
|
||||
table <tbl.r4.s> { 222.222.222.22 , 222.222.222.23 }
|
||||
table <tbl.r4.sx> { 2001:5c0:0:2::24 , 3ffe:1200:2000::/36 , 3ffe:1200:2001:1:8000::1 }
|
||||
table <tbl.r5.s> { 61.150.47.112 , 74.125.224.48 , 74.125.224.49 , 74.125.224.50 , 74.125.224.51 , 74.125.224.52 , 192.168.1.0 }
|
||||
table <tbl.r5.s> { 61.150.47.112 , 74.125.224.16 , 74.125.224.17 , 74.125.224.18 , 74.125.224.19 , 74.125.224.20 , 192.168.1.0 }
|
||||
table <tbl.r5.sx> { 2001:5c0:0:2::24 , 3ffe:1200:2001:1:8000::1 }
|
||||
table <tbl.r7.s> { 61.150.47.112 , 192.168.1.0 }
|
||||
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:36 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:58:06 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall-ipv6-2.fw pf.fw
|
||||
# files: firewall-ipv6-2.conf pf.conf
|
||||
@ -179,7 +179,7 @@ configure_interfaces() {
|
||||
update_addresses_of_interface "lo ::1/128 127.0.0.1/0xff000000" ""
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:36 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:58:06 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:03 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:34 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall.fw /etc/pf.fw
|
||||
# files: firewall.conf /etc/pf.conf
|
||||
@ -167,7 +167,7 @@ configure_interfaces() {
|
||||
update_addresses_of_interface "lo 127.0.0.1/0xff000000" ""
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:03 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:34 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -22,10 +22,13 @@ scrub in all fragment reassemble
|
||||
table <tbl.r0.s> { 22.22.22.22 , 192.168.1.1 }
|
||||
table <tbl.r11> { 192.168.1.10 , 192.168.1.20 }
|
||||
table <tbl.r11.s> { 22.22.22.22 , 22.22.23.23 , 192.168.1.1 , 192.168.2.0/24 , 192.168.2.1 }
|
||||
table <tbl.r14> { 33.33.33.0/24 , 33.33.44.0/24 }
|
||||
table <tbl.r16> { 33.33.33.0/24 , 33.33.44.0/24 }
|
||||
table <tbl.r7> { 192.168.1.0/24 , 192.168.2.0/24 }
|
||||
table <tbl.r9> { 22.22.22.22 , 22.22.23.23 , 192.168.1.1 , 192.168.2.1 }
|
||||
|
||||
# NAT compiler errors and warnings:
|
||||
# firewall1:NAT:13: error: There should be no more than one object in original destination
|
||||
# firewall1:NAT:13: error: There should be no more than one object in original destination
|
||||
#
|
||||
# Rule 0 (NAT)
|
||||
no nat proto {tcp udp icmp} from 192.168.1.0/24 to 192.168.2.0/24
|
||||
@ -82,13 +85,17 @@ rdr proto tcp from 192.168.1.0/24 to ! 192.168.1.1 port 80 -> 127.0.0.1 port 312
|
||||
rdr proto tcp from <tbl.r11> to ! <tbl.r7> port 80 -> 127.0.0.1 port 3128
|
||||
#
|
||||
# Rule 12 (NAT)
|
||||
rdr proto tcp from ! <tbl.r11> to <tbl.r7> port 80 -> 127.0.0.1 port 3128
|
||||
#
|
||||
# Rule 13 (NAT)
|
||||
rdr proto tcp from ! 192.168.1.10 to any port 80 -> 127.0.0.1 port 3128
|
||||
rdr proto tcp from 192.168.1.0/24 to ! <tbl.r7> port 80 -> 127.0.0.1 port 3128
|
||||
rdr proto tcp from 192.168.1.0/24 to ! <tbl.r7> port 81 -> 127.0.0.1 port 3128
|
||||
#
|
||||
# Rule 14 (NAT)
|
||||
rdr on eth1 proto tcp from <tbl.r14> to 22.22.22.22 port 80 -> 192.168.1.10 port 80
|
||||
rdr proto tcp from ! <tbl.r11> to <tbl.r7> port 80 -> 127.0.0.1 port 3128
|
||||
#
|
||||
# Rule 15 (NAT)
|
||||
rdr proto tcp from ! 192.168.1.10 to any port 80 -> 127.0.0.1 port 3128
|
||||
#
|
||||
# Rule 16 (NAT)
|
||||
rdr on eth1 proto tcp from <tbl.r16> to 22.22.22.22 port 80 -> 192.168.1.10 port 80
|
||||
|
||||
# Policy compiler errors and warnings:
|
||||
# firewall1:Policy:10: warning: Changing rule direction due to self reference
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:04 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:35 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall1.fw
|
||||
# files: firewall1.conf
|
||||
@ -15,6 +15,9 @@
|
||||
# Also using interface policy on eth1 to test specific case with negation and
|
||||
# rule shading depection
|
||||
|
||||
# firewall1:NAT:13: error: There should be no more than one object in original destination
|
||||
# firewall1:NAT:13: error: There should be no more than one object in original destination
|
||||
|
||||
# firewall1:Policy:10: warning: Changing rule direction due to self reference
|
||||
# firewall1:Policy:18: warning: Changing rule direction due to self reference
|
||||
|
||||
@ -76,7 +79,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:04 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:35 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:05 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:35 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall10-1.fw
|
||||
# files: firewall10-1.conf
|
||||
@ -74,7 +74,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:05 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:35 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:06 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:36 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall10-2.fw
|
||||
# files: firewall10-2.conf
|
||||
@ -74,7 +74,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:06 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:36 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:06 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:37 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall10-3.fw
|
||||
# files: firewall10-3.conf
|
||||
@ -76,7 +76,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:06 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:37 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:07 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:38 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall10-4.fw
|
||||
# files: firewall10-4.conf
|
||||
@ -76,7 +76,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:07 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:38 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:08 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:38 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall10-5.fw
|
||||
# files: firewall10-5.conf
|
||||
@ -77,7 +77,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:08 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:38 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:09 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:39 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall10-6.fw
|
||||
# files: firewall10-6.conf
|
||||
@ -77,7 +77,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:09 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:39 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:09 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:40 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall11.fw
|
||||
# files: firewall11.conf
|
||||
@ -77,7 +77,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:09 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:40 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:10 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:41 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall12.fw
|
||||
# files: firewall12.conf
|
||||
@ -159,7 +159,7 @@ configure_interfaces() {
|
||||
update_addresses_of_interface "lo0 127.0.0.1/0xff000000" ""
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:10 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:41 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:11 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:41 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall13.fw
|
||||
# files: firewall13.conf
|
||||
@ -88,7 +88,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:11 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:41 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:12 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:43 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall14-1.fw
|
||||
# files: firewall14-1.conf
|
||||
@ -244,7 +244,7 @@ configure_interfaces() {
|
||||
update_addresses_of_interface "vlan103 10.100.103.1/0xffffff00" ""
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:12 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:43 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:12 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:42 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall14.fw
|
||||
# files: firewall14.conf
|
||||
@ -244,7 +244,7 @@ configure_interfaces() {
|
||||
update_addresses_of_interface "vlan103 10.100.103.1/0xffffff00" ""
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:12 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:42 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:15 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:46 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall2-1.fw
|
||||
# files: firewall2-1.conf
|
||||
@ -89,7 +89,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:15 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:46 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:13 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:44 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall2.fw
|
||||
# files: firewall2.conf
|
||||
@ -73,7 +73,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:13 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:44 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:14 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:44 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall20.fw
|
||||
# files: firewall20.conf
|
||||
@ -73,7 +73,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:14 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:44 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:15 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:45 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall21.fw
|
||||
# files: firewall21-NAT_1.conf
|
||||
@ -82,7 +82,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:15 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:45 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:16 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:47 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall22.fw
|
||||
# files: firewall22-NAT_1.conf
|
||||
@ -80,7 +80,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:16 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:47 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:17 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:48 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall3.fw
|
||||
# files: firewall3.conf
|
||||
@ -154,12 +154,12 @@ run_epilog_and_exit() {
|
||||
|
||||
configure_interfaces() {
|
||||
:
|
||||
update_addresses_of_interface "le0 22.22.22.21/0xffffff00 22.22.22.22/0xffffff00 22.22.22.1/0xffffff00 22.22.22.0/0xffffff00" ""
|
||||
update_addresses_of_interface "le0 22.22.22.21/0xffffff00 22.22.22.22/0xffffff00 22.22.22.0/0xffffff00 22.22.22.1/0xffffff00" ""
|
||||
update_addresses_of_interface "le1 192.168.1.1/0xffffff00" ""
|
||||
update_addresses_of_interface "lo 127.0.0.1/0xff000000" ""
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:17 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:48 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -6,7 +6,7 @@
|
||||
table <tbl.r0> { 157.166.224.25 , 157.166.224.26 , 157.166.226.25 , 157.166.226.26 , 157.166.255.18 , 157.166.255.19 }
|
||||
table <tbl.r10.d> { www.google.com , 157.166.224.25 , 157.166.224.26 , 157.166.226.25 , 157.166.226.26 , 157.166.255.18 , 157.166.255.19 }
|
||||
table <tbl.r2> { www.google.com , www.cnn.com }
|
||||
table <tbl.r8.d> { 74.125.224.48 , 74.125.224.49 , 74.125.224.50 , 74.125.224.51 , 74.125.224.52 , 157.166.224.25 , 157.166.224.26 , 157.166.226.25 , 157.166.226.26 , 157.166.255.18 , 157.166.255.19 }
|
||||
table <tbl.r8.d> { 74.125.224.16 , 74.125.224.17 , 74.125.224.18 , 74.125.224.19 , 74.125.224.20 , 157.166.224.25 , 157.166.224.26 , 157.166.226.25 , 157.166.226.26 , 157.166.255.18 , 157.166.255.19 }
|
||||
|
||||
#
|
||||
# Rule 0 (NAT)
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:18 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:48 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall33.fw
|
||||
# files: firewall33.conf
|
||||
@ -162,7 +162,7 @@ configure_interfaces() {
|
||||
update_addresses_of_interface "lo 127.0.0.1/0xff000000" ""
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:18 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:48 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:19 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:49 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall34.fw
|
||||
# files: firewall34.conf
|
||||
@ -158,7 +158,7 @@ configure_interfaces() {
|
||||
update_addresses_of_interface "lo 127.0.0.1/0xff000000" ""
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:19 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:49 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:19 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:50 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall38.fw
|
||||
# files: firewall38.conf
|
||||
@ -76,7 +76,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:19 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:50 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:20 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:51 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall39.fw pf.fw
|
||||
# files: firewall39.conf pf.conf
|
||||
@ -79,7 +79,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:20 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:51 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:21 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:52 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall4.fw pf.fw
|
||||
# files: firewall4.conf /etc/fw/pf.conf
|
||||
@ -78,7 +78,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:21 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:52 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:23 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:53 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall40-1.fw
|
||||
# files: firewall40-1.conf
|
||||
@ -176,7 +176,7 @@ configure_interfaces() {
|
||||
update_addresses_of_interface "lo0 127.0.0.1/0xff000000" ""
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:23 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:53 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:22 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:52 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall40.fw
|
||||
# files: firewall40.conf
|
||||
@ -160,7 +160,7 @@ configure_interfaces() {
|
||||
update_addresses_of_interface "lo0 127.0.0.1/0xff000000" ""
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:22 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:52 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:23 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:54 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall41.fw
|
||||
# files: firewall41.conf
|
||||
@ -163,7 +163,7 @@ configure_interfaces() {
|
||||
update_addresses_of_interface "eth1 2.2.2.2/0xffffff00" ""
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:23 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:54 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:24 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:55 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall5.fw
|
||||
# files: firewall5.conf
|
||||
@ -77,7 +77,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:24 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:55 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:25 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:56 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall51.fw
|
||||
# files: firewall51.conf
|
||||
@ -80,7 +80,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:25 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:56 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:26 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:56 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall6.fw
|
||||
# files: firewall6.conf
|
||||
@ -73,7 +73,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:26 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:56 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:27 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:57 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall62.fw
|
||||
# files: firewall62.conf
|
||||
@ -185,7 +185,7 @@ configure_interfaces() {
|
||||
update_addresses_of_interface "en1 222.222.222.222/0xffffff00" ""
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:27 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:57 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:27 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:58 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall63.fw
|
||||
# files: firewall63.conf
|
||||
@ -77,7 +77,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:27 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:58 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:28 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:59 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall7.fw
|
||||
# files: firewall7.conf
|
||||
@ -73,7 +73,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:28 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:59 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:29 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:57:59 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall70.fw
|
||||
# files: firewall70.conf
|
||||
@ -82,7 +82,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:29 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:57:59 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:30 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:58:00 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall8.fw
|
||||
# files: firewall8.conf
|
||||
@ -72,7 +72,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:30 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:58:00 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:31 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:58:02 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall80-4.5.fw
|
||||
# files: firewall80-4.5.conf
|
||||
@ -73,7 +73,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:31 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:58:02 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:30 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:58:01 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall80.fw
|
||||
# files: firewall80.conf
|
||||
@ -73,7 +73,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:30 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:58:01 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:32 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:58:02 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall9.fw
|
||||
# files: firewall9.conf
|
||||
@ -76,7 +76,7 @@ configure_interfaces() {
|
||||
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:32 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:58:02 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:33 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:58:03 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall91.fw /etc/fw/pf.fw
|
||||
# files: firewall91.conf /etc/fw/pf.conf
|
||||
@ -243,7 +243,7 @@ configure_interfaces() {
|
||||
update_addresses_of_interface "vlan103 10.100.103.1/0xffffff00" ""
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:33 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:58:03 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:33 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:58:04 2011 PST by vadim
|
||||
#
|
||||
# files: * firewall92.fw /etc/fw/pf.fw
|
||||
# files: firewall92.conf /etc/fw/path\ with\ space/pf.conf
|
||||
@ -160,7 +160,7 @@ configure_interfaces() {
|
||||
update_addresses_of_interface "em1 10.1.1.81/0xffffff00" ""
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:33 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:58:04 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -1,6 +1,6 @@
|
||||
<?xml version="1.0" encoding="utf-8"?>
|
||||
<!DOCTYPE FWObjectDatabase SYSTEM "fwbuilder.dtd">
|
||||
<FWObjectDatabase xmlns="http://www.fwbuilder.org/1.0/" version="17" lastModified="1271990800" id="root">
|
||||
<FWObjectDatabase xmlns="http://www.fwbuilder.org/1.0/" version="17" lastModified="1295542343" id="root">
|
||||
<Library id="syslib000" color="#d4f8ff" name="Standard" comment="Standard objects" ro="True">
|
||||
<AnyNetwork id="sysid0" name="Any" comment="Any Network" ro="False" address="0.0.0.0" netmask="0.0.0.0"/>
|
||||
<AnyIPService id="sysid1" protocol_num="0" name="Any" comment="Any IP Service" ro="False"/>
|
||||
@ -143,6 +143,12 @@
|
||||
<ServiceRef ref="icmp-ping_reply"/>
|
||||
<ServiceRef ref="icmp-Unreachables"/>
|
||||
</ServiceGroup>
|
||||
<ServiceGroup id="id1569X4889" name="Ipv6 unreachable messages" comment="" ro="False">
|
||||
<ServiceRef ref="idE0D27650"/>
|
||||
<ServiceRef ref="idCFE27650"/>
|
||||
<ServiceRef ref="idE0B27650"/>
|
||||
<ServiceRef ref="id1519Z388"/>
|
||||
</ServiceGroup>
|
||||
<ServiceGroup id="id3B4FEDD9" name="kerberos" comment="" ro="False">
|
||||
<ServiceRef ref="id3B4FEDA5"/>
|
||||
<ServiceRef ref="id3B4FEDA9"/>
|
||||
@ -205,6 +211,7 @@
|
||||
<ICMP6Service id="ipv6-icmp-neighbrsol" code="0" type="135" name="ipv6 neighbrsol" comment="IPv6 neighbor solicitation" ro="False"/>
|
||||
<ICMP6Service id="ipv6-icmp-neighbradv" code="0" type="136" name="ipv6 neighbradv" comment="IPv6 neighbor advertisement" ro="False"/>
|
||||
<ICMP6Service id="ipv6-icmp-redir" code="0" type="137" name="ipv6 redir" comment="IPv6 redirect: shorter route exists" ro="False"/>
|
||||
<ICMP6Service id="id1519Z388" code="-1" type="4" name="ipv6 parameter problem" comment="IPv6 Parameter Problem: RFC4443" ro="False"/>
|
||||
<ICMP6Service id="idCFE27650" code="0" type="3" name="ipv6 time exceeded" comment="Time exceeded in transit" ro="False"/>
|
||||
<ICMP6Service id="idCFF27650" code="1" type="3" name="ipv6 time exceeded in reassembly" comment="Time exceeded in reassembly" ro="False"/>
|
||||
<ICMP6Service id="idE0B27650" code="-1" type="2" name="ipv6 packet too big" comment="" ro="False"/>
|
||||
@ -1529,6 +1536,7 @@
|
||||
<IPv4 id="id79522X23273" name="h-10.3.14.201" comment="Imported from "c3620" 10.3.14.201/255.255.255.255" ro="False" address="10.3.14.201" netmask="255.255.255.255"/>
|
||||
<IPv4 id="id80198X23273" name="a-192.168.1.10" comment="" ro="False" address="192.168.1.10" netmask="0.0.0.0"/>
|
||||
<IPv4 id="id71290X60336" name="h-10.3.14.41" comment="" ro="False" address="10.3.14.41" netmask="0.0.0.0"/>
|
||||
<IPv4 id="id272368X18008" name="dmz-host" comment="" ro="False" address="192.168.2.200" netmask="0.0.0.0"/>
|
||||
</ObjectGroup>
|
||||
<ObjectGroup id="stdid04_1" name="Groups" comment="" ro="False">
|
||||
<ObjectGroup id="id3B4572AF" name="group1" comment="" ro="False">
|
||||
@ -2053,6 +2061,7 @@
|
||||
<TCPService id="id80030X23273" ack_flag="False" ack_flag_mask="False" established="False" fin_flag="False" fin_flag_mask="False" psh_flag="False" psh_flag_mask="False" rst_flag="False" rst_flag_mask="False" syn_flag="True" syn_flag_mask="True" urg_flag="False" urg_flag_mask="False" name="New TCP Service 1" comment="" ro="False" src_range_start="0" src_range_end="0" dst_range_start="1" dst_range_end="1"/>
|
||||
<TCPService id="id45517X93766" ack_flag="False" ack_flag_mask="False" established="False" fin_flag="False" fin_flag_mask="False" psh_flag="False" psh_flag_mask="False" rst_flag="False" rst_flag_mask="False" syn_flag="False" syn_flag_mask="False" urg_flag="False" urg_flag_mask="False" name="ftp-proxy" comment="" ro="False" src_range_start="0" src_range_end="0" dst_range_start="8021" dst_range_end="8021"/>
|
||||
<TCPService id="id438265X27177" ack_flag="False" ack_flag_mask="False" established="False" fin_flag="False" fin_flag_mask="False" psh_flag="False" psh_flag_mask="False" rst_flag="False" rst_flag_mask="False" syn_flag="False" syn_flag_mask="False" urg_flag="False" urg_flag_mask="False" name="src-tcp" comment="port range" ro="False" src_range_start="1000" src_range_end="2000" dst_range_start="0" dst_range_end="0"/>
|
||||
<TCPService id="id172244X18008" ack_flag="False" ack_flag_mask="False" established="False" fin_flag="False" fin_flag_mask="False" psh_flag="False" psh_flag_mask="False" rst_flag="False" rst_flag_mask="False" syn_flag="False" syn_flag_mask="False" urg_flag="False" urg_flag_mask="False" name="tcp-81" comment="" ro="False" src_range_start="0" src_range_end="0" dst_range_start="81" dst_range_end="81"/>
|
||||
</ServiceGroup>
|
||||
<ServiceGroup id="stdid08_1" name="UDP" comment="" ro="False">
|
||||
<UDPService id="id78911X23273" name="udp-src-6767" comment="" ro="False" src_range_start="6767" src_range_end="6767" dst_range_start="0" dst_range_end="0"/>
|
||||
@ -2905,7 +2914,7 @@
|
||||
<Option name="use_tables">True</Option>
|
||||
</FirewallOptions>
|
||||
</Firewall>
|
||||
<Firewall id="id3AF5AA0A" host_OS="openbsd" inactive="False" lastCompiled="1157930802" lastInstalled="0" lastModified="1224520201" platform="pf" version="" name="firewall1" comment="this object is used to test all kinds of negation in policy rules Also using interface policy on eth1 to test specific case with negation and rule shading depection " ro="False">
|
||||
<Firewall id="id3AF5AA0A" host_OS="openbsd" inactive="False" lastCompiled="1157930802" lastInstalled="0" lastModified="1295542650" platform="pf" version="" name="firewall1" comment="this object is used to test all kinds of negation in policy rules Also using interface policy on eth1 to test specific case with negation and rule shading depection " ro="False">
|
||||
<NAT id="id3AF5AA0D" name="NAT" comment="" ro="False" ipv4_rule_set="False" ipv6_rule_set="False" top_rule_set="True">
|
||||
<NATRule id="id3C98491C" disabled="False" position="0" action="Translate" comment="">
|
||||
<OSrc neg="False">
|
||||
@ -3161,7 +3170,53 @@
|
||||
</TSrv>
|
||||
<NATRuleOptions/>
|
||||
</NATRule>
|
||||
<NATRule id="id3BBC0F93" disabled="False" position="12" action="Translate" comment="">
|
||||
<NATRule id="id122244X18008" disabled="False" group="" position="12" action="Translate" comment="">
|
||||
<OSrc neg="False">
|
||||
<ObjectRef ref="net-Internal_net"/>
|
||||
</OSrc>
|
||||
<ODst neg="True">
|
||||
<ObjectRef ref="net-Internal_net"/>
|
||||
<ObjectRef ref="id3B022266"/>
|
||||
</ODst>
|
||||
<OSrv neg="False">
|
||||
<ServiceRef ref="tcp-HTTP"/>
|
||||
<ServiceRef ref="id172244X18008"/>
|
||||
</OSrv>
|
||||
<TSrc neg="False">
|
||||
<ObjectRef ref="sysid0"/>
|
||||
</TSrc>
|
||||
<TDst neg="False">
|
||||
<ObjectRef ref="id3AF5AA0A"/>
|
||||
</TDst>
|
||||
<TSrv neg="False">
|
||||
<ServiceRef ref="id3B5009F7"/>
|
||||
</TSrv>
|
||||
<NATRuleOptions/>
|
||||
</NATRule>
|
||||
<NATRule id="id272339X18008" disabled="False" group="" position="13" action="Translate" comment="">
|
||||
<OSrc neg="False">
|
||||
<ObjectRef ref="net-Internal_net"/>
|
||||
</OSrc>
|
||||
<ODst neg="True">
|
||||
<ObjectRef ref="net-Internal_net"/>
|
||||
<ObjectRef ref="id3B022266"/>
|
||||
</ODst>
|
||||
<OSrv neg="False">
|
||||
<ServiceRef ref="tcp-HTTP"/>
|
||||
<ServiceRef ref="id172244X18008"/>
|
||||
</OSrv>
|
||||
<TSrc neg="False">
|
||||
<ObjectRef ref="sysid0"/>
|
||||
</TSrc>
|
||||
<TDst neg="False">
|
||||
<ObjectRef ref="id272368X18008"/>
|
||||
</TDst>
|
||||
<TSrv neg="False">
|
||||
<ServiceRef ref="id3B5009F7"/>
|
||||
</TSrv>
|
||||
<NATRuleOptions/>
|
||||
</NATRule>
|
||||
<NATRule id="id3BBC0F93" disabled="False" position="14" action="Translate" comment="">
|
||||
<OSrc neg="True">
|
||||
<ObjectRef ref="id3B4572AF"/>
|
||||
</OSrc>
|
||||
@ -3182,7 +3237,7 @@
|
||||
</TSrv>
|
||||
<NATRuleOptions/>
|
||||
</NATRule>
|
||||
<NATRule id="id3BC6BCE5" disabled="False" position="13" action="Translate" comment="">
|
||||
<NATRule id="id3BC6BCE5" disabled="False" position="15" action="Translate" comment="">
|
||||
<OSrc neg="True">
|
||||
<ObjectRef ref="host-hostA"/>
|
||||
</OSrc>
|
||||
@ -3203,7 +3258,7 @@
|
||||
</TSrv>
|
||||
<NATRuleOptions/>
|
||||
</NATRule>
|
||||
<NATRule id="id3FDCD893" disabled="False" position="14" action="Translate" comment="">
|
||||
<NATRule id="id3FDCD893" disabled="False" position="16" action="Translate" comment="">
|
||||
<OSrc neg="False">
|
||||
<ObjectRef ref="id3B665643"/>
|
||||
<ObjectRef ref="id3FDCD983"/>
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:36 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:58:07 2011 PST by vadim
|
||||
#
|
||||
# files: * pf_cluster_1_openbsd-1.fw
|
||||
# files: pf_cluster_1_openbsd-1.conf
|
||||
@ -291,7 +291,7 @@ configure_interfaces() {
|
||||
$IFCONFIG pfsync0 up
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:36 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:58:07 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:36 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:58:07 2011 PST by vadim
|
||||
#
|
||||
# files: * pf_cluster_1_openbsd-2.fw
|
||||
# files: pf_cluster_1_openbsd-2.conf
|
||||
@ -187,7 +187,7 @@ configure_interfaces() {
|
||||
update_addresses_of_interface "carp1 192.168.1.1/0xffffff00" ""
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:36 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:58:07 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:37 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:58:07 2011 PST by vadim
|
||||
#
|
||||
# files: * pf_cluster_2_freebsd-2.fw
|
||||
# files: pf_cluster_2_freebsd-2.conf
|
||||
@ -190,7 +190,7 @@ configure_interfaces() {
|
||||
update_addresses_of_interface "carp1 192.168.1.1/0xffffff00" ""
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:37 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:58:07 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:37 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:58:07 2011 PST by vadim
|
||||
#
|
||||
# files: * pf_cluster_3_openbsd-3.fw
|
||||
# files: pf_cluster_3_openbsd-3.conf
|
||||
@ -303,7 +303,7 @@ configure_interfaces() {
|
||||
sync_pfsync_interfaces
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:37 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:58:07 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
@ -2,9 +2,9 @@
|
||||
#
|
||||
# This is automatically generated file. DO NOT MODIFY !
|
||||
#
|
||||
# Firewall Builder fwb_pf v4.2.0.3426
|
||||
# Firewall Builder fwb_pf v4.2.0.3439
|
||||
#
|
||||
# Generated Mon Jan 10 16:36:37 2011 PST by vadim
|
||||
# Generated Thu Jan 20 08:58:07 2011 PST by vadim
|
||||
#
|
||||
# files: * pf_cluster_3_openbsd-4.fw
|
||||
# files: pf_cluster_3_openbsd-4.conf
|
||||
@ -192,7 +192,7 @@ configure_interfaces() {
|
||||
update_addresses_of_interface "carp2 172.20.0.1/0xffffff00" ""
|
||||
}
|
||||
|
||||
log "Activating firewall script generated Mon Jan 10 16:36:37 2011 by vadim"
|
||||
log "Activating firewall script generated Thu Jan 20 08:58:07 2011 by vadim"
|
||||
|
||||
set_kernel_vars
|
||||
configure_interfaces
|
||||
|
||||
Loading…
x
Reference in New Issue
Block a user