onkelbeh/fwbuilder
1
0
Fork 0
mirror of https://github.com/fwbuilder/fwbuilder synced 2026-03-19 17:57:22 +01:00
Code Issues Releases Wiki Activity
fwbuilder/test/ipf/firewall10-ipf.conf.orig
Vadim Kurland abf2b3b2be checking in "golden" test files
2011-01-03 13:01:06 -08:00

194 lines
8.5 KiB
Plaintext
Executable File
Raw Blame History

# Policy compiler errors and warnings:
# firewall10:Policy:2: warning: Changing rule direction due to self reference
#
# Rule 0 (global)
count in from any to any
count out from any to any
#
# Rule 1 (global)
skip 5 in from 192.168.1.10 to any
skip 4 in from 192.168.1.20 to any
skip 3 in from 192.168.1.100 to any
skip 2 in from 192.168.1.110 to any
skip 1 in from 192.168.1.120 to any
skip 18 in from any to any
skip 4 in from any to 192.168.2.10
skip 3 in from any to 192.168.2.20
skip 2 in from any to 192.168.2.30
skip 1 in from any to 192.168.2.40
skip 13 in from any to any
skip 12 in proto tcp from any to any port = 80
skip 11 in proto tcp from any to any port = 21
skip 10 in proto tcp from any to any port = 25
skip 9 in proto tcp from any to any port = 119
skip 5 out from 192.168.1.10 to any
skip 4 out from 192.168.1.20 to any
skip 3 out from 192.168.1.100 to any
skip 2 out from 192.168.1.110 to any
skip 1 out from 192.168.1.120 to any
skip 18 out from any to any
skip 4 out from any to 192.168.2.10
skip 3 out from any to 192.168.2.20
skip 2 out from any to 192.168.2.30
skip 1 out from any to 192.168.2.40
skip 13 out from any to any
skip 12 out proto tcp from any to any port = 80
skip 11 out proto tcp from any to any port = 21
skip 10 out proto tcp from any to any port = 25
skip 9 out proto tcp from any to any port = 119
skip 4 in from any to 192.168.2.10
skip 3 in from any to 192.168.2.20
skip 2 in from any to 192.168.2.30
skip 1 in from any to 192.168.2.40
skip 4 in from any to any
pass in quick proto tcp from any to any port = 80 flags S keep state
pass in quick proto tcp from any to any port = 21 flags S keep state
pass in quick proto tcp from any to any port = 25 flags S keep state
pass in quick proto tcp from any to any port = 119 flags S keep state
skip 4 out from any to 192.168.2.10
skip 3 out from any to 192.168.2.20
skip 2 out from any to 192.168.2.30
skip 1 out from any to 192.168.2.40
skip 4 out from any to any
pass out quick proto tcp from any to any port = 80 flags S keep state
pass out quick proto tcp from any to any port = 21 flags S keep state
pass out quick proto tcp from any to any port = 25 flags S keep state
pass out quick proto tcp from any to any port = 119 flags S keep state
#
# Rule 2 (global)
# firewall10:Policy:2: warning: Changing rule direction due to self reference
skip 1 in from 192.168.1.0/24 to any
# firewall10:Policy:2: warning: Changing rule direction due to self reference
skip 11 in from any to any
# firewall10:Policy:2: warning: Changing rule direction due to self reference
skip 3 in from any to 22.22.22.22
# firewall10:Policy:2: warning: Changing rule direction due to self reference
skip 2 in from any to 192.168.1.1
# firewall10:Policy:2: warning: Changing rule direction due to self reference
skip 1 in from any to 192.168.2.0
# firewall10:Policy:2: warning: Changing rule direction due to self reference
skip 7 in from any to any
# firewall10:Policy:2: warning: Changing rule direction due to self reference
pass in quick proto icmp from any to any icmp-type 11 code 0 keep state
# firewall10:Policy:2: warning: Changing rule direction due to self reference
pass in quick proto icmp from any to any icmp-type 11 code 1 keep state
# firewall10:Policy:2: warning: Changing rule direction due to self reference
pass in quick proto icmp from any to any icmp-type 0 code 0 keep state
# firewall10:Policy:2: warning: Changing rule direction due to self reference
pass in quick proto icmp from any to any icmp-type 3 keep state
# firewall10:Policy:2: warning: Changing rule direction due to self reference
pass in quick proto tcp from 192.168.1.0/24 to 22.22.22.22 port = 22 flags S keep state
# firewall10:Policy:2: warning: Changing rule direction due to self reference
pass in quick proto tcp from 192.168.1.0/24 to 192.168.1.1 port = 22 flags S keep state
# firewall10:Policy:2: warning: Changing rule direction due to self reference
pass in quick proto tcp from 192.168.1.0/24 to 192.168.2.0 port = 22 flags S keep state
#
# Rule 3 (global)
skip 5 in from 192.168.1.10 to any
skip 4 in from 192.168.1.20 to any
skip 3 in from 192.168.1.100 to any
skip 2 in from 192.168.1.110 to any
skip 1 in from 192.168.1.120 to any
skip 9 in from any to any
skip 4 in from any to 192.168.2.10
skip 3 in from any to 192.168.2.20
skip 2 in from any to 192.168.2.30
skip 1 in from any to 192.168.2.40
skip 4 in from any to any
block in quick proto tcp from any to any port = 80
block in quick proto tcp from any to any port = 21
block in quick proto tcp from any to any port = 25
block in quick proto tcp from any to any port = 119
skip 5 out from 192.168.1.10 to any
skip 4 out from 192.168.1.20 to any
skip 3 out from 192.168.1.100 to any
skip 2 out from 192.168.1.110 to any
skip 1 out from 192.168.1.120 to any
skip 9 out from any to any
skip 4 out from any to 192.168.2.10
skip 3 out from any to 192.168.2.20
skip 2 out from any to 192.168.2.30
skip 1 out from any to 192.168.2.40
skip 4 out from any to any
block out quick proto tcp from any to any port = 80
block out quick proto tcp from any to any port = 21
block out quick proto tcp from any to any port = 25
block out quick proto tcp from any to any port = 119
#
# Rule 4 (global)
skip 1 in from 192.168.1.10 to any
skip 9 in from any to any
skip 4 in from any to 192.168.2.10
skip 3 in from any to 192.168.2.20
skip 2 in from any to 192.168.2.30
skip 1 in from any to 192.168.2.40
skip 4 in from any to any
block in quick proto tcp from any to any port = 80
block in quick proto tcp from any to any port = 21
block in quick proto tcp from any to any port = 25
block in quick proto tcp from any to any port = 119
skip 1 out from 192.168.1.10 to any
skip 9 out from any to any
skip 4 out from any to 192.168.2.10
skip 3 out from any to 192.168.2.20
skip 2 out from any to 192.168.2.30
skip 1 out from any to 192.168.2.40
skip 4 out from any to any
block out quick proto tcp from any to any port = 80
block out quick proto tcp from any to any port = 21
block out quick proto tcp from any to any port = 25
block out quick proto tcp from any to any port = 119
#
# Rule 5 (global)
skip 5 in from 192.168.1.10 to any
skip 4 in from 192.168.1.20 to any
skip 3 in from 192.168.1.100 to any
skip 2 in from 192.168.1.110 to any
skip 1 in from 192.168.1.120 to any
skip 4 in from any to any
block in quick proto tcp from any to 192.168.2.10 port = 80
block in quick proto tcp from any to 192.168.2.10 port = 21
block in quick proto tcp from any to 192.168.2.10 port = 25
block in quick proto tcp from any to 192.168.2.10 port = 119
skip 5 out from 192.168.1.10 to any
skip 4 out from 192.168.1.20 to any
skip 3 out from 192.168.1.100 to any
skip 2 out from 192.168.1.110 to any
skip 1 out from 192.168.1.120 to any
skip 4 out from any to any
block out quick proto tcp from any to 192.168.2.10 port = 80
block out quick proto tcp from any to 192.168.2.10 port = 21
block out quick proto tcp from any to 192.168.2.10 port = 25
block out quick proto tcp from any to 192.168.2.10 port = 119
#
# Rule 6 (global)
skip 5 in from 192.168.1.10 to any
skip 4 in from 192.168.1.20 to any
skip 3 in from 192.168.1.100 to any
skip 2 in from 192.168.1.110 to any
skip 1 in from 192.168.1.120 to any
skip 4 in from any to any
block in quick proto tcp from any to 192.168.2.10 port = 80
block in quick proto tcp from any to 192.168.2.20 port = 80
block in quick proto tcp from any to 192.168.2.30 port = 80
block in quick proto tcp from any to 192.168.2.40 port = 80
skip 5 out from 192.168.1.10 to any
skip 4 out from 192.168.1.20 to any
skip 3 out from 192.168.1.100 to any
skip 2 out from 192.168.1.110 to any
skip 1 out from 192.168.1.120 to any
skip 4 out from any to any
block out quick proto tcp from any to 192.168.2.10 port = 80
block out quick proto tcp from any to 192.168.2.20 port = 80
block out quick proto tcp from any to 192.168.2.30 port = 80
block out quick proto tcp from any to 192.168.2.40 port = 80
#
# Rule 7 (global)
block in log quick from any to any
block out log quick from any to any
#
# Rule fallback rule
# fallback rule
block in quick from any to any
block out quick from any to any
Reference in New Issue View Git Blame Copy Permalink