fwbuilder/test/iosacl/testios4.fw.orig

!
!  This is automatically generated file. DO NOT MODIFY !
!
!  Firewall Builder  fwb_iosacl v4.2.0.3483
!
!  Generated Sun Feb 20 21:26:41 2011 PST by vadim
!
! Compiled for iosacl 12.4
!
!# files: * testios4.fw
!
! using object-groups

! testios4:Policy:3: error: File not found for Address Table: missing table (file_does_not_exist.tbl) Using dummy address in test mode

!
! Prolog script:
!

!
! End of prolog script:
!

hostname testios4

! temporary access list for "safety net install"
no ip access-list extended tmp_acl
ip access-list extended tmp_acl
  permit ip 10.10.10.0 0.0.0.255 any 
  deny ip any any 
exit
interface ethernet1
  no ip access-group in
  no ip access-group out
  ip access-group tmp_acl in
exit
no ip access-list extended e0_in
no ip access-list extended e0_out
no ip access-list extended e1_in
no ip access-list extended e1_out
no object-group network id47161X84238.1.src.net.0
no object-group network id47180X84238.src.net.0
no object-group network id47180X84238.dst.net.0
no object-group network id47192X84238.dst.net.0
no object-group network id47204X84238.dst.net.0

object-group network id47161X84238.1.src.net.0
  host 1.1.1.1
  host 10.10.10.1
exit

object-group network id47180X84238.src.net.0
  10.10.10.0 /24
  10.10.11.0 /24
  10.10.12.0 /24
exit

object-group network id47180X84238.dst.net.0
  192.168.1.1 /32
  192.168.1.2 /32
  192.168.1.3 /30
  192.168.1.200 /32
  192.168.1.201 /32
  192.168.2.128 /25
exit

object-group network id47192X84238.dst.net.0
  58.33.181.83 /32
  58.53.82.190 /32
  58.231.13.78 /32
  61.150.47.112 /32
  61.184.14.102 /32
  64.106.85.186 /32
  70.228.60.100 /32
  80.51.236.6 /32
  80.243.72.149 /32
  80.249.77.34 /32
  81.2.36.254 /32
  81.196.74.125 /32
  82.77.37.174 /32
  82.117.221.205 /32
  82.143.196.17 /32
  84.90.8.198 /32
  151.8.224.178 /32
  168.156.76.20 /32
  193.207.126.36 /32
  195.136.186.35 /32
  196.15.136.15 /32
  201.10.180.138 /32
  201.17.93.16 /32
  201.36.156.121 /32
  202.96.112.93 /32
  202.103.25.253 /32
  203.162.3.209 /32
  203.209.124.144 /32
  210.106.193.237 /32
  210.222.114.102 /32
  211.144.143.143 /32
  211.172.218.237 /32
  211.250.16.132 /32
  212.21.241.31 /32
  212.100.212.100 /32
  218.18.72.252 /32
  218.39.114.122 /32
  218.55.115.43 /32
  218.104.138.146 /32
  219.132.104.160 /32
  220.71.17.86 /32
  220.81.50.105 /32
  220.91.99.46 /32
  221.14.249.242 /32
  221.166.177.135 /32
  221.198.33.38 /32
  221.202.160.233 /32
  221.205.54.125 /32
  221.217.44.248 /32
  222.100.212.223 /32
  222.121.118.144 /32
  222.174.113.2 /32
exit

object-group network id47204X84238.dst.net.0
  58.33.181.83 /32
  58.53.82.190 /32
  58.231.13.78 /32
  61.150.47.112 /32
  61.184.14.102 /32
  64.106.85.186 /32
  70.228.60.100 /32
  80.51.236.6 /32
  80.243.72.149 /32
  80.249.77.34 /32
  81.2.36.254 /32
  81.196.74.125 /32
  82.77.37.174 /32
  82.117.221.205 /32
  82.143.196.17 /32
  84.90.8.198 /32
  151.8.224.178 /32
  168.156.76.20 /32
  192.168.1.1 /32
  192.168.1.2 /32
  192.168.1.3 /30
  192.168.1.200 /32
  192.168.1.201 /32
  192.168.2.128 /25
  193.207.126.36 /32
  195.136.186.35 /32
  196.15.136.15 /32
  201.10.180.138 /32
  201.17.93.16 /32
  201.36.156.121 /32
  202.96.112.93 /32
  202.103.25.253 /32
  203.162.3.209 /32
  203.209.124.144 /32
  210.106.193.237 /32
  210.222.114.102 /32
  211.144.143.143 /32
  211.172.218.237 /32
  211.250.16.132 /32
  212.21.241.31 /32
  212.100.212.100 /32
  218.18.72.252 /32
  218.39.114.122 /32
  218.55.115.43 /32
  218.104.138.146 /32
  219.132.104.160 /32
  220.71.17.86 /32
  220.81.50.105 /32
  220.91.99.46 /32
  221.14.249.242 /32
  221.166.177.135 /32
  221.198.33.38 /32
  221.202.160.233 /32
  221.205.54.125 /32
  221.217.44.248 /32
  222.100.212.223 /32
  222.121.118.144 /32
  222.174.113.2 /32
exit

! ================ IPv4


ip access-list extended e0_in
! 
! Rule  -1 backup ssh access rule (automatic)
  permit tcp  10.10.10.0 0.0.0.255 object-group id47161X84238.1.src.net.0 eq 22 
! 
! Rule  4 (global)
  deny   ip  any  any  log 
exit

ip access-list extended e0_out
! 
! Rule  -2 backup ssh access rule (out) (automatic)
  permit tcp  object-group id47161X84238.1.src.net.0 eq 22 10.10.10.0 0.0.0.255 
! 
! Rule  0 (ethernet0)
  deny   ip  object-group id47180X84238.src.net.0 object-group id47180X84238.dst.net.0 log 
! 
! Rule  1 (ethernet0)
  deny   ip  object-group id47180X84238.src.net.0 object-group id47192X84238.dst.net.0 log 
! 
! Rule  2 (ethernet0)
  deny   ip  object-group id47180X84238.src.net.0 object-group id47204X84238.dst.net.0 log 
! 
! Rule  3 (ethernet0)
! testios4:Policy:3: error: File not found for Address Table: missing table (file_does_not_exist.tbl) Using dummy address in test mode

  deny   ip  object-group id47180X84238.src.net.0 192.0.2.0 0.0.0.255 log 
! 
! Rule  4 (global)
  deny   ip  any  any  log 
exit

ip access-list extended e1_in
! 
! Rule  -1 backup ssh access rule (automatic)
  permit tcp  10.10.10.0 0.0.0.255 object-group id47161X84238.1.src.net.0 eq 22 
! 
! Rule  4 (global)
  deny   ip  any  any  log 
exit

ip access-list extended e1_out
! 
! Rule  -2 backup ssh access rule (out) (automatic)
  permit tcp  object-group id47161X84238.1.src.net.0 eq 22 10.10.10.0 0.0.0.255 
! 
! Rule  4 (global)
  deny   ip  any  any  log 
exit


interface ethernet0
  ip access-group e0_in in
exit
interface ethernet0
  ip access-group e0_out out
exit
interface ethernet1
  ip access-group e1_in in
exit
interface ethernet1
  ip access-group e1_out out
exit





!
! Epilog script:
!

! End of epilog script:
!