Project

General

Profile

redmine-6850-config-pfSense.localdomain-20161207160722.xml

Jim Pingle, 12/07/2016 10:08 AM

 
1
<?xml version="1.0"?>
2
<pfsense>
3
        <version>15.9</version>
4
        <lastchange></lastchange>
5
        <system>
6
                <optimization>normal</optimization>
7
                <hostname>pfSense</hostname>
8
                <domain>localdomain</domain>
9
                <dnsserver></dnsserver>
10
                <dnsallowoverride></dnsallowoverride>
11
                <group>
12
                        <name>all</name>
13
                        <description><![CDATA[All Users]]></description>
14
                        <scope>system</scope>
15
                        <gid>1998</gid>
16
                        <member>0</member>
17
                </group>
18
                <group>
19
                        <name>admins</name>
20
                        <description><![CDATA[System Administrators]]></description>
21
                        <scope>system</scope>
22
                        <gid>1999</gid>
23
                        <member>0</member>
24
                        <priv>page-all</priv>
25
                </group>
26
                <user>
27
                        <name>admin</name>
28
                        <descr><![CDATA[System Administrator]]></descr>
29
                        <scope>system</scope>
30
                        <groupname>admins</groupname>
31
                        <bcrypt-hash>$2b$10$13u6qwCOwODv34GyCMgdWub6oQF3RX0rG7c3d3X4JvzuEmAXLYDd2</bcrypt-hash>
32
                        <uid>0</uid>
33
                        <priv>user-shell-access</priv>
34
                </user>
35
                <nextuid>2000</nextuid>
36
                <nextgid>2000</nextgid>
37
                <timeservers>0.pfsense.pool.ntp.org</timeservers>
38
                <webgui>
39
                        <protocol>https</protocol>
40
                        <loginautocomplete></loginautocomplete>
41
                        <ssl-certref>582f088a7851b</ssl-certref>
42
                        <dashboardcolumns>2</dashboardcolumns>
43
                </webgui>
44
                <disablenatreflection>yes</disablenatreflection>
45
                <disablesegmentationoffloading></disablesegmentationoffloading>
46
                <disablelargereceiveoffloading></disablelargereceiveoffloading>
47
                <ipv6allow></ipv6allow>
48
                <powerd_ac_mode>hadp</powerd_ac_mode>
49
                <powerd_battery_mode>hadp</powerd_battery_mode>
50
                <powerd_normal_mode>hadp</powerd_normal_mode>
51
                <bogons>
52
                        <interval>monthly</interval>
53
                </bogons>
54
                <enablesshd></enablesshd>
55
        </system>
56
        <interfaces>
57
                <wan>
58
                        <enable></enable>
59
                        <if>em0</if>
60
                        <descr><![CDATA[WAN]]></descr>
61
                        <alias-address></alias-address>
62
                        <alias-subnet>32</alias-subnet>
63
                        <spoofmac></spoofmac>
64
                        <ipaddr>192.0.2.55</ipaddr>
65
                        <subnet>32</subnet>
66
                        <gateway>WANGW</gateway>
67
                </wan>
68
                <lan>
69
                        <enable></enable>
70
                        <if>em1</if>
71
                        <ipaddr>192.168.1.1</ipaddr>
72
                        <subnet>24</subnet>
73
                        <ipaddrv6>track6</ipaddrv6>
74
                        <subnetv6>64</subnetv6>
75
                        <media></media>
76
                        <mediaopt></mediaopt>
77
                        <track6-interface>wan</track6-interface>
78
                        <track6-prefix-id>0</track6-prefix-id>
79
                </lan>
80
        </interfaces>
81
        <staticroutes></staticroutes>
82
        <dhcpd>
83
                <lan>
84
                        <enable></enable>
85
                        <range>
86
                                <from>192.168.1.100</from>
87
                                <to>192.168.1.199</to>
88
                        </range>
89
                </lan>
90
        </dhcpd>
91
        <dhcpdv6>
92
                <lan>
93
                        <range>
94
                                <from>::1000</from>
95
                                <to>::2000</to>
96
                        </range>
97
                        <ramode>disabled</ramode>
98
                        <rapriority>medium</rapriority>
99
                        <prefixrange>
100
                                <from></from>
101
                                <to></to>
102
                                <prefixlength>48</prefixlength>
103
                        </prefixrange>
104
                        <defaultleasetime></defaultleasetime>
105
                        <maxleasetime></maxleasetime>
106
                        <netmask></netmask>
107
                        <domain></domain>
108
                        <domainsearchlist></domainsearchlist>
109
                        <ddnsdomain></ddnsdomain>
110
                        <ddnsdomainprimary></ddnsdomainprimary>
111
                        <ddnsdomainkeyname></ddnsdomainkeyname>
112
                        <ddnsdomainkey></ddnsdomainkey>
113
                        <ddnsclientupdates>allow</ddnsclientupdates>
114
                        <tftp></tftp>
115
                        <ldap></ldap>
116
                        <bootfile_url></bootfile_url>
117
                        <dhcpv6leaseinlocaltime></dhcpv6leaseinlocaltime>
118
                        <numberoptions></numberoptions>
119
                        <rainterface></rainterface>
120
                        <ravalidlifetime></ravalidlifetime>
121
                        <rapreferredlifetime></rapreferredlifetime>
122
                        <raminrtradvinterval></raminrtradvinterval>
123
                        <ramaxrtradvinterval></ramaxrtradvinterval>
124
                        <raadvdefaultlifetime></raadvdefaultlifetime>
125
                        <radomainsearchlist></radomainsearchlist>
126
                </lan>
127
        </dhcpdv6>
128
        <snmpd>
129
                <syslocation></syslocation>
130
                <syscontact></syscontact>
131
                <rocommunity>public</rocommunity>
132
        </snmpd>
133
        <diag>
134
                <ipv6nat>
135
                        <ipaddr></ipaddr>
136
                </ipv6nat>
137
        </diag>
138
        <syslog></syslog>
139
        <nat>
140
                <outbound>
141
                        <mode>automatic</mode>
142
                </outbound>
143
        </nat>
144
        <filter>
145
                <rule>
146
                        <type>pass</type>
147
                        <ipprotocol>inet</ipprotocol>
148
                        <descr><![CDATA[Default allow LAN to any rule]]></descr>
149
                        <interface>lan</interface>
150
                        <tracker>0100000101</tracker>
151
                        <source>
152
                                <network>lan</network>
153
                        </source>
154
                        <destination>
155
                                <any></any>
156
                        </destination>
157
                </rule>
158
                <rule>
159
                        <type>pass</type>
160
                        <ipprotocol>inet6</ipprotocol>
161
                        <descr><![CDATA[Default allow LAN IPv6 to any rule]]></descr>
162
                        <interface>lan</interface>
163
                        <tracker>0100000102</tracker>
164
                        <source>
165
                                <network>lan</network>
166
                        </source>
167
                        <destination>
168
                                <any></any>
169
                        </destination>
170
                </rule>
171
                <rule>
172
                        <type>pass</type>
173
                        <interface>wan</interface>
174
                        <source>
175
                                <any></any>
176
                        </source>
177
                        <destination>
178
                                <any></any>
179
                        </destination>
180
                        <statetype>keep state</statetype>
181
                        <os></os>
182
                        <descr><![CDATA[Allow all ipv4 via pfSsh.php]]></descr>
183
                </rule>
184
                <rule>
185
                        <type>pass</type>
186
                        <ipprotocol>inet6</ipprotocol>
187
                        <interface>wan</interface>
188
                        <source>
189
                                <any></any>
190
                        </source>
191
                        <destination>
192
                                <any></any>
193
                        </destination>
194
                        <statetype>keep state</statetype>
195
                        <os></os>
196
                        <descr><![CDATA[Allow all ipv6 via pfSsh.php]]></descr>
197
                </rule>
198
        </filter>
199
        <shaper></shaper>
200
        <ipsec></ipsec>
201
        <aliases></aliases>
202
        <proxyarp></proxyarp>
203
        <cron>
204
                <item>
205
                        <minute>1,31</minute>
206
                        <hour>0-5</hour>
207
                        <mday>*</mday>
208
                        <month>*</month>
209
                        <wday>*</wday>
210
                        <who>root</who>
211
                        <command>/usr/bin/nice -n20 adjkerntz -a</command>
212
                </item>
213
                <item>
214
                        <minute>1</minute>
215
                        <hour>3</hour>
216
                        <mday>1</mday>
217
                        <month>*</month>
218
                        <wday>*</wday>
219
                        <who>root</who>
220
                        <command>/usr/bin/nice -n20 /etc/rc.update_bogons.sh</command>
221
                </item>
222
                <item>
223
                        <minute>*/60</minute>
224
                        <hour>*</hour>
225
                        <mday>*</mday>
226
                        <month>*</month>
227
                        <wday>*</wday>
228
                        <who>root</who>
229
                        <command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 sshlockout</command>
230
                </item>
231
                <item>
232
                        <minute>*/60</minute>
233
                        <hour>*</hour>
234
                        <mday>*</mday>
235
                        <month>*</month>
236
                        <wday>*</wday>
237
                        <who>root</who>
238
                        <command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 webConfiguratorlockout</command>
239
                </item>
240
                <item>
241
                        <minute>1</minute>
242
                        <hour>1</hour>
243
                        <mday>*</mday>
244
                        <month>*</month>
245
                        <wday>*</wday>
246
                        <who>root</who>
247
                        <command>/usr/bin/nice -n20 /etc/rc.dyndns.update</command>
248
                </item>
249
                <item>
250
                        <minute>*/60</minute>
251
                        <hour>*</hour>
252
                        <mday>*</mday>
253
                        <month>*</month>
254
                        <wday>*</wday>
255
                        <who>root</who>
256
                        <command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 virusprot</command>
257
                </item>
258
                <item>
259
                        <minute>30</minute>
260
                        <hour>12</hour>
261
                        <mday>*</mday>
262
                        <month>*</month>
263
                        <wday>*</wday>
264
                        <who>root</who>
265
                        <command>/usr/bin/nice -n20 /etc/rc.update_urltables</command>
266
                </item>
267
        </cron>
268
        <wol></wol>
269
        <rrd>
270
                <enable></enable>
271
        </rrd>
272
        <load_balancer>
273
                <monitor_type>
274
                        <name>ICMP</name>
275
                        <type>icmp</type>
276
                        <descr><![CDATA[ICMP]]></descr>
277
                        <options></options>
278
                </monitor_type>
279
                <monitor_type>
280
                        <name>TCP</name>
281
                        <type>tcp</type>
282
                        <descr><![CDATA[Generic TCP]]></descr>
283
                        <options></options>
284
                </monitor_type>
285
                <monitor_type>
286
                        <name>HTTP</name>
287
                        <type>http</type>
288
                        <descr><![CDATA[Generic HTTP]]></descr>
289
                        <options>
290
                                <path>/</path>
291
                                <host></host>
292
                                <code>200</code>
293
                        </options>
294
                </monitor_type>
295
                <monitor_type>
296
                        <name>HTTPS</name>
297
                        <type>https</type>
298
                        <descr><![CDATA[Generic HTTPS]]></descr>
299
                        <options>
300
                                <path>/</path>
301
                                <host></host>
302
                                <code>200</code>
303
                        </options>
304
                </monitor_type>
305
                <monitor_type>
306
                        <name>SMTP</name>
307
                        <type>send</type>
308
                        <descr><![CDATA[Generic SMTP]]></descr>
309
                        <options>
310
                                <send></send>
311
                                <expect>220 *</expect>
312
                        </options>
313
                </monitor_type>
314
        </load_balancer>
315
        <widgets>
316
                <sequence>system_information:col1:show,interfaces:col2:show</sequence>
317
                <period>10</period>
318
        </widgets>
319
        <openvpn></openvpn>
320
        <dnshaper></dnshaper>
321
        <unbound>
322
                <enable></enable>
323
                <dnssec></dnssec>
324
                <active_interface></active_interface>
325
                <outgoing_interface></outgoing_interface>
326
                <custom_options></custom_options>
327
                <hideidentity></hideidentity>
328
                <hideversion></hideversion>
329
                <dnssecstripped></dnssecstripped>
330
        </unbound>
331
        <dyndnses></dyndnses>
332
        <revision>
333
                <time>1481125328</time>
334
                <description><![CDATA[admin@192.168.1.101: /system_gateways_edit.php made unknown change]]></description>
335
                <username>admin@192.168.1.101</username>
336
        </revision>
337
        <cert>
338
                <refid>582f088a7851b</refid>
339
                <descr><![CDATA[webConfigurator default (582f088a7851b)]]></descr>
340
                <type>server</type>
341
                <crt>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</crt>
342
                <prv>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</prv>
343
        </cert>
344
        <ppps></ppps>
345
        <gateways>
346
                <gateway_item>
347
                        <interface>wan</interface>
348
                        <gateway>198.51.100.1</gateway>
349
                        <name>WANGW</name>
350
                        <weight>1</weight>
351
                        <ipprotocol>inet</ipprotocol>
352
                        <descr></descr>
353
                        <nonlocalgateway></nonlocalgateway>
354
                        <defaultgw></defaultgw>
355
                </gateway_item>
356
        </gateways>
357
</pfsense>