Project

General

Profile

Download (45.5 KB)

Bug #7050 » BKP_2.1.5_FuncionandoPerfeitamente.xml

Nelson Junior, 12/30/2016 10:59 AM

 
1 
<?xml version="1.0"?>
2 
<pfsense>
3 
	<version>10.1</version>
4 
	<lastchange/>
5 
	<theme>nervecenter</theme>
6 
	<sysctl>
7 
		<item>
8 
			<descr><![CDATA[Enable mounting the FS read only with more checks.]]></descr>
9 
			<tunable>vfs.forcesync</tunable>
10 
			<value>default</value>
11 
		</item>
12 
		<item>
13 
			<descr><![CDATA[Disable the pf ftp proxy handler.]]></descr>
14 
			<tunable>debug.pfftpproxy</tunable>
15 
			<value>default</value>
16 
		</item>
17 
		<item>
18 
			<descr><![CDATA[Increase UFS read-ahead speeds to match current state of hard drives and NCQ. More information here: http://ivoras.sharanet.org/blog/tree/2010-11-19.ufs-read-ahead.html]]></descr>
19 
			<tunable>vfs.read_max</tunable>
20 
			<value>default</value>
21 
		</item>
22 
		<item>
23 
			<descr><![CDATA[Set the ephemeral port range to be lower.]]></descr>
24 
			<tunable>net.inet.ip.portrange.first</tunable>
25 
			<value>default</value>
26 
		</item>
27 
		<item>
28 
			<descr><![CDATA[Drop packets to closed TCP ports without returning a RST]]></descr>
29 
			<tunable>net.inet.tcp.blackhole</tunable>
30 
			<value>default</value>
31 
		</item>
32 
		<item>
33 
			<descr><![CDATA[Do not send ICMP port unreachable messages for closed UDP ports]]></descr>
34 
			<tunable>net.inet.udp.blackhole</tunable>
35 
			<value>default</value>
36 
		</item>
37 
		<item>
38 
			<descr><![CDATA[Randomize the ID field in IP packets (default is 0: sequential IP IDs)]]></descr>
39 
			<tunable>net.inet.ip.random_id</tunable>
40 
			<value>default</value>
41 
		</item>
42 
		<item>
43 
			<descr><![CDATA[Drop SYN-FIN packets (breaks RFC1379, but nobody uses it anyway)]]></descr>
44 
			<tunable>net.inet.tcp.drop_synfin</tunable>
45 
			<value>default</value>
46 
		</item>
47 
		<item>
48 
			<descr><![CDATA[Enable sending IPv4 redirects]]></descr>
49 
			<tunable>net.inet.ip.redirect</tunable>
50 
			<value>default</value>
51 
		</item>
52 
		<item>
53 
			<descr><![CDATA[Enable sending IPv6 redirects]]></descr>
54 
			<tunable>net.inet6.ip6.redirect</tunable>
55 
			<value>default</value>
56 
		</item>
57 
		<item>
58 
			<descr><![CDATA[Enable privacy settings for IPv6 (RFC 4941)]]></descr>
59 
			<tunable>net.inet6.ip6.use_tempaddr</tunable>
60 
			<value>default</value>
61 
		</item>
62 
		<item>
63 
			<descr><![CDATA[Prefer privacy addresses and use them over the normal addresses]]></descr>
64 
			<tunable>net.inet6.ip6.prefer_tempaddr</tunable>
65 
			<value>default</value>
66 
		</item>
67 
		<item>
68 
			<descr><![CDATA[Generate SYN cookies for outbound SYN-ACK packets]]></descr>
69 
			<tunable>net.inet.tcp.syncookies</tunable>
70 
			<value>default</value>
71 
		</item>
72 
		<item>
73 
			<descr><![CDATA[Maximum incoming/outgoing TCP datagram size (receive)]]></descr>
74 
			<tunable>net.inet.tcp.recvspace</tunable>
75 
			<value>default</value>
76 
		</item>
77 
		<item>
78 
			<descr><![CDATA[Maximum incoming/outgoing TCP datagram size (send)]]></descr>
79 
			<tunable>net.inet.tcp.sendspace</tunable>
80 
			<value>default</value>
81 
		</item>
82 
		<item>
83 
			<descr><![CDATA[IP Fastforwarding]]></descr>
84 
			<tunable>net.inet.ip.fastforwarding</tunable>
85 
			<value>default</value>
86 
		</item>
87 
		<item>
88 
			<descr><![CDATA[Do not delay ACK to try and piggyback it onto a data packet]]></descr>
89 
			<tunable>net.inet.tcp.delayed_ack</tunable>
90 
			<value>default</value>
91 
		</item>
92 
		<item>
93 
			<descr><![CDATA[Maximum outgoing UDP datagram size]]></descr>
94 
			<tunable>net.inet.udp.maxdgram</tunable>
95 
			<value>default</value>
96 
		</item>
97 
		<item>
98 
			<descr><![CDATA[Handling of non-IP packets which are not passed to pfil (see if_bridge(4))]]></descr>
99 
			<tunable>net.link.bridge.pfil_onlyip</tunable>
100 
			<value>default</value>
101 
		</item>
102 
		<item>
103 
			<descr><![CDATA[Set to 0 to disable filtering on the incoming and outgoing member interfaces.]]></descr>
104 
			<tunable>net.link.bridge.pfil_member</tunable>
105 
			<value>default</value>
106 
		</item>
107 
		<item>
108 
			<descr><![CDATA[Set to 1 to enable filtering on the bridge interface]]></descr>
109 
			<tunable>net.link.bridge.pfil_bridge</tunable>
110 
			<value>default</value>
111 
		</item>
112 
		<item>
113 
			<descr><![CDATA[Allow unprivileged access to tap(4) device nodes]]></descr>
114 
			<tunable>net.link.tap.user_open</tunable>
115 
			<value>default</value>
116 
		</item>
117 
		<item>
118 
			<descr><![CDATA[Randomize PID's (see src/sys/kern/kern_fork.c: sysctl_kern_randompid())]]></descr>
119 
			<tunable>kern.randompid</tunable>
120 
			<value>default</value>
121 
		</item>
122 
		<item>
123 
			<descr><![CDATA[Maximum size of the IP input queue]]></descr>
124 
			<tunable>net.inet.ip.intr_queue_maxlen</tunable>
125 
			<value>default</value>
126 
		</item>
127 
		<item>
128 
			<descr><![CDATA[Disable CTRL+ALT+Delete reboot from keyboard.]]></descr>
129 
			<tunable>hw.syscons.kbd_reboot</tunable>
130 
			<value>default</value>
131 
		</item>
132 
		<item>
133 
			<descr><![CDATA[Enable TCP Inflight mode]]></descr>
134 
			<tunable>net.inet.tcp.inflight.enable</tunable>
135 
			<value>default</value>
136 
		</item>
137 
		<item>
138 
			<descr><![CDATA[Enable TCP extended debugging]]></descr>
139 
			<tunable>net.inet.tcp.log_debug</tunable>
140 
			<value>default</value>
141 
		</item>
142 
		<item>
143 
			<descr><![CDATA[Set ICMP Limits]]></descr>
144 
			<tunable>net.inet.icmp.icmplim</tunable>
145 
			<value>default</value>
146 
		</item>
147 
		<item>
148 
			<descr><![CDATA[TCP Offload Engine]]></descr>
149 
			<tunable>net.inet.tcp.tso</tunable>
150 
			<value>default</value>
151 
		</item>
152 
		<item>
153 
			<descr><![CDATA[UDP Checksums]]></descr>
154 
			<tunable>net.inet.udp.checksum</tunable>
155 
			<value>default</value>
156 
		</item>
157 
		<item>
158 
			<descr><![CDATA[Maximum socket buffer size]]></descr>
159 
			<tunable>kern.ipc.maxsockbuf</tunable>
160 
			<value>default</value>
161 
		</item>
162 
	</sysctl>
163 
	<system>
164 
		<optimization>normal</optimization>
165 
		<hostname>firewallpmi</hostname>
166 
		<domain>proxy</domain>
167 
		<group>
168 
			<name>all</name>
169 
			<description><![CDATA[All Users]]></description>
170 
			<scope>system</scope>
171 
			<gid>1998</gid>
172 
			<member>0</member>
173 
		</group>
174 
		<group>
175 
			<name>admins</name>
176 
			<description><![CDATA[System Administrators]]></description>
177 
			<scope>system</scope>
178 
			<gid>1999</gid>
179 
			<member>0</member>
180 
			<priv>page-all</priv>
181 
		</group>
182 
		<user>
183 
			<name>admin</name>
184 
			<descr><![CDATA[System Administrator]]></descr>
185 
			<scope>system</scope>
186 
			<groupname>admins</groupname>
187 
			<password>$1$yW3j1kR5$cZlgl6jpEecukGtWkxCw20</password>
188 
			<uid>0</uid>
189 
			<priv>user-shell-access</priv>
190 
			<md5-hash>d167e8f639c1de3f00e4e4bf688df013</md5-hash>
191 
			<nt-hash>3761663330313031326135643334383165386337613638386638623932356230</nt-hash>
192 
		</user>
193 
		<nextuid>2000</nextuid>
194 
		<nextgid>2000</nextgid>
195 
		<timezone>Brazil/West</timezone>
196 
		<time-update-interval/>
197 
		<timeservers>0.pfsense.pool.ntp.org</timeservers>
198 
		<webgui>
199 
			<protocol>http</protocol>
200 
			<noautocomplete/>
201 
			<ssl-certref>5864e9e3d1a5e</ssl-certref>
202 
			<port/>
203 
			<max_procs>2</max_procs>
204 
			<nohttpreferercheck/>
205 
		</webgui>
206 
		<disablenatreflection>yes</disablenatreflection>
207 
		<disablesegmentationoffloading/>
208 
		<disablelargereceiveoffloading/>
209 
		<ipv6allow/>
210 
		<powerd_ac_mode>hadp</powerd_ac_mode>
211 
		<powerd_battery_mode>hadp</powerd_battery_mode>
212 
		<bogons>
213 
			<interval>monthly</interval>
214 
		</bogons>
215 
		<kill_states/>
216 
		<language>en_US</language>
217 
		<dnslocalhost/>
218 
		<dns1gw>none</dns1gw>
219 
		<dns2gw>none</dns2gw>
220 
		<dns3gw>none</dns3gw>
221 
		<dns4gw>none</dns4gw>
222 
		<dnsserver>8.8.8.8</dnsserver>
223 
		<dnsserver>208.67.222.222</dnsserver>
224 
		<disableconsolemenu/>
225 
		<serialspeed>9600</serialspeed>
226 
		<primaryconsole>serial</primaryconsole>
227 
		<enablesshd>enabled</enablesshd>
228 
		<ssh>
229 
			<port>32456</port>
230 
		</ssh>
231 
		<lb_use_sticky/>
232 
		<srctrack/>
233 
		<gw_switch_default/>
234 
		<use_mfs_tmp_size/>
235 
		<use_mfs_var_size/>
236 
	</system>
237 
	<interfaces>
238 
		<wan>
239 
			<enable/>
240 
			<if>em1</if>
241 
			<blockpriv/>
242 
			<blockbogons/>
243 
			<descr><![CDATA[VoxxTelecomFibra]]></descr>
244 
			<ipaddr>x.x.x.x</ipaddr>
245 
			<subnet>28</subnet>
246 
			<gateway>WANGW</gateway>
247 
			<spoofmac/>
248 
		</wan>
249 
		<lan>
250 
			<enable/>
251 
			<if>em0</if>
252 
			<descr><![CDATA[RedeLocal]]></descr>
253 
			<ipaddr>192.168.0.1</ipaddr>
254 
			<subnet>24</subnet>
255 
			<spoofmac/>
256 
		</lan>
257 
		<opt1>
258 
			<descr><![CDATA[VivoInternetVdsl]]></descr>
259 
			<if>pppoe0</if>
260 
			<enable/>
261 
			<spoofmac/>
262 
			<ipaddr>pppoe</ipaddr>
263 
		</opt1>
264 
	</interfaces>
265 
	<staticroutes/>
266 
	<dhcpd>
267 
		<lan>
268 
			<range>
269 
				<from>192.168.0.210</from>
270 
				<to>192.168.0.254</to>
271 
			</range>
272 
			<failover_peerip/>
273 
			<dhcpleaseinlocaltime/>
274 
			<defaultleasetime/>
275 
			<maxleasetime/>
276 
			<netmask/>
277 
			<gateway>192.168.0.1</gateway>
278 
			<domain/>
279 
			<domainsearchlist/>
280 
			<ddnsdomain/>
281 
			<mac_allow/>
282 
			<mac_deny/>
283 
			<tftp/>
284 
			<ldap/>
285 
			<nextserver/>
286 
			<filename/>
287 
			<rootpath/>
288 
			<numberoptions/>
289 
			<staticmap>
290 
				<mac>64:70:02:2d:61:95</mac>
291 
				<ipaddr>192.168.0.36</ipaddr>
292 
				<hostname/>
293 
				<descr><![CDATA[Computador VictorTassinari  Notebook]]></descr>
294 
				<filename/>
295 
				<rootpath/>
296 
				<defaultleasetime/>
297 
				<maxleasetime/>
298 
				<dnsserver>192.168.0.1</dnsserver>
299 
				<gateway>192.168.0.1</gateway>
300 
				<domain/>
301 
				<domainsearchlist/>
302 
				<ddnsdomain/>
303 
				<tftp/>
304 
				<ldap/>
305 
			</staticmap>
306 
			<staticmap>
307 
				<mac>ac:5f:3e:6b:a3:97</mac>
308 
				<ipaddr>192.168.0.40</ipaddr>
309 
				<hostname/>
310 
				<descr><![CDATA[Victor Celular]]></descr>
311 
				<filename/>
312 
				<rootpath/>
313 
				<defaultleasetime/>
314 
				<maxleasetime/>
315 
				<dnsserver>192.168.0.1</dnsserver>
316 
				<gateway>192.168.0.1</gateway>
317 
				<domain/>
318 
				<domainsearchlist/>
319 
				<ddnsdomain/>
320 
				<tftp/>
321 
				<ldap/>
322 
			</staticmap>
323 
			<staticmap>
324 
				<mac>60:a4:4c:4f:9f:c3</mac>
325 
				<ipaddr>192.168.0.43</ipaddr>
326 
				<hostname/>
327 
				<descr><![CDATA[Computador NelsonJunior]]></descr>
328 
				<filename/>
329 
				<rootpath/>
330 
				<defaultleasetime/>
331 
				<maxleasetime/>
332 
				<dnsserver>192.168.0.1</dnsserver>
333 
				<gateway>192.168.0.1</gateway>
334 
				<domain/>
335 
				<domainsearchlist/>
336 
				<ddnsdomain/>
337 
				<tftp/>
338 
				<ldap/>
339 
			</staticmap>
340 
			<staticmap>
341 
				<mac>80:86:f2:f5:52:da</mac>
342 
				<ipaddr>192.168.0.86</ipaddr>
343 
				<hostname/>
344 
				<descr><![CDATA[ Computador WilsonJunior  Notebook]]></descr>
345 
				<filename/>
346 
				<rootpath/>
347 
				<defaultleasetime/>
348 
				<maxleasetime/>
349 
				<dnsserver>192.168.0.1</dnsserver>
350 
				<gateway>192.168.0.1</gateway>
351 
				<domain/>
352 
				<domainsearchlist/>
353 
				<ddnsdomain/>
354 
				<tftp/>
355 
				<ldap/>
356 
			</staticmap>
357 
			<staticmap>
358 
				<mac>10:3b:59:bc:d9:ce</mac>
359 
				<ipaddr>192.168.0.87</ipaddr>
360 
				<hostname/>
361 
				<descr><![CDATA[NelsonCelular]]></descr>
362 
				<filename/>
363 
				<rootpath/>
364 
				<defaultleasetime/>
365 
				<maxleasetime/>
366 
				<dnsserver>192.168.0.1</dnsserver>
367 
				<gateway>192.168.0.1</gateway>
368 
				<domain/>
369 
				<domainsearchlist/>
370 
				<ddnsdomain/>
371 
				<tftp/>
372 
				<ldap/>
373 
			</staticmap>
374 
			<staticmap>
375 
				<mac>10:2a:b3:fd:96:a4</mac>
376 
				<ipaddr>192.168.0.89</ipaddr>
377 
				<hostname/>
378 
				<descr><![CDATA[WilsonCelular]]></descr>
379 
				<filename/>
380 
				<rootpath/>
381 
				<defaultleasetime/>
382 
				<maxleasetime/>
383 
				<dnsserver>192.168.0.1</dnsserver>
384 
				<gateway>192.168.0.1</gateway>
385 
				<domain/>
386 
				<domainsearchlist/>
387 
				<ddnsdomain/>
388 
				<tftp/>
389 
				<ldap/>
390 
			</staticmap>
391 
			<ddnsdomainprimary/>
392 
			<ddnsdomainkeyname/>
393 
			<ddnsdomainkey/>
394 
			<filename32/>
395 
			<filename64/>
396 
			<enable/>
397 
			<dnsserver>192.168.0.1</dnsserver>
398 
		</lan>
399 
	</dhcpd>
400 
	<pptpd>
401 
		<mode/>
402 
		<redir/>
403 
		<localip/>
404 
		<remoteip/>
405 
	</pptpd>
406 
	<dnsmasq>
407 
		<enable/>
408 
		<regdhcp/>
409 
		<regdhcpstatic/>
410 
		<custom_options/>
411 
		<interface/>
412 
		<hosts>
413 
			<host>www</host>
414 
			<domain>youtube.com</domain>
415 
			<ip>192.168.0.0</ip>
416 
			<descr><![CDATA[BLK_Youtube.com]]></descr>
417 
			<aliases/>
418 
		</hosts>
419 
		<hosts>
420 
			<host>www</host>
421 
			<domain>netflix.com</domain>
422 
			<ip>192.168.0.0</ip>
423 
			<descr><![CDATA[BLK_NetFlix.com]]></descr>
424 
			<aliases/>
425 
		</hosts>
426 
	</dnsmasq>
427 
	<snmpd>
428 
		<syslocation/>
429 
		<syscontact/>
430 
		<rocommunity>public</rocommunity>
431 
	</snmpd>
432 
	<diag>
433 
		<ipv6nat>
434 
			<ipaddr/>
435 
		</ipv6nat>
436 
	</diag>
437 
	<bridge/>
438 
	<syslog/>
439 
	<nat>
440 
		<ipsecpassthru>
441 
			<enable/>
442 
		</ipsecpassthru>
443 
		<rule>
444 
			<source>
445 
				<any/>
446 
			</source>
447 
			<destination>
448 
				<network>wanip</network>
449 
				<port>80</port>
450 
			</destination>
451 
			<protocol>tcp</protocol>
452 
			<target>192.168.0.1</target>
453 
			<local-port>80</local-port>
454 
			<interface>wan</interface>
455 
			<descr/>
456 
			<associated-rule-id>nat_56d5d8e3412b72.08001998</associated-rule-id>
457 
			<updated>
458 
				<time>1456855267</time>
459 
				<username>admin@192.168.0.3</username>
460 
			</updated>
461 
			<created>
462 
				<time>1456855267</time>
463 
				<username>admin@192.168.0.3</username>
464 
			</created>
465 
		</rule>
466 
		<rule>
467 
			<source>
468 
				<any/>
469 
			</source>
470 
			<destination>
471 
				<network>wanip</network>
472 
				<port>81</port>
473 
			</destination>
474 
			<protocol>tcp</protocol>
475 
			<target>192.168.0.3</target>
476 
			<local-port>81</local-port>
477 
			<interface>wan</interface>
478 
			<descr/>
479 
			<associated-rule-id>nat_56d5d8f8e30319.03597965</associated-rule-id>
480 
			<updated>
481 
				<time>1456855288</time>
482 
				<username>admin@192.168.0.3</username>
483 
			</updated>
484 
			<created>
485 
				<time>1456855288</time>
486 
				<username>admin@192.168.0.3</username>
487 
			</created>
488 
		</rule>
489 
		<rule>
490 
			<source>
491 
				<any/>
492 
			</source>
493 
			<destination>
494 
				<network>wanip</network>
495 
				<port>5661</port>
496 
			</destination>
497 
			<protocol>tcp</protocol>
498 
			<target>192.168.0.3</target>
499 
			<local-port>5661</local-port>
500 
			<interface>wan</interface>
501 
			<descr/>
502 
			<associated-rule-id>nat_56d5d9060247c4.42075432</associated-rule-id>
503 
			<updated>
504 
				<time>1456855302</time>
505 
				<username>admin@192.168.0.3</username>
506 
			</updated>
507 
			<created>
508 
				<time>1456855302</time>
509 
				<username>admin@192.168.0.3</username>
510 
			</created>
511 
		</rule>
512 
		<rule>
513 
			<source>
514 
				<any/>
515 
			</source>
516 
			<destination>
517 
				<network>wanip</network>
518 
				<port>32456</port>
519 
			</destination>
520 
			<protocol>tcp</protocol>
521 
			<target>192.168.0.1</target>
522 
			<local-port>32456</local-port>
523 
			<interface>wan</interface>
524 
			<descr/>
525 
			<associated-rule-id>nat_56d5d917f13969.29428654</associated-rule-id>
526 
			<updated>
527 
				<time>1456855319</time>
528 
				<username>admin@192.168.0.3</username>
529 
			</updated>
530 
			<created>
531 
				<time>1456855319</time>
532 
				<username>admin@192.168.0.3</username>
533 
			</created>
534 
		</rule>
535 
		<rule>
536 
			<source>
537 
				<any/>
538 
			</source>
539 
			<destination>
540 
				<network>wanip</network>
541 
				<port>3389</port>
542 
			</destination>
543 
			<protocol>tcp</protocol>
544 
			<target>192.168.0.3</target>
545 
			<local-port>3389</local-port>
546 
			<interface>wan</interface>
547 
			<descr/>
548 
			<associated-rule-id>nat_56d5d924c667b6.86118403</associated-rule-id>
549 
			<created>
550 
				<time>1456855332</time>
551 
				<username>admin@192.168.0.3</username>
552 
			</created>
553 
			<updated>
554 
				<time>1471749556</time>
555 
				<username>admin@187.34.51.192</username>
556 
			</updated>
557 
		</rule>
558 
		<rule>
559 
			<source>
560 
				<any/>
561 
			</source>
562 
			<destination>
563 
				<network>wanip</network>
564 
				<port>33810</port>
565 
			</destination>
566 
			<protocol>tcp</protocol>
567 
			<target>192.168.0.141</target>
568 
			<local-port>33810</local-port>
569 
			<interface>wan</interface>
570 
			<descr/>
571 
			<associated-rule-id>nat_57e325119e5895.93264476</associated-rule-id>
572 
			<created>
573 
				<time>1474503953</time>
574 
				<username>admin@192.168.0.43</username>
575 
			</created>
576 
			<updated>
577 
				<time>1474503977</time>
578 
				<username>admin@192.168.0.43</username>
579 
			</updated>
580 
		</rule>
581 
		<rule>
582 
			<source>
583 
				<any/>
584 
			</source>
585 
			<destination>
586 
				<network>wanip</network>
587 
				<port>22</port>
588 
			</destination>
589 
			<protocol>tcp</protocol>
590 
			<target>192.168.0.6</target>
591 
			<local-port>22</local-port>
592 
			<interface>wan</interface>
593 
			<descr/>
594 
			<associated-rule-id>nat_56d5d9315769a4.05055289</associated-rule-id>
595 
			<updated>
596 
				<time>1456855345</time>
597 
				<username>admin@192.168.0.3</username>
598 
			</updated>
599 
			<created>
600 
				<time>1456855345</time>
601 
				<username>admin@192.168.0.3</username>
602 
			</created>
603 
		</rule>
604 
		<rule>
605 
			<source>
606 
				<any/>
607 
			</source>
608 
			<destination>
609 
				<network>wanip</network>
610 
				<port>5432</port>
611 
			</destination>
612 
			<protocol>tcp</protocol>
613 
			<target>192.168.0.6</target>
614 
			<local-port>5432</local-port>
615 
			<interface>wan</interface>
616 
			<descr/>
617 
			<associated-rule-id>nat_56d5d942708eb5.31541107</associated-rule-id>
618 
			<updated>
619 
				<time>1456855362</time>
620 
				<username>admin@192.168.0.3</username>
621 
			</updated>
622 
			<created>
623 
				<time>1456855362</time>
624 
				<username>admin@192.168.0.3</username>
625 
			</created>
626 
		</rule>
627 
		<advancedoutbound/>
628 
	</nat>
629 
	<filter>
630 
		<rule>
631 
			<id/>
632 
			<type>pass</type>
633 
			<interface>wan</interface>
634 
			<ipprotocol>inet</ipprotocol>
635 
			<tag/>
636 
			<tagged/>
637 
			<max/>
638 
			<max-src-nodes/>
639 
			<max-src-conn/>
640 
			<max-src-states/>
641 
			<statetimeout/>
642 
			<statetype>keep state</statetype>
643 
			<os/>
644 
			<protocol>icmp</protocol>
645 
			<source>
646 
				<address>x.x.x.x</address>
647 
			</source>
648 
			<destination>
649 
				<any/>
650 
			</destination>
651 
			<descr><![CDATA[Liberar Ping WanExternoVoxxTeleCOMDUDE]]></descr>
652 
			<created>
653 
				<time>1482499954</time>
654 
				<username>admin@192.168.0.43</username>
655 
			</created>
656 
			<updated>
657 
				<time>1482500478</time>
658 
				<username>admin@192.168.0.43</username>
659 
			</updated>
660 
		</rule>
661 
		<rule>
662 
			<source>
663 
				<any/>
664 
			</source>
665 
			<interface>wan</interface>
666 
			<protocol>tcp</protocol>
667 
			<destination>
668 
				<address>192.168.0.1</address>
669 
				<port>80</port>
670 
			</destination>
671 
			<descr><![CDATA[NAT ]]></descr>
672 
			<associated-rule-id>nat_56d5d8e3412b72.08001998</associated-rule-id>
673 
			<created>
674 
				<time>1456855267</time>
675 
				<username>NAT Port Forward</username>
676 
			</created>
677 
		</rule>
678 
		<rule>
679 
			<source>
680 
				<any/>
681 
			</source>
682 
			<interface>wan</interface>
683 
			<protocol>tcp</protocol>
684 
			<destination>
685 
				<address>192.168.0.3</address>
686 
				<port>81</port>
687 
			</destination>
688 
			<descr><![CDATA[NAT ]]></descr>
689 
			<associated-rule-id>nat_56d5d8f8e30319.03597965</associated-rule-id>
690 
			<created>
691 
				<time>1456855288</time>
692 
				<username>NAT Port Forward</username>
693 
			</created>
694 
		</rule>
695 
		<rule>
696 
			<source>
697 
				<any/>
698 
			</source>
699 
			<interface>wan</interface>
700 
			<protocol>tcp</protocol>
701 
			<destination>
702 
				<address>192.168.0.3</address>
703 
				<port>5661</port>
704 
			</destination>
705 
			<descr><![CDATA[NAT ]]></descr>
706 
			<associated-rule-id>nat_56d5d9060247c4.42075432</associated-rule-id>
707 
			<created>
708 
				<time>1456855302</time>
709 
				<username>NAT Port Forward</username>
710 
			</created>
711 
		</rule>
712 
		<rule>
713 
			<source>
714 
				<any/>
715 
			</source>
716 
			<interface>wan</interface>
717 
			<protocol>tcp</protocol>
718 
			<destination>
719 
				<address>192.168.0.1</address>
720 
				<port>32456</port>
721 
			</destination>
722 
			<descr><![CDATA[NAT ]]></descr>
723 
			<associated-rule-id>nat_56d5d917f13969.29428654</associated-rule-id>
724 
			<created>
725 
				<time>1456855319</time>
726 
				<username>NAT Port Forward</username>
727 
			</created>
728 
		</rule>
729 
		<rule>
730 
			<id/>
731 
			<type>pass</type>
732 
			<interface>wan</interface>
733 
			<ipprotocol>inet</ipprotocol>
734 
			<tag/>
735 
			<tagged/>
736 
			<max/>
737 
			<max-src-nodes/>
738 
			<max-src-conn/>
739 
			<max-src-states/>
740 
			<statetimeout/>
741 
			<statetype>keep state</statetype>
742 
			<os/>
743 
			<protocol>tcp</protocol>
744 
			<source>
745 
				<any/>
746 
			</source>
747 
			<destination>
748 
				<address>192.168.0.3</address>
749 
				<port>3389</port>
750 
			</destination>
751 
			<descr><![CDATA[NAT ]]></descr>
752 
			<associated-rule-id>nat_56d5d924c667b6.86118403</associated-rule-id>
753 
			<created>
754 
				<time>1456855332</time>
755 
				<username>NAT Port Forward</username>
756 
			</created>
757 
			<updated>
758 
				<time>1469098158</time>
759 
				<username>admin@192.168.0.43</username>
760 
			</updated>
761 
		</rule>
762 
		<rule>
763 
			<source>
764 
				<any/>
765 
			</source>
766 
			<interface>wan</interface>
767 
			<protocol>tcp</protocol>
768 
			<destination>
769 
				<address>192.168.0.6</address>
770 
				<port>22</port>
771 
			</destination>
772 
			<descr><![CDATA[NAT ]]></descr>
773 
			<associated-rule-id>nat_56d5d9315769a4.05055289</associated-rule-id>
774 
			<created>
775 
				<time>1456855345</time>
776 
				<username>NAT Port Forward</username>
777 
			</created>
778 
		</rule>
779 
		<rule>
780 
			<source>
781 
				<any/>
782 
			</source>
783 
			<interface>wan</interface>
784 
			<protocol>tcp</protocol>
785 
			<destination>
786 
				<address>192.168.0.6</address>
787 
				<port>5432</port>
788 
			</destination>
789 
			<descr><![CDATA[NAT ]]></descr>
790 
			<associated-rule-id>nat_56d5d942708eb5.31541107</associated-rule-id>
791 
			<created>
792 
				<time>1456855362</time>
793 
				<username>NAT Port Forward</username>
794 
			</created>
795 
		</rule>
796 
		<rule>
797 
			<source>
798 
				<any/>
799 
			</source>
800 
			<interface>wan</interface>
801 
			<protocol>tcp</protocol>
802 
			<destination>
803 
				<address>192.168.0.141</address>
804 
				<port>33810</port>
805 
			</destination>
806 
			<descr><![CDATA[NAT ]]></descr>
807 
			<associated-rule-id>nat_57e325119e5895.93264476</associated-rule-id>
808 
			<created>
809 
				<time>1474503953</time>
810 
				<username>NAT Port Forward</username>
811 
			</created>
812 
		</rule>
813 
		<rule>
814 
			<id/>
815 
			<type>block</type>
816 
			<interface>lan</interface>
817 
			<ipprotocol>inet</ipprotocol>
818 
			<tag/>
819 
			<tagged/>
820 
			<max/>
821 
			<max-src-nodes/>
822 
			<max-src-conn/>
823 
			<max-src-states/>
824 
			<statetimeout/>
825 
			<statetype>keep state</statetype>
826 
			<os/>
827 
			<protocol>icmp</protocol>
828 
			<source>
829 
				<any/>
830 
			</source>
831 
			<destination>
832 
				<any/>
833 
			</destination>
834 
			<descr><![CDATA[Bloqueio Ping - Anti-DDoS]]></descr>
835 
			<gateway>FailOver</gateway>
836 
			<created>
837 
				<time>1455113107</time>
838 
				<username>admin@192.168.0.43</username>
839 
			</created>
840 
			<updated>
841 
				<time>1482511481</time>
842 
				<username>admin@192.168.0.43</username>
843 
			</updated>
844 
		</rule>
845 
		<rule>
846 
			<id/>
847 
			<type>block</type>
848 
			<interface>lan</interface>
849 
			<ipprotocol>inet</ipprotocol>
850 
			<tag/>
851 
			<tagged/>
852 
			<max/>
853 
			<max-src-nodes/>
854 
			<max-src-conn/>
855 
			<max-src-states/>
856 
			<statetimeout/>
857 
			<statetype>keep state</statetype>
858 
			<os/>
859 
			<protocol>tcp/udp</protocol>
860 
			<source>
861 
				<address>LiberarFacebook_Ips</address>
862 
				<not/>
863 
			</source>
864 
			<destination>
865 
				<address>BLK_RedeFacebook</address>
866 
			</destination>
867 
			<descr><![CDATA[BloqueiaFacebookeLiberarEspecificos]]></descr>
868 
			<gateway>FailOver</gateway>
869 
			<created>
870 
				<time>1445459745</time>
871 
				<username>admin@189.47.110.242</username>
872 
			</created>
873 
			<updated>
874 
				<time>1482511490</time>
875 
				<username>admin@192.168.0.43</username>
876 
			</updated>
877 
		</rule>
878 
		<rule>
879 
			<id/>
880 
			<type>pass</type>
881 
			<interface>lan</interface>
882 
			<ipprotocol>inet</ipprotocol>
883 
			<tag/>
884 
			<tagged/>
885 
			<max/>
886 
			<max-src-nodes/>
887 
			<max-src-conn/>
888 
			<max-src-states/>
889 
			<statetimeout/>
890 
			<statetype>keep state</statetype>
891 
			<os/>
892 
			<protocol>tcp/udp</protocol>
893 
			<source>
894 
				<address>ControelBandaPorIP</address>
895 
			</source>
896 
			<destination>
897 
				<any/>
898 
			</destination>
899 
			<descr><![CDATA[ControleDeBandaPorIP]]></descr>
900 
			<gateway>FailOver</gateway>
901 
			<dnpipe>Download</dnpipe>
902 
			<pdnpipe>UpLoad</pdnpipe>
903 
			<created>
904 
				<time>1479992919</time>
905 
				<username>admin@192.168.0.43</username>
906 
			</created>
907 
			<updated>
908 
				<time>1483010014</time>
909 
				<username>admin@192.168.0.43</username>
910 
			</updated>
911 
		</rule>
912 
		<rule>
913 
			<id/>
914 
			<type>pass</type>
915 
			<interface>lan</interface>
916 
			<ipprotocol>inet</ipprotocol>
917 
			<tag/>
918 
			<tagged/>
919 
			<max/>
920 
			<max-src-nodes/>
921 
			<max-src-conn/>
922 
			<max-src-states/>
923 
			<statetimeout/>
924 
			<statetype>keep state</statetype>
925 
			<os/>
926 
			<source>
927 
				<network>lan</network>
928 
			</source>
929 
			<destination>
930 
				<any/>
931 
			</destination>
932 
			<descr><![CDATA[Default allow LAN to any rule]]></descr>
933 
			<gateway>FailOver</gateway>
934 
			<updated>
935 
				<time>1482511508</time>
936 
				<username>admin@192.168.0.43</username>
937 
			</updated>
938 
		</rule>
939 
	</filter>
940 
	<shaper/>
941 
	<ipsec/>
942 
	<aliases>
943 
		<alias>
944 
			<name>BLK_RedeFacebook</name>
945 
			<address>31.13.24.0/21 31.13.64.0/18 45.64.40.0/22 66.220.144.0/20 66.220.152.0/21 66.220.159.0/24 69.63.0.0/16 69.171.224.0/19 69.171.240.0/20 74.119.76.0/22 103.4.96.0/22 204.15.20.0/22 129.134.0.0/16 157.240.0.0/16 173.252.70.0/24 173.252.96.0/19 173.252.64.0/18 179.60.192.0/21 185.60.216.0/21</address>
946 
			<descr/>
947 
			<type>network</type>
948 
			<detail><![CDATA[Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200]]></detail>
949 
		</alias>
950 
		<alias>
951 
			<name>ControelBandaPorIP</name>
952 
			<address>192.168.0.8 192.168.0.61 192.168.0.36 192.168.0.86 192.168.0.161</address>
953 
			<descr/>
954 
			<type>host</type>
955 
			<detail><![CDATA[ApPrefeituraDigital||RoteadorEducacao||VictorNotebook||WilsonNotebook||APHospital]]></detail>
956 
		</alias>
957 
		<alias>
958 
			<name>LiberarFacebook_Ips</name>
959 
			<address>192.168.0.35 192.168.0.185 192.168.0.43 192.168.0.86 192.168.0.36 192.168.0.61 192.168.0.196 192.168.0.87 192.168.0.89 192.168.0.40 192.168.0.46 192.168.0.8 192.168.0.161</address>
960 
			<descr/>
961 
			<type>host</type>
962 
			<detail><![CDATA[MicroCarolComunica&ccedil;&atilde;o||APGinasioEsportes||MicroNelsonJunior||NotebookWilson||NotebookVictor||IPAPEduca&ccedil;&atilde;o||IpCasaDaCrian&ccedil;a||IpCelularNelson||IpCelularWilson||IpCelularVictor||IpApleVictor||APPrefeituraDigital||APHospital]]></detail>
963 
		</alias>
964 
	</aliases>
965 
	<proxyarp/>
966 
	<cron>
967 
		<item>
968 
			<minute>1,31</minute>
969 
			<hour>0-5</hour>
970 
			<mday>*</mday>
971 
			<month>*</month>
972 
			<wday>*</wday>
973 
			<who>root</who>
974 
			<command>/usr/bin/nice -n20 adjkerntz -a</command>
975 
		</item>
976 
		<item>
977 
			<minute>1</minute>
978 
			<hour>3</hour>
979 
			<mday>1</mday>
980 
			<month>*</month>
981 
			<wday>*</wday>
982 
			<who>root</who>
983 
			<command>/usr/bin/nice -n20 /etc/rc.update_bogons.sh</command>
984 
		</item>
985 
		<item>
986 
			<minute>*/60</minute>
987 
			<hour>*</hour>
988 
			<mday>*</mday>
989 
			<month>*</month>
990 
			<wday>*</wday>
991 
			<who>root</who>
992 
			<command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 sshlockout</command>
993 
		</item>
994 
		<item>
995 
			<minute>1</minute>
996 
			<hour>1</hour>
997 
			<mday>*</mday>
998 
			<month>*</month>
999 
			<wday>*</wday>
1000 
			<who>root</who>
1001 
			<command>/usr/bin/nice -n20 /etc/rc.dyndns.update</command>
1002 
		</item>
1003 
		<item>
1004 
			<minute>*/60</minute>
1005 
			<hour>*</hour>
1006 
			<mday>*</mday>
1007 
			<month>*</month>
1008 
			<wday>*</wday>
1009 
			<who>root</who>
1010 
			<command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 virusprot</command>
1011 
		</item>
1012 
		<item>
1013 
			<minute>30</minute>
1014 
			<hour>12</hour>
1015 
			<mday>*</mday>
1016 
			<month>*</month>
1017 
			<wday>*</wday>
1018 
			<who>root</who>
1019 
			<command>/usr/bin/nice -n20 /etc/rc.update_urltables</command>
1020 
		</item>
1021 
		<item>
1022 
			<task_name>squid_rotate_logs</task_name>
1023 
			<minute>0</minute>
1024 
			<hour>0</hour>
1025 
			<mday>*</mday>
1026 
			<month>*</month>
1027 
			<wday>*</wday>
1028 
			<who>root</who>
1029 
			<command>/bin/rm /var/squid/cache/swap.state; /usr/pbi/squid-amd64/sbin/squid -k rotate</command>
1030 
		</item>
1031 
		<item>
1032 
			<task_name>squid_check_swapstate</task_name>
1033 
			<minute>*/15</minute>
1034 
			<hour>*</hour>
1035 
			<mday>*</mday>
1036 
			<month>*</month>
1037 
			<wday>*</wday>
1038 
			<who>root</who>
1039 
			<command>/usr/local/pkg/swapstate_check.php</command>
1040 
		</item>
1041 
		<item>
1042 
			<minute>0</minute>
1043 
			<hour>0</hour>
1044 
			<mday>*</mday>
1045 
			<month>*</month>
1046 
			<wday>*</wday>
1047 
			<who>root</who>
1048 
			<command>/usr/bin/nice -n20 /usr/local/etc/rc.d/squidGuard_logrotate</command>
1049 
		</item>
1050 
		<item>
1051 
			<minute>0</minute>
1052 
			<hour>*/1</hour>
1053 
			<mday>*</mday>
1054 
			<month>*</month>
1055 
			<wday>*</wday>
1056 
			<who>root</who>
1057 
			<command>/usr/local/bin/php --no-header /usr/local/www/sarg.php 0</command>
1058 
		</item>
1059 
	</cron>
1060 
	<wol/>
1061 
	<rrd>
1062 
		<enable/>
1063 
	</rrd>
1064 
	<load_balancer>
1065 
		<monitor_type>
1066 
			<name>ICMP</name>
1067 
			<type>icmp</type>
1068 
			<descr><![CDATA[ICMP]]></descr>
1069 
			<options/>
1070 
		</monitor_type>
1071 
		<monitor_type>
1072 
			<name>TCP</name>
1073 
			<type>tcp</type>
1074 
			<descr><![CDATA[Generic TCP]]></descr>
1075 
			<options/>
1076 
		</monitor_type>
1077 
		<monitor_type>
1078 
			<name>HTTP</name>
1079 
			<type>http</type>
1080 
			<descr><![CDATA[Generic HTTP]]></descr>
1081 
			<options>
1082 
				<path>/</path>
1083 
				<host/>
1084 
				<code>200</code>
1085 
			</options>
1086 
		</monitor_type>
1087 
		<monitor_type>
1088 
			<name>HTTPS</name>
1089 
			<type>https</type>
1090 
			<descr><![CDATA[Generic HTTPS]]></descr>
1091 
			<options>
1092 
				<path>/</path>
1093 
				<host/>
1094 
				<code>200</code>
1095 
			</options>
1096 
		</monitor_type>
1097 
		<monitor_type>
1098 
			<name>SMTP</name>
1099 
			<type>send</type>
1100 
			<descr><![CDATA[Generic SMTP]]></descr>
1101 
			<options>
1102 
				<send/>
1103 
				<expect>220 *</expect>
1104 
			</options>
1105 
		</monitor_type>
1106 
	</load_balancer>
1107 
	<widgets>
1108 
		<sequence>system_information-container:col1:show,services_status-container:col1:show,captive_portal_status-container:col1:close,carp_status-container:col1:close,cpu_graphs-container:col1:close,gmirror_status-container:col1:close,installed_packages-container:col1:close,smart_status-container:col2:show,interfaces-container:col2:show,gateways-container:col2:show,interface_statistics-container:col2:show,ipsec-container:col2:close,load_balancer_status-container:col2:close,log-container:col2:show,picture-container:col2:close,rss-container:col2:close,traffic_graphs-container:col2:show,dyn_dns_status-container:col2:none,openvpn-container:col2:none,thermal_sensors-container:col2:none,wake_on_lan-container:col2:none</sequence>
1109 
		<trafficgraphs>
1110 
			<shown>
1111 
				<item>wan</item>
1112 
				<item>lan</item>
1113 
				<item>opt1</item>
1114 
			</shown>
1115 
			<refreshinterval>1</refreshinterval>
1116 
			<scale_type>up</scale_type>
1117 
		</trafficgraphs>
1118 
	</widgets>
1119 
	<revision>
1120 
		<time>1483015598</time>
1121 
		<description><![CDATA[admin@192.168.0.43: Updated cron job for /usr/bin/nice -n20 /usr/local/etc/rc.d/squidGuard_logrotate]]></description>
1122 
		<username>admin@192.168.0.43</username>
1123 
	</revision>
1124 
	<openvpn/>
1125 
	<l7shaper>
1126 
		<container/>
1127 
	</l7shaper>
1128 
	<dnshaper>
1129 
		<queue>
1130 
			<name>Download</name>
1131 
			<number>1</number>
1132 
			<qlimit/>
1133 
			<plr/>
1134 
			<description/>
1135 
			<bandwidth>
1136 
				<item>
1137 
					<bw>6</bw>
1138 
					<burst/>
1139 
					<bwscale>Mb</bwscale>
1140 
					<bwsched>none</bwsched>
1141 
				</item>
1142 
			</bandwidth>
1143 
			<enabled>on</enabled>
1144 
			<buckets/>
1145 
			<mask>none</mask>
1146 
			<maskbits/>
1147 
			<maskbitsv6/>
1148 
			<delay>0</delay>
1149 
		</queue>
1150 
		<queue>
1151 
			<name>UpLoad</name>
1152 
			<number>2</number>
1153 
			<qlimit/>
1154 
			<plr/>
1155 
			<description/>
1156 
			<bandwidth>
1157 
				<item>
1158 
					<bw>2</bw>
1159 
					<burst/>
1160 
					<bwscale>Mb</bwscale>
1161 
					<bwsched>none</bwsched>
1162 
				</item>
1163 
			</bandwidth>
1164 
			<enabled>on</enabled>
1165 
			<buckets/>
1166 
			<mask>none</mask>
1167 
			<maskbits/>
1168 
			<maskbitsv6/>
1169 
			<delay>0</delay>
1170 
		</queue>
1171 
	</dnshaper>
1172 
	<cert>
1173 
		<refid>5864e9e3d1a5e</refid>
1174 
		<descr><![CDATA[webConfigurator default]]></descr>
1175 
		<crt>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</crt>
1176 
		<prv>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</prv>
1177 
	</cert>
1178 
	<dhcpdv6/>
1179 
	<ppps>
1180 
		<ppp>
1181 
			<ptpid>0</ptpid>
1182 
			<type>pppoe</type>
1183 
			<if>pppoe0</if>
1184 
			<ports>re0</ports>
1185 
			<username>vivo2015@r7.com</username>
1186 
			<password>dml2bzEyMw==</password>
1187 
			<provider/>
1188 
		</ppp>
1189 
	</ppps>
1190 
	<gateways>
1191 
		<gateway_item>
1192 
			<interface>wan</interface>
1193 
			<gateway>x.x.x.x</gateway>
1194 
			<name>WANGW</name>
1195 
			<weight>1</weight>
1196 
			<ipprotocol>inet</ipprotocol>
1197 
			<interval/>
1198 
			<descr><![CDATA[WAN Gateway]]></descr>
1199 
			<monitor>8.8.8.8</monitor>
1200 
			<defaultgw/>
1201 
			<down>5</down>
1202 
		</gateway_item>
1203 
		<gateway_item>
1204 
			<interface>opt1</interface>
1205 
			<gateway>dynamic</gateway>
1206 
			<name>VIVOINTERNETVDSL_PPPOE</name>
1207 
			<weight>1</weight>
1208 
			<ipprotocol>inet</ipprotocol>
1209 
			<interval/>
1210 
			<descr><![CDATA[Interface VIVOINTERNETVDSL_PPPOE Gateway]]></descr>
1211 
			<monitor>208.67.222.222</monitor>
1212 
			<down>5</down>
1213 
		</gateway_item>
1214 
		<gateway_group>
1215 
			<name>FailOver</name>
1216 
			<item>WANGW|1|address</item>
1217 
			<item>VIVOINTERNETVDSL_PPPOE|2|address</item>
1218 
			<trigger>down</trigger>
1219 
			<descr><![CDATA[FailOver]]></descr>
1220 
		</gateway_group>
1221 
	</gateways>
1222 
	<installedpackages>
1223 
		<package>
1224 
			<name>squid</name>
1225 
			<descr><![CDATA[High performance web proxy cache.]]></descr>
1226 
			<website>http://www.squid-cache.org/</website>
1227 
			<category>Network</category>
1228 
			<version>2.7.9 pkg v.4.3.10</version>
1229 
			<status>Stable</status>
1230 
			<required_version>2</required_version>
1231 
			<maintainer>fernando@netfilter.com.br seth.mos@dds.nl mfuchs77@googlemail.com jimp@pfsense.org</maintainer>
1232 
			<depends_on_package_base_url>https://files.pfsense.org/packages/amd64/8/All/</depends_on_package_base_url>
1233 
			<depends_on_package>squid-2.7.9_3.tbz</depends_on_package>
1234 
			<depends_on_package>squid_radius_auth-1.10.tbz</depends_on_package>
1235 
			<depends_on_package>libwww-5.4.0_4.tbz</depends_on_package>
1236 
			<depends_on_package_pbi>squid-2.7.9_3-amd64.pbi</depends_on_package_pbi>
1237 
			<build_port_path>/usr/ports/www/squid</build_port_path>
1238 
			<build_port_path>/usr/ports/www/squid_radius_auth</build_port_path>
1239 
			<build_port_path>/usr/ports/www/libwww</build_port_path>
1240 
			<build_pbi>
1241 
				<ports_before>www/libwww</ports_before>
1242 
				<port>www/squid</port>
1243 
				<ports_after>www/squid_radius_auth</ports_after>
1244 
			</build_pbi>
1245 
			<build_options>squid_UNSET_FORCE=DNS_HELPER IPFILTER PINGER STACKTRACES STRICT_HTTP_DESC USERAGENT_LOG WCCPV2;squid_SET=PF LDAP_AUTH NIS_AUTH SASL_AUTH ARP_ACL AUFS CACHE_DIGESTS CARP COSS DELAY_POOLS FOLLOW_XFF HTCP IDENT KERB_AUTH KQUEUE LARGEFILE REFERER_LOG SNMP SSL VIA_DB WCCP;SQUID_UID=proxy;SQUID_GID=proxy</build_options>
1246 
			<config_file>https://packages.pfsense.org/packages/config/squid/squid.xml</config_file>
1247 
			<configurationfile>squid.xml</configurationfile>
1248 
			<filter_rule_function>squid_generate_rules</filter_rule_function>
1249 
		</package>
1250 
		<package>
1251 
			<name>squidGuard</name>
1252 
			<descr><![CDATA[High performance web proxy URL filter. Requires proxy Squid 2.x package.]]></descr>
1253 
			<website>http://www.squidGuard.org/</website>
1254 
			<maintainer>dv_serg@mail.ru</maintainer>
1255 
			<category>Network Management</category>
1256 
			<version>1.4_4 pkg v1.9.17</version>
1257 
			<status>Beta</status>
1258 
			<required_version>1.1</required_version>
1259 
			<depends_on_package_base_url>https://files.pfsense.org/packages/amd64/8/All/</depends_on_package_base_url>
1260 
			<depends_on_package>squidGuard-1.4_4.tbz</depends_on_package>
1261 
			<depends_on_package>db41-4.1.25_4.tbz</depends_on_package>
1262 
			<depends_on_package>cyrus-sasl-2.1.26_2.tbz</depends_on_package>
1263 
			<depends_on_package_pbi>squidguard-1.4_4-amd64.pbi</depends_on_package_pbi>
1264 
			<build_port_path>/usr/ports/www/squidguard</build_port_path>
1265 
			<build_port_path>/usr/ports/databases/db41</build_port_path>
1266 
			<build_port_path>/usr/ports/security/cyrus-sasl2</build_port_path>
1267 
			<build_pbi>
1268 
				<ports_before>databases/db41 security/cyrus-sasl2</ports_before>
1269 
				<port>www/squidguard</port>
1270 
			</build_pbi>
1271 
			<build_options>squidGuard_UNSET_FORCE=SQUID32 SQUID33;squidGuard_SET=SAMPLE_BL SASL LDAP SQUID27;squid_UNSET_FORCE=DNS_HELPER IPFILTER PINGER STACKTRACES STRICT_HTTP_DESC USERAGENT_LOG WCCPV2;squid_SET=PF LDAP_AUTH NIS_AUTH SASL_AUTH ARP_ACL AUFS CACHE_DIGESTS CARP COSS DELAY_POOLS FOLLOW_XFF HTCP IDENT KERB_AUTH KQUEUE LARGEFILE REFERER_LOG SNMP SSL VIA_DB WCCP;SQUID_UID=proxy;SQUID_GID=proxy</build_options>
1272 
			<config_file>https://packages.pfsense.org/packages/config/squidGuard/squidguard.xml</config_file>
1273 
			<configurationfile>squidguard.xml</configurationfile>
1274 
		</package>
1275 
		<package>
1276 
			<name>Sarg</name>
1277 
			<website>http://www.dansguardian.org/</website>
1278 
			<descr><![CDATA[Sarg - Squid Analysis Report Generator - is a tool that generates reports about where your users are going on the Internet.&lt;br /&gt;
1279 
						Sarg provides information about proxy users' activities: times, bytes, sites, etc. for those using Squid, Squidguard or dansguardian.]]></descr>
1280 
			<category>Network Report</category>
1281 
			<config_file>https://packages.pfsense.org/packages/config/sarg/sarg.xml</config_file>
1282 
			<pkginfolink>https://forum.pfsense.org/index.php/topic,47765.0.html</pkginfolink>
1283 
			<depends_on_package_base_url>https://files.pfsense.org/packages/amd64/8/All/</depends_on_package_base_url>
1284 
			<depends_on_package>sarg-2.3.6_2.tbz</depends_on_package>
1285 
			<depends_on_package>gd-2.0.35_8,1.tbz</depends_on_package>
1286 
			<depends_on_package_pbi>sarg-2.3.6_2-amd64.pbi</depends_on_package_pbi>
1287 
			<version>2.3.6_2 pkg v0.6.10</version>
1288 
			<status>Release</status>
1289 
			<required_version>2.1</required_version>
1290 
			<configurationfile>sarg.xml</configurationfile>
1291 
			<build_port_path>/usr/ports/www/sarg</build_port_path>
1292 
			<build_options>sarg_UNSET_FORCE=PHP</build_options>
1293 
			<after_install_info>Please visit sarg settings on Status Menu to configure sarg.</after_install_info>
1294 
		</package>
1295 
		<squidauth>
1296 
			<config/>
1297 
		</squidauth>
1298 
		<squidnac>
1299 
			<config>
1300 
				<allowed_subnets>MTkyLjE2OC4wLjAvMjQ=</allowed_subnets>
1301 
				<unrestricted_hosts/>
1302 
				<banned_hosts/>
1303 
				<whitelist/>
1304 
				<blacklist/>
1305 
				<ext_cachemanager/>
1306 
				<addtl_ports/>
1307 
				<addtl_sslports/>
1308 
			</config>
1309 
		</squidnac>
1310 
		<squid>
1311 
			<config>
1312 
				<active_interface>lan</active_interface>
1313 
				<allow_interface>on</allow_interface>
1314 
				<transparent_proxy>on</transparent_proxy>
1315 
				<private_subnet_proxy_off/>
1316 
				<defined_ip_proxy_off/>
1317 
				<defined_ip_proxy_off_dest>192.168.0.31;192.168.0.37;192.168.0.145</defined_ip_proxy_off_dest>
1318 
				<log_enabled>on</log_enabled>
1319 
				<log_dir>/var/squid/logs</log_dir>
1320 
				<log_rotate>15</log_rotate>
1321 
				<proxy_port>3128</proxy_port>
1322 
				<icp_port/>
1323 
				<visible_hostname>Firewall_Proxy_PMI</visible_hostname>
1324 
				<admin_email>informatica@iepe.sp.gov.br</admin_email>
1325 
				<error_language>Portuguese</error_language>
1326 
				<disable_xforward/>
1327 
				<disable_via/>
1328 
				<uri_whitespace>strip</uri_whitespace>
1329 
				<dns_nameservers>8.8.8.8;208.67.222.222</dns_nameservers>
1330 
				<disable_squidversion>on</disable_squidversion>
1331 
				<custom_options>tcp_outgoing_address 127.0.0.1;acl sglog url_regex -i .*sgrd=ACCESSDENIED;http_access deny sglog;;redirect_program /usr/local/bin/squidGuard -c /usr/local/etc/squidGuard/squidGuard.conf;redirector_bypass off;url_rewrite_children 5</custom_options>
1332 
			</config>
1333 
		</squid>
1334 
		<menu>
1335 
			<name>Proxy server</name>
1336 
			<tooltiptext>Modify the proxy server's settings</tooltiptext>
1337 
			<section>Services</section>
1338 
			<url>/pkg_edit.php?xml=squid.xml&amp;id=0</url>
1339 
		</menu>
1340 
		<menu>
1341 
			<name>SquidGuard Proxy Filter</name>
1342 
			<tooltiptext>Modify the proxy server's filter settings</tooltiptext>
1343 
			<section>Services</section>
1344 
			<url>/pkg_edit.php?xml=squidguard.xml&amp;id=0</url>
1345 
		</menu>
1346 
		<menu>
1347 
			<name>Sarg Reports</name>
1348 
			<tooltiptext>Configure Sarg</tooltiptext>
1349 
			<section>Status</section>
1350 
			<url>/pkg_edit.php?xml=sarg.xml</url>
1351 
		</menu>
1352 
		<tab>
1353 
			<text>General</text>
1354 
			<url>/pkg_edit.php?xml=squid.xml&amp;id=0</url>
1355 
			<active/>
1356 
		</tab>
1357 
		<service>
1358 
			<name>squid</name>
1359 
			<rcfile>squid.sh</rcfile>
1360 
			<executable>squid</executable>
1361 
			<description><![CDATA[Proxy server Service]]></description>
1362 
		</service>
1363 
		<service>
1364 
			<name>squidGuard</name>
1365 
			<description><![CDATA[Proxy server filter Service]]></description>
1366 
			<executable>squidGuard</executable>
1367 
		</service>
1368 
		<squidcache>
1369 
			<config>
1370 
				<harddisk_cache_size>10000</harddisk_cache_size>
1371 
				<harddisk_cache_system>ufs</harddisk_cache_system>
1372 
				<harddisk_cache_location>/var/squid/cache</harddisk_cache_location>
1373 
				<memory_cache_size>2000</memory_cache_size>
1374 
				<minimum_object_size>0</minimum_object_size>
1375 
				<maximum_object_size>300000</maximum_object_size>
1376 
				<maximum_objsize_in_mem>256</maximum_objsize_in_mem>
1377 
				<level1_subdirs>16</level1_subdirs>
1378 
				<memory_replacement_policy>heap LFUDA</memory_replacement_policy>
1379 
				<cache_replacement_policy>heap LFUDA</cache_replacement_policy>
1380 
				<cache_swap_low>90</cache_swap_low>
1381 
				<cache_swap_high>95</cache_swap_high>
1382 
				<donotcache/>
1383 
				<enable_offline/>
1384 
			</config>
1385 
		</squidcache>
1386 
		<squidguardgeneral>
1387 
			<config>
1388 
				<squidguard_enable>on</squidguard_enable>
1389 
				<ldap_enable/>
1390 
				<ldapbinddn/>
1391 
				<ldapbindpass/>
1392 
				<stripntdomain/>
1393 
				<striprealm/>
1394 
				<ldapversion>3</ldapversion>
1395 
				<enable_guilog>on</enable_guilog>
1396 
				<enable_log>on</enable_log>
1397 
				<log_rotation>on</log_rotation>
1398 
				<adv_blankimg/>
1399 
				<blacklist>on</blacklist>
1400 
				<blacklist_proxy/>
1401 
				<blacklist_url>http://www.shallalist.de/Downloads/shallalist.tar.gz</blacklist_url>
1402 
			</config>
1403 
		</squidguardgeneral>
1404 
		<squidguarddefault>
1405 
			<config>
1406 
				<dest>^PalavraLiberadas !PalavraBLK !blk_BL_chat !blk_BL_downloads !blk_BL_hacking !blk_BL_movies !blk_BL_music !blk_BL_porn !blk_BL_radiotv !blk_BL_ringtones !blk_BL_violence !blk_BL_webphone !blk_BL_webradio !blk_BL_webtv all</dest>
1407 
				<notallowingip/>
1408 
				<deniedmessage/>
1409 
				<redirect_mode>rmod_int</redirect_mode>
1410 
				<redirect/>
1411 
				<safesearch/>
1412 
				<rewrite/>
1413 
				<enablelog>on</enablelog>
1414 
			</config>
1415 
		</squidguarddefault>
1416 
		<squidguardacl>
1417 
			<config>
1418 
				<disabled/>
1419 
				<name>IPAcessoFULL</name>
1420 
				<source>192.168.0.36 192.168.0.40 192.168.0.43 192.168.0.86 192.168.0.87 192.168.0.89</source>
1421 
				<time/>
1422 
				<dest>all [ all]</dest>
1423 
				<notallowingip/>
1424 
				<redirect_mode>rmod_none</redirect_mode>
1425 
				<redirect/>
1426 
				<safesearch/>
1427 
				<rewrite/>
1428 
				<overrewrite/>
1429 
				<description/>
1430 
				<enablelog/>
1431 
			</config>
1432 
		</squidguardacl>
1433 
		<squidguarddest>
1434 
			<config>
1435 
				<name>PalavraLiberadas</name>
1436 
				<domains/>
1437 
				<urls/>
1438 
				<expressions>bleepingcomputer flashplayer microsoft ammyy fazenda cartola caixa cadastrounico jumbo datasus bb bancodobrasil caixa amazon caixa cross.saude ambulatorial.saude.sp.gov.br email.iepe.sp.gov.br iepe.sp.gov.br hospitaliepe java tvfronteira mds kurumin sigtap adobe flashplayer incra hp detran fiorilli whatsapp tightvnc</expressions>
1439 
				<redirect_mode>rmod_none</redirect_mode>
1440 
				<redirect/>
1441 
				<description/>
1442 
				<enablelog/>
1443 
			</config>
1444 
			<config>
1445 
				<name>PalavraBLK</name>
1446 
				<domains/>
1447 
				<urls/>
1448 
				<expressions>\.bat$ \.pif$ \.cue$ \.scr$ \.cmd$ \.cpl$ \.src$ \.vbs$ \.dll$ \.vbx$ \.mp3$ \.iso$ sexo radio musica tv video porno filmes novela radio seriado</expressions>
1449 
				<redirect_mode>rmod_none</redirect_mode>
1450 
				<redirect/>
1451 
				<description/>
1452 
				<enablelog>on</enablelog>
1453 
			</config>
1454 
		</squidguarddest>
1455 
		<sarg>
1456 
			<config>
1457 
				<proxy_server>squid</proxy_server>
1458 
				<report_options>use_graphs,remove_temp_files,main_index,overwrite_report,use_comma,date_time_by_bytes</report_options>
1459 
				<report_type>topusers,topsites,sites_users,users_sites,date_time,denied,auth_failures,site_user_time_date,downloads</report_type>
1460 
				<report_date_format>e</report_date_format>
1461 
				<report_charset>UTF-8</report_charset>
1462 
				<hostalias/>
1463 
				<max_elapsed>0</max_elapsed>
1464 
				<lastlog>0</lastlog>
1465 
				<daylimit/>
1466 
				<topuser_num>0</topuser_num>
1467 
				<denied_report_limit>0</denied_report_limit>
1468 
				<authfail_report_limit>0</authfail_report_limit>
1469 
				<user_report_limit>0</user_report_limit>
1470 
				<exclude_string/>
1471 
				<exclude_hostlist/>
1472 
				<exclude_codelist/>
1473 
			</config>
1474 
		</sarg>
1475 
		<sarguser>
1476 
			<config>
1477 
				<user_sort_field>BYTES</user_sort_field>
1478 
				<exclude_userlist/>
1479 
				<include_userlist/>
1480 
				<usertab/>
1481 
				<ldap_filter_search>(uid=%s)</ldap_filter_search>
1482 
				<ldap_target_attr>cn</ldap_target_attr>
1483 
				<ldap_port>389</ldap_port>
1484 
				<ntlm_user_format>domainname+username</ntlm_user_format>
1485 
			</config>
1486 
		</sarguser>
1487 
		<sargschedule>
1488 
			<config>
1489 
				<enable>on</enable>
1490 
				<description><![CDATA[Relatorio Acesso - PMI e Departamentos]]></description>
1491 
				<args>-d `date +%d/%m/%Y`</args>
1492 
				<frequency>1h</frequency>
1493 
				<gzip/>
1494 
				<gziplevel/>
1495 
				<find>60</find>
1496 
			</config>
1497 
		</sargschedule>
1498 
	</installedpackages>
1499 
</pfsense>
(1-1/6)