Project

General

Profile

BKP_2.1.5_FuncionandoPerfeitamente.xml

Nelson Junior, 12/30/2016 10:59 AM

 
1
<?xml version="1.0"?>
2
<pfsense>
3
        <version>10.1</version>
4
        <lastchange/>
5
        <theme>nervecenter</theme>
6
        <sysctl>
7
                <item>
8
                        <descr><![CDATA[Enable mounting the FS read only with more checks.]]></descr>
9
                        <tunable>vfs.forcesync</tunable>
10
                        <value>default</value>
11
                </item>
12
                <item>
13
                        <descr><![CDATA[Disable the pf ftp proxy handler.]]></descr>
14
                        <tunable>debug.pfftpproxy</tunable>
15
                        <value>default</value>
16
                </item>
17
                <item>
18
                        <descr><![CDATA[Increase UFS read-ahead speeds to match current state of hard drives and NCQ. More information here: http://ivoras.sharanet.org/blog/tree/2010-11-19.ufs-read-ahead.html]]></descr>
19
                        <tunable>vfs.read_max</tunable>
20
                        <value>default</value>
21
                </item>
22
                <item>
23
                        <descr><![CDATA[Set the ephemeral port range to be lower.]]></descr>
24
                        <tunable>net.inet.ip.portrange.first</tunable>
25
                        <value>default</value>
26
                </item>
27
                <item>
28
                        <descr><![CDATA[Drop packets to closed TCP ports without returning a RST]]></descr>
29
                        <tunable>net.inet.tcp.blackhole</tunable>
30
                        <value>default</value>
31
                </item>
32
                <item>
33
                        <descr><![CDATA[Do not send ICMP port unreachable messages for closed UDP ports]]></descr>
34
                        <tunable>net.inet.udp.blackhole</tunable>
35
                        <value>default</value>
36
                </item>
37
                <item>
38
                        <descr><![CDATA[Randomize the ID field in IP packets (default is 0: sequential IP IDs)]]></descr>
39
                        <tunable>net.inet.ip.random_id</tunable>
40
                        <value>default</value>
41
                </item>
42
                <item>
43
                        <descr><![CDATA[Drop SYN-FIN packets (breaks RFC1379, but nobody uses it anyway)]]></descr>
44
                        <tunable>net.inet.tcp.drop_synfin</tunable>
45
                        <value>default</value>
46
                </item>
47
                <item>
48
                        <descr><![CDATA[Enable sending IPv4 redirects]]></descr>
49
                        <tunable>net.inet.ip.redirect</tunable>
50
                        <value>default</value>
51
                </item>
52
                <item>
53
                        <descr><![CDATA[Enable sending IPv6 redirects]]></descr>
54
                        <tunable>net.inet6.ip6.redirect</tunable>
55
                        <value>default</value>
56
                </item>
57
                <item>
58
                        <descr><![CDATA[Enable privacy settings for IPv6 (RFC 4941)]]></descr>
59
                        <tunable>net.inet6.ip6.use_tempaddr</tunable>
60
                        <value>default</value>
61
                </item>
62
                <item>
63
                        <descr><![CDATA[Prefer privacy addresses and use them over the normal addresses]]></descr>
64
                        <tunable>net.inet6.ip6.prefer_tempaddr</tunable>
65
                        <value>default</value>
66
                </item>
67
                <item>
68
                        <descr><![CDATA[Generate SYN cookies for outbound SYN-ACK packets]]></descr>
69
                        <tunable>net.inet.tcp.syncookies</tunable>
70
                        <value>default</value>
71
                </item>
72
                <item>
73
                        <descr><![CDATA[Maximum incoming/outgoing TCP datagram size (receive)]]></descr>
74
                        <tunable>net.inet.tcp.recvspace</tunable>
75
                        <value>default</value>
76
                </item>
77
                <item>
78
                        <descr><![CDATA[Maximum incoming/outgoing TCP datagram size (send)]]></descr>
79
                        <tunable>net.inet.tcp.sendspace</tunable>
80
                        <value>default</value>
81
                </item>
82
                <item>
83
                        <descr><![CDATA[IP Fastforwarding]]></descr>
84
                        <tunable>net.inet.ip.fastforwarding</tunable>
85
                        <value>default</value>
86
                </item>
87
                <item>
88
                        <descr><![CDATA[Do not delay ACK to try and piggyback it onto a data packet]]></descr>
89
                        <tunable>net.inet.tcp.delayed_ack</tunable>
90
                        <value>default</value>
91
                </item>
92
                <item>
93
                        <descr><![CDATA[Maximum outgoing UDP datagram size]]></descr>
94
                        <tunable>net.inet.udp.maxdgram</tunable>
95
                        <value>default</value>
96
                </item>
97
                <item>
98
                        <descr><![CDATA[Handling of non-IP packets which are not passed to pfil (see if_bridge(4))]]></descr>
99
                        <tunable>net.link.bridge.pfil_onlyip</tunable>
100
                        <value>default</value>
101
                </item>
102
                <item>
103
                        <descr><![CDATA[Set to 0 to disable filtering on the incoming and outgoing member interfaces.]]></descr>
104
                        <tunable>net.link.bridge.pfil_member</tunable>
105
                        <value>default</value>
106
                </item>
107
                <item>
108
                        <descr><![CDATA[Set to 1 to enable filtering on the bridge interface]]></descr>
109
                        <tunable>net.link.bridge.pfil_bridge</tunable>
110
                        <value>default</value>
111
                </item>
112
                <item>
113
                        <descr><![CDATA[Allow unprivileged access to tap(4) device nodes]]></descr>
114
                        <tunable>net.link.tap.user_open</tunable>
115
                        <value>default</value>
116
                </item>
117
                <item>
118
                        <descr><![CDATA[Randomize PID's (see src/sys/kern/kern_fork.c: sysctl_kern_randompid())]]></descr>
119
                        <tunable>kern.randompid</tunable>
120
                        <value>default</value>
121
                </item>
122
                <item>
123
                        <descr><![CDATA[Maximum size of the IP input queue]]></descr>
124
                        <tunable>net.inet.ip.intr_queue_maxlen</tunable>
125
                        <value>default</value>
126
                </item>
127
                <item>
128
                        <descr><![CDATA[Disable CTRL+ALT+Delete reboot from keyboard.]]></descr>
129
                        <tunable>hw.syscons.kbd_reboot</tunable>
130
                        <value>default</value>
131
                </item>
132
                <item>
133
                        <descr><![CDATA[Enable TCP Inflight mode]]></descr>
134
                        <tunable>net.inet.tcp.inflight.enable</tunable>
135
                        <value>default</value>
136
                </item>
137
                <item>
138
                        <descr><![CDATA[Enable TCP extended debugging]]></descr>
139
                        <tunable>net.inet.tcp.log_debug</tunable>
140
                        <value>default</value>
141
                </item>
142
                <item>
143
                        <descr><![CDATA[Set ICMP Limits]]></descr>
144
                        <tunable>net.inet.icmp.icmplim</tunable>
145
                        <value>default</value>
146
                </item>
147
                <item>
148
                        <descr><![CDATA[TCP Offload Engine]]></descr>
149
                        <tunable>net.inet.tcp.tso</tunable>
150
                        <value>default</value>
151
                </item>
152
                <item>
153
                        <descr><![CDATA[UDP Checksums]]></descr>
154
                        <tunable>net.inet.udp.checksum</tunable>
155
                        <value>default</value>
156
                </item>
157
                <item>
158
                        <descr><![CDATA[Maximum socket buffer size]]></descr>
159
                        <tunable>kern.ipc.maxsockbuf</tunable>
160
                        <value>default</value>
161
                </item>
162
        </sysctl>
163
        <system>
164
                <optimization>normal</optimization>
165
                <hostname>firewallpmi</hostname>
166
                <domain>proxy</domain>
167
                <group>
168
                        <name>all</name>
169
                        <description><![CDATA[All Users]]></description>
170
                        <scope>system</scope>
171
                        <gid>1998</gid>
172
                        <member>0</member>
173
                </group>
174
                <group>
175
                        <name>admins</name>
176
                        <description><![CDATA[System Administrators]]></description>
177
                        <scope>system</scope>
178
                        <gid>1999</gid>
179
                        <member>0</member>
180
                        <priv>page-all</priv>
181
                </group>
182
                <user>
183
                        <name>admin</name>
184
                        <descr><![CDATA[System Administrator]]></descr>
185
                        <scope>system</scope>
186
                        <groupname>admins</groupname>
187
                        <password>$1$yW3j1kR5$cZlgl6jpEecukGtWkxCw20</password>
188
                        <uid>0</uid>
189
                        <priv>user-shell-access</priv>
190
                        <md5-hash>d167e8f639c1de3f00e4e4bf688df013</md5-hash>
191
                        <nt-hash>3761663330313031326135643334383165386337613638386638623932356230</nt-hash>
192
                </user>
193
                <nextuid>2000</nextuid>
194
                <nextgid>2000</nextgid>
195
                <timezone>Brazil/West</timezone>
196
                <time-update-interval/>
197
                <timeservers>0.pfsense.pool.ntp.org</timeservers>
198
                <webgui>
199
                        <protocol>http</protocol>
200
                        <noautocomplete/>
201
                        <ssl-certref>5864e9e3d1a5e</ssl-certref>
202
                        <port/>
203
                        <max_procs>2</max_procs>
204
                        <nohttpreferercheck/>
205
                </webgui>
206
                <disablenatreflection>yes</disablenatreflection>
207
                <disablesegmentationoffloading/>
208
                <disablelargereceiveoffloading/>
209
                <ipv6allow/>
210
                <powerd_ac_mode>hadp</powerd_ac_mode>
211
                <powerd_battery_mode>hadp</powerd_battery_mode>
212
                <bogons>
213
                        <interval>monthly</interval>
214
                </bogons>
215
                <kill_states/>
216
                <language>en_US</language>
217
                <dnslocalhost/>
218
                <dns1gw>none</dns1gw>
219
                <dns2gw>none</dns2gw>
220
                <dns3gw>none</dns3gw>
221
                <dns4gw>none</dns4gw>
222
                <dnsserver>8.8.8.8</dnsserver>
223
                <dnsserver>208.67.222.222</dnsserver>
224
                <disableconsolemenu/>
225
                <serialspeed>9600</serialspeed>
226
                <primaryconsole>serial</primaryconsole>
227
                <enablesshd>enabled</enablesshd>
228
                <ssh>
229
                        <port>32456</port>
230
                </ssh>
231
                <lb_use_sticky/>
232
                <srctrack/>
233
                <gw_switch_default/>
234
                <use_mfs_tmp_size/>
235
                <use_mfs_var_size/>
236
        </system>
237
        <interfaces>
238
                <wan>
239
                        <enable/>
240
                        <if>em1</if>
241
                        <blockpriv/>
242
                        <blockbogons/>
243
                        <descr><![CDATA[VoxxTelecomFibra]]></descr>
244
                        <ipaddr>x.x.x.x</ipaddr>
245
                        <subnet>28</subnet>
246
                        <gateway>WANGW</gateway>
247
                        <spoofmac/>
248
                </wan>
249
                <lan>
250
                        <enable/>
251
                        <if>em0</if>
252
                        <descr><![CDATA[RedeLocal]]></descr>
253
                        <ipaddr>192.168.0.1</ipaddr>
254
                        <subnet>24</subnet>
255
                        <spoofmac/>
256
                </lan>
257
                <opt1>
258
                        <descr><![CDATA[VivoInternetVdsl]]></descr>
259
                        <if>pppoe0</if>
260
                        <enable/>
261
                        <spoofmac/>
262
                        <ipaddr>pppoe</ipaddr>
263
                </opt1>
264
        </interfaces>
265
        <staticroutes/>
266
        <dhcpd>
267
                <lan>
268
                        <range>
269
                                <from>192.168.0.210</from>
270
                                <to>192.168.0.254</to>
271
                        </range>
272
                        <failover_peerip/>
273
                        <dhcpleaseinlocaltime/>
274
                        <defaultleasetime/>
275
                        <maxleasetime/>
276
                        <netmask/>
277
                        <gateway>192.168.0.1</gateway>
278
                        <domain/>
279
                        <domainsearchlist/>
280
                        <ddnsdomain/>
281
                        <mac_allow/>
282
                        <mac_deny/>
283
                        <tftp/>
284
                        <ldap/>
285
                        <nextserver/>
286
                        <filename/>
287
                        <rootpath/>
288
                        <numberoptions/>
289
                        <staticmap>
290
                                <mac>64:70:02:2d:61:95</mac>
291
                                <ipaddr>192.168.0.36</ipaddr>
292
                                <hostname/>
293
                                <descr><![CDATA[Computador VictorTassinari  Notebook]]></descr>
294
                                <filename/>
295
                                <rootpath/>
296
                                <defaultleasetime/>
297
                                <maxleasetime/>
298
                                <dnsserver>192.168.0.1</dnsserver>
299
                                <gateway>192.168.0.1</gateway>
300
                                <domain/>
301
                                <domainsearchlist/>
302
                                <ddnsdomain/>
303
                                <tftp/>
304
                                <ldap/>
305
                        </staticmap>
306
                        <staticmap>
307
                                <mac>ac:5f:3e:6b:a3:97</mac>
308
                                <ipaddr>192.168.0.40</ipaddr>
309
                                <hostname/>
310
                                <descr><![CDATA[Victor Celular]]></descr>
311
                                <filename/>
312
                                <rootpath/>
313
                                <defaultleasetime/>
314
                                <maxleasetime/>
315
                                <dnsserver>192.168.0.1</dnsserver>
316
                                <gateway>192.168.0.1</gateway>
317
                                <domain/>
318
                                <domainsearchlist/>
319
                                <ddnsdomain/>
320
                                <tftp/>
321
                                <ldap/>
322
                        </staticmap>
323
                        <staticmap>
324
                                <mac>60:a4:4c:4f:9f:c3</mac>
325
                                <ipaddr>192.168.0.43</ipaddr>
326
                                <hostname/>
327
                                <descr><![CDATA[Computador NelsonJunior]]></descr>
328
                                <filename/>
329
                                <rootpath/>
330
                                <defaultleasetime/>
331
                                <maxleasetime/>
332
                                <dnsserver>192.168.0.1</dnsserver>
333
                                <gateway>192.168.0.1</gateway>
334
                                <domain/>
335
                                <domainsearchlist/>
336
                                <ddnsdomain/>
337
                                <tftp/>
338
                                <ldap/>
339
                        </staticmap>
340
                        <staticmap>
341
                                <mac>80:86:f2:f5:52:da</mac>
342
                                <ipaddr>192.168.0.86</ipaddr>
343
                                <hostname/>
344
                                <descr><![CDATA[ Computador WilsonJunior  Notebook]]></descr>
345
                                <filename/>
346
                                <rootpath/>
347
                                <defaultleasetime/>
348
                                <maxleasetime/>
349
                                <dnsserver>192.168.0.1</dnsserver>
350
                                <gateway>192.168.0.1</gateway>
351
                                <domain/>
352
                                <domainsearchlist/>
353
                                <ddnsdomain/>
354
                                <tftp/>
355
                                <ldap/>
356
                        </staticmap>
357
                        <staticmap>
358
                                <mac>10:3b:59:bc:d9:ce</mac>
359
                                <ipaddr>192.168.0.87</ipaddr>
360
                                <hostname/>
361
                                <descr><![CDATA[NelsonCelular]]></descr>
362
                                <filename/>
363
                                <rootpath/>
364
                                <defaultleasetime/>
365
                                <maxleasetime/>
366
                                <dnsserver>192.168.0.1</dnsserver>
367
                                <gateway>192.168.0.1</gateway>
368
                                <domain/>
369
                                <domainsearchlist/>
370
                                <ddnsdomain/>
371
                                <tftp/>
372
                                <ldap/>
373
                        </staticmap>
374
                        <staticmap>
375
                                <mac>10:2a:b3:fd:96:a4</mac>
376
                                <ipaddr>192.168.0.89</ipaddr>
377
                                <hostname/>
378
                                <descr><![CDATA[WilsonCelular]]></descr>
379
                                <filename/>
380
                                <rootpath/>
381
                                <defaultleasetime/>
382
                                <maxleasetime/>
383
                                <dnsserver>192.168.0.1</dnsserver>
384
                                <gateway>192.168.0.1</gateway>
385
                                <domain/>
386
                                <domainsearchlist/>
387
                                <ddnsdomain/>
388
                                <tftp/>
389
                                <ldap/>
390
                        </staticmap>
391
                        <ddnsdomainprimary/>
392
                        <ddnsdomainkeyname/>
393
                        <ddnsdomainkey/>
394
                        <filename32/>
395
                        <filename64/>
396
                        <enable/>
397
                        <dnsserver>192.168.0.1</dnsserver>
398
                </lan>
399
        </dhcpd>
400
        <pptpd>
401
                <mode/>
402
                <redir/>
403
                <localip/>
404
                <remoteip/>
405
        </pptpd>
406
        <dnsmasq>
407
                <enable/>
408
                <regdhcp/>
409
                <regdhcpstatic/>
410
                <custom_options/>
411
                <interface/>
412
                <hosts>
413
                        <host>www</host>
414
                        <domain>youtube.com</domain>
415
                        <ip>192.168.0.0</ip>
416
                        <descr><![CDATA[BLK_Youtube.com]]></descr>
417
                        <aliases/>
418
                </hosts>
419
                <hosts>
420
                        <host>www</host>
421
                        <domain>netflix.com</domain>
422
                        <ip>192.168.0.0</ip>
423
                        <descr><![CDATA[BLK_NetFlix.com]]></descr>
424
                        <aliases/>
425
                </hosts>
426
        </dnsmasq>
427
        <snmpd>
428
                <syslocation/>
429
                <syscontact/>
430
                <rocommunity>public</rocommunity>
431
        </snmpd>
432
        <diag>
433
                <ipv6nat>
434
                        <ipaddr/>
435
                </ipv6nat>
436
        </diag>
437
        <bridge/>
438
        <syslog/>
439
        <nat>
440
                <ipsecpassthru>
441
                        <enable/>
442
                </ipsecpassthru>
443
                <rule>
444
                        <source>
445
                                <any/>
446
                        </source>
447
                        <destination>
448
                                <network>wanip</network>
449
                                <port>80</port>
450
                        </destination>
451
                        <protocol>tcp</protocol>
452
                        <target>192.168.0.1</target>
453
                        <local-port>80</local-port>
454
                        <interface>wan</interface>
455
                        <descr/>
456
                        <associated-rule-id>nat_56d5d8e3412b72.08001998</associated-rule-id>
457
                        <updated>
458
                                <time>1456855267</time>
459
                                <username>admin@192.168.0.3</username>
460
                        </updated>
461
                        <created>
462
                                <time>1456855267</time>
463
                                <username>admin@192.168.0.3</username>
464
                        </created>
465
                </rule>
466
                <rule>
467
                        <source>
468
                                <any/>
469
                        </source>
470
                        <destination>
471
                                <network>wanip</network>
472
                                <port>81</port>
473
                        </destination>
474
                        <protocol>tcp</protocol>
475
                        <target>192.168.0.3</target>
476
                        <local-port>81</local-port>
477
                        <interface>wan</interface>
478
                        <descr/>
479
                        <associated-rule-id>nat_56d5d8f8e30319.03597965</associated-rule-id>
480
                        <updated>
481
                                <time>1456855288</time>
482
                                <username>admin@192.168.0.3</username>
483
                        </updated>
484
                        <created>
485
                                <time>1456855288</time>
486
                                <username>admin@192.168.0.3</username>
487
                        </created>
488
                </rule>
489
                <rule>
490
                        <source>
491
                                <any/>
492
                        </source>
493
                        <destination>
494
                                <network>wanip</network>
495
                                <port>5661</port>
496
                        </destination>
497
                        <protocol>tcp</protocol>
498
                        <target>192.168.0.3</target>
499
                        <local-port>5661</local-port>
500
                        <interface>wan</interface>
501
                        <descr/>
502
                        <associated-rule-id>nat_56d5d9060247c4.42075432</associated-rule-id>
503
                        <updated>
504
                                <time>1456855302</time>
505
                                <username>admin@192.168.0.3</username>
506
                        </updated>
507
                        <created>
508
                                <time>1456855302</time>
509
                                <username>admin@192.168.0.3</username>
510
                        </created>
511
                </rule>
512
                <rule>
513
                        <source>
514
                                <any/>
515
                        </source>
516
                        <destination>
517
                                <network>wanip</network>
518
                                <port>32456</port>
519
                        </destination>
520
                        <protocol>tcp</protocol>
521
                        <target>192.168.0.1</target>
522
                        <local-port>32456</local-port>
523
                        <interface>wan</interface>
524
                        <descr/>
525
                        <associated-rule-id>nat_56d5d917f13969.29428654</associated-rule-id>
526
                        <updated>
527
                                <time>1456855319</time>
528
                                <username>admin@192.168.0.3</username>
529
                        </updated>
530
                        <created>
531
                                <time>1456855319</time>
532
                                <username>admin@192.168.0.3</username>
533
                        </created>
534
                </rule>
535
                <rule>
536
                        <source>
537
                                <any/>
538
                        </source>
539
                        <destination>
540
                                <network>wanip</network>
541
                                <port>3389</port>
542
                        </destination>
543
                        <protocol>tcp</protocol>
544
                        <target>192.168.0.3</target>
545
                        <local-port>3389</local-port>
546
                        <interface>wan</interface>
547
                        <descr/>
548
                        <associated-rule-id>nat_56d5d924c667b6.86118403</associated-rule-id>
549
                        <created>
550
                                <time>1456855332</time>
551
                                <username>admin@192.168.0.3</username>
552
                        </created>
553
                        <updated>
554
                                <time>1471749556</time>
555
                                <username>admin@187.34.51.192</username>
556
                        </updated>
557
                </rule>
558
                <rule>
559
                        <source>
560
                                <any/>
561
                        </source>
562
                        <destination>
563
                                <network>wanip</network>
564
                                <port>33810</port>
565
                        </destination>
566
                        <protocol>tcp</protocol>
567
                        <target>192.168.0.141</target>
568
                        <local-port>33810</local-port>
569
                        <interface>wan</interface>
570
                        <descr/>
571
                        <associated-rule-id>nat_57e325119e5895.93264476</associated-rule-id>
572
                        <created>
573
                                <time>1474503953</time>
574
                                <username>admin@192.168.0.43</username>
575
                        </created>
576
                        <updated>
577
                                <time>1474503977</time>
578
                                <username>admin@192.168.0.43</username>
579
                        </updated>
580
                </rule>
581
                <rule>
582
                        <source>
583
                                <any/>
584
                        </source>
585
                        <destination>
586
                                <network>wanip</network>
587
                                <port>22</port>
588
                        </destination>
589
                        <protocol>tcp</protocol>
590
                        <target>192.168.0.6</target>
591
                        <local-port>22</local-port>
592
                        <interface>wan</interface>
593
                        <descr/>
594
                        <associated-rule-id>nat_56d5d9315769a4.05055289</associated-rule-id>
595
                        <updated>
596
                                <time>1456855345</time>
597
                                <username>admin@192.168.0.3</username>
598
                        </updated>
599
                        <created>
600
                                <time>1456855345</time>
601
                                <username>admin@192.168.0.3</username>
602
                        </created>
603
                </rule>
604
                <rule>
605
                        <source>
606
                                <any/>
607
                        </source>
608
                        <destination>
609
                                <network>wanip</network>
610
                                <port>5432</port>
611
                        </destination>
612
                        <protocol>tcp</protocol>
613
                        <target>192.168.0.6</target>
614
                        <local-port>5432</local-port>
615
                        <interface>wan</interface>
616
                        <descr/>
617
                        <associated-rule-id>nat_56d5d942708eb5.31541107</associated-rule-id>
618
                        <updated>
619
                                <time>1456855362</time>
620
                                <username>admin@192.168.0.3</username>
621
                        </updated>
622
                        <created>
623
                                <time>1456855362</time>
624
                                <username>admin@192.168.0.3</username>
625
                        </created>
626
                </rule>
627
                <advancedoutbound/>
628
        </nat>
629
        <filter>
630
                <rule>
631
                        <id/>
632
                        <type>pass</type>
633
                        <interface>wan</interface>
634
                        <ipprotocol>inet</ipprotocol>
635
                        <tag/>
636
                        <tagged/>
637
                        <max/>
638
                        <max-src-nodes/>
639
                        <max-src-conn/>
640
                        <max-src-states/>
641
                        <statetimeout/>
642
                        <statetype>keep state</statetype>
643
                        <os/>
644
                        <protocol>icmp</protocol>
645
                        <source>
646
                                <address>x.x.x.x</address>
647
                        </source>
648
                        <destination>
649
                                <any/>
650
                        </destination>
651
                        <descr><![CDATA[Liberar Ping WanExternoVoxxTeleCOMDUDE]]></descr>
652
                        <created>
653
                                <time>1482499954</time>
654
                                <username>admin@192.168.0.43</username>
655
                        </created>
656
                        <updated>
657
                                <time>1482500478</time>
658
                                <username>admin@192.168.0.43</username>
659
                        </updated>
660
                </rule>
661
                <rule>
662
                        <source>
663
                                <any/>
664
                        </source>
665
                        <interface>wan</interface>
666
                        <protocol>tcp</protocol>
667
                        <destination>
668
                                <address>192.168.0.1</address>
669
                                <port>80</port>
670
                        </destination>
671
                        <descr><![CDATA[NAT ]]></descr>
672
                        <associated-rule-id>nat_56d5d8e3412b72.08001998</associated-rule-id>
673
                        <created>
674
                                <time>1456855267</time>
675
                                <username>NAT Port Forward</username>
676
                        </created>
677
                </rule>
678
                <rule>
679
                        <source>
680
                                <any/>
681
                        </source>
682
                        <interface>wan</interface>
683
                        <protocol>tcp</protocol>
684
                        <destination>
685
                                <address>192.168.0.3</address>
686
                                <port>81</port>
687
                        </destination>
688
                        <descr><![CDATA[NAT ]]></descr>
689
                        <associated-rule-id>nat_56d5d8f8e30319.03597965</associated-rule-id>
690
                        <created>
691
                                <time>1456855288</time>
692
                                <username>NAT Port Forward</username>
693
                        </created>
694
                </rule>
695
                <rule>
696
                        <source>
697
                                <any/>
698
                        </source>
699
                        <interface>wan</interface>
700
                        <protocol>tcp</protocol>
701
                        <destination>
702
                                <address>192.168.0.3</address>
703
                                <port>5661</port>
704
                        </destination>
705
                        <descr><![CDATA[NAT ]]></descr>
706
                        <associated-rule-id>nat_56d5d9060247c4.42075432</associated-rule-id>
707
                        <created>
708
                                <time>1456855302</time>
709
                                <username>NAT Port Forward</username>
710
                        </created>
711
                </rule>
712
                <rule>
713
                        <source>
714
                                <any/>
715
                        </source>
716
                        <interface>wan</interface>
717
                        <protocol>tcp</protocol>
718
                        <destination>
719
                                <address>192.168.0.1</address>
720
                                <port>32456</port>
721
                        </destination>
722
                        <descr><![CDATA[NAT ]]></descr>
723
                        <associated-rule-id>nat_56d5d917f13969.29428654</associated-rule-id>
724
                        <created>
725
                                <time>1456855319</time>
726
                                <username>NAT Port Forward</username>
727
                        </created>
728
                </rule>
729
                <rule>
730
                        <id/>
731
                        <type>pass</type>
732
                        <interface>wan</interface>
733
                        <ipprotocol>inet</ipprotocol>
734
                        <tag/>
735
                        <tagged/>
736
                        <max/>
737
                        <max-src-nodes/>
738
                        <max-src-conn/>
739
                        <max-src-states/>
740
                        <statetimeout/>
741
                        <statetype>keep state</statetype>
742
                        <os/>
743
                        <protocol>tcp</protocol>
744
                        <source>
745
                                <any/>
746
                        </source>
747
                        <destination>
748
                                <address>192.168.0.3</address>
749
                                <port>3389</port>
750
                        </destination>
751
                        <descr><![CDATA[NAT ]]></descr>
752
                        <associated-rule-id>nat_56d5d924c667b6.86118403</associated-rule-id>
753
                        <created>
754
                                <time>1456855332</time>
755
                                <username>NAT Port Forward</username>
756
                        </created>
757
                        <updated>
758
                                <time>1469098158</time>
759
                                <username>admin@192.168.0.43</username>
760
                        </updated>
761
                </rule>
762
                <rule>
763
                        <source>
764
                                <any/>
765
                        </source>
766
                        <interface>wan</interface>
767
                        <protocol>tcp</protocol>
768
                        <destination>
769
                                <address>192.168.0.6</address>
770
                                <port>22</port>
771
                        </destination>
772
                        <descr><![CDATA[NAT ]]></descr>
773
                        <associated-rule-id>nat_56d5d9315769a4.05055289</associated-rule-id>
774
                        <created>
775
                                <time>1456855345</time>
776
                                <username>NAT Port Forward</username>
777
                        </created>
778
                </rule>
779
                <rule>
780
                        <source>
781
                                <any/>
782
                        </source>
783
                        <interface>wan</interface>
784
                        <protocol>tcp</protocol>
785
                        <destination>
786
                                <address>192.168.0.6</address>
787
                                <port>5432</port>
788
                        </destination>
789
                        <descr><![CDATA[NAT ]]></descr>
790
                        <associated-rule-id>nat_56d5d942708eb5.31541107</associated-rule-id>
791
                        <created>
792
                                <time>1456855362</time>
793
                                <username>NAT Port Forward</username>
794
                        </created>
795
                </rule>
796
                <rule>
797
                        <source>
798
                                <any/>
799
                        </source>
800
                        <interface>wan</interface>
801
                        <protocol>tcp</protocol>
802
                        <destination>
803
                                <address>192.168.0.141</address>
804
                                <port>33810</port>
805
                        </destination>
806
                        <descr><![CDATA[NAT ]]></descr>
807
                        <associated-rule-id>nat_57e325119e5895.93264476</associated-rule-id>
808
                        <created>
809
                                <time>1474503953</time>
810
                                <username>NAT Port Forward</username>
811
                        </created>
812
                </rule>
813
                <rule>
814
                        <id/>
815
                        <type>block</type>
816
                        <interface>lan</interface>
817
                        <ipprotocol>inet</ipprotocol>
818
                        <tag/>
819
                        <tagged/>
820
                        <max/>
821
                        <max-src-nodes/>
822
                        <max-src-conn/>
823
                        <max-src-states/>
824
                        <statetimeout/>
825
                        <statetype>keep state</statetype>
826
                        <os/>
827
                        <protocol>icmp</protocol>
828
                        <source>
829
                                <any/>
830
                        </source>
831
                        <destination>
832
                                <any/>
833
                        </destination>
834
                        <descr><![CDATA[Bloqueio Ping - Anti-DDoS]]></descr>
835
                        <gateway>FailOver</gateway>
836
                        <created>
837
                                <time>1455113107</time>
838
                                <username>admin@192.168.0.43</username>
839
                        </created>
840
                        <updated>
841
                                <time>1482511481</time>
842
                                <username>admin@192.168.0.43</username>
843
                        </updated>
844
                </rule>
845
                <rule>
846
                        <id/>
847
                        <type>block</type>
848
                        <interface>lan</interface>
849
                        <ipprotocol>inet</ipprotocol>
850
                        <tag/>
851
                        <tagged/>
852
                        <max/>
853
                        <max-src-nodes/>
854
                        <max-src-conn/>
855
                        <max-src-states/>
856
                        <statetimeout/>
857
                        <statetype>keep state</statetype>
858
                        <os/>
859
                        <protocol>tcp/udp</protocol>
860
                        <source>
861
                                <address>LiberarFacebook_Ips</address>
862
                                <not/>
863
                        </source>
864
                        <destination>
865
                                <address>BLK_RedeFacebook</address>
866
                        </destination>
867
                        <descr><![CDATA[BloqueiaFacebookeLiberarEspecificos]]></descr>
868
                        <gateway>FailOver</gateway>
869
                        <created>
870
                                <time>1445459745</time>
871
                                <username>admin@189.47.110.242</username>
872
                        </created>
873
                        <updated>
874
                                <time>1482511490</time>
875
                                <username>admin@192.168.0.43</username>
876
                        </updated>
877
                </rule>
878
                <rule>
879
                        <id/>
880
                        <type>pass</type>
881
                        <interface>lan</interface>
882
                        <ipprotocol>inet</ipprotocol>
883
                        <tag/>
884
                        <tagged/>
885
                        <max/>
886
                        <max-src-nodes/>
887
                        <max-src-conn/>
888
                        <max-src-states/>
889
                        <statetimeout/>
890
                        <statetype>keep state</statetype>
891
                        <os/>
892
                        <protocol>tcp/udp</protocol>
893
                        <source>
894
                                <address>ControelBandaPorIP</address>
895
                        </source>
896
                        <destination>
897
                                <any/>
898
                        </destination>
899
                        <descr><![CDATA[ControleDeBandaPorIP]]></descr>
900
                        <gateway>FailOver</gateway>
901
                        <dnpipe>Download</dnpipe>
902
                        <pdnpipe>UpLoad</pdnpipe>
903
                        <created>
904
                                <time>1479992919</time>
905
                                <username>admin@192.168.0.43</username>
906
                        </created>
907
                        <updated>
908
                                <time>1483010014</time>
909
                                <username>admin@192.168.0.43</username>
910
                        </updated>
911
                </rule>
912
                <rule>
913
                        <id/>
914
                        <type>pass</type>
915
                        <interface>lan</interface>
916
                        <ipprotocol>inet</ipprotocol>
917
                        <tag/>
918
                        <tagged/>
919
                        <max/>
920
                        <max-src-nodes/>
921
                        <max-src-conn/>
922
                        <max-src-states/>
923
                        <statetimeout/>
924
                        <statetype>keep state</statetype>
925
                        <os/>
926
                        <source>
927
                                <network>lan</network>
928
                        </source>
929
                        <destination>
930
                                <any/>
931
                        </destination>
932
                        <descr><![CDATA[Default allow LAN to any rule]]></descr>
933
                        <gateway>FailOver</gateway>
934
                        <updated>
935
                                <time>1482511508</time>
936
                                <username>admin@192.168.0.43</username>
937
                        </updated>
938
                </rule>
939
        </filter>
940
        <shaper/>
941
        <ipsec/>
942
        <aliases>
943
                <alias>
944
                        <name>BLK_RedeFacebook</name>
945
                        <address>31.13.24.0/21 31.13.64.0/18 45.64.40.0/22 66.220.144.0/20 66.220.152.0/21 66.220.159.0/24 69.63.0.0/16 69.171.224.0/19 69.171.240.0/20 74.119.76.0/22 103.4.96.0/22 204.15.20.0/22 129.134.0.0/16 157.240.0.0/16 173.252.70.0/24 173.252.96.0/19 173.252.64.0/18 179.60.192.0/21 185.60.216.0/21</address>
946
                        <descr/>
947
                        <type>network</type>
948
                        <detail><![CDATA[Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200||Entry added Fri, 04 Nov 2016 08:22:37 -0200]]></detail>
949
                </alias>
950
                <alias>
951
                        <name>ControelBandaPorIP</name>
952
                        <address>192.168.0.8 192.168.0.61 192.168.0.36 192.168.0.86 192.168.0.161</address>
953
                        <descr/>
954
                        <type>host</type>
955
                        <detail><![CDATA[ApPrefeituraDigital||RoteadorEducacao||VictorNotebook||WilsonNotebook||APHospital]]></detail>
956
                </alias>
957
                <alias>
958
                        <name>LiberarFacebook_Ips</name>
959
                        <address>192.168.0.35 192.168.0.185 192.168.0.43 192.168.0.86 192.168.0.36 192.168.0.61 192.168.0.196 192.168.0.87 192.168.0.89 192.168.0.40 192.168.0.46 192.168.0.8 192.168.0.161</address>
960
                        <descr/>
961
                        <type>host</type>
962
                        <detail><![CDATA[MicroCarolComunica&ccedil;&atilde;o||APGinasioEsportes||MicroNelsonJunior||NotebookWilson||NotebookVictor||IPAPEduca&ccedil;&atilde;o||IpCasaDaCrian&ccedil;a||IpCelularNelson||IpCelularWilson||IpCelularVictor||IpApleVictor||APPrefeituraDigital||APHospital]]></detail>
963
                </alias>
964
        </aliases>
965
        <proxyarp/>
966
        <cron>
967
                <item>
968
                        <minute>1,31</minute>
969
                        <hour>0-5</hour>
970
                        <mday>*</mday>
971
                        <month>*</month>
972
                        <wday>*</wday>
973
                        <who>root</who>
974
                        <command>/usr/bin/nice -n20 adjkerntz -a</command>
975
                </item>
976
                <item>
977
                        <minute>1</minute>
978
                        <hour>3</hour>
979
                        <mday>1</mday>
980
                        <month>*</month>
981
                        <wday>*</wday>
982
                        <who>root</who>
983
                        <command>/usr/bin/nice -n20 /etc/rc.update_bogons.sh</command>
984
                </item>
985
                <item>
986
                        <minute>*/60</minute>
987
                        <hour>*</hour>
988
                        <mday>*</mday>
989
                        <month>*</month>
990
                        <wday>*</wday>
991
                        <who>root</who>
992
                        <command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 sshlockout</command>
993
                </item>
994
                <item>
995
                        <minute>1</minute>
996
                        <hour>1</hour>
997
                        <mday>*</mday>
998
                        <month>*</month>
999
                        <wday>*</wday>
1000
                        <who>root</who>
1001
                        <command>/usr/bin/nice -n20 /etc/rc.dyndns.update</command>
1002
                </item>
1003
                <item>
1004
                        <minute>*/60</minute>
1005
                        <hour>*</hour>
1006
                        <mday>*</mday>
1007
                        <month>*</month>
1008
                        <wday>*</wday>
1009
                        <who>root</who>
1010
                        <command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 virusprot</command>
1011
                </item>
1012
                <item>
1013
                        <minute>30</minute>
1014
                        <hour>12</hour>
1015
                        <mday>*</mday>
1016
                        <month>*</month>
1017
                        <wday>*</wday>
1018
                        <who>root</who>
1019
                        <command>/usr/bin/nice -n20 /etc/rc.update_urltables</command>
1020
                </item>
1021
                <item>
1022
                        <task_name>squid_rotate_logs</task_name>
1023
                        <minute>0</minute>
1024
                        <hour>0</hour>
1025
                        <mday>*</mday>
1026
                        <month>*</month>
1027
                        <wday>*</wday>
1028
                        <who>root</who>
1029
                        <command>/bin/rm /var/squid/cache/swap.state; /usr/pbi/squid-amd64/sbin/squid -k rotate</command>
1030
                </item>
1031
                <item>
1032
                        <task_name>squid_check_swapstate</task_name>
1033
                        <minute>*/15</minute>
1034
                        <hour>*</hour>
1035
                        <mday>*</mday>
1036
                        <month>*</month>
1037
                        <wday>*</wday>
1038
                        <who>root</who>
1039
                        <command>/usr/local/pkg/swapstate_check.php</command>
1040
                </item>
1041
                <item>
1042
                        <minute>0</minute>
1043
                        <hour>0</hour>
1044
                        <mday>*</mday>
1045
                        <month>*</month>
1046
                        <wday>*</wday>
1047
                        <who>root</who>
1048
                        <command>/usr/bin/nice -n20 /usr/local/etc/rc.d/squidGuard_logrotate</command>
1049
                </item>
1050
                <item>
1051
                        <minute>0</minute>
1052
                        <hour>*/1</hour>
1053
                        <mday>*</mday>
1054
                        <month>*</month>
1055
                        <wday>*</wday>
1056
                        <who>root</who>
1057
                        <command>/usr/local/bin/php --no-header /usr/local/www/sarg.php 0</command>
1058
                </item>
1059
        </cron>
1060
        <wol/>
1061
        <rrd>
1062
                <enable/>
1063
        </rrd>
1064
        <load_balancer>
1065
                <monitor_type>
1066
                        <name>ICMP</name>
1067
                        <type>icmp</type>
1068
                        <descr><![CDATA[ICMP]]></descr>
1069
                        <options/>
1070
                </monitor_type>
1071
                <monitor_type>
1072
                        <name>TCP</name>
1073
                        <type>tcp</type>
1074
                        <descr><![CDATA[Generic TCP]]></descr>
1075
                        <options/>
1076
                </monitor_type>
1077
                <monitor_type>
1078
                        <name>HTTP</name>
1079
                        <type>http</type>
1080
                        <descr><![CDATA[Generic HTTP]]></descr>
1081
                        <options>
1082
                                <path>/</path>
1083
                                <host/>
1084
                                <code>200</code>
1085
                        </options>
1086
                </monitor_type>
1087
                <monitor_type>
1088
                        <name>HTTPS</name>
1089
                        <type>https</type>
1090
                        <descr><![CDATA[Generic HTTPS]]></descr>
1091
                        <options>
1092
                                <path>/</path>
1093
                                <host/>
1094
                                <code>200</code>
1095
                        </options>
1096
                </monitor_type>
1097
                <monitor_type>
1098
                        <name>SMTP</name>
1099
                        <type>send</type>
1100
                        <descr><![CDATA[Generic SMTP]]></descr>
1101
                        <options>
1102
                                <send/>
1103
                                <expect>220 *</expect>
1104
                        </options>
1105
                </monitor_type>
1106
        </load_balancer>
1107
        <widgets>
1108
                <sequence>system_information-container:col1:show,services_status-container:col1:show,captive_portal_status-container:col1:close,carp_status-container:col1:close,cpu_graphs-container:col1:close,gmirror_status-container:col1:close,installed_packages-container:col1:close,smart_status-container:col2:show,interfaces-container:col2:show,gateways-container:col2:show,interface_statistics-container:col2:show,ipsec-container:col2:close,load_balancer_status-container:col2:close,log-container:col2:show,picture-container:col2:close,rss-container:col2:close,traffic_graphs-container:col2:show,dyn_dns_status-container:col2:none,openvpn-container:col2:none,thermal_sensors-container:col2:none,wake_on_lan-container:col2:none</sequence>
1109
                <trafficgraphs>
1110
                        <shown>
1111
                                <item>wan</item>
1112
                                <item>lan</item>
1113
                                <item>opt1</item>
1114
                        </shown>
1115
                        <refreshinterval>1</refreshinterval>
1116
                        <scale_type>up</scale_type>
1117
                </trafficgraphs>
1118
        </widgets>
1119
        <revision>
1120
                <time>1483015598</time>
1121
                <description><![CDATA[admin@192.168.0.43: Updated cron job for /usr/bin/nice -n20 /usr/local/etc/rc.d/squidGuard_logrotate]]></description>
1122
                <username>admin@192.168.0.43</username>
1123
        </revision>
1124
        <openvpn/>
1125
        <l7shaper>
1126
                <container/>
1127
        </l7shaper>
1128
        <dnshaper>
1129
                <queue>
1130
                        <name>Download</name>
1131
                        <number>1</number>
1132
                        <qlimit/>
1133
                        <plr/>
1134
                        <description/>
1135
                        <bandwidth>
1136
                                <item>
1137
                                        <bw>6</bw>
1138
                                        <burst/>
1139
                                        <bwscale>Mb</bwscale>
1140
                                        <bwsched>none</bwsched>
1141
                                </item>
1142
                        </bandwidth>
1143
                        <enabled>on</enabled>
1144
                        <buckets/>
1145
                        <mask>none</mask>
1146
                        <maskbits/>
1147
                        <maskbitsv6/>
1148
                        <delay>0</delay>
1149
                </queue>
1150
                <queue>
1151
                        <name>UpLoad</name>
1152
                        <number>2</number>
1153
                        <qlimit/>
1154
                        <plr/>
1155
                        <description/>
1156
                        <bandwidth>
1157
                                <item>
1158
                                        <bw>2</bw>
1159
                                        <burst/>
1160
                                        <bwscale>Mb</bwscale>
1161
                                        <bwsched>none</bwsched>
1162
                                </item>
1163
                        </bandwidth>
1164
                        <enabled>on</enabled>
1165
                        <buckets/>
1166
                        <mask>none</mask>
1167
                        <maskbits/>
1168
                        <maskbitsv6/>
1169
                        <delay>0</delay>
1170
                </queue>
1171
        </dnshaper>
1172
        <cert>
1173
                <refid>5864e9e3d1a5e</refid>
1174
                <descr><![CDATA[webConfigurator default]]></descr>
1175
                <crt>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</crt>
1176
                <prv>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</prv>
1177
        </cert>
1178
        <dhcpdv6/>
1179
        <ppps>
1180
                <ppp>
1181
                        <ptpid>0</ptpid>
1182
                        <type>pppoe</type>
1183
                        <if>pppoe0</if>
1184
                        <ports>re0</ports>
1185
                        <username>vivo2015@r7.com</username>
1186
                        <password>dml2bzEyMw==</password>
1187
                        <provider/>
1188
                </ppp>
1189
        </ppps>
1190
        <gateways>
1191
                <gateway_item>
1192
                        <interface>wan</interface>
1193
                        <gateway>x.x.x.x</gateway>
1194
                        <name>WANGW</name>
1195
                        <weight>1</weight>
1196
                        <ipprotocol>inet</ipprotocol>
1197
                        <interval/>
1198
                        <descr><![CDATA[WAN Gateway]]></descr>
1199
                        <monitor>8.8.8.8</monitor>
1200
                        <defaultgw/>
1201
                        <down>5</down>
1202
                </gateway_item>
1203
                <gateway_item>
1204
                        <interface>opt1</interface>
1205
                        <gateway>dynamic</gateway>
1206
                        <name>VIVOINTERNETVDSL_PPPOE</name>
1207
                        <weight>1</weight>
1208
                        <ipprotocol>inet</ipprotocol>
1209
                        <interval/>
1210
                        <descr><![CDATA[Interface VIVOINTERNETVDSL_PPPOE Gateway]]></descr>
1211
                        <monitor>208.67.222.222</monitor>
1212
                        <down>5</down>
1213
                </gateway_item>
1214
                <gateway_group>
1215
                        <name>FailOver</name>
1216
                        <item>WANGW|1|address</item>
1217
                        <item>VIVOINTERNETVDSL_PPPOE|2|address</item>
1218
                        <trigger>down</trigger>
1219
                        <descr><![CDATA[FailOver]]></descr>
1220
                </gateway_group>
1221
        </gateways>
1222
        <installedpackages>
1223
                <package>
1224
                        <name>squid</name>
1225
                        <descr><![CDATA[High performance web proxy cache.]]></descr>
1226
                        <website>http://www.squid-cache.org/</website>
1227
                        <category>Network</category>
1228
                        <version>2.7.9 pkg v.4.3.10</version>
1229
                        <status>Stable</status>
1230
                        <required_version>2</required_version>
1231
                        <maintainer>fernando@netfilter.com.br seth.mos@dds.nl mfuchs77@googlemail.com jimp@pfsense.org</maintainer>
1232
                        <depends_on_package_base_url>https://files.pfsense.org/packages/amd64/8/All/</depends_on_package_base_url>
1233
                        <depends_on_package>squid-2.7.9_3.tbz</depends_on_package>
1234
                        <depends_on_package>squid_radius_auth-1.10.tbz</depends_on_package>
1235
                        <depends_on_package>libwww-5.4.0_4.tbz</depends_on_package>
1236
                        <depends_on_package_pbi>squid-2.7.9_3-amd64.pbi</depends_on_package_pbi>
1237
                        <build_port_path>/usr/ports/www/squid</build_port_path>
1238
                        <build_port_path>/usr/ports/www/squid_radius_auth</build_port_path>
1239
                        <build_port_path>/usr/ports/www/libwww</build_port_path>
1240
                        <build_pbi>
1241
                                <ports_before>www/libwww</ports_before>
1242
                                <port>www/squid</port>
1243
                                <ports_after>www/squid_radius_auth</ports_after>
1244
                        </build_pbi>
1245
                        <build_options>squid_UNSET_FORCE=DNS_HELPER IPFILTER PINGER STACKTRACES STRICT_HTTP_DESC USERAGENT_LOG WCCPV2;squid_SET=PF LDAP_AUTH NIS_AUTH SASL_AUTH ARP_ACL AUFS CACHE_DIGESTS CARP COSS DELAY_POOLS FOLLOW_XFF HTCP IDENT KERB_AUTH KQUEUE LARGEFILE REFERER_LOG SNMP SSL VIA_DB WCCP;SQUID_UID=proxy;SQUID_GID=proxy</build_options>
1246
                        <config_file>https://packages.pfsense.org/packages/config/squid/squid.xml</config_file>
1247
                        <configurationfile>squid.xml</configurationfile>
1248
                        <filter_rule_function>squid_generate_rules</filter_rule_function>
1249
                </package>
1250
                <package>
1251
                        <name>squidGuard</name>
1252
                        <descr><![CDATA[High performance web proxy URL filter. Requires proxy Squid 2.x package.]]></descr>
1253
                        <website>http://www.squidGuard.org/</website>
1254
                        <maintainer>dv_serg@mail.ru</maintainer>
1255
                        <category>Network Management</category>
1256
                        <version>1.4_4 pkg v1.9.17</version>
1257
                        <status>Beta</status>
1258
                        <required_version>1.1</required_version>
1259
                        <depends_on_package_base_url>https://files.pfsense.org/packages/amd64/8/All/</depends_on_package_base_url>
1260
                        <depends_on_package>squidGuard-1.4_4.tbz</depends_on_package>
1261
                        <depends_on_package>db41-4.1.25_4.tbz</depends_on_package>
1262
                        <depends_on_package>cyrus-sasl-2.1.26_2.tbz</depends_on_package>
1263
                        <depends_on_package_pbi>squidguard-1.4_4-amd64.pbi</depends_on_package_pbi>
1264
                        <build_port_path>/usr/ports/www/squidguard</build_port_path>
1265
                        <build_port_path>/usr/ports/databases/db41</build_port_path>
1266
                        <build_port_path>/usr/ports/security/cyrus-sasl2</build_port_path>
1267
                        <build_pbi>
1268
                                <ports_before>databases/db41 security/cyrus-sasl2</ports_before>
1269
                                <port>www/squidguard</port>
1270
                        </build_pbi>
1271
                        <build_options>squidGuard_UNSET_FORCE=SQUID32 SQUID33;squidGuard_SET=SAMPLE_BL SASL LDAP SQUID27;squid_UNSET_FORCE=DNS_HELPER IPFILTER PINGER STACKTRACES STRICT_HTTP_DESC USERAGENT_LOG WCCPV2;squid_SET=PF LDAP_AUTH NIS_AUTH SASL_AUTH ARP_ACL AUFS CACHE_DIGESTS CARP COSS DELAY_POOLS FOLLOW_XFF HTCP IDENT KERB_AUTH KQUEUE LARGEFILE REFERER_LOG SNMP SSL VIA_DB WCCP;SQUID_UID=proxy;SQUID_GID=proxy</build_options>
1272
                        <config_file>https://packages.pfsense.org/packages/config/squidGuard/squidguard.xml</config_file>
1273
                        <configurationfile>squidguard.xml</configurationfile>
1274
                </package>
1275
                <package>
1276
                        <name>Sarg</name>
1277
                        <website>http://www.dansguardian.org/</website>
1278
                        <descr><![CDATA[Sarg - Squid Analysis Report Generator - is a tool that generates reports about where your users are going on the Internet.&lt;br /&gt;
1279
                                                Sarg provides information about proxy users' activities: times, bytes, sites, etc. for those using Squid, Squidguard or dansguardian.]]></descr>
1280
                        <category>Network Report</category>
1281
                        <config_file>https://packages.pfsense.org/packages/config/sarg/sarg.xml</config_file>
1282
                        <pkginfolink>https://forum.pfsense.org/index.php/topic,47765.0.html</pkginfolink>
1283
                        <depends_on_package_base_url>https://files.pfsense.org/packages/amd64/8/All/</depends_on_package_base_url>
1284
                        <depends_on_package>sarg-2.3.6_2.tbz</depends_on_package>
1285
                        <depends_on_package>gd-2.0.35_8,1.tbz</depends_on_package>
1286
                        <depends_on_package_pbi>sarg-2.3.6_2-amd64.pbi</depends_on_package_pbi>
1287
                        <version>2.3.6_2 pkg v0.6.10</version>
1288
                        <status>Release</status>
1289
                        <required_version>2.1</required_version>
1290
                        <configurationfile>sarg.xml</configurationfile>
1291
                        <build_port_path>/usr/ports/www/sarg</build_port_path>
1292
                        <build_options>sarg_UNSET_FORCE=PHP</build_options>
1293
                        <after_install_info>Please visit sarg settings on Status Menu to configure sarg.</after_install_info>
1294
                </package>
1295
                <squidauth>
1296
                        <config/>
1297
                </squidauth>
1298
                <squidnac>
1299
                        <config>
1300
                                <allowed_subnets>MTkyLjE2OC4wLjAvMjQ=</allowed_subnets>
1301
                                <unrestricted_hosts/>
1302
                                <banned_hosts/>
1303
                                <whitelist/>
1304
                                <blacklist/>
1305
                                <ext_cachemanager/>
1306
                                <addtl_ports/>
1307
                                <addtl_sslports/>
1308
                        </config>
1309
                </squidnac>
1310
                <squid>
1311
                        <config>
1312
                                <active_interface>lan</active_interface>
1313
                                <allow_interface>on</allow_interface>
1314
                                <transparent_proxy>on</transparent_proxy>
1315
                                <private_subnet_proxy_off/>
1316
                                <defined_ip_proxy_off/>
1317
                                <defined_ip_proxy_off_dest>192.168.0.31;192.168.0.37;192.168.0.145</defined_ip_proxy_off_dest>
1318
                                <log_enabled>on</log_enabled>
1319
                                <log_dir>/var/squid/logs</log_dir>
1320
                                <log_rotate>15</log_rotate>
1321
                                <proxy_port>3128</proxy_port>
1322
                                <icp_port/>
1323
                                <visible_hostname>Firewall_Proxy_PMI</visible_hostname>
1324
                                <admin_email>informatica@iepe.sp.gov.br</admin_email>
1325
                                <error_language>Portuguese</error_language>
1326
                                <disable_xforward/>
1327
                                <disable_via/>
1328
                                <uri_whitespace>strip</uri_whitespace>
1329
                                <dns_nameservers>8.8.8.8;208.67.222.222</dns_nameservers>
1330
                                <disable_squidversion>on</disable_squidversion>
1331
                                <custom_options>tcp_outgoing_address 127.0.0.1;acl sglog url_regex -i .*sgrd=ACCESSDENIED;http_access deny sglog;;redirect_program /usr/local/bin/squidGuard -c /usr/local/etc/squidGuard/squidGuard.conf;redirector_bypass off;url_rewrite_children 5</custom_options>
1332
                        </config>
1333
                </squid>
1334
                <menu>
1335
                        <name>Proxy server</name>
1336
                        <tooltiptext>Modify the proxy server's settings</tooltiptext>
1337
                        <section>Services</section>
1338
                        <url>/pkg_edit.php?xml=squid.xml&amp;id=0</url>
1339
                </menu>
1340
                <menu>
1341
                        <name>SquidGuard Proxy Filter</name>
1342
                        <tooltiptext>Modify the proxy server's filter settings</tooltiptext>
1343
                        <section>Services</section>
1344
                        <url>/pkg_edit.php?xml=squidguard.xml&amp;id=0</url>
1345
                </menu>
1346
                <menu>
1347
                        <name>Sarg Reports</name>
1348
                        <tooltiptext>Configure Sarg</tooltiptext>
1349
                        <section>Status</section>
1350
                        <url>/pkg_edit.php?xml=sarg.xml</url>
1351
                </menu>
1352
                <tab>
1353
                        <text>General</text>
1354
                        <url>/pkg_edit.php?xml=squid.xml&amp;id=0</url>
1355
                        <active/>
1356
                </tab>
1357
                <service>
1358
                        <name>squid</name>
1359
                        <rcfile>squid.sh</rcfile>
1360
                        <executable>squid</executable>
1361
                        <description><![CDATA[Proxy server Service]]></description>
1362
                </service>
1363
                <service>
1364
                        <name>squidGuard</name>
1365
                        <description><![CDATA[Proxy server filter Service]]></description>
1366
                        <executable>squidGuard</executable>
1367
                </service>
1368
                <squidcache>
1369
                        <config>
1370
                                <harddisk_cache_size>10000</harddisk_cache_size>
1371
                                <harddisk_cache_system>ufs</harddisk_cache_system>
1372
                                <harddisk_cache_location>/var/squid/cache</harddisk_cache_location>
1373
                                <memory_cache_size>2000</memory_cache_size>
1374
                                <minimum_object_size>0</minimum_object_size>
1375
                                <maximum_object_size>300000</maximum_object_size>
1376
                                <maximum_objsize_in_mem>256</maximum_objsize_in_mem>
1377
                                <level1_subdirs>16</level1_subdirs>
1378
                                <memory_replacement_policy>heap LFUDA</memory_replacement_policy>
1379
                                <cache_replacement_policy>heap LFUDA</cache_replacement_policy>
1380
                                <cache_swap_low>90</cache_swap_low>
1381
                                <cache_swap_high>95</cache_swap_high>
1382
                                <donotcache/>
1383
                                <enable_offline/>
1384
                        </config>
1385
                </squidcache>
1386
                <squidguardgeneral>
1387
                        <config>
1388
                                <squidguard_enable>on</squidguard_enable>
1389
                                <ldap_enable/>
1390
                                <ldapbinddn/>
1391
                                <ldapbindpass/>
1392
                                <stripntdomain/>
1393
                                <striprealm/>
1394
                                <ldapversion>3</ldapversion>
1395
                                <enable_guilog>on</enable_guilog>
1396
                                <enable_log>on</enable_log>
1397
                                <log_rotation>on</log_rotation>
1398
                                <adv_blankimg/>
1399
                                <blacklist>on</blacklist>
1400
                                <blacklist_proxy/>
1401
                                <blacklist_url>http://www.shallalist.de/Downloads/shallalist.tar.gz</blacklist_url>
1402
                        </config>
1403
                </squidguardgeneral>
1404
                <squidguarddefault>
1405
                        <config>
1406
                                <dest>^PalavraLiberadas !PalavraBLK !blk_BL_chat !blk_BL_downloads !blk_BL_hacking !blk_BL_movies !blk_BL_music !blk_BL_porn !blk_BL_radiotv !blk_BL_ringtones !blk_BL_violence !blk_BL_webphone !blk_BL_webradio !blk_BL_webtv all</dest>
1407
                                <notallowingip/>
1408
                                <deniedmessage/>
1409
                                <redirect_mode>rmod_int</redirect_mode>
1410
                                <redirect/>
1411
                                <safesearch/>
1412
                                <rewrite/>
1413
                                <enablelog>on</enablelog>
1414
                        </config>
1415
                </squidguarddefault>
1416
                <squidguardacl>
1417
                        <config>
1418
                                <disabled/>
1419
                                <name>IPAcessoFULL</name>
1420
                                <source>192.168.0.36 192.168.0.40 192.168.0.43 192.168.0.86 192.168.0.87 192.168.0.89</source>
1421
                                <time/>
1422
                                <dest>all [ all]</dest>
1423
                                <notallowingip/>
1424
                                <redirect_mode>rmod_none</redirect_mode>
1425
                                <redirect/>
1426
                                <safesearch/>
1427
                                <rewrite/>
1428
                                <overrewrite/>
1429
                                <description/>
1430
                                <enablelog/>
1431
                        </config>
1432
                </squidguardacl>
1433
                <squidguarddest>
1434
                        <config>
1435
                                <name>PalavraLiberadas</name>
1436
                                <domains/>
1437
                                <urls/>
1438
                                <expressions>bleepingcomputer flashplayer microsoft ammyy fazenda cartola caixa cadastrounico jumbo datasus bb bancodobrasil caixa amazon caixa cross.saude ambulatorial.saude.sp.gov.br email.iepe.sp.gov.br iepe.sp.gov.br hospitaliepe java tvfronteira mds kurumin sigtap adobe flashplayer incra hp detran fiorilli whatsapp tightvnc</expressions>
1439
                                <redirect_mode>rmod_none</redirect_mode>
1440
                                <redirect/>
1441
                                <description/>
1442
                                <enablelog/>
1443
                        </config>
1444
                        <config>
1445
                                <name>PalavraBLK</name>
1446
                                <domains/>
1447
                                <urls/>
1448
                                <expressions>\.bat$ \.pif$ \.cue$ \.scr$ \.cmd$ \.cpl$ \.src$ \.vbs$ \.dll$ \.vbx$ \.mp3$ \.iso$ sexo radio musica tv video porno filmes novela radio seriado</expressions>
1449
                                <redirect_mode>rmod_none</redirect_mode>
1450
                                <redirect/>
1451
                                <description/>
1452
                                <enablelog>on</enablelog>
1453
                        </config>
1454
                </squidguarddest>
1455
                <sarg>
1456
                        <config>
1457
                                <proxy_server>squid</proxy_server>
1458
                                <report_options>use_graphs,remove_temp_files,main_index,overwrite_report,use_comma,date_time_by_bytes</report_options>
1459
                                <report_type>topusers,topsites,sites_users,users_sites,date_time,denied,auth_failures,site_user_time_date,downloads</report_type>
1460
                                <report_date_format>e</report_date_format>
1461
                                <report_charset>UTF-8</report_charset>
1462
                                <hostalias/>
1463
                                <max_elapsed>0</max_elapsed>
1464
                                <lastlog>0</lastlog>
1465
                                <daylimit/>
1466
                                <topuser_num>0</topuser_num>
1467
                                <denied_report_limit>0</denied_report_limit>
1468
                                <authfail_report_limit>0</authfail_report_limit>
1469
                                <user_report_limit>0</user_report_limit>
1470
                                <exclude_string/>
1471
                                <exclude_hostlist/>
1472
                                <exclude_codelist/>
1473
                        </config>
1474
                </sarg>
1475
                <sarguser>
1476
                        <config>
1477
                                <user_sort_field>BYTES</user_sort_field>
1478
                                <exclude_userlist/>
1479
                                <include_userlist/>
1480
                                <usertab/>
1481
                                <ldap_filter_search>(uid=%s)</ldap_filter_search>
1482
                                <ldap_target_attr>cn</ldap_target_attr>
1483
                                <ldap_port>389</ldap_port>
1484
                                <ntlm_user_format>domainname+username</ntlm_user_format>
1485
                        </config>
1486
                </sarguser>
1487
                <sargschedule>
1488
                        <config>
1489
                                <enable>on</enable>
1490
                                <description><![CDATA[Relatorio Acesso - PMI e Departamentos]]></description>
1491
                                <args>-d `date +%d/%m/%Y`</args>
1492
                                <frequency>1h</frequency>
1493
                                <gzip/>
1494
                                <gziplevel/>
1495
                                <find>60</find>
1496
                        </config>
1497
                </sargschedule>
1498
        </installedpackages>
1499
</pfsense>