Project

General

Profile

Bug #11835 » config-firewall2.home.arpa-20210422065310.xml

Gavin Owen, 04/22/2021 02:06 AM

 
1
<?xml version="1.0"?>
2
<pfsense>
3
	<version>21.5</version>
4
	<lastchange></lastchange>
5
	<system>
6
		<optimization>normal</optimization>
7
		<hostname>firewall2</hostname>
8
		<domain>home.arpa</domain>
9
		<group>
10
			<name>all</name>
11
			<description><![CDATA[All Users]]></description>
12
			<scope>system</scope>
13
			<gid>1998</gid>
14
		</group>
15
		<group>
16
			<name>admins</name>
17
			<description><![CDATA[System Administrators]]></description>
18
			<scope>system</scope>
19
			<gid>1999</gid>
20
			<member>0</member>
21
			<priv>page-all</priv>
22
		</group>
23
		<user>
24
			<name>admin</name>
25
			<descr><![CDATA[System Administrator]]></descr>
26
			<scope>system</scope>
27
			<groupname>admins</groupname>
28
			<bcrypt-hash>$2y$10$0PoksWe/F.P7nCVXvSozoOXTsEwNMHS7CrKDtPDeSZYw0fhhM7ecG</bcrypt-hash>
29
			<uid>0</uid>
30
			<priv>user-shell-access</priv>
31
			<expires></expires>
32
			<dashboardcolumns>2</dashboardcolumns>
33
			<authorizedkeys></authorizedkeys>
34
			<ipsecpsk></ipsecpsk>
35
			<webguicss>pfSense.css</webguicss>
36
		</user>
37
		<nextuid>2000</nextuid>
38
		<nextgid>2000</nextgid>
39
		<timeservers>2.pfsense.pool.ntp.org</timeservers>
40
		<webgui>
41
			<protocol>https</protocol>
42
			<loginautocomplete></loginautocomplete>
43
			<ssl-certref>6080e30b5791e</ssl-certref>
44
			<dashboardcolumns>2</dashboardcolumns>
45
			<webguicss>pfSense.css</webguicss>
46
			<logincss>1e3f75;</logincss>
47
		</webgui>
48
		<disablenatreflection>yes</disablenatreflection>
49
		<disablesegmentationoffloading></disablesegmentationoffloading>
50
		<disablelargereceiveoffloading></disablelargereceiveoffloading>
51
		<maximumtableentries>400000</maximumtableentries>
52
		<powerd_ac_mode>hadp</powerd_ac_mode>
53
		<powerd_battery_mode>hadp</powerd_battery_mode>
54
		<powerd_normal_mode>hadp</powerd_normal_mode>
55
		<bogons>
56
			<interval>monthly</interval>
57
		</bogons>
58
		<hn_altq_enable></hn_altq_enable>
59
		<already_run_config_upgrade></already_run_config_upgrade>
60
		<ssh>
61
			<enable>enabled</enable>
62
		</ssh>
63
		<language>en_US</language>
64
		<timezone>Etc/UTC</timezone>
65
		<dnsallowoverride></dnsallowoverride>
66
		<dns1host></dns1host>
67
	</system>
68
	<interfaces>
69
		<wan>
70
			<enable></enable>
71
			<if>em0</if>
72
			<blockpriv></blockpriv>
73
			<blockbogons></blockbogons>
74
			<descr><![CDATA[WAN1]]></descr>
75
			<ipaddr>100.0.3.2</ipaddr>
76
			<subnet>30</subnet>
77
			<spoofmac></spoofmac>
78
		</wan>
79
		<lan>
80
			<enable></enable>
81
			<if>em1</if>
82
			<descr><![CDATA[LAN]]></descr>
83
			<ipaddr>192.168.2.1</ipaddr>
84
			<subnet>24</subnet>
85
			<spoofmac></spoofmac>
86
		</lan>
87
		<opt1>
88
			<if>em2</if>
89
			<descr><![CDATA[WAN2]]></descr>
90
			<enable></enable>
91
			<ipaddr>100.0.4.2</ipaddr>
92
			<subnet>30</subnet>
93
			<blockpriv></blockpriv>
94
			<blockbogons></blockbogons>
95
			<spoofmac></spoofmac>
96
		</opt1>
97
		<opt2>
98
			<if>em3</if>
99
			<descr><![CDATA[LAB_MGMT]]></descr>
100
			<enable></enable>
101
			<ipaddr>192.168.57.205</ipaddr>
102
			<subnet>24</subnet>
103
			<spoofmac></spoofmac>
104
		</opt2>
105
		<opt3>
106
			<descr><![CDATA[OVPN_RW]]></descr>
107
			<if>ovpns1</if>
108
			<enable></enable>
109
			<spoofmac></spoofmac>
110
		</opt3>
111
		<opt4>
112
			<descr><![CDATA[TUNNEL1]]></descr>
113
			<if>ovpnc2</if>
114
			<enable></enable>
115
			<spoofmac></spoofmac>
116
		</opt4>
117
		<opt5>
118
			<descr><![CDATA[TUNNEL2]]></descr>
119
			<if>ovpnc3</if>
120
			<enable></enable>
121
			<spoofmac></spoofmac>
122
		</opt5>
123
	</interfaces>
124
	<staticroutes>
125
	</staticroutes>
126
	<dhcpd>
127
		<lan>
128
			<range>
129
				<from>192.168.1.100</from>
130
				<to>192.168.1.199</to>
131
			</range>
132
			<failover_peerip></failover_peerip>
133
			<dhcpleaseinlocaltime></dhcpleaseinlocaltime>
134
			<defaultleasetime></defaultleasetime>
135
			<maxleasetime></maxleasetime>
136
			<netmask></netmask>
137
			<gateway></gateway>
138
			<domain></domain>
139
			<domainsearchlist></domainsearchlist>
140
			<ddnsdomain></ddnsdomain>
141
			<ddnsdomainprimary></ddnsdomainprimary>
142
			<ddnsdomainsecondary></ddnsdomainsecondary>
143
			<ddnsdomainkeyname></ddnsdomainkeyname>
144
			<ddnsdomainkeyalgorithm>hmac-md5</ddnsdomainkeyalgorithm>
145
			<ddnsdomainkey></ddnsdomainkey>
146
			<mac_allow></mac_allow>
147
			<mac_deny></mac_deny>
148
			<ddnsclientupdates>allow</ddnsclientupdates>
149
			<tftp></tftp>
150
			<ldap></ldap>
151
			<nextserver></nextserver>
152
			<filename></filename>
153
			<filename32></filename32>
154
			<filename64></filename64>
155
			<filename32arm></filename32arm>
156
			<filename64arm></filename64arm>
157
			<rootpath></rootpath>
158
			<numberoptions></numberoptions>
159
		</lan>
160
	</dhcpd>
161
	<dhcpdv6>
162
		<lan>
163
			<range>
164
				<from>::1000</from>
165
				<to>::2000</to>
166
			</range>
167
			<ramode>disabled</ramode>
168
			<rapriority>medium</rapriority>
169
			<prefixrange>
170
				<from></from>
171
				<to></to>
172
				<prefixlength>48</prefixlength>
173
			</prefixrange>
174
			<defaultleasetime></defaultleasetime>
175
			<maxleasetime></maxleasetime>
176
			<netmask></netmask>
177
			<dhcp6c-dns>disabled</dhcp6c-dns>
178
			<domain></domain>
179
			<domainsearchlist></domainsearchlist>
180
			<ddnsdomain></ddnsdomain>
181
			<ddnsdomainprimary></ddnsdomainprimary>
182
			<ddnsdomainsecondary></ddnsdomainsecondary>
183
			<ddnsdomainkeyname></ddnsdomainkeyname>
184
			<ddnsdomainkeyalgorithm>hmac-md5</ddnsdomainkeyalgorithm>
185
			<ddnsdomainkey></ddnsdomainkey>
186
			<ddnsclientupdates>allow</ddnsclientupdates>
187
			<tftp></tftp>
188
			<ldap></ldap>
189
			<bootfile_url></bootfile_url>
190
			<dhcpv6leaseinlocaltime></dhcpv6leaseinlocaltime>
191
			<numberoptions></numberoptions>
192
			<rainterface></rainterface>
193
			<ravalidlifetime></ravalidlifetime>
194
			<rapreferredlifetime></rapreferredlifetime>
195
			<raminrtradvinterval></raminrtradvinterval>
196
			<ramaxrtradvinterval></ramaxrtradvinterval>
197
			<raadvdefaultlifetime></raadvdefaultlifetime>
198
			<radomainsearchlist></radomainsearchlist>
199
			<radvd-dns>disabled</radvd-dns>
200
		</lan>
201
	</dhcpdv6>
202
	<snmpd>
203
		<syslocation></syslocation>
204
		<syscontact></syscontact>
205
		<rocommunity>public</rocommunity>
206
	</snmpd>
207
	<diag>
208
		<ipv6nat></ipv6nat>
209
	</diag>
210
	<syslog>
211
		<filterdescriptions>1</filterdescriptions>
212
	</syslog>
213
	<nat>
214
		<outbound>
215
			<mode>automatic</mode>
216
		</outbound>
217
	</nat>
218
	<filter>
219
		<rule>
220
			<id></id>
221
			<tracker>1619062069</tracker>
222
			<type>pass</type>
223
			<interface>wan</interface>
224
			<ipprotocol>inet</ipprotocol>
225
			<tag></tag>
226
			<tagged></tagged>
227
			<max></max>
228
			<max-src-nodes></max-src-nodes>
229
			<max-src-conn></max-src-conn>
230
			<max-src-states></max-src-states>
231
			<statetimeout></statetimeout>
232
			<statetype><![CDATA[keep state]]></statetype>
233
			<os></os>
234
			<source>
235
				<any></any>
236
			</source>
237
			<destination>
238
				<any></any>
239
			</destination>
240
			<descr><![CDATA[All all out WAN (lab test)]]></descr>
241
			<updated>
242
				<time>1619062069</time>
243
				<username><![CDATA[admin@192.168.57.48 (Local Database)]]></username>
244
			</updated>
245
			<created>
246
				<time>1619062069</time>
247
				<username><![CDATA[admin@192.168.57.48 (Local Database)]]></username>
248
			</created>
249
		</rule>
250
		<rule>
251
			<type>pass</type>
252
			<ipprotocol>inet</ipprotocol>
253
			<descr><![CDATA[Default allow LAN to any rule]]></descr>
254
			<interface>lan</interface>
255
			<tracker>0100000101</tracker>
256
			<source>
257
				<network>lan</network>
258
			</source>
259
			<destination>
260
				<any></any>
261
			</destination>
262
		</rule>
263
		<rule>
264
			<type>pass</type>
265
			<ipprotocol>inet6</ipprotocol>
266
			<descr><![CDATA[Default allow LAN IPv6 to any rule]]></descr>
267
			<interface>lan</interface>
268
			<tracker>0100000102</tracker>
269
			<source>
270
				<network>lan</network>
271
			</source>
272
			<destination>
273
				<any></any>
274
			</destination>
275
		</rule>
276
		<rule>
277
			<id></id>
278
			<tracker>1619067231</tracker>
279
			<type>pass</type>
280
			<interface>openvpn</interface>
281
			<ipprotocol>inet</ipprotocol>
282
			<tag></tag>
283
			<tagged></tagged>
284
			<max></max>
285
			<max-src-nodes></max-src-nodes>
286
			<max-src-conn></max-src-conn>
287
			<max-src-states></max-src-states>
288
			<statetimeout></statetimeout>
289
			<statetype><![CDATA[keep state]]></statetype>
290
			<os></os>
291
			<source>
292
				<any></any>
293
			</source>
294
			<destination>
295
				<any></any>
296
			</destination>
297
			<descr><![CDATA[Allow all (lab test)]]></descr>
298
			<created>
299
				<time>1619067231</time>
300
				<username><![CDATA[admin@192.168.57.48 (Local Database)]]></username>
301
			</created>
302
			<updated>
303
				<time>1619067927</time>
304
				<username><![CDATA[admin@192.168.57.48 (Local Database)]]></username>
305
			</updated>
306
		</rule>
307
		<rule>
308
			<id></id>
309
			<tracker>1619066463</tracker>
310
			<type>pass</type>
311
			<interface>opt1</interface>
312
			<ipprotocol>inet</ipprotocol>
313
			<tag></tag>
314
			<tagged></tagged>
315
			<max></max>
316
			<max-src-nodes></max-src-nodes>
317
			<max-src-conn></max-src-conn>
318
			<max-src-states></max-src-states>
319
			<statetimeout></statetimeout>
320
			<statetype><![CDATA[keep state]]></statetype>
321
			<os></os>
322
			<source>
323
				<any></any>
324
			</source>
325
			<destination>
326
				<any></any>
327
			</destination>
328
			<descr><![CDATA[All all out WAN (lab test)]]></descr>
329
			<updated>
330
				<time>1619066463</time>
331
				<username><![CDATA[admin@192.168.57.48 (Local Database)]]></username>
332
			</updated>
333
			<created>
334
				<time>1619066463</time>
335
				<username><![CDATA[admin@192.168.57.48 (Local Database)]]></username>
336
			</created>
337
		</rule>
338
		<rule>
339
			<id></id>
340
			<tracker>1619060904</tracker>
341
			<type>pass</type>
342
			<interface>opt2</interface>
343
			<ipprotocol>inet</ipprotocol>
344
			<tag></tag>
345
			<tagged></tagged>
346
			<max></max>
347
			<max-src-nodes></max-src-nodes>
348
			<max-src-conn></max-src-conn>
349
			<max-src-states></max-src-states>
350
			<statetimeout></statetimeout>
351
			<statetype><![CDATA[keep state]]></statetype>
352
			<os></os>
353
			<protocol>tcp</protocol>
354
			<source>
355
				<any></any>
356
			</source>
357
			<destination>
358
				<any></any>
359
				<port>22</port>
360
			</destination>
361
			<descr><![CDATA[Allow SSH]]></descr>
362
			<updated>
363
				<time>1619060904</time>
364
				<username><![CDATA[admin@192.168.57.48 (Local Database)]]></username>
365
			</updated>
366
			<created>
367
				<time>1619060904</time>
368
				<username><![CDATA[admin@192.168.57.48 (Local Database)]]></username>
369
			</created>
370
		</rule>
371
		<rule>
372
			<id></id>
373
			<tracker>1619060894</tracker>
374
			<type>pass</type>
375
			<interface>opt2</interface>
376
			<ipprotocol>inet</ipprotocol>
377
			<tag></tag>
378
			<tagged></tagged>
379
			<max></max>
380
			<max-src-nodes></max-src-nodes>
381
			<max-src-conn></max-src-conn>
382
			<max-src-states></max-src-states>
383
			<statetimeout></statetimeout>
384
			<statetype><![CDATA[keep state]]></statetype>
385
			<os></os>
386
			<protocol>tcp</protocol>
387
			<source>
388
				<any></any>
389
			</source>
390
			<destination>
391
				<any></any>
392
				<port>80</port>
393
			</destination>
394
			<descr><![CDATA[Allow HTTP]]></descr>
395
			<updated>
396
				<time>1619060894</time>
397
				<username><![CDATA[admin@192.168.57.48 (Local Database)]]></username>
398
			</updated>
399
			<created>
400
				<time>1619060894</time>
401
				<username><![CDATA[admin@192.168.57.48 (Local Database)]]></username>
402
			</created>
403
		</rule>
404
		<rule>
405
			<id></id>
406
			<tracker>1619060831</tracker>
407
			<type>pass</type>
408
			<interface>opt2</interface>
409
			<ipprotocol>inet</ipprotocol>
410
			<tag></tag>
411
			<tagged></tagged>
412
			<max></max>
413
			<max-src-nodes></max-src-nodes>
414
			<max-src-conn></max-src-conn>
415
			<max-src-states></max-src-states>
416
			<statetimeout></statetimeout>
417
			<statetype><![CDATA[keep state]]></statetype>
418
			<os></os>
419
			<protocol>tcp</protocol>
420
			<source>
421
				<any></any>
422
			</source>
423
			<destination>
424
				<any></any>
425
				<port>443</port>
426
			</destination>
427
			<descr><![CDATA[Allow HTTPS]]></descr>
428
			<updated>
429
				<time>1619060831</time>
430
				<username><![CDATA[admin@192.168.57.48 (Local Database)]]></username>
431
			</updated>
432
			<created>
433
				<time>1619060831</time>
434
				<username><![CDATA[admin@192.168.57.48 (Local Database)]]></username>
435
			</created>
436
		</rule>
437
		<rule>
438
			<id></id>
439
			<tracker>1619067952</tracker>
440
			<type>pass</type>
441
			<interface>opt3</interface>
442
			<ipprotocol>inet</ipprotocol>
443
			<tag></tag>
444
			<tagged></tagged>
445
			<max></max>
446
			<max-src-nodes></max-src-nodes>
447
			<max-src-conn></max-src-conn>
448
			<max-src-states></max-src-states>
449
			<statetimeout></statetimeout>
450
			<statetype><![CDATA[keep state]]></statetype>
451
			<os></os>
452
			<source>
453
				<any></any>
454
			</source>
455
			<destination>
456
				<any></any>
457
			</destination>
458
			<descr><![CDATA[Allow all (lab test)]]></descr>
459
			<updated>
460
				<time>1619067952</time>
461
				<username><![CDATA[admin@192.168.57.48 (Local Database)]]></username>
462
			</updated>
463
			<created>
464
				<time>1619067952</time>
465
				<username><![CDATA[admin@192.168.57.48 (Local Database)]]></username>
466
			</created>
467
		</rule>
468
		<rule>
469
			<id></id>
470
			<tracker>1619067945</tracker>
471
			<type>pass</type>
472
			<interface>opt4</interface>
473
			<ipprotocol>inet</ipprotocol>
474
			<tag></tag>
475
			<tagged></tagged>
476
			<max></max>
477
			<max-src-nodes></max-src-nodes>
478
			<max-src-conn></max-src-conn>
479
			<max-src-states></max-src-states>
480
			<statetimeout></statetimeout>
481
			<statetype><![CDATA[keep state]]></statetype>
482
			<os></os>
483
			<source>
484
				<any></any>
485
			</source>
486
			<destination>
487
				<any></any>
488
			</destination>
489
			<descr><![CDATA[Allow all (lab test)]]></descr>
490
			<updated>
491
				<time>1619067945</time>
492
				<username><![CDATA[admin@192.168.57.48 (Local Database)]]></username>
493
			</updated>
494
			<created>
495
				<time>1619067945</time>
496
				<username><![CDATA[admin@192.168.57.48 (Local Database)]]></username>
497
			</created>
498
		</rule>
499
		<rule>
500
			<id></id>
501
			<tracker>1619067934</tracker>
502
			<type>pass</type>
503
			<interface>opt5</interface>
504
			<ipprotocol>inet</ipprotocol>
505
			<tag></tag>
506
			<tagged></tagged>
507
			<max></max>
508
			<max-src-nodes></max-src-nodes>
509
			<max-src-conn></max-src-conn>
510
			<max-src-states></max-src-states>
511
			<statetimeout></statetimeout>
512
			<statetype><![CDATA[keep state]]></statetype>
513
			<os></os>
514
			<source>
515
				<any></any>
516
			</source>
517
			<destination>
518
				<any></any>
519
			</destination>
520
			<descr><![CDATA[Allow all (lab test)]]></descr>
521
			<updated>
522
				<time>1619067934</time>
523
				<username><![CDATA[admin@192.168.57.48 (Local Database)]]></username>
524
			</updated>
525
			<created>
526
				<time>1619067934</time>
527
				<username><![CDATA[admin@192.168.57.48 (Local Database)]]></username>
528
			</created>
529
		</rule>
530
		<separator>
531
			<opt2></opt2>
532
		</separator>
533
	</filter>
534
	<shaper></shaper>
535
	<ipsec></ipsec>
536
	<aliases></aliases>
537
	<proxyarp></proxyarp>
538
	<cron>
539
		<item>
540
			<minute>*/1</minute>
541
			<hour>*</hour>
542
			<mday>*</mday>
543
			<month>*</month>
544
			<wday>*</wday>
545
			<who>root</who>
546
			<command>/usr/sbin/newsyslog</command>
547
		</item>
548
		<item>
549
			<minute>1</minute>
550
			<hour>3</hour>
551
			<mday>*</mday>
552
			<month>*</month>
553
			<wday>*</wday>
554
			<who>root</who>
555
			<command>/etc/rc.periodic daily</command>
556
		</item>
557
		<item>
558
			<minute>15</minute>
559
			<hour>4</hour>
560
			<mday>*</mday>
561
			<month>*</month>
562
			<wday>6</wday>
563
			<who>root</who>
564
			<command>/etc/rc.periodic weekly</command>
565
		</item>
566
		<item>
567
			<minute>30</minute>
568
			<hour>5</hour>
569
			<mday>1</mday>
570
			<month>*</month>
571
			<wday>*</wday>
572
			<who>root</who>
573
			<command>/etc/rc.periodic monthly</command>
574
		</item>
575
		<item>
576
			<minute>1,31</minute>
577
			<hour>0-5</hour>
578
			<mday>*</mday>
579
			<month>*</month>
580
			<wday>*</wday>
581
			<who>root</who>
582
			<command>/usr/bin/nice -n20 adjkerntz -a</command>
583
		</item>
584
		<item>
585
			<minute>1</minute>
586
			<hour>3</hour>
587
			<mday>1</mday>
588
			<month>*</month>
589
			<wday>*</wday>
590
			<who>root</who>
591
			<command>/usr/bin/nice -n20 /etc/rc.update_bogons.sh</command>
592
		</item>
593
		<item>
594
			<minute>1</minute>
595
			<hour>1</hour>
596
			<mday>*</mday>
597
			<month>*</month>
598
			<wday>*</wday>
599
			<who>root</who>
600
			<command>/usr/bin/nice -n20 /etc/rc.dyndns.update</command>
601
		</item>
602
		<item>
603
			<minute>*/60</minute>
604
			<hour>*</hour>
605
			<mday>*</mday>
606
			<month>*</month>
607
			<wday>*</wday>
608
			<who>root</who>
609
			<command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 virusprot</command>
610
		</item>
611
		<item>
612
			<minute>30</minute>
613
			<hour>12</hour>
614
			<mday>*</mday>
615
			<month>*</month>
616
			<wday>*</wday>
617
			<who>root</who>
618
			<command>/usr/bin/nice -n20 /etc/rc.update_urltables</command>
619
		</item>
620
		<item>
621
			<minute>1</minute>
622
			<hour>0</hour>
623
			<mday>*</mday>
624
			<month>*</month>
625
			<wday>*</wday>
626
			<who>root</who>
627
			<command>/usr/bin/nice -n20 /etc/rc.update_pkg_metadata</command>
628
		</item>
629
	</cron>
630
	<wol></wol>
631
	<rrd>
632
		<enable></enable>
633
	</rrd>
634
	<widgets>
635
		<sequence>system_information:col1:open:0,interfaces:col2:open:0,gateways:col2:open:0,openvpn:col2:open:0</sequence>
636
		<period>10</period>
637
	</widgets>
638
	<openvpn>
639
		<openvpn-server>
640
			<vpnid>1</vpnid>
641
			<mode>server_user</mode>
642
			<authmode>Local Database</authmode>
643
			<protocol>UDP4</protocol>
644
			<dev_mode>tun</dev_mode>
645
			<interface>wan</interface>
646
			<ipaddr></ipaddr>
647
			<local_port>1194</local_port>
648
			<description><![CDATA[OVPN_RW]]></description>
649
			<custom_options></custom_options>
650
			<tls>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</tls>
651
			<tls_type>auth</tls_type>
652
			<tlsauth_keydir>default</tlsauth_keydir>
653
			<caref>6080fa24a1d9c</caref>
654
			<crlref>6080fa41a99c3</crlref>
655
			<ocspurl></ocspurl>
656
			<certref>6080fad8e7426</certref>
657
			<dh_length>2048</dh_length>
658
			<ecdh_curve>none</ecdh_curve>
659
			<cert_depth>1</cert_depth>
660
			<data_ciphers_fallback>AES-256-CBC</data_ciphers_fallback>
661
			<digest>SHA256</digest>
662
			<engine>none</engine>
663
			<tunnel_network>10.2.194.0/24</tunnel_network>
664
			<tunnel_networkv6></tunnel_networkv6>
665
			<remote_network></remote_network>
666
			<remote_networkv6></remote_networkv6>
667
			<gwredir></gwredir>
668
			<gwredir6></gwredir6>
669
			<local_network>192.168.2.0/24</local_network>
670
			<local_networkv6></local_networkv6>
671
			<maxclients></maxclients>
672
			<allow_compression>no</allow_compression>
673
			<compression></compression>
674
			<compression_push></compression_push>
675
			<passtos></passtos>
676
			<client2client></client2client>
677
			<dynamic_ip></dynamic_ip>
678
			<topology>subnet</topology>
679
			<serverbridge_dhcp></serverbridge_dhcp>
680
			<serverbridge_interface>none</serverbridge_interface>
681
			<serverbridge_routegateway></serverbridge_routegateway>
682
			<serverbridge_dhcp_start></serverbridge_dhcp_start>
683
			<serverbridge_dhcp_end></serverbridge_dhcp_end>
684
			<username_as_common_name><![CDATA[disabled]]></username_as_common_name>
685
			<exit_notify>none</exit_notify>
686
			<sndrcvbuf></sndrcvbuf>
687
			<netbios_enable></netbios_enable>
688
			<netbios_ntype>0</netbios_ntype>
689
			<netbios_scope></netbios_scope>
690
			<create_gw>both</create_gw>
691
			<verbosity_level>1</verbosity_level>
692
			<data_ciphers>AES-256-GCM,AES-128-GCM,CHACHA20-POLY1305</data_ciphers>
693
			<ncp_enable>enabled</ncp_enable>
694
			<ping_method>keepalive</ping_method>
695
			<keepalive_interval>10</keepalive_interval>
696
			<keepalive_timeout>60</keepalive_timeout>
697
			<ping_seconds>10</ping_seconds>
698
			<ping_push></ping_push>
699
			<ping_action>ping_restart</ping_action>
700
			<ping_action_seconds>60</ping_action_seconds>
701
			<ping_action_push></ping_action_push>
702
			<inactive_seconds>0</inactive_seconds>
703
		</openvpn-server>
704
		<openvpn-client>
705
			<auth_user></auth_user>
706
			<auth_pass></auth_pass>
707
			<proxy_user></proxy_user>
708
			<proxy_passwd></proxy_passwd>
709
			<vpnid>2</vpnid>
710
			<protocol>UDP4</protocol>
711
			<dev_mode>tun</dev_mode>
712
			<interface>wan</interface>
713
			<ipaddr></ipaddr>
714
			<local_port>1195</local_port>
715
			<server_addr>100.0.1.2</server_addr>
716
			<server_port>1195</server_port>
717
			<proxy_addr></proxy_addr>
718
			<proxy_port></proxy_port>
719
			<proxy_authtype>none</proxy_authtype>
720
			<description><![CDATA[TUNNEL1]]></description>
721
			<mode>p2p_shared_key</mode>
722
			<topology>subnet</topology>
723
			<custom_options></custom_options>
724
			<shared_key>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</shared_key>
725
			<data_ciphers_fallback>AES-256-CBC</data_ciphers_fallback>
726
			<digest>SHA256</digest>
727
			<engine>none</engine>
728
			<tunnel_network>10.255.1.0/30</tunnel_network>
729
			<tunnel_networkv6></tunnel_networkv6>
730
			<remote_network></remote_network>
731
			<remote_networkv6></remote_networkv6>
732
			<use_shaper></use_shaper>
733
			<allow_compression>no</allow_compression>
734
			<compression></compression>
735
			<auth-retry-none></auth-retry-none>
736
			<passtos></passtos>
737
			<udp_fast_io></udp_fast_io>
738
			<exit_notify>none</exit_notify>
739
			<sndrcvbuf></sndrcvbuf>
740
			<route_no_pull></route_no_pull>
741
			<route_no_exec></route_no_exec>
742
			<verbosity_level>1</verbosity_level>
743
			<create_gw></create_gw>
744
			<data_ciphers>AES-256-GCM,AES-128-GCM,CHACHA20-POLY1305</data_ciphers>
745
			<ncp_enable>enabled</ncp_enable>
746
			<ping_method>keepalive</ping_method>
747
			<keepalive_interval>10</keepalive_interval>
748
			<keepalive_timeout>60</keepalive_timeout>
749
			<ping_seconds>10</ping_seconds>
750
			<ping_action>ping_restart</ping_action>
751
			<ping_action_seconds>60</ping_action_seconds>
752
			<inactive_seconds>0</inactive_seconds>
753
		</openvpn-client>
754
		<openvpn-client>
755
			<auth_user></auth_user>
756
			<auth_pass></auth_pass>
757
			<proxy_user></proxy_user>
758
			<proxy_passwd></proxy_passwd>
759
			<vpnid>3</vpnid>
760
			<protocol>UDP4</protocol>
761
			<dev_mode>tun</dev_mode>
762
			<interface>opt1</interface>
763
			<ipaddr></ipaddr>
764
			<local_port>1196</local_port>
765
			<server_addr>100.0.2.2</server_addr>
766
			<server_port>1196</server_port>
767
			<proxy_addr></proxy_addr>
768
			<proxy_port></proxy_port>
769
			<proxy_authtype>none</proxy_authtype>
770
			<description><![CDATA[TUNNEL2]]></description>
771
			<mode>p2p_shared_key</mode>
772
			<topology>subnet</topology>
773
			<custom_options></custom_options>
774
			<shared_key>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</shared_key>
775
			<data_ciphers_fallback>AES-256-CBC</data_ciphers_fallback>
776
			<digest>SHA256</digest>
777
			<engine>none</engine>
778
			<tunnel_network>10.255.2.0/30</tunnel_network>
779
			<tunnel_networkv6></tunnel_networkv6>
780
			<remote_network></remote_network>
781
			<remote_networkv6></remote_networkv6>
782
			<use_shaper></use_shaper>
783
			<allow_compression>no</allow_compression>
784
			<compression></compression>
785
			<auth-retry-none></auth-retry-none>
786
			<passtos></passtos>
787
			<udp_fast_io></udp_fast_io>
788
			<exit_notify>none</exit_notify>
789
			<sndrcvbuf></sndrcvbuf>
790
			<route_no_pull></route_no_pull>
791
			<route_no_exec></route_no_exec>
792
			<verbosity_level>1</verbosity_level>
793
			<create_gw></create_gw>
794
			<data_ciphers>AES-256-GCM,AES-128-GCM,CHACHA20-POLY1305</data_ciphers>
795
			<ncp_enable>enabled</ncp_enable>
796
			<ping_method>keepalive</ping_method>
797
			<keepalive_interval>10</keepalive_interval>
798
			<keepalive_timeout>60</keepalive_timeout>
799
			<ping_seconds>10</ping_seconds>
800
			<ping_action>ping_restart</ping_action>
801
			<ping_action_seconds>60</ping_action_seconds>
802
			<inactive_seconds>0</inactive_seconds>
803
		</openvpn-client>
804
	</openvpn>
805
	<dnshaper></dnshaper>
806
	<unbound>
807
		<enable></enable>
808
		<dnssec></dnssec>
809
		<active_interface></active_interface>
810
		<outgoing_interface></outgoing_interface>
811
		<custom_options></custom_options>
812
		<hideidentity></hideidentity>
813
		<hideversion></hideversion>
814
		<dnssecstripped></dnssecstripped>
815
	</unbound>
816
	<revision>
817
		<time>1619073768</time>
818
		<description><![CDATA[admin@192.168.57.48 (Local Database): System:  hostname: &quot;pfSense&quot; -&gt; &quot;firewall2&quot; timezone: &quot;&quot; -&gt; &quot;Etc/UTC&quot;]]></description>
819
		<username><![CDATA[admin@192.168.57.48 (Local Database)]]></username>
820
	</revision>
821
	<ppps></ppps>
822
	<gateways>
823
		<gateway_item>
824
			<interface>wan</interface>
825
			<gateway>100.0.3.1</gateway>
826
			<name>WAN1_GW</name>
827
			<weight>1</weight>
828
			<ipprotocol>inet</ipprotocol>
829
			<descr></descr>
830
		</gateway_item>
831
		<gateway_item>
832
			<interface>opt1</interface>
833
			<gateway>100.0.4.1</gateway>
834
			<name>WAN2_GW</name>
835
			<weight>1</weight>
836
			<ipprotocol>inet</ipprotocol>
837
			<descr></descr>
838
		</gateway_item>
839
	</gateways>
840
	<cert>
841
		<refid>6080e30b5791e</refid>
842
		<descr><![CDATA[webConfigurator default (6080e30b5791e)]]></descr>
843
		<type>server</type>
844
		<crt>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</crt>
845
		<prv>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</prv>
846
	</cert>
847
	<cert>
848
		<refid>6080fad8e7426</refid>
849
		<descr><![CDATA[Site 2 VPN certificate]]></descr>
850
		<type>server</type>
851
		<caref>6080fa24a1d9c</caref>
852
		<crt>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</crt>
853
		<prv>LS0tLS1CRUdJTiBQUklWQVRFIEtFWS0tLS0tCk1JSUV3QUlCQURBTkJna3Foa2lHOXcwQkFRRUZBQVNDQktvd2dnU21BZ0VBQW9JQkFRRHFiZ1JMRGw5S3ArUmUKTmZjSWNlNkZraEhTMTg3bU02ZlowSFpJYmltVEYrYzJmYk5SajQ2bGNqcGdVSXJ3T04xVEJ6Z2doNi90ZXEwbQpDN0lwYkVTY0s0ZFIrSUhyZDEyUU5MSlE3Slpya3pzTlNhbTJvQmZ5RVhQcGdXTUlPYk0zR1EyN2htSVhzSytNCmp6WUp6S0o1QUhqMTJuN1FpbGhSYWViK0R2aGY3bkp0UXZrck5lV05tbVMreFdMbzdIbmhRck5WUW4yZEs2VVkKMnpMQUk4bHZTYmdZM2VUZyt5L3lUM3V0K0dQZEhGZjJkSndoUStXaXVZc1VlaHVRMHJKUzhhcmRtT3BaWmVXbwpVV1pRa0syM1V3NTYxZXJSdFoyT1U2OVVJa1FXY3p1bzlWNDhvL29pT0l2ZysvSnRzb0orMW9UUmpLMTBjbGlhCmJEVTdtQXB0QWdNQkFBRUNnZ0VCQU9PN3huM25VMWpoNm00Ky9HRCsxTmg3QXNlUkVCUC9JRkx2T01pNkE3YzYKSkVtQ0tSM1ZXSnlPYi9rNnBRNGlINWRWendlQzZMdkpUY1ZFM1dseUhPQ2RSSkt6MS9vWGRoUHRyVUFCNVVwUgp0Njc3M1Z0bEFINE95RXlSZmRQeXdZK0h6aGhhdnBZRzlUS1Z1TWdpTzc5U1h5OXVkMzA4dC9rMjZNZnJZUXRHCmF6alIzN2ptTW1na0Y3YW5tekxxamhzRG44QmxoVEZPL3VoNW9rUERqaFM2elNidjJmbUFkR3N5ODVZV3RjdEIKMWNBK3VvYkpUMnc0MkphTUxPM1E5cDhTUis0RFRORVJXQTcwVFBFM2prUXlyZDJoN01pT3NUYy9nNmNKbVRqSQpGT0RGM3NzZ1lubjlCRWY1UnB2M1RvZFpGaU1qeHVJcFNqNlBKSkhlN0tFQ2dZRUEvUTEvbDdobEJ1VnB1a00zCnZncCtOOG5ZQk1IR3p3T3gzbDhETWRJbXNXbFR5QlFaZXJyUXNKeThOczN1Z011TnhqdDVhV3g4eXR3RDdKK1IKVWJvR1h6b3hNQnhDOHRCay9sVnh1MlBKRHN0bWsyNnZMSDhxbmZ5aTIyMTZZeXMrTkVLU3pRQ3RaUHlzWFBlRwpsT3QvdDFGVVBDcWs4bVpjQWlwMlVGQzFhdVVDZ1lFQTdTajkvRGs3RmFHalIwak9iNDA4RTAzbUpCK1JPbndDCk9jTWdUWmpza20xR0lUcXdnYjA1RlFIUnd0RjNGRG5jZ2xxRXRmV0prZFZSSEJDSWFnQmVRQ3hxU2RGZy9VT0EKeXVLN3VFMEZnOHZzcWxWdmp4WFN2eTBoSXREY1Znems3bFpicjE0em84a3Fnc3VKSFVOcUEwRzJVNFlqVmFjSwpCdy8rSGVJMndPa0NnWUVBdzY3SGh4VEJrd2FlcnJuQ0JrUm8vRTBxcmVzSENSaUxXREZTOEJqWmNRSEpGd1JyCis1c3hQQkhIL2YxYlBOK3JuNnBvSmQwTjEzVXgxNjVCR3RqbWlvY2VlRnl5Yk1BNENQRWNCTk9TSzgyZ1ljd0sKekRiK1JyT1JZR3VWWTlDUnhxbmdpWVRIa1R0UE1vajYybmdPQ0QxdERTWFE3ZDIzc3JrUlN1Uk9sZjBDZ1lFQQpseWhZY2VsY1VsWTZ4cFdPRmlXVDA4NEQwS1JhSVVlbTkzLzUxOXVQZFdpMm1UbGFCT2RCT2JWMko5RHdML0VOCkxmeFp0OHd2Q2NkSHNqYUxhOXllTmhMWkVBR202dVdhY2pYL1plR1prVDVwc3N0UGxvaFhVY2lHNVRUd0t0eC8KRWJYekxCeERsN0lCS1dwbkUwTERrQjNUQXZ0dERBdXlaWHY1QUwwTkh2a0NnWUVBNTdURHFrREtod09yTmpBdApZcUN6T0RZQ09rT0tVRzJPS0h3QTh3Q3laeVgvRHZCa2ZZYmJUWnptQkJpeGMvSUdHK1duWHlCQ1psM0lzNGtrCm40Zi9ONEhDSDB4aVZxSlZSZEZjalEvRjVxS3AxR2pDOVlPcDQ2TzlHT2E3RFAxTkJLdlAvZVBhTGVvclFOQ3cKenBrMjNOWkFXcnJoVWs2ekRLT3VpeWI2UGVnPQotLS0tLUVORCBQUklWQVRFIEtFWS0tLS0tCg==</prv>
854
	</cert>
855
	<installedpackages>
856
		<package>
857
			<name>FRR</name>
858
			<internal_name>frr</internal_name>
859
			<descr><![CDATA[FRR routing daemon for BGP, OSPF, and OSPF6.&lt;br /&gt;
860
			&lt;strong&gt;Conflicts with Quagga OSPF and OpenBGPD; these packages cannot be installed at the same time.&lt;/strong&gt;]]></descr>
861
			<version>1.1.0_10</version>
862
			<configurationfile>frr.xml</configurationfile>
863
		</package>
864
		<menu>
865
			<name>FRR Global/Zebra</name>
866
			<section>Services</section>
867
			<configfile>frr.xml</configfile>
868
			<url>/pkg_edit.php?xml=frr.xml</url>
869
		</menu>
870
		<menu>
871
			<name>FRR BFD</name>
872
			<section>Services</section>
873
			<configfile>frr.xml</configfile>
874
			<url>/pkg_edit.php?xml=frr/frr_bfd.xml</url>
875
		</menu>
876
		<menu>
877
			<name>FRR BGP</name>
878
			<section>Services</section>
879
			<configfile>frr.xml</configfile>
880
			<url>/pkg_edit.php?xml=frr/frr_bgp.xml</url>
881
		</menu>
882
		<menu>
883
			<name>FRR OSPF</name>
884
			<section>Services</section>
885
			<configfile>frr.xml</configfile>
886
			<url>/pkg_edit.php?xml=frr/frr_ospf.xml</url>
887
		</menu>
888
		<menu>
889
			<name>FRR OSPF6</name>
890
			<section>Services</section>
891
			<configfile>frr.xml</configfile>
892
			<url>/pkg_edit.php?xml=frr/frr_ospf6.xml</url>
893
		</menu>
894
		<menu>
895
			<name>FRR</name>
896
			<section>Status</section>
897
			<configfile>frr.xml</configfile>
898
			<url>/status_frr.php</url>
899
		</menu>
900
		<service>
901
			<name>FRR zebra</name>
902
			<rcfile>frr.sh</rcfile>
903
			<executable>zebra</executable>
904
			<description><![CDATA[FRR core/abstraction daemon]]></description>
905
		</service>
906
		<service>
907
			<name>FRR staticd</name>
908
			<rcfile>frr.sh</rcfile>
909
			<executable>staticd</executable>
910
			<description><![CDATA[FRR static route daemon]]></description>
911
		</service>
912
		<service>
913
			<name>FRR bfdd</name>
914
			<rcfile>frr.sh</rcfile>
915
			<executable>bfdd</executable>
916
			<description><![CDATA[FRR BFD daemon]]></description>
917
		</service>
918
		<service>
919
			<name>FRR bgpd</name>
920
			<rcfile>frr.sh</rcfile>
921
			<executable>bgpd</executable>
922
			<description><![CDATA[FRR BGP routing daemon]]></description>
923
		</service>
924
		<service>
925
			<name>FRR ospfd</name>
926
			<rcfile>frr.sh</rcfile>
927
			<executable>ospfd</executable>
928
			<description><![CDATA[FRR OSPF routing daemon]]></description>
929
		</service>
930
		<service>
931
			<name>FRR ospf6d</name>
932
			<rcfile>frr.sh</rcfile>
933
			<executable>ospf6d</executable>
934
			<description><![CDATA[FRR OSPF6 routing daemon]]></description>
935
		</service>
936
		<service>
937
			<name>FRR watchfrr</name>
938
			<rcfile>frr.sh</rcfile>
939
			<executable>watchfrr</executable>
940
			<description><![CDATA[FRR watchfrr watchdog daemon]]></description>
941
		</service>
942
		<frr>
943
			<config>
944
				<enable>on</enable>
945
				<routerid>192.168.2.1</routerid>
946
				<password><![CDATA[LAB]]></password>
947
				<passwordencrypt></passwordencrypt>
948
				<ignoreipsecrestart></ignoreipsecrestart>
949
				<carpstatusvid>none</carpstatusvid>
950
				<logging></logging>
951
				<pkgloglevel>0</pkgloglevel>
952
				<enablesnmpagentx></enablesnmpagentx>
953
				<row>
954
					<routevalue></routevalue>
955
					<routetarget>none</routetarget>
956
				</row>
957
				<service_force_restart></service_force_restart>
958
			</config>
959
		</frr>
960
		<frrglobalprefixes>
961
			<config>
962
				<iptype>IPv4</iptype>
963
				<name>CONNECT</name>
964
				<descr></descr>
965
				<row>
966
					<seq>10</seq>
967
					<action>permit</action>
968
					<source>10.2.194.0/24</source>
969
					<ge></ge>
970
					<le></le>
971
				</row>
972
			</config>
973
		</frrglobalprefixes>
974
		<frrglobalroutemaps>
975
			<config>
976
				<name>CONNECT</name>
977
				<descr></descr>
978
				<action>permit</action>
979
				<seq>10</seq>
980
				<call>none</call>
981
				<exitaction>none</exitaction>
982
				<acl_match>none</acl_match>
983
				<prefix_match>CONNECT</prefix_match>
984
				<nexthop_action>none</nexthop_action>
985
				<nexthop_peer>none</nexthop_peer>
986
				<nexthop_acl>none</nexthop_acl>
987
				<nexthop_pl>none</nexthop_pl>
988
				<metric_action>none</metric_action>
989
				<metric_value></metric_value>
990
				<weight></weight>
991
				<localpref_action>none</localpref_action>
992
				<localpref_value></localpref_value>
993
				<aspath_action>none</aspath_action>
994
				<aspath_match>none</aspath_match>
995
				<aspath_value></aspath_value>
996
				<community_action>none</community_action>
997
				<community_match>none</community_match>
998
				<community_set></community_set>
999
				<community_additive></community_additive>
1000
				<origin_action>none</origin_action>
1001
				<origin_value>none</origin_value>
1002
				<source_proto>none</source_proto>
1003
				<tag_action>none</tag_action>
1004
				<tag_value></tag_value>
1005
				<rpki_state>none</rpki_state>
1006
			</config>
1007
		</frrglobalroutemaps>
1008
		<frrospfd>
1009
			<config>
1010
				<enable>on</enable>
1011
				<adjacencylog></adjacencylog>
1012
				<routerid></routerid>
1013
				<spfholdtime></spfholdtime>
1014
				<spfdelay></spfdelay>
1015
				<enablesnmpagentx></enablesnmpagentx>
1016
				<defaultarea>0.0.0.0</defaultarea>
1017
				<defaultareatype>none</defaultareatype>
1018
				<row>
1019
					<routevalue></routevalue>
1020
					<routearea></routearea>
1021
				</row>
1022
				<redistributeconnectedsubnets>on</redistributeconnectedsubnets>
1023
				<redistributeconnectedsubnets_metric>20</redistributeconnectedsubnets_metric>
1024
				<redistributeconnectedsubnets_metrictype>2</redistributeconnectedsubnets_metrictype>
1025
				<redistributeconnectedsubnets_routemap>CONNECT</redistributeconnectedsubnets_routemap>
1026
				<redistributeconnectedsubnets_distlist>none</redistributeconnectedsubnets_distlist>
1027
				<redistributekernel></redistributekernel>
1028
				<redistributekernel_metric></redistributekernel_metric>
1029
				<redistributekernel_metrictype></redistributekernel_metrictype>
1030
				<redistributekernel_routemap>none</redistributekernel_routemap>
1031
				<redistributekernel_distlist>none</redistributekernel_distlist>
1032
				<redistributebgp></redistributebgp>
1033
				<redistributebgp_metric></redistributebgp_metric>
1034
				<redistributebgp_metrictype></redistributebgp_metrictype>
1035
				<redistributebgp_routemap>none</redistributebgp_routemap>
1036
				<redistributebgp_distlist>none</redistributebgp_distlist>
1037
				<redistributestatic></redistributestatic>
1038
				<redistributestatic_metric></redistributestatic_metric>
1039
				<redistributestatic_metrictype></redistributestatic_metrictype>
1040
				<redistributestatic_routemap>none</redistributestatic_routemap>
1041
				<redistributestatic_distlist>none</redistributestatic_distlist>
1042
				<redistributedefaultroute></redistributedefaultroute>
1043
				<redistributedefaultroute_always></redistributedefaultroute_always>
1044
				<redistributedefaultroute_metric></redistributedefaultroute_metric>
1045
				<redistributedefaultroute_metrictype></redistributedefaultroute_metrictype>
1046
				<redistributedefaultroute_routemap>none</redistributedefaultroute_routemap>
1047
				<rfc1583></rfc1583>
1048
				<opaquelsa></opaquelsa>
1049
				<referencebandwidth>400000</referencebandwidth>
1050
				<max_metric_administrative></max_metric_administrative>
1051
				<max_metric_startup></max_metric_startup>
1052
				<max_metric_shutdown></max_metric_shutdown>
1053
				<writemultiplier></writemultiplier>
1054
				<abrtype>cisco</abrtype>
1055
			</config>
1056
		</frrospfd>
1057
		<frrospfdinterfaces>
1058
			<config>
1059
				<interface>lan</interface>
1060
				<descr><![CDATA[LAN_passive]]></descr>
1061
				<networktype>broadcast</networktype>
1062
				<passive>on</passive>
1063
				<mtuignore></mtuignore>
1064
				<metric>4</metric>
1065
				<interfacearea>0.0.0.0</interfacearea>
1066
				<acceptfilter></acceptfilter>
1067
				<authtype></authtype>
1068
				<password></password>
1069
				<routerpriorityelections>0</routerpriorityelections>
1070
				<retransmitinterval></retransmitinterval>
1071
				<hellointervalinseconds></hellointervalinseconds>
1072
				<deadtimer></deadtimer>
1073
				<minimalhello></minimalhello>
1074
				<bfdenable></bfdenable>
1075
			</config>
1076
			<config>
1077
				<interface>opt4</interface>
1078
				<descr><![CDATA[TUNNEL1_active]]></descr>
1079
				<networktype>point-to-point</networktype>
1080
				<passive></passive>
1081
				<mtuignore></mtuignore>
1082
				<metric>8000</metric>
1083
				<interfacearea>0.0.0.0</interfacearea>
1084
				<acceptfilter></acceptfilter>
1085
				<authtype>digest</authtype>
1086
				<password><![CDATA[BAAAAAAAAAAAAAAD]]></password>
1087
				<routerpriorityelections>2</routerpriorityelections>
1088
				<retransmitinterval></retransmitinterval>
1089
				<hellointervalinseconds></hellointervalinseconds>
1090
				<deadtimer></deadtimer>
1091
				<minimalhello></minimalhello>
1092
				<bfdenable></bfdenable>
1093
			</config>
1094
			<config>
1095
				<interface>opt5</interface>
1096
				<descr><![CDATA[TUNNEL2_active]]></descr>
1097
				<networktype>point-to-point</networktype>
1098
				<passive></passive>
1099
				<mtuignore></mtuignore>
1100
				<metric>9000</metric>
1101
				<interfacearea>0.0.0.0</interfacearea>
1102
				<acceptfilter></acceptfilter>
1103
				<authtype>digest</authtype>
1104
				<password><![CDATA[BAAAAAAAAAAAAAAD]]></password>
1105
				<routerpriorityelections>2</routerpriorityelections>
1106
				<retransmitinterval></retransmitinterval>
1107
				<hellointervalinseconds></hellointervalinseconds>
1108
				<deadtimer></deadtimer>
1109
				<minimalhello></minimalhello>
1110
				<bfdenable></bfdenable>
1111
			</config>
1112
		</frrospfdinterfaces>
1113
	</installedpackages>
1114
	<sysctl>
1115
		<item>
1116
			<tunable>kern.ipc.maxsockbuf</tunable>
1117
			<value>16777216</value>
1118
			<descr><![CDATA[Maximum socket buffer size - set by FRR package]]></descr>
1119
		</item>
1120
	</sysctl>
1121
	<ca>
1122
		<refid>6080fa24a1d9c</refid>
1123
		<descr><![CDATA[ Site 2 CA]]></descr>
1124
		<trust>enabled</trust>
1125
		<randomserial>disabled</randomserial>
1126
		<crt>LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSUQ4VENDQXRtZ0F3SUJBZ0lJQjZIbGsxUjFab0l3RFFZSktvWklodmNOQVFFTEJRQXdWVEVVTUJJR0ExVUUKQXhNTGFXNTBaWEp1WVd3dFkyRXhDekFKQmdOVkJBWVRBbFZUTVE0d0RBWURWUVFJRXdWVVpYaGhjekVQTUEwRwpBMVVFQnhNR1FYVnpkR2x1TVE4d0RRWURWUVFLRXdaTmVTQk1ZV0l3SGhjTk1qRXdOREl5TURReU16QXdXaGNOCk16RXdOREl3TURReU16QXdXakJWTVJRd0VnWURWUVFERXd0cGJuUmxjbTVoYkMxallURUxNQWtHQTFVRUJoTUMKVlZNeERqQU1CZ05WQkFnVEJWUmxlR0Z6TVE4d0RRWURWUVFIRXdaQmRYTjBhVzR4RHpBTkJnTlZCQW9UQmsxNQpJRXhoWWpDQ0FTSXdEUVlKS29aSWh2Y05BUUVCQlFBRGdnRVBBRENDQVFvQ2dnRUJBTmY2V3VENGl1TEYwMUpqCkR5c29ha280aFMwaHZEZi9weWdTYVpNeFhJeWJ1d1p5NWhabkNJTUNPVW0ydU45eHZ2QmRQM1BnTzdzdlEyd1IKOVFyVGJwOFBOUVp2dDJicVdQSjN2UU5qMFVybTFKdzZ4MkVLTE1pdTRhZG5tWndMZitRVm9QM0Q1UlVzWG5vQwowcld2WEFaT3dHTS95dE55aTFSblU3ZlU1NWZaSm9VdzlZT1dTVy9GY3ZlUWFZdFFuUkZHZ1dFcnMyMjNpSjVmCmdaTVo3djdjcGo3VjNGbEtHL3lJZXh4TWp6ZURBQjQzMVJUUDdqRjZ6UEdyQUo5aHJDNjUvcDZwMWpSWjh4dkkKQndVRFVDZU5GREtFU0pTNDIvTW04N3BiQ05LamxKOGZBOHBTTnNKanNzd2lZVWcyWUJac3l0TlZWMnRKV2w2WgpvME9Ua3cwQ0F3RUFBYU9CeERDQndUQWRCZ05WSFE0RUZnUVVQMllCRW1QZDcxTG05WmdTbmkwVDdnUVdIN0F3CmdZUUdBMVVkSXdSOU1IdUFGRDltQVJKajNlOVM1dldZRXA0dEUrNEVGaCt3b1Zta1Z6QlZNUlF3RWdZRFZRUUQKRXd0cGJuUmxjbTVoYkMxallURUxNQWtHQTFVRUJoTUNWVk14RGpBTUJnTlZCQWdUQlZSbGVHRnpNUTh3RFFZRApWUVFIRXdaQmRYTjBhVzR4RHpBTkJnTlZCQW9UQmsxNUlFeGhZb0lJQjZIbGsxUjFab0l3REFZRFZSMFRCQVV3CkF3RUIvekFMQmdOVkhROEVCQU1DQVFZd0RRWUpLb1pJaHZjTkFRRUxCUUFEZ2dFQkFGWVZoQlZjSmdrWk9BTXQKYUpSWlUzcDFSTzRCc3UwYlR4MWZxam9yT0VxSWdPalE0WWZrSVFLQ3U0YkU4Z09qL2w5MDQ1Tk5BdVA5ZzdONwpZYWExZlBVaVQ0SGNxM25aZ1VHOTRUZHFMZEU1VkJqb1h6TkZWK21QL2czT2ZhWWdzMVM2UWFFNVI5TlZycmpICm1WT2hrWkRVaERqbUtDckFyMjNjSFMwVitFUkFTUjdhU0UvaEcyaVNKZlYrZWNycW5GSFlIWFRWTXJlY2dvc1cKMnFIbzI4RldhUW9WUVU2aHZxSllvaEkvd1ZnR3AvOWdzS3pXK0k5Qk1XTGY4d1FyTURNZk1ocnhsb2cwR2h0Zgo3RUluMjNubU9BN25KajM3cWhFTUJzeGtkNUFneUxIYXJUeHZYdlE1Mmg4a1NWSTdTSmI3OTg1VDIzcHVFb3VCCjJmY21EQ2c9Ci0tLS0tRU5EIENFUlRJRklDQVRFLS0tLS0K</crt>
1127
		<prv>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</prv>
1128
		<serial>1</serial>
1129
	</ca>
1130
	<crl>
1131
		<refid>6080fa41a99c3</refid>
1132
		<descr><![CDATA[Site 2 Revocation List]]></descr>
1133
		<caref>6080fa24a1d9c</caref>
1134
		<method>internal</method>
1135
		<serial>9999</serial>
1136
		<lifetime>9999</lifetime>
1137
	</crl>
1138
</pfsense>
(2-2/9)