Project

General

Profile

Bug #1577 ยป config-server.portobelloimperatriz.com.br-20110603112554.xml

Fabiano Heringer, 06/03/2011 10:25 AM

 
1
<?xml version="1.0"?>
2
<pfsense>
3
	<version>7.8</version>
4
	<lastchange/>
5
	<theme>pfsense_ng</theme>
6
	<system>
7
		<optimization>normal</optimization>
8
		<hostname>server</hostname>
9
		<domain>portobelloimperatriz.com.br</domain>
10
		<dnsallowoverride/>
11
		<timezone>America/Belem</timezone>
12
		<time-update-interval>300</time-update-interval>
13
		<timeservers>0.pfsense.pool.ntp.org</timeservers>
14
		<webgui>
15
			<protocol>http</protocol>
16
			<certificate/>
17
			<private-key/>
18
			<auth_method>session</auth_method>
19
			<backing_method>htpasswd</backing_method>
20
		</webgui>
21
		<dnsserver>200.255.255.66</dnsserver>
22
		<dnsserver>200.255.255.70</dnsserver>
23
		<ssh>
24
			<authorizedkeys/>
25
			<port/>
26
		</ssh>
27
		<enablesshd>yes</enablesshd>
28
		<maximumstates/>
29
		<shapertype/>
30
		<firmware>
31
			<alturl>
32
				<enable/>
33
				<firmwareurl>http://snapshots.pfsense.org/FreeBSD_RELENG_8_1/i386/pfSense_HEAD/.updaters/</firmwareurl>
34
			</alturl>
35
		</firmware>
36
		<group>
37
			<name>admins</name>
38
			<description><![CDATA[System Administrators]]></description>
39
			<scope>user</scope>
40
			<priv>page-all</priv>
41
			<home>index.php</home>
42
			<gid>2000</gid>
43
			<member>0</member>
44
		</group>
45
		<group>
46
			<name>all</name>
47
			<description><![CDATA[All Users]]></description>
48
			<scope>system</scope>
49
			<gid>1998</gid>
50
			<member>0</member>
51
		</group>
52
		<user>
53
			<name>admin</name>
54
			<descr><![CDATA[System Administrator]]></descr>
55
			<scope>system</scope>
56
			<password>$1$25qz6JrJ$I7vVBhW9cm3uh5q6DTDvm/</password>
57
			<uid>0</uid>
58
			<priv>user-shell-access</priv>
59
			<priv>user-copy-files</priv>
60
		</user>
61
		<nextuid>2000</nextuid>
62
		<nextgid>2001</nextgid>
63
		<disablesegmentationoffloading/>
64
		<disablelargereceiveoffloading/>
65
	</system>
66
	<interfaces>
67
		<lan>
68
			<if>le0</if>
69
			<ipaddr>192.168.0.1</ipaddr>
70
			<subnet>24</subnet>
71
			<media/>
72
			<mediaopt/>
73
			<bandwidth>100</bandwidth>
74
			<bandwidthtype>Mb</bandwidthtype>
75
			<enable/>
76
		</lan>
77
		<wan>
78
			<if>le1</if>
79
			<mtu/>
80
			<media/>
81
			<mediaopt/>
82
			<bandwidth>100</bandwidth>
83
			<bandwidthtype>Mb</bandwidthtype>
84
			<spoofmac/>
85
			<ipaddr>189.17.66.26</ipaddr>
86
			<subnet>28</subnet>
87
			<gateway>GW_WAN</gateway>
88
			<pppoe_username/>
89
			<pppoe_password/>
90
			<provider/>
91
			<ondemand/>
92
			<timeout/>
93
			<pptp_username/>
94
			<pptp_password/>
95
			<enable/>
96
		</wan>
97
	</interfaces>
98
	<staticroutes/>
99
	<bigpond>
100
		<username/>
101
		<password/>
102
		<authserver/>
103
		<authdomain/>
104
		<minheartbeatinterval/>
105
	</bigpond>
106
	<dhcpd>
107
		<lan>
108
			<enable/>
109
			<range>
110
				<from>192.168.0.50</from>
111
				<to>192.168.0.99</to>
112
			</range>
113
			<staticmap>
114
				<mac>00:24:21:fd:41:d3</mac>
115
				<ipaddr>192.168.0.100</ipaddr>
116
				<hostname>Fabiano</hostname>
117
				<descr/>
118
			</staticmap>
119
			<staticmap>
120
				<mac>00:24:21:fd:3d:c8</mac>
121
				<ipaddr>192.168.0.101</ipaddr>
122
				<hostname>WELLYNGTON</hostname>
123
				<descr/>
124
			</staticmap>
125
			<staticmap>
126
				<mac>00:24:21:fd:3e:67</mac>
127
				<ipaddr>192.168.0.102</ipaddr>
128
				<hostname>TIAGO</hostname>
129
				<descr/>
130
			</staticmap>
131
			<staticmap>
132
				<mac>00:24:21:fd:3b:ca</mac>
133
				<ipaddr>192.168.0.103</ipaddr>
134
				<hostname>KENNIA</hostname>
135
				<descr/>
136
			</staticmap>
137
			<staticmap>
138
				<mac>00:25:22:91:15:c0</mac>
139
				<ipaddr>192.168.0.104</ipaddr>
140
				<hostname>SIMONE</hostname>
141
				<descr/>
142
				<netbootfile/>
143
			</staticmap>
144
			<staticmap>
145
				<mac>48:5b:39:f7:ea:e9</mac>
146
				<ipaddr>192.168.0.105</ipaddr>
147
				<hostname>CRISTIANE</hostname>
148
				<descr/>
149
			</staticmap>
150
			<staticmap>
151
				<mac>90:4c:e5:23:67:1b</mac>
152
				<ipaddr>192.168.0.106</ipaddr>
153
				<hostname>ACER</hostname>
154
				<descr/>
155
			</staticmap>
156
			<defaultleasetime/>
157
			<maxleasetime/>
158
			<netmask/>
159
			<failover_peerip/>
160
			<gateway/>
161
			<ddnsdomain/>
162
			<next-server/>
163
			<filename/>
164
			<domain/>
165
			<domainsearchlist/>
166
			<tftp/>
167
			<ldap/>
168
			<rootpath/>
169
			<numberoptions/>
170
		</lan>
171
	</dhcpd>
172
	<pptpd>
173
		<redir/>
174
		<localip>0.0.0.0</localip>
175
		<remoteip>192.168.0.16</remoteip>
176
		<radius>
177
			<server>
178
				<ip/>
179
				<port/>
180
				<acctport/>
181
				<secret/>
182
			</server>
183
			<secret/>
184
			<server2>
185
				<ip/>
186
				<port/>
187
				<acctport/>
188
				<secret2/>
189
			</server2>
190
			<nasip/>
191
			<acct_update/>
192
		</radius>
193
		<wins/>
194
		<user>
195
			<name>fabiano</name>
196
			<ip/>
197
			<password>thenet98</password>
198
		</user>
199
		<mode>off</mode>
200
		<n_pptp_units>16</n_pptp_units>
201
	</pptpd>
202
	<ovpn/>
203
	<dnsmasq>
204
		<enable/>
205
	</dnsmasq>
206
	<snmpd>
207
		<syslocation/>
208
		<syscontact/>
209
		<rocommunity>public</rocommunity>
210
	</snmpd>
211
	<diag>
212
		<ipv6nat/>
213
	</diag>
214
	<syslog/>
215
	<nat>
216
		<ipsecpassthru>
217
			<enable/>
218
		</ipsecpassthru>
219
		<advancedoutbound/>
220
	</nat>
221
	<filter>
222
		<rule>
223
			<type>pass</type>
224
			<interface>wan</interface>
225
			<max-src-nodes/>
226
			<max-src-states/>
227
			<statetimeout/>
228
			<statetype>keep state</statetype>
229
			<os/>
230
			<source>
231
				<any/>
232
			</source>
233
			<destination>
234
				<any/>
235
			</destination>
236
			<descr/>
237
		</rule>
238
		<rule>
239
			<type>pass</type>
240
			<interface>lan</interface>
241
			<max-src-nodes/>
242
			<max-src-states/>
243
			<statetimeout/>
244
			<statetype>keep state</statetype>
245
			<os/>
246
			<protocol>tcp</protocol>
247
			<source>
248
				<address>192.168.0.31</address>
249
			</source>
250
			<destination>
251
				<any/>
252
				<port>1863</port>
253
			</destination>
254
			<disabled/>
255
			<descr><![CDATA[MSN]]></descr>
256
		</rule>
257
		<rule>
258
			<id/>
259
			<type>block</type>
260
			<interface>lan</interface>
261
			<tag/>
262
			<tagged/>
263
			<max/>
264
			<max-src-nodes/>
265
			<max-src-conn/>
266
			<max-src-states/>
267
			<statetimeout/>
268
			<statetype>keep state</statetype>
269
			<os/>
270
			<protocol>tcp</protocol>
271
			<source>
272
				<any/>
273
			</source>
274
			<destination>
275
				<any/>
276
				<port>1863</port>
277
			</destination>
278
			<descr><![CDATA[MSN]]></descr>
279
		</rule>
280
		<rule>
281
			<type>pass</type>
282
			<descr><![CDATA[Default LAN -&gt; any]]></descr>
283
			<interface>lan</interface>
284
			<source>
285
				<network>lan</network>
286
			</source>
287
			<destination>
288
				<any/>
289
			</destination>
290
		</rule>
291
		<rule>
292
			<interface>lan</interface>
293
			<protocol>tcp</protocol>
294
			<source>
295
				<any/>
296
			</source>
297
			<destination>
298
				<address>192.168.0.1</address>
299
				<port>3128</port>
300
			</destination>
301
			<descr><![CDATA[NAT Squid]]></descr>
302
		</rule>
303
		<rule>
304
			<interface>lan</interface>
305
			<protocol>tcp</protocol>
306
			<source>
307
				<any/>
308
			</source>
309
			<destination>
310
				<address>192.168.0.1</address>
311
				<port>3128</port>
312
			</destination>
313
			<descr><![CDATA[NAT Squid]]></descr>
314
		</rule>
315
		<rule>
316
			<id/>
317
			<type>pass</type>
318
			<interface>pppoe</interface>
319
			<tag/>
320
			<tagged/>
321
			<max/>
322
			<max-src-nodes/>
323
			<max-src-conn/>
324
			<max-src-states/>
325
			<statetimeout/>
326
			<statetype>keep state</statetype>
327
			<os/>
328
			<source>
329
				<any/>
330
			</source>
331
			<destination>
332
				<any/>
333
			</destination>
334
			<descr/>
335
		</rule>
336
	</filter>
337
	<ipsec>
338
		<preferredoldsa/>
339
	</ipsec>
340
	<aliases/>
341
	<proxyarp/>
342
	<cron>
343
		<item>
344
			<minute>0</minute>
345
			<hour>*</hour>
346
			<mday>*</mday>
347
			<month>*</month>
348
			<wday>*</wday>
349
			<who>root</who>
350
			<command>/usr/bin/nice -n20 newsyslog</command>
351
		</item>
352
		<item>
353
			<minute>1,31</minute>
354
			<hour>0-5</hour>
355
			<mday>*</mday>
356
			<month>*</month>
357
			<wday>*</wday>
358
			<who>root</who>
359
			<command>/usr/bin/nice -n20 adjkerntz -a</command>
360
		</item>
361
		<item>
362
			<minute>1</minute>
363
			<hour>3</hour>
364
			<mday>1</mday>
365
			<month>*</month>
366
			<wday>*</wday>
367
			<who>root</who>
368
			<command>/usr/bin/nice -n20 /etc/rc.update_bogons.sh</command>
369
		</item>
370
		<item>
371
			<minute>*/60</minute>
372
			<hour>*</hour>
373
			<mday>*</mday>
374
			<month>*</month>
375
			<wday>*</wday>
376
			<who>root</who>
377
			<command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 sshlockout</command>
378
		</item>
379
		<item>
380
			<minute>1</minute>
381
			<hour>1</hour>
382
			<mday>*</mday>
383
			<month>*</month>
384
			<wday>*</wday>
385
			<who>root</who>
386
			<command>/usr/bin/nice -n20 /etc/rc.dyndns.update</command>
387
		</item>
388
		<item>
389
			<minute>*/60</minute>
390
			<hour>*</hour>
391
			<mday>*</mday>
392
			<month>*</month>
393
			<wday>*</wday>
394
			<who>root</who>
395
			<command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 virusprot</command>
396
		</item>
397
		<item>
398
			<minute>*/5</minute>
399
			<hour>*</hour>
400
			<mday>*</mday>
401
			<month>*</month>
402
			<wday>*</wday>
403
			<who>root</who>
404
			<command>/etc/ping_hosts.sh</command>
405
		</item>
406
		<item>
407
			<minute>*/140</minute>
408
			<hour>*</hour>
409
			<mday>*</mday>
410
			<month>*</month>
411
			<wday>*</wday>
412
			<who>root</who>
413
			<command>/usr/local/sbin/reset_slbd.sh</command>
414
		</item>
415
		<item>
416
			<minute>30</minute>
417
			<hour>12</hour>
418
			<mday>*</mday>
419
			<month>*</month>
420
			<wday>*</wday>
421
			<who>root</who>
422
			<command>/usr/bin/nice -n20 /etc/rc.update_urltables</command>
423
		</item>
424
		<item>
425
			<minute>0</minute>
426
			<hour>0</hour>
427
			<mday>*</mday>
428
			<month>*</month>
429
			<wday>*</wday>
430
			<who>root</who>
431
			<command>/usr/bin/nice -n20 /usr/local/etc/rc.d/squidGuard_logrotate</command>
432
		</item>
433
	</cron>
434
	<wol/>
435
	<installedpackages>
436
		<squid>
437
			<config>
438
				<active_interface>lan</active_interface>
439
				<allow_interface>on</allow_interface>
440
				<transparent_proxy>on</transparent_proxy>
441
				<private_subnet_proxy_off>on</private_subnet_proxy_off>
442
				<defined_ip_proxy_off/>
443
				<defined_ip_proxy_off_dest>erp.microvix.com.br</defined_ip_proxy_off_dest>
444
				<log_enabled>on</log_enabled>
445
				<log_dir>/var/squid/log</log_dir>
446
				<log_rotate/>
447
				<proxy_port>3128</proxy_port>
448
				<icp_port/>
449
				<visible_hostname>server</visible_hostname>
450
				<admin_email>fabiano@portobelloimperatriz.com.br</admin_email>
451
				<error_language>Portuguese</error_language>
452
				<disable_xforward/>
453
				<disable_via/>
454
				<uri_whitespace>strip</uri_whitespace>
455
				<dns_nameservers/>
456
				<disable_squidversion/>
457
				<custom_options>logformat squid %tl.%03tu %6tr %&gt;a %Ss/%03Hs %&lt;st %rm %ru %un %Sh/%&lt;A %mt;;redirect_program /usr/local/bin/squidGuard -c /usr/local/etc/squidGuard/squidGuard.conf;redirector_bypass on;redirect_children 3</custom_options>
458
			</config>
459
		</squid>
460
		<squidcache>
461
			<config>
462
				<harddisk_cache_size>100</harddisk_cache_size>
463
				<harddisk_cache_system>ufs</harddisk_cache_system>
464
				<harddisk_cache_location>/var/squid/cache</harddisk_cache_location>
465
				<memory_cache_size>8</memory_cache_size>
466
				<minimum_object_size>0</minimum_object_size>
467
				<maximum_object_size>4</maximum_object_size>
468
				<level1_subdirs>16</level1_subdirs>
469
				<memory_replacement_policy>lru</memory_replacement_policy>
470
				<cache_replacement_policy>heap LFUDA</cache_replacement_policy>
471
				<cache_swap_low>90</cache_swap_low>
472
				<cache_swap_high>95</cache_swap_high>
473
				<donotcache>ZXJwLm1pY3Jvdml4LmNvbS5icg0KcmVwb3J0Lm1pY3Jvdml4LmNvbS5icg==</donotcache>
474
				<enable_offline/>
475
			</config>
476
		</squidcache>
477
		<squidnac>
478
			<config>
479
				<allowed_subnets/>
480
				<unrestricted_hosts/>
481
				<banned_hosts/>
482
				<whitelist/>
483
				<blacklist/>
484
				<ext_cachemanager/>
485
				<addtl_ports/>
486
				<addtl_sslports/>
487
			</config>
488
		</squidnac>
489
		<package>
490
			<name>squid</name>
491
			<descr><![CDATA[High performance web proxy cache.]]></descr>
492
			<website>http://www.squid-cache.org/</website>
493
			<category>Network</category>
494
			<version>2.7.9_4.1</version>
495
			<status>Stable</status>
496
			<required_version>2</required_version>
497
			<maintainer>fernando@netfilter.com.br seth.mos@xs4all.nl mfuchs77@googlemail.com jimp@pfsense.org</maintainer>
498
			<depends_on_package_base_url>http://files.pfsense.org/packages/8/All/</depends_on_package_base_url>
499
			<depends_on_package>squid-2.7.9.tbz</depends_on_package>
500
			<depends_on_package>squid_radius_auth-1.10.tbz</depends_on_package>
501
			<depends_on_package>libwww-5.4.0_4.tbz</depends_on_package>
502
			<build_port_path>/usr/ports/www/squid</build_port_path>
503
			<build_port_path>/usr/ports/www/squid_radius_auth</build_port_path>
504
			<build_port_path>/usr/ports/www/libwww</build_port_path>
505
			<build_options>WITH_SQUID_KERB_AUTH=true WITH_SQUID_LDAP_AUTH=true WITH_SQUID_NIS_AUTH=true WITH_SQUID_SASL_AUTH=true WITH_SQUID_DELAY_POOLS=true WITH_SQUID_SNMP=true WITH_SQUID_CARP=true WITH_SQUID_SSL=true WITHOUT_SQUID_PINGER=true WITHOUT_SQUID_DNS_HELPER=true WITH_SQUID_HTCP=true WITH_SQUID_VIA_DB=true WITH_SQUID_CACHE_DIGESTS=true WITH_SQUID_WCCP=true WITHOUT_SQUID_WCCPV2=true WITHOUT_SQUID_STRICT_HTTP=true WITH_SQUID_IDENT=true WITH_SQUID_REFERER_LOG=true WITHOUT_SQUID_USERAGENT_LOG=true WITH_SQUID_ARP_ACL=true WITH_SQUID_PF=true WITHOUT_SQUID_IPFILTER=true WITH_SQUID_FOLLOW_XFF=true WITH_SQUID_AUFS=true WITH_SQUID_COSS=true WITH_SQUID_KQUEUE=true WITH_SQUID_LARGEFILE=true WITHOUT_SQUID_STACKTRACES=true</build_options>
506
			<config_file>http://www.pfsense.org/packages/config/squid/squid.xml</config_file>
507
			<configurationfile>squid.xml</configurationfile>
508
			<filter_rule_function>squid_generate_rules</filter_rule_function>
509
		</package>
510
		<package>
511
			<name>squidGuard</name>
512
			<descr><![CDATA[High perfomance web proxy URL filter. Requires proxy Squid package.]]></descr>
513
			<website>http://www.squidGuard.org/</website>
514
			<maintainer>dv_serg@mail.ru</maintainer>
515
			<category>Network Management</category>
516
			<version>1.4_2 pkg v.1.9</version>
517
			<status>Beta</status>
518
			<required_version>1.1</required_version>
519
			<depends_on_package_base_url>http://files.pfsense.org/packages/8/All/</depends_on_package_base_url>
520
			<depends_on_package>squidGuard-1.4_3.tbz</depends_on_package>
521
			<depends_on_package>db41-4.1.25_4.tbz</depends_on_package>
522
			<depends_on_package>db3-3.3.11_3,1.tbz</depends_on_package>
523
			<depends_on_package>cyrus-sasl-2.1.23_3.tbz</depends_on_package>
524
			<build_port_path>/usr/ports/www/squidguard</build_port_path>
525
			<build_port_path>/usr/ports/databases/db41</build_port_path>
526
			<build_port_path>/usr/ports/databases/db3</build_port_path>
527
			<build_port_path>/usr/ports/security/cyrus-sasl2</build_port_path>
528
			<build_options>WITH_SQUID_KERB_AUTH=true WITH_SQUID_LDAP_AUTH=true WITH_SQUID_NIS_AUTH=true WITH_SQUID_SASL_AUTH=true WITH_SQUID_DELAY_POOLS=true WITH_SQUID_SNMP=true WITH_SQUID_CARP=true WITH_SQUID_SSL=true WITHOUT_SQUID_PINGER=true WITHOUT_SQUID_DNS_HELPER=true WITH_SQUID_HTCP=true WITH_SQUID_VIA_DB=true WITH_SQUID_CACHE_DIGESTS=true WITH_SQUID_WCCP=true WITHOUT_SQUID_WCCPV2=true WITHOUT_SQUID_STRICT_HTTP=true WITH_SQUID_IDENT=true WITH_SQUID_REFERER_LOG=true WITHOUT_SQUID_USERAGENT_LOG=true WITH_SQUID_ARP_ACL=true WITH_SQUID_PF=true WITHOUT_SQUID_IPFILTER=true WITH_SQUID_FOLLOW_XFF=true WITH_SQUID_AUFS=true WITH_SQUID_COSS=true WITH_SQUID_KQUEUE=true WITH_SQUID_LARGEFILE=true WITHOUT_SQUID_STACKTRACES=true WITH_SAMPLE_BL=true WITH_LDAP=true WITH_SASL=true WITH_FETCH=true</build_options>
529
			<config_file>http://www.pfsense.org/packages/config/squidGuard/squidguard.xml</config_file>
530
			<configurationfile>squidguard.xml</configurationfile>
531
		</package>
532
		<package>
533
			<name>freeradius</name>
534
			<website>http://www.freeradius.org/</website>
535
			<descr><![CDATA[A free implementation of the RADIUS protocol.]]></descr>
536
			<category>System</category>
537
			<version>1.1.8</version>
538
			<status>Beta</status>
539
			<required_version>2.0</required_version>
540
			<maintainer>none</maintainer>
541
			<depends_on_package_base_url>http://files.pfsense.org/packages/8/All/</depends_on_package_base_url>
542
			<depends_on_package>freeradius-1.1.8_2.tbz</depends_on_package>
543
			<depends_on_package>libltdl-2.2.10.tbz</depends_on_package>
544
			<config_file>http://www.pfsense.org/packages/config/freeradius.xml</config_file>
545
			<configurationfile>freeradius.xml</configurationfile>
546
			<build_port_path>/usr/ports/net/freeradius</build_port_path>
547
			<build_port_path>/usr/ports/devel/libltdl</build_port_path>
548
		</package>
549
		<menu>
550
			<name>Proxy server</name>
551
			<tooltiptext>Modify the proxy server's settings</tooltiptext>
552
			<section>Services</section>
553
			<url>/pkg_edit.php?xml=squid.xml&amp;id=0</url>
554
		</menu>
555
		<menu>
556
			<name>Proxy filter</name>
557
			<tooltiptext>Modify the proxy server's filter settings</tooltiptext>
558
			<section>Services</section>
559
			<url>/pkg_edit.php?xml=squidguard.xml&amp;id=0</url>
560
		</menu>
561
		<menu>
562
			<name>FreeRADIUS</name>
563
			<tooltiptext>Modify FreeRADIUS users, clients, and settings.</tooltiptext>
564
			<section>Services</section>
565
			<url>/pkg.php?xml=freeradius.xml</url>
566
		</menu>
567
		<service>
568
			<name>squid</name>
569
			<rcfile>squid.sh</rcfile>
570
			<executable>squid</executable>
571
			<description><![CDATA[Proxy server Service]]></description>
572
		</service>
573
		<service>
574
			<name>squidGuard</name>
575
			<description><![CDATA[Proxy server filter Service]]></description>
576
			<executable>squidGuard</executable>
577
		</service>
578
		<service>
579
			<name>FreeRADIUS</name>
580
			<rcfile>radiusd.sh</rcfile>
581
			<executable>radiusd</executable>
582
			<description><![CDATA[The FreeRADIUS daemon.]]></description>
583
		</service>
584
		<squidguardgeneral>
585
			<config>
586
				<squidguard_enable>on</squidguard_enable>
587
				<enable_guilog>on</enable_guilog>
588
				<enable_log>on</enable_log>
589
				<log_rotation>on</log_rotation>
590
				<blacklist/>
591
				<blacklist_proxy/>
592
				<blacklist_url/>
593
			</config>
594
		</squidguardgeneral>
595
		<squidguardacl>
596
			<config>
597
				<disabled/>
598
				<name>Liberados</name>
599
				<source>192.168.0.105 192.168.0.83 192.168.0.86 192.168.0.30 192.168.0.99 192.168.0.81 192.168.0.31 192.168.0.106 192.168.0.110 192.168.0.50</source>
600
				<time/>
601
				<dest>lib_geral msn all [ lib_geral msn all]</dest>
602
				<notallowingip/>
603
				<redirect_mode>rmod_none</redirect_mode>
604
				<redirect/>
605
				<safesearch/>
606
				<rewrite/>
607
				<overrewrite/>
608
				<description><![CDATA[Liberados]]></description>
609
				<enablelog/>
610
			</config>
611
			<config>
612
				<disabled/>
613
				<name>Resto</name>
614
				<source>192.168.0.0/24</source>
615
				<time/>
616
				<dest>lib_geral !msn !all [ lib_geral !msn all]</dest>
617
				<notallowingip>on</notallowingip>
618
				<redirect_mode>rmod_ext_rdr</redirect_mode>
619
				<redirect>http://www.portobelloimperatriz.com.br/blocked.html</redirect>
620
				<safesearch/>
621
				<rewrite/>
622
				<overrewrite/>
623
				<description><![CDATA[Restante dos Computadores]]></description>
624
				<enablelog>on</enablelog>
625
			</config>
626
		</squidguardacl>
627
		<squidguarddest>
628
			<config>
629
				<name>lib_geral</name>
630
				<domains>microvix.com.br portobello.com.br emporioportobello.com.br portobelloshop.com.br eliane.com.br procad.com.br serportobelloshop.com.br portobelloimperatriz.com.br ricardobotelho.com.br ricardobotelhoweb.com.br bradesco.com.br vani.be autodesk.com procad.net google.com google.com.br gstatic.com 201.73.61.202</domains>
631
				<urls/>
632
				<expressions/>
633
				<redirect_mode>rmod_none</redirect_mode>
634
				<redirect/>
635
				<enablelog>on</enablelog>
636
				<description/>
637
			</config>
638
			<config>
639
				<name>msn</name>
640
				<domains>passport.com msn.com.br  msn.com sc.msn.com www.msn.be 207.46.110.11 messenger.msn.com.br http.msg.yahoo.com nickname.msn.com.br chat.msn.com chat.msn.com.br sgr.hotmail.com gateway.messenger.hotmail.com http1.msgr.hotmail.com  http2.msgr.hotmail.com http3.msgr.hotmail.com http4.msgr.hotmail.com http5.msgr.hotmail.com http6.msgr.hotmail.com http7.msgr.hotmail.com http8.msgr.hotmail.com http9.msgr.hotmail.com http10.msgr.hotmail.com http11.msgr.hotmail.com http12.msgr.hotmail.com http13.msgr.hotmail.com http14.msgr.hotmail.com http15.msgr.hotmail.com http16.msgr.hotmail.com http17.msgr.hotmail.com http18.msgr.hotmail.com http19.msgr.hotmail.com http20.msgr.hotmail.com</domains>
641
				<urls/>
642
				<expressions>x-msn</expressions>
643
				<redirect_mode>rmod_none</redirect_mode>
644
				<redirect/>
645
				<enablelog/>
646
				<description/>
647
			</config>
648
		</squidguarddest>
649
		<squidguarddefault>
650
			<config>
651
				<dest>lib_geral !all</dest>
652
				<notallowingip/>
653
				<redirect_mode>rmod_int</redirect_mode>
654
				<redirect/>
655
				<safesearch/>
656
				<rewrite/>
657
				<enablelog/>
658
			</config>
659
		</squidguarddefault>
660
		<squidguardtime>
661
			<config>
662
				<name>Geral</name>
663
				<row>
664
					<timetype>weekly</timetype>
665
					<timedays>*</timedays>
666
					<sg_timerange>00:00-23:59</sg_timerange>
667
				</row>
668
				<description/>
669
			</config>
670
		</squidguardtime>
671
		<carp/>
672
		<tab>
673
			<text>General settings</text>
674
			<url>/pkg_edit.php?xml=squidguard.xml&amp;id=0</url>
675
			<active/>
676
		</tab>
677
		<freeradiussettings>
678
			<config>
679
				<interface>lan</interface>
680
				<port>1812</port>
681
				<radiuslogging>yes</radiuslogging>
682
				<radiuslogbadpass>yes</radiuslogbadpass>
683
				<radiusloggoodpass>yes</radiusloggoodpass>
684
			</config>
685
		</freeradiussettings>
686
		<freeradius/>
687
		<freeradiusclients>
688
			<config>
689
				<client>192.168.0.1</client>
690
				<shortname>Servidor</shortname>
691
				<sharedsecret>thenet98</sharedsecret>
692
				<description><![CDATA[Teste]]></description>
693
			</config>
694
		</freeradiusclients>
695
	</installedpackages>
696
	<revision>
697
		<description><![CDATA[admin: /vpn_pppoe_edit.php made unknown change]]></description>
698
		<time>1307111111</time>
699
		<username>admin</username>
700
	</revision>
701
	<rrd>
702
		<enable/>
703
	</rrd>
704
	<sysctl>
705
		<item>
706
			<tunable>net.inet.tcp.blackhole</tunable>
707
			<descr><![CDATA[Drop packets to closed TCP ports without returning a RST]]></descr>
708
			<value>default</value>
709
		</item>
710
		<item>
711
			<tunable>net.inet.udp.blackhole</tunable>
712
			<descr><![CDATA[Do not send ICMP port unreachable messages for closed UDP ports]]></descr>
713
			<value>default</value>
714
		</item>
715
		<item>
716
			<tunable>net.inet.ip.random_id</tunable>
717
			<descr><![CDATA[Randomize the ID field in IP packets (default is 0: sequential IP IDs)]]></descr>
718
			<value>default</value>
719
		</item>
720
		<item>
721
			<tunable>net.inet.tcp.drop_synfin</tunable>
722
			<descr><![CDATA[Drop SYN-FIN packets (breaks RFC1379, but nobody uses it anyway)]]></descr>
723
			<value>default</value>
724
		</item>
725
		<item>
726
			<tunable>net.inet.ip.redirect</tunable>
727
			<descr><![CDATA[Sending of IPv4 ICMP redirects]]></descr>
728
			<value>default</value>
729
		</item>
730
		<item>
731
			<tunable>net.inet6.ip6.redirect</tunable>
732
			<descr><![CDATA[Sending of IPv6 ICMP redirects]]></descr>
733
			<value>default</value>
734
		</item>
735
		<item>
736
			<tunable>net.inet.tcp.syncookies</tunable>
737
			<descr><![CDATA[Generate SYN cookies for outbound SYN-ACK packets]]></descr>
738
			<value>default</value>
739
		</item>
740
		<item>
741
			<tunable>net.inet.tcp.recvspace</tunable>
742
			<descr><![CDATA[Maximum incoming TCP datagram size]]></descr>
743
			<value>default</value>
744
		</item>
745
		<item>
746
			<tunable>net.inet.tcp.sendspace</tunable>
747
			<descr><![CDATA[Maximum outgoing TCP datagram size]]></descr>
748
			<value>default</value>
749
		</item>
750
		<item>
751
			<tunable>net.inet.ip.fastforwarding</tunable>
752
			<descr><![CDATA[Fastforwarding (see http://lists.freebsd.org/pipermail/freebsd-net/2004-January/002534.html)]]></descr>
753
			<value>default</value>
754
		</item>
755
		<item>
756
			<tunable>net.inet.tcp.delayed_ack</tunable>
757
			<descr><![CDATA[Do not delay ACK to try and piggyback it onto a data packet]]></descr>
758
			<value>default</value>
759
		</item>
760
		<item>
761
			<tunable>net.inet.udp.maxdgram</tunable>
762
			<descr><![CDATA[Maximum outgoing UDP datagram size]]></descr>
763
			<value>default</value>
764
		</item>
765
		<item>
766
			<tunable>net.link.bridge.pfil_onlyip</tunable>
767
			<descr><![CDATA[Handling of non-IP packets which are not passed to pfil (see if_bridge(4))]]></descr>
768
			<value>default</value>
769
		</item>
770
		<item>
771
			<tunable>net.link.tap.user_open</tunable>
772
			<descr><![CDATA[Allow unprivileged access to tap(4) device nodes]]></descr>
773
			<value>default</value>
774
		</item>
775
		<item>
776
			<tunable>kern.randompid</tunable>
777
			<descr><![CDATA[Randomize PID's (see src/sys/kern/kern_fork.c: sysctl_kern_randompid())]]></descr>
778
			<value>default</value>
779
		</item>
780
		<item>
781
			<tunable>net.inet.tcp.inflight.enable</tunable>
782
			<descr><![CDATA[The system will attempt to calculate the bandwidth delay product for each connection and limit the amount of data queued to the network to just the amount required to maintain optimum throughput. ]]></descr>
783
			<value>default</value>
784
		</item>
785
		<item>
786
			<tunable>net.inet.icmp.icmplim</tunable>
787
			<descr><![CDATA[Set ICMP Limits]]></descr>
788
			<value>default</value>
789
		</item>
790
		<item>
791
			<tunable>net.inet.tcp.tso</tunable>
792
			<descr><![CDATA[TCP Offload engine]]></descr>
793
			<value>default</value>
794
		</item>
795
		<item>
796
			<tunable>net.inet.ip.portrange.first</tunable>
797
			<descr><![CDATA[Set the ephemeral port range starting port]]></descr>
798
			<value>default</value>
799
		</item>
800
		<item>
801
			<tunable>hw.syscons.kbd_reboot</tunable>
802
			<descr><![CDATA[Enables ctrl+alt+delete]]></descr>
803
			<value>default</value>
804
		</item>
805
		<item>
806
			<tunable>kern.ipc.maxsockbuf</tunable>
807
			<descr><![CDATA[Maximum socket buffer size]]></descr>
808
			<value>default</value>
809
		</item>
810
		<item>
811
			<descr><![CDATA[Set to 0 to disable filtering on the incoming and outgoing member interfaces.]]></descr>
812
			<tunable>net.link.bridge.pfil_member</tunable>
813
			<value>1</value>
814
		</item>
815
		<item>
816
			<descr><![CDATA[Set to 1 to enable filtering on the bridge interface]]></descr>
817
			<tunable>net.link.bridge.pfil_bridge</tunable>
818
			<value>0</value>
819
		</item>
820
	</sysctl>
821
	<gateways>
822
		<gateway_item>
823
			<gateway>189.17.66.25</gateway>
824
			<descr><![CDATA[Interface wan Static Gateway]]></descr>
825
			<interface>wan</interface>
826
			<name>GW_WAN</name>
827
			<defaultgw/>
828
		</gateway_item>
829
	</gateways>
830
	<dyndnses>
831
		<dyndns>
832
			<enable/>
833
			<type>noip</type>
834
			<username>fabianoheringer</username>
835
			<password>thenet98</password>
836
			<host>revestire.no-ip.org</host>
837
			<mx/>
838
			<interface>wan</interface>
839
			<descr><![CDATA[Upgraded Dyndns noip]]></descr>
840
		</dyndns>
841
	</dyndnses>
842
	<dnsupdates>
843
		<dnsupdate>
844
			<host/>
845
			<server/>
846
			<ttl>60</ttl>
847
			<keyname/>
848
			<keytype>zone</keytype>
849
			<keydata/>
850
			<interface>wan</interface>
851
		</dnsupdate>
852
	</dnsupdates>
853
	<openvpn/>
854
	<shaper/>
855
	<ppps/>
856
	<dhcrelay/>
857
	<l7shaper>
858
		<container/>
859
	</l7shaper>
860
	<dnshaper/>
861
	<pppoes>
862
		<pppoe>
863
			<remoteip>10.50.1.0</remoteip>
864
			<localip>192.168.150.1</localip>
865
			<mode>server</mode>
866
			<interface>lan</interface>
867
			<n_pppoe_units>254</n_pppoe_units>
868
			<pppoe_subnet>29</pppoe_subnet>
869
			<descr><![CDATA[Teste]]></descr>
870
			<dns1>200.255.255.66</dns1>
871
			<pppoeid>1</pppoeid>
872
			<username>fabiano:dGhlbmV0OTg=:10.50.1.2</username>
873
		</pppoe>
874
	</pppoes>
875
</pfsense>
    (1-1/1)