Project

General

Profile

Bug #2463 » config-kerberos.farriah.tuxpower.org-20130415093334.xml

configuration of the pfSense (crudely hand-censored) - Thomas Gruber, 04/15/2013 02:44 AM

 
1
<?xml version="1.0"?>
2
<pfsense>
3
	<version>9.4</version>
4
	<lastchange/>
5
	<theme>pfsense_ng</theme>
6
	<sysctl>
7
		<item>
8
			<descr><![CDATA[Disable the pf ftp proxy handler.]]></descr>
9
			<tunable>debug.pfftpproxy</tunable>
10
			<value>default</value>
11
		</item>
12
		<item>
13
			<descr><![CDATA[Increase UFS read-ahead speeds to match current state of hard drives and NCQ. More information here: http://ivoras.sharanet.org/blog/tree/2010-11-19.ufs-read-ahead.html]]></descr>
14
			<tunable>vfs.read_max</tunable>
15
			<value>default</value>
16
		</item>
17
		<item>
18
			<descr><![CDATA[Set the ephemeral port range to be lower.]]></descr>
19
			<tunable>net.inet.ip.portrange.first</tunable>
20
			<value>default</value>
21
		</item>
22
		<item>
23
			<descr><![CDATA[Drop packets to closed TCP ports without returning a RST]]></descr>
24
			<tunable>net.inet.tcp.blackhole</tunable>
25
			<value>default</value>
26
		</item>
27
		<item>
28
			<descr><![CDATA[Do not send ICMP port unreachable messages for closed UDP ports]]></descr>
29
			<tunable>net.inet.udp.blackhole</tunable>
30
			<value>default</value>
31
		</item>
32
		<item>
33
			<descr><![CDATA[Randomize the ID field in IP packets (default is 0: sequential IP IDs)]]></descr>
34
			<tunable>net.inet.ip.random_id</tunable>
35
			<value>default</value>
36
		</item>
37
		<item>
38
			<descr><![CDATA[Drop SYN-FIN packets (breaks RFC1379, but nobody uses it anyway)]]></descr>
39
			<tunable>net.inet.tcp.drop_synfin</tunable>
40
			<value>default</value>
41
		</item>
42
		<item>
43
			<descr><![CDATA[Enable sending IPv4 redirects]]></descr>
44
			<tunable>net.inet.ip.redirect</tunable>
45
			<value>default</value>
46
		</item>
47
		<item>
48
			<descr><![CDATA[Enable sending IPv6 redirects]]></descr>
49
			<tunable>net.inet6.ip6.redirect</tunable>
50
			<value>default</value>
51
		</item>
52
		<item>
53
			<descr><![CDATA[Generate SYN cookies for outbound SYN-ACK packets]]></descr>
54
			<tunable>net.inet.tcp.syncookies</tunable>
55
			<value>default</value>
56
		</item>
57
		<item>
58
			<descr><![CDATA[Maximum incoming/outgoing TCP datagram size (receive)]]></descr>
59
			<tunable>net.inet.tcp.recvspace</tunable>
60
			<value>default</value>
61
		</item>
62
		<item>
63
			<descr><![CDATA[Maximum incoming/outgoing TCP datagram size (send)]]></descr>
64
			<tunable>net.inet.tcp.sendspace</tunable>
65
			<value>default</value>
66
		</item>
67
		<item>
68
			<descr><![CDATA[IP Fastforwarding]]></descr>
69
			<tunable>net.inet.ip.fastforwarding</tunable>
70
			<value>default</value>
71
		</item>
72
		<item>
73
			<descr><![CDATA[Do not delay ACK to try and piggyback it onto a data packet]]></descr>
74
			<tunable>net.inet.tcp.delayed_ack</tunable>
75
			<value>default</value>
76
		</item>
77
		<item>
78
			<descr><![CDATA[Maximum outgoing UDP datagram size]]></descr>
79
			<tunable>net.inet.udp.maxdgram</tunable>
80
			<value>default</value>
81
		</item>
82
		<item>
83
			<descr><![CDATA[Handling of non-IP packets which are not passed to pfil (see if_bridge(4))]]></descr>
84
			<tunable>net.link.bridge.pfil_onlyip</tunable>
85
			<value>default</value>
86
		</item>
87
		<item>
88
			<descr><![CDATA[Set to 0 to disable filtering on the incoming and outgoing member interfaces.]]></descr>
89
			<tunable>net.link.bridge.pfil_member</tunable>
90
			<value>default</value>
91
		</item>
92
		<item>
93
			<descr><![CDATA[Set to 1 to enable filtering on the bridge interface]]></descr>
94
			<tunable>net.link.bridge.pfil_bridge</tunable>
95
			<value>default</value>
96
		</item>
97
		<item>
98
			<descr><![CDATA[Allow unprivileged access to tap(4) device nodes]]></descr>
99
			<tunable>net.link.tap.user_open</tunable>
100
			<value>default</value>
101
		</item>
102
		<item>
103
			<descr><![CDATA[Randomize PID's (see src/sys/kern/kern_fork.c: sysctl_kern_randompid())]]></descr>
104
			<tunable>kern.randompid</tunable>
105
			<value>default</value>
106
		</item>
107
		<item>
108
			<descr><![CDATA[Maximum size of the IP input queue]]></descr>
109
			<tunable>net.inet.ip.intr_queue_maxlen</tunable>
110
			<value>default</value>
111
		</item>
112
		<item>
113
			<descr><![CDATA[Disable CTRL+ALT+Delete reboot from keyboard.]]></descr>
114
			<tunable>hw.syscons.kbd_reboot</tunable>
115
			<value>default</value>
116
		</item>
117
		<item>
118
			<descr><![CDATA[Enable TCP Inflight mode]]></descr>
119
			<tunable>net.inet.tcp.inflight.enable</tunable>
120
			<value>default</value>
121
		</item>
122
		<item>
123
			<descr><![CDATA[Enable TCP extended debugging]]></descr>
124
			<tunable>net.inet.tcp.log_debug</tunable>
125
			<value>default</value>
126
		</item>
127
		<item>
128
			<descr><![CDATA[Set ICMP Limits]]></descr>
129
			<tunable>net.inet.icmp.icmplim</tunable>
130
			<value>default</value>
131
		</item>
132
		<item>
133
			<descr><![CDATA[TCP Offload Engine]]></descr>
134
			<tunable>net.inet.tcp.tso</tunable>
135
			<value>default</value>
136
		</item>
137
		<item>
138
			<descr><![CDATA[Maximum socket buffer size]]></descr>
139
			<tunable>kern.ipc.maxsockbuf</tunable>
140
			<value>default</value>
141
		</item>
142
	</sysctl>
143
	<system>
144
		<optimization>normal</optimization>
145
		<hostname>kerberos</hostname>
146
		<domain>me.local</domain>
147
		<group>
148
			<name>all</name>
149
			<description><![CDATA[All Users]]></description>
150
			<scope>system</scope>
151
			<gid>1998</gid>
152
		</group>
153
		<group>
154
			<name>admins</name>
155
			<description><![CDATA[System Administrators]]></description>
156
			<scope>system</scope>
157
			<gid>1999</gid>
158
			<member>0</member>
159
			<priv>page-all</priv>
160
		</group>
161
		<user>
162
			<name>admin</name>
163
			<descr><![CDATA[System Administrator]]></descr>
164
			<scope>system</scope>
165
			<groupname>admins</groupname>
166
			<password>$1$uZJvP2h6$gQiDCciC1tSau1de/apmp.</password>
167
			<uid>0</uid>
168
			<priv>user-shell-access</priv>
169
			<md5-hash></md5-hash>
170
			<nt-hash></nt-hash>
171
			<expires/>
172
			<authorizedkeys/>
173
			<ipsecpsk/>
174
		</user>
175
		<nextuid>2000</nextuid>
176
		<nextgid>2000</nextgid>
177
		<timezone>CET</timezone>
178
		<time-update-interval/>
179
		<timeservers>0.pfsense.pool.ntp.org</timeservers>
180
		<webgui>
181
			<protocol>https</protocol>
182
			<ssl-certref>51697c659f24a</ssl-certref>
183
			<port>443</port>
184
			<max_procs>2</max_procs>
185
			<noantilockout/>
186
		</webgui>
187
		<disablenatreflection>yes</disablenatreflection>
188
		<disablesegmentationoffloading/>
189
		<disablelargereceiveoffloading/>
190
		<firmware>
191
			<alturl>
192
				<enable/>
193
				<firmwareurl>http://snapshots.pfsense.org/FreeBSD_RELENG_8_3/amd64/pfSense_HEAD/.updaters</firmwareurl>
194
			</alturl>
195
		</firmware>
196
		<gitsync>
197
			<repositoryurl/>
198
			<branch/>
199
		</gitsync>
200
		<ipv6allow/>
201
		<language>en_US</language>
202
		<dnsserver>8.8.8.8</dnsserver>
203
		<dnsserver>8.8.4.4</dnsserver>
204
		<dnsallowoverride/>
205
		<serialspeed>9600</serialspeed>
206
	</system>
207
	<interfaces>
208
		<wan>
209
			<enable/>
210
			<if>re0</if>
211
			<blockbogons/>
212
			<descr><![CDATA[WAN]]></descr>
213
			<spoofmac>xx:xx:xx:xx:xx:xx</spoofmac>
214
			<blockpriv/>
215
			<ipaddr>x.x.x.x</ipaddr>
216
			<subnet>27</subnet>
217
			<gateway>MyGW</gateway>
218
			<ipaddrv6>2a01:x:x:x::1</ipaddrv6>
219
			<subnetv6>64</subnetv6>
220
			<gatewayv6>MyGWV6</gatewayv6>
221
		</wan>
222
		<lan>
223
			<enable/>
224
			<if>re1</if>
225
			<descr><![CDATA[AdvL3]]></descr>
226
			<spoofmac/>
227
			<blockbogons/>
228
			<ipaddr>10.255.255.254</ipaddr>
229
			<subnet>32</subnet>
230
		</lan>
231
		<opt1>
232
			<descr><![CDATA[SimL3]]></descr>
233
			<if>re2</if>
234
			<enable/>
235
			<ipaddr>x.x.x.x</ipaddr>
236
			<subnet>29</subnet>
237
			<blockpriv/>
238
			<blockbogons/>
239
			<spoofmac/>
240
		</opt1>
241
		<opt2>
242
			<descr><![CDATA[qipLocal]]></descr>
243
			<if>re3</if>
244
			<enable/>
245
			<ipaddr>10.13.15.1</ipaddr>
246
			<subnet>24</subnet>
247
			<blockbogons/>
248
			<spoofmac/>
249
		</opt2>
250
	</interfaces>
251
	<staticroutes>
252
		<route>
253
			<network>10.255.255.1/32</network>
254
			<gateway>L3Net</gateway>
255
			<descr><![CDATA[VM Testhost]]></descr>
256
		</route>
257
	</staticroutes>
258
	<dhcpd>
259
		<lan>
260
			<range>
261
				<from>192.168.1.100</from>
262
				<to>192.168.1.199</to>
263
			</range>
264
		</lan>
265
	</dhcpd>
266
	<pptpd>
267
		<mode/>
268
		<redir/>
269
		<localip/>
270
		<remoteip/>
271
	</pptpd>
272
	<dnsmasq>
273
		<enable/>
274
	</dnsmasq>
275
	<snmpd>
276
		<syslocation/>
277
		<syscontact/>
278
		<rocommunity>public</rocommunity>
279
	</snmpd>
280
	<diag>
281
		<ipv6nat>
282
			<ipaddr/>
283
		</ipv6nat>
284
	</diag>
285
	<bridge/>
286
	<syslog/>
287
	<nat>
288
		<ipsecpassthru>
289
			<enable/>
290
		</ipsecpassthru>
291
		<advancedoutbound>
292
			<enable/>
293
			<rule>
294
				<source>
295
					<network>10.255.255.0/24</network>
296
				</source>
297
				<sourceport/>
298
				<descr/>
299
				<target/>
300
				<targetip/>
301
				<targetip_subnet>0</targetip_subnet>
302
				<interface>wan</interface>
303
				<poolopts/>
304
				<destination>
305
					<any/>
306
				</destination>
307
			</rule>
308
			<rule>
309
				<source>
310
					<network>10.13.0.0/16</network>
311
				</source>
312
				<sourceport/>
313
				<descr/>
314
				<target/>
315
				<targetip/>
316
				<targetip_subnet>0</targetip_subnet>
317
				<interface>wan</interface>
318
				<poolopts/>
319
				<destination>
320
					<any/>
321
				</destination>
322
				<updated>
323
					<time>1366008649</time>
324
					<username>admin@x.x.x.x</username>
325
				</updated>
326
				<created>
327
					<time>1366008649</time>
328
					<username>admin@x.x.x.x</username>
329
				</created>
330
			</rule>
331
		</advancedoutbound>
332
		<rule>
333
			<source>
334
				<any/>
335
			</source>
336
			<destination>
337
				<network>wanip</network>
338
				<port>80</port>
339
			</destination>
340
			<protocol>tcp</protocol>
341
			<target>10.255.255.1</target>
342
			<local-port>80</local-port>
343
			<interface>wan</interface>
344
			<descr/>
345
			<associated-rule-id>nat_516ba44e9b5a00.72273892</associated-rule-id>
346
			<updated>
347
				<time>1366008910</time>
348
				<username>admin@x.x.x.x</username>
349
			</updated>
350
			<created>
351
				<time>1366008910</time>
352
				<username>admin@x.x.x.x</username>
353
			</created>
354
		</rule>
355
		<rule>
356
			<source>
357
				<any/>
358
			</source>
359
			<destination>
360
				<network>wanip</network>
361
				<port>443</port>
362
			</destination>
363
			<protocol>tcp</protocol>
364
			<target>10.255.255.1</target>
365
			<local-port>443</local-port>
366
			<interface>wan</interface>
367
			<descr/>
368
			<associated-rule-id>nat_516ba45b8ac590.36408307</associated-rule-id>
369
			<updated>
370
				<time>1366008923</time>
371
				<username>admin@x.x.x.x</username>
372
			</updated>
373
			<created>
374
				<time>1366008923</time>
375
				<username>admin@x.x.x.x</username>
376
			</created>
377
		</rule>
378
		<rule>
379
			<source>
380
				<any/>
381
			</source>
382
			<destination>
383
				<network>wanip</network>
384
				<port>22</port>
385
			</destination>
386
			<protocol>tcp</protocol>
387
			<target>10.255.255.1</target>
388
			<local-port>22</local-port>
389
			<interface>wan</interface>
390
			<descr/>
391
			<associated-rule-id>nat_516ba470afbca1.94117082</associated-rule-id>
392
			<updated>
393
				<time>1366008944</time>
394
				<username>admin@x.x.x.x</username>
395
			</updated>
396
			<created>
397
				<time>1366008944</time>
398
				<username>admin@x.x.x.x</username>
399
			</created>
400
		</rule>
401
	</nat>
402
	<filter>
403
		<rule>
404
			<id/>
405
			<type>pass</type>
406
			<interface>wan</interface>
407
			<ipprotocol>inet</ipprotocol>
408
			<tag/>
409
			<tagged/>
410
			<max/>
411
			<max-src-nodes/>
412
			<max-src-conn/>
413
			<max-src-states/>
414
			<statetimeout/>
415
			<statetype>keep state</statetype>
416
			<os/>
417
			<protocol>tcp</protocol>
418
			<source>
419
				<any/>
420
			</source>
421
			<destination>
422
				<network>wanip</network>
423
				<port>31337</port>
424
			</destination>
425
			<descr><![CDATA[Remote Admin]]></descr>
426
			<updated>
427
				<time>1366006659</time>
428
				<username>admin@x.x.x.x</username>
429
			</updated>
430
		</rule>
431
		<rule>
432
			<source>
433
				<any/>
434
			</source>
435
			<interface>wan</interface>
436
			<protocol>tcp</protocol>
437
			<destination>
438
				<address>10.255.255.1</address>
439
				<port>80</port>
440
			</destination>
441
			<descr><![CDATA[NAT ]]></descr>
442
			<associated-rule-id>nat_516ba44e9b5a00.72273892</associated-rule-id>
443
			<created>
444
				<time>1366008910</time>
445
				<username>NAT Port Forward</username>
446
			</created>
447
		</rule>
448
		<rule>
449
			<source>
450
				<any/>
451
			</source>
452
			<interface>wan</interface>
453
			<protocol>tcp</protocol>
454
			<destination>
455
				<address>10.255.255.1</address>
456
				<port>443</port>
457
			</destination>
458
			<descr><![CDATA[NAT ]]></descr>
459
			<associated-rule-id>nat_516ba45b8ac590.36408307</associated-rule-id>
460
			<created>
461
				<time>1366008923</time>
462
				<username>NAT Port Forward</username>
463
			</created>
464
		</rule>
465
		<rule>
466
			<source>
467
				<any/>
468
			</source>
469
			<interface>wan</interface>
470
			<protocol>tcp</protocol>
471
			<destination>
472
				<address>10.255.255.1</address>
473
				<port>22</port>
474
			</destination>
475
			<descr><![CDATA[NAT ]]></descr>
476
			<associated-rule-id>nat_516ba470afbca1.94117082</associated-rule-id>
477
			<created>
478
				<time>1366008944</time>
479
				<username>NAT Port Forward</username>
480
			</created>
481
		</rule>
482
		<rule>
483
			<id/>
484
			<type>pass</type>
485
			<interface>wan</interface>
486
			<ipprotocol>inet</ipprotocol>
487
			<tag/>
488
			<tagged/>
489
			<max/>
490
			<max-src-nodes/>
491
			<max-src-conn/>
492
			<max-src-states/>
493
			<statetimeout/>
494
			<statetype>keep state</statetype>
495
			<os/>
496
			<source>
497
				<any/>
498
			</source>
499
			<destination>
500
				<network>opt1</network>
501
			</destination>
502
			<descr><![CDATA[Allow all Access to Simple L3 Subnet]]></descr>
503
			<updated>
504
				<time>1366009264</time>
505
				<username>admin@x.x.x.x</username>
506
			</updated>
507
			<created>
508
				<time>1366009264</time>
509
				<username>admin@x.x.x.x</username>
510
			</created>
511
		</rule>
512
		<rule>
513
			<id/>
514
			<type>pass</type>
515
			<interface>wan</interface>
516
			<ipprotocol>inet</ipprotocol>
517
			<tag/>
518
			<tagged/>
519
			<max/>
520
			<max-src-nodes/>
521
			<max-src-conn/>
522
			<max-src-states/>
523
			<statetimeout/>
524
			<statetype>keep state</statetype>
525
			<os/>
526
			<source>
527
				<any/>
528
			</source>
529
			<destination>
530
				<address>x.x.x.x/28</address>
531
			</destination>
532
			<descr><![CDATA[Allow all Access to Advanced /32 L3 Subnet]]></descr>
533
			<updated>
534
				<time>1366009296</time>
535
				<username>admin@x.x.x.x</username>
536
			</updated>
537
			<created>
538
				<time>1366009296</time>
539
				<username>admin@x.x.x.x</username>
540
			</created>
541
		</rule>
542
		<rule>
543
			<id/>
544
			<type>pass</type>
545
			<interface>lan</interface>
546
			<tag/>
547
			<tagged/>
548
			<max/>
549
			<max-src-nodes/>
550
			<max-src-conn/>
551
			<max-src-states/>
552
			<statetimeout/>
553
			<statetype>keep state</statetype>
554
			<os/>
555
			<source>
556
				<any/>
557
			</source>
558
			<destination>
559
				<any/>
560
			</destination>
561
			<descr><![CDATA[Default allow LAN to any rule]]></descr>
562
		</rule>
563
		<rule>
564
			<id/>
565
			<type>pass</type>
566
			<interface>opt1</interface>
567
			<ipprotocol>inet</ipprotocol>
568
			<tag/>
569
			<tagged/>
570
			<max/>
571
			<max-src-nodes/>
572
			<max-src-conn/>
573
			<max-src-states/>
574
			<statetimeout/>
575
			<statetype>keep state</statetype>
576
			<os/>
577
			<source>
578
				<any/>
579
			</source>
580
			<destination>
581
				<any/>
582
			</destination>
583
			<descr/>
584
			<updated>
585
				<time>1366009327</time>
586
				<username>admin@x.x.x.x</username>
587
			</updated>
588
			<created>
589
				<time>1366009327</time>
590
				<username>admin@x.x.x.x</username>
591
			</created>
592
		</rule>
593
		<rule>
594
			<id/>
595
			<type>pass</type>
596
			<interface>opt2</interface>
597
			<ipprotocol>inet</ipprotocol>
598
			<tag/>
599
			<tagged/>
600
			<max/>
601
			<max-src-nodes/>
602
			<max-src-conn/>
603
			<max-src-states/>
604
			<statetimeout/>
605
			<statetype>keep state</statetype>
606
			<os/>
607
			<source>
608
				<any/>
609
			</source>
610
			<destination>
611
				<any/>
612
			</destination>
613
			<descr/>
614
			<updated>
615
				<time>1366007088</time>
616
				<username>admin@x.x.x.x</username>
617
			</updated>
618
			<created>
619
				<time>1366007088</time>
620
				<username>admin@x.x.x.x</username>
621
			</created>
622
		</rule>
623
	</filter>
624
	<shaper/>
625
	<ipsec/>
626
	<aliases/>
627
	<proxyarp/>
628
	<cron>
629
		<item>
630
			<minute>0</minute>
631
			<hour>*</hour>
632
			<mday>*</mday>
633
			<month>*</month>
634
			<wday>*</wday>
635
			<who>root</who>
636
			<command>/usr/bin/nice -n20 newsyslog</command>
637
		</item>
638
		<item>
639
			<minute>1,31</minute>
640
			<hour>0-5</hour>
641
			<mday>*</mday>
642
			<month>*</month>
643
			<wday>*</wday>
644
			<who>root</who>
645
			<command>/usr/bin/nice -n20 adjkerntz -a</command>
646
		</item>
647
		<item>
648
			<minute>1</minute>
649
			<hour>3</hour>
650
			<mday>1</mday>
651
			<month>*</month>
652
			<wday>*</wday>
653
			<who>root</who>
654
			<command>/usr/bin/nice -n20 /etc/rc.update_bogons.sh</command>
655
		</item>
656
		<item>
657
			<minute>*/60</minute>
658
			<hour>*</hour>
659
			<mday>*</mday>
660
			<month>*</month>
661
			<wday>*</wday>
662
			<who>root</who>
663
			<command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 sshlockout</command>
664
		</item>
665
		<item>
666
			<minute>1</minute>
667
			<hour>1</hour>
668
			<mday>*</mday>
669
			<month>*</month>
670
			<wday>*</wday>
671
			<who>root</who>
672
			<command>/usr/bin/nice -n20 /etc/rc.dyndns.update</command>
673
		</item>
674
		<item>
675
			<minute>*/60</minute>
676
			<hour>*</hour>
677
			<mday>*</mday>
678
			<month>*</month>
679
			<wday>*</wday>
680
			<who>root</who>
681
			<command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 virusprot</command>
682
		</item>
683
		<item>
684
			<minute>30</minute>
685
			<hour>12</hour>
686
			<mday>*</mday>
687
			<month>*</month>
688
			<wday>*</wday>
689
			<who>root</who>
690
			<command>/usr/bin/nice -n20 /etc/rc.update_urltables</command>
691
		</item>
692
	</cron>
693
	<wol/>
694
	<rrd>
695
		<enable/>
696
	</rrd>
697
	<load_balancer>
698
		<monitor_type>
699
			<name>ICMP</name>
700
			<type>icmp</type>
701
			<descr><![CDATA[ICMP]]></descr>
702
			<options/>
703
		</monitor_type>
704
		<monitor_type>
705
			<name>TCP</name>
706
			<type>tcp</type>
707
			<descr><![CDATA[Generic TCP]]></descr>
708
			<options/>
709
		</monitor_type>
710
		<monitor_type>
711
			<name>HTTP</name>
712
			<type>http</type>
713
			<descr><![CDATA[Generic HTTP]]></descr>
714
			<options>
715
				<path>/</path>
716
				<host/>
717
				<code>200</code>
718
			</options>
719
		</monitor_type>
720
		<monitor_type>
721
			<name>HTTPS</name>
722
			<type>https</type>
723
			<descr><![CDATA[Generic HTTPS]]></descr>
724
			<options>
725
				<path>/</path>
726
				<host/>
727
				<code>200</code>
728
			</options>
729
		</monitor_type>
730
		<monitor_type>
731
			<name>SMTP</name>
732
			<type>send</type>
733
			<descr><![CDATA[Generic SMTP]]></descr>
734
			<options>
735
				<send/>
736
				<expect>220 *</expect>
737
			</options>
738
		</monitor_type>
739
	</load_balancer>
740
	<widgets>
741
		<sequence>system_information-container:col1:show,captive_portal_status-container:col1:close,carp_status-container:col1:close,cpu_graphs-container:col1:close,gmirror_status-container:col1:close,installed_packages-container:col1:close,interface_statistics-container:col1:close,interfaces-container:col2:show,ipsec-container:col2:show,load_balancer_status-container:col2:close,log-container:col2:close,picture-container:col2:close,rss-container:col2:close,services_status-container:col2:close,traffic_graphs-container:col2:close,dyn_dns_status-container:col2:none,openvpn-container:col2:show,smart_status-container:col2:none,thermal_sensors-container:col2:none,wake_on_lan-container:col2:none,gateways-container:col2:show</sequence>
742
	</widgets>
743
	<revision>
744
		<time>1366010765</time>
745
		<description><![CDATA[admin@x.x.x.x: /system_gateways_edit.php made unknown change]]></description>
746
		<username>admin@x.x.x.x</username>
747
	</revision>
748
	<openvpn/>
749
	<l7shaper>
750
		<container/>
751
	</l7shaper>
752
	<dnshaper/>
753
	<cert>
754
		<refid>51697c659f24a</refid>
755
		<descr><![CDATA[webConfigurator default]]></descr>
756
		<crt>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</crt>
757
		<prv>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</prv>
758
	</cert>
759
	<ppps/>
760
	<gateways>
761
		<gateway_item>
762
			<interface>lan</interface>
763
			<gateway>dynamic</gateway>
764
			<name>L3Net</name>
765
			<weight>1</weight>
766
			<ipprotocol>inet</ipprotocol>
767
			<interval/>
768
			<descr><![CDATA[L3Net GW]]></descr>
769
			<monitor_disable/>
770
		</gateway_item>
771
		<gateway_item>
772
			<interface>wan</interface>
773
			<gateway>x.x.x.x</gateway>
774
			<name>MyGW</name>
775
			<weight>1</weight>
776
			<ipprotocol>inet</ipprotocol>
777
			<interval>10</interval>
778
			<descr><![CDATA[MyGW]]></descr>
779
			<defaultgw/>
780
		</gateway_item>
781
		<gateway_item>
782
			<interface>wan</interface>
783
			<gateway>fe80::1</gateway>
784
			<name>MyGWV6</name>
785
			<weight>1</weight>
786
			<ipprotocol>inet6</ipprotocol>
787
			<interval>10</interval>
788
			<descr><![CDATA[MyGWV6]]></descr>
789
			<defaultgw/>
790
		</gateway_item>
791
		<gateway_item>
792
			<interface>lan</interface>
793
			<gateway>dynamic</gateway>
794
			<name>AdvL3</name>
795
			<weight>1</weight>
796
			<ipprotocol>inet</ipprotocol>
797
			<interval/>
798
			<descr><![CDATA[Advanced L3 Networking]]></descr>
799
			<monitor_disable/>
800
		</gateway_item>
801
	</gateways>
802
</pfsense>
(3-3/3)