Project

General

Profile

Download (18.7 KB)

Bug #2495 » config-pfsense.localdomain-20130806121907.xml

problematic config.xml - Thomas Rieschl, 08/06/2013 05:35 AM

 
1 
<?xml version="1.0"?>
2 
<pfsense>
3 
	<version>9.7</version>
4 
	<lastchange/>
5 
	<theme>pfsense_ng</theme>
6 
	<sysctl>
7 
		<item>
8 
			<descr><![CDATA[Enable mounting the FS read only with more checks.]]></descr>
9 
			<tunable>vfs.forcesync</tunable>
10 
			<value>default</value>
11 
		</item>
12 
		<item>
13 
			<descr><![CDATA[Disable the pf ftp proxy handler.]]></descr>
14 
			<tunable>debug.pfftpproxy</tunable>
15 
			<value>default</value>
16 
		</item>
17 
		<item>
18 
			<descr><![CDATA[Increase UFS read-ahead speeds to match current state of hard drives and NCQ. More information here: http://ivoras.sharanet.org/blog/tree/2010-11-19.ufs-read-ahead.html]]></descr>
19 
			<tunable>vfs.read_max</tunable>
20 
			<value>default</value>
21 
		</item>
22 
		<item>
23 
			<descr><![CDATA[Set the ephemeral port range to be lower.]]></descr>
24 
			<tunable>net.inet.ip.portrange.first</tunable>
25 
			<value>default</value>
26 
		</item>
27 
		<item>
28 
			<descr><![CDATA[Drop packets to closed TCP ports without returning a RST]]></descr>
29 
			<tunable>net.inet.tcp.blackhole</tunable>
30 
			<value>default</value>
31 
		</item>
32 
		<item>
33 
			<descr><![CDATA[Do not send ICMP port unreachable messages for closed UDP ports]]></descr>
34 
			<tunable>net.inet.udp.blackhole</tunable>
35 
			<value>default</value>
36 
		</item>
37 
		<item>
38 
			<descr><![CDATA[Randomize the ID field in IP packets (default is 0: sequential IP IDs)]]></descr>
39 
			<tunable>net.inet.ip.random_id</tunable>
40 
			<value>default</value>
41 
		</item>
42 
		<item>
43 
			<descr><![CDATA[Drop SYN-FIN packets (breaks RFC1379, but nobody uses it anyway)]]></descr>
44 
			<tunable>net.inet.tcp.drop_synfin</tunable>
45 
			<value>default</value>
46 
		</item>
47 
		<item>
48 
			<descr><![CDATA[Enable sending IPv4 redirects]]></descr>
49 
			<tunable>net.inet.ip.redirect</tunable>
50 
			<value>default</value>
51 
		</item>
52 
		<item>
53 
			<descr><![CDATA[Enable sending IPv6 redirects]]></descr>
54 
			<tunable>net.inet6.ip6.redirect</tunable>
55 
			<value>default</value>
56 
		</item>
57 
		<item>
58 
			<descr><![CDATA[Enable privacy settings for IPv6 (RFC 4941)]]></descr>
59 
			<tunable>net.inet6.ip6.use_tempaddr</tunable>
60 
			<value>default</value>
61 
		</item>
62 
		<item>
63 
			<descr><![CDATA[Prefer privacy addresses and use them over the normal addresses]]></descr>
64 
			<tunable>net.inet6.ip6.prefer_tempaddr</tunable>
65 
			<value>default</value>
66 
		</item>
67 
		<item>
68 
			<descr><![CDATA[Generate SYN cookies for outbound SYN-ACK packets]]></descr>
69 
			<tunable>net.inet.tcp.syncookies</tunable>
70 
			<value>default</value>
71 
		</item>
72 
		<item>
73 
			<descr><![CDATA[Maximum incoming/outgoing TCP datagram size (receive)]]></descr>
74 
			<tunable>net.inet.tcp.recvspace</tunable>
75 
			<value>default</value>
76 
		</item>
77 
		<item>
78 
			<descr><![CDATA[Maximum incoming/outgoing TCP datagram size (send)]]></descr>
79 
			<tunable>net.inet.tcp.sendspace</tunable>
80 
			<value>default</value>
81 
		</item>
82 
		<item>
83 
			<descr><![CDATA[IP Fastforwarding]]></descr>
84 
			<tunable>net.inet.ip.fastforwarding</tunable>
85 
			<value>default</value>
86 
		</item>
87 
		<item>
88 
			<descr><![CDATA[Do not delay ACK to try and piggyback it onto a data packet]]></descr>
89 
			<tunable>net.inet.tcp.delayed_ack</tunable>
90 
			<value>default</value>
91 
		</item>
92 
		<item>
93 
			<descr><![CDATA[Maximum outgoing UDP datagram size]]></descr>
94 
			<tunable>net.inet.udp.maxdgram</tunable>
95 
			<value>default</value>
96 
		</item>
97 
		<item>
98 
			<descr><![CDATA[Handling of non-IP packets which are not passed to pfil (see if_bridge(4))]]></descr>
99 
			<tunable>net.link.bridge.pfil_onlyip</tunable>
100 
			<value>default</value>
101 
		</item>
102 
		<item>
103 
			<descr><![CDATA[Set to 0 to disable filtering on the incoming and outgoing member interfaces.]]></descr>
104 
			<tunable>net.link.bridge.pfil_member</tunable>
105 
			<value>default</value>
106 
		</item>
107 
		<item>
108 
			<descr><![CDATA[Set to 1 to enable filtering on the bridge interface]]></descr>
109 
			<tunable>net.link.bridge.pfil_bridge</tunable>
110 
			<value>default</value>
111 
		</item>
112 
		<item>
113 
			<descr><![CDATA[Allow unprivileged access to tap(4) device nodes]]></descr>
114 
			<tunable>net.link.tap.user_open</tunable>
115 
			<value>default</value>
116 
		</item>
117 
		<item>
118 
			<descr><![CDATA[Randomize PID's (see src/sys/kern/kern_fork.c: sysctl_kern_randompid())]]></descr>
119 
			<tunable>kern.randompid</tunable>
120 
			<value>default</value>
121 
		</item>
122 
		<item>
123 
			<descr><![CDATA[Maximum size of the IP input queue]]></descr>
124 
			<tunable>net.inet.ip.intr_queue_maxlen</tunable>
125 
			<value>default</value>
126 
		</item>
127 
		<item>
128 
			<descr><![CDATA[Disable CTRL+ALT+Delete reboot from keyboard.]]></descr>
129 
			<tunable>hw.syscons.kbd_reboot</tunable>
130 
			<value>default</value>
131 
		</item>
132 
		<item>
133 
			<descr><![CDATA[Enable TCP Inflight mode]]></descr>
134 
			<tunable>net.inet.tcp.inflight.enable</tunable>
135 
			<value>default</value>
136 
		</item>
137 
		<item>
138 
			<descr><![CDATA[Enable TCP extended debugging]]></descr>
139 
			<tunable>net.inet.tcp.log_debug</tunable>
140 
			<value>default</value>
141 
		</item>
142 
		<item>
143 
			<descr><![CDATA[Set ICMP Limits]]></descr>
144 
			<tunable>net.inet.icmp.icmplim</tunable>
145 
			<value>default</value>
146 
		</item>
147 
		<item>
148 
			<descr><![CDATA[TCP Offload Engine]]></descr>
149 
			<tunable>net.inet.tcp.tso</tunable>
150 
			<value>default</value>
151 
		</item>
152 
		<item>
153 
			<descr><![CDATA[UDP Checksums]]></descr>
154 
			<tunable>net.inet.udp.checksum</tunable>
155 
			<value>default</value>
156 
		</item>
157 
		<item>
158 
			<descr><![CDATA[Maximum socket buffer size]]></descr>
159 
			<tunable>kern.ipc.maxsockbuf</tunable>
160 
			<value>default</value>
161 
		</item>
162 
	</sysctl>
163 
	<system>
164 
		<optimization>normal</optimization>
165 
		<hostname>pfsense</hostname>
166 
		<domain>localdomain</domain>
167 
		<group>
168 
			<name>all</name>
169 
			<description><![CDATA[All Users]]></description>
170 
			<scope>system</scope>
171 
			<gid>1998</gid>
172 
			<member>0</member>
173 
		</group>
174 
		<group>
175 
			<name>admins</name>
176 
			<description><![CDATA[System Administrators]]></description>
177 
			<scope>system</scope>
178 
			<gid>1999</gid>
179 
			<member>0</member>
180 
			<priv>page-all</priv>
181 
		</group>
182 
		<user>
183 
			<name>admin</name>
184 
			<descr><![CDATA[System Administrator]]></descr>
185 
			<scope>system</scope>
186 
			<groupname>admins</groupname>
187 
			<password>$1$MIkGgk1a$9XzdPYJKQdgu3ZE/kle7b1</password>
188 
			<uid>0</uid>
189 
			<priv>user-shell-access</priv>
190 
			<md5-hash>3a4b4c4dde494d2cec3e0ea68e437e17</md5-hash>
191 
			<nt-hash>3338333834323034353935373932633863623430663264336164663532353636</nt-hash>
192 
		</user>
193 
		<nextuid>2000</nextuid>
194 
		<nextgid>2000</nextgid>
195 
		<timezone>Europe/Vienna</timezone>
196 
		<time-update-interval/>
197 
		<timeservers>0.at.pool.ntp.org 1.at.pool.ntp.org</timeservers>
198 
		<webgui>
199 
			<protocol>https</protocol>
200 
			<ssl-certref>51fcd9089438d</ssl-certref>
201 
			<port/>
202 
			<max_procs>2</max_procs>
203 
			<nodnsrebindcheck/>
204 
		</webgui>
205 
		<disablenatreflection>yes</disablenatreflection>
206 
		<disablesegmentationoffloading/>
207 
		<disablelargereceiveoffloading/>
208 
		<ipv6allow/>
209 
		<powerd_ac_mode>hadp</powerd_ac_mode>
210 
		<powerd_battery_mode>hadp</powerd_battery_mode>
211 
		<bogons>
212 
			<interval>monthly</interval>
213 
		</bogons>
214 
		<firmware>
215 
			<alturl>
216 
				<enable/>
217 
				<firmwareurl>http://snapshots.pfsense.org/FreeBSD_RELENG_8_3/amd64/pfSense_RELENG_2_1/.updaters</firmwareurl>
218 
			</alturl>
219 
			<allowinvalidsig/>
220 
		</firmware>
221 
		<gitsync>
222 
			<repositoryurl/>
223 
			<branch/>
224 
		</gitsync>
225 
		<serialspeed>9600</serialspeed>
226 
		<enablesshd>enabled</enablesshd>
227 
		<language>en_US</language>
228 
		<dns1gw>none</dns1gw>
229 
		<dns2gw>none</dns2gw>
230 
		<dns3gw>none</dns3gw>
231 
		<dns4gw>none</dns4gw>
232 
		<dnsallowoverride/>
233 
	</system>
234 
	<interfaces>
235 
		<wan>
236 
			<enable/>
237 
			<if>vtnet0</if>
238 
			<ipaddr>dhcp</ipaddr>
239 
			<ipaddrv6>dhcp6</ipaddrv6>
240 
			<gateway/>
241 
			<blockbogons>on</blockbogons>
242 
			<media/>
243 
			<mediaopt/>
244 
			<dhcp6-duid/>
245 
			<dhcp6-ia-pd-len>0</dhcp6-ia-pd-len>
246 
			<descr><![CDATA[WAN]]></descr>
247 
		</wan>
248 
		<lan>
249 
			<descr><![CDATA[IF1]]></descr>
250 
			<if>vtnet1</if>
251 
			<enable/>
252 
			<spoofmac/>
253 
		</lan>
254 
		<opt1>
255 
			<descr><![CDATA[IF2]]></descr>
256 
			<if>vtnet2</if>
257 
			<enable/>
258 
			<spoofmac/>
259 
		</opt1>
260 
		<opt2>
261 
			<descr><![CDATA[BR0]]></descr>
262 
			<if>bridge0</if>
263 
			<enable/>
264 
			<spoofmac/>
265 
			<ipaddr>192.168.16.1</ipaddr>
266 
			<subnet>24</subnet>
267 
		</opt2>
268 
	</interfaces>
269 
	<staticroutes/>
270 
	<dhcpd/>
271 
	<pptpd>
272 
		<mode/>
273 
		<redir/>
274 
		<localip/>
275 
		<remoteip/>
276 
	</pptpd>
277 
	<dnsmasq>
278 
		<enable/>
279 
	</dnsmasq>
280 
	<snmpd>
281 
		<syslocation/>
282 
		<syscontact/>
283 
		<rocommunity>public</rocommunity>
284 
	</snmpd>
285 
	<diag>
286 
		<ipv6nat>
287 
			<ipaddr/>
288 
		</ipv6nat>
289 
	</diag>
290 
	<bridge/>
291 
	<syslog/>
292 
	<filter>
293 
		<rule>
294 
			<id/>
295 
			<type>pass</type>
296 
			<ipprotocol>inet</ipprotocol>
297 
			<tag/>
298 
			<tagged/>
299 
			<direction>any</direction>
300 
			<quick>yes</quick>
301 
			<floating>yes</floating>
302 
			<max/>
303 
			<max-src-nodes/>
304 
			<max-src-conn/>
305 
			<max-src-states/>
306 
			<statetimeout/>
307 
			<statetype>keep state</statetype>
308 
			<os/>
309 
			<source>
310 
				<any/>
311 
			</source>
312 
			<destination>
313 
				<any/>
314 
			</destination>
315 
			<descr/>
316 
			<created>
317 
				<time>1375525718</time>
318 
				<username>admin@192.168.14.10</username>
319 
			</created>
320 
			<updated>
321 
				<time>1375525731</time>
322 
				<username>admin@192.168.14.10</username>
323 
			</updated>
324 
			<disabled/>
325 
		</rule>
326 
		<rule>
327 
			<id/>
328 
			<type>pass</type>
329 
			<ipprotocol>inet6</ipprotocol>
330 
			<tag/>
331 
			<tagged/>
332 
			<direction>any</direction>
333 
			<quick>yes</quick>
334 
			<floating>yes</floating>
335 
			<max/>
336 
			<max-src-nodes/>
337 
			<max-src-conn/>
338 
			<max-src-states/>
339 
			<statetimeout/>
340 
			<statetype>keep state</statetype>
341 
			<os/>
342 
			<source>
343 
				<any/>
344 
			</source>
345 
			<destination>
346 
				<any/>
347 
			</destination>
348 
			<descr/>
349 
			<updated>
350 
				<time>1375525738</time>
351 
				<username>admin@192.168.14.10</username>
352 
			</updated>
353 
			<created>
354 
				<time>1375525738</time>
355 
				<username>admin@192.168.14.10</username>
356 
			</created>
357 
			<disabled/>
358 
		</rule>
359 
		<rule>
360 
			<id/>
361 
			<type>pass</type>
362 
			<interface>wan</interface>
363 
			<ipprotocol>inet</ipprotocol>
364 
			<tag/>
365 
			<tagged/>
366 
			<max/>
367 
			<max-src-nodes/>
368 
			<max-src-conn/>
369 
			<max-src-states/>
370 
			<statetimeout/>
371 
			<statetype>keep state</statetype>
372 
			<os/>
373 
			<source>
374 
				<any/>
375 
			</source>
376 
			<destination>
377 
				<any/>
378 
			</destination>
379 
			<descr/>
380 
			<updated>
381 
				<time>1375525773</time>
382 
				<username>admin@192.168.14.10</username>
383 
			</updated>
384 
			<created>
385 
				<time>1375525773</time>
386 
				<username>admin@192.168.14.10</username>
387 
			</created>
388 
		</rule>
389 
		<rule>
390 
			<id/>
391 
			<type>pass</type>
392 
			<interface>wan</interface>
393 
			<ipprotocol>inet6</ipprotocol>
394 
			<tag/>
395 
			<tagged/>
396 
			<max/>
397 
			<max-src-nodes/>
398 
			<max-src-conn/>
399 
			<max-src-states/>
400 
			<statetimeout/>
401 
			<statetype>keep state</statetype>
402 
			<os/>
403 
			<source>
404 
				<any/>
405 
			</source>
406 
			<destination>
407 
				<any/>
408 
			</destination>
409 
			<descr/>
410 
			<updated>
411 
				<time>1375525779</time>
412 
				<username>admin@192.168.14.10</username>
413 
			</updated>
414 
			<created>
415 
				<time>1375525779</time>
416 
				<username>admin@192.168.14.10</username>
417 
			</created>
418 
		</rule>
419 
		<rule>
420 
			<id/>
421 
			<type>pass</type>
422 
			<interface>opt2</interface>
423 
			<ipprotocol>inet</ipprotocol>
424 
			<tag/>
425 
			<tagged/>
426 
			<max/>
427 
			<max-src-nodes/>
428 
			<max-src-conn/>
429 
			<max-src-states/>
430 
			<statetimeout/>
431 
			<statetype>keep state</statetype>
432 
			<os/>
433 
			<source>
434 
				<network>opt2</network>
435 
			</source>
436 
			<destination>
437 
				<any/>
438 
			</destination>
439 
			<descr/>
440 
			<updated>
441 
				<time>1375528727</time>
442 
				<username>admin@192.168.14.10</username>
443 
			</updated>
444 
			<created>
445 
				<time>1375528727</time>
446 
				<username>admin@192.168.14.10</username>
447 
			</created>
448 
		</rule>
449 
	</filter>
450 
	<ipsec/>
451 
	<aliases/>
452 
	<proxyarp/>
453 
	<cron>
454 
		<item>
455 
			<minute>0</minute>
456 
			<hour>*</hour>
457 
			<mday>*</mday>
458 
			<month>*</month>
459 
			<wday>*</wday>
460 
			<who>root</who>
461 
			<command>/usr/bin/nice -n20 newsyslog</command>
462 
		</item>
463 
		<item>
464 
			<minute>1,31</minute>
465 
			<hour>0-5</hour>
466 
			<mday>*</mday>
467 
			<month>*</month>
468 
			<wday>*</wday>
469 
			<who>root</who>
470 
			<command>/usr/bin/nice -n20 adjkerntz -a</command>
471 
		</item>
472 
		<item>
473 
			<minute>1</minute>
474 
			<hour>3</hour>
475 
			<mday>1</mday>
476 
			<month>*</month>
477 
			<wday>*</wday>
478 
			<who>root</who>
479 
			<command>/usr/bin/nice -n20 /etc/rc.update_bogons.sh</command>
480 
		</item>
481 
		<item>
482 
			<minute>*/60</minute>
483 
			<hour>*</hour>
484 
			<mday>*</mday>
485 
			<month>*</month>
486 
			<wday>*</wday>
487 
			<who>root</who>
488 
			<command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 sshlockout</command>
489 
		</item>
490 
		<item>
491 
			<minute>1</minute>
492 
			<hour>1</hour>
493 
			<mday>*</mday>
494 
			<month>*</month>
495 
			<wday>*</wday>
496 
			<who>root</who>
497 
			<command>/usr/bin/nice -n20 /etc/rc.dyndns.update</command>
498 
		</item>
499 
		<item>
500 
			<minute>*/60</minute>
501 
			<hour>*</hour>
502 
			<mday>*</mday>
503 
			<month>*</month>
504 
			<wday>*</wday>
505 
			<who>root</who>
506 
			<command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 virusprot</command>
507 
		</item>
508 
		<item>
509 
			<minute>30</minute>
510 
			<hour>12</hour>
511 
			<mday>*</mday>
512 
			<month>*</month>
513 
			<wday>*</wday>
514 
			<who>root</who>
515 
			<command>/usr/bin/nice -n20 /etc/rc.update_urltables</command>
516 
		</item>
517 
	</cron>
518 
	<wol/>
519 
	<rrd>
520 
		<enable/>
521 
	</rrd>
522 
	<load_balancer>
523 
		<monitor_type>
524 
			<name>ICMP</name>
525 
			<type>icmp</type>
526 
			<descr><![CDATA[ICMP]]></descr>
527 
			<options/>
528 
		</monitor_type>
529 
		<monitor_type>
530 
			<name>TCP</name>
531 
			<type>tcp</type>
532 
			<descr><![CDATA[Generic TCP]]></descr>
533 
			<options/>
534 
		</monitor_type>
535 
		<monitor_type>
536 
			<name>HTTP</name>
537 
			<type>http</type>
538 
			<descr><![CDATA[Generic HTTP]]></descr>
539 
			<options>
540 
				<path>/</path>
541 
				<host/>
542 
				<code>200</code>
543 
			</options>
544 
		</monitor_type>
545 
		<monitor_type>
546 
			<name>HTTPS</name>
547 
			<type>https</type>
548 
			<descr><![CDATA[Generic HTTPS]]></descr>
549 
			<options>
550 
				<path>/</path>
551 
				<host/>
552 
				<code>200</code>
553 
			</options>
554 
		</monitor_type>
555 
		<monitor_type>
556 
			<name>SMTP</name>
557 
			<type>send</type>
558 
			<descr><![CDATA[Generic SMTP]]></descr>
559 
			<options>
560 
				<send/>
561 
				<expect>220 *</expect>
562 
			</options>
563 
		</monitor_type>
564 
	</load_balancer>
565 
	<widgets>
566 
		<sequence>system_information-container:col1:show,captive_portal_status-container:col1:close,carp_status-container:col1:close,cpu_graphs-container:col1:close,gateways-container:col1:close,gmirror_status-container:col1:close,installed_packages-container:col1:close,interface_statistics-container:col1:close,interfaces-container:col2:show,ipsec-container:col2:close,load_balancer_status-container:col2:close,log-container:col2:close,picture-container:col2:close,rss-container:col2:close,services_status-container:col2:close,traffic_graphs-container:col2:close</sequence>
567 
	</widgets>
568 
	<revision>
569 
		<time>1375784320</time>
570 
		<description><![CDATA[admin@192.168.14.10: /interfaces.php made unknown change]]></description>
571 
		<username>admin@192.168.14.10</username>
572 
	</revision>
573 
	<openvpn/>
574 
	<l7shaper>
575 
		<container/>
576 
	</l7shaper>
577 
	<dnshaper/>
578 
	<cert>
579 
		<refid>51fcd9089438d</refid>
580 
		<descr><![CDATA[webConfigurator default]]></descr>
581 
		<crt>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</crt>
582 
		<prv>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</prv>
583 
	</cert>
584 
	<ppps>
585 
	</ppps>
586 
	<gateways>
587 
		<gateway_item>
588 
			<interface>lan</interface>
589 
			<gateway>192.168.18.254</gateway>
590 
			<name>IF1GW</name>
591 
			<weight/>
592 
			<ipprotocol>inet</ipprotocol>
593 
			<interval/>
594 
			<descr><![CDATA[gw1test]]></descr>
595 
		</gateway_item>
596 
		<gateway_item>
597 
			<interface>lan</interface>
598 
			<gateway>192.168.18.253</gateway>
599 
			<name>IF1GW2</name>
600 
			<weight/>
601 
			<ipprotocol>inet</ipprotocol>
602 
			<interval/>
603 
			<descr><![CDATA[gw2test]]></descr>
604 
			<defaultgw/>
605 
		</gateway_item>
606 
	</gateways>
607 
	<bridges>
608 
		<bridged>
609 
			<members>lan,opt1</members>
610 
			<descr><![CDATA[BR0]]></descr>
611 
			<maxaddr/>
612 
			<timeout/>
613 
			<maxage/>
614 
			<fwdelay/>
615 
			<hellotime/>
616 
			<priority/>
617 
			<proto>rstp</proto>
618 
			<holdcnt/>
619 
			<ifpriority/>
620 
			<ifpathcost/>
621 
			<bridgeif>bridge0</bridgeif>
622 
		</bridged>
623 
	</bridges>
624 
	<virtualip>
625 
		<vip>
626 
			<mode>ipalias</mode>
627 
			<interface>opt2</interface>
628 
			<descr><![CDATA[test-alias]]></descr>
629 
			<type>single</type>
630 
			<subnet_bits>24</subnet_bits>
631 
			<subnet>192.168.17.1</subnet>
632 
		</vip>
633 
	</virtualip>
634 
	<shaper/>
635 
</pfsense>
(1-1/9)