Project

General

Profile

config-pfsense.localdomain-20130811093828.xml

configuration backup - Zeev Zalessky, 08/11/2013 01:34 AM

 
1
<?xml version="1.0"?>
2
<pfsense>
3
        <version>9.7</version>
4
        <lastchange/>
5
        <theme>pfsense_ng</theme>
6
        <sysctl>
7
                <item>
8
                        <descr><![CDATA[Enable mounting the FS read only with more checks.]]></descr>
9
                        <tunable>vfs.forcesync</tunable>
10
                        <value>default</value>
11
                </item>
12
                <item>
13
                        <descr><![CDATA[Disable the pf ftp proxy handler.]]></descr>
14
                        <tunable>debug.pfftpproxy</tunable>
15
                        <value>default</value>
16
                </item>
17
                <item>
18
                        <descr><![CDATA[Increase UFS read-ahead speeds to match current state of hard drives and NCQ. More information here: http://ivoras.sharanet.org/blog/tree/2010-11-19.ufs-read-ahead.html]]></descr>
19
                        <tunable>vfs.read_max</tunable>
20
                        <value>default</value>
21
                </item>
22
                <item>
23
                        <descr><![CDATA[Set the ephemeral port range to be lower.]]></descr>
24
                        <tunable>net.inet.ip.portrange.first</tunable>
25
                        <value>default</value>
26
                </item>
27
                <item>
28
                        <descr><![CDATA[Drop packets to closed TCP ports without returning a RST]]></descr>
29
                        <tunable>net.inet.tcp.blackhole</tunable>
30
                        <value>default</value>
31
                </item>
32
                <item>
33
                        <descr><![CDATA[Do not send ICMP port unreachable messages for closed UDP ports]]></descr>
34
                        <tunable>net.inet.udp.blackhole</tunable>
35
                        <value>default</value>
36
                </item>
37
                <item>
38
                        <descr><![CDATA[Randomize the ID field in IP packets (default is 0: sequential IP IDs)]]></descr>
39
                        <tunable>net.inet.ip.random_id</tunable>
40
                        <value>default</value>
41
                </item>
42
                <item>
43
                        <descr><![CDATA[Drop SYN-FIN packets (breaks RFC1379, but nobody uses it anyway)]]></descr>
44
                        <tunable>net.inet.tcp.drop_synfin</tunable>
45
                        <value>default</value>
46
                </item>
47
                <item>
48
                        <descr><![CDATA[Enable sending IPv4 redirects]]></descr>
49
                        <tunable>net.inet.ip.redirect</tunable>
50
                        <value>default</value>
51
                </item>
52
                <item>
53
                        <descr><![CDATA[Enable sending IPv6 redirects]]></descr>
54
                        <tunable>net.inet6.ip6.redirect</tunable>
55
                        <value>default</value>
56
                </item>
57
                <item>
58
                        <descr><![CDATA[Enable privacy settings for IPv6 (RFC 4941)]]></descr>
59
                        <tunable>net.inet6.ip6.use_tempaddr</tunable>
60
                        <value>default</value>
61
                </item>
62
                <item>
63
                        <descr><![CDATA[Prefer privacy addresses and use them over the normal addresses]]></descr>
64
                        <tunable>net.inet6.ip6.prefer_tempaddr</tunable>
65
                        <value>default</value>
66
                </item>
67
                <item>
68
                        <descr><![CDATA[Generate SYN cookies for outbound SYN-ACK packets]]></descr>
69
                        <tunable>net.inet.tcp.syncookies</tunable>
70
                        <value>default</value>
71
                </item>
72
                <item>
73
                        <descr><![CDATA[Maximum incoming/outgoing TCP datagram size (receive)]]></descr>
74
                        <tunable>net.inet.tcp.recvspace</tunable>
75
                        <value>default</value>
76
                </item>
77
                <item>
78
                        <descr><![CDATA[Maximum incoming/outgoing TCP datagram size (send)]]></descr>
79
                        <tunable>net.inet.tcp.sendspace</tunable>
80
                        <value>default</value>
81
                </item>
82
                <item>
83
                        <descr><![CDATA[IP Fastforwarding]]></descr>
84
                        <tunable>net.inet.ip.fastforwarding</tunable>
85
                        <value>default</value>
86
                </item>
87
                <item>
88
                        <descr><![CDATA[Do not delay ACK to try and piggyback it onto a data packet]]></descr>
89
                        <tunable>net.inet.tcp.delayed_ack</tunable>
90
                        <value>default</value>
91
                </item>
92
                <item>
93
                        <descr><![CDATA[Maximum outgoing UDP datagram size]]></descr>
94
                        <tunable>net.inet.udp.maxdgram</tunable>
95
                        <value>default</value>
96
                </item>
97
                <item>
98
                        <descr><![CDATA[Handling of non-IP packets which are not passed to pfil (see if_bridge(4))]]></descr>
99
                        <tunable>net.link.bridge.pfil_onlyip</tunable>
100
                        <value>default</value>
101
                </item>
102
                <item>
103
                        <descr><![CDATA[Set to 0 to disable filtering on the incoming and outgoing member interfaces.]]></descr>
104
                        <tunable>net.link.bridge.pfil_member</tunable>
105
                        <value>default</value>
106
                </item>
107
                <item>
108
                        <descr><![CDATA[Set to 1 to enable filtering on the bridge interface]]></descr>
109
                        <tunable>net.link.bridge.pfil_bridge</tunable>
110
                        <value>default</value>
111
                </item>
112
                <item>
113
                        <descr><![CDATA[Allow unprivileged access to tap(4) device nodes]]></descr>
114
                        <tunable>net.link.tap.user_open</tunable>
115
                        <value>default</value>
116
                </item>
117
                <item>
118
                        <descr><![CDATA[Randomize PID's (see src/sys/kern/kern_fork.c: sysctl_kern_randompid())]]></descr>
119
                        <tunable>kern.randompid</tunable>
120
                        <value>default</value>
121
                </item>
122
                <item>
123
                        <descr><![CDATA[Maximum size of the IP input queue]]></descr>
124
                        <tunable>net.inet.ip.intr_queue_maxlen</tunable>
125
                        <value>default</value>
126
                </item>
127
                <item>
128
                        <descr><![CDATA[Disable CTRL+ALT+Delete reboot from keyboard.]]></descr>
129
                        <tunable>hw.syscons.kbd_reboot</tunable>
130
                        <value>default</value>
131
                </item>
132
                <item>
133
                        <descr><![CDATA[Enable TCP Inflight mode]]></descr>
134
                        <tunable>net.inet.tcp.inflight.enable</tunable>
135
                        <value>default</value>
136
                </item>
137
                <item>
138
                        <descr><![CDATA[Enable TCP extended debugging]]></descr>
139
                        <tunable>net.inet.tcp.log_debug</tunable>
140
                        <value>default</value>
141
                </item>
142
                <item>
143
                        <descr><![CDATA[Set ICMP Limits]]></descr>
144
                        <tunable>net.inet.icmp.icmplim</tunable>
145
                        <value>default</value>
146
                </item>
147
                <item>
148
                        <descr><![CDATA[TCP Offload Engine]]></descr>
149
                        <tunable>net.inet.tcp.tso</tunable>
150
                        <value>default</value>
151
                </item>
152
                <item>
153
                        <descr><![CDATA[UDP Checksums]]></descr>
154
                        <tunable>net.inet.udp.checksum</tunable>
155
                        <value>default</value>
156
                </item>
157
                <item>
158
                        <descr><![CDATA[Maximum socket buffer size]]></descr>
159
                        <tunable>kern.ipc.maxsockbuf</tunable>
160
                        <value>default</value>
161
                </item>
162
        </sysctl>
163
        <system>
164
                <optimization>normal</optimization>
165
                <hostname>pfsense</hostname>
166
                <domain>localdomain</domain>
167
                <group>
168
                        <name>all</name>
169
                        <description><![CDATA[All Users]]></description>
170
                        <scope>system</scope>
171
                        <gid>1998</gid>
172
                        <member>0</member>
173
                </group>
174
                <group>
175
                        <name>admins</name>
176
                        <description><![CDATA[System Administrators]]></description>
177
                        <scope>system</scope>
178
                        <gid>1999</gid>
179
                        <member>0</member>
180
                        <priv>page-all</priv>
181
                </group>
182
                <user>
183
                        <name>admin</name>
184
                        <descr><![CDATA[System Administrator]]></descr>
185
                        <scope>system</scope>
186
                        <groupname>admins</groupname>
187
                        <password>$1$dSJImFph$GvZ7.1UbuWu.Yb8etC0re.</password>
188
                        <uid>0</uid>
189
                        <priv>user-shell-access</priv>
190
                </user>
191
                <nextuid>2000</nextuid>
192
                <nextgid>2000</nextgid>
193
                <timezone>Asia/Jerusalem</timezone>
194
                <time-update-interval/>
195
                <timeservers>0.pfsense.pool.ntp.org</timeservers>
196
                <webgui>
197
                        <protocol>http</protocol>
198
                        <ssl-certref>5200f0f044bfe</ssl-certref>
199
                        <port/>
200
                        <max_procs>2</max_procs>
201
                </webgui>
202
                <disablesegmentationoffloading/>
203
                <disablelargereceiveoffloading/>
204
                <ipv6allow/>
205
                <powerd_ac_mode>hadp</powerd_ac_mode>
206
                <powerd_battery_mode>hadp</powerd_battery_mode>
207
                <bogons>
208
                        <interval>monthly</interval>
209
                </bogons>
210
                <serialspeed>9600</serialspeed>
211
                <enablesshd>enabled</enablesshd>
212
                <language>en_US</language>
213
                <dnsserver>10.61.240.121</dnsserver>
214
                <dnsserver>10.61.240.131</dnsserver>
215
                <dns1gw>none</dns1gw>
216
                <dns2gw>none</dns2gw>
217
                <dns3gw>none</dns3gw>
218
                <dns4gw>none</dns4gw>
219
                <firmware>
220
                        <alturl>
221
                                <enable/>
222
                                <firmwareurl>http://snapshots.pfsense.org/FreeBSD_RELENG_8_3/amd64/pfSense_RELENG_2_1/.updaters</firmwareurl>
223
                        </alturl>
224
                        <allowinvalidsig/>
225
                </firmware>
226
                <gitsync>
227
                        <repositoryurl/>
228
                        <branch/>
229
                </gitsync>
230
                <lb_use_sticky/>
231
                <srctrack/>
232
                <thermal_hardware>coretemp</thermal_hardware>
233
                <use_mfs_tmp_size/>
234
                <use_mfs_var_size/>
235
                <scrubnodf>enabled</scrubnodf>
236
                <scrubrnid>enabled</scrubrnid>
237
                <maximumstates/>
238
                <aliasesresolveinterval/>
239
                <maximumtables/>
240
                <maximumtableentries/>
241
                <enablenatreflectionpurenat>yes</enablenatreflectionpurenat>
242
                <enablebinatreflection>yes</enablebinatreflection>
243
                <enablenatreflectionhelper>yes</enablenatreflectionhelper>
244
                <reflectiontimeout/>
245
                <disablescrub>yes</disablescrub>
246
        </system>
247
        <interfaces>
248
                <wan>
249
                        <enable/>
250
                        <if>lagg1</if>
251
                        <ipaddr>10.165.128.211</ipaddr>
252
                        <ipaddrv6/>
253
                        <subnet>24</subnet>
254
                        <gateway>GW_WAN_2</gateway>
255
                        <media/>
256
                        <mediaopt/>
257
                        <dhcp6-duid/>
258
                        <dhcp6-ia-pd-len>0</dhcp6-ia-pd-len>
259
                        <subnetv6/>
260
                        <gatewayv6/>
261
                        <descr><![CDATA[WAN]]></descr>
262
                </wan>
263
                <lan>
264
                        <descr><![CDATA[LAN]]></descr>
265
                        <if>bce1</if>
266
                        <ipaddr>192.168.100.1</ipaddr>
267
                        <subnet>24</subnet>
268
                        <gateway/>
269
                        <ipaddrv6/>
270
                        <subnetv6/>
271
                        <gatewayv6/>
272
                        <enable/>
273
                </lan>
274
        </interfaces>
275
        <staticroutes/>
276
        <dhcpd/>
277
        <pptpd>
278
                <mode/>
279
                <redir/>
280
                <localip/>
281
                <remoteip/>
282
        </pptpd>
283
        <dnsmasq>
284
                <enable/>
285
        </dnsmasq>
286
        <snmpd>
287
                <syslocation/>
288
                <syscontact/>
289
                <rocommunity>public</rocommunity>
290
        </snmpd>
291
        <diag>
292
                <ipv6nat/>
293
        </diag>
294
        <bridge/>
295
        <syslog>
296
                <reverse/>
297
                <nentries>500</nentries>
298
                <nologdefaultblock/>
299
                <nologbogons/>
300
                <nologprivatenets/>
301
                <filterdescriptions>2</filterdescriptions>
302
        </syslog>
303
        <filter>
304
                <rule>
305
                        <id/>
306
                        <type>pass</type>
307
                        <interface>wan</interface>
308
                        <ipprotocol>inet</ipprotocol>
309
                        <tag/>
310
                        <tagged/>
311
                        <max/>
312
                        <max-src-nodes/>
313
                        <max-src-conn/>
314
                        <max-src-states/>
315
                        <statetimeout/>
316
                        <statetype>keep state</statetype>
317
                        <os/>
318
                        <source>
319
                                <any/>
320
                        </source>
321
                        <destination>
322
                                <any/>
323
                        </destination>
324
                        <descr/>
325
                        <updated>
326
                                <time>1375794641</time>
327
                                <username>admin@192.168.100.3</username>
328
                        </updated>
329
                        <created>
330
                                <time>1375794641</time>
331
                                <username>admin@192.168.100.3</username>
332
                        </created>
333
                </rule>
334
                <rule>
335
                        <id/>
336
                        <type>pass</type>
337
                        <interface>lan</interface>
338
                        <ipprotocol>inet</ipprotocol>
339
                        <tag/>
340
                        <tagged/>
341
                        <max/>
342
                        <max-src-nodes/>
343
                        <max-src-conn/>
344
                        <max-src-states/>
345
                        <statetimeout/>
346
                        <statetype>keep state</statetype>
347
                        <os/>
348
                        <source>
349
                                <any/>
350
                        </source>
351
                        <destination>
352
                                <any/>
353
                        </destination>
354
                        <descr><![CDATA[Default allow LAN to any rule]]></descr>
355
                        <updated>
356
                                <time>1375859627</time>
357
                                <username>admin@192.168.100.3</username>
358
                        </updated>
359
                </rule>
360
                <rule>
361
                        <id/>
362
                        <type>pass</type>
363
                        <interface>lan</interface>
364
                        <ipprotocol>inet6</ipprotocol>
365
                        <tag/>
366
                        <tagged/>
367
                        <max/>
368
                        <max-src-nodes/>
369
                        <max-src-conn/>
370
                        <max-src-states/>
371
                        <statetimeout/>
372
                        <statetype>keep state</statetype>
373
                        <os/>
374
                        <source>
375
                                <any/>
376
                        </source>
377
                        <destination>
378
                                <any/>
379
                        </destination>
380
                        <descr><![CDATA[Default allow LAN IPv6 to any rule]]></descr>
381
                        <updated>
382
                                <time>1375859638</time>
383
                                <username>admin@192.168.100.3</username>
384
                        </updated>
385
                </rule>
386
        </filter>
387
        <ipsec/>
388
        <aliases/>
389
        <proxyarp/>
390
        <cron>
391
                <item>
392
                        <minute>0</minute>
393
                        <hour>*</hour>
394
                        <mday>*</mday>
395
                        <month>*</month>
396
                        <wday>*</wday>
397
                        <who>root</who>
398
                        <command>/usr/bin/nice -n20 newsyslog</command>
399
                </item>
400
                <item>
401
                        <minute>1,31</minute>
402
                        <hour>0-5</hour>
403
                        <mday>*</mday>
404
                        <month>*</month>
405
                        <wday>*</wday>
406
                        <who>root</who>
407
                        <command>/usr/bin/nice -n20 adjkerntz -a</command>
408
                </item>
409
                <item>
410
                        <minute>1</minute>
411
                        <hour>3</hour>
412
                        <mday>1</mday>
413
                        <month>*</month>
414
                        <wday>*</wday>
415
                        <who>root</who>
416
                        <command>/usr/bin/nice -n20 /etc/rc.update_bogons.sh</command>
417
                </item>
418
                <item>
419
                        <minute>*/60</minute>
420
                        <hour>*</hour>
421
                        <mday>*</mday>
422
                        <month>*</month>
423
                        <wday>*</wday>
424
                        <who>root</who>
425
                        <command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 sshlockout</command>
426
                </item>
427
                <item>
428
                        <minute>1</minute>
429
                        <hour>1</hour>
430
                        <mday>*</mday>
431
                        <month>*</month>
432
                        <wday>*</wday>
433
                        <who>root</who>
434
                        <command>/usr/bin/nice -n20 /etc/rc.dyndns.update</command>
435
                </item>
436
                <item>
437
                        <minute>*/60</minute>
438
                        <hour>*</hour>
439
                        <mday>*</mday>
440
                        <month>*</month>
441
                        <wday>*</wday>
442
                        <who>root</who>
443
                        <command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 virusprot</command>
444
                </item>
445
                <item>
446
                        <minute>30</minute>
447
                        <hour>12</hour>
448
                        <mday>*</mday>
449
                        <month>*</month>
450
                        <wday>*</wday>
451
                        <who>root</who>
452
                        <command>/usr/bin/nice -n20 /etc/rc.update_urltables</command>
453
                </item>
454
        </cron>
455
        <wol/>
456
        <rrd>
457
                <enable/>
458
        </rrd>
459
        <load_balancer>
460
                <monitor_type>
461
                        <name>ICMP</name>
462
                        <type>icmp</type>
463
                        <descr><![CDATA[ICMP]]></descr>
464
                        <options/>
465
                </monitor_type>
466
                <monitor_type>
467
                        <name>TCP</name>
468
                        <type>tcp</type>
469
                        <descr><![CDATA[Generic TCP]]></descr>
470
                        <options/>
471
                </monitor_type>
472
                <monitor_type>
473
                        <name>HTTP</name>
474
                        <type>http</type>
475
                        <descr><![CDATA[Generic HTTP]]></descr>
476
                        <options>
477
                                <path>/</path>
478
                                <host/>
479
                                <code>200</code>
480
                        </options>
481
                </monitor_type>
482
                <monitor_type>
483
                        <name>HTTPS</name>
484
                        <type>https</type>
485
                        <descr><![CDATA[Generic HTTPS]]></descr>
486
                        <options>
487
                                <path>/</path>
488
                                <host/>
489
                                <code>200</code>
490
                        </options>
491
                </monitor_type>
492
                <monitor_type>
493
                        <name>SMTP</name>
494
                        <type>send</type>
495
                        <descr><![CDATA[Generic SMTP]]></descr>
496
                        <options>
497
                                <send/>
498
                                <expect>220 *</expect>
499
                        </options>
500
                </monitor_type>
501
        </load_balancer>
502
        <widgets>
503
                <sequence>system_information-container:col1:show,captive_portal_status-container:col1:close,carp_status-container:col1:close,cpu_graphs-container:col1:close,gateways-container:col1:close,gmirror_status-container:col1:close,installed_packages-container:col1:close,interface_statistics-container:col1:close,interfaces-container:col2:show,ipsec-container:col2:close,load_balancer_status-container:col2:close,log-container:col2:close,picture-container:col2:close,rss-container:col2:close,services_status-container:col2:close,traffic_graphs-container:col2:show,dyn_dns_status-container:col2:none,openvpn-container:col2:none,smart_status-container:col2:none,thermal_sensors-container:col2:show,wake_on_lan-container:col2:none</sequence>
504
        </widgets>
505
        <revision>
506
                <time>1376201857</time>
507
                <description><![CDATA[(system): Installed iperf package.]]></description>
508
                <username>(system)</username>
509
        </revision>
510
        <openvpn/>
511
        <l7shaper>
512
                <container/>
513
        </l7shaper>
514
        <dnshaper/>
515
        <cert>
516
                <refid>5200f0f044bfe</refid>
517
                <descr><![CDATA[webConfigurator default]]></descr>
518
                <crt>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</crt>
519
                <prv>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</prv>
520
        </cert>
521
        <gateways>
522
                <gateway_item>
523
                        <interface>wan</interface>
524
                        <gateway>10.165.128.210</gateway>
525
                        <name>GW_WAN_2</name>
526
                        <weight>1</weight>
527
                        <ipprotocol>inet</ipprotocol>
528
                        <interval/>
529
                        <descr><![CDATA[Interface wan Gateway]]></descr>
530
                        <defaultgw/>
531
                </gateway_item>
532
        </gateways>
533
        <dhcpdv6/>
534
        <wizardtemp>
535
                <system>
536
                        <hostname>pfSense</hostname>
537
                        <domain>localdomain</domain>
538
                </system>
539
                <wangateway>192.168.100.3</wangateway>
540
        </wizardtemp>
541
        <ppps/>
542
        <shaper/>
543
        <laggs>
544
                <lagg>
545
                        <members>ix0,ix1</members>
546
                        <descr><![CDATA[LAN]]></descr>
547
                        <laggif>lagg0</laggif>
548
                        <proto>lacp</proto>
549
                </lagg>
550
                <lagg>
551
                        <members>ix2,ix3</members>
552
                        <descr><![CDATA[WAN]]></descr>
553
                        <laggif>lagg1</laggif>
554
                        <proto>lacp</proto>
555
                </lagg>
556
        </laggs>
557
        <nat>
558
                <advancedoutbound>
559
                        <rule>
560
                                <source>
561
                                        <network>192.168.100.0/24</network>
562
                                </source>
563
                                <dstport>500</dstport>
564
                                <descr><![CDATA[Auto created rule for ISAKMP - LAN to WAN]]></descr>
565
                                <target/>
566
                                <interface>wan</interface>
567
                                <destination>
568
                                        <any/>
569
                                </destination>
570
                                <staticnatport/>
571
                                <created>
572
                                        <time>1375795317</time>
573
                                        <username>Manual Outbound NAT Switch</username>
574
                                </created>
575
                        </rule>
576
                        <rule>
577
                                <source>
578
                                        <network>192.168.100.0/24</network>
579
                                </source>
580
                                <sourceport/>
581
                                <descr><![CDATA[Auto created rule for LAN to WAN]]></descr>
582
                                <target/>
583
                                <interface>wan</interface>
584
                                <destination>
585
                                        <any/>
586
                                </destination>
587
                                <natport/>
588
                                <created>
589
                                        <time>1375795317</time>
590
                                        <username>Manual Outbound NAT Switch</username>
591
                                </created>
592
                        </rule>
593
                        <rule>
594
                                <source>
595
                                        <network>127.0.0.0/8</network>
596
                                </source>
597
                                <dstport/>
598
                                <descr><![CDATA[Auto created rule for localhost to WAN]]></descr>
599
                                <target/>
600
                                <interface>wan</interface>
601
                                <destination>
602
                                        <any/>
603
                                </destination>
604
                                <natport>1024:65535</natport>
605
                                <created>
606
                                        <time>1375795317</time>
607
                                        <username>Manual Outbound NAT Switch</username>
608
                                </created>
609
                        </rule>
610
                        <enable/>
611
                </advancedoutbound>
612
        </nat>
613
        <installedpackages>
614
                <package>
615
                        <name>iperf</name>
616
                        <website>http://dast.nlanr.net/Projects/Iperf/</website>
617
                        <descr><![CDATA[Iperf is a tool for testing network throughput, loss, and jitter.]]></descr>
618
                        <category>Network Management</category>
619
                        <config_file>http://www.pfsense.com/packages/config/iperf.xml</config_file>
620
                        <depends_on_package_base_url>http://files.pfsense.org/packages/amd64/8/All/</depends_on_package_base_url>
621
                        <depends_on_package>iperf-2.0.5.tbz</depends_on_package>
622
                        <depends_on_package_pbi>iperf-2.0.5-amd64.pbi</depends_on_package_pbi>
623
                        <version>2.0.5</version>
624
                        <status>Beta</status>
625
                        <pkginfolink>http://doc.pfsense.org/index.php/Iperf_package</pkginfolink>
626
                        <required_version>1.2.1</required_version>
627
                        <configurationfile>iperf.xml</configurationfile>
628
                        <build_port_path>/usr/ports/benchmarks/iperf</build_port_path>
629
                </package>
630
                <menu>
631
                        <name>iperf</name>
632
                        <tooltiptext>Run iperf in client or server mode.</tooltiptext>
633
                        <section>Diagnostics</section>
634
                        <configfile>iperf.xml</configfile>
635
                </menu>
636
                <tab>
637
                        <text>Client</text>
638
                        <url>/pkg_edit.php?xml=iperf.xml&amp;id=0</url>
639
                        <active/>
640
                </tab>
641
                <service>
642
                        <name>iperf</name>
643
                        <executable>iperf</executable>
644
                </service>
645
        </installedpackages>
646
        <dhcrelay/>
647
        <dhcrelay6/>
648
</pfsense>