Révision e5c257d1
Ajouté par Thomas Noël il y a plus de 9 ans
conf.default/config.xml | ||
---|---|---|
719 | 719 |
</destination> |
720 | 720 |
<descr><![CDATA[SNMP (from WAN)]]></descr> |
721 | 721 |
</rule> |
722 |
|
|
723 |
<rule> |
|
724 |
<id/> |
|
725 |
<type>pass</type> |
|
726 |
<interface>lan</interface> |
|
727 |
<ipprotocol>inet</ipprotocol> |
|
728 |
<tag/> |
|
729 |
<tagged/> |
|
730 |
<max/> |
|
731 |
<max-src-nodes/> |
|
732 |
<max-src-conn/> |
|
733 |
<max-src-states/> |
|
734 |
<statetimeout/> |
|
735 |
<statetype>keep state</statetype> |
|
736 |
<os/> |
|
737 |
<protocol>tcp</protocol> |
|
738 |
<source> |
|
739 |
<any/> |
|
740 |
</source> |
|
741 |
<destination> |
|
742 |
<address>whitelist</address> |
|
743 |
<port>443</port> |
|
744 |
</destination> |
|
745 |
<descr><![CDATA[whitelist (auto update)]]></descr> |
|
746 |
</rule> |
|
747 |
<rule> |
|
748 |
<id/> |
|
749 |
<type>pass</type> |
|
750 |
<interface>lan</interface> |
|
751 |
<ipprotocol>inet</ipprotocol> |
|
752 |
<tag/> |
|
753 |
<tagged/> |
|
754 |
<max/> |
|
755 |
<max-src-nodes/> |
|
756 |
<max-src-conn/> |
|
757 |
<max-src-states/> |
|
758 |
<statetimeout/> |
|
759 |
<statetype>keep state</statetype> |
|
760 |
<os/> |
|
761 |
<protocol>tcp</protocol> |
|
762 |
<source> |
|
763 |
<any/> |
|
764 |
</source> |
|
765 |
<destination> |
|
766 |
<address>whitelist_local</address> |
|
767 |
<port>443</port> |
|
768 |
</destination> |
|
769 |
<descr><![CDATA[local whitelist]]></descr> |
|
770 |
</rule> |
|
771 |
|
|
772 | 722 |
<rule> |
773 | 723 |
<id/> |
774 | 724 |
<type>pass</type> |
... | ... | |
1491 | 1441 |
--> |
1492 | 1442 |
</ipsec> |
1493 | 1443 |
<aliases> |
1494 |
|
|
1495 |
<alias> |
|
1496 |
<name>whitelist</name> |
|
1497 |
<type>network</type> |
|
1498 |
<address>127.0.0.1/32</address> |
|
1499 |
<descr><![CDATA[DO NOT MODIFY THIS LIST ! Will be auto-updated]]></descr> |
|
1500 |
<detail/> |
|
1501 |
</alias> |
|
1502 |
<alias> |
|
1503 |
<name>whitelist_local</name> |
|
1504 |
<type>host</type> |
|
1505 |
<address>test.federation.renater.fr</address> |
|
1506 |
<descr><![CDATA[local whitelist]]></descr> |
|
1507 |
<detail><![CDATA[Federation Education-Recherche (Renater) - IdP de Test]]></detail> |
|
1508 |
</alias> |
|
1509 |
|
|
1510 | 1444 |
<alias> |
1511 | 1445 |
<name>SMTPS</name> |
1512 | 1446 |
<address>465 587</address> |
Formats disponibles : Unified diff
config.xml: no whitelist in firewall