Révision e5c257d1
Ajouté par Thomas Noël il y a plus de 9 ans
| conf.default/config.xml | ||
|---|---|---|
| 719 | 719 |
</destination> |
| 720 | 720 |
<descr><![CDATA[SNMP (from WAN)]]></descr> |
| 721 | 721 |
</rule> |
| 722 |
|
|
| 723 |
<rule> |
|
| 724 |
<id/> |
|
| 725 |
<type>pass</type> |
|
| 726 |
<interface>lan</interface> |
|
| 727 |
<ipprotocol>inet</ipprotocol> |
|
| 728 |
<tag/> |
|
| 729 |
<tagged/> |
|
| 730 |
<max/> |
|
| 731 |
<max-src-nodes/> |
|
| 732 |
<max-src-conn/> |
|
| 733 |
<max-src-states/> |
|
| 734 |
<statetimeout/> |
|
| 735 |
<statetype>keep state</statetype> |
|
| 736 |
<os/> |
|
| 737 |
<protocol>tcp</protocol> |
|
| 738 |
<source> |
|
| 739 |
<any/> |
|
| 740 |
</source> |
|
| 741 |
<destination> |
|
| 742 |
<address>whitelist</address> |
|
| 743 |
<port>443</port> |
|
| 744 |
</destination> |
|
| 745 |
<descr><![CDATA[whitelist (auto update)]]></descr> |
|
| 746 |
</rule> |
|
| 747 |
<rule> |
|
| 748 |
<id/> |
|
| 749 |
<type>pass</type> |
|
| 750 |
<interface>lan</interface> |
|
| 751 |
<ipprotocol>inet</ipprotocol> |
|
| 752 |
<tag/> |
|
| 753 |
<tagged/> |
|
| 754 |
<max/> |
|
| 755 |
<max-src-nodes/> |
|
| 756 |
<max-src-conn/> |
|
| 757 |
<max-src-states/> |
|
| 758 |
<statetimeout/> |
|
| 759 |
<statetype>keep state</statetype> |
|
| 760 |
<os/> |
|
| 761 |
<protocol>tcp</protocol> |
|
| 762 |
<source> |
|
| 763 |
<any/> |
|
| 764 |
</source> |
|
| 765 |
<destination> |
|
| 766 |
<address>whitelist_local</address> |
|
| 767 |
<port>443</port> |
|
| 768 |
</destination> |
|
| 769 |
<descr><![CDATA[local whitelist]]></descr> |
|
| 770 |
</rule> |
|
| 771 |
|
|
| 772 | 722 |
<rule> |
| 773 | 723 |
<id/> |
| 774 | 724 |
<type>pass</type> |
| ... | ... | |
| 1491 | 1441 |
--> |
| 1492 | 1442 |
</ipsec> |
| 1493 | 1443 |
<aliases> |
| 1494 |
|
|
| 1495 |
<alias> |
|
| 1496 |
<name>whitelist</name> |
|
| 1497 |
<type>network</type> |
|
| 1498 |
<address>127.0.0.1/32</address> |
|
| 1499 |
<descr><![CDATA[DO NOT MODIFY THIS LIST ! Will be auto-updated]]></descr> |
|
| 1500 |
<detail/> |
|
| 1501 |
</alias> |
|
| 1502 |
<alias> |
|
| 1503 |
<name>whitelist_local</name> |
|
| 1504 |
<type>host</type> |
|
| 1505 |
<address>test.federation.renater.fr</address> |
|
| 1506 |
<descr><![CDATA[local whitelist]]></descr> |
|
| 1507 |
<detail><![CDATA[Federation Education-Recherche (Renater) - IdP de Test]]></detail> |
|
| 1508 |
</alias> |
|
| 1509 |
|
|
| 1510 | 1444 |
<alias> |
| 1511 | 1445 |
<name>SMTPS</name> |
| 1512 | 1446 |
<address>465 587</address> |
Formats disponibles : Unified diff
config.xml: no whitelist in firewall