API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jul 11th, 2019
30
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.15 KB | None | 0 0
raw download clone embed print report
  1.  
  2. config defaults
  3. option input 'ACCEPT'
  4. option output 'ACCEPT'
  5. option forward 'REJECT'
  6. option drop_invalid '1'
  7. option synflood_protect '0'
  8. option tcp_syncookies '0'
  9. option tcp_ecn '1'
  10. option disable_ipv6 '1'
  11. option flow_offloading '1'
  12. option flow_offloading_hw '0'
  13.  
  14. config zone
  15. option name 'lan'
  16. option input 'ACCEPT'
  17. option output 'ACCEPT'
  18. option forward 'ACCEPT'
  19. option network 'wlan lan'
  20.  
  21. config zone
  22. option name 'wan'
  23. option input 'REJECT'
  24. option output 'ACCEPT'
  25. option forward 'REJECT'
  26. option masq '1'
  27. option mtu_fix '1'
  28. option network 'wan'
  29.  
  30. config forwarding
  31. option src 'lan'
  32. option dest 'wan'
  33.  
  34. config rule
  35. option name 'Allow-DHCP-Renew'
  36. option src 'wan'
  37. option proto 'udp'
  38. option dest_port '68'
  39. option target 'ACCEPT'
  40. option family 'ipv4'
  41.  
  42. config rule
  43. option name 'Allow-Ping'
  44. option src 'wan'
  45. option proto 'icmp'
  46. option icmp_type 'echo-request'
  47. option family 'ipv4'
  48. option target 'ACCEPT'
  49.  
  50. config rule
  51. option name 'Allow-IGMP'
  52. option src 'wan'
  53. option proto 'igmp'
  54. option family 'ipv4'
  55. option target 'ACCEPT'
  56.  
  57. config rule
  58. option name 'Allow-IPSec-ESP'
  59. option src 'wan'
  60. option dest 'lan'
  61. option proto 'esp'
  62. option target 'ACCEPT'
  63.  
  64. config rule
  65. option name 'Allow-ISAKMP'
  66. option src 'wan'
  67. option dest 'lan'
  68. option dest_port '500'
  69. option proto 'udp'
  70. option target 'ACCEPT'
  71.  
  72. config rule
  73. option target 'ACCEPT'
  74. option src 'wan'
  75. option proto 'tcp'
  76. option dest_port '5269 5280 5290 5222 5223 9000-9100'
  77. option name 'Dauntless TCP'
  78. option family 'ipv4'
  79.  
  80. config rule
  81. option target 'ACCEPT'
  82. option src 'wan'
  83. option proto 'udp'
  84. option dest_port '9000-9100'
  85. option name 'Dauntless UDP'
  86. option family 'ipv4'
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!