API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Mar 31st, 2020
180
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 5.35 KB | None | 0 0
raw download clone embed print report
  1. firewall.@defaults[0]=defaults
  2. firewall.@defaults[0].syn_flood='1'
  3. firewall.@defaults[0].input='ACCEPT'
  4. firewall.@defaults[0].output='ACCEPT'
  5. firewall.@defaults[0].forward='REJECT'
  6. firewall.@zone[0]=zone
  7. firewall.@zone[0].name='lan'
  8. firewall.@zone[0].input='ACCEPT'
  9. firewall.@zone[0].output='ACCEPT'
  10. firewall.@zone[0].forward='ACCEPT'
  11. firewall.@zone[0].network='lan'
  12. firewall.@zone[1]=zone
  13. firewall.@zone[1].name='wan'
  14. firewall.@zone[1].input='REJECT'
  15. firewall.@zone[1].output='ACCEPT'
  16. firewall.@zone[1].forward='REJECT'
  17. firewall.@zone[1].masq='1'
  18. firewall.@zone[1].mtu_fix='1'
  19. firewall.@zone[1].network='wan'
  20. firewall.@forwarding[0]=forwarding
  21. firewall.@forwarding[0].src='lan'
  22. firewall.@forwarding[0].dest='wan'
  23. firewall.@rule[0]=rule
  24. firewall.@rule[0].name='Allow-DHCP-Renew'
  25. firewall.@rule[0].src='wan'
  26. firewall.@rule[0].proto='udp'
  27. firewall.@rule[0].dest_port='68'
  28. firewall.@rule[0].target='ACCEPT'
  29. firewall.@rule[0].family='ipv4'
  30. firewall.@rule[1]=rule
  31. firewall.@rule[1].name='Allow-Ping'
  32. firewall.@rule[1].src='wan'
  33. firewall.@rule[1].proto='icmp'
  34. firewall.@rule[1].icmp_type='echo-request'
  35. firewall.@rule[1].family='ipv4'
  36. firewall.@rule[1].target='ACCEPT'
  37. firewall.@rule[2]=rule
  38. firewall.@rule[2].name='Allow-IGMP'
  39. firewall.@rule[2].src='wan'
  40. firewall.@rule[2].proto='igmp'
  41. firewall.@rule[2].family='ipv4'
  42. firewall.@rule[2].target='ACCEPT'
  43. firewall.@rule[3]=rule
  44. firewall.@rule[3].name='Allow-DHCPv6'
  45. firewall.@rule[3].src='wan'
  46. firewall.@rule[3].proto='udp'
  47. firewall.@rule[3].src_ip='fc00::/6'
  48. firewall.@rule[3].dest_ip='fc00::/6'
  49. firewall.@rule[3].dest_port='546'
  50. firewall.@rule[3].family='ipv6'
  51. firewall.@rule[3].target='ACCEPT'
  52. firewall.@rule[4]=rule
  53. firewall.@rule[4].name='Allow-MLD'
  54. firewall.@rule[4].src='wan'
  55. firewall.@rule[4].proto='icmp'
  56. firewall.@rule[4].src_ip='fe80::/10'
  57. firewall.@rule[4].icmp_type='130/0' '131/0' '132/0' '143/0'
  58. firewall.@rule[4].family='ipv6'
  59. firewall.@rule[4].target='ACCEPT'
  60. firewall.@rule[5]=rule
  61. firewall.@rule[5].name='Allow-ICMPv6-Input'
  62. firewall.@rule[5].src='wan'
  63. firewall.@rule[5].proto='icmp'
  64. firewall.@rule[5].icmp_type='echo-request' 'echo-reply' 'destination-unreachable ' 'packet-too-big' 'time-exceeded' 'bad-header' 'unknown-header-type' 'router-so licitation' 'neighbour-solicitation' 'router-advertisement' 'neighbour-advertise ment'
  65. firewall.@rule[5].limit='1000/sec'
  66. firewall.@rule[5].family='ipv6'
  67. firewall.@rule[5].target='ACCEPT'
  68. firewall.@rule[6]=rule
  69. firewall.@rule[6].name='Allow-ICMPv6-Forward'
  70. firewall.@rule[6].src='wan'
  71. firewall.@rule[6].dest='*'
  72. firewall.@rule[6].proto='icmp'
  73. firewall.@rule[6].icmp_type='echo-request' 'echo-reply' 'destination-unreachable ' 'packet-too-big' 'time-exceeded' 'bad-header' 'unknown-header-type'
  74. firewall.@rule[6].limit='1000/sec'
  75. firewall.@rule[6].family='ipv6'
  76. firewall.@rule[6].target='ACCEPT'
  77. firewall.@rule[7]=rule
  78. firewall.@rule[7].name='Allow-IPSec-ESP'
  79. firewall.@rule[7].src='wan'
  80. firewall.@rule[7].dest='lan'
  81. firewall.@rule[7].proto='esp'
  82. firewall.@rule[7].target='ACCEPT'
  83. firewall.@rule[8]=rule
  84. firewall.@rule[8].name='Allow-ISAKMP'
  85. firewall.@rule[8].src='wan'
  86. firewall.@rule[8].dest='lan'
  87. firewall.@rule[8].dest_port='500'
  88. firewall.@rule[8].proto='udp'
  89. firewall.@rule[8].target='ACCEPT'
  90. firewall.@include[0]=include
  91. firewall.@include[0].path='/etc/firewall.user'
  92. firewall.@zone[2]=zone
  93. firewall.@zone[2].name='guest'
  94. firewall.@zone[2].input='REJECT'
  95. firewall.@zone[2].output='ACCEPT'
  96. firewall.@zone[2].forward='REJECT'
  97. firewall.@zone[2].network='guest'
  98. firewall.@forwarding[1]=forwarding
  99. firewall.@forwarding[1].src='guest'
  100. firewall.@forwarding[1].dest='wan'
  101. firewall.@rule[9]=rule
  102. firewall.@rule[9].src='guest'
  103. firewall.@rule[9].proto='udp'
  104. firewall.@rule[9].src_port='67-68'
  105. firewall.@rule[9].dest_port='67-68'
  106. firewall.@rule[9].target='ACCEPT'
  107. firewall.@rule[9].family='ipv4'
  108. firewall.@rule[10]=rule
  109. firewall.@rule[10].src='guest'
  110. firewall.@rule[10].dest_port='53'
  111. firewall.@rule[10].target='ACCEPT'
  112. firewall.@rule[10].family='ipv4'
  113. firewall.@rule[10].proto='tcpudp'
  114. firewall.@rule[11]=rule
  115. firewall.@rule[11].dest='lan'
  116. firewall.@rule[11].src='wan'
  117. firewall.@rule[11].target='ACCEPT'
  118. firewall.@zone[3]=zone
  119. firewall.@zone[3].network='IOT'
  120. firewall.@zone[3].input='REJECT'
  121. firewall.@zone[3].forward='REJECT'
  122. firewall.@zone[3].name='iot'
  123. firewall.@zone[3].output='ACCEPT'
  124. firewall.@rule[12]=rule
  125. firewall.@rule[12].proto='udp'
  126. firewall.@rule[12].src_port='67-68'
  127. firewall.@rule[12].dest_port='67-68'
  128. firewall.@rule[12].target='ACCEPT'
  129. firewall.@rule[12].family='ipv4'
  130. firewall.@rule[12].src='iot'
  131. firewall.@rule[13]=rule
  132. firewall.@rule[13].dest_port='53'
  133. firewall.@rule[13].target='ACCEPT'
  134. firewall.@rule[13].family='ipv4'
  135. firewall.@rule[13].proto='tcpudp'
  136. firewall.@rule[13].src='iot'
  137. firewall.@rule[14]=rule
  138. firewall.@rule[14].target='ACCEPT'
  139. firewall.@rule[14].src='iot'
  140. firewall.@rule[14].dest_ip='192.168.2.209'
  141. firewall.@rule[14].family='ipv4'
  142. firewall.@rule[15]=rule
  143. firewall.@rule[15].dest='iot'
  144. firewall.@rule[15].target='ACCEPT'
  145. firewall.@rule[15].family='ipv4'
  146. firewall.@rule[15].src_ip='192.168.2.209'
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!