|
|
@@ -1,6 +1,6 @@
|
|
|
<?xml version="1.0" encoding="utf-8"?>
|
|
|
<!DOCTYPE FWObjectDatabase SYSTEM "fwbuilder.dtd">
|
|
|
-<FWObjectDatabase xmlns="http://www.fwbuilder.org/1.0/" version="24" lastModified="1575628006" id="root">
|
|
|
+<FWObjectDatabase xmlns="http://www.fwbuilder.org/1.0/" version="24" lastModified="1575987327" id="root">
|
|
|
<Library id="syslib000" color="#d4f8ff" name="Standard" comment="Standard objects" ro="True">
|
|
|
<AnyNetwork id="sysid0" name="Any" comment="Any Network" ro="False" address="0.0.0.0" netmask="0.0.0.0"/>
|
|
|
<AnyIPService id="sysid1" protocol_num="0" name="Any" comment="Any IP Service" ro="False"/>
|
|
|
@@ -503,6 +503,7 @@
|
|
|
<NAT id="id8903X28426" name="NAT" comment="" ro="False" ipv4_rule_set="False" ipv6_rule_set="False" top_rule_set="True">
|
|
|
<RuleSetOptions/>
|
|
|
</NAT>
|
|
|
+ <TCPService id="id12252X15942" ack_flag="False" ack_flag_mask="False" established="False" fin_flag="False" fin_flag_mask="False" psh_flag="False" psh_flag_mask="False" rst_flag="False" rst_flag_mask="False" syn_flag="False" syn_flag_mask="False" urg_flag="False" urg_flag_mask="False" name="wireguard" comment="" ro="False" src_range_start="0" src_range_end="0" dst_range_start="51820" dst_range_end="51820"/>
|
|
|
</Library>
|
|
|
<Library id="id1582X5690" color="#d2ffd0" name="User" comment="" ro="False">
|
|
|
<ObjectGroup id="id1583X5690" name="Objects" comment="" ro="False">
|
|
|
@@ -709,7 +710,7 @@
|
|
|
<Host id="id4382X2427" name="admin01" comment="" ro="False">
|
|
|
<Interface id="id4384X2427" dedicated_failover="False" dyn="False" label="" security_level="0" unnum="False" unprotected="False" name="eth0" comment="" ro="False">
|
|
|
<IPv4 id="id4385X2427" name="admin01:eth0:ip" comment="" ro="False" address="192.168.122.250" netmask="255.255.255.0"/>
|
|
|
- <IPv4 id="id11122X65696" name="admin01:eth0:ip-1" comment="" ro="False" address="10.64.4.10" netmask="255.255.255.0"/>
|
|
|
+ <IPv4 id="id11122X65696" name="admin01:eth0:ip-1" comment="" ro="False" address="10.64.4.200" netmask="255.255.255.0"/>
|
|
|
<InterfaceOptions/>
|
|
|
</Interface>
|
|
|
<Management address="0.0.0.0">
|
|
|
@@ -2422,7 +2423,7 @@
|
|
|
<Option name="verify_interfaces">True</Option>
|
|
|
</FirewallOptions>
|
|
|
</Firewall>
|
|
|
- <Firewall id="id8899X28426" host_OS="linux24" inactive="False" lastCompiled="1575644920" lastInstalled="1575644938" lastModified="1575644915" platform="iptables" version="" name="kvmhost02" comment="" ro="False">
|
|
|
+ <Firewall id="id8899X28426" host_OS="linux24" inactive="False" lastCompiled="1575988272" lastInstalled="1575988286" lastModified="1575987508" platform="iptables" version="" name="kvmhost02" comment="" ro="False">
|
|
|
<NAT id="id13393X65696" name="NAT" comment="" ro="False" ipv4_rule_set="True" ipv6_rule_set="False" top_rule_set="True">
|
|
|
<NATRule id="id13395X65696" disabled="True" group="outgoing NAT" position="0" action="Translate" comment="NAT all outgoing mail traffic to mail IP">
|
|
|
<OSrc neg="False">
|
|
|
@@ -2685,7 +2686,7 @@
|
|
|
<ObjectRef ref="sysid0"/>
|
|
|
</TSrc>
|
|
|
<TDst neg="False">
|
|
|
- <ObjectRef ref="id3872X19560"/>
|
|
|
+ <ObjectRef ref="id11239X65696"/>
|
|
|
</TDst>
|
|
|
<TSrv neg="False">
|
|
|
<ServiceRef ref="tcp-SSH"/>
|
|
|
@@ -2712,7 +2713,7 @@
|
|
|
<ObjectRef ref="sysid0"/>
|
|
|
</TSrc>
|
|
|
<TDst neg="False">
|
|
|
- <ObjectRef ref="id6932X4137"/>
|
|
|
+ <ObjectRef ref="id11305X65696"/>
|
|
|
</TDst>
|
|
|
<TSrv neg="False">
|
|
|
<ServiceRef ref="tcp-SSH"/>
|
|
|
@@ -2739,7 +2740,7 @@
|
|
|
<ObjectRef ref="sysid0"/>
|
|
|
</TSrc>
|
|
|
<TDst neg="False">
|
|
|
- <ObjectRef ref="id4385X2427"/>
|
|
|
+ <ObjectRef ref="id11122X65696"/>
|
|
|
</TDst>
|
|
|
<TSrv neg="False">
|
|
|
<ServiceRef ref="sysid1"/>
|
|
|
@@ -2766,7 +2767,7 @@
|
|
|
<ObjectRef ref="sysid0"/>
|
|
|
</TSrc>
|
|
|
<TDst neg="False">
|
|
|
- <ObjectRef ref="id10515X16353"/>
|
|
|
+ <ObjectRef ref="id12512X65696"/>
|
|
|
</TDst>
|
|
|
<TSrv neg="False">
|
|
|
<ServiceRef ref="tcp-SSH"/>
|
|
|
@@ -2779,7 +2780,34 @@
|
|
|
</ItfOutb>
|
|
|
<NATRuleOptions/>
|
|
|
</NATRule>
|
|
|
- <NATRule id="id14053X65696" disabled="False" group="" position="13" action="Translate" comment="">
|
|
|
+ <NATRule id="id12226X15942" disabled="False" group="" position="13" action="Translate" comment="">
|
|
|
+ <OSrc neg="False">
|
|
|
+ <ObjectRef ref="sysid0"/>
|
|
|
+ </OSrc>
|
|
|
+ <ODst neg="False">
|
|
|
+ <ObjectRef ref="id13268X354"/>
|
|
|
+ </ODst>
|
|
|
+ <OSrv neg="False">
|
|
|
+ <ServiceRef ref="id11505X65696"/>
|
|
|
+ </OSrv>
|
|
|
+ <TSrc neg="False">
|
|
|
+ <ObjectRef ref="sysid0"/>
|
|
|
+ </TSrc>
|
|
|
+ <TDst neg="False">
|
|
|
+ <ObjectRef ref="id11122X65696"/>
|
|
|
+ </TDst>
|
|
|
+ <TSrv neg="False">
|
|
|
+ <ServiceRef ref="sysid1"/>
|
|
|
+ </TSrv>
|
|
|
+ <ItfInb neg="False">
|
|
|
+ <ObjectRef ref="sysid0"/>
|
|
|
+ </ItfInb>
|
|
|
+ <ItfOutb neg="False">
|
|
|
+ <ObjectRef ref="sysid0"/>
|
|
|
+ </ItfOutb>
|
|
|
+ <NATRuleOptions/>
|
|
|
+ </NATRule>
|
|
|
+ <NATRule id="id14053X65696" disabled="False" group="" position="14" action="Translate" comment="">
|
|
|
<OSrc neg="False">
|
|
|
<ObjectRef ref="sysid0"/>
|
|
|
</OSrc>
|
|
|
@@ -2812,7 +2840,7 @@
|
|
|
</ItfOutb>
|
|
|
<NATRuleOptions/>
|
|
|
</NATRule>
|
|
|
- <NATRule id="id14102X65696" disabled="False" group="" position="14" action="Translate" comment="">
|
|
|
+ <NATRule id="id14102X65696" disabled="False" group="" position="15" action="Translate" comment="">
|
|
|
<OSrc neg="False">
|
|
|
<ObjectRef ref="sysid0"/>
|
|
|
</OSrc>
|
|
|
@@ -3409,7 +3437,7 @@
|
|
|
<RuleSetOptions/>
|
|
|
</Policy>
|
|
|
<Routing id="id8905X28426" name="Routing" comment="" ro="False" ipv4_rule_set="False" ipv6_rule_set="False" top_rule_set="True">
|
|
|
- <RoutingRule id="id13373X354" disabled="True" group="" metric="0" position="0" comment="">
|
|
|
+ <RoutingRule id="id13373X354" disabled="False" group="" metric="0" position="0" comment="">
|
|
|
<RDst neg="False">
|
|
|
<ObjectRef ref="id4422X5690"/>
|
|
|
</RDst>
|
Maximilian Ronniger