kvmhost02: add NAT http to prx01 from mail ip

itguru.at.fwb

@@ -2443,7 +2443,7 @@
       <ServiceGroup id="id1599X5690" name="TagServices" comment="" ro="False"/>
     </ServiceGroup>
     <ObjectGroup id="id1600X5690" name="Firewalls" comment="" ro="False">
-      <Firewall id="id8899X28426" host_OS="linux24" inactive="False" lastCompiled="1582284473" lastInstalled="1582284513" lastModified="1582284451" platform="iptables" version="" name="kvmhost02" comment="" ro="False">
+      <Firewall id="id8899X28426" host_OS="linux24" inactive="False" lastCompiled="1583312295" lastInstalled="1583312336" lastModified="1583312207" platform="iptables" version="" name="kvmhost02" comment="" ro="False">
         <NAT id="id13393X65696" name="NAT" comment="" ro="False" ipv4_rule_set="True" ipv6_rule_set="False" top_rule_set="True">
           <NATRule id="id13395X65696" disabled="False" group="outgoing NAT" position="0" action="Translate" comment="NAT all outgoing mail traffic to mail IP">
             <OSrc neg="False">
@@ -2613,6 +2613,7 @@
             </OSrc>
             <ODst neg="False">
               <ObjectRef ref="id8908X28426"/>
+              <ObjectRef ref="id13268X354"/>
             </ODst>
             <OSrv neg="False">
               <ServiceRef ref="tcp-HTTP"/>
@@ -2640,32 +2641,6 @@
             </OSrc>
             <ODst neg="False">
               <ObjectRef ref="id8908X28426"/>
-            </ODst>
-            <OSrv neg="False">
-              <ServiceRef ref="id3B4FED69"/>
-            </OSrv>
-            <TSrc neg="False">
-              <ObjectRef ref="sysid0"/>
-            </TSrc>
-            <TDst neg="False">
-              <ObjectRef ref="id11161X65696"/>
-            </TDst>
-            <TSrv neg="False">
-              <ServiceRef ref="id9739X36891"/>
-            </TSrv>
-            <ItfInb neg="False">
-              <ObjectRef ref="sysid0"/>
-            </ItfInb>
-            <ItfOutb neg="False">
-              <ObjectRef ref="sysid0"/>
-            </ItfOutb>
-            <NATRuleOptions/>
-          </NATRule>
-          <NATRule id="id12973X21207" disabled="False" group="web_access" position="8" action="Translate" comment="HTTPS for lotusmail webmail.">
-            <OSrc neg="False">
-              <ObjectRef ref="sysid0"/>
-            </OSrc>
-            <ODst neg="False">
               <ObjectRef ref="id13268X354"/>
             </ODst>
             <OSrv neg="False">
@@ -2688,7 +2663,7 @@
             </ItfOutb>
             <NATRuleOptions/>
           </NATRule>
-          <NATRule id="id13705X65696" disabled="True" group="web_access" position="9" action="Translate" comment="TODO: add a proxy rule">
+          <NATRule id="id13705X65696" disabled="True" group="web_access" position="8" action="Translate" comment="TODO: add a proxy rule">
             <OSrc neg="False">
               <ObjectRef ref="sysid0"/>
             </OSrc>
@@ -2715,7 +2690,7 @@
             </ItfOutb>
             <NATRuleOptions/>
           </NATRule>
-          <NATRule id="id13748X65696" disabled="False" group="wlanctl" position="10" action="Translate" comment="TODO: add Proxy rules">
+          <NATRule id="id13748X65696" disabled="False" group="wlanctl" position="9" action="Translate" comment="TODO: add Proxy rules">
             <OSrc neg="False">
               <ObjectRef ref="sysid0"/>
             </OSrc>
@@ -2746,7 +2721,7 @@
             </ItfOutb>
             <NATRuleOptions/>
           </NATRule>
-          <NATRule id="id13795X65696" disabled="False" group="wlanctl" position="11" action="Translate" comment="">
+          <NATRule id="id13795X65696" disabled="False" group="wlanctl" position="10" action="Translate" comment="">
             <OSrc neg="False">
               <ObjectRef ref="sysid0"/>
             </OSrc>
@@ -2773,7 +2748,7 @@
             </ItfOutb>
             <NATRuleOptions/>
           </NATRule>
-          <NATRule id="id13838X65696" disabled="False" group="external ssh access" position="12" action="Translate" comment="allow sftp access for &#10;">
+          <NATRule id="id13838X65696" disabled="False" group="external ssh access" position="11" action="Translate" comment="allow sftp access for &#10;">
             <OSrc neg="False">
               <ObjectRef ref="sysid0"/>
             </OSrc>
@@ -2800,7 +2775,7 @@
             </ItfOutb>
             <NATRuleOptions/>
           </NATRule>
-          <NATRule id="id13881X65696" disabled="False" group="external ssh access" position="13" action="Translate" comment="allow ssh access for authorized users">
+          <NATRule id="id13881X65696" disabled="False" group="external ssh access" position="12" action="Translate" comment="allow ssh access for authorized users">
             <OSrc neg="False">
               <ObjectRef ref="sysid0"/>
             </OSrc>
@@ -2827,7 +2802,7 @@
             </ItfOutb>
             <NATRuleOptions/>
           </NATRule>
-          <NATRule id="id13924X65696" disabled="False" group="external ssh access" position="14" action="Translate" comment="ssh for gogs git repo">
+          <NATRule id="id13924X65696" disabled="False" group="external ssh access" position="13" action="Translate" comment="ssh for gogs git repo">
             <OSrc neg="False">
               <ObjectRef ref="sysid0"/>
             </OSrc>
@@ -2854,7 +2829,7 @@
             </ItfOutb>
             <NATRuleOptions/>
           </NATRule>
-          <NATRule id="id14010X65696" disabled="False" group="external ssh access" position="15" action="Translate" comment="">
+          <NATRule id="id14010X65696" disabled="False" group="external ssh access" position="14" action="Translate" comment="">
             <OSrc neg="False">
               <ObjectRef ref="sysid0"/>
             </OSrc>
@@ -2881,7 +2856,7 @@
             </ItfOutb>
             <NATRuleOptions/>
           </NATRule>
-          <NATRule id="id12226X15942" disabled="False" group="" position="16" action="Translate" comment="">
+          <NATRule id="id12226X15942" disabled="False" group="" position="15" action="Translate" comment="">
             <OSrc neg="False">
               <ObjectRef ref="sysid0"/>
             </OSrc>
@@ -2909,7 +2884,7 @@
             </ItfOutb>
             <NATRuleOptions/>
           </NATRule>
-          <NATRule id="id14053X65696" disabled="False" group="" position="17" action="Translate" comment="">
+          <NATRule id="id14053X65696" disabled="False" group="" position="16" action="Translate" comment="">
             <OSrc neg="False">
               <ObjectRef ref="sysid0"/>
             </OSrc>
@@ -2942,7 +2917,7 @@
             </ItfOutb>
             <NATRuleOptions/>
           </NATRule>
-          <NATRule id="id14102X65696" disabled="False" group="" position="18" action="Translate" comment="">
+          <NATRule id="id14102X65696" disabled="False" group="" position="17" action="Translate" comment="">
             <OSrc neg="False">
               <ObjectRef ref="sysid0"/>
             </OSrc>