mshillam
/
Hellfire2
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Compare commits

base: mshillam:c2a24ddbd60bfd9a63126206d995a117dcb185f4
Branches Tags
mshillam:master
...
compare: mshillam:c703de421fa8a8677124b0e03ad0682356826570
Branches Tags
mshillam:master

30 Commits
c2a24ddbd6 ... c703de421f

Author SHA1 Message Date
Matthew Shillam c703de421f /api/firewall/alias/set made changes @ 2025-02-07T14:14:22.078700 (mshillam@192.168.250.162) 2025-02-07 14:14:22 +00:00
Matthew Shillam b63110346d /api/firewall/alias/delItem/1ea673a7-9b59-469f-a598-4f14066e18fc made changes @ 2025-02-07T14:14:19.518700 (mshillam@192.168.250.162) 2025-02-07 14:14:20 +00:00
Matthew Shillam 337ad68360 /firewall_rules.php made changes @ 2025-02-07T14:14:00.928400 (mshillam@192.168.250.162) 2025-02-07 14:14:01 +00:00
Matthew Shillam 3060c28b31 /firewall_rules.php made changes @ 2025-02-07T14:12:41.950000 (mshillam@192.168.250.162) 2025-02-07 14:12:42 +00:00
Matthew Shillam 7f3c37eef2 /api/firewall/alias/set made changes @ 2025-02-07T14:12:13.824700 (mshillam@192.168.250.162) 2025-02-07 14:12:14 +00:00
Matthew Shillam 62fcb89d8e /api/firewall/alias/setItem/b5b9b8d7-80e9-4355-bc64-e6b4ae8e3132 made changes @ 2025-02-07T14:12:07.633000 (mshillam@192.168.250.162) 2025-02-07 14:12:08 +00:00
Matthew Shillam a96cfa1956 /api/firewall/alias/addItem/ made changes @ 2025-02-07T14:11:50.278100 (mshillam@192.168.250.162) 2025-02-07 14:11:50 +00:00
Matthew Shillam cd790cb0de /firewall_rules.php made changes @ 2025-02-07T14:06:31.178200 (mshillam@192.168.250.162) 2025-02-07 14:06:31 +00:00
Matthew Shillam 387962fa0e /firewall_rules_edit.php made changes @ 2025-02-07T14:05:41.291800 (mshillam@192.168.250.162) 2025-02-07 14:05:41 +00:00
Matthew Shillam 40258f23c0 /api/firewall/alias/set made changes @ 2025-02-07T14:04:04.778300 (mshillam@192.168.250.162) 2025-02-07 14:04:05 +00:00
Matthew Shillam bba0e81b73 /api/firewall/alias/addItem/ made changes @ 2025-02-07T14:03:56.861700 (mshillam@192.168.250.162) 2025-02-07 14:03:57 +00:00
Matthew Shillam ed74e966c7 /api/firewall/alias/set made changes @ 2025-02-07T14:02:13.674100 (mshillam@192.168.250.162) 2025-02-07 14:02:14 +00:00
Matthew Shillam a4b876f14d /api/firewall/alias/addItem/ made changes @ 2025-02-07T14:02:10.106000 (mshillam@192.168.250.162) 2025-02-07 14:02:10 +00:00
Matthew Shillam a41d98a702 /api/firewall/alias/set made changes @ 2025-02-07T14:01:49.531400 (mshillam@192.168.250.162) 2025-02-07 14:01:50 +00:00
Matthew Shillam dcfe952968 /api/firewall/alias/addItem/ made changes @ 2025-02-07T14:01:46.311700 (mshillam@192.168.250.162) 2025-02-07 14:01:46 +00:00
Matthew Shillam dc86ffa9db /api/firewall/alias/set made changes @ 2025-02-07T14:00:35.922500 (mshillam@192.168.250.162) 2025-02-07 14:00:36 +00:00
Matthew Shillam 983c1604e8 /api/firewall/alias/addItem/ made changes @ 2025-02-07T14:00:32.891900 (mshillam@192.168.250.162) 2025-02-07 14:00:33 +00:00
Matthew Shillam 134e7719e6 /api/firewall/alias/set made changes @ 2025-02-07T13:59:25.538100 (mshillam@192.168.250.162) 2025-02-07 13:59:26 +00:00
Matthew Shillam d7a128a870 /api/firewall/alias/addItem/ made changes @ 2025-02-07T13:59:13.393000 (mshillam@192.168.250.162) 2025-02-07 13:59:14 +00:00
Matthew Shillam 15ff256cf5 /api/firewall/alias/set made changes @ 2025-02-07T12:29:04.339200 (mshillam@192.168.250.162) 2025-02-07 12:29:04 +00:00
Matthew Shillam 60598dce48 /api/firewall/alias/setItem/eed5c717-17e2-42ad-a08f-cabe9661bc16 made changes @ 2025-02-07T12:29:00.985300 (mshillam@192.168.250.162) 2025-02-07 12:29:01 +00:00
Matthew Shillam 01c2b12dfb /firewall_rules_edit.php made changes @ 2025-02-07T12:23:31.931000 (mshillam@192.168.250.162) 2025-02-07 12:23:32 +00:00
Matthew Shillam 62ccb7ad0c /api/firewall/alias/addItem/ made changes @ 2025-02-07T12:21:49.120400 (mshillam@192.168.250.162) 2025-02-07 12:21:49 +00:00
Matthew Shillam b8be81778f /api/firewall/alias/addItem/ made changes @ 2025-02-07T12:20:53.446700 (mshillam@192.168.250.162) 2025-02-07 12:20:54 +00:00
Matthew Shillam 1c8c6e154f /api/firewall/alias/addItem/ made changes @ 2025-02-07T12:19:43.301700 (mshillam@192.168.250.162) 2025-02-07 12:19:43 +00:00
Matthew Shillam a625f17bff /api/firewall/alias/addItem/ made changes @ 2025-02-07T12:19:12.261000 (mshillam@192.168.250.162) 2025-02-07 12:19:12 +00:00
Matthew Shillam 3f29133441 /api/firewall/alias/addItem/ made changes @ 2025-02-07T12:15:07.967600 (mshillam@192.168.250.162) 2025-02-07 12:15:08 +00:00
Matthew Shillam 2ea14bffd1 /api/firewall/alias/addItem/ made changes @ 2025-02-07T12:09:27.506200 (mshillam@192.168.250.162) 2025-02-07 12:09:28 +00:00
Matthew Shillam ab976101f7 /firewall_rules.php made changes @ 2025-02-07T12:04:01.419500 (mshillam@192.168.250.162) 2025-02-07 12:04:02 +00:00
Matthew Shillam 4344be537b /firewall_rules.php made changes @ 2025-02-07T12:03:47.358300 (mshillam@192.168.250.162) 2025-02-07 12:03:47 +00:00
1 changed files with 213 additions and 106 deletions
Show Stats Expand all files Collapse all files

319
config.xml
View File

@ -2094,60 +2094,6 @@
</rule> </rule>
</nat> </nat>
<filter> <filter>
<rule uuid="2d812c7c-80fa-4195-82d7-0806a02a4476">
<type>block</type>
<interface>lan,wan</interface>
<ipprotocol>inet</ipprotocol>
<statetype>keep state</statetype>
<descr>Block dodgy mail problem IP</descr>
<direction>any</direction>
<floating>yes</floating>
<log>1</log>
<quick>1</quick>
<source>
<address>89.149.192.116/24</address>
</source>
<destination>
<any>1</any>
</destination>
<updated>
<username>mshillam@192.168.250.162</username>
<time>1738755380.6526</time>
<description>/firewall_rules_edit.php made changes</description>
</updated>
<created>
<username>mshillam@192.168.250.162</username>
<time>1738755380.6526</time>
<description>/firewall_rules_edit.php made changes</description>
</created>
</rule>
<rule uuid="05efcfe3-f1ea-4c0a-9f54-8b623c4c3654">
<type>block</type>
<interface>lan,wan</interface>
<ipprotocol>inet</ipprotocol>
<statetype>keep state</statetype>
<descr>Block dodgy mail problem IP OUT</descr>
<direction>any</direction>
<floating>yes</floating>
<log>1</log>
<quick>1</quick>
<source>
<any>1</any>
</source>
<destination>
<address>89.149.192.116/24</address>
</destination>
<updated>
<username>mshillam@192.168.250.162</username>
<time>1738755574.0668</time>
<description>/firewall_rules_edit.php made changes</description>
</updated>
<created>
<username>mshillam@192.168.250.162</username>
<time>1738755574.0668</time>
<description>/firewall_rules_edit.php made changes</description>
</created>
</rule>
<rule uuid="3aa14700-0441-49d0-8115-0779e3598359"> <rule uuid="3aa14700-0441-49d0-8115-0779e3598359">
<type>block</type> <type>block</type>
<interface>opt1,lan,lo0,openvpn,wan</interface> <interface>opt1,lan,lo0,openvpn,wan</interface>
@ -2307,6 +2253,32 @@
<description>/firewall_rules_edit.php made changes</description> <description>/firewall_rules_edit.php made changes</description>
</created> </created>
</rule> </rule>
<rule uuid="36e2c215-e991-456f-b601-b56729ee9f65">
<type>block</type>
<interface>wan</interface>
<ipprotocol>inet46</ipprotocol>
<statetype>keep state</statetype>
<descr>Block AbuseIPDB ALL</descr>
<direction>in</direction>
<log>1</log>
<quick>1</quick>
<source>
<address>Blocklist_AbuseIPDB_all</address>
</source>
<destination>
<any>1</any>
</destination>
<updated>
<username>mshillam@192.168.250.162</username>
<time>1738937141.2003</time>
<description>/firewall_rules_edit.php made changes</description>
</updated>
<created>
<username>mshillam@192.168.250.162</username>
<time>1738937141.2003</time>
<description>/firewall_rules_edit.php made changes</description>
</created>
</rule>
<rule uuid="bb1641fc-ab5e-430e-a2e1-851f817b663d"> <rule uuid="bb1641fc-ab5e-430e-a2e1-851f817b663d">
<type>pass</type> <type>pass</type>
<interface>wan</interface> <interface>wan</interface>
@ -2361,30 +2333,30 @@
<description>/firewall_rules_edit.php made changes</description> <description>/firewall_rules_edit.php made changes</description>
</created> </created>
</rule> </rule>
<rule uuid="692a0422-c95e-4687-993c-0b2114806b48"> <rule uuid="2bdc2707-62fd-44d5-993e-5eea7cb27109">
<type>block</type> <type>block</type>
<interface>wan</interface> <interface>wan</interface>
<ipprotocol>inet</ipprotocol> <ipprotocol>inet46</ipprotocol>
<statetype>keep state</statetype> <statetype>keep state</statetype>
<descr>Block ALL NONE UK from VOIP.</descr> <descr>Block Shite countries from Core Services</descr>
<direction>in</direction> <direction>in</direction>
<category>countries</category> <category>countries</category>
<log>1</log> <log>1</log>
<quick>1</quick> <quick>1</quick>
<source> <source>
<address>Country_block_to_core_services</address> <address>block_shite_countries</address>
</source> </source>
<destination> <destination>
<address>192.168.0.41</address> <address>core_services</address>
</destination> </destination>
<updated> <updated>
<username>mshillam@192.168.1.10</username> <username>mshillam@192.168.250.162</username>
<time>1645474413.8583</time> <time>1738931011.8372</time>
<description>/firewall_rules_edit.php made changes</description> <description>/firewall_rules_edit.php made changes</description>
</updated> </updated>
<created> <created>
<username>mshillam@192.168.1.10</username> <username>mshillam@192.168.250.162</username>
<time>1645472947.3452</time> <time>1738931011.8372</time>
<description>/firewall_rules_edit.php made changes</description> <description>/firewall_rules_edit.php made changes</description>
</created> </created>
</rule> </rule>
@ -2958,8 +2930,8 @@
</widgets> </widgets>
<revision> <revision>
<username>mshillam@192.168.250.162</username> <username>mshillam@192.168.250.162</username>
<time>1738888912.2439</time> <description>/api/firewall/alias/set made changes</description>
<description>/firewall_nat.php made changes</description> <time>1738937662.0787</time>
</revision> </revision>
<OPNsense> <OPNsense>
<captiveportal version="1.0.2"> <captiveportal version="1.0.2">
@ -4069,11 +4041,61 @@ albert_latest_pc
<categories/> <categories/>
<description>Malicious IP Lists</description> <description>Malicious IP Lists</description>
</alias> </alias>
<alias uuid="1ea673a7-9b59-469f-a598-4f14066e18fc"> <alias uuid="82abfb58-cdbe-4318-bf68-7285bcf943f6">
<enabled>1</enabled> <enabled>1</enabled>
<name>Country_block_to_core_services</name> <name>uk_only</name>
<type>geoip</type> <type>geoip</type>
<proto>IPv4</proto> <proto/>
<interface/>
<counters>0</counters>
<updatefreq/>
<content>GB
AL</content>
<categories>837c5309-3f56-4048-88ac-bf7797250f18</categories>
<description>UK only IP's</description>
</alias>
<alias uuid="2154afe8-183a-4497-965c-2b738c32bb54">
<enabled>1</enabled>
<name>Wazuh_Ports</name>
<type>port</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq/>
<content>1514
1515</content>
<categories/>
<description/>
</alias>
<alias uuid="758ee635-c4e6-4f07-b2d2-f26a4bdf1243">
<enabled>1</enabled>
<name>Wireguard</name>
<type>port</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq/>
<content>51820</content>
<categories/>
<description>Wireguard port</description>
</alias>
<alias uuid="ae3a8283-13f9-4970-95ef-5c45fae0abda">
<enabled>1</enabled>
<name>SecondaryRouter</name>
<type>network</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq/>
<content>10.100.0.0/24</content>
<categories/>
<description>Secondary Router Lan</description>
</alias>
<alias uuid="eed5c717-17e2-42ad-a08f-cabe9661bc16">
<enabled>1</enabled>
<name>block_shite_countries</name>
<type>geoip</type>
<proto/>
<interface/> <interface/>
<counters>0</counters> <counters>0</counters>
<updatefreq/> <updatefreq/>
@ -4138,7 +4160,6 @@ BQ
BR BR
BS BS
BZ BZ
CA
CL CL
CO CO
CR CR
@ -4174,7 +4195,6 @@ SV
SX SX
TC TC
TT TT
US
UY UY
VC VC
VE VE
@ -4190,10 +4210,8 @@ BD
BH BH
BN BN
BT BT
CN
CY CY
GE GE
HK
ID ID
IL IL
IN IN
@ -4227,7 +4245,6 @@ TH
TJ TJ
TL TL
TM TM
TW
UZ UZ
VN VN
YE YE
@ -4239,24 +4256,25 @@ GS
IS IS
SH SH
AU AU
EU
AD AD
AT
AX AX
BA
BG
BY BY
CH CH
CZ CZ
EE EE
ES
FI FI
GG GG
GI GI
IM
JE
LI LI
LT LT
LU LU
LV LV
MC MC
MD
ME
MK MK
MT MT
PL PL
@ -4305,57 +4323,146 @@ VU
WF WF
WS</content> WS</content>
<categories/> <categories/>
<description>All country block list except UK/IRE</description> <description>Block Shite countries</description>
</alias> </alias>
<alias uuid="82abfb58-cdbe-4318-bf68-7285bcf943f6"> <alias uuid="a168ebfb-675c-4f25-9aa3-238d28c82a00">
<enabled>1</enabled> <enabled>1</enabled>
<name>uk_only</name> <name>mail_server</name>
<type>geoip</type> <type>host</type>
<proto/> <proto/>
<interface/> <interface/>
<counters>0</counters> <counters>0</counters>
<updatefreq/> <updatefreq/>
<content>GB <content>192.168.0.40</content>
AL</content>
<categories>837c5309-3f56-4048-88ac-bf7797250f18</categories>
<description>UK only IP's</description>
</alias>
<alias uuid="2154afe8-183a-4497-965c-2b738c32bb54">
<enabled>1</enabled>
<name>Wazuh_Ports</name>
<type>port</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq/>
<content>1514
1515</content>
<categories/> <categories/>
<description/> <description/>
</alias> </alias>
<alias uuid="758ee635-c4e6-4f07-b2d2-f26a4bdf1243"> <alias uuid="2a0f354c-6d5a-45f6-b528-302bb620309d">
<enabled>1</enabled> <enabled>1</enabled>
<name>Wireguard</name> <name>web_server</name>
<type>port</type> <type>host</type>
<proto/> <proto/>
<interface/> <interface/>
<counters>0</counters> <counters>0</counters>
<updatefreq/> <updatefreq/>
<content>51820</content> <content>192.168.0.40</content>
<categories/> <categories/>
<description>Wireguard port</description> <description/>
</alias> </alias>
<alias uuid="ae3a8283-13f9-4970-95ef-5c45fae0abda"> <alias uuid="f054f5f5-6701-4499-b12c-49fb655bfe2f">
<enabled>1</enabled> <enabled>1</enabled>
<name>SecondaryRouter</name> <name>nginx_proxy</name>
<type>network</type> <type>host</type>
<proto/> <proto/>
<interface/> <interface/>
<counters>0</counters> <counters>0</counters>
<updatefreq/> <updatefreq/>
<content>10.100.0.0/24</content> <content>192.168.0.30</content>
<categories/> <categories/>
<description>Secondary Router Lan</description> <description/>
</alias>
<alias uuid="9aa3dd13-785c-4de8-bb9a-b9b5d7ec7885">
<enabled>1</enabled>
<name>next_cloud</name>
<type>host</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq/>
<content>192.168.0.50</content>
<categories/>
<description/>
</alias>
<alias uuid="b5b9b8d7-80e9-4355-bc64-e6b4ae8e3132">
<enabled>1</enabled>
<name>core_services</name>
<type>host</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq/>
<content>mail_server
web_server
nginx_proxy
next_cloud
voip_server</content>
<categories/>
<description/>
</alias>
<alias uuid="e5eee80d-7b59-4b8a-9155-7933325ce0aa">
<enabled>1</enabled>
<name>Blocklist_AbuseIPDB1</name>
<type>urltable</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq>0.16666666666666666</updatefreq>
<content>https://raw.githubusercontent.com/cscmh/AbuseIPDB/refs/heads/main/abuseipdb1.txt</content>
<categories/>
<description>AbuseIPDB 1</description>
</alias>
<alias uuid="bdb463fd-f2f8-4f8a-b70c-73d59b871aad">
<enabled>1</enabled>
<name>Blocklist_AbuseIPDB2</name>
<type>urltable</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq>0.16666666666666666</updatefreq>
<content>https://raw.githubusercontent.com/cscmh/AbuseIPDB/refs/heads/main/abuseipdb2.txt</content>
<categories/>
<description>AbuseIPDB 2</description>
</alias>
<alias uuid="f69a38e2-1bb6-40b6-a605-5ac5934e9940">
<enabled>1</enabled>
<name>Blocklist_AbuseIPDB3</name>
<type>urltable</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq>0.16666666666666666</updatefreq>
<content>https://raw.githubusercontent.com/cscmh/AbuseIPDB/refs/heads/main/abuseipdb3.txt</content>
<categories/>
<description>AbuseIPDB 3</description>
</alias>
<alias uuid="758460e4-2bae-4550-b5eb-ec25e2c0a6a4">
<enabled>1</enabled>
<name>Blocklist_AbuseIPDB4</name>
<type>urltable</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq>0.16666666666666666</updatefreq>
<content>https://raw.githubusercontent.com/cscmh/AbuseIPDB/refs/heads/main/abuseipdb4.txt</content>
<categories/>
<description>AbuseIPDB 4</description>
</alias>
<alias uuid="a16809e8-5496-4b99-b757-0cc3ad61fabf">
<enabled>1</enabled>
<name>Blocklist_AbuseIPDB_all</name>
<type>host</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq/>
<content>Blocklist_AbuseIPDB1
Blocklist_AbuseIPDB2
Blocklist_AbuseIPDB3
Blocklist_AbuseIPDB4</content>
<categories/>
<description>Blocklist AbuseIPDB ALL!</description>
</alias>
<alias uuid="0a562845-c480-4652-aa3a-5092d2ce680a">
<enabled>1</enabled>
<name>voip_server</name>
<type>host</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq/>
<content/>
<categories/>
<description>Voip PBX Server</description>
</alias> </alias>
</aliases> </aliases>
</Alias> </Alias>