mshillam
/
Hellfire2
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Compare commits

base: mshillam:c703de421fa8a8677124b0e03ad0682356826570
Branches Tags
mshillam:master
..
compare: mshillam:c2a24ddbd60bfd9a63126206d995a117dcb185f4
Branches Tags
mshillam:master

No commits in common. "c703de421fa8a8677124b0e03ad0682356826570" and "c2a24ddbd60bfd9a63126206d995a117dcb185f4" have entirely different histories.
c703de421f ... c2a24ddbd6

1 changed files with 106 additions and 213 deletions
Show Stats Expand all files Collapse all files

319
config.xml
View File

@ -2094,6 +2094,60 @@
</rule> </rule>
</nat> </nat>
<filter> <filter>
<rule uuid="2d812c7c-80fa-4195-82d7-0806a02a4476">
<type>block</type>
<interface>lan,wan</interface>
<ipprotocol>inet</ipprotocol>
<statetype>keep state</statetype>
<descr>Block dodgy mail problem IP</descr>
<direction>any</direction>
<floating>yes</floating>
<log>1</log>
<quick>1</quick>
<source>
<address>89.149.192.116/24</address>
</source>
<destination>
<any>1</any>
</destination>
<updated>
<username>mshillam@192.168.250.162</username>
<time>1738755380.6526</time>
<description>/firewall_rules_edit.php made changes</description>
</updated>
<created>
<username>mshillam@192.168.250.162</username>
<time>1738755380.6526</time>
<description>/firewall_rules_edit.php made changes</description>
</created>
</rule>
<rule uuid="05efcfe3-f1ea-4c0a-9f54-8b623c4c3654">
<type>block</type>
<interface>lan,wan</interface>
<ipprotocol>inet</ipprotocol>
<statetype>keep state</statetype>
<descr>Block dodgy mail problem IP OUT</descr>
<direction>any</direction>
<floating>yes</floating>
<log>1</log>
<quick>1</quick>
<source>
<any>1</any>
</source>
<destination>
<address>89.149.192.116/24</address>
</destination>
<updated>
<username>mshillam@192.168.250.162</username>
<time>1738755574.0668</time>
<description>/firewall_rules_edit.php made changes</description>
</updated>
<created>
<username>mshillam@192.168.250.162</username>
<time>1738755574.0668</time>
<description>/firewall_rules_edit.php made changes</description>
</created>
</rule>
<rule uuid="3aa14700-0441-49d0-8115-0779e3598359"> <rule uuid="3aa14700-0441-49d0-8115-0779e3598359">
<type>block</type> <type>block</type>
<interface>opt1,lan,lo0,openvpn,wan</interface> <interface>opt1,lan,lo0,openvpn,wan</interface>
@ -2253,32 +2307,6 @@
<description>/firewall_rules_edit.php made changes</description> <description>/firewall_rules_edit.php made changes</description>
</created> </created>
</rule> </rule>
<rule uuid="36e2c215-e991-456f-b601-b56729ee9f65">
<type>block</type>
<interface>wan</interface>
<ipprotocol>inet46</ipprotocol>
<statetype>keep state</statetype>
<descr>Block AbuseIPDB ALL</descr>
<direction>in</direction>
<log>1</log>
<quick>1</quick>
<source>
<address>Blocklist_AbuseIPDB_all</address>
</source>
<destination>
<any>1</any>
</destination>
<updated>
<username>mshillam@192.168.250.162</username>
<time>1738937141.2003</time>
<description>/firewall_rules_edit.php made changes</description>
</updated>
<created>
<username>mshillam@192.168.250.162</username>
<time>1738937141.2003</time>
<description>/firewall_rules_edit.php made changes</description>
</created>
</rule>
<rule uuid="bb1641fc-ab5e-430e-a2e1-851f817b663d"> <rule uuid="bb1641fc-ab5e-430e-a2e1-851f817b663d">
<type>pass</type> <type>pass</type>
<interface>wan</interface> <interface>wan</interface>
@ -2333,30 +2361,30 @@
<description>/firewall_rules_edit.php made changes</description> <description>/firewall_rules_edit.php made changes</description>
</created> </created>
</rule> </rule>
<rule uuid="2bdc2707-62fd-44d5-993e-5eea7cb27109"> <rule uuid="692a0422-c95e-4687-993c-0b2114806b48">
<type>block</type> <type>block</type>
<interface>wan</interface> <interface>wan</interface>
<ipprotocol>inet46</ipprotocol> <ipprotocol>inet</ipprotocol>
<statetype>keep state</statetype> <statetype>keep state</statetype>
<descr>Block Shite countries from Core Services</descr> <descr>Block ALL NONE UK from VOIP.</descr>
<direction>in</direction> <direction>in</direction>
<category>countries</category> <category>countries</category>
<log>1</log> <log>1</log>
<quick>1</quick> <quick>1</quick>
<source> <source>
<address>block_shite_countries</address> <address>Country_block_to_core_services</address>
</source> </source>
<destination> <destination>
<address>core_services</address> <address>192.168.0.41</address>
</destination> </destination>
<updated> <updated>
<username>mshillam@192.168.250.162</username> <username>mshillam@192.168.1.10</username>
<time>1738931011.8372</time> <time>1645474413.8583</time>
<description>/firewall_rules_edit.php made changes</description> <description>/firewall_rules_edit.php made changes</description>
</updated> </updated>
<created> <created>
<username>mshillam@192.168.250.162</username> <username>mshillam@192.168.1.10</username>
<time>1738931011.8372</time> <time>1645472947.3452</time>
<description>/firewall_rules_edit.php made changes</description> <description>/firewall_rules_edit.php made changes</description>
</created> </created>
</rule> </rule>
@ -2930,8 +2958,8 @@
</widgets> </widgets>
<revision> <revision>
<username>mshillam@192.168.250.162</username> <username>mshillam@192.168.250.162</username>
<description>/api/firewall/alias/set made changes</description> <time>1738888912.2439</time>
<time>1738937662.0787</time> <description>/firewall_nat.php made changes</description>
</revision> </revision>
<OPNsense> <OPNsense>
<captiveportal version="1.0.2"> <captiveportal version="1.0.2">
@ -4041,61 +4069,11 @@ albert_latest_pc
<categories/> <categories/>
<description>Malicious IP Lists</description> <description>Malicious IP Lists</description>
</alias> </alias>
<alias uuid="82abfb58-cdbe-4318-bf68-7285bcf943f6"> <alias uuid="1ea673a7-9b59-469f-a598-4f14066e18fc">
<enabled>1</enabled> <enabled>1</enabled>
<name>uk_only</name> <name>Country_block_to_core_services</name>
<type>geoip</type> <type>geoip</type>
<proto/> <proto>IPv4</proto>
<interface/>
<counters>0</counters>
<updatefreq/>
<content>GB
AL</content>
<categories>837c5309-3f56-4048-88ac-bf7797250f18</categories>
<description>UK only IP's</description>
</alias>
<alias uuid="2154afe8-183a-4497-965c-2b738c32bb54">
<enabled>1</enabled>
<name>Wazuh_Ports</name>
<type>port</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq/>
<content>1514
1515</content>
<categories/>
<description/>
</alias>
<alias uuid="758ee635-c4e6-4f07-b2d2-f26a4bdf1243">
<enabled>1</enabled>
<name>Wireguard</name>
<type>port</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq/>
<content>51820</content>
<categories/>
<description>Wireguard port</description>
</alias>
<alias uuid="ae3a8283-13f9-4970-95ef-5c45fae0abda">
<enabled>1</enabled>
<name>SecondaryRouter</name>
<type>network</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq/>
<content>10.100.0.0/24</content>
<categories/>
<description>Secondary Router Lan</description>
</alias>
<alias uuid="eed5c717-17e2-42ad-a08f-cabe9661bc16">
<enabled>1</enabled>
<name>block_shite_countries</name>
<type>geoip</type>
<proto/>
<interface/> <interface/>
<counters>0</counters> <counters>0</counters>
<updatefreq/> <updatefreq/>
@ -4160,6 +4138,7 @@ BQ
BR BR
BS BS
BZ BZ
CA
CL CL
CO CO
CR CR
@ -4195,6 +4174,7 @@ SV
SX SX
TC TC
TT TT
US
UY UY
VC VC
VE VE
@ -4210,8 +4190,10 @@ BD
BH BH
BN BN
BT BT
CN
CY CY
GE GE
HK
ID ID
IL IL
IN IN
@ -4245,6 +4227,7 @@ TH
TJ TJ
TL TL
TM TM
TW
UZ UZ
VN VN
YE YE
@ -4256,25 +4239,24 @@ GS
IS IS
SH SH
AU AU
EU
AD AD
AT
AX AX
BA
BG
BY BY
CH CH
CZ CZ
EE EE
ES
FI FI
GG GG
GI GI
IM
JE
LI LI
LT LT
LU LU
LV LV
MC MC
MD
ME
MK MK
MT MT
PL PL
@ -4323,146 +4305,57 @@ VU
WF WF
WS</content> WS</content>
<categories/> <categories/>
<description>Block Shite countries</description> <description>All country block list except UK/IRE</description>
</alias> </alias>
<alias uuid="a168ebfb-675c-4f25-9aa3-238d28c82a00"> <alias uuid="82abfb58-cdbe-4318-bf68-7285bcf943f6">
<enabled>1</enabled> <enabled>1</enabled>
<name>mail_server</name> <name>uk_only</name>
<type>host</type> <type>geoip</type>
<proto/> <proto/>
<interface/> <interface/>
<counters>0</counters> <counters>0</counters>
<updatefreq/> <updatefreq/>
<content>192.168.0.40</content> <content>GB
AL</content>
<categories>837c5309-3f56-4048-88ac-bf7797250f18</categories>
<description>UK only IP's</description>
</alias>
<alias uuid="2154afe8-183a-4497-965c-2b738c32bb54">
<enabled>1</enabled>
<name>Wazuh_Ports</name>
<type>port</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq/>
<content>1514
1515</content>
<categories/> <categories/>
<description/> <description/>
</alias> </alias>
<alias uuid="2a0f354c-6d5a-45f6-b528-302bb620309d"> <alias uuid="758ee635-c4e6-4f07-b2d2-f26a4bdf1243">
<enabled>1</enabled> <enabled>1</enabled>
<name>web_server</name> <name>Wireguard</name>
<type>host</type> <type>port</type>
<proto/> <proto/>
<interface/> <interface/>
<counters>0</counters> <counters>0</counters>
<updatefreq/> <updatefreq/>
<content>192.168.0.40</content> <content>51820</content>
<categories/> <categories/>
<description/> <description>Wireguard port</description>
</alias> </alias>
<alias uuid="f054f5f5-6701-4499-b12c-49fb655bfe2f"> <alias uuid="ae3a8283-13f9-4970-95ef-5c45fae0abda">
<enabled>1</enabled> <enabled>1</enabled>
<name>nginx_proxy</name> <name>SecondaryRouter</name>
<type>host</type> <type>network</type>
<proto/> <proto/>
<interface/> <interface/>
<counters>0</counters> <counters>0</counters>
<updatefreq/> <updatefreq/>
<content>192.168.0.30</content> <content>10.100.0.0/24</content>
<categories/> <categories/>
<description/> <description>Secondary Router Lan</description>
</alias>
<alias uuid="9aa3dd13-785c-4de8-bb9a-b9b5d7ec7885">
<enabled>1</enabled>
<name>next_cloud</name>
<type>host</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq/>
<content>192.168.0.50</content>
<categories/>
<description/>
</alias>
<alias uuid="b5b9b8d7-80e9-4355-bc64-e6b4ae8e3132">
<enabled>1</enabled>
<name>core_services</name>
<type>host</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq/>
<content>mail_server
web_server
nginx_proxy
next_cloud
voip_server</content>
<categories/>
<description/>
</alias>
<alias uuid="e5eee80d-7b59-4b8a-9155-7933325ce0aa">
<enabled>1</enabled>
<name>Blocklist_AbuseIPDB1</name>
<type>urltable</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq>0.16666666666666666</updatefreq>
<content>https://raw.githubusercontent.com/cscmh/AbuseIPDB/refs/heads/main/abuseipdb1.txt</content>
<categories/>
<description>AbuseIPDB 1</description>
</alias>
<alias uuid="bdb463fd-f2f8-4f8a-b70c-73d59b871aad">
<enabled>1</enabled>
<name>Blocklist_AbuseIPDB2</name>
<type>urltable</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq>0.16666666666666666</updatefreq>
<content>https://raw.githubusercontent.com/cscmh/AbuseIPDB/refs/heads/main/abuseipdb2.txt</content>
<categories/>
<description>AbuseIPDB 2</description>
</alias>
<alias uuid="f69a38e2-1bb6-40b6-a605-5ac5934e9940">
<enabled>1</enabled>
<name>Blocklist_AbuseIPDB3</name>
<type>urltable</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq>0.16666666666666666</updatefreq>
<content>https://raw.githubusercontent.com/cscmh/AbuseIPDB/refs/heads/main/abuseipdb3.txt</content>
<categories/>
<description>AbuseIPDB 3</description>
</alias>
<alias uuid="758460e4-2bae-4550-b5eb-ec25e2c0a6a4">
<enabled>1</enabled>
<name>Blocklist_AbuseIPDB4</name>
<type>urltable</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq>0.16666666666666666</updatefreq>
<content>https://raw.githubusercontent.com/cscmh/AbuseIPDB/refs/heads/main/abuseipdb4.txt</content>
<categories/>
<description>AbuseIPDB 4</description>
</alias>
<alias uuid="a16809e8-5496-4b99-b757-0cc3ad61fabf">
<enabled>1</enabled>
<name>Blocklist_AbuseIPDB_all</name>
<type>host</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq/>
<content>Blocklist_AbuseIPDB1
Blocklist_AbuseIPDB2
Blocklist_AbuseIPDB3
Blocklist_AbuseIPDB4</content>
<categories/>
<description>Blocklist AbuseIPDB ALL!</description>
</alias>
<alias uuid="0a562845-c480-4652-aa3a-5092d2ce680a">
<enabled>1</enabled>
<name>voip_server</name>
<type>host</type>
<proto/>
<interface/>
<counters>0</counters>
<updatefreq/>
<content/>
<categories/>
<description>Voip PBX Server</description>
</alias> </alias>
</aliases> </aliases>
</Alias> </Alias>