From fa7c39098b26a1fd4636b62ddd69e01942742e62 Mon Sep 17 00:00:00 2001 From: "Daniel A. Maierhofer" Date: Sun, 22 Jul 2018 16:09:49 +0200 Subject: [PATCH] Add kistl config --- doc/configs/kistl-pfSense-backup.xml | 1394 ++++++++++++++++++++++++++ doc/kistl.md | 3 + 2 files changed, 1397 insertions(+) create mode 100644 doc/configs/kistl-pfSense-backup.xml create mode 100644 doc/kistl.md diff --git a/doc/configs/kistl-pfSense-backup.xml b/doc/configs/kistl-pfSense-backup.xml new file mode 100644 index 0000000..4ce2284 --- /dev/null +++ b/doc/configs/kistl-pfSense-backup.xml @@ -0,0 +1,1394 @@ + + + 11.7 + + metallic + + + debug.pfftpproxy + 1 + + + + + vfs.read_max + default + + + + net.inet.ip.portrange.first + default + + + + net.inet.tcp.blackhole + default + + + + net.inet.udp.blackhole + default + + + + net.inet.ip.random_id + default + + + + net.inet.tcp.drop_synfin + default + + + + net.inet.ip.redirect + default + + + + net.inet6.ip6.redirect + default + + + + net.inet.tcp.syncookies + default + + + + net.inet.tcp.recvspace + default + + + + net.inet.tcp.sendspace + default + + + + net.inet.ip.fastforwarding + default + + + + net.inet.tcp.delayed_ack + default + + + + net.inet.udp.maxdgram + default + + + + net.link.bridge.pfil_onlyip + default + + + + net.link.bridge.pfil_member + default + + + + net.link.bridge.pfil_bridge + default + + + + net.link.tap.user_open + default + + + + kern.randompid + default + + + + net.inet.ip.intr_queue_maxlen + default + + + + hw.syscons.kbd_reboot + default + + + + net.inet.tcp.inflight.enable + default + + + + net.inet.tcp.log_debug + default + + + + net.inet.icmp.icmplim + default + + + + net.inet.tcp.tso + default + + + + kern.ipc.maxsockbuf + default + + + + normal + kistl + fet.htu.tuwien.ac.at + + all + + system + 1998 + + + admins + + system + 1999 + 0 + 2000 + page-all + + + admin + + system + admins + $1$i/nede5l$nk7jGz.SDcZy6qZrGlvkr/ + 0 + user-shell-access + 709413c5a7adc43b91f90ece7f6b7915 + ffe4b7bdc7724aa5f2eacfde176c38b5 + + + + + + user + $1$K..ec31W$knkqCaSwhAIqtCGErMxLf. + 8fa8fc542b8c5267d46eae228073243c + 9c825dfb2764d7beb731ef17334c7ff2 + bajo + + + + + 2000 + + 2001 + 2000 + Europe/Vienna + + tutimea.tuwien.ac.at + + https + 4f031b5823c78 + + + yes + + + none + none + none + none + + + + wan + + en_US + none + none + none + none + 128.130.4.3 + 128.131.4.3 + + + + + + rl0 + 128.131.95.200 + 24 + WANGW + on + on + + + + + + + bge0 + 192.168.86.1 + 24 + + + + + + + + 192.168.95.0/24 + miruk + + + + 192.168.96.0/24 + Ariane + + + + 10.0.3.0/24 + Ariane + + + + + + + + 192.168.86.50 + 192.168.86.191 + + + 00:10:18:2d:b0:c0 + + 192.168.86.2 + atlas + + + + + + + + + + + + + + + + + 1c:bd:b9:7f:fe:a4 + + 192.168.86.3 + laika + + + + + + + + + + + + + + + + + a0:f3:c1:5e:c4:98 + + 192.168.86.4 + wlan + + + + + + + + + + + + + + + + + 52:54:00:87:be:61 + + 192.168.86.5 + backup + + + + + + + + + + + + + + + + + 00:02:44:7c:b2:1c + + 192.168.86.6 + sputnik + + + + + + + + + + + + + + + + + 38:d5:47:01:7a:63 + ariane + 192.168.86.7 + ariane + + + + + + + fet.htu.tuwien.ac.at + + + + + + + + + + 3c:4a:92:43:d3:f3 + + 192.168.86.8 + hp3015 + + + + + + + + + + + + + + + + + 00:00:48:d1:06:b9 + + 192.168.86.9 + AL-C9100-D106B9 + + + + + + + + + + + + + + + + + 20:cf:30:67:09:28 + + 192.168.86.10 + energija + + + + + + + + + + + + + + + + + 00:09:3d:10:c4:aa + + 192.168.86.11 + kusnezow + + + + + + + + + + + + + + + + + ee:ee:ee:ee:ee:ef + + 192.168.86.12 + webup + + + + + + + + + + + + + + + + + 52:54:00:2b:a0:5e + + 192.168.86.13 + scm + + + + + + + + + + + + + + + + + 00:21:b7:99:4c:60 + + 192.168.86.14 + dell3465 + + + + + + + + + + + + + + + + + b8:27:eb:d5:7c:12 + + 192.168.86.15 + malina-hs + + + + + + + + + + + + + + + + + b8:27:eb:4e:c6:8f + + 192.168.86.16 + malina-retro + + + + + + + + + + + + + + + + + 00:a0:de:a4:ac:9a + + 192.168.86.17 + fet-av + + + + + + + + + + + + + + + + + 52:54:00:5c:b0:fd + + 192.168.86.18 + gagarin + + + + + + + + + + + + + + + + + e0:69:95:57:b2:f7 + + 192.168.86.20 + proton + + + + + + + + + + + + + + + + + e0:69:95:57:b6:08 + + 192.168.86.21 + suchoi + + + + + + + + + + + + + + + + + 10:c3:7b:9f:32:b1 + + 192.168.86.22 + potemkin + + + + + + + + + + + + + + + + + 90:2b:34:c8:72:ab + + 192.168.86.23 + lunik + + + + + + + + + + + + + + + + + 52:54:00:c6:91:2d + + 192.168.86.30 + ruby + + + + + + + + + + + + + + + + + 52:54:00:2f:ea:01 + + 192.168.86.31 + zabbix + + + + + + + + + + + + + + + + + 52:54:00:b1:03:4f + Fachschaften + 192.168.86.32 + fachschaften + + + + + + + + + + + + + + + + + 52:54:00:3b:a6:19 + bufata + 192.168.86.33 + bufata + + + + + + + + + + + + + + + + + 52:54:00:40:50:dc + + 192.168.86.34 + cloud + + + + + + + + + + + + + + + + + 52:54:00:d6:73:74 + + 192.168.86.35 + mars + + + + + + + fet.htu.tuwien.ac.at + + + + + + + + + + 52:54:00:ca:e4:4b + + 192.168.86.36 + miruk + + + + + + + + + + + + + + + + + 00:1a:4d:4b:dd:92 + + 192.168.86.42 + absturz + + + + + + + + + + + + + + + + + b8:27:eb:da:0b:43 + + 192.168.86.43 + baroness + + + + + + + + + + + + + + + + + 2e:6d:b6:07:14:01 + + 192.168.86.44 + betam + + + + + + + + + + + + + + + + + 2e:6d:b6:07:15:01 + + 192.168.86.45 + zyklon + + + + + + + + + + + + + + + + + 2e:6d:b6:07:16:01 + + 192.168.86.46 + proteus + + + + + + + + + + + + + + + + + ee:ee:ee:ee:ee:ee + + 192.168.86.47 + sojus + + + + + + + + + + + + + + + + + + + + + fet.htu.tuwien.ac.at + + + + + pxelinux.0 + + + + 192.168.86.134 + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + address=/baroness.fet.at/192.168.86.43 +address=/baroness.local/192.168.86.43 +address=/triton.local/192.168.86.36 +address=/ldap.fet.at/192.168.86.18 + + backup + fet.htu.tuwien.ac.at + 192.168.86.12 + + + + gagarin + fet.htu.tuwien.ac.at + 192.168.86.18 + + + + + laika + fet.htu.tuwien.ac.at + 192.168.86.3 + + + + + laika2 + fet.htu.tuwien.ac.at + 192.168.86.3 + + + + + + + + + public + + + + + + + + + + 50 + + + + automatic + + + + + pass + + lan + + lan + + + + + 1430676699 + + + pass + lan + inet + + icmp + echoreq + +
128.131.95.208
+ + +
192.168.5.16
+ + + + Easy Rule + + + + + + + + + + + + 1,31 + 0-5 + * + * + * + root + /usr/bin/nice -n20 adjkerntz -a + + + 1 + 3 + 1 + * + * + root + /usr/bin/nice -n20 /etc/rc.update_bogons.sh + + + */60 + * + * + * + * + root + /usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 sshlockout + + + 1 + 1 + * + * + * + root + /usr/bin/nice -n20 /etc/rc.dyndns.update + + + */60 + * + * + * + * + root + /usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 virusprot + + + 30 + 12 + * + * + * + root + /usr/bin/nice -n20 /etc/rc.update_urltables + + + */60 + * + * + * + * + root + /usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 webConfiguratorlockout + + + + + + + + + ICMP + icmp + + + + + TCP + tcp + + + + + HTTP + http + + + / + + 200 + + + + HTTPS + https + + + / + + 200 + + + + SMTP + send + + + + 220 * + + + + + system_information-container:col1:show,captive_portal_status-container:col1:close,carp_status-container:col1:close,cpu_graphs-container:col1:close,gateways-container:col1:close,gmirror_status-container:col1:close,installed_packages-container:col1:close,interface_statistics-container:col1:close,interfaces-container:col2:show,ipsec-container:col2:close,load_balancer_status-container:col2:close,log-container:col2:close,picture-container:col2:close,rss-container:col2:close,services_status-container:col2:close,traffic_graphs-container:col2:close + + + + + admin@192.168.86.134 + + + + + + + + 4f031b5823c78 + + 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 + R2VuZXJhdGluZyBSU0EgcHJpdmF0ZSBrZXksIDEwMjQgYml0IGxvbmcgbW9kdWx1cwouLi4uLi4uLi4uLi4uLi4uKysrKysrCi4uLi4uLi4uLi4uLi4uLi4rKysrKysKdW5hYmxlIHRvIHdyaXRlICdyYW5kb20gc3RhdGUnCmUgaXMgNjU1MzcgKDB4MTAwMDEpCi0tLS0tQkVHSU4gUlNBIFBSSVZBVEUgS0VZLS0tLS0KTUlJQ1hRSUJBQUtCZ1FEWHdveVUwMXdaU0JjSXFFdGMrY0tKU2NBUm9tZC9USENpc3U3RnUzbzlTLytSYWpiUQpZRE5qVEFSVGtxS3d3ajFwTGo4c0kzZVRYaDZPaGZVQ3ZPOWI5RmR2UC9GR2t0WHVuVVBrLzgzNnNkWjA3WXlNCnpuWXRjNk1iQ2NpTStkWHpOditKM0ViSHZ1TDJHdU5EYVNwUlE4TFFYeE05V28vMCtYRnNVb3BGZXdJREFRQUIKQW9HQUorcnhrWE5OUGN3dG5zZHNNZ1p2YkhEOW5RV2IrbHhORm56ZVdpem1YOExZeExHTzlKeG54WDVCNnFoZAplekJrcGpvTkxBQmYxaDc2cmttd1c5SlN3aXhraWFTREhGNG1UcEp1Sy9scjgvNGhTeWFDSEtIbHB4akZORDNGCkIyVG5rS3BwSFhwK3BtSGlhZ1RBMk42NmRVRzNVd2tGRDh5dzc4TFhNOWZlM2tFQ1FRRDVQaThEbDJGdmJvenIKN1RXZnQraFJwQVpuRm1MNnY1d0lCRnF2UDE0a3FzUjdBRTlyUC90Y2VoalFRQjYyK3A1MkQ0VW9qdFNET1hocwo4VGgxYUpnaEFrRUEzWnY3L3dXYzUyS2pFTHYvN25uK0picGFtUzhDSE0wK2RQZU4yZGdQSkpPNVhZKzFxdVZMClE4SGNCVzR0Z21EdmFwcFh6M1h0OTJTLzU4RHhaYkw2R3dKQUFkUk1BZ205WkZUNlljem01Tm96c1UyejRsUE8KdkNwbDJjVTJhU3pjNHdZQjFTbEdhL0lYUlRGOE55TVJWcVIyUDBXVDQ1MVF2L25QQVhXdnhXVFVJUUpCQU5FVgpuNTlRSTJhb1NLTzhUTThxcUYvZVFDWnhGTFFwN1hpY0xHalJrZy8zbEpleXhEdFdGVG43aU9SU3ZIdGJpK2Z2CmNWUGF0MGVIOWd2cG5aaFBVZXNDUVFEUndOVERZVnFhalhCUWsvc2xINml3QWkyVW4vM3Awc0I0dnFsQTB3MDkKcERSQm5tMUZJazBqeUQ1L2pDYVoyQXIxOHhwTHBvNHkwZjhEeEQ4VStmRWsKLS0tLS1FTkQgUlNBIFBSSVZBVEUgS0VZLS0tLS0K + + + + + wan + 128.131.95.1 + WANGW + 1 + + + inet + + + lan + 192.168.86.35 + mars + 1 + inet + + + + + + + + lan + 192.168.86.36 + miruk + 1 + inet + + + + + + + + lan + 192.168.86.7 + Ariane + 1 + inet + + + + + + + + + + iperf + http://dast.nlanr.net/Projects/Iperf/ + + Network Management + https://packages.pfsense.org/packages/config/iperf/iperf.xml + iperf-2.0.5-i386.pbi + 2.0.5_1 + Beta + https://doc.pfsense.org/index.php/Iperf_package + 2.2 + iperf.xml + benchmarks + bin/iperf:benchmarks/iperf + + benchmarks/iperf + + https://files.pfsense.org/packages/10/All/ + + + ntop + http://www.ntop.org/ + + Network Management + ntop-5.0.1_4-i386.pbi + + databases/gdbm net/GeoIP x11-fonts/font-util x11-fonts/webfonts graphics/graphviz + net/ntop + + ntop_SET_FORCE=PCAP_PORT XMLDUMP MAKO;ntop_UNSET_FORCE=JUMBO_FRAMES;rrdtool_UNSET_FORCE=DEJAVU PERL_MODULE PYTHON_MODULE RUBY_MODULE;rrdtool_SET_FORCE=JSON MMAP NLS;graphviz_UNSET_FORCE=XPM DIGCOLA IPSEPCOLA PANGOCAIRO;graphviz_SET_FORCE=ICONV NLS;cairo_UNSET_FORCE=X11 XCB;libgd_UNSET_FORCE=FONTCONFIG XPM;libgd_SET_FORCE=ICONV;libpcap_UNSET_FORCE=DAG;libpcap_SET_FORCE=IPV6 + 5.0.1_4 v2.3 + BETA + 2.2 + https://packages.pfsense.org/packages/config/ntop2/ntop.xml + ntop.xml + true + 2.2.999 + https://files.pfsense.org/packages/10/All/ + + + Zabbix Agent + Setup Zabbix Agent specific settings +
Services
+ /pkg_edit.php?xml=zabbix-agent.xml&id=0 + + + iperf + Run iperf in client or server mode. +
Diagnostics
+ iperf.xml + + + ntop Settings + Set ntop settings such as password and port. +
Diagnostics
+ /pkg_edit.php?xml=ntop.xml&id=0 + + + ntop + Access ntop +
Diagnostics
+ http://$myurl:3000 + ntop + + + zabbix_agentd + zabbix_agentd.sh + zabbix_agentd + + + + iperf + iperf + + + + ntop + ntop.sh + ntop + + + + + <__csrf_magic>sid:31efc492c9e3e76d276671a946cd2689b38939d7,1412273730 + All packages + reinstallall + Confirm + admin + + + + + zabbix.fet.htu.tuwien.ac.at + 10051 + kistl.fet.htu.tuwien.ac.at + 0.0.0.0 + 10050 + 120 + 3 + + + + + + + ntop Settings + /pkg_edit.php?xml=ntop.xml&id=0 + + + + + + + + + + www.fet.at + 192.168.86.30 + + + + diff --git a/doc/kistl.md b/doc/kistl.md new file mode 100644 index 0000000..1e9dd0e --- /dev/null +++ b/doc/kistl.md @@ -0,0 +1,3 @@ +# kistl +## Current config +See [config file](configs/kistl-pfSense-backup.xml)