Post by fatboy on Sept 30, 2015 13:12:43 GMT
config.xml
<?xml version="1.0"?>
<m0n0wall>
<version>2.0</version>
<lastchange>1443415554</lastchange>
<system>
<hostname>firewall</hostname>
<domain>hochhamm.loc</domain>
<dnsallowoverride/>
<username>admin</username>
<password>xxxxx</password>
<timezone>Etc/UTC</timezone>
<time-update-interval>300</time-update-interval>
<timeservers> 0.pool.ntp.org</timeservers>
<webgui>
<protocol>http</protocol>
<port/>
</webgui>
<dnsserver>8.8.8.8</dnsserver>
<dnsserver>8.8.4.4</dnsserver>
</system>
<interfaces>
<lan>
<if>vr0</if>
<ipaddr>192.168.197.1</ipaddr>
<subnet>24</subnet>
<media/>
<mediaopt/>
</lan>
<wan>
<if>vr2</if>
<ipaddr>dhcp</ipaddr>
<subnet/>
<gateway/>
<blockpriv/>
<dhcphostname/>
<media/>
<mediaopt/>
</wan>
</interfaces>
<staticroutes/>
<pppoe>
<username/>
<password/>
<provider/>
</pppoe>
<pptp>
<username/>
<password/>
<local/>
<subnet/>
<remote/>
</pptp>
<dyndns>
<type>dyndns</type>
<username>topway</username>
<password>xxxxx</password>
<host>hochhamm.dyndns.org</host>
<mx/>
<server>dyndns.com</server>
<port/>
<enable/>
</dyndns>
<dnsupdate>
<host/>
<ttl>60</ttl>
<keyname/>
<keydata/>
</dnsupdate>
<dhcpd>
<lan>
<range>
<from>192.168.197.100</from>
<to>192.168.197.199</to>
</range>
<defaultleasetime/>
<maxleasetime/>
<next-server/>
<filename/>
<staticmap>
<mac>14:CC:20:F8:99:70</mac>
<ipaddr>192.168.197.91</ipaddr>
<descr>Foto Webcam</descr>
<next-server/>
<filename/>
</staticmap>
<enable/>
</lan>
</dhcpd>
<pptpd>
<mode/>
<nunits>16</nunits>
<redir/>
<localip/>
<remoteip/>
</pptpd>
<dnsmasq>
<enable/>
</dnsmasq>
<snmpd>
<syslocation/>
<syscontact/>
<rocommunity>public</rocommunity>
</snmpd>
<diag/>
<bridge/>
<syslog>
<reverse/>
<nentries>50</nentries>
<remoteserver/>
<remoteport/>
</syslog>
<nat>
<rule>
<protocol>tcp</protocol>
<external-port>22</external-port>
<target>192.168.197.91</target>
<local-port>22</local-port>
<interface>wan</interface>
<descr>SSH</descr>
</rule>
</nat>
<filter>
<rule>
<type>pass</type>
<interface>wan</interface>
<protocol>tcp</protocol>
<source>
<any/>
</source>
<destination>
<address>192.168.197.91</address>
<port>22</port>
</destination>
<descr>SSH</descr>
</rule>
<rule>
<type>pass</type>
<descr>Default LAN -> any</descr>
<interface>lan</interface>
<source>
<network>lan</network>
</source>
<destination>
<any/>
</destination>
</rule>
<rule>
<type>pass</type>
<descr>Default IPsec VPN</descr>
<interface>ipsec</interface>
<source>
<any/>
</source>
<destination>
<any/>
</destination>
</rule>
</filter>
<shaper/>
<ipsec>
<tunnel>
<dpddelay>60</dpddelay>
<interface>wan</interface>
<local-subnet>
<network>lan</network>
</local-subnet>
<remote-subnet>192.168.201.0/24</remote-subnet>
<remote-gateway>vpn.schwellbrunn.com</remote-gateway>
<p1>
<mode>main</mode>
<myident>
<myaddress/>
</myident>
<encryption-algorithm>3des</encryption-algorithm>
<hash-algorithm>md5</hash-algorithm>
<dhgroup>2</dhgroup>
<lifetime>86400</lifetime>
<pre-shared-key>xxxxx</pre-shared-key>
<private-key/>
<cert/>
<peercert/>
<authentication_method>pre_shared_key</authentication_method>
</p1>
<p2>
<protocol>esp</protocol>
<encryption-algorithm-option>3des</encryption-algorithm-option>
<hash-algorithm-option>hmac_md5</hash-algorithm-option>
<pfsgroup>2</pfsgroup>
<lifetime>86400</lifetime>
</p2>
<descr>Heimat</descr>
</tunnel>
<mobileclients>
<enable/>
<natt/>
<dpddelay/>
<p1>
<mode>aggressive</mode>
<myident>
<myaddress/>
</myident>
<encryption-algorithm>3des</encryption-algorithm>
<hash-algorithm>sha1</hash-algorithm>
<dhgroup>2</dhgroup>
<lifetime/>
<private-key/>
<cert/>
<authentication_method>pre_shared_key</authentication_method>
</p1>
<p2>
<protocol>esp</protocol>
<encryption-algorithm-option>3des</encryption-algorithm-option>
<hash-algorithm-option>hmac_sha1</hash-algorithm-option>
<pfsgroup>2</pfsgroup>
<lifetime/>
</p2>
</mobileclients>
<mobilekey>
<ident>daniel.klaus@hotmail.ch</ident>
<pre-shared-key>xxxxx</pre-shared-key>
</mobilekey>
<enable/>
</ipsec>
<aliases/>
<proxyarp/>
<wol/>
<croen>
<interval>10</interval>
</croen>
</m0n0wall>
<?xml version="1.0"?>
<m0n0wall>
<version>2.0</version>
<lastchange>1443415554</lastchange>
<system>
<hostname>firewall</hostname>
<domain>hochhamm.loc</domain>
<dnsallowoverride/>
<username>admin</username>
<password>xxxxx</password>
<timezone>Etc/UTC</timezone>
<time-update-interval>300</time-update-interval>
<timeservers> 0.pool.ntp.org</timeservers>
<webgui>
<protocol>http</protocol>
<port/>
</webgui>
<dnsserver>8.8.8.8</dnsserver>
<dnsserver>8.8.4.4</dnsserver>
</system>
<interfaces>
<lan>
<if>vr0</if>
<ipaddr>192.168.197.1</ipaddr>
<subnet>24</subnet>
<media/>
<mediaopt/>
</lan>
<wan>
<if>vr2</if>
<ipaddr>dhcp</ipaddr>
<subnet/>
<gateway/>
<blockpriv/>
<dhcphostname/>
<media/>
<mediaopt/>
</wan>
</interfaces>
<staticroutes/>
<pppoe>
<username/>
<password/>
<provider/>
</pppoe>
<pptp>
<username/>
<password/>
<local/>
<subnet/>
<remote/>
</pptp>
<dyndns>
<type>dyndns</type>
<username>topway</username>
<password>xxxxx</password>
<host>hochhamm.dyndns.org</host>
<mx/>
<server>dyndns.com</server>
<port/>
<enable/>
</dyndns>
<dnsupdate>
<host/>
<ttl>60</ttl>
<keyname/>
<keydata/>
</dnsupdate>
<dhcpd>
<lan>
<range>
<from>192.168.197.100</from>
<to>192.168.197.199</to>
</range>
<defaultleasetime/>
<maxleasetime/>
<next-server/>
<filename/>
<staticmap>
<mac>14:CC:20:F8:99:70</mac>
<ipaddr>192.168.197.91</ipaddr>
<descr>Foto Webcam</descr>
<next-server/>
<filename/>
</staticmap>
<enable/>
</lan>
</dhcpd>
<pptpd>
<mode/>
<nunits>16</nunits>
<redir/>
<localip/>
<remoteip/>
</pptpd>
<dnsmasq>
<enable/>
</dnsmasq>
<snmpd>
<syslocation/>
<syscontact/>
<rocommunity>public</rocommunity>
</snmpd>
<diag/>
<bridge/>
<syslog>
<reverse/>
<nentries>50</nentries>
<remoteserver/>
<remoteport/>
</syslog>
<nat>
<rule>
<protocol>tcp</protocol>
<external-port>22</external-port>
<target>192.168.197.91</target>
<local-port>22</local-port>
<interface>wan</interface>
<descr>SSH</descr>
</rule>
</nat>
<filter>
<rule>
<type>pass</type>
<interface>wan</interface>
<protocol>tcp</protocol>
<source>
<any/>
</source>
<destination>
<address>192.168.197.91</address>
<port>22</port>
</destination>
<descr>SSH</descr>
</rule>
<rule>
<type>pass</type>
<descr>Default LAN -> any</descr>
<interface>lan</interface>
<source>
<network>lan</network>
</source>
<destination>
<any/>
</destination>
</rule>
<rule>
<type>pass</type>
<descr>Default IPsec VPN</descr>
<interface>ipsec</interface>
<source>
<any/>
</source>
<destination>
<any/>
</destination>
</rule>
</filter>
<shaper/>
<ipsec>
<tunnel>
<dpddelay>60</dpddelay>
<interface>wan</interface>
<local-subnet>
<network>lan</network>
</local-subnet>
<remote-subnet>192.168.201.0/24</remote-subnet>
<remote-gateway>vpn.schwellbrunn.com</remote-gateway>
<p1>
<mode>main</mode>
<myident>
<myaddress/>
</myident>
<encryption-algorithm>3des</encryption-algorithm>
<hash-algorithm>md5</hash-algorithm>
<dhgroup>2</dhgroup>
<lifetime>86400</lifetime>
<pre-shared-key>xxxxx</pre-shared-key>
<private-key/>
<cert/>
<peercert/>
<authentication_method>pre_shared_key</authentication_method>
</p1>
<p2>
<protocol>esp</protocol>
<encryption-algorithm-option>3des</encryption-algorithm-option>
<hash-algorithm-option>hmac_md5</hash-algorithm-option>
<pfsgroup>2</pfsgroup>
<lifetime>86400</lifetime>
</p2>
<descr>Heimat</descr>
</tunnel>
<mobileclients>
<enable/>
<natt/>
<dpddelay/>
<p1>
<mode>aggressive</mode>
<myident>
<myaddress/>
</myident>
<encryption-algorithm>3des</encryption-algorithm>
<hash-algorithm>sha1</hash-algorithm>
<dhgroup>2</dhgroup>
<lifetime/>
<private-key/>
<cert/>
<authentication_method>pre_shared_key</authentication_method>
</p1>
<p2>
<protocol>esp</protocol>
<encryption-algorithm-option>3des</encryption-algorithm-option>
<hash-algorithm-option>hmac_sha1</hash-algorithm-option>
<pfsgroup>2</pfsgroup>
<lifetime/>
</p2>
</mobileclients>
<mobilekey>
<ident>daniel.klaus@hotmail.ch</ident>
<pre-shared-key>xxxxx</pre-shared-key>
</mobilekey>
<enable/>
</ipsec>
<aliases/>
<proxyarp/>
<wol/>
<croen>
<interval>10</interval>
</croen>
</m0n0wall>