summaryrefslogtreecommitdiffstats
path: root/templates/03_nat_router_template.tkmfrs
diff options
context:
space:
mode:
Diffstat (limited to 'templates/03_nat_router_template.tkmfrs')
-rw-r--r--templates/03_nat_router_template.tkmfrs70
1 files changed, 70 insertions, 0 deletions
diff --git a/templates/03_nat_router_template.tkmfrs b/templates/03_nat_router_template.tkmfrs
new file mode 100644
index 0000000..9fe811e
--- /dev/null
+++ b/templates/03_nat_router_template.tkmfrs
@@ -0,0 +1,70 @@
+<!DOCTYPE kmyfirewall-ruleset>
+<kmfnet maxVersion="~" minVersion="1.1.0" version="1.1.0" interface="iptables" uuid="{41b36b2b-68e2-4545-b34d-3cf3609c204f}" >
+<netzone guiName="Gloabl Network" readonly="bool:on" uuid="{3349418e-3923-4f3c-933c-b1bd91a2c84a}" name="mynetwork" description="This is the global zone that contains all valid IP addresses." >
+ <fromIP address="0.0.0.0" />
+ <netMask address="0" />
+<target sshPort="22" address="127.0.0.1" guiName="My Local Computer" readonly="bool:on" uuid="{f71cacc9-e95c-4867-aab2-7cafd847dab8}" name="localhost" description="Local copmuter running KMyFirewall" >
+<targetconfig uuid="{634f667c-965e-42e8-ade6-5906f4037873}" name="Untitled" description="No Description Available" >
+ <os name="linux" />
+ <backend name="iptables" />
+ <distribution name="" />
+ <initPath name="" />
+ <IPTPath name="" />
+ <modprobePath name="" />
+ <rcDefaultPath name="" />
+</targetconfig>
+ <kmfrs maxVersion="~" minVersion="1.0.0" version="1.1.0" uuid="{2871e950-a8e0-4b00-844c-ad841dc30b2f}" >
+ <abstract use_nat="yes" use_filter="yes" use_syn_cookies="yes" use_ipfwd="yes" use_martians="no" use_modules="yes" use_rp_filter="no" name="Nat Router Template" use_mangle="yes" description="Template for setting up a NAT (Network Address Translation) router.
+This kind of router is ment to be used to share an Internet connection with other hosts on the local LAN." />
+<table uuid="{040a7b73-75b4-4093-a78e-6048063425ae}" name="filter" description="This table is the main table for filtering
+packets. Here you may define your
+access control rules" >
+<chain default_target="ACCEPT" builtin="yes" uuid="{5fa9a7bf-b002-41b9-b5e5-dfc3f1e7fa9a}" name="INPUT" description="In this chain you can filter packets that
+are addressed directly to this computer." />
+<chain default_target="ACCEPT" builtin="yes" uuid="{41527b27-863a-4adc-bcd1-e6d90f03d355}" name="OUTPUT" description="In this chain you can decide which
+packets are allowed to be sent away
+from this computer." />
+<chain default_target="ACCEPT" builtin="yes" uuid="{11b0d4a2-2a94-46a3-ad44-b2e223521a6f}" name="FORWARD" description="In this chain you can filter the packets
+that are routed to other hosts by this
+computer." />
+</table>
+<table uuid="{f203117d-ad4f-4f46-929e-43ab3dde01b8}" name="nat" description="This table is made for every kind of
+NAT (Network Address Translation)." >
+<chain default_target="ACCEPT" builtin="yes" uuid="{99c0abdb-88b2-40df-8e66-a4ade347d5e2}" name="OUTPUT" description="In this chain you can decide which
+packets are allowed to be sent away
+from this computer." />
+<chain default_target="ACCEPT" builtin="yes" uuid="{b8166bcc-b5d0-40dd-ae25-6e0f3a9c51f3}" name="PREROUTING" description="..." />
+<chain default_target="ACCEPT" builtin="yes" uuid="{322bf0ef-dd77-45ec-b702-139ac167c096}" name="POSTROUTING" description="..." >
+<rule num="0" logging="no" target="MASQUERADE" custom_rule="no" uuid="{3b040513-17eb-4dc6-be7c-2e971161317c}" name="NAT" enabled="yes" description="No Description Available" >
+<ruleoption targetoption="no" type="interface_opt" uuid="{15ba5aa9-127f-47a7-a8ae-f396d0622215}" >
+ <ruleoptionvalue value0="bool:off" />
+ <ruleoptionvalue value1="eth0" />
+ <ruleoptionvalue value2="bool:off" />
+ <ruleoptionvalue value3="bool:off" />
+ <ruleoptionvalue value4="bool:off" />
+ <ruleoptionvalue value5="bool:off" />
+ <ruleoptionvalue value6="bool:off" />
+ <ruleoptionvalue value7="bool:off" />
+ <ruleoptionvalue value8="bool:off" />
+ <ruleoptionvalue value9="bool:off" />
+</ruleoption>
+</rule>
+</chain>
+</table>
+<table uuid="{3f5d7d33-a987-4cbd-a50f-8416a23ad585}" name="mangle" description="This table is made for altering packets." >
+<chain default_target="ACCEPT" builtin="yes" uuid="{f5fc2c48-f20f-4a4f-8fe9-21f4d5176abe}" name="INPUT" description="In this chain you can filter packets that
+are addressed directly to this compter." />
+<chain default_target="ACCEPT" builtin="yes" uuid="{d25fd085-f1cc-462a-bdb0-cf2bc1128a01}" name="OUTPUT" description="In this chain you can decide which
+packets are allowed to be sent away
+from this computer." />
+<chain default_target="ACCEPT" builtin="yes" uuid="{028a65ae-ab15-4836-a3eb-4e3a83ccae7e}" name="FORWARD" description="In this chain you can filter the packets
+that are routed to other hosts by this
+computer." />
+<chain default_target="ACCEPT" builtin="yes" uuid="{c63b0745-9676-4195-aacd-27f3546ceac9}" name="PREROUTING" description="..." />
+<chain default_target="ACCEPT" builtin="yes" uuid="{8778aef6-85be-483f-934e-498f9e2e871f}" name="POSTROUTING" description="..." />
+</table>
+ </kmfrs>
+</target>
+</netzone>
+</kmfnet>
+