diff options
Diffstat (limited to 'templates/03_nat_router_template.tkmfrs')
-rw-r--r-- | templates/03_nat_router_template.tkmfrs | 70 |
1 files changed, 70 insertions, 0 deletions
diff --git a/templates/03_nat_router_template.tkmfrs b/templates/03_nat_router_template.tkmfrs new file mode 100644 index 0000000..9fe811e --- /dev/null +++ b/templates/03_nat_router_template.tkmfrs @@ -0,0 +1,70 @@ +<!DOCTYPE kmyfirewall-ruleset> +<kmfnet maxVersion="~" minVersion="1.1.0" version="1.1.0" interface="iptables" uuid="{41b36b2b-68e2-4545-b34d-3cf3609c204f}" > +<netzone guiName="Gloabl Network" readonly="bool:on" uuid="{3349418e-3923-4f3c-933c-b1bd91a2c84a}" name="mynetwork" description="This is the global zone that contains all valid IP addresses." > + <fromIP address="0.0.0.0" /> + <netMask address="0" /> +<target sshPort="22" address="127.0.0.1" guiName="My Local Computer" readonly="bool:on" uuid="{f71cacc9-e95c-4867-aab2-7cafd847dab8}" name="localhost" description="Local copmuter running KMyFirewall" > +<targetconfig uuid="{634f667c-965e-42e8-ade6-5906f4037873}" name="Untitled" description="No Description Available" > + <os name="linux" /> + <backend name="iptables" /> + <distribution name="" /> + <initPath name="" /> + <IPTPath name="" /> + <modprobePath name="" /> + <rcDefaultPath name="" /> +</targetconfig> + <kmfrs maxVersion="~" minVersion="1.0.0" version="1.1.0" uuid="{2871e950-a8e0-4b00-844c-ad841dc30b2f}" > + <abstract use_nat="yes" use_filter="yes" use_syn_cookies="yes" use_ipfwd="yes" use_martians="no" use_modules="yes" use_rp_filter="no" name="Nat Router Template" use_mangle="yes" description="Template for setting up a NAT (Network Address Translation) router. +This kind of router is ment to be used to share an Internet connection with other hosts on the local LAN." /> +<table uuid="{040a7b73-75b4-4093-a78e-6048063425ae}" name="filter" description="This table is the main table for filtering +packets. Here you may define your +access control rules" > +<chain default_target="ACCEPT" builtin="yes" uuid="{5fa9a7bf-b002-41b9-b5e5-dfc3f1e7fa9a}" name="INPUT" description="In this chain you can filter packets that +are addressed directly to this computer." /> +<chain default_target="ACCEPT" builtin="yes" uuid="{41527b27-863a-4adc-bcd1-e6d90f03d355}" name="OUTPUT" description="In this chain you can decide which +packets are allowed to be sent away +from this computer." /> +<chain default_target="ACCEPT" builtin="yes" uuid="{11b0d4a2-2a94-46a3-ad44-b2e223521a6f}" name="FORWARD" description="In this chain you can filter the packets +that are routed to other hosts by this +computer." /> +</table> +<table uuid="{f203117d-ad4f-4f46-929e-43ab3dde01b8}" name="nat" description="This table is made for every kind of +NAT (Network Address Translation)." > +<chain default_target="ACCEPT" builtin="yes" uuid="{99c0abdb-88b2-40df-8e66-a4ade347d5e2}" name="OUTPUT" description="In this chain you can decide which +packets are allowed to be sent away +from this computer." /> +<chain default_target="ACCEPT" builtin="yes" uuid="{b8166bcc-b5d0-40dd-ae25-6e0f3a9c51f3}" name="PREROUTING" description="..." /> +<chain default_target="ACCEPT" builtin="yes" uuid="{322bf0ef-dd77-45ec-b702-139ac167c096}" name="POSTROUTING" description="..." > +<rule num="0" logging="no" target="MASQUERADE" custom_rule="no" uuid="{3b040513-17eb-4dc6-be7c-2e971161317c}" name="NAT" enabled="yes" description="No Description Available" > +<ruleoption targetoption="no" type="interface_opt" uuid="{15ba5aa9-127f-47a7-a8ae-f396d0622215}" > + <ruleoptionvalue value0="bool:off" /> + <ruleoptionvalue value1="eth0" /> + <ruleoptionvalue value2="bool:off" /> + <ruleoptionvalue value3="bool:off" /> + <ruleoptionvalue value4="bool:off" /> + <ruleoptionvalue value5="bool:off" /> + <ruleoptionvalue value6="bool:off" /> + <ruleoptionvalue value7="bool:off" /> + <ruleoptionvalue value8="bool:off" /> + <ruleoptionvalue value9="bool:off" /> +</ruleoption> +</rule> +</chain> +</table> +<table uuid="{3f5d7d33-a987-4cbd-a50f-8416a23ad585}" name="mangle" description="This table is made for altering packets." > +<chain default_target="ACCEPT" builtin="yes" uuid="{f5fc2c48-f20f-4a4f-8fe9-21f4d5176abe}" name="INPUT" description="In this chain you can filter packets that +are addressed directly to this compter." /> +<chain default_target="ACCEPT" builtin="yes" uuid="{d25fd085-f1cc-462a-bdb0-cf2bc1128a01}" name="OUTPUT" description="In this chain you can decide which +packets are allowed to be sent away +from this computer." /> +<chain default_target="ACCEPT" builtin="yes" uuid="{028a65ae-ab15-4836-a3eb-4e3a83ccae7e}" name="FORWARD" description="In this chain you can filter the packets +that are routed to other hosts by this +computer." /> +<chain default_target="ACCEPT" builtin="yes" uuid="{c63b0745-9676-4195-aacd-27f3546ceac9}" name="PREROUTING" description="..." /> +<chain default_target="ACCEPT" builtin="yes" uuid="{8778aef6-85be-483f-934e-498f9e2e871f}" name="POSTROUTING" description="..." /> +</table> + </kmfrs> +</target> +</netzone> +</kmfnet> + |