1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
|
<?xml version="1.0"?>
<!DOCTYPE FWObjectDatabase SYSTEM "fwbuilder.dtd">
<FWObjectDatabase version="@LIBFWBUILDER_VERSION@" id="root">
<AnyNetwork comment="Any Network" id="sysid0" library="Standard" name="Any" address="0.0.0.0" netmask="0.0.0.0"/>
<AnyIPService comment="Any IP Service" id="sysid1" library="Standard" name="Any" protocol_num="0"/>
<AnyInterval comment="Any Interval" from_day="-1" from_hour="-1" from_minute="-1" from_month="-1" from_weekday="-1" from_year="-1" id="sysid2" library="Standard" name="Any" to_day="-1" to_hour="-1" to_minute="-1" to_month="-1" to_weekday="-1" to_year="-1"/>
<ObjectGroup id="sysid3" library="Standard" name="ScratchPad"/>
<ObjectGroup id="stdid01" library="Standard" name="Objects">
<ObjectGroup id="stdid04" library="Standard" name="Groups"/>
<ObjectGroup id="stdid02" library="Standard" name="Hosts"/>
<ObjectGroup id="stdid03" library="Standard" name="Networks"/>
</ObjectGroup>
<ServiceGroup id="stdid05" library="Standard" name="Services">
<CustomService comment="This service matches all packets which are part of network connections established through the firewall, or \nconnections 'related' to those established through the firewall. Term 'established' refers to the state tracking \nmechanism which exists inside iptables and other stateful firewalls and does not mean any particular \ncombination of packet header options. Packet is considered to correspond to the state 'ESTABLISHED' if it \nbelongs to the network session, for which proper initiation has been seen by the firewall, so its stateful \ninspection module made appropriate record in the state table. Usually statefule firewalls keep track of network \nconnections using not only tcp protocol, but also udp and sometimes even icmp protocols. 'RELATED' \ndescribes packet belonging to a separate network connection, related to the session firewall is keeping \ntrack of. One example is FTP command and FTP data sessions." id="stdid14" library="Standard" name="ESTABLISHED">
<CustomServiceCommand platform="Undefined"></CustomServiceCommand>
<CustomServiceCommand platform="ipfilter"></CustomServiceCommand>
<CustomServiceCommand platform="iptables">-m state --state ESTABLISHED,RELATED</CustomServiceCommand>
</CustomService>
<ServiceGroup id="stdid10" library="Standard" name="Groups">
<ServiceGroup comment="" id="sg-DHCP" library="Standard" name="DHCP">
<ServiceRef ref="udp-bootpc"/>
<ServiceRef ref="udp-bootps"/>
</ServiceGroup>
<ServiceGroup comment="" id="sg-NETBIOS" library="Standard" name="NETBIOS">
<ServiceRef ref="udp-netbios-dgm"/>
<ServiceRef ref="udp-netbios-ns"/>
<ServiceRef ref="udp-netbios-ssn"/>
</ServiceGroup>
<ServiceGroup comment="" id="sg-Useful_ICMP" library="Standard" name="Useful_ICMP">
<ServiceRef ref="icmp-Time_exceeded"/>
<ServiceRef ref="icmp-Time_exceeded_in_transit"/>
<ServiceRef ref="icmp-ping_reply"/>
<ServiceRef ref="icmp-Unreachables"/>
</ServiceGroup>
<ServiceGroup id="id3B4FEDD9" library="Standard" name="kerberos">
<ServiceRef ref="id3B4FEDA5"/>
<ServiceRef ref="id3B4FEDA9"/>
<ServiceRef ref="id3B4FEDA7"/>
<ServiceRef ref="id3B4FEDAB"/>
<ServiceRef ref="id3B4FEDA3"/>
<ServiceRef ref="id3B4FEE21"/>
<ServiceRef ref="id3B4FEE23"/>
</ServiceGroup>
<ServiceGroup id="id3B4FEFFA" library="Standard" name="quake">
<ServiceRef ref="id3B4FEF7C"/>
<ServiceRef ref="id3B4FEF7E"/>
</ServiceGroup>
<ServiceGroup id="id3B4FF35E" library="Standard" name="nfs">
<ServiceRef ref="id3B4FEE7A"/>
<ServiceRef ref="id3B4FEE78"/>
</ServiceGroup>
</ServiceGroup>
<ServiceGroup id="stdid07" library="Standard" name="ICMP">
<ICMPService code="-1" comment="" id="icmp-Unreachables" library="Standard" name="all ICMP unreachables" type="3"/>
<ICMPService code="-1" comment="" id="id3C20EEB5" library="Standard" name="any ICMP" type="-1"/>
<ICMPService code="1" comment="" id="icmp-Host_unreach" library="Standard" name="host_unreach" type="3"/>
<ICMPService code="0" comment="" id="icmp-ping_reply" library="Standard" name="ping reply" type="0"/>
<ICMPService code="0" comment="" id="icmp-ping_request" library="Standard" name="ping request" type="8"/>
<ICMPService code="3" comment="Port unreachable" id="icmp-Port_unreach" library="Standard" name="port unreach" type="3"/>
<ICMPService code="0" comment="ICMP messages of this type are needed for traceroute" id="icmp-Time_exceeded" library="Standard" name="time exceeded" type="11"/>
<ICMPService code="1" comment="" id="icmp-Time_exceeded_in_transit" library="Standard" name="time exceeded in transit" type="11"/>
</ServiceGroup>
<ServiceGroup id="stdid06" library="Standard" name="IP">
<IPService comment="" fragm="False" id="ip-IPSEC" library="Standard" lsrr="False" name="IPSEC" protocol_num="50" rr="False" short_fragm="False" ssrr="False" ts="False"/>
<IPService comment="Route recording packets" fragm="False" id="ip-RR" library="Standard" lsrr="False" name="RR" protocol_num="0" rr="True" short_fragm="False" ssrr="False" ts="False"/>
<IPService comment="All sorts of Source Routing Packets" fragm="False" id="ip-SRR" library="Standard" lsrr="True" name="SRR" protocol_num="0" rr="False" short_fragm="False" ssrr="True" ts="False"/>
<IPService comment="'Short' fragments" fragm="False" id="ip-IP_Fragments" library="Standard" lsrr="False" name="ip_fragments" protocol_num="0" rr="False" short_fragm="True" ssrr="False" ts="False"/>
</ServiceGroup>
<ServiceGroup id="stdid09" library="Standard" name="TCP">
<TCPService ack_flag="False" comment="ipchains used to use this range of port numbers for masquerading. " dst_range_end="0" dst_range_start="0" fin_flag="False" id="tcp-ALL_TCP_Masqueraded" library="Standard" name="ALL TCP Masqueraded" rst_flag="False" src_range_end="65095" src_range_start="61000" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="0" dst_range_start="0" fin_flag="False" id="tcp-All_TCP" library="Standard" name="All TCP" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="1720" dst_range_start="1720" fin_flag="False" id="id3AEDBEAC" library="Standard" name="H323" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="113" dst_range_start="113" fin_flag="False" id="tcp-Auth" library="Standard" name="auth" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="13" dst_range_start="13" fin_flag="False" id="id3AEDBE6E" library="Standard" name="daytime" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="53" dst_range_start="53" fin_flag="False" id="tcp-DNS_zone_transf" library="Standard" name="dns_tcp" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="2105" dst_range_start="2105" fin_flag="False" id="id3B4FEDA3" library="Standard" name="eklogin" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="79" dst_range_start="79" fin_flag="False" id="id3AECF774" library="Standard" name="finger" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="21" dst_range_start="21" fin_flag="False" id="tcp-FTP" library="Standard" name="ftp" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="FTP data channel.\nNote: FTP protocol does not really require server to use source port 20 for the data channel, \nbut many ftp server implementations do so." dst_range_end="65535" dst_range_start="1025" fin_flag="False" id="tcp-FTP_data" library="Standard" name="ftp data" rst_flag="False" src_range_end="20" src_range_start="20" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="80" dst_range_start="80" fin_flag="False" id="tcp-HTTP" library="Standard" name="http" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="443" dst_range_start="443" fin_flag="False" id="id3B4FED69" library="Standard" name="https" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="143" dst_range_start="143" fin_flag="False" id="id3AECF776" library="Standard" name="imap" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="993" dst_range_start="993" fin_flag="False" id="id3B4FED9F" library="Standard" name="imaps" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="6667" dst_range_start="6667" fin_flag="False" id="id3B4FF13C" library="Standard" name="irc" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="543" dst_range_start="543" fin_flag="False" id="id3B4FEE21" library="Standard" name="klogin" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="544" dst_range_start="544" fin_flag="False" id="id3B4FEE23" library="Standard" name="ksh" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="389" dst_range_start="389" fin_flag="False" id="id3AECF778" library="Standard" name="ldap" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="98" dst_range_start="98" fin_flag="False" id="id3B4FF000" library="Standard" name="linuxconf" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="98" dst_range_start="98" fin_flag="False" id="id3AED0D6D" library="Standard" name="linuxconf" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="3306" dst_range_start="3306" fin_flag="False" id="id3B4FEEEE" library="Standard" name="mysql" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="2049" dst_range_start="2049" fin_flag="False" id="id3B4FEE7A" library="Standard" name="nfs" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="119" dst_range_start="119" fin_flag="False" id="tcp-NNTP" library="Standard" name="nntp" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="110" dst_range_start="110" fin_flag="False" id="id3B4FEE1D" library="Standard" name="pop3" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="5432" dst_range_start="5432" fin_flag="False" id="id3B4FF0EA" library="Standard" name="postgres" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="515" dst_range_start="515" fin_flag="False" id="id3AECF782" library="Standard" name="printer" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="26000" dst_range_start="26000" fin_flag="False" id="id3B4FEF7C" library="Standard" name="quake" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="512" dst_range_start="512" fin_flag="False" id="id3AECF77A" library="Standard" name="rexec" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="513" dst_range_start="513" fin_flag="False" id="id3AECF77C" library="Standard" name="rlogin" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="514" dst_range_start="514" fin_flag="False" id="id3AECF77E" library="Standard" name="rshell" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="4321" dst_range_start="4321" fin_flag="False" id="id3B4FEF34" library="Standard" name="rwhois" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="25" dst_range_start="25" fin_flag="False" id="tcp-SMTP" library="Standard" name="smtp" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="465" dst_range_start="465" fin_flag="False" id="id3B4FF04C" library="Standard" name="smtps" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="1080" dst_range_start="1080" fin_flag="False" id="id3B4FEE76" library="Standard" name="socks" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="3128" dst_range_start="3128" fin_flag="False" id="id3B4FF09A" library="Standard" name="squid" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="22" dst_range_start="22" fin_flag="False" id="tcp-SSH" library="Standard" name="ssh" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="111" dst_range_start="111" fin_flag="False" id="id3AEDBE00" library="Standard" name="sunrpc" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="0" dst_range_start="0" fin_flag="False" id="tcp-TCP-SYN" library="Standard" name="tcp-syn" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="True"/>
<TCPService ack_flag="False" comment="" dst_range_end="23" dst_range_start="23" fin_flag="False" id="tcp-Telnet" library="Standard" name="telnet" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="540" dst_range_start="540" fin_flag="False" id="tcp-uucp" library="Standard" name="uucp" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
<TCPService ack_flag="False" comment="" dst_range_end="7100" dst_range_start="7100" fin_flag="False" id="id3B4FF1B8" library="Standard" name="xfs" rst_flag="False" src_range_end="0" src_range_start="0" syn_flag="False"/>
</ServiceGroup>
<ServiceGroup id="stdid08" library="Standard" name="UDP">
<UDPService comment="ipchains used to use this port range for masqueraded packets" dst_range_end="0" dst_range_start="0" id="udp-ALL_UDP_Masqueraded" library="Standard" name="ALL UDP Masqueraded" src_range_end="65095" src_range_start="61000"/>
<UDPService comment="" dst_range_end="0" dst_range_start="0" id="udp-All_UDP" library="Standard" name="All UDP" src_range_end="0" src_range_start="0"/>
<UDPService comment="routing protocol RIP" dst_range_end="520" dst_range_start="520" id="id3AED0D6B" library="Standard" name="RIP" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="7009" dst_range_start="7000" id="id3B4FEDA1" library="Standard" name="afs" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="68" dst_range_start="68" id="udp-bootpc" library="Standard" name="bootpc" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="67" dst_range_start="67" id="udp-bootps" library="Standard" name="bootps" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="13" dst_range_start="13" id="id3AEDBE70" library="Standard" name="daytime" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="53" dst_range_start="53" id="udp-DNS" library="Standard" name="dns" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="88" dst_range_start="88" id="id3B4FEDA5" library="Standard" name="kerberos" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="750" dst_range_start="749" id="id3B4FEDA9" library="Standard" name="kerberos-adm" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="464" dst_range_start="464" id="id3B4FEDA7" library="Standard" name="kpasswd" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="4444" dst_range_start="4444" id="id3B4FEDAB" library="Standard" name="krb524" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="138" dst_range_start="138" id="udp-netbios-dgm" library="Standard" name="netbios-dgm" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="137" dst_range_start="137" id="udp-netbios-ns" library="Standard" name="netbios-ns" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="139" dst_range_start="139" id="udp-netbios-ssn" library="Standard" name="netbios-ssn" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="2049" dst_range_start="2049" id="id3B4FEE78" library="Standard" name="nfs" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="123" dst_range_start="123" id="udp-ntp" library="Standard" name="ntp" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="26000" dst_range_start="26000" id="id3B4FEF7E" library="Standard" name="quake" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="520" dst_range_start="520" id="id3B4FEE1F" library="Standard" name="rip" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="161" dst_range_start="161" id="udp-SNMP" library="Standard" name="snmp" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="162" dst_range_start="162" id="id3AED0D69" library="Standard" name="snmp-trap" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="111" dst_range_start="111" id="id3AEDBE19" library="Standard" name="sunrpc" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="514" dst_range_start="514" id="id3AECF780" library="Standard" name="syslog" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="69" dst_range_start="69" id="id3AED0D67" library="Standard" name="tftp" src_range_end="0" src_range_start="0"/>
<UDPService comment="" dst_range_end="33464" dst_range_start="33434" id="id3AED0D8C" library="Standard" name="traceroute" src_range_end="0" src_range_start="0"/>
</ServiceGroup>
<ServiceGroup id="stdid13" library="Standard" name="Custom">
<CustomService comment="works in iptables and requires patch-o-matic" id="id3B64EEA8" library="Standard" name="rpc">
<CustomServiceCommand platform="Undefined"></CustomServiceCommand>
<CustomServiceCommand platform="ipfilter"></CustomServiceCommand>
<CustomServiceCommand platform="iptables">-m record_rpc</CustomServiceCommand>
</CustomService>
<CustomService comment="IRC connection tracker, supports DCC. Works on iptables and requires patch-o-matic" id="id3B64EF4E" library="Standard" name="irc-conn">
<CustomServiceCommand platform="Undefined"></CustomServiceCommand>
<CustomServiceCommand platform="ipfilter"></CustomServiceCommand>
<CustomServiceCommand platform="iptables">-m irc</CustomServiceCommand>
</CustomService>
<CustomService comment="Port scan detector, works only on iptables and requires patch-o-matic " id="id3B64EF50" library="Standard" name="psd">
<CustomServiceCommand platform="Undefined"></CustomServiceCommand>
<CustomServiceCommand platform="ipfilter"></CustomServiceCommand>
<CustomServiceCommand platform="iptables">-m psd --psd-weight-threshold 5 --psd-delay-threshold 10000</CustomServiceCommand>
</CustomService>
<CustomService comment="Matches a string in a whole packet, works in iptables and requires patch-o-matic" id="id3B64EF52" library="Standard" name="string">
<CustomServiceCommand platform="Undefined"></CustomServiceCommand>
<CustomServiceCommand platform="ipfilter"></CustomServiceCommand>
<CustomServiceCommand platform="iptables">-m string --string test_pattern</CustomServiceCommand>
</CustomService>
<CustomService comment="Talk protocol support. Works in iptables and requires patch-o-matic" id="id3B64EF54" library="Standard" name="talk">
<CustomServiceCommand platform="Undefined"></CustomServiceCommand>
<CustomServiceCommand platform="ipfilter"></CustomServiceCommand>
<CustomServiceCommand platform="iptables">-m talk</CustomServiceCommand>
</CustomService>
</ServiceGroup>
</ServiceGroup>
<ObjectGroup id="stdid12" library="Standard" name="Firewalls"/>
<IntervalGroup id="stdid11" library="Standard" name="Time">
<Interval comment="any day, 9:00am through 5:00pm" from_day="-1" from_hour="9" from_minute="0" from_month="-1" from_weekday="-1" from_year="-1" id="int-workhours" library="Standard" name="workhours" to_day="-1" to_hour="17" to_minute="0" to_month="-1" to_weekday="-1" to_year="-1"/>
<Interval comment="weekends: Saturday 0:00 through Sunday 23:59 " from_day="-1" from_hour="0" from_minute="0" from_month="-1" from_weekday="7" from_year="-1" id="int-weekends" library="Standard" name="weekends" to_day="-1" to_hour="23" to_minute="59" to_month="-1" to_weekday="1" to_year="-1"/>
<Interval comment="any day 6:00pm - 12:00am" from_day="-1" from_hour="18" from_minute="0" from_month="-1" from_weekday="-1" from_year="-1" id="int-afterhours" library="Standard" name="afterhours" to_day="-1" to_hour="23" to_minute="59" to_month="-1" to_weekday="-1" to_year="-1"/>
</IntervalGroup>
</FWObjectDatabase>
|
