File: sample.xml

package info (click to toggle)
uruk 20240930-1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid, trixie
  • size: 1,232 kB
  • sloc: sh: 1,910; makefile: 155; xml: 51
file content (79 lines) | stat: -rw-r--r-- 2,839 bytes parent folder | download | duplicates (8) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
 
<?xml version="1.0" encoding="UTF-8"?>
<!--+
     | MIT Licence
     | 
     | Copyright (c) 2007 Fred Vos - Mokolo.org
     | 
     | Permission is hereby granted, free of charge, to any person obtaining a
     | copy of this software and associated documentation files (the "Software"),
     | to deal in the Software without restriction, including without limitation
     | the rights to use, copy, modify, merge, publish, distribute, sublicense,
     | and/or sell copies of the Software, and to permit persons to whom the
     | Software is furnished to do so, subject to the following conditions:
     |
     | The above copyright notice and this permission notice shall be included
     | in all copies or substantial portions of the Software.
     |
     | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
     | OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
     | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
     | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
     | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
     | FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER
     | DEALINGS IN THE SOFTWARE.
     +-->
<fw:firewall xmlns:fw="http://www.mokolo.org/fwxml">

  <fw:interfaces>
    <fw:interface name="eth0" ip="1.2.3.4" network="1.2.0.0/16" broadcast="1.2.255.255">
      <fw:grants-tcp>
        <fw:grant service-ref="SSH" source-ref="HomeWork"/>
        <fw:grant service-ref="WWW" source-ref="World"/>
        <fw:grant service-ref="Tomcat" source-ref="HomeWork"/>
      </fw:grants-tcp>
    </fw:interface>
  </fw:interfaces>

  <fw:sources>
    <fw:source name="HomeWork">
      <fw:network-refs>
        <fw:network-ref name="Work"/>
        <fw:network-ref name="Home"/>
        <fw:network-ref name="HomeVPN"/>
      </fw:network-refs>
    </fw:source>
    <fw:source name="World">
      <fw:network-refs>
        <fw:network-ref name="World"/>
      </fw:network-refs>
    </fw:source>
  </fw:sources>

  <fw:networks>
    <fw:network name="World" ip-range="0.0.0.0/0"/>
    <fw:network name="Work" ip-range="137.56.0.0/16"/>
    <fw:network name="Home" ip-range="12.34.56.78"/>
    <fw:network name="HomeVPN" ip-range="123.124.125.126"/>
  </fw:networks>

  <fw:services>
    <fw:service name="SSH">
      <fw:ports>
        <fw:port nr="2223"/> <!-- Not listening to default port 22 -->
      </fw:ports>
    </fw:service>
    <fw:service name="Tomcat">
      <fw:ports>
        <fw:port nr="8080"/>
        <fw:port nr="8443"/> <!-- With SSL -->
      </fw:ports>
    </fw:service>
    <fw:service name="WWW">
      <fw:ports>
        <fw:port nr="www"/>
        <fw:port nr="https"/>
      </fw:ports>
    </fw:service>
  </fw:services>

</fw:firewall>