LegacyTechops/mtp-configs/satx-corertr01.satx.turnsys.net

1636 lines
51 KiB
Plaintext
Raw Normal View History

<?xml version="1.0"?>
<pfsense>
<version>15.8</version>
<lastchange></lastchange>
<system>
<optimization>normal</optimization>
<hostname>satx-corertr01</hostname>
<domain>satx</domain>
<group>
<name>all</name>
<description><![CDATA[All Users]]></description>
<scope>system</scope>
<gid>1998</gid>
</group>
<group>
<name>admins</name>
<description><![CDATA[System Administrators]]></description>
<scope>system</scope>
<gid>1999</gid>
<member>0</member>
<member>2000</member>
<priv>page-all</priv>
</group>
<user>
<name>admin</name>
<descr><![CDATA[System Administrator]]></descr>
<scope>system</scope>
<groupname>admins</groupname>
<bcrypt-hash>$2b$10$GHehnOimQN8.BAb7EDk0y.RjsyeY74gH4VupFXlwgGVFjrZ.0AOzS</bcrypt-hash>
<uid>0</uid>
<priv>user-shell-access</priv>
<expires></expires>
<dashboardcolumns>2</dashboardcolumns>
<authorizedkeys>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</authorizedkeys>
<ipsecpsk></ipsecpsk>
<webguicss>pfSense.css</webguicss>
</user>
<user>
<scope>user</scope>
<bcrypt-hash>$2b$10$8eg0rsoXwy4p0A1GqQXXNubpjmXZiRgoDzUHzfDeVKw.hpcg17EAG</bcrypt-hash>
<descr><![CDATA[Josef Chessor]]></descr>
<name>josef</name>
<expires></expires>
<dashboardcolumns>2</dashboardcolumns>
<authorizedkeys>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</authorizedkeys>
<ipsecpsk></ipsecpsk>
<customsettings></customsettings>
<webguicss>pfSense.css</webguicss>
<uid>2000</uid>
</user>
<user>
<scope>user</scope>
<bcrypt-hash>$2b$10$W97NT9K7nL1TXYbEjHpQgemiUxVt54g9vD1nAPIuTI1ojs7hpgSx2</bcrypt-hash>
<descr><![CDATA[Oxidized]]></descr>
<name>oxidized</name>
<expires></expires>
<dashboardcolumns>2</dashboardcolumns>
<authorizedkeys>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</authorizedkeys>
<ipsecpsk></ipsecpsk>
<webguicss>pfSense.css</webguicss>
<uid>2001</uid>
<priv>user-shell-access</priv>
</user>
<nextuid>2002</nextuid>
<nextgid>2000</nextgid>
<timeservers>0.pfsense.pool.ntp.org</timeservers>
<webgui>
<protocol>https</protocol>
<ssl-certref>58c58a66b16b3</ssl-certref>
<dashboardcolumns>2</dashboardcolumns>
<port></port>
<max_procs>5</max_procs>
<nodnsrebindcheck></nodnsrebindcheck>
<disablehttpredirect></disablehttpredirect>
<nohttpreferercheck></nohttpreferercheck>
<loginautocomplete></loginautocomplete>
<webguicss>pfSense.css</webguicss>
</webgui>
<disablenatreflection>yes</disablenatreflection>
<disablesegmentationoffloading></disablesegmentationoffloading>
<disablelargereceiveoffloading></disablelargereceiveoffloading>
<ipv6allow></ipv6allow>
<powerd_ac_mode>hadp</powerd_ac_mode>
<powerd_battery_mode>hadp</powerd_battery_mode>
<powerd_normal_mode>hadp</powerd_normal_mode>
<bogons>
<interval>monthly</interval>
</bogons>
<timezone>America/Chicago</timezone>
<ssh></ssh>
<disableconsolemenu></disableconsolemenu>
<serialspeed>115200</serialspeed>
<primaryconsole>serial</primaryconsole>
<enablesshd>enabled</enablesshd>
<language>en_US</language>
<dns1gw>none</dns1gw>
<dns2gw>none</dns2gw>
<dnsserver>4.2.2.1</dnsserver>
<dnsserver>8.8.8.8</dnsserver>
</system>
<interfaces>
<wan>
<enable></enable>
<if>em1</if>
<ipaddr>dhcp</ipaddr>
<ipaddrv6>dhcp6</ipaddrv6>
<gateway></gateway>
<blockbogons>on</blockbogons>
<media></media>
<mediaopt></mediaopt>
<dhcp6-duid></dhcp6-duid>
<dhcp6-ia-pd-len>0</dhcp6-ia-pd-len>
<subnetv6></subnetv6>
<gatewayv6></gatewayv6>
<descr><![CDATA[WAN]]></descr>
</wan>
<lan>
<if>em0_vlan50</if>
<enable></enable>
<ipaddr>10.40.50.254</ipaddr>
<subnet>24</subnet>
<gateway></gateway>
<ipaddrv6></ipaddrv6>
<subnetv6></subnetv6>
<gatewayv6></gatewayv6>
<descr><![CDATA[LAN]]></descr>
</lan>
<opt1>
<descr><![CDATA[satxhouse]]></descr>
<if>em0_vlan2</if>
<spoofmac></spoofmac>
<enable></enable>
<ipaddr>10.40.2.254</ipaddr>
<subnet>24</subnet>
</opt1>
<opt2>
<descr><![CDATA[mgmt]]></descr>
<if>em0_vlan100</if>
<enable></enable>
<ipaddr>10.40.100.254</ipaddr>
<subnet>24</subnet>
<spoofmac></spoofmac>
</opt2>
<opt3>
<descr><![CDATA[cams]]></descr>
<if>em0_vlan201</if>
<spoofmac></spoofmac>
<enable></enable>
<ipaddr>10.40.201.254</ipaddr>
<subnet>24</subnet>
</opt3>
<opt4>
<descr><![CDATA[voip]]></descr>
<if>em0_vlan200</if>
<spoofmac></spoofmac>
<enable></enable>
<ipaddr>10.40.200.254</ipaddr>
<subnet>24</subnet>
</opt4>
<opt5>
<descr><![CDATA[rrrtrlan]]></descr>
<if>em0_vlan3</if>
<ipaddr>10.40.3.254</ipaddr>
<subnet>32</subnet>
<spoofmac></spoofmac>
</opt5>
</interfaces>
<staticroutes></staticroutes>
<dhcpd>
<lan>
<enable></enable>
<range>
<from>10.40.50.10</from>
<to>10.40.50.100</to>
</range>
<failover_peerip></failover_peerip>
<dhcpleaseinlocaltime></dhcpleaseinlocaltime>
<defaultleasetime></defaultleasetime>
<maxleasetime></maxleasetime>
<netmask></netmask>
<gateway></gateway>
<domain>satx</domain>
<domainsearchlist></domainsearchlist>
<ddnsdomain></ddnsdomain>
<ddnsdomainprimary></ddnsdomainprimary>
<ddnsdomainkeyname></ddnsdomainkeyname>
<ddnsdomainkey></ddnsdomainkey>
<mac_allow></mac_allow>
<mac_deny></mac_deny>
<tftp></tftp>
<ldap></ldap>
<nextserver></nextserver>
<filename></filename>
<filename32></filename32>
<filename64></filename64>
<rootpath></rootpath>
<numberoptions></numberoptions>
<staticmap>
<mac>00:14:38:8c:21:be</mac>
<cid>laserjet</cid>
<ipaddr>10.40.50.101</ipaddr>
<hostname>laserjet</hostname>
<descr></descr>
<filename></filename>
<rootpath></rootpath>
<defaultleasetime></defaultleasetime>
<maxleasetime></maxleasetime>
<gateway></gateway>
<domain></domain>
<domainsearchlist></domainsearchlist>
<ddnsdomain></ddnsdomain>
<ddnsdomainprimary></ddnsdomainprimary>
<ddnsdomainkeyname></ddnsdomainkeyname>
<ddnsdomainkey></ddnsdomainkey>
<tftp></tftp>
<ldap></ldap>
</staticmap>
<staticmap>
<mac>00:0f:60:07:11:60</mac>
<cid></cid>
<ipaddr>10.40.50.140</ipaddr>
<hostname></hostname>
<descr></descr>
<filename></filename>
<rootpath></rootpath>
<defaultleasetime></defaultleasetime>
<maxleasetime></maxleasetime>
<gateway></gateway>
<domain></domain>
<domainsearchlist></domainsearchlist>
<ddnsdomain></ddnsdomain>
<ddnsdomainprimary></ddnsdomainprimary>
<ddnsdomainkeyname></ddnsdomainkeyname>
<ddnsdomainkey></ddnsdomainkey>
<tftp></tftp>
<ldap></ldap>
</staticmap>
<staticmap>
<mac>00:0f:60:06:e6:d1</mac>
<cid></cid>
<ipaddr>10.40.50.141</ipaddr>
<hostname></hostname>
<descr></descr>
<filename></filename>
<rootpath></rootpath>
<defaultleasetime></defaultleasetime>
<maxleasetime></maxleasetime>
<gateway></gateway>
<domain></domain>
<domainsearchlist></domainsearchlist>
<ddnsdomain></ddnsdomain>
<ddnsdomainprimary></ddnsdomainprimary>
<ddnsdomainkeyname></ddnsdomainkeyname>
<ddnsdomainkey></ddnsdomainkey>
<tftp></tftp>
<ldap></ldap>
</staticmap>
<staticmap>
<mac>00:0f:60:06:13:98</mac>
<cid></cid>
<ipaddr>10.40.50.142</ipaddr>
<hostname></hostname>
<descr></descr>
<filename></filename>
<rootpath></rootpath>
<defaultleasetime></defaultleasetime>
<maxleasetime></maxleasetime>
<gateway></gateway>
<domain></domain>
<domainsearchlist></domainsearchlist>
<ddnsdomain></ddnsdomain>
<ddnsdomainprimary></ddnsdomainprimary>
<ddnsdomainkeyname></ddnsdomainkeyname>
<ddnsdomainkey></ddnsdomainkey>
<tftp></tftp>
<ldap></ldap>
</staticmap>
<staticmap>
<mac>00:0f:60:07:11:69</mac>
<cid></cid>
<ipaddr>10.40.50.143</ipaddr>
<hostname></hostname>
<descr></descr>
<filename></filename>
<rootpath></rootpath>
<defaultleasetime></defaultleasetime>
<maxleasetime></maxleasetime>
<gateway></gateway>
<domain></domain>
<domainsearchlist></domainsearchlist>
<ddnsdomain></ddnsdomain>
<ddnsdomainprimary></ddnsdomainprimary>
<ddnsdomainkeyname></ddnsdomainkeyname>
<ddnsdomainkey></ddnsdomainkey>
<tftp></tftp>
<ldap></ldap>
</staticmap>
<dnsserver>10.40.50.254</dnsserver>
<dnsserver>8.8.8.8</dnsserver>
<dnsserver>8.8.4.4</dnsserver>
<dnsserver>4.2.2.1</dnsserver>
</lan>
<opt1>
<range>
<from>10.40.2.100</from>
<to>10.40.2.200</to>
</range>
<enable></enable>
<failover_peerip></failover_peerip>
<defaultleasetime></defaultleasetime>
<maxleasetime></maxleasetime>
<netmask></netmask>
<gateway></gateway>
<domain>satxhouse.turnsys.net</domain>
<domainsearchlist></domainsearchlist>
<ddnsdomain></ddnsdomain>
<ddnsdomainprimary></ddnsdomainprimary>
<ddnsdomainkeyname></ddnsdomainkeyname>
<ddnsdomainkey></ddnsdomainkey>
<mac_allow></mac_allow>
<mac_deny></mac_deny>
<tftp></tftp>
<ldap></ldap>
<nextserver></nextserver>
<filename></filename>
<filename32></filename32>
<filename64></filename64>
<rootpath></rootpath>
<numberoptions></numberoptions>
<dhcpleaseinlocaltime></dhcpleaseinlocaltime>
<dnsserver>10.40.2.254</dnsserver>
<dnsserver>4.2.2.1</dnsserver>
</opt1>
<opt3>
<range>
<from>10.40.201.100</from>
<to>10.40.201.120</to>
</range>
<enable></enable>
<failover_peerip></failover_peerip>
<defaultleasetime></defaultleasetime>
<maxleasetime></maxleasetime>
<netmask></netmask>
<gateway></gateway>
<domain></domain>
<domainsearchlist></domainsearchlist>
<ddnsdomain></ddnsdomain>
<ddnsdomainprimary></ddnsdomainprimary>
<ddnsdomainkeyname></ddnsdomainkeyname>
<ddnsdomainkey></ddnsdomainkey>
<mac_allow></mac_allow>
<mac_deny></mac_deny>
<tftp></tftp>
<ldap></ldap>
<nextserver></nextserver>
<filename></filename>
<filename32></filename32>
<filename64></filename64>
<rootpath></rootpath>
<numberoptions></numberoptions>
<dhcpleaseinlocaltime></dhcpleaseinlocaltime>
<statsgraph>yes</statsgraph>
<staticmap>
<mac>3c:8c:f8:a0:3d:c3</mac>
<cid></cid>
<ipaddr>10.40.201.22</ipaddr>
<hostname>satx-ext-cam1</hostname>
<descr><![CDATA[satx external camera1]]></descr>
<filename></filename>
<rootpath></rootpath>
<defaultleasetime></defaultleasetime>
<maxleasetime></maxleasetime>
<gateway></gateway>
<domain></domain>
<domainsearchlist></domainsearchlist>
<ddnsdomain></ddnsdomain>
<ddnsdomainprimary></ddnsdomainprimary>
<ddnsdomainkeyname></ddnsdomainkeyname>
<ddnsdomainkey></ddnsdomainkey>
<tftp></tftp>
<ldap></ldap>
</staticmap>
<staticmap>
<mac>3c:8c:f8:a0:b3:2c</mac>
<cid></cid>
<ipaddr>10.40.201.23</ipaddr>
<hostname>satx-ext-cam2</hostname>
<descr></descr>
<filename></filename>
<rootpath></rootpath>
<defaultleasetime></defaultleasetime>
<maxleasetime></maxleasetime>
<gateway></gateway>
<domain></domain>
<domainsearchlist></domainsearchlist>
<ddnsdomain></ddnsdomain>
<ddnsdomainprimary></ddnsdomainprimary>
<ddnsdomainkeyname></ddnsdomainkeyname>
<ddnsdomainkey></ddnsdomainkey>
<tftp></tftp>
<ldap></ldap>
</staticmap>
</opt3>
</dhcpd>
<dhcpdv6></dhcpdv6>
<snmpd>
<syslocation>SATX</syslocation>
<syscontact>techops@turnsys.com</syscontact>
<rocommunity>kn3lmgmt</rocommunity>
<modules>
<mibii></mibii>
<netgraph></netgraph>
<pf></pf>
<hostres></hostres>
<ucd></ucd>
<regex></regex>
</modules>
<enable></enable>
<pollport>161</pollport>
<trapserver></trapserver>
<trapserverport>162</trapserverport>
<trapstring></trapstring>
<bindip></bindip>
</snmpd>
<diag>
<ipv6nat>
<ipaddr></ipaddr>
</ipv6nat>
</diag>
<syslog>
<nentries>50</nentries>
<remoteserver>10.253.3.99</remoteserver>
<remoteserver2></remoteserver2>
<remoteserver3></remoteserver3>
<sourceip>opt2</sourceip>
<ipproto>ipv4</ipproto>
<logall></logall>
<enable></enable>
</syslog>
<filter>
<rule>
<type>pass</type>
<ipprotocol>inet</ipprotocol>
<descr><![CDATA[Default allow LAN to any rule]]></descr>
<interface>lan</interface>
<tracker>0100000101</tracker>
<source>
<network>lan</network>
</source>
<destination>
<any></any>
</destination>
</rule>
<rule>
<type>pass</type>
<ipprotocol>inet6</ipprotocol>
<descr><![CDATA[Default allow LAN IPv6 to any rule]]></descr>
<interface>lan</interface>
<tracker>0100000102</tracker>
<source>
<network>lan</network>
</source>
<destination>
<any></any>
</destination>
</rule>
<rule>
<id></id>
<tracker>1498341816</tracker>
<type>pass</type>
<interface>lan</interface>
<ipprotocol>inet</ipprotocol>
<tag></tag>
<tagged></tagged>
<max></max>
<max-src-nodes></max-src-nodes>
<max-src-conn></max-src-conn>
<max-src-states></max-src-states>
<statetimeout></statetimeout>
<statetype>keep state</statetype>
<os></os>
<protocol>icmp</protocol>
<icmptype>any</icmptype>
<source>
<any></any>
</source>
<destination>
<any></any>
</destination>
<descr><![CDATA[allow ping]]></descr>
<updated>
<time>1498341816</time>
<username>admin@172.16.80.2</username>
</updated>
<created>
<time>1498341816</time>
<username>admin@172.16.80.2</username>
</created>
</rule>
<rule>
<id></id>
<tracker>1494180022</tracker>
<type>pass</type>
<interface>openvpn</interface>
<ipprotocol>inet</ipprotocol>
<tag></tag>
<tagged></tagged>
<max></max>
<max-src-nodes></max-src-nodes>
<max-src-conn></max-src-conn>
<max-src-states></max-src-states>
<statetimeout></statetimeout>
<statetype>keep state</statetype>
<os></os>
<protocol>tcp</protocol>
<source>
<address>192.168.197.1</address>
</source>
<destination>
<address>192.168.197.2</address>
<port>179</port>
</destination>
<descr><![CDATA[allow bgp from asn2net-ovh]]></descr>
<updated>
<time>1494180022</time>
<username>admin@10.40.50.17</username>
</updated>
<created>
<time>1494180022</time>
<username>admin@10.40.50.17</username>
</created>
</rule>
<rule>
<id></id>
<tracker>1494789833</tracker>
<type>pass</type>
<interface>openvpn</interface>
<ipprotocol>inet</ipprotocol>
<tag></tag>
<tagged></tagged>
<max></max>
<max-src-nodes></max-src-nodes>
<max-src-conn></max-src-conn>
<max-src-states></max-src-states>
<statetimeout></statetimeout>
<statetype>keep state</statetype>
<os></os>
<protocol>tcp</protocol>
<source>
<any></any>
</source>
<destination>
<any></any>
</destination>
<descr><![CDATA[allow bgp from asn2net-ovh]]></descr>
<updated>
<time>1494789833</time>
<username>admin@10.40.50.17</username>
</updated>
<created>
<time>1494789833</time>
<username>admin@10.40.50.17</username>
</created>
</rule>
<rule>
<id></id>
<tracker>1505583749</tracker>
<type>pass</type>
<interface>openvpn</interface>
<ipprotocol>inet</ipprotocol>
<tag></tag>
<tagged></tagged>
<max></max>
<max-src-nodes></max-src-nodes>
<max-src-conn></max-src-conn>
<max-src-states></max-src-states>
<statetimeout></statetimeout>
<statetype>keep state</statetype>
<os></os>
<source>
<address>10.253.3.99</address>
</source>
<destination>
<any></any>
</destination>
<descr><![CDATA[allow monitoring access from toolbox at ovh]]></descr>
<updated>
<time>1505583749</time>
<username>admin@10.251.100.101</username>
</updated>
<created>
<time>1505583749</time>
<username>admin@10.251.100.101</username>
</created>
</rule>
<rule>
<id></id>
<tracker>1494189598</tracker>
<type>pass</type>
<interface>opt1</interface>
<ipprotocol>inet</ipprotocol>
<tag></tag>
<tagged></tagged>
<max></max>
<max-src-nodes></max-src-nodes>
<max-src-conn></max-src-conn>
<max-src-states></max-src-states>
<statetimeout></statetimeout>
<statetype>keep state</statetype>
<os></os>
<source>
<any></any>
</source>
<destination>
<any></any>
</destination>
<descr><![CDATA[SATXHouse all]]></descr>
<created>
<time>1494189598</time>
<username>admin@10.40.50.17</username>
</created>
<updated>
<time>1498874654</time>
<username>admin@10.251.100.101</username>
</updated>
</rule>
<rule>
<id></id>
<tracker>1496618564</tracker>
<type>pass</type>
<interface>opt2</interface>
<ipprotocol>inet</ipprotocol>
<tag></tag>
<tagged></tagged>
<max></max>
<max-src-nodes></max-src-nodes>
<max-src-conn></max-src-conn>
<max-src-states></max-src-states>
<statetimeout></statetimeout>
<statetype>keep state</statetype>
<os></os>
<source>
<any></any>
</source>
<destination>
<any></any>
</destination>
<descr></descr>
<updated>
<time>1496618564</time>
<username>admin@172.16.80.2</username>
</updated>
<created>
<time>1496618564</time>
<username>admin@172.16.80.2</username>
</created>
</rule>
<rule>
<id></id>
<tracker>1498939628</tracker>
<type>pass</type>
<interface>opt3</interface>
<ipprotocol>inet</ipprotocol>
<tag></tag>
<tagged></tagged>
<max></max>
<max-src-nodes></max-src-nodes>
<max-src-conn></max-src-conn>
<max-src-states></max-src-states>
<statetimeout></statetimeout>
<statetype>keep state</statetype>
<os></os>
<source>
<network>opt3</network>
</source>
<destination>
<any></any>
</destination>
<descr><![CDATA[allow cams to all]]></descr>
<created>
<time>1498939628</time>
<username>admin@10.40.50.17</username>
</created>
<updated>
<time>1514055784</time>
<username>admin@10.251.100.101</username>
</updated>
</rule>
<rule>
<type>match</type>
<interface>wan</interface>
<defaultqueue>qGames</defaultqueue>
<ackqueue>qACK</ackqueue>
<source>
<any></any>
</source>
<destination>
<any></any>
<port>10040-10060</port>
</destination>
<floating>yes</floating>
<wizard>yes</wizard>
<enabled>on</enabled>
<descr><![CDATA[m_Game PS-Network-TCP outbound]]></descr>
<protocol>tcp</protocol>
</rule>
<rule>
<type>match</type>
<interface>wan</interface>
<defaultqueue>qGames</defaultqueue>
<source>
<any></any>
</source>
<destination>
<any></any>
<port>50000-60000</port>
</destination>
<floating>yes</floating>
<wizard>yes</wizard>
<enabled>on</enabled>
<descr><![CDATA[m_Game PS-Network-UDP outbound]]></descr>
<protocol>udp</protocol>
</rule>
<rule>
<type>match</type>
<interface>wan</interface>
<defaultqueue>qGames</defaultqueue>
<ackqueue>qACK</ackqueue>
<source>
<any></any>
</source>
<destination>
<any></any>
<port>3478-3480</port>
</destination>
<floating>yes</floating>
<wizard>yes</wizard>
<enabled>on</enabled>
<descr><![CDATA[m_Game PS-Home-TCP-1 outbound]]></descr>
<protocol>tcp</protocol>
</rule>
<rule>
<type>match</type>
<interface>wan</interface>
<defaultqueue>qGames</defaultqueue>
<ackqueue>qACK</ackqueue>
<source>
<any></any>
</source>
<destination>
<any></any>
<port>8080-8080</port>
</destination>
<floating>yes</floating>
<wizard>yes</wizard>
<enabled>on</enabled>
<descr><![CDATA[m_Game PS-Home-TCP-2 outbound]]></descr>
<protocol>tcp</protocol>
</rule>
<rule>
<type>match</type>
<interface>wan</interface>
<defaultqueue>qGames</defaultqueue>
<ackqueue>qACK</ackqueue>
<source>
<any></any>
</source>
<destination>
<any></any>
<port>5223-5223</port>
</destination>
<floating>yes</floating>
<wizard>yes</wizard>
<enabled>on</enabled>
<descr><![CDATA[m_Game PS-TCP-1 outbound]]></descr>
<protocol>tcp</protocol>
</rule>
<rule>
<type>match</type>
<interface>wan</interface>
<defaultqueue>qGames</defaultqueue>
<ackqueue>qACK</ackqueue>
<source>
<any></any>
</source>
<destination>
<any></any>
<port>10070-10080</port>
</destination>
<floating>yes</floating>
<wizard>yes</wizard>
<enabled>on</enabled>
<descr><![CDATA[m_Game PS-TCP-2 outbound]]></descr>
<protocol>tcp</protocol>
</rule>
<rule>
<type>match</type>
<interface>wan</interface>
<defaultqueue>qGames</defaultqueue>
<source>
<any></any>
</source>
<destination>
<any></any>
<port>3478-3479</port>
</destination>
<floating>yes</floating>
<wizard>yes</wizard>
<enabled>on</enabled>
<descr><![CDATA[m_Game PS-UDP-1 outbound]]></descr>
<protocol>udp</protocol>
</rule>
<rule>
<type>match</type>
<interface>wan</interface>
<defaultqueue>qGames</defaultqueue>
<source>
<any></any>
</source>
<destination>
<any></any>
<port>3658-3658</port>
</destination>
<floating>yes</floating>
<wizard>yes</wizard>
<enabled>on</enabled>
<descr><![CDATA[m_Game PS-UDP-2 outbound]]></descr>
<protocol>udp</protocol>
</rule>
<rule>
<type>match</type>
<interface>wan</interface>
<defaultqueue>qGames</defaultqueue>
<source>
<any></any>
</source>
<destination>
<any></any>
<port>10070-10070</port>
</destination>
<floating>yes</floating>
<wizard>yes</wizard>
<enabled>on</enabled>
<descr><![CDATA[m_Game PS-UDP-3 outbound]]></descr>
<protocol>udp</protocol>
</rule>
<rule>
<type>match</type>
<interface>wan</interface>
<defaultqueue>qGames</defaultqueue>
<ackqueue>qACK</ackqueue>
<source>
<any></any>
</source>
<destination>
<any></any>
<port>9293-9293</port>
</destination>
<floating>yes</floating>
<wizard>yes</wizard>
<enabled>on</enabled>
<descr><![CDATA[m_Game PS-RemotePlay outbound]]></descr>
<protocol>tcp</protocol>
</rule>
<rule>
<type>match</type>
<interface>wan</interface>
<defaultqueue>qGames</defaultqueue>
<source>
<any></any>
</source>
<destination>
<any></any>
<port>27000-27030</port>
</destination>
<floating>yes</floating>
<wizard>yes</wizard>
<enabled>on</enabled>
<descr><![CDATA[m_Game Steam-game-udp outbound]]></descr>
<protocol>udp</protocol>
</rule>
<rule>
<type>match</type>
<interface>wan</interface>
<defaultqueue>qGames</defaultqueue>
<ackqueue>qACK</ackqueue>
<source>
<any></any>
</source>
<destination>
<any></any>
<port>27000-27030</port>
</destination>
<floating>yes</floating>
<wizard>yes</wizard>
<enabled>on</enabled>
<descr><![CDATA[m_Game Steam-game-tcp outbound]]></descr>
<protocol>tcp</protocol>
</rule>
<rule>
<type>match</type>
<interface>wan</interface>
<defaultqueue>qGames</defaultqueue>
<source>
<any></any>
</source>
<destination>
<any></any>
<port>27015-27030</port>
</destination>
<floating>yes</floating>
<wizard>yes</wizard>
<enabled>on</enabled>
<descr><![CDATA[m_Game Steam-hltv outbound]]></descr>
<protocol>udp</protocol>
</rule>
<rule>
<type>match</type>
<interface>wan</interface>
<defaultqueue>qGames</defaultqueue>
<source>
<any></any>
</source>
<destination>
<any></any>
<port>4380-4380</port>
</destination>
<floating>yes</floating>
<wizard>yes</wizard>
<enabled>on</enabled>
<descr><![CDATA[m_Game Steam-1 outbound]]></descr>
<protocol>udp</protocol>
</rule>
<rule>
<type>match</type>
<interface>wan</interface>
<defaultqueue>qGames</defaultqueue>
<source>
<any></any>
</source>
<destination>
<any></any>
<port>1200-1200</port>
</destination>
<floating>yes</floating>
<wizard>yes</wizard>
<enabled>on</enabled>
<descr><![CDATA[m_Game Steam-2 outbound]]></descr>
<protocol>udp</protocol>
</rule>
<rule>
<type>match</type>
<interface>wan</interface>
<defaultqueue>qGames</defaultqueue>
<source>
<any></any>
</source>
<destination>
<any></any>
<port>3478-3480</port>
</destination>
<floating>yes</floating>
<wizard>yes</wizard>
<enabled>on</enabled>
<descr><![CDATA[m_Game Steam-voice outbound]]></descr>
<protocol>udp</protocol>
</rule>
<rule>
<type>match</type>
<interface>wan</interface>
<defaultqueue>qGames</defaultqueue>
<ackqueue>qACK</ackqueue>
<source>
<any></any>
</source>
<destination>
<any></any>
<port>25565-25565</port>
</destination>
<floating>yes</floating>
<wizard>yes</wizard>
<enabled>on</enabled>
<descr><![CDATA[m_Game Minecraft-tcp outbound]]></descr>
<protocol>tcp</protocol>
</rule>
<rule>
<type>match</type>
<interface>wan</interface>
<defaultqueue>qGames</defaultqueue>
<source>
<any></any>
</source>
<destination>
<any></any>
<port>25565-25565</port>
</destination>
<floating>yes</floating>
<wizard>yes</wizard>
<enabled>on</enabled>
<descr><![CDATA[m_Game Minecraft-udp outbound]]></descr>
<protocol>udp</protocol>
</rule>
<separator>
<opt1></opt1>
<opt3></opt3>
<openvpn></openvpn>
</separator>
</filter>
<ipsec></ipsec>
<aliases></aliases>
<proxyarp></proxyarp>
<cron>
<item>
<minute>1,31</minute>
<hour>0-5</hour>
<mday>*</mday>
<month>*</month>
<wday>*</wday>
<who>root</who>
<command>/usr/bin/nice -n20 adjkerntz -a</command>
</item>
<item>
<minute>1</minute>
<hour>3</hour>
<mday>1</mday>
<month>*</month>
<wday>*</wday>
<who>root</who>
<command>/usr/bin/nice -n20 /etc/rc.update_bogons.sh</command>
</item>
<item>
<minute>*/60</minute>
<hour>*</hour>
<mday>*</mday>
<month>*</month>
<wday>*</wday>
<who>root</who>
<command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 sshlockout</command>
</item>
<item>
<minute>*/60</minute>
<hour>*</hour>
<mday>*</mday>
<month>*</month>
<wday>*</wday>
<who>root</who>
<command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 webConfiguratorlockout</command>
</item>
<item>
<minute>1</minute>
<hour>1</hour>
<mday>*</mday>
<month>*</month>
<wday>*</wday>
<who>root</who>
<command>/usr/bin/nice -n20 /etc/rc.dyndns.update</command>
</item>
<item>
<minute>*/60</minute>
<hour>*</hour>
<mday>*</mday>
<month>*</month>
<wday>*</wday>
<who>root</who>
<command>/usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 virusprot</command>
</item>
<item>
<minute>30</minute>
<hour>12</hour>
<mday>*</mday>
<month>*</month>
<wday>*</wday>
<who>root</who>
<command>/usr/bin/nice -n20 /etc/rc.update_urltables</command>
</item>
</cron>
<wol></wol>
<rrd>
<enable></enable>
<category>left=system-processor&amp;right=&amp;resolution=300&amp;timePeriod=-1d&amp;startDate=&amp;endDate=&amp;startTime=0&amp;endTime=0&amp;graphtype=line&amp;invert=true&amp;refresh-interval=0</category>
</rrd>
<load_balancer>
<monitor_type>
<name>ICMP</name>
<type>icmp</type>
<descr><![CDATA[ICMP]]></descr>
<options></options>
</monitor_type>
<monitor_type>
<name>TCP</name>
<type>tcp</type>
<descr><![CDATA[Generic TCP]]></descr>
<options></options>
</monitor_type>
<monitor_type>
<name>HTTP</name>
<type>http</type>
<descr><![CDATA[Generic HTTP]]></descr>
<options>
<path>/</path>
<host></host>
<code>200</code>
</options>
</monitor_type>
<monitor_type>
<name>HTTPS</name>
<type>https</type>
<descr><![CDATA[Generic HTTPS]]></descr>
<options>
<path>/</path>
<host></host>
<code>200</code>
</options>
</monitor_type>
<monitor_type>
<name>SMTP</name>
<type>send</type>
<descr><![CDATA[Generic SMTP]]></descr>
<options>
<send></send>
<expect>220 *</expect>
</options>
</monitor_type>
</load_balancer>
<widgets>
<sequence>system_information:col1:show,interfaces:col2:show</sequence>
<period>10</period>
</widgets>
<openvpn>
<openvpn-client>
<auth_user></auth_user>
<auth_pass></auth_pass>
<vpnid>1</vpnid>
<protocol>UDP</protocol>
<dev_mode>tun</dev_mode>
<ipaddr></ipaddr>
<interface>wan</interface>
<local_port></local_port>
<server_addr>158.69.183.162 </server_addr>
<server_port>1197</server_port>
<resolve_retry></resolve_retry>
<proxy_addr></proxy_addr>
<proxy_port></proxy_port>
<proxy_authtype>none</proxy_authtype>
<proxy_user></proxy_user>
<proxy_passwd></proxy_passwd>
<description><![CDATA[asn2net]]></description>
<mode>p2p_shared_key</mode>
<topology>subnet</topology>
<custom_options></custom_options>
<shared_key>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</shared_key>
<crypto>AES-128-CBC</crypto>
<digest>SHA1</digest>
<engine>none</engine>
<tunnel_network>192.168.197.0/30</tunnel_network>
<tunnel_networkv6></tunnel_networkv6>
<remote_network></remote_network>
<remote_networkv6></remote_networkv6>
<use_shaper></use_shaper>
<compression></compression>
<passtos></passtos>
<no_tun_ipv6></no_tun_ipv6>
<route_no_pull></route_no_pull>
<route_no_exec></route_no_exec>
<verbosity_level>3</verbosity_level>
</openvpn-client>
</openvpn>
<dnshaper></dnshaper>
<unbound>
<enable></enable>
<dnssec></dnssec>
<active_interface>all</active_interface>
<outgoing_interface>all</outgoing_interface>
<custom_options></custom_options>
<hideidentity></hideidentity>
<hideversion></hideversion>
<dnssecstripped></dnssecstripped>
<port></port>
<regdhcp></regdhcp>
<regdhcpstatic></regdhcpstatic>
<system_domain_local_zone_type>transparent</system_domain_local_zone_type>
<hosts>
<host>krupke</host>
<domain>satx</domain>
<ip>10.40.50.254</ip>
<descr><![CDATA[PFSense]]></descr>
<aliases></aliases>
</hosts>
<hosts>
<host>printer1</host>
<domain>satx</domain>
<ip>10.40.50.142</ip>
<descr><![CDATA[Solidoodle #1]]></descr>
<aliases></aliases>
</hosts>
<hosts>
<host>printer2</host>
<domain>satx</domain>
<ip>10.40.50.141</ip>
<descr><![CDATA[Solidoodle #2]]></descr>
<aliases></aliases>
</hosts>
<hosts>
<host>printer3</host>
<domain>satx</domain>
<ip>10.40.50.140</ip>
<descr><![CDATA[Solidoodle #3]]></descr>
<aliases></aliases>
</hosts>
<hosts>
<host>printer4</host>
<domain>satx</domain>
<ip>10.40.50.75</ip>
<descr><![CDATA[Solidoodle #4]]></descr>
<aliases></aliases>
</hosts>
<domainoverrides>
<domain>turnsys.net</domain>
<ip>10.40.100.200</ip>
<descr><![CDATA[satx ucs DNS]]></descr>
</domainoverrides>
</unbound>
<dyndnses></dyndnses>
<revision>
<time>1517536461</time>
<description><![CDATA[admin@10.251.100.101: /system_usermanager.php made unknown change]]></description>
<username>admin@10.251.100.101</username>
</revision>
<cert>
<refid>58c58a66b16b3</refid>
<descr><![CDATA[webConfigurator default (58c58a66b16b3)]]></descr>
<type>server</type>
<crt>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</crt>
<prv>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</prv>
</cert>
<vlans>
<vlan>
<if>em0</if>
<tag>50</tag>
<vlanif>em0_vlan50</vlanif>
</vlan>
<vlan>
<if>em0</if>
<tag>2</tag>
<pcp></pcp>
<descr><![CDATA[public - satxhouse]]></descr>
<vlanif>em0_vlan2</vlanif>
</vlan>
<vlan>
<if>em0</if>
<tag>100</tag>
<pcp></pcp>
<descr><![CDATA[mgmt]]></descr>
<vlanif>em0_vlan100</vlanif>
</vlan>
<vlan>
<if>em0</if>
<tag>200</tag>
<pcp></pcp>
<descr><![CDATA[voip]]></descr>
<vlanif>em0_vlan200</vlanif>
</vlan>
<vlan>
<if>em0</if>
<tag>201</tag>
<pcp></pcp>
<descr><![CDATA[cams]]></descr>
<vlanif>em0_vlan201</vlanif>
</vlan>
<vlan>
<if>em0</if>
<tag>3</tag>
<pcp></pcp>
<descr><![CDATA[RR - AP network - mgmt/backbone/oob net Bare metal ap management (wibed)]]></descr>
<vlanif>em0_vlan3</vlanif>
</vlan>
<vlan>
<if>em0</if>
<tag>4</tag>
<pcp></pcp>
<descr><![CDATA[Switch network In band switch management]]></descr>
<vlanif>em0_vlan4</vlanif>
</vlan>
<vlan>
<if>em0</if>
<tag>5</tag>
<pcp></pcp>
<descr><![CDATA[VOIP network In band voip management (tftp etc)]]></descr>
<vlanif>em0_vlan5</vlanif>
</vlan>
<vlan>
<if>em0</if>
<tag>6</tag>
<pcp></pcp>
<descr><![CDATA[ Router network In band router management]]></descr>
<vlanif>em0_vlan6</vlanif>
</vlan>
<vlan>
<if>em0</if>
<tag>7</tag>
<pcp></pcp>
<descr><![CDATA[IPTV network In band iptv management (tftp etc)]]></descr>
<vlanif>em0_vlan7</vlanif>
</vlan>
<vlan>
<if>em0</if>
<tag>8</tag>
<pcp></pcp>
<descr><![CDATA[PeanutGallery In band peanut gallery management (everyone chats)]]></descr>
<vlanif>em0_vlan8</vlanif>
</vlan>
</vlans>
<ppps></ppps>
<installedpackages>
<package>
<name>OpenBGPD</name>
<descr><![CDATA[OpenBGPD is a free implementation of the Border Gateway Protocol, version 4.
It allows ordinary machines to be used as routers exchanging routes with other systems speaking the BGP protocol.
Conflicts with Quagga_OSPF; both packages cannot be installed at the same time.]]></descr>
<version>0.11_9</version>
<pkginfolink>https://doc.pfsense.org/index.php/OpenBGPD_package</pkginfolink>
<configurationfile>openbgpd.xml</configurationfile>
</package>
<package>
<name>nut</name>
<pkginfolink>https://forum.pfsense.org/index.php?topic=115349.0</pkginfolink>
<website>http://networkupstools.org/</website>
<descr><![CDATA[Network UPS Tools]]></descr>
<version>2.7.4_4</version>
<configurationfile>nut.xml</configurationfile>
</package>
<package>
<name>darkstat</name>
<website>http://dmr.ath.cx/net/darkstat/</website>
<descr><![CDATA[darkstat is a network statistics gatherer. It's a packet sniffer that runs as a background process on a cable/DSL router, gathers all sorts of statistics about network usage, and serves them over HTTP.]]></descr>
<version>3.1.3_4</version>
<configurationfile>darkstat.xml</configurationfile>
</package>
<package>
<name>ntopng</name>
<website>http://www.ntop.org/</website>
<descr><![CDATA[ntopng (replaces ntop) is a network probe that shows network usage in a way similar to what top does for processes. In interactive mode, it displays the network status on the user's terminal. In Web mode it acts as a Web server, creating an HTML dump of the network status. It sports a NetFlow/sFlow emitter/collector, an HTTP-based client interface for creating ntop-centric monitoring applications, and RRD for persistently storing traffic statistics.]]></descr>
<version>0.8.6_1</version>
<configurationfile>ntopng.xml</configurationfile>
<noembedded>true</noembedded>
</package>
<package>
<name>iperf</name>
<website>http://www.freshports.org/benchmarks/iperf/</website>
<descr><![CDATA[Iperf is a tool for testing network throughput, loss, and jitter.]]></descr>
<version>2.0.5.5_3</version>
<pkginfolink>https://doc.pfsense.org/index.php/Iperf_package</pkginfolink>
<configurationfile>iperf.xml</configurationfile>
</package>
<package>
<name>nmap</name>
<descr><![CDATA[NMap is a utility for network exploration or security auditing.&lt;br/&gt;
It supports ping scanning (determine which hosts are up), many port scanning techniques (determine what services the hosts are offering), version detection (determine what application/service is running on a port), and TCP/IP fingerprinting (remote host OS or device identification).
It also offers flexible target and port specification, decoy/stealth scanning, SunRPC scanning, and more.]]></descr>
<version>1.4.4_1</version>
<pkginfolink>https://doc.pfsense.org/index.php/Nmap_package</pkginfolink>
<configurationfile>nmap.xml</configurationfile>
</package>
<package>
<name>OpenVPN Client Export Utility</name>
<internal_name>openvpn-client-export</internal_name>
<descr><![CDATA[Allows a pre-configured OpenVPN Windows Client or Mac OS X's Viscosity configuration bundle to be exported directly from pfSense.]]></descr>
<version>1.4.6</version>
<configurationfile>openvpn-client-export.xml</configurationfile>
</package>
<package>
<name>softflowd</name>
<website>http://code.google.com/p/softflowd/</website>
<descr><![CDATA[Softflowd is flow-based network traffic analyser capable of Cisco NetFlow data export.&lt;br/&gt;
Softflowd semi-statefully tracks traffic flows recorded by listening on a network interface or by reading a packet capture file. These flows may be reported via NetFlow to a collecting host or summarised within softflowd itself.&lt;br/&gt;
Softflowd supports Netflow versions 1, 5 and 9 and is fully IPv6-capable - it can track IPv6 flows and send export datagrams via IPv6. It also supports export to multicast groups, allowing for redundant flow collectors.&lt;br/&gt;]]></descr>
<version>1.2.2</version>
<configurationfile>softflowd.xml</configurationfile>
</package>
<menu>
<name>OpenBGPD</name>
<section>Services</section>
<url>/pkg_edit.php?xml=openbgpd.xml&amp;id=0</url>
</menu>
<menu>
<name>UPS</name>
<tooltiptext>Network UPS Tools status</tooltiptext>
<section>Services</section>
<url>/nut_status.php</url>
</menu>
<menu>
<name>darkstat Settings</name>
<tooltiptext>Setup darkstat specific settings.</tooltiptext>
<section>Diagnostics</section>
<url>/pkg_edit.php?xml=darkstat.xml</url>
</menu>
<menu>
<name>darkstat</name>
<tooltiptext>Access darkstat</tooltiptext>
<section>Diagnostics</section>
<url>/darkstat_redirect.php</url>
</menu>
<menu>
<name>ntopng Settings</name>
<tooltiptext>Set ntopng settings such as password and port.</tooltiptext>
<section>Diagnostics</section>
<url>/pkg_edit.php?xml=ntopng.xml</url>
</menu>
<menu>
<name>ntopng</name>
<tooltiptext>Access ntopng</tooltiptext>
<section>Diagnostics</section>
<url>/ntopng_redirect.php</url>
</menu>
<menu>
<name>iperf Client</name>
<tooltiptext>Run iperf in client mode.</tooltiptext>
<section>Diagnostics</section>
<url>/pkg_edit.php?xml=iperf.xml</url>
</menu>
<menu>
<name>iperf Server</name>
<tooltiptext>Run iperf in server mode.</tooltiptext>
<section>Diagnostics</section>
<url>/pkg_edit.php?xml=iperfserver.xml</url>
</menu>
<menu>
<name>NMap</name>
<section>Diagnostics</section>
<configfile>nmap.xml</configfile>
</menu>
<menu>
<name>softflowd</name>
<tooltiptext>Modify softflowd settings.</tooltiptext>
<section>Services</section>
<configfile>softflowd.xml</configfile>
<url>/pkg_edit.php?xml=softflowd.xml</url>
</menu>
<service>
<name>bgpd</name>
<rcfile>bgpd.sh</rcfile>
<executable>bgpd</executable>
<description><![CDATA[OpenBSD BGP Daemon]]></description>
</service>
<service>
<name>nut</name>
<rcfile>nut.sh</rcfile>
<executable>upsmon</executable>
<description><![CDATA[UPS monitoring daemon]]></description>
</service>
<service>
<name>darkstat</name>
<rcfile>darkstat.sh</rcfile>
<executable>darkstat</executable>
<description><![CDATA[Darkstat bandwidth monitoring daemon]]></description>
</service>
<service>
<name>ntopng</name>
<rcfile>ntopng.sh</rcfile>
<executable>ntopng</executable>
<description><![CDATA[ntopng Network Traffic Monitor]]></description>
</service>
<service>
<name>iperf</name>
<executable>iperf</executable>
<description><![CDATA[iperf Network Performance Testing Daemon/Client]]></description>
<stopcmd>mwexec(&quot;/usr/bin/killall iperf&quot;);</stopcmd>
</service>
<service>
<name>softflowd</name>
<rcfile>softflowd.sh</rcfile>
<executable>softflowd</executable>
<description><![CDATA[Netflow export daemon]]></description>
</service>
<nut>
<config></config>
</nut>
<ntopng>
<config></config>
</ntopng>
<openbgpdneighbors>
<config>
<descr><![CDATA[asn2net-ovh]]></descr>
<neighbor>192.168.197.1</neighbor>
<md5sigkey></md5sigkey>
<md5sigpass></md5sigpass>
<groupname></groupname>
<row>
<parameters>remote-as</parameters>
<parmvalue>64517</parmvalue>
</row>
</config>
</openbgpdneighbors>
<openbgpd>
<config>
<asnum>64523</asnum>
<holdtime></holdtime>
<fibupdate>yes</fibupdate>
<listenip>192.168.197.2</listenip>
<routerid>192.168.197.2</routerid>
<carpstatusvid>none</carpstatusvid>
<row>
<networks>10.40.0.0/16</networks>
</row>
</config>
</openbgpd>
<softflowd>
<config>
<enable>enabled</enable>
<interface>lan,opt1,opt2,opt3,opt4,wan</interface>
<host>10.253.3.99</host>
<port>9997</port>
<maxflows></maxflows>
<hoplimit></hoplimit>
<version>9</version>
<flowtracking>full</flowtracking>
<timeout-general>300</timeout-general>
<timeout-maxlife></timeout-maxlife>
<timeout-expint>300</timeout-expint>
<timeout-tcp></timeout-tcp>
<timeout-tcp-rst></timeout-tcp-rst>
<timeout-tcp-fin></timeout-tcp-fin>
<timeout-udp></timeout-udp>
</config>
</softflowd>
</installedpackages>
<gateways></gateways>
<shaper>
<queue>
<interface>wan</interface>
<name>wan</name>
<scheduler>HFSC</scheduler>
<bandwidth>512</bandwidth>
<bandwidthtype>Kb</bandwidthtype>
<enabled>on</enabled>
<queue>
<name>qInternet</name>
<interface>wan</interface>
<bandwidth>512</bandwidth>
<bandwidthtype>Kb</bandwidthtype>
<enabled>on</enabled>
<ecn>on</ecn>
<linkshare3>512Kb</linkshare3>
<linkshare>on</linkshare>
<upperlimit3>512Kb</upperlimit3>
<upperlimit>on</upperlimit>
<queue>
<name>qACK</name>
<interface>wan</interface>
<priority>6</priority>
<bandwidth>20</bandwidth>
<bandwidthtype>%</bandwidthtype>
<enabled>on</enabled>
<ecn>on</ecn>
<linkshare3>20%</linkshare3>
<linkshare>on</linkshare>
</queue>
<queue>
<name>qDefault</name>
<interface>wan</interface>
<priority>3</priority>
<bandwidth>10</bandwidth>
<bandwidthtype>%</bandwidthtype>
<enabled>on</enabled>
<default>on</default>
<ecn>on</ecn>
</queue>
<queue>
<name>qGames</name>
<interface>wan</interface>
<priority>5</priority>
<bandwidth>20</bandwidth>
<bandwidthtype>%</bandwidthtype>
<enabled>on</enabled>
<ecn>on</ecn>
<linkshare3>20%</linkshare3>
<linkshare>on</linkshare>
</queue>
</queue>
</queue>
<queue>
<interface>opt1</interface>
<name>opt1</name>
<scheduler>PRIQ</scheduler>
<bandwidth>2097.152</bandwidth>
<bandwidthtype>Kb</bandwidthtype>
<enabled>on</enabled>
<queue>
<name>qLink</name>
<interface>opt1</interface>
<qlimit>500</qlimit>
<priority>2</priority>
<enabled>on</enabled>
<default>on</default>
<ecn>on</ecn>
</queue>
<queue>
<name>qACK</name>
<interface>opt1</interface>
<priority>6</priority>
<enabled>on</enabled>
<ecn>on</ecn>
</queue>
<queue>
<name>qGames</name>
<interface>opt1</interface>
<priority>5</priority>
<enabled>on</enabled>
<ecn>on</ecn>
</queue>
</queue>
</shaper>
<ezshaper>
<step1>
<numberofconnections>1</numberofconnections>
<numberoflocalinterfaces>5</numberoflocalinterfaces>
</step1>
<step2>
<local0downloadscheduler>PRIQ</local0downloadscheduler>
<local0interface>opt1</local0interface>
<conn0uploadscheduler>HFSC</conn0uploadscheduler>
<conn0upload>512</conn0upload>
<conn0uploadspeed>Kb</conn0uploadspeed>
<conn0download>2048</conn0download>
<conn0downloadspeed>Kb</conn0downloadspeed>
<conn0interface>wan</conn0interface>
</step2>
<step6>
<enable>on</enable>
<playstationconsoles>on</playstationconsoles>
<steam>on</steam>
<minecraft>on</minecraft>
</step6>
</ezshaper>
</pfsense>