]>
Commit | Line | Data |
---|---|---|
318d0f92 DM |
1 | { from => 'outside', to => 'host', action => 'DROP' } |
2 | { from => 'host', to => 'outside', action => 'DROP' } | |
3 | ||
4 | # traffic to other node | |
5 | { from => 'host', to => 'outside', dest => '172.16.1.3', dport => 21, action => 'DROP' } | |
6 | { from => 'host', to => 'outside', dest => '172.16.1.3', dport => 22, action => 'ACCEPT' } | |
7 | { from => 'host', to => 'outside', dest => '172.16.1.3', dport => 3128, action => 'ACCEPT' } | |
8 | { from => 'host', to => 'outside', dest => '172.16.1.3', dport => 8006, action => 'ACCEPT' } | |
9 | { from => 'host', to => 'outside', dest => '172.16.1.3', dport => 5900, action => 'ACCEPT' } | |
10 | { from => 'host', to => 'outside', dest => '172.16.1.3', dport => 5999, action => 'ACCEPT' } | |
11 | { from => 'host', to => 'outside', dest => '172.16.1.3', dport => 6000, action => 'DROP' } | |
12 | { from => 'host', to => 'outside', dest => '172.16.1.3', proto => 'udp', dport => 5404, action => 'ACCEPT' } | |
13 | { from => 'host', to => 'outside', dest => '172.16.1.3', proto => 'udp', dport => 5405, action => 'ACCEPT' } | |
14 | { from => 'host', to => 'outside', dest => '172.16.1.3', proto => 'udp', dport => 5406, action => 'DROP' } | |
4a9ce6d3 DM |
15 | { from => 'host', to => 'outside', dest => '239.192.158.83', proto => 'udp', dport => 5404, dsttype => 'UNICAST', action => 'DROP' } |
16 | { from => 'host', to => 'outside', dest => '239.192.158.83', proto => 'udp', dport => 5404, dsttype => 'MULTICAST', action => 'ACCEPT' } | |
318d0f92 DM |
17 | |
18 | ||
19 | # traffic from other node | |
20 | ||
21 | { from => 'outside', to => 'host', source => '172.16.1.3', dport => 21, action => 'DROP' } | |
22 | { from => 'outside', to => 'host', source => '172.16.1.3', dport => 22, action => 'ACCEPT' } | |
23 | { from => 'outside', to => 'host', source => '172.16.1.3', dport => 3128, action => 'ACCEPT' } | |
24 | { from => 'outside', to => 'host', source => '172.16.1.3', dport => 8006, action => 'ACCEPT' } | |
25 | { from => 'outside', to => 'host', source => '172.16.1.3', dport => 5900, action => 'ACCEPT' } | |
26 | { from => 'outside', to => 'host', source => '172.16.1.3', dport => 5999, action => 'ACCEPT' } | |
27 | { from => 'outside', to => 'host', source => '172.16.1.3', dport => 6000, action => 'DROP' } | |
28 | { from => 'outside', to => 'host', source => '172.16.1.3', proto => 'udp', dport => 5404, action => 'ACCEPT' } | |
29 | { from => 'outside', to => 'host', source => '172.16.1.3', proto => 'udp', dport => 5405, action => 'ACCEPT' } | |
30 | { from => 'outside', to => 'host', source => '172.16.1.3', proto => 'udp', dport => 5406, action => 'DROP' } | |
4a9ce6d3 DM |
31 | { from => 'outside', to => 'host', source => '172.16.1.3', dest => '239.192.158.83', proto => 'udp', dport => 5404, dsttype => 'UNICAST', action => 'DROP' } |
32 | { from => 'outside', to => 'host', source => '172.16.1.3', dest => '239.192.158.83', proto => 'udp', dport => 5404, dsttype => 'MULTICAST', action => 'ACCEPT' } | |
318d0f92 DM |
33 | |
34 | ||
35 | { from => 'host', to => 'ct200', action => 'DROP' } | |
36 | { from => 'outside', to => 'ct200', action => 'ACCEPT' } | |
37 | { to => 'ct201', action => 'DROP' } | |
38 | { from => 'host', to => 'vm100', action => 'DROP' } | |
39 | { from => 'outside', to => 'vm100', action => 'ACCEPT' } | |
40 | { to => 'vm101', action => 'DROP' } | |
41 |