From e80da3c57d0501d7a5962fcacd6416d47385e86a Mon Sep 17 00:00:00 2001 From: BBcan177 Date: Sat, 23 May 2015 16:28:12 -0400 Subject: pfBlockerNG v1.09 --- config/pfblockerng/pfblockerng.xml | 193 ++++++++++++++++++++++++------------- 1 file changed, 127 insertions(+), 66 deletions(-) (limited to 'config/pfblockerng/pfblockerng.xml') diff --git a/config/pfblockerng/pfblockerng.xml b/config/pfblockerng/pfblockerng.xml index 67deab8d..c8e07b21 100644 --- a/config/pfblockerng/pfblockerng.xml +++ b/config/pfblockerng/pfblockerng.xml @@ -49,7 +49,7 @@ Describe your package requirements here Currently there are no FAQ items provided. pfblockerng - 1.08 + 1.09 pfBlockerNG: General Settings /usr/local/pkg/pfblockerng/pfblockerng.inc @@ -219,45 +219,83 @@ LINKS - Firewall Alias     Firewall Rules     Firewall Logs]]> + Firewall Alias     + Firewall Rules     Firewall Logs]]> + info - Enable pfBlockerNG]]> + Enable pfBlockerNG enable_cb checkbox - - If "Keep Settings" is not "enabled" on pkg Install/De-Install, all Settings will be Wiped!]]> + Enable/Disable]]> + + begin - Keep Settings/Lists After Disable/Re-Install/De-Install]]> pfb_keep checkbox - Keep Settings and Lists intact when pfBlockerNG is Disabled or After pfBlockerNG Re-Install/De-Install + Note: - with 'Keep settings' enabled, pfBlockerNG will maintain run state + on Installation/Upgrade
If 'Keep Settings' is not 'enabled' on pkg Install/De-Install, all Settings will be Wiped!

+ Note: To clear all downloaded lists, uncheck these two checkboxes and 'Save'. + re-check both boxes and run a 'Force Update']]> + on + + + end + + + CRON Settings + begin + + + Hour Interval + pfb_interval + Every hour
+ Select the cron Hour Interval. The interval selected will be used with the Start min/hour below.
+ Ensure that all List 'Update Settings' are within the selected Interval/Start Hour Settings.]]> + + select + + + + + + + + + + + 1 + - CRON MIN Start Time + Start Min pfb_min - : 00
- Select Cron Update Minute ]]> + :00
+ Select Cron Update Minute]]> + select - - - - + + + + + 0 + - CRON Base Hour Start Time + Start Hour pfb_hour - 1
- Select Cron Base Start Hour ]]> + 0
+ Select the Start Hour]]> + select - - + + @@ -281,17 +319,17 @@ + 0 + - 'Daily/Weekly' Start Hour + Start Hour]]> pfb_dailystart - 1
- Select 'Daily' Schedule Start Hour
- This is used for the 'Daily/Weekly' Scheduler Only.]]> + 0
This is used for the 'Daily/Weekly' Scheduler Only.]]> select - - + + @@ -315,6 +353,8 @@ + 0 + end Enable De-Duplication @@ -327,17 +367,20 @@ suppression checkbox - Country Blocking Lists cannot be Suppressed.
- This will also remove any RFC1918 addresses from all Lists.

+ Country Blocking Lists cannot be Suppressed.
This will also remove any RFC1918 addresses from all Lists.

Alerts can be Suppressed using the '+' icon in the Alerts Tab and IPs added to the 'pfBlockerNGSuppress' Alias
- A Blocked IP in a CIDR other than /24 will need to be Suppressed by an 'Permit Outbound' Firewall Rule]]> + A Blocked IP in a CIDR other than /32 or /24 will need a 'Whitelist Alias' w/ List Action: 'Permit Outbound' Firewall Rule +
Do not use the pfBlockerNGSuppress Alias in a Firewall Rule. + This alias is used during the cron download process only.]]> Global Enable Logging enable_log checkbox - Enable Global Logging to Status: System Logs: FIREWALL ( Log ). This overrides any Log Settings in the Alias Tabs. + + This overrides any Log Settings in the Alias Tabs.]]> + Disable MaxMind Country Database CRON Updates @@ -350,8 +393,9 @@ Logfile Size log_maxlines - 20000
- Select number of Lines to Keep in Log File]]> + 20000
+ Select number of Lines to keep in the pfblockerng.log and dnsbl.log files]]> + select @@ -361,72 +405,89 @@ + 20000 - + listtopic - Inbound Interface(s) + Inbound Firewall Rules + begin + + inbound_interface + Interface(s) Select the Inbound interface(s) you want to Apply Auto Rules to interfaces_selection loopback + - - Rule Action + Rule Action inbound_deny_action - Block
- Select 'Rule Action' for Inbound Rules]]> + Block
Select 'Rule Action' for Inbound Rules]]> select + block + + end - Outbound Interface(s) + Outbound Firewall Rules + begin + + + Interface(s) outbound_interface Select the Outbound interface(s) you want to Apply Auto Rules to interfaces_selection loopback + - - Rule Action + Rule Action outbound_deny_action - Reject
- Select 'Rule Action' for Outbound rules]]> + Reject
Select 'Rule Action' for Outbound rules]]> select + reject + + end - OpenVPN Interface]]> + OpenVPN Interface openvpn_action checkbox Select to add Auto-Rules for OpenVPN. These will be added to 'Floating Rules' or OpenVPN Rules Tab. - Floating Rules]]> + Floating Rules enable_float checkbox - Enabled:  Auto-Rules will be generated in the 'Floating Rules' Tab

+ Enabled: Auto-Rules will be generated in the 'Floating Rules' Tab

Disabled: Auto-Rules will be generated in the Selected Inbound/Outbound Interfaces

- Rules will be ordered by the selection below.]]> + Rules will be ordered by the selection below.]]> + - Rule Order]]> + Rule Order pass_order - Default Order: | pfB_Block/Reject | All other Rules | (original format)

+ Default Order: | pfB_Block/Reject | All other Rules | (original format)

Select The 'Order' of the Rules
  Selecting 'original format', sets pfBlockerNG rules at the top of the Firewall TAB.
-   Selecting any other 'Order' will re-order all the Rules to the format indicated!]]> +   Selecting any other 'Order' will re-order all the Rules to the format indicated!]]> + select @@ -434,48 +495,48 @@ + order_0 - Auto Rule Suffix]]> + Auto Rule Suffix autorule_suffix - auto rule
- Select 'Auto Rule' Description Suffix for Auto Defined rules. pfBlockerNG Must be Disabled to Modify Suffix]]> + auto rule
+ Select 'Auto Rule' Description Suffix for Auto Defined rules. pfBlockerNG Must be Disabled to Modify Suffix]]> + select + autorule - + listtopic Credits credits info - - pfBlockerNG Created in 2015 by BBcan177. -

Based upon pfBlocker by Marcello Coutinho and Tom Schaefer.
+ pfBlockerNG + Created in 2015 by BBcan177.

+ Based upon pfBlocker by Marcello Coutinho and Tom Schaefer.
Country Database GeoLite distributed under the Creative Commons Attribution-ShareAlike 3.0 Unported License by: MaxMind Inc. @ MaxMind.com. - The Database is Automatically Updated the First Tuesday of Each Month]]> - - - pfBlocker Validation Check - pfblocker_cb - checkbox - Disable pfBlockerNG if the pfBlocker package is Enabled. Click to Disable this validation check. + The Database is Automatically Updated the First Tuesday of Each Month]]> + - Gold Membership + Support info - Gold Membership
or support the developer @ BBCan177@gmail.com]]> + + If you like this package, please support the developer @ BBCan177@gmail.com.]]> + - Click to SAVE Settings and/or Rule Edits.       Changes are Applied via CRON or - 'Force Update']]> + Click to SAVE Settings and/or Rule Edits.       Changes are Applied via CRON or + 'Force Update']]> listtopic @@ -493,4 +554,4 @@ $pfb['save'] = TRUE; sync_package_pfblockerng(); - + \ No newline at end of file -- cgit v1.2.3