3.0 metallic normal sipwall myitdepartment.net admin $1$xnpjASOi$9AlT77cCz1CTtxZPx4wdb0 Etc/GMT-5

10.255.252.98 https 10443

yes 42005 yes 208.254.204.17 198.6.1.5

em1 10.255.252.70 22 100 Mb em0 100 Mb 208.254.204.33 25 208.254.204.1 dyndns 10.255.252.10 10.255.252.245 public 10.255.252.0/22 Auto created rule for LAN wan udp

5060

10.255.252.71

5060

wan sipx signalling tcp

5060

10.255.252.71

5060

wan sipx signalling udp

5080

10.255.252.71

5080

wan itsp signalling receive from bw.com udp

30000-31000

10.255.252.71

30000

wan sipx media tcp

10.255.252.71

wan http to sipx tcp

8443

10.255.252.71

8443

wan https redirect to sipx tcp

10443

10.255.252.70

10443

wan voicefw redirect for remote mgmt tcp

42005

10.255.252.70

42005

wan ssh to the pfsense box tcp

12000

10.255.252.71

12000

wan https redirect to sipx pass wan

keep state udp

10.255.252.71

5060 NAT sipx user signalling over UDP

pass wan

keep state tcp

10.255.252.71

5060 NAT sipx user signalling over TCP

pass wan

keep state udp

10.255.252.71

5080 NAT ITSP signalling to sipx over UDP

pass wan

keep state udp

10.255.252.71

30000-31000 NAT sipx media

pass wan

keep state tcp

10.255.252.71

80 NAT http to sipx

pass wan

keep state tcp

10.255.252.71

8443 NAT https redirect to sipx

pass wan

keep state tcp

10.255.252.70

10443 NAT voicefw redirect for remote mgmt

wan tcp

10.255.252.70

42005 NAT wan tcp

10.255.252.71

12000 NAT https redirect to sipx pass lan

keep state lan Default LAN -> any

0 * * * * root /usr/bin/nice -n20 newsyslog 1,31 0-5 * * * root /usr/bin/nice -n20 adjkerntz -a 1 3 1 * * root /usr/bin/nice -n20 /etc/rc.update_bogons.sh */60 * * * * root /usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 sshlockout 1 1 * * * root /usr/bin/nice -n20 /etc/rc.dyndns.update */60 * * * * root /usr/bin/nice -n20 /usr/local/sbin/expiretable -v -t 3600 virusprot */60 * * * * root /usr/bin/nice -n20 /usr/local/sbin/expiretable -t 3600 snort2c */5 * * * * root /usr/local/bin/checkreload.sh */5 * * * * root /etc/ping_hosts.sh */140 * * * * root /usr/local/sbin/reset_slbd.sh NMap NMap is a utility for network exploration or security auditing. It supports ping scanning (determine which hosts are up), many port scanning techniques (determine what services the hosts are offering), version detection (determine what application/service is runing on a port), and TCP/IP fingerprinting (remote host OS or device identification). It also offers flexible target and port specification, decoy/stealth scanning, SunRPC scanning, and more. Most Unix and Windows platforms are supported in both GUI and command line modes. Several popular handheld devices are also supported, including the Sharp Zaurus and the iPAQ.

Diagnostics

nmap.xml Proxy server Modify the proxy server's settings

Services

/pkg_edit.php?xml=squid.xml&id=0 nmap billm@pfsense.org NMap is a utility for network exploration or security auditing. It supports ping scanning (determine which hosts are up), many port scanning techniques (determine what services the hosts are offering), version detection (determine what application/service is runing on a port), and TCP/IP fingerprinting (remote host OS or device identification). It also offers flexible target and port specification, decoy/stealth scanning, SunRPC scanning, and more. Most Unix and Windows platforms are supported in both GUI and command line modes. Several popular handheld devices are also supported, including the Sharp Zaurus and the iPAQ. Security http://files.pfsense.org/packages/7/All/ nmap-4.76.tbz http://www.pfsense.com/packages/config/nmap/nmap.xml 4.76 Stable http://doc.pfsense.org/index.php/Nmap_package 1.2.1 nmap.xml Open-VM-Tools VMware Tools http://open-vm-tools.sourceforge.net/ Services 167859 Stable http://doc.pfsense.org/index.php/Open_VM_Tools_package 1.2.1 http://www.pfsense.org/packages/config/open-vm-tools/open-vm-tools.xml open-vm-tools.xml http://files.pfsense.org/packages/7/All/ open-vm-tools-nox11-167859_1.tbz libtool-2.2.6a.tbz libiconv-1.13.1.tbz libdnet-1.11_3.tbz icu-3.8.1_2.tbz gmake-3.81_3.tbz gettext-0.17_1.tbz glib-2.20.4.tbz squid High performance web proxy cache. http://www.squid-cache.org/ Network 2.7.8 Stable 1.2.1 fernando@netfilter.com.br seth.mos@xs4all.nl mfuchs77@googlemail.com http://files.pfsense.org/packages/7/All/ squid-2.7.7.tbz squid_radius_auth-1.10.tbz openldap-client-2.4.10.tbz http://www.pfsense.org/packages/config/squid/squid.xml squid.xml squid squid.sh squid Proxy server Service lan on on /var/squid/log 3128 firewall.myitdepartment.net myit_help@helpdesk.myitdepartment.net English strip MTAuMjU1LjI1Mi4wLzIy bXlzcGFjZS5jb20NCnR3aXR0ZXIuY29t /wizard.php made unknown change 1257557173 1500 1500 lan wan sipXecs

10.255.252.71

1024 on

hfsc qwanRoot 0 0 on 1500 Kb qlanRoot 0 0 on 1500 Kb qwandef qwanRoot 0 true 1 on 1% 1 % 500 qlandef 1 qlanRoot 0 true on 1% 1 % 500 qwanacks qwanRoot 0 7 on 10% 25 % qlanacks qlanRoot 0 7 on 10% 25 % qVOIPUp qwanRoot 0 7 on 1024Kb 25 % qVOIPDown qlanRoot 0 7 on 1024Kb 25 % VOIP Adapter qVOIPUp qVOIPDown

wan

lan

10.255.252.71

VOIP Adapter qVOIPDown qVOIPUp

lan

wan

10.255.252.71