matthieu.evrin/harmony
1
0
Fork 0
forked from NationTech/harmony
Code Pull Requests Activity
da6610c625
harmony/opnsense-config/src/tests/data/config-full-ncd0.xml

2573 lines
89 KiB
XML
Raw Blame History

<?xml version="1.0"?>
<opnsense>
<theme>opnsense</theme>
<sysctl version="1.0.1">
<item uuid="a15cd066-4138-4109-84ab-25541af8e41b">
<tunable>vfs.read_max</tunable>
<value/>
<descr>Increase UFS read-ahead speeds to match the state of hard drives and NCQ.</descr>
</item>
<item uuid="4e8a4543-45a1-4c42-88c2-d32c1d0b4264">
<tunable>net.inet.ip.portrange.first</tunable>
<value/>
<descr>Set the ephemeral port range to be lower.</descr>
</item>
<item uuid="baba3ec9-09c2-4aac-97c8-fb3dd28451bf">
<tunable>net.inet.tcp.blackhole</tunable>
<value/>
<descr>Drop packets to closed TCP ports without returning a RST</descr>
</item>
<item uuid="37afebb9-0dc8-4b4e-b4d1-afb4819ace4a">
<tunable>net.inet.udp.blackhole</tunable>
<value/>
<descr>Do not send ICMP port unreachable messages for closed UDP ports</descr>
</item>
<item uuid="efa32a22-8027-4dc7-ac2f-d912e3df43b8">
<tunable>net.inet.ip.random_id</tunable>
<value/>
<descr>Randomize the ID field in IP packets</descr>
</item>
<item uuid="b9174412-1094-4893-8bc3-eace85fa980c">
<tunable>net.inet.ip.sourceroute</tunable>
<value/>
<descr>Source routing is another way for an attacker to try to reach non-routable addresses behind your box.
It can also be used to probe for information about your internal networks. These functions come enabled
as part of the standard FreeBSD core system.</descr>
</item>
<item uuid="977319c9-5f8d-4d9c-a28e-6e15256a752d">
<tunable>net.inet.ip.accept_sourceroute</tunable>
<value/>
<descr>Source routing is another way for an attacker to try to reach non-routable addresses behind your box.
It can also be used to probe for information about your internal networks. These functions come enabled
as part of the standard FreeBSD core system.</descr>
</item>
<item uuid="d8779aa5-8ba2-43c9-92cc-5f6a8e0b01a1">
<tunable>net.inet.icmp.log_redirect</tunable>
<value/>
<descr>This option turns off the logging of redirect packets because there is no limit and this could fill
up your logs consuming your whole hard drive.</descr>
</item>
<item uuid="47060cda-8144-48a9-beb3-13d89a64c0bf">
<tunable>net.inet.tcp.drop_synfin</tunable>
<value/>
<descr>Drop SYN-FIN packets (breaks RFC1379, but nobody uses it anyway)</descr>
</item>
<item uuid="4546e7e1-f25b-44c4-a739-b2e3b18c26ca">
<tunable>net.inet6.ip6.redirect</tunable>
<value/>
<descr>Enable sending IPv6 redirects</descr>
</item>
<item uuid="2701158a-d6c1-431d-ab29-db1c5e001ba5">
<tunable>net.inet6.ip6.use_tempaddr</tunable>
<value/>
<descr>Enable privacy settings for IPv6 (RFC 4941)</descr>
</item>
<item uuid="fd511781-3e5f-44c0-9ebd-0c15edb5dca0">
<tunable>net.inet6.ip6.prefer_tempaddr</tunable>
<value/>
<descr>Prefer privacy addresses and use them over the normal addresses</descr>
</item>
<item uuid="01252b8f-b3f4-4c40-8121-cee161607ddf">
<tunable>net.inet.tcp.syncookies</tunable>
<value/>
<descr>Generate SYN cookies for outbound SYN-ACK packets</descr>
</item>
<item uuid="53970809-144a-441d-8505-628e087406d1">
<tunable>net.inet.tcp.recvspace</tunable>
<value/>
<descr>Maximum incoming/outgoing TCP datagram size (receive)</descr>
</item>
<item uuid="ba6c411f-0260-497f-a5c3-2281677708c5">
<tunable>net.inet.tcp.sendspace</tunable>
<value/>
<descr>Maximum incoming/outgoing TCP datagram size (send)</descr>
</item>
<item uuid="ac569d9a-79b8-4acf-ac90-76826f1ec358">
<tunable>net.inet.tcp.delayed_ack</tunable>
<value/>
<descr>Do not delay ACK to try and piggyback it onto a data packet</descr>
</item>
<item uuid="34262ca7-3e63-4ae0-96ff-fa8857f8f7ea">
<tunable>net.inet.udp.maxdgram</tunable>
<value/>
<descr>Maximum outgoing UDP datagram size</descr>
</item>
<item uuid="1fc576ca-4c3b-4349-ab3b-90116aff7e89">
<tunable>net.link.bridge.pfil_onlyip</tunable>
<value/>
<descr>Handling of non-IP packets which are not passed to pfil (see if_bridge(4))</descr>
</item>
<item uuid="39ba9afb-29a5-4c33-967e-467587654b01">
<tunable>net.link.bridge.pfil_local_phys</tunable>
<value/>
<descr>Set to 1 to additionally filter on the physical interface for locally destined packets</descr>
</item>
<item uuid="c71590fc-d865-4d93-9050-6362fd8d72c1">
<tunable>net.link.bridge.pfil_member</tunable>
<value/>
<descr>Set to 0 to disable filtering on the incoming and outgoing member interfaces.</descr>
</item>
<item uuid="10c36925-b1fe-402d-aef1-ecf24539cfa1">
<tunable>net.link.bridge.pfil_bridge</tunable>
<value/>
<descr>Set to 1 to enable filtering on the bridge interface</descr>
</item>
<item uuid="33d66b40-0f0d-4933-a9c1-a1dee3177eb5">
<tunable>net.link.tap.user_open</tunable>
<value/>
<descr>Allow unprivileged access to tap(4) device nodes</descr>
</item>
<item uuid="4bc865b2-0609-4dc8-8568-bdd51bdff803">
<tunable>kern.randompid</tunable>
<value/>
<descr>Randomize PID's (see src/sys/kern/kern_fork.c: sysctl_kern_randompid())</descr>
</item>
<item uuid="e08de3da-0ac7-40cb-8629-a1dbbbbf91f1">
<tunable>hw.syscons.kbd_reboot</tunable>
<value/>
<descr>Disable CTRL+ALT+Delete reboot from keyboard.</descr>
</item>
<item uuid="2604c406-26dc-4b61-8a60-565080abdd26">
<tunable>net.inet.tcp.log_debug</tunable>
<value/>
<descr>Enable TCP extended debugging</descr>
</item>
<item uuid="60f1f1e4-1cf0-4678-9eee-272caf826bf4">
<tunable>net.inet.icmp.icmplim</tunable>
<value/>
<descr>Set ICMP Limits</descr>
</item>
<item uuid="277d15e0-3cc0-4993-a2e0-1895a853a790">
<tunable>net.inet.tcp.tso</tunable>
<value/>
<descr>TCP Offload Engine</descr>
</item>
<item uuid="b6410d76-0e75-4d0a-b317-b50756522df5">
<tunable>net.inet.udp.checksum</tunable>
<value/>
<descr>UDP Checksums</descr>
</item>
<item uuid="c6218064-8a95-4be8-b2d5-6924b184f945">
<tunable>kern.ipc.maxsockbuf</tunable>
<value/>
<descr>Maximum socket buffer size</descr>
</item>
<item uuid="1b961dec-e325-46f4-847b-c1470ae508b5">
<tunable>vm.pmap.pti</tunable>
<value/>
<descr>Page Table Isolation (Meltdown mitigation, requires reboot.)</descr>
</item>
<item uuid="c3b567be-37c9-4b65-8adf-d3e1911ef15b">
<tunable>hw.ibrs_disable</tunable>
<value/>
<descr>Disable Indirect Branch Restricted Speculation (Spectre V2 mitigation)</descr>
</item>
<item uuid="90604472-f7c3-4162-bfa1-b5661dcbaa43">
<tunable>security.bsd.see_other_gids</tunable>
<value/>
<descr>Hide processes running as other groups</descr>
</item>
<item uuid="df295a4e-b114-4de6-b6ac-38edfa0001b9">
<tunable>security.bsd.see_other_uids</tunable>
<value/>
<descr>Hide processes running as other users</descr>
</item>
<item uuid="f4615517-2a88-49ad-b620-224520dd2724">
<tunable>net.inet.ip.redirect</tunable>
<value/>
<descr>Enable/disable sending of ICMP redirects in response to IP packets for which a better,
and for the sender directly reachable, route and next hop is known.</descr>
</item>
<item uuid="28306cce-2ec1-40dd-b34b-bdc8646bc5cd">
<tunable>net.local.dgram.maxdgram</tunable>
<value/>
<descr>Maximum outgoing UDP datagram size</descr>
</item>
</sysctl>
<system>
<serialspeed>115200</serialspeed>
<primaryconsole>video</primaryconsole>
<optimization>normal</optimization>
<hostname>fw0</hostname>
<domain>ncd0.harmony.mcd</domain>
<group uuid="df41312a-a2ff-4ff1-b16a-1fa700f0a954">
<gid>1999</gid>
<name>admins</name>
<scope>system</scope>
<description>System Administrators</description>
<priv>page-all</priv>
<member>0</member>
</group>
<user uuid="68d8b7cf-bbcb-4cba-b82b-70996c957def">
<uid>0</uid>
<name>root</name>
<disabled>0</disabled>
<scope>system</scope>
<expires/>
<authorizedkeys/>
<otp_seed/>
<shell/>
<password>$2y$10$YRVoF4SgskIsrXOvOQjGieB9XqHPRra9R7d80B3BZdbY/j21TwBfS</password>
<pwd_changed_at/>
<landing_page/>
<comment/>
<email/>
<apikeys/>
<priv/>
<language/>
<descr>System Administrator</descr>
<dashboard/>
</user>
<nextuid>2000</nextuid>
<nextgid>2000</nextgid>
<timezone>America/Toronto</timezone>
<timeservers>0.opnsense.pool.ntp.org 1.opnsense.pool.ntp.org 2.opnsense.pool.ntp.org 3.opnsense.pool.ntp.org</timeservers>
<webgui>
<protocol>https</protocol>
<ssl-certref>6796970f3b58c</ssl-certref>
<port>8000</port>
<ssl-ciphers/>
<interfaces/>
<compression/>
</webgui>
<usevirtualterminal>1</usevirtualterminal>
<disablenatreflection>yes</disablenatreflection>
<disableconsolemenu>1</disableconsolemenu>
<disablevlanhwfilter>1</disablevlanhwfilter>
<disablechecksumoffloading>1</disablechecksumoffloading>
<disablesegmentationoffloading>1</disablesegmentationoffloading>
<disablelargereceiveoffloading>1</disablelargereceiveoffloading>
<ipv6allow>1</ipv6allow>
<powerd_ac_mode>hadp</powerd_ac_mode>
<powerd_battery_mode>hadp</powerd_battery_mode>
<powerd_normal_mode>hadp</powerd_normal_mode>
<bogons>
<interval>monthly</interval>
</bogons>
<pf_share_forward>1</pf_share_forward>
<lb_use_sticky>1</lb_use_sticky>
<ssh>
<group>admins</group>
<noauto>1</noauto>
<interfaces/>
<kex/>
<ciphers/>
<macs/>
<keys/>
<enabled>enabled</enabled>
<passwordauth>1</passwordauth>
<keysig/>
<permitrootlogin>1</permitrootlogin>
</ssh>
<rrdbackup>-1</rrdbackup>
<netflowbackup>-1</netflowbackup>
<firmware version="1.0.1">
<mirror/>
<flavour/>
<plugins>os-caddy,os-haproxy,os-tftp</plugins>
<type/>
<subscription/>
<reboot/>
</firmware>
<language>en_US</language>
<dnsserver>1.1.1.1</dnsserver>
<dnsserver>8.8.8.8</dnsserver>
<dns1gw>none</dns1gw>
<dns2gw>none</dns2gw>
<dns3gw>none</dns3gw>
<dns4gw>none</dns4gw>
<dns5gw>none</dns5gw>
<dns6gw>none</dns6gw>
<dns7gw>none</dns7gw>
<dns8gw>none</dns8gw>
<dnsallowoverride>1</dnsallowoverride>
<dnsallowoverride_exclude/>
</system>
<interfaces>
<wan>
<if>igc3</if>
<enable>1</enable>
<ipaddr>dhcp</ipaddr>
<ipaddrv6>dhcp6</ipaddrv6>
<dhcp6-ia-pd-len>0</dhcp6-ia-pd-len>
<gateway>WAN_GW</gateway>
<media/>
<mediaopt/>
<descr>WAN</descr>
</wan>
<lan>
<if>igc0</if>
<enable>1</enable>
<ipaddr>192.168.33.1</ipaddr>
<subnet>24</subnet>
<ipaddrv6/>
<subnetv6/>
<gateway/>
<gatewayv6/>
<media/>
<mediaopt/>
<descr>LAN</descr>
</lan>
<lo0>
<internal_dynamic>1</internal_dynamic>
<if>lo0</if>
<descr>Loopback</descr>
<enable>1</enable>
<ipaddr>127.0.0.1</ipaddr>
<type>none</type>
<virtual>1</virtual>
<subnet>8</subnet>
<ipaddrv6>::1</ipaddrv6>
<subnetv6>128</subnetv6>
</lo0>
<wireguard>
<internal_dynamic>1</internal_dynamic>
<descr>WireGuard (Group)</descr>
<if>wireguard</if>
<virtual>1</virtual>
<enable>1</enable>
<type>group</type>
<networks/>
</wireguard>
<opt1>
<if>wg0</if>
<descr>ncd0</descr>
<enable>1</enable>
<lock>1</lock>
<spoofmac/>
</opt1>
</interfaces>
<dhcpd>
<lan>
<enable>1</enable>
<tftp>192.168.33.1</tftp>
<netboot>1</netboot>
<nextserver>192.168.33.1</nextserver>
<filename64>ipxe.efi</filename64>
<filename>undionly.kpxe</filename>
<filenameipxe>http://192.168.33.1:8080/boot.ipxe</filenameipxe>
<ddnsdomainalgorithm>hmac-md5</ddnsdomainalgorithm>
<numberoptions>
<item/>
</numberoptions>
<range>
<from>192.168.33.10</from>
<to>192.168.33.245</to>
</range>
<winsserver/>
<dnsserver/>
<ntpserver/>
<staticmap>
<mac>c4:62:37:02:60:fa</mac>
<ipaddr>192.168.33.20</ipaddr>
<hostname>cp0</hostname>
<winsserver/>
<dnsserver/>
<ntpserver/>
</staticmap>
<staticmap>
<mac>c4:62:37:02:61:1a</mac>
<ipaddr>192.168.33.21</ipaddr>
<hostname>cp1</hostname>
<winsserver/>
<dnsserver/>
<ntpserver/>
</staticmap>
<staticmap>
<mac>c4:62:37:01:bc:68</mac>
<ipaddr>192.168.33.22</ipaddr>
<hostname>cp2</hostname>
<winsserver/>
<dnsserver/>
<ntpserver/>
</staticmap>
<staticmap>
<mac>c4:62:37:02:61:0f</mac>
<ipaddr>192.168.33.30</ipaddr>
<hostname>wk0</hostname>
<winsserver/>
<dnsserver/>
<ntpserver/>
</staticmap>
<staticmap>
<mac>c4:62:37:02:61:70</mac>
<ipaddr>192.168.33.32</ipaddr>
<hostname>wk2</hostname>
<winsserver/>
<dnsserver/>
<ntpserver/>
</staticmap>
<staticmap>
<mac>c4:62:37:02:61:26</mac>
<ipaddr>192.168.33.31</ipaddr>
<hostname>wk1</hostname>
<winsserver/>
<dnsserver/>
<ntpserver/>
</staticmap>
<pool/>
</lan>
</dhcpd>
<snmpd>
<syslocation/>
<syscontact/>
<rocommunity>public</rocommunity>
</snmpd>
<syslog/>
<nat>
<outbound>
<mode>automatic</mode>
</outbound>
</nat>
<filter>
<rule uuid="b1c739c0-f99b-4bfd-9d9b-459e999b1e1f">
<type>pass</type>
<interface>wan</interface>
<ipprotocol>inet</ipprotocol>
<statetype>keep state</statetype>
<descr>Allow inbound traffic to wireguard</descr>
<direction>in</direction>
<category>wireguard</category>
<quick>1</quick>
<protocol>udp</protocol>
<source>
<any>1</any>
</source>
<destination>
<network>wanip</network>
<port>51821</port>
</destination>
<updated>
<username>root@192.168.33.5</username>
<time>1754350917.5815</time>
<description>/firewall_rules_edit.php made changes</description>
</updated>
<created>
<username>root@192.168.33.5</username>
<time>1754350507.2386</time>
<description>/firewall_rules_edit.php made changes</description>
</created>
</rule>
<rule uuid="afbcb40d-ddd8-4623-baac-9014cea1943f">
<type>pass</type>
<interface>lan</interface>
<ipprotocol>inet</ipprotocol>
<descr>Default allow LAN to any rule</descr>
<source>
<network>lan</network>
</source>
<destination>
<any/>
</destination>
</rule>
<rule uuid="1a6f6355-f0ea-412b-a3f2-6e7149893a49">
<type>pass</type>
<interface>lan</interface>
<ipprotocol>inet6</ipprotocol>
<descr>Default allow LAN IPv6 to any rule</descr>
<source>
<network>lan</network>
</source>
<destination>
<any/>
</destination>
</rule>
<rule uuid="7d372725-d0d4-4652-9a26-cde08d61209f">
<type>pass</type>
<interface>opt1</interface>
<ipprotocol>inet</ipprotocol>
<statetype>keep state</statetype>
<descr>Allow wireguard clients to use this interface for NAT</descr>
<direction>in</direction>
<quick>1</quick>
<source>
<network>opt1</network>
</source>
<destination>
<any>1</any>
</destination>
<updated>
<username>root@192.168.33.5</username>
<time>1754350632.0452</time>
<description>/firewall_rules_edit.php made changes</description>
</updated>
<created>
<username>root@192.168.33.5</username>
<time>1754350632.0452</time>
<description>/firewall_rules_edit.php made changes</description>
</created>
</rule>
<scrub>
<rule>
<interface>wireguard</interface>
<proto>any</proto>
<src>any</src>
<srcmask>24</srcmask>
<dst>any</dst>
<dstmask>24</dstmask>
<max-mss>1380</max-mss>
<descr>Wireguard MSS Clamping IPv4</descr>
<updated>
<username>root@192.168.33.5</username>
<time>1754350707.7865</time>
<description>/firewall_scrub_edit.php made changes</description>
</updated>
<created>
<username>root@192.168.33.5</username>
<time>1754350707.7865</time>
<description>/firewall_scrub_edit.php made changes</description>
</created>
</rule>
</scrub>
</filter>
<rrd>
<enable/>
</rrd>
<ntpd>
<prefer>0.opnsense.pool.ntp.org</prefer>
</ntpd>
<widgets>
<sequence>system_information-container:00000000-col3:show,services_status-container:00000001-col4:show,gateways-container:00000002-col4:show,interface_list-container:00000003-col4:show</sequence>
<column_count>2</column_count>
</widgets>
<revision>
<username>root@172.33.0.3</username>
<description>/api/wireguard/general/set made changes</description>
<time>1754929176.4083</time>
</revision>
<OPNsense>
<captiveportal version="1.0.3">
<zones/>
<templates/>
</captiveportal>
<cron version="1.0.4">
<jobs/>
</cron>
<Netflow version="1.0.1">
<capture>
<interfaces/>
<egress_only/>
<version>v9</version>
<targets/>
</capture>
<collect>
<enable>0</enable>
</collect>
<activeTimeout>1800</activeTimeout>
<inactiveTimeout>15</inactiveTimeout>
</Netflow>
<Firewall>
<Lvtemplate version="0.0.1">
<templates/>
</Lvtemplate>
<Category version="1.0.0">
<categories>
<category uuid="8c4b8e13-b9d4-45e9-8017-560ab61fb438">
<name>wireguard</name>
<auto>1</auto>
<color/>
</category>
</categories>
</Category>
<Filter version="1.0.4">
<rules/>
<snatrules/>
<npt/>
<onetoone/>
</Filter>
<Alias version="1.0.1">
<geoip>
<url/>
</geoip>
<aliases/>
</Alias>
</Firewall>
<IDS version="1.1.0">
<rules/>
<policies/>
<userDefinedRules/>
<files/>
<fileTags/>
<general>
<enabled>0</enabled>
<ips>0</ips>
<promisc>0</promisc>
<interfaces>wan</interfaces>
<homenet>192.168.0.0/16,10.0.0.0/8,172.16.0.0/12</homenet>
<defaultPacketSize/>
<UpdateCron/>
<AlertLogrotate>W0D23</AlertLogrotate>
<AlertSaveLogs>4</AlertSaveLogs>
<MPMAlgo/>
<detect>
<Profile/>
<toclient_groups/>
<toserver_groups/>
</detect>
<syslog>0</syslog>
<syslog_eve>0</syslog_eve>
<LogPayload>0</LogPayload>
<verbosity/>
<eveLog>
<http>
<enable>0</enable>
<extended>0</extended>
<dumpAllHeaders/>
</http>
<tls>
<enable>0</enable>
<extended>0</extended>
<sessionResumption>0</sessionResumption>
<custom/>
</tls>
</eveLog>
</general>
</IDS>
<IPsec version="1.0.4">
<general>
<enabled/>
<preferred_oldsa>0</preferred_oldsa>
<disablevpnrules>0</disablevpnrules>
<passthrough_networks/>
<user_source/>
<local_group/>
</general>
<keyPairs/>
<preSharedKeys/>
<charon>
<max_ikev1_exchanges/>
<threads>16</threads>
<ikesa_table_size>32</ikesa_table_size>
<ikesa_table_segments>4</ikesa_table_segments>
<init_limit_half_open>1000</init_limit_half_open>
<ignore_acquire_ts>1</ignore_acquire_ts>
<install_routes>0</install_routes>
<cisco_unity>0</cisco_unity>
<make_before_break/>
<retransmit_tries/>
<retransmit_timeout/>
<retransmit_base/>
<retransmit_jitter/>
<retransmit_limit/>
<syslog>
<daemon>
<ike_name>1</ike_name>
<log_level>0</log_level>
<app>1</app>
<asn>1</asn>
<cfg>1</cfg>
<chd>1</chd>
<dmn>1</dmn>
<enc>1</enc>
<esp>1</esp>
<ike>1</ike>
<imc>1</imc>
<imv>1</imv>
<job>1</job>
<knl>1</knl>
<lib>1</lib>
<mgr>1</mgr>
<net>1</net>
<pts>1</pts>
<tls>1</tls>
<tnc>1</tnc>
</daemon>
</syslog>
<plugins>
<attr>
<subnet/>
<split-include/>
<x_28674/>
<x_28675/>
<x_25/>
<x_28672/>
<x_28673>0</x_28673>
<x_28679/>
<dns/>
<nbns/>
</attr>
<eap-radius>
<servers/>
<accounting>0</accounting>
<class_group>0</class_group>
</eap-radius>
<xauth-pam>
<pam_service>ipsec</pam_service>
<session>0</session>
<trim_email>1</trim_email>
</xauth-pam>
</plugins>
</charon>
</IPsec>
<Interfaces>
<vxlans version="1.0.2"/>
<loopbacks version="1.0.0"/>
<neighbors version="1.0.0"/>
</Interfaces>
<Kea>
<ctrl_agent version="0.0.1">
<general>
<enabled>0</enabled>
<http_host>127.0.0.1</http_host>
<http_port>8000</http_port>
</general>
</ctrl_agent>
<dhcp4 version="1.0.3">
<general>
<enabled>0</enabled>
<interfaces/>
<valid_lifetime>4000</valid_lifetime>
<fwrules>1</fwrules>
<dhcp_socket_type>raw</dhcp_socket_type>
</general>
<ha>
<enabled>0</enabled>
<this_server_name/>
<max_unacked_clients>2</max_unacked_clients>
</ha>
<subnets/>
<reservations/>
<ha_peers/>
</dhcp4>
</Kea>
<monit version="1.0.13">
<general>
<enabled>0</enabled>
<interval>120</interval>
<startdelay>120</startdelay>
<mailserver>127.0.0.1</mailserver>
<port>25</port>
<username/>
<password/>
<ssl>0</ssl>
<sslversion>auto</sslversion>
<sslverify>1</sslverify>
<logfile/>
<statefile/>
<eventqueuePath/>
<eventqueueSlots/>
<httpdEnabled>0</httpdEnabled>
<httpdUsername>root</httpdUsername>
<httpdPassword/>
<httpdPort>2812</httpdPort>
<httpdAllow/>
<mmonitUrl/>
<mmonitTimeout>5</mmonitTimeout>
<mmonitRegisterCredentials>1</mmonitRegisterCredentials>
</general>
<alert uuid="8e3719e1-dd47-467e-bfed-55787df3a8e7">
<enabled>0</enabled>
<recipient>root@localhost.local</recipient>
<noton>0</noton>
<events/>
<format/>
<reminder/>
<description/>
</alert>
<service uuid="68d541ef-8edb-42cc-8a24-2d8c62ac8439">
<enabled>1</enabled>
<name>$HOST</name>
<description/>
<type>system</type>
<pidfile/>
<match/>
<path/>
<timeout>300</timeout>
<starttimeout>30</starttimeout>
<address/>
<interface/>
<start/>
<stop/>
<tests>b9a4410c-bc95-4de6-ac83-567dd8cf60c0,c1ec5aac-2fda-45f5-a0d8-9bea7db470d6,f1a4fa3a-65a2-43da-b6e0-18b0361ac43b,76c03880-d148-413e-8097-3ee0aa33cb2c</tests>
<depends/>
<polltime/>
</service>
<service uuid="ebf7ab21-6712-45d4-981c-d459ad8ae284">
<enabled>1</enabled>
<name>RootFs</name>
<description/>
<type>filesystem</type>
<pidfile/>
<match/>
<path>/</path>
<timeout>300</timeout>
<starttimeout>30</starttimeout>
<address/>
<interface/>
<start/>
<stop/>
<tests>f24e0d56-0445-4e5f-9b58-3af0f246b80d</tests>
<depends/>
<polltime/>
</service>
<service uuid="ca9f44d4-b52e-42e9-998a-bbfb64dca7a9">
<enabled>0</enabled>
<name>carp_status_change</name>
<description/>
<type>custom</type>
<pidfile/>
<match/>
<path>/usr/local/opnsense/scripts/OPNsense/Monit/carp_status</path>
<timeout>300</timeout>
<starttimeout>30</starttimeout>
<address/>
<interface/>
<start/>
<stop/>
<tests>f48cfab6-de1e-4006-bcd7-c8f8990d25d6</tests>
<depends/>
<polltime/>
</service>
<service uuid="39ef4972-9370-4d92-b374-b52d2ebbd75b">
<enabled>0</enabled>
<name>gateway_alert</name>
<description/>
<type>custom</type>
<pidfile/>
<match/>
<path>/usr/local/opnsense/scripts/OPNsense/Monit/gateway_alert</path>
<timeout>300</timeout>
<starttimeout>30</starttimeout>
<address/>
<interface/>
<start/>
<stop/>
<tests>5e0dc1c7-90ac-48cc-944e-e0b20c482656</tests>
<depends/>
<polltime/>
</service>
<test uuid="2a8b1b91-4518-45a8-bc5c-cf80501752a0">
<name>Ping</name>
<type>NetworkPing</type>
<condition>failed ping</condition>
<action>alert</action>
<path/>
</test>
<test uuid="7aa46fcf-93b0-4d50-b680-7987d79986cb">
<name>NetworkLink</name>
<type>NetworkInterface</type>
<condition>failed link</condition>
<action>alert</action>
<path/>
</test>
<test uuid="3b123130-ce2f-4796-941d-10f2d75f9237">
<name>NetworkSaturation</name>
<type>NetworkInterface</type>
<condition>saturation is greater than 75%</condition>
<action>alert</action>
<path/>
</test>
<test uuid="b9a4410c-bc95-4de6-ac83-567dd8cf60c0">
<name>MemoryUsage</name>
<type>SystemResource</type>
<condition>memory usage is greater than 75%</condition>
<action>alert</action>
<path/>
</test>
<test uuid="c1ec5aac-2fda-45f5-a0d8-9bea7db470d6">
<name>CPUUsage</name>
<type>SystemResource</type>
<condition>cpu usage is greater than 75%</condition>
<action>alert</action>
<path/>
</test>
<test uuid="f1a4fa3a-65a2-43da-b6e0-18b0361ac43b">
<name>LoadAvg1</name>
<type>SystemResource</type>
<condition>loadavg (1min) is greater than 8</condition>
<action>alert</action>
<path/>
</test>
<test uuid="76c03880-d148-413e-8097-3ee0aa33cb2c">
<name>LoadAvg5</name>
<type>SystemResource</type>
<condition>loadavg (5min) is greater than 6</condition>
<action>alert</action>
<path/>
</test>
<test uuid="e89b68a9-503a-474f-afde-ce39a4264494">
<name>LoadAvg15</name>
<type>SystemResource</type>
<condition>loadavg (15min) is greater than 4</condition>
<action>alert</action>
<path/>
</test>
<test uuid="f24e0d56-0445-4e5f-9b58-3af0f246b80d">
<name>SpaceUsage</name>
<type>SpaceUsage</type>
<condition>space usage is greater than 75%</condition>
<action>alert</action>
<path/>
</test>
<test uuid="f48cfab6-de1e-4006-bcd7-c8f8990d25d6">
<name>ChangedStatus</name>
<type>ProgramStatus</type>
<condition>changed status</condition>
<action>alert</action>
<path/>
</test>
<test uuid="5e0dc1c7-90ac-48cc-944e-e0b20c482656">
<name>NonZeroStatus</name>
<type>ProgramStatus</type>
<condition>status != 0</condition>
<action>alert</action>
<path/>
</test>
</monit>
<OpenVPNExport version="0.0.1">
<servers/>
</OpenVPNExport>
<Syslog version="1.0.2">
<general>
<enabled>1</enabled>
<loglocal>1</loglocal>
<maxpreserve>31</maxpreserve>
<maxfilesize/>
</general>
<destinations/>
</Syslog>
<TrafficShaper version="1.0.3">
<pipes/>
<queues/>
<rules/>
</TrafficShaper>
<unboundplus version="1.0.12">
<general>
<enabled>1</enabled>
<port>53</port>
<stats/>
<active_interface/>
<dnssec/>
<dns64/>
<dns64prefix/>
<noarecords/>
<regdhcp>1</regdhcp>
<regdhcpdomain/>
<regdhcpstatic>1</regdhcpstatic>
<noreglladdr6/>
<noregrecords/>
<txtsupport/>
<cacheflush/>
<local_zone_type>transparent</local_zone_type>
<outgoing_interface/>
<enable_wpad/>
</general>
<advanced>
<hideidentity>0</hideidentity>
<hideversion>0</hideversion>
<prefetch>0</prefetch>
<prefetchkey>0</prefetchkey>
<dnssecstripped>0</dnssecstripped>
<aggressivensec>1</aggressivensec>
<serveexpired>0</serveexpired>
<serveexpiredreplyttl/>
<serveexpiredttl/>
<serveexpiredttlreset>0</serveexpiredttlreset>
<serveexpiredclienttimeout/>
<qnameminstrict>0</qnameminstrict>
<extendedstatistics>0</extendedstatistics>
<logqueries>0</logqueries>
<logreplies>0</logreplies>
<logtagqueryreply>0</logtagqueryreply>
<logservfail/>
<loglocalactions/>
<logverbosity>1</logverbosity>
<valloglevel>0</valloglevel>
<privatedomain/>
<privateaddress>0.0.0.0/8,10.0.0.0/8,100.64.0.0/10,169.254.0.0/16,172.16.0.0/12,192.0.2.0/24,192.168.0.0/16,198.18.0.0/15,198.51.100.0/24,203.0.113.0/24,233.252.0.0/24,::1/128,2001:db8::/32,fc00::/8,fd00::/8,fe80::/10</privateaddress>
<insecuredomain/>
<msgcachesize/>
<rrsetcachesize/>
<outgoingnumtcp/>
<incomingnumtcp/>
<numqueriesperthread/>
<outgoingrange/>
<jostletimeout/>
<discardtimeout/>
<cachemaxttl/>
<cachemaxnegativettl/>
<cacheminttl/>
<infrahostttl/>
<infrakeepprobing/>
<infracachenumhosts/>
<unwantedreplythreshold/>
</advanced>
<acls>
<default_action>allow</default_action>
</acls>
<dnsbl>
<enabled>0</enabled>
<safesearch/>
<type/>
<lists/>
<whitelists/>
<blocklists/>
<wildcards/>
<address/>
<nxdomain>0</nxdomain>
</dnsbl>
<forwarding>
<enabled>0</enabled>
</forwarding>
<dots/>
<hosts>
<host uuid="a5e846ae-2612-4df0-a9b1-6f56742dbe68">
<enabled>1</enabled>
<hostname>api</hostname>
<domain>ncd0.harmony.mcd</domain>
<rr>A</rr>
<mxprio/>
<mx/>
<ttl/>
<server>192.168.33.1</server>
</host>
<host uuid="738f8c2d-1d04-448d-acbb-d5d28dbc3449">
<enabled>1</enabled>
<hostname>api-int</hostname>
<domain>ncd0.harmony.mcd</domain>
<rr>A</rr>
<mxprio/>
<mx/>
<ttl/>
<server>192.168.33.1</server>
</host>
<host uuid="455a0266-bc93-4004-958b-5fef2245bbf0">
<enabled>1</enabled>
<hostname>*</hostname>
<domain>apps.ncd0.harmony.mcd</domain>
<rr>A</rr>
<mxprio/>
<mx/>
<ttl/>
<server>192.168.33.1</server>
</host>
</hosts>
<aliases/>
</unboundplus>
<DHCRelay version="1.0.1"/>
<trust>
<general version="1.0.1">
<store_intermediate_certs>0</store_intermediate_certs>
<install_crls>0</install_crls>
<fetch_crls>0</fetch_crls>
<enable_legacy_sect>1</enable_legacy_sect>
<enable_config_constraints>0</enable_config_constraints>
<CipherString/>
<Ciphersuites/>
<SignatureAlgorithms/>
<groups/>
<MinProtocol/>
<MinProtocol_DTLS/>
</general>
</trust>
<tftp>
<general version="0.0.1">
<enabled>1</enabled>
<listen>192.168.33.1</listen>
</general>
</tftp>
<wireguard>
<general version="0.0.1">
<enabled>1</enabled>
</general>
<server version="1.0.0">
<servers>
<server uuid="28190b23-672a-4b17-a8bd-7a60285686fe">
<enabled>1</enabled>
<name>ncd0</name>
<instance>0</instance>
<pubkey>PFmk/jbPetnRN1r+eyu4yg8UWnexz1UeYFUHIa6j4XA=</pubkey>
<privkey>aM7qq2KOKpqhrR/PM1SUob9O6c+YeOKhLk9SeLGrKFo=</privkey>
<port>51821</port>
<mtu/>
<dns/>
<tunneladdress>172.33.0.1/24</tunneladdress>
<disableroutes>0</disableroutes>
<gateway/>
<carp_depend_on/>
<peers>28494fc4-f207-449e-9a52-9aa2084ac631,3ec7612c-20cf-446b-a9fe-c06478eec225,e97ec826-3256-4544-95a5-90bb6a36da03</peers>
<endpoint>ncd0.nationtech.io:51821</endpoint>
<peer_dns>192.168.33.1,ncd0.harmony.mcd</peer_dns>
</server>
</servers>
</server>
<client version="1.0.0">
<clients>
<client uuid="28494fc4-f207-449e-9a52-9aa2084ac631">
<enabled>1</enabled>
<name>jg-liliane2</name>
<pubkey>T+AMURuCUmkTnZln7bLzpJTBaUzbvBFIgyIKix1RByI=</pubkey>
<psk/>
<tunneladdress>172.33.0.3/24</tunneladdress>
<serveraddress/>
<serverport/>
<keepalive/>
</client>
<client uuid="3ec7612c-20cf-446b-a9fe-c06478eec225">
<enabled>1</enabled>
<name>ianletourneau</name>
<pubkey>OLH36I5q6uFWKiiKuV63QzKarsUuc+YKzSh25H3+cmY=</pubkey>
<psk/>
<tunneladdress>172.33.0.2/32</tunneladdress>
<serveraddress/>
<serverport/>
<keepalive/>
</client>
<client uuid="e97ec826-3256-4544-95a5-90bb6a36da03">
<enabled>1</enabled>
<name>wrolleman</name>
<pubkey>qExmit/3m6QamjJ2azpYRvKVFtWsbjRpxlvrveLoYWQ=</pubkey>
<psk/>
<tunneladdress>172.33.0.4/32</tunneladdress>
<serveraddress/>
<serverport/>
<keepalive/>
</client>
</clients>
</client>
</wireguard>
<Swanctl version="1.0.0">
<Connections/>
<locals/>
<remotes/>
<children/>
<Pools/>
<VTIs/>
<SPDs/>
</Swanctl>
<OpenVPN version="1.0.1">
<Overwrites/>
<Instances/>
<StaticKeys/>
</OpenVPN>
<Gateways version="1.0.0">
<gateway_item uuid="b5f483d7-8a2f-402a-b169-d955156f2cdb">
<disabled>0</disabled>
<name>WAN_GW</name>
<descr>WAN Gateway</descr>
<interface>wan</interface>
<ipprotocol>inet</ipprotocol>
<gateway/>
<defaultgw>1</defaultgw>
<fargw/>
<monitor_disable>1</monitor_disable>
<monitor_noroute/>
<monitor/>
<force_down/>
<priority>255</priority>
<weight>1</weight>
<latencylow/>
<latencyhigh/>
<losslow/>
<losshigh/>
<interval/>
<time_period/>
<loss_interval/>
<data_length/>
</gateway_item>
</Gateways>
<HAProxy version="4.1.0">
<general>
<enabled>1</enabled>
<gracefulStop>0</gracefulStop>
<hardStopAfter>60s</hardStopAfter>
<closeSpreadTime/>
<seamlessReload>0</seamlessReload>
<storeOcsp>0</storeOcsp>
<showIntro>1</showIntro>
<peers>
<enabled>0</enabled>
<name1/>
<listen1/>
<port1>1024</port1>
<name2/>
<listen2/>
<port2>1024</port2>
</peers>
<tuning>
<root>0</root>
<maxConnections/>
<nbthread>1</nbthread>
<resolversPrefer>ipv4</resolversPrefer>
<sslServerVerify>ignore</sslServerVerify>
<maxDHSize>2048</maxDHSize>
<bufferSize>16384</bufferSize>
<spreadChecks>2</spreadChecks>
<bogusProxyEnabled>0</bogusProxyEnabled>
<luaMaxMem>0</luaMaxMem>
<customOptions/>
<ocspUpdateEnabled>0</ocspUpdateEnabled>
<ocspUpdateMinDelay>300</ocspUpdateMinDelay>
<ocspUpdateMaxDelay>3600</ocspUpdateMaxDelay>
<ssl_defaultsEnabled>0</ssl_defaultsEnabled>
<ssl_bindOptions>prefer-client-ciphers</ssl_bindOptions>
<ssl_minVersion>TLSv1.2</ssl_minVersion>
<ssl_maxVersion/>
<ssl_cipherList>ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256</ssl_cipherList>
<ssl_cipherSuites>TLS_AES_128_GCM_SHA256:TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256</ssl_cipherSuites>
<h2_initialWindowSize/>
<h2_initialWindowSizeOutgoing/>
<h2_initialWindowSizeIncoming/>
<h2_maxConcurrentStreams/>
<h2_maxConcurrentStreamsOutgoing/>
<h2_maxConcurrentStreamsIncoming/>
</tuning>
<defaults>
<maxConnections/>
<maxConnectionsServers/>
<timeoutClient>30s</timeoutClient>
<timeoutConnect>30s</timeoutConnect>
<timeoutCheck/>
<timeoutServer>30s</timeoutServer>
<retries>3</retries>
<redispatch>x-1</redispatch>
<init_addr>last,libc</init_addr>
<customOptions/>
</defaults>
<logging>
<host>127.0.0.1</host>
<facility>local0</facility>
<level>info</level>
<length/>
</logging>
<stats>
<enabled>0</enabled>
<port>8822</port>
<remoteEnabled>0</remoteEnabled>
<remoteBind/>
<authEnabled>0</authEnabled>
<users/>
<allowedUsers/>
<allowedGroups/>
<customOptions/>
<prometheus_enabled>0</prometheus_enabled>
<prometheus_bind>*:8404</prometheus_bind>
<prometheus_path>/metrics</prometheus_path>
</stats>
<cache>
<enabled>0</enabled>
<totalMaxSize>4</totalMaxSize>
<maxAge>60</maxAge>
<maxObjectSize/>
<processVary>0</processVary>
<maxSecondaryEntries>10</maxSecondaryEntries>
</cache>
</general>
<frontends>
<frontend uuid="0775ac0f-d76b-47dd-9c61-088aa790e653">
<id>894e544289f1d829.3f0193d7</id>
<enabled>1</enabled>
<name>frontend_192.168.33.1:80</name>
<description/>
<bind>192.168.33.1:80</bind>
<bindOptions/>
<mode>tcp</mode>
<defaultBackend>b58293a8-01a7-400b-b1a6-f6c598a198cf</defaultBackend>
<ssl_enabled>0</ssl_enabled>
<ssl_certificates/>
<ssl_default_certificate/>
<ssl_customOptions/>
<ssl_advancedEnabled>0</ssl_advancedEnabled>
<ssl_bindOptions/>
<ssl_minVersion/>
<ssl_maxVersion/>
<ssl_cipherList/>
<ssl_cipherSuites/>
<ssl_hstsEnabled>0</ssl_hstsEnabled>
<ssl_hstsIncludeSubDomains>0</ssl_hstsIncludeSubDomains>
<ssl_hstsPreload>0</ssl_hstsPreload>
<ssl_hstsMaxAge>0</ssl_hstsMaxAge>
<ssl_clientAuthEnabled>0</ssl_clientAuthEnabled>
<ssl_clientAuthVerify/>
<ssl_clientAuthCAs/>
<ssl_clientAuthCRLs/>
<basicAuthEnabled>0</basicAuthEnabled>
<basicAuthUsers/>
<basicAuthGroups/>
<tuning_maxConnections/>
<tuning_timeoutClient/>
<tuning_timeoutHttpReq/>
<tuning_timeoutHttpKeepAlive/>
<linkedCpuAffinityRules/>
<tuning_shards/>
<logging_dontLogNull>0</logging_dontLogNull>
<logging_dontLogNormal>0</logging_dontLogNormal>
<logging_logSeparateErrors>0</logging_logSeparateErrors>
<logging_detailedLog>0</logging_detailedLog>
<logging_socketStats>0</logging_socketStats>
<stickiness_pattern/>
<stickiness_dataTypes/>
<stickiness_expire/>
<stickiness_size/>
<stickiness_counter>0</stickiness_counter>
<stickiness_counter_key/>
<stickiness_length/>
<stickiness_connRatePeriod/>
<stickiness_sessRatePeriod/>
<stickiness_httpReqRatePeriod/>
<stickiness_httpErrRatePeriod/>
<stickiness_bytesInRatePeriod/>
<stickiness_bytesOutRatePeriod/>
<http2Enabled>0</http2Enabled>
<http2Enabled_nontls>0</http2Enabled_nontls>
<advertised_protocols/>
<forwardFor>0</forwardFor>
<prometheus_enabled>0</prometheus_enabled>
<prometheus_path/>
<connectionBehaviour/>
<customOptions/>
<linkedActions/>
<linkedErrorfiles/>
</frontend>
<frontend uuid="e7dac246-277d-4892-84a4-548b8b205565">
<id>1fdcee9ce32000ee.6720f746</id>
<enabled>1</enabled>
<name>frontend_192.168.33.1:443</name>
<description/>
<bind>192.168.33.1:443</bind>
<bindOptions/>
<mode>tcp</mode>
<defaultBackend>2ce6372e-30d8-4808-8683-7ff059b346b3</defaultBackend>
<ssl_enabled>0</ssl_enabled>
<ssl_certificates/>
<ssl_default_certificate/>
<ssl_customOptions/>
<ssl_advancedEnabled>0</ssl_advancedEnabled>
<ssl_bindOptions/>
<ssl_minVersion/>
<ssl_maxVersion/>
<ssl_cipherList/>
<ssl_cipherSuites/>
<ssl_hstsEnabled>0</ssl_hstsEnabled>
<ssl_hstsIncludeSubDomains>0</ssl_hstsIncludeSubDomains>
<ssl_hstsPreload>0</ssl_hstsPreload>
<ssl_hstsMaxAge>0</ssl_hstsMaxAge>
<ssl_clientAuthEnabled>0</ssl_clientAuthEnabled>
<ssl_clientAuthVerify/>
<ssl_clientAuthCAs/>
<ssl_clientAuthCRLs/>
<basicAuthEnabled>0</basicAuthEnabled>
<basicAuthUsers/>
<basicAuthGroups/>
<tuning_maxConnections/>
<tuning_timeoutClient/>
<tuning_timeoutHttpReq/>
<tuning_timeoutHttpKeepAlive/>
<linkedCpuAffinityRules/>
<tuning_shards/>
<logging_dontLogNull>0</logging_dontLogNull>
<logging_dontLogNormal>0</logging_dontLogNormal>
<logging_logSeparateErrors>0</logging_logSeparateErrors>
<logging_detailedLog>0</logging_detailedLog>
<logging_socketStats>0</logging_socketStats>
<stickiness_pattern/>
<stickiness_dataTypes/>
<stickiness_expire/>
<stickiness_size/>
<stickiness_counter>0</stickiness_counter>
<stickiness_counter_key/>
<stickiness_length/>
<stickiness_connRatePeriod/>
<stickiness_sessRatePeriod/>
<stickiness_httpReqRatePeriod/>
<stickiness_httpErrRatePeriod/>
<stickiness_bytesInRatePeriod/>
<stickiness_bytesOutRatePeriod/>
<http2Enabled>0</http2Enabled>
<http2Enabled_nontls>0</http2Enabled_nontls>
<advertised_protocols/>
<forwardFor>0</forwardFor>
<prometheus_enabled>0</prometheus_enabled>
<prometheus_path/>
<connectionBehaviour/>
<customOptions/>
<linkedActions/>
<linkedErrorfiles/>
</frontend>
<frontend uuid="975bbf7d-e6d1-470e-b5f0-ebfb85e1e821">
<id>b2b0821e71423fd9.bb87bdb2</id>
<enabled>1</enabled>
<name>frontend_192.168.33.1:22623</name>
<description/>
<bind>192.168.33.1:22623</bind>
<bindOptions/>
<mode>tcp</mode>
<defaultBackend>284a9201-f139-4622-809b-f876a5812d61</defaultBackend>
<ssl_enabled>0</ssl_enabled>
<ssl_certificates/>
<ssl_default_certificate/>
<ssl_customOptions/>
<ssl_advancedEnabled>0</ssl_advancedEnabled>
<ssl_bindOptions/>
<ssl_minVersion/>
<ssl_maxVersion/>
<ssl_cipherList/>
<ssl_cipherSuites/>
<ssl_hstsEnabled>0</ssl_hstsEnabled>
<ssl_hstsIncludeSubDomains>0</ssl_hstsIncludeSubDomains>
<ssl_hstsPreload>0</ssl_hstsPreload>
<ssl_hstsMaxAge>0</ssl_hstsMaxAge>
<ssl_clientAuthEnabled>0</ssl_clientAuthEnabled>
<ssl_clientAuthVerify/>
<ssl_clientAuthCAs/>
<ssl_clientAuthCRLs/>
<basicAuthEnabled>0</basicAuthEnabled>
<basicAuthUsers/>
<basicAuthGroups/>
<tuning_maxConnections/>
<tuning_timeoutClient/>
<tuning_timeoutHttpReq/>
<tuning_timeoutHttpKeepAlive/>
<linkedCpuAffinityRules/>
<tuning_shards/>
<logging_dontLogNull>0</logging_dontLogNull>
<logging_dontLogNormal>0</logging_dontLogNormal>
<logging_logSeparateErrors>0</logging_logSeparateErrors>
<logging_detailedLog>0</logging_detailedLog>
<logging_socketStats>0</logging_socketStats>
<stickiness_pattern/>
<stickiness_dataTypes/>
<stickiness_expire/>
<stickiness_size/>
<stickiness_counter>0</stickiness_counter>
<stickiness_counter_key/>
<stickiness_length/>
<stickiness_connRatePeriod/>
<stickiness_sessRatePeriod/>
<stickiness_httpReqRatePeriod/>
<stickiness_httpErrRatePeriod/>
<stickiness_bytesInRatePeriod/>
<stickiness_bytesOutRatePeriod/>
<http2Enabled>0</http2Enabled>
<http2Enabled_nontls>0</http2Enabled_nontls>
<advertised_protocols/>
<forwardFor>0</forwardFor>
<prometheus_enabled>0</prometheus_enabled>
<prometheus_path/>
<connectionBehaviour/>
<customOptions/>
<linkedActions/>
<linkedErrorfiles/>
</frontend>
<frontend uuid="b5415b94-90a5-4a0b-9ba2-a1ee90412bed">
<id>98fdab464008b9d0.26152082</id>
<enabled>1</enabled>
<name>frontend_192.168.33.1:6443</name>
<description/>
<bind>192.168.33.1:6443</bind>
<bindOptions/>
<mode>tcp</mode>
<defaultBackend>48380579-d54b-41fd-91b7-22f1a065be10</defaultBackend>
<ssl_enabled>0</ssl_enabled>
<ssl_certificates/>
<ssl_default_certificate/>
<ssl_customOptions/>
<ssl_advancedEnabled>0</ssl_advancedEnabled>
<ssl_bindOptions/>
<ssl_minVersion/>
<ssl_maxVersion/>
<ssl_cipherList/>
<ssl_cipherSuites/>
<ssl_hstsEnabled>0</ssl_hstsEnabled>
<ssl_hstsIncludeSubDomains>0</ssl_hstsIncludeSubDomains>
<ssl_hstsPreload>0</ssl_hstsPreload>
<ssl_hstsMaxAge>0</ssl_hstsMaxAge>
<ssl_clientAuthEnabled>0</ssl_clientAuthEnabled>
<ssl_clientAuthVerify/>
<ssl_clientAuthCAs/>
<ssl_clientAuthCRLs/>
<basicAuthEnabled>0</basicAuthEnabled>
<basicAuthUsers/>
<basicAuthGroups/>
<tuning_maxConnections/>
<tuning_timeoutClient/>
<tuning_timeoutHttpReq/>
<tuning_timeoutHttpKeepAlive/>
<linkedCpuAffinityRules/>
<tuning_shards/>
<logging_dontLogNull>0</logging_dontLogNull>
<logging_dontLogNormal>0</logging_dontLogNormal>
<logging_logSeparateErrors>0</logging_logSeparateErrors>
<logging_detailedLog>0</logging_detailedLog>
<logging_socketStats>0</logging_socketStats>
<stickiness_pattern/>
<stickiness_dataTypes/>
<stickiness_expire/>
<stickiness_size/>
<stickiness_counter>0</stickiness_counter>
<stickiness_counter_key/>
<stickiness_length/>
<stickiness_connRatePeriod/>
<stickiness_sessRatePeriod/>
<stickiness_httpReqRatePeriod/>
<stickiness_httpErrRatePeriod/>
<stickiness_bytesInRatePeriod/>
<stickiness_bytesOutRatePeriod/>
<http2Enabled>0</http2Enabled>
<http2Enabled_nontls>0</http2Enabled_nontls>
<advertised_protocols/>
<forwardFor>0</forwardFor>
<prometheus_enabled>0</prometheus_enabled>
<prometheus_path/>
<connectionBehaviour/>
<customOptions/>
<linkedActions/>
<linkedErrorfiles/>
</frontend>
</frontends>
<backends>
<backend uuid="b58293a8-01a7-400b-b1a6-f6c598a198cf">
<id>e59d902d1ed09be4.d164b0e3</id>
<enabled>1</enabled>
<name>backend_192.168.33.1_80</name>
<description/>
<mode>tcp</mode>
<algorithm>roundrobin</algorithm>
<random_draws>2</random_draws>
<proxyProtocol/>
<linkedServers>2dd9cace-32ab-4e19-a59c-26744ee9531d,79a8d772-3814-4ade-9c12-b6ad5e1ec9da,b13c0744-2ca3-440d-b572-ad3357bca2d2,a3be6e26-095e-4af3-ba59-54f3e5732b6c,a0c71f9b-51d0-46a1-8686-1a7a24f89ed0,432001e4-eddd-4cc7-97a8-8c8d68049b1f</linkedServers>
<linkedFcgi/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<source/>
<healthCheckEnabled>1</healthCheckEnabled>
<healthCheck>41663990-0ffc-46a0-8c56-1c194dde8dc4</healthCheck>
<healthCheckLogStatus>0</healthCheckLogStatus>
<checkInterval/>
<checkDownInterval/>
<healthCheckFall/>
<healthCheckRise/>
<linkedMailer/>
<http2Enabled>0</http2Enabled>
<http2Enabled_nontls>0</http2Enabled_nontls>
<ba_advertised_protocols/>
<forwardFor>0</forwardFor>
<forwardedHeader>0</forwardedHeader>
<forwardedHeaderParameters/>
<persistence>sticktable</persistence>
<persistence_cookiemode>piggyback</persistence_cookiemode>
<persistence_cookiename/>
<persistence_stripquotes>0</persistence_stripquotes>
<stickiness_pattern/>
<stickiness_dataTypes/>
<stickiness_expire>30m</stickiness_expire>
<stickiness_size>50k</stickiness_size>
<stickiness_cookiename/>
<stickiness_cookielength/>
<stickiness_connRatePeriod>10s</stickiness_connRatePeriod>
<stickiness_sessRatePeriod>10s</stickiness_sessRatePeriod>
<stickiness_httpReqRatePeriod>10s</stickiness_httpReqRatePeriod>
<stickiness_httpErrRatePeriod>10s</stickiness_httpErrRatePeriod>
<stickiness_bytesInRatePeriod>1m</stickiness_bytesInRatePeriod>
<stickiness_bytesOutRatePeriod>1m</stickiness_bytesOutRatePeriod>
<basicAuthEnabled>0</basicAuthEnabled>
<basicAuthUsers/>
<basicAuthGroups/>
<tuning_timeoutConnect/>
<tuning_timeoutCheck/>
<tuning_timeoutServer/>
<tuning_retries/>
<customOptions/>
<tuning_defaultserver/>
<tuning_noport>0</tuning_noport>
<tuning_httpreuse/>
<tuning_caching>0</tuning_caching>
<linkedActions/>
<linkedErrorfiles/>
</backend>
<backend uuid="2ce6372e-30d8-4808-8683-7ff059b346b3">
<id>b18b8d840ac79ebe.44a5f27f</id>
<enabled>1</enabled>
<name>backend_192.168.33.1_443</name>
<description/>
<mode>tcp</mode>
<algorithm>roundrobin</algorithm>
<random_draws>2</random_draws>
<proxyProtocol/>
<linkedServers>621f9277-3351-462e-ac79-0a50d9297daa,613de55f-0f04-4b3b-9cfe-4bc720686c17,2778f5cc-f347-4506-bcb3-8b7beaee43b3,2c670f2a-576d-4d57-ac1c-402229ceaebe,dc3d126a-2368-4fd2-b5ba-e1ddf550cdc0,9d966027-c3e9-4253-b771-89ea9954f25d</linkedServers>
<linkedFcgi/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<source/>
<healthCheckEnabled>1</healthCheckEnabled>
<healthCheck>943bb69a-c19e-461c-9755-c05b8e860eb1</healthCheck>
<healthCheckLogStatus>0</healthCheckLogStatus>
<checkInterval/>
<checkDownInterval/>
<healthCheckFall/>
<healthCheckRise/>
<linkedMailer/>
<http2Enabled>0</http2Enabled>
<http2Enabled_nontls>0</http2Enabled_nontls>
<ba_advertised_protocols/>
<forwardFor>0</forwardFor>
<forwardedHeader>0</forwardedHeader>
<forwardedHeaderParameters/>
<persistence>sticktable</persistence>
<persistence_cookiemode>piggyback</persistence_cookiemode>
<persistence_cookiename/>
<persistence_stripquotes>0</persistence_stripquotes>
<stickiness_pattern/>
<stickiness_dataTypes/>
<stickiness_expire>30m</stickiness_expire>
<stickiness_size>50k</stickiness_size>
<stickiness_cookiename/>
<stickiness_cookielength/>
<stickiness_connRatePeriod>10s</stickiness_connRatePeriod>
<stickiness_sessRatePeriod>10s</stickiness_sessRatePeriod>
<stickiness_httpReqRatePeriod>10s</stickiness_httpReqRatePeriod>
<stickiness_httpErrRatePeriod>10s</stickiness_httpErrRatePeriod>
<stickiness_bytesInRatePeriod>1m</stickiness_bytesInRatePeriod>
<stickiness_bytesOutRatePeriod>1m</stickiness_bytesOutRatePeriod>
<basicAuthEnabled>0</basicAuthEnabled>
<basicAuthUsers/>
<basicAuthGroups/>
<tuning_timeoutConnect/>
<tuning_timeoutCheck/>
<tuning_timeoutServer/>
<tuning_retries/>
<customOptions/>
<tuning_defaultserver/>
<tuning_noport>0</tuning_noport>
<tuning_httpreuse/>
<tuning_caching>0</tuning_caching>
<linkedActions/>
<linkedErrorfiles/>
</backend>
<backend uuid="284a9201-f139-4622-809b-f876a5812d61">
<id>d876f8143ec06bdd.d8c8f390</id>
<enabled>1</enabled>
<name>backend_192.168.33.1_22623</name>
<description/>
<mode>tcp</mode>
<algorithm>roundrobin</algorithm>
<random_draws>2</random_draws>
<proxyProtocol/>
<linkedServers>d69299da-ae0a-406c-8658-319f01906c6c,cfffecc2-b3ee-45aa-be2d-c0d2bd224ff4,976922b3-bc0b-4745-b319-fbdd61321379</linkedServers>
<linkedFcgi/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<source/>
<healthCheckEnabled>1</healthCheckEnabled>
<healthCheck>4a6a2a77-b35e-4bf0-8639-31fadafa2d81</healthCheck>
<healthCheckLogStatus>0</healthCheckLogStatus>
<checkInterval/>
<checkDownInterval/>
<healthCheckFall/>
<healthCheckRise/>
<linkedMailer/>
<http2Enabled>0</http2Enabled>
<http2Enabled_nontls>0</http2Enabled_nontls>
<ba_advertised_protocols/>
<forwardFor>0</forwardFor>
<forwardedHeader>0</forwardedHeader>
<forwardedHeaderParameters/>
<persistence>sticktable</persistence>
<persistence_cookiemode>piggyback</persistence_cookiemode>
<persistence_cookiename/>
<persistence_stripquotes>0</persistence_stripquotes>
<stickiness_pattern/>
<stickiness_dataTypes/>
<stickiness_expire>30m</stickiness_expire>
<stickiness_size>50k</stickiness_size>
<stickiness_cookiename/>
<stickiness_cookielength/>
<stickiness_connRatePeriod>10s</stickiness_connRatePeriod>
<stickiness_sessRatePeriod>10s</stickiness_sessRatePeriod>
<stickiness_httpReqRatePeriod>10s</stickiness_httpReqRatePeriod>
<stickiness_httpErrRatePeriod>10s</stickiness_httpErrRatePeriod>
<stickiness_bytesInRatePeriod>1m</stickiness_bytesInRatePeriod>
<stickiness_bytesOutRatePeriod>1m</stickiness_bytesOutRatePeriod>
<basicAuthEnabled>0</basicAuthEnabled>
<basicAuthUsers/>
<basicAuthGroups/>
<tuning_timeoutConnect/>
<tuning_timeoutCheck/>
<tuning_timeoutServer/>
<tuning_retries/>
<customOptions/>
<tuning_defaultserver/>
<tuning_noport>0</tuning_noport>
<tuning_httpreuse/>
<tuning_caching>0</tuning_caching>
<linkedActions/>
<linkedErrorfiles/>
</backend>
<backend uuid="48380579-d54b-41fd-91b7-22f1a065be10">
<id>dedd33d162fc85de.36a7389d</id>
<enabled>1</enabled>
<name>backend_192.168.33.1_6443</name>
<description/>
<mode>tcp</mode>
<algorithm>roundrobin</algorithm>
<random_draws>2</random_draws>
<proxyProtocol/>
<linkedServers>85c6a978-63f1-4af3-afac-9009ce5483b8,9415acdf-bb7e-4e97-b61e-b85bbabe397a,b0da12c3-5199-4c7e-b224-69836b1eebe9</linkedServers>
<linkedFcgi/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<source/>
<healthCheckEnabled>1</healthCheckEnabled>
<healthCheck>943bb69a-c19e-461c-9755-c05b8e860eb1</healthCheck>
<healthCheckLogStatus>0</healthCheckLogStatus>
<checkInterval/>
<checkDownInterval/>
<healthCheckFall/>
<healthCheckRise/>
<linkedMailer/>
<http2Enabled>0</http2Enabled>
<http2Enabled_nontls>0</http2Enabled_nontls>
<ba_advertised_protocols/>
<forwardFor>0</forwardFor>
<forwardedHeader>0</forwardedHeader>
<forwardedHeaderParameters/>
<persistence>sticktable</persistence>
<persistence_cookiemode>piggyback</persistence_cookiemode>
<persistence_cookiename/>
<persistence_stripquotes>0</persistence_stripquotes>
<stickiness_pattern/>
<stickiness_dataTypes/>
<stickiness_expire>30m</stickiness_expire>
<stickiness_size>50k</stickiness_size>
<stickiness_cookiename/>
<stickiness_cookielength/>
<stickiness_connRatePeriod>10s</stickiness_connRatePeriod>
<stickiness_sessRatePeriod>10s</stickiness_sessRatePeriod>
<stickiness_httpReqRatePeriod>10s</stickiness_httpReqRatePeriod>
<stickiness_httpErrRatePeriod>10s</stickiness_httpErrRatePeriod>
<stickiness_bytesInRatePeriod>1m</stickiness_bytesInRatePeriod>
<stickiness_bytesOutRatePeriod>1m</stickiness_bytesOutRatePeriod>
<basicAuthEnabled>0</basicAuthEnabled>
<basicAuthUsers/>
<basicAuthGroups/>
<tuning_timeoutConnect/>
<tuning_timeoutCheck/>
<tuning_timeoutServer/>
<tuning_retries/>
<customOptions/>
<tuning_defaultserver/>
<tuning_noport>0</tuning_noport>
<tuning_httpreuse/>
<tuning_caching>0</tuning_caching>
<linkedActions/>
<linkedErrorfiles/>
</backend>
</backends>
<servers>
<server uuid="2dd9cace-32ab-4e19-a59c-26744ee9531d">
<id>68c8ff6c38f62657.41d2104d</id>
<enabled>1</enabled>
<name>192.168.33.20_80</name>
<description/>
<address>192.168.33.20</address>
<port>80</port>
<checkport/>
<mode>active</mode>
<multiplexer_protocol/>
<type>static</type>
<serviceName/>
<number/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<ssl>0</ssl>
<sslSNI/>
<sslVerify>0</sslVerify>
<sslCA/>
<sslCRL/>
<sslClientCertificate/>
<maxConnections/>
<weight/>
<checkInterval/>
<checkDownInterval/>
<source/>
<advanced/>
<unix_socket/>
</server>
<server uuid="79a8d772-3814-4ade-9c12-b6ad5e1ec9da">
<id>9d3e1b4532081cde.9604f10f</id>
<enabled>1</enabled>
<name>192.168.33.21_80</name>
<description/>
<address>192.168.33.21</address>
<port>80</port>
<checkport/>
<mode>active</mode>
<multiplexer_protocol/>
<type>static</type>
<serviceName/>
<number/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<ssl>0</ssl>
<sslSNI/>
<sslVerify>0</sslVerify>
<sslCA/>
<sslCRL/>
<sslClientCertificate/>
<maxConnections/>
<weight/>
<checkInterval/>
<checkDownInterval/>
<source/>
<advanced/>
<unix_socket/>
</server>
<server uuid="b13c0744-2ca3-440d-b572-ad3357bca2d2">
<id>fb02e85101a55583.442e22e2</id>
<enabled>1</enabled>
<name>192.168.33.22_80</name>
<description/>
<address>192.168.33.22</address>
<port>80</port>
<checkport/>
<mode>active</mode>
<multiplexer_protocol/>
<type>static</type>
<serviceName/>
<number/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<ssl>0</ssl>
<sslSNI/>
<sslVerify>0</sslVerify>
<sslCA/>
<sslCRL/>
<sslClientCertificate/>
<maxConnections/>
<weight/>
<checkInterval/>
<checkDownInterval/>
<source/>
<advanced/>
<unix_socket/>
</server>
<server uuid="2c670f2a-576d-4d57-ac1c-402229ceaebe">
<id>d7c1cfbc58cde8cf.a44d6720</id>
<enabled>1</enabled>
<name>192.168.33.30_443</name>
<description/>
<address>192.168.33.30</address>
<port>443</port>
<checkport/>
<mode>active</mode>
<multiplexer_protocol/>
<type>static</type>
<serviceName/>
<number/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<ssl>0</ssl>
<sslSNI/>
<sslVerify>0</sslVerify>
<sslCA/>
<sslCRL/>
<sslClientCertificate/>
<maxConnections/>
<weight/>
<checkInterval/>
<checkDownInterval/>
<source/>
<advanced/>
<unix_socket/>
</server>
<server uuid="613de55f-0f04-4b3b-9cfe-4bc720686c17">
<id>1fdd6caa0d234653.f072d6a4</id>
<enabled>1</enabled>
<name>192.168.33.21_443</name>
<description/>
<address>192.168.33.21</address>
<port>443</port>
<checkport/>
<mode>active</mode>
<multiplexer_protocol/>
<type>static</type>
<serviceName/>
<number/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<ssl>0</ssl>
<sslSNI/>
<sslVerify>0</sslVerify>
<sslCA/>
<sslCRL/>
<sslClientCertificate/>
<maxConnections/>
<weight/>
<checkInterval/>
<checkDownInterval/>
<source/>
<advanced/>
<unix_socket/>
</server>
<server uuid="2778f5cc-f347-4506-bcb3-8b7beaee43b3">
<id>c983cc4193bcfe6f.b365aa92</id>
<enabled>1</enabled>
<name>192.168.33.22_443</name>
<description/>
<address>192.168.33.22</address>
<port>443</port>
<checkport/>
<mode>active</mode>
<multiplexer_protocol/>
<type>static</type>
<serviceName/>
<number/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<ssl>0</ssl>
<sslSNI/>
<sslVerify>0</sslVerify>
<sslCA/>
<sslCRL/>
<sslClientCertificate/>
<maxConnections/>
<weight/>
<checkInterval/>
<checkDownInterval/>
<source/>
<advanced/>
<unix_socket/>
</server>
<server uuid="d69299da-ae0a-406c-8658-319f01906c6c">
<id>807c6a5a6d827047.6a59b632</id>
<enabled>1</enabled>
<name>192.168.33.20_22623</name>
<description/>
<address>192.168.33.20</address>
<port>22623</port>
<checkport/>
<mode>active</mode>
<multiplexer_protocol/>
<type>static</type>
<serviceName/>
<number/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<ssl>0</ssl>
<sslSNI/>
<sslVerify>0</sslVerify>
<sslCA/>
<sslCRL/>
<sslClientCertificate/>
<maxConnections/>
<weight/>
<checkInterval/>
<checkDownInterval/>
<source/>
<advanced/>
<unix_socket/>
</server>
<server uuid="cfffecc2-b3ee-45aa-be2d-c0d2bd224ff4">
<id>1b58748e4092d03a.a6b8e9f7</id>
<enabled>1</enabled>
<name>192.168.33.21_22623</name>
<description/>
<address>192.168.33.21</address>
<port>22623</port>
<checkport/>
<mode>active</mode>
<multiplexer_protocol/>
<type>static</type>
<serviceName/>
<number/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<ssl>0</ssl>
<sslSNI/>
<sslVerify>0</sslVerify>
<sslCA/>
<sslCRL/>
<sslClientCertificate/>
<maxConnections/>
<weight/>
<checkInterval/>
<checkDownInterval/>
<source/>
<advanced/>
<unix_socket/>
</server>
<server uuid="976922b3-bc0b-4745-b319-fbdd61321379">
<id>f1022774f9bb613f.5eaaf49f</id>
<enabled>1</enabled>
<name>192.168.33.22_22623</name>
<description/>
<address>192.168.33.22</address>
<port>22623</port>
<checkport/>
<mode>active</mode>
<multiplexer_protocol/>
<type>static</type>
<serviceName/>
<number/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<ssl>0</ssl>
<sslSNI/>
<sslVerify>0</sslVerify>
<sslCA/>
<sslCRL/>
<sslClientCertificate/>
<maxConnections/>
<weight/>
<checkInterval/>
<checkDownInterval/>
<source/>
<advanced/>
<unix_socket/>
</server>
<server uuid="85c6a978-63f1-4af3-afac-9009ce5483b8">
<id>8651865f070701d8.7820f31b</id>
<enabled>1</enabled>
<name>192.168.33.20_6443</name>
<description/>
<address>192.168.33.20</address>
<port>6443</port>
<checkport/>
<mode>active</mode>
<multiplexer_protocol/>
<type>static</type>
<serviceName/>
<number/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<ssl>0</ssl>
<sslSNI/>
<sslVerify>0</sslVerify>
<sslCA/>
<sslCRL/>
<sslClientCertificate/>
<maxConnections/>
<weight/>
<checkInterval/>
<checkDownInterval/>
<source/>
<advanced/>
<unix_socket/>
</server>
<server uuid="9415acdf-bb7e-4e97-b61e-b85bbabe397a">
<id>b41297ac041c49f8.5898a56d</id>
<enabled>1</enabled>
<name>192.168.33.21_6443</name>
<description/>
<address>192.168.33.21</address>
<port>6443</port>
<checkport/>
<mode>active</mode>
<multiplexer_protocol/>
<type>static</type>
<serviceName/>
<number/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<ssl>0</ssl>
<sslSNI/>
<sslVerify>0</sslVerify>
<sslCA/>
<sslCRL/>
<sslClientCertificate/>
<maxConnections/>
<weight/>
<checkInterval/>
<checkDownInterval/>
<source/>
<advanced/>
<unix_socket/>
</server>
<server uuid="b0da12c3-5199-4c7e-b224-69836b1eebe9">
<id>3bdec82af2c6071d.a288e254</id>
<enabled>1</enabled>
<name>192.168.33.22_6443</name>
<description/>
<address>192.168.33.22</address>
<port>6443</port>
<checkport/>
<mode>active</mode>
<multiplexer_protocol/>
<type>static</type>
<serviceName/>
<number/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<ssl>0</ssl>
<sslSNI/>
<sslVerify>0</sslVerify>
<sslCA/>
<sslCRL/>
<sslClientCertificate/>
<maxConnections/>
<weight/>
<checkInterval/>
<checkDownInterval/>
<source/>
<advanced/>
<unix_socket/>
</server>
<server uuid="a3be6e26-095e-4af3-ba59-54f3e5732b6c">
<id>68818e55a5d8e8.27621290</id>
<enabled>1</enabled>
<name>192.168.33.30_80</name>
<description/>
<address>192.168.33.30</address>
<port>80</port>
<checkport/>
<mode>active</mode>
<multiplexer_protocol/>
<type>static</type>
<serviceName/>
<number/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<ssl>0</ssl>
<sslSNI/>
<sslVerify>0</sslVerify>
<sslCA/>
<sslCRL/>
<sslClientCertificate/>
<maxConnections/>
<weight/>
<checkInterval/>
<checkDownInterval/>
<source/>
<advanced/>
<unix_socket/>
</server>
<server uuid="a0c71f9b-51d0-46a1-8686-1a7a24f89ed0">
<id>68818e64139dd6.41162612</id>
<enabled>1</enabled>
<name>192.168.33.31_80</name>
<description/>
<address>192.168.33.31</address>
<port>80</port>
<checkport/>
<mode>active</mode>
<multiplexer_protocol/>
<type>static</type>
<serviceName/>
<number/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<ssl>0</ssl>
<sslSNI/>
<sslVerify>0</sslVerify>
<sslCA/>
<sslCRL/>
<sslClientCertificate/>
<maxConnections/>
<weight/>
<checkInterval/>
<checkDownInterval/>
<source/>
<advanced/>
<unix_socket/>
</server>
<server uuid="432001e4-eddd-4cc7-97a8-8c8d68049b1f">
<id>68818e6e488d45.84039549</id>
<enabled>1</enabled>
<name>192.168.33.32_80</name>
<description/>
<address>192.168.33.32</address>
<port>80</port>
<checkport/>
<mode>active</mode>
<multiplexer_protocol/>
<type>static</type>
<serviceName/>
<number/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<ssl>0</ssl>
<sslSNI/>
<sslVerify>0</sslVerify>
<sslCA/>
<sslCRL/>
<sslClientCertificate/>
<maxConnections/>
<weight/>
<checkInterval/>
<checkDownInterval/>
<source/>
<advanced/>
<unix_socket/>
</server>
<server uuid="621f9277-3351-462e-ac79-0a50d9297daa">
<id>68818e90906b75.70067928</id>
<enabled>1</enabled>
<name>192.168.33.20_443</name>
<description/>
<address>192.168.33.20</address>
<port>443</port>
<checkport/>
<mode>active</mode>
<multiplexer_protocol/>
<type>static</type>
<serviceName/>
<number/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<ssl>0</ssl>
<sslSNI/>
<sslVerify>0</sslVerify>
<sslCA/>
<sslCRL/>
<sslClientCertificate/>
<maxConnections/>
<weight/>
<checkInterval/>
<checkDownInterval/>
<source/>
<advanced/>
<unix_socket/>
</server>
<server uuid="dc3d126a-2368-4fd2-b5ba-e1ddf550cdc0">
<id>68818e9c9fc677.25194625</id>
<enabled>1</enabled>
<name>192.168.33.31_443</name>
<description/>
<address>192.168.33.31</address>
<port>443</port>
<checkport/>
<mode>active</mode>
<multiplexer_protocol/>
<type>static</type>
<serviceName/>
<number/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<ssl>0</ssl>
<sslSNI/>
<sslVerify>0</sslVerify>
<sslCA/>
<sslCRL/>
<sslClientCertificate/>
<maxConnections/>
<weight/>
<checkInterval/>
<checkDownInterval/>
<source/>
<advanced/>
<unix_socket/>
</server>
<server uuid="9d966027-c3e9-4253-b771-89ea9954f25d">
<id>68818ea887e1b7.80748222</id>
<enabled>1</enabled>
<name>192.168.33.32_443</name>
<description/>
<address>192.168.33.32</address>
<port>443</port>
<checkport/>
<mode>active</mode>
<multiplexer_protocol/>
<type>static</type>
<serviceName/>
<number/>
<linkedResolver/>
<resolverOpts/>
<resolvePrefer/>
<ssl>0</ssl>
<sslSNI/>
<sslVerify>0</sslVerify>
<sslCA/>
<sslCRL/>
<sslClientCertificate/>
<maxConnections/>
<weight/>
<checkInterval/>
<checkDownInterval/>
<source/>
<advanced/>
<unix_socket/>
</server>
</servers>
<healthchecks>
<healthcheck uuid="41663990-0ffc-46a0-8c56-1c194dde8dc4">
<name>TCP_serverport</name>
<description/>
<type>tcp</type>
<interval>2s</interval>
<ssl>nopref</ssl>
<sslSNI/>
<force_ssl>0</force_ssl>
<checkport/>
<http_method/>
<http_uri/>
<http_version/>
<http_host/>
<http_expressionEnabled>0</http_expressionEnabled>
<http_expression/>
<http_negate/>
<http_value/>
<tcp_enabled/>
<tcp_sendValue/>
<tcp_matchType/>
<tcp_negate/>
<tcp_matchValue/>
<agent_port/>
<mysql_user/>
<mysql_post41/>
<pgsql_user/>
<smtp_domain/>
<esmtp_domain/>
<agentPort/>
<dbUser/>
<smtpDomain/>
</healthcheck>
<healthcheck uuid="943bb69a-c19e-461c-9755-c05b8e860eb1">
<name>TCP_serverport</name>
<description/>
<type>tcp</type>
<interval>2s</interval>
<ssl>nopref</ssl>
<sslSNI/>
<force_ssl>0</force_ssl>
<checkport/>
<http_method/>
<http_uri/>
<http_version/>
<http_host/>
<http_expressionEnabled>0</http_expressionEnabled>
<http_expression/>
<http_negate/>
<http_value/>
<tcp_enabled/>
<tcp_sendValue/>
<tcp_matchType/>
<tcp_negate/>
<tcp_matchValue/>
<agent_port/>
<mysql_user/>
<mysql_post41/>
<pgsql_user/>
<smtp_domain/>
<esmtp_domain/>
<agentPort/>
<dbUser/>
<smtpDomain/>
</healthcheck>
<healthcheck uuid="4a6a2a77-b35e-4bf0-8639-31fadafa2d81">
<name>TCP_serverport</name>
<description/>
<type>tcp</type>
<interval>2s</interval>
<ssl>nopref</ssl>
<sslSNI/>
<force_ssl>0</force_ssl>
<checkport/>
<http_method/>
<http_uri/>
<http_version/>
<http_host/>
<http_expressionEnabled>0</http_expressionEnabled>
<http_expression/>
<http_negate/>
<http_value/>
<tcp_enabled/>
<tcp_sendValue/>
<tcp_matchType/>
<tcp_negate/>
<tcp_matchValue/>
<agent_port/>
<mysql_user/>
<mysql_post41/>
<pgsql_user/>
<smtp_domain/>
<esmtp_domain/>
<agentPort/>
<dbUser/>
<smtpDomain/>
</healthcheck>
<healthcheck uuid="9f83f7b8-cf4e-471d-89c0-b7a72f549e6e">
<name>HTTP_GET_/readyz</name>
<description/>
<type>http</type>
<interval>2s</interval>
<ssl>nopref</ssl>
<sslSNI/>
<force_ssl>0</force_ssl>
<checkport/>
<http_method>GET</http_method>
<http_uri>/readyz</http_uri>
<http_version/>
<http_host/>
<http_expressionEnabled>0</http_expressionEnabled>
<http_expression/>
<http_negate/>
<http_value/>
<tcp_enabled/>
<tcp_sendValue/>
<tcp_matchType/>
<tcp_negate/>
<tcp_matchValue/>
<agent_port/>
<mysql_user/>
<mysql_post41/>
<pgsql_user/>
<smtp_domain/>
<esmtp_domain/>
<agentPort/>
<dbUser/>
<smtpDomain/>
</healthcheck>
</healthchecks>
<acls/>
<actions/>
<luas/>
<fcgis/>
<errorfiles/>
<mapfiles/>
<groups/>
<users/>
<cpus/>
<resolvers/>
<mailers/>
<maintenance>
<cronjobs>
<syncCerts>0</syncCerts>
<syncCertsCron/>
<updateOcsp>0</updateOcsp>
<updateOcspCron/>
<reloadService>0</reloadService>
<reloadServiceCron/>
<restartService>0</restartService>
<restartServiceCron/>
</cronjobs>
</maintenance>
</HAProxy>
</OPNsense>
<staticroutes version="1.0.0">
<route/>
</staticroutes>
<ca/>
<cert uuid="c1f73db9-f01b-46ba-b866-f8b911e83f96">
<refid>6796970f3b58c</refid>
<descr>Web GUI TLS certificate</descr>
<crt>LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSUhIakNDQlFhZ0F3SUJBZ0lVR3B1ZFZqRzR5a0JVYS9NUWxyU2ZBcWs5VCtRd0RRWUpLb1pJaHZjTkFRRUwKQlFBd2dZa3hIVEFiQmdOVkJBTU1GRTlRVG5ObGJuTmxMbXh2WTJGc1pHOXRZV2x1TVFzd0NRWURWUVFHRXdKTwpUREVWTUJNR0ExVUVDQXdNV25WcFpDMUliMnhzWVc1a01SVXdFd1lEVlFRSERBeE5hV1JrWld4b1lYSnVhWE14CkxUQXJCZ05WQkFvTUpFOVFUbk5sYm5ObElITmxiR1l0YzJsbmJtVmtJSGRsWWlCalpYSjBhV1pwWTJGMFpUQWUKRncweU5UQXhNall5TURFeU1EWmFGdzB5TmpBeU1qY3lNREV5TURaYU1JR0pNUjB3R3dZRFZRUUREQlJQVUU1egpaVzV6WlM1c2IyTmhiR1J2YldGcGJqRUxNQWtHQTFVRUJoTUNUa3d4RlRBVEJnTlZCQWdNREZwMWFXUXRTRzlzCmJHRnVaREVWTUJNR0ExVUVCd3dNVFdsa1pHVnNhR0Z5Ym1sek1TMHdLd1lEVlFRS0RDUlBVRTV6Wlc1elpTQnoKWld4bUxYTnBaMjVsWkNCM1pXSWdZMlZ5ZEdsbWFXTmhkR1V3Z2dJaU1BMEdDU3FHU0liM0RRRUJBUVVBQTRJQwpEd0F3Z2dJS0FvSUNBUUM0alhjOXE4VENxMmZzc05zRU94dktuZm1FVjRNTzFRWDZNdmRReVN2QXIzNmRlNXVMCmZ3bkJSRnVkRC9zQ1B0ZzhXajVCaCtiNGF3WC9mOUdnQnNJbnhKNVB2SWFXMlBtWThpS0Q1Q01WQXhxUE1lMlQKT0VxaEYvWkJxZlNNUWk2RkVhTTRFS0J6bllMbzhnMlAyTW93VjBDbmI3aXVJVWlKRFF3a2JWOVZESG55VkhGaApkVVlONjlpTXRYMEZiSHVtY2tKWHJwQTVQcGFSdVdsaUNnNHl4dWxEOGRsL3dJOXAzZENQY2tNaXgvYjQ1aWdJCjZHbC9GUmhhZmx5VWJ2WWxSMEw5d1pVMmNpcHFQemJJR0tlZ2pkRVdIcGRzVW5sTnJiR1I0azZieWQ4ZGd1a0YKWlNVNUlUSkZRSFdNN3ZNNkZuMTloUE51NG94TEtVUTc1b1YwZDdHV2RaQ1RIYnU3R1hqekhhVHJKYnhTTjMyVApIcDFEMlhUQ1BPTEs1NjNMc2YrNm12Ty9BQSt5SWQyZ0tvWllsdG9GUDdGcHNwWmIwYnhqeWt1amxvOUg0TW1iCmpDeCtWTVkwWUozelVTU3NCOE5IdHpyS0hyVW9oMG9oNTZPNzBNQjZpUWt5dTNaZzNlL1lTUnJwOVJwMTFMMWwKU2F3NmIzMEtFOUh6VHkxWDVXczJlQmxYajFvS2FBVktlTEN4dzlnRDJuSFdqaHViTlFwSmhmdFY2S3F0TjFVeQp4NXBWUTRrL0l1VUNTRlRMK3JOTThWOEc1NCsxTlFTaWZlWVpLdzF4bGRIMlpDbjA1QURrWUhEaFI3VUtkSGhCCncycjkrTjNjdENSaVM1V1BlRTBhQzJ5bFU2czdtU0RwWGM1cy84SnA2QlN5c1ZYL3dpZGRFMWl4N1FJREFRQUIKbzRJQmVqQ0NBWFl3Q1FZRFZSMFRCQUl3QURBUkJnbGdoa2dCaHZoQ0FRRUVCQU1DQmtBd05BWUpZSVpJQVliNApRZ0VOQkNjV0pVOVFUbk5sYm5ObElFZGxibVZ5WVhSbFpDQlRaWEoyWlhJZ1EyVnlkR2xtYVdOaGRHVXdIUVlEClZSME9CQllFRkhIMGNpYU9qNXdrKzBLeFlYUFNtL1pveFpHT01JR3pCZ05WSFNNRWdhc3dnYWloZ1kra2dZd3cKZ1lreEhUQWJCZ05WQkFNTUZFOVFUbk5sYm5ObExteHZZMkZzWkc5dFlXbHVNUXN3Q1FZRFZRUUdFd0pPVERFVgpNQk1HQTFVRUNBd01XblZwWkMxSWIyeHNZVzVrTVJVd0V3WURWUVFIREF4TmFXUmtaV3hvWVhKdWFYTXhMVEFyCkJnTlZCQW9NSkU5UVRuTmxibk5sSUhObGJHWXRjMmxuYm1Wa0lIZGxZaUJqWlhKMGFXWnBZMkYwWllJVUdwdWQKVmpHNHlrQlVhL01RbHJTZkFxazlUK1F3SFFZRFZSMGxCQll3RkFZSUt3WUJCUVVIQXdFR0NDc0dBUVVGQ0FJQwpNQXNHQTFVZER3UUVBd0lGb0RBZkJnTlZIUkVFR0RBV2doUlBVRTV6Wlc1elpTNXNiMk5oYkdSdmJXRnBiakFOCkJna3Foa2lHOXcwQkFRc0ZBQU9DQWdFQUhwcjZXQ2RmMzFWblR2RlMwUjA4RTUySHJvZHc3TjVJMGpwNkYrdHMKR2xsdGxaMDdvOWxvN2E5VFNBK1FnSGFQK1VOMkZUZmlFeHZ0RG0vdDZEQjhSald4ZnV4eloyOTMxeE8wWEhUNwp1Vll3OGpaYnlhOVQyU1VjTGR2ZFpyUHZFajJscnExYXRnc2UwMmhUUTdOSGhpd0hrbEdWTHR5K0FpaVc1STBPCkpPNGFiUHdBU3Z0SEtTU2hYTEhJY1NqWTIwLzF0TjUvdFRMTTFKUUFHZFM1NWU4YVpkdWRHWkVJdHlTZk0ya3kKY21zVnNMS0ZsL1ZLRmUrQnQySmd0d0FPUk0xbzM5WTZLQ2RHTkJPYThGUS9GQWhqZ2JrM1IwYVk3MEFBRDlyNQpXT0dPeEFxS0g5YmdhUUhrY05zSnNWekJlTFZzd3NPYnI2dktqUkUzSm1jTC9COGsxNVJaeXdMV2YxV2N6QzhwCjd5VDNUcW5vRXhQUlZZa3AzSmFQRkNncDN1YzQ0S01UZ1laQW4xeHJLS3hQdUV3NE0rSisyNzBGRzhqckJPN1UKdENMajVPMVpVMXBoVDBEckswVGloOHJlbkgrWDZkVUY4UmY4WDA0QXd5a3MzbjYramNoT3E2azFaaWVYT0NVYwppclM5eTFnNnZCM25YdW1kU05JdEZvQVhTWXRtOE5KaVUxN3kyanlnOWRHK3B4K1FpZTV2YjBMNE5xdzVoMFZhCldiWVpsMjA2cVpFenpFVEJtTHNuaWYydHB0aUlkbWh0UEZPYXBvT3hTL1ByV0V3VXc4NXdNQ0ZLcW1tZ3QzeVYKRUVlRXVRVTJIMFE5NS8wWGJOZnhKcVJSUXltOTBHeTlmTTUzU2VGbnpwVlU2VzJ6WTQyd3AwQktBZGxDdW9CdAplTjg9Ci0tLS0tRU5EIENFUlRJRklDQVRFLS0tLS0K</crt>
<caref/>
<csr/>
<prv>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</prv>
</cert>
<dhcpdv6/>
<virtualip version="1.0.1">
<vip/>
</virtualip>
<openvpn/>
<ppps>
<ppp/>
</ppps>
<vlans version="1.0.0">
<vlan/>
</vlans>
<bridges>
<bridged/>
</bridges>
<gifs version="1.0.0">
<gif/>
</gifs>
<gres version="1.0.0">
<gre/>
</gres>
<laggs version="1.0.0">
<lagg/>
</laggs>
<wireless>
<clone/>
</wireless>
<hasync version="1.0.2">
<pfsyncinterface/>
<synchronizetoip/>
<verifypeer>0</verifypeer>
<username/>
<password/>
<disablepreempt>0</disablepreempt>
<disconnectppps>0</disconnectppps>
<pfsyncpeerip/>
<pfsyncversion>1400</pfsyncversion>
<syncitems/>
</hasync>
<Pischem>
<caddy version="1.3.5">
<general>
<enabled>1</enabled>
<EnableLayer4>0</EnableLayer4>
<HttpPort>8080</HttpPort>
<HttpsPort>8443</HttpsPort>
<TlsEmail/>
<TlsAutoHttps/>
<TlsDnsProvider/>
<TlsDnsApiKey/>
<TlsDnsSecretApiKey/>
<TlsDnsOptionalField1/>
<TlsDnsOptionalField2/>
<TlsDnsOptionalField3/>
<TlsDnsOptionalField4/>
<TlsDnsPropagationTimeout/>
<TlsDnsPropagationTimeoutPeriod/>
<TlsDnsPropagationDelay/>
<TlsDnsPropagationResolvers/>
<accesslist/>
<ClientIpHeaders/>
<DisableSuperuser>0</DisableSuperuser>
<GracePeriod>10</GracePeriod>
<HttpVersions>h1,h2</HttpVersions>
<LogCredentials/>
<LogAccessPlain/>
<LogAccessPlainKeep>10</LogAccessPlainKeep>
<LogLevel/>
<DynDnsSimpleHttp/>
<DynDnsInterface/>
<DynDnsInterval/>
<DynDnsIpVersions/>
<DynDnsTtl/>
<DynDnsUpdateOnly/>
<AuthProvider/>
<AuthToDomain/>
<AuthToPort/>
<AuthToTls>0</AuthToTls>
<AuthToUri/>
<CopyHeaders/>
</general>
<reverseproxy/>
</caddy>
</Pischem>
<ifgroups version="1.0.0"/>
<dnsmasq version="1.0.0">
<enable>0</enable>
<regdhcp>0</regdhcp>
<regdhcpstatic>0</regdhcpstatic>
<dhcpfirst>0</dhcpfirst>
<strict_order>0</strict_order>
<domain_needed>0</domain_needed>
<no_private_reverse>0</no_private_reverse>
<log_queries>0</log_queries>
<no_hosts>0</no_hosts>
<strictbind>0</strictbind>
<dnssec>0</dnssec>
<regdhcpdomain/>
<interface/>
<port/>
<dns_forward_max/>
<cache_size/>
<local_ttl/>
</dnsmasq>
</opnsense>
View Git Blame Copy Permalink