2018-04-17 13:54:57 +00:00
|
|
|
# Put passthrough rules on top, drop rules on bottom, rules are applied in order (top down)
|
2018-04-13 18:22:49 +00:00
|
|
|
rules:
|
2018-04-17 13:54:57 +00:00
|
|
|
- match: udp dst port 53
|
|
|
|
|
type: passthrough
|
|
|
|
|
- match: tcp dst port 21
|
|
|
|
|
type: conn_handler
|
|
|
|
|
target: ftp
|
2018-04-13 18:22:49 +00:00
|
|
|
- match: tcp dst port 23 or port 2323 or port 23231
|
|
|
|
|
type: conn_handler
|
|
|
|
|
target: telnet
|
|
|
|
|
- match: tcp dst port 25
|
|
|
|
|
type: conn_handler
|
|
|
|
|
target: smtp
|
|
|
|
|
- match: tcp dst port 445
|
|
|
|
|
type: conn_handler
|
|
|
|
|
target: smb
|
2018-08-02 14:52:50 +00:00
|
|
|
- match: tcp dst port 1883
|
|
|
|
|
type: conn_handler
|
|
|
|
|
target: mqtt
|
2018-04-17 13:54:57 +00:00
|
|
|
- match: tcp dst port 3389
|
2018-04-13 18:22:49 +00:00
|
|
|
type: conn_handler
|
2018-04-17 13:54:57 +00:00
|
|
|
target: rdp
|
2018-04-13 18:22:49 +00:00
|
|
|
- match: tcp dst port 5060
|
|
|
|
|
type: conn_handler
|
|
|
|
|
target: sip
|
2018-08-02 14:52:50 +00:00
|
|
|
- match: tcp dst port 5222 or port 5223
|
|
|
|
|
type: conn_handler
|
|
|
|
|
target: jabber
|
2018-04-13 18:22:49 +00:00
|
|
|
- match: tcp
|
|
|
|
|
type: conn_handler
|
|
|
|
|
target: default
|
2018-04-17 13:54:57 +00:00
|
|
|
- match:
|
|
|
|
|
type: drop
|
