diff --git a/config-latest.xml b/config-latest.xml index 7e25e72..cc490f5 100644 --- a/config-latest.xml +++ b/config-latest.xml @@ -1790,6 +1790,39 @@ <username><![CDATA[admin@192.168.2.6 (Local Database)]]></username> </created> </rule> + <rule> + <id></id> + <tracker>1742242755</tracker> + <type>pass</type> + <interface>wan</interface> + <ipprotocol>inet</ipprotocol> + <tag></tag> + <tagged></tagged> + <max></max> + <max-src-nodes></max-src-nodes> + <max-src-conn></max-src-conn> + <max-src-states></max-src-states> + <statetimeout></statetimeout> + <statetype><![CDATA[keep state]]></statetype> + <os></os> + <protocol>udp</protocol> + <source> + <any></any> + </source> + <destination> + <network>wanip</network> + <port>3543</port> + </destination> + <descr><![CDATA[WIREGUARD]]></descr> + <updated> + <time>1742242755</time> + <username><![CDATA[admin@10.8.0.2 (Local Database)]]></username> + </updated> + <created> + <time>1742242755</time> + <username><![CDATA[admin@10.8.0.2 (Local Database)]]></username> + </created> + </rule> <rule> <id></id> <tracker>0100000101</tracker> @@ -1818,6 +1851,37 @@ <username><![CDATA[admin@192.168.2.11 (Local Database)]]></username> </updated> </rule> + <rule> + <id></id> + <tracker>1742242774</tracker> + <type>pass</type> + <interface>WireGuard</interface> + <ipprotocol>inet</ipprotocol> + <tag></tag> + <tagged></tagged> + <max></max> + <max-src-nodes></max-src-nodes> + <max-src-conn></max-src-conn> + <max-src-states></max-src-states> + <statetimeout></statetimeout> + <statetype><![CDATA[keep state]]></statetype> + <os></os> + <source> + <any></any> + </source> + <destination> + <any></any> + </destination> + <descr></descr> + <updated> + <time>1742242774</time> + <username><![CDATA[admin@10.8.0.2 (Local Database)]]></username> + </updated> + <created> + <time>1742242774</time> + <username><![CDATA[admin@10.8.0.2 (Local Database)]]></username> + </created> + </rule> <rule> <id></id> <tracker>1730832068</tracker> @@ -2096,7 +2160,7 @@ <category>left=system-processor&right=&resolution=300&timePeriod=-1d&startDate=&endDate=&startTime=0&endTime=0&graphtype=line&invert=true&refresh-interval=0</category> </rrd> <widgets> - <sequence>system_information:col1:open:0,picture:col1:open:0,interfaces:col2:open:0,openvpn:col2:open:0,interface_statistics:col2:open:0,log:col2:open:0,wake_on_lan:col2:open:0,gateways:col2:open:0,traffic_graphs:col3:open:0,disks:col3:open:0,dyn_dns_status:col3:open:0,pfblockerng:col3:open:0,installed_packages:col3:open:0</sequence> + <sequence>system_information:col1:open:0,picture:col1:open:0,services_status:col1:open:0,interfaces:col2:open:0,openvpn:col2:open:0,wireguard:col2:open:0,interface_statistics:col2:open:0,log:col2:open:0,wake_on_lan:col2:open:0,gateways:col2:open:0,traffic_graphs:col3:open:0,disks:col3:open:0,dyn_dns_status:col3:open:0,pfblockerng:col3:open:0,installed_packages:col3:open:0</sequence> <period>10</period> <log-0> <descr><![CDATA[Firewall Logs]]></descr> @@ -2228,7 +2292,7 @@ <remote_networkv6></remote_networkv6> <gwredir></gwredir> <gwredir6></gwredir6> - <local_network>192.168.2.0/24,172.10.0.0/16,156.16.0.0/16,10.2.10.0/24</local_network> + <local_network>192.168.2.0/24,172.10.0.0/16,156.16.0.0/16,10.2.10.0/24,10.100.0.0/24</local_network> <local_networkv6></local_networkv6> <maxclients>3</maxclients> <connlimit>2</connlimit> @@ -2299,7 +2363,7 @@ <remote_networkv6></remote_networkv6> <gwredir></gwredir> <gwredir6></gwredir6> - <local_network>192.168.2.0/24,172.10.0.0/16</local_network> + <local_network>192.168.2.0/24,172.10.0.0/16,156.16.0.0/16,10.2.10.0/24,10.100.0.0/24</local_network> <local_networkv6></local_networkv6> <maxclients>3</maxclients> <connlimit>2</connlimit> @@ -2341,6 +2405,7 @@ </openvpn-server> <openvpn-server> <vpnid>4</vpnid> + <disable></disable> <mode>server_tls</mode> <protocol>UDP4</protocol> <dev_mode>tun</dev_mode> @@ -2403,6 +2468,7 @@ <ping_action_seconds>60</ping_action_seconds> <ping_action_push></ping_action_push> <inactive_seconds>300</inactive_seconds> + <unbound_restart></unbound_restart> </openvpn-server> <openvpn-csc> <server_list>3</server_list> @@ -2652,7 +2718,7 @@ <description><![CDATA[WireGuard Unbound ACL (DO NOT EDIT/DELETE!)]]></description> <aclid>0</aclid> <row> - <acl_network>99.99.1.0</acl_network> + <acl_network>10.100.0.0</acl_network> <mask>24</mask> <description><![CDATA[tun_wg0]]></description> </row> @@ -2676,9 +2742,9 @@ </vlans> <qinqs></qinqs> <revision> - <time>1742161383</time> - <description><![CDATA[admin@10.8.0.2 (Local Database): Firewall: Rules - deleted a firewall rule.]]></description> - <username><![CDATA[admin@10.8.0.2 (Local Database)]]></username> + <time>1742259156</time> + <description><![CDATA[(system): [pfSense-pkg-WireGuard] Applied package default settings as necessary.]]></description> + <username><![CDATA[(system)]]></username> </revision> <gateways> <defaultgw4>WANGW</defaultgw4> @@ -3364,33 +3430,54 @@ <item> <addresses> <row> - <address>99.99.1.0</address> + <address>10.100.0.1</address> <mask>24</mask> <descr></descr> </row> </addresses> <name>tun_wg0</name> <enabled>yes</enabled> - <descr></descr> - <listenport>7676</listenport> - <privatekey>sEOWP9Jufev8raEHBPelzz1O9dsYSkLIRIjhXJVtjEM=</privatekey> - <publickey>tjK0e+QLgXBNabVvFOjJfdrShl1bxEGt1RfS2+8qVzg=</publickey> + <descr><![CDATA[Main Client]]></descr> + <listenport>3543</listenport> + <privatekey>CEDULGC95uGLMRXrVZIdkjdJECcJ01KjzHaYrEqiB0U=</privatekey> + <publickey>Cv6x4bd5CrAfrsSCD22aQsZjMJJe/9uHcM9VwXlx6zY=</publickey> <mtu>1420</mtu> </item> </tunnels> <peers> <item> - <allowedips></allowedips> + <allowedips> + <row> + <address>10.100.0.3</address> + <mask>32</mask> + <descr></descr> + </row> + </allowedips> <enabled>yes</enabled> <tun>tun_wg0</tun> - <descr><![CDATA[iphone]]></descr> - <persistentkeepalive>9999</persistentkeepalive> - <publickey>tjK0e+QLgXBNabVvFOjJfdrShl1bxEGt1RfS2+8qVzg=</publickey> - <presharedkey>HwjHBihj39YnDlqZxmlPI71/hRfzeJv/KdjQZLmuIT0=</presharedkey> + <descr><![CDATA[PC]]></descr> + <persistentkeepalive></persistentkeepalive> + <publickey>AW8n4Jh47sIIP6qqOb4ltd4DeaY25XYhY/Qds1bZjzw=</publickey> + <presharedkey>uNet2TlKX5MDJGzrRF3iwFL2ooyYnqd0NHevmdeJwAQ=</presharedkey> + </item> + <item> + <allowedips> + <row> + <address>10.100.0.2</address> + <mask>32</mask> + <descr></descr> + </row> + </allowedips> + <enabled>yes</enabled> + <tun>tun_wg0</tun> + <descr><![CDATA[PC-Tun]]></descr> + <persistentkeepalive></persistentkeepalive> + <publickey>LepIKIwkojD0UB2cGYNO5kgQgdK2Y+9Eoue0jGls5Bk=</publickey> + <presharedkey>3ZPTJpAKPNaZErEapIFaidlpdm+QgpGf/zDJHHNSgPk=</presharedkey> </item> </peers> <config> - <enable>off</enable> + <enable>on</enable> <keep_conf>yes</keep_conf> <resolve_interval>300</resolve_interval> <resolve_interval_track>no</resolve_interval_track>