home
***
CD-ROM
|
disk
|
FTP
|
other
***
search
/
OS/2 Shareware BBS: 35 Internet
/
35-Internet.zip
/
injoy2_3.zip
/
firerule.dct
< prev
next >
Wrap
Text File
|
1999-09-26
|
5KB
|
181 lines
#
# FIRERULE.DCT - Do not modify this file!
#
# This file contains dictionary translations for parsing
# requests and generating responses. The file is composed
# of Attribute/Value Pairs. The value of each attribute
# is specified as one of 4 data types. Valid data types are:
#
# string - 0-253 octets (probably less)
# ipaddr - 4 octets in network byte order
# integer - 32 bit value in big endian order (high byte first)
# date - 32 bit value in big endian order - seconds since
#
# Enumerated values are stored in *.cnf files in the respective
# database directories.
#
ATTRIBUTE Rule-Name 1 string
ATTRIBUTE Rule-Status 2 integer
ATTRIBUTE Comment 3 string
ATTRIBUTE Protocol 4 integer
ATTRIBUTE Source-Port 5 integer
ATTRIBUTE Service 6 integer
ATTRIBUTE Service-List 7 string
ATTRIBUTE Source 8 string
ATTRIBUTE Source-Netmask 9 ipaddr
ATTRIBUTE Destination 10 string
ATTRIBUTE Destination-Netmask 20 ipaddr
ATTRIBUTE Rule-Action 21 integer
ATTRIBUTE Alert-Type 22 integer
ATTRIBUTE Alert-Info 23 string
ATTRIBUTE Log-Control 24 integer
ATTRIBUTE Log-Mask 25 string
ATTRIBUTE Log-File 26 string
ATTRIBUTE Log-Size 27 integer
ATTRIBUTE Account-Control 30 integer
ATTRIBUTE Account-File 31 string
ATTRIBUTE Account-Type 32 integer
ATTRIBUTE Mapping-Dest-IP 40 string
ATTRIBUTE Mapping-Dest-Port 41 integer
#
# String Translations
#
# Source
#
# Specify host name, ip-address or the keyword "any" to instruct the firewall
# engine not to check/touch the IP number from the IP packet.
# Destination
#
# Specify host name, ip-address or the keyword "any" to instruct the firewall
# engine not to check/touch the IP number from the IP packet.
# Log-Mask
#
# String composed from the following case-sensitive, whitespace seperated
# keywords:
#
# "rule" - rule name
# "date" - todays date
# "time" - current time
# "msg" - descriptive text (if provided by application)
# "prot" - Protocol
# "source" - source part of offending packets (ip)
# "dest" - destination part of offending packets (ip)
# "service"- destination port number
# "dump" - dump offending IP packets
#
# The sequence of keywords do not relate to the order of the output
#
# Integer Translations
#
# Rule-Status
VALUE Rule-Status Disabled 0
VALUE Rule-Status Enabled 1
# Protocol
VALUE Protocol IGNORE 999999
VALUE Protocol ICMP 1
VALUE Protocol TCP 6
VALUE Protocol UDP 17
# Rule-Action
VALUE Rule-Action Allow 1
VALUE Rule-Action Deny 2
VALUE Rule-Action Log 3
VALUE Rule-Action Account 4
VALUE Rule-Action Alert 5
VALUE Rule-Action Portmap 6
# Alert-Type
VALUE Alert-Type Alert-Off 0
VALUE Alert-Type Alert-Audio 1
VALUE Alert-Type Alert-Autostart 2
# Source-Port
VALUE Source-Port IGNORE 999999
VALUE Source-Port FTP-DATA 20
VALUE Source-Port FTP 21
VALUE Source-Port TELNET 23
VALUE Source-Port SMTP 25
VALUE Source-Port DNS 53
VALUE Source-Port TFTP 69
VALUE Source-Port GOPHER 70
VALUE Source-Port WWW 80
VALUE Source-Port POP2 109
VALUE Source-Port POP3 110
VALUE Source-Port NNTP 119
VALUE Source-Port NETBIOS-NS 137
VALUE Source-Port NETBIOS 138
VALUE Source-Port NETBIOS-SSN 139
VALUE Source-Port SNMP 161
VALUE Source-Port SNMP-TRAP 162
# Service
VALUE Service IGNORE 999999
VALUE Service FTP-DATA 20
VALUE Service FTP 21
VALUE Service TELNET 23
VALUE Service SMTP 25
VALUE Service DNS 53
VALUE Service TFTP 69
VALUE Service GOPHER 70
VALUE Service WWW 80
VALUE Service POP2 109
VALUE Service POP3 110
VALUE Service NNTP 119
VALUE Service NETBIOS-NS 137
VALUE Service NETBIOS 138
VALUE Service NETBIOS-SSN 139
VALUE Service SNMP 161
VALUE Service SNMP-TRAP 162
# Mapping-Dest-Port
VALUE Mapping-Dest-Port IGNORE 999999
VALUE Mapping-Dest-Port FTP-DATA 20
VALUE Mapping-Dest-Port FTP 21
VALUE Mapping-Dest-Port TELNET 23
VALUE Mapping-Dest-Port SMTP 25
VALUE Mapping-Dest-Port DNS 53
VALUE Mapping-Dest-Port TFTP 69
VALUE Mapping-Dest-Port GOPHER 70
VALUE Mapping-Dest-Port WWW 80
VALUE Mapping-Dest-Port POP2 109
VALUE Mapping-Dest-Port POP3 110
VALUE Mapping-Dest-Port NNTP 119
VALUE Mapping-Dest-Port NETBIOS-NS 137
VALUE Mapping-Dest-Port NETBIOS 138
VALUE Mapping-Dest-Port NETBIOS-SSN 139
VALUE Mapping-Dest-Port SNMP 161
VALUE Mapping-Dest-Port SNMP-TRAP 162
# Log-Control
VALUE Log-Control Disabled 0
VALUE Log-Control Enabled 1
# Account-Control
VALUE Account-Control Disabled 0
VALUE Account-Control Enabled 1
# Account-Type
VALUE Account-Type Service 1
VALUE Account-Type Source-IP 2
VALUE Account-Type Destination-IP 3
VALUE Account-Type Both-IP 4