====== CoreWikie Sandbox ======
Testing sandbox corebsd, kiranya website ini jadi lebih memberikan banyak informasi mengenai perkembangan BSD diIndonesia.

Sandbox   
  - Ordered List Item
  - Ordered List Item
  - Ordered List Item
  * **Kalau icon lagi gimana yah
**

----
{{wiki:dokuwiki-128.png}} Samping.. samping.. Wek gagal rek

 
 --- //[[krisna@corebsd.or.id|Bayu Krisnawan]] 2005/10/13 03:00//


====== Testing Box ======
Test test test, numpang test biar lancar harus mesti di coba dan di test, terutama soal test mengetest ini. 
\\ 
Terutama ini:
  * Unordered List Item
  * Unordered List Item
      - Ordered List Item
 
create by [[http://www.google.com|google]]



====== test new page ======

  * [[playground:test | test]]
  * [[playground:test2 | test2]]


<xterm>
<linux:/home/zabbix$ **ls -l | grep**
drwxr-xr-x  2 zabbix zabbix   4096 Mar 23  2004 autom4te.cache
drwxr-xr-x  2 zabbix zabbix   4096 Oct  4  2004 bin
drwxr-xr-x  5 zabbix zabbix   4096 Mar 23  2004 create
drwxr-xr-x  2 zabbix zabbix   4096 Mar 23  2004 doc
</xterm>

Table Policy, how?

^ No  ^  Source  ^ Destination   ^ Type ^   Port   ^ Description           ^
^  1. |   any    |     any       | ALL  |   ALL    | default deny          |
^  2. | Internet |    Firewall   | TCP  |   22     | SSH                   |
^  3. | Internet |    Firewall   | TCP  |   113    | identd for irc freak  |
^  4. |  Admin   |    Firewall   | TCP  |   22     | SSH akses buat admin  |
^  5. |  LAN     |    Internet   | TCP  |   80     | Web akses             |
^  6. |  LAN     |    Internet   | TCP  |   443    | secure Web akses      |
^  7. |  LAN     |    Internet   | TCP  |   5050   | ym ;)                 |
^  8. |  LAN     |    Internet   | UDP  |   53     | dns query             |
^  9. |  LAN     |    Internet   | UDP  |   123    | sync time             |
^ 10. | Firewall |    Internet   | TCP  |   ALL    | Outgoing bebas        |
^ 11. | Firewall |    Internet   | UDP  |   ALL    | Outgoing bebas        |
^ 12. | Firewall |    Internet   | ICMP |   ALL    | Outgoing bebas        |

<code>
# macro
ext_if = "fxp0"
int_if = "fxp1"
lo_if = "lo0"
admin  = "192.168.1.8/32"

# scrub
scrub on $ext_if all reassemble tcp random-id

# nat
nat on $ext_if from $int_if:network to any -> $ext_if

# Policy No. 1
block log all

# untuk loopback
pass quick on $lo_if all

# Policy No. 2
pass in on $ext_if inet proto tcp from any to $ext_if port 22  flags S/SA keep state

# Policy No. 3
pass in on $ext_if inet proto tcp from any to $ext_if port 113 flags S/SA keep state

# Policy No. 4
pass in on $int_if inet proto tcp from $admin to $int_if port 22 flags S/SA keep state

# Policy No. 5, 6, dan 7
pass in on $int_if inet proto tcp from $int_if:network to any port { 80 443 5050 } flags S/SA keep state

# Policy No. 8 dan 9
pass in on $int_if inet proto udp from $int_if:network to $int_if port { 53 123 } keep state

# Policy No. 10
pass out on $ext_if inet proto tcp all modulate state

# Policy No. 11 dan 12
pass out on $ext_if inet proto { udp icmp } all keep state
</code>