Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revisionBoth sides next revision
policies [2012-06-08 14:33] randersonpolicies [2012-06-08 14:38] – [Specifications] randerson
Line 61: Line 61:
     * Specifying .example.com will match anything.example.com and fu.bar.example.com     * Specifying .example.com will match anything.example.com and fu.bar.example.com
     * As a technical note, * is expanded into [a-z0-9\-_\.] and if . doesn't prefix the specification it gets ^. All reverse dns specifications are matched with end of line $     * As a technical note, * is expanded into [a-z0-9\-_\.] and if . doesn't prefix the specification it gets ^. All reverse dns specifications are matched with end of line $
 +
 +=====Examples=====
 +The preconfigured default polices are defined as follows
 +
 +  * <code>Default System Policy
 +Priority: 0
 +Source: ANY
 +Desination: ANY</code>
 +  * <code>Default Outbound Policy
 +Priority: 10
 +Source: %internal_ips,%internal_domains
 +Destination: !%internal_domains</code>
 +  * <code>Default Inbound Policy
 +Priority: 10
 +Source: !%internal_ips,!%internal_domains
 +Destination: %internal_domains</code>
 +  * <code>Default Internal Policy
 +Priority: 20
 +Source: %internal_ips,%internal_domains
 +Destination: %internal_domains</code>
 +
 +These groups are defined in the following manner
 +
 +  * <code>internal_ips
 +10.0.0.0/8</code>
 +  * <code>internal_domains
 +example.org
 +example.com
 +example.net</code>