forked from vladimirs-git/fortigate-api
-
Notifications
You must be signed in to change notification settings - Fork 0
/
policy.yml
137 lines (137 loc) · 2.83 KB
/
policy.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
action: accept
anti-replay: enable
application-list: ''
auth-cert: ''
auth-path: disable
auth-redirect-addr: ''
auto-asic-offload: enable
av-profile: ''
block-notification: disable
captive-portal-exempt: disable
capture-packet: disable
cifs-profile: ''
comments: ''
custom-log-fields: []
decrypted-traffic-mirror: ''
delay-tcp-npu-session: disable
diffserv-forward: disable
diffserv-reverse: disable
diffservcode-forward: '000000'
diffservcode-rev: '000000'
disclaimer: disable
dlp-sensor: ''
dnsfilter-profile: ''
dsri: disable
dstaddr:
- name: all
q_origin_key: all
dstaddr-negate: disable
dstaddr6: []
dstintf:
- name: any
q_origin_key: any
email-collect: disable
emailfilter-profile: ''
file-filter-profile: ''
firewall-session-dirty: check-all
fixedport: disable
fsso-agent-for-ntlm: ''
fsso-groups: []
geoip-anycast: disable
geoip-match: physical-location
global-label: ''
groups: []
http-policy-redirect: disable
icap-profile: ''
identity-based-route: ''
inbound: disable
inspection-mode: flow
internet-service: disable
internet-service-custom: []
internet-service-custom-group: []
internet-service-group: []
internet-service-name: []
internet-service-negate: disable
internet-service-src: disable
internet-service-src-custom: []
internet-service-src-custom-group: []
internet-service-src-group: []
internet-service-src-name: []
internet-service-src-negate: disable
ippool: disable
ips-sensor: ''
label: ''
logtraffic: utm
logtraffic-start: disable
match-vip: disable
match-vip-only: disable
name: POLICY_NAME
nat: disable
natinbound: disable
natip: 0.0.0.0 0.0.0.0
natoutbound: disable
np-acceleration: enable
ntlm: disable
ntlm-enabled-browsers: []
ntlm-guest: disable
outbound: enable
per-ip-shaper: ''
permit-any-host: disable
permit-stun-host: disable
policyid: 23
poolname: []
poolname6: []
profile-group: ''
profile-protocol-options: default
profile-type: single
q_origin_key: 23
radius-mac-auth-bypass: disable
redirect-url: ''
replacemsg-override-group: ''
reputation-direction: destination
reputation-minimum: 0
rtp-addr: []
rtp-nat: disable
schedule: always
schedule-timeout: disable
send-deny-packet: disable
service:
- name: ALL
q_origin_key: ALL
service-negate: disable
session-ttl: '0'
src-vendor-mac: []
srcaddr:
- name: all
q_origin_key: all
srcaddr-negate: disable
srcaddr6: []
srcintf:
- name: any
q_origin_key: any
ssh-filter-profile: ''
ssh-policy-redirect: disable
ssl-ssh-profile: no-inspection
status: disable
tcp-mss-receiver: 0
tcp-mss-sender: 0
tcp-session-without-syn: disable
timeout-send-rst: disable
tos: '0x00'
tos-mask: '0x00'
tos-negate: disable
traffic-shaper: ''
traffic-shaper-reverse: ''
users: []
utm-status: disable
uuid: 1d34d556-51cf-51ec-0a55-8f9fb4bee764
vlan-cos-fwd: 255
vlan-cos-rev: 255
vlan-filter: ''
voip-profile: ''
vpntunnel: ''
waf-profile: ''
wccp: disable
webfilter-profile: ''
webproxy-forward-server: ''
webproxy-profile: ''