| lh | 9ed821d | 2023-04-07 01:36:19 -0700 | [diff] [blame^] | 1 | # WAN network interface |
| 2 | #ext_ifname=eth0 |
| 3 | ext_ifname=wan0 |
| 4 | # if the WAN interface has several IP addresses, you |
| 5 | # can specify the one to use below |
| 6 | #ext_ip= |
| 7 | |
| 8 | # LAN network interfaces IPs / networks |
| 9 | # there can be multiple listening ips for SSDP traffic. |
| 10 | # should be under the form nnn.nnn.nnn.nnn/nn |
| 11 | # HTTP is available on all interfaces |
| 12 | # When MULTIPLE_EXTERNAL_IP is enabled, the external ip |
| 13 | # address associated with the subnet follows. for example : |
| 14 | listening_ip=192.168.0.1 |
| 15 | # port for HTTP (descriptions and SOAP) traffic. set 0 for autoselect. |
| 16 | port=5000 |
| 17 | |
| 18 | # path to the unix socket used to communicate with MiniSSDPd |
| 19 | # If running, MiniSSDPd will manage M-SEARCH answering. |
| 20 | # default is /var/run/minissdpd.sock |
| 21 | #minissdpdsocket=/var/run/minissdpd.sock |
| 22 | |
| 23 | # enable NAT-PMP support (default is no) |
| 24 | #enable_natpmp=yes |
| 25 | |
| 26 | # enable UPNP support (default is yes) |
| 27 | enable_upnp=yes |
| 28 | |
| 29 | # chain names for netfilter (not used for pf or ipf). |
| 30 | # default is MINIUPNPD for both |
| 31 | #upnp_forward_chain=forwardUPnP |
| 32 | #upnp_nat_chain=UPnP |
| 33 | |
| 34 | # lease file location |
| 35 | lease_file=/etc_rw/upnp.leases |
| 36 | |
| 37 | # bitrates reported by daemon in bits per second |
| 38 | bitrate_up=1000000 |
| 39 | bitrate_down=10000000 |
| 40 | |
| 41 | # "secure" mode : when enabled, UPnP client are allowed to add mappings only |
| 42 | # to their IP. |
| 43 | secure_mode=yes |
| 44 | #secure_mode=no |
| 45 | |
| 46 | # default presentation url is http address on port 80 |
| 47 | # If set to an empty string, no presentationURL element will appear |
| 48 | # in the XML description of the device, which prevents MS Windows |
| 49 | # from displaying an icon in the "Network Connections" panel. |
| 50 | #presentation_url=http://www.mylan/index.php |
| 51 | |
| 52 | # report system uptime instead of daemon uptime |
| 53 | system_uptime=yes |
| 54 | |
| 55 | # notify interval in seconds. default is 30 seconds. |
| 56 | #notify_interval=240 |
| 57 | notify_interval=30 |
| 58 | |
| 59 | # unused rules cleaning. |
| 60 | # never remove any rule before this threshold for the number |
| 61 | # of redirections is exceeded. default to 20 |
| 62 | #clean_ruleset_threshold=10 |
| 63 | # clean process work interval in seconds. default to 0 (disabled). |
| 64 | # a 600 seconds (10 minutes) interval makes sense |
| 65 | clean_ruleset_interval=600 |
| 66 | |
| 67 | # log packets in pf |
| 68 | #packet_log=no |
| 69 | |
| 70 | # ALTQ queue in pf |
| 71 | # filter rules must be used for this to be used. |
| 72 | # compile with PF_ENABLE_FILTER_RULES (see config.h file) |
| 73 | #queue=queue_name1 |
| 74 | |
| 75 | # tag name in pf |
| 76 | #tag=tag_name1 |
| 77 | |
| 78 | # make filter rules in pf quick or not. default is yes |
| 79 | # active when compiled with PF_ENABLE_FILTER_RULES (see config.h file) |
| 80 | #quickrules=no |
| 81 | |
| 82 | # uuid : generate your own with "make genuuid" |
| 83 | uuid=8c45af75-17c3-461c-8198-cfa836f4bc17 |
| 84 | |
| 85 | # serial and model number the daemon will report to clients |
| 86 | # in its XML description |
| 87 | serial=12345678 |
| 88 | model_number=#device_name# |
| 89 | |
| 90 | # UPnP permission rules |
| 91 | # (allow|deny) (external port range) ip/mask (internal port range) |
| 92 | # A port range is <min port>-<max port> or <port> if there is only |
| 93 | # one port in the range. |
| 94 | # ip/mask format must be nn.nn.nn.nn/nn |
| 95 | # it is advised to only allow redirection of port above 1024 |
| 96 | # and to finish the rule set with "deny 0-65535 0.0.0.0/0 0-65535" |
| 97 | allow 1024-65535 #allow_ip#/24 1024-65535 |
| 98 | allow 1024-65535 192.168.0.0/23 22 |
| 99 | allow 12345 192.168.7.113/32 54321 |
| 100 | deny 0-65535 0.0.0.0/0 0-65535 |
| 101 | |