summaryrefslogtreecommitdiffstats
path: root/contrib/testpbx/configs/acl.conf.xml
diff options
context:
space:
mode:
Diffstat (limited to 'contrib/testpbx/configs/acl.conf.xml')
-rw-r--r--contrib/testpbx/configs/acl.conf.xml34
1 files changed, 34 insertions, 0 deletions
diff --git a/contrib/testpbx/configs/acl.conf.xml b/contrib/testpbx/configs/acl.conf.xml
new file mode 100644
index 0000000..70a64ea
--- /dev/null
+++ b/contrib/testpbx/configs/acl.conf.xml
@@ -0,0 +1,34 @@
+<configuration name="acl.conf" description="Network Lists">
+ <network-lists>
+ <!--
+ These ACL's are automatically created on startup.
+
+ rfc1918.auto - RFC1918 Space
+ nat.auto - RFC1918 Excluding your local lan.
+ localnet.auto - ACL for your local lan.
+ loopback.auto - ACL for your local lan.
+ -->
+
+ <list name="lan" default="allow">
+ <node type="allow" cidr="192.168.0.0/16"/>
+ </list>
+
+ <!--
+ This will traverse the directory adding all users
+ with the cidr= tag to this ACL, when this ACL matches
+ the users variables and params apply as if they
+ digest authenticated.
+ -->
+ <list name="domains" default="allow">
+ <!-- domain= is special it scans the domain from the directory to build the ACL -->
+ <node type="allow" domain="$${domain}"/>
+ <node type="allow" cidr="0.0.0.0/0"/>
+ <node type="allow" cidr="172.0.0.0/8"/>
+ <!-- use cidr= if you wish to allow ip ranges to this domains acl. -->
+ <!-- <node type="allow" cidr="192.168.0.0/24"/> -->
+ <node type="allow" cidr="192.168.0.0/16"/>
+ <node type="allow" cidr="10.0.0.0/16"/>
+ </list>
+
+ </network-lists>
+</configuration>