fix opensnitch logspam due to invalid creation time stamps
This commit is contained in:
parent
76efedce92
commit
b10ee3bf29
1 changed files with 23 additions and 1 deletions
|
@ -26,6 +26,8 @@ let
|
||||||
|
|
||||||
local_network = [ "192.168.0.0/16" "10.0.0.0/8" "172.16.0.0/12" "fc00::/7" ];
|
local_network = [ "192.168.0.0/16" "10.0.0.0/8" "172.16.0.0/12" "fc00::/7" ];
|
||||||
local_ips = pkgs.writeTextDir "local_ips.list" (concatLines local_network);
|
local_ips = pkgs.writeTextDir "local_ips.list" (concatLines local_network);
|
||||||
|
|
||||||
|
created = "1970-01-01T00:00:00.0+00:00";
|
||||||
in
|
in
|
||||||
{
|
{
|
||||||
config = mkIf (enable && tooling.enable && network) {
|
config = mkIf (enable && tooling.enable && network) {
|
||||||
|
@ -57,6 +59,7 @@ in
|
||||||
enabled = true;
|
enabled = true;
|
||||||
action = "allow";
|
action = "allow";
|
||||||
duration = "always";
|
duration = "always";
|
||||||
|
inherit created;
|
||||||
operator = {
|
operator = {
|
||||||
type ="simple";
|
type ="simple";
|
||||||
sensitive = false;
|
sensitive = false;
|
||||||
|
@ -70,6 +73,7 @@ in
|
||||||
action = "deny";
|
action = "deny";
|
||||||
enabled = true;
|
enabled = true;
|
||||||
duration = "always";
|
duration = "always";
|
||||||
|
inherit created;
|
||||||
operator = {
|
operator = {
|
||||||
type = "lists";
|
type = "lists";
|
||||||
operand = "lists.domains";
|
operand = "lists.domains";
|
||||||
|
@ -82,6 +86,7 @@ in
|
||||||
enabled = true;
|
enabled = true;
|
||||||
action = "allow";
|
action = "allow";
|
||||||
duration = "always";
|
duration = "always";
|
||||||
|
inherit created;
|
||||||
operator = {
|
operator = {
|
||||||
type = "list";
|
type = "list";
|
||||||
operand = "list";
|
operand = "list";
|
||||||
|
@ -117,6 +122,7 @@ in
|
||||||
action = "allow";
|
action = "allow";
|
||||||
duration = "always";
|
duration = "always";
|
||||||
precedence = true;
|
precedence = true;
|
||||||
|
inherit created;
|
||||||
operator = {
|
operator = {
|
||||||
type ="regexp";
|
type ="regexp";
|
||||||
sensitive = false;
|
sensitive = false;
|
||||||
|
@ -131,6 +137,7 @@ in
|
||||||
action = "deny";
|
action = "deny";
|
||||||
precedence = false;
|
precedence = false;
|
||||||
duration = "always";
|
duration = "always";
|
||||||
|
inherit created;
|
||||||
operator = {
|
operator = {
|
||||||
type ="simple";
|
type ="simple";
|
||||||
sensitive = false;
|
sensitive = false;
|
||||||
|
@ -145,6 +152,7 @@ in
|
||||||
action = "deny";
|
action = "deny";
|
||||||
precedence = false;
|
precedence = false;
|
||||||
duration = "always";
|
duration = "always";
|
||||||
|
inherit created;
|
||||||
operator = {
|
operator = {
|
||||||
type ="regexp";
|
type ="regexp";
|
||||||
sensitive = false;
|
sensitive = false;
|
||||||
|
@ -159,6 +167,7 @@ in
|
||||||
action = "allow";
|
action = "allow";
|
||||||
precedence = true;
|
precedence = true;
|
||||||
duration = "always";
|
duration = "always";
|
||||||
|
inherit created;
|
||||||
operator = {
|
operator = {
|
||||||
type = "list";
|
type = "list";
|
||||||
operand = "list";
|
operand = "list";
|
||||||
|
@ -189,6 +198,7 @@ in
|
||||||
enabled = true;
|
enabled = true;
|
||||||
action = "allow";
|
action = "allow";
|
||||||
duration = "always";
|
duration = "always";
|
||||||
|
inherit created;
|
||||||
operator = {
|
operator = {
|
||||||
type = "list";
|
type = "list";
|
||||||
operand = "list";
|
operand = "list";
|
||||||
|
@ -219,6 +229,7 @@ in
|
||||||
action = "allow";
|
action = "allow";
|
||||||
duration = "always";
|
duration = "always";
|
||||||
precedence = true;
|
precedence = true;
|
||||||
|
inherit created;
|
||||||
operator = {
|
operator = {
|
||||||
type = "list";
|
type = "list";
|
||||||
operand = "list";
|
operand = "list";
|
||||||
|
@ -250,6 +261,7 @@ in
|
||||||
action = "allow";
|
action = "allow";
|
||||||
duration = "always";
|
duration = "always";
|
||||||
precedence = true;
|
precedence = true;
|
||||||
|
inherit created;
|
||||||
operator = {
|
operator = {
|
||||||
type = "list";
|
type = "list";
|
||||||
operand = "list";
|
operand = "list";
|
||||||
|
@ -275,6 +287,7 @@ in
|
||||||
action = "deny";
|
action = "deny";
|
||||||
precedence = false;
|
precedence = false;
|
||||||
duration = "always";
|
duration = "always";
|
||||||
|
inherit created;
|
||||||
operator = {
|
operator = {
|
||||||
type ="regexp";
|
type ="regexp";
|
||||||
sensitive = false;
|
sensitive = false;
|
||||||
|
@ -289,6 +302,7 @@ in
|
||||||
action = "allow";
|
action = "allow";
|
||||||
precedence = true;
|
precedence = true;
|
||||||
duration = "always";
|
duration = "always";
|
||||||
|
inherit created;
|
||||||
operator = {
|
operator = {
|
||||||
type = "list";
|
type = "list";
|
||||||
operand = "list";
|
operand = "list";
|
||||||
|
@ -314,6 +328,7 @@ in
|
||||||
action = "deny";
|
action = "deny";
|
||||||
precedence = false;
|
precedence = false;
|
||||||
duration = "always";
|
duration = "always";
|
||||||
|
inherit created;
|
||||||
operator = {
|
operator = {
|
||||||
type ="regexp";
|
type ="regexp";
|
||||||
sensitive = false;
|
sensitive = false;
|
||||||
|
@ -329,6 +344,7 @@ in
|
||||||
action = "allow";
|
action = "allow";
|
||||||
precedence = true;
|
precedence = true;
|
||||||
duration = "always";
|
duration = "always";
|
||||||
|
inherit created;
|
||||||
operator = {
|
operator = {
|
||||||
type = "list";
|
type = "list";
|
||||||
operand = "list";
|
operand = "list";
|
||||||
|
@ -355,6 +371,7 @@ in
|
||||||
enabled = true;
|
enabled = true;
|
||||||
action = "allow";
|
action = "allow";
|
||||||
duration = "always";
|
duration = "always";
|
||||||
|
inherit created;
|
||||||
operator = {
|
operator = {
|
||||||
type = "list";
|
type = "list";
|
||||||
operand = "list";
|
operand = "list";
|
||||||
|
@ -384,6 +401,7 @@ in
|
||||||
enabled = true;
|
enabled = true;
|
||||||
action = "allow";
|
action = "allow";
|
||||||
duration = "always";
|
duration = "always";
|
||||||
|
inherit created;
|
||||||
operator = {
|
operator = {
|
||||||
type ="regexp";
|
type ="regexp";
|
||||||
operand = "protocol";
|
operand = "protocol";
|
||||||
|
@ -397,6 +415,7 @@ in
|
||||||
enabled = true;
|
enabled = true;
|
||||||
action = "allow";
|
action = "allow";
|
||||||
duration = "always";
|
duration = "always";
|
||||||
|
inherit created;
|
||||||
operator = {
|
operator = {
|
||||||
type = "list";
|
type = "list";
|
||||||
operand = "list";
|
operand = "list";
|
||||||
|
@ -426,6 +445,7 @@ in
|
||||||
enabled = true;
|
enabled = true;
|
||||||
action = "allow";
|
action = "allow";
|
||||||
duration = "always";
|
duration = "always";
|
||||||
|
inherit created;
|
||||||
operator = {
|
operator = {
|
||||||
type = "list";
|
type = "list";
|
||||||
operand = "list";
|
operand = "list";
|
||||||
|
@ -439,7 +459,7 @@ in
|
||||||
{
|
{
|
||||||
type ="regexp";
|
type ="regexp";
|
||||||
operand = "dest.port";
|
operand = "dest.port";
|
||||||
data = "53|631";
|
data = "53|631|80";
|
||||||
}
|
}
|
||||||
{
|
{
|
||||||
type = "lists";
|
type = "lists";
|
||||||
|
@ -455,6 +475,7 @@ in
|
||||||
enabled = true;
|
enabled = true;
|
||||||
action = "allow";
|
action = "allow";
|
||||||
duration = "always";
|
duration = "always";
|
||||||
|
inherit created;
|
||||||
operator = {
|
operator = {
|
||||||
type = "list";
|
type = "list";
|
||||||
operand = "list";
|
operand = "list";
|
||||||
|
@ -489,6 +510,7 @@ in
|
||||||
enabled = true;
|
enabled = true;
|
||||||
action = "allow";
|
action = "allow";
|
||||||
duration = "always";
|
duration = "always";
|
||||||
|
inherit created;
|
||||||
operator = {
|
operator = {
|
||||||
type = "list";
|
type = "list";
|
||||||
operand = "list";
|
operand = "list";
|
||||||
|
|
Loading…
Reference in a new issue