{
"gaid": "OFA-AGENT-ID-D6NmSW62hUZW",
"score_threshold": 150,
"version": "v4.60.4",
"proxy": "CLOUD",
"sync_time": 1,
"maximum_rules": 99999998,
"ids": {
"iptables": {
"active": false
},
"ebtables": {
"active": false
},
"pflist": {
"active": false
},
"modsec": {
"active": false,
"modsec_logs": "/var/log/apache2/modsec_audit.log"
},
"cloudflare": {
"active": false,
"cloudflare_x_auth_email": "",
"cloudflare_x_auth_key": ""
},
"luna": {
"active": false,
"json": []
},
"sshlog": {
"active": false,
"ssh_log_location": "/var/log/auth.log"
}
},
"ips": {
"httpd": {
"active": true,
"command": "cp blacklist_onefirewall.txt httpd/blacklist.txt"
},
"iptables": {
"active": true,
"acl": "/opt/onefirewall/acl/ipset.txt",
"reload_command": "sudo ipset flush blacklist && sudo ipset restore < /opt/onefirewall/acl/ipset.txt "
},
"checkpoint": {
"active": false,
"username": "admin",
"password": "",
"address": "https://10.47.2.48",
"group": "OneFirewall_IPS",
"policy": "standard",
"domain": "Test_domain_Server",
"gateways": "Test_gw"
},
"checkpoint_securexl": {
"active": false,
"connections": "ofa@192.168.1.40",
"password": "************",
"command": "bash artifacts/checkpoint/install-securexl.sh",
"vsids": "1,2"
},
"fortigate": {
"active": false,
"connections": "ofa@192.168.1.40",
"password": "************",
"command": "bash artifacts/fortigate/install-fortigate-url-feed.sh",
"feeds": "/api/v1/feeds",
"updates": "5"
},
"csp": {
"active": false,
"connections": "ofa@192.168.1.40",
"password": "************",
"command": "bash artifacts/csp.sh",
"feeds": "onefirewall.txt",
"updates": "5"
},
"ebtables": {
"active": false
},
"pflist": {
"active": false,
"ofa_ips_txt": "/opt/apps/onefirewall-cloud-client/ofa-ips.txt",
"pflist_reload_command": "sudo pfctl -f /etc/pf.conf;"
},
"modsec": {
"active": false,
"ruleset": "/usr/share/modsecurity-crs/rules/onefirewall_rules.conf",
"modsec_reload_command": "sudo apachectl -k graceful;"
},
"cloudflare": {
"active": false,
"cloudflare_x_auth_email": "",
"cloudflare_x_auth_key": ""
},
"cisco": {
"active": false,
"cisco_host": "",
"cisco_user": "",
"cisco_password": ""
},
"haproxy": {
"active": false,
"haproxy_logs": "/opt/onefirewall/acl/haproxy.txt",
"haproxy_reload_command": "sudo service haproxy reload"
},
"csv": {
"active": false,
"csv_logs": "/opt/onefirewall/feeds.csv",
"csv_reload_command": "wc /opt/onefirewall/feeds.csv"
},
"aws": {
"active": false,
"accessKeyId": "",
"secretAccessKey": "",
"region": ""
},
"sophos": {
"active": false,
"user": "",
"password": "",
"address": "",
"command": "bash artifacts/sophos/update_blacklist_sophos.sh"
},
"trellix": {
"active": false,
"username": "",
"password": "",
"api": "",
"fileslist_file": "",
"broker_ca_bundle": "",
"cert_file": "",
"private_key": ""
},
"infoblox": {
"active": false,
"username": "",
"password": "",
"api": "",
"group": "",
"policy": "",
"action": "",
"view": "",
"domains_file": "",
"domains_file_whitelist": "",
"api_whitelist_url": ""
},
"forcepoint": {
"active": false,
"username": "",
"password": "",
"api": "",
"group": "",
"policy": "",
"action": "",
"parent": null,
"urls_file": ""
}
},
"running": "yes"
}