gfwleak/tango-verify-policy
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

策略验证支持MAAT3.0

Browse Source
This commit is contained in:
fengweihao
2020-07-01 16:57:25 +08:00
parent ffbe02b911
commit a99667162f
2 changed files with 79 additions and 77 deletions
Download Patch File Download Diff File Expand all files Collapse all files

87
resource/table_info_proxy.conf
View File

@@ -16,47 +16,48 @@
#For expr/expr_plus Table
#id name type src_charset dst_charset do_merge cross_cache quick_mode
0 PXY_CTRL_COMPILE compile escape --
1 GROUP_COMPILE_RELATION group --
2 TSG_OBJ_IP_ADDR ip_plus ---
3 TSG_OBJ_URL expr UTF8 GBK/UNICODE/UTF8/url_encode_gb2312/url_encode_utf8 yes 0 quickoff
4 TSG_FIELD_HTTP_URL virtual TSG_OBJ_URL --
5 TSG_OBJ_FQDN expr UTF8 GBK/UNICODE/UTF8/url_encode_gb2312/url_encode_utf8 yes 0 quickoff
5 TSG_OBJ_FQDN_CAT expr UTF8 GBK/UNICODE/UTF8/url_encode_gb2312/url_encode_utf8 yes 0 quickoff
6 TSG_FIELD_HTTP_HOST virtual TSG_OBJ_FQDN --
7 TSG_OBJ_HTTP_SIGNATURE expr_plus UTF8 UTF8 yes 0 quickoff
8 TSG_FIELD_HTTP_REQ_HDR virtual TSG_OBJ_HTTP_SIGNATURE --
9 TSG_FIELD_HTTP_RES_HDR virtual TSG_OBJ_HTTP_SIGNATURE --
10 TSG_OBJ_KEYWORDS expr UTF8 GBK/UNICODE/UTF8 yes 128 quickoff
11 TSG_FIELD_HTTP_REQ_CONTENT virtual TSG_OBJ_KEYWORDS --
12 TSG_FIELD_HTTP_RES_CONTENT virtual TSG_OBJ_KEYWORDS --
13 TSG_OBJ_SUBSCRIBER_ID expr UTF8 UTF8 yes 0 quickon
14 TSG_OBJ_APP_ID expr UTF8 UTF8 yes 0
15 TSG_SECURITY_SOURCE_ADDR virtual TSG_OBJ_IP_ADDR --
16 TSG_SECURITY_DESTINATION_ADDR virtual TSG_OBJ_IP_ADDR --
17 TSG_SECURITY_ADDR composition {"source":"TSG_SECURITY_SOURCE_ADDR","destination":"TSG_SECURITY_DESTINATION_ADDR"}
18 TSG_IP_ASN_BUILT_IN ip_plugin {"row_id":1,"ip_type":2,"start_ip":3,"end_ip":4,"valid":7,"estimate_size":4194304}
19 TSG_IP_ASN_USER_DEFINED ip_plugin {"row_id":1,"ip_type":2,"start_ip":3,"end_ip":4,"valid":7,"estimate_size":4194304}
20 TSG_IP_LOCATION_BUILT_IN ip_plugin {"row_id":1,"ip_type":3,"start_ip":4,"end_ip":5,"valid":18,"estimate_size":4194304}
21 TSG_IP_LOCATION_USER_DEFINED ip_plugin {"row_id":1,"ip_type":3,"start_ip":4,"end_ip":5,"valid":18,"estimate_size":4194304}
22 TSG_OBJ_AS_NUMBER expr UTF8 UTF8/GBK yes 0
23 TSG_SECURITY_SOURCE_ASN virtual TSG_OBJ_AS_NUMBER --
24 TSG_SECURITY_DESTINATION_ASN virtual TSG_OBJ_AS_NUMBER --
25 TSG_OBJ_GEO_LOCATION expr UTF8 UTF8/GBK yes 0
26 TSG_SECURITY_SOURCE_LOCATION virtual TSG_OBJ_GEO_LOCATION --
27 TSG_SECURITY_DESTINATION_LOCATION virtual TSG_OBJ_GEO_LOCATION --
1 GROUP_COMPILE_RELATION group2compile --
2 GROUP_GROUP_RELATION group2group --
3 TSG_OBJ_IP_ADDR ip_plus ---
4 TSG_OBJ_URL expr UTF8 GBK/UNICODE/UTF8/url_encode_gb2312/url_encode_utf8 yes 0 quickoff
5 TSG_FIELD_HTTP_URL virtual TSG_OBJ_URL --
6 TSG_OBJ_FQDN expr UTF8 GBK/UNICODE/UTF8/url_encode_gb2312/url_encode_utf8 yes 0 quickoff
6 TSG_OBJ_FQDN_CAT expr UTF8 GBK/UNICODE/UTF8/url_encode_gb2312/url_encode_utf8 yes 0 quickoff
7 TSG_FIELD_HTTP_HOST virtual TSG_OBJ_FQDN --
8 TSG_OBJ_HTTP_SIGNATURE expr_plus UTF8 UTF8 yes 0 quickoff
9 TSG_FIELD_HTTP_REQ_HDR virtual TSG_OBJ_HTTP_SIGNATURE --
10 TSG_FIELD_HTTP_RES_HDR virtual TSG_OBJ_HTTP_SIGNATURE --
11 TSG_OBJ_KEYWORDS expr UTF8 GBK/UNICODE/UTF8 yes 128 quickoff
12 TSG_FIELD_HTTP_REQ_CONTENT virtual TSG_OBJ_KEYWORDS --
13 TSG_FIELD_HTTP_RES_CONTENT virtual TSG_OBJ_KEYWORDS --
14 TSG_OBJ_SUBSCRIBER_ID expr UTF8 UTF8 yes 0 quickon
15 TSG_OBJ_APP_ID expr UTF8 UTF8 yes 0
16 TSG_SECURITY_SOURCE_ADDR virtual TSG_OBJ_IP_ADDR --
17 TSG_SECURITY_DESTINATION_ADDR virtual TSG_OBJ_IP_ADDR --
18 TSG_SECURITY_ADDR composition {"source":"TSG_SECURITY_SOURCE_ADDR","destination":"TSG_SECURITY_DESTINATION_ADDR"}
19 TSG_IP_ASN_BUILT_IN ip_plugin {"row_id":1,"ip_type":2,"start_ip":3,"end_ip":4,"valid":7,"estimate_size":4194304}
20 TSG_IP_ASN_USER_DEFINED ip_plugin {"row_id":1,"ip_type":2,"start_ip":3,"end_ip":4,"valid":7,"estimate_size":4194304}
21 TSG_IP_LOCATION_BUILT_IN ip_plugin {"row_id":1,"ip_type":3,"start_ip":4,"end_ip":5,"valid":18,"estimate_size":4194304}
22 TSG_IP_LOCATION_USER_DEFINED ip_plugin {"row_id":1,"ip_type":3,"start_ip":4,"end_ip":5,"valid":18,"estimate_size":4194304}
23 TSG_OBJ_AS_NUMBER expr UTF8 UTF8/GBK yes 0
24 TSG_SECURITY_SOURCE_ASN virtual TSG_OBJ_AS_NUMBER --
25 TSG_SECURITY_DESTINATION_ASN virtual TSG_OBJ_AS_NUMBER --
26 TSG_OBJ_GEO_LOCATION expr UTF8 UTF8/GBK yes 0
27 TSG_SECURITY_SOURCE_LOCATION virtual TSG_OBJ_GEO_LOCATION --
28 TSG_SECURITY_DESTINATION_LOCATION virtual TSG_OBJ_GEO_LOCATION --
#eliminate the alarm
28 TSG_OBJ_ACCOUNT expr UTF8 UTF8 yes 0
29 TSG_FIELD_SSL_SNI virtual TSG_OBJ_FQDN --
30 TSG_FIELD_SSL_CN virtual TSG_OBJ_FQDN --
31 TSG_FIELD_SSL_SAN virtual TSG_OBJ_FQDN --
32 TSG_FIELD_DNS_QNAME virtual TSG_OBJ_FQDN --
33 TSG_FIELD_MAIL_ACCOUNT virtual TSG_OBJ_ACCOUNT --
34 TSG_FIELD_MAIL_FROM virtual TSG_OBJ_ACCOUNT --
35 TSG_FIELD_MAIL_TO virtual TSG_OBJ_ACCOUNT --
36 TSG_FIELD_MAIL_SUBJECT virtual TSG_OBJ_KEYWORDS --
37 TSG_FIELD_MAIL_CONTENT virtual TSG_OBJ_KEYWORDS --
38 TSG_FIELD_MAIL_ATT_NAME virtual TSG_OBJ_KEYWORDS --
39 TSG_FIELD_MAIL_ATT_CONTENT virtual TSG_OBJ_KEYWORDS --
40 TSG_FIELD_FTP_URI virtual TSG_OBJ_URL --
41 TSG_FIELD_FTP_CONTENT virtual TSG_OBJ_KEYWORDS --
42 TSG_FIELD_FTP_ACCOUNT virtual TSG_OBJ_ACCOUNT --
29 TSG_OBJ_ACCOUNT expr UTF8 UTF8 yes 0
30 TSG_FIELD_SSL_SNI virtual TSG_OBJ_FQDN --
31 TSG_FIELD_SSL_CN virtual TSG_OBJ_FQDN --
32 TSG_FIELD_SSL_SAN virtual TSG_OBJ_FQDN --
33 TSG_FIELD_DNS_QNAME virtual TSG_OBJ_FQDN --
34 TSG_FIELD_MAIL_ACCOUNT virtual TSG_OBJ_ACCOUNT --
35 TSG_FIELD_MAIL_FROM virtual TSG_OBJ_ACCOUNT --
36 TSG_FIELD_MAIL_TO virtual TSG_OBJ_ACCOUNT --
37 TSG_FIELD_MAIL_SUBJECT virtual TSG_OBJ_KEYWORDS --
38 TSG_FIELD_MAIL_CONTENT virtual TSG_OBJ_KEYWORDS --
39 TSG_FIELD_MAIL_ATT_NAME virtual TSG_OBJ_KEYWORDS --
40 TSG_FIELD_MAIL_ATT_CONTENT virtual TSG_OBJ_KEYWORDS --
41 TSG_FIELD_FTP_URI virtual TSG_OBJ_URL --
42 TSG_FIELD_FTP_CONTENT virtual TSG_OBJ_KEYWORDS --
43 TSG_FIELD_FTP_ACCOUNT virtual TSG_OBJ_ACCOUNT --

69
resource/table_info_security.conf
View File

@@ -8,40 +8,41 @@
#cross cache 0~max
#quickswitch quickon or quick off
#id name type src_charset dst_charset do_merge cross_cache quickswitch
0 TSG_SECURITY_COMPILE compile escape --
1 GROUP_COMPILE_RELATION group UTF8 UTF8 no 0
2 TSG_OBJ_IP_ADDR ip_plus UTF8 UTF8 no 0
3 TSG_OBJ_SUBSCRIBER_ID expr UTF8 UTF8 yes 0
4 TSG_OBJ_ACCOUNT expr UTF8 UTF8 yes 0
5 TSG_OBJ_URL expr UTF8 UTF8/GBK yes 0
6 TSG_OBJ_FQDN expr UTF8 UTF8 yes 0
6 TSG_OBJ_FQDN_CAT expr UTF8 UTF8 yes 0
7 TSG_OBJ_KEYWORDS expr UTF8 UTF8/GBK yes 0
8 TSG_OBJ_APP_ID expr UTF8 UTF8 yes 0
9 TSG_OBJ_HTTP_SIGNATURE expr_plus UTF8 UTF8/GBK yes 0
10 TSG_FIELD_HTTP_HOST virtual TSG_OBJ_FQDN --
11 TSG_FIELD_HTTP_URL virtual TSG_OBJ_URL --
12 TSG_FIELD_HTTP_REQ_HDR virtual TSG_OBJ_HTTP_SIGNATURE --
13 TSG_FIELD_HTTP_RES_HDR virtual TSG_OBJ_HTTP_SIGNATURE --
14 TSG_FIELD_HTTP_REQ_CONTENT virtual TSG_OBJ_KEYWORDS --
15 TSG_FIELD_HTTP_RES_CONTENT virtual TSG_OBJ_KEYWORDS --
16 TSG_FIELD_SSL_SNI virtual TSG_OBJ_FQDN --
17 TSG_FIELD_SSL_CN virtual TSG_OBJ_FQDN --
18 TSG_FIELD_SSL_SAN virtual TSG_OBJ_FQDN --
19 TSG_FIELD_DNS_QNAME virtual TSG_OBJ_FQDN --
20 TSG_FIELD_MAIL_ACCOUNT virtual TSG_OBJ_ACCOUNT --
21 TSG_FIELD_MAIL_FROM virtual TSG_OBJ_ACCOUNT --
22 TSG_FIELD_MAIL_TO virtual TSG_OBJ_ACCOUNT --
23 TSG_FIELD_MAIL_SUBJECT virtual TSG_OBJ_KEYWORDS --
24 TSG_FIELD_MAIL_CONTENT virtual TSG_OBJ_KEYWORDS --
25 TSG_FIELD_MAIL_ATT_NAME virtual TSG_OBJ_KEYWORDS --
26 TSG_FIELD_MAIL_ATT_CONTENT virtual TSG_OBJ_KEYWORDS --
27 TSG_FIELD_FTP_URI virtual TSG_OBJ_URL --
28 TSG_FIELD_FTP_CONTENT virtual TSG_OBJ_KEYWORDS --
29 TSG_FIELD_FTP_ACCOUNT virtual TSG_OBJ_ACCOUNT --
30 TSG_SECURITY_SOURCE_ADDR virtual TSG_OBJ_IP_ADDR --
31 TSG_SECURITY_DESTINATION_ADDR virtual TSG_OBJ_IP_ADDR --
32 TSG_SECURITY_ADDR composition {"source":"TSG_SECURITY_SOURCE_ADDR","destination":"TSG_SECURITY_DESTINATION_ADDR"}
0 TSG_SECURITY_COMPILE compile escape --
1 GROUP_COMPILE_RELATION group2compile --
2 GROUP_GROUP_RELATION group2group --
3 TSG_OBJ_IP_ADDR ip_plus UTF8 UTF8 no 0
4 TSG_OBJ_SUBSCRIBER_ID expr UTF8 UTF8 yes 0
5 TSG_OBJ_ACCOUNT expr UTF8 UTF8 yes 0
6 TSG_OBJ_URL expr UTF8 UTF8/GBK yes 0
7 TSG_OBJ_FQDN expr UTF8 UTF8 yes 0
#7 TSG_OBJ_FQDN_CAT expr UTF8 UTF8 yes 0
8 TSG_OBJ_KEYWORDS expr UTF8 UTF8/GBK yes 0
9 TSG_OBJ_APP_ID expr UTF8 UTF8 yes 0
10 TSG_OBJ_HTTP_SIGNATURE expr_plus UTF8 UTF8/GBK yes 0
11 TSG_FIELD_HTTP_HOST virtual TSG_OBJ_FQDN --
12 TSG_FIELD_HTTP_URL virtual TSG_OBJ_URL --
13 TSG_FIELD_HTTP_REQ_HDR virtual TSG_OBJ_HTTP_SIGNATURE --
14 TSG_FIELD_HTTP_RES_HDR virtual TSG_OBJ_HTTP_SIGNATURE --
15 TSG_FIELD_HTTP_REQ_CONTENT virtual TSG_OBJ_KEYWORDS --
16 TSG_FIELD_HTTP_RES_CONTENT virtual TSG_OBJ_KEYWORDS --
17 TSG_FIELD_SSL_SNI virtual TSG_OBJ_FQDN --
18 TSG_FIELD_SSL_CN virtual TSG_OBJ_FQDN --
19 TSG_FIELD_SSL_SAN virtual TSG_OBJ_FQDN --
20 TSG_FIELD_DNS_QNAME virtual TSG_OBJ_FQDN --
21 TSG_FIELD_MAIL_ACCOUNT virtual TSG_OBJ_ACCOUNT --
22 TSG_FIELD_MAIL_FROM virtual TSG_OBJ_ACCOUNT --
23 TSG_FIELD_MAIL_TO virtual TSG_OBJ_ACCOUNT --
24 TSG_FIELD_MAIL_SUBJECT virtual TSG_OBJ_KEYWORDS --
25 TSG_FIELD_MAIL_CONTENT virtual TSG_OBJ_KEYWORDS --
26 TSG_FIELD_MAIL_ATT_NAME virtual TSG_OBJ_KEYWORDS --
27 TSG_FIELD_MAIL_ATT_CONTENT virtual TSG_OBJ_KEYWORDS --
28 TSG_FIELD_FTP_URI virtual TSG_OBJ_URL --
29 TSG_FIELD_FTP_CONTENT virtual TSG_OBJ_KEYWORDS --
30 TSG_FIELD_FTP_ACCOUNT virtual TSG_OBJ_ACCOUNT --
31 TSG_SECURITY_SOURCE_ADDR virtual TSG_OBJ_IP_ADDR --
32 TSG_SECURITY_DESTINATION_ADDR virtual TSG_OBJ_IP_ADDR --
33 TSG_SECURITY_ADDR composition {"source":"TSG_SECURITY_SOURCE_ADDR","destination":"TSG_SECURITY_DESTINATION_ADDR"}
34 TSG_IP_ASN_BUILT_IN ip_plugin {"row_id":1,"ip_type":2,"start_ip":3,"end_ip":4,"valid":7,"estimate_size":4194304}
35 TSG_IP_ASN_USER_DEFINED ip_plugin {"row_id":1,"ip_type":2,"start_ip":3,"end_ip":4,"valid":7,"estimate_size":4194304}
36 TSG_IP_LOCATION_BUILT_IN ip_plugin {"row_id":1,"ip_type":3,"start_ip":4,"end_ip":5,"valid":18,"estimate_size":4194304}