gfwleak/tango-verify-policy
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
This repository has been archived on 2025-09-14. You can view files and clone it, but cannot push or open issues or pull requests.
Files
cb35a2b92b6d195db736f8d9354ee918effdb036
tango-verify-policy/test/resource/VerifyPolicyManipulation.json

560 lines
21 KiB
JSON
Raw Blame History

{
"rule_table": "PXY_CTRL_RULE",
"object_group_table": "OBJECT_GROUP",
"rules": [
{
"uuid": "00001021-0000-0000-0000-000000000000",
"service": 1,
"action": "manipulate",
"blacklist_option": 1,
"log_option": "all",
"action_parameter": "anything",
"is_valid": "yes",
"and_conditions": [
{
"attribute_name": "ATTR_SOURCE_IP",
"objects": [
{
"object_name": "IPv4TCPSoureVeiryPolicy01",
"uuid": "00005000-0000-0000-0000-000000000000",
"items": [
{
"table_type": "ip",
"table_name": "TSG_OBJ_IP_ADDR",
"table_content": {
"ip": "192.168.0.1/32",
"port": "8080"
}
}
]
}
]
}
]
},
{
"uuid": "00001022-0000-0000-0000-000000000000",
"service": 1,
"action": "manipulate",
"blacklist_option": 1,
"log_option": "all",
"action_parameter": "anything",
"is_valid": "yes",
"and_conditions": [
{
"object_name": "IPv4TCPSoureEntry.11",
"attribute_name": "ATTR_SOURCE_IP",
"negate_option": false,
"object_uuids": [
"00000011-0000-0000-0000-000000000000"
]
},
{
"object_name": "IPv4TCPSoureEntry.12",
"attribute_name": "ATTR_INTERNAL_IP",
"negate_option": false,
"object_uuids": [
"00000012-0000-0000-0000-000000000000"
]
},
{
"object_name": "FQDNEntry.1",
"attribute_name": "ATTR_SERVER_FQDN",
"negate_option": false,
"object_uuids": [
"00000001-0000-0000-0000-000000000000"
]
}
]
},
{
"uuid": "00001023-0000-0000-0000-000000000000",
"service": 1,
"action": "manipulate",
"blacklist_option": 1,
"log_option": "all",
"action_parameter": "anything",
"is_valid": "yes",
"and_conditions": [
{
"attribute_name": "ATTR_SOURCE_IP",
"objects": [
{
"object_name": "IPv4TCPSoureVeiryPolicy02",
"uuid": "00005001-0000-0000-0000-000000000000",
"items": [
{
"table_type": "ip",
"table_name": "TSG_OBJ_IP_ADDR",
"table_content": {
"ip": "192.168.0.2/32",
"port": "80"
}
}
]
}
]
},
{
"attribute_name": "ATTR_DESTINATION_IP",
"objects": [
{
"object_name": "IPv4TCPDestinationVeiryPolicy01",
"uuid": "00005002-0000-0000-0000-000000000000",
"items": [
{
"table_type": "ip",
"table_name": "TSG_OBJ_IP_ADDR",
"table_content": {
"ip": "192.168.0.3/32",
"port": "80"
}
}
]
}
]
},
{
"attribute_name": "ATTR_SERVER_FQDN",
"objects": [
{
"object_name":"ServerFqdnVeiryPolicy01",
"uuid": "00005003-0000-0000-0000-000000000000",
"items": [
{
"table_name": "TSG_OBJ_FQDN",
"table_type": "expr",
"table_content": {
"expression": "baidu.com",
"expr_type": "and"
}
}
]
}
]
},
{
"attribute_name": "ATTR_SSL_SAN",
"objects": [
{
"object_name":"SslSanVeiryPolicy01",
"uuid": "00005004-0000-0000-0000-000000000000",
"items": [
{
"table_name": "TSG_OBJ_FQDN",
"table_type": "expr",
"table_content": {
"expression": "baidu.com",
"expr_type": "and"
}
}
]
}
]
}
]
},
{
"uuid": "00001024-0000-0000-0000-000000000000",
"service": 1,
"action": "manipulate",
"blacklist_option": 1,
"log_option": "all",
"action_parameter": "anything",
"is_valid": "yes",
"and_conditions": [
{
"object_name": "IPv4TCPSoureVeiryPolicy02",
"attribute_name": "ATTR_SOURCE_IP",
"negate_option": false,
"object_uuids": [
"00005001-0000-0000-0000-000000000000"
]
},
{
"object_name": "IPv4TCPDestinationVeiryPolicy01",
"attribute_name": "ATTR_DESTINATION_IP",
"negate_option": false,
"object_uuids": [
"00005002-0000-0000-0000-000000000000"
]
},
{
"object_name": "ServerFqdnVeiryPolicy01",
"attribute_name": "ATTR_SERVER_FQDN",
"negate_option": false,
"object_uuids": [
"00005003-0000-0000-0000-000000000000"
]
},
{
"object_name": "SslSanVeiryPolicy01",
"attribute_name": "ATTR_SSL_SAN",
"negate_option": false,
"object_uuids": [
"00005004-0000-0000-0000-000000000000"
]
}
]
},
{
"uuid": "00003021-0000-0000-0000-000000000000",
"service": 1,
"action": "monitor",
"blacklist_option": 1,
"log_option": "all",
"action_parameter": "anything",
"rule_table_name": "TUNNEL_RULE",
"is_valid": "yes",
"and_conditions": [
{
"attribute_name": "ATTR_TUNNEL_GTP_ENDPOINT",
"objects": [
{
"object_name": "TunnelIpv4TCPSoureVeiryPolicy01",
"uuid": "00005005-0000-0000-0000-000000000000",
"items": [
{
"table_type": "ip",
"table_name": "TSG_OBJ_IP_ADDR",
"table_content": {
"ip": "192.168.0.4"
}
}
]
}
]
}
]
},
{
"uuid": "00003022-0000-0000-0000-000000000000",
"service": 1,
"action": "monitor",
"blacklist_option": 1,
"log_option": "all",
"action_parameter": "anything",
"rule_table_name": "TUNNEL_RULE",
"is_valid": "yes",
"and_conditions": [
{
"attribute_name": "ATTR_TUNNEL_GTP_ENDPOINT",
"objects": [
{
"object_name": "TunnelIpv4TCPSoureVeiryPolicy02",
"uuid": "00005006-0000-0000-0000-000000000000",
"items": [
{
"table_type": "ip",
"table_name": "TSG_OBJ_IP_ADDR",
"table_content": {
"ip": "192.168.0.5/32"
}
}
]
}
]
}
]
},
{
"uuid": "00003023-0000-0000-0000-000000000000",
"service": 1,
"action": "monitor",
"blacklist_option": 1,
"log_option": "all",
"action_parameter": "anything",
"rule_table_name": "TUNNEL_RULE",
"is_valid": "yes",
"and_conditions": [
{
"attribute_name": "ATTR_TUNNEL_GTP_ENDPOINT",
"objects": [
{
"object_name": "TunnelIpv4TCPSoureVeiryPolicy03",
"uuid": "00005007-0000-0000-0000-000000000000",
"items": [
{
"table_type": "ip",
"table_name": "TSG_OBJ_IP_ADDR",
"table_content": {
"ip": "192.168.0.5/32"
}
}
]
}
]
},
{
"attribute_name": "ATTR_TUNNEL_GTP_ENDPOINT",
"objects": [
{
"object_name": "TunnelIpv4TCPSoureVeiryPolicy04",
"uuid": "00005008-0000-0000-0000-000000000000",
"items": [
{
"table_type": "ip",
"table_name": "TSG_OBJ_IP_ADDR",
"table_content": {
"ip": "192.168.0.6/32"
}
}
]
}
]
}
]
},
{
"uuid": "00001025-0000-0000-0000-000000000000",
"service": 1,
"action": "monitor",
"blacklist_option": 1,
"log_option": "all",
"action_parameter": "anything",
"is_valid": "yes",
"and_conditions": [
{
"object_name": "TunnelEndpointVeiryPolicy01",
"attribute_name": "ATTR_TUNNEL",
"negate_option": false,
"object_uuids": [
"00003023-0000-0000-0000-000000000000"
]
}
]
},
{
"uuid": "00001026-0000-0000-0000-000000000000",
"service": 1,
"action": "monitor",
"blacklist_option": 1,
"log_option": "all",
"action_parameter": "anything",
"is_valid": "yes",
"and_conditions": [
{
"object_name": "TunnelEndpointVeiryPolicy03",
"attribute_name": "ATTR_TUNNEL",
"negate_option": false,
"object_uuids": [
"00003022-0000-0000-0000-000000000000"
]
}
]
},
{
"uuid": "00001027-0000-0000-0000-000000000000",
"service": 1,
"action": "monitor",
"blacklist_option": 1,
"log_option": "all",
"action_parameter": "anything",
"is_valid": "yes",
"and_conditions": [
{
"object_name": "TunnelEndpointVeiryPolicy03",
"attribute_name": "ATTR_TUNNEL",
"negate_option": true,
"object_uuids": [
"00003022-0000-0000-0000-000000000000"
]
}
]
},
{
"uuid": "00600010-0000-0000-0000-000000000000",
"service": 1,
"action": "manipulate",
"blacklist_option": 1,
"log_option": "all",
"action_parameter": "anything",
"is_valid": "yes",
"and_conditions": [
{
"attribute_name": "ATTR_SOURCE_IP",
"objects": [
{
"object_name": "IPv4TCPSoureVeiryPolicy01",
"uuid": "00500100-0000-0000-0000-000000000000",
"items": [
{
"table_type": "ip",
"table_name": "TSG_OBJ_IP_ADDR",
"table_content": {
"ip": "192.168.55.4",
"port": "80"
}
}
]
}
]
},
{
"attribute_name": "ATTR_APP_ID",
"negate_option": false,
"object_uuids": [
"00000201-0000-0000-0000-000000000000"
]
},
{
"attribute_name": "ATTR_HTTP_REQ_HDR",
"objects": [
{
"items": [
{
"table_name": "TSG_OBJ_KEYWORD",
"table_type": "expr",
"table_content": {
"expression": "test",
"expr_type": "and"
}
}
]
}
]
},
{
"attribute_name": "ATTR_IP_PROTOCOL",
"negate_option": false,
"object_uuids": [
"00000000-0000-0000-0000-000000000006"
]
},
{
"attribute_name": "ATTR_SOURCE_PORT",
"objects": [
{
"object_name": "IPv4TCPPortVeiryPolicy01",
"uuid": "00500200-0000-0000-0000-000000000000",
"items": [
{
"table_name": "TSG_OBJ_PORT",
"table_type": "interval",
"table_content": {
"interval": "1-100"
}
}
]
}
]
},
{
"attribute_name": "ATTR_TUNNEL_LEVEL",
"negate_option": false,
"object_uuids": [
"00000000-0000-0000-0000-000000000050"
]
},
{
"attribute_name": "ATTR_FLAG",
"objects": [
{
"object_name": "FlagVeiryPolicy01",
"uuid": "00500300-0000-0000-0000-000000000000",
"items": [
{
"table_type": "flag",
"table_name": "TSG_OBJ_FLAG",
"table_content": {
"flag": 15,
"mask": 15
}
}
]
}
]
},
{
"attribute_name": "ATTR_SSL_ECH",
"negate_option": false,
"object_uuids": [
"00000000-0000-0000-0000-000000000002"
]
}
]
},
{
"uuid": "00002020-0000-0000-0000-000000000000",
"service": 1,
"action": "manipulate",
"blacklist_option": 1,
"log_option": "all",
"action_parameter": "anything",
"is_valid": "yes",
"and_conditions": [
{
"attribute_name": "ATTR_SOURCE_IP",
"negate_option": false,
"objects": [
{
"object_name": "IPv4TCPSoureVeiryPolicy03",
"uuid": "00008000-0000-0000-0000-000000000000",
"items": [
{
"table_type": "ip",
"table_name": "TSG_OBJ_IP_ADDR",
"table_content": {
"ip": "192.168.2.1/32",
"port": "8080"
}
}
]
}
]
}
]
}
],
"plugin_table": [
{
"table_name": "FQDN_ENTRY",
"table_content": [
{"uuid":"00000001-0000-0000-0000-000000000000","tag_uuids":["00000001-0000-0000-0000-000000000000"],"fqdn":"www.126.com","is_valid":1},
{"uuid":"00000002-0000-0000-0000-000000000000","tag_uuids":["00000002-0000-0000-0000-000000000000","00000003-0000-0000-0000-000000000000"],"fqdn":"www.baidu.com","is_valid":1},
{"uuid":"00000004-0000-0000-0000-000000000000","tag_uuids":["00000004-0000-0000-0000-000000000000","00000005-0000-0000-0000-000000000000","00000006-0000-0000-0000-000000000000"],"fqdn":"www.qq.com","is_valid":1}
]
},
{
"table_name": "IP_ADDR_ENTRY",
"table_content": [
{"uuid":"00000001-0000-0000-0000-000000000000","tag_uuids":["00000011-0000-0000-0000-000000000000"],"ip":"192.168.1.1/32","is_valid":1},
{"uuid":"00000002-0000-0000-0000-000000000000","tag_uuids":["00000012-0000-0000-0000-000000000000","00000013-0000-0000-0000-000000000000"],"ip":"192.168.1.2/32","is_valid":1},
{"uuid":"00000004-0000-0000-0000-000000000000","tag_uuids":["00000014-0000-0000-0000-000000000000","00000015-0000-0000-0000-000000000000","00000016-0000-0000-0000-000000000000"],"ip":"192.168.1.3/32","is_valid":1}
]
},
{
"table_name": "LIBRARY_TAG",
"table_content": [
{"uuid":"00000001-0000-0000-0000-000000000000","statistics_option":"none","category":"website_category","tag_key":"fqdn1","tag_value":"search\\bengines","is_valid":1},
{"uuid":"00000002-0000-0000-0000-000000000000","statistics_option":"none","category":"website_category","tag_key":"fqdn2","tag_value":"Recreation\band\bHobbies","is_valid":1},
{"uuid":"00000003-0000-0000-0000-000000000000","statistics_option":"none","category":"website_category","tag_key":"fqdn3","tag_value":"business","is_valid":1},
{"uuid":"00000004-0000-0000-0000-000000000000","statistics_option":"none","category":"website_category","tag_key":"fqdn4","tag_value":"search bengines","is_valid":1},
{"uuid":"00000005-0000-0000-0000-000000000000","statistics_option":"none","category":"website_category","tag_key":"fqdn5","tag_value":"search\\bengines","is_valid":1},
{"uuid":"00000006-0000-0000-0000-000000000000","statistics_option":"none","category":"website_category","tag_key":"fqdn6","tag_value":"search\\bengines","is_valid":1},
{"uuid":"00000011-0000-0000-0000-000000000000","statistics_option":"none","category":"geoip","tag_key":"administrative_area","tag_value":"Colombia.Departamento","is_valid":1},
{"uuid":"00000012-0000-0000-0000-000000000000","statistics_option":"none","category":"geoip","tag_key":"administrative_area","tag_value":"Colombia.Departamento\bdel\bVaupes.Mitú","is_valid":1},
{"uuid":"00000013-0000-0000-0000-000000000000","statistics_option":"none","category":"geoip","tag_key":"administrative_area","tag_value":"Colombia.Antioquia.Marinilla","is_valid":1},
{"uuid":"00000014-0000-0000-0000-000000000000","statistics_option":"none","category":"geoip","tag_key":"tsuper_administrative_area","tag_value":"Colombia.Departamento\bdel\bVaupes","is_valid":1},
{"uuid":"00000015-0000-0000-0000-000000000000","statistics_option":"none","category":"geoip","tag_key":"administrative_area","tag_value":"Germany.Bavaria.Mauern","is_valid":1},
{"uuid":"00000016-0000-0000-0000-000000000000","statistics_option":"none","category":"geoip","tag_key":"administrative_area","tag_value":"Germany.Bavaria.Mellrichstadt","is_valid":1}
]
},
{
"table_name": "APP_ID_DICT",
"table_content": [
{"app_id":67,"object_uuid":"00000201-0000-0000-0000-000000000000","app_name":"http","is_valid":1},
{"app_id":68,"object_uuid":"00068000-0000-0000-0000-000000000000","app_name":"https","is_valid":1}
]
},
{
"table_name": "ATTRIBUTE_DICT",
"table_content": [
{"uuid":"4fff0ed4-f02b-17ee-3f74-b66310c5d1e2","is_valid":1,"attribute_name":"ATTR_SERVER_FQDN","available_object_type":"fqdn","object_table_name":"TSG_OBJ_FQDN"},
{"uuid":"4fff0ed4-f02b-17ee-3f74-b66310c5d1e2","is_valid":1,"attribute_name":"ATTR_SSL_SAN","available_object_type":"fqdn","object_table_name":"TSG_OBJ_FQDN"},
{"uuid":"ca317931-96f8-1979-ea7c-2bb791858df6","is_valid":1,"attribute_name":"ATTR_HTTP_REQ_HDR","available_object_type":"keyword","object_table_name":"tsg_obj_keyword"}
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink