From aeb34724148e4b592636fa994337ad133f4b4e79 Mon Sep 17 00:00:00 2001
From: Jason <git-admin@casjaysdev.com>
Date: Wed, 16 Feb 2022 17:39:05 -0500
Subject: [PATCH] =?UTF-8?q?=E2=9E=95=20Added:=20config/e2guardian/default.?=
 =?UTF-8?q?story=20=E2=9E=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 config/e2guardian/default.story | 48 +++++++++++++++++++++++++++++++++
 1 file changed, 48 insertions(+)
 create mode 100644 config/e2guardian/default.story

diff --git a/config/e2guardian/default.story b/config/e2guardian/default.story
new file mode 100644
index 0000000..a4ea505
--- /dev/null
+++ b/config/e2guardian/default.story
@@ -0,0 +1,48 @@
+.Include</etc/e2guardian/common.story>
+.Include</etc/e2guardian/site.story>
+
+# Add any altered functions for this filtergroup here
+# They will overwrite library or site level definitions
+
+# To allow unfiltered access to this group 
+# uncomment next 4 lines
+#function(checkrequest)
+#if(true) return setexception
+#function(thttps-checkrequest)
+#if(true) return setexception
+
+# To block all access to this group 
+# uncomment next 4 lines
+#function(checkrequest)
+#if(true,,105) return setblock
+#function(sslexceptioncheck)
+#function(localsslcheckrequest)
+
+# Note: Blanket blocks are checked after exceptions
+# and can be used to make a 'walled garden' filtergroup
+
+# To create blanket block for http 
+# uncomment next line and one condition line.
+#function(checkblanketblock)
+#if(true,,502) return setblock  # = ** total blanket
+#if(siteisip,,505) return setblock  # = *ip ip blanket
+
+# To create blanket block for SSL 
+# uncomment next line and one condition line.
+#function(sslcheckblanketblock)
+#if(true,,506) return setblock  # = **s total blanket
+#if(siteisip,,507) return setblock  # = **ips ip blanket
+
+# To limit MITM to sslgreylist
+# replaces onlymitmsslgrey e2guardianf1.conf option
+# uncomment the next 2 lines
+#function(sslcheckmitm)
+#if(true) return sslcheckmitmgreyonly
+
+
+# SNI checking - overrides default action when no SNI or TSL is present on a 
+#    THTTPS connection
+# To allow (tunnell) non-tls and/or non-sni connections uncomment the next 3 lines
+#function(checksni)
+#ifnot(tls,,511) return setexception  # change to setblock to block only non-tls
+#ifnot(hassniset,,512) return setexception