API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Aug 3rd, 2015
151
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.45 KB | None | 0 0
raw download clone embed print report
  1. # jul/18/2015 16:08:55 by RouterOS 6.30
  2. # software id = 2XNH-LS38
  3. #
  4. /interface bridge
  5. add name=LAN
  6. /interface ethernet
  7. set [ find default-name=ether1 ] name=ether1-WAN
  8. set [ find default-name=ether2 ] name=ether2-PC1
  9. set [ find default-name=ether3 ] master-port=ether2-PC1 name=ether3-Atlas
  10. set [ find default-name=ether4 ] master-port=ether2-PC1 name=ether4-PC2
  11. set [ find default-name=ether5 ] master-port=ether2-PC1
  12. set [ find default-name=ether7 ] master-port=ether6
  13. set [ find default-name=ether8 ] master-port=ether6
  14. set [ find default-name=ether9 ] master-port=ether6
  15. set [ find default-name=ether10 ] master-port=ether6
  16. /interface wireless
  17. set [ find default-name=wlan1 ] adaptive-noise-immunity=ap-and-client-mode antenna-gain=4 band=2ghz-b/g/n country=\
  18. "czech republic" disabled=no distance=indoors frequency-mode=regulatory-domain l2mtu=1600 mode=ap-bridge \
  19. preamble-mode=short radio-name=TSW ssid=UZSI tx-power=7 tx-power-mode=all-rates-fixed wireless-protocol=802.11 \
  20. wmm-support=enabled
  21. /interface wireless security-profiles
  22. set [ find default=yes ] authentication-types=wpa2-psk eap-methods="" mode=\
  23. dynamic-keys supplicant-identity=MikroTik
  24. /ip pool
  25. add name=LAN ranges=192.168.0.2-192.168.0.254
  26. /ip dhcp-server
  27. add add-arp=yes address-pool=LAN authoritative=yes disabled=no interface=LAN \
  28. lease-time=1w name=LAN
  29. /system logging action
  30. add email-to=1010@outlook.cz name=email target=email
  31. /interface bridge port
  32. add bridge=LAN interface=ether6
  33. add bridge=LAN interface=wlan1
  34. add bridge=LAN interface=ether2-PC1
  35. /ip settings
  36. set rp-filter=strict
  37. /ip address
  38. add address=192.168.0.1/24 interface=LAN network=192.168.0.0
  39. /ip dhcp-client
  40. add default-route-distance=0 dhcp-options=hostname,clientid disabled=no \
  41. interface=ether1-WAN use-peer-dns=no use-peer-ntp=no
  42. /ip dhcp-server config
  43. set store-leases-disk=never
  44. /ip dhcp-server network
  45. add address=192.168.0.0/24 dns-server=192.168.0.1 domain=home.hetmer.local \
  46. gateway=192.168.0.1 netmask=24 ntp-server=194.228.192.236,195.113.144.238
  47. /ip dns
  48. set allow-remote-requests=yes cache-size=8192KiB servers=8.8.8.8,8.8.4.4
  49. /ip firewall filter
  50. add chain=input comment="Accept Established / Related Input" \
  51. connection-state=established,related
  52. add chain=input comment="Allow Management Input - 192.168.0.254" src-address=\
  53. 192.168.0.254
  54. add chain=input comment="DNS Forwarder UDP" dst-port=53 protocol=udp \
  55. src-address=192.168.0.0/24
  56. add chain=input comment="DNS Forwarder TCP" dst-port=53 protocol=tcp \
  57. src-address=192.168.0.0/24
  58. add action=reject chain=input comment="Drop Input" log-prefix="Input Drop" \
  59. reject-with=icmp-admin-prohibited
  60. add action=fasttrack-connection chain=forward comment=\
  61. "FastTrack Established / Related Forward" connection-state=\
  62. established,related
  63. add chain=forward comment="Accept Established / Related Forward" \
  64. connection-state=established,related
  65. add chain=forward comment="Allow forward traffic LAN >> WAN" out-interface=\
  66. ether1-WAN src-address=192.168.0.0/24
  67. add action=reject chain=forward comment="Drop Forward" reject-with=\
  68. icmp-admin-prohibited
  69. /ip firewall nat
  70. add action=masquerade chain=srcnat out-interface=ether1-WAN
  71. /ip service
  72. set telnet disabled=yes
  73. set ftp disabled=yes
  74. set www disabled=yes
  75. set www-ssl certificate=cert_3 disabled=no
  76. set api disabled=yes
  77. set api-ssl disabled=yes
  78. /ip ssh
  79. set strong-crypto=yes
  80. /lcd
  81. set backlight-timeout=5m
  82. /lcd pin
  83. set hide-pin-number=yes pin-number=xxx
  84. /lcd interface
  85. set sfp1 disabled=yes
  86. set ether5 disabled=yes
  87. set ether6 disabled=yes
  88. set ether7 disabled=yes
  89. set ether8 disabled=yes
  90. set ether9 disabled=yes
  91. set ether10 disabled=yes
  92. /system clock
  93. set time-zone-name=Europe/Prague
  94. /system identity
  95. set name=Janostikova_Hetmer
  96. /system logging
  97. add action=email topics=warning
  98. add action=email topics=critical
  99. add action=email topics=error
  100. /system ntp client
  101. set enabled=yes primary-ntp=194.228.192.236 secondary-ntp=195.113.144.238
  102. /system routerboard settings
  103. set boot-delay=5s
  104. /tool bandwidth-server
  105. set enabled=no
  106. /tool e-mail
  107. set address=90.182.248.2 from=rb2011@mt.hetmer.net
  108. /tool graphing interface
  109. add interface=ether1-WAN store-on-disk=no
  110. add interface=ether2-PC1 store-on-disk=no
  111. add interface=ether3-Atlas store-on-disk=no
  112. add interface=ether4-PC2 store-on-disk=no
  113. add interface=wlan1 store-on-disk=no
  114. /tool graphing resource
  115. add store-on-disk=no
  116. /tool mac-server
  117. set [ find default=yes ] disabled=yes
  118. /tool mac-server mac-winbox
  119. set [ find default=yes ] disabled=yes
  120. /tool mac-server ping
  121. set enabled=no
  122. /tool romon port
  123. add
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!