Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # jul/18/2015 16:08:55 by RouterOS 6.30
- # software id = 2XNH-LS38
- #
- /interface bridge
- add name=LAN
- /interface ethernet
- set [ find default-name=ether1 ] name=ether1-WAN
- set [ find default-name=ether2 ] name=ether2-PC1
- set [ find default-name=ether3 ] master-port=ether2-PC1 name=ether3-Atlas
- set [ find default-name=ether4 ] master-port=ether2-PC1 name=ether4-PC2
- set [ find default-name=ether5 ] master-port=ether2-PC1
- set [ find default-name=ether7 ] master-port=ether6
- set [ find default-name=ether8 ] master-port=ether6
- set [ find default-name=ether9 ] master-port=ether6
- set [ find default-name=ether10 ] master-port=ether6
- /interface wireless
- set [ find default-name=wlan1 ] adaptive-noise-immunity=ap-and-client-mode antenna-gain=4 band=2ghz-b/g/n country=\
- "czech republic" disabled=no distance=indoors frequency-mode=regulatory-domain l2mtu=1600 mode=ap-bridge \
- preamble-mode=short radio-name=TSW ssid=UZSI tx-power=7 tx-power-mode=all-rates-fixed wireless-protocol=802.11 \
- wmm-support=enabled
- /interface wireless security-profiles
- set [ find default=yes ] authentication-types=wpa2-psk eap-methods="" mode=\
- dynamic-keys supplicant-identity=MikroTik
- /ip pool
- add name=LAN ranges=192.168.0.2-192.168.0.254
- /ip dhcp-server
- add add-arp=yes address-pool=LAN authoritative=yes disabled=no interface=LAN \
- lease-time=1w name=LAN
- /system logging action
- add email-to=1010@outlook.cz name=email target=email
- /interface bridge port
- add bridge=LAN interface=ether6
- add bridge=LAN interface=wlan1
- add bridge=LAN interface=ether2-PC1
- /ip settings
- set rp-filter=strict
- /ip address
- add address=192.168.0.1/24 interface=LAN network=192.168.0.0
- /ip dhcp-client
- add default-route-distance=0 dhcp-options=hostname,clientid disabled=no \
- interface=ether1-WAN use-peer-dns=no use-peer-ntp=no
- /ip dhcp-server config
- set store-leases-disk=never
- /ip dhcp-server network
- add address=192.168.0.0/24 dns-server=192.168.0.1 domain=home.hetmer.local \
- gateway=192.168.0.1 netmask=24 ntp-server=194.228.192.236,195.113.144.238
- /ip dns
- set allow-remote-requests=yes cache-size=8192KiB servers=8.8.8.8,8.8.4.4
- /ip firewall filter
- add chain=input comment="Accept Established / Related Input" \
- connection-state=established,related
- add chain=input comment="Allow Management Input - 192.168.0.254" src-address=\
- 192.168.0.254
- add chain=input comment="DNS Forwarder UDP" dst-port=53 protocol=udp \
- src-address=192.168.0.0/24
- add chain=input comment="DNS Forwarder TCP" dst-port=53 protocol=tcp \
- src-address=192.168.0.0/24
- add action=reject chain=input comment="Drop Input" log-prefix="Input Drop" \
- reject-with=icmp-admin-prohibited
- add action=fasttrack-connection chain=forward comment=\
- "FastTrack Established / Related Forward" connection-state=\
- established,related
- add chain=forward comment="Accept Established / Related Forward" \
- connection-state=established,related
- add chain=forward comment="Allow forward traffic LAN >> WAN" out-interface=\
- ether1-WAN src-address=192.168.0.0/24
- add action=reject chain=forward comment="Drop Forward" reject-with=\
- icmp-admin-prohibited
- /ip firewall nat
- add action=masquerade chain=srcnat out-interface=ether1-WAN
- /ip service
- set telnet disabled=yes
- set ftp disabled=yes
- set www disabled=yes
- set www-ssl certificate=cert_3 disabled=no
- set api disabled=yes
- set api-ssl disabled=yes
- /ip ssh
- set strong-crypto=yes
- /lcd
- set backlight-timeout=5m
- /lcd pin
- set hide-pin-number=yes pin-number=xxx
- /lcd interface
- set sfp1 disabled=yes
- set ether5 disabled=yes
- set ether6 disabled=yes
- set ether7 disabled=yes
- set ether8 disabled=yes
- set ether9 disabled=yes
- set ether10 disabled=yes
- /system clock
- set time-zone-name=Europe/Prague
- /system identity
- set name=Janostikova_Hetmer
- /system logging
- add action=email topics=warning
- add action=email topics=critical
- add action=email topics=error
- /system ntp client
- set enabled=yes primary-ntp=194.228.192.236 secondary-ntp=195.113.144.238
- /system routerboard settings
- set boot-delay=5s
- /tool bandwidth-server
- set enabled=no
- /tool e-mail
- set address=90.182.248.2 from=rb2011@mt.hetmer.net
- /tool graphing interface
- add interface=ether1-WAN store-on-disk=no
- add interface=ether2-PC1 store-on-disk=no
- add interface=ether3-Atlas store-on-disk=no
- add interface=ether4-PC2 store-on-disk=no
- add interface=wlan1 store-on-disk=no
- /tool graphing resource
- add store-on-disk=no
- /tool mac-server
- set [ find default=yes ] disabled=yes
- /tool mac-server mac-winbox
- set [ find default=yes ] disabled=yes
- /tool mac-server ping
- set enabled=no
- /tool romon port
- add
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement