Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- firewall {
- all-ping enable
- broadcast-ping disable
- ipv6-receive-redirects disable
- ipv6-src-route disable
- ip-src-route disable
- log-martians enable
- name WAN_IN {
- default-action drop
- description "packets from Internet to LAN & WLAN"
- enable-default-log
- rule 1 {
- action accept
- description "allow established sessions"
- log disable
- protocol all
- state {
- established enable
- invalid disable
- new disable
- related enable
- }
- }
- rule 2 {
- action drop
- description "drop invalid state"
- log disable
- protocol all
- state {
- established disable
- invalid enable
- new disable
- related disable
- }
- }
- }
- name WAN_LOCAL {
- default-action drop
- description "packets from Internet to the router"
- enable-default-log
- rule 1 {
- action accept
- description "allow established session to the router"
- log disable
- protocol all
- state {
- established enable
- invalid disable
- new disable
- related enable
- }
- }
- rule 2 {
- action drop
- description "drop invalid state"
- log enable
- protocol all
- state {
- established disable
- invalid enable
- new disable
- related disable
- }
- }
- }
- receive-redirects disable
- send-redirects enable
- source-validation disable
- syn-cookies enable
- }
- interfaces {
- bridge br0 {
- address 192.168.33.1/24
- aging 300
- hello-time 2
- max-age 20
- priority 0
- promiscuous disable
- stp false
- }
- ethernet eth0 {
- address dhcp
- description WAN
- duplex auto
- firewall {
- in {
- name WAN_IN
- }
- local {
- name WAN_LOCAL
- }
- }
- speed auto
- }
- ethernet eth1 {
- bridge-group {
- bridge br0
- }
- description LAN
- duplex auto
- speed auto
- }
- ethernet eth2 {
- bridge-group {
- bridge br0
- }
- description URC
- duplex auto
- speed auto
- }
- ethernet eth3 {
- bridge-group {
- bridge br0
- }
- description LAN3
- duplex auto
- speed auto
- }
- ethernet eth4 {
- bridge-group {
- bridge br0
- }
- description LAN4
- duplex auto
- speed auto
- }
- ethernet eth5 {
- bridge-group {
- bridge br0
- }
- description LAN5
- duplex auto
- speed auto
- }
- ethernet eth6 {
- bridge-group {
- bridge br0
- }
- description LAN6
- duplex auto
- speed auto
- }
- ethernet eth7 {
- bridge-group {
- bridge br0
- }
- description LAN7
- duplex auto
- speed auto
- }
- loopback lo {
- }
- }
- port-forward {
- auto-firewall enable
- hairpin-nat disable
- lan-interface br0
- rule 1 {
- description httpd-test
- forward-to {
- address 192.168.33.20
- port 80
- }
- original-port 80
- protocol tcp_udp
- }
- wan-interface eth0
- }
- service {
- dhcp-server {
- disabled false
- hostfile-update disable
- shared-network-name DHCP {
- authoritative disable
- subnet 192.168.33.0/24 {
- default-router 192.168.33.1
- dns-server 192.168.33.1
- dns-server 8.8.8.8
- lease 86400
- start 192.168.33.110 {
- stop 192.168.33.165
- }
- }
- }
- }
- dns {
- dynamic {
- interface eth0 {
- service dyndns {
- host-name tabak.selfip.com
- login cisohio
- password ***************
- }
- }
- }
- forwarding {
- cache-size 150
- listen-on br0
- listen-on eth0
- }
- }
- gui {
- https-port 443
- }
- nat {
- rule 5000 {
- description "masquerade for WAN"
- log disable
- outbound-interface eth0
- protocol all
- type masquerade
- }
- }
- ssh {
- port 22
- protocol-version v2
- }
- }
- system {
- host-name Ambrosia
- login {
- user ubnt {
- authentication {
- encrypted-password $1$zKNoUbAo$gomzUbYvgyUMcD436Wo66.
- }
- level admin
- }
- }
- ntp {
- server 0.ubnt.pool.ntp.org {
- }
- server 1.ubnt.pool.ntp.org {
- }
- server 2.ubnt.pool.ntp.org {
- }
- server 3.ubnt.pool.ntp.org {
- }
- }
- syslog {
- global {
- facility all {
- level notice
- }
- facility protocols {
- level debug
- }
- }
- }
- time-zone America/New_York
- }
- /* Warning: Do not remove the following line. */
- /* === vyatta-config-version: "config-management@1:conntrack@1:dhcp-relay@1:dhcp-server@4:firewall@5:ipsec@3:nat@3:qos@1:quagga@2:system@4:ubnt-pptp@1:ubnt-util@1:vrrp@1:webgui@1:webproxy@1:zone-policy@1" === */
- /* Release version: v1.4.1.4648311.140310.1616 */
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement