# aug/11/2021 12:34:25 by RouterOS 6.48.3# software id = 2LDJ-4UUN## model

1. # aug/11/2021 12:34:25 by RouterOS 6.48.3
2. # software id = 2LDJ-4UUN
3. #
4. # model = RBD52G-5HacD2HnD
5. # serial number = D7160C551437
6. /interface bridge
7. add admin-mac=48:8F:5A:75:E1:4B auto-mac=no comment=defconf name=bridge
8. /interface pppoe-client
9. add add-default-route=yes disabled=no interface=ether1 name=pppoe-out1 \
10. service-name=domru use-peer-dns=yes user=v2540165
11. /interface wireless
12. set [ find default-name=wlan1 ] band=2ghz-b/g/n channel-width=20/40mhz-XX \
13. disabled=no distance=indoors frequency=auto installation=indoor mode=\
14. ap-bridge ssid=MikroTik-75E14F wireless-protocol=802.11
15. set [ find default-name=wlan2 ] band=5ghz-a/n/ac channel-width=\
16. 20/40/80mhz-XXXX disabled=no distance=indoors frequency=auto \
17. installation=indoor mode=ap-bridge ssid=MikroTik wireless-protocol=802.11
18. /interface list
19. add comment=defconf name=WAN
20. add comment=defconf name=LAN
21. /interface wireless security-profiles
22. set [ find default=yes ] authentication-types=wpa2-psk mode=dynamic-keys \
23. supplicant-identity=MikroTik
24. /ip hotspot profile
25. set [ find default=yes ] html-directory=hotspot
26. /ip pool
27. add name=dhcp ranges=192.168.88.10-192.168.88.254
28. /ip dhcp-server
29. add address-pool=dhcp disabled=no interface=bridge name=defconf
30. /interface bridge port
31. add bridge=bridge comment=defconf interface=ether2
32. add bridge=bridge comment=defconf interface=ether3
33. add bridge=bridge comment=defconf interface=ether4
34. add bridge=bridge comment=defconf interface=ether5
35. add bridge=bridge comment=defconf interface=wlan1
36. add bridge=bridge comment=defconf interface=wlan2
37. /ip neighbor discovery-settings
38. set discover-interface-list=LAN
39. /interface list member
40. add comment=defconf interface=bridge list=LAN
41. add comment=defconf interface=ether1 list=WAN
42. add interface=pppoe-out1 list=WAN
43. /ip address
44. add address=192.168.88.1/24 comment=defconf interface=bridge network=\
45. 192.168.88.0
46. /ip dhcp-client
47. add comment=defconf interface=ether1
48. /ip dhcp-server network
49. add address=192.168.88.0/24 comment=defconf gateway=192.168.88.1
50. /ip dns
51. set allow-remote-requests=yes
52. /ip dns static
53. add address=192.168.88.1 comment=defconf name=router.lan
54. /ip firewall filter
55. add action=accept chain=input comment=\
56. "defconf: accept established,related,untracked" connection-state=\
57. established,related,untracked
58. add action=drop chain=input comment="defconf: drop invalid" connection-state=\
59. invalid
60. add action=accept chain=input comment="defconf: accept ICMP" protocol=icmp
61. add action=accept chain=input comment=\
62. "defconf: accept to local loopback (for CAPsMAN)" dst-address=127.0.0.1
63. add action=drop chain=input comment="defconf: drop all not coming from LAN" \
64. in-interface-list=!LAN
65. add action=accept chain=forward comment="defconf: accept in ipsec policy" \
66. ipsec-policy=in,ipsec
67. add action=accept chain=forward comment="defconf: accept out ipsec policy" \
68. ipsec-policy=out,ipsec
69. add action=fasttrack-connection chain=forward comment="defconf: fasttrack" \
70. connection-state=established,related
71. add action=accept chain=forward comment=\
72. "defconf: accept established,related, untracked" connection-state=\
73. established,related,untracked
74. add action=drop chain=forward comment="defconf: drop invalid" \
75. connection-state=invalid
76. add action=drop chain=forward comment=\
77. "defconf: drop all from WAN not DSTNATed" connection-nat-state=!dstnat \
78. connection-state=new in-interface-list=WAN
79. /ip firewall nat
80. add action=masquerade chain=srcnat comment="defconf: masquerade" \
81. ipsec-policy=out,none out-interface-list=WAN
82. /system clock
83. set time-zone-name=Europe/Moscow
84. /tool mac-server
85. set allowed-interface-list=LAN
86. /tool mac-server mac-winbox
87. set allowed-interface-list=LAN
88.