API tools faq
paste
Guest User

Telia IPTV på Edgerouter X

a guest
Jan 12th, 2018
250
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 5.10 KB | None | 0 0
raw download clone embed print report
  1. set firewall all-ping enable
  2. set firewall broadcast-ping disable
  3. set firewall ipv6-receive-redirects disable
  4. set firewall ipv6-src-route disable
  5. set firewall ip-src-route disable
  6. set firewall log-martians enable
  7. set firewall name WAN_IN default-action drop
  8. set firewall name WAN_IN description 'WAN to internal'
  9. set firewall name WAN_IN rule 10 action accept
  10. set firewall name WAN_IN rule 10 description 'Allow established/related'
  11. set firewall name WAN_IN rule 10 state established enable
  12. set firewall name WAN_IN rule 10 state related enable
  13. set firewall name WAN_IN rule 20 action drop
  14. set firewall name WAN_IN rule 20 description 'Drop invalid state'
  15. set firewall name WAN_IN rule 20 state invalid enable
  16. set firewall name WAN_LOCAL default-action drop
  17. set firewall name WAN_LOCAL description 'WAN to router'
  18. set firewall name WAN_LOCAL rule 10 action accept
  19. set firewall name WAN_LOCAL rule 10 description 'Allow established/related'
  20. set firewall name WAN_LOCAL rule 10 state established enable
  21. set firewall name WAN_LOCAL rule 10 state related enable
  22. set firewall name WAN_LOCAL rule 20 action drop
  23. set firewall name WAN_LOCAL rule 20 description 'Drop invalid state'
  24. set firewall name WAN_LOCAL rule 20 state invalid enable
  25. set firewall receive-redirects disable
  26. set firewall send-redirects enable
  27. set firewall source-validation disable
  28. set firewall syn-cookies enable
  29. set interfaces ethernet eth0 description Internet
  30. set interfaces ethernet eth0 duplex auto
  31. set interfaces ethernet eth0 speed auto
  32. set interfaces ethernet eth1 address 192.168.3.1/24
  33. set interfaces ethernet eth1 description 'MGMNT'
  34. set interfaces ethernet eth1 duplex auto
  35. set interfaces ethernet eth1 speed auto
  36. set interfaces ethernet eth2 description Local
  37. set interfaces ethernet eth2 duplex auto
  38. set interfaces ethernet eth2 speed auto
  39. set interfaces ethernet eth3 description Local
  40. set interfaces ethernet eth3 duplex auto
  41. set interfaces ethernet eth3 speed auto
  42. set interfaces ethernet eth4 description Local
  43. set interfaces ethernet eth4 duplex auto
  44. set interfaces ethernet eth4 speed auto
  45. set interfaces loopback lo
  46. set interfaces switch switch0 description Local
  47. set interfaces switch switch0 mtu 1500
  48. set interfaces switch switch0 switch-port interface eth0 vlan pvid 1
  49. set interfaces switch switch0 switch-port interface eth0 vlan vid 845
  50. set interfaces switch switch0 switch-port interface eth2 vlan pvid 845
  51. set interfaces switch switch0 switch-port interface eth3 vlan pvid 100
  52. set interfaces switch switch0 switch-port interface eth4 vlan pvid 100
  53. set interfaces switch switch0 switch-port vlan-aware enable
  54. set interfaces switch switch0 vif 1 address dhcp
  55. set interfaces switch switch0 vif 1 description Internet
  56. set interfaces switch switch0 vif 1 firewall in name WAN_IN
  57. set interfaces switch switch0 vif 1 firewall local name WAN_LOCAL
  58. set interfaces switch switch0 vif 1 mtu 1500
  59. set interfaces switch switch0 vif 100 address 192.168.1.1/24
  60. set interfaces switch switch0 vif 100 description Local
  61. set interfaces switch switch0 vif 100 mtu 1500
  62. set interfaces switch switch0 vif 845 description IPTV
  63. set interfaces switch switch0 vif 845 mtu 1500
  64. set service dhcp-server disabled false
  65. set service dhcp-server hostfile-update disable
  66. set service dhcp-server shared-network-name LAN1 authoritative enable
  67. set service dhcp-server shared-network-name LAN1 subnet 192.168.3.0/24 default-router 192.168.3.1
  68. set service dhcp-server shared-network-name LAN1 subnet 192.168.3.0/24 dns-server 192.168.3.1
  69. set service dhcp-server shared-network-name LAN1 subnet 192.168.3.0/24 dns-server 8.8.8.8
  70. set service dhcp-server shared-network-name LAN1 subnet 192.168.3.0/24 lease 86400
  71. set service dhcp-server shared-network-name LAN1 subnet 192.168.3.0/24 start 192.168.3.38 stop 192.168.3.243
  72. set service dhcp-server shared-network-name LAN3 authoritative enable
  73. set service dhcp-server shared-network-name LAN3 subnet 192.168.1.0/24 default-router 192.168.1.1
  74. set service dhcp-server shared-network-name LAN3 subnet 192.168.1.0/24 dns-server 192.168.1.1
  75. set service dhcp-server shared-network-name LAN3 subnet 192.168.1.0/24 lease 86400
  76. set service dhcp-server shared-network-name LAN3 subnet 192.168.1.0/24 start 192.168.1.38 stop 192.168.1.243
  77. set service dhcp-server use-dnsmasq disable
  78. set service dns forwarding cache-size 150
  79. set service dns forwarding listen-on eth1
  80. set service dns forwarding listen-on switch0.100
  81. set service gui http-port 80
  82. set service gui https-port 443
  83. set service gui older-ciphers enable
  84. set service nat rule 5010 description 'masquerade for WAN'
  85. set service nat rule 5010 log disable
  86. set service nat rule 5010 outbound-interface switch0.1
  87. set service nat rule 5010 protocol all
  88. set service nat rule 5010 type masquerade
  89. set service ssh port 22
  90. set service ssh protocol-version v2
  91. set system offload hwnat enable
  92. set system ntp server 0.ubnt.pool.ntp.org
  93. set system ntp server 1.ubnt.pool.ntp.org
  94. set system ntp server 2.ubnt.pool.ntp.org
  95. set system ntp server 3.ubnt.pool.ntp.org
  96. set system syslog global facility all level notice
  97. set system syslog global facility protocols level debug
  98. set system time-zone UTC
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!