Advertisement
Guest User

Untitled

a guest
Mar 4th, 2019
140
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 3.57 KB | None | 0 0
  1. /interface bridge
  2. add admin-mac= auto-mac=no comment=defconf name=bridge
  3. /interface wireless
  4. set [ find default-name=wlan1 ] band=2ghz-b/g/n channel-width=20/40mhz-Ce \
  5. disabled=no distance=indoors frequency=auto mode=ap-bridge ssid= \
  6. wireless-protocol=802.11
  7. /interface ethernet
  8. set [ find default-name=ether2 ] name=ether2-master
  9. set [ find default-name=ether3 ] master-port=ether2-master
  10. set [ find default-name=ether4 ] master-port=ether2-master
  11. /interface pppoe-client
  12. add add-default-route=yes disabled=no interface=ether1 name=pppoe-out1 \
  13. password= use-peer-dns=yes user=
  14. /ip neighbor discovery
  15. set ether1 discover=no
  16. set bridge comment=defconf
  17. /interface wireless security-profiles
  18. set [ find default=yes ] authentication-types=wpa-psk,wpa2-psk mode=\
  19. dynamic-keys wpa2-pre-shared-key=
  20. /ip pool
  21. add name=dhcp ranges=192.168.1.151-192.168.1.190
  22. /ip dhcp-server
  23. add address-pool=dhcp disabled=no interface=bridge name=defconf
  24. /interface bridge port
  25. add bridge=bridge comment=defconf interface=ether2-master
  26. add bridge=bridge comment=defconf interface=wlan1
  27. /ip address
  28. add address=192.168.1.3/24 comment=defconf interface=ether2-master network=\
  29. 192.168.1.0
  30. /ip dhcp-client
  31. add comment=defconf dhcp-options=hostname,clientid interface=ether1
  32. /ip dhcp-server lease
  33. add address=192.168.1.33 client-id=1:0:23:63:55:74:1f mac-address=\
  34. server=defconf
  35. add address=192.168.1.154 client-id=1:28:c2:dd:f4:1b:fc mac-address=\
  36. server=defconf
  37. add address=192.168.1.157 client-id=1:b0:c0:90:6c:f5:f4 mac-address=\
  38. server=defconf
  39. add address=192.168.1.156 client-id=1:48:bf:6b:4b:b6:14 mac-address=\
  40. server=defconf
  41. add address=192.168.1.159 client-id=1:68:a3:c4:f5:54:da mac-address=\
  42. server=defconf
  43. add address=192.168.1.151 client-id=1:48:27:ea:ca:e:24 mac-address=\
  44. server=defconf
  45. add address=192.168.1.160 mac-address= server=defconf
  46. /ip dhcp-server network
  47. add address=192.168.1.0/24 comment=defconf gateway=192.168.1.3 netmask=24
  48. /ip dns static
  49. add address=192.168.1.3 name=router
  50. /ip firewall address-list
  51. add address=192.168.1.150 list=Black
  52. add address=192.168.1.151 list=Black
  53. add address=192.168.1.156 list=Black
  54. add address=192.168.1.159 list=Black
  55. add address=192.168.1.157 list=Black
  56. add address=192.168.1.160 list=Black
  57. /ip firewall filter
  58. add action=drop chain=forward src-address-list=Black
  59. add chain=input dst-port=8291 in-interface=pppoe-out1 protocol=tcp \
  60. src-address=x.x.x.x
  61. add action=drop chain=input dst-port=53 in-interface=pppoe-out1 protocol=udp
  62. add action=fasttrack-connection chain=forward comment="defconf: fasttrack" \
  63. connection-state=established,related
  64. add chain=forward comment="defconf: accept established,related" \
  65. connection-state=established,related
  66. add action=drop chain=forward comment="defconf: drop invalid" \
  67. connection-state=invalid
  68. add action=drop chain=forward comment=\
  69. "defconf: drop all from WAN not DSTNATed" connection-nat-state=!dstnat \
  70. connection-state=new in-interface=pppoe-out1
  71. add chain=input protocol=icmp
  72. add chain=input connection-state=established
  73. add chain=input connection-state=related
  74. add action=drop chain=input in-interface=pppoe-out1
  75. /ip firewall nat
  76. add action=masquerade chain=srcnat comment="defconf: masquerade" \
  77. out-interface=pppoe-out1
  78. /system clock
  79. set time-zone-name=Asia
  80. /system routerboard settings
  81. set cpu-frequency=650MHz protected-routerboot=disabled
  82. /tool mac-server
  83. set [ find default=yes ] disabled=yes
  84. add interface=bridge
  85. /tool mac-server mac-winbox
  86. set [ find default=yes ] disabled=yes
  87. add interface=bridge
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement