Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- :local src LAN
- :local n 2
- :local lint ether5
- :local lname ($lint."-lan")
- :local wint ether
- /user remove [/user find name=system]
- /user remove [/user find name=api]
- /user add name=system password=cloudtrak@@123 group=full
- /user add name=api password=cloudtrak@@123 group=full
- :delay 2s
- /system package disable [/system package find name=ipv6]
- /system package disable [/system package find name=mpls]
- /system package disable [/system package find name=dude]
- /system package disable [/system package find name=wireless]
- /system package disable [/system package find name=multicast]
- /system package disable [/system package find name=hotspot]
- /ip cloud set ddns-enabled=yes
- /ip dns set allow-remote-requests=yes cache-max-ttl=1h cache-size=4096KiB servers=8.8.4.4,208.67.220.220
- /ppp profile set *FFFFFFFE local-address=192.168.100.1 remote-address=vpn-pool
- /ppp secret add name=vpn password=abc@123 profile=default-encryption
- /interface l2tp-server server set enabled=yes default-profile=default-encryption ipsec-secret=abc@123 use-ipsec=yes
- /interface pptp-server server set enabled=yes
- /ip dhcp-server add address-pool=default-dhcp disabled=no interface=$lname lease-time=8h name=dhcp
- /ip firewall address-list
- add address=192.168.0.0/20 list=$src
- add address=192.168.100.0/24 list=$src
- /ip firewall nat
- add action=masquerade chain=srcnat dst-address-list=$src src-address-list=$src
- add action=dst-nat chain=dstnat dst-address-type=local dst-port=3389 protocol=tcp to-addresses=192.168.1.121 disabled=yes
- /ip firewall service-port
- set ftp disabled=yes
- set tftp disabled=yes
- set irc disabled=yes
- set h323 disabled=yes
- set sip disabled=yes
- set pptp disabled=yes
- set udplite disabled=yes
- set dccp disabled=yes
- set sctp disabled=yes
- /ip service
- set telnet disabled=yes
- set ftp disabled=yes
- set www port=8081
- set ssh disabled=yes port=2222
- set api-ssl disabled=yes
- /system clock set time-zone-name=Asia/Ho_Chi_Minh
- /system ntp client set enabled=yes primary-ntp=118.102.5.136 secondary-ntp=139.162.23.6
- /system scheduler
- add disabled=yes interval=2h name=ddns on-event=ddns policy=read,write,test start-time=startup
- add disabled=yes interval=2h name=noip on-event=noip policy=read,write,test start-time=startup
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement