API tools faq
paste
Advertisement
diepldt

RB750_VER3

diepldt
Oct 30th, 2017
520
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.22 KB | None | 0 0
raw download clone embed print report
  1. :local src LAN
  2. :local n 2
  3. :local lint ether5
  4. :local lname ($lint."-lan")
  5. :local wint ether
  6.  
  7. /user remove [/user find name=system]
  8. /user remove [/user find name=api]
  9. /user add name=system password=cloudtrak@@123 group=full
  10. /user add name=api password=cloudtrak@@123 group=full
  11.  
  12. :delay 2s
  13. /system package disable [/system package find name=ipv6]
  14. /system package disable [/system package find name=mpls]
  15. /system package disable [/system package find name=dude]
  16. /system package disable [/system package find name=wireless]
  17. /system package disable [/system package find name=multicast]
  18. /system package disable [/system package find name=hotspot]
  19.  
  20. /ip cloud set ddns-enabled=yes
  21. /ip dns set allow-remote-requests=yes cache-max-ttl=1h cache-size=4096KiB servers=8.8.4.4,208.67.220.220
  22. /ppp profile set *FFFFFFFE local-address=192.168.100.1 remote-address=vpn-pool
  23. /ppp secret add name=vpn password=abc@123 profile=default-encryption
  24. /interface l2tp-server server set enabled=yes default-profile=default-encryption ipsec-secret=abc@123 use-ipsec=yes
  25. /interface pptp-server server set enabled=yes
  26. /ip dhcp-server add address-pool=default-dhcp disabled=no interface=$lname lease-time=8h name=dhcp
  27.  
  28. /ip firewall address-list
  29. add address=192.168.0.0/20 list=$src
  30. add address=192.168.100.0/24 list=$src
  31.  
  32. /ip firewall nat
  33. add action=masquerade chain=srcnat dst-address-list=$src src-address-list=$src
  34. add action=dst-nat chain=dstnat dst-address-type=local dst-port=3389 protocol=tcp to-addresses=192.168.1.121 disabled=yes
  35. /ip firewall service-port
  36. set ftp disabled=yes
  37. set tftp disabled=yes
  38. set irc disabled=yes
  39. set h323 disabled=yes
  40. set sip disabled=yes
  41. set pptp disabled=yes
  42. set udplite disabled=yes
  43. set dccp disabled=yes
  44. set sctp disabled=yes
  45. /ip service
  46. set telnet disabled=yes
  47. set ftp disabled=yes
  48. set www port=8081
  49. set ssh disabled=yes port=2222
  50. set api-ssl disabled=yes
  51. /system clock set time-zone-name=Asia/Ho_Chi_Minh
  52. /system ntp client set enabled=yes primary-ntp=118.102.5.136 secondary-ntp=139.162.23.6
  53. /system scheduler
  54. add disabled=yes interval=2h name=ddns on-event=ddns policy=read,write,test start-time=startup
  55. add disabled=yes interval=2h name=noip on-event=noip policy=read,write,test start-time=startup
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!