API tools faq
paste
Advertisement
Guest User

winbox

a guest
Jan 22nd, 2021
141
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 8.00 KB | None | 0 0
raw download clone embed print report
  1. # may/31/1970 10:32:00 by RouterOS 6.46.7
  2. # software id = 2ADG-KRF5
  3. #
  4. # model = RB2011UiAS-2HnD
  5. # serial number = BE450B96DB3F
  6. /interface bridge
  7. add admin-mac=C4:AD:34:B8:B2:E5 auto-mac=no comment=defconf disabled=yes name=\
  8. bridge
  9. add name="bridge jones"
  10. /interface ethernet
  11. set [ find default-name=ether2 ] comment=EOLO name=eth2
  12. set [ find default-name=ether3 ] comment=FASTWEB name=eth3
  13. set [ find default-name=ether4 ] comment="Aggregate Bridge Jones" name=eth4
  14. /interface bonding
  15. add disabled=yes name=bonding1 slaves=eth2,eth3
  16. /interface list
  17. add comment=defconf name=WAN
  18. add comment=defconf name=LAN
  19. /interface wireless security-profiles
  20. set [ find default=yes ] authentication-types=wpa2-psk eap-methods="" \
  21. supplicant-identity=MikroTik
  22. add authentication-types=wpa2-psk eap-methods="" group-ciphers=tkip \
  23. management-protection=allowed mode=dynamic-keys name=Feolo \
  24. supplicant-identity="" unicast-ciphers=tkip
  25. /interface wireless
  26. set [ find default-name=wlan1 ] band=2ghz-b/g/n basic-rates-a/g=\
  27. 6Mbps,9Mbps,12Mbps,18Mbps,24Mbps,36Mbps,48Mbps,54Mbps basic-rates-b=\
  28. 1Mbps,2Mbps,5.5Mbps,11Mbps channel-width=20/40mhz-Ce country=\
  29. "etsi 2.4 5.5-5.7" disabled=no distance=indoors frequency=2457 \
  30. frequency-mode=superchannel installation=indoor mode=ap-bridge \
  31. security-profile=Feolo ssid=FeolO station-roaming=enabled \
  32. wireless-protocol=802.11
  33. /ip pool
  34. add name=default-dhcp ranges=192.168.88.10-192.168.88.254
  35. add name=dhcp_pool1 ranges=192.168.4.2-192.168.4.254
  36. /ip dhcp-server
  37. add address-pool=default-dhcp interface=bridge name=defconf
  38. add address-pool=dhcp_pool1 disabled=no interface="bridge jones" lease-time=0s \
  39. name=dhcp1
  40. /user group
  41. set full policy="local,telnet,ssh,ftp,reboot,read,write,policy,test,winbox,passw\
  42. ord,web,sniff,sensitive,api,romon,dude,tikapp"
  43. /interface bridge port
  44. add bridge="bridge jones" comment=defconf interface=eth4 pvid=5
  45. add bridge="bridge jones" comment=defconf interface=ether5 pvid=5
  46. add bridge="bridge jones" comment=defconf interface=ether6
  47. add bridge="bridge jones" comment=defconf interface=ether7
  48. add bridge="bridge jones" comment=defconf interface=ether8
  49. add bridge="bridge jones" comment=defconf interface=ether9
  50. add bridge="bridge jones" comment=defconf interface=wlan1
  51. /ip neighbor discovery-settings
  52. set discover-interface-list=LAN
  53. /interface bridge vlan
  54. add bridge=bridge comment="tutte le eth " untagged=\
  55. ether5,ether6,ether7,ether8,ether9,ether10,wlan1 vlan-ids=5
  56. add bridge=bridge comment="rete interna" disabled=yes untagged=eth4 vlan-ids=4
  57. /interface list member
  58. add comment=defconf interface=bridge list=LAN
  59. add comment=defconf interface=ether1 list=WAN
  60. /interface wireless access-list
  61. add comment="mi9 se" interface=wlan1 mac-address=60:AB:67:FA:A3:90
  62. /ip address
  63. add address=192.168.88.1/24 comment=defconf disabled=yes interface=bridge \
  64. network=192.168.88.0
  65. add address=192.168.4.1/24 interface=eth4 network=192.168.4.0
  66. add address=192.168.1.222/24 interface=eth3 network=192.168.1.0
  67. add address=192.168.178.222/24 interface=eth2 network=192.168.178.0
  68. add address=192.168.4.123/24 interface=wlan1 network=192.168.4.0
  69. add address=192.168.88.2/24 disabled=yes interface=ether5 network=192.168.88.0
  70. add address=192.168.4.2/24 disabled=yes interface=ether5 network=192.168.4.0
  71. /ip arp
  72. add address=192.168.4.23 disabled=yes interface=wlan1
  73. /ip dhcp-client
  74. add comment=defconf disabled=no interface=ether1
  75. /ip dhcp-relay
  76. add dhcp-server=192.168.4.1 disabled=no interface=wlan1 name=relay1
  77. /ip dhcp-server network
  78. add address=192.168.4.0/24 dns-server=8.8.8.8 gateway=192.168.4.1
  79. /ip dns
  80. set allow-remote-requests=yes servers=192.168.1.74
  81. /ip dns static
  82. add address=192.168.88.1 comment=defconf name=router.lan
  83. /ip firewall mangle
  84. add action=mark-connection chain=input in-interface=eth3 new-connection-mark=\
  85. WAN1_conn passthrough=yes
  86. add action=mark-connection chain=input in-interface=eth2 new-connection-mark=\
  87. WAN2_conn
  88. add action=mark-routing chain=output connection-mark=WAN1_conn \
  89. new-routing-mark=to_WAN1
  90. add action=mark-routing chain=output connection-mark=WAN2_conn \
  91. new-routing-mark=to_WAN2
  92. add action=accept chain=prerouting dst-address=192.168.1.0/24 in-interface=\
  93. "bridge jones"
  94. add action=accept chain=prerouting dst-address=192.168.178.0/24 in-interface=\
  95. "bridge jones"
  96. add action=mark-connection chain=prerouting dst-address-type=!local \
  97. in-interface="bridge jones" new-connection-mark=WAN1_conn passthrough=yes \
  98. per-connection-classifier=both-addresses-and-ports:2/0
  99. add action=mark-connection chain=prerouting dst-address-type=!local \
  100. in-interface="bridge jones" new-connection-mark=WAN2_conn passthrough=yes \
  101. per-connection-classifier=both-addresses-and-ports:2/1
  102. add action=mark-routing chain=prerouting connection-mark=WAN1_conn \
  103. in-interface="bridge jones" new-routing-mark=to_WAN1 passthrough=yes
  104. add action=mark-routing chain=prerouting connection-mark=WAN2_conn \
  105. in-interface="bridge jones" new-routing-mark=to_WAN2 passthrough=yes
  106. add action=accept chain=prerouting disabled=yes dst-address=192.168.1.0/24 \
  107. in-interface=wlan1
  108. add action=accept chain=prerouting disabled=yes dst-address=192.168.178.0/24 \
  109. in-interface=wlan1
  110. add action=mark-connection chain=prerouting disabled=yes dst-address-type=\
  111. !local in-interface=wlan1 new-connection-mark=WAN1_conn passthrough=yes \
  112. per-connection-classifier=both-addresses-and-ports:2/0
  113. add action=mark-connection chain=prerouting disabled=yes dst-address-type=\
  114. !local in-interface=wlan1 new-connection-mark=WAN2_conn passthrough=yes \
  115. per-connection-classifier=both-addresses-and-ports:2/1
  116. add action=mark-routing chain=prerouting connection-mark=WAN1_conn disabled=yes \
  117. in-interface=wlan1 new-routing-mark=to_WAN1 passthrough=yes
  118. add action=mark-routing chain=prerouting connection-mark=WAN2_conn disabled=yes \
  119. in-interface=wlan1 new-routing-mark=to_WAN2 passthrough=yes
  120. /ip firewall nat
  121. add action=masquerade chain=srcnat comment="defconf: masquerade" ipsec-policy=\
  122. out,none out-interface-list=WAN
  123. add action=masquerade chain=srcnat out-interface=eth3
  124. add action=masquerade chain=srcnat out-interface=eth2
  125. add action=dst-nat chain=dstnat disabled=yes dst-address=192.168.1.222 \
  126. dst-address-list="" dst-port=1234 protocol=tcp src-address-list="" \
  127. src-port="" to-addresses=192.168.4.3 to-ports=1234
  128. add action=dst-nat chain=dstnat comment="rep PC fisso" disabled=yes dst-port=\
  129. 3389 in-interface=ether1 protocol=tcp to-addresses=192.168.4.2 to-ports=\
  130. 3389
  131. add action=dst-nat chain=dstnat disabled=yes dst-address=93.51.54.105 dst-port=\
  132. 22753 protocol=tcp src-address-list="" to-addresses=192.168.4.22 to-ports=\
  133. 22753
  134. add action=dst-nat chain=dstnat disabled=yes dst-address=88.149.251.13 \
  135. dst-port=22753 in-interface="bridge jones" protocol=tcp to-addresses=\
  136. 192.168.178.222 to-ports=22753
  137. add action=dst-nat chain=dstnat comment="porta discord out " dst-address=\
  138. 192.168.1.1 dst-port=31753 in-interface=eth3 protocol=tcp to-addresses=\
  139. 192.168.4.22 to-ports=31753
  140. add action=dst-nat chain=dstnat comment="porta discord out " dst-address=\
  141. 192.168.178.1 dst-port=31753 in-interface=eth2 protocol=tcp to-addresses=\
  142. 192.168.4.22 to-ports=31753
  143. add action=dst-nat chain=dstnat comment="udp nas debian" dst-address=\
  144. 192.168.1.1 dst-port=22936 in-interface="bridge jones" protocol=udp \
  145. src-port=22936 to-addresses=192.168.4.88 to-ports=22936
  146. add action=dst-nat chain=dstnat dst-address=192.168.178.1 dst-port=22936 \
  147. in-interface="bridge jones" protocol=udp src-port=22936 to-addresses=\
  148. 192.168.4.88 to-ports=22936
  149. /ip route
  150. add check-gateway=ping distance=1 gateway=192.168.1.1 routing-mark=to_WAN1
  151. add check-gateway=ping distance=2 gateway=192.168.178.1 routing-mark=to_WAN2
  152. /lcd interface pages
  153. set 0 interfaces=wlan1
  154. /tool mac-server
  155. set allowed-interface-list=LAN
  156. /tool mac-server mac-winbox
  157. set allowed-interface-list=LAN
  158. /tool sniffer
  159. set filter-interface=eth2
  160.  
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!