Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # may/31/1970 10:32:00 by RouterOS 6.46.7
- # software id = 2ADG-KRF5
- #
- # model = RB2011UiAS-2HnD
- # serial number = BE450B96DB3F
- /interface bridge
- add admin-mac=C4:AD:34:B8:B2:E5 auto-mac=no comment=defconf disabled=yes name=\
- bridge
- add name="bridge jones"
- /interface ethernet
- set [ find default-name=ether2 ] comment=EOLO name=eth2
- set [ find default-name=ether3 ] comment=FASTWEB name=eth3
- set [ find default-name=ether4 ] comment="Aggregate Bridge Jones" name=eth4
- /interface bonding
- add disabled=yes name=bonding1 slaves=eth2,eth3
- /interface list
- add comment=defconf name=WAN
- add comment=defconf name=LAN
- /interface wireless security-profiles
- set [ find default=yes ] authentication-types=wpa2-psk eap-methods="" \
- supplicant-identity=MikroTik
- add authentication-types=wpa2-psk eap-methods="" group-ciphers=tkip \
- management-protection=allowed mode=dynamic-keys name=Feolo \
- supplicant-identity="" unicast-ciphers=tkip
- /interface wireless
- set [ find default-name=wlan1 ] band=2ghz-b/g/n basic-rates-a/g=\
- 6Mbps,9Mbps,12Mbps,18Mbps,24Mbps,36Mbps,48Mbps,54Mbps basic-rates-b=\
- 1Mbps,2Mbps,5.5Mbps,11Mbps channel-width=20/40mhz-Ce country=\
- "etsi 2.4 5.5-5.7" disabled=no distance=indoors frequency=2457 \
- frequency-mode=superchannel installation=indoor mode=ap-bridge \
- security-profile=Feolo ssid=FeolO station-roaming=enabled \
- wireless-protocol=802.11
- /ip pool
- add name=default-dhcp ranges=192.168.88.10-192.168.88.254
- add name=dhcp_pool1 ranges=192.168.4.2-192.168.4.254
- /ip dhcp-server
- add address-pool=default-dhcp interface=bridge name=defconf
- add address-pool=dhcp_pool1 disabled=no interface="bridge jones" lease-time=0s \
- name=dhcp1
- /user group
- set full policy="local,telnet,ssh,ftp,reboot,read,write,policy,test,winbox,passw\
- ord,web,sniff,sensitive,api,romon,dude,tikapp"
- /interface bridge port
- add bridge="bridge jones" comment=defconf interface=eth4 pvid=5
- add bridge="bridge jones" comment=defconf interface=ether5 pvid=5
- add bridge="bridge jones" comment=defconf interface=ether6
- add bridge="bridge jones" comment=defconf interface=ether7
- add bridge="bridge jones" comment=defconf interface=ether8
- add bridge="bridge jones" comment=defconf interface=ether9
- add bridge="bridge jones" comment=defconf interface=wlan1
- /ip neighbor discovery-settings
- set discover-interface-list=LAN
- /interface bridge vlan
- add bridge=bridge comment="tutte le eth " untagged=\
- ether5,ether6,ether7,ether8,ether9,ether10,wlan1 vlan-ids=5
- add bridge=bridge comment="rete interna" disabled=yes untagged=eth4 vlan-ids=4
- /interface list member
- add comment=defconf interface=bridge list=LAN
- add comment=defconf interface=ether1 list=WAN
- /interface wireless access-list
- add comment="mi9 se" interface=wlan1 mac-address=60:AB:67:FA:A3:90
- /ip address
- add address=192.168.88.1/24 comment=defconf disabled=yes interface=bridge \
- network=192.168.88.0
- add address=192.168.4.1/24 interface=eth4 network=192.168.4.0
- add address=192.168.1.222/24 interface=eth3 network=192.168.1.0
- add address=192.168.178.222/24 interface=eth2 network=192.168.178.0
- add address=192.168.4.123/24 interface=wlan1 network=192.168.4.0
- add address=192.168.88.2/24 disabled=yes interface=ether5 network=192.168.88.0
- add address=192.168.4.2/24 disabled=yes interface=ether5 network=192.168.4.0
- /ip arp
- add address=192.168.4.23 disabled=yes interface=wlan1
- /ip dhcp-client
- add comment=defconf disabled=no interface=ether1
- /ip dhcp-relay
- add dhcp-server=192.168.4.1 disabled=no interface=wlan1 name=relay1
- /ip dhcp-server network
- add address=192.168.4.0/24 dns-server=8.8.8.8 gateway=192.168.4.1
- /ip dns
- set allow-remote-requests=yes servers=192.168.1.74
- /ip dns static
- add address=192.168.88.1 comment=defconf name=router.lan
- /ip firewall mangle
- add action=mark-connection chain=input in-interface=eth3 new-connection-mark=\
- WAN1_conn passthrough=yes
- add action=mark-connection chain=input in-interface=eth2 new-connection-mark=\
- WAN2_conn
- add action=mark-routing chain=output connection-mark=WAN1_conn \
- new-routing-mark=to_WAN1
- add action=mark-routing chain=output connection-mark=WAN2_conn \
- new-routing-mark=to_WAN2
- add action=accept chain=prerouting dst-address=192.168.1.0/24 in-interface=\
- "bridge jones"
- add action=accept chain=prerouting dst-address=192.168.178.0/24 in-interface=\
- "bridge jones"
- add action=mark-connection chain=prerouting dst-address-type=!local \
- in-interface="bridge jones" new-connection-mark=WAN1_conn passthrough=yes \
- per-connection-classifier=both-addresses-and-ports:2/0
- add action=mark-connection chain=prerouting dst-address-type=!local \
- in-interface="bridge jones" new-connection-mark=WAN2_conn passthrough=yes \
- per-connection-classifier=both-addresses-and-ports:2/1
- add action=mark-routing chain=prerouting connection-mark=WAN1_conn \
- in-interface="bridge jones" new-routing-mark=to_WAN1 passthrough=yes
- add action=mark-routing chain=prerouting connection-mark=WAN2_conn \
- in-interface="bridge jones" new-routing-mark=to_WAN2 passthrough=yes
- add action=accept chain=prerouting disabled=yes dst-address=192.168.1.0/24 \
- in-interface=wlan1
- add action=accept chain=prerouting disabled=yes dst-address=192.168.178.0/24 \
- in-interface=wlan1
- add action=mark-connection chain=prerouting disabled=yes dst-address-type=\
- !local in-interface=wlan1 new-connection-mark=WAN1_conn passthrough=yes \
- per-connection-classifier=both-addresses-and-ports:2/0
- add action=mark-connection chain=prerouting disabled=yes dst-address-type=\
- !local in-interface=wlan1 new-connection-mark=WAN2_conn passthrough=yes \
- per-connection-classifier=both-addresses-and-ports:2/1
- add action=mark-routing chain=prerouting connection-mark=WAN1_conn disabled=yes \
- in-interface=wlan1 new-routing-mark=to_WAN1 passthrough=yes
- add action=mark-routing chain=prerouting connection-mark=WAN2_conn disabled=yes \
- in-interface=wlan1 new-routing-mark=to_WAN2 passthrough=yes
- /ip firewall nat
- add action=masquerade chain=srcnat comment="defconf: masquerade" ipsec-policy=\
- out,none out-interface-list=WAN
- add action=masquerade chain=srcnat out-interface=eth3
- add action=masquerade chain=srcnat out-interface=eth2
- add action=dst-nat chain=dstnat disabled=yes dst-address=192.168.1.222 \
- dst-address-list="" dst-port=1234 protocol=tcp src-address-list="" \
- src-port="" to-addresses=192.168.4.3 to-ports=1234
- add action=dst-nat chain=dstnat comment="rep PC fisso" disabled=yes dst-port=\
- 3389 in-interface=ether1 protocol=tcp to-addresses=192.168.4.2 to-ports=\
- 3389
- add action=dst-nat chain=dstnat disabled=yes dst-address=93.51.54.105 dst-port=\
- 22753 protocol=tcp src-address-list="" to-addresses=192.168.4.22 to-ports=\
- 22753
- add action=dst-nat chain=dstnat disabled=yes dst-address=88.149.251.13 \
- dst-port=22753 in-interface="bridge jones" protocol=tcp to-addresses=\
- 192.168.178.222 to-ports=22753
- add action=dst-nat chain=dstnat comment="porta discord out " dst-address=\
- 192.168.1.1 dst-port=31753 in-interface=eth3 protocol=tcp to-addresses=\
- 192.168.4.22 to-ports=31753
- add action=dst-nat chain=dstnat comment="porta discord out " dst-address=\
- 192.168.178.1 dst-port=31753 in-interface=eth2 protocol=tcp to-addresses=\
- 192.168.4.22 to-ports=31753
- add action=dst-nat chain=dstnat comment="udp nas debian" dst-address=\
- 192.168.1.1 dst-port=22936 in-interface="bridge jones" protocol=udp \
- src-port=22936 to-addresses=192.168.4.88 to-ports=22936
- add action=dst-nat chain=dstnat dst-address=192.168.178.1 dst-port=22936 \
- in-interface="bridge jones" protocol=udp src-port=22936 to-addresses=\
- 192.168.4.88 to-ports=22936
- /ip route
- add check-gateway=ping distance=1 gateway=192.168.1.1 routing-mark=to_WAN1
- add check-gateway=ping distance=2 gateway=192.168.178.1 routing-mark=to_WAN2
- /lcd interface pages
- set 0 interfaces=wlan1
- /tool mac-server
- set allowed-interface-list=LAN
- /tool mac-server mac-winbox
- set allowed-interface-list=LAN
- /tool sniffer
- set filter-interface=eth2
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement