API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Dec 3rd, 2019
222
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 6.07 KB | None | 0 0
raw download clone embed print report
  1. firewall {
  2. all-ping enable
  3. broadcast-ping disable
  4. ipv6-receive-redirects disable
  5. ipv6-src-route disable
  6. ip-src-route disable
  7. log-martians enable
  8. receive-redirects disable
  9. send-redirects enable
  10. source-validation disable
  11. syn-cookies enable
  12. }
  13. interfaces {
  14. ethernet eth0 {
  15. description FTTH
  16. duplex auto
  17. mtu 1512
  18. speed auto
  19. vif 4 {
  20. address dhcp
  21. description IPTV
  22. dhcp-options {
  23. client-option "send vendor-class-identifier "IPTV_RG";"
  24. client-option "request subnet-mask, routers, rfc3442-classless-static-routes;"
  25. default-route no-update
  26. default-route-distance 210
  27. name-server update
  28. }
  29. mtu 1500
  30. }
  31. vif 6 {
  32. description "eth0.6 - Internet"
  33. mtu 1508
  34. pppoe 0 {
  35. default-route auto
  36. idle-timeout 180
  37. mtu 1500
  38. name-server auto
  39. password kpn
  40. user-id kpn
  41. }
  42. }
  43. }
  44. ethernet eth1 {
  45. address 192.168.2.1/24
  46. duplex auto
  47. speed auto
  48. }
  49. ethernet eth2 {
  50. address 192.168.3.1/24
  51. duplex auto
  52. speed auto
  53. }
  54. ethernet eth3 {
  55. duplex auto
  56. speed auto
  57. }
  58. loopback lo {
  59. }
  60. }
  61. port-forward {
  62. auto-firewall enable
  63. hairpin-nat enable
  64. lan-interface eth2
  65. rule 1 {
  66. description "5901 VNC"
  67. forward-to {
  68. address 192.168.3.101
  69. port 5901
  70. }
  71. original-port 5901
  72. protocol tcp_udp
  73. }
  74. rule 2 {
  75. description "5905 VNC"
  76. forward-to {
  77. address 192.168.3.105
  78. port 5905
  79. }
  80. original-port 5905
  81. protocol tcp_udp
  82. }
  83. rule 3 {
  84. description "5906 VNC"
  85. forward-to {
  86. address 192.168.3.106
  87. port 5906
  88. }
  89. original-port 5906
  90. protocol tcp_udp
  91. }
  92. rule 4 {
  93. description "5903 VNC"
  94. forward-to {
  95. address 192.168.3.103
  96. port 5903
  97. }
  98. original-port 5903
  99. protocol tcp_udp
  100. }
  101. rule 5 {
  102. description "DSM FTP"
  103. forward-to {
  104. address 192.168.3.114
  105. port 5910
  106. }
  107. original-port 5910
  108. protocol tcp_udp
  109. }
  110. wan-interface pppoe0
  111. }
  112. protocols {
  113. igmp-proxy {
  114. interface eth0.4 {
  115. alt-subnet 0.0.0.0/0
  116. role upstream
  117. threshold 1
  118. }
  119. interface eth1 {
  120. alt-subnet 0.0.0.0/0
  121. role downstream
  122. threshold 1
  123. }
  124. interface eth2 {
  125. role disabled
  126. threshold 1
  127. }
  128. }
  129. static {
  130. interface-route6 ::/0 {
  131. next-hop-interface pppoe0 {
  132. }
  133. }
  134. }
  135. }
  136. service {
  137. dhcp-server {
  138. disabled false
  139. hostfile-update disable
  140. shared-network-name LAN2 {
  141. authoritative disable
  142. subnet 192.168.2.0/24 {
  143. default-router 192.168.2.1
  144. dns-server 208.67.222.222
  145. dns-server 1.1.1.1
  146. lease 86400
  147. start 192.168.2.2 {
  148. stop 192.168.2.250
  149. }
  150. }
  151. }
  152. shared-network-name LAN3 {
  153. authoritative disable
  154. subnet 192.168.3.0/24 {
  155. default-router 192.168.3.1
  156. dns-server 208.67.222.222
  157. dns-server 1.1.1.1
  158. lease 86400
  159. start 192.168.3.2 {
  160. stop 192.168.3.250
  161. }
  162. static-mapping AP {
  163. ip-address 192.168.3.21
  164. mac-address 78:8a:20:80:23:d7
  165. }
  166. }
  167. }
  168. static-arp disable
  169. use-dnsmasq disable
  170. }
  171. gui {
  172. http-port 80
  173. https-port 443
  174. older-ciphers enable
  175. }
  176. nat {
  177. rule 5000 {
  178. description IPTV
  179. destination {
  180. address 213.75.112.0/21
  181. }
  182. log disable
  183. outbound-interface eth0.4
  184. protocol all
  185. type masquerade
  186. }
  187. rule 5010 {
  188. description Internet
  189. log disable
  190. outbound-interface pppoe0
  191. protocol all
  192. source {
  193. address 192.168.2.0/24
  194. }
  195. type masquerade
  196. }
  197. rule 5011 {
  198. description Internet
  199. log disable
  200. outbound-interface pppoe0
  201. protocol all
  202. source {
  203. address 192.168.3.1/24
  204. }
  205. type masquerade
  206. }
  207. }
  208. ssh {
  209. port 22
  210. protocol-version v2
  211. }
  212. }
  213. system {
  214. host-name ubnt
  215. login {
  216. user ubnt {
  217. authentication {
  218. encrypted-password $1$zKNoUbAo$gomzUbYvgyUMcD436Wo66.
  219. }
  220. level admin
  221. }
  222. }
  223. name-server 8.8.8.8
  224. name-server 1.1.1.1
  225. ntp {
  226. server 0.ubnt.pool.ntp.org {
  227. }
  228. server 1.ubnt.pool.ntp.org {
  229. }
  230. server 2.ubnt.pool.ntp.org {
  231. }
  232. server 3.ubnt.pool.ntp.org {
  233. }
  234. }
  235. syslog {
  236. global {
  237. facility all {
  238. level notice
  239. }
  240. facility protocols {
  241. level debug
  242. }
  243. }
  244. }
  245. time-zone UTC
  246. }
  247.  
  248.  
  249. /* Warning: Do not remove the following line. */
  250. /* === vyatta-config-version: "config-management@1:conntrack@1:cron@1:dhcp-relay@1:dhcp-server@4:firewall@5:ipsec@5:nat@3:qos@1:quagga@2:suspend@1:system@4:ubnt-pptp@1:ubnt-udapi-server@1:ubnt-unms@1:ubnt-util@1:vrrp@1:webgui@1:webproxy@1:zone-policy@1" === */
  251. /* Release version: v1.10.10.5210357.190714.1229 */
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!