Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- BusyBox v1.30.1 () built-in shell (ash)
- _______ ________ __
- | |.-----.-----.-----.| | | |.----.| |_
- | - || _ | -__| || | | || _|| _|
- |_______|| __|_____|__|__||________||__| |____|
- |__| W I R E L E S S F R E E D O M
- -----------------------------------------------------
- OpenWrt 19.07.4, r11208-ce6496d796
- -----------------------------------------------------
- root@OCTOPUS:~# ubus call system board; \
- > uci export network; uci export wireless; \
- > uci export dhcp; uci export firewall; \
- > head -n -0 /etc/firewall.user; \
- > iptables-save -c; \
- > ip -4 addr ; ip -4 ro li tab all ; ip -4 ru
- {
- "kernel": "4.14.195",
- "hostname": "OCTOPUS",
- "system": "Qualcomm Atheros QCA956X ver 1 rev 0",
- "model": "GL-AR750S",
- "board_name": "gl-ar750s",
- "release": {
- "distribution": "OpenWrt",
- "version": "19.07.4",
- "revision": "r11208-ce6496d796",
- "target": "ar71xx/generic",
- "description": "OpenWrt 19.07.4 r11208-ce6496d796"
- }
- }
- package network
- config interface 'loopback'
- option ifname 'lo'
- option proto 'static'
- option ipaddr '127.0.0.1'
- option netmask '255.0.0.0'
- config globals 'globals'
- option ula_prefix 'fdcf:b5c9:9ca3::/48'
- config interface 'lan'
- option type 'bridge'
- option ifname 'eth0.1'
- option proto 'static'
- option netmask '255.255.255.0'
- option ip6assign '60'
- option ipaddr '192.168.100.2'
- config interface 'wan'
- option ifname 'eth0.2'
- option proto 'dhcp'
- config interface 'wan6'
- option ifname 'eth0.2'
- option proto 'dhcpv6'
- config switch
- option name 'switch0'
- option reset '1'
- option enable_vlan '1'
- config switch_vlan
- option device 'switch0'
- option vlan '1'
- option ports '2 3 0t'
- config switch_vlan
- option device 'switch0'
- option vlan '2'
- option ports '1 0t'
- config interface 'wwan'
- option proto 'static'
- option ipaddr '192.168.1.15'
- option netmask '255.255.255.0'
- config route
- option target '192.168.1.0/24'
- option gateway '192.168.1.1'
- option netmask '255.255.255.0'
- option interface 'lan'
- package wireless
- config wifi-device 'radio0'
- option type 'mac80211'
- option hwmode '11a'
- option path 'pci0000:00/0000:00:00.0'
- option htmode 'VHT80'
- option country 'US'
- option channel 'auto'
- config wifi-device 'radio1'
- option type 'mac80211'
- option hwmode '11g'
- option path 'platform/qca956x_wmac'
- option htmode 'HT20'
- option country 'US'
- option channel 'auto'
- config wifi-iface 'wifinet2'
- option ssid '1320-Secure'
- option device 'radio0'
- option mode 'sta'
- option key '*********'
- option encryption 'psk2'
- option network 'wwan'
- config wifi-iface 'wifinet1'
- option ssid 'Monaco'
- option encryption 'psk2'
- option device 'radio0'
- option mode 'ap'
- option key '*******'
- option network 'lan'
- config wifi-iface 'wifinet3'
- option ssid 'Monaco'
- option encryption 'psk2'
- option device 'radio1'
- option mode 'ap'
- option network 'lan'
- option key '*******'
- package dhcp
- config dnsmasq
- option domainneeded '1'
- option boguspriv '1'
- option filterwin2k '0'
- option localise_queries '1'
- option rebind_protection '1'
- option rebind_localhost '1'
- option local '/lan/'
- option domain 'lan'
- option expandhosts '1'
- option nonegcache '0'
- option authoritative '1'
- option readethers '1'
- option leasefile '/tmp/dhcp.leases'
- option resolvfile '/tmp/resolv.conf.auto'
- option nonwildcard '1'
- option localservice '1'
- config dhcp 'lan'
- option interface 'lan'
- option ignore '1'
- config dhcp 'wan'
- option interface 'wan'
- option ignore '1'
- config odhcpd 'odhcpd'
- option maindhcp '0'
- option leasefile '/tmp/hosts/odhcpd'
- option leasetrigger '/usr/sbin/odhcpd-update'
- option loglevel '4'
- package firewall
- config defaults
- option input 'ACCEPT'
- option output 'ACCEPT'
- option forward 'ACCEPT'
- option synflood_protect '1'
- config zone
- option name 'lan'
- option input 'ACCEPT'
- option output 'ACCEPT'
- option forward 'ACCEPT'
- option network 'lan wwan'
- config zone
- option name 'wan'
- option input 'REJECT'
- option output 'ACCEPT'
- option forward 'REJECT'
- option masq '1'
- option mtu_fix '1'
- option network 'wan wan6'
- config forwarding
- option src 'lan'
- option dest 'wan'
- config rule
- option name 'Allow-DHCP-Renew'
- option src 'wan'
- option proto 'udp'
- option dest_port '68'
- option target 'ACCEPT'
- option family 'ipv4'
- config rule
- option name 'Allow-Ping'
- option src 'wan'
- option proto 'icmp'
- option icmp_type 'echo-request'
- option family 'ipv4'
- option target 'ACCEPT'
- config rule
- option name 'Allow-IGMP'
- option src 'wan'
- option proto 'igmp'
- option family 'ipv4'
- option target 'ACCEPT'
- config rule
- option name 'Allow-DHCPv6'
- option src 'wan'
- option proto 'udp'
- option src_ip 'fc00::/6'
- option dest_ip 'fc00::/6'
- option dest_port '546'
- option family 'ipv6'
- option target 'ACCEPT'
- config rule
- option name 'Allow-MLD'
- option src 'wan'
- option proto 'icmp'
- option src_ip 'fe80::/10'
- list icmp_type '130/0'
- list icmp_type '131/0'
- list icmp_type '132/0'
- list icmp_type '143/0'
- option family 'ipv6'
- option target 'ACCEPT'
- config rule
- option name 'Allow-ICMPv6-Input'
- option src 'wan'
- option proto 'icmp'
- list icmp_type 'echo-request'
- list icmp_type 'echo-reply'
- list icmp_type 'destination-unreachable'
- list icmp_type 'packet-too-big'
- list icmp_type 'time-exceeded'
- list icmp_type 'bad-header'
- list icmp_type 'unknown-header-type'
- list icmp_type 'router-solicitation'
- list icmp_type 'neighbour-solicitation'
- list icmp_type 'router-advertisement'
- list icmp_type 'neighbour-advertisement'
- option limit '1000/sec'
- option family 'ipv6'
- option target 'ACCEPT'
- config rule
- option name 'Allow-ICMPv6-Forward'
- option src 'wan'
- option dest '*'
- option proto 'icmp'
- list icmp_type 'echo-request'
- list icmp_type 'echo-reply'
- list icmp_type 'destination-unreachable'
- list icmp_type 'packet-too-big'
- list icmp_type 'time-exceeded'
- list icmp_type 'bad-header'
- list icmp_type 'unknown-header-type'
- option limit '1000/sec'
- option family 'ipv6'
- option target 'ACCEPT'
- config rule
- option name 'Allow-IPSec-ESP'
- option src 'wan'
- option dest 'lan'
- option proto 'esp'
- option target 'ACCEPT'
- config rule
- option name 'Allow-ISAKMP'
- option src 'wan'
- option dest 'lan'
- option dest_port '500'
- option proto 'udp'
- option target 'ACCEPT'
- config include
- option path '/etc/firewall.user'
- # This file is interpreted as shell script.
- # Put your custom iptables rules here, they will
- # be executed with each firewall (re-)start.
- # Internal uci firewall chains are flushed and recreated on reload, so
- # put custom rules into the root chains e.g. INPUT or FORWARD or into the
- # special user chains, e.g. input_wan_rule or postrouting_lan_rule.
- # Generated by iptables-save v1.8.3 on Wed Nov 11 11:53:04 2020
- *nat
- :PREROUTING ACCEPT [0:0]
- :INPUT ACCEPT [0:0]
- :OUTPUT ACCEPT [0:0]
- :POSTROUTING ACCEPT [0:0]
- COMMIT
- # Completed on Wed Nov 11 11:53:04 2020
- # Generated by iptables-save v1.8.3 on Wed Nov 11 11:53:04 2020
- *mangle
- :PREROUTING ACCEPT [194998:45714279]
- :INPUT ACCEPT [136565:24595172]
- :FORWARD ACCEPT [210:30665]
- :OUTPUT ACCEPT [96705:3729007]
- :POSTROUTING ACCEPT [96915:3759672]
- COMMIT
- # Completed on Wed Nov 11 11:53:04 2020
- # Generated by iptables-save v1.8.3 on Wed Nov 11 11:53:04 2020
- *filter
- :INPUT ACCEPT [136566:24595212]
- :FORWARD ACCEPT [210:30665]
- :OUTPUT ACCEPT [96707:3729903]
- COMMIT
- # Completed on Wed Nov 11 11:53:04 2020
- 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN qlen 1000
- inet 127.0.0.1/8 scope host lo
- valid_lft forever preferred_lft forever
- 16: br-lan: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP qlen 1000
- inet 192.168.100.2/24 brd 192.168.100.255 scope global br-lan
- valid_lft forever preferred_lft forever
- 19: wlan0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP qlen 1000
- inet 192.168.1.15/24 brd 192.168.1.255 scope global wlan0
- valid_lft forever preferred_lft forever
- 192.168.1.0/24 dev wlan0 scope link src 192.168.1.15
- 192.168.100.0/24 dev br-lan scope link src 192.168.100.2
- broadcast 127.0.0.0 dev lo table local scope link src 127.0.0.1
- local 127.0.0.0/8 dev lo table local scope host src 127.0.0.1
- local 127.0.0.1 dev lo table local scope host src 127.0.0.1
- broadcast 127.255.255.255 dev lo table local scope link src 127.0.0.1
- broadcast 192.168.1.0 dev wlan0 table local scope link src 192.168.1.15
- local 192.168.1.15 dev wlan0 table local scope host src 192.168.1.15
- broadcast 192.168.1.255 dev wlan0 table local scope link src 192.168.1.15
- broadcast 192.168.100.0 dev br-lan table local scope link src 192.168.100.2
- local 192.168.100.2 dev br-lan table local scope host src 192.168.100.2
- broadcast 192.168.100.255 dev br-lan table local scope link src 192.168.100.2
- 0: from all lookup local
- 32766: from all lookup main
- 32767: from all lookup default
- root@OCTOPUS:~#
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement