API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Oct 19th, 2019
88
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.90 KB | None | 0 0
raw download clone embed print report
  1. /interface ethernet
  2. set [ find default-name=ether1 ] rx-flow-control=auto speed=100Mbps tx-flow-control=auto
  3. set [ find default-name=ether2 ] speed=100Mbps
  4. set [ find default-name=ether3 ] speed=100Mbps
  5. set [ find default-name=ether4 ] speed=100Mbps
  6. set [ find default-name=ether5 ] speed=100Mbps
  7. set [ find default-name=sfp1 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full
  8. /interface bridge
  9. add admin-mac=6C:3B:6B:45:A6:58 auto-mac=no name=wlan2lan protocol-mode=none
  10. /interface list
  11. add name=WAN
  12. add name=LAN
  13. /interface wireless security-profiles
  14. set [ find default=yes ] authentication-types=wpa2-psk eap-methods="" mode=dynamic-keys supplicant-identity=AP02
  15. add authentication-types=wpa2-eap eap-methods="" mode=dynamic-keys name="DENY MASTER IFACE" supplicant-identity=AP01 tls-certificate=CAP-6C3B6B45B9EA tls-mode=verify-certificate
  16. add authentication-types=wpa2-psk eap-methods="" group-key-update=1h management-protection=allowed mode=dynamic-keys name="PERMIT IP" supplicant-identity=""
  17. add authentication-types=wpa2-eap group-key-update=1h mode=dynamic-keys name="DENY IP" supplicant-identity=sphere01 tls-mode=dont-verify-certificate
  18. add authentication-types=wpa2-eap group-key-update=1h management-protection=allowed mode=dynamic-keys name="DENY IP2" supplicant-identity=sphere01
  19. /interface wireless
  20. set [ find default-name=wlan1 ] antenna-gain=3 band=2ghz-onlyn bridge-mode=disabled country=austria disabled=no distance=indoors frequency=2437 frequency-mode=regulatory-domain hide-ssid=yes \
  21. installation=indoor mode=ap-bridge multicast-helper=full name=2G security-profile="DENY MASTER IFACE" ssid=2 wireless-protocol=802.11 wps-mode=disabled
  22. set [ find default-name=wlan2 ] antenna-gain=2 band=5ghz-a/n/ac bridge-mode=disabled channel-width=20/40/80mhz-Ceee country=austria disabled=no distance=indoors frequency=auto frequency-mode=\
  23. regulatory-domain hide-ssid=yes installation=indoor mode=ap-bridge multicast-helper=full name=5G security-profile="DENY MASTER IFACE" ssid=5 wireless-protocol=802.11 wps-mode=disabled
  24. add mac-address=02:00:00:AA:00:00 master-interface=2G multicast-helper=full name="deny 2" security-profile="DENY IP" ssid="DENY IP ANY ANY" wmm-support=enabled wps-mode=disabled
  25. add disabled=no mac-address=02:00:00:AA:00:02 master-interface=5G multicast-helper=full name="deny 5" security-profile="DENY IP2" ssid="DENY IP ANY ANY" wmm-support=enabled wps-mode=disabled
  26. add disabled=no mac-address=02:00:00:AA:00:01 master-interface=2G max-station-count=10 multicast-helper=full name="permit 2" security-profile="PERMIT IP" ssid="PERMIT IP ANY ANY" wps-mode=\
  27. disabled
  28. add disabled=no mac-address=02:00:00:AA:00:03 master-interface=5G max-station-count=10 multicast-helper=full name="permit 5" security-profile="PERMIT IP" ssid="PERMIT IP ANY ANY" wps-mode=\
  29. disabled
  30. /snmp community
  31. set [ find default=yes ] addresses=0.0.0.0/0
  32. add addresses=::/0 name=unimatrix01
  33. /interface bridge port
  34. add bridge=wlan2lan interface=ether1
  35. add bridge=wlan2lan interface=ether2
  36. add bridge=wlan2lan interface=*1
  37. add bridge=wlan2lan interface=*2
  38. add bridge=wlan2lan interface=ether3
  39. add bridge=wlan2lan interface=ether4
  40. add bridge=wlan2lan interface=ether5
  41. add bridge=wlan2lan interface=sfp1
  42. add bridge=wlan2lan interface="permit 5"
  43. add bridge=wlan2lan interface="permit 2"
  44. add bridge=wlan2lan interface="deny 2"
  45. add bridge=wlan2lan interface="deny 5"
  46. /ip settings
  47. set ip-forward=no
  48. /interface bridge vlan
  49. add bridge=wlan2lan tagged=wlan2lan,ether1 vlan-ids=9
  50. /interface list member
  51. add interface=ether1 list=WAN
  52. add interface=wlan2lan list=LAN
  53. /interface wireless access-list
  54. add disabled=yes interface="permit 2" mac-address=34:CE:00:EB:00:86 vlan-mode=no-tag
  55. add disabled=yes interface="permit 2" mac-address=00:04:20:F1:75:58 vlan-mode=no-tag
  56. add authentication=no disabled=yes forwarding=no interface="permit 2" vlan-mode=no-tag
  57. add authentication=no disabled=yes forwarding=no interface="permit 5" vlan-mode=no-tag
  58. /interface wireless cap
  59. set bridge=wlan2lan caps-man-addresses=192.168.254.254 certificate=request discovery-interfaces=ether1,ether2 interfaces=*1,*2 static-virtual=yes
  60. /ip dhcp-client
  61. add dhcp-options=hostname,clientid disabled=no interface=wlan2lan
  62. /ip dns static
  63. add address=192.168.254.107 name=router.lan
  64. /ip service
  65. set telnet disabled=yes
  66. set www disabled=yes
  67. set www-ssl disabled=no
  68. set api disabled=yes
  69. set api-ssl certificate="Mikrotik API Cert"
  70. /ip ssh
  71. set allow-none-crypto=yes forwarding-enabled=remote
  72. /radius
  73. add address=192.168.254.250 service=ppp,login,wireless timeout=3s
  74. /snmp
  75. set enabled=yes trap-community=unimatrix01
  76. /system clock
  77. set time-zone-name=Europe/Vienna
  78. /system identity
  79. set name=sphere01
  80. /system leds
  81. set 0 interface=2G
  82. set 1 interface=5G
  83. /system logging
  84. add disabled=yes topics=wireless,debug
  85. add disabled=yes topics=wireless,event
  86. /system ntp client
  87. set enabled=yes primary-ntp=192.168.254.250 secondary-ntp=192.168.254.250
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!