Skip to content

Instantly share code, notes, and snippets.

@aurimasniekis

aurimasniekis/vyos_config.sh Secret

Created Dec 22, 2020
Embed
What would you like to do?
set firewall all-ping 'enable'
set firewall broadcast-ping 'disable'
set firewall config-trap 'disable'
set firewall ipv6-receive-redirects 'enable'
set firewall ipv6-src-route 'disable'
set firewall ip-src-route 'disable'
set firewall log-martians 'enable'
set firewall name NET-IN default-action 'drop'
set firewall name NET-IN rule 10 action 'accept'
set firewall name NET-IN rule 10 state established 'enable'
set firewall name NET-IN rule 10 state related 'enable'
set firewall name NET-LOCAL default-action 'drop'
set firewall name NET-LOCAL rule 10 action 'accept'
set firewall name NET-LOCAL rule 10 state established 'enable'
set firewall name NET-LOCAL rule 10 state related 'enable'
set firewall name NET-LOCAL rule 20 action 'accept'
set firewall name NET-LOCAL rule 20 icmp type-name 'echo-request'
set firewall name NET-LOCAL rule 20 protocol 'icmp'
set firewall name NET-LOCAL rule 20 state new 'enable'
set firewall options interface pppoe0 adjust-mss '1414'
set firewall options interface pppoe0 adjust-mss6 '1414'
set firewall receive-redirects 'disable'
set firewall send-redirects 'enable'
set firewall source-validation 'disable'
set firewall syn-cookies 'enable'
set firewall twa-hazards-protection 'disable'
set interfaces bridge br0 address '192.168.0.1/24'
set interfaces bridge br0 ipv6 address autoconf
set interfaces bridge br0 ipv6 disable-forwarding
set interfaces bridge br0 ipv6 dup-addr-detect-transmits '1'
set interfaces bridge br0 member interface eth0
set interfaces bridge br0 member interface eth1
set interfaces bridge br0 member interface eth2
set interfaces bridge br0 policy
set interfaces ethernet eth0 description 'INSIDE 1G'
set interfaces ethernet eth0 hw-id '98:90:96:9b:00:58'
set interfaces ethernet eth1 description 'INSIDE 10G'
set interfaces ethernet eth1 hw-id '9c:69:b4:61:c9:c2'
set interfaces ethernet eth2 description 'OUTSIDE 10G'
set interfaces ethernet eth2 hw-id '9c:69:b4:61:c9:c3'
set interfaces loopback lo
set interfaces pppoe pppoe0 authentication password 'as3kuser3s'
set interfaces pppoe pppoe0 authentication user 'f.qu7a-nks@atson.net'
set interfaces pppoe pppoe0 default-route 'auto'
set interfaces pppoe pppoe0 firewall in name 'NET-IN'
set interfaces pppoe pppoe0 firewall local name 'NET-LOCAL'
set interfaces pppoe pppoe0 mtu '1454'
set interfaces pppoe pppoe0 source-interface 'br0'
set nat source rule 100 outbound-interface 'pppoe0'
set nat source rule 100 source address '192.168.0.0/24'
set nat source rule 100 translation address 'masquerade'
set policy
set protocols static
set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 default-router '192.168.0.1'
set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 dns-server '192.168.0.1'
set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 domain-name 'aurimas-home.local'
set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 lease '86400'
set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 range 0 start '192.168.0.50'
set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 range 0 stop '192.168.0.254'
set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 static-mapping R7800 ip-address '192.168.0.2'
set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 static-mapping R7800 mac-address '38:94:ed:d2:5a:18'
set service dns forwarding allow-from '192.168.0.0/24'
set service dns forwarding cache-size '0'
set service dns forwarding listen-address '192.168.0.1'
set service dns forwarding name-server '1.1.1.1'
set service dns forwarding name-server '8.8.8.8'
set service ssh port '22'
set system config-management commit-revisions '100'
set system console device ttyS0 speed '115200'
set system host-name 'vyos'
set system login user vyos authentication encrypted-password '$6$wwy4ZOdWuB$K5uaioA9SSJo4uIHRai8njnmgR4nAi5lcWnu0zxPgAivWkBQM7jdnpi2nZusibhjp8Wnu0YqblHMlQOYqwN1X0'
set system login user vyos authentication plaintext-password ''
set system ntp server 0.pool.ntp.org
set system ntp server 1.pool.ntp.org
set system ntp server 2.pool.ntp.org
set system ntp server pool.ntp.org
set system syslog global facility all level 'info'
set system syslog global facility protocols level 'debug'
set system time-zone 'Asia/Tokyo'
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment