-
-
Save aurimasniekis/a938af387f70d1dfb87a2786f98d8805 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| set firewall all-ping 'enable' | |
| set firewall broadcast-ping 'disable' | |
| set firewall config-trap 'disable' | |
| set firewall ipv6-receive-redirects 'enable' | |
| set firewall ipv6-src-route 'disable' | |
| set firewall ip-src-route 'disable' | |
| set firewall log-martians 'enable' | |
| set firewall name NET-IN default-action 'drop' | |
| set firewall name NET-IN rule 10 action 'accept' | |
| set firewall name NET-IN rule 10 state established 'enable' | |
| set firewall name NET-IN rule 10 state related 'enable' | |
| set firewall name NET-LOCAL default-action 'drop' | |
| set firewall name NET-LOCAL rule 10 action 'accept' | |
| set firewall name NET-LOCAL rule 10 state established 'enable' | |
| set firewall name NET-LOCAL rule 10 state related 'enable' | |
| set firewall name NET-LOCAL rule 20 action 'accept' | |
| set firewall name NET-LOCAL rule 20 icmp type-name 'echo-request' | |
| set firewall name NET-LOCAL rule 20 protocol 'icmp' | |
| set firewall name NET-LOCAL rule 20 state new 'enable' | |
| set firewall options interface pppoe0 adjust-mss '1414' | |
| set firewall options interface pppoe0 adjust-mss6 '1414' | |
| set firewall receive-redirects 'disable' | |
| set firewall send-redirects 'enable' | |
| set firewall source-validation 'disable' | |
| set firewall syn-cookies 'enable' | |
| set firewall twa-hazards-protection 'disable' | |
| set interfaces bridge br0 address '192.168.0.1/24' | |
| set interfaces bridge br0 ipv6 address autoconf | |
| set interfaces bridge br0 ipv6 disable-forwarding | |
| set interfaces bridge br0 ipv6 dup-addr-detect-transmits '1' | |
| set interfaces bridge br0 member interface eth0 | |
| set interfaces bridge br0 member interface eth1 | |
| set interfaces bridge br0 member interface eth2 | |
| set interfaces bridge br0 policy | |
| set interfaces ethernet eth0 description 'INSIDE 1G' | |
| set interfaces ethernet eth0 hw-id '98:90:96:9b:00:58' | |
| set interfaces ethernet eth1 description 'INSIDE 10G' | |
| set interfaces ethernet eth1 hw-id '9c:69:b4:61:c9:c2' | |
| set interfaces ethernet eth2 description 'OUTSIDE 10G' | |
| set interfaces ethernet eth2 hw-id '9c:69:b4:61:c9:c3' | |
| set interfaces loopback lo | |
| set interfaces pppoe pppoe0 authentication password 'as3kuser3s' | |
| set interfaces pppoe pppoe0 authentication user 'f.qu7a-nks@atson.net' | |
| set interfaces pppoe pppoe0 default-route 'auto' | |
| set interfaces pppoe pppoe0 firewall in name 'NET-IN' | |
| set interfaces pppoe pppoe0 firewall local name 'NET-LOCAL' | |
| set interfaces pppoe pppoe0 mtu '1454' | |
| set interfaces pppoe pppoe0 source-interface 'br0' | |
| set nat source rule 100 outbound-interface 'pppoe0' | |
| set nat source rule 100 source address '192.168.0.0/24' | |
| set nat source rule 100 translation address 'masquerade' | |
| set policy | |
| set protocols static | |
| set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 default-router '192.168.0.1' | |
| set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 dns-server '192.168.0.1' | |
| set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 domain-name 'aurimas-home.local' | |
| set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 lease '86400' | |
| set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 range 0 start '192.168.0.50' | |
| set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 range 0 stop '192.168.0.254' | |
| set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 static-mapping R7800 ip-address '192.168.0.2' | |
| set service dhcp-server shared-network-name LAN subnet 192.168.0.0/24 static-mapping R7800 mac-address '38:94:ed:d2:5a:18' | |
| set service dns forwarding allow-from '192.168.0.0/24' | |
| set service dns forwarding cache-size '0' | |
| set service dns forwarding listen-address '192.168.0.1' | |
| set service dns forwarding name-server '1.1.1.1' | |
| set service dns forwarding name-server '8.8.8.8' | |
| set service ssh port '22' | |
| set system config-management commit-revisions '100' | |
| set system console device ttyS0 speed '115200' | |
| set system host-name 'vyos' | |
| set system login user vyos authentication encrypted-password '$6$wwy4ZOdWuB$K5uaioA9SSJo4uIHRai8njnmgR4nAi5lcWnu0zxPgAivWkBQM7jdnpi2nZusibhjp8Wnu0YqblHMlQOYqwN1X0' | |
| set system login user vyos authentication plaintext-password '' | |
| set system ntp server 0.pool.ntp.org | |
| set system ntp server 1.pool.ntp.org | |
| set system ntp server 2.pool.ntp.org | |
| set system ntp server pool.ntp.org | |
| set system syslog global facility all level 'info' | |
| set system syslog global facility protocols level 'debug' | |
| set system time-zone 'Asia/Tokyo' |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment