ioquatix/gist:ad60402d99cc5bf9b1fb0f8b4ffc142f

## gistfile1.txt
# dec/12/2016 16:45:48 by RouterOS 6.37.3
# software id = RE4F-WKP7
#
/interface ethernet
set [ find default-name=ether2 ] name=ether2-master
set [ find default-name=ether3 ] master-port=ether2-master
set [ find default-name=ether4 ] master-port=ether2-master
set [ find default-name=ether5 ] master-port=ether2-master
/ip neighbor discovery
set ether1 discover=no
/interface vlan
add interface=ether1 loop-protect-disable-time=0s loop-protect-send-interval=0s name=vlan10 \
    vlan-id=10
/interface pppoe-client
add add-default-route=yes allow=pap disabled=no interface=vlan10 max-mru=1480 max-mtu=1480 \
    mrru=1500 name=pppoe-snap password=password123 use-peer-dns=yes user=user@snap.co.nz
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip hotspot profile
set [ find default=yes ] html-directory=flash/hotspot
/ip pool
add name=dhcp ranges=192.168.1.20-192.168.1.254
/ip dhcp-server
add address-pool=dhcp disabled=no interface=ether2-master name=defconf
/ip address
add address=192.168.1.2/24 comment=defconf interface=ether2-master network=192.168.1.0
/ip dhcp-client
add comment=defconf dhcp-options=hostname,clientid interface=ether1
/ip dhcp-server network
add address=192.168.1.0/24 comment=defconf gateway=192.168.1.2 netmask=24
/ip dns
set allow-remote-requests=yes
/ip dns static
add address=192.168.1.2 name=router
add address=192.168.1.70 name=mc.oriontransfer.co.nz
add address=192.168.1.70 name=backup.oriontransfer.co.nz
/ip firewall filter
add action=fasttrack-connection chain=forward comment="defconf: fasttrack" connection-state=\
    established,related
add action=accept chain=forward comment="defconf: accept established,related" \
    connection-state=established,related
add action=drop chain=forward comment="defconf: drop invalid" connection-state=invalid
add action=drop chain=forward comment="defconf:  drop all from WAN not DSTNATed" \
    connection-nat-state=!dstnat connection-state=new in-interface=pppoe-snap
add action=accept chain=input protocol=icmp
add action=accept chain=input connection-state=established
add action=accept chain=input connection-state=related
add action=drop chain=input in-interface=pppoe-snap
/ip firewall nat
add action=masquerade chain=srcnat comment="defconf: masquerade" out-interface=pppoe-snap
add action=dst-nat chain=dstnat comment="Basic services: Web/SSH, etc." dst-port=22,80 \
    in-interface=pppoe-snap protocol=tcp to-addresses=192.168.1.70
add action=dst-nat chain=dstnat comment="Minecraft Server" dst-port=25565 in-interface=\
    pppoe-snap protocol=tcp to-addresses=192.168.1.70 to-ports=25565
/ip upnp
set enabled=yes
/ip upnp interfaces
add interface=pppoe-snap type=external
add interface=ether2-master type=internal
/ipv6 address
add eui-64=yes from-pool=upstream-ipv6 interface=ether2-master
/ipv6 dhcp-client
add add-default-route=yes interface=pppoe-snap pool-name=upstream-ipv6 request=prefix
/ipv6 firewall filter
add action=accept chain=forward connection-state=established in-interface=pppoe-snap
add action=accept chain=forward connection-state=related in-interface=pppoe-snap
add action=accept chain=forward in-interface=pppoe-snap protocol=icmpv6
add action=accept chain=forward dst-port=22,80 in-interface=pppoe-snap protocol=tcp
add action=accept chain=forward dst-port=25565 in-interface=pppoe-snap protocol=tcp
add action=accept chain=forward dst-port=25565 in-interface=pppoe-snap protocol=udp
add action=drop chain=forward in-interface=pppoe-snap
add action=accept chain=input connection-state=established in-interface=pppoe-snap
add action=accept chain=input connection-state=related in-interface=pppoe-snap
add action=accept chain=input in-interface=pppoe-snap protocol=icmpv6
add action=accept chain=input dst-port=546 in-interface=pppoe-snap protocol=udp
add action=drop chain=input in-interface=pppoe-snap
/system clock
set time-zone-name=Pacific/Auckland
/system identity
set name=MikroTikKitchen
/system routerboard settings
set memory-frequency=1200DDR protected-routerboot=disabled
/tool mac-server
set [ find default=yes ] disabled=yes
add interface=ether2-master
/tool mac-server mac-winbox
set [ find default=yes ] disabled=yes
add interface=ether2-master
	# dec/12/2016 16:45:48 by RouterOS 6.37.3
	# software id = RE4F-WKP7
	#
	/interface ethernet
	set [ find default-name=ether2 ] name=ether2-master
	set [ find default-name=ether3 ] master-port=ether2-master
	set [ find default-name=ether4 ] master-port=ether2-master
	set [ find default-name=ether5 ] master-port=ether2-master
	/ip neighbor discovery
	set ether1 discover=no
	/interface vlan
	add interface=ether1 loop-protect-disable-time=0s loop-protect-send-interval=0s name=vlan10 \
	vlan-id=10
	/interface pppoe-client
	add add-default-route=yes allow=pap disabled=no interface=vlan10 max-mru=1480 max-mtu=1480 \
	mrru=1500 name=pppoe-snap password=password123 use-peer-dns=yes user=user@snap.co.nz
	/interface wireless security-profiles
	set [ find default=yes ] supplicant-identity=MikroTik
	/ip hotspot profile
	set [ find default=yes ] html-directory=flash/hotspot
	/ip pool
	add name=dhcp ranges=192.168.1.20-192.168.1.254
	/ip dhcp-server
	add address-pool=dhcp disabled=no interface=ether2-master name=defconf
	/ip address
	add address=192.168.1.2/24 comment=defconf interface=ether2-master network=192.168.1.0
	/ip dhcp-client
	add comment=defconf dhcp-options=hostname,clientid interface=ether1
	/ip dhcp-server network
	add address=192.168.1.0/24 comment=defconf gateway=192.168.1.2 netmask=24
	/ip dns
	set allow-remote-requests=yes
	/ip dns static
	add address=192.168.1.2 name=router
	add address=192.168.1.70 name=mc.oriontransfer.co.nz
	add address=192.168.1.70 name=backup.oriontransfer.co.nz
	/ip firewall filter
	add action=fasttrack-connection chain=forward comment="defconf: fasttrack" connection-state=\
	established,related
	add action=accept chain=forward comment="defconf: accept established,related" \
	connection-state=established,related
	add action=drop chain=forward comment="defconf: drop invalid" connection-state=invalid
	add action=drop chain=forward comment="defconf: drop all from WAN not DSTNATed" \
	connection-nat-state=!dstnat connection-state=new in-interface=pppoe-snap
	add action=accept chain=input protocol=icmp
	add action=accept chain=input connection-state=established
	add action=accept chain=input connection-state=related
	add action=drop chain=input in-interface=pppoe-snap
	/ip firewall nat
	add action=masquerade chain=srcnat comment="defconf: masquerade" out-interface=pppoe-snap
	add action=dst-nat chain=dstnat comment="Basic services: Web/SSH, etc." dst-port=22,80 \
	in-interface=pppoe-snap protocol=tcp to-addresses=192.168.1.70
	add action=dst-nat chain=dstnat comment="Minecraft Server" dst-port=25565 in-interface=\
	pppoe-snap protocol=tcp to-addresses=192.168.1.70 to-ports=25565
	/ip upnp
	set enabled=yes
	/ip upnp interfaces
	add interface=pppoe-snap type=external
	add interface=ether2-master type=internal
	/ipv6 address
	add eui-64=yes from-pool=upstream-ipv6 interface=ether2-master
	/ipv6 dhcp-client
	add add-default-route=yes interface=pppoe-snap pool-name=upstream-ipv6 request=prefix
	/ipv6 firewall filter
	add action=accept chain=forward connection-state=established in-interface=pppoe-snap
	add action=accept chain=forward connection-state=related in-interface=pppoe-snap
	add action=accept chain=forward in-interface=pppoe-snap protocol=icmpv6
	add action=accept chain=forward dst-port=22,80 in-interface=pppoe-snap protocol=tcp
	add action=accept chain=forward dst-port=25565 in-interface=pppoe-snap protocol=tcp
	add action=accept chain=forward dst-port=25565 in-interface=pppoe-snap protocol=udp
	add action=drop chain=forward in-interface=pppoe-snap
	add action=accept chain=input connection-state=established in-interface=pppoe-snap
	add action=accept chain=input connection-state=related in-interface=pppoe-snap
	add action=accept chain=input in-interface=pppoe-snap protocol=icmpv6
	add action=accept chain=input dst-port=546 in-interface=pppoe-snap protocol=udp
	add action=drop chain=input in-interface=pppoe-snap
	/system clock
	set time-zone-name=Pacific/Auckland
	/system identity
	set name=MikroTikKitchen
	/system routerboard settings
	set memory-frequency=1200DDR protected-routerboot=disabled
	/tool mac-server
	set [ find default=yes ] disabled=yes
	add interface=ether2-master
	/tool mac-server mac-winbox
	set [ find default=yes ] disabled=yes
	add interface=ether2-master