Last active
April 24, 2019 14:50
-
-
Save stevejenkins/2aa352761528aad6f77e to your computer and use it in GitHub Desktop.
Additional script for Google Fiber TV customers to run on their EdgeRouter, after running the initial EdgeMax-Google.sh script, to enable TV service.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Google Fiber TV Service Additional Script | |
| # Based on Atlantisman's TV script | |
| # http://blog.nexusshield.com/google-fiber-ubiquitis-edgerouter/ | |
| # Edited by Steve Jenkins to work with his version of the script | |
| #______________________TV Service Config _____________________ | |
| #Setup IGMP Proxy | |
| configure | |
| edit protocols igmp-proxy | |
| set interface eth0.2 role upstream | |
| set interface eth2 role downstream | |
| set interface eth2 alt-subnet 192.168.1.1/24 | |
| set interface eth0.2 alt-subnet 10.0.0.0/8 | |
| set interface eth0.2 threshold 1 | |
| set interface eth2 threshold 1 | |
| top | |
| #Setup basic Firewall for IGMP | |
| configure | |
| edit firewall | |
| edit name WAN_IN | |
| set default-action drop | |
| set description "WAN to LAN" | |
| set enable-default-log | |
| set rule 5 action accept | |
| set rule 5 description "Allow Multicast" | |
| set rule 5 destination address 224.0.0.0/4 | |
| set rule 5 log disable | |
| set rule 10 action accept | |
| set rule 10 description "Allow established/related" | |
| set rule 10 state established enable | |
| set rule 10 state invalid disable | |
| set rule 10 state new disable | |
| set rule 10 state related enable | |
| set rule 10 log disable | |
| set rule 20 action accept | |
| set rule 20 description "Allow UDP to Multicast" | |
| set rule 20 destination address 224.0.0.0/4 | |
| set rule 20 log disable | |
| set rule 20 protocol udp | |
| set rule 20 state new enable | |
| set rule 25 action accept | |
| set rule 25 description "Allow ICMP" | |
| set rule 25 log disable | |
| set rule 25 protocol icmp | |
| set rule 25 state established enable | |
| set rule 25 state related enable | |
| set rule 30 action accept | |
| set rule 30 description "Allow IGMP" | |
| set rule 30 log disable | |
| set rule 30 protocol igmp | |
| set rule 100 action drop | |
| set rule 100 description "Drop invalid state" | |
| set rule 100 log disable | |
| set rule 100 protocol all | |
| set rule 100 state established disable | |
| set rule 100 state invalid enable | |
| set rule 100 state new disable | |
| set rule 100 state related disable | |
| top | |
| edit firewall | |
| edit name WAN_LOCAL | |
| #If you experience TV service drops set the default action to accept and test | |
| #this is a temporary solution provided by @cerjzc from the UBNT forums | |
| #set default-action accept | |
| set default-action drop | |
| set description "WAN to Router" | |
| set enable-default-log | |
| set rule 5 action accept | |
| set rule 5 description "Allow Multicast" | |
| set rule 5 destination address 224.0.0.0/4 | |
| set rule 5 log disable | |
| set rule 10 action accept | |
| set rule 10 description "Allow established/related" | |
| set rule 10 log disable | |
| set rule 10 state established enable | |
| set rule 10 state related enable | |
| set rule 100 action drop | |
| set rule 100 description "Drop invalid state" | |
| set rule 100 log enable | |
| set rule 100 protocol all | |
| set rule 100 state established disable | |
| set rule 100 state invalid enable | |
| set rule 100 state new disable | |
| set rule 100 state related disable | |
| top | |
| commit | |
| save |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment