update mikrotik/mt-bu.ke.einsle.de
This commit is contained in:
oxidized
parent
5e3f483f2d
commit
564aaca9b4
@ -12,6 +12,7 @@
|
||||
# Flags: U - undoable, R - redoable, F - floating-undo
|
||||
# ACTION BY POLICY
|
||||
# U RADIUS client added admin write
|
||||
# U RADIUS client added admin write
|
||||
# U RADIUS client removed admin write
|
||||
# U RADIUS client changed admin write
|
||||
# U RADIUS client added admin write
|
||||
@ -73,6 +74,7 @@ set allow-none-crypto=yes forwarding-enabled=remote
|
||||
set 0 interfaces=wlan1
|
||||
/radius
|
||||
add address=172.24.1.2 secret=asdf service=wireless,ipsec
|
||||
add address=172.24.1.3 secret=asdfads service=wireless,ipsec
|
||||
/system clock
|
||||
set time-zone-name=Europe/Berlin
|
||||
/system identity
|
||||
|
||||
@ -1,109 +0,0 @@
|
||||
# routerboard: yes
|
||||
# board-name: hAP ac
|
||||
# model: RouterBOARD 962UiGS-5HacT2HnT
|
||||
# serial-number: 67370685D272
|
||||
# firmware-type: qca9550L
|
||||
# factory-firmware: 3.31
|
||||
# current-firmware: 6.45.1
|
||||
# upgrade-firmware: 6.45.1
|
||||
#
|
||||
# channel: stable
|
||||
# installed-version: 6.45.1
|
||||
#
|
||||
# Flags: U - undoable, R - redoable, F - floating-undo
|
||||
# ACTION BY POLICY
|
||||
# U user oxidized added admin write
|
||||
# policy
|
||||
#
|
||||
# software id = 4J0Q-ELYL
|
||||
#
|
||||
# model = RouterBOARD 962UiGS-5HacT2HnT
|
||||
# serial number = 67370685D272
|
||||
/interface bridge
|
||||
add fast-forward=no name=br_vlan1 protocol-mode=none
|
||||
add fast-forward=no name=br_vlan10 protocol-mode=none
|
||||
add fast-forward=no name=br_vlan42 protocol-mode=none
|
||||
add fast-forward=no name=br_vlan50 protocol-mode=none
|
||||
add fast-forward=no name=br_vlan51 protocol-mode=none
|
||||
add fast-forward=no name=br_vlan52 protocol-mode=none
|
||||
add fast-forward=no name=br_vlan99 protocol-mode=none
|
||||
add fast-forward=no name=br_wlan protocol-mode=none
|
||||
/interface ethernet
|
||||
set [ find default-name=ether1 ] speed=100Mbps
|
||||
set [ find default-name=ether2 ] speed=100Mbps
|
||||
set [ find default-name=ether3 ] speed=100Mbps
|
||||
set [ find default-name=ether4 ] speed=100Mbps
|
||||
set [ find default-name=ether5 ] speed=100Mbps
|
||||
set [ find default-name=sfp1 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full
|
||||
/interface wireless
|
||||
# managed by CAPsMAN
|
||||
# channel: 2412/20/gn(10dBm), SSID: wifis.org/ke/bertling, CAPsMAN forwarding
|
||||
set [ find default-name=wlan1 ] ssid=MikroTik
|
||||
# managed by CAPsMAN
|
||||
# channel: 5180/20/ac(20dBm), SSID: wifis.org/ke/bertling, CAPsMAN forwarding
|
||||
set [ find default-name=wlan2 ] ssid=MikroTik
|
||||
/interface vlan
|
||||
add interface=br_wlan loop-protect-disable-time=0s loop-protect-send-interval=0s name=br_wlan_vlan42 vlan-id=42
|
||||
add interface=br_wlan loop-protect-disable-time=0s loop-protect-send-interval=0s name=br_wlan_vlan50 vlan-id=50
|
||||
add interface=br_wlan loop-protect-disable-time=0s loop-protect-send-interval=0s name=br_wlan_vlan51 vlan-id=51
|
||||
add interface=br_wlan loop-protect-disable-time=0s loop-protect-send-interval=0s name=br_wlan_vlan52 vlan-id=52
|
||||
add interface=br_wlan loop-protect-disable-time=0s loop-protect-send-interval=0s name=br_wlan_vlan99 vlan-id=99
|
||||
add interface=ether1 loop-protect-disable-time=0s loop-protect-send-interval=0s name=vlan1 vlan-id=1
|
||||
add interface=ether1 loop-protect-disable-time=0s loop-protect-send-interval=0s name=vlan10 vlan-id=10
|
||||
add interface=ether1 loop-protect-disable-time=0s loop-protect-send-interval=0s name=vlan42 vlan-id=42
|
||||
add interface=ether1 loop-protect-disable-time=0s loop-protect-send-interval=0s name=vlan50 vlan-id=50
|
||||
add interface=ether1 loop-protect-disable-time=0s loop-protect-send-interval=0s name=vlan51 vlan-id=51
|
||||
add interface=ether1 loop-protect-disable-time=0s loop-protect-send-interval=0s name=vlan52 vlan-id=52
|
||||
add interface=ether1 loop-protect-disable-time=0s loop-protect-send-interval=0s name=vlan60 vlan-id=60
|
||||
add interface=ether1 loop-protect-disable-time=0s loop-protect-send-interval=0s name=vlan99 vlan-id=99
|
||||
/interface wireless security-profiles
|
||||
set [ find default=yes ] supplicant-identity=MikroTik
|
||||
/ip hotspot profile
|
||||
set [ find default=yes ] html-directory=flash/hotspot
|
||||
/routing bgp instance
|
||||
set default disabled=yes
|
||||
/routing ospf instance
|
||||
set [ find default=yes ] disabled=yes
|
||||
/snmp community
|
||||
set [ find default=yes ] addresses=172.24.0.0/16 authentication-password=nUTIRozDeJMiQ2Goj8BR authentication-protocol=SHA1 encryption-password=nUTIRozDeJMiQ2Goj8BR encryption-protocol=AES name=jie6Wao5weeSahs
|
||||
add addresses=172.24.1.0/24,172.24.10.0/24 authentication-password=nUTIRozDeJMiQ2Goj8BR authentication-protocol=SHA1 encryption-password=nUTIRozDeJMiQ2Goj8BR encryption-protocol=AES name=monitor security=private
|
||||
/interface bridge port
|
||||
add bridge=br_vlan1 interface=vlan1
|
||||
add bridge=br_vlan10 interface=vlan10
|
||||
add bridge=br_vlan42 interface=vlan42
|
||||
add bridge=br_vlan50 interface=vlan50
|
||||
add bridge=br_vlan51 interface=vlan51
|
||||
add bridge=br_vlan52 interface=vlan52
|
||||
add bridge=br_vlan10 hw=no interface=ether2
|
||||
add bridge=br_vlan51 hw=no interface=ether3
|
||||
add bridge=br_vlan51 hw=no interface=ether4
|
||||
add bridge=br_vlan52 hw=no interface=ether5
|
||||
add bridge=br_vlan42 interface=br_wlan_vlan42
|
||||
add bridge=br_vlan50 interface=br_wlan_vlan50
|
||||
add bridge=br_vlan51 interface=br_wlan_vlan51
|
||||
add bridge=br_vlan52 interface=br_wlan_vlan52
|
||||
add bridge=br_vlan99 interface=br_wlan_vlan99
|
||||
add bridge=br_vlan99 interface=vlan99
|
||||
/interface wireless cap
|
||||
#
|
||||
set bridge=br_wlan caps-man-addresses=172.24.1.97 enabled=yes interfaces=wlan1,wlan2
|
||||
/ip address
|
||||
add address=172.24.1.95/24 interface=vlan1 network=172.24.1.0
|
||||
add address=172.24.10.95/24 interface=vlan10 network=172.24.10.0
|
||||
add address=172.24.42.95/24 interface=vlan42 network=172.24.42.0
|
||||
/ip dns
|
||||
set servers=172.24.10.11,172.24.10.12
|
||||
/ip route
|
||||
add distance=1 gateway=172.24.1.1
|
||||
/ip ssh
|
||||
set allow-none-crypto=yes forwarding-enabled=remote
|
||||
/snmp
|
||||
set contact="Robert Einsle <robert@einsle.de>" enabled=yes location="Kempten, Dachgeschoss" trap-version=3
|
||||
/system clock
|
||||
set time-zone-name=Europe/Berlin
|
||||
/system identity
|
||||
set name=mt-dg
|
||||
/system ntp client
|
||||
set enabled=yes primary-ntp=172.24.10.13 secondary-ntp=172.24.10.12
|
||||
/tool romon
|
||||
set enabled=yes id=6C:3B:6B:19:5C:58 secrets=78f244b59c
|
||||
@ -1,185 +0,0 @@
|
||||
# routerboard: yes
|
||||
# board-name: hEX
|
||||
# model: RouterBOARD 750G r3
|
||||
# serial-number: 6F3806DF15CA
|
||||
# firmware-type: mt7621L
|
||||
# factory-firmware: 3.34
|
||||
# current-firmware: 6.45.1
|
||||
# upgrade-firmware: 6.45.1
|
||||
#
|
||||
# channel: stable
|
||||
# installed-version: 6.45.1
|
||||
#
|
||||
# Flags: U - undoable, R - redoable, F - floating-undo
|
||||
# ACTION BY POLICY
|
||||
# U user oxidized added admin write
|
||||
# policy
|
||||
#
|
||||
# software id = QCYC-SED2
|
||||
#
|
||||
# model = RouterBOARD 750G r3
|
||||
# serial number = 6F3806DF15CA
|
||||
/caps-man channel
|
||||
add band=5ghz-onlyac name=chan_ke_5
|
||||
add band=2ghz-g/n name=chan_ke_2
|
||||
/interface bridge
|
||||
add fast-forward=no name=br_brigitte protocol-mode=none
|
||||
add fast-forward=no name=br_gast protocol-mode=none
|
||||
add fast-forward=no name=br_lan protocol-mode=none
|
||||
add fast-forward=no name=br_lo protocol-mode=none
|
||||
add fast-forward=no name=br_mgmt protocol-mode=none
|
||||
add fast-forward=no name=br_robert protocol-mode=none
|
||||
add fast-forward=no name=br_server protocol-mode=none
|
||||
add fast-forward=no name=br_teresa protocol-mode=none
|
||||
add fast-forward=no name=br_test protocol-mode=none
|
||||
add fast-forward=no name=br_tobias protocol-mode=none
|
||||
add fast-forward=no name=br_voip protocol-mode=none
|
||||
/interface ethernet
|
||||
set [ find default-name=ether1 ] speed=100Mbps
|
||||
set [ find default-name=ether2 ] speed=100Mbps
|
||||
set [ find default-name=ether3 ] speed=100Mbps
|
||||
set [ find default-name=ether4 ] speed=100Mbps
|
||||
set [ find default-name=ether5 ] speed=100Mbps
|
||||
/interface vlan
|
||||
add interface=ether1 loop-protect-disable-time=0s loop-protect-send-interval=0s name=vlan1 vlan-id=1
|
||||
add interface=ether1 loop-protect-disable-time=0s loop-protect-send-interval=0s name=vlan10 vlan-id=10
|
||||
add interface=ether1 loop-protect-disable-time=0s loop-protect-send-interval=0s name=vlan42 vlan-id=42
|
||||
add interface=ether1 loop-protect-disable-time=0s loop-protect-send-interval=0s name=vlan50 vlan-id=50
|
||||
add interface=ether1 loop-protect-disable-time=0s loop-protect-send-interval=0s name=vlan51 vlan-id=51
|
||||
add interface=ether1 loop-protect-disable-time=0s loop-protect-send-interval=0s name=vlan52 vlan-id=52
|
||||
add interface=ether1 loop-protect-disable-time=0s loop-protect-send-interval=0s name=vlan60 vlan-id=60
|
||||
add interface=ether1 loop-protect-disable-time=0s loop-protect-send-interval=0s name=vlan90 vlan-id=90
|
||||
add interface=ether1 loop-protect-disable-time=0s loop-protect-send-interval=0s name=vlan99 vlan-id=99
|
||||
/caps-man datapath
|
||||
add bridge=br_lan client-to-client-forwarding=yes local-forwarding=no name=dp_radius
|
||||
add bridge=br_robert client-to-client-forwarding=yes local-forwarding=no name=dp_robert
|
||||
add bridge=br_brigitte client-to-client-forwarding=yes local-forwarding=no name=dp_brigitte
|
||||
add bridge=br_tobias client-to-client-forwarding=yes local-forwarding=no name=dp_tobias
|
||||
add bridge=br_teresa client-to-client-forwarding=yes local-forwarding=no name=dp_teresa
|
||||
add bridge=br_gast client-to-client-forwarding=no local-forwarding=no name=dp_gast
|
||||
/caps-man rates
|
||||
add basic=12Mbps name=rates supported=12Mbps,18Mbps,24Mbps,36Mbps,48Mbps,54Mbps
|
||||
/caps-man security
|
||||
add authentication-types=wpa2-eap eap-methods=passthrough encryption=aes-ccm group-encryption=aes-ccm name=sec_radius
|
||||
add authentication-types=wpa2-psk encryption=aes-ccm group-encryption=aes-ccm name=sec_robert passphrase=DasIstEinTest!
|
||||
add authentication-types=wpa2-psk encryption=aes-ccm group-encryption=aes-ccm name=sec_brigitte passphrase=aH4duhoo
|
||||
add authentication-types=wpa2-psk encryption=aes-ccm group-encryption=aes-ccm name=sec_tobias passphrase=eifohk5U
|
||||
add authentication-types=wpa2-psk encryption=aes-ccm group-encryption=aes-ccm name=sec_teresa passphrase=Em0aiLei
|
||||
add authentication-types=wpa2-psk encryption=aes-ccm group-encryption=aes-ccm name=sec_gast passphrase=aseeci9oQu8Ooru
|
||||
/caps-man configuration
|
||||
add channel=chan_ke_5 country=germany datapath=dp_radius hide-ssid=no mode=ap name=cfg_5_radius rates=rates security=sec_radius ssid=wifis.org/ke/bertling
|
||||
add channel=chan_ke_5 datapath=dp_robert name=cfg_5_robert rates=rates security=sec_robert ssid=wifis.org/ke/robert
|
||||
add channel=chan_ke_5 datapath=dp_brigitte name=cfg_5_brigitte rates=rates security=sec_brigitte ssid=wifis.org/ke/brigitte
|
||||
add channel=chan_ke_5 datapath=dp_tobias name=cfg_5_tobias rates=rates security=sec_tobias ssid=wifis.org/ke/tobias
|
||||
add channel=chan_ke_5 datapath=dp_teresa name=cfg_5_teresa rates=rates security=sec_teresa ssid=wifis.org/ke/teresa
|
||||
add channel=chan_ke_5 datapath=dp_gast name=cfg_5_gast rates=rates security=sec_gast ssid=wifis.org/ke/gast
|
||||
add channel=chan_ke_2 country=germany datapath=dp_radius hide-ssid=no mode=ap name=cfg_2_radius rates=rates security=sec_radius ssid=wifis.org/ke/bertling
|
||||
add channel=chan_ke_2 datapath=dp_brigitte name=cfg_2_brigitte rates=rates security=sec_brigitte ssid=wifis.org/ke/brigitte
|
||||
add channel=chan_ke_2 datapath=dp_gast name=cfg_2_gast rates=rates security=sec_gast ssid=wifis.org/ke/gast
|
||||
add channel=chan_ke_2 datapath=dp_robert name=cfg_2_robert rates=rates security=sec_robert ssid=wifis.org/ke/robert
|
||||
add channel=chan_ke_2 datapath=dp_teresa name=cfg_2_teresa rates=rates security=sec_teresa ssid=wifis.org/ke/teresa
|
||||
add channel=chan_ke_2 datapath=dp_tobias name=cfg_2_tobias rates=rates security=sec_tobias ssid=wifis.org/ke/tobias
|
||||
/interface wireless security-profiles
|
||||
set [ find default=yes ] supplicant-identity=MikroTik
|
||||
/ip hotspot profile
|
||||
set [ find default=yes ] html-directory=flash/hotspot
|
||||
/ip pool
|
||||
add name=pool_robert ranges=172.24.42.110-172.24.42.200
|
||||
add name=pool_brigitte ranges=172.24.50.110-172.24.50.200
|
||||
add name=pool_tobias ranges=172.24.51.110-172.24.51.200
|
||||
add name=pool_teresa ranges=172.24.52.110-172.24.52.200
|
||||
/ip dhcp-server
|
||||
add address-pool=pool_robert authoritative=after-2sec-delay interface=br_robert name=dhcp_robert
|
||||
add address-pool=pool_brigitte authoritative=after-2sec-delay interface=br_brigitte name=dhcp_brigitte
|
||||
add address-pool=pool_tobias authoritative=after-2sec-delay interface=br_tobias name=dhcp_tobias
|
||||
add address-pool=pool_teresa authoritative=after-2sec-delay interface=br_teresa name=dhcp_teresa
|
||||
/routing bgp instance
|
||||
set default as=65000 client-to-client-reflection=no router-id=172.24.255.89
|
||||
/routing ospf instance
|
||||
set [ find default=yes ] redistribute-connected=as-type-1 router-id=172.24.255.89
|
||||
/snmp community
|
||||
set [ find default=yes ] addresses=172.24.1.0/24,172.24.10.0/24 authentication-protocol=SHA1 encryption-protocol=AES name=jie6Wao5weeSahs
|
||||
add addresses=172.24.1.0/24,172.24.10.0/24 authentication-password=nUTIRozDeJMiQ2Goj8BR authentication-protocol=SHA1 encryption-password=nUTIRozDeJMiQ2Goj8BR encryption-protocol=AES name=monitor security=private
|
||||
add addresses=172.24.10.0/24 name=public
|
||||
/caps-man manager
|
||||
set ca-certificate=auto certificate=mt-dude.ke.einsle.de enabled=yes upgrade-policy=suggest-same-version
|
||||
/caps-man provisioning
|
||||
add action=create-dynamic-enabled hw-supported-modes=ac,an master-configuration=cfg_5_radius name-format=prefix-identity name-prefix=cap-5- slave-configurations=cfg_5_robert,cfg_5_brigitte,cfg_5_tobias,cfg_5_teresa,cfg_5_gast
|
||||
add action=create-dynamic-enabled hw-supported-modes=gn master-configuration=cfg_2_radius name-format=prefix-identity name-prefix=cap-2- slave-configurations=cfg_2_robert,cfg_2_brigitte,cfg_2_tobias,cfg_2_teresa,cfg_2_gast
|
||||
/dude
|
||||
set data-directory=disk1 enabled=yes
|
||||
/interface bridge port
|
||||
add bridge=br_mgmt interface=vlan1
|
||||
add bridge=br_server interface=vlan10
|
||||
add bridge=br_robert interface=vlan42
|
||||
add bridge=br_brigitte interface=vlan50
|
||||
add bridge=br_tobias interface=vlan51
|
||||
add bridge=br_teresa interface=vlan52
|
||||
add bridge=br_voip interface=vlan60
|
||||
add bridge=br_test interface=vlan90
|
||||
add bridge=br_gast interface=vlan99
|
||||
add bridge=br_lan interface=ether1
|
||||
/interface ethernet switch vlan
|
||||
add independent-learning=yes ports=switch1-cpu,ether1 switch=switch1 vlan-id=1
|
||||
add independent-learning=yes ports=switch1-cpu,ether1 switch=switch1 vlan-id=10
|
||||
add independent-learning=no ports=switch1-cpu,ether1 switch=switch1 vlan-id=42
|
||||
add independent-learning=no ports=switch1-cpu,ether1 switch=switch1 vlan-id=50
|
||||
add independent-learning=no ports=switch1-cpu,ether1 switch=switch1 vlan-id=51
|
||||
add independent-learning=no ports=switch1-cpu,ether1 switch=switch1 vlan-id=52
|
||||
add independent-learning=no ports=switch1-cpu,ether1 switch=switch1 vlan-id=60
|
||||
add independent-learning=no ports=switch1-cpu,ether1 switch=switch1 vlan-id=90
|
||||
add independent-learning=no ports=switch1-cpu,ether1 switch=switch1 vlan-id=99
|
||||
/ip address
|
||||
add address=172.24.42.89/24 interface=br_robert network=172.24.42.0
|
||||
add address=172.24.1.89/24 interface=br_mgmt network=172.24.1.0
|
||||
add address=172.24.10.89/24 interface=br_server network=172.24.10.0
|
||||
add address=172.24.52.89/24 interface=br_teresa network=172.24.52.0
|
||||
add address=172.24.50.89/24 interface=br_brigitte network=172.24.50.0
|
||||
add address=172.24.51.89/24 interface=br_tobias network=172.24.51.0
|
||||
add address=172.24.255.89 interface=br_lo network=172.24.255.89
|
||||
add address=172.24.0.26/30 interface=ether1 network=172.24.0.24
|
||||
add address=172.24.60.89/24 interface=br_voip network=172.24.60.0
|
||||
/ip dhcp-server network
|
||||
add address=172.24.42.89/32 dns-server=8.8.8.8,172.24.10.13,172.24.10.17 gateway=172.24.42.2 netmask=24
|
||||
add address=172.24.50.89/32 dns-server=8.8.8.8,172.24.10.13,172.24.10.17 gateway=172.24.50.2 netmask=24
|
||||
add address=172.24.51.89/32 dns-server=8.8.8.8,172.24.10.13,172.24.10.17 gateway=172.24.51.2 netmask=24
|
||||
add address=172.24.52.89/32 dns-server=8.8.8.8,172.24.10.13,172.24.10.17 gateway=172.24.52.2 netmask=24
|
||||
/ip dns
|
||||
set servers=172.24.10.11,172.24.10.12
|
||||
/ip route
|
||||
add distance=1 gateway=172.24.1.1
|
||||
/ip smb shares
|
||||
set [ find default=yes ] directory=/pub
|
||||
/ip ssh
|
||||
set allow-none-crypto=yes forwarding-enabled=remote
|
||||
/mpls ldp
|
||||
set lsr-id=172.24.255.89 transport-address=172.24.255.89
|
||||
/mpls ldp interface
|
||||
add disabled=yes interface=ether1
|
||||
/radius
|
||||
add address=172.24.10.25 disabled=yes domain=wlan.ke.einsle.de secret=zu6OhMe8ien5 service=wireless timeout=1s
|
||||
add address=172.24.42.109 domain=ke.einsle.de secret=ni.xd.ol service=wireless timeout=1s
|
||||
/routing bgp peer
|
||||
add address-families=ip,l2vpn,l2vpn-cisco,vpnv4 name=mt-kg remote-address=172.24.255.91 remote-as=65000 ttl=default update-source=br_lo
|
||||
/routing ospf network
|
||||
add area=backbone network=172.24.255.89/32
|
||||
add area=backbone network=172.24.0.24/30
|
||||
add area=backbone network=172.24.1.0/24
|
||||
/snmp
|
||||
set contact="Robert Einsle <robert@einsle.de>" enabled=yes location="Kempten, Keller"
|
||||
/system clock
|
||||
set time-zone-name=Europe/Berlin
|
||||
/system identity
|
||||
set name=mt-dude
|
||||
/system ntp client
|
||||
set enabled=yes primary-ntp=172.24.10.13 secondary-ntp=172.24.10.12
|
||||
/system resource irq rps
|
||||
set ether1 disabled=no
|
||||
set ether2 disabled=no
|
||||
set ether3 disabled=no
|
||||
set ether4 disabled=no
|
||||
set ether5 disabled=no
|
||||
/system scheduler
|
||||
add interval=1d name=backup on-event="/system backup save name=mt-dude" policy=write start-date=oct/02/2017 start-time=00:00:00
|
||||
/tool romon
|
||||
set enabled=yes id=6C:3B:6B:88:34:48 secrets=78f244b59c
|
||||
@ -1,70 +0,0 @@
|
||||
# routerboard: yes
|
||||
# board-name: hAP ac
|
||||
# model: RouterBOARD 962UiGS-5HacT2HnT
|
||||
# serial-number: 673706FE47BB
|
||||
# firmware-type: qca9550L
|
||||
# factory-firmware: 3.31
|
||||
# current-firmware: 6.45.1
|
||||
# upgrade-firmware: 6.45.1
|
||||
#
|
||||
# channel: stable
|
||||
# installed-version: 6.45.1
|
||||
#
|
||||
# Flags: U - undoable, R - redoable, F - floating-undo
|
||||
# ACTION BY POLICY
|
||||
# U user oxidized added admin write
|
||||
# policy
|
||||
#
|
||||
# software id = BJZX-XMI3
|
||||
#
|
||||
# model = RouterBOARD 962UiGS-5HacT2HnT
|
||||
# serial number = 673706FE47BB
|
||||
/interface bridge
|
||||
add name=br_lan protocol-mode=none
|
||||
add name=br_robert protocol-mode=none
|
||||
add name=br_server protocol-mode=none
|
||||
add name=br_voip protocol-mode=none
|
||||
/interface wireless
|
||||
# managed by CAPsMAN
|
||||
# channel: 2412/20/gn(10dBm), SSID: wifis.org/ke/bertling, CAPsMAN forwarding
|
||||
set [ find default-name=wlan1 ] ssid=MikroTik
|
||||
# managed by CAPsMAN
|
||||
# channel: 5180/20/ac(20dBm), SSID: wifis.org/ke/bertling, CAPsMAN forwarding
|
||||
set [ find default-name=wlan2 ] ssid=MikroTik
|
||||
/interface vlan
|
||||
add interface=br_lan name=vlan1 vlan-id=1
|
||||
add interface=br_lan name=vlan10 vlan-id=10
|
||||
add interface=br_lan name=vlan42 vlan-id=42
|
||||
add interface=br_lan name=vlan60 vlan-id=60
|
||||
/interface wireless security-profiles
|
||||
set [ find default=yes ] supplicant-identity=MikroTik
|
||||
/ip hotspot profile
|
||||
set [ find default=yes ] html-directory=flash/hotspot
|
||||
/interface bridge port
|
||||
add bridge=br_lan interface=sfp1
|
||||
add bridge=br_voip interface=ether2
|
||||
add bridge=br_robert interface=vlan42
|
||||
add bridge=br_server interface=vlan10
|
||||
add bridge=br_server interface=ether3
|
||||
add bridge=br_voip interface=vlan60
|
||||
/interface wireless cap
|
||||
#
|
||||
set caps-man-addresses=172.24.1.97 enabled=yes interfaces=wlan1,wlan2
|
||||
/ip address
|
||||
add address=172.24.1.93/24 interface=vlan1 network=172.24.1.0
|
||||
add address=172.24.42.93/24 interface=vlan42 network=172.24.42.0
|
||||
add address=172.24.10.93/24 interface=vlan10 network=172.24.10.0
|
||||
/ip dns
|
||||
set servers=172.24.10.11,172.24.10.12
|
||||
/ip route
|
||||
add distance=1 gateway=172.24.1.1
|
||||
/ip ssh
|
||||
set forwarding-enabled=remote
|
||||
/system clock
|
||||
set time-zone-name=Europe/Berlin
|
||||
/system identity
|
||||
set name=mt-eg
|
||||
/system ntp client
|
||||
set enabled=yes primary-ntp=172.24.10.11 secondary-ntp=172.24.10.12
|
||||
/tool romon
|
||||
set enabled=yes id=6C:3B:6B:19:62:A8 secrets=78f244b59c
|
||||
@ -1,189 +0,0 @@
|
||||
# routerboard: yes
|
||||
# model: CRS112-8G-4S
|
||||
# serial-number: 6CFA0698D051
|
||||
# firmware-type: qca8513L
|
||||
# factory-firmware: 3.23
|
||||
# current-firmware: 6.45.1
|
||||
# upgrade-firmware: 6.45.1
|
||||
#
|
||||
# channel: stable
|
||||
# installed-version: 6.45.1
|
||||
#
|
||||
# Flags: U - undoable, R - redoable, F - floating-undo
|
||||
# ACTION BY POLICY
|
||||
# U user oxidized added admin write
|
||||
# policy
|
||||
#
|
||||
# software id = U6BB-XKEI
|
||||
#
|
||||
# model = CRS112-8G-4S
|
||||
# serial number = 6CFA0698D051
|
||||
/interface bridge
|
||||
add name=br_brigitte protocol-mode=none
|
||||
add name=br_gast protocol-mode=none
|
||||
add admin-mac=6C:3B:6B:3C:0D:7C auto-mac=no comment="created from master port" name=br_lan protocol-mode=none
|
||||
add fast-forward=no name=br_lo protocol-mode=none
|
||||
add fast-forward=no name=br_mgmt protocol-mode=none
|
||||
add fast-forward=no name=br_robert protocol-mode=none
|
||||
add name=br_server protocol-mode=none
|
||||
add name=br_teresa protocol-mode=none
|
||||
add name=br_test protocol-mode=none
|
||||
add name=br_tobias protocol-mode=none
|
||||
add name=br_voip protocol-mode=none
|
||||
/interface ethernet
|
||||
set [ find default-name=ether1 ] comment=mt-eg name=eth1_mteg speed=100Mbps
|
||||
set [ find default-name=ether2 ] comment=nas name=eth2_nas speed=100Mbps
|
||||
set [ find default-name=ether3 ] comment="sw01 GE1" name=eth3_sw011 speed=100Mbps
|
||||
set [ find default-name=ether4 ] comment="sw-01 GE2" name=eth4_sw012 speed=100Mbps
|
||||
set [ find default-name=ether5 ] comment="FW2 LAN1" name=eth5_fw1eth0 speed=100Mbps
|
||||
set [ find default-name=ether6 ] comment="FW2 LAN2" name=eth6_fw1eth1 speed=100Mbps
|
||||
set [ find default-name=ether7 ] comment="horst e1" name=eth7_horste1 speed=100Mbps
|
||||
set [ find default-name=ether8 ] comment="horst e2" name=eth8_horste2 speed=100Mbps
|
||||
set [ find default-name=sfp9 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full comment=mt-eg_sfp1 name=sfp9_mteg
|
||||
set [ find default-name=sfp10 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full comment=mt-test_sfp1 name=sfp10_mttest
|
||||
set [ find default-name=sfp11 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full
|
||||
set [ find default-name=sfp12 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full comment=mt-dude name=sfp12_mtdude
|
||||
/interface vlan
|
||||
add comment=mgmt interface=br_lan name=vlan1 vlan-id=1
|
||||
add comment=dmz interface=br_lan name=vlan2 vlan-id=2
|
||||
add comment=mnet interface=br_lan name=vlan3 vlan-id=3
|
||||
add comment=kdg interface=br_lan name=vlan4 vlan-id=4
|
||||
add comment=server interface=br_lan name=vlan10 vlan-id=10
|
||||
add comment=robert interface=br_lan name=vlan42 vlan-id=42
|
||||
add comment=brigitte interface=br_lan name=vlan50 vlan-id=50
|
||||
add comment=tobias interface=br_lan name=vlan51 vlan-id=51
|
||||
add comment=teresa interface=br_lan name=vlan52 vlan-id=52
|
||||
add comment=voip interface=br_lan name=vlan60 vlan-id=60
|
||||
add comment=test interface=br_lan name=vlan90 vlan-id=90
|
||||
add comment=gast interface=br_lan name=vlan99 vlan-id=99
|
||||
/interface ethernet switch trunk
|
||||
add member-ports=eth3_sw011,eth4_sw012 name=tr_sw01
|
||||
/interface wireless security-profiles
|
||||
set [ find default=yes ] supplicant-identity=MikroTik
|
||||
/ip hotspot profile
|
||||
set [ find default=yes ] html-directory=flash/hotspot
|
||||
/ip ipsec policy group
|
||||
add name=zegowitz
|
||||
/ip ipsec profile
|
||||
add dh-group=modp1024 enc-algorithm=aes-128 hash-algorithm=md5 name=profile_1
|
||||
/ip ipsec peer
|
||||
add address=87.140.87.206/32 disabled=yes exchange-mode=aggressive name=peer1 profile=profile_1
|
||||
/ip ipsec proposal
|
||||
add auth-algorithms=md5 name=zegowitz_prop
|
||||
/routing bgp instance
|
||||
set default as=65000 router-id=172.24.255.91
|
||||
/routing ospf instance
|
||||
set [ find default=yes ] redistribute-connected=as-type-1 router-id=172.24.255.91
|
||||
/snmp community
|
||||
set [ find default=yes ] addresses=172.24.0.0/16 authentication-password=nUTIRozDeJMiQ2Goj8BR authentication-protocol=SHA1 encryption-password=nUTIRozDeJMiQ2Goj8BR encryption-protocol=AES name=jie6Wao5weeSahs
|
||||
add addresses=172.24.1.0/24,172.24.10.0/24 authentication-password=nUTIRozDeJMiQ2Goj8BR authentication-protocol=SHA1 encryption-password=nUTIRozDeJMiQ2Goj8BR encryption-protocol=AES name=monitor security=private
|
||||
add addresses=172.24.10.0/24 name=public
|
||||
/interface bridge msti
|
||||
add bridge=br_robert identifier=1 vlan-mapping=42
|
||||
/interface bridge port
|
||||
add bridge=br_robert interface=vlan42
|
||||
add bridge=br_server interface=vlan10
|
||||
add bridge=br_brigitte interface=vlan50
|
||||
add bridge=br_tobias interface=vlan51
|
||||
add bridge=br_teresa interface=vlan52
|
||||
add bridge=br_voip interface=vlan60
|
||||
add bridge=br_mgmt interface=vlan1
|
||||
add bridge=br_test interface=vlan90
|
||||
add bridge=br_gast interface=vlan99
|
||||
add bridge=br_robert interface=eth2_nas
|
||||
add bridge=br_lan interface=eth3_sw011
|
||||
add bridge=br_lan interface=eth4_sw012
|
||||
add bridge=br_lan interface=eth5_fw1eth0
|
||||
add bridge=br_lan interface=eth6_fw1eth1
|
||||
add bridge=br_lan interface=eth7_horste1
|
||||
add bridge=br_lan interface=eth8_horste2
|
||||
add bridge=br_lan interface=sfp9_mteg
|
||||
add bridge=br_lan interface=sfp10_mttest
|
||||
add bridge=br_lan interface=sfp11
|
||||
add bridge=br_lan interface=sfp12_mtdude
|
||||
add bridge=br_lan interface=eth1_mteg
|
||||
/ip settings
|
||||
set tcp-syncookies=yes
|
||||
/interface ethernet switch egress-vlan-tag
|
||||
add tagged-ports="switch1-cpu,eth2_nas,eth5_fw1eth0,eth6_fw1eth1,eth7_horste1,eth8_horste2,sfp10_mttest,sfp9_mteg,sfp12_mtdude,sfp11" vlan-id=1
|
||||
add tagged-ports="tr_sw01,switch1-cpu,eth2_nas,eth5_fw1eth0,eth6_fw1eth1,eth7_horste1,eth8_horste2,sfp10_mttest,sfp9_mteg,sfp12_mtdude,sfp11" vlan-id=10
|
||||
add tagged-ports="tr_sw01,switch1-cpu,eth2_nas,eth5_fw1eth0,eth6_fw1eth1,eth7_horste1,eth8_horste2,sfp10_mttest,sfp9_mteg,sfp12_mtdude" vlan-id=42
|
||||
add tagged-ports="tr_sw01,switch1-cpu,eth2_nas,eth5_fw1eth0,eth6_fw1eth1,eth7_horste1,eth8_horste2,sfp10_mttest,sfp9_mteg,sfp12_mtdude,sfp11" vlan-id=50
|
||||
add tagged-ports="tr_sw01,switch1-cpu,eth2_nas,eth5_fw1eth0,eth6_fw1eth1,eth7_horste1,eth8_horste2,sfp10_mttest,sfp9_mteg,sfp12_mtdude,sfp11" vlan-id=51
|
||||
add tagged-ports="tr_sw01,switch1-cpu,eth2_nas,eth5_fw1eth0,eth6_fw1eth1,eth7_horste1,eth8_horste2,sfp10_mttest,sfp9_mteg,sfp12_mtdude,sfp11" vlan-id=60
|
||||
add tagged-ports="tr_sw01,switch1-cpu,eth2_nas,eth5_fw1eth0,eth6_fw1eth1,eth7_horste1,eth8_horste2,sfp10_mttest,sfp9_mteg,sfp12_mtdude,sfp11" vlan-id=90
|
||||
add tagged-ports="tr_sw01,switch1-cpu,eth2_nas,eth5_fw1eth0,eth6_fw1eth1,eth7_horste1,eth8_horste2,sfp10_mttest,sfp9_mteg,sfp12_mtdude,sfp11" vlan-id=99
|
||||
add tagged-ports=tr_sw01,eth2_nas,eth7_horste1,eth8_horste2,sfp10_mttest,sfp11 vlan-id=2
|
||||
add tagged-ports=tr_sw01,eth2_nas,eth7_horste1,eth8_horste2,sfp9_mteg,sfp11 vlan-id=3
|
||||
add tagged-ports=tr_sw01,eth2_nas,eth7_horste1,eth8_horste2,sfp10_mttest,sfp9_mteg,sfp11 vlan-id=4
|
||||
add tagged-ports="tr_sw01,switch1-cpu,eth2_nas,eth5_fw1eth0,eth6_fw1eth1,eth7_horste1,eth8_horste2,sfp10_mttest,sfp9_mteg,sfp12_mtdude,sfp11" vlan-id=52
|
||||
/interface ethernet switch ingress-vlan-translation
|
||||
add customer-vid=0 new-customer-vid=10 ports=eth7_horste1
|
||||
add customer-vid=0 new-customer-vid=42 ports=sfp11
|
||||
add customer-vid=0 new-customer-vid=1 ports=tr_sw01
|
||||
add customer-vid=0 new-customer-vid=4 ports=eth1_mteg
|
||||
/interface ethernet switch vlan
|
||||
add ports="tr_sw01,switch1-cpu,eth2_nas,eth5_fw1eth0,eth6_fw1eth1,eth7_horste1,eth8_horste2,sfp10_mttest,sfp9_mteg,sfp12_mtdude,sfp11" vlan-id=1
|
||||
add ports="tr_sw01,switch1-cpu,eth2_nas,eth5_fw1eth0,eth6_fw1eth1,eth7_horste1,eth8_horste2,sfp10_mttest,sfp9_mteg,sfp12_mtdude,sfp11" vlan-id=10
|
||||
add ports="tr_sw01,switch1-cpu,eth2_nas,eth5_fw1eth0,eth6_fw1eth1,eth7_horste1,eth8_horste2,sfp10_mttest,sfp9_mteg,sfp12_mtdude" vlan-id=42
|
||||
add ports=tr_sw01,eth2_nas,eth7_horste1,eth8_horste2,sfp10_mttest,sfp11 vlan-id=2
|
||||
add ports=tr_sw01,eth2_nas,eth7_horste1,eth8_horste2,sfp9_mteg,sfp11 vlan-id=3
|
||||
add ports="tr_sw01,eth1_mteg,eth2_nas,eth7_horste1,eth8_horste2,sfp10_mttest,sfp9_mteg,sfp11" vlan-id=4
|
||||
add ports="tr_sw01,switch1-cpu,eth2_nas,eth5_fw1eth0,eth6_fw1eth1,eth7_horste1,eth8_horste2,sfp10_mttest,sfp9_mteg,sfp12_mtdude,sfp11" vlan-id=50
|
||||
add ports="tr_sw01,switch1-cpu,eth2_nas,eth5_fw1eth0,eth6_fw1eth1,eth7_horste1,eth8_horste2,sfp10_mttest,sfp9_mteg,sfp12_mtdude,sfp11" vlan-id=51
|
||||
add ports="tr_sw01,switch1-cpu,eth2_nas,eth5_fw1eth0,eth6_fw1eth1,eth7_horste1,eth8_horste2,sfp10_mttest,sfp9_mteg,sfp12_mtdude,sfp11" vlan-id=52
|
||||
add ports="tr_sw01,switch1-cpu,eth2_nas,eth5_fw1eth0,eth6_fw1eth1,eth7_horste1,eth8_horste2,sfp10_mttest,sfp9_mteg,sfp12_mtdude,sfp11" vlan-id=60
|
||||
add ports="tr_sw01,switch1-cpu,eth2_nas,eth5_fw1eth0,eth6_fw1eth1,eth7_horste1,eth8_horste2,sfp10_mttest,sfp9_mteg,sfp12_mtdude,sfp11" vlan-id=90
|
||||
add ports="tr_sw01,switch1-cpu,eth2_nas,eth5_fw1eth0,eth6_fw1eth1,eth7_horste1,eth8_horste2,sfp10_mttest,sfp9_mteg,sfp12_mtdude,sfp11" vlan-id=99
|
||||
/ip address
|
||||
add address=172.24.42.91/24 interface=br_robert network=172.24.42.0
|
||||
add address=172.24.10.91/24 interface=br_server network=172.24.10.0
|
||||
add address=172.24.1.91/24 interface=br_mgmt network=172.24.1.0
|
||||
add address=172.24.90.91/24 interface=br_test network=172.24.90.0
|
||||
add address=172.24.255.91 interface=br_lo network=172.24.255.91
|
||||
add address=172.24.50.91/24 interface=br_brigitte network=172.24.50.0
|
||||
add address=172.24.51.91/24 interface=br_tobias network=172.24.51.0
|
||||
add address=172.24.52.91/24 interface=br_teresa network=172.24.52.0
|
||||
add address=172.24.60.91/24 interface=br_voip network=172.24.60.0
|
||||
add address=172.24.99.91/24 interface=br_gast network=172.24.99.0
|
||||
add address=172.24.0.1/30 interface=sfp9_mteg network=172.24.0.0
|
||||
add address=172.24.0.25/30 interface=sfp12_mtdude network=172.24.0.24
|
||||
/ip dhcp-client
|
||||
add dhcp-options=hostname,clientid disabled=no interface=br_robert
|
||||
/ip dns
|
||||
set servers=172.24.10.11,172.24.10.12
|
||||
/ip ipsec identity
|
||||
add my-id=user-fqdn:einsle@reisert.de peer=peer1 policy-template-group=zegowitz secret="tk94BuK39Pdx1rWtw4kykpaT2Dve(\?wrk6zkew3nvmKh)7cY"
|
||||
/ip ipsec policy
|
||||
add dst-address=10.11.2.0/24 group=zegowitz proposal=zegowitz_prop src-address=10.11.2.0/24 template=yes
|
||||
/ip route
|
||||
add distance=1 gateway=172.24.1.1
|
||||
add distance=1 dst-address=172.24.0.0/24 type=blackhole
|
||||
add distance=1 dst-address=172.24.255.0/24 type=blackhole
|
||||
/ip service
|
||||
set www-ssl certificate=mt-ke.ke.einsle.de disabled=no
|
||||
set api-ssl certificate=mt-ke.ke.einsle.de
|
||||
/ip ssh
|
||||
set allow-none-crypto=yes forwarding-enabled=remote
|
||||
/mpls ldp
|
||||
set lsr-id=172.24.255.91 transport-address=172.24.255.91
|
||||
/routing bgp peer
|
||||
add address-families=ip,l2vpn,l2vpn-cisco,vpnv4 name=mt-bu remote-address=172.24.255.94 remote-as=65000 route-reflect=yes ttl=default update-source=br_lo
|
||||
add address-families=ip,l2vpn,l2vpn-cisco,vpnv4 name=mt-dude remote-address=172.24.255.89 remote-as=65000 route-reflect=yes ttl=default update-source=br_lo
|
||||
/routing ospf network
|
||||
add area=backbone network=172.24.255.91/32
|
||||
add area=backbone network=172.24.1.0/24
|
||||
/snmp
|
||||
set contact="Robert Einsle <robert@einsle.de>" enabled=yes location="Kempten, Netzwerkschrank Keller"
|
||||
/system clock
|
||||
set time-zone-name=Europe/Berlin
|
||||
/system identity
|
||||
set name=mt-kg
|
||||
/system ntp client
|
||||
set enabled=yes primary-ntp=172.24.10.11 secondary-ntp=172.24.10.12
|
||||
/system upgrade upgrade-package-source
|
||||
add address=172.24.1.89 user=admin
|
||||
/tool bandwidth-server
|
||||
set authenticate=no
|
||||
/tool romon
|
||||
set enabled=yes id=6C:3B:6B:3C:0D:7C secrets=78f244b59c
|
||||
@ -1,182 +0,0 @@
|
||||
# routerboard: yes
|
||||
# model: CRS326-24G-2S+
|
||||
# serial-number: 763C07D3969D
|
||||
# firmware-type: dx3230L
|
||||
# factory-firmware: 3.37
|
||||
# current-firmware: 6.45.1
|
||||
# upgrade-firmware: 6.45.1
|
||||
#
|
||||
# channel: stable
|
||||
# installed-version: 6.45.1
|
||||
# latest-version: 6.45.1
|
||||
# status: System is already up to date
|
||||
#
|
||||
# Flags: U - undoable, R - redoable, F - floating-undo
|
||||
# ACTION BY POLICY
|
||||
# U ssh-key removed admin write
|
||||
# policy
|
||||
# U user oxidized added admin write
|
||||
# policy
|
||||
#
|
||||
# software id = NK6R-LJLR
|
||||
#
|
||||
# model = CRS326-24G-2S+
|
||||
# serial number = 763C07D3969D
|
||||
/caps-man channel
|
||||
add band=2ghz-g/n control-channel-width=20mhz extension-channel=disabled frequency=2412 name=chan_2 tx-power=10
|
||||
add band=5ghz-a/n/ac control-channel-width=20mhz extension-channel=disabled frequency=5180 name=chan_5 tx-power=20
|
||||
/interface bridge
|
||||
add name=br_lan protocol-mode=none vlan-filtering=yes
|
||||
/interface ethernet
|
||||
set [ find default-name=ether1 ] name=ether1_og
|
||||
set [ find default-name=ether2 ] name=ether2_dg
|
||||
set [ find default-name=ether3 ] name=ether3_prn
|
||||
set [ find default-name=ether4 ] name=ether4_kdg
|
||||
set [ find default-name=ether5 ] name=ether5_wohn
|
||||
set [ find default-name=ether6 ] name=ether6_wap
|
||||
set [ find default-name=ether7 ] name=ether7_b1
|
||||
set [ find default-name=ether8 ] name=ether8_kedc02
|
||||
set [ find default-name=ether9 ] disabled=yes
|
||||
set [ find default-name=ether10 ] disabled=yes
|
||||
set [ find default-name=ether11 ] disabled=yes
|
||||
set [ find default-name=ether12 ] name=ether12_mteg
|
||||
set [ find default-name=ether13 ] name=ether13_buwap
|
||||
set [ find default-name=ether14 ] name=ether14_fw1_lan1
|
||||
set [ find default-name=ether15 ] name=ether15_fw1_lan2
|
||||
set [ find default-name=ether16 ] name=ether16_fw1_lan3
|
||||
set [ find default-name=ether17 ] name=ether17_ohorst1
|
||||
set [ find default-name=ether18 ] name=ether18_ohorst2
|
||||
set [ find default-name=ether19 ] name=ether19_ohorstipmi
|
||||
set [ find default-name=ether20 ] name=ether20_horstipmi
|
||||
set [ find default-name=ether21 ] name=ether21_horst1
|
||||
set [ find default-name=ether22 ] mac-address=64:D1:54:C5:AC:18 name=ether22_horst2
|
||||
set [ find default-name=ether23 ] name=ether23_nas1
|
||||
set [ find default-name=ether24 ] mac-address=64:D1:54:C5:AC:1A name=ether24_nas2
|
||||
set [ find default-name=sfp-sfpplus1 ] name=sfp-sfpplus1-eg
|
||||
/interface vlan
|
||||
add interface=br_lan name=vlan1 vlan-id=1
|
||||
add interface=br_lan name=vlan2 vlan-id=2
|
||||
add interface=br_lan name=vlan4 vlan-id=4
|
||||
add interface=br_lan name=vlan10 vlan-id=10
|
||||
add interface=br_lan name=vlan42 vlan-id=42
|
||||
add interface=br_lan name=vlan50 vlan-id=50
|
||||
add interface=br_lan name=vlan51 vlan-id=51
|
||||
add interface=br_lan name=vlan52 vlan-id=52
|
||||
add interface=br_lan name=vlan60 vlan-id=60
|
||||
add interface=br_lan name=vlan90 vlan-id=90
|
||||
add interface=br_lan name=vlan99 vlan-id=99
|
||||
/interface bonding
|
||||
add mode=802.3ad name=bond_horst slaves=ether21_horst1,ether22_horst2
|
||||
add mode=802.3ad name=bond_nas slaves=ether23_nas1,ether24_nas2
|
||||
/caps-man datapath
|
||||
add bridge=br_lan client-to-client-forwarding=yes local-forwarding=no name=dp_robert vlan-id=42 vlan-mode=use-tag
|
||||
add bridge=br_lan client-to-client-forwarding=yes local-forwarding=no name=db_brigitte vlan-id=50 vlan-mode=use-tag
|
||||
add bridge=br_lan client-to-client-forwarding=yes local-forwarding=no name=dp_tobias vlan-id=51 vlan-mode=use-tag
|
||||
add bridge=br_lan client-to-client-forwarding=yes local-forwarding=no name=dp_teresa vlan-id=52 vlan-mode=use-tag
|
||||
add bridge=br_lan client-to-client-forwarding=no local-forwarding=no name=dp_gast vlan-id=99 vlan-mode=use-tag
|
||||
add bridge=br_lan client-to-client-forwarding=yes local-forwarding=no name=dp_radius vlan-mode=use-tag
|
||||
/caps-man rates
|
||||
add basic=12Mbps name=basic_rates_2 supported=12Mbps,18Mbps,24Mbps,36Mbps,48Mbps,54Mbps
|
||||
add basic=24Mbps name=basic_rates_5 supported=24Mbps,36Mbps,48Mbps,54Mbps
|
||||
/caps-man security
|
||||
add authentication-types=wpa2-psk disable-pmkid=yes encryption=aes-ccm group-encryption=aes-ccm group-key-update=1h name=sec_robert passphrase=DasIstEinTest!
|
||||
add authentication-types=wpa2-psk disable-pmkid=yes encryption=aes-ccm group-encryption=aes-ccm group-key-update=1h name=sec_brigitte passphrase=aH4duhoo
|
||||
add authentication-types=wpa2-psk disable-pmkid=yes encryption=aes-ccm group-encryption=aes-ccm group-key-update=1h name=sec_tobias passphrase=eifohk5U
|
||||
add authentication-types=wpa2-psk disable-pmkid=yes encryption=aes-ccm group-encryption=aes-ccm group-key-update=1h name=sec_teresa passphrase=Em0aiLei
|
||||
add authentication-types=wpa2-psk disable-pmkid=yes encryption=aes-ccm group-encryption=aes-ccm group-key-update=1h name=sec_gast passphrase=aseeci9oQu8Ooru
|
||||
add authentication-types=wpa2-eap disable-pmkid=yes eap-methods=passthrough group-key-update=1h name=sec_radius
|
||||
/caps-man configuration
|
||||
add channel=chan_2 country=germany datapath=dp_robert mode=ap name=cfg_2_robert rates=basic_rates_2 security=sec_robert ssid=wifis.org/ke/robert
|
||||
add channel=chan_5 country=germany datapath=db_brigitte mode=ap name=cfg_5_brigitte rates=basic_rates_5 security=sec_brigitte ssid=wifis.org/ke/brigitte
|
||||
add channel=chan_2 country=germany datapath=dp_tobias mode=ap name=cfg_2_tobias rates=basic_rates_2 security=sec_tobias ssid=wifis.org/ke/tobias
|
||||
add channel=chan_2 country=germany datapath=dp_teresa mode=ap name=cfg_2_teresa rates=basic_rates_2 security=sec_teresa ssid=wifis.org/ke/teresa
|
||||
add channel=chan_2 country=germany datapath=dp_gast mode=ap name=cfg_2_gast rates=basic_rates_2 security=sec_gast ssid=wifis.org/ke/gast
|
||||
add channel=chan_2 country=germany datapath=dp_radius mode=ap name=cfg_2_radius rates=basic_rates_2 security=sec_radius ssid=wifis.org/ke/bertling
|
||||
add channel=chan_5 country=germany datapath=dp_radius mode=ap name=cfg_5_radius rates=basic_rates_5 security=sec_radius ssid=wifis.org/ke/bertling
|
||||
add channel=chan_2 country=germany datapath=db_brigitte mode=ap name=cfg_2_brigitte rates=basic_rates_2 security=sec_brigitte ssid=wifis.org/ke/brigitte
|
||||
add channel=chan_5 country=germany datapath=dp_gast mode=ap name=cfg_5_gast rates=basic_rates_5 security=sec_gast ssid=wifis.org/ke/gast
|
||||
add channel=chan_5 country=germany datapath=dp_robert mode=ap name=cfg_5_robert rates=basic_rates_5 security=sec_robert ssid=wifis.org/ke/robert
|
||||
add channel=chan_5 country=germany datapath=dp_teresa mode=ap name=cfg_5_teresa rates=basic_rates_5 security=sec_teresa ssid=wifis.org/ke/teresa
|
||||
add channel=chan_5 country=germany datapath=dp_tobias mode=ap name=cfg_5_tobias rates=basic_rates_5 security=sec_tobias ssid=wifis.org/ke/tobias
|
||||
/interface wireless security-profiles
|
||||
set [ find default=yes ] supplicant-identity=MikroTik
|
||||
/ip hotspot profile
|
||||
set [ find default=yes ] html-directory=flash/hotspot
|
||||
/snmp community
|
||||
set [ find default=yes ] read-access=no
|
||||
add addresses=172.24.0.0/16 authentication-password=nUTIRozDeJMiQ2Goj8BR authentication-protocol=SHA1 encryption-password=nUTIRozDeJMiQ2Goj8BR encryption-protocol=AES name=monitor security=private
|
||||
/caps-man manager
|
||||
set enabled=yes upgrade-policy=suggest-same-version
|
||||
/caps-man manager interface
|
||||
set [ find default=yes ] forbid=yes
|
||||
add disabled=no interface=vlan42
|
||||
add disabled=no interface=vlan1
|
||||
/caps-man provisioning
|
||||
add action=create-dynamic-enabled hw-supported-modes=gn master-configuration=cfg_2_radius name-format=prefix-identity name-prefix=cap-2 slave-configurations=cfg_2_robert,cfg_2_brigitte,cfg_2_gast,cfg_2_teresa,cfg_2_tobias
|
||||
add action=create-dynamic-enabled hw-supported-modes=ac,an master-configuration=cfg_5_radius name-format=prefix-identity name-prefix=cap-5 slave-configurations=cfg_5_robert,cfg_5_brigitte,cfg_5_gast,cfg_5_teresa,cfg_5_tobias
|
||||
/interface bridge port
|
||||
add bridge=br_lan frame-types=admit-only-vlan-tagged interface=ether1_og
|
||||
add bridge=br_lan frame-types=admit-only-vlan-tagged interface=ether2_dg
|
||||
add bridge=br_lan frame-types=admit-only-untagged-and-priority-tagged interface=ether3_prn pvid=10
|
||||
add bridge=br_lan frame-types=admit-only-untagged-and-priority-tagged interface=ether4_kdg pvid=4
|
||||
add bridge=br_lan frame-types=admit-only-untagged-and-priority-tagged interface=ether5_wohn pvid=42
|
||||
add bridge=br_lan frame-types=admit-only-vlan-tagged interface=ether6_wap
|
||||
add bridge=br_lan frame-types=admit-only-vlan-tagged interface=ether7_b1
|
||||
add bridge=br_lan frame-types=admit-only-untagged-and-priority-tagged interface=ether8_kedc02 pvid=10
|
||||
add bridge=br_lan interface=ether9
|
||||
add bridge=br_lan interface=ether10
|
||||
add bridge=br_lan interface=ether11
|
||||
add bridge=br_lan frame-types=admit-only-untagged-and-priority-tagged interface=ether12_mteg pvid=42
|
||||
add bridge=br_lan interface=ether13_buwap pvid=42
|
||||
add bridge=br_lan interface=ether14_fw1_lan1
|
||||
add bridge=br_lan interface=ether15_fw1_lan2
|
||||
add bridge=br_lan interface=ether16_fw1_lan3
|
||||
add bridge=br_lan frame-types=admit-only-vlan-tagged interface=ether17_ohorst1
|
||||
add bridge=br_lan frame-types=admit-only-vlan-tagged interface=ether18_ohorst2
|
||||
add bridge=br_lan interface=ether19_ohorstipmi
|
||||
add bridge=br_lan frame-types=admit-only-untagged-and-priority-tagged interface=ether20_horstipmi
|
||||
add bridge=br_lan frame-types=admit-only-vlan-tagged interface=sfp-sfpplus1-eg pvid=42
|
||||
add bridge=br_lan interface=sfp-sfpplus2
|
||||
add bridge=br_lan interface=bond_horst
|
||||
add bridge=br_lan frame-types=admit-only-untagged-and-priority-tagged interface=bond_nas pvid=10
|
||||
/interface bridge vlan
|
||||
add bridge=br_lan tagged="br_lan,bond_horst,sfp-sfpplus1-eg,sfp-sfpplus2,ether1_og,ether2_dg,ether6_wap,ether7_b1,ether14_fw1_lan1,ether15_fw1_lan2,ether16_fw1_lan3,ether17_ohorst1,ether18_ohorst2" untagged=ether19_ohorstipmi,ether20_horstipmi vlan-ids=1
|
||||
add bridge=br_lan tagged="br_lan,bond_horst,sfp-sfpplus1-eg,sfp-sfpplus2,ether14_fw1_lan1,ether15_fw1_lan2,ether16_fw1_lan3,ether17_ohorst1,ether18_ohorst2" vlan-ids=2
|
||||
add bridge=br_lan tagged="br_lan,bond_horst,sfp-sfpplus1-eg,sfp-sfpplus2,ether14_fw1_lan1,ether15_fw1_lan2,ether16_fw1_lan3,ether17_ohorst1,ether18_ohorst2" untagged=ether4_kdg vlan-ids=4
|
||||
add bridge=br_lan tagged="br_lan,bond_horst,sfp-sfpplus1-eg,sfp-sfpplus2,ether1_og,ether2_dg,ether6_wap,ether7_b1,ether14_fw1_lan1,ether15_fw1_lan2,ether17_ohorst1,ether18_ohorst2" untagged=bond_nas,ether3_prn,ether8_kedc02 vlan-ids=10
|
||||
add bridge=br_lan tagged="br_lan,bond_horst,sfp-sfpplus1-eg,sfp-sfpplus2,ether1_og,ether2_dg,ether6_wap,ether7_b1,ether14_fw1_lan1,ether15_fw1_lan2,ether16_fw1_lan3,ether17_ohorst1,ether18_ohorst2" untagged=ether5_wohn,ether13_buwap vlan-ids=42
|
||||
add bridge=br_lan tagged="br_lan,sfp-sfpplus1-eg,sfp-sfpplus2,bond_horst,ether1_og,ether2_dg,ether6_wap,ether7_b1,ether14_fw1_lan1,ether15_fw1_lan2,ether16_fw1_lan3,ether17_ohorst1,ether18_ohorst2" vlan-ids=50
|
||||
add bridge=br_lan tagged="br_lan,sfp-sfpplus1-eg,sfp-sfpplus2,bond_horst,ether1_og,ether2_dg,ether6_wap,ether7_b1,ether14_fw1_lan1,ether15_fw1_lan2,ether16_fw1_lan3,ether17_ohorst1,ether18_ohorst2" vlan-ids=51
|
||||
add bridge=br_lan tagged="br_lan,sfp-sfpplus1-eg,sfp-sfpplus2,bond_horst,ether1_og,ether2_dg,ether6_wap,ether7_b1,ether14_fw1_lan1,ether15_fw1_lan2,ether16_fw1_lan3,ether17_ohorst1,ether18_ohorst2" vlan-ids=52
|
||||
add bridge=br_lan tagged="br_lan,sfp-sfpplus1-eg,sfp-sfpplus2,bond_horst,ether1_og,ether2_dg,ether6_wap,ether7_b1,ether14_fw1_lan1,ether15_fw1_lan2,ether16_fw1_lan3,ether17_ohorst1,ether18_ohorst2" vlan-ids=60
|
||||
add bridge=br_lan tagged="br_lan,sfp-sfpplus1-eg,sfp-sfpplus2,bond_horst,ether1_og,ether2_dg,ether6_wap,ether7_b1,ether14_fw1_lan1,ether15_fw1_lan2,ether17_ohorst1,ether18_ohorst2" vlan-ids=90
|
||||
add bridge=br_lan tagged="br_lan,sfp-sfpplus1-eg,sfp-sfpplus2,bond_horst,ether1_og,ether2_dg,ether6_wap,ether7_b1,ether14_fw1_lan1,ether15_fw1_lan2,ether17_ohorst1,ether18_ohorst2" vlan-ids=99
|
||||
add bridge=br_lan tagged=br_lan,bond_horst,ether17_ohorst1,ether18_ohorst2 vlan-ids=11
|
||||
/ip address
|
||||
add address=172.24.1.97/24 interface=vlan1 network=172.24.1.0
|
||||
add address=172.24.10.90/24 interface=vlan10 network=172.24.10.0
|
||||
add address=172.24.42.90/24 interface=vlan42 network=172.24.42.0
|
||||
add address=172.24.4.104/24 interface=vlan4 network=172.24.4.0
|
||||
add address=172.24.42.1/24 disabled=yes interface=vlan42 network=172.24.42.0
|
||||
add address=172.24.1.1/24 disabled=yes interface=vlan1 network=172.24.1.0
|
||||
add address=172.24.10.1/24 disabled=yes interface=vlan10 network=172.24.10.0
|
||||
/ip dhcp-relay
|
||||
add dhcp-server=172.24.10.11,172.24.10.12 disabled=no interface=ether1_og name=relay_42
|
||||
/ip dns
|
||||
set allow-remote-requests=yes servers=172.24.10.11,172.24.10.12
|
||||
/ip route
|
||||
add distance=1 gateway=172.24.4.1
|
||||
/ip ssh
|
||||
set forwarding-enabled=remote
|
||||
/snmp
|
||||
set contact=admin@einsle.de enabled=yes location=Kempten
|
||||
/system clock
|
||||
set time-zone-name=Europe/Berlin
|
||||
/system identity
|
||||
set name=mt-kg2
|
||||
/system ntp client
|
||||
set enabled=yes primary-ntp=172.24.10.11 secondary-ntp=172.24.10.12
|
||||
/system routerboard settings
|
||||
set boot-os=router-os
|
||||
/tool romon
|
||||
set enabled=yes id=B2:C1:51:48:4E:4F secrets=78f244b59c
|
||||
@ -1,86 +0,0 @@
|
||||
# routerboard: yes
|
||||
# model: 951G-2HnD
|
||||
# serial-number: 4F43045E20E0
|
||||
# firmware-type: ar9344
|
||||
# factory-firmware: 3.17
|
||||
# current-firmware: 6.45.1
|
||||
# upgrade-firmware: 6.45.1
|
||||
#
|
||||
# channel: stable
|
||||
# installed-version: 6.45.1
|
||||
#
|
||||
# Flags: U - undoable, R - redoable, F - floating-undo
|
||||
# ACTION BY POLICY
|
||||
# U user oxidized added admin write
|
||||
# policy
|
||||
#
|
||||
# software id = 3E75-0AYA
|
||||
#
|
||||
# model = 951G-2HnD
|
||||
# serial number = 4F43045E20E0
|
||||
/interface bridge
|
||||
add name=br_mgmt protocol-mode=none
|
||||
add name=br_robert protocol-mode=none
|
||||
add name=br_server protocol-mode=none
|
||||
add name=br_tobias protocol-mode=none
|
||||
/interface wireless
|
||||
# managed by CAPsMAN
|
||||
# channel: 2412/20/gn(10dBm), SSID: wifis.org/ke/bertling, CAPsMAN forwarding
|
||||
set [ find default-name=wlan1 ] ssid=MikroTik
|
||||
/interface ethernet
|
||||
set [ find default-name=ether1 ] name=eth1_kg speed=100Mbps
|
||||
set [ find default-name=ether2 ] speed=100Mbps
|
||||
set [ find default-name=ether3 ] speed=100Mbps
|
||||
set [ find default-name=ether4 ] speed=100Mbps
|
||||
set [ find default-name=ether5 ] speed=100Mbps
|
||||
/interface vlan
|
||||
add interface=eth1_kg name=vlan1 vlan-id=1
|
||||
add interface=eth1_kg name=vlan10 vlan-id=10
|
||||
add interface=eth1_kg name=vlan42 vlan-id=42
|
||||
add interface=eth1_kg name=vlan50 vlan-id=50
|
||||
add interface=eth1_kg name=vlan51 vlan-id=51
|
||||
add interface=eth1_kg name=vlan52 vlan-id=52
|
||||
add interface=eth1_kg name=vlan60 vlan-id=60
|
||||
add interface=eth1_kg name=vlan90 vlan-id=90
|
||||
add interface=eth1_kg name=vlan99 vlan-id=99
|
||||
/interface wireless security-profiles
|
||||
set [ find default=yes ] supplicant-identity=MikroTik
|
||||
/routing bgp instance
|
||||
set default disabled=yes
|
||||
/routing ospf instance
|
||||
set [ find default=yes ] disabled=yes
|
||||
/snmp community
|
||||
set [ find default=yes ] addresses=172.24.0.0/16 name=jie6Wao5weeSahs
|
||||
add addresses=172.24.1.0/24,172.24.10.0/24 authentication-password=nUTIRozDeJMiQ2Goj8BR authentication-protocol=SHA1 encryption-password=nUTIRozDeJMiQ2Goj8BR encryption-protocol=AES name=monitor security=private
|
||||
/interface bridge port
|
||||
add bridge=br_mgmt interface=vlan1
|
||||
add bridge=br_server interface=vlan10
|
||||
add bridge=br_robert interface=vlan42
|
||||
add bridge=br_tobias interface=vlan51
|
||||
add bridge=br_tobias interface=ether2
|
||||
add bridge=br_tobias interface=ether3
|
||||
add bridge=br_tobias interface=ether4
|
||||
add bridge=br_tobias interface=ether5
|
||||
/interface wireless cap
|
||||
#
|
||||
set caps-man-addresses=172.24.1.97 enabled=yes interfaces=wlan1
|
||||
/ip address
|
||||
add address=172.24.1.96/24 interface=br_mgmt network=172.24.1.0
|
||||
add address=172.24.10.96/24 interface=br_server network=172.24.10.0
|
||||
add address=172.24.42.96/24 interface=br_robert network=172.24.42.0
|
||||
/ip dns
|
||||
set servers=172.24.10.11,172.24.10.12
|
||||
/ip route
|
||||
add distance=1 gateway=172.24.1.1
|
||||
/ip ssh
|
||||
set allow-none-crypto=yes forwarding-enabled=remote
|
||||
/snmp
|
||||
set contact="Robert Einsle <robert@einsle.de" enabled=yes location=Kempten
|
||||
/system clock
|
||||
set time-zone-name=Europe/Berlin
|
||||
/system identity
|
||||
set name=mt-og
|
||||
/system ntp client
|
||||
set enabled=yes primary-ntp=172.24.10.11 secondary-ntp=172.24.10.12
|
||||
/tool romon
|
||||
set enabled=yes id=4C:5E:0C:70:A2:10 secrets=78f244b59c
|
||||
@ -1,101 +0,0 @@
|
||||
# routerboard: yes
|
||||
# board-name: wAP ac
|
||||
# model: RouterBOARD wAP G-5HacT2HnD
|
||||
# serial-number: 69A50527A67C
|
||||
# firmware-type: qca9550L
|
||||
# factory-firmware: 3.31
|
||||
# current-firmware: 6.45.1
|
||||
# upgrade-firmware: 6.45.1
|
||||
#
|
||||
# channel: stable
|
||||
# installed-version: 6.45.1
|
||||
#
|
||||
# Flags: U - undoable, R - redoable, F - floating-undo
|
||||
# ACTION BY POLICY
|
||||
# U user oxidized added admin write
|
||||
# policy
|
||||
#
|
||||
# software id = 0ABG-FSCM
|
||||
#
|
||||
# model = RouterBOARD wAP G-5HacT2HnD
|
||||
# serial number = 69A50527A67C
|
||||
/interface bridge
|
||||
add fast-forward=no name=br_vlan42 protocol-mode=none
|
||||
add fast-forward=no name=br_vlan50 protocol-mode=none
|
||||
add fast-forward=no name=br_vlan51 protocol-mode=none
|
||||
add fast-forward=no name=br_vlan52 protocol-mode=none
|
||||
add fast-forward=no name=br_vlan99 protocol-mode=none
|
||||
add fast-forward=no name=br_wlan protocol-mode=none
|
||||
/interface ethernet
|
||||
set [ find default-name=ether1 ] speed=100Mbps
|
||||
/interface wireless
|
||||
# managed by CAPsMAN
|
||||
# channel: 2412/20/gn(10dBm), SSID: wifis.org/ke/bertling, CAPsMAN forwarding
|
||||
set [ find default-name=wlan1 ] ssid=MikroTik
|
||||
/interface vlan
|
||||
add interface=br_wlan loop-protect-disable-time=0s loop-protect-send-interval=0s name=br_wlan_vlan42 vlan-id=42
|
||||
add interface=br_wlan loop-protect-disable-time=0s loop-protect-send-interval=0s name=br_wlan_vlan50 vlan-id=50
|
||||
add interface=br_wlan loop-protect-disable-time=0s loop-protect-send-interval=0s name=br_wlan_vlan51 vlan-id=51
|
||||
add interface=br_wlan loop-protect-disable-time=0s loop-protect-send-interval=0s name=br_wlan_vlan52 vlan-id=52
|
||||
add interface=br_wlan loop-protect-disable-time=0s loop-protect-send-interval=0s name=br_wlan_vlan99 vlan-id=99
|
||||
add interface=ether1 name=vlan1 vlan-id=1
|
||||
add interface=ether1 name=vlan10 vlan-id=10
|
||||
add interface=ether1 loop-protect-disable-time=0s loop-protect-send-interval=0s name=vlan15 vlan-id=15
|
||||
add interface=ether1 name=vlan42 vlan-id=42
|
||||
add interface=ether1 name=vlan50 vlan-id=50
|
||||
add interface=ether1 name=vlan51 vlan-id=51
|
||||
add interface=ether1 name=vlan52 vlan-id=52
|
||||
add interface=ether1 name=vlan99 vlan-id=99
|
||||
/interface wireless security-profiles
|
||||
set [ find default=yes ] supplicant-identity=MikroTik
|
||||
add authentication-types=wpa2-eap management-protection=allowed mode=dynamic-keys name=sec_radius radius-mac-accounting=yes radius-mac-authentication=yes radius-mac-mode=as-username-and-password supplicant-identity=mt-wap
|
||||
/interface wireless
|
||||
# managed by CAPsMAN
|
||||
# channel: 5180/20/ac(18dBm), SSID: wifis.org/ke/bertling, CAPsMAN forwarding
|
||||
set [ find default-name=wlan2 ] antenna-gain=2 band=5ghz-a/n/ac channel-width=20/40/80mhz-eeeC country=germany frequency=auto frequency-mode=regulatory-domain security-profile=sec_radius ssid=MikroTik
|
||||
/ip hotspot profile
|
||||
set [ find default=yes ] html-directory=flash/hotspot
|
||||
/routing ospf instance
|
||||
set [ find default=yes ] disabled=yes
|
||||
/snmp community
|
||||
set [ find default=yes ] addresses=172.24.0.0/16 authentication-password=nUTIRozDeJMiQ2Goj8BR authentication-protocol=SHA1 encryption-password=nUTIRozDeJMiQ2Goj8BR encryption-protocol=AES name=jie6Wao5weeSahs
|
||||
add addresses=172.24.1.0/24,172.24.10.0/24 authentication-password=nUTIRozDeJMiQ2Goj8BR authentication-protocol=SHA1 encryption-password=nUTIRozDeJMiQ2Goj8BR encryption-protocol=AES name=monitor security=private
|
||||
/interface bridge port
|
||||
add bridge=br_vlan42 interface=br_wlan_vlan42
|
||||
add bridge=br_vlan42 interface=vlan42
|
||||
add bridge=br_vlan50 interface=br_wlan_vlan50
|
||||
add bridge=br_vlan50 interface=vlan50
|
||||
add bridge=br_vlan51 interface=br_wlan_vlan51
|
||||
add bridge=br_vlan51 interface=vlan51
|
||||
add bridge=br_vlan52 interface=br_wlan_vlan52
|
||||
add bridge=br_vlan52 interface=vlan52
|
||||
add bridge=br_vlan99 interface=br_wlan_vlan99
|
||||
add bridge=br_vlan99 interface=vlan99
|
||||
/interface wireless cap
|
||||
#
|
||||
set bridge=br_wlan caps-man-addresses=172.24.1.97 enabled=yes interfaces=wlan1,wlan2
|
||||
/ip address
|
||||
add address=172.24.1.92/24 interface=vlan1 network=172.24.1.0
|
||||
add address=172.24.10.92/24 interface=vlan10 network=172.24.10.0
|
||||
add address=172.24.42.92/24 interface=vlan42 network=172.24.42.0
|
||||
add address=172.24.15.92/24 interface=vlan15 network=172.24.15.0
|
||||
/ip dns
|
||||
set servers=172.24.10.11,172.24.10.12
|
||||
/ip route
|
||||
add distance=1 gateway=172.24.1.1
|
||||
/ip smb shares
|
||||
set [ find default=yes ] directory=/pub
|
||||
/ip ssh
|
||||
set allow-none-crypto=yes forwarding-enabled=remote
|
||||
/radius
|
||||
add address=172.24.10.16 secret=Ofooza9fugee service=wireless
|
||||
/snmp
|
||||
set contact="Robert Einsle" enabled=yes location="Kempten, Keller Flur"
|
||||
/system clock
|
||||
set time-zone-name=Europe/Berlin
|
||||
/system identity
|
||||
set name=mt-wap
|
||||
/system ntp client
|
||||
set enabled=yes primary-ntp=172.24.10.13 secondary-ntp=172.24.10.12
|
||||
/tool romon
|
||||
set enabled=yes id=E4:8D:8C:4B:30:74 secrets=78f244b59c
|
||||
File diff suppressed because it is too large
Load Diff
File diff suppressed because it is too large
Load Diff
Loading…
Reference in New Issue
Block a user