Last active
November 7, 2018 06:43
-
-
Save Gaeel/5b58cf70f256a9353a946904116363ae to your computer and use it in GitHub Desktop.
Config file for HomeLab network devices
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| firewall { | |
| all-ping enable | |
| broadcast-ping disable | |
| group { | |
| } | |
| ipv6-receive-redirects disable | |
| ipv6-src-route disable | |
| ip-src-route disable | |
| log-martians enable | |
| receive-redirects disable | |
| send-redirects enable | |
| source-validation disable | |
| syn-cookies enable | |
| } | |
| interfaces { | |
| ethernet eth0 { | |
| address 192.168.1.1/24 | |
| duplex auto | |
| speed auto | |
| } | |
| ethernet eth1 { | |
| duplex auto | |
| speed auto | |
| } | |
| ethernet eth2 { | |
| duplex auto | |
| speed auto | |
| } | |
| ethernet eth3 { | |
| duplex auto | |
| speed auto | |
| vif 836 { | |
| address dhcp | |
| description "Free FTTH" | |
| mtu 1500 | |
| } | |
| } | |
| } | |
| port-forward { | |
| auto-firewall enable | |
| hairpin-nat enable | |
| lan-interface eth0 | |
| rule 1 { | |
| description IKE | |
| forward-to { | |
| address 192.168.1.18 | |
| port 500 | |
| } | |
| original-port 500 | |
| protocol udp | |
| } | |
| rule 2 { | |
| description L2TP | |
| forward-to { | |
| address 192.168.1.18 | |
| port 1702 | |
| } | |
| original-port 1701 | |
| protocol udp | |
| } | |
| rule 3 { | |
| description "NAT Traversal" | |
| forward-to { | |
| address 192.168.1.18 | |
| port 4500 | |
| } | |
| original-port 4500 | |
| protocol udp | |
| } | |
| wan-interface eth3.836 | |
| } | |
| protocols { | |
| static { | |
| route 192.168.2.0/24 { | |
| next-hop 192.168.1.2 { | |
| description Wifi | |
| } | |
| } | |
| } | |
| } | |
| service { | |
| gui { | |
| http-port 80 | |
| https-port 443 | |
| older-ciphers enable | |
| } | |
| nat { | |
| rule 5000 { | |
| description "Masquerade for Internet" | |
| log disable | |
| outbound-interface eth3.836 | |
| protocol all | |
| type masquerade | |
| } | |
| } | |
| ssh { | |
| port 22 | |
| protocol-version v2 | |
| } | |
| unms { | |
| disable | |
| } | |
| } | |
| system { | |
| host-name hlbrtr01op | |
| login { | |
| user admin { | |
| authentication { | |
| encrypted-password **************** | |
| plaintext-password **************** | |
| } | |
| level admin | |
| } | |
| } | |
| name-server 8.8.8.8 | |
| ntp { | |
| server 0.ubnt.pool.ntp.org { | |
| } | |
| server 1.ubnt.pool.ntp.org { | |
| } | |
| server 2.ubnt.pool.ntp.org { | |
| } | |
| server 3.ubnt.pool.ntp.org { | |
| } | |
| } | |
| syslog { | |
| global { | |
| facility all { | |
| level notice | |
| } | |
| facility protocols { | |
| level debug | |
| } | |
| } | |
| } | |
| time-zone UTC | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment