Scribd Logo
Hochladen

Willkommen bei Scribd!

  • LB DHS 1.1

    Hochgeladen von

    Diego Henrique Silva
    20 Ansichten2 Seiten

    Originaltitel

    LB_DHS_1.1

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Verfügbare Formate

    TXT, PDF, TXT oder online auf Scribd lesen

    Stufen Sie dieses Dokument als nützlich ein?

    Sind diese Inhalte unangemessen?

    Dieses Dokument melden

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Als TXT, PDF, TXT herunterladen oder online auf Scribd lesen
    Markieren Sie unangemessene Inhalte
    20 Ansichten2 Seiten

    LB DHS 1.1

    Hochgeladen von

    Diego Henrique Silva

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Als TXT, PDF, TXT herunterladen oder online auf Scribd lesen
    Markieren Sie unangemessene Inhalte
    von 2

    # ip address -------------------------/ip address add address=192.168.0.1/24 interface=ether1 /ip address add address=192.168.9.

    2/24 interface=ether2 # interface pppoe-client --------------/interface pppoe-client add ac-name="" add-default-route=no allow=pap,chap,mscha p1,mschap2 dial-on-demand=yes disabled=no interface=ether3 max-mru=1480 max-mtu= 1480 mrru=disabled name=adsl_ether3 password=easy2011 profile=default service-na me="" use-peer-dns=no user=easyconnect@bol.com.br # ip dns -------------------------------/ip dns set primary-dns=8.8.8.8 /ip dns set secondary-dns=8.8.4.4 /ip dns set allow-remote-requests=yes # ip firewall Filter-----------------------/ip firewall filter add action=accept chain=input disabled=no in-interface=!ethe r2 src-address=192.168.0.1/24 # ip firewall nat-------------------------/ip firewall nat add action=masquerade chain=srcnat disabled=no out-interface=et her2 /ip firewall nat add action=masquerade chain=srcnat disabled=no out-interface=ad sl_ether3 # ip firewall mangle-----------------------# LoopBack por link------------------------/ ip firewall mangle add action=mark-connection chain=prerouting comment="" conn ection-state=new disabled=no dst-address-list=LINK0 in-interface=ether1 new-conn ection-mark=Sites0 passthrough=yes / ip firewall mangle add action=mark-routing chain=prerouting comment="" connect ion-mark=Sites0 disabled=no in-interface=ether1 new-routing-mark=Rota0 passthrou gh=no / ip route add gateway=192.168.9.1 routing-mark=Rota0 / ip firewall mangle add action=mark-connection chain=prerouting comment="" conn ection-state=new disabled=no dst-address-list=LINK1 in-interface=ether1 new-conn ection-mark=Sites1 passthrough=yes / ip firewall mangle add action=mark-routing chain=prerouting comment="" connect ion-mark=Sites1 disabled=no in-interface=ether1 new-routing-mark=Rota1 passthrou gh=no / ip route add gateway=adsl_ether3 routing-mark=Rota1 /ip firewall address-list add ESCO" disabled=no list=LINK0 /ip firewall address-list add st=LINK0 /ip firewall address-list add st=LINK0 /ip firewall address-list add =LINK1 /ip firewall address-list add =LINK1 /ip firewall address-list add t=LINK1 /ip firewall address-list add =LINK1 /ip firewall address-list add d=no list=LINK1 address=200.155.80.0-200.155.255.255 comment="BRAD address=200.220.186.0/24 comment="" disabled=no li address=200.220.178.0/24 comment="" disabled=no li address=201.7.176.0/24 comment="" disabled=no list address=201.7.178.0/24 comment="" disabled=no list address=208.67.217.0/24 comment="" disabled=no lis address=208.69.32.0/24 comment="" disabled=no list address=64.38.29.0/24 comment="RapidShare" disable

    # Fim LoopBack por link---------------------/ip firewall mangle add action=mark-connection connection-state=new chain=prerou ting disabled=no in-interface=ether2 new-connection-mark=ether2_conn passthrough =yes /ip firewall mangle add action=mark-connection connection-state=new chain=prerou ting disabled=no in-interface=adsl_ether3 new-connection-mark=adsl_ether3_conn p assthrough=yes /ip firewall mangle add action=mark-routing chain=output connection-mark=ether2_ conn disabled=no new-routing-mark=to_ether2 passthrough=yes /ip firewall mangle add action=mark-routing chain=output connection-mark=adsl_et her3_conn disabled=no new-routing-mark=to_adsl_ether3 passthrough=yes /ip firewall mangle add action=accept chain=prerouting disabled=no dst-address=1 92.168.9.0/24 in-interface=ether1 /ip firewall mangle add action=mark-connection connection-state=new chain=prerou ting disabled=no dst-address-type=!local in-interface=ether1 new-connection-mark =ether2_conn passthrough=yes per-connection-classifier=both-addresses:2/0 /ip firewall mangle add action=mark-connection connection-state=new chain=prerou ting disabled=no dst-address-type=!local in-interface=ether1 new-connection-mark =adsl_ether3_conn passthrough=yes per-connection-classifier=both-addresses:2/1 /ip firewall mangle add action=mark-routing chain=prerouting connection-mark=eth er2_conn disabled=no in-interface=ether1 new-routing-mark=to_ether2 passthrough= yes /ip firewall mangle add action=mark-routing chain=prerouting connection-mark=ads l_ether3_conn disabled=no in-interface=ether1 new-routing-mark=to_adsl_ether3 pa ssthrough=yes # ip route---------------------------------/ip route add check-gateway=ping disabled=no distance=1 dst-address=0.0.0.0/0 ga teway=192.168.9.1 routing-mark=to_ether2 comment="Link0" /ip route add disabled=no distance=1 dst-address=0.0.0.0/0 gateway=adsl_ether3 r outing-mark=to_adsl_ether3 comment="Link1" /ip route add check-gateway=ping comment="Link0" disabled=no distance=1 dst-addr ess=0.0.0.0/0 gateway=192.168.9.1 scope=30 target-scope=10 /ip route add comment="Link1" disabled=no distance=2 dst-address=0.0.0.0/0 gatew ay=adsl_ether3 scope=30 target-scope=10

    Das könnte Ihnen auch gefallen