name="internet"
name="clientes
name="mkauth"
e depois so aplicar os scripts
Va ate / user ssh-keys e importe a chave que se encotra
no mk-auth em configuraçoes coloque o nome mkauth ante.
/ interface ethernet
set internet name="internet" mtu=1500 mac-address=00:17:31:26:21:1B \
arp=enabled disable-running-check=yes auto-negotiation=yes full-duplex=yes \
cable-settings=default speed=100Mbps comment="" disabled=no
set clientes name="clientes" mtu=1500 mac-address=00:E0:4C:D1:43:A1 \
arp=enabled disable-running-check=yes auto-negotiation=yes full-duplex=yes \
cable-settings=default speed=100Mbps comment="" disabled=no
set mkauth name="mkauth" mtu=1500 mac-address=00:A1:B0:11:C3:6B arp=enabled \
disable-running-check=yes auto-negotiation=yes full-duplex=yes \
cable-settings=default speed=100Mbps comment="" disabled=no
/ interface pppoe-server server
add service-name="Servidor" interface=clientes max-mtu=1444 max-mru=1444 \
authentication=chap,mschap1,mschap2 keepalive-timeout=10 \
one-session-per-host=no max-sessions=0 default-profile=ppoe disabled=no
/ ip pool
add name="REMOTE" ranges=175.15.2.2-175.15.5.250
add name="LOCAL" ranges=195.19.2.2-195.19.5.250
/ ip dns
set primary-dns=200.225.197.34 secondary-dns=200.225.197.37 \
allow-remote-requests=yes cache-size=2048KiB cache-max-ttl=1w
/ ip address
add address=192.168.1.15/24 network=192.168.1.0 broadcast=192.168.1.255 \
interface=internet comment="" disabled=no
add address=172.31.255.1/30 network=172.31.255.0 broadcast=172.31.255.3 \
interface=mkauth comment="" disabled=no
/ ip route
add dst-address=0.0.0.0/0 gateway=192.168.1.1 scope=255 target-scope=10 \
comment="" disabled=no
Regras do P2P se quizer colocar
/ ip firewall mangle
add chain=prerouting connection-mark=p2pcyber action=mark-packet \
new-packet-mark=p2p passthrough=yes comment="" disabled=no
add chain=prerouting p2p=all-p2p action=mark-connection \
new-connection-mark=p2pcyber passthrough=yes comment="P2P" disabled=no
/ ip firewall nat
add chain=srcnat out-interface=internet action=masquerade comment="" \
disabled=no
add chain=dstnat protocol=tcp src-address-list=pgcorte action=dst-nat \
to-addresses=172.31.255.2 to-ports=85 comment="PG CORTE" disabled=no
/ ppp profile
set default name="default" use-compression=default use-vj-compression=default \
use-encryption=default only-one=default change-tcp-mss=yes comment=""
add name="ppoe" local-address=LOCAL remote-address=REMOTE \
use-compression=default use-vj-compression=default use-encryption=yes \
only-one=yes change-tcp-mss=default dns-server=192.168.1.15 comment=""
set default-encryption name="default-encryption" use-compression=default \
use-vj-compression=default use-encryption=yes only-one=default \
change-tcp-mss=yes comment=""
/ ppp aaa
set use-radius=yes accounting=yes interim-update=3m
/ user
add name="admin" group=full address=0.0.0.0/0 comment="system default user" \
disabled=no
add name="mkauth" group=full address=0.0.0.0/32 comment="" disabled=no
/ radius
add service=ppp called-id="" domain="" address=172.31.255.2 secret="123456" \
authentication-port=1812 accounting-port=1813 timeout=300ms \
accounting-backup=no realm="" comment="" disabled=no
ta ai agora fik mais facil entender
Para adicionar comentários, você deve ser membro de MK-AUTH.
Respostas