# model: RB760iGS # serial-number: D4500D565982 # firmware-type: mt7621L # current-firmware: 6.47.7 # installed-version: 6.47.7 # Flags: U - undoable, R - redoable, F - floating-undo # ACTION BY POLICY # # software id = NVV8-Z3I7 # # model = RB760iGS # serial number = D4500D565982 /interface bridge add name=Loopback add name=REDE-INTERNA /interface ethernet set [ find default-name=ether1 ] comment=LINK set [ find default-name=ether3 ] comment=REDE-INTERNA set [ find default-name=sfp1 ] advertise=1000M-full auto-negotiation=no /interface pppoe-client add add-default-route=yes interface=ether2 name=pppoe-out1 password=teste use-peer-dns=yes user=teste /interface vlan add interface=ether1 name=VLAN-220-GVP-ANP vlan-id=220 /interface ethernet switch port set 0 default-vlan-id=0 set 1 default-vlan-id=0 set 2 default-vlan-id=0 set 3 default-vlan-id=0 set 4 default-vlan-id=0 set 5 default-vlan-id=0 /ip hotspot profile set [ find default=yes ] html-directory=flash/hotspot /ip pool add name=dhcp_pool0 ranges=192.168.10.2-192.168.10.254 add name=dhcp_pool1 ranges=192.168.77.2-192.168.77.254 /ip dhcp-server add address-pool=dhcp_pool0 interface=ether1 lease-time=1h name=dhcp1 add address-pool=dhcp_pool1 disabled=no interface=REDE-INTERNA name=dhcp2 /ipv6 pool add name=POOL-IPv6 prefix=2804:2994:1000::/48 prefix-length=49 /queue simple add max-limit=550M/550M name=QUEUE-GVP-ANP target=REDE-INTERNA /routing ospf instance set [ find default=yes ] router-id=10.0.8.178 /routing ospf-v3 instance set [ find default=yes ] router-id=10.0.8.178 /snmp community set [ find default=yes ] addresses=143.0.252.0/22 name=SnmP_Se77E /interface bridge port add bridge=REDE-INTERNA interface=ether3 add bridge=REDE-INTERNA interface=ether4 add bridge=REDE-INTERNA interface=ether5 /ip neighbor discovery-settings set discover-interface-list=!dynamic /ip address add address=143.0.255.120 interface=Loopback network=143.0.255.120 add address=10.0.8.178/30 comment=VLAN-220-GVP-ANP interface=VLAN-220-GVP-ANP network=10.0.8.176 add address=192.168.77.1/24 interface=REDE-INTERNA network=192.168.77.0 add address=205.164.78.99 disabled=yes interface=Loopback network=205.164.78.99 /ip dhcp-server network add address=192.168.10.0/24 gateway=192.168.10.1 add address=192.168.77.0/24 gateway=192.168.77.1 /ip dns set servers=143.0.252.10,143.0.252.20,2804:2994:77::10,2804:2994:77::20 /ip firewall nat add action=same chain=srcnat same-not-by-dst=no src-address=192.168.77.0/24 to-addresses=143.0.255.120 add action=dst-nat chain=dstnat dst-address=143.0.255.120 dst-port=!8291,2277 protocol=tcp to-addresses=192.168.77.100 add action=dst-nat chain=dstnat dst-address=143.0.255.120 dst-port=!8291,2277 protocol=udp to-addresses=192.168.77.100 add action=same chain=srcnat comment=Bloco-205 disabled=yes same-not-by-dst=no src-address=192.168.77.0/24 to-addresses=205.164.78.99 add action=dst-nat chain=dstnat comment=Bloco-205 disabled=yes dst-address=205.164.78.99 dst-port=!8291,2277 protocol=tcp to-addresses=192.168.77.100 add action=dst-nat chain=dstnat comment=Bloco-205 disabled=yes dst-address=205.164.78.99 dst-port=!8291,2277 protocol=udp to-addresses=192.168.77.100 /ip service set telnet disabled=yes port=2377 set ftp disabled=yes set www disabled=yes set ssh address=205.164.78.0/23,143.0.252.0/22,143.0.252.58/32 port=2277 set api disabled=yes set winbox address=143.0.252.0/22 set api-ssl disabled=yes /ipv6 address add address=2804:2994:1000:ffff:ffff:ffff:ffff:ffff/48 advertise=no interface=Loopback add address=::1/49 advertise=no comment=REDE-INTERNA from-pool=POOL-IPv6 interface=REDE-INTERNA /ipv6 nd set [ find default=yes ] other-configuration=yes /ipv6 route add distance=110 gateway=fe80::4e5e:cff:fefa:1821%VLAN-220-GVP-ANP scope=20 /radius add address=10.7.7.106 secret=77acesso service=login src-address=143.0.255.120 /routing filter add action=accept chain=ospf-in prefix=0.0.0.0/0 add action=discard chain=ospf-in prefix-length=0-32 /routing ospf interface add network-type=point-to-point add interface=VLAN-220-GVP-ANP network-type=point-to-point /routing ospf network add area=backbone comment=VLAN-220-GVP-ANP network=10.0.8.176/30 add area=backbone comment=Loopback network=143.0.255.120/32 add area=backbone comment=Loopback disabled=yes network=205.164.78.99/32 /routing ospf-v3 interface add area=backbone interface=VLAN-220-GVP-ANP network-type=point-to-point add area=backbone interface=Loopback add area=backbone passive=yes /snmp set contact=SE77E enabled=yes trap-version=2 /system clock set time-zone-autodetect=no time-zone-name=America/Sao_Paulo /system identity set name=SE77E-GVP-ANP /system ntp client set enabled=yes primary-ntp=143.0.252.51 secondary-ntp=143.0.252.51 /tool romon set enabled=yes secrets=@a7net@# /user aaa set use-radius=yes