SRT/RTX/RT設定例集

Similar documents
設定例集_Rev.8.03, Rev.9.00, Rev.10.01対応

設定例集

SRT100 コマンド設定運用説明書

RT300i/RT140x/RT105i 取扱説明書

RT300/140/105シリーズ 取扱説明書

ヤマハルーターのCLI:Command Line Interface

帯域を測ってみよう (適応型QoS/QoS連携/帯域検出機能)

REMOTE ROUTERS RTA52i PDF

RTX/RTシリーズ コマンドリファレンス

RTX830 取扱説明書

RTX/RTシリーズ コマンドリファレンス

owners.book

RTX1210 取扱説明書

RT300/140/105 シリーズ コマンドリファレンス

IP ICMP Redirec

IP.dvi

ヤマハ ルーター ファイアウォール機能~説明資料~

SGX808 IPsec機能

MR1000 コマンド設定事例集

コマンドリファレンス

RT57i・RTV700 コマンドリファレンス

Si-R30コマンドリファレンス

Si-R30コマンドリファレンス

NATディスクリプタ機能

TCP/IP Internet Week 2002 [2002/12/17] Japan Registry Service Co., Ltd. No.3 Internet Week 2002 [2002/12/17] Japan Registry Service Co., Ltd. No.4 2

ヤマハ ルーター ファイアウォール機能~説明資料~

RouteMagic Controller RMC-MP200 / MP Version

アライドテレシス ディストリビューション・スイッチ AT-x600シリーズで実現するMicrosoft® NAP

FutureNet CS-SEILシリーズ コマンドリファレンス ver.1.82対応版

Biz Box ルータ 「N1200」 コマンドリファレンス

RT58i Cmdref

CS-SEIL-510/C コマンドリファレンス

Si-R30取扱説明書

RTX/RTシリーズ コマンドリファレンス

Win XP SP3 Japanese Ed. NCP IPSec client Hub L3 SW SRX100 Policy base VPN fe-0/0/0 vlan.0 Win 2003 SVR /

RouteMagic Controller( RMC ) 3.6 RMC RouteMagic RouteMagic Controller RouteMagic Controller MP1200 / MP200 Version 3.6 RouteMagic Controller Version 3

RT107eセミナー用資料

AMF Cloud ソリューション

Soliton Net’Attest EPS + AR router series L2TP+IPsec RADIUS 設定例

2/ PPPoE AC(Access Concentrator) PPPoE PPPoE Ping FTP PP

rzakg.ps

AMFマルチテナントソリューション

リング型IPカメラ監視ソリューション(マルチキャスト編)


Si-R30取扱説明書

橡sirahasi.PDF

PowerPoint プレゼンテーション

WEB.dvi

ScreenOS 5.0 ScreenOS 5.0 Deep Inspection VLAN NetScreen-25/-50/-204/-208 HA NetScreen-25 HA Lite NetScreen-25 NetScreen-50) ALG(Application Layer Gat

RouteMagic Controller RMC-MP200 / MP Version

untitled

RTA55i コマンドリファレンス

アドレス プールの設定

アライドテレシスコア スイッチ AT-SBx908 シリーズで実現する AMF-SBx908 ソリューション Solution No 主な目的 ネットワークの一元管理 共有化をしたい 既存ネットワークを再構築せずに 簡単に導入したい ネットワーク管理 運用にかかるコストを削減

N A/006A インテリジェントスイッチ

2/ PPPoE... 9 AC(Access Concentrator) PPPoE PPPoE Ping FTP PPPoE

AirMac ネットワーク構成の手引き

2008, 2009 TOSHIBA TEC CORPORATION All rights reserved

リング型IPカメラ監視ソリューション

IOS ゾーン ベースのポリシー ファイアウォールを使用した IOS ルータでの AnyConnect VPN クライアントの設定例

PBXマニュアル

SRX License

FUJITSU Network SR-M コマンド設定事例集

LAN

ISDN を経由した PPP コールバックの設定

untitled

PPPoE HATS LAN

untitled

対応するospf configure refreshコマンドまたはbgp configure refreshコマンドが実行されるようにした - 置き換え先のコマンド群にshow status ospfコマンドまたはshow status bgpコマンドが含まれていても ospf configure

1 Linux UNIX-PC LAN. UNIX. LAN. UNIX. 1.1 UNIX LAN. 1.2 Linux PC Linux. 1.3 studenta odd kumabari studentb even kumabari studentc odd kumabari student

Solution No アライドテレシスコア スイッチ SBx8100 シリーズで実現実現する WAN 型 u-vcf ソリューション 主な目的 複数ロケーションのネットワークを一極集中管理したい ネットワーク管理 / 運用機構の集約によりランニングコストを抑制したい 各ロケーシ

AirMac ネットワーク for Windows

RT57i 困ったときは

アライドテレシス ディストリビューションスイッチ x610シリーズで実現するVRF-Lite + Tagging + EPSR for x610

RT107e 取扱説明書

2001年12月VPN&ブロードバンドソリューションフォーラム

使用説明書

FUJITSU Network Si-R Si-Rシリーズ Si-R240B ご利用にあたって

UsersGuide_INR-HG5497c_.doc

Northern Lights Server

Microsoft PowerPoint - Amazon VPCとのVPN接続.pptx

iPhone/iPad/Android(TM) とベリサイン アイデンティティプロテクション(VIP)エンタープライズゲートウェイとの組み合わせによるL2TP+IPsecのワンタイムパスワード設定例

ScreenOS Copyright (C) 2005 NOX Co., Ltd. All Rights Reserved. Version1.00

Dynamic VPN Dynamic VPN IPSec VPN PC SRX IPSec VPN SRX PC IPSec 2 Copyright 2010 Juniper Networks, Inc.

I j

Jlspec

FutureNet NXR,WXR シリーズ設定例集

untitled

GA-1190J


IP 2.2 (IP ) IP 2.3 DNS IP IP DNS DNS 3 (PC) PC PC PC Linux(ubuntu) PC TA 2

コア・スイッチSBx8100 シリーズで実現するスター型冗長コアソリューション

Teradici Corporation # Canada Way, Burnaby, BC V5G 4X8 Canada p f Teradici Corporation Teradi

ヤマハルーター Web GUI 操作マニュアル

2011 I/ 2 1

untitled

perimeter gateway

クラウド接続 「Windows Azure」との接続

IP... 2 IP... 2 IP... 2 IP... 2 VLAN... 3 IP ADD IP IPADDRESS... 5 DELETE IP... 7 PING SETIP SHOW IP IP CentreCOM FS9

Si-R30Bコマンドリファレンス

Transcription:

Network Equipment Rev.6.03, Rev.7.00, Rev.7.01 Rev.8.01, Rev.8.02, Rev.8.03 Rev.9.00, Rev.10.00, Rev.10.01

2

3

4

5

6

1 2 3 1 2 3 7 RTX1000 RTX1000

8 help > help show command > show command console character administrator pp disable disconnect

9 pp enable save Password: login timer save cold start

10 cold start cold start cold start save

11 default gateway ip interface address LAN IP

12 # isdn local address bri1 03-1234-5678/Tokyo # ip lan1 address 172.16.112.215/24 # ip route 192.168.128.0/24 gateway pp 1 pp1# pp bind bri1 pp1# isdn remote address call 06-1111-9999/Osaka pp1# save # isdn local address bri1 06-1111-9999/Osaka # ip lan1 address 192.168.128.1/24 # ip route 172.16.112.0/24 gateway pp 1 pp1# pp bind bri1 pp1# isdn remote address call 03-1234-5678/Tokyo pp1# save

13 isdn local address ip lan1 address ip route pp select pp bind isdn remote address pp enable save

14 # isdn local address bri1 03-1234-5678/Tokyo # ip lan1 address 172.16.112.215/24 # ip route 192.168.128.0/24 gateway pp 1 pp1# pp bind bri1 pp1# ppp mp use on pp1# isdn remote address call 06-1111-9999/Osaka pp1# save # isdn local address bri1 06-1111-9999/Osaka # ip lan1 address 192.168.128.1/24 # ip route 172.16.112.0/24 gateway pp 1 pp1# pp bind bri1 pp1# ppp mp use on pp1# isdn remote address call 03-1234-5678/Tokyo pp1# save

15 isdn local address ip lan1 address ip route pp select pp bind ppp mp use isdn remote address pp enable save

16 # isdn local address bri1 03-1234-5678/Tokyo # ip lan1 address 192.168.127.215/24 # rip use on pp1# pp bind bri1 pp1# isdn remote address call 06-1111-9999/Osaka pp1# ip pp rip send on version 2 pp1# ip pp rip hold routing on pp1# save # isdn local address bri1 06-1111-9999/Osaka # ip lan1 address 192.168.128.1/24 # rip use on pp1# pp bind bri1 pp1# isdn remote address call 03-1234-5678/Tokyo pp1# ip pp rip send on version 2 pp1# ip pp rip hold routing on pp1# save pp1# connect 1 pp1# disconnect 1

17 isdn local address ip lan1 address rip use rip pp select pp bind isdn remote address ip pp rip send ip pp rip hold routing pp enable save isdn local address ip lan1 address rip use rip pp select pp bind isdn remote address ip pp rip send ip pp rip hold routing pp enable save connect disconnect

18 # line type bri1 l128 # ip lan1 address 172.16.112.215/24 # ip route 192.168.128.0/24 gateway pp 1 pp1# pp bind bri1 pp1# save pp1# interface reset bri1 # line type bri1 l128 # ip lan1 address 192.168.128.1/24 # ip route 172.16.112.0/24 gateway pp 1 pp1# pp bind bri1 pp1# save pp1# interface reset bri1

19 line type ip lan1 address ip route pp select pp bind pp enable save interface reset

20 # line type bri1 l128 # ip lan1 address 172.16.112.215/24 # ip route 192.168.128.0/24 gateway pp 1 pp1# pp bind bri1 pp1# ip pp address 192.168.129.1/24 pp1# ip pp remote address 192.168.129.2 pp1# save pp1# interface reset bri1 # line type bri1 l128 # ip lan1 address 192.168.128.1/24 # ip route 172.16.112.0/24 gateway pp 1 # pp bind bri1 pp1# ip pp address 192.168.129.2/24 pp1# ip pp remote address 192.168.129.1 pp1# save pp1# interface reset bri1

21 line type ip lan1 address ip route pp select pp bind ip pp address ip pp remote address pp enable save interface reset

22 # line type bri1 l128 # ip lan1 address 192.168.127.215/24 # rip use on pp1# pp bind bri1 pp1# ip pp rip send on version 2 pp1# ip pp rip connect send interval pp1# save pp1# interface reset bri1 # pp line l128 # line type bri1 # ip lan1 address 192.168.128.1/24 # rip use on pp1# pp bind bri1 pp1# ip pp rip send on version 2 pp1# ip pp rip connect send interval pp1# save pp1# interface reset bri1

23 line type ip lan1 address rip use rip pp select pp bind ip pp rip send ip pp rip connect send ip pp rip connect interval pp enable save interface reset

24 # isdn local address bri1 03-1234-5678/Tokyo # ip lan1 address 172.16.112.215/24 # ip route 192.168.128.0/24 gateway pp 2 # ip route 192.168.129.0/24 gateway pp 3 # pp select 2 pp2# pp bind bri1 pp2# isdn remote address call 06-1111-9999/Osaka pp2# pp enable 2 pp2# pp select 3 pp3# pp bind bri1 pp3# isdn remote address call 052-765-4321/Nagoya pp3# pp enable 3 pp3# save # isdn local address bri1 06-1111-9999/Osaka # ip lan1 address 192.168.128.1/24 # ip route 172.16.112.0/24 gateway pp 1 # ip route 192.168.129.0/24 gateway pp 3 pp1# pp bind bri1 pp1# isdn remote address call 03-1234-5678/Tokyo pp1# pp select 3 pp3# pp bind bri1 pp3# isdn remote address call 052-765-4321/Nagoya pp3# pp enable 3 pp3# save

25 # isdn local address bri1 052-765-4321/Nagoya # ip lan1 address 192.168.129.10/24 # ip route 172.16.112.0/24 gateway pp 1 # ip route 192.168.128.0/24 gateway pp 2 pp1# pp bind bri1 pp1# isdn remote address call 03-1234-5678/Tokyo pp1# pp select 2 pp2# pp bind bri1 pp2# isdn remote address call 06-1111-9999/Osaka pp2# pp enable 2 pp2# save isdn local address ip lan1 address ip route pp select pp bind isdn remote address pp enable pp select pp bind isdn remote address pp enable save

26 # isdn local address bri1 06-1111-9999/Osaka # ip lan1 address 192.168.128.1/24 # ip route default gateway pp 1 pp1# pp bind bri1 pp1# isdn remote address call 03-1234-5678/Tokyo pp1# save isdn local address ip lan1 address ip route pp select pp bind isdn remote address pp enable save

27 # isdn local address bri1 03-1234-5678/Tokyo # ip lan1 address 172.16.112.215/24 # ip route 192.168.128.0/24 gateway pp 1 pp1# pp bind bri1 pp1# isdn remote address call 06-1111-9999/Osaka pp1# save # isdn local address 06-1111-9999/Osaka # ip lan1 address 192.168.128.1 # ip route 172.16.112.0/24 gateway pp 2 pp1# pp bind bri1 pp1# isdn remote address call 0120-654321/Tokyo 03-1234-5678/Tokyo pp1# save

28 isdn local address ip lan1 address ip route pp select pp bind isdn remote address pp enable save isdn local address ip lan1 address ip route pp select pp bind isdn remote address pp enable save

29 # isdn local address bri1 03-1234-5678/Tokyo # ip lan1 address 172.16.112.215/24 # ip route 192.168.128.0/24 gateway pp 1 pp1# pp bind bri1 pp1# isdn callback request on pp1# isdn remote address call 06-1111-9999/Osaka pp1# save # isdn local address bri1 06-1111-9999/Osaka # ip lan1 address 192.168.128.1/24 # ip route 172.16.112.0/24 gateway pp 1 pp1# pp bind bri1 pp1# isdn callback permit on pp1# isdn remote address call 03-1234-5678/Tokyo pp1# save

30 isdn local address ip lan1 address ip route pp select pp bind isdn callback request isdn remote address pp enable save isdn local address ip lan1 address ip route pp select pp bind isdn callback permit isdn remote address pp enable save

31 # isdn local address bri1 03-1234-5678/Tokyo # ip lan1 address 172.16.112.1/24 # ip route 172.16.112.241 gateway pp 1 # ip route 172.16.112.242 gateway pp 1 # ip route 172.16.112.243 gateway pp 1 # ip lan1 proxyarp on pp1# pp bind bri1 pp1# isdn remote address call 06-1111-9999/Osaka pp1# save # isdn local address 06-1111-9999/Osaka # ip lan1 address 172.16.112.241/28 # ip route default gateway pp 1 pp1# pp bind bri1 pp1# isdn remote address call 03-1234-5678/Tokyo pp1# save

32 isdn local address ip lan1 address ip lan1 proxyarp ip route pp select pp bind isdn remote address pp enable save isdn local address ip lan1 address ip route pp select pp bind isdn remote address pp enable save

33 # isdn local address bri1 03-1234-5679/Tokyo # ip lan1 address 172.16.112.1/24 # ip route 172.16.112.241 gateway pp 1 # ip route 172.16.112.242 gateway pp 1 # ip route 172.16.112.243 gateway pp 1.. # ip route 172.16.112.254 gateway pp 2 # ip lan1 proxyarp on pp1# pp bind bri1 pp1# isdn remote address call 06-1111-9999/Osaka pp1# save

34 # isdn local address 03-1234-5679/Tokyo2 # ip lan1 address 172.16.112.2/24 # ip route 172.16.112.237 gateway pp 1 # Ip route 172.16.112.238 gateway pp 1 # ip lan1 proxyarp on pp1# isdn remote address call 052-765-4321/Nagoya pp1# pp bind bri1 pp1# save # isdn local address bri1 052-765-4321/Nagoya # ip lan1 address 172.16.112.237/30 # ip route default gateway pp 1 # pp bind bri1 pp1# isdn remote address call 03-1234-5679/Tokyo2 pp1# save # isdn local address 06-1111-9999/Osaka # ip lan1 address 172.16.112.241/28 # ip route default gateway pp 1 pp1# pp bind bri1 pp1# isdn remote address call 03-1234-5678/Tokyo pp1# save

35 isdn local address ip lan1 address ip lan1 proxyarp ip route pp select pp bind isdn remote address pp enable save

36 isdn local address ip lan1 address ip route pp select pp bind isdn remote address pp enable save

37 # isdn local address bri1 03-1234-5678/Tokyo # ip lan1 address 172.16.112.215/24 # ip lan1 proxyarp on pp1# pp bind bri1 pp1# isdn remote address call 06-1111-9999/Osaka pp1# ip pp remote address 172.16.112.216 pp1# save ip pp remote address isdn local address ip lan1 address ip lan1 proxyarp pp select pp bind isdn remote address

38 ip pp remote address pp enable save

39 # isdn local address bri1 03-1234-5678/Tokyo # ip lan1 address 172.16.112.215/24 # ip lan1 proxyarp on # pp select anonymous anonymous# pp bind bri1 anonymous# ip pp remote address pool 172.16.112.216 172.16.112.217 anonymous# pp auth request chap anonymous# pp auth username RT105i-A himitsu anonymous# pp enable anonymous anonymous# save isdn local address ip lan1 address ip lan1 proxyarp pp select pp bind ip pp remote address pool pp auth request pp auth username

40 pp enable save

41 # isdn local address bri1 03-1234-5678/Tokyo # ip lan1 address 172.16.112.215/24 # ip route default gateway pp 1 # nat descriptor type 1 masquerade pp1# pp bind bri1 pp1# isdn remote address call 06-1111-9999/Osaka pp1# pp auth accept pap chap pp1# pp auth myname RT105i-A himitsu pp1# ppp ipcp ipaddress on pp1# ip pp nat descriptor 1 pp1# save

42 isdn local address ip lan1 address ip route nat descriptor type pp select pp bind isdn remote address pp auth accept pp auth myname ppp ipcp ipaddress ip pp nat descriptor pp enable save

43 # isdn local address bri2.1 0312345678/Tokyo # isdn local address bri2.2 0312345678/Tokyo # isdn local address bri2.3 0312345678/Tokyo # isdn local address bri2.4 0312345678/Tokyo # ip lan1 address 172.16.112.215/24 # pp select anonymous anonymous# pp bind bri2.1 bri2.2 bri2.3 bri2.4 anonymous# pp auth request chap-pap anonymous# pp auth username Nagoya naisyo 0527654321/Nagoya anonymous# pp auth username Osaka himitsu 0611119999/Osaka anonymous# ip route 192.168.129.0/24 gateway pp anonymous name=nagoya anonymous# ip route 192.168.128.0/24 gateway pp anonymous name=osaka anonymous# pp enable anonymous anonymous# save # isdn local address bri1 0611119999/Osaka # ip lan1 address 192.168.128.1/24 pp1# pp bind bri1 pp1# isdn remote address call 0312345678/Tokyo pp1# pp auth accept pap chap pp1# pp auth myname Osaka himitsu pp1# ip route 172.16.112.0/24 gateway pp 1 pp1# save

44 # isdn local address bri1 0527654321/Nagoya # ip lan1 address 192.168.129.10/24 pp1# pp bind bri1 pp1# isdn remote address call 0312345678/Tokyo pp1# pp auth accept pap chap pp1# pp auth myname Nagoya naisyo pp1# ip route 172.16.112.0/24 gateway pp 1 pp1# save isdn local address ip lan1 address pp select pp bind pp auth request pp auth myname pp auth username ip route pp auth username pp enable save isdn local address ip lan1 address pp select pp bind isdn remote address pp auth accept

45 pp auth myname ip route pp enable save isdn local address bri local address ip lan1 address pp select pp bind isdn remote address pp auth accept pp auth myname ip route pp enable save

46 # isdn local address bri2.1 0312345678/Tokyo # line type bri3.1 l128 # isdn terminator bri3.1 on # ip lan1 address 172.16.112.215/24 pp1# pp bind bri2.1 bri3.1 pp1# ppp mp use on pp1# ppp mp maxlink 3 pp1# isdn remote address call 0611119999/Osaka pp1# ip route 192.168.128.0/24 gateway pp 1 pp1# pp keepalive use lcp-echo pp1# save pp1# interface reset pp 1 # isdn local address bri2.1 0611119999/Osaka # line type bri3.1 l128 # isdn terminator bri3.1 on # ip lan1 address 192.168.128.1/24 pp1# pp bind bri2.1 bri3.1 pp1# ppp mp use on pp1# ppp mp maxlink 3 pp1# isdn remote address call 0312345678/Tokyo pp1# ip route 172.16.112.0/24 gateway pp 1 pp1# pp keepalive use lcp-echo pp1# save pp1# interface reset pp 1

47 ppp mp load threshold isdn local address line type isdn terminator ip lan1 address pp select ppp mp use ppp mp maxlink pp bind isdn remote address ip route. pp keepalive use pp enable save restart interface reset interface interface reset pp

48 # isdn local address bri2.1 0312345678/Tokyo # line type bri3.1 l128 # isdn terminator bri3.1 on # ip lan1 address 172.16.112.215/24 pp1# pp bind bri3.1 pp1# ip route 192.168.128.0/24 gateway pp 1 pp1# pp keepalive use lcp-echo pp1# leased backup 2 pp1# pp select 2 pp2# pp bind bri2.1 pp2# isdn remote address call 0611119999/Osaka pp2# isdn call block time 15 pp2# pp enable 2 pp2# save pp2# interface reset bri3.1 # isdn local address bri2.1 0611119999/Osaka # line type bri3.1 l128 # isdn terminator bri3.1 on # ip lan1 address 192.168.128.1/24 pp1# pp bind bri3.1 pp1# ip route 172.16.112.0/24 gateway pp 1 pp1# pp keepalive use lcp-echo pp1# leased backup 2 pp1# pp select 2 pp2# pp bind bri2.1 pp2# isdn remote address call 0312345678/Tokyo pp2# isdn call block time 15 pp2# pp enable 2 pp2# save pp2# interface reset bri3.1

49 isdn local address line type isdn terminator ip lan1 address pp select pp bind ip route pp keepalive use leased backup pp enable pp select pp bind isdn remote address isdn call block time pp enable save interface reset restart

50 # isdn local address bri2.1 0312345677/Tokyo1 # isdn local address bri2.2 0312345678/Tokyo2 # isdn local address bri2.3 0312345679/Tokyo3 # ip lan1 address 172.16.112.215/24 # ip route 192.168.121.0/24 gateway pp 1 # ip route 192.168.122.0/24 gateway pp 2 # ip route 192.168.123.0/24 gateway pp 3 # ip route 192.168.124.0/24 gateway pp 4 # ip route 192.168.125.0/24 gateway pp 5 pp1# pp bind bri2.1 pp1# isdn remote address call 0611119999/Osaka1 pp1# pp select 2 pp2# pp bind bri2.1 pp2# isdn remote address call 0611118888/Osaka2 pp2# pp enable 2 pp2# pp select 3 pp3# pp bind bri2.2 pp3# isdn remote address call 0611117777/Osaka3 pp3# pp enable 3 pp3# pp select 4 pp4# pp bind bri2.2 pp4# isdn remote address call 0611116666/Osaka4 pp4# pp enable 4 pp4# pp select 5 pp5# pp bind bri2.3 pp5# isdn remote address call 0611115555/Osaka5 pp5# pp enable 5 pp5# save

51 isdn local address ip lan1 address pp select pp bind isdn remote address isdn call permit off isdn remote address arrive ip route pp enable save

52 # isdn local address bri2.1 0312345676/Tokyo1 # isdn local address bri2.2 0312345677/Tokyo2 # isdn local address bri2.3 0312345678/Tokyo3 # isdn local address bri2.4 0312345679/Tokyo4 # ip lan1 address 172.16.112.215/24 pp1# pp bind bri2.1 bri2.2 bri2.3 bri2.4 pp1# ppp mp use on pp1# ppp mp maxlink 8 pp1# isdn remote address call 0611119999/Osaka1 0611119998/Osaka2 0611119997/Osaka3 0611119996/Osaka4 pp1# ip route 192.168.128.0/24 gateway pp 1 pp1# save # isdn local address bri2.1 0611119999/Osaka1 # isdn local address bri2.2 0611119998/Osaka2 # isdn local address bri2.3 0611119997/Osaka3 # isdn local address bri2.4 0611119996/Osaka4 # ip lan1 address 192.168.128.1/24 pp1# pp bind bri2.1 bri2.2 bri2.3 bri2.4 pp1# ppp mp use on pp1# ppp mp maxlink 8 pp1# isdn remote address call 0312345676/Tokyo1 0312345677/Tokyo2 0312345678/Tokyo3 0312345679/Tokyo4 pp1# ip route 172.16.112.0/24 gateway pp 1 pp1# save

53 ppp mp load threshold isdn local address ip lan1 address pp select ppp mp use ppp mp maxlink pp bind isdn remote address ip route pp enable save

54

55 # line type bri2.8 l64 # line type bri3.1 l64 # line type bri3.2 l64 # line type bri3.3 l64 # line type bri3.4 l128 # line type bri3.5 l128 # isdn local address bri2.1 03-1234-5678/aaa # isdn local address bri2.2 03-1234-5678/aaa # isdn local address bri2.3 03-1234-5678/aaa # isdn local address bri2.4 03-1234-5678/aaa # isdn local address bri2.5 03-1234-5678/aaa # isdn local address bri2.6 03-1234-5678/aaa # isdn local address bri2.7 03-1234-5678/aaa # ip lan1 address 172.16.112.215/24 # rip use on # ip route 192.168.0.0/24 gateway pp 1 # ip route 192.168.1.0/24 gateway pp 2 # ip route 192.168.2.0/24 gateway pp 3 # ip route 192.168.3.0/24 gateway pp 4 # ip route 192.168.4.0/24 gateway pp 5 # ip route 192.168.5.0/24 gateway pp 6 # ip route 192.168.6.0/24 gateway pp 7 # ip route 192.168.7.0/24 gateway pp 8 # ip route 192.168.8.0/24 gateway pp 9 # ip route 192.168.9.0/24 gateway pp 10 # ip route 192.168.10.0/24 gateway pp 11 # ip route 192.168.11.0/24 gateway pp 12 # ip route 192.168.12.0/24 gateway pp 13 # ip route 192.168.13.0/24 gateway pp 14

56 # ip route 192.168.100.0/24 gateway pp 15 # ip route 192.168.101.0/24 gateway pp 16 # ip route 192.168.102.0/24 gateway pp 17 # ip route 192.168.103.0/24 gateway pp 18 # ip route 192.168.104.0/24 gateway pp 19 # ip route 192.168.105.0/24 gateway pp 20 pp1# pp bind bri2.1 bri2.2 bri2.3 bri2.4 bri2.5 bri2.6 bri2.7 pp1# isdn remote address call 03-9001-1101/bbb pp1# pp select 2 pp2# pp bind bri2.1 bri2.2 bri2.3 bri2.4 bri2.5 bri2.6 bri2.7 pp2# isdn remote address call 03-9002-1102/bbb pp2# pp enable 2 pp2# pp select 3 pp3# pp bind bri2.1 bri2.2 bri2.3 bri2.4 bri2.5 bri2.6 bri2.7 pp3# isdn remote address call 03-9003-1103/bbb pp3# pp enable 3 pp3# pp select 4 pp4# pp bind bri2.1 bri2.2 bri2.3 bri2.4 bri2.5 bri2.6 bri2.7 pp4# isdn remote address call 03-9004-1104/bbb pp4# pp enable 4 pp4# pp select 5 pp5# pp bind bri2.1 bri2.2 bri2.3 bri2.4 bri2.5 bri2.6 bri2.7 pp5# isdn remote address call 03-9005-1105/bbb pp5# pp enable 5 pp5# pp select 6 pp6# pp bind bri2.1 bri2.2 bri2.3 bri2.4 bri2.5 bri2.6 bri2.7 pp6# isdn remote address call 03-9006-1106/bbb pp6# pp enable 6 pp6# pp select 7 pp7# pp bind bri2.1 bri2.2 bri2.3 bri2.4 bri2.5 bri2.6 bri2.7 pp7# isdn remote address call 03-9007-1107/bbb pp7# pp enable 7 pp7# pp select 8 pp8# pp bind bri2.1 bri2.2 bri2.3 bri2.4 bri2.5 bri2.6 bri2.7 pp8# isdn remote address call 03-9008-1108/bbb pp8# pp enable 8 pp8# pp select 9 pp9# pp bind bri2.1 bri2.2 bri2.3 bri2.4 bri2.5 bri2.6 bri2.7 pp9# isdn remote address call 03-9009-1109/bbb pp9# pp enable 9 pp90 pp10# pp bind bri2.1 bri2.2 bri2.3 bri2.4 bri2.5 bri2.6 bri2.7 pp10# isdn remote address call 03-9010-1110/bbb pp10# pp enable 10 pp101 pp11# pp bind bri2.1 bri2.2 bri2.3 bri2.4 bri2.5 bri2.6 bri2.7 pp11# isdn remote address call 03-9011-1111/bbb pp11# pp enable 11 pp112 pp12# pp bind bri2.1 bri2.2 bri2.3 bri2.4 bri2.5 bri2.6 bri2.7 pp12# isdn remote address call 03-9012-1112/bbb pp12# pp enable 12 pp123

57 pp13# pp bind bri2.1 bri2.2 bri2.3 bri2.4 bri2.5 bri2.6 bri2.7 pp13# isdn remote address call 03-9013-1113/bbb pp13# pp enable 13 pp134 pp14# pp bind bri2.1 bri2.2 bri2.3 bri2.4 bri2.5 bri2.6 bri2.7 pp14# isdn remote address call 03-9014-1114/bbb pp14# pp enable 14 pp145 pp15# pp bind bri2.8 pp15# pp enable 15 pp156 pp16# pp bind bri3.1 pp16# pp enable 16 pp167 pp17# pp bind bri3.2 pp17# pp enable 17 pp178 pp18# pp bind bri3.3 pp18# pp enable 18 pp189 pp19# pp bind bri3.4 pp19# pp enable 19 pp19# pp select 20 pp20# pp bind bri3.5 pp20# pp enable 20 pp20# save pp20# interface reset bri2.8 pp20# interface reset bri3.1 pp20# interface reset bri3.2 pp20# interface reset bri3.3 pp20# interface reset bri3.4 pp20# interface reset bri3.5 line type isdn local address ip lan1 address rip use ip route pp select

58 pp bind isdn remote address pp enable save interface reset restart

59 # line type bri1 l128 # isdn local address bri2 0387654321 # ip lan1 address 192.168.0.1/24 # nat descriptor type 1 nat # nat descriptor address outer 1 172.16.112.177-172.16.112.182 # nat descriptor type 2 masquerade pp1# pp bind bri1 pp1# pp backup pp 2 pp1# pp keepalive use lcp-echo pp1# ip pp nat descriptor 1 pp1# ip route default gateway pp 1 pp1# pp select 2 pp2# pp bind bri2 pp2# isdn remote address call 0312345678 pp2# pp auth accept chap pp2# pp auth myname name pass pp2# ppp ipcp ipaddress on pp2# ppp ipcp msext on pp2# ip pp nat descriptor 2 pp2# pp enable 2 pp2# save # line type bri1 l128 # isdn local address bri2 0387654321 # ip lan1 address 192.168.0.1/24

60 # nat descriptor type 1 nat # nat descriptor address outer 1 172.16.112.177-172.16.112.182 # nat descriptor type 2 masquerade pp1# pp bind bri1 pp1# pp backup pp 2 pp1# pp keepalive use lcp-echo pp1# ip pp nat descriptor 1 pp1# ip route default gateway pp 1 pp1# pp select 2 pp2# pp bind bri2 pp2# isdn remote address call 0312345678 pp2# pp auth accept chap pp2# pp auth myname name pass pp2# ppp ipcp ipaddress on pp2# ppp ipcp msext on pp2# ip pp nat descriptor 2 pp2# pp enable 2 pp2# save

61

62 # ipx routing on # isdn local address bri1 03-1234-5678/Tokyo # ipx lan1 network 11:11:11:11 pp1# pp bind bri1 pp1# ipx pp routing on pp1# isdn remote address call 06-1111-9999/Osaka pp1# ipx pp route 22:22:22:22 2 pp1# save # ipx routing on # isdn local address bri1 06-1111-9999/Osaka # ipx lan1 network 22:22:22:22 # ipx sap add file SERVER aa:aa:aa:aa 00:00:00:00:00:01 ncp 3 pp1# pp bind bri1 pp1# ipx pp routing on pp1# isdn remote address call 03-1234-5678/Tokyo pp1# ipx pp route 11:11:11:11 2 pp1# ipx pp route aa:aa:aa:aa 3 pp1# save

63 ipx routing isdn local address ipx lan1 network pp select pp bind ipx pp routing isdn remote address ipx pp route pp enable save ipx lan1 network SYSTEM AUTOEXEC.NCF bind net ipx routing isdn local address ipx lan1 network ipx sap pp select pp bind ipx pp routing isdn remote address ipx pp route

64 ipx pp route pp enable save ipx sap SYSTEM AUTOEXEC.NCF ipx internalnet 00:00:00:00:00:01 ipx lan1 network

65 # ipx routing on # isdn local address bri1 03-1234-5678/Tokyo # ipx lan1 network 11:11:11:11 # ipx sap file SERVER-B bb:bb:bb:bb: 00:00:00:00:00:01 ncp 3 pp1# pp bind bri1 pp1# ipx pp routing on pp1# isdn remote address call 06-1111-9999/Osaka pp1# ipx pp route 22:22:22:22 2 pp1# ipx pp route bb:bb:bb:bb 3 pp1# save # ipx routing on # isdn local address bri1 06-1111-9999/Osaka # ipx lan1 network 22:22:22:22 # ipx sap file SERVER-A aa:aa:aa:aa 00:00:00:00:00:01 ncp 3 pp1# pp bind bri1 pp1# ipx pp routing on pp1# isdn remote address call 03-1234-5678/Tokyo pp1# ipx pp route 11:11:11:11 2 pp1# ipx pp route aa:aa:aa:aa 3 pp1# save

66 ipx routing isdn local address ipx lan1 network ipx sap pp select pp bind ipx pp routing isdn remote address ipx pp route ipx pp route pp enable save

67 # line type bri1 l64 # ipx routing on # ipx lan1 network 11:11:11:11 pp1# pp bind bri1 pp1# ipx pp routing on pp1# ipx pp ripsap connect send interval pp1# save pp1# interface reset bri1 # line type bri1 l64 # ipx routing on # ipx lan1 network 22:22:22:22 pp1# pp bind bri1 pp1# ipx pp routing on pp1# ipx pp ripsap connect send interval pp1# save pp1# interface reset bri1

68 line type ipx routing ipx lan1 network pp select pp bind ipx pp routing ipx pp ripsap connect send ipx pp ripsap connect interval pp enable save interface reset

69

70 # bridge use on # isdn local address bri1 03-1234-5678/Tokyo # bridge group lan1 1 pp1# pp bind bri1 pp1# isdn remote address call 06-1111-9999/Osaka pp1# save # bridge use on # isdn local address bri1 06-1111-9999/Osaka # bridge group lan1 1 pp1# pp bind bri1 pp1# isdn remote address call 03-1234-5678/Tokyo pp1# save

71 save ip routing off bridge use isdn local address bridge group pp select pp bind isdn remote address pp enable save

72 # line type bri1 l64 # bridge use on # bridge group lan1 1 pp1# pp bind bri1 pp1# save pp1# interface reset bri1 save ip routing off line type bridge use bridge group pp select pp bind pp enable save interface reset

73

74 pp1# ip filter 1 pass 192.168.128.0/24 * pp1# ip pp secure filter out 1 pp1# save pp select ip filter * ip pp secure filter out save

75 pp1# ip filter 1 reject * 192.168.128.0/24 pp1# ip filter 2 pass * * pp1# ip pp secure filter out 1 2 pp1# save pp select ip filter * reject ip pp secure filter out save

76 pp1# ip filter 1 pass 192.168.128.0/24 * pp1# ip pp secure filter in 1 pp1# save pp select ip filter * ip pp secure filter in save

77 pp1# ip filter 1 reject * 192.168.128.0/24 pp1# ip filter 2 pass * * pp1# ip pp secure filter in 1 2 pp1# save pp select ip filter * reject ip pp secure filter in save

78 pp1# ip filter 1 pass * * established pp1# ip filter 2 pass * * tcp ftpdata * pp1# ip pp secure filter in 1 2 pp1# save pp select ip filter * established established ftpdata ip pp secure filter in save

79 pp1# ip filter 1 pass * * udp snmp * pp1# ip filter 2 pass * * udp * snmp pp1# ip pp secure filter in 1 2 pp1# ip pp secure filter out 1 2 pp1# save pp select ip filter * snmp ip pp secure filter save

80 pp1# ip filter 1 pass * * tcp telnet * pp1# ip filter 2 pass * * tcp * telnet pp1# ip pp secure filter in 1 2 pp1# ip pp secure filter out 1 2 pp1# save pp select ip filter * telnet ip pp secure filter save

81 pp1# ip filter 1 reject * * icmp pp1# ip filter 2 pass * * pp1# ip pp secure filter in 1 2 pp1# save pp select ip filter * icmp reject ip pp secure filter in save

82 pp1# ip filter 1 pass * * tcp * ftp pp1# ip filter 2 pass * * tcp ftp * pp1# ip pp secure filter out 1 pp1# ip pp secure filter in 2 pp1# save pp select ip filter * ftp ip pp secure filter out in save

83 pp1# ip filter 1 reject 192.168.128.* * pp1# ip filter 2 pass * * pp1# ip pp rip filter out 1 2 pp1# save pp select ip filter * reject ip pp rip filter out save

84 # line type bri1 l64 # ip lan1 address 192.168.1.241/28 # ip route default gateway pp 1 # ip filter 10 reject 192.168.1.0/24 * * * * # ip filter 11 pass * 192.168.1.0/24 icmp * * # ip filter 12 pass * 192.168.1.0/24 established ** # ip filter 13 pass * 192.168.1.0/24 tcp * ident # ip filter 14 pass * 192.168.1.0/24 tcp ftpdata * # ip filter 15 pass * 192.168.1.0/24 udp domain * # ip filter 16 pass * 192.168.1.240/28 tcp,udp * telnet,smtp, gopher,finger,www,nntp,ntp, 33434-33500 # ip filter source-route on # ip filter directed-broadcast on pp1# pp bind bri1 pp1# ip pp secure filter in 10 11 12 13 14 15 16 pp1# syslog host 192.168.1.242 pp1# syslog notice on pp1# save pp1# interface reset bri1

85 line type ip lan1 address ip route ip filter ip filter source-route ip filter directed-broadcast pp select pp bind ip pp secure filter in syslog host syslog notice save interface reset

86 # line type bri1 l64 # ip lan1 address 192.168.1.1/24 # ip route default gateway pp 1 # ip filter 10 reject 192.168.1.0/24 * * * * # ip filter 11 pass * 192.168.1.0/24 icmp * * # ip filter 12 pass * 192.168.1.0/24 established ** # ip filter 13 pass * 192.168.1.0/24 tcp * ident # ip filter 14 pass * 192.168.1.0/24 tcp ftpdata * # ip filter 15 pass * 192.168.1.0/24 udp domain * # ip filter 16 pass * 192.168.1.2 tcp,udp * smtp,gopher,finger,www,nntp,ntp,33434-33500 # ip filter source-route on # ip filter directed-broadcast on pp1# pp bind bri1 pp1# ip pp secure filter in 10 11 12 13 14 15 16 pp1# syslog host 192.168.1.3 pp1# syslog notice on pp1# save pp1# interface reset bri1

87 line type ip lan1 address ip route ip filter ip filter source-route ip filter directed-broadcast pp select pp bind ip pp secure filter in syslog host syslog notice save interface reset

88 pp1# ip filter 60 reject 10.0.0.0/24 * * * * pp1# ip filter 100 pass * 10.0.0.0/24 * * * pp1# ip pp secure filter in 60 100 pp1# save ip filter directed-broadcast #ip filter directed-broadcast on

89 ip filter 100 reject * * * * * ip pp secure filter in 100 ip pp secure filter out 1 ip pp secure filter out 1 dynamic 10 ip pp secure filter in dynamic 20 ip pp secure filter out dynamic 10

90 # ip filter dynamic 1 192.168.0.0/24 * ftp # ip filter dynamic 2 192.168.0.0/24 * tftp # ip filter dynamic 3 192.168.0.0/24 * tcp # ip filter dynamic 4 192.168.0.0/24 * udp # ip filter 1 pass 192.168.0.0/24 * tcp,udp # ip filter 100 reject * * * * * pp1# ip pp secure filter in 100 pp1# ip pp secure filter out 1 dynamic 1 2 3 4 # ip filter dynamic 1 192.168.0.0/24 * ftp # ip filter dynamic 2 192.168.0.0/24 * tftp # ip filter dynamic 3 192.168.0.0/24 * tcp # ip filter dynamic 4 192.168.0.0/24 * udp # ip filter 1 pass 192.168.0.0/24 * tcp,udp # ip filter 100 reject * * * * * pp1# ip pp secure filter in 100 pp1# ip pp secure filter out 1 dynamic 1 2 3 4

91 # ip filter dynamic 1 * 172.16.128.2 domain # ip filter 1 pass * * tcp * smtp,pop3 # ip filter 2 pass * * tcp * ident # ip filter dynamic 2 192.168.0.0/24 172.16.128.3 filter 1 in 2 # ip filter dynamic 3 192.168.0.0/24 * www # ip filter dynamic 4 192.168.0.0/24 * ftp # ip filter dynamic 5 192.168.0.0/24 * telnet # ip filter dynamic 10 192.168.0.0/24 * tcp syslog=off # ip filter dynamic 11 192.168.0.0/24 * udp syslog=off # ip filter 3 pass * 192.168.0.0/24 icmp * * # ip filter dynamic 20 * 192.168.0.2 domain # ip filter dynamic 21 * 192.168.0.3 www # ip filter 4 pass * 192.168.0.2 tcp * domain # ip filter 5 pass * 192.168.0.3 tcp * www # ip filter 6 pass * 192.168.0.3 tcp * smtp,pop3 # ip filter 7 pass * * tcp * ident # ip filter dynamic 22 * 192.168.0.3 filter 6 in 7 pp1# ip pp secure filter in 3 4 5 6 dynamic 20 21 22 pp1# ip pp secure filter out dynamic 1 2 3 4 5 10 11 # ip filter dynamic 1 * 172.16.128.2 domain # ip filter 1 pass * * tcp * smtp,pop3 # ip filter 2 pass * * tcp * ident # ip filter dynamic 2 192.168.0.0/24 172.16.128.3 filter 1 in 2 ip filter dynamic ip filter ip filter dynamic 1 192.168.0.0/24 172.16.128.3 smtp ip filter dynamic 2 192.168.0.0/24 172.16.128.3 pop3 ip filter 1 pass 172.16.128.3 192.168.0.0/24 tcp * ident ip filter dynamic 20 172.16.128.3 192.168.0.0/24 filter 1 pp select 1 ip pp secure filter in 1 dynamic 20 ip pp secure filter out dynamic 1 2

92 # ip filter dynamic 3 192.168.0.0/24 * www # ip filter dynamic 4 192.168.0.0/24 * ftp # ip filter dynamic 5 192.168.0.0/24 * telnet # ip filter dynamic 10 192.168.0.0/24 * tcp syslog=off # ip filter dynamic 11 192.168.0.0/24 * udp syslog=off # ip filter 3 pass * 192.168.0.0/24 icmp * * # ip filter dynamic 20 * 192.168.0.2 domain # ip filter dynamic 21 * 192.168.0.3 www # ip filter 4 pass * 192.168.0.2 tcp * domain # ip filter 5 pass * 192.168.0.3 tcp * www # ip filter 6 pass * 192.168.0.3 tcp * smtp,pop3 # ip filter 7 pass * * tcp * ident # ip filter dynamic 22 * 192.168.0.3 filter 6 in 7 ip filter dynamic 20 * 192.168.0.3 smtp ip filter dynamic 21 * 192.168.0.3 pop3 ip filter 1 pass * 192.168.0.3 tcp * smtp,pop3 ip filter 2 pass * * tcp * ident ip filter dynamic 1 192.168.0.3 * filter 2 pp select 1 ip pp secure filter in 1 dynamic 20 21 ip pp secure filter out dynamic 1 pp1# ip pp secure filter in 3 4 5 6 dynamic 20 21 22 pp1# ip pp secure filter out dynamic 1 2 3 4 5 10 11

93 # ip filter 1 pass * * tcp * 6000 # ip filter 2 pass * * udp * 7001 # ip filter 3 pass * * udp * 7002 # ip filter dynamic 1 * 172.16.128.128 filter 1 in 3 out 2 # ip filter 100 reject * * * * * pp1# ip pp secure filter in 100 pp1# ip pp secure filter out dynamic 1 # ip filter 1 pass * * tcp * 6000 # ip filter 2 pass * * udp * 7001 # ip filter 3 pass * * udp * 7002 # ip filter dynamic 1 * 172.16.128.128 filter 1 in 3 out 2 # ip filter 100 reject * * * * * pp1# ip pp secure filter in 100 pp1# ip pp secure filter out dynamic 1

94 # line type bri1 l128 # ip lan1 address 192.168.1.241/28 # ip filter 1 reject 192.168.1.0/24 * * * * # ip filter 2 pass * * icmp * * # ip filter dynamic 20 * 192.168.1.240/28 telnet # ip filter dynamic 21 * 192.168.1.240/28 smtp # ip filter dynamic 22 * 192.168.1.240/28 www # ip filter dynamic 30 * 192.168.1.240/28 tcp # ip filter dynamic 31 * 192.168.1.240/28 udp # ip filter 3 reject * 192.168.1.240/28 established * telnet,smtp,gopher,finger,www,nntp,ntp # ip filter 4 pass * 192.168.1.240/28 tcp,udp * telnet,smtp,gopher,finger,www,nntp,ntp,33434-33500 # ip filter dynamic 1 * * domain # ip filter dynamic 2 * * www # ip filter dynamic 3 * * ftp # ip filter 5 pass * * tcp * smtp,pop3 # ip filter 6 pass * * tcp * ident # ip filter dynamic 4 * * filter 5 in 6 # ip filter dynamic 10 * * tcp # ip filter dynamic 11 * * udp # ip filter source-route on # ip filter directed-broadcast on pp1# pp bind bri1 pp1# ip pp secure filter in 1 2 3 4 dynamic 20 21 22 30 31 pp1# ip pp secure filter out dynamic 1 2 3 4 10 11 pp1# pp select none # ip route default gateway pp 1 # syslog host 192.168.1.242 # syslog notice on # save # interface reset bri1 # line type bri1 l128 # ip lan1 address 192.168.1.241/28 # ip filter 1 reject 192.168.1.0/24 * * * * # ip filter 2 pass * * icmp * * # ip filter dynamic 20 * 192.168.1.240/28 telnet # ip filter dynamic 21 * 192.168.1.240/28 smtp # ip filter dynamic 22 * 192.168.1.240/28 www # ip filter dynamic 30 * 192.168.1.240/28 tcp # ip filter dynamic 31 * 192.168.1.240/28 udp # ip filter 3 reject * 192.168.1.240/28 established * telnet,smtp,gopher, finger,www,nntp,ntp # ip filter 4 pass * 192.168.1.240/28 tcp,udp * telnet,smtp,gopher, finger,www,nntp,ntp,33434-33500

95 # ip filter dynamic 1 * * domain # ip filter dynamic 2 * * www # ip filter dynamic 3 * * ftp # ip filter 5 pass * * tcp * smtp,pop3 # ip filter 6 pass * * tcp * ident # ip filter dynamic 4 * * filter 5 in 6 ip filter dynamic ip filter ip filter dynamic 1 * * smtp ip filter dynamic 2 * * pop3 ip filter 1 pass * * tcp * ident ip filter dynamic 20 * * filter 1 pp select 1 ip pp secure filter in 1 dynamic 20 ip pp secure filter out dynamic 1 2 # ip filter dynamic 10 * * tcp # ip filter dynamic 11 * * udp # ip filter source-route on # ip filter directed-broadcast on pp1# pp bind bri1 pp1# ip pp secure filter in 1 2 3 4 dynamic 20 21 22 30 31 pp1# ip pp secure filter out dynamic 1 2 3 4 10 11 pp1# pp select none # ip route default gateway pp 1 # syslog host 192.168.1.242 # syslog notice on # save # interface reset bri1 restart

96 # line type bri1 l128 # ip lan1 address 192.168.1.1/24 # ip filter 1 reject 192.168.1.0/24 * * * * # ip filter 2 pass * * icmp * * # ip filter dynamic 20 * 192.168.1.2 telnet # ip filter dynamic 21 * 192.168.1.2 smtp # ip filter dynamic 22 * 192.168.1.2 www # ip filter dynamic 30 * 192.168.1.2 tcp # ip filter dynamic 31 * 192.168.1.2 udp # ip filter 3 reject * 192.168.1.2 established * telnet,smtp,gopher, finger,www,nntp,ntp # ip filter 4 pass * 192.168.1.2 tcp,udp * telnet,smtp,gopher, finger,www,nntp,ntp,33434-33500 # ip filter dynamic 1 * * domain # ip filter dynamic 2 * * www # ip filter dynamic 3 * * ftp # ip filter 5 pass * * tcp * smtp,pop3 # ip filter 6 pass * * tcp * ident # ip filter dynamic 4 * * filter 5 in 6 # ip filter dynamic 10 * * tcp # ip filter dynamic 11 * * udp # ip filter source-route on # ip filter directed-broadcast on pp1# pp bind bri1 pp1# ip pp secure filter in 1 2 3 4 dynamic 20 21 22 30 31 pp1# ip pp secure filter out dynamic 1 2 3 4 10 11 pp1# pp select none # ip route default gateway pp 1 # syslog host 192.168.1.3 # syslog notice on # save # interface reset bri1 # line type bri1 l128 # ip lan1 address 192.168.1.1/24 # ip filter 1 reject 192.168.1.0/24 * * * * # ip filter 2 pass * * icmp * * # ip filter dynamic 20 * 192.168.1.2 telnet # ip filter dynamic 21 * 192.168.1.2 smtp # ip filter dynamic 22 * 192.168.1.2 www # ip filter dynamic 30 * 192.168.1.2 tcp # ip filter dynamic 31 * 192.168.1.2 udp # ip filter 3 reject * 192.168.1.2established * telnet,smtp,gopher,finger,www,nntp,ntp # ip filter 4 pass * 192.168.1.2 tcp,udp * telnet,smtp,gopher,finger,www,nntp,ntp,33434-33500

97 # ip filter dynamic 1 * * domain # ip filter dynamic 2 * * www # ip filter dynamic 3 * * ftp # ip filter 5 pass * * tcp * smtp,pop3 # ip filter 6 pass * * tcp * ident # ip filter dynamic 4 * * filter 5 in 6 ip filter dynamic ip filter ip filter dynamic 1 * * smtp ip filter dynamic 2 * * pop3 ip filter 1 pass * * tcp * ident ip filter dynamic 20 * * filter 1 pp select 1 ip pp secure filter in 1 dynamic 20 ip pp secure filter out dynamic 1 2 # ip filter dynamic 10 * * tcp # ip filter dynamic 11 * * udp # ip filter source-route on # ip filter directed-broadcast on pp1# pp bind bri1 pp1# ip pp secure filter in 1 2 3 4 dynamic 20 21 22 30 31 pp1# ip pp secure filter out dynamic 1 2 3 4 10 11 pp1# pp select none # ip route default gateway pp 1 # syslog host 192.168.1.3 # syslog notice on # save # interface reset bri1 restart

98

99 pp1# ip pp intrusion detection in on pp1# ip pp intrusion detection in on reject=on reject # ip filter dynamic 1 * * ftp # ip filter dynamic 2 * * smtp pp1# ip pp secure filter in dynamic 1 2 pp1# ip pp intrusion detection in on

100

101 #ip policy filter 10 reject-log lan2 lan1 * * telnet #ip policy filter 11 pass-nolog lan1 lan2 * * ping #ip policy interface group 1 name=private local lan1 #ip policy service group 1 name=mail smtp pop3

102 #ip policy filter 10 pass-log local * * * * #ip policy filter 11 static-pass-log * lan1 * * * #ip policy filter 20 reject-nolog lan1 * * * * #ip policy filter 21 static-pass-nolog * local * * * #ip policy filter 22 pass-nolog * pp1 192.168.0.0/24 * tcp #ip policy filter 23 pass-nolog * pp1 192.168.0.0/24 * udp #ip policy filter 30 reject-nolog * * * * * #ip policy filter set 1 10 [11] 20 [21 22 23] 30 #ip policy filter set enable 1 #save #ip policy filter 10 pass-log local * * * * #ip policy filter 11 static-pass-log * lan1 * * * #ip policy filter 20 reject-nolog lan1 * * * * #ip policy filter 21 static-pass-nolog * local * * * #ip policy filter 22 pass-nolog * pp1 192.168.0.0/24 * tcp #ip policy filter 23 pass-nolog * pp1 192.168.0.0/24 * udp #ip policy filter 30 reject-nolog * * * * * #ip policy filter set 1 10 [11] 20 [21 22 23] 30

103 #ip policy filter set enable 1 #save

104 #ip policy interface group 1 name=private local lan1 #ip policy service group 1 name=mail pop3 smtp #ip policy filter 10 pass-nolog local * * * * #ip policy filter 11 static-pass-nolog * lan1 * * * #ip policy filter 100 reject-nolog lan1 * * * * #ip policy filter 110 static-pass-nolog * 1 * * * #ip policy filter 120 reject-nolog * * 192.168.0.0/24 * * #ip policy filter 121 pass-log * * * 172.16.128.2 dns #ip policy filter 122 pass-log * * * * www #ip policy filter 123 pass-log * * * 172.16.128.3 1 #ip policy filter 200 reject-nolog * * * * * #ip policy filter set 1 name="internet Access" 10 [11] 100 [110 120 [121 122 123]] 200 #ip policy filter set enable 1 #save #ip policy interface group 1 name=private local lan1 #ip policy service group 1 name=mail pop3 smtp #ip policy filter 10 pass-nolog local * * * * #ip policy filter 11 static-pass-nolog * lan1 * * * #ip policy filter 100 reject-nolog lan1 * * * * #ip policy filter 110 static-pass-nolog * 1 * * * #ip policy filter 120 reject-nolog * * 192.168.0.0/24 * *

105 #ip policy filter 121 pass-log * * * 172.16.128.2 dns #ip policy filter 122 pass-log * * * * www #ip policy filter 123 pass-log * * * 172.16.128.3 1 #ip policy filter 200 reject-nolog * * * * * #ip policy filter set 1 name="internet Access" 10 [11] 100 [110 120 [121 122 123]] 200 #ip policy filter set enable 1 #save

106 #ip inbound filter 1 reject-nolog * * tcp,udp * 135 #ip inbound filter 2 reject-nolog * * tcp,udp 135 * #ip inbound filter 3 reject-nolog * * tcp,udp * netbios_ns-netbios_ssn #ip inbound filter 4 reject-nolog * * tcp,udp netbios_ns-netbios_ssn * #ip inbound filter 5 reject-nolog * * tcp,udp * 445 #ip inbound filter 6 reject-nolog * * tcp,udp 445 * #ip inbound filter 7 pass-nolog * * * * * #pp select 1 pp1#ip pp inbound filter list 1 2 3 4 5 6 7 pp1#pp select none #ip policy interface group 1 name=private local lan1 #ip policy address group 1 name=private 192.168.0.0/24 192.168.1.0/24 #ip policy service group 1 name="mail" pop3 smtp #ip policy service group 2 name="http Access" www ftp #ip policy filter 100 pass-nolog local * * * * #ip policy filter 110 static-pass-nolog * lan1 * * * #ip policy filter 200 reject-nolog lan1 * * * * #ip policy filter 210 static-pass-nolog * 1 * * * #ip policy filter 211 static-pass-log * * * * http #ip policy filter 220 pass-nolog * * * * dns #ip policy filter 230 pass-nolog * * * 172.16.0.1 ntp #ip policy filter 240 reject-nolog * pp1 1 * * #ip policy filter 241 pass-log * * * * 1 #ip policy filter 242 pass-log * * * * 2 #ip policy filter 300 reject-nolog pp1 * * * * #ip policy filter 310 reject-nolog * lan1 * * * #ip policy filter 311 pass-log * * * 192.168.0.5 2 #ip policy filter 400 reject-nolog * * * * * #ip policy filter set 1 name="internet Access" 100 [110] 200 [210 [211] 220 230 240 [241 242]] 300 [310 [311]] 400 #ip policy filter set enable 1 #save

107 #ip inbound filter 1 reject-nolog * * tcp,udp * 135 #ip inbound filter 2 reject-nolog * * tcp,udp 135 * #ip inbound filter 3 reject-nolog * * tcp,udp * netbios_ns-netbios_ssn #ip inbound filter 4 reject-nolog * * tcp,udp netbios_ns-netbios_ssn * #ip inbound filter 5 reject-nolog * * tcp,udp * 445 #ip inbound filter 6 reject-nolog * * tcp,udp 445 * #ip inbound filter 7 pass-nolog * * * * * #pp select 1 pp1#ip pp inbound filter list 1 2 3 4 5 6 7 pp1#pp select none #ip policy interface group 1 name=private local lan1 #ip policy address group 1 name=private 192.168.0.0/24 192.168.1.0/24 #ip policy service group 1 name="mail" pop3 smtp #ip policy service group 2 name="http Access" www ftp #ip policy filter 100 pass-nolog local * * * * #ip policy filter 110 static-pass-nolog * lan1 * * * #ip policy filter 200 reject-nolog lan1 * * * * #ip policy filter 210 static-pass-nolog * 1 * * * #ip policy filter 211 static-pass-log * * * * http #ip policy filter 220 pass-nolog * * * * dns

108 #ip policy filter 230 pass-nolog * * * 172.16.0.1 ntp #ip policy filter 240 reject-nolog * pp1 1 * * #ip policy filter 241 pass-log * * * * 1 #ip policy filter 242 pass-log * * * * 2 #ip policy filter 300 reject-nolog pp1 * * * * #ip policy filter 310 reject-nolog * lan1 * * * #ip policy filter 311 pass-log * * * 192.168.0.5 2 #ip policy filter 400 reject-nolog * * * * * #ip policy filter set 1 name="internet Access" 100 [110] 200 [210 [211] 220 230 240 [241 242]] 300 [310 [311]] 400 #ip policy filter set enable 1 #save

109 PAP CHAP

110 pp1# pp auth request pap pp1# pp auth username RT105i-A himitsu pp1# save pp1# pp auth accept pap pp1# pp auth myname RT105i-A himitsu pp1# save

111 pp1# pp auth request pap pp1# pp auth accept pap pp1# pp auth myname RT105i-A himitsu pp1# pp auth username RT105i-A himitsu pp1# save pp1# pp auth request chap pp1# pp auth username RT105i-A himitsu pp1# save pp1# pp auth accept chap pp1# pp auth myname RT105i-A himitsu pp1# save

112 pp1# pp auth request chap pp1# pp auth accept chap pp1# pp auth myname RT105i-A himitsu pp1# pp auth username RT105i-A himitsu pp1# save

113 # line type bri1 l64 # ip lan1 address 192.168.1.1/24 # rip use on pp1# pp bind bri1 pp1# pp encapsulation fr pp1# ip pp rip send on version 2 pp1# ip pp rip connect send interval pp1# save pp1# interface reset bri1 # line type bri1 l64 # ip lan1 address 192.168.2.1/24 # rip use on pp1# pp bind bri1 pp1# pp encapsulation fr pp1# ip pp rip send on version 2 pp1# ip pp rip connect send interval pp1# save pp1# interface reset bri1

114 # line type bri1 l64 # ip lan1 address 192.168.3.1/24 # rip use on pp1# pp bind bri1 pp1# pp encapsulation fr pp1# ip pp rip send on version 2 pp1# ip pp rip connect send interval pp1# save pp1# interface reset bri1 fr line type ip lan1 address rip use pp select pp encapsulation ip pp rip send ip pp rip connect send ip pp rip connect interval pp enable save interface reset

115 # line type bri1 l64 # ip lan1 address 192.168.1.1/24 # ip route 192.168.2.0/24 gateway pp 1 dlci=16 # ip route 192.168.3.0/24 gateway pp 1 dlci=18 pp1# pp bind bri1 pp1# pp encapsulation fr pp1# save pp1# interface reset bri1 # line type bri1 l64 # ip lan1 address 192.168.2.1/24 # ip route 192.168.1.0/24 gateway pp 1 dlci=17 # ip route 192.168.3.0/24 gateway pp 1 dlci=20 pp1# pp bind bri1 pp1# pp encapsulation fr pp1# save pp1# interface reset bri1

116 # line type bri1 l64 # ip lan1 address 192.168.3.1/24 # ip route 192.168.1.0/24 gateway pp 1 dlci=19 # ip route 192.168.2.0/24 gateway pp 1 dlci=21 pp1# pp bind bri1 pp1# pp encapsulation fr pp1# save pp1# interface reset bri1 ip route line type ip lan1 address ip route pp select pp bind pp encapsulation pp enable save interface reset

117 # line type bri1 l64 # ip lan1 address 192.168.1.1/24 # rip use on pp1# pp bind bri1 pp1# pp encapsulation fr pp1# ip pp address 192.168.4.1/24 pp1# ip pp rip send on version 2 pp1# ip pp rip connect send interval pp1# save pp1# interface reset bri1 # line type bri1 l64 # ip lan1 address 192.168.2.1/24 # rip use on pp1# pp bind bri1 pp1# pp encapsulation fr pp1# ip pp address 192.168.4.2/24 pp1# ip pp rip send on version 2 pp1# ip pp rip connect send interval pp1# save pp1# interface reset bri1

118 # line type bri1 l64 # ip lan1 address 192.168.3.1/24 # rip use on pp1# pp bind bri1 pp1# pp encapsulation fr pp1# ip pp address 192.168.4.3/24 pp1# ip pp rip send on version 2 pp1# ip pp rip connect send interval pp1# save pp1# interface reset bri1 fr line type ip lan1 address rip use pp select pp bind pp encapsulation ip pp address ip pp rip send ip pp rip connect send ip pp rip connect interval pp enable save interface reset

119 # line type bri1 l64 # ip lan1 address 192.168.1.1/24 # ip route 192.168.2.0/24 gateway 192.168.4.2 # ip route 192.168.3.0/24 gateway 192.168.4.3 pp1# pp bind bri 1 pp1# pp encapsulation fr pp1# ip pp address 192.168.4.1/24 pp1# save pp1# interface reset bri1 # line type bri1 l64 # ip lan1 address 192.168.2.1/24 # ip route 192.168.1.0 gateway 192.168.4.1 # ip route 192.168.3.0 gateway 192.168.4.3 pp1# pp bind bri1 pp1# pp encapsulation fr pp1# ip pp address 192.168.4.2/24 pp1# save pp1# interface reset bri1

120 # line type bri1 l64 # ip lan1 address 192.168.3.1/24 # ip route 192.168.1.0/24. gateway 192.168.4.1 # ip route 192.168.2.0/24. gateway 192.168.4.2 pp1# pp bind bri1 pp1# pp encapsulation fr pp1# ip pp address 192.168.4.3/24 pp1# save pp1# interface reset bri1 ip route fr inarp fr inarp line type ip lan1 address ip route pp select pp bind pp encapsulation ip pp address pp enable save interface reset

121 # ipx routing on # line type bri1 l64 # ipx lan1 network 11:11:11:11 pp1# pp bind bri1 pp1# pp encapsulation fr pp1# ipx pp routing on pp1# ipx pp ripsap connect send interval pp1# save pp1# interface reset bri1 # ipx routing on # line type bri1 l64 # ipx lan1 network 22:22:22:22 # pp bind bri1 pp1# pp encapsulation fr pp1# ipx pp routing on pp1# ipx pp ripsap connect send interval pp1# save pp1# interface reset bri1

122 # ipx routing on # line type bri1 l64 # ipx lan1 network 33:33:33:33 pp1# pp bind bri1 pp1# pp encapsulation fr pp1# ipx pp routing on pp1# ipx pp ripsap connect send interval pp1# save pp1# interface reset bri1 fr ipx routing line type ipx lan1 network pp select pp bind pp encapsulation ipx pp routing ipx pp ripsap connect send ipx pp ripsap connect interval pp enable save interface reset

123 # ipx routing on # line type bri1 l64 # ipx lan1 network 11:11:11:11 pp1# pp bind bri1 pp1# pp encapsulation fr pp1# ipx pp routing on pp1# ipx pp route 22:22:22:22 dlci=16 1 pp1# ipx pp route 33:33:33:33 dlci=18 1 pp1# save pp1# interface reset bri1 # ipx routing on # line type bri1 l64 # ipx lan1 network 22:22:22:22 # ipx sap file SERVER aa:aa:aa:aa 00:00:00:00:00:01 ncp 2 # pp bind bri1 pp1# pp encapsulation fr pp1# ipx pp routing on pp1# ipx pp route 11:11:11:11 dlci=17 1 pp1# ipx pp route aa:aa:aa:aa dlci=17 2 pp1# ipx pp route 33:33:33:33 dlci=20 1 pp1# save pp1# interface reset bri1

124 # ipx routing on # line type bri1 l64 # ipx lan1 network 33:33:33:33 # ipx sap file SERVER aa:aa:aa:aa 00:00:00:00:00:01 ncp 2 # pp bind bri1 pp1# pp encapsulation fr pp1# ipx pp routing on pp1# ipx pp route 11:11:11:11 dlci=19 1 pp1# ipx pp route aa:aa:aa:aa dlci=19 2 pp1# ipx pp route 22:22:22:22 dlci=21 1 pp1# save pp1# interface reset bri1 fr ipx routing line type ipx lan1 network pp select pp bind pp encapsulation ipx pp routing ipx pp route pp enable save interface reset

125 # line type bri1 l64 # bridge use on # bridge group lan1 1 pp1# pp bind bri1 pp1# pp encapsulation fr pp1# save pp1# interface reset bri1 save ip routing off fr line type bridge use bridge group pp select pp bind pp encapsulation pp enable save interface reset

126

127

128 # isdn local address bri1 03-1234-5678/Tokyo # ip lan1 address 192.168.1.130/28 # ip route 192.168.1.144/28 gateway pp 1 # dhcp scope 1 192.168.1.129-192.168.1.142/28 except 192.168.1.130 # dhcp service server pp1# pp bind bri1 pp1# isdn remote address call 06-1111-9999/Osaka pp1# save # isdn local address bri1 06-1111-9999/Osaka # ip lan1 address 192.168.1.150/28 # ip route 192.168.1.128/28 gateway pp 1 pp1# pp bind bri1 pp1# isdn remote address call 03-1234-5678/Tokyo pp1# save

129 isdn local address ip lan1 address ip route dhcp scope gateway expire, maxexpire dhcp service pp select pp bind isdn remote address pp enable save isdn local address ip lan1 address ip route pp select pp bind isdn remote address pp enable save

130 # isdn local address bri1 03-1234-5678/Tokyo # ip lan1 address 192.168.1.1/24 # ip route 192.168.2.0/24 gateway pp 1 # dhcp scope 1 192.168.1.2-192.168.1.64/24 except 192.168.1.7 # dhcp scope 2 192.168.2.1-192.168.2.32/24 except 192.168.2.8 gateway 192.168.2.8 # dhcp scope bind 1 192.168.1.5 aa:aa:aa:aa:aa:aa # dhcp scope bind 1 192.168.1.6. ethernet bb:bb:bb:bb:bb:bb # dhcp scope bind 2 192.168.2.5. ethernet cc:cc:cc:cc:cc:cc # dns server 192.168.1.7 # dhcp service server pp1# pp bind bri1 pp1# isdn remote address call 06-1111-9999/Osaka pp1# save

131 # isdn local address bri1 06-1111-9999/Osaka # ip lan1 address 192.168.2.8/24 # ip route 192.168.1.0/24 gateway pp 1 # dhcp relay server 192.168.1.1 # dhcp service relay pp1# pp bind bri1 pp1# isdn remote address call 03-1234-5678/Tokyo pp1# save

132 isdn local address ip lan1 address ip route dhcp scope gateway expire, maxexpire dhcp scope bind dns server dhcp service pp select pp bind isdn remote address pp enable save isdn local address ip lan1 address ip route dhcp relay server dhcp service pp select isdn remote address pp enable save

133 # ip lan1 address 192.168.0.1/24 # ip lan2 address dhcp # nat descriptor type 1 masquerade # nat descriptor address outer 1 primary # ip lan2 nat descriptor 1 # ip route default gateway dhcp lan2 # save # ip lan1 address 192.168.0.1/24 # ip lan2 address dhcp # nat descriptor type 1 masquerade # nat descriptor address outer 1 primary # ip lan2 nat descriptor 1 # ip route default gateway dhcp lan2 # save

2024 © docsplayer.net プライバシー | 利用規約 | フィードバック