編集履歴

質問編集履歴

ソースコードをあげました。

2016/10/20 13:41

投稿

kudomasa

スコア13

test CHANGED Viewed

File without changes

test CHANGED Viewed

@@ -20,6 +20,176 @@
+ip route default gateway pp 1 filter 100000 gateway pp 2 filter 100001 gateway pp 2 filter 100002
+ip lan1 address 192.168.0.2/24
+ip lan1 secure filter in 100010 100011 100012 100013 100014 100015 100016 100017 100018 100019 100121 100020 500000
+switch control use lan1 on
+switch control use lan2 on
+pp select 1
+ description pp プロバイダ1
+ pp keepalive interval 30 retry-interval=30 count=12
+ pp always-on on
+ pppoe use lan2
+ pppoe auto disconnect off
+ pp auth accept pap chap
+ pp auth myname プロバイダ情報
+ ppp lcp mru on 1454
+ ppp ipcp ipaddress on
+ ppp ipcp msext on
+ ppp ccp type none
+ ip pp secure filter in 200100 200200 500000
+ ip pp nat descriptor 1000
+ pp enable 1
+pp select 2
+ description pp プロバイダ2
+ pp keepalive interval 30 retry-interval=30 count=12
+ pp always-on on
+ pppoe use lan2
+ pppoe auto disconnect off
+ pp auth accept pap chap
+ pp auth myname プロバイダ情報
+ ppp lcp mru on 1454
+ ppp ipcp ipaddress on
+ ppp ipcp msext on
+ ppp ccp type none
+ ip pp address 固定IP
+ ip pp nat descriptor 2000
+ pp enable 2
+ip filter 100000 pass 192.168.0.11-192.168.0.49 * * *
+ip filter 100001 pass 192.168.0.50-192.168.0.59 * * *
+ip filter 100002 pass 192.168.0.60-192.168.0.99 * * *
+ip filter 100010 reject * * udp,tcp 135 *
+ip filter 100011 reject * * udp,tcp * 135
+ip filter 100012 reject * * udp,tcp netbios_ns-netbios_dgm *
+ip filter 100013 reject * * udp,tcp * netbios_ns-netbios_dgm
+ip filter 100014 reject * * udp,tcp netbios_ssn *
+ip filter 100015 reject * * udp,tcp * netbios_ssn
+ip filter 100016 reject * * udp,tcp 445 *
+ip filter 100017 reject * * udp,tcp * 445
+ip filter 100018 pass * * tcp * www
+ip filter 100019 pass * * udp,tcp 46100-46122 *
+ip filter 100020 pass * * udp,tcp * 1547
+ip filter 100121 pass * 192.168.0.63 udp * 46100-46122
+ip filter 200100 pass * 192.168.0.63 udp 46100-46122 46100-46122
+ip filter 201100 pass * * udp * 1547,46100-46122
+ip filter 201101 pass 固定IP * * 1547,46100-46122 *
+ip filter 201102 pass * * udp * 1547,46100-46122
+ip filter 500000 restrict * * * * *
+ip filter dynamic 100100 * 192.168.0.63 udp
+nat descriptor type 1000 masquerade
+nat descriptor address outer 1000 ipcp
+nat descriptor address inner 1000 auto
+nat descriptor masquerade incoming 1000 reject
+nat descriptor type 2000 masquerade
+nat descriptor address outer 2000 固定IP
+nat descriptor address inner 2000 auto
+nat descriptor masquerade incoming 2000 discard
+nat descriptor type 3000 nat
+nat descriptor address outer 3000 ipcp
+nat descriptor address inner 3000 auto
+nat descriptor static 3000 500010 固定IP=192.168.0.60/28
+nat descriptor masquerade incoming 3000 through
+dhcp service server
+dhcp server rfc2131 compliant except remain-silent
+dhcp scope 1 192.168.0.11-192.168.0.125/24 expire 3:00
+dhcp scope bind 1 IP ethernet MAC
+dns host lan1
+dns server pp 1
+dns server select 500001 pp 1 any . restrict pp 1
+dns server select 500002 pp 2 any . restrict pp 2
+dns private address spoof on
+upnp use on
+upnp external address refer lan2
+dashboard accumulate traffic on
+dashboard accumulate nat on
 ###試したこと
 IPマスカレードで固定IPを設定して、その他の設定をしないで稼働すると端末ではWebを見る事ができました。
@@ -27,3 +197,7 @@
 ###補足情報(言語/FW/ツール等のバージョンなど)
+記述後、コマンドで流し込んだ後パネルから変更をかけたりして汚くなってまってます、すいません。