You are on page 1of 7

Command Handler configuration # System configuration set system name="DGASPC DOLJ" set system location="Craiova DOLJ" set system

contact="Iulian" # TIMEZONE configuration # Flash memory configuration # LOADER configuration # User configuration set user securedelay=600 add user=admin pass=637094986520c347542f2f5aec0981fcff priv=securityOfficer lo=yes set user=admin telnet=yes netmask=255.255.255.255 add user=dgaspc pass=91eb69501a1c04b5ca179042cf44e846ff priv=manager lo=yes set user=dgaspc telnet=yes netmask=255.255.255.255 add user=dgaspcdolj pass=571c8a1a36107a4d98a528c3b38a9a0ff677e97ea33e7a4d38a528f3b38a9a0c lo=no set user=dgaspcdolj telnet=no add user=florin.mecu pass=e10adc3949ba59abbe56e057f20f883eff priv=securityOfficer lo=yes set user=florin.mecu telnet=yes netmask=255.255.255.255 add user=florin.stancu pass=211c871b315f164d98a528d3b38a9a0ff677e97ea33e7a4d38a528f3b38a9a0c lo=no set user=florin.stancu telnet=no add user=info pass=e10adc3949ba59abbe56e057f20f883eff priv=securityOfficer lo=yes set user=info telnet=yes netmask=255.255.255.255 add user=iulian pass=e10adc3949ba59abbe56e057f20f883eff priv=securityOfficer lo=yes set user=iulian telnet=yes netmask=255.255.255.255 add user=iulian.nastasie pass=821c9f1f315f093888a528d3b38a9a0ff677e97ea33e7a4d38a528f3b38a9a0c lo=no set user=iulian.nastasie telnet=no delete user=manager enable user rso add user rso ip=0.0.0.0 mask=0.0.0.0 # TTY configuration # ASYN configuration

# ATM configuration # ETH configuration # BRI driver configuration # PRI driver configuration # SWITCH (pre-VLAN) configuration # LAPD configuration # Q.931 configuration # PPP templates configuration create ppp template=0 set ppp template=0 bap=off ippool="wiz_ravpn" authentication=chap mssheader=120 echo=30 # ISDN Call Control configuration # TDM configuration # SYN drivers configuration # ASYN Call Control configuration # Frame relay configuration # LAPB configuration # X.25 DTE configuration # MIOX configuration # L2TP configuration enable l2tp enable l2tp server=both add l2tp ip=1.1.1.1-255.255.255.254 ppptemplate=0 # Sec Associations configuration # VLAN general configuration # VLAN port configuration # IGMP Snooping configuration

# CLASSIFIER configuration # SWITCH (post-VLAN) configuration # PPP configuration set ppp dnsprimary=193.231.252.1 # DHCP (Pre IP) configuration # DHCPv6 (pre-IPv6) configuration # GRE configuration # IP configuration enable ip ena ip dnsrelay add ip int=vlan1 ip=192.168.13.2 add ip int=eth0 ip=86.123.232.177 mask=255.255.255.128 add ip rou=0.0.0.0 mask=0.0.0.0 int=eth0 next=86.123.232.129 add ip rou=192.168.0.0 mask=255.255.255.0 int=vlan1 next=192.168.13.1 add ip rou=192.168.2.0 mask=255.255.255.0 int=vlan1 next=192.168.13.1 add ip rou=192.168.3.0 mask=255.255.255.0 int=vlan1 next=192.168.13.1 add ip rou=192.168.4.0 mask=255.255.255.0 int=vlan1 next=192.168.13.1 add ip rou=192.168.5.0 mask=255.255.255.0 int=vlan1 next=192.168.13.1 add ip rou=192.168.6.0 mask=255.255.255.0 int=vlan1 next=192.168.13.1 add ip rou=192.168.7.0 mask=255.255.255.0 int=vlan1 next=192.168.13.1 add ip rou=192.168.8.0 mask=255.255.255.0 int=vlan1 next=192.168.13.1 add ip rou=192.168.9.0 mask=255.255.255.0 int=vlan1 next=192.168.13.1 add ip rou=192.168.10.0 mask=255.255.255.0 int=vlan1 next=192.168.13.1 add ip rou=192.168.11.0 mask=255.255.255.0 int=vlan1 next=192.168.13.1 add ip rou=192.168.12.0 mask=255.255.255.0 int=vlan1 next=192.168.13.1 add ip rou=192.168.14.0 mask=255.255.255.0 int=vlan1 next=192.168.13.1 create ip pool="wiz_ravpn" ip=192.168.100.5-192.168.100.50 # IPv6 configuration # SWITCH (post-IP) configuration # PIM configuration # PIM6 configuration # DVMRP configuration # X.25C configuration # OSPF configuration

# CLNS configuration # SNMP configuration # INT configuration # Firewall configuration enable firewall create firewall policy="lan" create firewall policy="lan" dy=wiz_ravpn add firewall policy="lan" dy=wiz_ravpn us=any enable firewall policy="lan" icmp_f=ping add firewall policy="lan" int=vlan1 type=private add firewall policy="lan" int=dyn-wiz_ravpn type=private add firewall policy="lan" int=eth0 type=public add firewall poli="lan" nat=enhanced int=vlan1 gblin=eth0 add firewall poli="lan" nat=enhanced int=dyn-wiz_ravpn gblin=eth0 add firewall poli="lan" ru=1 ac=allo int=eth0 prot=udp po=500 ip=86.123.232.177 gblip=86.123.232.177 gblp=500 add firewall poli="lan" ru=2 ac=allo int=eth0 prot=udp po=4500 ip=86.123.232.177 gblip=86.123.232.177 gblp=4500 add firewall poli="lan" ru=3 ac=allo int=eth0 prot=udp po=1701 ip=86.123.232.177 gblip=86.123.232.177 gblp=1701 enc=ips add firewall poli="lan" ru=30 ac=allo int=eth0 prot=tcp po=3389 ip=192.168.13.5 gblip=86.123.232.177 gblp=3389 add firewall poli="lan" ru=36 ac=allo int=eth0 prot=tcp po=3389 ip=192.168.13.25 gblip=86.123.232.177 gblp=3389 add firewall poli="lan" ru=31 ac=allo int=eth0 prot=tcp po=80 ip=192.168.13.2 gblip=86.123.232.177 gblp=80 add firewall poli="lan" ru=32 ac=allo int=eth0 prot=tcp po=23 ip=192.168.13.2 gblip=86.123.232.177 gblp=23 add firewall poli="lan" ru=33 ac=allo int=eth0 prot=tcp po=21 ip=192.168.13.5 gblip=86.123.232.177 gblp=21 add firewall poli="lan" ru=34 ac=allo int=eth0 prot=tcp po=83 ip=192.168.13.5 gblip=86.123.232.177 gblp=83 add firewall poli="lan" ru=35 ac=allo int=eth0 prot=tcp po=82 ip=192.168.13.5 gblip=86.123.232.177 gblp=82 add firewall poli="lan" ru=50 ac=allo int=eth0 prot=tcp po=81 ip=192.168.13.5 gblip=86.123.232.177 gblp=81 # add firewall poli="lan" ru=51 ac=allo int=eth0 prot=tcp po=1433 ip=192.168.13.5 gblip=86.123.232.177 gblp=1433 # add firewall poli="lan" ru=52 ac=allo int=eth0 prot=udp po=1433 ip=192.168.13.5 gblip=86.123.232.177 gblp=1433 add firewall poli="lan" ru=4 ac=allo int=vlan1 prot=tcp po=80 add firewall poli="lan" ru=5 ac=allo int=vlan1 prot=tcp po=53 add firewall poli="lan" ru=6 ac=allo int=vlan1 prot=tcp po=110 add firewall poli="lan" ru=7 ac=allo int=vlan1 prot=tcp po=25 add firewall poli="lan" ru=8 ac=allo int=vlan1 prot=tcp po=5050 add firewall poli="lan" ru=9 ac=allo int=vlan1 prot=tcp po=21

add firewall poli="lan" ru=10 ac=allo int=vlan1 prot=tcp po=23 add firewall poli="lan" ru=11 ac=allo int=vlan1 prot=tcp po=1723 add firewall poli="lan" ru=12 ac=allo int=vlan1 prot=tcp po=443 add firewall poli="lan" ru=13 ac=allo int=vlan1 prot=tcp po=1863 add firewall poli="lan" ru=20 ac=allo int=vlan1 prot=tcp po=8881 add firewall poli="lan" ru=21 ac=allo int=vlan1 prot=tcp po=8091 add firewall poli="lan" ru=22 ac=allo int=vlan1 prot=tcp po=8081 add firewall poli="lan" ru=23 ac=allo int=vlan1 prot=tcp po=5100 add firewall poli="lan" ru=24 ac=allo int=vlan1 prot=tcp po=8089 add firewall poli="lan" ru=25 ac=allo int=vlan1 prot=tcp po=4443 add firewall poli="lan" ru=26 ac=allo int=vlan1 prot=tcp po=3389 add firewall poli="lan" ru=27 ac=allo int=vlan1 prot=tcp po=1433 add firewall poli="lan" ru=28 ac=allo int=vlan1 prot=tcp po=83 add firewall poli="lan" ru=29 ac=allo int=vlan1 prot=tcp po=82 add firewall poli="lan" ru=53 ac=allo int=vlan1 prot=tcp po=5150 add firewall poli="lan" ru=54 ac=allo int=vlan1 prot=tcp po=8443 add firewall poli="lan" ru=100 ac=deny int=vlan1 prot=tcp po=all # RADIUS configuration # Telnet configuration # Perm assignments configuration # STT configuration # BOOTP configuration # NTP configuration enable ntp set ntp utc=+02:00:00 add ntp peer=192.43.244.18 # Ping configuration # DHCP (Post IP) configuration # DHCPv6 (post-IPv6) configuration # IPX configuration # DECnet configuration # Appletalk configuration # Bridge configuration # ENCO configuration

# SSH configuration # SSL configuration # Log configuration # RSVP configuration # Mail configuration # TPAD configuration # IPSEC configuration create ipsec sas=0 key=isakmp prot=esp enc=3desouter hasha=sha set ipsec sas=0 mod=transport antir=true create ipsec bund=0 key=isakmp string="0" expirys=3600 create ipsec pol="eth0allowISAKMP" int=eth0 ac=permit set ipsec pol="eth0allowISAKMP" lp=500 tra=UDP create ipsec pol="eth0allowISAKMPF" int=eth0 ac=permit set ipsec pol="eth0allowISAKMPF" lp=4500 tra=UDP create ipsec pol="wiz_ravpn" int=eth0 ac=ipsec key=isakmp bund=0 peer=ANY isa="wiz_ravpn" set ipsec pol="wiz_ravpn" lp=1701 tra=UDP create ipsec pol="eth0allow" int=eth0 ac=permit enable ipsec # ISAKMP configuration create isakmp pol="wiz_ravpn" pe=any enc=3desouter key=1 natt=true set isakmp pol="wiz_ravpn" expirys=28800 gro=2 set isakmp pol="wiz_ravpn" sendd=true set isakmp pol="wiz_ravpn" localid="Allied Telesis router" enable isakmp iptables -I FORWARD -d 192.168.13.20 -j DROP # PKI configuration # HTTP configuration # VRRP configuration # GUI configuration # BGP configuration # LB configuration # TACP configuration

# SKEY configuration # UPNP configuration # PORTAUTH configuration # 802.1X configuration # MAC Based Auth configuration # Software QoS configuration

# WANLB configuration # LLDP configuration # DDNS configuration # TRIGGER Configuration