Set band=2ghz-b/g/n country="new zealand" \ĭisabled=no distance=indoors frequency-mode=regulatory-domain mode=\Īp-bridge security-profile="WLAN profile" ssid=test \Īdd name=dhcp ranges=192.168.88.10-192.168.88.254Īdd address-pool=dhcp disabled=no interface=bridge lease-time=2h name=defconfĪdd bridge=bridge comment=defconf interface=ether2-masterĪdd bridge=bridge comment=defconf interface=wlan1Īdd address=192.168.88.1/24 comment=defconf interface=ether2-master network=\Īdd address=192.168.1.0 interface=ether1 network=192.168.1.1Īdd comment=defconf dhcp-options=hostname,clientid interface=ether1Īdd address=192.168.88.0/24 comment=defconf gateway=192.168.88.1Īdd chain=input comment="defconf: accept ICMP" protocol=icmpĪdd chain=input comment="defconf: accept established,related" \Īdd action=drop chain=input comment="defconf: drop all from WAN" \Īdd action=fasttrack-connection chain=forward comment="defconf: fasttrack" \Īdd chain=forward comment="defconf: accept established,related" \Īdd action=drop chain=forward comment="defconf: drop invalid" \ Set master-port=ether2-masterĪdd add-default-route=yes disabled=no interface=ether1 name=pppoe-out1 \Īdd authentication-types=wpa2-psk eap-methods="" management-protection=\Īllowed mode=dynamic-keys name="WLAN profile" supplicant-identity="" The Draytek modem is at 192.168.1.1, and I've managed to set things up so that I can still log in to it at that address, although I may have done that in a less than perfect way too.Īdd admin-mac=xxxxxxxxxxxxx auto-mac=no comment=defconf name=bridge Is this correct, or should the rules be on eth1? Any other criticisms gratefully accepted too - I'm new to the networking side of things, and it's interesting to learn, but the Mikrotik certainly exposes a scary number of options.Ĭurrent settings are below (hopefully with all the passwords removed). The PPPoE client is running on the eth1 interface, and I've changed the default firewall rules in-interface from "eth1" to "pppoe-out1". I've just ditched our constantly freezing TP-link router and replaced it with a Mikrotik RB951G-2HnD, connected on eth1 to a Draytek Vigor 120 ADSL modem running in PPPoE passthrough mode.Įverything seems to be working smoothly (and with much stronger wifi signal too), but I'm not quite sure whether I've set up the firewall rules correctly.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |