- Code: Alles auswählen
\=>interface list
Name Type State Use UL Interfaces
loop ip connected 0
ethif1 physical connected 1 ethport1
ethif2 physical connected 1 ethport2
ethif3 physical connected 1 ethport3
ethif4 physical connected 1 ethport4
wlif1 physical connected 1 WLAN
ceoc dsl connected 0
bridge eth connected 2 RELAY, LocalNetwork
OBC bridge connected 1 bridge
ethport1 bridge connected 1 bridge
RELAY eth connected 0
atm_8_35 atm connected 1 Bridge
atm_8_48 atm connected 1 Shared_Internet_ppp
Bridge bridge not-connected 0
ethport2 bridge connected 1 bridge
ethport3 bridge connected 1 bridge
ethport4 bridge connected 1 bridge
WLAN bridge connected 1 bridge
Shared_Internet_ppp ppp connected 1 Shared_Internet
Shared_Internet *ip connected 0
Shared_Internet_trigger ip connected 0
LocalNetwork ip connected 0
Hier ist meine gesamte Konfiguration, frisch vom Gerät heruntergeladen:
- Code: Alles auswählen
[ sntpc.ini ]
config poll=60 pollpresync=60
config state=disabled
[ xdsl.ini ]
debug traceconfig level=0
config adslmultimode=adsl2plus detect-lop=enabled syslog=disabled
debug multimode config=default+t1.413issue2+g992.1_annex_a+g992.2+g992.3_annex_a+g992.3_annex_l+g992.3_annex_m+g992.5_annex_a+g992.5_annex_m
[ adslpots.ini ]
[ cac.ini ]
config port=dsl0 state=enabled
config port=dsl1 state=enabled
config port=atm2 state=enabled
config port=aal5 state=disabled
config port=atm5 state=disabled
overbooking rt=0 nrt=0
[ language.ini ]
config language=de complete=no
[ script.ini ]
[ env.ini ]
set var=CONF_COND_ENCRYPT value=enabled
set var=CONF_REGION value=Austria
set var=CONF_PROVIDER value=Internetdienstanbieter
set var=CONF_DESCRIPTION value="Multi User Austria"
set var=CONF_SERVICE value="Breitbandzugang Dial On Demand"
set var=CONF_VERSION value=5.3.1.8
set var=UPGRADE_URL value=http://www.speedtouch.com/upgrade500.htm
set var=HOST_SETUP value=none
set var=COLUMNS value=80
set var=ROWS value=24
set var=SESSIONTIMEOUT value=180
set var=CONF_DATE value="An der Konfiguration wurden manuell Änderungen vorgenommen."
set var=CONF_TPVERSION value=2.0.0
[ wizard.ini ]
config allow_factory_tpl=no trace=no autopopup=no configtime=30
[ phone.ini ]
add name=Bridge addr=8*35
add name=Internet addr=8*48
[ ipqos.ini ]
config dest=Bridge
config dest=Internet
[ qos.ini ]
config format=bytes
ctdadd name=ubr_0_0 conformance=UBR
add name=default txctd=ubr_0_0 rxctd=ubr_0_0
[ atm.ini ]
ifadd intf=atm_8_35
ifconfig intf=atm_8_35 dest=Bridge ulp=mac
ifattach intf=atm_8_35
ifadd intf=atm_8_48
ifconfig intf=atm_8_48 dest=Internet encaps=vcmux ulp=ppp
ifattach intf=atm_8_48
[ oam.ini ]
config clp=1 loopbackid=6a6a6a6a6a6a6a6a6a6a6a6a6a6a6a6a
modify port=dsl0 blocking=enabled
modify port=dsl1 blocking=enabled
modify port=atm2 blocking=enabled
modify port=atm3 blocking=enabled
modify port=aal5 blocking=enabled
modify port=atm5 blocking=enabled
[ snmp.ini ]
config sysContact="Service provider" sysName=ST5xx sysLocation=Austria
[ vlan_res.ini ]
add name=wan vid=3 addrule=disabled
add name=dmz vid=4 addrule=disabled
add name=guest vid=5 addrule=disabled
add name=MGMT_vlan vid=6 addrule=disabled
add name=HSI_vlan vid=7 addrule=disabled
add name=VoIP_vlan vid=8 addrule=disabled
add name=IPTV_vlan vid=9 addrule=disabled
[ bridge.ini ]
ifadd brname=bridge intf=Bridge
ifadd brname=bridge intf=ethport2 dest=ethif2 logging=disabled
ifadd brname=bridge intf=ethport3 dest=ethif3 logging=disabled
ifadd brname=bridge intf=ethport4 dest=ethif4 logging=disabled
ifadd brname=bridge intf=WLAN dest=wlif1 logging=disabled
ifconfig brname=bridge intf=ethport1 wan=disabled logging=disabled
ifconfig brname=bridge intf=Bridge dest=atm_8_35 wan=enabled
ifconfig brname=bridge intf=ethport2 wan=disabled logging=disabled
ifconfig brname=bridge intf=ethport3 wan=disabled logging=disabled
ifconfig brname=bridge intf=ethport4 wan=disabled logging=disabled
ifconfig brname=bridge intf=WLAN wan=disabled logging=disabled
ifattach brname=bridge intf=ethport2 logging=disabled
ifattach brname=bridge intf=ethport3 logging=disabled
ifattach brname=bridge intf=ethport4 logging=disabled
ifattach brname=bridge intf=WLAN logging=disabled
config brname=bridge age=300 filter=no_WAN_broadcast vlan=disabled precedencemap=4,7,9,11,13,14,15,15
[ vlanbridge.ini ]
ifadd name=MGMT_vlan intf=OBC untagged=disabled
ifadd name=MGMT_vlan intf=Bridge untagged=disabled
ifadd name=HSI_vlan intf=OBC untagged=disabled
ifadd name=HSI_vlan intf=Bridge untagged=disabled
[ bridgevlan.ini ]
[ vlanbridgerule.ini ]
[ bridgeintfxtratag.ini ]
[ bridgeunknownvlan.ini ]
[ dvm_res.ini ]
config timeout=90
[ igmpsnooping.ini ]
ifconfig brname=bridge intf=OBC portmode=Auto fastleave=disabled exptrack=disabled mrdp=disabled rgmp=disabled
ifconfig brname=bridge intf=ethport1 portmode=Auto fastleave=disabled exptrack=disabled mrdp=disabled rgmp=disabled
ifconfig brname=bridge intf=Bridge portmode=Auto fastleave=disabled exptrack=disabled mrdp=disabled rgmp=disabled
ifconfig brname=bridge intf=ethport2 portmode=Auto fastleave=disabled exptrack=disabled mrdp=disabled rgmp=disabled
ifconfig brname=bridge intf=ethport3 portmode=Auto fastleave=disabled exptrack=disabled mrdp=disabled rgmp=disabled
ifconfig brname=bridge intf=ethport4 portmode=Auto fastleave=disabled exptrack=disabled mrdp=disabled rgmp=disabled
ifconfig brname=bridge intf=WLAN portmode=Auto fastleave=disabled exptrack=disabled mrdp=disabled rgmp=disabled
config brname=bridge state=disabled floodrp=disabled floodmcast=disabled
[ eth.ini ]
[ pptp.ini ]
profadd name=pptp
[ ppprelay.ini ]
ifadd intf=bridge
[ dhcspool.ini ]
pool add name=LAN_private
[ label.ini ]
add name=DSCP
add name=Interactive
add name=Management
add name=Video
add name=VoIP
add name=default
modify name=DSCP classification=overwrite defclass=dscp ackclass=defclass
modify name=Interactive classification=increase defclass=8 ackclass=8
modify name=Management classification=increase defclass=12 ackclass=12
modify name=Video classification=increase defclass=10 ackclass=10
modify name=VoIP classification=overwrite defclass=14 ackclass=14 bidirectional=enabled inheritance=enabled
modify name=default classification=increase defclass=default ackclass=prioritize
[ ppp.ini ]
ifadd intf=Shared_Internet
rtadd intf=Shared_Internet dst=0.0.0.0/0 src=0.0.0.0/0 metric=1
ifconfig intf=Shared_Internet dest=atm_8_48 pcomp=enabled accomp=enabled trace=enabled mru=1500 demanddial=enabled doddelay=10 dnsmetric=0 idletime=900 idletrigger=Tx
ifconfig intf=Shared_Internet user=mein_benutzername password=mein_passwort status=enabled
[ ip.ini ]
ifadd intf=LocalNetwork dest=bridge
ifconfig intf=loop mtu=65535 group=local
ifconfig intf=LocalNetwork mtu=1500 group=lan linksensing=enabled primary=enabled
ifattach intf=LocalNetwork
config forwarding=enabled redirects=enabled netbroadcasts=disabled ttl=64 fraglimit=64 defragmode=enabled addrcheck=dynamic mssclamping=enabled
config checkoptions=transparent
config natloopback=disabled
debug traceconfig mode=dump
ipadd intf=LocalNetwork addr=192.168.0.200/24 addroute=enabled
rtadd dst=255.255.255.255/32 gateway=127.0.0.1
rtadd dst=224.0.0.0/4 intf=LocalNetwork
[ autoip.ini ]
[ ipqosmeter.ini ]
[ igmh.ini ]
config requirera=disabled
[ autopvc.ini ]
config mode=pseudo type=bridge overwrite=disabled peakrate=0
[ mcast.ini ]
[ diagnostics.ini ]
config pingtimeout=1000 pingpacketsize=32
[ dnsc.ini ]
config timeout=5 retry=4 search=enabled trace=disabled
dnsadd addr=127.0.0.1 port=53
[ dnss.ini ]
config domain=lan timeout=15 suppress=0 state=enabled trace=enabled syslog=disabled WANDownSpoofing=disabled WDSpoofedIP=195.3.96.0
host add name=speedtouch addr=0.0.0.0 ttl=1200
host add name=dsldevice addr=0.0.0.0 ttl=1200
[ dhcrule.ini ]
debug traceconfig state=disabled
[ dhcs.ini ]
debug traceconfig state=disabled
policy verifyfirst=enabled trustclient=enabled rtbehaviour=traditional
pool config name=LAN_private state=enabled intf=LocalNetwork poolstart=192.168.0.10 poolend=192.168.0.20 netmask=24 gateway=192.168.0.200 server=192.168.0.200 leasetime=7200
[ dhcr.ini ]
ifconfig intf=LocalNetwork relay=enabled
[ dhcc.ini ]
debug traceconfig state=disabled
[ dhcsp.ini ]
debug traceconfig state=disabled
config state=disabled
[ upgrade.ini ]
config state=enabled protocol=tftp
debug traceconfig state=enabled
profile add extension=sts destdir=dl maxsize(KBytes)=100 action=script_load
profile add extension=ini destdir=dl maxsize(KBytes)=100 action=config_load
profile add extension=bin destdir=dl maxsize(KBytes)=8000 action=upgrade
[ dyndns.ini ]
service modify name=dyndns server=members.dyndns.org port=www-http request=/nic/update updateinterval=2097120 retryinterval=30 max_retry=3
service modify name=statdns server=members.dyndns.org port=www-http request=/nic/update retryinterval=30 max_retry=3
service modify name=custom server=members.dyndns.org port=www-http request=/nic/update retryinterval=30 max_retry=3
service modify name=No-IP server=dynupdate.no-ip.com port=www-http request=/ducupdate.php updateinterval=86400 retryinterval=30 max_retry=3
service modify name=DtDNS server=dtdns.com port=www-http request=/api/autodns.cfm updateinterval=86400 retryinterval=30 max_retry=3
service modify name=gnudip port=www-http
add name=dyndns_0
modify name=dyndns_0 service=
[ expr.ini ]
add name=wan type=intf intfgroup=wan
add name=lan type=intf intfgroup=lan
add name=local type=intf intfgroup=local
add name=private type=ip addr=192.0.0.0/8 mask=0
add name=private type=ip addr=172.[16-31].*.* mask=0
add name=private type=ip addr=192.168.1.0/24 mask=0
add name=ssdp_ip type=ip addr=239.255.255.250 mask=0
add name=mdap_ip type=ip addr=224.0.0.103 mask=0
add name=icmp type=serv proto=icmp
add name=igmp type=serv proto=igmp
add name=ftp type=serv proto=tcp dstport=ftp
add name=telnet type=serv proto=tcp dstport=telnet
add name=http type=serv proto=tcp dstport=www-http
add name=httpproxy type=serv proto=tcp dstport=httpproxy
add name=https type=serv proto=tcp dstport=443
add name=RPC type=serv proto=tcp dstport=135
add name=NBT type=serv proto=udp dstport=netbios-ns
add name=NBT type=serv proto=udp dstport=netbios-dgm
add name=NBT type=serv proto=tcp dstport=netbios-ssn
add name=SMB type=serv proto=tcp dstport=445
add name=imap type=serv proto=tcp dstport=imap2
add name=imap3 type=serv proto=tcp dstport=imap3
add name=imap4-ssl type=serv proto=tcp dstport=585
add name=imaps type=serv proto=tcp dstport=993
add name=pop2 type=serv proto=tcp dstport=pop2
add name=pop3 type=serv proto=tcp dstport=pop3
add name=pop3s type=serv proto=tcp dstport=995
add name=smtp type=serv proto=tcp dstport=smtp
add name=ssh type=serv proto=tcp dstport=22
add name=dns type=serv proto=tcp dstport=dns
add name=dns type=serv proto=udp dstport=dns
add name=nntp type=serv proto=tcp dstport=nntp
add name=ipsec type=serv proto=ah
add name=ipsec type=serv proto=esp
add name=ipsec type=serv proto=udp srcport=ike dstport=ike
add name=esp type=serv proto=esp
add name=ah type=serv proto=ah
add name=ike type=serv proto=udp dstport=ike
add name=DiffServ type=serv dscp=!cs0
add name=sip type=serv proto=udp dstport=sip
add name=sip type=serv proto=tcp dstport=sip
add name=h323 type=serv proto=tcp dstport=h323
add name=h323 type=serv proto=udp dstport=h323
add name=h323 type=serv proto=tcp dstport=1718
add name=h323 type=serv proto=udp dstport=1718
add name=h323 type=serv proto=tcp dstport=1719
add name=h323 type=serv proto=udp dstport=1719
add name=dhcp type=serv proto=udp dstport=bootpc
add name=dhcp type=serv proto=udp dstport=bootps
add name=rtsp type=serv proto=udp dstport=rtsp
add name=rtsp type=serv proto=tcp dstport=rtsp
add name=ssdp_serv type=serv proto=udp dstport=1900
add name=mdap_serv type=serv proto=udp dstport=3235
add name=syslog type=serv proto=udp dstport=syslog
[ labelrule.ini ]
chain add chain=rt_user_labels
chain add chain=rt_default_labels
chain add chain=qos_user_labels
chain add chain=qos_default_labels
rule add chain=qos_default_labels index=1 serv=sip log=disabled state=enabled label=VoIP
rule add chain=qos_default_labels index=2 serv=h323 log=disabled state=enabled label=VoIP
rule add chain=qos_default_labels index=3 serv=telnet log=disabled state=enabled label=Interactive
rule add chain=qos_default_labels index=4 serv=smtp log=disabled state=enabled label=Interactive
rule add chain=qos_default_labels index=5 serv=imap4-ssl log=disabled state=enabled label=Interactive
rule add chain=qos_default_labels index=6 serv=imap3 log=disabled state=enabled label=Interactive
rule add chain=qos_default_labels index=7 serv=imap log=disabled state=enabled label=Interactive
rule add chain=qos_default_labels index=8 serv=imaps log=disabled state=enabled label=Interactive
rule add chain=qos_default_labels index=9 serv=pop3s log=disabled state=enabled label=Interactive
rule add chain=qos_default_labels index=10 serv=pop3 log=disabled state=enabled label=Interactive
rule add chain=qos_default_labels index=11 serv=pop2 log=disabled state=enabled label=Interactive
rule add chain=qos_default_labels index=12 serv=httpproxy log=disabled state=enabled label=Interactive
rule add chain=qos_default_labels index=13 serv=http log=disabled state=enabled label=Interactive
rule add chain=qos_default_labels index=14 serv=https log=disabled state=enabled label=Interactive
rule add chain=qos_default_labels index=15 serv=esp log=disabled state=enabled label=Interactive
rule add chain=qos_default_labels index=16 serv=ah log=disabled state=enabled label=Interactive
rule add chain=qos_default_labels index=17 serv=dns log=disabled state=enabled label=Management
rule add chain=qos_default_labels index=18 serv=ike log=disabled state=enabled label=Management
rule add chain=qos_default_labels index=19 serv=icmp log=disabled state=enabled label=Management
rule add chain=qos_default_labels index=20 serv=rtsp log=disabled state=enabled label=Video
rule add chain=qos_default_labels index=21 serv=igmp log=disabled state=enabled label=Video
rule add chain=qos_default_labels index=22 name=default srcintf=!wan log=disabled state=enabled label=default
[ ids.ini ]
config state=enabled trace=disabled
signature modify signature=spoofed_packet state=disabled
[ ids_threshold.ini ]
modify index=1 window=20 limit=20 scaling=enabled
modify index=2 window=2 limit=100 scaling=disabled
modify index=3 window=1 limit=200 scaling=disabled
modify index=4 window=1 limit=200 scaling=disabled
modify index=5 window=1 limit=200 scaling=disabled
modify index=6 window=1 limit=200 scaling=disabled
modify index=7 window=1 limit=200 scaling=disabled
[ cwmp.ini ]
config state=disabled mode=full periodicInform=enabled periodicInfInt=3600 sessionTimeout=60 noIpTimeout=300 maxEnvelopes=2 connectionRequest=disabled connectionReqPath=H2EvrLjAeCfKeWvc connectionReqUserName="" connectionReqPsswd=\"\" connectionReqAuth=none qos-class=12 bootdelayrange=120 upgradedelay=disabled persistentSubscription=disabled
config am1Termination=disabled
server config url=\"\" username=\"\" password=\"\"
debug traceconfig level=2
runtimevar softwareVersion=7.4.3.2 bootstrap=disabled parameterkey=""
[ grp.ini ]
[ rip.ini ]
config state=disabled
[ nat.ini ]
ifconfig intf=Shared_Internet translation=enabled
config trace=enabled
[ igmp.ini ]
config state=disabled qi=125 qri=10 lmqi=1 rv=2 advinter=20 initadvinter=2 initadvcount=3 requirera=disabled localgroup=disabled
ifconfig intf=LocalNetwork state=inactive
ifconfig intf=Shared_Internet_trigger state=inactive
ifconfig intf=Shared_Internet state=inactive
[ ipqosef.ini ]
ef config intf=LocalNetwork state=enabled
[ connection.ini ]
appconfig application=IP6TO4 trace=disabled
appconfig application=PPTP trace=enabled timeout=300
appconfig application=ESP timeout=900
appconfig application=IKE trace=disabled timeout=900 floating=enabled
appconfig application=SIP trace=enabled timeout=21600 floating=enabled tracelevel=4
appconfig application=SIP SIP_ALG=enabled RTP_predict_for_term_SIP_ALG=enabled
appconfig application=JABBER trace=disabled timeout=120
appconfig application=CU/SeeMe trace=disabled
appconfig application=RAUDIO(PNA) trace=disabled
appconfig application=RTSP trace=disabled timeout=0
appconfig application=ILS timeout=300
appconfig application=H245 timeout=300
appconfig application=H323 trace=disabled
appconfig application=IRC trace=disabled timeout=300
appconfig application=GAME(UDP) trace=disabled timeout=60
appconfig application=CONE(UDP) trace=disabled timeout=300
appconfig application=LOOSE(UDP) trace=disabled timeout=300
appconfig application=FTP trace=disabled
bind application=IP6TO4 port=0
bind application=PPTP port=1723-1723
bind application=ESP port=0
bind application=IKE port=500-500
bind application=SIP port=5060-5060
bind application=CU/SeeMe port=7648-7648
bind application=RAUDIO(PNA) port=7070-7070
bind application=RTSP port=554-554
bind application=ILS port=389-389
bind application=ILS port=1002-1002
bind application=H323 port=1720-1720
bind application=IRC port=6660-6669
bind application=FTP port=21-21
bind application=JABBER port=5222-5222
bind application=JABBER port=15222-15222
bind application=LOOSE(UDP) port=67-67
config configchangemode=immediate probes=disabled
debug trace=disabled
timerconfig timer=tcpidle value=900
timerconfig timer=tcpneg value=120
timerconfig timer=tcpkill value=3600
timerconfig timer=udpidle value=60
timerconfig timer=udpkill value=60
timerconfig timer=icmpkill value=60
timerconfig timer=ipidle value=60
timerconfig timer=ipkill value=60
timerconfig timer=aiprefresh value=60
[ switch.ini ]
mirror capture port=1
qos config state=disabled nbrOfQueues=0 realtime=disabled
storm ifconfig port=1 state=disabled rate=100 burstsize=2 broadcast=disabled multicast=disabled unknown=disabled
storm ifconfig port=2 state=disabled rate=100 burstsize=2 broadcast=disabled multicast=disabled unknown=disabled
storm ifconfig port=3 state=disabled rate=100 burstsize=2 broadcast=disabled multicast=disabled unknown=disabled
storm ifconfig port=4 state=disabled rate=100 burstsize=2 broadcast=disabled multicast=disabled unknown=disabled
[ upnp.ini ]
config maxage=1800 writemode=full safenat=disabled
[ system.ini ]
settime timezone=+00:00 daylightsaving=disabled
dst status=Disable mode=Absolute startdate=24/01/2000 starttime=00:00:00 enddate=24/01/2000 endtime=00:16:40 startweekday=Sunday starthour=0 startweek=5 startmonth=3 endweekday=Sunday endhour=0 endweek=5 endmonth=10
config upnp=enabled tr64=disabled mdap=enabled resetbutton=enabled
config digestauth=enabled defaultconnection=Shared_Internet
config autosave=enabled autosavedelay=10
locale dec_symbol=, group_symbol=. date_separator=- date_format=ddmmyyyy time_format=hmmss datetime_format=date+time duration_format=dhmmss
[ system_debug.ini ]
autosave trace=disabled
[ system_raccess.ini ]
config secure=disabled port=51003 timeout=20
[ dsd.ini ]
intercept config WDSpoofedIP=0.0.0.0 servertimeout=0 connecterrorurl="" categoryerrorurl="" monitorintercepturl="" unauthorizedrequrl="" imageredirect=disabled imageredirecturl="" alwaysuseip=disabled
urlfilter config state=disabled blockproxy=disabled blockipaddress=disabled blockobscuredip=disabled defaultaction=block
syslog config syslog=none
debug config turbomode=disabled
debug proxy state=disabled dest=0.0.0.0 port=0
debug recycling state=enabled interval=5 httpidle=1 otheridle=12
config state=disabled
[ hostmgr.ini ]
config state=enabled scantime=30 autosave=disabled trace=disabled
add mac_addr=00:11:11:1c:a0:e5 ip_addr=192.168.0.5 name=Unknown-00-11-11-1c-a0-e5 type=generic_device ipintf=LocalNetwork physintf=ethif2
add mac_addr=00:18:f3:75:f5:24 ip_addr=192.168.0.10 name=Unknown-00-18-f3-75-f5-24 type=generic_device ipintf=LocalNetwork physintf=ethif3
add mac_addr=00:21:70:7d:74:18 ip_addr=192.168.0.1 name=Unknown-00-21-70-7d-74-18 type=generic_device ipintf=LocalNetwork physintf=ethif1
[ mlp.ini ]
[ mlpuser.ini ]
[ argroupmember.ini ]
[ tls.ini ]
acs-client config state=enabled auth-serv=disabled valid-date=disabled valid-domain=disabled
https-server config state=enabled auth-client=disabled valid-date=disabled valid-domain=disabled
[ wireless.ini ]
ifconfig interop=802.11b/g locale=Europe
ifconfig channel=auto ssid=Rauta any=enabled rts=2347 protection=auto protmode=rtscts prottrigger=local&overlap shortslot=auto frameburst=disabled dtim=3
macacl config control=register
macacl add hwaddr=00:22:69:b5:d3:5e permission=allow name=registered
secmode wep encryptionkey=7642201A98
secmode wpa-psk presharedkey=mein_wpa_key rekeysec=0 version=WPA2
secmode config mode=wpa-psk
wds config state=enabled
[ ra.ini ]
config state=disabled secure=enabled port=51003 timeout=20 mode=Temporary ipintf="" randompassword=enabled randomport=disabled group="" user=""
[ service.ini ]
...diverse Programme und deren Ports...
[ fwlevel.ini ]
add name=BlockAll index=1 readonly=enabled udptrackmode=strict service=disabled proxy=disabled text="Use this Security Level to block all traffic from and to the Internet."
add name=Standard index=2 readonly=enabled udptrackmode=loose service=enabled proxy=disabled text="Use this Security Level to allow all outgoing connections and block all incoming traffic. Services and Application Sharing are allowed to open pinholes in the firewall."
add name=Disabled index=3 readonly=enabled udptrackmode=loose service=enabled proxy=disabled text="Disable the firewall. All traffic is allowed to pass through your SpeedTouch."
set name=Standard
[ firewall.ini ]
config state=enabled keep=disabled tcpchecks=exact udpchecks=enabled icmpchecks=enabled logdefault=disabled logthreshold=enabled tcpwindow=65536
debug traceconfig tcpchecks=disabled udpchecks=disabled icmpchecks=disabled sink=none forward=none source=none
rule add chain=source_fire index=1 name=AnyTraffic log=disabled state=enabled action=accept
rule add chain=forward_level_BlockAll index=1 name=AnyTraffic log=disabled state=enabled action=drop
rule add chain=forward_level_Standard index=1 name=FromLAN srcintf=lan log=disabled state=enabled action=accept
rule add chain=forward_level_Disabled index=1 name=AnyTraffic log=disabled state=enabled action=accept
[ servmgr.ini ]
ifadd name=HTTP group=lan
ifadd name=HTTPs group=lan
ifadd name=FTP group=lan
ifadd name=TELNET group=lan
ifadd name=DNS-S group=lan
ifadd name=SNMP_AGENT group=lan
ifadd name=PING_RESPONDER group=lan
modify name=PPTP state=enabled
modify name=SNTP state=disabled
modify name=SLA_ICMP_PING state=disabled
modify name=SLA_UDP_PING state=disabled
modify name=HTTP state=enabled
modify name=HTTPs state=enabled
modify name=TFTP-C state=disabled
modify name=FTP state=enabled
modify name=TELNET state=enabled
modify name=RIP state=disabled
modify name=IGMP-Proxy state=disabled
modify name=DNS-S state=enabled
modify name=DNS-C state=enabled
modify name=DHCP-S state=enabled
modify name=SNMP_AGENT state=enabled
modify name=SSDP state=enabled
modify name=MDAP state=enabled
modify name=CWMP-C state=disabled
modify name=CWMP-S state=disabled
modify name=IP_COMMANDS state=disabled
modify name=PING_RESPONDER state=enabled
mapadd name=HTTP port=www-http
mapadd name=HTTPs port=443
mapadd name=HTTPI intf=LocalNetwork port=www-http
mapadd name=HTTPI intf=LocalNetwork port=1080
mapadd name=HTTPI intf=LocalNetwork port=httpproxy
mapadd name=FTP port=ftp
mapadd name=TELNET port=telnet
mapadd name=DNS-S port=dns
mapadd name=SNMP_AGENT port=snmp
mapadd name=SSDP port=1900
mapadd name=MDAP port=3235
[ kta.ini ]
[ kti.ini ]
[ koa.ini ]
a d="" l=yes
[ koi.ini ]
a d="" l=yes
[ endofarch ]
Wenn in dieser Konfiguration mehr Sachen kaputt sind, dann konfigurier' ich das gerne von vorne, wenn ihr mir eine Basis-Konfig (Multiuser) empfehlen könnt...
Hmmm, ich würde einmal alles außer poolstart, poolend, netmask, gateway und leasetime rauslöschen.
Okay, hab' ich gemacht, hat nichts geändert.
Verfasst: Sa 27 Sep, 2008 11:22
