IX2215 Config (×PPPoE)

日付:
 IX2215-Home(config)$ show startup-config
Using 3373 out of 1048576 bytes
! NEC Portable Internetwork Core Operating System Software
! IX Series IX2215 (magellan-sec) Software, Version 10.6.21, RELEASE SOFTWARE
! Compiled Dec 10-Fri-2021 14:01:55 JST #2
! Last updated Dec 30-Fri-2022 22:34:56 JST
!
hostname IX2215-Home
timezone +09 00
!
logging buffered 131072
!
no syslog ip enable
!
username admin password hash <password> administrator
!
!
ip route default 172.16.0.1
ip dhcp enable
ip access-list web-http-acl permit ip src any dest 192.168.10.254/32
!
!
!
!
!
!
!
!
!
!
!
ip name-server 172.16.0.1
ip name-server 8.8.8.8
!
proxy-dns ip enable
proxy-dns server 172.16.0.1 priority 254
proxy-dns server 8.8.8.8 priority 254
!
telnet-server ip enable
!
ssh-server ip enable
!
http-server username admin
http-server ip access-list web-http-acl
http-server ip enable
!
!
ikev2 authentication psk id ipv4 169.254.255.254 key char <passwd>
!
nm ip enable
nm account <username> password secret <passwd>
nm sitename 01
nm suppress-feature ddns
!
!
route-map web-dmvpn-map permit 10
  match interface GigaEthernet2.0
!
route-map web-dmvpn-map-tunnel0.0 permit 10
  set ip next-hop 169.254.255.254
!
ip dhcp profile lan1
  dns-server 192.168.10.254
!
router bgp 65535
  timers 5 15
  address-family ipv4 unicast
    redistribute connected route-map web-dmvpn-map
  peer-group web-dmvpn-group-tunnel0.0 remote-as 65535
    listen range 169.254.0.0/16
    connect-interval 10
    route-reflector-client
    address-family ipv4 route-map web-dmvpn-map-tunnel0.0 out
!
device GigaEthernet0
!
device GigaEthernet1
!
device GigaEthernet2
!
device BRI0
  isdn switch-type hsd128k
!
device USB0
  shutdown
!
interface GigaEthernet0.0
  description WAN1
  ip address 172.16.200.1/16
  ip tcp adjust-mss auto
  ip napt enable
  ip napt hairpinning
  ip napt static GigaEthernet0.0 50
  ip napt static GigaEthernet0.0 udp 500
  ip napt static GigaEthernet0.0 udp 4500
  no shutdown
!
interface GigaEthernet1.0
  no ip address
  shutdown
!
interface GigaEthernet2.0
  description LAN1
  ip address 192.168.10.254/24
  ip dhcp binding lan1
  no shutdown
!
interface BRI0.0
  encapsulation ppp
  no auto-connect
  no ip address
  shutdown
!
interface USB-Serial0.0
  encapsulation ppp
  no auto-connect
  no ip address
  shutdown
!
interface Loopback0.0
  no ip address
!
interface Null0.0
  no ip address
!
interface Tunnel0.0
  description DynamicVPN
  tunnel mode mgre ipsec-ikev2
  ip address 169.254.255.254/16
  ip tcp adjust-mss auto
  ikev2 child-pfs 2048-bit
  ikev2 child-proposal enc aes-cbc-256 aes-cbc-192 aes-cbc-128
  ikev2 child-proposal integrity sha2-512 sha2-384 sha2-256
  ikev2 dpd interval 10
  ikev2 local-authentication psk id ipv4 169.254.255.254
  ikev2 nat-traversal keepalive 20
  ikev2 outgoing-interface GigaEthernet0.0 auto
  ikev2 sa-proposal enc aes-cbc-256 aes-cbc-192 aes-cbc-128
  ikev2 sa-proposal integrity sha2-512 sha2-384 sha2-256
  ikev2 sa-proposal dh 2048-bit
  ikev2 sa-proposal prf sha2-512 sha2-384 sha2-256
  ikev2 ipsec-mode transport
  ikev2 peer any authentication psk 
  no shutdown
!
system information lan 1 GigaEthernet2.0
system information wan 1 GigaEthernet0.0
!
web-console system information

コメント

コメントを投稿