# routerboard: yes # board-name: hEX S # model: RB760iGS # serial-number: A36A0B3D058B # firmware-type: mt7621L # factory-firmware: 6.44 # current-firmware: 6.48.5 # upgrade-firmware: 6.48.5 # # channel: long-term # installed-version: 6.48.5 # # Flags: U - undoable, R - redoable, F - floating-undo # ACTION BY POLICY # # software id = JGU8-8X3K # # model = RB760iGS # serial number = A36A0B3D058B /interface bridge add name=loopback /interface ethernet set [ find default-name=ether1 ] mac-address=08:55:31:10:A3:E6 set [ find default-name=ether2 ] mac-address=08:55:31:10:A3:E7 set [ find default-name=ether3 ] mac-address=08:55:31:10:A3:E8 set [ find default-name=ether4 ] comment="DownLink - Prefeitura" mac-address=08:55:31:10:A3:E9 set [ find default-name=ether5 ] mac-address=08:55:31:10:A3:EA set [ find default-name=sfp1 ] comment="UpLink - PR-PIS-BKB - 0/0/10" mac-address=08:55:31:10:A3:EB /interface list add name=CONFIAVEL /interface wireless security-profiles set [ find default=yes ] supplicant-identity=MikroTik /queue simple add max-limit=320M/320M name=320M queue=ethernet-default/ethernet-default target=ether2 /routing ospf instance set [ find default=yes ] redistribute-connected=as-type-1 redistribute-static=as-type-1 router-id=10.99.99.88 /snmp community set [ find default=yes ] addresses=45.225.65.10/32 name=onnet@2017 /system logging action add disk-file-count=10 disk-file-name=disk1/log-prefeitura-pis disk-lines-per-file=10000 name=usb target=disk /user group add name=romon policy="romon,!local,!telnet,!ssh,!ftp,!reboot,!read,!write,!policy,!test,!winbox,!password,!web,!sniff,!sensitive,!api,!dude,!tikapp" /ip firewall connection tracking set enabled=no /ip neighbor discovery-settings set discover-interface-list=all /interface l2tp-server server set enabled=yes ipsec-secret=101010 /interface list member add interface=ether1 list=CONFIAVEL add interface=ether2 list=CONFIAVEL add interface=ether3 list=CONFIAVEL add interface=ether5 list=CONFIAVEL add interface=sfp1 list=CONFIAVEL /ip address add address=10.10.0.18/30 interface=sfp1 network=10.10.0.16 add address=10.99.99.88 interface=loopback network=10.99.99.88 add address=10.66.6.1/30 disabled=yes interface=ether2 network=10.66.6.0 add address=45.225.65.102/29 interface=ether4 network=45.225.65.96 /ip dns set servers=8.8.8.8 /ip route add disabled=yes distance=1 dst-address=45.225.65.96/29 gateway=10.66.6.2 /ip service set telnet disabled=yes set ftp disabled=yes set www disabled=yes set ssh address=45.225.65.10/32 port=2222 set api disabled=yes set winbox port=25000 set api-ssl disabled=yes /routing filter add chain=ospf-in prefix=0.0.0.0/0 set-pref-src=45.225.65.102 add action=discard chain=ospf-in prefix=!0.0.0.0/0 /routing ospf interface add interface=sfp1 network-type=point-to-point add passive=yes /routing ospf network add area=backbone network=10.10.0.16/30 add area=backbone network=10.99.99.88/32 /snmp set contact="Rodrigo " enabled=yes location="Pirai do Sul/PR" src-address=10.99.99.88 trap-version=2 /system clock set time-zone-autodetect=no time-zone-name=America/Sao_Paulo /system identity set name=PR-PIS-PREFEITURA-SERP-001 /system logging add action=usb topics=critical add action=usb topics=interface add action=usb topics=system add action=usb topics=health add action=usb topics=account add action=usb topics=manager add action=usb topics=info add action=usb topics=event add action=disk topics=account add action=disk topics=critical add action=disk topics=event add action=disk topics=health add action=disk topics=info add action=disk topics=interface add action=disk topics=manager add action=disk topics=system /system ntp client set enabled=yes primary-ntp=200.160.0.8 secondary-ntp=200.189.40.8 server-dns-names=8.8.8.8 /system package update set channel=long-term /system watchdog set watch-address=10.10.0.17 watchdog-timer=no /tool romon set enabled=yes secrets=0nn3t*8102