# routerboard: yes # board-name: hEX lite # model: RB750r2 # serial-number: 67D2076346BA # firmware-type: qca9531L # factory-firmware: 3.36 # current-firmware: 6.44.5 # upgrade-firmware: 7.13.2 # # channel: stable # installed-version: 7.13.2 # # Flags: U - undoable, R - redoable, F - floating-undo # ACTION BY PO.. TIME TR.. # U device changed wr.. 2025-06-21 22:15:32 ne.. # U device changed wr.. 2025-06-21 22:07:34 ne.. # U device changed wr.. 2025-06-17 18:58:54 ne.. # U device changed wr.. 2025-06-17 18:56:07 ne.. # U device changed wr.. 2025-06-14 17:48:50 ne.. # U device changed wr.. 2025-06-14 17:45:20 ne.. # U device changed wr.. 2025-06-14 09:36:10 ne.. # U device changed wr.. 2025-06-14 09:32:33 ne.. # U device changed wr.. 2025-05-28 00:20:36 ne.. # U device changed wr.. 2025-05-28 00:00:37 ne.. # U device changed wr.. 2025-05-24 04:10:14 ne.. # U device changed wr.. 2025-05-24 04:05:27 ne.. # U device changed wr.. 2025-05-14 12:04:25 ne.. # U device changed wr.. 2025-05-14 11:59:47 ne.. # U device changed wr.. 2025-05-13 18:56:34 ne.. # U device changed wr.. 2025-05-13 18:56:17 ne.. # U device changed wr.. 2025-05-13 16:49:17 ne.. # U device changed wr.. 2025-05-13 16:47:10 ne.. # U device changed wr.. 2025-05-13 16:18:55 ne.. # U device changed wr.. 2025-05-13 16:15:48 ne.. # U device changed wr.. 2025-05-13 15:48:04 ne.. # U device changed wr.. 2025-05-13 15:45:56 ne.. # U device changed wr.. 2025-05-13 13:45:47 ne.. # U device changed wr.. 2025-05-13 13:37:59 ne.. # U device changed wr.. 2025-05-12 17:58:27 ne.. # U device changed wr.. 2025-05-12 17:56:40 ne.. # U device changed wr.. 2025-05-12 17:26:16 ne.. # U device changed wr.. 2025-05-12 17:24:48 ne.. # U device changed wr.. 2025-05-12 10:55:14 ne.. # U device changed wr.. 2025-05-12 10:23:25 ne.. # U device changed wr.. 2025-05-11 15:15:54 ne.. # U device changed wr.. 2025-05-11 14:58:26 ne.. # U device changed wr.. 2025-05-11 14:38:02 ne.. # U device changed wr.. 2025-05-11 14:29:34 ne.. # U device changed wr.. 2025-05-11 13:51:09 ne.. # U device changed wr.. 2025-05-11 13:31:01 ne.. # U device changed wr.. 2025-05-11 12:55:16 ne.. # U device changed wr.. 2025-05-11 12:52:38 ne.. # U device changed wr.. 2025-05-11 12:22:24 ne.. # U device changed wr.. 2025-05-11 12:21:17 ne.. # U device changed wr.. 2025-05-11 11:59:43 ne.. # U device changed wr.. 2025-05-11 11:56:55 ne.. # U device changed wr.. 2025-05-10 13:36:45 ne.. # U device changed wr.. 2025-05-10 13:35:58 ne.. # U device changed wr.. 2025-05-07 13:30:46 ne.. # U device changed wr.. 2025-05-07 13:28:29 ne.. # U device changed wr.. 2025-04-30 09:05:07 ne.. # U device changed wr.. 2025-04-30 09:01:40 ne.. # U device changed wr.. 2025-04-26 13:40:08 ne.. # U device changed wr.. 2025-04-26 13:37:31 ne.. # U device changed wr.. 2025-04-10 10:42:53 ne.. # U device changed wr.. 2025-04-10 10:41:56 ne.. # U device changed wr.. 2025-04-05 21:12:43 ne.. # U device changed wr.. 2025-04-05 21:12:06 ne.. # U device changed wr.. 2025-04-01 11:35:12 ne.. # U device changed wr.. 2025-04-01 11:32:24 ne.. # U device changed wr.. 2025-03-31 17:50:39 ne.. # U device changed wr.. 2025-03-31 17:43:12 ne.. # U device changed wr.. 2025-03-25 10:46:05 ne.. # U device changed wr.. 2025-03-25 10:43:58 ne.. # U device changed wr.. 2025-03-14 17:06:53 ne.. # U device changed wr.. 2025-03-14 17:05:16 ne.. # U device changed wr.. 2025-03-10 21:46:28 ne.. # U device changed wr.. 2025-03-10 21:24:09 ne.. # U device changed wr.. 2025-03-10 20:10:22 ne.. # U device changed wr.. 2025-03-10 19:59:45 ne.. # U device changed wr.. 2025-03-10 19:50:51 ne.. # U device changed wr.. 2025-03-10 19:45:44 ne.. # U device changed wr.. 2025-03-10 19:43:21 ne.. # U device changed wr.. 2025-03-10 19:41:03 ne.. # U device changed wr.. 2025-03-10 07:56:24 ne.. # U device changed wr.. 2025-03-10 07:55:05 ne.. # U device changed wr.. 2025-03-10 05:44:24 ne.. # U device changed wr.. 2025-03-10 04:29:53 ne.. # U device changed wr.. 2025-03-09 22:22:28 ne.. # U device changed wr.. 2025-03-09 22:19:50 ne.. # U device changed wr.. 2025-03-09 22:07:07 ne.. # U device changed wr.. 2025-03-09 21:26:07 ne.. # U device changed wr.. 2025-02-12 12:01:36 ne.. # U device changed wr.. 2025-02-12 12:01:09 ne.. # U device changed wr.. 2025-02-12 12:00:06 ne.. # U device changed wr.. 2025-02-12 11:59:59 ne.. # U device changed wr.. 2025-01-30 19:01:15 ne.. # U device changed wr.. 2025-01-30 18:57:58 ne.. # U device changed wr.. 2025-01-28 23:14:33 ne.. # U device changed wr.. 2025-01-28 21:45:31 ne.. # U device changed wr.. 2025-01-28 04:05:37 ne.. # U device changed wr.. 2025-01-28 03:58:00 ne.. # U device changed wr.. 2025-01-23 23:02:22 ne.. # U device changed wr.. 2025-01-23 22:26:33 ne.. # U device changed wr.. 2025-01-23 09:04:04 ne.. # U device changed wr.. 2025-01-23 08:53:17 ne.. # U device changed wr.. 2025-01-23 08:49:55 ne.. # U device changed wr.. 2025-01-23 08:45:36 ne.. # U device changed wr.. 2025-01-23 08:35:25 ne.. # U device changed wr.. 2025-01-23 08:23:05 ne.. # U device changed wr.. 2025-01-22 21:15:12 ne.. # U device changed wr.. 2025-01-22 21:13:55 ne.. # U device changed wr.. 2025-01-08 05:30:19 ne.. # U device changed wr.. 2025-01-08 03:55:56 ne.. # # 2025-07-01 16:14:57 by RouterOS 7.13.2 # software id = DN2D-Z4TM # # model = RB750r2 # serial number = 67D2076346BA /interface ethernet set [ find default-name=ether1 ] comment="LINK copel BKP" disabled=yes set [ find default-name=ether2 ] comment="LINK DBUG Principal" set [ find default-name=ether3 ] disabled=yes set [ find default-name=ether4 ] disabled=yes set [ find default-name=ether5 ] comment="Liga com SW rack principal" loop-protect=on /interface wireguard add disabled=yes listen-port=13232 mtu=1420 name="Cel Diego" add listen-port=13231 mtu=1420 name=Diego /interface vlan add interface=ether3 name="VLAN 400" vlan-id=400 add interface=ether3 name="VLAN 401" vlan-id=401 /interface lte apn set [ find default=yes ] ip-type=ipv4 use-network-apn=no #error exporting "/interface/macsec/profile" /ip hotspot profile set [ find default=yes ] html-directory=hotspot /ip pool add name=pool ranges=192.168.1.40-192.168.1.254 add name=DHCP-Corporativo ranges=10.1.1.1-10.1.1.252 /ip dhcp-server add address-pool=pool interface=ether5 lease-time=10m name=WIFI add address-pool=DHCP-Corporativo disabled=yes interface="VLAN 400" lease-time=12h name=Corporativo /routing bgp template set default disabled=no output.network=bgp-networks /routing ospf instance add disabled=no name=default-v2 add disabled=no name=default-v3 version=3 /routing ospf area add disabled=yes instance=default-v2 name=backbone-v2 add disabled=yes instance=default-v3 name=backbone-v3 /snmp community set [ find default=yes ] addresses=45.225.65.10/32 name=onnet@2017 add addresses=::/0 name=public /system logging action set 0 memory-lines=20000 /ip neighbor discovery-settings set discover-interface-list=!dynamic /ip settings set max-neighbor-entries=8192 /ipv6 settings set max-neighbor-entries=8192 #error exporting "/interface/dot1x/client" #error exporting "/interface/dot1x/server" /interface ovpn-server server set auth=sha1,md5 /interface wireguard peers add allowed-address=0.0.0.0/0 interface=Diego persistent-keepalive=10s public-key="sgHlWGvRa7jeRUYiPOoj1gkAmKqbOYBQQjj8gaYGGBQ=" add allowed-address=0.0.0.0/0 interface="Cel Diego" public-key="znZt3btiAzDz3W+j4EKcmabB8RsA7LKjNumlUlhS3H8=" /ip address add address=45.225.67.118/30 comment=LINK-DBUG interface=ether2 network=45.225.67.116 add address=192.168.1.1/16 comment="Rede Wifi" interface=ether5 network=192.168.0.0 add address=10.1.1.253/24 comment="Rede Corporativa" interface=ether5 network=10.1.1.0 add address=192.168.50.3/24 interface=Diego network=192.168.50.0 add address=172.16.50.2/24 disabled=yes interface="Cel Diego" network=172.16.50.0 /ip cloud set ddns-enabled=yes /ip dhcp-client add interface=ether1 /ip dhcp-server alert add disabled=no interface=ether5 valid-server=64:D1:54:1A:97:9C /ip dhcp-server network add address=10.1.1.0/24 dns-server=172.16.20.40,8.8.8.8 gateway=10.1.1.253 add address=192.168.1.0/24 dns-server=172.16.20.40,8.8.8.8 gateway=192.168.1.1 /ip dns set allow-remote-requests=yes servers=8.8.8.8 /ip firewall filter add action=accept chain=forward dst-address=45.225.66.66 dst-port=3389 protocol=tcp add action=drop chain=forward comment="BLOQUEIA ACESSO REDE WIFI P/ REDE CORP" dst-address=10.1.1.0/24 src-address=192.168.0.0/16 add action=drop chain=output comment="BLOQ-Status LINK" dst-address=1.1.1.1 out-interface=ether1 protocol=icmp add action=drop chain=input comment="Bloq. Requisi\E7\E3o DNS externa" dst-port=53 in-interface=ether1 protocol=udp add action=drop chain=input comment="Bloq. Requisi\E7\E3o DNS externa" dst-port=53 in-interface=ether2 protocol=udp /ip firewall nat add action=masquerade chain=srcnat comment="Masquerade link DBUG" out-interface=ether2 add action=masquerade chain=srcnat comment="Masquerade link Copel" out-interface=ether1 add action=dst-nat chain=dstnat dst-port=37776 protocol=tcp src-port="" to-addresses=192.168.1.119 add action=dst-nat chain=dstnat dst-port=37775 protocol=tcp src-port="" to-addresses=192.168.1.10 add action=dst-nat chain=dstnat dst-port=37779 protocol=tcp src-port="" to-addresses=192.168.1.246 add action=dst-nat chain=dstnat dst-port=9898 protocol=tcp to-addresses=192.168.1.14 add action=dst-nat chain=dstnat dst-port=34568 protocol=tcp to-addresses=192.168.1.196 add action=dst-nat chain=dstnat comment=vpn disabled=yes dst-port=8989 log=yes port="" protocol=udp src-port="" to-addresses=192.168.1.163 to-ports=8989 add action=dst-nat chain=dstnat comment=vpn2024 dst-port=8889 log=yes port="" protocol=udp src-port="" to-addresses=192.168.1.10 to-ports=8889 add action=dst-nat chain=dstnat comment=vpnteste disabled=yes dst-port=1194 log=yes port="" protocol=udp src-port="" to-addresses=192.168.1.233 to-ports=1194 add action=dst-nat chain=dstnat comment=mapos disabled=yes dst-port=8585 log=yes port="" protocol=tcp src-port="" to-addresses=192.168.1.158 to-ports=85 add action=dst-nat chain=dstnat comment=Truenas disabled=yes dst-address-list="" dst-port=9090 log=yes port="" protocol=tcp src-mac-address=18:CF:24:DE:13:87 src-port="" to-addresses=10.1.1.102 to-ports=9009 add action=dst-nat chain=dstnat comment=FTP disabled=yes dst-address-list="" dst-port=9091 log=yes port="" protocol=tcp src-mac-address=!DE:57:6D:2C:10:7B src-port="" to-addresses=10.1.1.8 to-ports=9988 add action=dst-nat chain=dstnat comment=racs dst-port=8030 log=yes protocol=tcp to-addresses=192.168.1.195 to-ports=80 add action=dst-nat chain=dstnat disabled=yes dst-port=3071 protocol=udp to-addresses=192.168.1.227 to-ports=3071 add action=dst-nat chain=dstnat disabled=yes dst-port=3071 protocol=tcp to-addresses=192.168.1.227 to-ports=3071 add action=dst-nat chain=dstnat disabled=yes dst-port=3072 protocol=tcp to-addresses=192.168.1.227 to-ports=3072 add action=dst-nat chain=dstnat disabled=yes dst-port=3072 protocol=udp to-addresses=192.168.1.227 to-ports=3072 /ip firewall service-port set ftp disabled=yes /ip route add disabled=no dst-address=0.0.0.0/0 gateway=45.225.67.117 /ip service set telnet disabled=yes set ftp disabled=yes set www disabled=yes set ssh address=45.225.65.10/32 port=2222 set api disabled=yes set winbox port=25000 set api-ssl disabled=yes /ipv6 nd set [ find default=yes ] advertise-dns=no /routing bfd configuration add disabled=no interfaces=all min-rx=200ms min-tx=200ms multiplier=5 /system clock set time-zone-name=America/Sao_Paulo /system identity set name=Cliente-MercadoCristal-Tibagi /system note set show-at-login=no /system ntp client set enabled=yes /system ntp client servers add address=200.160.0.8 add address=200.189.40.8 /system scheduler add name=schedule1 on-event=":local noipuser \"camerasmartins\"\r\n:local noippass \"anj,4635\"\r\n\r\n\r\n\r\n:local noiphost \"hostname.no-ip.net\"\r\n\r\n# Coloque a interface que recebe o link\r\n\r\n:local inetinterface \"Sua interface aqui\"\r\n\r\n#------------------------------------------------------------------------------------\r\n# Nao precisa mexer \r\n\r\n:global previousIP\r\n\r\n:if ([/interface get \$inetinterface value-name=running]) do={\r\n\r\n# Ele pega o IP atual na interface\r\n\r\n :local currentIP [/ip address get [find interface=\"\$inetinterface\"\_disabled=no] address]\r\n\r\n# Retira a m\E1scara da rede do endere\E7o IP\r\n\r\n :for i from=( [:len \$currentIP] - 1) to=0 do={\r\n :if ( [:pick \$currentIP \$i] = \"/\") do={ \r\n :set currentIP [:pick \$currentIP 0 \$i]\r\n } \r\n }\r\n\r\n :if (\$currentIP != \$previousIP) do={\r\n :log info \"No-IP: Current IP \$currentIP is not equal to previous IP, update needed\"\r\n :set previousIP \$currentIP\r\n\r\n# Pega a URL da atualiza\E7\E3o.\r\n :local url \"http://dynupdate.no-ip.com/nic/update\\3Fmyip=\$currentIP\"\r\n :local noiphostarray\r\n :set noiphostarray [:toarray \$noiphost]\r\n :foreach host in=\$noiphostarray do={\r\n :log info \"No-IP: Sending update for \$host\"\r\n /tool fetch url=(\$url . \"&hostname=\$host\") user=\$noipuser password=\$noippass mode=http dst-path=(\"no-ip_ddns_update-\" . \$host . \".txt\")\r\n\r\n# Coloque abaixo emtre aspas o seu host do no-ip.\r\n \r\n:log info \"mauriciomk.ddns.net\"\r\n }\r\n } else={\r\n :log info \"No-IP: Previous IP \$previousIP is equal to current IP, no update needed\"\r\n }\r\n} else={\r\n :log info \"No-IP: \$inetinterface is not currently running, so therefore will not update.\"\r\n}\r\n" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon start-date=2022-01-15 start-time=22:35:02 #error exporting "/tool/e-mail" #error exporting "/tool/mac-server" /tool netwatch add comment="Monitora\E7\E3o link Dbug" disabled=no down-script="/interface enable 0" host=1.1.1.1 http-codes="" interval=10s test-script="" type=simple up-script="/interface disable 0\r\n"