您的位置:360文档中心› ROS对接VLAN交换机多线设置,可用于多线拔号,里面超多脚本

ROS对接VLAN交换机多线设置,可用于多线拔号,里面超多脚本

合集下载

【新提醒】ROS软路由超详细的PCC设置步骤,实现一线多拨,五条宽带叠加

【新提醒】ROS软路由超详细的PCC设置步骤,实现一线多拨,五条宽带叠加

【新提醒】ROS软路由超详细的PCC设置步骤,实现一线多拨,五条宽带叠加ROS软路由中能实现带宽叠加。

这里我做了一个一线五拨的环境,五条宽带同时拨号。

用PCC实现带宽叠加。

ROS版本5.25一、基本配置,使网络能够正常连通1.pppoe拨号:拨通五个帐号PPPOE client的连接状态,已连接设备NAT:5个接口出去都做NAT创建一个bridge,把其他局域网口添加到bridge中。

添加其他局域网口到bridge中DHCP 服务器设置(局域网自动获取IP地址)局域网的网段为192.168.10.0/24把192.168.10.254作为内网的网关设置网关的地址,接口添加到bridge1上一般我们用DHCP setup来自动设置DHCP server这种设置比较简单快速路由配置:所有的基本配置都设置好了,局域网可以正常上网了,但是为了实现更好的网络环境,我们需要做更好的策略。

这就需要使用PCC了,下面就看看PCC怎么做的吧。

二、PCC的配置Mangle标记标记内网地址为192.168.10.0的五条线路的连接标记标记第一条连接:同理:配置剩余的4调链路:5/1,c2; 5/2.c3; 5/3,c4; 5/4,c5.从连接中提取路由标记:从连接里提取路由标记标记第一条连接c1,命令为R1同理:提出其他4调路由命名为R2,R3,R4,R5.标记连接,的命名配置方式为:[admin@MikroTik] /ip firewall mangle> printFlags: X - disabled, I - invalid, D - dynamic 0 chain=prerouting action=mark-connection new-connection-mark=c1passthrough=yes src-address=192.168.10.0/24 dst-address-type=!localper-connection-classifier=both-addresses:5/01 chain=prerouting action=mark-connection new-connection-mark=c2passthrough=yes src-address=192.168.10.0/24 dst-address-type=!localper-connection-classifier=both-addresses:5/12 chain=prerouting action=mark-connection new-connection-mark=c3passthrough=yes src-address=192.168.10.0/24 dst-address-type=!localper-connection-classifier=both-addresses:5/23 chain=prerouting action=mark-connection new-connection-mark=c4passthrough=yes src-address=192.168.10.0/24 dst-address-type=!localper-connection-classifier=both-addresses:5/34 chain=prerouting action=mark-connection new-connection-mark=c5passthrough=yes src-address=192.168.10.0/24 dst-address-type=!localper-connection-classifier=both-addresses:5/4提取路由的命令5 chain=prerouting action=mark-routing new-routing-mark=R1 passthrough=yessrc-address=192.168.10.0/24 connection-mark=c16 chain=prerouting action=mark-routing new-routing-mark=R2 passthrough=yessrc-address=192.168.10.0/24 connection-mark=c27 chain=prerouting action=mark-routing new-routing-mark=R3 passthrough=yessrc-address=192.168.10.0/24 connection-mark=c38 chain=prerouting action=mark-routing new-routing-mark=R4 passthrough=yessrc-address=192.168.10.0/24 connection-mark=c49 chain=prerouting action=mark-routing new-routing-mark=R5 passthrough=yessrc-address=192.168.10.0/24 connection-mark=c5回程路由设置需要将从那个口进入就从相应的口回去,即保证每个外网口的数据能得到正确的路由同理标记c2,c3,c4,c5的回程路由提取回程路由同理提取c2,c3,c4,c5命令方式:10 chain=input action=mark-connection new-connection-mark=c1 passthrough=yesin-interface=pppoe-out111 chain=input action=mark-connection new-connection-mark=c2 passthrough=yesin-interface=pppoe-out212 chain=input action=mark-connection new-connection-mark=c3 passthrough=yesin-interface=pppoe-out313 chain=input action=mark-connection new-connection-mark=c4 passthrough=yesin-interface=pppoe-out414 chain=input action=mark-connection new-connection-mark=c5 passthrough=yesin-interface=pppoe-out515 chain=output action=mark-routing new-routing-mark=R1 passthrough=yesconnection-mark=c116 chain=output action=mark-routing new-routing-mark=R2 passthrough=yesconnection-mark=c217 chain=output action=mark-routing new-routing-mark=R3 passthrough=yesconnection-mark=c318 chain=output action=mark-routing new-routing-mark=R4 passthrough=yesconnection-mark=c419 chain=output action=mark-routing new-routing-mark=R5 passthrough=yesconnection-mark=c5路由设置添加五条默认路由,指定标记的路由内网PC上开启迅雷。

Ros设置Vlan交换机以支持多线adsl

Ros设置Vlan交换机以支持多线adsl

Ros设置Vlan交换机以支持多线adslRos设置Vlan交换机以支持多线adsl2011-01-11 21:451、你可能没有四张网卡,需要用到Vlan交换机;这个需要你的交换机支持802.1Q,所需要拨号的四个交换机端口(也就是连着四个ADSL猫的端口)都设置成access模式,vlanID分别是10、20、30、40(当然,其他的数字也可以)。

连接RouterOS 外线网卡的端口设置成trunk模式,并且允许以上vlan通过,在routeros的wan口建立4个vlan,vlanID分别为10、20、30、40(需要与交换机上的对应),这样就保证的了多个猫之间不会互相干扰,但是都可以和routeros上的虚拟vlan接口通讯。

/interface vlanadd arp=enabled disabled=no interface=wan mtu=1500 name=vlan10 vlan-id=10add arp=enabled disabled=no interface=wan mtu=1500 name=vlan20 vlan-id=20add arp=enabled disabled=no interface=wan mtu=1500 name=vlan30 vlan-id=30add arp=enabled disabled=no interface=wan mtu=1500 name=vlan40 vlan-id=402、ADSL无法拨上号,因为用来拨号的mac都一样;如果你的vlan都是附着在wan口上面的,因此所有vlan虚拟接口的MAC地址都是同一个,因此电信局端检测到两个相同的mac在尝试用两个不同的账号同时拨号的时候就会断掉其中一个,这也是为什么有的无法同时拨号的原因。

解决办法就是通过添加桥即bridge,我感觉添加图片太麻烦,给出个脚本吧:/interface bridgeadd name=bridge10 admin-mac=11:11:11:11:11:11 disabled=noadd name=bridge20 admin-mac=22:22:22:22:22:22 disabled=noadd name=bridge30 admin-mac=33:33:33:33:33:33 disabled=noadd name=bridge40 admin-mac=44:44:44:44:44:44 disabled=no/interface bridge portadd bridge=bridge10 interface=vlan10 disabled=noadd bridge=bridge20 interface=vlan20 disabled=noadd bridge=bridge30 interface=vlan30 disabled=noadd bridge=bridge40 interface=vlan40 disabled=no这样,设置拨号的时候,选择interface为bridge10- bridge40,而不是vlan10-vlan40,这样子的话,拨号就不会存在mac地址冲突而无法拨号的情况了。

ROS+三层交换VLAN+多网段DHCP中继实现方案

ROS+三层交换VLAN+多网段DHCP中继实现方案

企业三层交换网络(VLAN)+RouterOS+多网段dhcp中继解决方案ROS + 三层交换vlan设置以RouterOS 2。

9.27和H3C S5500为例由上图可知,现在交换机上划分4个VLAN,每个VLAN的接口地址如上图所示,现将交换机VLAN1接口与Ros 路由LAN口相连,各VLAN通过VLAN1上网.(连接路由的端口为24端口,属于默认的vlan 1中)一、ROS配置1。

ROS内网地址:192。

168.1。

254/242。

NAT转换ip / firewall / natsrc—address=192。

168。

0。

0/16 action=masquerade3. 给ROS指回头路由到三层交换机ip route add dst-address=192.168。

1。

0/24 gateway=192.168.1。

1ip route add dst—address=192。

168.2。

0/24 gateway=192.168.1。

1ip route add dst—address=192.168.3。

0/24 gateway=192。

168。

1.1ip route add dst—address=192.168.4.0/24 gateway=192。

168.1.1上面的这几行可以用下面这行代替ip route add dst-address=192.168.0。

0/16 gateway=192。

168.1。

1二、H3C5500交换机配置sysSystem View: return to User View with Ctrl+Z.[H3C]vlan 2 */依次创建vlan配置ip地址默认的vlan1和路由同网段[H3C-vlan2]port g1/0/2[H3C—vlan2]int vlan 2[H3C—Vlan—interface2]ip add 192。

168。

2.1 24[H3C—Vlan-interface2]vlan 3[H3C—vlan3]port g1/0/3[H3C—vlan3]int vlan 3[H3C-Vlan—interface3]ip add 192。

使用ROS操作系统实现VLAN互通

使用ROS操作系统实现VLAN互通

使用ROS操作系统实现VLAN互通ROS(RouterOS)操作系统是由MikroTik开发的用于路由器和交换机设备的操作系统。

它是一种专有的操作系统,提供了丰富的功能和灵活性,可以用于实现各种网络应用。

在ROS中,可以通过配置VLAN(Virtual Local Area Network)来实现不同VLAN之间的互通。

VLAN是一种逻辑上的分组技术,可以将一个物理网络划分为多个逻辑上独立的虚拟网络。

不同的VLAN可以运行在同一台交换机或路由器上,但彼此之间是相互隔离的,实现了网络资源的灵活划分和管理。

使用VLAN可以提高网络的安全性、可靠性和灵活性。

在ROS中配置VLAN涉及到以下几个步骤:1.创建VLAN接口:首先需要在ROS中创建VLAN接口,可以使用以下命令创建一个VLAN接口:/interface vlan add name=vlan1 vlan-id=1 interface=ether1这个命令创建了一个名为vlan1的VLAN接口,VLAN ID为1,接口为ether12. 绑定VLAN接口:创建VLAN接口后,需要将其绑定到相应的物理接口上,以实现接口和VLAN之间的通信。

使用以下命令将VLAN接口vlan1绑定到ether2接口上:/interface vlan set vlan1 vlan-ids=1,2,3 interface=ether2这个命令将VLAN接口vlan1绑定到ether2接口上,并指定VLAN ID为1、2、33. 配置IP地址:在VLAN接口上配置IP地址,以实现不同VLAN之间的互通。

使用以下命令为vlan1接口配置IP地址:/ip address add address=192.168.1.1/24 interface=vlan1这个命令为vlan1接口配置了IP地址为192.168.1.1,子网掩码为24位。

4. 配置路由:为实现不同VLAN之间的路由,需要在ROS中配置路由规则。

ros多线做端口映射脚本

ros多线做端口映射脚本

正文开始,脚本在下面。

我做完ROS加VLAN ADSL多线PCC叠加设置设置后不久,网站开发小组的项目经理就找到我向我提出了需求,因为现在他们的测试服务器是放在我们办公室内网的,我们公司其它部门和其它分公司和我们办公室不是一个局域网,网站开发小组的项目经理想让我们公司的所有同事都能访问到测试服务器做用户体验度测试,想让我帮助实现,当时我一口答应下来,也觉得这是个很简单的事情,但是事情往往出人意料。

我一开始的思路是这样的,第一步就是在IP->firewall-> nat下面做基于目标的伪装,也就是映射,第二步就是要做回流让内网的客户端也能通过公网IP 访问到服务器,第三步就是做动态映射的计划任务,定时更新第一步里面的目标地址即ADSL的地址,最后一步就要用到DDNS做一个二级域名的动态解析方便同事记忆和输入。

做完以后发现需求基本满足,就是内网客户端不能通过域名访问到服务器,只能通过内网IP访问,为了精益求精,继续研究,baidu和google 上搜索了无数方法均无效,后来在一个论坛里面看到一个高人的回复内容给了我启发,于是再一次尝试配置居然成功了。

不敢独享,现在将思路和脚本整理分享给更多需要的人。

首先我来分析下出现上述问题的原因,因为我们这里的环境是多线叠加的,我们的每个连接在进行路由之前都会对连接进行标记并路由,不同的标记有可能走不同的路由导致数据没办法顺利到达服务器,其内部数据的具体流向以及转换我也不是很清楚,如有高手路过请不吝赐教。

下面进入正题,其实很简单,我们只要在标记里面把目标地址为我们的外网接口地址的数据直接通过就可以解决这个问题了,有几条线就做几个标记,最后要添加计划任务更新标记里的目标地址为对应的外网接口地址,所以加上这最后两步一共是六步,下面就放出每一步的脚本(我的环境是双线叠加的,所以以下脚本都是适合双线的,改成多线的也很容易)1、做映射,这里以把内网的8890端口映射成9000端口为例。

ros vlan

ros vlan
//好象没有ROS什么事呀?先别急,等一会再说
1、3 配置VLAN干线
clear trunk 2/5 2-110,115-1005
//以上也许可以省略,目的是将其他与ROS无关的VLAN抛开
set trunk 2/5 on dot1q 1,111-114
//将2/5设置为TRUNK口,vlan的封装类型一定要用dot1q,因为ROS仅支持标准802.1q的vlan,因此采购其他的交换机也要支持802.1q的交换机,有些市面交换机只支持私有的VLAN协议
add name="school" mtu=1500 arp=enabled vlan-id=113 interface=ether1 disabled=no
add name="cnc" mtu=1500 arp=enabled vlan-id=114 interface=ether1 disabled=no
add address=221.38.156.42/30 network=221.38.156.40 broadcast=221.38.156.43 interface=cnc comment="" disabled=no
//以上是给各个vlan设置地
/ interface vlan
add name="office" mtu=1500 arp=enabled vlan-id=111 interface=ether1 disabled=no
add name="factory" mtu=1500 arp=enabled vlan-id=112 interface=ether1 disabled=no

ROS配合二层交换机实现VLAN

为了提高网络速度及稳定性同时降低上网成本,公司上了一条电信光纤并将此光纤共享给办公楼其他公司使用。

办公楼同时上网的公司很多,PC及其他上网设备已经接近百台,同时在线数量也超过50台,且每个公司内部都有局域网,路由器、交换机众多,线路极其混乱。

以前的旧的路由器根本无法实现这么多电脑同时接入网络。

由于公司领导给的资金少得可怜,一台上点档次的支持VLAN划分的路由差不多都要1500多块,由于资金问题,这个任务只能交给旧电脑+ROS了。

由于上网公司多且网络情况复杂,且出上网费不一,为了保证公平且保证网络稳定,必须实现按上网公司限速,并为每个上网的公司划分单独的一个VLAN。

在考虑到有限资金且要同时实现上述要求,经研究后,硬件采购情况如下:硬件构成1、一台淘宝上淘来的旧810主板(25元)+PIII700(6元)+新电源(140元,CF卡+转接卡+旧机箱+2块INTEL82559百M网卡(25元)2、淘宝上买的特价16口二层交换机(450元)3、京东买的一箱网线(300M)300元网络结构图(见图)一切硬件都准备完毕,网线也分别接到了各上网公司,最重要的就是VLAN的设置了,如果不设置VLAN,各公司之间的电脑可以互访,有可能造成资料泄漏。

或引起病毒泛滥,且由于众多电脑处于一个网段,不便于控制和管理。

登录WINBOX1、增加VLAN,Interfaces->点击+号增加,选择VLAN,然后在对话框中设置VLAN的名称,以及VLANID号,VLANID号应从2开始设置,Interface设置为接内网的网卡。

2、设置VLAN,点击WINBOX里的IP,ADDRESS,为VLAN设置一个IP地址,见图2,不同的VLAN设置不同网段的IP,如192.168.1/24。

Interface选择为这个VLAN的名字,Network和Broadcast由ROS自动根据您的VLANIP和子网掩码设置,无需要填写。

3、为VLAN设置DHCP(见图3)点击WINBOX里的IP,选择DHCP SERVER,在DHCP SERVER对话框中点击上方的DHCP SETUP,会开打DHCP设置向导,在DHCP SERVER Interface中选择要设置的VLAN名字,直接点NEXT即可,后续步骤可使用ROS的默认设置,也可以根据情况做适当修改。

ros软路由实用技术ros软路由adsl双线 pppoe服务器设置(图文讲解)

ros软路由ADSL双线+PPPOE服务器设置详细图文教程减小字体增大字体一、先说下这几天泡论坛发现在自己以前及其错误的地方登录winbox 初始化ros以前都是把显示器键盘接到ros上,配置lan网卡地址后再将显示器键盘接到电脑上,把电脑本地连接配ros网段,连接winbox,等测试自动获取ip时又将本地连接设为自动获取。

需要回复ros为初始时,又重复上面的过程泡坛才知道,winbox可以用ros lan网卡的mac地址登录,不必管本地连接的ip的。

初始化时在winbox里使用new terminal就可以初始化了,初始了后用mac登录winbox就可以配置了。

总结:把ros的电脑先设BIOS设为来电自动开机,忽略一切错误开机,就可以再也不接键盘和显示器了。

二、配置ros 双ADSl负载均衡走的弯路因为夹杂了pppoe服务,一直配不通,用脚本生成器生成的也不通,看很多教程,互相影响,自己最后也不知道在配什么了。

总结:先一步一步配,看到哪一步不通。

不如1、先配好lan,看winbox能否登陆winbox2、配置双线adsl,看2条adsl是否拨号成功,双线adsl脚本配置后,在ip里是不应该出现58类ip的,因为之前不理解自动刷新网关,看到脚本里58类ip,自己的机子里没有,以为不正常,重复添加脚本。

(增加pppoe服务后,拨号用户不通,这个后面详解)3、客户机配置手动ip和dns,看能否上网。

3、增加pppoe服务,导入pppoe账号,可以用脚本生成器生成。

三:配置双线adsl+pppoe服务过程1、安装ros,这个这里省略。

2、配置lan ip3、电脑配ip,和ros一个网段,winbox登陆,获取到lan的MAC,把ip换为mac登陆。

方法是ip登陆后点下后面小□(里面有三个...的那个,connect左边那个)在打开的菜单里点mac就可以换了。

4、改网卡名字我把第一个改为wan1,第二个改为wan2,第三个改为lan。

软路由ROS搭配S5700三层交换机通过VLANIF接口多VLAN多网段互访DHCP中继上网配置

S5700-28C-EI三层交换机通过VLANIF接口多VLAN多网段互访、DHCP中继、上网组网需求:四栋楼四个网段,配置成4个VLAN,分别为VLAN10、VLAN20、VLAN30、VLAN40,要求楼与楼之间可以互访。

VLAN10接路由器,VLAN20、VLAN30、VLAN40通过VLAN10上网。

客户机自动获得IP地址、子网掩码、网关、DNS等信息。

网络环境:三层交换机:S5700-28C-EIVLAN10:端口1、3、5、7、9、11、VLAN20:端口2、4、6、8、10、12VLAN30:端口13、15、17、19、21、23VLAN40:端口14、16、18、20、22、24路由器及DHCP服务器:ROS5.24。

接VLAN10的ROS的LAN口地址为192.168.10.1并设成DHCP服务器,VLAN10的接口地址为192.168.10.2。

同一VLAN同一网段,VLAN10就不需要DHCP中继。

一、S5700-28C-EI交换机配置sysname Quidway1、创建VLAN[Quidway]vlan batch 10 20 30 40[Quidway vlan10]quit2、接口加入VLAN[Quidway]interface gigabitethernet 0/0/1[Quidway-interface gigabitethernet 0/0/1]port link-type access[Quidway-interface gigabitethernet 0/0/1]port default vlan 10[Quidway-interface gigabitethernet 0/0/1]quit[Quidway]interface gigabitethernet 0/0/3[Quidway-interface gigabitethernet 0/0/3]port link-type access[Quidway-interface gigabitethernet 0/0/3]port default vlan 10[Quidway-interface gigabitethernet 0/0/3]quit[Quidway]interface gigabitethernet 0/0/5[Quidway-interface gigabitethernet 0/0/5]port link-type access[Quidway-interface gigabitethernet 0/0/5]port default vlan 10[Quidway-interface gigabitethernet 0/0/5]quit[Quidway]interface gigabitethernet 0/0/7[Quidway-interface gigabitethernet 0/0/7]port link-type access [Quidway-interface gigabitethernet 0/0/7]port default vlan 10 [Quidway-interface gigabitethernet 0/0/]quit[Quidway]interface gigabitethernet 0/0/9[Quidway-interface gigabitethernet 0/0/9]port link-type access [Quidway-interface gigabitethernet 0/0/9]port default vlan 10 [Quidway-interface gigabitethernet 0/0/9]quit[Quidway]interface gigabitethernet 0/0/11[Quidway-interface gigabitethernet 0/0/11]port link-type access [Quidway-interface gigabitethernet 0/0/11]port default vlan 10 [Quidway-interface gigabitethernet 0/0/11]quit[Quidway]interface gigabitethernet 0/0/2[Quidway-interface gigabitethernet 0/0/2]port link-type access [Quidway-interface gigabitethernet 0/0/2]port default vlan 20 [Quidway-interface gigabitethernet 0/0/2]quit[Quidway]interface gigabitethernet 0/0/4[Quidway-interface gigabitethernet 0/0/4]port link-type access [Quidway-interface gigabitethernet 0/0/4]port default vlan 20 [Quidway-interface gigabitethernet 0/0/4]quit[Quidway]interface gigabitethernet 0/0/6[Quidway-interface gigabitethernet 0/0/6]port link-type access [Quidway-interface gigabitethernet 0/0/6]port default vlan 20 [Quidway-interface gigabitethernet 0/0/6]quit[Quidway]interface gigabitethernet 0/0/8[Quidway-interface gigabitethernet 0/0/8]port link-type access [Quidway-interface gigabitethernet 0/0/8]port default vlan 20 [Quidway-interface gigabitethernet 0/0/8]quit[Quidway]interface gigabitethernet 0/0/10[Quidway-interface gigabitethernet 0/0/10]port link-type access [Quidway-interface gigabitethernet 0/0/10]port default vlan 20 [Quidway-interface gigabitethernet 0/0/10]quit[Quidway]interface gigabitethernet 0/0/12[Quidway-interface gigabitethernet 0/0/12]port link-type access [Quidway-interface gigabitethernet 0/0/12]port default vlan 20 [Quidway-interface gigabitethernet 0/0/12]quit[Quidway]interface gigabitethernet 0/0/13[Quidway-interface gigabitethernet 0/0/13]port link-type access [Quidway-interface gigabitethernet 0/0/13]port default vlan 30 [Quidway-interface gigabitethernet 0/0/13]quit[Quidway]interface gigabitethernet 0/0/15[Quidway-interface gigabitethernet 0/0/15]port link-type access [Quidway-interface gigabitethernet 0/0/15]port default vlan 30 [Quidway-interface gigabitethernet 0/0/15]quit[Quidway]interface gigabitethernet 0/0/17[Quidway-interface gigabitethernet 0/0/17]port link-type access [Quidway-interface gigabitethernet 0/0/17]port default vlan 30 [Quidway-interface gigabitethernet 0/0/17]quit[Quidway]interface gigabitethernet 0/0/19[Quidway-interface gigabitethernet 0/0/19]port link-type access [Quidway-interface gigabitethernet 0/0/19]port default vlan 30 [Quidway-interface gigabitethernet 0/0/19]quit[Quidway]interface gigabitethernet 0/0/21[Quidway-interface gigabitethernet 0/0/21]port link-type access [Quidway-interface gigabitethernet 0/0/21]port default vlan 30 [Quidway-interface gigabitethernet 0/0/21]quit[Quidway]interface gigabitethernet 0/0/23[Quidway-interface gigabitethernet 0/0/23]port link-type access [Quidway-interface gigabitethernet 0/0/23]port default vlan 30 [Quidway-interface gigabitethernet 0/0/23]quit[Quidway]interface gigabitethernet 0/0/14[Quidway-interface gigabitethernet 0/0/14]port link-type access [Quidway-interface gigabitethernet 0/0/14]port default vlan 40 [Quidway-interface gigabitethernet 0/0/14]quit[Quidway]interface gigabitethernet 0/0/16[Quidway-interface gigabitethernet 0/0/16]port link-type access [Quidway-interface gigabitethernet 0/0/16]port default vlan 40 [Quidway-interface gigabitethernet 0/0/16]quit[Quidway]interface gigabitethernet 0/0/18[Quidway-interface gigabitethernet 0/0/18]port link-type access [Quidway-interface gigabitethernet 0/0/18]port default vlan 40 [Quidway-interface gigabitethernet 0/0/18]quit[Quidway]interface gigabitethernet 0/0/20[Quidway-interface gigabitethernet 0/0/20]port link-type access[Quidway-interface gigabitethernet 0/0/20]port default vlan 40[Quidway-interface gigabitethernet 0/0/20]quit[Quidway]interface gigabitethernet 0/0/22[Quidway-interface gigabitethernet 0/0/22]port link-type access[Quidway-interface gigabitethernet 0/0/22]port default vlan 40[Quidway-interface gigabitethernet 0/0/22]quit[Quidway]interface gigabitethernet 0/0/24[Quidway-interface gigabitethernet 0/0/24]port link-type access[Quidway-interface gigabitethernet 0/0/24]port default vlan 40[Quidway-interface gigabitethernet 0/0/24]quit3、启用DHCP服务[Quidway]dhcp enableInfo: The operation may take a few seconds. Please wait for a moment.done.4、创建DHCP服务器组并添加DHCP服务器,每个DHCP组下最多可配置20个DHCP 服务器[Quidway]dhcp server group dhcpgroup1[Quidway-dhcp-server-group-dhcpgroup1]dhcp-server 192.168.10.1[Quidway-dhcp-server-group-dhcpgroup1]quit5、配置VLANIF接口地址,启用VLANIF接口上的DHCP中继功能,指定VLANIF 接口对应的DHCP服务器组,VLAN10与DHCP在同一VLAN不需要DHCP中继。

Ros3.30PCC多线负载均衡脚本脚本

Ros 3.30 PCC双线负载均衡脚本脚本如下/ip address add address=内网网关IP/内网子网掩码interface=内网网卡名称comment="\D1\CC\C9\F1\B6\E0\CF\DF\50\43\43\BD\C5\B1\BE\52\6F\73\BC\BC\ CA\F5\BD\BB\C1\F7\C8\BA\A3\BA\31\30\32\38\37\32\30\35\38"/ip dns set primary-dns=首选DNS secondary-dns=备用DNSallow-remote-requests=yes/interface pppoe-client add name="pppoe-out1" interface=外网网卡1名称user="PPPoE帐号1" password="密码1" add-default-route=no disabled=no/interface pppoe-client add name="pppoe-out2" interface=外网网卡2名称user="PPPoE帐号2" password="密码2" add-default-route=no disabled=no/ip firewall mangleadd action=change-mss chain=forwardcomment="\D1\CC\C9\F1\B6\E0\CF\DF\50\43\43\BD\C5\B1\BE\52\6F\73\BC\BC\ CA\F5\BD\BB\C1\F7\C8\BA\A3\BA\31\30\32\38\37\32\30\35\38" disabled=no new-mss=1440 protocol=tcp tcp-flags=synadd action=mark-connection chain=input comment="" disabled=noin-interface=pppoe-out1 new-connection-mark=pppoe-out1_conn passthrough=yesadd action=mark-connection chain=input comment="" disabled=noin-interface=pppoe-out2 new-connection-mark=pppoe-out2_conn passthrough=yesadd action=mark-routing chain=output comment=""connection-mark=pppoe-out1_conn disabled=nonew-routing-mark=to_pppoe-out1 passthrough=yesadd action=mark-routing chain=output comment=""connection-mark=pppoe-out2_conn disabled=nonew-routing-mark=to_pppoe-out2 passthrough=yesadd action=mark-connection chain=prerouting comment="" disabled=nodst-address-type=!local in-interface=ether1new-connection-mark=pppoe-out1_conn passthrough=yesper-connection-classifier=both-addresses:2/0 src-address=内网网断/内网子网掩码add action=mark-connection chain=prerouting comment="" disabled=nodst-address-type=!local in-interface=ether1new-connection-mark=pppoe-out2_conn passthrough=yesper-connection-classifier=both-addresses:2/1 src-address=内网网断/内网子网掩码add action=mark-routing chain=prerouting comment=""connection-mark=pppoe-out1_conn disabled=no in-interface=ether1new-routing-mark=to_pppoe-out1 passthrough=yes src-address=内网网断/内网子网掩码add action=mark-routing chain=prerouting comment=""connection-mark=pppoe-out2_conn disabled=no in-interface=ether1new-routing-mark=to_pppoe-out2 passthrough=yes src-address=内网网断/内网子网掩码/ip routeadd comment=1 disabled=no distance=1 dst-address=0.0.0.0/0gateway=pppoe-out1 routing-mark=to_pppoe-out1 check-gateway=pingadd comment=2 disabled=no distance=1 dst-address=0.0.0.0/0gateway=pppoe-out2 routing-mark=to_pppoe-out2 check-gateway=pingadd check-gateway=ping comment="pppoe-out1" disabled=no distance=10 dst-address=0.0.0.0/0 gateway=pppoe-out1add check-gateway=ping comment="pppoe-out2" disabled=no distance=10 dst-address=0.0.0.0/0 gateway=pppoe-out2/ip firewall natadd action=masquerade chain=srcnat comment="1" disabled=noout-interface=pppoe-out1add action=masquerade chain=srcnat comment="2" disabled=noout-interface=pppoe-out2Ros 3.30 PCC三线负载均衡脚本脚本如下/ip address add address=内网网关IP/内网子网掩码interface=内网网卡名称comment="\D1\CC\C9\F1\B6\E0\CF\DF\50\43\43\BD\C5\B1\BE\52\6F\73\BC\BC\ CA\F5\BD\BB\C1\F7\C8\BA\A3\BA\31\30\32\38\37\32\30\35\38"/ip dns set primary-dns=首选DNS secondary-dns=备用DNSallow-remote-requests=yes/interface pppoe-client add name="pppoe-out1" interface=外网网卡1名称user="PPPoE帐号1" password="密码1" add-default-route=no disabled=no/interface pppoe-client add name="pppoe-out2" interface=外网网卡2名称user="PPPoE帐号2" password="密码2" add-default-route=no disabled=no/interface pppoe-client add name="pppoe-out3" interface=外网网卡3名称user="PPPoE帐号3" password="密码3" add-default-route=no disabled=no/ip firewall mangleadd action=change-mss chain=forwardcomment="\D1\CC\C9\F1\B6\E0\CF\DF\50\43\43\BD\C5\B1\BE\52\6F\73\BC\BC\ CA\F5\BD\BB\C1\F7\C8\BA\A3\BA\31\30\32\38\37\32\30\35\38" disabled=no new-mss=1440 protocol=tcp tcp-flags=synadd action=mark-connection chain=input comment="" disabled=noin-interface=pppoe-out1 new-connection-mark=pppoe-out1_conn passthrough=yesadd action=mark-connection chain=input comment="" disabled=noin-interface=pppoe-out2 new-connection-mark=pppoe-out2_conn passthrough=yesadd action=mark-connection chain=input comment="" disabled=noin-interface=pppoe-out3 new-connection-mark=pppoe-out3_conn passthrough=yesadd action=mark-routing chain=output comment=""connection-mark=pppoe-out1_conn disabled=nonew-routing-mark=to_pppoe-out1 passthrough=yesadd action=mark-routing chain=output comment=""connection-mark=pppoe-out2_conn disabled=nonew-routing-mark=to_pppoe-out2 passthrough=yesadd action=mark-routing chain=output comment=""connection-mark=pppoe-out3_conn disabled=nonew-routing-mark=to_pppoe-out3 passthrough=yesadd action=mark-connection chain=prerouting comment="" disabled=nodst-address-type=!local in-interface=ether1new-connection-mark=pppoe-out1_conn passthrough=yesper-connection-classifier=both-addresses:3/0 src-address=内网网断/内网子网掩码add action=mark-connection chain=prerouting comment="" disabled=nodst-address-type=!local in-interface=ether1new-connection-mark=pppoe-out2_conn passthrough=yesper-connection-classifier=both-addresses:3/1 src-address=内网网断/内网子网掩码add action=mark-connection chain=prerouting comment="" disabled=nodst-address-type=!local in-interface=ether1new-connection-mark=pppoe-out3_conn passthrough=yesper-connection-classifier=both-addresses:3/2 src-address=内网网断/内网子网掩码add action=mark-routing chain=prerouting comment=""connection-mark=pppoe-out1_conn disabled=no in-interface=ether1new-routing-mark=to_pppoe-out1 passthrough=yes src-address=内网网断/内网子网掩码add action=mark-routing chain=prerouting comment=""connection-mark=pppoe-out2_conn disabled=no in-interface=ether1new-routing-mark=to_pppoe-out2 passthrough=yes src-address=内网网断/内网子网掩码add action=mark-routing chain=prerouting comment=""connection-mark=pppoe-out3_conn disabled=no in-interface=ether1new-routing-mark=to_pppoe-out3 passthrough=yes src-address=内网网断/内网子网掩码/ip routeadd comment=1 disabled=no distance=1 dst-address=0.0.0.0/0gateway=pppoe-out1 routing-mark=to_pppoe-out1 check-gateway=pingadd comment=2 disabled=no distance=1 dst-address=0.0.0.0/0gateway=pppoe-out2 routing-mark=to_pppoe-out2 check-gateway=ping add comment=3 disabled=no distance=1 dst-address=0.0.0.0/0gateway=pppoe-out3 routing-mark=to_pppoe-out3 check-gateway=ping add check-gateway=ping comment="pppoe-out1" disabled=no distance=10 dst-address=0.0.0.0/0 gateway=pppoe-out1add check-gateway=ping comment="pppoe-out2" disabled=no distance=10 dst-address=0.0.0.0/0 gateway=pppoe-out2add check-gateway=ping comment="pppoe-out3" disabled=no distance=10 dst-address=0.0.0.0/0 gateway=pppoe-out3/ip firewall natadd action=masquerade chain=srcnat comment="1" disabled=noout-interface=pppoe-out1add action=masquerade chain=srcnat comment="2" disabled=noout-interface=pppoe-out2add action=masquerade chain=srcnat comment="3" disabled=noout-interface=pppoe-out3Ros 3.30 PCC四线负载均衡脚本脚本如下/ip address add address=内网网关IP/内网子网掩码interface=内网网卡名称comment="\D1\CC\C9\F1\B6\E0\CF\DF\50\43\43\BD\C5\B1\BE\52\6F\73\BC\BC\ CA\F5\BD\BB\C1\F7\C8\BA\A3\BA\31\30\32\38\37\32\30\35\38"/ip dns set primary-dns=首选DNS secondary-dns=备用DNSallow-remote-requests=yes/interface pppoe-client add name="pppoe-out1" interface=外网网卡1名称user="PPPoE帐号1" password="密码1" add-default-route=no disabled=no/interface pppoe-client add name="pppoe-out2" interface=外网网卡2名称user="PPPoE帐号2" password="密码2" add-default-route=no disabled=no/interface pppoe-client add name="pppoe-out3" interface=外网网卡3名称user="PPPoE帐号3" password="密码3" add-default-route=no disabled=no/interface pppoe-client add name="pppoe-out4" interface=外网网卡4名称user="PPPoE帐号4" password="密码4" add-default-route=no disabled=no/ip firewall mangleadd action=change-mss chain=forwardcomment="\D1\CC\C9\F1\B6\E0\CF\DF\50\43\43\BD\C5\B1\BE\52\6F\73\BC\BC\ CA\F5\BD\BB\C1\F7\C8\BA\A3\BA\31\30\32\38\37\32\30\35\38" disabled=nonew-mss=1440 protocol=tcp tcp-flags=synadd action=mark-connection chain=input comment="" disabled=no in-interface=pppoe-out1 new-connection-mark=pppoe-out1_conn passthrough=yesadd action=mark-connection chain=input comment="" disabled=no in-interface=pppoe-out2 new-connection-mark=pppoe-out2_conn passthrough=yesadd action=mark-connection chain=input comment="" disabled=no in-interface=pppoe-out3 new-connection-mark=pppoe-out3_conn passthrough=yesadd action=mark-connection chain=input comment="" disabled=no in-interface=pppoe-out4 new-connection-mark=pppoe-out4_conn passthrough=yesadd action=mark-routing chain=output comment=""connection-mark=pppoe-out1_conn disabled=nonew-routing-mark=to_pppoe-out1 passthrough=yesadd action=mark-routing chain=output comment=""connection-mark=pppoe-out2_conn disabled=nonew-routing-mark=to_pppoe-out2 passthrough=yesadd action=mark-routing chain=output comment=""connection-mark=pppoe-out3_conn disabled=nonew-routing-mark=to_pppoe-out3 passthrough=yesadd action=mark-routing chain=output comment=""connection-mark=pppoe-out4_conn disabled=nonew-routing-mark=to_pppoe-out4 passthrough=yesadd action=mark-connection chain=prerouting comment="" disabled=nodst-address-type=!local in-interface=ether1new-connection-mark=pppoe-out1_conn passthrough=yesper-connection-classifier=both-addresses:4/0 src-address=内网网断/内网子网掩码add action=mark-connection chain=prerouting comment="" disabled=nodst-address-type=!local in-interface=ether1new-connection-mark=pppoe-out2_conn passthrough=yesper-connection-classifier=both-addresses:4/1 src-address=内网网断/内网子网掩码add action=mark-connection chain=prerouting comment="" disabled=nodst-address-type=!local in-interface=ether1new-connection-mark=pppoe-out3_conn passthrough=yesper-connection-classifier=both-addresses:4/2 src-address=内网网断/内网子网掩码add action=mark-connection chain=prerouting comment="" disabled=nodst-address-type=!local in-interface=ether1new-connection-mark=pppoe-out4_conn passthrough=yesper-connection-classifier=both-addresses:4/3 src-address=内网网断/内网子网掩码add action=mark-routing chain=prerouting comment=""connection-mark=pppoe-out1_conn disabled=no in-interface=ether1new-routing-mark=to_pppoe-out1 passthrough=yes src-address=内网网断/内网子网掩码add action=mark-routing chain=prerouting comment=""connection-mark=pppoe-out2_conn disabled=no in-interface=ether1new-routing-mark=to_pppoe-out2 passthrough=yes src-address=内网网断/内网子网掩码add action=mark-routing chain=prerouting comment=""connection-mark=pppoe-out3_conn disabled=no in-interface=ether1new-routing-mark=to_pppoe-out3 passthrough=yes src-address=内网网断/内网子网掩码add action=mark-routing chain=prerouting comment=""connection-mark=pppoe-out3_conn disabled=no in-interface=ether1new-routing-mark=to_pppoe-out4 passthrough=yes src-address=内网网断/内网子网掩码/ip routeadd comment=1 disabled=no distance=1 dst-address=0.0.0.0/0gateway=pppoe-out1 routing-mark=to_pppoe-out1 check-gateway=pingadd comment=2 disabled=no distance=1 dst-address=0.0.0.0/0gateway=pppoe-out2 routing-mark=to_pppoe-out2 check-gateway=pingadd comment=3 disabled=no distance=1 dst-address=0.0.0.0/0gateway=pppoe-out3 routing-mark=to_pppoe-out3 check-gateway=pingadd comment=4 disabled=no distance=1 dst-address=0.0.0.0/0gateway=pppoe-out4 routing-mark=to_pppoe-out4 check-gateway=pingadd check-gateway=ping comment="pppoe-out1" disabled=no distance=10 dst-address=0.0.0.0/0 gateway=pppoe-out1add check-gateway=ping comment="pppoe-out2" disabled=no distance=10 dst-address=0.0.0.0/0 gateway=pppoe-out2add check-gateway=ping comment="pppoe-out3" disabled=no distance=10 dst-address=0.0.0.0/0 gateway=pppoe-out3add check-gateway=ping comment="pppoe-out4" disabled=no distance=10 dst-address=0.0.0.0/0 gateway=pppoe-out4/ip firewall natadd action=masquerade chain=srcnat comment="1" disabled=noout-interface=pppoe-out1add action=masquerade chain=srcnat comment="2" disabled=noout-interface=pppoe-out2add action=masquerade chain=srcnat comment="3" disabled=noout-interface=pppoe-out3add action=masquerade chain=srcnat comment="4" disabled=noout-interface=pppoe-out4Ros 3.30 PCC五线负载均衡脚本脚本如下/ip address add address=内网网关IP/内网子网掩码interface=内网网卡名称comment="\D1\CC\C9\F1\B6\E0\CF\DF\50\43\43\BD\C5\B1\BE\52\6F\73\BC\BC\ CA\F5\BD\BB\C1\F7\C8\BA\A3\BA\31\30\32\38\37\32\30\35\38"/ip dns set primary-dns=首选DNS secondary-dns=备用DNSallow-remote-requests=yes/interface pppoe-client add name="pppoe-out1" interface=外网网卡1名称user="PPPoE帐号1" password="密码1" add-default-route=no disabled=no/interface pppoe-client add name="pppoe-out2" interface=外网网卡2名称user="PPPoE帐号2" password="密码2" add-default-route=no disabled=no/interface pppoe-client add name="pppoe-out3" interface=外网网卡3名称user="PPPoE帐号3" password="密码3" add-default-route=no disabled=no/interface pppoe-client add name="pppoe-out4" interface=外网网卡4名称user="PPPoE帐号4" password="密码4" add-default-route=no disabled=no/interface pppoe-client add name="pppoe-out5" interface=外网网卡5名称user="PPPoE帐号5" password="密码5" add-default-route=no disabled=no/ip firewall mangleadd action=change-mss chain=forwardcomment="\D1\CC\C9\F1\B6\E0\CF\DF\50\43\43\BD\C5\B1\BE\52\6F\73\BC\BC\ CA\F5\BD\BB\C1\F7\C8\BA\A3\BA\31\30\32\38\37\32\30\35\38" disabled=no new-mss=1440 protocol=tcp tcp-flags=synadd action=mark-connection chain=input comment="" disabled=noin-interface=pppoe-out1 new-connection-mark=pppoe-out1_conn passthrough=yesadd action=mark-connection chain=input comment="" disabled=noin-interface=pppoe-out2 new-connection-mark=pppoe-out2_conn passthrough=yesadd action=mark-connection chain=input comment="" disabled=noin-interface=pppoe-out3 new-connection-mark=pppoe-out3_conn passthrough=yesadd action=mark-connection chain=input comment="" disabled=noin-interface=pppoe-out4 new-connection-mark=pppoe-out4_conn passthrough=yesadd action=mark-connection chain=input comment="" disabled=noin-interface=pppoe-out5 new-connection-mark=pppoe-out5_conn passthrough=yesadd action=mark-routing chain=output comment=""connection-mark=pppoe-out1_conn disabled=nonew-routing-mark=to_pppoe-out1 passthrough=yesadd action=mark-routing chain=output comment=""connection-mark=pppoe-out2_conn disabled=nonew-routing-mark=to_pppoe-out2 passthrough=yesadd action=mark-routing chain=output comment=""connection-mark=pppoe-out3_conn disabled=nonew-routing-mark=to_pppoe-out3 passthrough=yesadd action=mark-routing chain=output comment=""connection-mark=pppoe-out4_conn disabled=nonew-routing-mark=to_pppoe-out4 passthrough=yesadd action=mark-routing chain=output comment=""connection-mark=pppoe-out5_conn disabled=nonew-routing-mark=to_pppoe-out5 passthrough=yesadd action=mark-connection chain=prerouting comment="" disabled=nodst-address-type=!local in-interface=ether1new-connection-mark=pppoe-out1_conn passthrough=yesper-connection-classifier=both-addresses:5/0 src-address=内网网断/内网子网掩码add action=mark-connection chain=prerouting comment="" disabled=nodst-address-type=!local in-interface=ether1new-connection-mark=pppoe-out2_conn passthrough=yesper-connection-classifier=both-addresses:5/1 src-address=内网网断/内网子网掩码add action=mark-connection chain=prerouting comment="" disabled=nodst-address-type=!local in-interface=ether1new-connection-mark=pppoe-out3_conn passthrough=yesper-connection-classifier=both-addresses:5/2 src-address=内网网断/内网子网掩码add action=mark-connection chain=prerouting comment="" disabled=nodst-address-type=!local in-interface=ether1new-connection-mark=pppoe-out4_conn passthrough=yesper-connection-classifier=both-addresses:5/3 src-address=内网网断/内网子网掩码add action=mark-connection chain=prerouting comment="" disabled=nodst-address-type=!local in-interface=ether1new-connection-mark=pppoe-out5_conn passthrough=yesper-connection-classifier=both-addresses:5/4 src-address=内网网断/内网子网掩码add action=mark-routing chain=prerouting comment=""connection-mark=pppoe-out1_conn disabled=no in-interface=ether1new-routing-mark=to_pppoe-out1 passthrough=yes src-address=内网网断/内网子网掩码add action=mark-routing chain=prerouting comment=""connection-mark=pppoe-out2_conn disabled=no in-interface=ether1new-routing-mark=to_pppoe-out2 passthrough=yes src-address=内网网断/内网子网掩码add action=mark-routing chain=prerouting comment=""connection-mark=pppoe-out3_conn disabled=no in-interface=ether1new-routing-mark=to_pppoe-out3 passthrough=yes src-address=内网网断/内网子网掩码add action=mark-routing chain=prerouting comment=""connection-mark=pppoe-out3_conn disabled=no in-interface=ether1new-routing-mark=to_pppoe-out4 passthrough=yes src-address=内网网断/内网子网掩码add action=mark-routing chain=prerouting comment=""connection-mark=pppoe-out3_conn disabled=no in-interface=ether1new-routing-mark=to_pppoe-out5 passthrough=yes src-address=内网网断/内网子网掩码/ip routeadd comment=1 disabled=no distance=1 dst-address=0.0.0.0/0gateway=pppoe-out1 routing-mark=to_pppoe-out1 check-gateway=pingadd comment=2 disabled=no distance=1 dst-address=0.0.0.0/0gateway=pppoe-out2 routing-mark=to_pppoe-out2 check-gateway=pingadd comment=3 disabled=no distance=1 dst-address=0.0.0.0/0gateway=pppoe-out3 routing-mark=to_pppoe-out3 check-gateway=pingadd comment=4 disabled=no distance=1 dst-address=0.0.0.0/0gateway=pppoe-out4 routing-mark=to_pppoe-out4 check-gateway=pingadd comment=5 disabled=no distance=1 dst-address=0.0.0.0/0gateway=pppoe-out5 routing-mark=to_pppoe-out5 check-gateway=pingadd check-gateway=ping comment="pppoe-out1" disabled=no distance=10 dst-address=0.0.0.0/0 gateway=pppoe-out1add check-gateway=ping comment="pppoe-out2" disabled=no distance=10dst-address=0.0.0.0/0 gateway=pppoe-out2add check-gateway=ping comment="pppoe-out3" disabled=no distance=10 dst-address=0.0.0.0/0 gateway=pppoe-out3add check-gateway=ping comment="pppoe-out4" disabled=no distance=10 dst-address=0.0.0.0/0 gateway=pppoe-out4add check-gateway=ping comment="pppoe-out5" disabled=no distance=10 dst-address=0.0.0.0/0 gateway=pppoe-out5/ip firewall natadd action=masquerade chain=srcnat comment="1" disabled=noout-interface=pppoe-out1add action=masquerade chain=srcnat comment="2" disabled=noout-interface=pppoe-out2add action=masquerade chain=srcnat comment="3" disabled=noout-interface=pppoe-out3add action=masquerade chain=srcnat comment="4" disabled=noout-interface=pppoe-out4add action=masquerade chain=srcnat comment="5" disabled=noout-interface=pppoe-out5。

  1. 1、下载文档前请自行甄别文档内容的完整性,平台不提供额外的编辑、内容补充、找答案等附加服务。
  2. 2、"仅部分预览"的文档,不可在线预览部分如存在完整性等问题,可反馈申请退款(可完整预览的文档不适用该条件!)。
  3. 3、如文档侵犯您的权益,请联系客服反馈,我们会尽快为您处理(人工客服工作时间:9:00-18:30)。

# oct/16/2011 08:49:03 by RouterOS 3.30# software id = 4NFS-WNWC##我的QQ307237303#以下为网卡设置/interface ethernetset 0 arp=enabled auto-negotiation=yes cable-settings=default comment="" \ disable-running-check=yes disabled=no full-duplex=yes mac-address=\00:07:E9:0E:A3:1C mtu=1500 name=LAN speed=100Mbpsset 1 arp=enabled auto-negotiation=yes cable-settings=default comment="" \ disable-running-check=yes disabled=no full-duplex=yes mac-address=\00:10:DC:D4:6D:18 mtu=1500 name=W AN_KONG speed=100Mbpsset 2 arp=enabled auto-negotiation=yes cable-settings=default comment="" \ disable-running-check=yes disabled=no full-duplex=yes mac-address=\00:07:E9:0E:A3:0A mtu=1500 name=W AN speed=100Mbps/interface bridgeadd admin-mac=00:90:27:74:FF:A3 ageing-time=5m arp=enabled auto-mac=no \ comment="" disabled=no forward-delay=15s l2mtu=65535 max-message-age=20s \ mtu=1500 name=bridge2 priority=0x8000 protocol-mode=none \transmit-hold-count=6add admin-mac=00:90:27:74:FF:A4 ageing-time=5m arp=enabled auto-mac=no \ comment="" disabled=no forward-delay=15s l2mtu=65535 max-message-age=20s \ mtu=1500 name=bridge3 priority=0x8000 protocol-mode=none \transmit-hold-count=6add admin-mac=00:90:27:74:FF:A5 ageing-time=5m arp=enabled auto-mac=no \ comment="" disabled=no forward-delay=15s l2mtu=65535 max-message-age=20s \ mtu=1500 name=bridge5 priority=0x8000 protocol-mode=none \transmit-hold-count=6add admin-mac=00:90:27:74:FF:A6 ageing-time=5m arp=enabled auto-mac=no \ comment="" disabled=yes forward-delay=15s max-message-age=20s mtu=1500 \ name=bridge6 priority=0x8000 protocol-mode=none transmit-hold-count=6add admin-mac=00:90:27:74:FF:A7 ageing-time=5m arp=enabled auto-mac=no \ comment="" disabled=yes forward-delay=15s max-message-age=20s mtu=1500 \ name=bridge7 priority=0x8000 protocol-mode=none transmit-hold-count=6add admin-mac=00:90:27:74:FF:A8 ageing-time=5m arp=enabled auto-mac=no \ comment="" disabled=yes forward-delay=15s max-message-age=20s mtu=1500 \ name=bridge8 priority=0x8000 protocol-mode=none transmit-hold-count=6add admin-mac=00:91:27:74:FF:A5 ageing-time=5m arp=enabled auto-mac=no \ comment="" disabled=no forward-delay=15s l2mtu=65535 max-message-age=20s \ mtu=1500 name=bridge4 priority=0x8000 protocol-mode=none \transmit-hold-count=6add admin-mac=00:90:27:74:FF:A2 ageing-time=5m arp=enabled auto-mac=no \ comment="" disabled=no forward-delay=15s l2mtu=65535 max-message-age=20s \ mtu=1500 name=bridge1 priority=0x8000 protocol-mode=none \transmit-hold-count=6add admin-mac=00:90:27:74:FF:A9 ageing-time=5m arp=enabled auto-mac=no \ comment="" disabled=yes forward-delay=15s max-message-age=20s mtu=1500 \ name=bridge9 priority=0x8000 protocol-mode=none transmit-hold-count=6add admin-mac=00:90:27:74:F1:A9 ageing-time=5m arp=enabled auto-mac=no \ comment="" disabled=no forward-delay=15s l2mtu=65535 max-message-age=20s \ mtu=1500 name=bridge10 priority=0x8000 protocol-mode=none \transmit-hold-count=6#以下为VLAN设置/interface vlanadd arp=enabled comment="" disabled=no interface=W AN mtu=1500 name=vlan2 \ use-service-tag=no vlan-id=2add arp=enabled comment="" disabled=no interface=W AN mtu=1500 name=vlan3 \ use-service-tag=no vlan-id=3add arp=enabled comment="" disabled=no interface=W AN mtu=1500 name=vlan5 \ use-service-tag=no vlan-id=5add arp=enabled comment="" disabled=yes interface=W AN mtu=1500 name=vlan6 \ use-service-tag=no vlan-id=6add arp=enabled comment="" disabled=yes interface=W AN mtu=1500 name=vlan7 \ use-service-tag=no vlan-id=7add arp=enabled comment="" disabled=yes interface=W AN mtu=1500 name=vlan8 \ use-service-tag=no vlan-id=8add arp=enabled comment="" disabled=no interface=W AN mtu=1500 name=vlan1 \ use-service-tag=no vlan-id=1add arp=enabled comment="" disabled=yes interface=W AN mtu=1500 name=vlan9 \ use-service-tag=no vlan-id=9add arp=enabled comment="\BD\D3AD1" disabled=no interface=W AN mtu=1500 name=\ vlan10 use-service-tag=no vlan-id=10add arp=enabled comment="" disabled=no interface=W AN mtu=1500 name=vlan4 \ use-service-tag=no vlan-id=4#以下为ROS默认设置/interface wireless security-profilesset default authentication-types="" eap-methods=passthrough group-ciphers="" \ group-key-update=5m interim-update=0s mode=none name=default \radius-eap-accounting=no radius-mac-accounting=no \radius-mac-authentication=no radius-mac-caching=disabled \radius-mac-format=XX:XX:XX:XX:XX:XX radius-mac-mode=as-username \static-algo-0=none static-algo-1=none static-algo-2=none static-algo-3=\none static-key-0="" static-key-1="" static-key-2="" static-key-3="" \static-sta-private-algo=none static-sta-private-key="" \static-transmit-key=key-0 supplicant-identity=MikroTik tls-certificate=\none tls-mode=no-certificates unicast-ciphers="" wpa-pre-shared-key="" \wpa2-pre-shared-key=""#以下为L7脚本设置/ip firewall layer7-protocoladd comment="" name=Kugoo regexp=\"^(\\x64.....\\x70....\\x50\\x37|\\x65.+)\r\\n"add comment="" name="Kugou 2010" regexp=\"^(\\x31..\\x8e|\\x64.+\\x74\\x47\\x50\\x37)"add comment="" name=File regexp=\"^.*get.+(\\.iso|\\.exe|\\.zip|\\.rar|\\.7z|\\.gho|\\.mp4|\\.mp3).*\$"add comment="" name=Swf regexp="^.*(post|POST|get|GET).+\\.swf.+\\http"add comment="" name=Tudou regexp=\"^.*(post|POST|get|GET).+\\tudouui.+\\.swf.+\\http"add comment="" name=Youku regexp="^get.+\\/youku.+\\qplayer.swf"add comment="" name=PPS regexp="^.\?.\?\\c.+\\c"add comment="" name=Ku6 regexp="^get.+\\f4v.+\\ku6"add comment="" name=Qiyi regexp="^get.+\\qiyi.+\\swf"add comment="" name=QQsp regexp=\"(^\\x03.\?\\xE1\\x8D|^\\x02\\x02|^\\x04\\x1E)"add comment="" name=QQMusic regexp=\"(^\\xFE.\?.\?.\?.\?\\xCF|^get.+\\qqmusic.\?\\qq.+\\qqmusic)"add comment="" name=Vod_f4v regexp="^.*get.+\\.f4v.*\$"add comment="" name=WebTV regexp="^.*get.+\\.(f4v|flv).*\$"add comment="" name=Vod_mp3 regexp="\"^.*get.+\\\\.mp3.*\\\$\""add comment="" name=QQLive regexp="(^get.+\\video.\?\\qq.+\\flv|^\\xFE.\?.\?.\ \?.\?\\xD3|^get.+\\video.\?\\qq.+\\mp4)"add comment="" name=PPLive regexp="(\\x06\\x02\\xA8\\xC0\\xB1\\x13|\\xA8\\x02\ \\x06\\x19\\x1A\\x5F\\x1B\\x6F\\xAE\\xE1|^get.+\\mp4.\?\\key.+\\pplive)"add comment="" name=Kugou regexp=\"(^post.+\\x0D\\x0A\\x0D\\x0A|^http.+\\x0D\\x0A\\x0D\\x0A|^e)"add comment="" name=edonkey regexp="^[\C5\D4\E3-\E5].\?.\?.\?.\?([\01\02\05\14\ \15\16\18\19\1A\1B\1C !234568@ABCFGHIJKLMNOPQRSTUVWX[`\81\82\90\91\93\96\ \97\98\99\9A\9B\9C\9E\A0\A1\A2\A3\A4]|Y................\?[ -~]|\96....\$)"add comment="" name=goboogy regexp="<peerplat>|^get /getfilebyhash\\.cgi\\\?|^\ get /queue_register\\.cgi\\\?|^get /getupdowninfo\\.cgi\\\?"add comment="" name=soribada regexp="^GETMP3\r\\nFilename|^\01.\?.\?.\?(Q:\\+|Q2:)|^\10[\14-\16]\10[\15-\17].\?.\?.\?.\?\\$"add comment="" name=rdp regexp=rdpdr.*cliprdr.*rdpsndadd comment="" name=gnutella regexp="^(gnd[\01\02]\?.\?.\?\01|gnutella connect\ /[012]\\.[0-9]\r\\n|get /uri-res/n2r\\\?urn:sha1:|get /.*user-agent: (gtk-gnutella|bearshar\e|mactella|gnucleus|gnotella|limewire|imesh)|get /.*content-type: applicat\ion/x-gnutella-packets|giv [0-9]*:[0-9a-f]*/|queue [0-9a-f]* [1-9][0-9]\?[\0-9]\?\\.[1-9][0-9]\?[0-9]\?\\.[1-9][0-9]\?[0-9]\?\\.[1-9][0-9]\?[0-9]\?:[\1-9][0-9]\?[0-9]\?[0-9]\?|gnutella.*content-type: application/x-gnutella|.\..................\?lime)"add comment="" name=cvs regexp="^BEGIN (AUTH|VERIFICATION|GSSAPI) REQUEST\ \n"add comment="" name=nbns regexp="\01\10\01|\\)\10\01\01|0\10\01"add comment="" name=shoutcast regexp=\"icy [1-5][0-9][0-9] [\t-\r -~]*(content-type:audio|icy-)"add comment="" name=DNS regexp="^.\?.\?.\?.\?[\01\02].\?.\?.\?.\?.\?.\?[\01-\?\ ][a-z0-9][\01-\?a-z]*[\02-\06][a-z][a-z][fglmoprstuvz]\?[aeop]\?(um)\?[\01\-\10\1C][\01\03\04\FF]"add comment="" name=quake-halflife regexp="^\FF\FF\FF\FFget(info|challenge)"add comment="" name=poco regexp="^\80\94\\n\01....\1F\9E"add comment="" name=ciscovpn regexp="^\01\F4\01\F4"add comment="" name=x11 regexp="^[lb].\?\0B"add comment="" name=xboxlive regexp="^X\80........\F3|^\06XN"add comment="" name=applejuice regexp="^ajprot\r\\n"add comment="" name=zmaap regexp="^\1B\D7;H[\01\02]\01\?\01"add comment="" name=live365 regexp=membername.*session.*playeradd comment="" name=rlogin regexp=\"^[a-z][a-z0-9][a-z0-9]+/[1-9][0-9]\?[0-9]\?[0-9]\?00"add comment="" name=http regexp="http/(0\\.9|1\\.0|1\\.1) [1-5][0-9][0-9] [\t-\ \r -~]*(connection:|content-type:|content-length:|date:)|post [\t-\r -~]* \http/[01]\\.[019]"add comment="" name=sip regexp=\"^(invite|register|cancel) sip[\t-\r -~]*sip/[0-2]\\.[0-9]"add comment="" name=pop3 regexp="^(\\+ok |-err )"add comment="" name=smb regexp="\FFsmb[r%]"add comment="" name=quake1 regexp="^\80\0C\01quake\03"add comment="" name=lpd regexp="^(\01[!-~]+|\02[!-~]+\\n.[\01\02\03][\01-\\n -~]*|[\03\04][!-~]+[\t-\r]+[a-z][\t-\r -~]*|\05[!-~]+[\t-\r]+([a-z][!-~\]*[\t-\r]+[1-9][0-9]\?[0-9]\?|root[\t-\r]+[!-~]+).*)\\n\$"add comment="" name=mute regexp=\"^(Public|AES)Key: [0-9a-f]*\\nEnd(Public|AES)Key\\n\$"add comment="" name=ssh regexp="^ssh-[12]\\.[0-9]"add comment="" name=jabber regexp=\"<stream:stream[\t-\r ][ -~]*[\t-\r ]xmlns=['\"]jabber"add comment="" name=bittorrent regexp="^(\13bittorrent protocol|azver\01\$|get\ \_/scrape\\\?info_hash=)|d1:ad2:id20:|\08'7P\\)[RP]"add comment="" name=ncp regexp="^(dmdt.*\01.*(\"\"|\11\11|uu)|tncp.*33)"add comment="" name=tls regexp=\"^(.\?.\?\16\03.*\16\03|.\?.\?\01\03\01\?.*\0B)"add comment="" name=directconnect regexp="^(\\\$mynick |\\\$lock |\\\$key )"add comment="" name=netbios regexp="\81.\?.\?.[A-P][A-P][A-P][A-P][A-P][A-P][A\ -P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][\ A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P]\ [A-P][A-P][A-P][A-P]"add comment="" name=tftp regexp="^(\01|\02)[ -~]*(netascii|octet|mail)"add comment="" name=subspace regexp="^\01....\11\10........\01\$"add comment="" name=hotline regexp="^....................TRTPHOTL\01\02"add comment="" name=doom3 regexp="^\FF\FFchallenge"add comment="" name=ftp regexp="^220[\t-\r -~]*ftp"add comment="" name=kugoo regexp="^1..\8E"add comment="" name=tsp regexp=\"^[\01-\13\16-\$]\01.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?[ -~]+"add comment="" name=battlefield1942 regexp="^\01\11\10\\|\F8\02\10@\06"add comment="" name=ssdp regexp="^notify[\t-\r ]\\*[\t-\r ]http/1\\.1[\t-\r -~\ ]*ssdp:(alive|byebye)|^m-search[\t-\r ]\\*[\t-\r ]http/1\\.1[\t-\r -~]*ssd\p:discover"add comment="" name=imap regexp="^(\\* ok|a[0-9]+ noop)"add comment="" name=ares regexp="^\03[]Z].\?.\?\05\$"add comment="" name=fasttrack regexp="^get (/.download/[ -~]*|/.supernode[ -~]\ |/.status[ -~]|/.network[ -~]*|/.files|/.hash=[0-9a-f]*/[ -~]*) http/1.1|u\ser-agent: kazaa|x-kazaa(-username|-network|-ip|-supernodeip|-xferid|-xfer\uid|tag)|^give [0-9][0-9][0-9][0-9][0-9][0-9][0-9][0-9]\?[0-9]\?[0-9]\?"add comment="" name=qq regexp="^.\?\02.+\03\$"add comment="" name=100bao regexp="^\01\01\05\\n"add comment="" name=aim regexp=\"^(\\*[\01\02].*\03\0B|\\*\01.\?.\?.\?.\?\01)|flapon|toc_signon.*0x"add comment="" name=unknown regexp=.add comment="" name=msn-filetransfer regexp=\"^(ver [ -~]*msnftp\r\\nver msnftp\r\\nusr|method msnmsgr:)"add comment="" name=yahoo regexp=\"^(ymsg|ypns|yhoo).\?.\?.\?.\?.\?.\?.\?[lwt].*\C0\80"add comment="" name=validcertssl regexp="^(.\?.\?\16\03.*\16\03|.\?.\?\01\03\ \01\?.*\0B).*(thawte|equifax secure|rsa data security, inc|verisign, inc|g\te cybertrust root|entrust\\.net limited)"add comment="" name=ntp regexp="^([\13\1B#\D3\DB\E3]|[\14\1C\$].......\?.\?.\?\ .\?.\?.\?.\?.\?.\?[\C6-\FF])"add comment="" name=gnucleuslan regexp=\"gnuclear connect/[\t-\r -~]*user-agent: gnucleus [\t-\r -~]*lan:"add comment="" name=vnc regexp="^rfb 00[1-9]\\.00[0-9]\\n\$"add comment="" name=bgp regexp=\"^\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF..\?\01[\03\04]"add comment="" name=tesla regexp="\03\9A\89\"111\\.00 Beta |\E2<i\1E\1C\E9" add comment="" name=openft regexp="x-openftalias: [-)(0-9a-z ~.]"add comment="" name=h323 regexp=\"^\03..\?\08...\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?\05"add comment="" name=finger regexp=\"^[a-z][a-z0-9\\-_]+|login: [\t-\r -~]* name: [\t-\r -~]* Directory:"add comment="" name=ident regexp="^[1-9][0-9]\?[0-9]\?[0-9]\?[0-9]\?[\t-\r]*,[\ \t-\r]*[1-9][0-9]\?[0-9]\?[0-9]\?[0-9]\?(\r\\n|[\r\\n])\?\$"add comment="" name=gkrellm regexp="^gkrellm [23].[0-9].[0-9]\\n\$"add comment="" name=hddtemp regexp=\"^\\|/dev/[a-z][a-z][a-z]\\|[0-9a-z]*\\|[0-9][0-9]\\|[cfk]\\|"add comment="" name=socks regexp="\05[\01-\08]*\05[\01-\08]\?.*\05[\01-\03][\ \01\03].*\05[\01-\08]\?[\01\03]"add comment="" name=biff regexp="^[a-z][a-z0-9]+@[1-9][0-9]+\$"add comment="" name=dhcp regexp="^[\01\02][\01- ]\06.*c\82sc"add comment="" name=smtp regexp="^220[\t-\r -~]* (e\?smtp|simple mail)"add comment="" name=ipp regexp=ipp://add comment="" name=msnmessenger regexp="ver [0-9]+ msnp[1-9][0-9]\? [\t-\r -~\ ]*cvr0\r\\n\$|usr 1 [!-~]+ [0-9. ]+\r\\n\$|ans 1 [!-~]+ [0-9. ]+\r\\n\$"add comment="" name=irc regexp="^(nick[\t-\r -~]*user[\t-\r -~]*:|user[\t-\r -\ ~]*:[\02-\r -~]*nick[\t-\r -~]*\r\\n)"add comment="" name=gopher regexp="^[\t-\r]*[1-9,+tgi][\t-\r -~]*\t[\t-\r -~]*\ \t[a-z0-9.]*\\.[a-z][a-z].\?.\?\t[1-9]"add comment="" name=telnet regexp="^\FF[\FB-\FE].\FF[\FB-\FE].\FF[\FB-\FE]"add comment="" name=snmp regexp="^\02\01\04.+([\A0-\A3]\02[\01-\04].\?.\?.\?.\ \?\02\01.\?\02\01.\?0|\A4\06.+@\04.\?.\?.\?.\?\02\01.\?\02\01.\?C)"add comment="" name=nntp regexp=\"^(20[01][\t-\r -~]*AUTHINFO USER|20[01][\t-\r -~]*news)"add comment="" name=aimwebcontent regexp=user-agent:aim/add comment="" name=rtsp regexp="rtsp/1.0 200 ok"add comment="" name=skypeout regexp="^(\01.\?.\?.\?.\?.\?.\?.\?.\?\01|\02.\?.\ \?.\?.\?.\?.\?.\?.\?\02|\03.\?.\?.\?.\?.\?.\?.\?.\?\03|\04.\?.\?.\?.\?.\?.\\?.\?.\?\04|\05.\?.\?.\?.\?.\?.\?.\?.\?\05|\06.\?.\?.\?.\?.\?.\?.\?.\?\06|\\07.\?.\?.\?.\?.\?.\?.\?.\?\07|\08.\?.\?.\?.\?.\?.\?.\?.\?\08|\t.\?.\?.\?.\\?.\?.\?.\?.\?\t|\\n.\?.\?.\?.\?.\?.\?.\?.\?\\n|\0B.\?.\?.\?.\?.\?.\?.\?.\?\0B|\0C.\?.\?.\?.\?.\?.\?.\?.\?\0C|\r.\?.\?.\\?.\?.\?.\?.\?.\?\r|\0E.\?.\?.\?.\?.\?.\?.\?.\?\0E|\0F.\?.\?.\?.\?.\?.\?.\\?.\?\0F|\10.\?.\?.\?.\?.\?.\?.\?.\?\10|\11.\?.\?.\?.\?.\?.\?.\?.\?\11|\12\.\?.\?.\?.\?.\?.\?.\?.\?\12|\13.\?.\?.\?.\?.\?.\?.\?.\?\13|\14.\?.\?.\?.\?\.\?.\?.\?.\?\14|\15.\?.\?.\?.\?.\?.\?.\?.\?\15|\16.\?.\?.\?.\?.\?.\?.\?.\?\\16|\17.\?.\?.\?.\?.\?.\?.\?.\?\17|\18.\?.\?.\?.\?.\?.\?.\?.\?\18|\19.\?.\\?.\?.\?.\?.\?.\?.\?\19|\1A.\?.\?.\?.\?.\?.\?.\?.\?\1A|\1B.\?.\?.\?.\?.\?.\\?.\?.\?\1B|\1C.\?.\?.\?.\?.\?.\?.\?.\?\1C|\1D.\?.\?.\?.\?.\?.\?.\?.\?\1D|\\1E.\?.\?.\?.\?.\?.\?.\?.\?\1E|\1F.\?.\?.\?.\?.\?.\?.\?.\?\1F| .\?.\?.\?.\\?.\?.\?.\?.\? |!.\?.\?.\?.\?.\?.\?.\?.\?!|\".\?.\?.\?.\?.\?.\?.\?.\?\"|#.\\?.\?.\?.\?.\?.\?.\?.\?#|\\\$.\?.\?.\?.\?.\?.\?.\?.\?\\\$|%.\?.\?.\?.\?.\?\.\?.\?.\?%|&.\?.\?.\?.\?.\?.\?.\?.\?&|'.\?.\?.\?.\?.\?.\?.\?.\?'|\\(.\?.\?\.\?.\?.\?.\?.\?.\?\\(|\\).\?.\?.\?.\?.\?.\?.\?.\?\\)|\\*.\?.\?.\?.\?.\?.\?\.\?.\?\\*|\\+.\?.\?.\?.\?.\?.\?.\?.\?\\+|,.\?.\?.\?.\?.\?.\?.\?.\?,|-.\?.\\?.\?.\?.\?.\?.\?.\?-|\\..\?.\?.\?.\?.\?.\?.\?.\?\\.|/.\?.\?.\?.\?.\?.\?.\\?.\?/|0.\?.\?.\?.\?.\?.\?.\?.\?0|1.\?.\?.\?.\?.\?.\?.\?.\?1|2.\?.\?.\?.\?\.\?.\?.\?.\?2|3.\?.\?.\?.\?.\?.\?.\?.\?3|4.\?.\?.\?.\?.\?.\?.\?.\?4|5.\?.\\?.\?.\?.\?.\?.\?.\?5|6.\?.\?.\?.\?.\?.\?.\?.\?6|7.\?.\?.\?.\?.\?.\?.\?.\?\7|8.\?.\?.\?.\?.\?.\?.\?.\?8|9.\?.\?.\?.\?.\?.\?.\?.\?9|:.\?.\?.\?.\?.\?.\\?.\?.\?:|;.\?.\?.\?.\?.\?.\?.\?.\?;|<.\?.\?.\?.\?.\?.\?.\?.\?<|=.\?.\?.\?\.\?.\?.\?.\?.\?=|>.\?.\?.\?.\?.\?.\?.\?.\?>|\\\?.\?.\?.\?.\?.\?.\?.\?.\?\\\\?|@.\?.\?.\?.\?.\?.\?.\?.\?@|A.\?.\?.\?.\?.\?.\?.\?.\?A|B.\?.\?.\?.\?.\?.\\?.\?.\?B|C.\?.\?.\?.\?.\?.\?.\?.\?C|D.\?.\?.\?.\?.\?.\?.\?.\?D|E.\?.\?.\?\.\?.\?.\?.\?.\?E|F.\?.\?.\?.\?.\?.\?.\?.\?F|G.\?.\?.\?.\?.\?.\?.\?.\?G|H.\\?.\?.\?.\?.\?.\?.\?.\?H|I.\?.\?.\?.\?.\?.\?.\?.\?I|J.\?.\?.\?.\?.\?.\?.\?\.\?J|K.\?.\?.\?.\?.\?.\?.\?.\?K|L.\?.\?.\?.\?.\?.\?.\?.\?L|M.\?.\?.\?.\?.\\?.\?.\?.\?M|N.\?.\?.\?.\?.\?.\?.\?.\?N|O.\?.\?.\?.\?.\?.\?.\?.\?O|P.\?.\?\.\?.\?.\?.\?.\?.\?P|Q.\?.\?.\?.\?.\?.\?.\?.\?Q|R.\?.\?.\?.\?.\?.\?.\?.\?R|\S.\?.\?.\?.\?.\?.\?.\?.\?S|T.\?.\?.\?.\?.\?.\?.\?.\?T|U.\?.\?.\?.\?.\?.\?.\\?.\?U|V.\?.\?.\?.\?.\?.\?.\?.\?V|W.\?.\?.\?.\?.\?.\?.\?.\?W|X.\?.\?.\?.\?\.\?.\?.\?.\?X|Y.\?.\?.\?.\?.\?.\?.\?.\?Y|Z.\?.\?.\?.\?.\?.\?.\?.\?Z|\\[.\?\.\?.\?.\?.\?.\?.\?.\?\\[|\\].\?.\?.\?.\?.\?.\?.\?.\?\\]|\\].\?.\?.\?.\?.\?\.\?.\?.\?\\]|\\^.\?.\?.\?.\?.\?.\?.\?.\?\\^|_.\?.\?.\?.\?.\?.\?.\?.\?_|`.\\?.\?.\?.\?.\?.\?.\?.\?`|a.\?.\?.\?.\?.\?.\?.\?.\?a|b.\?.\?.\?.\?.\?.\?.\?\.\?b|c.\?.\?.\?.\?.\?.\?.\?.\?c|d.\?.\?.\?.\?.\?.\?.\?.\?d|e.\?.\?.\?.\?.\\?.\?.\?.\?e|f.\?.\?.\?.\?.\?.\?.\?.\?f|g.\?.\?.\?.\?.\?.\?.\?.\?g|h.\?.\?\.\?.\?.\?.\?.\?.\?h|i.\?.\?.\?.\?.\?.\?.\?.\?i|j.\?.\?.\?.\?.\?.\?.\?.\?j|\k.\?.\?.\?.\?.\?.\?.\?.\?k|l.\?.\?.\?.\?.\?.\?.\?.\?l|m.\?.\?.\?.\?.\?.\?.\\?.\?m|n.\?.\?.\?.\?.\?.\?.\?.\?n|o.\?.\?.\?.\?.\?.\?.\?.\?o|p.\?.\?.\?.\?\.\?.\?.\?.\?p|q.\?.\?.\?.\?.\?.\?.\?.\?q|r.\?.\?.\?.\?.\?.\?.\?.\?r|s.\?.\\?.\?.\?.\?.\?.\?.\?s|t.\?.\?.\?.\?.\?.\?.\?.\?t|u.\?.\?.\?.\?.\?.\?.\?.\?\u|v.\?.\?.\?.\?.\?.\?.\?.\?v|w.\?.\?.\?.\?.\?.\?.\?.\?w|x.\?.\?.\?.\?.\?.\ \?.\?.\?x|y.\?.\?.\?.\?.\?.\?.\?.\?y|z.\?.\?.\?.\?.\?.\?.\?.\?z|\\{.\?.\?.\ \?.\?.\?.\?.\?.\?\\{|\\|.\?.\?.\?.\?.\?.\?.\?.\?\\||\\}.\?.\?.\?.\?.\?.\?.\\?.\?\\}|~.\?.\?.\?.\?.\?.\?.\?.\?~|\7F.\?.\?.\?.\?.\?.\?.\?.\?\7F|\80.\?.\ \?.\?.\?.\?.\?.\?.\?\80|\81.\?.\?.\?.\?.\?.\?.\?.\?\81|\82.\?.\?.\?.\?.\?.\ \?.\?.\?\82|\83.\?.\?.\?.\?.\?.\?.\?.\?\83|\84.\?.\?.\?.\?.\?.\?.\?.\?\84|\\85.\?.\?.\?.\?.\?.\?.\?.\?\85|\86.\?.\?.\?.\?.\?.\?.\?.\?\86|\87.\?.\?.\?\.\?.\?.\?.\?.\?\87|\88.\?.\?.\?.\?.\?.\?.\?.\?\88|\89.\?.\?.\?.\?.\?.\?.\?\.\?\89|\8A.\?.\?.\?.\?.\?.\?.\?.\?\8A|\8B.\?.\?.\?.\?.\?.\?.\?.\?\8B|\8C.\ \?.\?.\?.\?.\?.\?.\?.\?\8C|\8D.\?.\?.\?.\?.\?.\?.\?.\?\8D|\8E.\?.\?.\?.\?.\ \?.\?.\?.\?\8E|\8F.\?.\?.\?.\?.\?.\?.\?.\?\8F|\90.\?.\?.\?.\?.\?.\?.\?.\?\\90|\91.\?.\?.\?.\?.\?.\?.\?.\?\91|\92.\?.\?.\?.\?.\?.\?.\?.\?\92|\93.\?.\ \?.\?.\?.\?.\?.\?.\?\93|\94.\?.\?.\?.\?.\?.\?.\?.\?\94|\95.\?.\?.\?.\?.\?.\ \?.\?.\?\95|\96.\?.\?.\?.\?.\?.\?.\?.\?\96|\97.\?.\?.\?.\?.\?.\?.\?.\?\97|\\98.\?.\?.\?.\?.\?.\?.\?.\?\98|\99.\?.\?.\?.\?.\?.\?.\?.\?\99|\9A.\?.\?.\?\.\?.\?.\?.\?.\?\9A|\9B.\?.\?.\?.\?.\?.\?.\?.\?\9B|\9C.\?.\?.\?.\?.\?.\?.\?\.\?\9C|\9D.\?.\?.\?.\?.\?.\?.\?.\?\9D|\9E.\?.\?.\?.\?.\?.\?.\?.\?\9E|\9F.\ \?.\?.\?.\?.\?.\?.\?.\?\9F|\A0.\?.\?.\?.\?.\?.\?.\?.\?\A0|\A1.\?.\?.\?.\?.\ \?.\?.\?.\?\A1|\A2.\?.\?.\?.\?.\?.\?.\?.\?\A2|\A3.\?.\?.\?.\?.\?.\?.\?.\?\\A3|\A4.\?.\?.\?.\?.\?.\?.\?.\?\A4|\A5.\?.\?.\?.\?.\?.\?.\?.\?\A5|\A6.\?.\ \?.\?.\?.\?.\?.\?.\?\A6|\A7.\?.\?.\?.\?.\?.\?.\?.\?\A7|\A8.\?.\?.\?.\?.\?.\ \?.\?.\?\A8|\A9.\?.\?.\?.\?.\?.\?.\?.\?\A9|\AA.\?.\?.\?.\?.\?.\?.\?.\?\AA|\ \AB.\?.\?.\?.\?.\?.\?.\?.\?\AB|\AC.\?.\?.\?.\?.\?.\?.\?.\?\AC|\AD.\?.\?.\?\ .\?.\?.\?.\?.\?\AD|\AE.\?.\?.\?.\?.\?.\?.\?.\?\AE|\AF.\?.\?.\?.\?.\?.\?.\?\ .\?\AF|\B0.\?.\?.\?.\?.\?.\?.\?.\?\B0|\B1.\?.\?.\?.\?.\?.\?.\?.\?\B1|\B2.\ \?.\?.\?.\?.\?.\?.\?.\?\B2|\B3.\?.\?.\?.\?.\?.\?.\?.\?\B3|\B4.\?.\?.\?.\?.\ \?.\?.\?.\?\B4|\B5.\?.\?.\?.\?.\?.\?.\?.\?\B5|\B6.\?.\?.\?.\?.\?.\?.\?.\?\\B6|\B7.\?.\?.\?.\?.\?.\?.\?.\?\B7|\B8.\?.\?.\?.\?.\?.\?.\?.\?\B8|\B9.\?.\ \?.\?.\?.\?.\?.\?.\?\B9|\BA.\?.\?.\?.\?.\?.\?.\?.\?\BA|\BB.\?.\?.\?.\?.\?.\ \?.\?.\?\BB|\BC.\?.\?.\?.\?.\?.\?.\?.\?\BC|\BD.\?.\?.\?.\?.\?.\?.\?.\?\BD|\ \BE.\?.\?.\?.\?.\?.\?.\?.\?\BE|\BF.\?.\?.\?.\?.\?.\?.\?.\?\BF|\C0.\?.\?.\?\ .\?.\?.\?.\?.\?\C0|\C1.\?.\?.\?.\?.\?.\?.\?.\?\C1|\C2.\?.\?.\?.\?.\?.\?.\?\.\?\C2|\C3.\?.\?.\?.\?.\?.\?.\?.\?\C3|\C4.\?.\?.\?.\?.\?.\?.\?.\?\C4|\C5.\ \?.\?.\?.\?.\?.\?.\?.\?\C5|\C6.\?.\?.\?.\?.\?.\?.\?.\?\C6|\C7.\?.\?.\?.\?.\ \?.\?.\?.\?\C7|\C8.\?.\?.\?.\?.\?.\?.\?.\?\C8|\C9.\?.\?.\?.\?.\?.\?.\?.\?\\C9|\CA.\?.\?.\?.\?.\?.\?.\?.\?\CA|\CB.\?.\?.\?.\?.\?.\?.\?.\?\CB|\CC.\?.\ \?.\?.\?.\?.\?.\?.\?\CC|\CD.\?.\?.\?.\?.\?.\?.\?.\?\CD|\CE.\?.\?.\?.\?.\?.\ \?.\?.\?\CE|\CF.\?.\?.\?.\?.\?.\?.\?.\?\CF|\D0.\?.\?.\?.\?.\?.\?.\?.\?\D0|\ \D1.\?.\?.\?.\?.\?.\?.\?.\?\D1|\D2.\?.\?.\?.\?.\?.\?.\?.\?\D2|\D3.\?.\?.\?\ .\?.\?.\?.\?.\?\D3|\D4.\?.\?.\?.\?.\?.\?.\?.\?\D4|\D5.\?.\?.\?.\?.\?.\?.\?\.\?\D5|\D6.\?.\?.\?.\?.\?.\?.\?.\?\D6|\D7.\?.\?.\?.\?.\?.\?.\?.\?\D7|\D8.\ \?.\?.\?.\?.\?.\?.\?.\?\D8|\D9.\?.\?.\?.\?.\?.\?.\?.\?\D9|\DA.\?.\?.\?.\?.\ \?.\?.\?.\?\DA|\DB.\?.\?.\?.\?.\?.\?.\?.\?\DB|\DC.\?.\?.\?.\?.\?.\?.\?.\?\ \DC|\DD.\?.\?.\?.\?.\?.\?.\?.\?\DD|\DE.\?.\?.\?.\?.\?.\?.\?.\?\DE|\DF.\?.\ \?.\?.\?.\?.\?.\?.\?\DF|\E0.\?.\?.\?.\?.\?.\?.\?.\?\E0|\E1.\?.\?.\?.\?.\?.\ \?.\?.\?\E1|\E2.\?.\?.\?.\?.\?.\?.\?.\?\E2|\E3.\?.\?.\?.\?.\?.\?.\?.\?\E3|\\E4.\?.\?.\?.\?.\?.\?.\?.\?\E4|\E5.\?.\?.\?.\?.\?.\?.\?.\?\E5|\E6.\?.\?.\?\.\?.\?.\?.\?.\?\E6|\E7.\?.\?.\?.\?.\?.\?.\?.\?\E7|\E8.\?.\?.\?.\?.\?.\?.\?\.\?\E8|\E9.\?.\?.\?.\?.\?.\?.\?.\?\E9|\EA.\?.\?.\?.\?.\?.\?.\?.\?\EA|\EB.\\?.\?.\?.\?.\?.\?.\?.\?\EB|\EC.\?.\?.\?.\?.\?.\?.\?.\?\EC|\ED.\?.\?.\?.\?.\\?.\?.\?.\?\ED|\EE.\?.\?.\?.\?.\?.\?.\?.\?\EE|\EF.\?.\?.\?.\?.\?.\?.\?.\?\\EF|\F0.\?.\?.\?.\?.\?.\?.\?.\?\F0|\F1.\?.\?.\?.\?.\?.\?.\?.\?\F1|\F2.\?.\\?.\?.\?.\?.\?.\?.\?\F2|\F3.\?.\?.\?.\?.\?.\?.\?.\?\F3|\F4.\?.\?.\?.\?.\?.\\?.\?.\?\F4|\F5.\?.\?.\?.\?.\?.\?.\?.\?\F5|\F6.\?.\?.\?.\?.\?.\?.\?.\?\F6|\\F7.\?.\?.\?.\?.\?.\?.\?.\?\F7|\F8.\?.\?.\?.\?.\?.\?.\?.\?\F8|\F9.\?.\?.\?\.\?.\?.\?.\?.\?\F9|\FA.\?.\?.\?.\?.\?.\?.\?.\?\FA|\FB.\?.\?.\?.\?.\?.\?.\?\.\?\FB|\FC.\?.\?.\?.\?.\?.\?.\?.\?\FC|\FD.\?.\?.\?.\?.\?.\?.\?.\?\FD|\FE.\\?.\?.\?.\?.\?.\?.\?.\?\FE|\FF.\?.\?.\?.\?.\?.\?.\?.\?\FF)"add comment="" name=skypetoskype regexp="^..\02............."add comment="" name=counterstrike-source regexp=\"^\FF\FF\FF\FF.*cstrikeCounter-Strike"add comment="" name=halflife2-deathmatch regexp=\"^\FF\FF\FF\FF.*hl2mpDeathmatch"add comment="" name=freenet regexp="^\01[\08\t][\03\04]"add comment="" name=battlefield2 regexp="^(\11 \01...\?\11|\FE\FD.\?.\?.\?.\?.\ \?.\?(\14\01\06|\FF\FF\FF))|[]\01].\?battlefield2"add comment="" name=napster regexp="^(.[\02\06][!-~]+ [!-~]+ [0-9][0-9]\?[0-9]\ \?[0-9]\?[0-9]\? \"[\t-\r -~]+\" ([0-9]|10)|1(send|get)[!-~]+ \"[\t-\r -~]\+\")"add comment="" name=soulseek regexp=\"^(\05..\?|.\01.[ -~]+\01F..\?.\?.\?.\?.\?.\?.\?)\$"add comment="" name=xunlei regexp="^[()]...\?.\?.\?(reg|get|query)"add comment="" name=ssl regexp=\"^(.\?.\?\16\03.*\16\03|.\?.\?\01\03\01\?.*\0B)"add comment="" name=citrix regexp="2&\85\92X"add comment="" name=whois regexp="^[ !-~]+\r\\n\$"add comment="" name=dayofdefeat-source regexp=\"^\FF\FF\FF\FF.*dodDay of Defeat"add comment="" name=teamspeak regexp="^\F4\BE\03.*teamspeak"add comment="" name=worldofwarcraft regexp="^\06\EC\01"add comment="" name=ventrilo regexp="^..\?v\\\$\CF"add comment="" name=http-rtsp regexp="^(get[\t-\r -~]* Accept: application/x-r\ tsp-tunnelled|http/(0\\.9|1\\.0|1\\.1) [1-5][0-9][0-9] [\t-\r -~]*a=contro\l:rtsp://)"add comment="" name=thecircle regexp=\"^t\03ni.\?[\01-\06]\?t[\01-\05]s[\\n\0B](glob|who are you\$|query data)"add comment="" name=uucp regexp="^\10here="add comment="" name=pcanywhere regexp="^(nq|st)\$"add comment="" name=subversion regexp="^\\( success \\( 1 2 \\("add comment="" name=imesh regexp="^(post[\t-\r -~]*<PasswordHash>.............\ ...................</PasswordHash><ClientVer>|4\80\?\r\?\FC\FF\04|get[\t-\\r -~]*Host: imsh\\.download-prod\\.musicnet\\.com|\02(\01|\02)\83.\?.\?.\\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?\.\?\02(\01|\02)\83)"add comment="" name=cimd regexp="\02[0-4][0-9]:[0-9]+.*\03\$"add comment="" name=mohaa regexp="^\FF\FF\FF\FFgetstatus\\n"add comment="" name=stun regexp="^[\01\02]................\?\$"add comment="" name=tor regexp=TOR1.*<identity>add comment="" name=radmin regexp="^\01\01(\08\08|\1B\1B)\$"add comment="" name=unset regexp=.add comment="" name=chikka regexp="^CTPv1.[123] Kamusta.*\r\\n\$"add comment="" name=replaytv-ivs regexp="^(get /ivs-IVSGetFileChunk|http/(0\\.\ 9|1\\.0|1\\.1) [1-5][0-9][0-9] [\t-\r -~]*#####REPLAY_CHUNK_START#####)" add comment="" name=armagetron regexp=YCLC_E|CYELadd comment="" name=Jpg regexp="^.*(post|POST|get|GET).+\\.jpg.+\\http"add comment="" name=Htm regexp="^.*(post|POST|get|GET).+\\.htm.+\\http"/ip hotspot profileset default dns-name="" hotspot-address=0.0.0.0 html-directory=hotspot \ http-cookie-lifetime=3d http-proxy=0.0.0.0:0 login-by=cookie,http-chap \name=default rate-limit="" smtp-server=0.0.0.0 split-user-domain=no \use-radius=no#以下为ROS默订设置/ip hotspot user profileset default idle-timeout=none keepalive-timeout=2m name=default shared-users=\1 status-autorefresh=1m transparent-proxy=no/ip ipsec proposalset default auth-algorithms=sha1 disabled=no enc-algorithms=3des lifetime=30m \ name=default pfs-group=modp1024#以下为地址池设置,有正常拔号的,到期通知的,DHCP的/ip pooladd name=POOL_PPPOE ranges=10.0.0.5-10.0.0.200add name=4day ranges=20.0.0.5-20.0.0.200add name=tongzhi ranges=30.30.30.0/24add name=dhcp ranges=192.168.10.5-192.168.10.200add name=dhcp_pool1 ranges=192.168.10.2-192.168.10.200#以下为DHCP服务设置/ip dhcp-serveradd address-pool=dhcp authoritative=after-2sec-delay bootp-support=static \ disabled=yes interface=LAN lease-time=1h name=dhcp1 relay=255.255.255.0/portset 0 baud-rate=9600 data-bits=8 flow-control=hardware name=serial0 parity=\ none stop-bits=1set 1 baud-rate=9600 data-bits=8 flow-control=hardware name=serial1 parity=\ none stop-bits=1#以下为PPPOE设置,分几种,有正常拔号的,到期的,不同网速的/ppp profileset default change-tcp-mss=yes comment="" name=default only-one=default \ use-compression=default use-encryption=default use-vj-compression=defaultadd change-tcp-mss=default comment="" dns-server=202.96.128.86,202.96.134.133 \ local-address=10.0.0.1 name=PPPOE_2M only-one=yes rate-limit=52k/2000k \ remote-address=POOL_PPPOE use-compression=default use-encryption=default \ use-vj-compression=defaultadd change-tcp-mss=default comment="" dns-server=202.96.128.86,202.96.134.133 \ local-address=20.0.0.1 name=4day only-one=yes rate-limit=52k/1000k \remote-address=4day use-compression=default use-encryption=default \use-vj-compression=defaultadd change-tcp-mss=default comment="" local-address=30.0.0.1 name=tongzhi \。

相关文档
最新文档