Hallo,
ich habe hier eine 7170 mit Freetz die hinter einem Kabelmodem im Bridgemodus (ethmode = ethmode_bridge) arbeitet.
Es besteht eine VPN Verbindung zu einer 7270v3 die direkt am DSLAM hängt.
Alle funktioniert soweit auch sehr gut.
Ich kann von jedem Client hinter der 7170 (192.168.2.1/24) auf das VPN Subnetz der 7270v3 (192.168.22.0/24) zugreifen.
Auch von der anderen Seite (192.168.22.0/24) kann ich sowohl von den Clients an der Fritzbox als auch aus der Shell der box (192.168.22.1) heraus eine Verbindung in das andere Netz aufbauen.
Nur von der Shell der 7170 kann ich keine Verbindung zu einer IP des anderen VPN Subnetz aufbauen. Die 7170 selbst (192.168.2.1) ist aus dem anderen Subnetz erreichbar.
Ein Telnet Aufbau von der 7170 zu der 7270 schaut so aus:
Keine Ahnung mehr. habe schon an der Firewall rumgebastelt. Leider ohne Erfolg. Hab mal wieder die dsld FW auf defaultwerte gestellt.
Hat noch einer eine Idee ? Danke schon mal vorab.
ich habe hier eine 7170 mit Freetz die hinter einem Kabelmodem im Bridgemodus (ethmode = ethmode_bridge) arbeitet.
Es besteht eine VPN Verbindung zu einer 7270v3 die direkt am DSLAM hängt.
Alle funktioniert soweit auch sehr gut.
Ich kann von jedem Client hinter der 7170 (192.168.2.1/24) auf das VPN Subnetz der 7270v3 (192.168.22.0/24) zugreifen.
Auch von der anderen Seite (192.168.22.0/24) kann ich sowohl von den Clients an der Fritzbox als auch aus der Shell der box (192.168.22.1) heraus eine Verbindung in das andere Netz aufbauen.
Nur von der Shell der 7170 kann ich keine Verbindung zu einer IP des anderen VPN Subnetz aufbauen. Die 7170 selbst (192.168.2.1) ist aus dem anderen Subnetz erreichbar.
Ein Telnet Aufbau von der 7170 zu der 7270 schaut so aus:
Code:
netstat -a | grep 22.1
tcp 0 1 169.254.2.1:2764 192.168.22.1:23 SYN_SENTKeine Ahnung mehr. habe schon an der Firewall rumgebastelt. Leider ohne Erfolg. Hab mal wieder die dsld FW auf defaultwerte gestellt.
Hat noch einer eine Idee ? Danke schon mal vorab.
Code:
/*
* /var/flash/ar7.cfg
* Sun Oct 6 12:43:45 2013
*/
ar7cfg {
mode = dsldmode_router;
igddenabled = yes;
igdd_control_enabled = no;
wan_bridge_with_dhcpc = yes;
wan_bridge_gateway = 0.0.0.0;
dhcpc_use_static_dns = no;
ethmode = ethmode_bridge;
tcom_targetarch = no;
mtu_cutback_mode = mtumode_auto;
mtu_cutback = 1500;
StatisticStartOfMonth = 1;
enable_mac_override = yes;
macdsl_override = 00:00:00:00:00:00;
ipv6mode = ipv6_tunnel;
serialcfg {
}
ethinterfaces {
name = "eth0";
dhcp = no;
ipaddr = 192.168.2.1;
netmask = 255.255.255.0;
dstipaddr = 0.0.0.0;
dhcpenabled = yes;
dhcpstart = 192.168.2.20;
dhcpend = 192.168.2.200;
} {
name = "eth0:0";
dhcp = no;
ipaddr = 169.254.1.1;
netmask = 255.255.0.0;
dstipaddr = 0.0.0.0;
dhcpenabled = yes;
dhcpstart = 0.0.0.0;
dhcpend = 0.0.0.0;
} {
name = "usbrndis";
dhcp = no;
ipaddr = 192.168.179.1;
netmask = 255.255.255.0;
dstipaddr = 0.0.0.0;
dhcpenabled = yes;
dhcpstart = 0.0.0.0;
dhcpend = 0.0.0.0;
} {
name = "wlan";
dhcp = no;
ipaddr = 192.168.182.1;
netmask = 255.255.255.0;
dstipaddr = 0.0.0.0;
interfaces = "tiwlan0", "wdsup0", "wdsdw0", "wdsdw1",
"wdsdw2", "wdsdw3";
dhcpenabled = yes;
dhcpstart = 0.0.0.0;
dhcpend = 0.0.0.0;
}
brinterfaces {
name = "lan";
dhcp = no;
ipaddr = 192.168.2.1;
netmask = 255.255.255.0;
dstipaddr = 0.0.0.0;
interfaces = "eth0", "usbrndis", "tiwlan0", "wdsup0",
"wdsdw0", "wdsdw1", "wdsdw2", "wdsdw3";
dhcpenabled = yes;
dhcpstart = 192.168.2.20;
dhcpend = 192.168.2.200;
} {
name = "lan:0";
dhcp = no;
ipaddr = 169.254.1.1;
netmask = 255.255.0.0;
dstipaddr = 0.0.0.0;
dhcpenabled = yes;
dhcpstart = 0.0.0.0;
dhcpend = 0.0.0.0;
}
dslinterface {
name = "dsl";
dhcp = no;
ipaddr = 169.254.2.1;
netmask = 255.255.255.255;
dstipaddr = 169.254.2.1;
dhcpenabled = yes;
dhcpstart = 0.0.0.0;
dhcpend = 0.0.0.0;
}
dslinterface_metric = 2;
ipbridge {
enabled = no;
}
pppoefw {
interfaces = "lan", "usbrndis", "eth0", "wlan";
nofirewall = yes;
ipnetbiosfilter = yes;
dnsfilter_for_active_directory = yes;
hostuniq_filter = "";
dpconfig {
security = dpsec_host;
lowinput {
policy = "reject";
accesslist =
"permit ip any any connection outgoing-related",
"permit ip any any connection incoming-related",
"permit icmp any any";
}
lowoutput {
policy = "permit";
}
highinput {
policy = "permit";
}
highoutput {
policy = "permit";
accesslist =
"reject ip any 242.0.0.0 255.0.0.0",
"deny ip any host 255.255.255.255",
"reject ip any 169.254.0.0 255.255.0.0",
"reject udp any any range 161 162",
"reject udp any any eq 111";
}
}
}
budget {
Enabled = no;
Period = 2;
VolumeLow = 0;
VolumeHigh = 0;
ConnectionTime = 0;
WarnOnly = yes;
}
vccs {
VPI = 1;
VCI = 32;
traffic_class = atm_traffic_class_UBR;
pcr = 0;
scr = 0;
priority = 0;
dsl_encap = dslencap_ether;
ipbridgeing = no;
ipbridgeing_igmp = no;
pppoeforwarding = no;
connections = "internet", "voip";
}
mcupstream = "internet";
voip_forwardrules = "udp 0.0.0.0:5060 0.0.0.0:5060",
"tcp 0.0.0.0:5060 0.0.0.0:5060",
"udp 0.0.0.0:7078+32 0.0.0.0:7078";
tr069_forwardrules = "tcp 0.0.0.0:8089 0.0.0.0:8089";
internet_in_nat_rules_enabled = yes;
internet_out_nat_rules_enabled = yes;
dslifaces {
enabled = yes;
name = "internet";
dsl_encap = dslencap_inherit;
dslinterfacename = "dsl";
no_masquerading = no;
no_firewall = no;
pppoevlanauto = no;
pppoevlanauto_startwithvlan = no;
ppptarget = "internet";
etherencapcfg {
use_dhcp = no;
use_dhcp_if_not_rbe = yes;
ipaddr = 192.168.0.2;
netmask = 255.255.255.0;
gateway = 192.168.0.1;
dns1 = 213.191.92.87;
dns2 = 192.168.0.1;
mtu = 0;
}
is_mcupstream = yes;
stay_always_online = no;
disable_ondemand = no;
only_route_when_connected = no;
redial_delay_after_auth_failure = 1m;
redial_limit = 3;
redial_after_limit_reached = 10m;
redial_after_limit_reached_variance = 5m;
redial_delay_after_low_error = 10s;
redial_delay_after_ppp_timeout = 10s;
redial_delay_after_ppp_error = 0w;
routes_only_for_local = no;
disable_staticroutes_on_dhcproutes = no;
ripv2receiver_enabled = no;
dsldpconfig {
security = dpsec_firewall;
lowinput {
policy = "permit";
accesslist =
"deny ip any 242.0.0.0 255.0.0.0", /*AVM*/
"deny ip any host 255.255.255.255", /*AVM*/
"deny udp any any range 161 162", /*AVM*/
"deny udp any any eq 111";/*AVM*/
}
lowoutput {
policy = "permit";
}
highinput {
policy = "permit";
}
highoutput {
policy = "permit";
accesslist =
"reject ip any 242.0.0.0 255.0.0.0", /*AVM*/
"deny ip any host 255.255.255.255", /*AVM*/
"reject ip any 169.254.0.0 255.255.0.0", /*AVM*/
"reject udp any any range 161 162", /*AVM*/
"reject udp any any eq 111";/*AVM*/
}
}
} {
enabled = yes;
name = "voip";
dsl_encap = dslencap_inherit;
dslinterfacename = "dsl";
no_masquerading = no;
no_firewall = no;
pppoevlanauto = no;
pppoevlanauto_startwithvlan = no;
ppptarget = "voip";
etherencapcfg {
use_dhcp = yes;
use_dhcp_if_not_rbe = yes;
ipaddr = 0.0.0.0;
netmask = 0.0.0.0;
gateway = 0.0.0.0;
dns1 = 0.0.0.0;
dns2 = 0.0.0.0;
mtu = 0;
}
is_mcupstream = no;
stay_always_online = yes;
disable_ondemand = no;
only_route_when_connected = no;
redial_delay_after_auth_failure = 1m;
redial_limit = 3;
redial_after_limit_reached = 10m;
redial_after_limit_reached_variance = 5m;
redial_delay_after_low_error = 10s;
redial_delay_after_ppp_timeout = 10s;
redial_delay_after_ppp_error = 0w;
routes_only_for_local = no;
tcclassroutes = "sipdns", "sip", "rtp";
disable_staticroutes_on_dhcproutes = no;
ripv2receiver_enabled = no;
dsldpconfig {
security = dpsec_firewall;
lowinput {
policy = "permit";
accesslist = "permit udp any any",
"permit icmp any any",
"deny ip any host 255.255.255.255",
"reject ip any any";
}
lowoutput {
policy = "permit";
}
highinput {
policy = "permit";
}
highoutput {
policy = "permit";
accesslist = "permit udp any any",
"reject ip any any";
}
}
}
targets {
type = pppcfg_target_internet;
name = "internet";
only_crypt_auth = no;
local {
username = "";
passwd = "";
}
remoteauth = pppcfg_authtype_chap;
remoteauth_only_on_incoming = yes;
remote {
}
inactivity_timeout = 5m;
bUseChargeInterval = no;
nChargeInterval = 1m;
lcpecho_disconnect_mode = lcpecho_auto;
logicaldisconnect_with_physical = yes;
disconnect_timeout = 0w;
finaldisconnectcall = no;
ipnetbiosspoofing = no;
ipnetbiosfilter = yes;
dnsfilter_for_active_directory = no;
no_outgoing_calls = no;
coso = pppcfg_coso_caller;
callback_delay = 1s;
icbmode = pppcfg_icbmode_none;
ocbmode = pppcfg_ocbmode_none;
mscbprefered = no;
multilink {
extra_static_channels = 0;
max_channels = 1;
automatic = no;
automatic_param {
window = 20s;
add_percent = 85;
drop_percent = 70;
sportlich = no;
}
}
header_compression = yes;
data_compression = pppcfg_datacomp_auto;
stac_reset_with_history_number = no;
encryption = pppcfg_crypt_none;
inactivity_prevention_interval = 0w;
new_ipaddr_on_connect = no;
my_ipaddr = 0.0.0.0;
his_ipaddr = 0.0.0.0;
overwrite_dns1 = 0.0.0.0;
overwrite_dns2 = 0.0.0.0;
bVolumeRoundUp = no;
VolumeRoundUpBytes = 0;
bProviderDisconnectPrevention = yes;
ProviderDisconnectPreventionInterval = 1d;
ProviderDisconnectPreventionHour = 3;
bProviderDisconnectPreventionHourSet = yes;
passiv_on_outgoing = no;
mode6 = mode6_off;
} {
type = pppcfg_target_internet;
name = "voip";
only_crypt_auth = no;
local {
username = "";
passwd = "";
}
remoteauth = pppcfg_authtype_chap;
remoteauth_only_on_incoming = yes;
remote {
}
inactivity_timeout = 0w;
bUseChargeInterval = no;
nChargeInterval = 1m;
lcpecho_disconnect_mode = lcpecho_auto;
logicaldisconnect_with_physical = yes;
disconnect_timeout = 0w;
finaldisconnectcall = no;
ipnetbiosspoofing = no;
ipnetbiosfilter = yes;
dnsfilter_for_active_directory = no;
no_outgoing_calls = no;
coso = pppcfg_coso_caller;
callback_delay = 1s;
icbmode = pppcfg_icbmode_none;
ocbmode = pppcfg_ocbmode_none;
mscbprefered = no;
multilink {
extra_static_channels = 0;
max_channels = 1;
automatic = no;
automatic_param {
window = 20s;
add_percent = 85;
drop_percent = 70;
sportlich = no;
}
}
header_compression = yes;
data_compression = pppcfg_datacomp_auto;
stac_reset_with_history_number = no;
encryption = pppcfg_crypt_none;
inactivity_prevention_interval = 0w;
new_ipaddr_on_connect = no;
my_ipaddr = 0.0.0.0;
his_ipaddr = 0.0.0.0;
overwrite_dns1 = 0.0.0.0;
overwrite_dns2 = 0.0.0.0;
bVolumeRoundUp = no;
VolumeRoundUpBytes = 0;
bProviderDisconnectPrevention = yes;
ProviderDisconnectPreventionInterval = 1d;
ProviderDisconnectPreventionHour = 3;
bProviderDisconnectPreventionHourSet = yes;
passiv_on_outgoing = no;
mode6 = mode6_off;
}
dslglobalconfig {
autodetect = yes;
autodetectparams {
nround = 2;
timeout = 3s;
npacket = 1;
}
pppoeiface = "eth0";
speed_in_netto = 1024;
speed_out_netto = 128;
manual_speed = no;
connect_delay_when_synced = 3s;
sync_lost_delay = 0w;
default_tcom_vlan = 7;
templates {
VPI = 1;
VCI = 32;
retries = 7;
encap = dslencap_pppoe;
} {
VPI = 8;
VCI = 35;
retries = 0;
encap = dslencap_pppoe;
} {
VPI = 8;
VCI = 48;
retries = 0;
encap = dslencap_pppoe;
} {
VPI = 8;
VCI = 48;
retries = 0;
encap = dslencap_pppoa;
} {
VPI = 8;
VCI = 48;
retries = 0;
encap = dslencap_pppoa_llc;
} {
VPI = 8;
VCI = 67;
retries = 0;
encap = dslencap_pppoa;
} {
VPI = 8;
VCI = 67;
retries = 0;
encap = dslencap_pppoa_llc;
} {
VPI = 8;
VCI = 64;
retries = 0;
encap = dslencap_pppoa;
} {
VPI = 8;
VCI = 36;
retries = 0;
encap = dslencap_pppoe;
} {
VPI = 0;
VCI = 35;
retries = 0;
encap = dslencap_pppoa;
} {
VPI = 0;
VCI = 35;
retries = 0;
encap = dslencap_pppoa_llc;
} {
VPI = 0;
VCI = 35;
retries = 0;
encap = dslencap_pppoe;
} {
VPI = 9;
VCI = 35;
retries = 0;
encap = dslencap_pppoe;
} {
VPI = 1;
VCI = 32;
retries = 0;
encap = dslencap_pppoa;
} {
VPI = 1;
VCI = 32;
retries = 0;
encap = dslencap_pppoa_llc;
} {
VPI = 0;
VCI = 32;
retries = 0;
encap = dslencap_pppoe;
} {
VPI = 0;
VCI = 32;
retries = 0;
encap = dslencap_pppoa;
} {
VPI = 0;
VCI = 32;
retries = 0;
encap = dslencap_pppoa_llc;
} {
VPI = 0;
VCI = 34;
retries = 0;
encap = dslencap_pppoe;
} {
VPI = 0;
VCI = 34;
retries = 0;
encap = dslencap_pppoa;
} {
VPI = 0;
VCI = 34;
retries = 0;
encap = dslencap_pppoa_llc;
} {
VPI = 0;
VCI = 33;
retries = 0;
encap = dslencap_pppoe;
} {
VPI = 8;
VCI = 32;
retries = 0;
encap = dslencap_pppoe;
} {
VPI = 8;
VCI = 32;
retries = 0;
encap = dslencap_pppoa;
} {
VPI = 8;
VCI = 32;
retries = 0;
encap = dslencap_pppoa_llc;
} {
VPI = 0;
VCI = 38;
retries = 0;
encap = dslencap_pppoa;
} {
VPI = 0;
VCI = 38;
retries = 0;
encap = dslencap_pppoa_llc;
} {
VPI = 8;
VCI = 35;
retries = 0;
encap = dslencap_pppoa;
} {
VPI = 8;
VCI = 35;
retries = 0;
encap = dslencap_pppoa_llc;
} {
VPI = 0;
VCI = 81;
retries = 0;
encap = dslencap_pppoe;
} {
VPI = 0;
VCI = 81;
retries = 0;
encap = dslencap_pppoa;
} {
VPI = 0;
VCI = 81;
retries = 0;
encap = dslencap_pppoa_llc;
} {
VPI = 8;
VCI = 81;
retries = 0;
encap = dslencap_pppoe;
} {
VPI = 8;
VCI = 81;
retries = 0;
encap = dslencap_pppoa;
} {
VPI = 8;
VCI = 81;
retries = 0;
encap = dslencap_pppoa_llc;
} {
VPI = 0;
VCI = 100;
retries = 0;
encap = dslencap_pppoe;
} {
VPI = 0;
VCI = 100;
retries = 0;
encap = dslencap_pppoa;
} {
VPI = 0;
VCI = 100;
retries = 0;
encap = dslencap_pppoa_llc;
} {
VPI = 1;
VCI = 50;
retries = 0;
encap = dslencap_pppoa;
} {
VPI = 1;
VCI = 50;
retries = 0;
encap = dslencap_pppoe;
}
MaxDownstreamRate = 0;
MaxUpstreamRate = 0;
RFI = 0;
DownstreamBlackoutBandStart = 0;
DownstreamBlackoutBandEnd = 0;
ControlBitfield = 0;
DownstreamMarginOffset = 0;
DownstreamPcbOffset = 0;
UpstreamPcbOffset = 0;
DiagnosticEnabled = no;
DSLMode = 0;
IsDSLModeSet = no;
}
accesslist_version = 2;
}
servercfg {
hostname = "(none)";
dns1 = 192.168.180.1;
dns2 = 192.168.180.2;
}
websrv {
port = "80";
read_timeout = 15m;
request_timeout = 30s;
keepalive_timeout = 5m;
nokeepalive = "*";
errordir = "/usr/www/html/errors";
webdir = "/usr/www";
cgidir = "cgi-bin";
indexfn = "index.var", "index.htm", "index.html";
users_only_for_https = no;
}
ipv6 {
ulamode = ulamode_dynamic;
use_default_ula = yes;
ula = fd00::;
use_fixed_mtu = no;
fixed_mtu = 1280;
radv {
MinRtrAdvInterval = 450;
MaxRtrAdvInterval = 600;
AdvDefaultLifetime = 1800;
PreferedLifeTime = 3600;
ValidLifeTime = 7200;
}
sixxs {
ticserver = "tic.sixxs.net";
}
labconfig {
enable = no;
radv_GUA_disable = no;
radv_overwrite_liftimes = no;
radv_overwrite_prefered_lifetime = 1800;
radv_overwrite_valid_lifetime = 3600;
radv_overwrite_flags = no;
radv_set_mflag = no;
radv_set_oflag = yes;
dhcpv6wanmode = dhcpv6wanmode_statefull;
}
}
dhcpserver {
saveinterval = 1h;
generic {
default_lease_time = 10d;
max_lease_time = 13d;
}
}
dhcpclient {
metric = 9;
}
dnsserver {
cache_maxKB = 16;
negative_ttl = 5m;
}
ddns {
accounts {
enabled = no;
domain = "";
iface = 0;
username = "";
passwd = "o";
}
types {
type = "dyndns";
url = "/nic/update?system=dyndns&hostname=<domain>&myip=<ipaddr>&wildcard=NOCHG";
} {
type = "dyndns-custom";
url = "/nic/update?system=custom&hostname=<domain>&myip=<ipaddr>&wildcard=NOCHG";
} {
type = "dyndns-statdns";
url = "/nic/update?system=statdns&hostname=<domain>&myip=<ipaddr>&wildcard=NOCHG";
} {
type = "noip";
url = "/ducupdate.php?update=<b64>username=<username>&pass=<pass>&h[]=<domain>&ip=<ipaddr></b64>";
} {
type = "2mydns";
url = "/dyn.asp?username=<username>&password=<pass>&hostname=<domain>&myip=<ipaddr>";
} {
type = "dns4biz";
url = "/nic/update?hostname=<domain>&myip=<ipaddr>";
} {
type = "selfhost";
url = "/nic/update?myip=<ipaddr>&host=<domain>&textmodi=1&http_status=1";
} {
type = "strato";
url = "/nic/update?hostname=<domain>";
} {
type = "TZO";
url = "/webclient/tzoperl.html?TZOName=<domain>&Email=<username>&TZOKey=<pass>&IPAddress=<ipaddr>&system=tzodns&info=1";
} {
type = "namemaster";
url = "/dyn.php?username=<username>&password=<pass>&hostname=<domain>";
} {
type = "userdefined";
url = "";
}
provider {
name = "dyndns.org";
type = "dyndns";
livedelay = 0w;
touchtime = 30d;
server = "members.dyndns.org";
infourl = "http://www.dyndns.org/";
} {
name = "dyndns.org-custom";
type = "dyndns-custom";
livedelay = 0w;
touchtime = 30d;
server = "members.dyndns.org";
infourl = "http://www.dyndns.org/";
} {
name = "dyndns.org-statdns";
type = "dyndns-statdns";
livedelay = 0w;
touchtime = 30d;
server = "members.dyndns.org";
infourl = "http://www.dyndns.org/";
} {
name = "No-IP.com";
type = "noip";
livedelay = 4m;
touchtime = 0w;
server = "dynupdate.no-ip.com:8245";
infourl = "http://www.no-ip.com/";
} {
name = "2myDNS";
type = "2mydns";
livedelay = 0w;
touchtime = 0w;
server = "dyn.2mydns.com";
infourl = "http://www.2mydns.com/";
} {
name = "DNS4BIZ.DE Premium";
type = "dns4biz";
livedelay = 0w;
touchtime = 0w;
server = "au-eu.dns4biz.net";
infourl = "http://www.dns4biz.com/services_avm.php3";
} {
name = "DNS4BIZ.DE Business";
type = "dns4biz";
livedelay = 0w;
touchtime = 0w;
server = "au-eu.dns4biz.biz";
infourl = "http://www.dns4biz.com/services_avm.php3";
} {
name = "selfhost.de";
type = "selfhost";
livedelay = 0w;
touchtime = 0w;
server = "carol.selfhost.de";
infourl = "http://www.selfhost.de";
} {
name = "STRATO AG";
type = "strato";
livedelay = 4m;
touchtime = 0w;
server = "dyndns.strato.com";
infourl = "http://www.strato.de/webhosting/index.html";
} {
name = "TZO.com";
type = "TZO";
livedelay = 0w;
touchtime = 0w;
server = "rh.tzo.com";
infourl = "http://www.tzo.com";
} {
name = "namemaster.de";
type = "namemaster";
livedelay = 0w;
touchtime = 0w;
server = "dynup.de";
infourl = "http://www.namemaster.de";
} {
name = "Benutzerdefiniert";
type = "userdefined";
livedelay = 4m;
touchtime = 0w;
server = "";
infourl = "http://";
}
}
webui {
username = "";
password = "";
expertmode = yes;
wizard_completed = no;
event_filter = 0;
read_access_without_login = no;
}
fminiframework {
enabled = no;
converted = yes;
}
capiovertcp {
enabled = no;
maxctrl = 1;
port = 5031;
}
emailnotify {
enabled = no;
interval = daily;
From = "";
To = "";
SMTPServer = "";
accountname = "";
passwd = "";
show_eventlist = yes;
show_voipstat = yes;
show_kidsstat = yes;
show_onlinecntstat = yes;
show_fonstat = yes;
starttls = yes;
dsl_pushmail_mode = 0;
}
night_time_control {
enabled = no;
time_on = "";
time_off = "";
ring_blocked = no;
}
ntpclient {
server_list = "0.europe.pool.ntp.org";
}
led {
infoled_reason = 0;
}
timezone_manual {
enabled = no;
offset = 0;
dst_enabled = no;
TZ_string = "";
name = "";
}
mrouter {
igmp_version_for_upstream = 3;
igmp_version_for_other = 3;
igmp_prio = 48;
}
rip {
}
cpu_schedule {
dsl_token = 5000;
lan_token = 20000;
}
TR_064 {
enabled = yes;
username = "dslf-config";
persistent_data = "";
}
landevices {
}
prios {
profiles {
name = "profile_http";
rules = "TCP 80 0 0 0";
} {
name = "profile_ftp";
rules = "TCP 20 21 0 0";
} {
name = "profile_emule";
rules = "TCP 0 0 4662 0", "UDP 0 0 4672 0";
} {
name = "profile_torrent";
rules = "TCP 0 0 6881 6999";
} {
name = "profile_rdp";
rules = "TCP 3389 0 0 0";
} {
name = "profile_ssh";
rules = "TCP 0 0 22 0";
} {
name = "profile_telnet";
rules = "TCP 0 0 23 0";
}
}
nqos {
version = 3;
macaddr_whitelist_enabled = no;
bridge_with_switch_separation = yes;
defaultresult {
tos = -1;
vlan_prio = -1;
queueref = "default";
}
appls {
enabled = yes;
name = "sip-appl";
protocol = qos_classifier_appl_sip;
result {
tos = -1;
vlan_prio = -1;
queueref = "hrealtime";
}
}
classifiers {
enabled = yes;
name = "clfy_voip";
type = qos_cfg_internal;
iface = qos_local;
rule = "localmark sip";
result {
tos = -1;
vlan_prio = -1;
queueref = "hrealtime";
}
} {
enabled = yes;
name = "clfy_voip";
type = qos_cfg_internal;
iface = qos_local;
rule = "localmark rtp";
result {
tos = -1;
vlan_prio = -1;
queueref = "hrealtime";
}
} {
enabled = yes;
name = "tr069";
type = qos_cfg_hidden;
iface = qos_local;
rule = "localmark sipdns,ntpdns,tr069dns,tr069";
result {
tos = -1;
vlan_prio = -1;
queueref = "hprio";
}
} {
enabled = yes;
name = "igmp";
type = qos_cfg_hidden;
iface = qos_local;
rule = "localmark igmp";
result {
tos = -1;
vlan_prio = -1;
queueref = "ifacectl";
}
} {
enabled = yes;
name = "webdav";
type = qos_cfg_hidden;
iface = qos_local;
rule = "localmark webdav";
result {
tos = -1;
vlan_prio = -1;
queueref = "low";
}
} {
enabled = yes;
name = "mstv";
type = qos_cfg_hidden;
iface = qos_lan;
rule = "udp.dport 43962,47806";
result {
tos = -1;
vlan_prio = -1;
queueref = "hprio";
}
} {
enabled = yes;
name = "icmp-v6";
type = qos_cfg_hidden;
iface = qos_lan;
rule = "ip.proto IPv6-ICMP";
result {
tos = -1;
vlan_prio = -1;
queueref = "hprio";
}
} {
enabled = yes;
name = "icmp";
type = qos_cfg_hidden;
iface = qos_lan;
rule = "ip.proto icmp";
result {
tos = -1;
vlan_prio = -1;
queueref = "hprio";
}
} {
enabled = yes;
name = "dns";
type = qos_cfg_hidden;
iface = qos_lan;
rule = "udp.dport 53";
result {
tos = -1;
vlan_prio = -1;
queueref = "hprio";
}
} {
enabled = yes;
name = "clfy_voip";
type = qos_cfg_internal;
iface = qos_lan;
rule = "udp.dport 5060";
result {
tos = -1;
vlan_prio = -1;
queueref = "hrealtime";
applref = "sip-appl";
}
} {
enabled = yes;
name = "clfy_fmedia";
type = qos_cfg_internal;
iface = qos_lan;
rule = "dhcpoption 12 FRITZ!Media* mediatab";
result {
tos = -1;
vlan_prio = -1;
queueref = "realtime";
}
} {
enabled = yes;
name = "clfy_fmedia";
type = qos_cfg_internal;
iface = qos_lan;
rule = "ethsrctab mediatab";
result {
tos = -1;
vlan_prio = -1;
queueref = "realtime";
}
} {
enabled = no;
name = "clfy_www";
type = qos_cfg_system;
iface = qos_lan;
rule = "ip.proto == tcp ip.len <= 64";
result {
tos = -1;
vlan_prio = -1;
queueref = "none";
}
} {
enabled = no;
name = "clfy_www";
type = qos_cfg_system;
iface = qos_lan;
rule = "tcp.dest 80,3128,8080 ip.len <= 800";
result {
tos = -1;
vlan_prio = -1;
queueref = "none";
}
}
queues {
enabled = yes;
with_sfq = no;
type = qos_cfg_system;
name = "ifacectl";
iface = qos_wan;
queue_type = queue_llq;
precedence = 0;
weight = 0;
shapingrate = 0;
shapingburst = 0;
allow_more = yes;
ceilrate = 0;
} {
enabled = yes;
with_sfq = no;
type = qos_cfg_system;
name = "hprio";
iface = qos_wan;
queue_type = queue_llq;
precedence = 10;
weight = 0;
shapingrate = 0;
shapingburst = 0;
allow_more = yes;
ceilrate = 0;
} {
enabled = yes;
with_sfq = no;
type = qos_cfg_system;
name = "hrealtime";
iface = qos_wan;
queue_type = queue_llq;
precedence = 20;
weight = 0;
shapingrate = 0;
shapingburst = 0;
allow_more = yes;
ceilrate = 0;
} {
enabled = yes;
with_sfq = yes;
type = qos_cfg_system;
name = "realtime";
iface = qos_wan;
queue_type = queue_llq;
precedence = 30;
weight = 0;
shapingrate = 0;
shapingburst = 0;
allow_more = yes;
ceilrate = 0;
} {
enabled = yes;
with_sfq = yes;
type = qos_cfg_system;
name = "important";
iface = qos_wan;
queue_type = queue_llq;
precedence = 100;
weight = 90;
shapingrate = 0;
shapingburst = 0;
allow_more = yes;
ceilrate = 0;
} {
enabled = yes;
with_sfq = yes;
type = qos_cfg_system;
name = "default";
iface = qos_wan;
queue_type = queue_llq;
precedence = 100;
weight = 10;
shapingrate = 0;
shapingburst = 0;
allow_more = yes;
ceilrate = 0;
} {
enabled = yes;
with_sfq = yes;
type = qos_cfg_system;
name = "low";
iface = qos_wan;
queue_type = queue_llq;
precedence = 200;
weight = 0;
shapingrate = 0;
shapingburst = 0;
allow_more = yes;
ceilrate = 0;
}
}
ethernet_eco {
eth0_mode = 2;
eth1_mode = 1;
eth2_mode = 1;
eth3_mode = 1;
}
unattended_update {
update_found = yes;
running_version = "29.04.76-4116";
no_update_found_time = "1970-01-01 01:00:00";
priority = 1;
check_intervall = 168;
}
avmlogd {
enabled = no;
}
provider_default {
}
// EOF
Zuletzt bearbeitet:
