! $$$ Model: ZyXEL Keenetic III ! $$$ Version: 2.06.1 ! $$$ Agent: http/ci ! $$$ Last change: Fri, 3 Feb 2017 15:28:00 GMT ! $$$ Md5 checksum: 2dcf2e395c86bde8fb94db2db19d2d28 system set net.ipv4.ip_forward 1 set net.ipv4.tcp_fin_timeout 30 set net.ipv4.tcp_keepalive_time 120 set net.ipv4.neigh.default.gc_thresh1 256 set net.ipv4.neigh.default.gc_thresh2 1024 set net.ipv4.neigh.default.gc_thresh3 2048 set net.ipv6.neigh.default.gc_thresh1 256 set net.ipv6.neigh.default.gc_thresh2 1024 set net.ipv6.neigh.default.gc_thresh3 2048 set net.netfilter.nf_conntrack_tcp_timeout_established 1200 set net.netfilter.nf_conntrack_max 16384 set vm.swappiness 60 set vm.overcommit_memory 0 set vm.vfs_cache_pressure 1000 set net.ipv6.conf.all.forwarding 1 clock timezone Europe/Moscow clock date 3 Feb 2017 18:28:03 domainname WORKGROUP hostname Keenetic ! ntp server 0.pool.ntp.org ntp server 1.pool.ntp.org ntp server 2.pool.ntp.org ntp server 3.pool.ntp.org access-list _WEBADMIN_ISP permit udp 212.53.40.0 255.255.255.0 0.0.0.0 0.0.0.0 port eq 6060 permit tcp 212.53.40.0 255.255.255.0 0.0.0.0 0.0.0.0 port eq 6063 permit tcp 212.53.40.0 255.255.255.0 0.0.0.0 0.0.0.0 port eq 6065 permit udp 80.75.132.0 255.255.255.0 0.0.0.0 0.0.0.0 port eq 6060 permit tcp 80.75.132.0 255.255.255.0 0.0.0.0 0.0.0.0 port eq 6063 permit udp 193.201.229.0 255.255.255.0 0.0.0.0 0.0.0.0 port eq 6060 permit tcp 193.201.229.0 255.255.255.0 0.0.0.0 0.0.0.0 port eq 6063 deny udp 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 port eq 6060 deny tcp 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 port eq 6063 deny tcp 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 port eq 6065 deny tcp 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 port eq 21 ! isolate-private user admin password md5 eb7d666553679c1cc41e3f84a728b781 password nt 7ce21f17c0aee7fb9ceba532d0546ad6 tag cli tag http tag ftp tag cifs tag printers tag opt tag torrent ! dyndns profile _WEBADMIN ! interface FastEthernet0 up ! interface FastEthernet0/1 rename 1 switchport mode access switchport access vlan 1 up ! interface FastEthernet0/2 rename 2 switchport mode access switchport access vlan 1 up ! interface FastEthernet0/3 rename 3 switchport mode access switchport access vlan 1 up ! interface FastEthernet0/4 rename 4 switchport mode access switchport access vlan 1 up ! interface FastEthernet0/Vlan1 description "Home VLAN" security-level private ip dhcp client dns-routes ip dhcp client name-servers up ! interface FastEthernet0/Vlan2 rename ISP description "Broadband connection" mac address 54:ee:75:27:36:af mac address factory wan security-level public ip address dhcp ip dhcp client hostname Keenetic ip dhcp client dns-routes ip dhcp client name-servers ip mtu 1500 ip access-group _WEBADMIN_ISP in ip global 700 igmp upstream ipv6 address auto ipv6 prefix auto ipv6 name-servers auto up ! interface FastEthernet0/0 rename 0 role inet for ISP switchport mode access switchport access vlan 2 up ! interface FastEthernet0/Vlan3 description "Guest VLAN" security-level private ip dhcp client dns-routes ip dhcp client name-servers up ! interface WifiMaster0 country-code RU compatibility BGN up ! interface WifiMaster0/AccessPoint0 rename AccessPoint description "Wi-Fi access point" mac access-list type none security-level private wps authentication wpa-psk ns3 jKuPH5mnBz35SQ6V+reKQfMb encryption enable encryption wpa2 ip dhcp client dns-routes ip dhcp client name-servers ssid Keenetic-5227 wmm up ! interface WifiMaster0/AccessPoint1 rename GuestWiFi description "Guest access point" mac access-list type none security-level private ip dhcp client dns-routes ip dhcp client name-servers ssid Guest wmm down ! interface WifiMaster0/AccessPoint2 mac access-list type none security-level private ip dhcp client dns-routes ip dhcp client name-servers down ! interface WifiMaster0/AccessPoint3 mac access-list type none security-level private ip dhcp client dns-routes ip dhcp client name-servers down ! interface WifiMaster0/WifiStation0 security-level public encryption disable ip address dhcp ip dhcp client dns-routes ip dhcp client name-servers down ! interface UsbDsl0 description "Keenetic Plus DSL" security-level public ip dhcp client dns-routes ip dhcp client name-servers operating-mode adsl2+ annex a vdsl profile 8a vdsl profile 8b vdsl profile 8c vdsl profile 8d vdsl profile 12a vdsl profile 12b vdsl profile 17a vdsl profile 30a vdsl psdmask A_R_POTS_D-32_EU-32 up ! interface Bridge0 rename Home description "Home network" inherit FastEthernet0/Vlan1 include AccessPoint security-level private ip address 192.168.1.1 255.255.255.0 ip dhcp client dns-routes ip dhcp client name-servers igmp downstream up ! interface Bridge1 rename Guest description "Guest network" traffic-shape rate 5120 inherit FastEthernet0/Vlan3 include GuestWiFi security-level protected ip address 10.1.30.1 255.255.255.0 ip dhcp client dns-routes ip dhcp client name-servers up ! ip dhcp pool _WEBADMIN range 192.168.1.33 192.168.1.72 lease 25200 bind Home enable ! ip dhcp pool _WEBADMIN_GUEST_AP range 10.1.30.33 10.1.30.52 bind Guest enable ! ip http security-level private ip http lockout-policy 5 15 3 ip nat Home ip nat Guest ip nat vpn ip telnet security-level private lockout-policy 5 15 3 ! ip ftp security-level private ! ipv6 subnet Default bind Home number 0 mode slaac ! ipv6 firewall ppe software ppe hardware upnp lan Home torrent rpc-port 8090 peer-port 51413 ! crypto engine software crypto ipsec mtu auto voip param authpass0 ns3 owTwWG/bxVeYBTUzKu/flAiE param lineenable0 1 param uname00 1000 param dname00 1000 param sipluport0 5060 param p2pm0 0 param prefixenb0 0 param prefixrules0 (>810)x. param authname0 1000 param sipregis0 192.168.1.1 param sipregisport0 6060 param sipproxy0 192.168.1.1 param sipproxyport0 6060 param sipdomain0 "" param siprealm0 192.168.1.1 param sipbkregis0 "" param sipbkregisport0 5060 param sipbkproxy0 "" param sipbkproxyport0 5060 param sipbkdomain0 "" param sipbkrealm0 "" param mwienb0 1 param subsuri0 sip:1000@192.168.1.1 param prate0 20 param pratecn0 20 param t38m0 1 param faxcngdctenable0 1 param tdtmfr 101 param prackm 0 param uaname "Keenetic III v2.08(AAUU.0)B0" param regtime 600 param regretry 30 param rtpportmin 10000 param rtpportmax 10020 param fastdial 1 param subsm 1 param bkserverm 0 param stunm 0 param useob 0 param HeartBeatSwitch 0 param siptos 32 param rtptos 40 param rtcptos 32 param sessiontimer 0 param digitmapsm 0 param digitmaps x.T|0xx|8xxxxxxxxxx.|[*#]xx[*#]x.|[*#]x. param startDigitTimer 10 param InterDigitTimerShort 5 param InterDigitTimerLong 10 param gaintx0 0 param gainrx0 0 param ecenable 1 param hookfmin0 90 param hookfmax0 2000 param hookrmin0 2000 param cidfmt us param BusyToneTimer 60 param NoAnswerTimer 120 param RingingTimer 120 param HangingReminderToneTimer 60 param subtime 90 param nocidm 1 param cnocid *62 param rdialsm 1 param rdials *51 param cretsm 1 param crets *52 param icdnd0 0 param cfm0 0 param cfduri0 "" param cwenable0 1 param warmm0 1 param warmuri0 sip:9000@192.168.1.1:6060 param warmt0 7 coder g711u line 0 priority 0 coder g711u line 0 priority 1 coder g711u line 0 priority 2 dials line 0 index 2 sip: dials line 0 index 3 sip: dials line 0 index 4 sip: dials line 0 index 5 sip: dials line 0 index 6 sip: dials line 0 index 7 sip: dials line 0 index 8 sip: dials line 0 index 9 sip: interface Home ! vpn-server multi-login lcp echo 30 3 ! service dhcp service dns-proxy service igmp-proxy service http service cifs service telnet service ntp-client service upnp cifs share DATA CE747C0C747BF595: share entware-kg3 27852559-3c46-4581-92c3-0f2723269c29: share entware-k3 8e7cc1d2-6373-4eaf-bb3b-e05acf9384c2: share ent-kvox dcfff4b3-c94f-d201-5079-f4b3c94fd201: share entware-ext2 entware-ext2:/ share ast11-ext2 fe3f135d-2e7e-d201-f01f-125d2e7ed201: automount permissive ! dlna interface Home ! monitor capture interface Home direction in-out promisc-mode timeout 1000 buffer-size 3000 max-frame-size 1518 capture-size 3000 ! ! ! !