Bonjour, voici la configuration que j'utilise chez et qui fonctionne Internet + TV + Replay depuis la migration sur le VLAN100
Ma configuration est compliquée, j'ai tenté de nettoyer et d'enlever certaines choses, en cas de problème dites le...
Eth0 : LAN
Eth1 : ONT Bouygues
Eth2 : SFR FTTLA
Si vous n'avez que bouygues la configuration marche meme sans aucun FAI sur Eth2
Merci à tous les posts que j'ai pu lire ici et à leurs contributeurs sans qui cela n'aurait pas pu etre possible et bien sur à C0mm0n qui m'a fait acheter l'erl
N'oubliez pas de remplacer 7c:bb:8a:xx:xx:xx par l'addresse mac de votre Miami
set firewall all-ping enable
set system offload hwnat enable
set firewall broadcast-ping disable
set firewall group address-group IPTV-multicast address 224.0.0.0/4
set firewall group address-group IPTV-multicast description Multicast
set firewall ipv6-receive-redirects disable
set firewall ipv6-src-route disable
set firewall ip-src-route disable
set firewall log-martians enable
set firewall modify failover rule 1 action accept
set firewall modify failover rule 1 description 'Exclude LAN subnet'
set firewall modify failover rule 1 destination address 192.168.1.0/24
set firewall modify failover rule 10 action modify
set firewall modify failover rule 10 modify lb-group G
set firewall name WAN_IN default-action drop
set firewall name WAN_IN description 'WAN to internal'
set firewall name WAN_IN rule 10 action accept
set firewall name WAN_IN rule 10 description 'Allow established/related'
set firewall name WAN_IN rule 10 state established enable
set firewall name WAN_IN rule 10 state related enable
set firewall name WAN_IN rule 40 action drop
set firewall name WAN_IN rule 40 description 'Drop invalid state'
set firewall name WAN_IN rule 40 state invalid enable
set firewall name WAN_IN rule 41 action accept
set firewall name WAN_IN rule 41 description 'Allow Multicast'
set firewall name WAN_IN rule 41 destination group address-group IPTV-multicast
set firewall name WAN_IN rule 41 log disable
set firewall name WAN_IN rule 41 protocol all
set firewall name WAN_IN rule 41 source group
set firewall name WAN_IN rule 41 state established enable
set firewall name WAN_IN rule 41 state invalid enable
set firewall name WAN_IN rule 41 state new enable
set firewall name WAN_IN rule 41 state related enable
set firewall name WAN_LOCAL default-action drop
set firewall name WAN_LOCAL description 'WAN to router'
set firewall name WAN_LOCAL rule 10 action accept
set firewall name WAN_LOCAL rule 10 description 'Allow established/related'
set firewall name WAN_LOCAL rule 10 state established enable
set firewall name WAN_LOCAL rule 10 state related enable
set firewall name WAN_LOCAL rule 20 action drop
set firewall name WAN_LOCAL rule 20 description 'Drop invalid state'
set firewall name WAN_LOCAL rule 20 state invalid enable
set firewall name WAN_LOCAL rule 71 action accept
set firewall name WAN_LOCAL rule 71 description 'allow ping'
set firewall name WAN_LOCAL rule 71 log disable
set firewall name WAN_LOCAL rule 71 protocol icmp
set firewall name WAN_LOCAL rule 72 action accept
set firewall name WAN_LOCAL rule 72 description 'Allow Multicast'
set firewall name WAN_LOCAL rule 72 destination group address-group IPTV-multicast
set firewall name WAN_LOCAL rule 72 log disable
set firewall name WAN_LOCAL rule 72 protocol all
set firewall name WAN_LOCAL rule 72 source group
set firewall name WAN_LOCAL rule 72 state established enable
set firewall name WAN_LOCAL rule 72 state invalid enable
set firewall name WAN_LOCAL rule 72 state new enable
set firewall name WAN_LOCAL rule 72 state related enable
set firewall receive-redirects disable
set firewall send-redirects enable
set firewall source-validation disable
set firewall syn-cookies enable
set interfaces ethernet eth0 address 192.168.1.1/24
set interfaces ethernet eth0 description LAN
set interfaces ethernet eth0 duplex auto
set interfaces ethernet eth0 firewall in modify failover
set interfaces ethernet eth0 speed auto
set interfaces ethernet eth1 description Bouygues
set interfaces ethernet eth1 duplex auto
set interfaces ethernet eth1 speed auto
set interfaces ethernet eth1 vif 100 address dhcp
set interfaces ethernet eth1 vif 100 description Internet
set interfaces ethernet eth1 vif 100 dhcp-options client-option 'send vendor-class-identifier "BYTELIAD";'
set interfaces ethernet eth1 vif 100 dhcp-options default-route update
set interfaces ethernet eth1 vif 100 dhcp-options default-route-distance 210
set interfaces ethernet eth1 vif 100 dhcp-options name-server update
set interfaces ethernet eth1 vif 100 firewall in name WAN_IN
set interfaces ethernet eth1 vif 100 firewall local name WAN_LOCAL
set interfaces ethernet eth2 address dhcp
set interfaces ethernet eth2 description SFR
set interfaces ethernet eth2 duplex auto
set interfaces ethernet eth2 firewall in name WAN_IN
set interfaces ethernet eth2 firewall local name WAN_LOCAL
set interfaces ethernet eth2 speed auto
set interfaces ethernet eth3 duplex auto
set interfaces ethernet eth3 speed auto
set interfaces ethernet eth4 duplex auto
set interfaces ethernet eth4 speed auto
set interfaces loopback lo
set interfaces switch switch0 mtu 1500
set load-balance group G interface eth1.100
set load-balance group G interface eth2 failover-only
set load-balance group G lb-local enable
set load-balance group G lb-local-metric-change disable
set port-forward auto-firewall enable
set port-forward hairpin-nat enable
set port-forward lan-interface eth0
set port-forward rule 12 description rstp
set port-forward rule 12 forward-to address 192.168.1.2
set port-forward rule 12 forward-to port 20000-30000
set port-forward rule 12 original-port 20000-30000
set port-forward rule 12 protocol udp
set port-forward wan-interface eth1.100
set protocols igmp-proxy interface eth0 alt-subnet 0.0.0.0/0
set protocols igmp-proxy interface eth0 role downstream
set protocols igmp-proxy interface eth0 threshold 1
set protocols igmp-proxy interface eth1.100 alt-subnet 0.0.0.0/0
set protocols igmp-proxy interface eth1.100 role upstream
set protocols igmp-proxy interface eth1.100 threshold 1
set protocols igmp-proxy interface eth2 role downstream
set protocols igmp-proxy interface eth2 threshold 1
set protocols igmp-proxy interface switch0 alt-subnet 0.0.0.0/0
set protocols igmp-proxy interface switch0 role downstream
set protocols igmp-proxy interface switch0 threshold 1
set protocols static
set service dhcp-server disabled false
set service dhcp-server global-parameters 'option vivsi code 125 = string;'
set service dhcp-server hostfile-update disable
set service dhcp-server shared-network-name LAN authoritative enable
set service dhcp-server shared-network-name LAN subnet 192.168.1.0/24 default-router 192.168.1.1
set service dhcp-server shared-network-name LAN subnet 192.168.1.0/24 dns-server 1.1.1.1
set service dhcp-server shared-network-name LAN subnet 192.168.1.0/24 dns-server 192.168.1.1
set service dhcp-server shared-network-name LAN subnet 192.168.1.0/24 lease 86400
set service dhcp-server shared-network-name LAN subnet 192.168.1.0/24 start 192.168.1.3 stop 192.168.1.253
set service dhcp-server shared-network-name LAN subnet 192.168.1.0/24 static-mapping Miami ip-address 192.168.1.2
set service dhcp-server shared-network-name LAN subnet 192.168.1.0/24 static-mapping Miami mac-address '7c:bb:8a:xx:xx:xx'
set service dhcp-server shared-network-name LAN subnet 192.168.1.0/24 static-mapping Miami static-mapping-parameters 'option www-server 194.158.119.97;'
set service dhcp-server shared-network-name LAN subnet 192.168.1.0/24 static-mapping Miami static-mapping-parameters 'option ntp-servers 194.158.119.97;'
set service dhcp-server shared-network-name LAN subnet 192.168.1.0/24 static-mapping Miami static-mapping-parameters 'option domain-name-servers 194.158.122.10, 194.158.122.15;'
set service dhcp-server shared-network-name LAN subnet 192.168.1.0/24 static-mapping Miami static-mapping-parameters 'option vivsi "\x00\x00\x0d\xe9\x23\x06\x08\x54\x56\x57\x36\x32\x30\x2e\x49\x05\x0f\x31\x36\x31\x30\x32\x36\x34\x34\x39\x34\x31\x39\x31\x30\x30\x04\x06\x36\x34\x37\x43\x33\x34";'
set service dhcp-server shared-network-name LAN subnet 192.168.1.0/24 static-mapping Miami static-mapping-parameters 'option domain-name "lan";'
set service dhcp-server shared-network-name LAN subnet 192.168.1.0/24 static-mapping Miami static-mapping-parameters 'option dhcp-renewal-time 43200;'
set service dhcp-server shared-network-name LAN subnet 192.168.1.0/24 static-mapping Miami static-mapping-parameters 'option dhcp-rebinding-time 75600;'
set service dhcp-server static-arp disable
set service dhcp-server use-dnsmasq disable
set service dns forwarding cache-size 500
set service dns forwarding listen-on eth1.200
set service dns forwarding listen-on eth0
set service gui http-port 80
set service gui https-port 443
set service gui older-ciphers enable
set service nat rule 5000 description Masquerade
set service nat rule 5000 log disable
set service nat rule 5000 outbound-interface eth1.100
set service nat rule 5000 protocol all
set service nat rule 5000 type masquerade
set service nat rule 5001 description 'Masquerade SFR'
set service nat rule 5001 log disable
set service nat rule 5001 outbound-interface eth2
set service nat rule 5001 protocol all
set service nat rule 5001 type masquerade