Hello,
Ça y est je suis parqué depuis ce matin.
Ça faisait maintenant 4-5ans que je n'avais pas touché à ma config et j'avoue que de m'y remettre, ça pique un peu..
J'ai un ERL en v2.0.9 et voici ma config :
firewall {
all-ping enable
broadcast-ping disable
group {
network-group LAN_Networks {
description ""
network 192.168.0.0/24
network 192.168.1.0/24
}
}
ipv6-receive-redirects disable
ipv6-src-route disable
ip-src-route disable
log-martians enable
name WAN_IN {
default-action drop
description "WAN to internal"
rule 10 {
action drop
description "Drop everything new"
destination {
}
log disable
protocol all
source {
}
state {
established disable
invalid disable
new enable
related disable
}
}
rule 20 {
action accept
description "Allow established/related"
log disable
protocol all
state {
established enable
invalid disable
new disable
related enable
}
}
rule 30 {
action drop
description "Drop invalid state"
log disable
protocol all
state {
established disable
invalid enable
new disable
related disable
}
}
}
name WAN_LOCAL {
default-action drop
description "WAN to router"
rule 10 {
action accept
description "Allow established/related"
log disable
protocol all
state {
established enable
invalid disable
new disable
related enable
}
}
rule 30 {
action drop
description "Drop invalid state"
log disable
protocol all
state {
established disable
invalid enable
new disable
related disable
}
}
rule 40 {
action accept
description ike
destination {
port 500
}
log disable
protocol udp
}
rule 50 {
action accept
description esp
log disable
protocol esp
}
rule 60 {
action accept
description nat-t
destination {
port 4500
}
log disable
protocol udp
}
rule 70 {
action accept
description l2tp
destination {
port 1701
}
ipsec {
match-ipsec
}
log disable
protocol udp
}
}
receive-redirects disable
send-redirects enable
source-validation disable
syn-cookies enable
}
interfaces {
ethernet eth0 {
address 192.168.1.1/24
description LAN1
duplex auto
speed auto
}
ethernet eth1 {
address dhcp
description WAN
duplex auto
speed auto
vif 832 {
address dhcp
description "eth1.832 Internet"
dhcp-options {
client-option "send vendor-class-identifier "sagem";"
client-option "request subnet-mask, routers, domain-name-servers, domain-name, broadcast-address, dhcp-lease-time, dhcp-renewal-time, dhcp-rebinding-time, rfc3118-auth, domain-search;"
client-option "send rfc3118-auth xxxCHAINELONGUExxx;"
client-option "send user-class "\053FSVDSL_livebox.Internet.softathome.Livebox4";"
client-option "send dhcp-client-identifier 1:<<MAC_Livebox>>;"
default-route update
default-route-distance 50
global-option "option rfc3118-auth code 90 = string;"
name-server update
}
egress-qos "0:0 1:0 2:0 3:0 4:0 5:0 6:6 7:0"
firewall {
in {
name WAN_IN
}
local {
name WAN_LOCAL
}
}
}
}
ethernet eth2 {
address 192.168.0.1/24
description LAN2
duplex auto
speed auto
}
loopback lo {
}
}
Si quelqu'un peu me guider un peu sur comment résoudre ça ...