Bon j'ai l'impression d'etre un peu seul au monde sur ce sujet mais c'est pas grave...
Pour info, c'est bon aussi chez moi, internet + TV. Quelques remarques qui peuvent aider :
- La partie Internet fonctionne nickel du premier coup, rien de particulier,
- Pour la partie TV, c'est plus compliqué :
- Le fait de lancer toutes les commandes du script sans commit a intervalle régulier ne marche clairement pas. Il faut donc faire des "commit" aprés chaque paragraphe je dirais,
- La configuration du nat 6020 posait probleme chez moi avec l'erreur précisée au dessus. Il faut peut etre faire un save / reboot avant de lancer les commandes pour la configuration du nat 6020 ou alors changer de port. J'ai utilisé le 6004 et ca fonctionne...
Ci-joint mon json épuré si ca peut en aider certains.
{
"interfaces": {
"ethernet": {
"eth0": {
"address": [
"dhcp"
],
"dhcp-options": {
"client-option": [
"retry 60;"
],
"default-route": "update",
"default-route-distance": "1",
"name-server": "update"
},
"duplex": "auto",
"firewall": {
"in": {
"name": "WAN_IN"
},
"local": {
"name": "WAN_LOCAL"
},
"out": {
"name": "WAN_OUT"
}
},
"speed": "auto",
"vif": {
"832": {
"address": [
"dhcp"
],
"dhcp-options": {
"client-option": [
"retry 60;",
"send vendor-class-identifier "sagem";",
"send user-class "\\053FSVDSL_livebox.Internet.softathome.Livebox4";",
"send rfc3118-auth 00:00:00:00:00:00:00:00:00:00:00:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX;",
"request subnet-mask, routers, domain-name-servers, domain-name, broadcast-address, dhcp-lease-time, dhcp-renewal-time, dhcp-rebinding-time, rfc3118-auth;"
],
"default-route": "update",
"default-route-distance": "1",
"name-server": "update"
},
"egress-qos": "0:0 1:0 2:0 3:0 4:0 5:0 6:6 7:0",
"firewall": {
"in": {
"name": "WAN_IN"
},
"local": {
"name": "WAN_LOCAL"
},
"out": {
"name": "WAN_OUT"
}
}
},
"838": {
"address": [
"dhcp"
],
"dhcp-options": {
"client-option": [
"send vendor-class-identifier "sagem";",
"send user-class "\\047FSVDSL_livebox.MLTV.softathome.Livebox4";",
"send dhcp-client-identifier 1:XX:XX:XX:XX:XX:XX;",
"send dhcp-client-identifier 1:XX:XX:XX:XX:XX:XX;",
"request subnet-mask, routers, rfc3442-classless-static-routes;"
],
"default-route": "no-update",
"default-route-distance": "210",
"name-server": "update"
},
"egress-qos": "0:4 1:4 2:4 3:4 4:4 5:4 6:4 7:4"
},
"840": {
"address": [
"192.168.255.254/24"
],
"egress-qos": "0:5 1:5 2:5 3:5 4:5 5:5 6:5 7:5"
}
}
}
}
},
"port-forward": {
"auto-firewall": "disable",
"hairpin-nat": "enable",
"lan-interface": [
"eth2",
"eth1"
],
"wan-interface": "eth0.832"
},
"protocols": {
"igmp-proxy": {
"disable-quickleave": "''",
"interface": {
"eth0": {
"role": "disabled",
"threshold": "1"
},
"eth0.832": {
"role": "disabled",
"threshold": "1"
},
"eth0.838": {
"role": "disabled",
"threshold": "1"
},
"eth0.840": {
"alt-subnet": [
"0.0.0.0/0"
],
"role": "upstream",
"threshold": "1"
},
"eth1": {
"role": "disabled",
"threshold": "1"
},
"eth2": {
"alt-subnet": [
"0.0.0.0/0"
],
"role": "downstream",
"threshold": "1"
}
}
}
},
"service": {
"dns": {
"forwarding": {
"cache-size": "10000",
"except-interface": [
"eth0.832"
],
}
},
"nat": {
"rule": {
"6001": {
"description": "MASQ corporate_network to WAN",
"log": "disable",
"outbound-interface": "eth0.832",
"protocol": "all",
"source": {
"group": {
"network-group": "corporate_network"
}
},
"type": "masquerade"
},
"6002": {
"description": "MASQ remote_user_vpn_network to WAN",
"log": "disable",
"outbound-interface": "eth0.832",
"protocol": "all",
"source": {
"group": {
"network-group": "remote_user_vpn_network"
}
},
"type": "masquerade"
},
"6003": {
"description": "MASQ guest_network to WAN",
"log": "disable",
"outbound-interface": "eth0.832",
"protocol": "all",
"source": {
"group": {
"network-group": "guest_network"
}
},
"type": "masquerade"
},
"6004": {
"description": "MASQ LiveboxTV to WAN",
"log": "disable",
"outbound-interface": "eth0.838",
"protocol": "all",
"source": {
"group": {
"network-group": "corporate_network"
}
},
"type": "masquerade"
}
}
}
}
}