Все сервисы Хабра
Сообщество IT-специалистов
Ответы на любые вопросы об IT
Профессиональное развитие в IT
Закрыть
Задать вопрос
Евгений Твердый
8
вклад
5
вопросов
16
ответов
13%
решений
Комментарии
Информация
Ответы
Вопросы
Комментарии
Подписки
Нравится
Не работают устройства, на которых ip выставлен статическим?
Евгений Твердый
@etverdiy
Автор вопроса
# dec/24/2015 19:03:06 by RouterOS 6.33.3
# software id = 34NW-X144
#
/interface bridge
add name=bridge1
/interface wireless
# managed by CAPsMAN
# channel: 2447/20-Ce/gn(20dBm), SSID: KV-15, CAPsMAN forwarding
set [ find default-name=wlan1 ] name=wlan2
/interface ethernet
set [ find default-name=ether1 ] mac-address=E4:8D:8C:81:3F:C1
set [ find default-name=ether2 ] mac-address=E4:8D:8C:81:3F:C2
set [ find default-name=ether3 ] mac-address=E4:8D:8C:81:3F:C3
set [ find default-name=ether4 ] mac-address=E4:8D:8C:81:3F:C4
set [ find default-name=ether5 ] mac-address=E4:8D:8C:81:3F:C5
set [ find default-name=ether6 ] mac-address=E4:8D:8C:81:3F:C6
set [ find default-name=ether7 ] mac-address=E4:8D:8C:81:3F:C7
set [ find default-name=ether8 ] mac-address=E4:8D:8C:81:3F:C8
set [ find default-name=sfp1 ] mac-address=E4:8D:8C:81:3F:C9
/caps-man security
add authentication-types=wpa2-psk encryption=aes-ccm,tkip \
group-encryption=aes-ccm name=sec passphrase=XXXXXX
/caps-man configuration
add country=russia datapath.bridge=bridge1 mode=ap name=cfg1 \
security=sec ssid=KV-15
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa-psk,wpa2-psk \
mode=dynamic-keys supplicant-identity=MikroTik \
wpa-pre-shared-key=XXXXXX wpa2-pre-shared-key=XXXXXXX
/ip pool
add name=dhcp ranges=192.168.1.3-192.168.1.254
/ip dhcp-server
add address-pool=dhcp disabled=no interface=bridge1 name=dhcp1
/caps-man manager
set enabled=yes
/caps-man provisioning
add action=create-dynamic-enabled master-configuration=cfg1
/interface bridge port
add bridge=bridge1 interface=ether2
add bridge=bridge1 interface=ether3
add bridge=bridge1 interface=ether4
add bridge=bridge1 interface=ether5
add bridge=bridge1 interface=ether6
add bridge=bridge1 interface=ether7
add bridge=bridge1 interface=ether8
add bridge=bridge1 disabled=yes
add bridge=bridge1 interface=sfp1
/interface wireless cap
set caps-man-addresses=192.168.1.1 enabled=yes interfaces=wlan2
/ip address
add address=192.168.1.1/24 interface=bridge1 network=192.168.1.0
/ip dhcp-client
add dhcp-options=hostname,clientid disabled=no interface=ether1
/ip dhcp-server lease
add address=192.168.1.168 mac-address=00:04:A3:81:72:1C
/ip dhcp-server network
add address=192.168.1.0/24 gateway=192.168.1.1 netmask=24
/ip firewall nat
add action=masquerade chain=srcnat out-interface=ether1
/lcd interface pages
set 0 interfaces=*1
/system clock
set time-zone-name=Europe/Moscow
/system identity
set name=Manager
Написано
более трёх лет назад
Не работают устройства, на которых ip выставлен статическим?
Евгений Твердый
@etverdiy
Автор вопроса
# dec/24/2015 17:55:33 by RouterOS 6.33.3
# software id = 34NW-X144
#
/interface bridge
add admin-mac=00:00:00:00:00:00 ageing-time=5m arp=enabled auto-mac=yes \
disabled=no forward-delay=15s max-message-age=20s mtu=auto name=bridge1 \
priority=0x8000 protocol-mode=rstp transmit-hold-count=6
/interface ethernet
set [ find default-name=ether1 ] advertise=\
10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full arp=enabled \
auto-negotiation=yes bandwidth=unlimited/unlimited disabled=no \
full-duplex=yes l2mtu=1588 mac-address=E4:8D:8C:81:3F:C1 master-port=none \
mtu=1500 name=ether1 orig-mac-address=4C:5E:0C:A5:D2:03 rx-flow-control=\
off speed=100Mbps tx-flow-control=off
set [ find default-name=ether2 ] advertise=\
10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full arp=enabled \
auto-negotiation=yes bandwidth=unlimited/unlimited disabled=no \
full-duplex=yes l2mtu=1588 mac-address=E4:8D:8C:81:3F:C2 master-port=none \
mtu=1500 name=ether2 orig-mac-address=4C:5E:0C:A5:D2:04 rx-flow-control=\
off speed=100Mbps tx-flow-control=off
set [ find default-name=ether3 ] advertise=\
10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full arp=enabled \
auto-negotiation=yes bandwidth=unlimited/unlimited disabled=no \
full-duplex=yes l2mtu=1588 mac-address=E4:8D:8C:81:3F:C3 master-port=none \
mtu=1500 name=ether3 orig-mac-address=4C:5E:0C:A5:D2:05 rx-flow-control=\
off speed=100Mbps tx-flow-control=off
set [ find default-name=ether4 ] advertise=\
10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full arp=enabled \
auto-negotiation=yes bandwidth=unlimited/unlimited disabled=no \
full-duplex=yes l2mtu=1588 mac-address=E4:8D:8C:81:3F:C4 master-port=none \
mtu=1500 name=ether4 orig-mac-address=4C:5E:0C:A5:D2:06 rx-flow-control=\
off speed=100Mbps tx-flow-control=off
set [ find default-name=ether5 ] advertise=\
10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full arp=enabled \
auto-negotiation=yes bandwidth=unlimited/unlimited disabled=no \
full-duplex=yes l2mtu=1588 mac-address=E4:8D:8C:81:3F:C5 master-port=none \
mtu=1500 name=ether5 orig-mac-address=4C:5E:0C:A5:D2:07 rx-flow-control=\
off speed=100Mbps tx-flow-control=off
set [ find default-name=ether6 ] advertise=\
10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full arp=enabled \
auto-negotiation=yes bandwidth=unlimited/unlimited disabled=no \
full-duplex=yes l2mtu=1588 mac-address=E4:8D:8C:81:3F:C6 master-port=none \
mtu=1500 name=ether6 orig-mac-address=4C:5E:0C:A5:D2:08 rx-flow-control=\
off speed=100Mbps tx-flow-control=off
set [ find default-name=ether7 ] advertise=\
10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full arp=enabled \
auto-negotiation=yes bandwidth=unlimited/unlimited disabled=no \
full-duplex=yes l2mtu=1588 mac-address=E4:8D:8C:81:3F:C7 master-port=none \
mtu=1500 name=ether7 orig-mac-address=4C:5E:0C:A5:D2:09 rx-flow-control=\
off speed=100Mbps tx-flow-control=off
set [ find default-name=ether8 ] advertise=\
10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full arp=enabled \
auto-negotiation=yes bandwidth=unlimited/unlimited disabled=no \
full-duplex=yes l2mtu=1588 mac-address=E4:8D:8C:81:3F:C8 master-port=none \
mtu=1500 name=ether8 orig-mac-address=4C:5E:0C:A5:D2:0A rx-flow-control=\
off speed=100Mbps tx-flow-control=off
set [ find default-name=sfp1 ] advertise=\
10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full arp=enabled \
auto-negotiation=yes bandwidth=unlimited/unlimited disabled=no \
full-duplex=yes l2mtu=1588 mac-address=E4:8D:8C:81:3F:C9 master-port=none \
mtu=1500 name=sfp1 orig-mac-address=4C:5E:0C:A5:D2:0B rx-flow-control=off \
sfp-rate-select=high speed=1Gbps tx-flow-control=off
/ip neighbor discovery
set ether1 discover=yes
set ether2 discover=yes
set ether3 discover=yes
set ether4 discover=yes
set ether5 discover=yes
set ether6 discover=yes
set ether7 discover=yes
set ether8 discover=yes
set sfp1 discover=yes
set bridge1 discover=yes
/caps-man security
add authentication-types=wpa2-psk encryption=aes-ccm,tkip group-encryption=\
aes-ccm name=sec
/caps-man configuration
add country=russia datapath.bridge=bridge1 mode=ap name=cfg1 security=sec \
ssid=KV-15
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa-psk,wpa2-psk eap-methods=\
passthrough group-ciphers=aes-ccm group-key-update=5m interim-update=0s \
management-protection=disabled mode=dynamic-keys mschapv2-username="" \
name=default radius-eap-accounting=no radius-mac-accounting=no \
radius-mac-authentication=no radius-mac-caching=disabled \
radius-mac-format=XX:XX:XX:XX:XX:XX radius-mac-mode=as-username \
static-algo-0=none static-algo-1=none static-algo-2=none static-algo-3=\
none static-sta-private-algo=none static-transmit-key=key-0 \
supplicant-identity=MikroTik tls-certificate=none tls-mode=\
no-certificates unicast-ciphers=aes-ccm
/interface wireless
# managed by CAPsMAN
# channel: 2442/20-Ce/gn(20dBm), SSID: KV-15, CAPsMAN forwarding
set [ find default-name=wlan1 ] adaptive-noise-immunity=none allow-sharedkey=\
no ampdu-priorities=0 amsdu-limit=8192 amsdu-threshold=8192 antenna-gain=\
0 area="" arp=enabled band=2ghz-b/g basic-rates-a/g=6Mbps basic-rates-b=\
1Mbps bridge-mode=enabled channel-width=20mhz compression=no country=\
no_country_set default-ap-tx-limit=0 default-authentication=yes \
default-client-tx-limit=0 default-forwarding=yes dfs-mode=none \
disable-running-check=no disabled=yes disconnect-timeout=3s distance=\
dynamic frame-lifetime=0 frequency=2412 frequency-mode=manual-txpower \
frequency-offset=0 guard-interval=any hide-ssid=no ht-basic-mcs=\
mcs-0,mcs-1,mcs-2,mcs-3,mcs-4,mcs-5,mcs-6,mcs-7 ht-supported-mcs="mcs-0,mc\
s-1,mcs-2,mcs-3,mcs-4,mcs-5,mcs-6,mcs-7,mcs-8,mcs-9,mcs-10,mcs-11,mcs-12,m\
cs-13,mcs-14,mcs-15,mcs-16,mcs-17,mcs-18,mcs-19,mcs-20,mcs-21,mcs-22,mcs-2\
3" hw-fragmentation-threshold=disabled hw-protection-mode=none \
hw-protection-threshold=0 hw-retries=7 interworking-profile=disabled \
keepalive-frames=enabled mac-address=4C:5E:0C:A5:D2:0C max-station-count=\
2007 mode=station mtu=1500 multicast-buffering=enabled multicast-helper=\
default name=wlan2 noise-floor-threshold=default nv2-cell-radius=30 \
nv2-noise-floor-offset=default nv2-qos=default nv2-queue-count=2 \
nv2-security=disabled on-fail-retry-time=100ms preamble-mode=both \
proprietary-extensions=post-2.9.25 radio-name=4C5E0CA5D20C \
rate-selection=advanced rate-set=default rx-chains=0,1 scan-list=default \
security-profile=default ssid=Manager station-bridge-clone-mac=\
00:00:00:00:00:00 supported-rates-a/g=\
6Mbps,9Mbps,12Mbps,18Mbps,24Mbps,36Mbps,48Mbps,54Mbps supported-rates-b=\
1Mbps,2Mbps,5.5Mbps,11Mbps tdma-period-size=2 tx-chains=0,1 \
tx-power-mode=default update-stats-interval=disabled vlan-id=1 vlan-mode=\
no-tag wds-cost-range=50-150 wds-default-bridge=none wds-default-cost=100 \
wds-ignore-ssid=no wds-mode=disabled wireless-protocol=any wmm-support=\
disabled
/interface wireless manual-tx-power-table
# managed by CAPsMAN
# channel: 2442/20-Ce/gn(20dBm), SSID: KV-15, CAPsMAN forwarding
set wlan2 manual-tx-powers="1Mbps:17,2Mbps:17,5.5Mbps:17,11Mbps:17,6Mbps:17,9M\
bps:17,12Mbps:17,18Mbps:17,24Mbps:17,36Mbps:17,48Mbps:17,54Mbps:17,HT20-0:\
17,HT20-1:17,HT20-2:17,HT20-3:17,HT20-4:17,HT20-5:17,HT20-6:17,HT20-7:17,H\
T40-0:17,HT40-1:17,HT40-2:17,HT40-3:17,HT40-4:17,HT40-5:17,HT40-6:17,HT40-\
7:17"
/interface wireless nstreme
# managed by CAPsMAN
# channel: 2442/20-Ce/gn(20dBm), SSID: KV-15, CAPsMAN forwarding
set wlan2 disable-csma=no enable-nstreme=no enable-polling=yes framer-limit=\
3200 framer-policy=none
/ip neighbor discovery
# managed by CAPsMAN
# channel: 2442/20-Ce/gn(20dBm), SSID: KV-15, CAPsMAN forwarding
set wlan2 discover=yes
/ip dhcp-client option
set clientid code=61 name=clientid value="0x01\$(CLIENT_MAC)"
set hostname code=12 name=hostname value="\$(HOSTNAME)"
/ip hotspot profile
set [ find default=yes ] dns-name="" hotspot-address=0.0.0.0 html-directory=\
hotspot http-cookie-lifetime=3d http-proxy=0.0.0.0:0 login-by=\
cookie,http-chap name=default rate-limit="" smtp-server=0.0.0.0 \
split-user-domain=no use-radius=no
/ip hotspot user profile
set [ find default=yes ] add-mac-cookie=yes address-list="" idle-timeout=none \
!insert-queue-before keepalive-timeout=2m mac-cookie-timeout=3d name=\
default !parent-queue !queue-type shared-users=1 status-autorefresh=1m \
transparent-proxy=no
/ip ipsec mode-config
set (unknown) name=request-only send-dns=yes
/ip ipsec policy group
set default name=default
/ip ipsec proposal
set [ find default=yes ] auth-algorithms=sha1 disabled=no enc-algorithms=\
aes-128-cbc,aes-192-cbc,aes-256-cbc lifetime=30m name=default pfs-group=\
modp1024
/ip pool
add name=dhcp ranges=192.168.1.3-192.168.1.254
/ip dhcp-server
add address-pool=dhcp authoritative=after-2sec-delay bootp-support=static \
disabled=no interface=bridge1 lease-script="" lease-time=10m name=dhcp1
/port
set 0 baud-rate=auto data-bits=8 flow-control=none name=serial0 parity=none \
stop-bits=1
/ppp profile
set *0 address-list="" !bridge !bridge-path-cost !bridge-port-priority \
change-tcp-mss=yes !dns-server !idle-timeout !incoming-filter \
!insert-queue-before !local-address name=default on-down="" on-up="" \
only-one=default !outgoing-filter !parent-queue !queue-type !rate-limit \
!remote-address !session-timeout use-compression=default use-encryption=\
default use-mpls=default use-upnp=default !wins-server
set *FFFFFFFE address-list="" !bridge !bridge-path-cost !bridge-port-priority \
change-tcp-mss=yes !dns-server !idle-timeout !incoming-filter \
!insert-queue-before !local-address name=default-encryption on-down="" \
on-up="" only-one=default !outgoing-filter !parent-queue !queue-type \
!rate-limit !remote-address !session-timeout use-compression=default \
use-encryption=yes use-mpls=default use-upnp=default !wins-server
/queue type
set 0 kind=pfifo name=default pfifo-limit=50
set 1 kind=pfifo name=ethernet-default pfifo-limit=50
set 2 kind=sfq name=wireless-default sfq-allot=1514 sfq-perturb=5
set 3 kind=red name=synchronous-default red-avg-packet=1000 red-burst=20 \
red-limit=60 red-max-threshold=50 red-min-threshold=10
set 4 kind=sfq name=hotspot-default sfq-allot=1514 sfq-perturb=5
set 5 kind=pcq name=pcq-upload-default pcq-burst-rate=0 pcq-burst-threshold=0 \
pcq-burst-time=10s pcq-classifier=src-address pcq-dst-address-mask=32 \
pcq-dst-address6-mask=128 pcq-limit=50KiB pcq-rate=0 \
pcq-src-address-mask=32 pcq-src-address6-mask=128 pcq-total-limit=2000KiB
set 6 kind=pcq name=pcq-download-default pcq-burst-rate=0 \
pcq-burst-threshold=0 pcq-burst-time=10s pcq-classifier=dst-address \
pcq-dst-address-mask=32 pcq-dst-address6-mask=128 pcq-limit=50KiB \
pcq-rate=0 pcq-src-address-mask=32 pcq-src-address6-mask=128 \
pcq-total-limit=2000KiB
set 7 kind=none name=only-hardware-queue
set 8 kind=mq-pfifo mq-pfifo-limit=50 name=multi-queue-ethernet-default
set 9 kind=pfifo name=default-small pfifo-limit=10
/routing bgp instance
set default as=65530 client-to-client-reflection=yes !cluster-id \
!confederation disabled=no ignore-as-path-len=no name=default out-filter=\
"" redistribute-connected=no redistribute-ospf=no redistribute-other-bgp=\
no redistribute-rip=no redistribute-static=no router-id=0.0.0.0 \
routing-table=""
/routing ospf instance
set [ find default=yes ] disabled=no distribute-default=never !domain-id \
!domain-tag in-filter=ospf-in metric-bgp=auto metric-connected=20 \
metric-default=1 metric-other-ospf=auto metric-rip=20 metric-static=20 \
!mpls-te-area !mpls-te-router-id name=default out-filter=ospf-out \
redistribute-bgp=no redistribute-connected=no redistribute-other-ospf=no \
redistribute-rip=no redistribute-static=no router-id=0.0.0.0 \
!routing-table !use-dn
/routing ospf area
set [ find default=yes ] area-id=0.0.0.0 disabled=no instance=default name=\
backbone type=default
/snmp community
set [ find default=yes ] addresses=0.0.0.0/0 authentication-protocol=MD5 \
encryption-protocol=DES name=public read-access=yes security=none \
write-access=no
/system logging action
set 0 memory-lines=1000 memory-stop-on-full=no name=memory target=memory
set 1 disk-file-count=2 disk-file-name=log disk-lines-per-file=1000 \
disk-stop-on-full=no name=disk target=disk
set 2 name=echo remember=yes target=echo
set 3 bsd-syslog=no name=remote remote=0.0.0.0 remote-port=514 src-address=\
0.0.0.0 syslog-facility=daemon syslog-severity=auto syslog-time-format=\
bsd-syslog target=remote
/user group
set read name=read policy="local,telnet,ssh,reboot,read,test,winbox,password,w\
eb,sniff,sensitive,api,!ftp,!write,!policy" skin=default
set write name=write policy="local,telnet,ssh,reboot,read,write,test,winbox,pa\
ssword,web,sniff,sensitive,api,!ftp,!policy" skin=default
set full name=full policy="local,telnet,ssh,ftp,reboot,read,write,policy,test,\
winbox,password,web,sniff,sensitive,api" skin=default
/caps-man aaa
set interim-update=disabled mac-caching=disabled mac-format=XX:XX:XX:XX:XX:XX \
mac-mode=as-username
/caps-man manager
set ca-certificate=none certificate=none enabled=yes \
require-peer-certificate=no
/caps-man provisioning
add action=create-dynamic-enabled disabled=no hw-supported-modes="" \
master-configuration=cfg1 name-prefix="" radio-mac=00:00:00:00:00:00 \
slave-configurations=""
/certificate settings
set crl-download=yes
/interface bridge port
add auto-isolate=no bridge=bridge1 disabled=no edge=auto external-fdb=auto \
horizon=none interface=ether2 path-cost=10 point-to-point=auto priority=\
0x80
add auto-isolate=no bridge=bridge1 disabled=no edge=auto external-fdb=auto \
horizon=none interface=ether3 path-cost=10 point-to-point=auto priority=\
0x80
add auto-isolate=no bridge=bridge1 disabled=no edge=auto external-fdb=auto \
horizon=none interface=ether4 path-cost=10 point-to-point=auto priority=\
0x80
add auto-isolate=no bridge=bridge1 disabled=no edge=auto external-fdb=auto \
horizon=none interface=ether5 path-cost=10 point-to-point=auto priority=\
0x80
add auto-isolate=no bridge=bridge1 disabled=no edge=auto external-fdb=auto \
horizon=none interface=ether6 path-cost=10 point-to-point=auto priority=\
0x80
add auto-isolate=no bridge=bridge1 disabled=no edge=auto external-fdb=auto \
horizon=none interface=ether7 path-cost=10 point-to-point=auto priority=\
0x80
add auto-isolate=no bridge=bridge1 disabled=no edge=auto external-fdb=auto \
horizon=none interface=ether8 path-cost=10 point-to-point=auto priority=\
0x80
add auto-isolate=no bridge=bridge1 disabled=yes edge=auto external-fdb=auto \
horizon=none path-cost=10 point-to-point=auto priority=0x80
add auto-isolate=no bridge=bridge1 disabled=no edge=auto external-fdb=auto \
horizon=none interface=sfp1 path-cost=10 point-to-point=auto priority=\
0x80
/interface bridge settings
set allow-fast-path=yes use-ip-firewall=no use-ip-firewall-for-pppoe=no \
use-ip-firewall-for-vlan=no
/ip firewall connection tracking
set enabled=auto generic-timeout=10m icmp-timeout=10s tcp-close-timeout=10s \
tcp-close-wait-timeout=10s tcp-established-timeout=1d \
tcp-fin-wait-timeout=10s tcp-last-ack-timeout=10s \
tcp-max-retrans-timeout=5m tcp-syn-received-timeout=5s \
tcp-syn-sent-timeout=5s tcp-time-wait-timeout=10s tcp-unacked-timeout=5m \
udp-stream-timeout=3m udp-timeout=10s
/ip neighbor discovery settings
set default=yes default-for-dynamic=no
/ip settings
set accept-redirects=no accept-source-route=no allow-fast-path=yes \
arp-timeout=30s icmp-rate-limit=10 icmp-rate-mask=0x1818 ip-forward=yes \
max-arp-entries=8192 route-cache=yes rp-filter=no secure-redirects=yes \
send-redirects=yes tcp-syncookies=no
/interface ethernet switch
set bridge-type=customer-vid-used-as-lookup-vid \
bypass-ingress-port-policing-for="" bypass-l2-security-check-filter-for=\
"" bypass-vlan-ingress-filter-for="" \
drop-if-invalid-or-src-port-not-member-of-vlan-on-ports="" \
drop-if-no-vlan-assignment-on-ports="" egress-mirror-ratio=1/1 \
egress-mirror0=switch1-cpu,modified egress-mirror1=switch1-cpu,modified \
fdb-uses=mirror0 forward-unknown-vlan=yes ingress-mirror-ratio=1/1 \
ingress-mirror0=switch1-cpu,unmodified ingress-mirror1=\
switch1-cpu,unmodified mac-level-isolation=yes \
mirror-egress-if-ingress-mirrored=no mirror-tx-on-mirror-port=no \
mirrored-packet-drop-precedence=green mirrored-packet-qos-priority=0 \
multicast-lookup-mode=dst-ip-and-vid-for-ipv4 name=switch1 \
override-existing-when-ufdb-full=no unicast-fdb-timeout=5m \
unknown-vlan-lookup-mode=svl use-cvid-in-one2one-vlan-lookup=yes \
use-svid-in-one2one-vlan-lookup=no vlan-uses=mirror0
/interface ethernet switch dscp-qos-map
set 0 dei=0 drop-precedence=green pcp=0 priority=1
set 1 dei=0 drop-precedence=green pcp=0 priority=0
set 2 dei=0 drop-precedence=green pcp=0 priority=0
set 3 dei=0 drop-precedence=green pcp=0 priority=0
set 4 dei=0 drop-precedence=green pcp=0 priority=0
set 5 dei=0 drop-precedence=green pcp=0 priority=0
set 6 dei=0 drop-precedence=green pcp=0 priority=0
set 7 dei=0 drop-precedence=green pcp=0 priority=0
set 8 dei=0 drop-precedence=green pcp=0 priority=1
set 9 dei=0 drop-precedence=green pcp=0 priority=0
set 10 dei=0 drop-precedence=green pcp=0 priority=0
set 11 dei=0 drop-precedence=green pcp=0 priority=0
set 12 dei=0 drop-precedence=yellow pcp=0 priority=0
set 13 dei=0 drop-precedence=green pcp=0 priority=0
set 14 dei=0 drop-precedence=red pcp=0 priority=0
set 15 dei=0 drop-precedence=green pcp=0 priority=0
set 16 dei=0 drop-precedence=green pcp=0 priority=2
set 17 dei=0 drop-precedence=green pcp=0 priority=0
set 18 dei=0 drop-precedence=green pcp=0 priority=2
set 19 dei=0 drop-precedence=green pcp=0 priority=0
set 20 dei=0 drop-precedence=yellow pcp=0 priority=2
set 21 dei=0 drop-precedence=green pcp=0 priority=0
set 22 dei=0 drop-precedence=red pcp=0 priority=2
set 23 dei=0 drop-precedence=green pcp=0 priority=0
set 24 dei=0 drop-precedence=green pcp=0 priority=2
set 25 dei=0 drop-precedence=green pcp=0 priority=0
set 26 dei=0 drop-precedence=green pcp=0 priority=2
set 27 dei=0 drop-precedence=green pcp=0 priority=0
set 28 dei=0 drop-precedence=yellow pcp=0 priority=2
set 29 dei=0 drop-precedence=green pcp=0 priority=0
set 30 dei=0 drop-precedence=red pcp=0 priority=2
set 31 dei=0 drop-precedence=green pcp=0 priority=0
set 32 dei=0 drop-precedence=green pcp=0 priority=2
set 33 dei=0 drop-precedence=green pcp=0 priority=0
set 34 dei=0 drop-precedence=green pcp=0 priority=2
set 35 dei=0 drop-precedence=green pcp=0 priority=0
set 36 dei=0 drop-precedence=yellow pcp=0 priority=2
set 37 dei=0 drop-precedence=green pcp=0 priority=0
set 38 dei=0 drop-precedence=red pcp=0 priority=2
set 39 dei=0 drop-precedence=green pcp=0 priority=0
set 40 dei=0 drop-precedence=green pcp=0 priority=2
set 41 dei=0 drop-precedence=green pcp=0 priority=0
set 42 dei=0 drop-precedence=green pcp=0 priority=0
set 43 dei=0 drop-precedence=green pcp=0 priority=0
set 44 dei=0 drop-precedence=green pcp=0 priority=0
set 45 dei=0 drop-precedence=green pcp=0 priority=0
set 46 dei=0 drop-precedence=green pcp=0 priority=3
set 47 dei=0 drop-precedence=green pcp=0 priority=0
set 48 dei=0 drop-precedence=green pcp=0 priority=2
set 49 dei=0 drop-precedence=green pcp=0 priority=0
set 50 dei=0 drop-precedence=green pcp=0 priority=0
set 51 dei=0 drop-precedence=green pcp=0 priority=0
set 52 dei=0 drop-precedence=green pcp=0 priority=0
set 53 dei=0 drop-precedence=green pcp=0 priority=0
set 54 dei=0 drop-precedence=green pcp=0 priority=0
set 55 dei=0 drop-precedence=green pcp=0 priority=0
set 56 dei=0 drop-precedence=green pcp=0 priority=2
set 57 dei=0 drop-precedence=green pcp=0 priority=0
set 58 dei=0 drop-precedence=green pcp=0 priority=0
set 59 dei=0 drop-precedence=green pcp=0 priority=0
set 60 dei=0 drop-precedence=green pcp=0 priority=0
set 61 dei=0 drop-precedence=green pcp=0 priority=0
set 62 dei=0 drop-precedence=green pcp=0 priority=0
set 63 dei=0 drop-precedence=green pcp=0 priority=0
/interface ethernet switch policer-qos-map
set 0 dei-for-red=0 dei-for-yellow=0 dscp-for-red=0 dscp-for-yellow=0 \
pcp-for-red=0 pcp-for-yellow=0
set 1 dei-for-red=0 dei-for-yellow=0 dscp-for-red=0 dscp-for-yellow=0 \
pcp-for-red=0 pcp-for-yellow=0
set 2 dei-for-red=0 dei-for-yellow=0 dscp-for-red=0 dscp-for-yellow=0 \
pcp-for-red=0 pcp-for-yellow=0
set 3 dei-for-red=0 dei-for-yellow=0 dscp-for-red=0 dscp-for-yellow=0 \
pcp-for-red=0 pcp-for-yellow=0
set 4 dei-for-red=0 dei-for-yellow=0 dscp-for-red=0 dscp-for-yellow=0 \
pcp-for-red=0 pcp-for-yellow=0
set 5 dei-for-red=0 dei-for-yellow=0 dscp-for-red=0 dscp-for-yellow=0 \
pcp-for-red=0 pcp-for-yellow=0
set 6 dei-for-red=0 dei-for-yellow=0 dscp-for-red=0 dscp-for-yellow=0 \
pcp-for-red=0 pcp-for-yellow=0
set 7 dei-for-red=0 dei-for-yellow=0 dscp-for-red=0 dscp-for-yellow=0 \
pcp-for-red=0 pcp-for-yellow=0
/interface ethernet switch port
set 0 action-on-static-station-move=forward allow-fdb-based-vlan-translate=no \
allow-mac-based-customer-vlan-assignment-for=all \
allow-mac-based-service-vlan-assignment-for=all allow-multicast-loopback=\
no allow-unicast-loopback=no custom-drop-counter-includes="" \
default-customer-pcp=0 default-service-pcp=0 drop-dynamic-mac-move=no \
drop-secure-static-mac-move=no drop-when-ufdb-entry-src-drop=yes \
dscp-based-qos-dscp-to-dscp-mapping=yes !egress-customer-tpid-override \
egress-mirror-to=none egress-pcp-propagation=no \
!egress-service-tpid-override egress-vlan-mode=unmodified \
egress-vlan-tag-table-lookup-key=egress-vid filter-priority-tagged-frame=\
no filter-tagged-frame=no filter-untagged-frame=no \
!ingress-customer-tpid-override ingress-mirror-to=none \
ingress-mirroring-according-to-vlan=no !ingress-service-tpid-override \
!isolation-leakage-profile-override !learn-limit !learn-override \
pcp-based-qos-dei-mapping=0-15:0 pcp-based-qos-drop-precedence-mapping=\
0-15:green pcp-based-qos-dscp-mapping=0-15:0 pcp-based-qos-pcp-mapping=\
0-15:0 pcp-based-qos-priority-mapping=0-15:0 \
pcp-or-dscp-based-qos-change-dei=no pcp-or-dscp-based-qos-change-dscp=no \
pcp-or-dscp-based-qos-change-pcp=no pcp-propagation-for-initial-pcp=no \
per-queue-scheduling="wrr-group0:1,wrr-group0:2,wrr-group0:4,wrr-group0:8,\
wrr-group0:16,wrr-group0:32,wrr-group0:64,wrr-group0:128" \
policy-drop-counter-includes="" priority-to-queue=0-15:0,1:1,2:2,3:3 \
qos-scheme-precedence="ingress-acl-based,sa-based,da-based,dscp-based,prot\
ocol-based,vlan-based,pcp-based" queue-custom-drop-counter0-includes="" \
queue-custom-drop-counter1-includes="" vlan-type=network-port
set 1 action-on-static-station-move=forward allow-fdb-based-vlan-translate=no \
allow-mac-based-customer-vlan-assignment-for=all \
allow-mac-based-service-vlan-assignment-for=all allow-multicast-loopback=\
no allow-unicast-loopback=no custom-drop-counter-includes="" \
default-customer-pcp=0 default-service-pcp=0 drop-dynamic-mac-move=no \
drop-secure-static-mac-move=no drop-when-ufdb-entry-src-drop=yes \
dscp-based-qos-dscp-to-dscp-mapping=yes !egress-customer-tpid-override \
egress-mirror-to=none egress-pcp-propagation=no \
!egress-service-tpid-override egress-vlan-mode=unmodified \
egress-vlan-tag-table-lookup-key=egress-vid filter-priority-tagged-frame=\
no filter-tagged-frame=no filter-untagged-frame=no \
!ingress-customer-tpid-override ingress-mirror-to=none \
ingress-mirroring-according-to-vlan=no !ingress-service-tpid-override \
!isolation-leakage-profile-override !learn-limit !learn-override \
pcp-based-qos-dei-mapping=0-15:0 pcp-based-qos-drop-precedence-mapping=\
0-15:green pcp-based-qos-dscp-mapping=0-15:0 pcp-based-qos-pcp-mapping=\
0-15:0 pcp-based-qos-priority-mapping=0-15:0 \
pcp-or-dscp-based-qos-change-dei=no pcp-or-dscp-based-qos-change-dscp=no \
pcp-or-dscp-based-qos-change-pcp=no pcp-propagation-for-initial-pcp=no \
per-queue-scheduling="wrr-group0:1,wrr-group0:2,wrr-group0:4,wrr-group0:8,\
wrr-group0:16,wrr-group0:32,wrr-group0:64,wrr-group0:128" \
policy-drop-counter-includes="" priority-to-queue=0-15:0,1:1,2:2,3:3 \
qos-scheme-precedence="ingress-acl-based,sa-based,da-based,dscp-based,prot\
ocol-based,vlan-based,pcp-based" queue-custom-drop-counter0-includes="" \
queue-custom-drop-counter1-includes="" vlan-type=network-port
set 2 action-on-static-station-move=forward allow-fdb-based-vlan-translate=no \
allow-mac-based-customer-vlan-assignment-for=all \
allow-mac-based-service-vlan-assignment-for=all allow-multicast-loopback=\
no allow-unicast-loopback=no custom-drop-counter-includes="" \
default-customer-pcp=0 default-service-pcp=0 drop-dynamic-mac-move=no \
drop-secure-static-mac-move=no drop-when-ufdb-entry-src-drop=yes \
dscp-based-qos-dscp-to-dscp-mapping=yes !egress-customer-tpid-override \
egress-mirror-to=none egress-pcp-propagation=no \
!egress-service-tpid-override egress-vlan-mode=unmodified \
egress-vlan-tag-table-lookup-key=egress-vid filter-priority-tagged-frame=\
no filter-tagged-frame=no filter-untagged-frame=no \
!ingress-customer-tpid-override ingress-mirror-to=none \
ingress-mirroring-according-to-vlan=no !ingress-service-tpid-override \
!isolation-leakage-profile-override !learn-limit !learn-override \
pcp-based-qos-dei-mapping=0-15:0 pcp-based-qos-drop-precedence-mapping=\
0-15:green pcp-based-qos-dscp-mapping=0-15:0 pcp-based-qos-pcp-mapping=\
0-15:0 pcp-based-qos-priority-mapping=0-15:0 \
pcp-or-dscp-based-qos-change-dei=no pcp-or-dscp-based-qos-change-dscp=no \
pcp-or-dscp-based-qos-change-pcp=no pcp-propagation-for-initial-pcp=no \
per-queue-scheduling="wrr-group0:1,wrr-group0:2,wrr-group0:4,wrr-group0:8,\
wrr-group0:16,wrr-group0:32,wrr-group0:64,wrr-group0:128" \
policy-drop-counter-includes="" priority-to-queue=0-15:0,1:1,2:2,3:3 \
qos-scheme-precedence="ingress-acl-based,sa-based,da-based,dscp-based,prot\
ocol-based,vlan-based,pcp-based" queue-custom-drop-counter0-includes="" \
queue-custom-drop-counter1-includes="" vlan-type=network-port
set 3 action-on-static-station-move=forward allow-fdb-based-vlan-translate=no \
allow-mac-based-customer-vlan-assignment-for=all \
allow-mac-based-service-vlan-assignment-for=all allow-multicast-loopback=\
no allow-unicast-loopback=no custom-drop-counter-includes="" \
default-customer-pcp=0 default-service-pcp=0 drop-dynamic-mac-move=no \
drop-secure-static-mac-move=no drop-when-ufdb-entry-src-drop=yes \
dscp-based-qos-dscp-to-dscp-mapping=yes !egress-customer-tpid-override \
egress-mirror-to=none egress-pcp-propagation=no \
!egress-service-tpid-override egress-vlan-mode=unmodified \
egress-vlan-tag-table-lookup-key=egress-vid filter-priority-tagged-frame=\
no filter-tagged-frame=no filter-untagged-frame=no \
!ingress-customer-tpid-override ingress-mirror-to=none \
ingress-mirroring-according-to-vlan=no !ingress-service-tpid-override \
!isolation-leakage-profile-override !learn-limit !learn-override \
pcp-based-qos-dei-mapping=0-15:0 pcp-based-qos-drop-precedence-mapping=\
0-15:green pcp-based-qos-dscp-mapping=0-15:0 pcp-based-qos-pcp-mapping=\
0-15:0 pcp-based-qos-priority-mapping=0-15:0 \
pcp-or-dscp-based-qos-change-dei=no pcp-or-dscp-based-qos-change-dscp=no \
pcp-or-dscp-based-qos-change-pcp=no pcp-propagation-for-initial-pcp=no \
per-queue-scheduling="wrr-group0:1,wrr-group0:2,wrr-group0:4,wrr-group0:8,\
wrr-group0:16,wrr-group0:32,wrr-group0:64,wrr-group0:128" \
policy-drop-counter-includes="" priority-to-queue=0-15:0,1:1,2:2,3:3 \
qos-scheme-precedence="ingress-acl-based,sa-based,da-based,dscp-based,prot\
ocol-based,vlan-based,pcp-based" queue-custom-drop-counter0-includes="" \
queue-custom-drop-counter1-includes="" vlan-type=network-port
set 4 action-on-static-station-move=forward allow-fdb-based-vlan-translate=no \
allow-mac-based-customer-vlan-assignment-for=all \
allow-mac-based-service-vlan-assignment-for=all allow-multicast-loopback=\
no allow-unicast-loopback=no custom-drop-counter-includes="" \
default-customer-pcp=0 default-service-pcp=0 drop-dynamic-mac-move=no \
drop-secure-static-mac-move=no drop-when-ufdb-entry-src-drop=yes \
dscp-based-qos-dscp-to-dscp-mapping=yes !egress-customer-tpid-override \
egress-mirror-to=none egress-pcp-propagation=no \
!egress-service-tpid-override egress-vlan-mode=unmodified \
egress-vlan-tag-table-lookup-key=egress-vid filter-priority-tagged-frame=\
no filter-tagged-frame=no filter-untagged-frame=no \
!ingress-customer-tpid-override ingress-mirror-to=none \
ingress-mirroring-according-to-vlan=no !ingress-service-tpid-override \
!isolation-leakage-profile-override !learn-limit !learn-override \
pcp-based-qos-dei-mapping=0-15:0 pcp-based-qos-drop-precedence-mapping=\
0-15:green pcp-based-qos-dscp-mapping=0-15:0 pcp-based-qos-pcp-mapping=\
0-15:0 pcp-based-qos-priority-mapping=0-15:0 \
pcp-or-dscp-based-qos-change-dei=no pcp-or-dscp-based-qos-change-dscp=no \
pcp-or-dscp-based-qos-change-pcp=no pcp-propagation-for-initial-pcp=no \
per-queue-scheduling="wrr-group0:1,wrr-group0:2,wrr-group0:4,wrr-group0:8,\
wrr-group0:16,wrr-group0:32,wrr-group0:64,wrr-group0:128" \
policy-drop-counter-includes="" priority-to-queue=0-15:0,1:1,2:2,3:3 \
qos-scheme-precedence="ingress-acl-based,sa-based,da-based,dscp-based,prot\
ocol-based,vlan-based,pcp-based" queue-custom-drop-counter0-includes="" \
queue-custom-drop-counter1-includes="" vlan-type=network-port
set 5 action-on-static-station-move=forward allow-fdb-based-vlan-translate=no \
allow-mac-based-customer-vlan-assignment-for=all \
allow-mac-based-service-vlan-assignment-for=all allow-multicast-loopback=\
no allow-unicast-loopback=no custom-drop-counter-includes="" \
default-customer-pcp=0 default-service-pcp=0 drop-dynamic-mac-move=no \
drop-secure-static-mac-move=no drop-when-ufdb-entry-src-drop=yes \
dscp-based-qos-dscp-to-dscp-mapping=yes !egress-customer-tpid-override \
egress-mirror-to=none egress-pcp-propagation=no \
!egress-service-tpid-override egress-vlan-mode=unmodified \
egress-vlan-tag-table-lookup-key=egress-vid filter-priority-tagged-frame=\
no filter-tagged-frame=no filter-untagged-frame=no \
!ingress-customer-tpid-override ingress-mirror-to=none \
ingress-mirroring-according-to-vlan=no !ingress-service-tpid-override \
!isolation-leakage-profile-override !learn-limit !learn-override \
pcp-based-qos-dei-mapping=0-15:0 pcp-based-qos-drop-precedence-mapping=\
0-15:green pcp-based-qos-dscp-mapping=0-15:0 pcp-based-qos-pcp-mapping=\
0-15:0 pcp-based-qos-priority-mapping=0-15:0 \
pcp-or-dscp-based-qos-change-dei=no pcp-or-dscp-based-qos-change-dscp=no \
pcp-or-dscp-based-qos-change-pcp=no pcp-propagation-for-initial-pcp=no \
per-queue-scheduling="wrr-group0:1,wrr-group0:2,wrr-group0:4,wrr-group0:8,\
wrr-group0:16,wrr-group0:32,wrr-group0:64,wrr-group0:128" \
policy-drop-counter-includes="" priority-to-queue=0-15:0,1:1,2:2,3:3 \
qos-scheme-precedence="ingress-acl-based,sa-based,da-based,dscp-based,prot\
ocol-based,vlan-based,pcp-based" queue-custom-drop-counter0-includes="" \
queue-custom-drop-counter1-includes="" vlan-type=network-port
set 6 action-on-static-station-move=forward allow-fdb-based-vlan-translate=no \
allow-mac-based-customer-vlan-assignment-for=all \
allow-mac-based-service-vlan-assignment-for=all allow-multicast-loopback=\
no allow-unicast-loopback=no custom-drop-counter-includes="" \
default-customer-pcp=0 default-service-pcp=0 drop-dynamic-mac-move=no \
drop-secure-static-mac-move=no drop-when-ufdb-entry-src-drop=yes \
dscp-based-qos-dscp-to-dscp-mapping=yes !egress-customer-tpid-override \
egress-mirror-to=none egress-pcp-propagation=no \
!egress-service-tpid-override egress-vlan-mode=unmodified \
egress-vlan-tag-table-lookup-key=egress-vid filter-priority-tagged-frame=\
no filter-tagged-frame=no filter-untagged-frame=no \
!ingress-customer-tpid-override ingress-mirror-to=none \
ingress-mirroring-according-to-vlan=no !ingress-service-tpid-override \
!isolation-leakage-profile-override !learn-limit !learn-override \
pcp-based-qos-dei-mapping=0-15:0 pcp-based-qos-drop-precedence-mapping=\
0-15:green pcp-based-qos-dscp-mapping=0-15:0 pcp-based-qos-pcp-mapping=\
0-15:0 pcp-based-qos-priority-mapping=0-15:0 \
pcp-or-dscp-based-qos-change-dei=no pcp-or-dscp-based-qos-change-dscp=no \
pcp-or-dscp-based-qos-change-pcp=no pcp-propagation-for-initial-pcp=no \
per-queue-scheduling="wrr-group0:1,wrr-group0:2,wrr-group0:4,wrr-group0:8,\
wrr-group0:16,wrr-group0:32,wrr-group0:64,wrr-group0:128" \
policy-drop-counter-includes="" priority-to-queue=0-15:0,1:1,2:2,3:3 \
qos-scheme-precedence="ingress-acl-based,sa-based,da-based,dscp-based,prot\
ocol-based,vlan-based,pcp-based" queue-custom-drop-counter0-includes="" \
queue-custom-drop-counter1-includes="" vlan-type=network-port
set 7 action-on-static-station-move=forward allow-fdb-based-vlan-translate=no \
allow-mac-based-customer-vlan-assignment-for=all \
allow-mac-based-service-vlan-assignment-for=all allow-multicast-loopback=\
no allow-unicast-loopback=no custom-drop-counter-includes="" \
default-customer-pcp=0 default-service-pcp=0 drop-dynamic-mac-move=no \
drop-secure-static-mac-move=no drop-when-ufdb-entry-src-drop=yes \
dscp-based-qos-dscp-to-dscp-mapping=yes !egress-customer-tpid-override \
egress-mirror-to=none egress-pcp-propagation=no \
!egress-service-tpid-override egress-vlan-mode=unmodified \
egress-vlan-tag-table-lookup-key=egress-vid filter-priority-tagged-frame=\
no filter-tagged-frame=no filter-untagged-frame=no \
!ingress-customer-tpid-override ingress-mirror-to=none \
ingress-mirroring-according-to-vlan=no !ingress-service-tpid-override \
!isolation-leakage-profile-override !learn-limit !learn-override \
pcp-based-qos-dei-mapping=0-15:0 pcp-based-qos-drop-precedence-mapping=\
0-15:green pcp-based-qos-dscp-mapping=0-15:0 pcp-based-qos-pcp-mapping=\
0-15:0 pcp-based-qos-priority-mapping=0-15:0 \
pcp-or-dscp-based-qos-change-dei=no pcp-or-dscp-based-qos-change-dscp=no \
pcp-or-dscp-based-qos-change-pcp=no pcp-propagation-for-initial-pcp=no \
per-queue-scheduling="wrr-group0:1,wrr-group0:2,wrr-group0:4,wrr-group0:8,\
wrr-group0:16,wrr-group0:32,wrr-group0:64,wrr-group0:128" \
policy-drop-counter-includes="" priority-to-queue=0-15:0,1:1,2:2,3:3 \
qos-scheme-precedence="ingress-acl-based,sa-based,da-based,dscp-based,prot\
ocol-based,vlan-based,pcp-based" queue-custom-drop-counter0-includes="" \
queue-custom-drop-counter1-includes="" vlan-type=network-port
set 8 action-on-static-station-move=forward allow-fdb-based-vlan-translate=no \
allow-mac-based-customer-vlan-assignment-for=all \
allow-mac-based-service-vlan-assignment-for=all allow-multicast-loopback=\
no allow-unicast-loopback=no custom-drop-counter-includes="" \
default-customer-pcp=0 default-service-pcp=0 drop-dynamic-mac-move=no \
drop-secure-static-mac-move=no drop-when-ufdb-entry-src-drop=yes \
dscp-based-qos-dscp-to-dscp-mapping=yes !egress-customer-tpid-override \
egress-mirror-to=none egress-pcp-propagation=no \
!egress-service-tpid-override egress-vlan-mode=unmodified \
egress-vlan-tag-table-lookup-key=egress-vid filter-priority-tagged-frame=\
no filter-tagged-frame=no filter-untagged-frame=no \
!ingress-customer-tpid-override ingress-mirror-to=none \
ingress-mirroring-according-to-vlan=no !ingress-service-tpid-override \
!isolation-leakage-profile-override !learn-limit !learn-override \
pcp-based-qos-dei-mapping=0-15:0 pcp-based-qos-drop-precedence-mapping=\
0-15:green pcp-based-qos-dscp-mapping=0-15:0 pcp-based-qos-pcp-mapping=\
0-15:0 pcp-based-qos-priority-mapping=0-15:0 \
pcp-or-dscp-based-qos-change-dei=no pcp-or-dscp-based-qos-change-dscp=no \
pcp-or-dscp-based-qos-change-pcp=no pcp-propagation-for-initial-pcp=no \
per-queue-scheduling="wrr-group0:1,wrr-group0:2,wrr-group0:4,wrr-group0:8,\
wrr-group0:16,wrr-group0:32,wrr-group0:64,wrr-group0:128" \
policy-drop-counter-includes="" priority-to-queue=0-15:0,1:1,2:2,3:3 \
qos-scheme-precedence="ingress-acl-based,sa-based,da-based,dscp-based,prot\
ocol-based,vlan-based,pcp-based" queue-custom-drop-counter0-includes="" \
queue-custom-drop-counter1-includes="" vlan-type=network-port
set 9 action-on-static-station-move=forward allow-fdb-based-vlan-translate=no \
allow-mac-based-customer-vlan-assignment-for=all \
allow-mac-based-service-vlan-assignment-for=all allow-multicast-loopback=\
no allow-unicast-loopback=no custom-drop-counter-includes="" \
default-customer-pcp=0 default-service-pcp=0 drop-dynamic-mac-move=no \
drop-secure-static-mac-move=no drop-when-ufdb-entry-src-drop=yes \
dscp-based-qos-dscp-to-dscp-mapping=yes !egress-customer-tpid-override \
egress-mirror-to=none egress-pcp-propagation=no \
!egress-service-tpid-override egress-vlan-mode=unmodified \
egress-vlan-tag-table-lookup-key=egress-vid filter-priority-tagged-frame=\
no filter-tagged-frame=no filter-untagged-frame=no \
!ingress-customer-tpid-override ingress-mirror-to=none \
ingress-mirroring-according-to-vlan=no !ingress-service-tpid-override \
!isolation-leakage-profile-override !learn-limit !learn-override \
pcp-based-qos-dei-mapping=0-15:0 pcp-based-qos-drop-precedence-mapping=\
0-15:green pcp-based-qos-dscp-mapping=0-15:0 pcp-based-qos-pcp-mapping=\
0-15:0 pcp-based-qos-priority-mapping=0-15:0 \
pcp-or-dscp-based-qos-change-dei=no pcp-or-dscp-based-qos-change-dscp=no \
pcp-or-dscp-based-qos-change-pcp=no pcp-propagation-for-initial-pcp=no \
per-queue-scheduling="wrr-group0:1,wrr-group0:2,wrr-group0:4,wrr-group0:8,\
wrr-group0:16,wrr-group0:32,wrr-group0:64,wrr-group0:128" \
policy-drop-counter-includes="" priority-to-queue=0-15:0,1:1,2:2,3:3 \
qos-scheme-precedence="ingress-acl-based,sa-based,da-based,dscp-based,prot\
ocol-based,vlan-based,pcp-based" queue-custom-drop-counter0-includes="" \
queue-custom-drop-counter1-includes="" vlan-type=network-port
/interface l2tp-server server
set authentication=pap,chap,mschap1,mschap2 default-profile=\
default-encryption enabled=no keepalive-timeout=30 max-mru=1450 max-mtu=\
1450 mrru=disabled use-ipsec=no
/interface ovpn-server server
set auth=sha1,md5 cipher=blowfish128,aes128 default-profile=default enabled=\
no keepalive-timeout=60 mac-address=FE:CB:F7:FD:1F:41 max-mtu=1500 mode=\
ip netmask=24 port=1194 require-client-certificate=no
/interface pptp-server server
set authentication=mschap1,mschap2 default-profile=default-encryption \
enabled=no keepalive-timeout=30 max-mru=1450 max-mtu=1450 mrru=disabled
/interface sstp-server server
set authentication=pap,chap,mschap1,mschap2 certificate=none default-profile=\
default enabled=no force-aes=no keepalive-timeout=60 max-mru=1500 \
max-mtu=1500 mrru=disabled pfs=no port=443 verify-client-certificate=no
/interface wireless align
set active-mode=yes audio-max=-20 audio-min=-100 audio-monitor=\
00:00:00:00:00:00 filter-mac=00:00:00:00:00:00 frame-size=300 \
frames-per-second=25 receive-all=no ssid-all=no
/interface wireless cap
set bridge=bridge1 caps-man-addresses=192.168.1.1 \
caps-man-certificate-common-names="" caps-man-names="" certificate=none \
discovery-interfaces="" enabled=yes interfaces=wlan2 lock-to-caps-man=no
/interface wireless sniffer
set channel-time=200ms file-limit=10 file-name="" memory-limit=10 \
multiple-channels=no only-headers=no receive-errors=no streaming-enabled=\
no streaming-max-rate=0 streaming-server=0.0.0.0
/interface wireless snooper
set channel-time=200ms multiple-channels=yes receive-errors=no
/ip accounting
set account-local-traffic=no enabled=no threshold=256
/ip accounting web-access
set accessible-via-web=no address=0.0.0.0/0
/ip address
add address=192.168.1.1/24 disabled=no interface=bridge1 network=192.168.1.0
/ip cloud
set ddns-enabled=no update-time=yes
/ip cloud advanced
set use-local-address=no
/ip dhcp-client
add add-default-route=yes default-route-distance=1 dhcp-options=\
hostname,clientid disabled=no interface=ether1 use-peer-dns=yes \
use-peer-ntp=yes
/ip dhcp-server config
set store-leases-disk=5m
/ip dhcp-server lease
add address=192.168.1.168 address-lists="" dhcp-option="" disabled=no \
!insert-queue-before mac-address=00:04:A3:81:72:1C
/ip dhcp-server network
add address=192.168.1.0/24 caps-manager="" dhcp-option="" dns-server="" \
gateway=192.168.1.1 netmask=24 ntp-server="" wins-server=""
/ip dns
set allow-remote-requests=no cache-max-ttl=1w cache-size=2048KiB \
max-udp-packet-size=4096 query-server-timeout=2s query-total-timeout=10s \
servers=""
/ip firewall nat
add action=masquerade chain=srcnat !connection-bytes !connection-limit \
!connection-mark !connection-rate !connection-type !content disabled=no \
!dscp !dst-address !dst-address-list !dst-address-type !dst-limit \
!dst-port !fragment !hotspot !icmp-options !in-bridge-port !in-interface \
!ingress-priority !ipsec-policy !ipv4-options !layer7-protocol !limit \
log=no log-prefix="" !nth !out-bridge-port out-interface=ether1 \
!packet-mark !packet-size !per-connection-classifier !port !priority \
!protocol !psd !random !routing-mark !routing-table !src-address \
!src-address-list !src-address-type !src-mac-address !src-port !tcp-mss \
!time !to-addresses !to-ports !ttl
/ip firewall service-port
set ftp disabled=no ports=21
set tftp disabled=no ports=69
set irc disabled=no ports=6667
set h323 disabled=no
set sip disabled=no ports=5060,5061 sip-direct-media=yes sip-timeout=1h
set pptp disabled=no
/ip hotspot service-port
set ftp disabled=no ports=21
/ip ipsec policy
set 0 disabled=no dst-address=::/0 group=default proposal=default protocol=\
all src-address=::/0 template=yes
/ip proxy
set always-from-cache=no anonymous=no cache-administrator=webmaster \
cache-hit-dscp=4 cache-on-disk=no cache-path=web-proxy enabled=no \
max-cache-object-size=2048KiB max-cache-size=unlimited \
max-client-connections=600 max-fresh-time=3d max-server-connections=600 \
parent-proxy=:: parent-proxy-port=0 port=8080 serialize-connections=no \
src-address=::
/ip service
set telnet address="" disabled=no port=23
set ftp address="" disabled=no port=21
set www address="" disabled=no port=80
set ssh address="" disabled=no port=22
set www-ssl address="" certificate=none disabled=yes port=443
set api address="" disabled=no port=8728
set winbox address="" disabled=no port=8291
set api-ssl address="" certificate=none disabled=no port=8729
/ip smb
set allow-guests=yes comment=MikrotikSMB domain=MSHOME enabled=no interfaces=\
all
/ip smb shares
set [ find default=yes ] comment="default share" directory=/pub disabled=no \
max-sessions=10 name=pub
/ip smb users
set [ find default=yes ] disabled=no name=guest read-only=yes
/ip socks
set connection-idle-timeout=2m enabled=no max-connections=200 port=1080
/ip traffic-flow
set active-flow-timeout=30m cache-entries=32k enabled=no \
inactive-flow-timeout=15s interfaces=all
/ip upnp
set allow-disable-external-interface=no enabled=no show-dummy-rule=yes
/lcd
set backlight-timeout=30m color-scheme=dark default-screen=main-menu enabled=\
yes read-only-mode=no time-interval=min touch-screen=enabled
/lcd pin
set hide-pin-number=no pin-number=1234
/lcd interface
set *1 disabled=no max-speed=auto timeout=10s
set ether1 disabled=no max-speed=auto timeout=10s
set ether2 disabled=no max-speed=auto timeout=10s
set ether3 disabled=no max-speed=auto timeout=10s
set ether4 disabled=no max-speed=auto timeout=10s
set ether5 disabled=no max-speed=auto timeout=10s
set ether6 disabled=no max-speed=auto timeout=10s
set ether7 disabled=no max-speed=auto timeout=10s
set ether8 disabled=no max-speed=auto timeout=10s
set sfp1 disabled=no max-speed=auto timeout=10s
set wlan2 disabled=no max-speed=auto timeout=10s
/lcd interface pages
set 0 interfaces=*1
/lcd screen
set 0 disabled=no timeout=10s
set 1 disabled=no timeout=10s
set 2 disabled=no timeout=10s
set 3 disabled=no timeout=10s
set 4 disabled=no timeout=10s
set 5 disabled=no timeout=10s
/mpls
set dynamic-label-range=16-1048575 propagate-ttl=yes
/mpls interface
set [ find default=yes ] disabled=no interface=all mpls-mtu=1508
/mpls ldp
set distribute-for-default-route=no enabled=no hop-limit=255 loop-detect=no \
lsr-id=0.0.0.0 path-vector-limit=255 transport-address=0.0.0.0 \
use-explicit-null=no
/port firmware
set directory=firmware ignore-directip-modem=no
/ppp aaa
set accounting=yes interim-update=0s use-circuit-id-in-nas-port-id=no \
use-radius=no
/queue interface
set ether1 queue=only-hardware-queue
set ether2 queue=only-hardware-queue
set ether3 queue=only-hardware-queue
set ether4 queue=only-hardware-queue
set ether5 queue=only-hardware-queue
set ether6 queue=only-hardware-queue
set ether7 queue=only-hardware-queue
set ether8 queue=only-hardware-queue
set sfp1 queue=only-hardware-queue
set wlan2 queue=wireless-default
/radius incoming
set accept=no port=3799
/routing bfd interface
set [ find default=yes ] disabled=no interface=all interval=0.2s min-rx=0.2s \
multiplier=5
/routing mme
set bidirectional-timeout=2 gateway-class=none gateway-keepalive=1m \
gateway-selection=no-gateway origination-interval=5s preferred-gateway=\
0.0.0.0 timeout=1m ttl=50
/routing rip
set distribute-default=never garbage-timer=2m metric-bgp=1 metric-connected=1 \
metric-default=1 metric-ospf=1 metric-static=1 redistribute-bgp=no \
redistribute-connected=no redistribute-ospf=no redistribute-static=no \
routing-table=main timeout-timer=3m update-timer=30s
/snmp
set contact="" enabled=no engine-id="" location="" trap-community=public \
trap-generators="" trap-target="" trap-version=1
/system clock
set time-zone-autodetect=yes time-zone-name=Europe/Moscow
/system clock manual
set dst-delta=+00:00 dst-end="jan/01/1970 00:00:00" dst-start=\
"jan/01/1970 00:00:00" time-zone=+00:00
/system console
set [ find port=serial0 ] channel=0 disabled=no port=serial0 term=vt102
/system identity
set name=Manager
/system leds
set 0 disabled=no interface=sfp1 leds=sfp1-led type=interface-activity
set 1 disabled=no leds=wlan-led type=wireless-status
/system logging
set 0 action=memory disabled=no prefix="" topics=info
set 1 action=memory disabled=no prefix="" topics=error
set 2 action=memory disabled=no prefix="" topics=warning
set 3 action=echo disabled=no prefix="" topics=critical
/system note
set note="" show-at-login=yes
/system ntp client
set enabled=no server-dns-names=""
/system resource irq
set 0 cpu=auto
set 1 cpu=auto
set 2 cpu=auto
set 3 cpu=auto
set 4 cpu=auto
set 5 cpu=auto
/system routerboard settings
set baud-rate=115200 boot-delay=2s boot-device=nand-if-fail-then-ethernet \
boot-protocol=bootp cpu-frequency=600MHz enable-jumper-reset=yes \
enter-setup-on=any-key force-backup-booter=no silent-boot=no
/system routerboard usb
set usb-mode=automatic
/system upgrade mirror
set check-interval=1d enabled=no primary-server=0.0.0.0 secondary-server=\
0.0.0.0 user=""
/system watchdog
set auto-send-supout=no automatic-supout=yes no-ping-delay=5m watch-address=\
none watchdog-timer=yes
/tool bandwidth-server
set allocate-udp-ports-from=2000 authenticate=yes enabled=yes max-sessions=\
100
/tool e-mail
set address=0.0.0.0 from=<> port=25 start-tls=no user=""
/tool graphing
set page-refresh=300 store-every=5min
/tool mac-server
set [ find default=yes ] disabled=no interface=all
/tool mac-server mac-winbox
set [ find default=yes ] disabled=no interface=all
/tool mac-server ping
set enabled=yes
/tool romon
set enabled=no id=00:00:00:00:00:00 secrets=""
/tool romon port
set [ find default=yes ] cost=100 disabled=no forbid=no interface=all \
secrets=""
/tool sms
set allowed-number="" channel=0 keep-max-sms=0 receive-enabled=no
/tool sniffer
set file-limit=1000KiB file-name="" filter-cpu="" filter-direction=any \
filter-interface="" filter-ip-address="" filter-ip-protocol="" \
filter-ipv6-address="" filter-mac-address="" filter-mac-protocol="" \
filter-operator-between-entries=or filter-port="" filter-stream=no \
memory-limit=100KiB memory-scroll=yes only-headers=no streaming-enabled=\
no streaming-server=0.0.0.0
/tool traffic-generator
set latency-distribution-max=100us measure-out-of-order=yes \
stats-samples-to-keep=100 test-id=0
/user aaa
set accounting=yes default-group=read exclude-groups="" interim-update=0s \
use-radius=no
Написано
более трёх лет назад
Не работают устройства, на которых ip выставлен статическим?
Евгений Твердый
@etverdiy
Автор вопроса
Нет, устройство даже в локалке не видно. Хотя при подключении его напрямую к компу и выставлении на компе настроек сети доступ есть
Написано
более трёх лет назад
Не работают устройства, на которых ip выставлен статическим?
Евгений Твердый
@etverdiy
Автор вопроса
Maksim
: подкобчен lan кабелем в ethernet порт
Написано
более трёх лет назад
Не работают устройства, на которых ip выставлен статическим?
Евгений Твердый
@etverdiy
Автор вопроса
set [ find default-name=wlan1 ] name=wlan2
/interface ethernet
set [ find default-name=ether1 ] mac-address=E4:8D:8C:81:3F:C1
set [ find default-name=ether2 ] mac-address=E4:8D:8C:81:3F:C2
set [ find default-name=ether3 ] mac-address=E4:8D:8C:81:3F:C3
set [ find default-name=ether4 ] mac-address=E4:8D:8C:81:3F:C4
set [ find default-name=ether5 ] mac-address=E4:8D:8C:81:3F:C5
set [ find default-name=ether6 ] mac-address=E4:8D:8C:81:3F:C6
set [ find default-name=ether7 ] mac-address=E4:8D:8C:81:3F:C7
set [ find default-name=ether8 ] mac-address=E4:8D:8C:81:3F:C8
set [ find default-name=sfp1 ] mac-address=E4:8D:8C:81:3F:C9
/caps-man security
add authentication-types=wpa2-psk encryption=aes-ccm,tkip \
group-encryption=aes-ccm name=sec passphrase=xXXXXX
/caps-man configuration
add country=russia datapath.bridge=bridge1 mode=ap name=cfg1 security=\
sec ssid=KV-15
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa-psk,wpa2-psk mode=\
dynamic-keys supplicant-identity=MikroTik wpa-pre-shared-key=\
xxxxxxxx wpa2-pre-shared-key=xxxxxx
/ip pool
add name=dhcp ranges=192.168.1.3-192.168.1.254
/ip dhcp-server
add address-pool=dhcp disabled=no interface=bridge1 name=dhcp1
/caps-man manager
set enabled=yes
/caps-man provisioning
add action=create-dynamic-enabled master-configuration=cfg1
/interface bridge port
add bridge=bridge1 interface=ether2
add bridge=bridge1 interface=ether3
add bridge=bridge1 interface=ether4
add bridge=bridge1 interface=ether5
add bridge=bridge1 interface=ether6
add bridge=bridge1 interface=ether7
add bridge=bridge1 interface=ether8
add bridge=bridge1 disabled=yes
add bridge=bridge1 interface=sfp1
/interface wireless cap
set bridge=bridge1 caps-man-addresses=192.168.1.1 enabled=yes \
interfaces=wlan2
/ip address
add address=192.168.1.1/24 interface=ether2 network=192.168.1.0
/ip dhcp-client
add dhcp-options=hostname,clientid disabled=no interface=ether1
/ip dhcp-server network
add address=192.168.1.0/24 gateway=192.168.1.1 netmask=24
/ip firewall nat
add action=masquerade chain=srcnat out-interface=ether1
/lcd interface pages
set 0 interfaces=*1
/system clock
set time-zone-name=Europe/Moscow
/system identity
set name=Manager
IP устройства 192.168.1.168
Написано
более трёх лет назад
Есть ли разница между объединением портов в мост и созданием свича и добавлением мастер интерфейса в бридж на Mikrotik?
Евгений Твердый
@etverdiy
Автор вопроса
А на микротике в режиме свитча все равно ЦП обрабатывает?
Написано
более трёх лет назад
Нет интернета в сети на mikrotik, в чем может быть причина?
Евгений Твердый
@etverdiy
Автор вопроса
bukass
: Ошибок в логах нет, только инфа о подключении и отключении станций, сейчас попробую настроить еще одну точку на подключение к CAPsMANу
Написано
более трёх лет назад
Нет интернета в сети на mikrotik, в чем может быть причина?
Евгений Твердый
@etverdiy
Автор вопроса
bukass
: На данный момент настроил вот так.
export compact
# dec/08/2015 15:02:38 by RouterOS 6.33.3
# software id = 9SX8-BGIH
#
/interface bridge
add name=bridge1
/interface ethernet
set [ find default-name=ether1 ] mac-address=40:6C:8F:04:65:89
/interface wireless
# managed by CAPsMAN
# channel: 2447/20-Ce/gn(20dBm), SSID: KV-35, CAPsMAN forwarding
set [ find default-name=wlan1 ] mode=ap-bridge wireless-protocol=802.11
/caps-man security
add authentication-types=wpa2-psk encryption=aes-ccm,tkip name=security1 passphrase=xxx
/caps-man configuration
add country=russia datapath.bridge=bridge1 mode=ap name=cfg1 security=security1 ssid=KV-35
/ip hotspot profile
set [ find default=yes ] html-directory=flash/hotspot
/ip pool
add name=dhcp ranges=192.168.1.10-192.168.1.254
/ip dhcp-server
add address-pool=dhcp disabled=no interface=bridge1 lease-time=3d name=dhcp1
/caps-man manager
set enabled=yes
/caps-man provisioning
add action=create-dynamic-enabled master-configuration=cfg1
/interface bridge port
add bridge=bridge1 interface=ether2
add bridge=bridge1 interface=ether3
add bridge=bridge1 interface=ether4
add bridge=bridge1 interface=ether5
add bridge=bridge1 disabled=yes interface=wlan1
/interface wireless cap
set bridge=bridge1 caps-man-addresses=192.168.1.1 enabled=yes interfaces=wlan1
/ip address
add address=10.200.253.202/22 interface=ether1 network=10.200.252.0
add address=192.168.1.1/24 interface=ether2 network=192.168.1.0
/ip dhcp-client
add dhcp-options=hostname,clientid interface=ether1
/ip dhcp-server network
add address=192.168.1.0/24 gateway=192.168.1.1 netmask=24
/ip dns
set servers=192.168.248.21,192.168.251.21
/ip firewall nat
add action=masquerade chain=srcnat out-interface=ether1
/ip route
add distance=1 gateway=10.200.252.1
/system clock
set time-zone-name=Europe/Moscow
/system leds
set 5 interface=wlan1
/system routerboard settings
Это корректно?
Написано
более трёх лет назад
Нет интернета в сети на mikrotik, в чем может быть причина?
Евгений Твердый
@etverdiy
Автор вопроса
Попробовал вручную задать клиенту айпишник и он заработал, мб у меня проблемы с dhcp?
Написано
более трёх лет назад
Нет интернета в сети на mikrotik, в чем может быть причина?
Евгений Твердый
@etverdiy
Автор вопроса
Возможно. Как его перенастроить?
Я пробовал отключить его и включить
https://www.dropbox.com/s/qyfzmta0m4jgpik/%D0%A1%D...
Там сейчас такие настройки, может в них что-то поменять?
Написано
более трёх лет назад
Нет интернета в сети на mikrotik, в чем может быть причина?
Евгений Твердый
@etverdiy
Автор вопроса
Странно, телефон получил ip 192.168.88.245
Написано
более трёх лет назад
Нет интернета в сети на mikrotik, в чем может быть причина?
Евгений Твердый
@etverdiy
Автор вопроса
Может опять косяк с конфигами?
dec/07/2015 22:18:56 by RouterOS 6.33
# software id = W3X7-8FQ7
#
/interface bridge
add admin-mac=E4:8D:8C:81:3F:C2 auto-mac=no name=bridge-local protocol-mode=none
/interface wireless
# managed by CAPsMAN
# channel: 2412/20-Ce/gn(20dBm), SSID: KV-94, CAPsMAN forwarding
set [ find default-name=wlan1 ] band=2ghz-b/g/n channel-width=20/40mhz-Ce distance=indoors frequency=auto mode=ap-bridge ssid=\
MikroTik-813FCA wireless-protocol=802.11
/interface ethernet
set [ find default-name=ether1 ] mac-address=40:6C:8F:04:65:89 name=ether1-gateway
set [ find default-name=ether2 ] name=ether2-master-local
set [ find default-name=ether3 ] master-port=ether2-master-local name=ether3-slave-local
set [ find default-name=ether4 ] master-port=ether2-master-local name=ether4-slave-local
set [ find default-name=ether5 ] master-port=ether2-master-local name=ether5-slave-local
set [ find default-name=ether6 ] master-port=ether2-master-local name=ether6-slave-local
set [ find default-name=ether7 ] master-port=ether2-master-local name=ether7-slave-local
set [ find default-name=ether8 ] master-port=ether2-master-local name=ether8-slave-local
set [ find default-name=sfp1 ] master-port=ether2-master-local name=sfp1-slave-local
/ip neighbor discovery
set ether1-gateway discover=no
/caps-man configuration
add channel.band=2ghz-b/g/n channel.extension-channel=Ce channel.frequency=2412 channel.tx-power=20 channel.width=20 country=\
russia datapath.bridge=bridge-local hide-ssid=no load-balancing-group="" max-sta-count=10 mode=ap name=cfg1 rx-chains=0,1,2 \
security.authentication-types=wpa2-psk security.encryption=aes-ccm,tkip security.group-encryption=aes-ccm security.passphrase=\
xxxXXXxxx ssid=KV-94 tx-chains=0,1,2
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip pool
add name=dhcp ranges=192.168.1.2-192.168.1.254
/ip dhcp-server
add address-pool=dhcp disabled=no interface=bridge-local name=default
/caps-man manager
set ca-certificate=auto certificate=auto enabled=yes
/caps-man provisioning
add action=create-dynamic-enabled master-configuration=cfg1
/interface bridge port
add bridge=bridge-local interface=ether2-master-local
add bridge=bridge-local disabled=yes interface=wlan1
/interface wireless cap
set bridge=bridge-local caps-man-addresses=192.168.1.1 enabled=yes interfaces=wlan1
/ip address
add address=192.168.1.1/24 comment="default configuration" interface=ether2-master-local network=192.168.1.0
/ip dhcp-client
add comment="default configuration" dhcp-options=hostname,clientid disabled=no interface=ether1-gateway
/ip dhcp-server network
add address=192.168.1.0/24 comment="default configuration" gateway=192.168.1.1 netmask=24
/ip dns
set allow-remote-requests=yes servers=192.168.248.21
/ip dns static
add address=192.168.1.1 name=router
/ip firewall filter
add chain=input comment="default configuration" protocol=icmp
add chain=input comment="default configuration" connection-state=established,related
add action=drop chain=input comment="default configuration" in-interface=ether1-gateway
add action=fasttrack-connection chain=forward comment="default configuration" connection-state=established,related
add chain=forward comment="default configuration" connection-state=established,related
add action=drop chain=forward comment="default configuration" connection-state=invalid
add action=drop chain=forward comment="default configuration" connection-nat-state=!dstnat connection-state=new in-interface=\
ether1-gateway
/ip firewall nat
add action=masquerade chain=srcnat comment="default configuration" out-interface=ether1-gateway
/ip route
add disabled=yes distance=1 gateway=10.200.252.1
/lcd interface pages
set 0 interfaces=wlan1
/system clock
set time-zone-name=Europe/Moscow
/system identity
set name="MikroTik CAPs Manager"
/system routerboard settings
set protected-routerboot=disabled
/tool mac-server
set [ find default=yes ] disabled=yes
add interface=ether2-master-local
add interface=ether3-slave-local
add interface=ether4-slave-local
add interface=ether5-slave-local
add interface=ether6-slave-local
add interface=ether7-slave-local
add interface=ether8-slave-local
add interface=sfp1-slave-local
add interface=wlan1
add interface=bridge-local
/tool mac-server mac-winbox
set [ find default=yes ] disabled=yes
add interface=ether2-master-local
add interface=ether3-slave-local
add interface=ether4-slave-local
add interface=ether5-slave-local
add interface=ether6-slave-local
add interface=ether7-slave-local
add interface=ether8-slave-local
add interface=sfp1-slave-local
add interface=wlan1
add interface=bridge-local
/tool romon port
set [ find default=yes ] cost=100 forbid=no interface=all secrets="
Написано
более трёх лет назад
Нет интернета в сети на mikrotik, в чем может быть причина?
Евгений Твердый
@etverdiy
Автор вопроса
Так не работает
Написано
более трёх лет назад
Нет интернета в сети на mikrotik, в чем может быть причина?
Евгений Твердый
@etverdiy
Автор вопроса
bukass
:
https://www.dropbox.com/sh/0tcd19qjuxgxc4s/AAAf_3O...
Написано
более трёх лет назад
Нет интернета в сети на mikrotik, в чем может быть причина?
Евгений Твердый
@etverdiy
Автор вопроса
https://www.dropbox.com/s/m5gi5nwqikpqice/%D0%A1%D...
Тут должно быть так или none?
Написано
более трёх лет назад
Нет интернета в сети на mikrotik, в чем может быть причина?
Евгений Твердый
@etverdiy
Автор вопроса
bukass
: Так у меня же настройки вынесены в раздел datapath и создана конфигурация JenDp, которая там и выставлена, её лучше перенести в configuration?
Написано
более трёх лет назад
Нет интернета в сети на mikrotik, в чем может быть причина?
Евгений Твердый
@etverdiy
Автор вопроса
dec/07/2015 21:57:40 by RouterOS 6.33
# software id = W3X7-8FQ7
#
/caps-man channel
add band=2ghz-b/g/n extension-channel=Ce frequency=2412 name=JenCh \
tx-power=20 width=20
/interface bridge
add admin-mac=E4:8D:8C:81:3F:C2 auto-mac=no name=bridge-local \
protocol-mode=none
/interface wireless
# managed by CAPsMAN
# channel: 2412/20-Ce/gn(20dBm), SSID: KV-94, local forwarding
set [ find default-name=wlan1 ] band=2ghz-b/g/n channel-width=\
20/40mhz-Ce disabled=no distance=indoors frequency=auto mode=\
ap-bridge ssid=MikroTik-813FCA wireless-protocol=802.11
/interface ethernet
set [ find default-name=ether1 ] mac-address=40:6C:8F:04:65:89 name=\
ether1-gateway
set [ find default-name=ether2 ] name=ether2-master-local
set [ find default-name=ether3 ] master-port=ether2-master-local name=\
ether3-slave-local
set [ find default-name=ether4 ] master-port=ether2-master-local name=\
ether4-slave-local
set [ find default-name=ether5 ] master-port=ether2-master-local name=\
ether5-slave-local
set [ find default-name=ether6 ] master-port=ether2-master-local name=\
ether6-slave-local
set [ find default-name=ether7 ] master-port=ether2-master-local name=\
ether7-slave-local
set [ find default-name=ether8 ] master-port=ether2-master-local name=\
ether8-slave-local
set [ find default-name=sfp1 ] master-port=ether2-master-local name=\
sfp1-slave-local
/ip neighbor discovery
set ether1-gateway discover=no
/caps-man datapath
add bridge=bridge-local local-forwarding=yes name=JenDp
/caps-man security
add authentication-types=wpa2-psk encryption=aes-ccm,tkip \
group-encryption=aes-ccm name=JenSec passphrase=xxxXXXxxx
/caps-man configuration
add channel=JenCh country=russia datapath=JenDp hide-ssid=no \
load-balancing-group="" max-sta-count=10 mode=ap name=cfg1 \
rx-chains=0,1,2 security=JenSec ssid=KV-94 tx-chains=0,1,2
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip pool
add name=dhcp ranges=192.168.1.2-192.168.1.254
/ip dhcp-server
add address-pool=dhcp disabled=no interface=bridge-local name=default
/caps-man manager
set ca-certificate=auto certificate=auto enabled=yes
/caps-man provisioning
add action=create-dynamic-enabled master-configuration=cfg1
/interface bridge port
add bridge=bridge-local interface=ether2-master-local
add bridge=bridge-local disabled=yes interface=wlan1
/interface wireless cap
set bridge=bridge-local caps-man-addresses=192.168.1.1 enabled=yes \
interfaces=wlan1
/ip address
add address=192.168.1.1/24 comment="default configuration" interface=\
ether2-master-local network=192.168.1.0
/ip dhcp-client
add comment="default configuration" dhcp-options=hostname,clientid \
disabled=no interface=ether1-gateway
/ip dhcp-server network
add address=192.168.1.0/24 comment="default configuration" gateway=\
192.168.1.1 netmask=24
/ip dns
set allow-remote-requests=yes servers=192.168.248.21
/ip dns static
add address=192.168.1.1 name=router
/ip firewall filter
add chain=input comment="default configuration" protocol=icmp
add chain=input comment="default configuration" connection-state=\
established,related
add action=drop chain=input comment="default configuration" \
in-interface=ether1-gateway
add action=fasttrack-connection chain=forward comment=\
"default configuration" connection-state=established,related
add chain=forward comment="default configuration" connection-state=\
established,related
add action=drop chain=forward comment="default configuration" \
connection-state=invalid
add action=drop chain=forward comment="default configuration" \
connection-nat-state=!dstnat connection-state=new in-interface=\
ether1-gateway
/ip firewall nat
add action=masquerade chain=srcnat comment="default configuration" \
out-interface=ether1-gateway
/ip route
add disabled=yes distance=1 gateway=10.200.252.1
/lcd interface pages
set 0 interfaces=wlan1
/system clock
set time-zone-name=Europe/Moscow
/system identity
set name="MikroTik CAPs Manager"
/system routerboard settings
set protected-routerboot=disabled
/tool mac-server
set [ find default=yes ] disabled=yes
add interface=ether2-master-local
add interface=ether3-slave-local
add interface=ether4-slave-local
add interface=ether5-slave-local
add interface=ether6-slave-local
add interface=ether7-slave-local
add interface=ether8-slave-local
add interface=sfp1-slave-local
add interface=wlan1
add interface=bridge-local
/tool mac-server mac-winbox
set [ find default=yes ] disabled=yes
add interface=ether2-master-local
add interface=ether3-slave-local
add interface=ether4-slave-local
add interface=ether5-slave-local
add interface=ether6-slave-local
add interface=ether7-slave-local
add interface=ether8-slave-local
add interface=sfp1-slave-local
add interface=wlan1
add interface=bridge-local
/tool romon port
set [ find default=yes ] cost=100 forbid=no interface=all secrets=""
Написано
более трёх лет назад
Нет интернета в сети на mikrotik, в чем может быть причина?
Евгений Твердый
@etverdiy
Автор вопроса
пытаюсь зарегистрироваться на CAP. Точки добавляются.
https://www.dropbox.com/sh/zesbn419a2zsvuo/AACoZjv...
Написано
более трёх лет назад
Нет интернета в сети на mikrotik, в чем может быть причина?
Евгений Твердый
@etverdiy
Автор вопроса
cap добавляются, но зарегистрироваться не удается
Написано
более трёх лет назад
Нет интернета в сети на mikrotik, в чем может быть причина?
Евгений Твердый
@etverdiy
Автор вопроса
на контроллере
Написано
более трёх лет назад
1
2
3
Следующие →
Войдите на сайт
Чтобы задать вопрос и получить на него квалифицированный ответ.
Войти через центр авторизации
Закрыть
Реклама
# software id = 34NW-X144
#
/interface bridge
add name=bridge1
/interface wireless
# managed by CAPsMAN
# channel: 2447/20-Ce/gn(20dBm), SSID: KV-15, CAPsMAN forwarding
set [ find default-name=wlan1 ] name=wlan2
/interface ethernet
set [ find default-name=ether1 ] mac-address=E4:8D:8C:81:3F:C1
set [ find default-name=ether2 ] mac-address=E4:8D:8C:81:3F:C2
set [ find default-name=ether3 ] mac-address=E4:8D:8C:81:3F:C3
set [ find default-name=ether4 ] mac-address=E4:8D:8C:81:3F:C4
set [ find default-name=ether5 ] mac-address=E4:8D:8C:81:3F:C5
set [ find default-name=ether6 ] mac-address=E4:8D:8C:81:3F:C6
set [ find default-name=ether7 ] mac-address=E4:8D:8C:81:3F:C7
set [ find default-name=ether8 ] mac-address=E4:8D:8C:81:3F:C8
set [ find default-name=sfp1 ] mac-address=E4:8D:8C:81:3F:C9
/caps-man security
add authentication-types=wpa2-psk encryption=aes-ccm,tkip \
group-encryption=aes-ccm name=sec passphrase=XXXXXX
/caps-man configuration
add country=russia datapath.bridge=bridge1 mode=ap name=cfg1 \
security=sec ssid=KV-15
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa-psk,wpa2-psk \
mode=dynamic-keys supplicant-identity=MikroTik \
wpa-pre-shared-key=XXXXXX wpa2-pre-shared-key=XXXXXXX
/ip pool
add name=dhcp ranges=192.168.1.3-192.168.1.254
/ip dhcp-server
add address-pool=dhcp disabled=no interface=bridge1 name=dhcp1
/caps-man manager
set enabled=yes
/caps-man provisioning
add action=create-dynamic-enabled master-configuration=cfg1
/interface bridge port
add bridge=bridge1 interface=ether2
add bridge=bridge1 interface=ether3
add bridge=bridge1 interface=ether4
add bridge=bridge1 interface=ether5
add bridge=bridge1 interface=ether6
add bridge=bridge1 interface=ether7
add bridge=bridge1 interface=ether8
add bridge=bridge1 disabled=yes
add bridge=bridge1 interface=sfp1
/interface wireless cap
set caps-man-addresses=192.168.1.1 enabled=yes interfaces=wlan2
/ip address
add address=192.168.1.1/24 interface=bridge1 network=192.168.1.0
/ip dhcp-client
add dhcp-options=hostname,clientid disabled=no interface=ether1
/ip dhcp-server lease
add address=192.168.1.168 mac-address=00:04:A3:81:72:1C
/ip dhcp-server network
add address=192.168.1.0/24 gateway=192.168.1.1 netmask=24
/ip firewall nat
add action=masquerade chain=srcnat out-interface=ether1
/lcd interface pages
set 0 interfaces=*1
/system clock
set time-zone-name=Europe/Moscow
/system identity
set name=Manager