OpenPortalServer 开源Portal协议 WEB认证服务器 介绍 - 图文(4)

certificate request entity ssl crl check disable #

dhcp server ip-pool 1

network 192.169.0.0 mask 255.255.255.0 gateway-list 192.169.0.1

dns-list 218.201.4.3 218.201.17.2 expired day 5 #

dhcp server ip-pool vlan-10

network 192.169.10.0 mask 255.255.255.0 gateway-list 192.169.10.1

dns-list 218.201.4.3 218.201.21.132 #

dhcp server ip-pool vlan-11

network 192.169.11.0 mask 255.255.255.0 gateway-list 192.169.11.1

dns-list 218.201.4.3 218.201.21.132 #

dhcp server ip-pool vlan-12

network 192.169.12.0 mask 255.255.255.0 gateway-list 192.169.12.1

dns-list 218.201.4.3 218.201.21.132 #

dhcp server ip-pool vlan-13

network 192.169.13.0 mask 255.255.255.0 gateway-list 192.169.13.1

dns-list 218.201.4.3 218.201.21.132 #

dhcp server ip-pool vlan-14

network 192.169.14.0 mask 255.255.255.0 gateway-list 192.169.14.1

dns-list 218.201.4.3 218.201.21.132 #

dhcp server ip-pool vlan-15

network 192.169.15.0 mask 255.255.255.0 gateway-list 192.169.15.1

dns-list 218.201.4.3 218.201.21.132 #

user-group system

group-attribute allow-guest #

local-user admin

password cipher $c$3$OPmwVHESNbfHNXczEeMcdq2DmRDCR7kmS/E=

authorization-attribute level 3 service-type ssh terminal service-type ftp service-type web local-user dot1x

password cipher $c$3$nWqagHMVZB63q5qHyLqXBdUlHB39vQ2RPnE= service-type lan-access local-user h3c

password cipher $c$3$ZHwyfLAqYN93aNiWN5J8OHGVh3EAgA== service-type ppp service-type portal #

ssl server-policy sslvpn pki-domain ssl # cwmp

undo cwmp enable #

l2tp-group 1

allow l2tp virtual-template 1 tunnel name LNS #

interface Aux0 async mode flow link-protocol ppp #

interface Cellular0/0 async mode protocol link-protocol ppp # interface Ethernet0/0 port link-mode route

pppoe-server bind Virtual-Template 2 #

interface Ethernet0/1 port link-mode route

firewall packet-filter 3003 inbound nat outbound 3000 address-group 1

ip address dar enable

qos car inbound carl 1 cir 1600 cbs 100000 ebs 0 green pass red discard qos car outbound carl 10 cir 400 cbs 25000 ebs 0 green pass red discard #

interface Ethernet0/2 port link-mode route speed 100 #

interface Ethernet0/2.10 vlan-type dot1q vid 10 nat outbound 3100

ip address 192.169.10.1 255.255.255.0 #

interface Ethernet0/2.11 vlan-type dot1q vid 11 nat outbound 3100

ip address 192.169.11.1 255.255.255.0 #

interface Ethernet0/2.12 vlan-type dot1q vid 12 nat outbound 3100

ip address 192.169.12.1 255.255.255.0 #

interface Ethernet0/2.13 vlan-type dot1q vid 13 nat outbound 3100

ip address 192.169.13.1 255.255.255.0 #

interface Ethernet0/2.14 vlan-type dot1q vid 14

ip address 192.169.14.1 255.255.255.0 #

interface Ethernet0/2.15 vlan-type dot1q vid 15 nat outbound 3100

ip address 192.169.15.1 255.255.255.0 #

interface Ethernet0/2.20 vlan-type dot1q vid 20 nat outbound 3100

ip address 192.169.20.1 255.255.255.0 portal server portal method direct #

interface Serial1/0 link-protocol ppp #

interface Serial1/1 link-protocol ppp

#

interface Virtual-Template1

ppp authentication-mode chap domain system remote address pool 2

ip address 192.169.99.1 255.255.255.0 #

interface Virtual-Template2

ppp authentication-mode chap domain pppoe ppp account-statistics enable ppp ipcp remote-address forced

ppp ipcp dns 218.201.4.3 218.201.21.132 remote address pool 3

ip address 192.169.101.1 255.255.255.0 #

interface Virtual-Template10

ppp authentication-mode chap domain pppoe-server-10 ppp ipcp remote-address forced

ppp ipcp dns 218.201.4.3 218.201.17.2 remote address pool 10 #

interface Virtual-Template11

ppp authentication-mode chap domain pppoe-server-11 ppp ipcp remote-address forced

ppp ipcp dns 218.201.4.3 218.201.17.2 remote address pool 11 #

interface Virtual-Template12

ppp authentication-mode chap domain pppoe-server-12 ppp ipcp remote-address forced

ppp ipcp dns 218.201.4.3 218.201.17.2 remote address pool 12 #

interface Virtual-Template13

ppp authentication-mode chap domain pppoe-server-13 ppp ipcp remote-address forced

ppp ipcp dns 218.201.4.3 218.201.17.2 remote address pool 13 #

interface Virtual-Template14

ppp authentication-mode chap domain pppoe-server-14 ppp ipcp remote-address forced

ppp ipcp dns 218.201.4.3 218.201.17.2 remote address pool 14 #

interface Virtual-Template15

ppp authentication-mode chap domain pppoe-server-15 ppp ipcp remote-address forced

ppp ipcp dns 218.201.4.3 218.201.17.2 remote address pool 15 #

interface NULL0 #

interface Vlan-interface1

ip address 192.169.0.1 255.255.255.0 undo ip fast-forwarding nat outbound 3100

firewall packet-filter 3002 inbound firewall packet-filter 4000 inbound #

interface Ethernet0/3 port link-mode bridge #

interface Ethernet0/4 port link-mode bridge #

dhcp-snooping #

ssl-vpn server-policy sslvpn ssl-vpn enable # #

info-center loghost 192.169.0.6 facility local6 #

dhcp server forbidden-ip 192.169.10.1 192.169.10.10 dhcp server forbidden-ip 192.169.11.1 192.169.11.10 dhcp server forbidden-ip 192.169.12.1 192.169.12.10 dhcp server forbidden-ip 192.169.13.1 192.169.13.10 dhcp server forbidden-ip 192.169.14.1 192.169.14.10 dhcp server forbidden-ip 192.169.15.1 192.169.15.10 dhcp server forbidden-ip 192.169.0.1 192.169.0.30 dhcp server detect #

dhcp enable #

ntp-service unicast-server 202.112.10.60 #

ssh server enable

ssh user admin service-type stelnet authentication-type password #

arp timer aging 10 #

load xml-configuration #

load tr069-configuration #

user-interface tty 12 user-interface aux 0

authentication-mode scheme user-interface vty 0 4

authentication-mode scheme #

return

[END] 2015/8/12 13:16:01