ルータ変更
linksysのブロードバンドルータからNEC IX2015に変更。定価\115,000w
そこらのブロードバンドルータ買うのはばからしいくらい安い値段(と、個人的に思うだけ。ぱんぴー的にどうかは知らん。)で売ってたので、オークションで購入。ファームウェアの更新版が事実上入手できないのはちょっと気になるけど、YAMAHA/Ciscoは高いし、古河Fitelは出品が少ないからコレ。
これでfonやDSを接続するネットワークを論理的に分割完了。
オークションで落ちるようなバージョンのファームウェアだとCLIしかないので、コマンドリファレンスを読みつつ以下のようなコンフィグを作るのに苦痛を覚えない人にはおすすめ。なお、フレッツドットネット用の設定(IPv6トンネル)も入っているけど未検証。
! NEC Portable Internetwork Core Operating System Software ! IX Series IX2010 (magellan-sec) Software, Version 7.2.16, RELEASE SOFTWARE ! Compiled Jul 21-Thu-2005 17:23:23 JST #2 ! Current time Jan 27-Sun-2008 14:57:28 JST ! ! hostname ix2015 timezone +09 00 ! ! ! ! ! ! ntp server 133.243.238.243 ntp server 133.243.238.244 ntp server 133.243.238.163 ntp server 133.243.238.164 ntp master ntp interval 3600 ! ! ! logging buffered 4096 logging subsystem all error logging timestamp datetime ! access-list macfilter-list permit src any dest any type ipv6 access-list macfilter-list permit src any dest any type ip ! ! ip route default FastEthernet0/0.1 ip route 220.210.194.0/25 FastEthernet0/0.2 ip route 220.210.195.0/26 FastEthernet0/0.2 ip route 220.210.195.64/26 FastEthernet0/0.2 ip route 220.210.197.0/27 FastEthernet0/0.2 ip route 220.210.199.0/27 FastEthernet0/0.2 ip route 220.210.199.32/27 FastEthernet0/0.2 ip route 220.210.199.64/28 FastEthernet0/0.2 ip route 220.210.199.128/28 FastEthernet0/0.2 ip route 220.210.199.160/28 FastEthernet0/0.2 ip route 220.210.199.176/28 FastEthernet0/0.2 ip route 220.210.199.200/29 FastEthernet0/0.2 ip route 220.210.203.0/27 FastEthernet0/0.2 ip dhcp enable ip access-list management-list permit ip src 192.168.0.0/24 dest any ip access-list dmz deny ip src any dest 192.168.0.0/24 ip access-list dmz permit ip src any dest any ! ! ! ! snmp-agent ip enable snmp-agent ip community public ! bridge irb enable no bridge 1 bridge ip ! ! proxy-dns ip enable proxy-dns ip query-interval 1 proxy-dns interface FastEthernet0/0.2 priority 200 ! telnet-server ip enable telnet-server ip access-list management-list ! ! ! ! ! ! ppp profile ppp_profile_ひみつ authentication myname ひみつ authentication password ひみつ ひみつ ! ppp profile ppp_profile_square authentication myname guest@flets authentication password guest@flets guest ! ip dhcp profile dhcp_hub_1 assignable-range 192.168.0.101 192.168.0.200 subnet-mask 255.255.255.0 dns-server 192.168.0.1 ! ip dhcp profile dhcp_hub_2 assignable-range 192.168.100.101 192.168.100.200 subnet-mask 255.255.255.0 dns-server 192.168.100.1 ! device FastEthernet0/0 ! device FastEthernet0/1 ! device FastEthernet1/0 ! device BRI1/0 isdn switch-type hsd128k ! interface FastEthernet0/0.0 filter macfilter-list 1 in no ip address bridge-group 1 shutdown ! interface FastEthernet0/1.0 filter macfilter-list 1 in ip address 192.168.100.1/24 ip dhcp binding dhcp_hub_2 ip filter dmz 1 in bridge-group 1 no shutdown ! interface FastEthernet1/0.0 filter macfilter-list 1 in ip address 192.168.0.1/24 ip dhcp binding dhcp_hub_1 bridge-group 1 no shutdown ! interface BRI1/0.0 encapsulation ppp no auto-connect no ip address shutdown ! interface FastEthernet0/0.1 encapsulation pppoe auto-connect ppp binding ppp_profile_ひみつ ip address ipcp ip mtu 1454 ip tcp adjust-mss 1414 ip napt enable no shutdown ! interface FastEthernet0/0.2 encapsulation pppoe auto-connect ppp binding ppp_profile_square ip address ipcp ip mtu 1454 ip tcp adjust-mss 1414 ip napt enable no shutdown ! interface Loopback0.0 no ip address ! interface Null0.0 no ip address ! interface AutoTunnel0.0 no ip address shutdown
