Configurazione Netgear DG834G per una adsl Telecom Interbusiness

Oggi configuriamo una ADSL Telecom Interbusiness su un Netgear Router
Firewall ADSL Wireless DG834G.

Ipotizziamo che i seguenti parametri ci siano stati dati da Telecom:

ip lan: 88.57.20.1/255.255.255.248
ip ptp: 88.57.6.1/255.255.255.252

il gateway è in genere il secondo ip della lan, quinid in questo caso:
gw: 88.57.20.2

L’ip da assegnare al nostro router è quindi, di solito, il terzo:
ip router: 88.57.20.3

Detto questo copiate le seguenti righe dentro un file dal nome
netgear.cfg
ed importatelo nella configurazione del router.
L’ip del router in lan sarà 192.168.0.254
il nome utente/password: admin/admin

# Netgear DG834 Text Format Configure File v0.2
#
# FW Version V4.01.04
#
# Usage:
# # value list or syntax
# [index]”variable”=value

#< Wizard >
# English German Italian French
[10001]”Language”=Italian
# Australia France Italy Singapore Sweden Switzerland UK Other
[10002]”Country”=Italy
#< Basic Settings >
# dhcpc pppoe pppoa ipoa bridge ip
[20001]”WAN protocol”=ipoa
# 0:off 1:on
[20002]”NAT (Network Address Translation)”=1
#< PPPoE >
[20101]”Login”=
[20102]”Password”=
[20103]”Service Name”=
[20104]”Idle Timeout”=0
[20105]”Static IP Address”=
#< PPPoA >
[20201]”Login”=Guest
[20202]”Password”=
[20203]”Idle Timeout”=0
[20204]”Static IP Address”=
#< Get Dynamically From ISP >
[20301]”Account Name”=
[20302]”Domain Name”=
#< Static IP Address >
[20401]”IP Address”=
[20402]”IP Subnet Mask”=
[20403]”Gateway IP Address”=
#< IP Over ATM (IPoA) >
[20501]”IP Address”=88.57.20.3
[20502]”IP Subnet Mask”=255.255.255.248
[20503]”Gateway IP Address”=88.57.20.2
#< Domain Name Server (DNS) Address >
# 0:off 1:on
[20601]”Use These DNS Servers”=1
[20602]”Primary DNS”=151.99.125.2
[20603]”Secondary DNS”=212.216.172.62
#< Router MAC Address >
# MAC address
[20701]”Use This MAC Address”=
#< ADSL Settings >
# 0: LLC-BASED 1: VC-BASED
[30001]”Multiplexing Method”=0
[30002]”VPI”=8
[30003]”VCI”=35
#< Wireless Settings >
[40001]”Name (SSID)”=wlan
# Africa Asia Australia Canada France Israel Japan Mexico ‘South
America’ USA
[40002]”Region”=Europe
# 0 – 14
[40003]”Channel”=11
# 0: g & b 1: b only 3: g only
[40004]”Mode”=0
# 0:off 1:on
[40005]”Enable Wireless Access Point”=1
# 0:off 1:on
[40006]”Allow Broadcast of Name (SSID)”=1
# 0:off 1:on
[40007]”Wireless Isolation”=0
# 0:off 1:wep 2:wpa 3:802.1x
[40008]”Security Options”=0
#< Wireless Station Access List >
# 0:off 1:on
[40101]”Turn Access Control On”=1
# MAC+name
[40102]”Trusted Wireless Stations”=00:18:DE:A0:47:55MaurizioNB
#< WEP (Wired Equivalent Privacy) >
# 1: Open System 2: Shared Key 3: Automatic
[40201]”Authentication Type”=3
# 0 64 or 128
[40202]”Encryption Strength”=0
# 1 2 3 4
[40203]”Key Index”=1
[40204]”Key 1″=
[40205]”Key 2″=
[40206]”Key 3″=
[40207]”Key 4″=
#< WPA-PSK >
# (8 ~ 64 characters)
[40301]”Network Key”=
#< WPA-802.1x >
[40401]”Radius Server Name/IP Address”=
[40402]”Radius Port”=1812
[40403]”Shared Key”=
#< Logs >
# 0:off 1:on
[50001]”Attempted access to blocked sites”=1
# 0:off 1:on
[50002]”Connections to the Web-based interface of this Router”=1
# 0:off 1:on
[50003]”Router operation”=1
# 0:off 1:on
[50004]”Known DoS attacks and Port Scans”=1
# 0:Disable 1:Broadcast on LAN 2:Send to Syslog server
[50005]”Syslog”=0
[50006]”Send to this Syslog server IP address”=
#< Block Sites >
# 0:Never 1:Always 2:Per Schedule
[60001]”Keyword Blocking”=1
[60002]”Block Sites Containing these Keywords or Domain Names”=
# 0:off 1:on
[60003]”Allow Trusted IP Address to Visit Blocked Sites”=0
[60004]”Trusted IP Address”=
#< Firewall Rules >
# ENABLE:SERVICE_NAME:ACTION:LAN:WAN:LOG
#
# ENABLE: 0=on or 1=off
# SERVICE_NAME: Actual Service in service table
# ACTION: 0:BLOCK always 1:BLOCK by schedule 2:ALLOW always 3:ALLOW by
schedule
# LAN: 0/0: Any a.b.c.d: Single 1.2.3.4-5.6.7.8: Range
# WAN: 0/0: Any a.b.c.d: Single 1.2.3.4-5.6.7.8: Range
# LOG: 0:Never 1:Always 2: Match 3: Not Match
# ex: 1:Any(ALL):2:192.168.0.250:0/0:1
[70001]”Inbound Rule”=
# The Same as Inbound Rule
[70002]”Outbound Rule”=
#< Services >
# NAME:PROTOCOL:START_PORT-END_PORT
#
# PROTOCOL: tcp udp both all
# ex: Any(TCP):tcp:1-65535
[80001]”Service Table”=
#< Schedule >
# DAY:START_TIME-END_TIME ex:1111111:00:00-24:00
[90001]”Schedule”=1111111:00:00-24:00
#< Time Zone >
# UI (-12 ~ GMT ~ +12)
[90101]”Time Zone”=GMTb
# System (GMT+12 ~ GMT-12)
[90102]”Time Zone”=GMT+0
# 0:off 1:on
[90103]”Daylight Savings Time”=
# 0:off 1:on
[90104]”Use this NTP Server”=0
[90105]”NTP Server”=
#< E-mail >
# 0:off 1:on
[100001]”Turn E-mail Notification On”=1
[100002]”Send To This E-mail Address”=
[100003]”Outgoing Mail Server”=
# 0:off 1:on
[100004]”My Mail Server requires authentication”=0
[100005]”User Name”=
[100006]”Password”=
#< Send E-Mail alerts immediately >
# 0:off 1:on
[100101]”If a DoS attack is detected”=1
# 0:off 1:on
[100102]”If a Port Scan is detected”=1
# 0:off 1:on
[100103]”If someone attempts to access a blocked site”=1
# 0:None 1:When Log is Full 2:Hourly 3:Daily 4:Daily
[100104]”Send Logs According to this Schedule”=3
# 0:off 1:on
[100105]”Send mail when Log is Full”=0
# 0:Sun ~ 6:Sat
[100106]”Day”=
# 0 ~ 24
[100107]”Hour”=11
#< Set Password >
[110001]”Username”=admin
[110002]”Password”=admin
# 0 ~ 99
[110003]”Login times out”=5
#< WAN Setup >
# 0:off 1:on
[120001]”Connect Automatically, as Required”=1
# 0:off 0:on
[120002]”Port Scan and DOS Protection”=1
# 0:off 1:on
[120003]”Enable DMZ Server”=0
[120004]”DMZ Server”=
# 0:off 1:on
[120005]”Respond to Ping on Internet WAN Port”=1
[120006]”MTU Size”=1500
#< Dynnamic DNS >
# 0:off 1:on
[130001]”Use a Dynamic DNS Service”=0
[130002]”Host Name”=
[130003]”User Name”=
[130004]”Password”=
# 0:off 1:on
[130005]”Use Wildcards”=0
#< LAN IP Setup >
#< LAN TCP/IP Setup >
[140101]”IP Address”=192.168.0.254
[140102]”IP Subnet Mask”=255.255.255.0
[140103]”Broadcast IP Address”=192.168.0.255
#< RIP >
# 0:none in:In Only out:Out Only both:Both
[140201]”RIP Direction”=0
# 1:RIP-1 2B:RIP-2B 2M:RIP-2M
[140202]”RIP Version”=1
#< DHCP Server >
# 0:off 1:on
[140301]”Use Router as DHCP Server”=1
[140302]”Starting IP Address”=192.168.0.210
[140303]”Ending IP Address”=192.168.0.250
# Name;IP;MAC
[140304]”Address Reservation”=
#< Remote Management >
# 0:off 1:on
[150001]”Turn Remote Management On”=1
# 1:single 2:range 3:everyone
[150002]”Allow Remote Access By”=3
[150003]”Only This Computer”=
[150004]”IP Address Range Start”=
[150005]”IP Address Range End”=
[150006]”Port Number”=8080
#< Static Routes >
# Name:Dest_ip:Netmask:Gateway:Metric:Private:Active
[160001]”Routes”=
#< UPnP >
# 0:off 1:on
[170001]”Turn UPnP On”=1
[170002]”Advertisement Period”=30
[170003]”Advertisement Time To Live”=4
#< VPN >
[180001]”VPN Version”=2
[180001]”VPN policy”=1
#< SNMP >
# 0:off 1:on
[190001]”Turn SNMP On”=0
# 0:off 1:on
[190002]”Disable Local Web Admin Access”=
[190003]”Read Community Name”=
[190004]”System Contact”=
[190005]”System Name”=
[190006]”System Location”=


principio di Napoleone:
non attribuire a malintenzione cio’ che puo’
essere semplicemente spiegato come imbecillita’

MaoX Blog:
http://maox.blogspot.com