## CentreCOM AR550S 設定例集 2.9 ## 32 専用線によるインターネット接続(DMZ) ## ルーターのコンフィグ SET BRI=0 MODE=TDM ACTIVATION=ALWAYS TDMSLOTS=1-2 CREATE TDM GROUP=ISP INT=bri0 SLOTS=1-2 CREATE PPP=0 OVER=TDM-ISP LQR=OFF ENABLE IP ADD IP INT=eth1 IP=4.4.4.1 MASK=255.255.255.248 ADD IP INT=vlan1 IP=192.168.10.1 MASK=255.255.255.0 ADD IP INT=ppp0 IP=0.0.0.0 ADD IP ROUTE=0.0.0.0 INT=ppp0 NEXTHOP=0.0.0.0 ENABLE FIREWALL CREATE FIREWALL POLICY=net ENABLE FIREWALL POLICY=net LOG=DENY ENABLE FIREWALL POLICY=net ICMP_F=PING,UNREACHABLE DISABLE FIREWALL POLICY=net IDENTPROXY ADD FIREWALL POLICY=net INT=eth1 TYPE=PRIVATE ADD FIREWALL POLICY=net INT=vlan1 TYPE=PRIVATE ADD FIREWALL POLICY=net INT=ppp0 TYPE=PUBLIC ADD FIREWALL POLICY=net NAT=ENHANCED INT=vlan1 GBLINT=ppp0 GBLIP=4.4.4.1 ADD FIREWALL POLICY=net RULE=1 AC=ALLOW INT=ppp0 PROTO=TCP IP=4.4.4.2 PORT=80 ADD FIREWALL POLICY=net RULE=2 AC=ALLOW INT=ppp0 PROTO=TCP IP=4.4.4.3 PORT=25 ADD FIREWALL POLICY=net RULE=3 AC=ALLOW INT=ppp0 PROTO=TCP IP=4.4.4.4 PORT=53 ADD FIREWALL POLICY=net RULE=4 AC=ALLOW INT=ppp0 PROTO=UDP IP=4.4.4.4 PORT=53