Code: Select all
/interface bridge
add admin-mac=**ELIDED** auto-mac=no comment=defconf name=bridgeLocal \
port-cost-mode=short
/interface wireguard
add listen-port=13231 mtu=1420 name=wireguard1
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip hotspot profile
set [ find default=yes ] html-directory=hotspot
/port
set 0 name=serial0
/interface bridge port
add bridge=bridgeLocal comment=defconf interface=ether1 internal-path-cost=10 \
path-cost=10
add bridge=bridgeLocal comment=defconf interface=ether2 internal-path-cost=10 \
path-cost=10
add bridge=bridgeLocal comment=defconf interface=ether3 internal-path-cost=10 \
path-cost=10
add bridge=bridgeLocal comment=defconf interface=ether4 internal-path-cost=10 \
path-cost=10
add bridge=bridgeLocal comment=defconf interface=ether5 internal-path-cost=10 \
path-cost=10
/interface wireguard peers
add allowed-address=192.168.32.1/30,192.168.10.0/24 comment=HQ \
endpoint-address=**ELIDED** endpoint-port=**ELIDED** interface=wireguard1 \
persistent-keepalive=25s public-key="**ELIDED**"
/ip address
add address=192.168.32.2/30 interface=wireguard1 network=192.168.32.0
/ip dhcp-client
add comment=defconf interface=bridgeLocal
/ip firewall filter
add action=accept chain=forward dst-address=192.168.10.0/24 src-address=\
10.0.0.0/24
add action=accept chain=forward dst-address=10.0.0.0/24 src-address=\
192.168.10.0/24
/ip route
add disabled=no dst-address=192.168.10.0/24 gateway=wireguard1 routing-table=\
main suppress-hw-offload=no
/system clock
set time-zone-name=America/New_York
/system note
set show-at-login=no