I have a "SXT LTE kit" Product: RBSXTR&R11e-LTE.
On my network, the connection to the Internet is made several times a day. If I use another LTE modem in the same location, there is no problem.
Can it be that I have a bug in my configurations?
Anbei meine Konfiguration:
Code: Select all
# feb/18/2019 22:14:50 by RouterOS 6.43.12
# software id = W61C-2SX4
#
# model = RBSXTR
/interface lte
set [ find ] allow-roaming=yes mac-address=AC:FF:FF:00:00:00 name=lte0 network-mode=lte
/interface ethernet
set [ find default-name=ether1 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full name=gig0
set [ find default-name=ether2 ] advertise=10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full disabled=yes name=gig1
/interface lte apn
set [ find default=yes ] apn=drei.at default-route-distance=1 name=apn0
/ip dhcp-server option
add code=43 name=netbios value=0x010400000002
/ip dhcp-server option sets
add name=set0 options=netbios
/ip pool
add comment="255.255.255.192 | 26" name=pool0 ranges=172.27.220.1-172.27.220.62
/ip dhcp-server
add address-pool=pool0 disabled=no interface=gig0 lease-time=1w name=dhcp0
/system logging action
set 1 disk-file-count=1 disk-file-name=flash/disk
add name=firewall target=memory
add disk-file-count=1 disk-file-name=flash/debug name=debug target=disk
/ip settings
set tcp-syncookies=yes
/ip address
add address=172.27.220.254/24 interface=gig0 network=172.27.220.0
/ip cloud
set ddns-enabled=yes
/ip dhcp-server lease
add address=172.27.220.60 client-id=1:84:89:ad:3:38:23 mac-address=84:89:AD:03:38:23 server=dhcp0
/ip dhcp-server network
add address=172.27.220.0/24 dhcp-option-set=set0 dns-server=9.9.9.9 gateway=172.27.220.254
/ip dns
set servers=1.1.1.1
/ip dns static
add address=172.27.220.254
add address=172.27.220.254
/ip firewall address-list
add address=208.90.63.204 comment="Cisco Systems Ironport Division" list=list-ntp
add address=68.232.132.60 comment="Cisco Systems Ironport Division" list=list-ntp
add address=1.1.1.1 comment="Cloudflare, Inc." list=list-dns
add address=8.8.4.4 comment="Google LLC" list=list-dns
add address=8.8.8.8 comment="Google LLC" list=list-dns
add address=9.9.9.9 comment=www.quad9.net list=list-dns
add address=0.0.0.0/8 comment=RFC6890 list=list-rfc
add address=10.0.0.0/8 comment=RFC6890 list=list-rfc
add address=100.64.0.0/10 comment=RFC6890 list=list-rfc
add address=127.0.0.0/8 comment=RFC6890 list=list-rfc
add address=169.254.0.0/16 comment=RFC6890 list=list-rfc
add address=172.16.0.0/12 comment=RFC6890 list=list-rfc
add address=192.0.0.0/24 comment=RFC6890 list=list-rfc
add address=192.0.2.0/24 comment=RFC6890 list=list-rfc
add address=192.168.0.0/16 comment=RFC6890 list=list-rfc
add address=192.88.99.0/24 comment=RFC3068 list=list-rfc
add address=198.18.0.0/15 comment=RFC6890 list=list-rfc
add address=198.51.100.0/24 comment=RFC6890 list=list-rfc
add address=203.0.113.0/24 comment=RFC6890 list=list-rfc
add address=224.0.0.0/4 comment=RFC4601 list=list-rfc
add address=240.0.0.0/4 comment=RFC6890 list=list-rfc
/ip firewall filter
add action=accept chain=input comment=established connection-state=established
add action=accept chain=input comment=related connection-state=related
add action=drop chain=input comment=invalid connection-state=invalid
add action=jump chain=input jump-target=ICMP protocol=icmp
add action=drop chain=input in-interface=lte0 protocol=udp src-port=53
add action=drop chain=input in-interface=lte0 protocol=udp src-port=443
add action=drop chain=input dst-port=123 in-interface=lte0 protocol=udp
add action=drop chain=input in-interface=lte0
add action=accept chain=input comment=samsung dst-port=15600 in-interface=gig0 protocol=udp
add action=accept chain=input comment=neighbor dst-port=5678 in-interface=gig0 protocol=udp
add action=accept chain=input comment=netbios dst-port=138 in-interface=gig0 protocol=udp
add action=accept chain=input comment=dhcp dst-port=67 in-interface=gig0 protocol=udp src-port=68
add action=accept chain=input comment=dns dst-port=53 in-interface=gig0 protocol=udp
add action=accept chain=input comment=dns dst-port=53 in-interface=gig0 protocol=tcp src-address=172.27.220.0/24
add action=accept chain=input comment=http dst-port=80 in-interface=gig0 protocol=tcp src-address=172.27.220.0/24
add action=accept chain=input comment=https dst-port=443 in-interface=gig0 protocol=tcp src-address=172.27.220.0/24
add action=accept chain=input comment=winbox dst-port=8291 in-interface=gig0 protocol=tcp src-address=172.27.220.0/24
add action=drop chain=input in-interface=gig0 log=yes log-prefix=drop
add action=drop chain=input log=yes log-prefix=drop
add action=drop chain=forward disabled=yes protocol=tcp tcp-flags=syn,rst
add action=accept chain=forward comment=established connection-state=established
add action=accept chain=forward comment=related connection-state=related
add action=drop chain=forward comment=invalid connection-state=invalid
add action=jump chain=forward jump-target=ICMP protocol=icmp
add action=accept chain=forward out-interface=lte0 src-address=172.27.220.0/24
add action=drop chain=forward log=yes log-prefix=drop
add action=accept chain=ICMP icmp-options=8:0 limit=1,5:packet protocol=icmp
add action=accept chain=ICMP icmp-options=0:0 protocol=icmp
add action=accept chain=ICMP icmp-options=11:0 protocol=icmp
add action=accept chain=ICMP icmp-options=3:0-1 protocol=icmp
add action=accept chain=ICMP icmp-options=3:4 protocol=icmp
add action=drop chain=ICMP log=yes log-prefix=drop protocol=icmp
/ip firewall nat
add action=masquerade chain=srcnat out-interface=lte0 src-address=172.27.220.0/24
add action=dst-nat chain=dstnat disabled=yes dst-port=80 in-interface=lte0 protocol=tcp to-addresses=172.27.220.253 to-ports=80
/ip service
set telnet disabled=yes
set ftp disabled=yes
set api disabled=yes
set api-ssl disabled=yes
/system clock
set time-zone-name=Europe/Vienna
/system identity
set name=Vosendorf
/system leds
# using RSRP, modem-signal-treshold ignored
set 0 interface=lte0
/system logging
set 0 disabled=yes topics=lte
set 1 action=disk
set 2 action=disk
set 3 action=disk
add action=firewall topics=firewall
add action=debug topics=debug
/system ntp client
set enabled=yes server-dns-names=time.sco.cisco.com
/system watchdog
set automatic-supout=no watchdog-timer=no
/tool graphing interface
add allow-address=172.27.220.0/24 interface=lte0
add allow-address=172.27.220.0/24 interface=gig0
add allow-address=172.27.220.0/24 interface=gig1
/tool graphing resource
add allow-address=172.27.220.0/24