Below is my >export hide-sensitive file
Code: Select all
/ip dhcp-client
add disabled=no interface="1-702 Com"
/ip dhcp-server lease
add address=172.16.12.50 client-id=\
ff:b6:22:f:eb:0:2:0:0:ab:11:a5:a9:73:db:7f:8b:bf:5d mac-address=\
F8:DB:88:FC:7B:A1 server=dhcp2
/ip dhcp-server network
add address=172.16.12.0/24 gateway=172.16.12.1 netmask=24
add address=192.168.88.0/24 gateway=192.168.88.1
/ip firewall address-list
add address=379704868df8.sn.mynetname.net list=hairpin
/ip firewall filter
add action=accept chain=input comment="defconf: accept ICMP" protocol=icmp
add action=accept chain=input comment="accept established,related" \
connection-state=established,related
add action=drop chain=input connection-state=invalid
add action=accept chain=input comment=\
"defconf: accept established,related,untracked" connection-state=\
established,related,untracked
add action=drop chain=input comment="defconf: drop invalid" connection-state=\
invalid
/ip firewall nat
add action=masquerade chain=srcnat comment=Hairpin dst-address=\
192.168.88.0/24 src-address=192.168.88.0/24
add action=masquerade chain=srcnat comment="Masquerade for IP conversion" \
out-interface="1-702 Com"
add action=dst-nat chain=dstnat comment=Maintnence dst-port=22 in-interface=\
"1-702 Com" protocol=tcp to-addresses=172.16.12.50 to-ports=22
add action=dst-nat chain=dstnat comment=Vanilla disabled=yes dst-port=25569 \
in-interface="1-702 Com" in-interface-list=listBridge protocol=tcp \
to-addresses=172.16.12.50 to-ports=25569
add action=dst-nat chain=dstnat comment=RidJava dst-port=25565 in-interface=\
"1-702 Com" protocol=tcp to-addresses=172.16.12.50 to-ports=25565
add action=dst-nat chain=dstnat comment=RidBed-needswork dst-port=19132 \
in-interface="1-702 Com" protocol=tcp to-addresses=172.16.12.50 to-ports=\
19132
add action=dst-nat chain=dstnat comment=Origins disabled=yes dst-port=25567 \
in-interface="1-702 Com" in-interface-list=listBridge protocol=tcp \
to-addresses=172.16.12.50 to-ports=25567
/ip service
set telnet disabled=yes
set www disabled=yes
set ssh port=2200
set api disabled=yes
set api-ssl disabled=yes
/ip ssh
set strong-crypto=yes
