Cofiguration des VLANs, NAT et DHCP Services

Post date: Feb 14, 2016 7:47:08 PM

Cette configuration WAN = eth1 (ajusté adresse selon le provider, et Gateway)

LAN eth1 avec les vlans mode tag

configure

set interfaces ethernet eth0 vif 10 address 10.10.10.1/24

set interfaces ethernet eth0 vif 20 address 10.20.10.1/24

set interfaces ethernet eth0 vif 30 address 10.30.10.1/24

set interfaces ethernet eth0 vif 40 address 10.40.10.1/24

set interfaces ethernet eth0 vif 50 address 10.50.10.1/24

set interfaces ethernet eth0 vif 168 address 192.168.155.1/24

set interfaces ethernet eth1 address 192.168.0.254/24

set service dhcp-server shared-network-name vlan10 subnet 10.10.10.0/24 default-router 10.10.10.1

set service dhcp-server shared-network-name vlan10 subnet 10.10.10.0/24 start 10.10.10.11 stop 10.10.10.250

set service dhcp-server shared-network-name vlan20 subnet 10.20.10.0/24 default-router 10.20.10.1

set service dhcp-server shared-network-name vlan20 subnet 10.20.10.0/24 start 10.20.10.11 stop 10.20.10.250

set service dhcp-server shared-network-name vlan30 subnet 10.30.10.0/24 default-router 10.30.10.1

set service dhcp-server shared-network-name vlan30 subnet 10.30.10.0/24 start 10.30.10.11 stop 10.30.10.250

set service dhcp-server shared-network-name vlan40 subnet 10.40.10.0/24 default-router 10.40.10.1

set service dhcp-server shared-network-name vlan40 subnet 10.40.10.0/24 start 10.40.10.11 stop 10.40.10.250

set service dhcp-server shared-network-name vlan168 subnet 192.168.155.0/24 default-router 192.168.155.1

set service dhcp-server shared-network-name vlan168 subnet 192.168.155.0/24 start 192.168.155.11 stop 192.168.155.250

set service dns forwarding listen-on eth0

set service dns forwarding listen-on eth0.10

set service dns forwarding listen-on eth0.20

set service dns forwarding listen-on eth0.30

set service dns forwarding listen-on eth0.40

set service dns forwarding listen-on eth0.50

set service dns forwarding listen-on eth0.168

set service nat rule 5010 description "masquerade from all LANs to eth1 WAN"

set service nat rule 5010 source address 192.168.155.0/24

set service nat rule 5010 source address 192.168.2.0/24

set service nat rule 5010 source address 10.10.10.0/24

set service nat rule 5010 source address 10.20.10.0/24

set service nat rule 5010 source address 10.30.10.0/24

set service nat rule 5010 source address 10.40.10.0/24

set service nat rule 5010 source address 10.50.10.0/24

set service nat rule 5010 type masquerade

set service nat rule 5010 outbound-interface eth1

set service nat rule 5010 protocol all

set service nat rule 5010 log disable

set system gateway-address 192.168.0.1

commit

save