Jump to content

This is the support site for Andrews & Arnold Ltd, a UK Internet provider. Information on these pages is generally for our customers but may be useful to others, enjoy!

FireBrick 2700 Configuration run-through: Difference between revisions

← Older editNewer edit →
Content deleted Content added
AA-Andrew (talk | contribs)
autoreview, Bureaucrats, editor, Interface administrators, reviewer, Administrators
12,616 edits
AA-Andrew (talk | contribs)
autoreview, Bureaucrats, editor, Interface administrators, reviewer, Administrators
12,616 edits
Line 69: Line 69:


So, first we'll add a new subnet, this can go under the current 10.0.0.1 subnet (which we'll delete later.) And we'll make this a DHCP server:
So, first we'll add a new subnet, this can go under the current 10.0.0.1 subnet (which we'll delete later.) And we'll make this a DHCP server:
<syntaxhighlight>
<pre>&lt;subnet ip="90.155.1.1/28" comment="LAN"/&gt;
&lt;dhcp ip="90.155.1.2-12"/&gt;
<subnet ip="90.155.1.1/28" comment="LAN"/>
<dhcp ip="90.155.1.2-12"/>
</pre>
</syntaxhighlight>
Remove the existing DHCP settings for the 10.0.0.1 interface. The LAN! interface now looks like this:
Remove the existing DHCP settings for the 10.0.0.1 interface. The LAN! interface now looks like this:

<pre>&lt;interface port="LAN1"&gt;
<syntaxhighlight>
&lt;subnet comment="dhcp client"/&gt;
<interface port="LAN1">
&lt;subnet ip="2001:DB8::1/64 10.0.0.1/24" nat="true" comment="Temporary IPs for setup only, delete when finished configuring"/&gt;
&lt;subnet ip="90.155.1.1/28" comment="LAN"/&gt;
<subnet comment="dhcp client"/>
<subnet ip="2001:DB8::1/64 10.0.0.1/24" nat="true" comment="Temporary IPs for setup only, delete when finished configuring"/>
&lt;dhcp ip="90.155.1.2-12"/&gt;
<subnet ip="90.155.1.1/28" comment="LAN"/>
&lt;/interface&gt;
<dhcp ip="90.155.1.2-12"/>
</pre>
</interface>
</syntaxhighlight>

Our complete config now looks like this:
Our complete config now looks like this:
<pre>&lt;?xml version="1.0" encoding="UTF-8"?&gt;
&lt;config xmlns="http://firebrick.ltd.uk/xml/fb2700/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://firebrick.ltd.uk/xml/fb2700/
http://firebrick.ltd.uk/xml/fb2700/0.00.605.xsd" timestamp="1970-01-01T00:00:07Z"&gt;
&lt;user name="john" timeout="PT20M" level="DEBUG" password="secret"/&gt;
&lt;port name="LAN1" ports="1"/&gt;
&lt;port name="LAN2" ports="2"/&gt;
&lt;port name="LAN3" ports="3"/&gt;
&lt;port name="LAN4" ports="4"/&gt;
&lt;interface name="LAN1" port="LAN1"&gt;
&lt;subnet comment="dhcp client"/&gt;
&lt;subnet ip="2001:DB8::1/64 10.0.0.1/24" nat="true" comment="Temporary IPs for setup only, delete when finished configuring"/&gt;
&lt;subnet ip="90.155.1.1/28" comment="LAN"/&gt;
&lt;dhcp ip="90.155.1.2-12"/&gt;
&lt;/interface&gt;
&lt;ppp port="LAN4" username="startup_user@startup_domain" password=""
comment="Example PPPoE config for DSL/FTTC/FTTP/etc"/&gt;
&lt;services&gt;
&lt;dns domain="yourdomain.tld" resolvers="217.169.20.20 217.169.20.21"/&gt;
&lt;ntp timeserver="90.155.53.32 2001:8B0:0:53::5A9B:3520"/&gt;
&lt;telnet allow="90.155.1.0/28"/&gt;
&lt;http/&gt;
&lt;/services&gt;
&lt;rule-set target-interface="LAN1" drop="reject" comment="default
firewall rule - block incoming"&gt;
&lt;rule source-interface="self" comment="allow from the FireBrick
though"/&gt;
&lt;/rule-set&gt;
&lt;/config&gt;


<syntaxhighlight>
</pre>
<?xml version="1.0" encoding="UTF-8"?>
<config xmlns="http://firebrick.ltd.uk/xml/fb2700/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://firebrick.ltd.uk/xml/fb2700/ http://firebrick.ltd.uk/xml/fb2700/0.00.605.xsd" timestamp="1970-01-01T00:00:07Z">
<user name="john" timeout="PT20M" level="DEBUG" password="secret"/>
<port name="LAN1" ports="1"/>
<port name="LAN2" ports="2"/>
<port name="LAN3" ports="3"/>
<port name="LAN4" ports="4"/>
<interface name="LAN1" port="LAN1">
<subnet comment="dhcp client"/>
<subnet ip="2001:DB8::1/64 10.0.0.1/24" nat="true" comment="Temporary IPs for setup only, delete when finished configuring"/>
<subnet ip="90.155.1.1/28" comment="LAN"/>
<dhcp ip="90.155.1.2-12"/>
</interface>
<ppp port="LAN4" username="startup_user@startup_domain" password="" comment="Example PPPoE config for DSL/FTTC/FTTP/etc"/>
<services>
<dns domain="yourdomain.tld" resolvers="217.169.20.20 217.169.20.21"/>
<ntp timeserver="90.155.53.32 2001:8B0:0:53::5A9B:3520"/>
<telnet allow="90.155.1.0/28"/>
<http/>
</services>
<rule-set target-interface="LAN1" drop="reject" comment="default firewall rule - block incoming">
<rule source-interface="self" comment="allow from the FireBrick though"/>
</rule-set>
</config>
</syntaxhighlight>

At this point we can save the config, there should be no errors.
At this point we can save the config, there should be no errors.


Line 120: Line 122:
comment="Temporary IPs for setup only, delete when finished configuring"/&gt;
comment="Temporary IPs for setup only, delete when finished configuring"/&gt;
</pre>
</pre>
Save, and re-connect to the web interface.
Save, and re-connect to the web interface.


= PPPoE =
= PPPoE =
Retrieved from "http://support.aa.net.uk/FireBrick_2700_Configuration_run-through"