FireBrick 2700 Configuration: Difference between revisions

Line 5:

These instructions are mostly applicable to the 2500 too. The difference between the 2700 and the 2500 is that:

*The 2700 has a USB port so supports 3G fallback, the 2500 does not have a USB port.

*The 2700 has faster throughput - ~~350Mb~~/s on the 2700 compared to ~~100Mb~~/s on the 2500.

*The 2700 has faster throughput - 350Mbit/s on the 2700 compared to 100Mbit/s on the 2500.

Line 73:

</syntaxhighlight>

==System:==

==System==

FireBrick with basic system config. Automatic updates to new factory release firmware are enabled by default:

Line 83:

</syntaxhighlight>

==User:==

==User==

Full administrator account:

Line 101:

</syntaxhighlight>

==Logging:==

==Logging==

General logging:

Line 113:

</syntaxhighlight>

==Services - NTP Client:==

==Services - NTP Client==

Set time from FireBrick time server:

Line 123:

</syntaxhighlight>

==Services - Telnet Server:==

==Services - Telnet Server==

Enable telnet server, local-only by default:

Line 153:

</syntaxhighlight>

==Services - HTTP Server:==

==Services - HTTP Server==

Enable HTTP server, local-only by default:

Line 183:

</syntaxhighlight>

==Services - DNS Service:==

==Services - DNS Service==

Enable DNS service, local-only by default:

Line 189:

</syntaxhighlight>

==Port Grouping and Naming:==

==Port Grouping and Naming==

Port grouping for a single PPPoE session:

Line 209:

</syntaxhighlight>

==Ethernet Interface:==

==Ethernet Interface==

LAN Interface:

Line 244:

</syntaxhighlight>

==PPPoE:==

==PPPoE==

Connect to AAISP over PPPoE session (with NAT):

Line 270:

</syntaxhighlight>

==USB and 3G dongle:==

==USB and 3G dongle==

Connect to AAISP over 3G dongle (with NAT):

Line 288:

</syntaxhighlight>

==Static Routes:==

==Static Routes==

3G dongle IPv6 default route using IPv4 tunnel:

Line 294:

</syntaxhighlight>

==Firewall - Rule Set:==

==Firewall - Rule Set==

Default firewall rule for traffic to LAN:

Line 301:

</syntaxhighlight>

==Firewall - Rule(s):==

==Firewall - Rule(s)==

Allow all from the FireBrick to LAN - This rule is important:

Line 317:

</syntaxhighlight>

==VoIP:==

==VoIP==

VoIP with IPv6 source IP defined:

Line 329:

</syntaxhighlight>

==VoIP Carriers:==

==VoIP Carriers==

VoIP carrier that registers with Voiceless and binds inbound/outbound calls to extension 1000 as below:

Line 335:

</syntaxhighlight>

==VoIP Users:==

==VoIP Users==

VoIP user that accepts registrations from your VoIP phone:

Line 344:

=With NAT vs Without NAT=

You have 8 IPv4 for example "1.1.1.1-1.1.1.8" or "1.1.1.1/29", you can use them with NAT or without NAT. By using NAT you would only be using "1.1.1.1" and the other IPs would be unused.

==With NAT:==

==With NAT==

LAN Interface (with NAT):

Line 356:

</syntaxhighlight>

==Without NAT:==

==Without NAT==

LAN Interface (without NAT):

Line 372:

=NAT on a Single Port=

It is possible to have NAT on a single port, for example port 3, while ports 1 and 2 are without NAT.

==Port Grouping and Naming with NAT on Port 3:==

==Port Grouping and Naming with NAT on Port 3==

Line 378:

</syntaxhighlight>

==Ethernet Interface:==

==Ethernet Interface==

Line 392:

</syntaxhighlight>

==PPPoE:==

==PPPoE==

</syntaxhighlight>

==Firewall:==

==Firewall==

<rule-set name="Firewall: LAN" target-interface="LAN" no-match-action="reject" comment="Default firewall rule for traffic to LAN">