Jump to content

This is the support site for Andrews & Arnold Ltd, a UK Internet provider. Information on these pages is generally for our customers but may be useful to others, enjoy!

FireBrick 2700 Configuration: Difference between revisions

FireBrick 2700 Configuration (view source)

Revision as of 21:18, 6 January 2015

19 bytes removed ,  6 January 2015
m
clean up, typos fixed: 350Mb/s → 350Mbit/s (2)
mNo edit summary
m (clean up, typos fixed: 350Mb/s → 350Mbit/s (2))
These instructions are mostly applicable to the 2500 too. The difference between the 2700 and the 2500 is that:
*The 2700 has a USB port so supports 3G fallback, the 2500 does not have a USB port.
*The 2700 has faster throughput - 350Mb350Mbit/s on the 2700 compared to 100Mb100Mbit/s on the 2500.
 
 
</syntaxhighlight>
 
==System:==
FireBrick with basic system config. Automatic updates to new factory release firmware are enabled by default:
<syntaxhighlight>
</syntaxhighlight>
 
==User:==
Full administrator account:
<syntaxhighlight>
</syntaxhighlight>
 
==Logging:==
General logging:
<syntaxhighlight>
</syntaxhighlight>
 
==Services - NTP Client:==
Set time from FireBrick time server:
<syntaxhighlight>
</syntaxhighlight>
 
==Services - Telnet Server:==
Enable telnet server, local-only by default:
<syntaxhighlight>
</syntaxhighlight>
 
==Services - HTTP Server:==
Enable HTTP server, local-only by default:
<syntaxhighlight>
</syntaxhighlight>
 
==Services - DNS Service:==
Enable DNS service, local-only by default:
<syntaxhighlight>
</syntaxhighlight>
 
==Port Grouping and Naming:==
Port grouping for a single PPPoE session:
<syntaxhighlight>
</syntaxhighlight>
 
==Ethernet Interface:==
LAN Interface:
<syntaxhighlight>
</syntaxhighlight>
 
==PPPoE:==
Connect to AAISP over PPPoE session (with NAT):
<syntaxhighlight>
</syntaxhighlight>
 
==USB and 3G dongle:==
Connect to AAISP over 3G dongle (with NAT):
<syntaxhighlight>
</syntaxhighlight>
 
==Static Routes:==
3G dongle IPv6 default route using IPv4 tunnel:
<syntaxhighlight>
</syntaxhighlight>
 
==Firewall - Rule Set:==
Default firewall rule for traffic to LAN:
<syntaxhighlight>
</syntaxhighlight>
 
==Firewall - Rule(s):==
Allow all from the FireBrick to LAN - This rule is important:
<syntaxhighlight>
</syntaxhighlight>
 
==VoIP:==
VoIP with IPv6 source IP defined:
<syntaxhighlight>
</syntaxhighlight>
 
==VoIP Carriers:==
VoIP carrier that registers with Voiceless and binds inbound/outbound calls to extension 1000 as below:
<syntaxhighlight>
</syntaxhighlight>
 
==VoIP Users:==
VoIP user that accepts registrations from your VoIP phone:
<syntaxhighlight>
=With NAT vs Without NAT=
You have 8 IPv4 for example "1.1.1.1-1.1.1.8" or "1.1.1.1/29", you can use them with NAT or without NAT. By using NAT you would only be using "1.1.1.1" and the other IPs would be unused.
==With NAT:==
LAN Interface (with NAT):
<syntaxhighlight>
<ppp name="AAISP" port="WAN" username="me@a.1" password="secret" nat="true" graph="AAISP" log="default"/>
</syntaxhighlight>
==Without NAT:==
LAN Interface (without NAT):
<syntaxhighlight>
=NAT on a Single Port=
It is possible to have NAT on a single port, for example port 3, while ports 1 and 2 are without NAT.
==Port Grouping and Naming with NAT on Port 3:==
<syntaxhighlight>
<port name="LAN" ports="1 2"/>
<port name="WAN" ports="4"/>
</syntaxhighlight>
==Ethernet Interface:==
<syntaxhighlight>
<interface name="LAN" port="LAN" ra-client="false">
<interface name="WAN" port="WAN" ra-client="false"/>
</syntaxhighlight>
==PPPoE:==
<syntaxhighlight>
<ppp name="AAISP" port="WAN" username="me@a.1" password="secret" nat="false" graph="AAISP" log="default"/>
</syntaxhighlight>
==Firewall:==
<syntaxhighlight>
<rule-set name="Firewall: LAN" target-interface="LAN" no-match-action="reject" comment="Default firewall rule for traffic to LAN">
Reedy
editor
699

edits

Retrieved from ‘http://support.aa.net.uk/Special:MobileDiff/6401