# # フレッツ・VPNワイド(LAN型払い出し)を使用した拠点間接続(2拠点) + センター経由インターネット接続 : NVR500 Web GUI設定 # # # 拠点 NVR500(2) # ip route default gateway tunnel 1 ip route 192.168.0.0/24 gateway pp 1 ip lan1 address 192.168.1.1/24 provider lan1 name LAN: provider lan2 name PPPoE/0/0/0/0/0/0:flets_service pp select 1 pp name WAN:flets_service pp keepalive interval 30 retry-interval=30 count=12 pp always-on on pppoe use lan2 pppoe auto disconnect off pppoe call prohibit auth-error count off pp auth accept pap chap pp auth myname (フレッツ・VPNワイドに接続するID) (フレッツ・VPNワイドに接続するパスワード) ppp lcp mru on 1454 ppp ipcp msext on ppp ccp type none ip pp secure filter out 200010 200011 200099 pp enable 1 tunnel select 1 tunnel encapsulation ipip tunnel endpoint address 192.168.1.1 192.168.0.1 tunnel enable 1 ip filter 200000 reject * * udp,tcp 135 * ip filter 200001 reject * * udp,tcp * 135 ip filter 200002 reject * * udp,tcp netbios_ns-netbios_ssn * ip filter 200003 reject * * udp,tcp * netbios_ns-netbios_ssn ip filter 200004 reject * * udp,tcp netbios_ns-netbios_dgm * ip filter 200005 reject * * udp,tcp * netbios_ns-netbios_dgm ip filter 200006 reject * * udp,tcp netbios_ssn * ip filter 200007 reject * * udp,tcp * netbios_ssn ip filter 200008 reject * * udp,tcp 445 * ip filter 200009 reject * * udp,tcp * 445 ip filter 200010 restrict * * tcpfin * www,21,nntp ip filter 200011 restrict * * tcprst * www,21,nntp ip filter 200098 reject-nolog * * established ip filter 200099 pass * * * * * ip filter 500000 restrict * * * * * dhcp service server dhcp server rfc2131 compliant except remain-silent dhcp scope 1 192.168.1.2-192.168.1.191/24 dns server 192.168.0.1 dns private address spoof on dns private name setup.netvolante.jp analog supplementary-service pseudo call-waiting analog extension dial prefix line analog extension dial prefix sip prefix="9#"