#
# ISDN回線で拠点からリモートアクセスする
#

#
# 拠点1 NVR500(2)
#

ip route 192.168.100.0/24 gateway pp 1
ip lan1 address 192.168.1.1/24
ip lan1 proxyarp on
provider lan1 name LAN:
pp select 1
 pp name WAN:center
 pp bind bri1
 account threshold pp 10000
 pp connect count threshold 1000
 pp connect time threshold 180000
 isdn remote address call (センターの電話番号)
 isdn call block time 15
 isdn forced disconnect time 32400
 pp auth accept pap chap
 pp auth myname (拠点1のユーザID) (拠点1のパスワード)
 ppp ipcp ipaddress on
 ppp ipcp msext on
 ip pp secure filter out 200010 200011 200099
 ip pp nat descriptor 1000
 pp enable 1
ip filter 200000 reject * * udp,tcp 135 *
ip filter 200001 reject * * udp,tcp * 135
ip filter 200002 reject * * udp,tcp netbios_ns-netbios_ssn *
ip filter 200003 reject * * udp,tcp * netbios_ns-netbios_ssn
ip filter 200004 reject * * udp,tcp netbios_ns-netbios_dgm *
ip filter 200005 reject * * udp,tcp * netbios_ns-netbios_dgm
ip filter 200006 reject * * udp,tcp netbios_ssn *
ip filter 200007 reject * * udp,tcp * netbios_ssn
ip filter 200008 reject * * udp,tcp 445 *
ip filter 200009 reject * * udp,tcp * 445
ip filter 200010 restrict * * tcpfin * www,21,nntp
ip filter 200011 restrict * * tcprst * www,21,nntp
ip filter 200098 reject-nolog * * established
ip filter 200099 pass * * * * *
ip filter 500000 restrict * * * * *
nat descriptor type 1000 masquerade
dhcp service server
dhcp server rfc2131 compliant except remain-silent
dhcp scope 1 192.168.1.2-192.168.1.191/24
dns private name setup.netvolante.jp
analog supplementary-service pseudo call-waiting
analog extension dial prefix line
analog extension dial prefix sip prefix="9#"