notempty
12.6.2
- 05.2024
- (v12.6.0)
- (v12.6.0)
- (v12.6.0)
- (v12.6.0)
- (v12.6.0)
- 05.2024
notempty
| [[Datei:]] | |||
| x25519-device | |||
| [[Datei:]] | |||
ED25519/X25519 Export Format: |
|||
| [[Datei:]] | |||
| FQDN | a.vpn.anyideas.de | b.vpn.anyideas.de | – |
| ' | 10.1.0.0/16 | 10.2.0.0/16 | 10.0.1.0/24 |
| ' | 10.0.1.1/24 | 10.0.1.2/24 | – |
| ' | fd00:a:0:0::0/64 | fd00:b:0:0::0/64 | fd00:0:0:0::0/64 |
| ' | fd00:0:0:0::1/64 | fd00:0:0:0::2/64 | – |
| UTM | Roadwarrior | ||
|---|---|---|---|
| FQDN | a.vpn.anyideas.de | – | – |
| ' | 10.1.0.0/16 | – | 10.0.1.0/24 |
| ' | 10.0.1.1/24 | 10.0.1.201/24 | – |
| ' | fd00:a:0:0::0/64 | – | fd00:0:0:0::0/64 |
| ' | fd00:0:0:0::1/64 | fd00:0:0:0::C9/64 | – |
|
| |||
| [[Datei:]] | |||
| |||
| notempty v12.6.0 |
[Interface] Address = 10.0.0.1/24 Address = C0FF::EEEE/64 ListenPort = 51824 PrivateKey = interfacePrivateKeyaaaaaaaaaaaaaaaaaaaaaaaa= [Peer] AllowedIPs = 10.0.0.2/32, 10.0.0.3/32 AllowedIPs = 10.0.0.4/32 Endpoint = 1.2.3.4:51825 PersistentKeepalive = 30 PresharedKey = peerPresharedKeyaaaaaaaaaaaaaaaaaaaaaaaaaaa= PublicKey = peerPublicKeyaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa= | ||
| wg0 | [[Datei:]] | ||
| wg_server | |||
| 51820 | |||
| | |||
| |
|||
| [[Datei:]] | |||
| peer_rw | |||
| » » | |||
| |
|||
| | |||
| | |||
| |
|||
| ••••••••••••••••••••••••••• | |||
| |
|||
| 25 | |||
|
AD
| |||
| [[Datei: ]] | |||
| (IPv4): | |||
| (IPv6): | |||
| [[Datei:]] | |||
' ' route set id <ID> flags BLACKHOLE_IF_OFFLINE | |||
| wireguard-wg0 | |||
| »wg-net-peer_rw»wg-net6-peer_rw |
|||
| wg0-network | |||
|
| |||
|
WireGuard Client
| |||
| [[Datei: ]] [Interface]
PrivateKey = # PrivatKey für RW
Address = # Netz-IP für den Roadwarrior
DNS = # IP_DES_DNServers (optional), # Search Domain (optional)
MTU = 1420 # (optional) | |||
| sFWO… …LmDM= | |||
| ' [Interface] | |||
| PrivateKey = | uIp… …9E3XA= | ||
| Address = | 10.0.1.201/32 | ||
| DNS = | 10.0.1.1, beispiel.local | ||
| MTU = | 1420 | ||
| ListenPort = | 51820 | ||
| [Peer] | |||
| PublicKey = | beN9ikz… …Do= | ||
| PresharedKey = | 29… …/Wipaxs= | ||
| AllowedIPs = | 10.1.0.0/16 | ||
| Endpoint = | a.vpn.anyideas.de:51820 | ||
| persistentkeepalive = | 25 | Keepalive | |
'
| extc-Variable | Default | |
|---|---|---|
| CONNECTION_RATE_LIMIT_TCP | 0 | |
| CONNECTION_RATE_LIMIT_TCP_PORTS | ||
| CONNECTION_RATE_LIMIT_UDP | 20 / 0 |
|
| CONNECTION_RATE_LIMIT_UDP_PORTS | [ 1194 1195 ] |
| extc value get application securepoint_firewall spcli extc value get application securepoint_firewall | grep RATE |
application |variable |value --------------------+-------------------------------+----- securepoint_firewall |… |… |CONNECTION_RATE_LIMIT_TCP |0 |CONNECTION_RATE_LIMIT_TCP_PORTS| |CONNECTION_RATE_LIMIT_UDP |20 |CONNECTION_RATE_LIMIT_UDP_PORTS| |
| extc value set application securepoint_firewall variable CONNECTION_RATE_LIMIT_TCP value 20 system update rule |
|
| extc value set application securepoint_firewall variable CONNECTION_RATE_LIMIT_TCP value 0 system update rule |
|
| extc value set application securepoint_firewall variable CONNECTION_RATE_LIMIT_TCP_PORTS value [ 443 11115 ] system update rule |
|
| extc value set application securepoint_firewall variable CONNECTION_RATE_LIMIT_TCP_PORTS value [ ] system update rule |
|
| extc value set application securepoint_firewall variable CONNECTION_RATE_LIMIT_UDP value 20 system update rule |
|
| extc value set application securepoint_firewall variable CONNECTION_RATE_LIMIT_UDP value 0 system update rule |
|
| extc value set application securepoint_firewall variable CONNECTION_RATE_LIMIT_UDP_PORTS value [ 1194 1195 ] system update rule |
|
| extc value set application securepoint_firewall variable CONNECTION_RATE_LIMIT_UDP_PORTS value [ ] system update rule |
|
extc value set application securepoint_firewall variable CONNECTION_RATE_LIMIT_TCP value 20 |