PPPの設定(FreeBSD3.1)


#################################################################
#
#       PPP  Sample Configuration File
#
#         Originally written by Toshiharu OHNO
#
# $Id: ppp.conf.sample,v 1.33 1998/10/03 13:12:14 brian Exp $
#
#################################################################

# This file is separated into sections.  Each section is named with
# a label starting in column 0 and followed directly by a ``:''.  The
# section continues until the next section.  Blank lines and lines
# beginning with ``#'' are ignored.
#
# Lines beginning with "!include" will ``include'' another file.  You
# may want to ``!include ~/.ppp.conf'' for backwards compatibility.
#

# Default setup. Always executed when PPP is invoked.
#  This section is *not* loaded by the ``load'' or ``dial'' commands.
#
#  This is the best place to specify your modem device, it's DTR rate,
#  and any logging specification.  Logging specs should be done first
#  so that subsequent commands are logged.
#
default:
 allow user root ****** ******
 set log Phase Chat IPCP tun command
 set device /dev/cuaa0
 set speed 115200

ondemand:
 set device /dev/cuaa2
 set dial "ABORT BUSY ABORT NO\\sCARRIER TIMEOUT 5 \"\" AT OK-AT-OK ATQ0V1X0$N1=
1 OK \\dATS7=50&K3S0=0 OK \\dATD\\T TIMEOUT 40 CONNECT"
 set speed 115200
 set phone 03********
 set login
 set authname ******@******
 set authkey *******
 set timeout 160
#set ifaddr 10.0.0.1/0 10.0.0.2/0 255.255.255.0 0.0.0.0
 set ifaddr 172.16.0.1/0 172.16.0.2/0 255.255.255.0 0.0.0.0
 add default HISADDR
 enable dns
 set filter dial 0 deny icmp
 set filter dial 1 deny tcp src eq 39
 set filter dial 2 deny tcp dst eq 39
 set filter dial 3 deny udp src eq 39
 set filter dial 4 deny udp dst eq 39
 set filter dial 5 deny tcp src eq 137
 set filter dial 6 deny tcp dst eq 137
 set filter dial 7 deny 0 0 tcp syn finrst
# set filter dial 8 deny udp src eq 53
# set filter dial 9 deny udp dst eq 53
 #set filter dial 1 deny tcp src eq 137
 #set filter dial 2 deny tcp dst eq 137
 #set filter dial 3 deny tcp src eq 138
 #set filter dial 4 deny tcp dst eq 138
 #set filter dial 5 deny tcp src eq 139
 #set filter dial 6 deny tcp dst eq 139
 set filter alive 8 deny udp src eq 53
 set filter alive 9 deny udp dst eq 53
 set filter out 10  deny 10.10.20.0/24 0/0
 #set filter alive 9 deny tcp src eq 137
 #set filter alive 10 deny tcp dst eq 137
 #set filter alive 11 deny tcp src eq 138
 #set filter alive 12 deny tcp dst eq 138
 #set filter alive 13 deny tcp src eq 139
 #set filter alive 14 deny tcp dst eq 139
 set filter dial 15 permit 0 0
 set filter alive 16 permit 0 0

dialback:
 set callback cbcp
 set cbcp *
 enable CHAP
 enable PAP
 set redial 3 1
 set device /dev/cuaa0
 set speed 115200
 set dial "TIMEOUT 10 \"\" AT OK-AT-OK ATZ0 OK ATD\\T CONNECT"
 set ifaddr 192.168.200.1 192.168.200.2
 set nbns 192.168.200.1
# set log +cbcp
# add default HISADDR