!
! Century Systems NXR-530 Series ver 21.11.5 (build 31/08:24 19 11 2021)
!
hostname nxr530
telnet-server enable
telnet-server ip forbidden-access-wan
telnet-server ipv6 forbidden-access-wan
http-server enable
http-server ip forbidden-access-wan
http-server ipv6 forbidden-access-wan
no rest http enable
no rest https enable
!
!
!
!
!
ipv6 forwarding
fast-forwarding enable
!
!
!
!
ppp account username [ISP接続用ユーザID] password [ISP接続用パスワード]
!
!
l2tp udp source-port 40001
!
!
!
!
!
interface tunnel 1
 no ip address
 ip tcp adjust-mss auto
 ip spi-filter
 tunnel mode ipipv6
 tunnel source ethernet 0
 tunnel destination [AFTRのFQDN]
 no tunnel encap-limit
!
interface ppp 0
 ip address 192.0.2.1/32
 ip tcp adjust-mss auto
 ip access-group forward-in ppp0_FORWARD-IN
 ip masquerade
 ip dnat-group ppp0_DNAT
 ip spi-filter
 ppp username [ISP接続用ユーザID]
 ppp ipcp enable
!
interface ethernet 0
 ip address 192.168.10.1/24
 ip policy route-map PBR
 ipv6 address autoconfig
 ipv6 nd other-config-flag
 ipv6 nd send-ra
 ipv6 dhcp server IPv6DHCPS
!
interface ethernet 1
 no ip address
 ipv6 access-group in eth1_IN
 ipv6 spi-filter
 ipv6 nd accept-ra proxy ethernet 0
 ipv6 dhcp client IPv6DHCPC
 pppoe-client ppp 0
!
interface ethernet 2
 no ip address
!
dns
 service enable
 priority dhcpv6 1
 priority ppp 0 2
 timeout 5
 edns-query enable
!
!
syslog
 local enable
 exit-syslog
!
dhcp-server 1
 network 192.168.10.0/24 range 192.168.10.200 192.168.10.210
 gateway 192.168.10.1
 dns-server 192.168.10.1
!
!
ipv6 dhcp-client IPv6DHCPC
 information-only enable
 option-request dns-servers
!
ipv6 dhcp-server IPv6DHCPS
 option-send dns-server add ipv6 dhcp-client ethernet 1
!
!
system led ext 0 signal-level mobile 0
!
!
!
!
!
!
!
ip route 0.0.0.0/0 tunnel 1
!
!
!
ip access-list ppp0_FORWARD-IN permit any 192.168.10.10 tcp any 80
!
ipv6 access-list eth1_IN permit any any icmpv6
ipv6 access-list eth1_IN permit any any udp any 546
ipv6 access-list eth1_IN permit any any 4
!
!
ip policy access-list ppp0_PBR_OUT 192.168.10.10 any
!
ip dnat ppp0_DNAT tcp any any 192.0.2.1 80 192.168.10.10
!
route-map PBR permit 1
 match ip address ppp0_PBR_OUT
 set interface ppp 0
!
!
end