I bought a router RTX1200 for home use 1.
It was a used one for just under 20,000 yen.
I configured what could be done via GUI through the GUI, and configured the rest via CUI 2.
Specifically, I configured PPPoE and filters via GUI, and VPN and DDNS via CUI.
To avoid forgetting, I’ll summarize the configuration contents here.
Note that initialization to factory settings is performed by
pressing all three buttons on the front (microSD, USB, and DOWNLOAD) while
turning on the power.
In the factory state, the LAN1 port is initialized to 192.168.100.1/24 and DHCP is enabled, so
you can connect immediately via telnet.
In addition to telnet, you can also connect via console or http, so connect appropriately.
> show config
ess=**:**:**:**:**:** MAC-Address=**:**:**:**:**:**
login password encrypted *
administrator password encrypted *
# Default gateway
ip route default gateway pp 1
# LAN1 port IP address
ip lan1 address 192.168.100.1/24
# ARP proxy response
ip lan1 proxyarp on
# Filter
ip lan1 secure filter in 100000 ...
# PPPoE
pp select 1
description pp PRV/PPPoE/0:***
pp keepalive interval 30 retry-interval=30 count=12
pp always-on on
# Use LAN2 port
pppoe use lan2
pppoe auto disconnect off
pp auth accept pap chap
# PPPoE connection ID, password
pp auth myname ****@**** ****
ppp lcp mru on 1454
ppp ipcp ipaddress on
ppp ipcp msext on
ppp ccp type none
ip pp secure filter in 200003 ...
ip pp secure filter out 200013 ...
ip pp nat descriptor 1000
# DDNS, netvolante
netvolante-dns use pp server=1 auto
netvolante-dns hostname host pp server=1 ****.aa0.netvolante.jp
pp enable 1
# VPN
pp select anonymous
pp name vpn
pp bind tunnel1
# PPP authentication method
pp auth request mschap-v2
# VPN connection user, password
pp auth username **** ****
ppp ipcp ipaddress on
ppp ipcp msext on
ip pp remote address pool dhcp
ip pp mtu 1258
pp enable anonymous
tunnel select 1
tunnel encapsulation l2tp
ipsec tunnel 1
ipsec sa policy 1 1 esp aes-cbc sha-hmac
ipsec ike keepalive log 1 off
ipsec ike keepalive use 1 off
ipsec ike local address 1 192.168.100.1
# NAT traversal
ipsec ike nat-traversal 1 on
# Authentication key, pre-shared key
ipsec ike pre-shared-key 1 text ****
ipsec ike remote address 1 any
l2tp tunnel auth off
l2tp tunnel disconnect time off
l2tp keepalive use on
ip tunnel tcp mss limit auto
tunnel enable 1
# Filter
ip filter 100000 reject * * udp,tcp 135 *
(omitted)
# NAT
nat descriptor type 1000 masquerade
nat descriptor masquerade static 1000 101 192.168.100.1 esp
nat descriptor masquerade static 1000 102 192.168.100.1 udp 500
nat descriptor masquerade static 1000 104 192.168.100.1 udp 4500
ipsec auto refresh on
ipsec transport 1 1 udp 1701
dhcp service server
dhcp server rfc2131 compliant except remain-silent
dhcp scope 1 192.168.100.2-192.168.100.191/24
# DHCP
dns server pp 1
dns server select 500001 pp 1 any . restrict pp 1
dns private address spoof on
snmp sysname yamaha-rtx1200-************
l2tp service on
statistics cpu on
statistics memory on
statistics traffic on