set system name="kobe"
set user=manager pass=3af00c6cad11f7ab5db4467b66ce503eff priv=manager lo=yes
set user=manager desc="Manager Account" telnet=yes
add user=secoff pass=889ea21e697e6e9b830f2985237464a5ff priv=securityOfficer lo=yes
set user=secoff netmask=255.255.255.255
create ppp=0 over=eth0-any
set ppp=0 bap=off username="h843a7iq@ffa.ocn.ne.jp" password="btkd85"
set ppp=0 over=eth0-any lqr=off echo=10
enable ip
enable ip remote
add ip int=vlan1 ip=192.168.1.254
add ip int=ppp0 ip=219.96.195.25 mask=255.255.255.255
add ip rou=0.0.0.0 mask=0.0.0.0 int=ppp0 next=0.0.0.0
enable firewall
create firewall policy="net"
disable firewall policy="net" identproxy
enable firewall policy="net" icmp_f=unre,ping
add firewall policy="net" int=vlan1 type=private
add firewall policy="net" int=ppp0 type=public
add firewall poli="net" nat=enhanced int=vlan1 gblin=ppp0
add firewall poli="net" ru=1 ac=allo int=ppp0 prot=udp po=500 ip=219.96.195.25 gblip=219.96.195.25 gblp=500
add firewall poli="net" ru=5 ac=non int=ppp0 prot=ALL ip=192.168.1.1-192.168.1.254 enc=ips
add firewall poli="net" ru=2 ac=non int=vlan1 prot=ALL ip=192.168.1.1-192.168.1.254
set firewall poli="net" ru=2 rem=192.168.10.1-192.168.10.254
create ipsec sas=1 key=isakmp prot=esp enc=des hasha=sha
create ipsec bund=1 key=isakmp string="1"
create ipsec pol="isa" int=ppp0 ac=permit
set ipsec pol="isa" lp=500 rp=500 tra=UDP
create ipsec pol="vpn_a" int=ppp0 ac=ipsec key=isakmp bund=1 peer=61.214.229.123
set ipsec pol="vpn_a" lad=192.168.1.0 lma=255.255.255.0 rad=192.168.10.0 rma=255.255.255.0
create ipsec pol="inet" int=ppp0 ac=permit
enable ipsec
create isakmp pol="i_a" pe=61.214.229.123 key=1
set isakmp pol="i_a" sendn=true
set isakmp pol="i_a" hear=BOTH
enable isakmp
enable trigger
create trigger=1 periodic=3 script=reset.scp
create trigger=2 interface=ppp0 event=up cp=ipcp script=up.scp
create trigger=3 interface=ppp0 event=down cp=ipcp script=down.scp