vyatta@janog30-vyatta3# show firewall { all-ping enable broadcast-ping disable ipv6-receive-redirects disable ipv6-src-route disable ip-src-route disable log-martians enable receive-redirects disable send-redirects disable source-validation disable syn-cookies enable } interfaces { ethernet eth0 { address xx.xx.xx.xx/27 address xx:xx:xx:xx::xx/64 duplex auto smp_affinity auto speed auto } ethernet eth1 { address 172.16.0.1/16 address xx:xx:xx:xx::xx/64 duplex auto ipv6 { dup-addr-detect-transmits 1 router-advert { cur-hop-limit 64 link-mtu 0 managed-flag false max-interval 30 min-interval 10 other-config-flag true prefix xx:xx:xx:xx::/64 { autonomous-flag true on-link-flag true valid-lifetime 2592000 } reachable-time 0 retrans-timer 0 send-advert true } } smp_affinity auto speed auto } ethernet eth2 { address 192.168.255.2/24 duplex auto smp_affinity auto speed auto } } nat { source { rule 9999 { outbound-interface eth0 source { address 172.16.0.0/16 } translation { address masquerade } } } } protocols { static { route 0.0.0.0/0 { next-hop xx.xx.xx.xx { } } route6 ::/0 { next-hop xx:xx:xx:xx::xx { } } } } service { dhcp-server { disabled false shared-network-name janog30-public { authoritative disable subnet 172.16.0.0/16 { default-router 172.16.0.1 dns-server xx.xx.xx.xx dns-server xx.xx.xx.xx lease 600 start 172.16.1.1 { stop 172.16.255.254 } } } } dhcpv6-server { name-servers "xx:xx:xx:xx::xx xx:xx:xx:xx::xx" shared-network-name janog30 { subnet xx:xx:xx:xx::/64 { name-server xx:xx:xx:xx::xx name-server xx:xx:xx:xx::xx } } } snmp { community xxxxxxx { authorization ro } contact ohkubo@sakura.ad.jp description janog30-vyatta3 location kurashiki } ssh { port 22 protocol-version v2 } } system { config-management { commit-revisions 20 } conntrack { expect-table-size 2048 hash-size 16384 table-size 1048576 } console { device ttyS0 { speed 9600 } } host-name janog30-vyatta3 ip { arp { table-size 8192 } } ipv6 { neighbor { table-size 8192 } } login { user vyatta { authentication { encrypted-password xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx } } level admin } } name-server xx.xx.xx.xx ntp { server 0.vyatta.pool.ntp.org { } server 1.vyatta.pool.ntp.org { } server 2.vyatta.pool.ntp.org { } server ntp1.sakura.ad.jp { } } package { auto-sync 1 repository community { components main distribution stable password "" url http://packages.vyatta.com/vyatta username "" } } syslog { global { facility all { level notice } facility protocols { level debug } } } time-zone Asia/Tokyo }