HP_InHand_IG502/Pub_Sub/cameratrailer_hk/hikvision_config.cnf

!
#system config
language English
hostname EdgeGateway
ip domain-name edgegateway.com.cn
clock timezone CST6CDT,M3.2.0/2,M11.1.0/2
service password-encryption
!
#log config
log persistent severity 7
!
#user config
username ASS privilege 15 password $1$EmiUWl8i$lO4gaFNPRI3xC9tJXSl7/0
!
enable password $1$kvwao0Sc$zzKGmDaqupdkXYaaObwJx/
!
#aaa config
!
#cron config
remote-login retry 20
!
#alarm config
!
#loopback config
interface loopback 1
  ip address 127.0.0.1 255.0.0.0
!
!
#ethernet interface config
interface fastethernet 0/1
  track l2-state
!
interface fastethernet 0/2
!
!
#Ethernet sub interface config
!
#cellular config
cellular 1 gsm profile 1 13997.mcs use-blank-dialno auto  
cellular 1 gsm profile 2 ss01.vzwstatic use-blank-dialno auto  
cellular 1 dial interval 10
cellular 1 signal interval 120
cellular 1 network auto
cellular 1 dual-sim enable
cellular 1 dual-sim main 1
cellular 1 dual-sim policy redial 5
cellular 1 sms mode text
cellular 1 sms interval 30
!
interface cellular 1
  dialer profile 1
  dialer profile 1 secondary
  dialer timeout 120
  dialer activate auto
  ip address negotiated
  ip mru 1500
  ip mtu 1500
  ppp ipcp dns request
  ppp keepalive 55 5
!
!
#dot11 config
dot11 ssid Amerus_Camera_Trailer
  authentication key-management wpa 2
  guest-mode
  wpa-psk ascii $AES$9EC22D9DED6D382D9D3BEE14595D4E26
!
interface dot11radio 1
  ssid Amerus_Camera_Trailer
  encryption mode ciphers aes-ccm
  802.11n bandwidth 20
!
!
#bridge config
!
bridge 1
!
interface bridge 1
  ip address 192.168.1.1 255.255.255.0
!
interface fastethernet 0/2
  bridge-group 1
!
interface fastethernet 0/1
  bridge-group 1
!
interface dot11radio 1
  bridge-group 1
!
!
!
#dialer config
!
#ipsec config
crypto ipsec-daemon stop
!
#l2tp config
!
#openvpn config
!
#openvpn server config
!
#web config
ip web-access timeout 300
ip https server port 9191
ip https access enable
!
#device-manager config
device-manager enable
device-manager server iot.inhandnetworks.com
device-manager tls
device-manager account nmelone@henry-pump.com
device-manager location gps
!
#InConnect config
!
#Erlang config
erlang mode off
!
#telnet server config
no ip telnet server
no ip telnet access enable
!
#ssh server config
!
#dhcp-relay config
!
#dns-relay config
ip dns-relay server
!
#dhcp server config
interface bridge 1
  ip dhcp-server enable
  ip dhcp-server range 192.168.1.2 192.168.1.254
  ip dhcp-server lease 1440
!
!
#dns config
!
#ip host config
!
#ddns config
!
#snmp config

#ovdp config
!
!

#dockerd config
!

#portainer config
!

#Azure IoT Edge config
!

#AWS IoT Greengrass config
!
#ntp server config
  ntp master 2
  ntp server 0.pool.ntp.org
  ntp server 1.pool.ntp.org
  ntp server 2.pool.ntp.org
  ntp server 3.pool.ntp.org
!
!

#Telegraf config
!
#email config
!
#sntp client config
sntp-client
sntp-client server 0.pool.ntp.org port 123
sntp-client server 1.pool.ntp.org port 123
sntp-client server 2.pool.ntp.org port 123
sntp-client server 3.pool.ntp.org port 123
!
#gre config
!
#static route config
ip route 0.0.0.0 0.0.0.0 cellular 1 253
ip route 0.0.0.0 0.0.0.0 dot11radio 1 250
!
#rip config
!
!
#ospf config
!
!
#filtering config
!
#bgp config
!
!
#firewall config
!
!
interface cellular 1
  ip access-group 192 admin
!
access-list 100 10 permit ip any any 
access-list 101 10 permit ip any any 
access-list 102 10 permit ip any any 
access-list 192 10 permit tcp any any eq 443 log
access-list 192 20 deny tcp any any eq 80 
access-list 192 30 deny tcp any any eq 23 
access-list 192 40 deny tcp any any eq 22 
access-list 192 50 deny tcp any any eq 53 
access-list 192 60 deny udp any any eq 53 
interface cellular 1
  ip nat outside
!
interface bridge 1
  ip nat inside
!
interface fastethernet 0/1
  ip nat outside
!
!
ip snat inside list 101 interface fastethernet 0/1 
ip snat inside list 100 interface cellular 1 
ip dnat outside static tcp interface cellular 1 3200 192.168.1.200 80 description NVR 
ip dnat outside static tcp interface cellular 1 3201 192.168.1.201 80 description Camera 1
ip dnat outside static tcp interface cellular 1 3202 192.168.1.202 80 description Camera 2
ip dnat outside static tcp interface cellular 1 3203 192.168.1.203 80 description Camera 3
ip dnat outside static tcp interface cellular 1 3204 192.168.1.204 80 description Camera 4
ip dnat outside static tcp interface cellular 1 7681 192.168.1.201 7681 description Camera Live     
ip dnat outside static tcp interface cellular 1 3205 192.168.1.205 3205 description Ubiquiti 
!
!
!
!
!
#tcp mss config
ip tcp adjust-mss 1360
!
!
!
#netwatcher config
!
!
#sla config
!
#track config
!
#vrrpd config
!
#backup config
!
#mroute config
!
#cert config
!
!
#cert enroll config
crypto key generate rsa general-keys modulus 1024
!
!
#dls config
!
#gps config
  gps enable
!
#gps serial config
!
#gps server config
!
#gps client config
!
#Serial Configuration
serial 1
!
serial 2
!
!
#python config
python enable
python log username adm password $AES$BFA541FA10FA3B041CBA4412D12C52B8
python app 1 on
python appcmd 1 logsize 1
device_supervisor 
quit
!
!
#Modbus IO Configuration
!
#traffic-stated config
interface cellular 1
    traffic-stated statistic
!
!
#data-usage config
data-usage sim1
  daily units MB
  daily limit 35
  monthly units GB
  monthly limit 1
!
interface cellular 1
    traffic-stated sim 1 data-usage sim1
    traffic-stated sim 1 daily-action only-report
    traffic-stated sim 1 monthly-action only-report
    traffic-stated sim 1 monitoring
!
#end of configuration