Introduction: Unterschied zwischen den Versionen

Aus QBWiki
Zur Navigation springenZur Suche springen
(Die Seite wurde neu angelegt: „= LANCOM “firewalls” overview (LCOS-FX, LCOS, LCOS-SX) = Product families you’ll meet ** LCOS-FX = Unified Firewalls (R&S® UF-series). Admin via web UI…“)
 
 
(Eine dazwischenliegende Version desselben Benutzers wird nicht angezeigt)
Zeile 1: Zeile 1:
= LANCOM “firewalls” overview (LCOS-FX, LCOS, LCOS-SX) =
+
= LANCOM Firewall / Router / Switch quickref =
  
Product families you’ll meet
+
== Defaults ==
** LCOS-FX = Unified Firewalls (R&S® UF-series). Admin via web UI on TCP 3438 (HTTPS). Defaults below.  
+
* LCOS-FX (Unified Firewall)
ftp.lancom.de
+
  * IP: 192.168.1.254:3438 (UF-260: 192.168.2.254:3438 on LAN2/eth2)
+1
+
  * User/pass: admin / admin
 +
  * Serial: 9600 8N1, no flow
 +
* LCOS router
 +
  * IP: 172.23.56.254 (if no DHCP), or DHCP hostname LANCOM-xxxxxx
 +
  * Password: set at first boot (no fixed default)
 +
  * Serial: 115200 8N1, RTS/CTS
 +
* LCOS-SX switch
 +
  * User: admin / (empty password)
 +
  * Serial: 115200 8N1, no flow
  
** LCOS (routers/gateways) = classic LANCOM devices with the tree-style CLI (cd, set, add, del). Often used as edge firewall too.
+
== VLANs (LCOS-SX switch) ==
lancom-systems.com
+
GUI: menu > VLAN > add 
 +
CLI:
 +
vlan database
 +
vlan 10
 +
exit
 +
int g1/1
 +
  switchport mode access
 +
  switchport access vlan 10
 +
exit
 +
int g1/2
 +
  switchport mode trunk
 +
  switchport trunk native vlan 10
 +
  switchport trunk allowed vlan add 10,20
 +
exit
 +
write memory
 +
Show: show vlan brief 
 +
Delete: vlan database ; no vlan 10
  
** LCOS-SX (switches) = where you’ll do VLAN tagging/trunks, view MAC tables, etc., via Cisco-like CLI (switchport …, show vlan …).
+
== IP Interfaces ==
lancom-systems.de
+
* LCOS-FX GUI: Network > Interfaces > Ethernet > add IP
lancom-systems.com
+
* LCOS router CLI:
 +
cd /Setup/TCP-IP/Networks
 +
add "LAN-10" INTRANET 10.10.10.1 255.255.255.0 10
 +
 
 +
== L2 / L3 tables ==
 +
* MAC (switch): show mac address-table
 +
* ARP (router): cd /Status/TCP-IP/ARP-Table ; ls
 +
* ARP (firewall GUI): Diagnostics > ARP/Neighbors
 +
 
 +
== Firewall Rules ==
 +
* LCOS-FX GUI: Firewall > Rules > add
 +
* LCOS router CLI:
 +
cd /Setup/IP-router/Firewall
 +
set Operating yes
 +
cd Rules
 +
add "Allow-DNS" UDP INTRANET ANYHOST ACCEPT {service} DNS
 +
del "Allow-DNS"
 +
 
 +
== Basics (router CLI) ==
 +
cd <path>
 +
ls
 +
add / set / del
 +
writeconfig

Aktuelle Version vom 7. September 2025, 14:07 Uhr

LANCOM Firewall / Router / Switch quickref

Defaults

  • LCOS-FX (Unified Firewall)
 * IP: 192.168.1.254:3438 (UF-260: 192.168.2.254:3438 on LAN2/eth2)
 * User/pass: admin / admin
 * Serial: 9600 8N1, no flow
  • LCOS router
 * IP: 172.23.56.254 (if no DHCP), or DHCP hostname LANCOM-xxxxxx
 * Password: set at first boot (no fixed default)
 * Serial: 115200 8N1, RTS/CTS
  • LCOS-SX switch
 * User: admin / (empty password)
 * Serial: 115200 8N1, no flow

VLANs (LCOS-SX switch)

GUI: menu > VLAN > add CLI: 

vlan database
vlan 10
exit
int g1/1
 switchport mode access
 switchport access vlan 10
exit
int g1/2
 switchport mode trunk
 switchport trunk native vlan 10
 switchport trunk allowed vlan add 10,20
exit
write memory

Show: show vlan brief Delete: vlan database ; no vlan 10

IP Interfaces

  • LCOS-FX GUI: Network > Interfaces > Ethernet > add IP
  • LCOS router CLI:
cd /Setup/TCP-IP/Networks
add "LAN-10" INTRANET 10.10.10.1 255.255.255.0 10

L2 / L3 tables

  • MAC (switch): show mac address-table
  • ARP (router): cd /Status/TCP-IP/ARP-Table ; ls
  • ARP (firewall GUI): Diagnostics > ARP/Neighbors

Firewall Rules

  • LCOS-FX GUI: Firewall > Rules > add
  • LCOS router CLI:
cd /Setup/IP-router/Firewall
set Operating yes
cd Rules
add "Allow-DNS" UDP INTRANET ANYHOST ACCEPT {service} DNS
del "Allow-DNS"

Basics (router CLI)

cd <path>
ls
add / set / del
writeconfig
Abgerufen von „https://wiki.quadbyte.de/index.php?title=Introduction&oldid=339