From 2f6a6bb7bc4cf8e932b40f0feb1cc4ad1b04f386 Mon Sep 17 00:00:00 2001 From: Alexandre Date: Fri, 9 Apr 2021 15:45:26 +0200 Subject: [PATCH] Add RTR-02, theorically working. Save before shutdown --- RTR-02.ps1 | 50 ++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 50 insertions(+) create mode 100644 RTR-02.ps1 diff --git a/RTR-02.ps1 b/RTR-02.ps1 new file mode 100644 index 0000000..d0db93d --- /dev/null +++ b/RTR-02.ps1 @@ -0,0 +1,50 @@ +# Alexandre SIMAO +# GPLv3 + +# Script to install and configure a Fuckdows Server 2016 as a router +# RTR-03 Only + +# Change the poor machine name +$name = Read-host "Nouveau nom d'hôte?" +Rename-computer $name + +# Install Routing and necessary linked roles +Install-WindowsFeature RemoteAccess, RSAT-RemoteAccess-PowerShell, Routing -IncludeManagementTools +set-service RemoteAccess -StartupType Automatic +Start-Service RemoteAccess + +# Display interfaces and active forwarding for all of thm via Regedit +netsh inter show inter + +Set-ItemProperty -path 'HKLM:\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet` +\Services\Tcpip\Parameters' -Name 'IPEnableRouter' -Value '0x00000001' +Set-NetConnectionProfile -NetworkCategory Private + +# Activate NAT and DHCP Relay +netsh routing ip relay install + +netsh routing ip add interface name="WAN" state=enable + +netsh routing ip relay add interface "WAN" +netsh rout ip rel set int ARC-CLI min=0 +netsh routing ip relay add interface "Bou-LAN" +netsh rout ip rel set int ARC-SRV min=0 + + +netsh -f ./Bou-LAN.conf + +# Change ZoneAlarm rule to accept incoming ICMP ipv4 probes +$Params = @{ + "Name" = 'vm-monitoring-icmpv4' + "Action" = 'Allow' +} + +Set-NetFirewallRule @Params + +# Add routes + +route add -p 192.168.8.0/24 192.168.255.8 +route add -p 192.168.12.0.24 192.168.255.8 +route add -p 192.168.255.0/24 192.168.255.128 +route add -p 192.168.128.0/24 192.168.128.254 +route add -p 0.0.0.0/0 192.168.255.0 \ No newline at end of file