Copyright 2025 Fsas Technologies Inc
reference
https://www.fujitsu.com/jp/documents/products/network/router/sir/example/cloud/cloud_azure_actact-guide.pdf

****************************************
 Si-R config
****************************************
ether 1 1 vlan untag 1
ether 2 1-4 vlan untag 2
lan 1 ip address 192.168.1.1/24 3
lan 1 vlan 2
remote 0 name PPPoE
remote 0 mtu 1454
remote 0 ap 0 name PPPoE
remote 0 ap 0 datalink bind vlan 1
remote 0 ap 0 ppp auth send id@isp pass@isp
remote 0 ap 0 keep connect
remote 0 ppp ipcp vjcomp disable
remote 0 ip address local xxx.xxx.xxx.xxx
remote 0 ip route 0 default 1 1
remote 0 ip nat mode multi any 1 5m
remote 0 ip nat static 0 xxx.xxx.xxx.xxx any xxx.xxx.xxx.xxx any 50
remote 0 ip nat static 1 xxx.xxx.xxx.xxx 500 xxx.xxx.xxx.xxx 500 17
remote 0 ip nat static 2 xxx.xxx.xxx.xxx 4500 xxx.xxx.xxx.xxx 4500 17
remote 0 ip msschange 1414
remote 1 name Azure1
remote 1 ap 0 name IPsec1
remote 1 ap 0 datalink type ipsec
remote 1 ap 0 keep connect
remote 1 ap 0 ipsec type ikev2
remote 1 ap 0 ipsec ike protocol esp
remote 1 ap 0 ipsec ike encrypt aes-cbc-256
remote 1 ap 0 ipsec ike auth hmac-sha1
remote 1 ap 0 ipsec ike lifetime 1h
remote 1 ap 0 ipsec ike esn disable
remote 1 ap 0 ike local-idtype address
remote 1 ap 0 ike remote-idtype address
remote 1 ap 0 ike shared key text test
remote 1 ap 0 ike proposal 0 encrypt aes-cbc-256
remote 1 ap 0 ike proposal 0 hash hmac-sha1
remote 1 ap 0 ike proposal 0 pfs modp1024
remote 1 ap 0 ike proposal 0 prf hmac-sha1
remote 1 ap 0 ike proposal 0 lifetime 8h
remote 1 ap 0 ike nat-traversal use on
remote 1 ap 0 ike dpd use on
remote 1 ap 0 tunnel local xxx.xxx.xxx.xxx
remote 1 ap 0 tunnel remote yyy.yyy.yyy.yyy
remote 1 ip address local 172.16.1.1
remote 1 ip address remote 10.2.1.4
remote 1 ip msschange 1350
remote 2 name Azure2
remote 2 ap 0 name IPsec2
remote 2 ap 0 datalink type ipsec
remote 2 ap 0 keep connect
remote 2 ap 0 ipsec type ikev2
remote 2 ap 0 ipsec ike protocol esp
remote 2 ap 0 ipsec ike encrypt aes-cbc-256
remote 2 ap 0 ipsec ike auth hmac-sha1
remote 2 ap 0 ipsec ike lifetime 1h
remote 2 ap 0 ipsec ike esn disable
remote 2 ap 0 ike local-idtype address
remote 2 ap 0 ike remote-idtype address
remote 2 ap 0 ike shared key text text
remote 2 ap 0 ike proposal 0 encrypt aes-cbc-256
remote 2 ap 0 ike proposal 0 hash hmac-sha1
remote 2 ap 0 ike proposal 0 pfs modp1024
remote 2 ap 0 ike proposal 0 prf hmac-sha1
remote 2 ap 0 ike proposal 0 lifetime 8h
remote 2 ap 0 ike nat-traversal use on
remote 2 ap 0 ike dpd use on
remote 2 ap 0 tunnel local xxx.xxx.xxx.xxx
remote 2 ap 0 tunnel remote zzz.zzz.zzz.zzz
remote 2 ip address local 172.16.1.1
remote 2 ip address remote 10.2.1.5
remote 2 ip msschange 1350
routemanage ip redist bgp static on
routemanage ip redist bgp connected on
bgp as 0.65000
bgp id 192.168.1.1
bgp neighbor 0 address 10.2.1.4
bgp neighbor 0 as 0.65515
bgp neighbor 0 timers 10s 30s
bgp neighbor 0 source 172.16.1.1
bgp neighbor 0 ip filter 0 act pass out 
bgp neighbor 0 ip filter 0 route 192.168.1.0/24 exact
bgp neighbor 1 address 10.2.1.5
bgp neighbor 1 as 0.65515
bgp neighbor 1 timers 10s 30s
bgp neighbor 1 source 172.16.1.1
bgp neighbor 1 ip filter 0 act pass out 
bgp neighbor 1 ip filter 0 route 192.168.1.0/24 exact
syslog pri error,warn,info
syslog facility 23
time zone 0900
consoleinfo autologout 8h
telnetinfo autologout 5m
terminal charset SJIS