[Ninux-Wireless] cominciando a capire niit
Gioacchino Mazzurco
gmazzurco89 at gmail.com
Thu Jun 17 21:43:32 CEST 2010
visto che di documentazione su niit non ne esiste, e contattando l'autore
sembra che di fare la documentazione gli piacerebbe ma non lo fa, allora ho
flashato il firmware che ho trovato nel suo sito per cercare di capire cosa
fa, da quello che ho avuto modo di vedere adesso c'e' un device niit0 che
non ha nessuna configurazione e che viene solo indicato nelle rotte relative
agli address mappati
pero' compilando niit da repository e mettendolo dentro un firmware nuovo si
trovano due device uno per niit4to6 e l'altro niit6to4 spero che basti
cambiare le rotte vi attacco un po di roba alla mail:
*root a OpenWrt:/etc/config# ip addr show*
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 16436 qdisc noqueue state UNKNOWN
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 brd 127.255.255.255 scope host lo
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state
UNKNOWN qlen 1000
link/ether 00:15:6d:d5:f7:d1 brd ff:ff:ff:ff:ff:ff
inet6 fe80::215:6dff:fed5:f7d1/64 scope link
valid_lft forever preferred_lft forever
4: ip6tnl0: <NOARP> mtu 1460 qdisc noop state DOWN
link/tunnel6 :: brd ::
5: tunl0: <NOARP> mtu 1480 qdisc noop state DOWN
link/ipip 0.0.0.0 brd 0.0.0.0
6: wifi0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state
UNKNOWN qlen 195
link/ieee802.11 00:15:6d:d4:f7:d1 brd ff:ff:ff:ff:ff:ff
7: niit0: <NOARP,UP,LOWER_UP> mtu 1460 qdisc pfifo_fast state UNKNOWN qlen
1000
link/ipip c2:d5:63:11:72:26 brd ff:ff:ff:ff:ff:ff
8: br-lan: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1240 qdisc noqueue state
UNKNOWN
link/ether 00:15:6d:d5:f7:d1 brd ff:ff:ff:ff:ff:ff
inet 10.36.0.1/29 brd 10.36.0.7 scope global br-lan
9: ath0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1400 qdisc noqueue state
UNKNOWN
link/ether 00:15:6d:d4:f7:d1 brd ff:ff:ff:ff:ff:ff
inet6 fdca:ffee:babe:dada:215:6dff:fed5:f7d1/64 scope global
valid_lft forever preferred_lft forever
inet6 fe80::215:6dff:fed4:f7d1/64 scope link
valid_lft forever preferred_lft forever
*root a OpenWrt:/etc/config# ip route show*
10.36.0.0/29 dev br-lan proto kernel scope link src 10.36.0.1
*root a OpenWrt:/etc/config# ip -6 route show*
::ffff:10.36.0.0/125 dev niit0 metric 1 mtu 1460 advmss 1400 hoplimit
4294967295
::ffff:192.168.1.0/125 dev niit0 metric 1 mtu 1460 advmss 1400 hoplimit
4294967295
fdca:ffee:babe:dada::/64 dev ath0 metric 256 mtu 1400 advmss 1340 hoplimit
4294967295
fe80::/64 dev eth0 metric 256 mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev ath0 metric 256 mtu 1400 advmss 1340 hoplimit 4294967295
*root a OpenWrt:/etc/config# cat network *
# Copyright (C) 2006 OpenWrt.org
config interface loopback
option ifname lo
option proto static
option ipaddr 127.0.0.1
option netmask 255.0.0.0
config interface lan
option ifname eth0
option type bridge
option proto static
option ipaddr 192.168.1.1
option netmask 255.255.255.0
*root a OpenWrt:/etc/config# cat niit *
config niit ipv4
option pool "10.36.0.0/16"
option netsize "29"
config niit ipv6
option ula_prefix "fd00::"
option ula_global "00ca:ffee:babe::"
option ula_subnet "0000:0000:0000:dada::"
option niit_prefix "::ffff:0000:0000"
config niit wifi
option essid "olsr.freifunk.net"
option bssid "02:ca:ff:ee:ba:be"
option channel "10"
*root a OpenWrt:/etc/config# cat wireless *
config wifi-device wifi0
option type atheros
option channel auto
# REMOVE THIS LINE TO ENABLE WIFI:
option disabled 1
config wifi-iface
option device wifi0
option network lan
option mode ap
option ssid OpenWrt
option encryption none
*root a OpenWrt:/etc/config# cat firewall *
config defaults
option syn_flood 1
option input ACCEPT
option output ACCEPT
option forward REJECT
config zone
option name lan
option input ACCEPT
option output ACCEPT
option forward REJECT
config zone
option name wan
option input REJECT
option output ACCEPT
option forward REJECT
option masq 1
option mtu_fix 1
config forwarding
option src lan
option dest wan
# We need to accept udp packets on port 68,
# see https://dev.openwrt.org/ticket/4108
config rule
option src wan
option proto udp
option dest_port 68
option target ACCEPT
# include a file with users custom iptables rules
config include
option path /etc/firewall.user
### EXAMPLE CONFIG SECTIONS
# do not allow a specific ip to access wan
#config rule
# option src lan
# option src_ip 192.168.45.2
# option dest wan
# option proto tcp
# option target REJECT
# block a specific mac on wan
#config rule
# option dest wan
# option src_mac 00:11:22:33:44:66
# option target REJECT
# block incoming ICMP traffic on a zone
#config rule
# option src lan
# option proto ICMP
# option target DROP
# port redirect port coming in on wan to lan
#config redirect
# option src wan
# option src_dport 80
# option dest lan
# option dest_ip 192.168.16.235
# option dest_port 80
# option proto tcp
### FULL CONFIG SECTIONS
#config rule
# option src lan
# option src_ip 192.168.45.2
# option src_mac 00:11:22:33:44:55
# option src_port 80
# option dest wan
# option dest_ip 194.25.2.129
# option dest_port 120
# option proto tcp
# option target REJECT
#config redirect
# option src lan
# option src_ip 192.168.45.2
# option src_mac 00:11:22:33:44:55
# option src_port 1024
# option src_dport 80
# option dest_ip 194.25.2.129
# option dest_port 120
# option proto tcp
Questo e' quello che ci si trova dopo aver eseguito il niit-wizard sul
firmware trovato sul sito di alx, pero' guardando velocemente questi
settaggi non capisco come dovrebbe fare a funzionare...
-------------- parte successiva --------------
Un allegato HTML ? stato rimosso...
URL: http://ml.ninux.org/pipermail/wireless/attachments/20100617/a0188ea8/attachment.htm
More information about the Wireless
mailing list