[Ninux-Wireless] Ground Routing HOWTO
Saverio Proto
zioproto a gmail.com
Ven 11 Apr 2014 19:29:43 CEST
questo non ha senso !
config interface 'antenna_1'
option proto 'static'
option ifname 'eth1.3'
option ipaddr '172.22.66.10'
option netmask '255.255.0.0'
option gateway '192.168.1.160'
a parte questo puoi disabilitare il firewall di openwrt come primo step.
/etc/init.d/firewall stop && /etc/init.d/firewall disable
poi ci sta un po di confusione. 192.168.1.0/24 la puoi usare solo su un
nodo, sul nodo remoto devi usare una seconda subnet se vuoi fare routing.
grazie
Saverio
Il giorno 11 aprile 2014 16:25, Nicola Ruscitto
<nicolaruscitto78 a gmail.com>ha scritto:
> Vi invio configurazione del router e schema di collegamento
> Grazie
> Nicola
>
>
> Schema config rete<https://docs.google.com/drawings/d/1DN7WDppIeq1nMBKMlvJ_Sfjtvsy7brlgKMM9IBm47ms/edit?usp=drive_web>
>
> antenna 192-168-1-170.png<https://docs.google.com/file/d/0B-UkxkMKFmofcEpYLU1aSno5d2M/edit?usp=drive_web>
>
> router 192-168-1-160.png<https://docs.google.com/file/d/0B-UkxkMKFmofRk5kQ0l6dHFoTHc/edit?usp=drive_web>
>
>
> root a OpenWrt:~# cat /etc/config/network
>
> config interface 'loopback'
> option ifname 'lo'
> option proto 'static'
> option ipaddr '127.0.0.1'
> option netmask '255.0.0.0'
>
> config interface 'lan'
> option proto 'static'
> option netmask '255.255.255.0'
> option ipaddr '192.168.1.160'
> option _orig_ifname 'eth1'
> option _orig_bridge 'false'
> option ifname 'eth1.7'
> option gateway '192.168.1.1'
> option dns '192.168.1.1'
>
> config interface 'wan'
> option ifname 'eth0'
> option proto 'dhcp'
>
> config switch
> option name 'switch0'
> option reset '1'
> option enable_vlan '1'
>
> config switch_vlan
> option device 'switch0'
> option vlan '1'
> option vid '1'
> option ports '0t 1t 2t 3t 4t'
>
> config switch_vlan
> option device 'switch0'
> option vlan '2'
> option ports '0t 3t'
> option vid '3'
>
> config interface 'antenna_1'
> option proto 'static'
> option ifname 'eth1.3'
> option ipaddr '172.22.66.10'
> option netmask '255.255.0.0'
> option gateway '192.168.1.160'
>
> config switch_vlan
> option device 'switch0'
> option vlan '3'
> option ports '0t 1 2 3t 4'
> option vid '7'
>
>
> e questo é il firewall
>
> root a OpenWrt:~# cat /etc/config/firewall
>
> config defaults
> option syn_flood '1'
> option input 'ACCEPT'
> option output 'ACCEPT'
> option forward 'ACCEPT'
>
> config zone
> option name 'lan'
> option input 'ACCEPT'
> option output 'ACCEPT'
> option forward 'ACCEPT'
> option network 'lan'
>
> config zone
> option name 'wan'
> option network 'wan'
> option input 'REJECT'
> option output 'ACCEPT'
> option forward 'REJECT'
> option masq '1'
> option mtu_fix '1'
>
> config rule
> option name 'Allow-DHCP-Renew'
> option src 'wan'
> option proto 'udp'
> option dest_port '68'
> option target 'ACCEPT'
> option family 'ipv4'
>
> config rule
> option name 'Allow-Ping'
> option src 'wan'
> option proto 'icmp'
> option icmp_type 'echo-request'
> option family 'ipv4'
> option target 'ACCEPT'
>
> config rule
> option name 'Allow-DHCPv6'
> option src 'wan'
> option proto 'udp'
> option src_ip 'fe80::/10'
> option src_port '547'
> option dest_ip 'fe80::/10'
> option dest_port '546'
> option family 'ipv6'
> option target 'ACCEPT'
>
> config rule
> option name 'Allow-ICMPv6-Input'
> option src 'wan'
> option proto 'icmp'
> list icmp_type 'echo-request'
> list icmp_type 'echo-reply'
> list icmp_type 'destination-unreachable'
> list icmp_type 'packet-too-big'
> list icmp_type 'time-exceeded'
> list icmp_type 'bad-header'
> list icmp_type 'unknown-header-type'
> list icmp_type 'router-solicitation'
> list icmp_type 'neighbour-solicitation'
> list icmp_type 'router-advertisement'
> list icmp_type 'neighbour-advertisement'
> option limit '1000/sec'
> option family 'ipv6'
> option target 'ACCEPT'
>
> config rule
> option name 'Allow-ICMPv6-Forward'
> option src 'wan'
> option dest '*'
> option proto 'icmp'
> list icmp_type 'echo-request'
> list icmp_type 'echo-reply'
> list icmp_type 'destination-unreachable'
> list icmp_type 'packet-too-big'
> list icmp_type 'time-exceeded'
> list icmp_type 'bad-header'
> list icmp_type 'unknown-header-type'
> option limit '1000/sec'
> option family 'ipv6'
> option target 'ACCEPT'
>
> config include
> option path '/etc/firewall.user'
>
> config forwarding
> option dest 'wan'
> option src 'lan'
>
> config zone
> option name 'ninux'
> option input 'ACCEPT'
> option forward 'ACCEPT'
> option output 'ACCEPT'
> option network 'antenna_1'
>
> config forwarding
> option dest 'lan'
> option src 'ninux'
>
> config forwarding
> option dest 'ninux'
> option src 'lan'
>
>
> Il giorno 11 aprile 2014 16:17, Nicola Ruscitto <
> nicolaruscitto78 a gmail.com> ha scritto:
>
> Dimenticavo,
>> le antenne sono due Tp-Link wa7510n e il router é Tp-Link wr841n
>>
>> Grazie
>> Nicola
>>
>>
>> Il giorno 11 aprile 2014 14:26, Nicola Ruscitto <
>> nicolaruscitto78 a gmail.com> ha scritto:
>>
>> Vi invio configurazione del router e schema di collegamento (in allegato)
>>> Grazie
>>> Nicola
>>>
>>> root a OpenWrt:~# cat /etc/config/network
>>>
>>> config interface 'loopback'
>>> option ifname 'lo'
>>> option proto 'static'
>>> option ipaddr '127.0.0.1'
>>> option netmask '255.0.0.0'
>>>
>>> config interface 'lan'
>>> option proto 'static'
>>> option netmask '255.255.255.0'
>>> option ipaddr '192.168.1.160'
>>> option _orig_ifname 'eth1'
>>> option _orig_bridge 'false'
>>> option ifname 'eth1.7'
>>> option gateway '192.168.1.1'
>>> option dns '192.168.1.1'
>>>
>>> config interface 'wan'
>>> option ifname 'eth0'
>>> option proto 'dhcp'
>>>
>>> config switch
>>> option name 'switch0'
>>> option reset '1'
>>> option enable_vlan '1'
>>>
>>> config switch_vlan
>>> option device 'switch0'
>>> option vlan '1'
>>> option vid '1'
>>> option ports '0t 1t 2t 3t 4t'
>>>
>>> config switch_vlan
>>> option device 'switch0'
>>> option vlan '2'
>>> option ports '0t 3t'
>>> option vid '3'
>>>
>>> config interface 'antenna_1'
>>> option proto 'static'
>>> option ifname 'eth1.3'
>>> option ipaddr '172.22.66.10'
>>> option netmask '255.255.0.0'
>>> option gateway '192.168.1.160'
>>>
>>> config switch_vlan
>>> option device 'switch0'
>>> option vlan '3'
>>> option ports '0t 1 2 3t 4'
>>> option vid '7'
>>>
>>>
>>> e questo é il firewall
>>>
>>> root a OpenWrt:~# cat /etc/config/firewall
>>>
>>> config defaults
>>> option syn_flood '1'
>>> option input 'ACCEPT'
>>> option output 'ACCEPT'
>>> option forward 'ACCEPT'
>>>
>>> config zone
>>> option name 'lan'
>>> option input 'ACCEPT'
>>> option output 'ACCEPT'
>>> option forward 'ACCEPT'
>>> option network 'lan'
>>>
>>> config zone
>>> option name 'wan'
>>> option network 'wan'
>>> option input 'REJECT'
>>> option output 'ACCEPT'
>>> option forward 'REJECT'
>>> option masq '1'
>>> option mtu_fix '1'
>>>
>>> config rule
>>> option name 'Allow-DHCP-Renew'
>>> option src 'wan'
>>> option proto 'udp'
>>> option dest_port '68'
>>> option target 'ACCEPT'
>>> option family 'ipv4'
>>>
>>> config rule
>>> option name 'Allow-Ping'
>>> option src 'wan'
>>> option proto 'icmp'
>>> option icmp_type 'echo-request'
>>> option family 'ipv4'
>>> option target 'ACCEPT'
>>>
>>> config rule
>>> option name 'Allow-DHCPv6'
>>> option src 'wan'
>>> option proto 'udp'
>>> option src_ip 'fe80::/10'
>>> option src_port '547'
>>> option dest_ip 'fe80::/10'
>>> option dest_port '546'
>>> option family 'ipv6'
>>> option target 'ACCEPT'
>>>
>>> config rule
>>> option name 'Allow-ICMPv6-Input'
>>> option src 'wan'
>>> option proto 'icmp'
>>> list icmp_type 'echo-request'
>>> list icmp_type 'echo-reply'
>>> list icmp_type 'destination-unreachable'
>>> list icmp_type 'packet-too-big'
>>> list icmp_type 'time-exceeded'
>>> list icmp_type 'bad-header'
>>> list icmp_type 'unknown-header-type'
>>> list icmp_type 'router-solicitation'
>>> list icmp_type 'neighbour-solicitation'
>>> list icmp_type 'router-advertisement'
>>> list icmp_type 'neighbour-advertisement'
>>> option limit '1000/sec'
>>> option family 'ipv6'
>>> option target 'ACCEPT'
>>>
>>> config rule
>>> option name 'Allow-ICMPv6-Forward'
>>> option src 'wan'
>>> option dest '*'
>>> option proto 'icmp'
>>> list icmp_type 'echo-request'
>>> list icmp_type 'echo-reply'
>>> list icmp_type 'destination-unreachable'
>>> list icmp_type 'packet-too-big'
>>> list icmp_type 'time-exceeded'
>>> list icmp_type 'bad-header'
>>> list icmp_type 'unknown-header-type'
>>> option limit '1000/sec'
>>> option family 'ipv6'
>>> option target 'ACCEPT'
>>>
>>> config include
>>> option path '/etc/firewall.user'
>>>
>>> config forwarding
>>> option dest 'wan'
>>> option src 'lan'
>>>
>>> config zone
>>> option name 'ninux'
>>> option input 'ACCEPT'
>>> option forward 'ACCEPT'
>>> option output 'ACCEPT'
>>> option network 'antenna_1'
>>>
>>> config forwarding
>>> option dest 'lan'
>>> option src 'ninux'
>>>
>>> config forwarding
>>> option dest 'ninux'
>>> option src 'lan'
>>>
>>>
>>>
>>> Il giorno 11 aprile 2014 11:14, Saverio Proto <zioproto a gmail.com> ha
>>> scritto:
>>>
>>> Non si capisce il setup.
>>>> Inviaci:
>>>> schema connessione apparati coinvolti
>>>> configurazione IP interfacce apparati.
>>>>
>>>> Saverio
>>>>
>>>> Il 11 aprile 2014 09:54, Nicola Ruscitto <nicolaruscitto78 a gmail.com>
>>>> ha scritto:
>>>> > Buongiorno,
>>>> > avrei bisogno di un aiutino in merito alla configurazione del ground
>>>> routing
>>>> > che sto provando in questi giorni. Sto utilizzando una CPE con
>>>> openwrt e
>>>> > pacchetto "trelay" installato e un router tplink sempre con openwrt e
>>>> > pacchetto olsrd. L'altra CPE invece ha solo openwrt e olsr.
>>>> >
>>>> > Le antenne stanno nella sottorete 172.22.0.0 mentre la rete locale
>>>> l'ho
>>>> > lasciata sulla 192.168.1.0
>>>> >
>>>> > Praticamente funziona tutto ovvero olsrd in esecuzione sul ground
>>>> router
>>>> > vede il vicino ed aggiorna la tabella di routing. Tuttavia l'IP dell'
>>>> > antenna remota non é pingabile nonostante abbia settato i forwarding
>>>> tra le
>>>> > dua interfacce (LAN e VLAN dati).
>>>> >
>>>> > Viceversa, se vado sull'altra antenna riesco a fare un ping sulla
>>>> prima
>>>> > antenna.
>>>> >
>>>> > Cosa ho tralasciato?
>>>> >
>>>> > Grazie
>>>> > Nicola
>>>> >
>>>> >
>>>> > Il giorno 06 aprile 2014 17:26, Nicola Ruscitto <
>>>> nicolaruscitto78 a gmail.com>
>>>> > ha scritto:
>>>> >
>>>> >> Ciao ragazzi,
>>>> >> la prova del router a terra con radio wa7510n openwrt ha dato esiti
>>>> >> positivi. Una volta impostate le vlan e caricato il modulo trelay
>>>> >> sull'antenna così come suggerito sulla guida, il router ha
>>>> aggiornato la sua
>>>> >> tabella di routing aggiungendo il vicino.
>>>> >>
>>>> >> Saluti
>>>> >> Nicola
>>>> >
>>>> >
>>>> >
>>>> > _______________________________________________
>>>> > Wireless mailing list
>>>> > Wireless a ml.ninux.org
>>>> > http://ml.ninux.org/mailman/listinfo/wireless
>>>> >
>>>> _______________________________________________
>>>> Wireless mailing list
>>>> Wireless a ml.ninux.org
>>>> http://ml.ninux.org/mailman/listinfo/wireless
>>>>
>>>
>>>
>>
>
> _______________________________________________
> Wireless mailing list
> Wireless a ml.ninux.org
> http://ml.ninux.org/mailman/listinfo/wireless
>
>
-------------- parte successiva --------------
Un allegato HTML è stato rimosso...
URL: <http://ml.ninux.org/pipermail/wireless/attachments/20140411/5d2086ef/attachment-0001.html>
Maggiori informazioni sulla lista
Wireless