Diskussion:VLANs
Aus wiki.freifunk.net
Zur Navigation springenZur Suche springenVorbetrachtungen
uci set wireless.radio0_iface.mcast_rate=6000 uci set network.wireless0.mtu=1528 uci commit network uci set wireless.radio0.htmode=HT40+ uci set wireless.radio0.hwmode=11ng uci add_list wireless.radio0.basic_rate=6000 uci add_list wireless.radio0.basic_rate=12000 uci add_list wireless.radio0.basic_rate=24000 uci add_list wireless.radio0.basic_rate=36000 uci add_list wireless.radio0.basic_rate=48000 uci add_list wireless.radio0.basic_rate=54000 uci commit wireless
das Prinzip
Das Standard WLAN Interface darf hierbei NICHT mit batman-adv sein!
uci set wireless.radio0_meshap12=wifi-iface uci set wireless.radio0_meshap12.network=mesh12 uci set wireless.radio0_meshap12.mode=ap uci commit uci set wireless.radio0_meshap12.ssid=012Freifunk uci set wireless.radio0_meshap12.device=radio0 uci set wireless.radio0_battlemesh12.encryption=none uci commit uci set network.mesh12=interface uci set network.mesh12.type=bridge uci set network.mesh12.ifname=bat12 uci set network.mesh12.proto=dhcp uci set network.mesh12.defaultroute=0 uci set network.mesh12.peerdns=0 uci commit uci set network.meshbat12=interface uci set network.meshbat12.ifname=@wireless0.12 uci set network.meshbat12.proto=batadv uci set network.meshbat12.mesh=bat12 uci set network.meshbat12.mtu=1528 uci commit
startconfig
opkg update opkg install kmod-batman-adv uci set network.wireless0.mtu=1528 uci commit uci set wireless.radio0_meshap14=wifi-iface uci set wireless.radio0_meshap14.network=mesh14 uci set wireless.radio0_meshap14.mode=ap uci commit uci set wireless.radio0_meshap14.ssid=014-Battlemesh uci set wireless.radio0_meshap14.device=radio0 uci set wireless.radio0_meshap14.encryption=none uci commit uci set network.mesh14=interface uci set network.mesh14.type=bridge uci set network.mesh14.ifname=bat14 uci set network.mesh14.proto=dhcp uci set network.mesh14.defaultroute=0 uci set network.mesh14.peerdns=0 uci commit uci set network.meshbat14=interface uci set network.meshbat14.ifname=@wireless0.14 uci set network.meshbat14.proto=batadv uci set network.meshbat14.mesh=bat14 uci set network.meshbat14.mtu=1528 uci commit uci set wireless.radio0_meshap12=wifi-iface uci set wireless.radio0_meshap12.network=mesh12 uci set wireless.radio0_meshap12.mode=ap uci commit uci set wireless.radio0_meshap12.ssid=012Freifunk uci set wireless.radio0_meshap12.device=radio0 uci set wireless.radio0_meshap12.encryption=none uci commit uci set network.mesh12=interface uci set network.mesh12.type=bridge uci set network.mesh12.ifname=bat12 uci set network.mesh12.proto=dhcp uci set network.mesh12.defaultroute=0 uci set network.mesh12.peerdns=0 uci commit uci set network.meshbat12=interface uci set network.meshbat12.ifname=@wireless0.12 uci set network.meshbat12.proto=batadv uci set network.meshbat12.mesh=bat12 uci set network.meshbat12.mtu=1528 uci commit uci set wireless.radio0_meshap42=wifi-iface uci set wireless.radio0_meshap42.network=mesh42 uci set wireless.radio0_meshap42.mode=ap uci commit uci set wireless.radio0_meshap42.ssid=042-Freifunk-sublab uci set wireless.radio0_meshap42.device=radio0 uci set wireless.radio0_meshap42.encryption=none uci commit uci set network.mesh42=interface uci set network.mesh42.type=bridge uci set network.mesh42.ifname=bat42 uci set network.mesh42.proto=dhcp uci set network.mesh42.defaultroute=0 uci set network.mesh42.peerdns=0 uci commit uci set network.meshbat42=interface uci set network.meshbat42.ifname=@wireless0.42 uci set network.meshbat42.proto=batadv uci set network.meshbat42.mesh=bat42 uci set network.meshbat42.mtu=1528 uci commit uci set wireless.radio0_meshap43=wifi-iface uci set wireless.radio0_meshap43.network=mesh43 uci set wireless.radio0_meshap43.mode=ap uci commit uci set wireless.radio0_meshap43.ssid=043-Freifunk-Bielefeld uci set wireless.radio0_meshap43.device=radio0 uci set wireless.radio0_meshap43.encryption=none uci commit uci set network.mesh43=interface uci set network.mesh43.type=bridge uci set network.mesh43.ifname=bat43 uci set network.mesh43.proto=dhcp uci set network.mesh43.defaultroute=0 uci set network.mesh43.peerdns=0 uci commit uci set network.meshbat43=interface uci set network.meshbat43.ifname=@wireless0.43 uci set network.meshbat43.proto=batadv uci set network.meshbat43.mesh=bat43 uci set network.meshbat43.mtu=1528 uci commit
schule1
opkg update opkg install kmod-batman-adv uci set wireless.radio0_iface_dhcp.encryption=psk-mixed uci set wireless.radio0_iface_dhcp.key=freifunk uci commit uci set wireless.radio0_iface.mcast_rate=6000 uci commit uci set network.wireless0.mtu=1528 uci commit uci set wireless.radio0_meshap12=wifi-iface uci set wireless.radio0_meshap12.network=mesh12 uci set wireless.radio0_meshap12.mode=ap uci commit uci set wireless.radio0_meshap12.ssid=012Freifunk uci set wireless.radio0_meshap12.device=radio0 uci set wireless.radio0_meshap12.encryption=none uci commit uci set network.mesh12=interface uci set network.mesh12.type=bridge uci set network.mesh12.ifname=bat12 uci set network.mesh12.proto=dhcp uci set network.mesh12.defaultroute=0 uci set network.mesh12.peerdns=0 uci commit uci set network.meshbat12=interface uci set network.meshbat12.ifname=@wireless0.12 uci set network.meshbat12.proto=batadv uci set network.meshbat12.mesh=bat12 uci set network.meshbat12.mtu=1528 uci commit uci set wireless.radio0_meshap141=wifi-iface uci set wireless.radio0_meshap141.network=mesh141 uci set wireless.radio0_meshap141.mode=ap uci commit uci set wireless.radio0_meshap141.ssid=141-Schule uci set wireless.radio0_meshap141.device=radio0 uci set wireless.radio0_meshap141.encryption=none uci commit uci set network.mesh141=interface uci set network.mesh141.type=bridge uci set network.mesh141.ifname=bat141 uci set network.mesh141.proto=dhcp uci set network.mesh141.defaultroute=0 uci set network.mesh141.peerdns=0 uci commit uci set network.meshbat141=interface uci set network.meshbat141.ifname=@wireless0.141 uci set network.meshbat141.proto=batadv uci set network.meshbat141.mesh=bat141 uci set network.meshbat141.mtu=1528 uci commit uci set wireless.radio0_meshap142=wifi-iface uci set wireless.radio0_meshap142.network=mesh142 uci set wireless.radio0_meshap142.mode=ap uci commit uci set wireless.radio0_meshap142.ssid=142-Schueler uci set wireless.radio0_meshap142.device=radio0 uci set wireless.radio0_meshap142.encryption=psk-mixed uci set wireless.radio0_meshap142.key=SchuelerNetz uci commit uci set network.mesh142=interface uci set network.mesh142.type=bridge uci set network.mesh142.ifname=bat142 uci set network.mesh142.proto=dhcp uci set network.mesh142.defaultroute=0 uci set network.mesh142.peerdns=0 uci commit uci set network.meshbat142=interface uci set network.meshbat142.ifname=@wireless0.142 uci set network.meshbat142.proto=batadv uci set network.meshbat142.mesh=bat142 uci set network.meshbat142.mtu=1528 uci commit
sublab
opkg update opkg install kmod-batman-adv uci set wireless.radio0_iface_dhcp.encryption=psk-mixed uci set wireless.radio0_iface_dhcp.key=freifunk uci commit uci set wireless.radio0_iface.mcast_rate=6000 uci commit uci set network.wireless0.mtu=1528 uci commit uci set wireless.radio0_meshap12=wifi-iface uci set wireless.radio0_meshap12.network=mesh12 uci set wireless.radio0_meshap12.mode=ap uci commit uci set wireless.radio0_meshap12.ssid=012Freifunk uci set wireless.radio0_meshap12.device=radio0 uci set wireless.radio0_meshap12.encryption=none uci commit uci set network.mesh12=interface uci set network.mesh12.type=bridge uci set network.mesh12.ifname=bat12 uci set network.mesh12.proto=dhcp uci set network.mesh12.defaultroute=0 uci set network.mesh12.peerdns=0 uci commit uci set network.meshbat12=interface uci set network.meshbat12.ifname=@wireless0.12 uci set network.meshbat12.proto=batadv uci set network.meshbat12.mesh=bat12 uci set network.meshbat12.mtu=1528 uci commit uci set wireless.radio0_meshap14=wifi-iface uci set wireless.radio0_meshap14.network=mesh14 uci set wireless.radio0_meshap14.mode=ap uci commit uci set wireless.radio0_meshap14.ssid=014-Battlemesh uci set wireless.radio0_meshap14.device=radio0 uci set wireless.radio0_meshap14.encryption=none uci commit uci set network.mesh14=interface uci set network.mesh14.type=bridge uci set network.mesh14.ifname=bat14 uci set network.mesh14.proto=dhcp uci set network.mesh14.defaultroute=0 uci set network.mesh14.peerdns=0 uci commit uci set network.meshbat14=interface uci set network.meshbat14.ifname=@wireless0.14 uci set network.meshbat14.proto=batadv uci set network.meshbat14.mesh=bat14 uci set network.meshbat14.mtu=1528 uci commit uci set wireless.radio0_meshap42=wifi-iface uci set wireless.radio0_meshap42.network=mesh42 uci set wireless.radio0_meshap42.mode=ap uci commit uci set wireless.radio0_meshap42.ssid=042-Freifunk-sublab uci set wireless.radio0_meshap42.device=radio0 uci set wireless.radio0_meshap42.encryption=none uci commit uci set network.mesh42=interface uci set network.mesh42.type=bridge uci set network.mesh42.ifname=bat42 uci set network.mesh42.proto=dhcp uci set network.mesh42.defaultroute=0 uci set network.mesh42.peerdns=0 uci commit uci set network.meshbat42=interface uci set network.meshbat42.ifname=@wireless0.42 uci set network.meshbat42.proto=batadv uci set network.meshbat42.mesh=bat42 uci set network.meshbat42.mtu=1528 uci commit
zwei fastd tunnel
opkg update opkg install fastd uci set fastd.vpnalpha=fastd uci set fastd.vpnalpha.enabled=1 uci set fastd.vpnalpha.mtu=1426 uci commit uci add_list fastd.vpnalpha.config=/etc/fastd/alpha.conf uci set fastd.vpnalpha.interface=vpnalpha uci commit uci set fastd.vpnalpha.syslog_level=warn uci set fastd.vpnalpha.mode=tap uci set fastd.vpnalpha.forward=0 uci commit uci set network.vpnalpha=interface uci set network.vpnalpha.ifname=vpnalpha uci set network.vpnalpha.proto=batadv uci commit uci set network.vpnalpha.mesh=bat12 uci set network.vpnalpha.auto=1 uci commit echo 'log level debug;' > /etc/fastd/alpha.conf echo 'method "xsalsa20-poly1305";' >> /etc/fastd/alpha.conf echo 'bind 0.0.0.0:10012;' >> /etc/fastd/alpha.conf echo 'include "alphasecret.conf";' >> /etc/fastd/alpha.conf echo 'mtu 1426;' >> /etc/fastd/alpha.conf echo 'include peers from "alphapeers";' >> /etc/fastd/alpha.conf echo 'on up "ip link set up dev $INTERFACE; batctl -m bat12 if add $INTERFACE";' >> /etc/fastd/alpha.conf echo 'secret "xyz"' >> /etc/fastd/alphasecret.conf mkdir /etc/fastd/alphapeers echo 'key "2eec197254f7c74d3cce7b6e2323b2724d9012ba3702d6d697a91d77f276afab";' > /etc/fastd/alphapeers/connectionPartner echo 'remote ipv4 "vpn7.leipzig.freifunk.net" port 10012;' >> /etc/fastd/alphapeers/connectionPartner uci commit #uci set fastd.vpnalpha.XSALSA20-POLY1305 #uci add_list fastd.vpnalpha.remote='"vpn7.leipzig.freifunk.net" port 10012' #uci set fastd.vpnalpha.secret=70440175e0bc9764c1432c65c40ac243099ed91ba72f212adaa3701792c0ef4e #uci set fastd.key=2eec197254f7c74d3cce7b6e2323b2724d9012ba3702d6d697a91d77f276afab uci set fastd.vpnbeta=fastd uci set fastd.vpnbeta.enabled=1 uci set fastd.vpnbeta.mtu=1426 uci add_list fastd.vpnbeta.config=/etc/fastd/beta.conf uci set fastd.vpnbeta.interface=vpnbeta uci commit uci set fastd.vpnbeta.syslog_level=warn uci set fastd.vpnbeta.mode=tap uci set fastd.vpnbeta.forward=0 uci commit uci set network.vpnbeta=interface uci set network.vpnbeta.ifname=vpnbeta uci set network.vpnbeta.proto=batadv uci set network.vpnbeta.mesh=bat141 uci set network.vpnbeta.auto=1 uci commit echo 'log level debug;' > /etc/fastd/beta.conf echo 'method "xsalsa20-poly1305";' >> /etc/fastd/beta.conf echo 'bind 0.0.0.0:10141;' >> /etc/fastd/beta.conf echo 'include "betasecret.conf";' >> /etc/fastd/beta.conf echo 'mtu 1426;' >> /etc/fastd/beta.conf echo 'include peers from "betapeers";' >> /etc/fastd/beta.conf echo 'on up "ip link set up dev $INTERFACE; batctl -m bat141 if add $INTERFACE";' >> /etc/fastd/beta.conf echo 'xyz' >> /etc/fastd/betasecret.conf mkdir /etc/fastd/betapeers echo 'secret "2eec197254f7c74d3cce7b6e2323b2724d9012ba3702d6d697a91d77f276afab";' > /etc/fastd/betasecret.conf echo 'key "2eec197254f7c74d3cce7b6e2323b2724d9012ba3702d6d697a91d77f276afab";' > /etc/fastd/betapeers/connectionPartner echo 'remote ipv4 "vpn7.leipzig.freifunk.net" port 10141;' >> /etc/fastd/betapeers/connectionPartner uci set fastd.vpnbeta.secret=70440175e0bc9764c1432c65c40ac243099ed91ba72f212adaa3701792c0ef4e uci commit uci set fastd.vpnbeta.secret=e874b0b71e86c5d32251d4810c6b0b9e8c993ce86e76480 uci set fastd.vpnalpha.secret=e874b0b71e86c5d32251d4810c6b0b9e8c993ce86e7648 uci commit
zwei fastd tunnel vlan 12+14
opkg update opkg install fastd uci set fastd.vpnalpha=fastd uci set fastd.vpnalpha.enabled=1 uci set fastd.vpnalpha.mtu=1426 uci commit uci add_list fastd.vpnalpha.config=/etc/fastd/alpha.conf uci set fastd.vpnalpha.interface=vpnalpha uci commit uci set fastd.vpnalpha.syslog_level=warn uci set fastd.vpnalpha.mode=tap uci set fastd.vpnalpha.forward=0 uci commit uci set network.vpnalpha=interface uci set network.vpnalpha.ifname=vpnalpha uci set network.vpnalpha.proto=batadv uci commit uci set network.vpnalpha.mesh=bat12 uci set network.vpnalpha.auto=1 uci commit echo 'log level debug;' > /etc/fastd/alpha.conf echo 'method "xsalsa20-poly1305";' >> /etc/fastd/alpha.conf echo 'bind 0.0.0.0:10012;' >> /etc/fastd/alpha.conf echo 'include "alphasecret.conf";' >> /etc/fastd/alpha.conf echo 'mtu 1426;' >> /etc/fastd/alpha.conf echo 'include peers from "alphapeers";' >> /etc/fastd/alpha.conf echo 'on up "ip link set up dev $INTERFACE; batctl -m bat12 if add $INTERFACE";' >> /etc/fastd/alpha.conf echo 'secret "xyz"' >> /etc/fastd/alphasecret.conf mkdir /etc/fastd/alphapeers echo 'key "2eec197254f7c74d3cce7b6e2323b2724d9012ba3702d6d697a91d77f276afab";' > /etc/fastd/alphapeers/connectionPartner echo 'remote ipv4 "vpn7.leipzig.freifunk.net" port 10012;' >> /etc/fastd/alphapeers/connectionPartner uci commit #uci set fastd.vpnalpha.XSALSA20-POLY1305 #uci add_list fastd.vpnalpha.remote='"vpn7.leipzig.freifunk.net" port 10012' #uci set fastd.vpnalpha.secret=70440175e0bc9764c1432c65c40ac243099ed91ba72f212adaa3701792c0ef4e #uci set fastd.key=2eec197254f7c74d3cce7b6e2323b2724d9012ba3702d6d697a91d77f276afab uci set fastd.vpnbeta=fastd uci set fastd.vpnbeta.enabled=1 uci set fastd.vpnbeta.mtu=1426 uci add_list fastd.vpnbeta.config=/etc/fastd/beta.conf uci set fastd.vpnbeta.interface=vpnbeta uci commit uci set fastd.vpnbeta.syslog_level=warn uci set fastd.vpnbeta.mode=tap uci set fastd.vpnbeta.forward=0 uci commit uci set network.vpnbeta=interface uci set network.vpnbeta.ifname=vpnbeta uci set network.vpnbeta.proto=batadv uci set network.vpnbeta.mesh=bat14 uci set network.vpnbeta.auto=1 uci commit echo 'log level debug;' > /etc/fastd/beta.conf echo 'method "xsalsa20-poly1305";' >> /etc/fastd/beta.conf echo 'bind 0.0.0.0:10014;' >> /etc/fastd/beta.conf echo 'include "betasecret.conf";' >> /etc/fastd/beta.conf echo 'mtu 1426;' >> /etc/fastd/beta.conf echo 'include peers from "betapeers";' >> /etc/fastd/beta.conf echo 'on up "ip link set up dev $INTERFACE; batctl -m bat14 if add $INTERFACE";' >> /etc/fastd/beta.conf echo 'xyz' >> /etc/fastd/betasecret.conf mkdir /etc/fastd/betapeers echo 'secret "2eec197254f7c74d3cce7b6e2323b2724d9012ba3702d6d697a91d77f276afab";' > /etc/fastd/betasecret.conf echo 'key "2eec197254f7c74d3cce7b6e2323b2724d9012ba3702d6d697a91d77f276afab";' > /etc/fastd/betapeers/connectionPartner echo 'remote ipv4 "vpn7.leipzig.freifunk.net" port 10014;' >> /etc/fastd/betapeers/connectionPartner uci set fastd.vpnbeta.secret=70440175e0bc9764c1432c65c40ac243099ed91ba72f212adaa3701792c0ef4e uci commit uci set fastd.vpnbeta.secret=e874b0b71e86c5d32251d4810c6b0b9e8c993ce86e76480 uci set fastd.vpnalpha.secret=e874b0b71e86c5d32251d4810c6b0b9e8c993ce86e7648 uci commit
zwei fastd tunnel im sublab
opkg update opkg install fastd uci set fastd.vpnalpha=fastd uci set fastd.vpnalpha.enabled=1 uci set fastd.vpnalpha.mtu=1426 uci commit uci add_list fastd.vpnalpha.config=/etc/fastd/alpha.conf uci set fastd.vpnalpha.interface=vpnalpha uci commit uci set fastd.vpnalpha.syslog_level=warn uci set fastd.vpnalpha.mode=tap uci set fastd.vpnalpha.forward=0 uci commit uci set network.vpnalpha=interface uci set network.vpnalpha.ifname=vpnalpha uci set network.vpnalpha.proto=batadv uci commit uci set network.vpnalpha.mesh=bat42 uci set network.vpnalpha.auto=1 uci commit echo 'log level debug;' > /etc/fastd/alpha.conf echo 'method "xsalsa20-poly1305";' >> /etc/fastd/alpha.conf echo 'bind 0.0.0.0:10042;' >> /etc/fastd/alpha.conf echo 'include "alphasecret.conf";' >> /etc/fastd/alpha.conf echo 'mtu 1426;' >> /etc/fastd/alpha.conf echo 'include peers from "alphapeers";' >> /etc/fastd/alpha.conf echo 'on up "ip link set up dev $INTERFACE; batctl -m bat42 if add $INTERFACE";' >> /etc/fastd/alpha.conf echo 'secret "xyz"' >> /etc/fastd/alphasecret.conf mkdir /etc/fastd/alphapeers echo 'key "2eec197254f7c74d3cce7b6e2323b2724d9012ba3702d6d697a91d77f276afab";' > /etc/fastd/alphapeers/connectionPartner echo 'remote ipv4 "vpn7.leipzig.freifunk.net" port 10042;' >> /etc/fastd/alphapeers/connectionPartner uci commit #uci set fastd.vpnalpha.XSALSA20-POLY1305 #uci add_list fastd.vpnalpha.remote='"vpn7.leipzig.freifunk.net" port 10012' #uci set fastd.vpnalpha.secret=70440175e0bc9764c1432c65c40ac243099ed91ba72f212adaa3701792c0ef4e #uci set fastd.key=2eec197254f7c74d3cce7b6e2323b2724d9012ba3702d6d697a91d77f276afab uci set fastd.vpnbeta=fastd uci set fastd.vpnbeta.enabled=1 uci set fastd.vpnbeta.mtu=1426 uci add_list fastd.vpnbeta.config=/etc/fastd/beta.conf uci set fastd.vpnbeta.interface=vpnbeta uci commit uci set fastd.vpnbeta.syslog_level=warn uci set fastd.vpnbeta.mode=tap uci set fastd.vpnbeta.forward=0 uci commit uci set network.vpnbeta=interface uci set network.vpnbeta.ifname=vpnbeta uci set network.vpnbeta.proto=batadv uci set network.vpnbeta.mesh=bat43 uci set network.vpnbeta.auto=1 uci commit echo 'log level debug;' > /etc/fastd/beta.conf echo 'method "xsalsa20-poly1305";' >> /etc/fastd/beta.conf echo 'bind 0.0.0.0:10043;' >> /etc/fastd/beta.conf echo 'include "betasecret.conf";' >> /etc/fastd/beta.conf echo 'mtu 1426;' >> /etc/fastd/beta.conf echo 'include peers from "betapeers";' >> /etc/fastd/beta.conf echo 'on up "ip link set up dev $INTERFACE; batctl -m bat43 if add $INTERFACE";' >> /etc/fastd/beta.conf echo 'xyz' >> /etc/fastd/betasecret.conf mkdir /etc/fastd/betapeers echo 'secret "2eec197254f7c74d3cce7b6e2323b2724d9012ba3702d6d697a91d77f276afab";' > /etc/fastd/betasecret.conf echo 'key "2eec197254f7c74d3cce7b6e2323b2724d9012ba3702d6d697a91d77f276afab";' > /etc/fastd/betapeers/connectionPartner echo 'remote ipv4 "vpn7.leipzig.freifunk.net" port 10043;' >> /etc/fastd/betapeers/connectionPartner uci set fastd.vpnbeta.secret=70440175e0bc9764c1432c65c40ac243099ed91ba72f212adaa3701792c0ef4e uci commit uci set fastd.vpnbeta.secret=e874b0b71e86c5d32251d4810c6b0b9e8c993ce86e76480 uci set fastd.vpnalpha.secret=e874b0b71e86c5d32251d4810c6b0b9e8c993ce86e7648 uci commit
Schluesselaustausch
also
fastd --generate-key
keys generieren.. den public-key dem admin des jeweiligen vlans schicken den secret key viermal abspeichern
also hier bitte jeweils manuell zu ersetzen, viel spass mit copy+paste!
uci set fastd.vpnbeta.secret=123 uci set fastd.vpnalpha.secret=123 uci commit echo 'secret "123";' > /etc/fastd/alphasecret.conf echo 'secret "123";' > /etc/fastd/betasecret.conf /etc/init.d/fastd enable /etc/init.d/fastd restart
jetz sollte eine verbindung zustande kommen, also eigentlich zwei!
reboot
fastd tunnel beta 141
opkg update opkg install fastd
