Akcije
Podrška #13905
Zatvoren
openwrt za router-sa kamikaze
Dodano od Ernad Husremović prije oko 17 godina. Izmjenjeno prije oko 17 godina.
Početak:
08.04.2008
Završetak:
% završeno:
50%
Procjena vremena:
Opis
buildati kamikaze iz trunka 2.4 broadcom radi wifi-ja
ovo treba biti đon za standardni sigma-com openwrt router
Fajlovi
| openwrt.pdf (212 KB) openwrt.pdf | opwenwrt.pdf buildan iz trunk-a | Ernad Husremović, 08.04.2008 12:42 | |
| openwrt-wrt54g-squashfs.bin (1,46 MB) openwrt-wrt54g-squashfs.bin | "stari" whiterussian wrt54g image | Ernad Husremović, 08.04.2008 20:47 | |
| openwrt-brcm-2.4-squashfs.trx (3,19 MB) openwrt-brcm-2.4-squashfs.trx | kamikaze 2.4 trx - openvpn, xwrt, wget, ip | Ernad Husremović, 08.04.2008 21:47 | |
| openwrt-brcm-2.4-squashfs.trx (3,19 MB) openwrt-brcm-2.4-squashfs.trx | openvpn, iptables-utils (za fwbuilder fw), sshfs-utils | Ernad Husremović, 08.04.2008 23:52 | |
| bihnet_on (2,14 KB) bihnet_on | router-sa /etc/ppp/ip-up.d/bihnet_on | Ernad Husremović, 09.04.2008 09:20 | |
| router_sa_nvram_show.txt.gpg (3,9 KB) router_sa_nvram_show.txt.gpg | dekriptovanje poruke gpg <file.gpg>; password = root password router-sa | Ernad Husremović, 09.04.2008 09:20 | |
| openwrt-brcm-2.4-squashfs.trx (3,25 MB) openwrt-brcm-2.4-squashfs.trx | dodan ppp, izbačen cifs, određeni kmod-ipt filteri | Ernad Husremović, 09.04.2008 10:07 | |
| ifup.pppoe (1,22 KB) ifup.pppoe | /sbin/ifup.pppoe | Ernad Husremović, 09.04.2008 18:59 | |
| ifup.pppoe.bihnet_fz (598 Bajta) ifup.pppoe.bihnet_fz | /sbin/ifup.pppoe.freezone | Ernad Husremović, 09.04.2008 18:59 | |
| custom-user-startup (2,97 KB) custom-user-startup | openwrt/xwrt/trunk/package/webif/files/etc/init.d/custom-user-startup | Ernad Husremović, 10.04.2008 20:25 | |
| openwrt-brcm-2.4-squashfs.trx (3,19 MB) openwrt-brcm-2.4-squashfs.trx | -wget, webif izmjene | Ernad Husremović, 10.04.2008 21:46 | |
| openwrt-brcm-2.4-squashfs.trx (3,13 MB) openwrt-brcm-2.4-squashfs.trx | izbacio usbcore, ne treba mi, samo zauzima 70 Kb | Ernad Husremović, 11.04.2008 10:47 | |
| openwrt-brcm-2.4-squashfs.trx (3,13 MB) openwrt-brcm-2.4-squashfs.trx | custom-user-startup izmjene (shfsmount izbacen &, sleep 2) | Ernad Husremović, 11.04.2008 12:13 |
Povezani tiketi 4 (0 otvoreno — 4 zatvorenih)
Izmjenjeno od Ernad Husremović prije oko 17 godina
root@sc_linksys_1:~$ ipkg list_installed
base-files - 9 - OpenWrt filesystem structure and scripts base-files-brcm - 2 - Board/architecture specific files bridge - 1.0.6-1 - Ethernet bridging tools busybox - 1.4.0-1 - Core utilities for embedded Linux systems dnsmasq - 2.35-1 - A lightweight DNS and DHCP server dropbear - 0.48.1-1 - a small SSH 2 server/client designed for small memory environments. elinks - 0.11.1-2 - A text based web browser ez-ipupdate - 3.0.11b8-2 - a client for dynamic DNS services haserl - 0.8.0-1 - a CGI wrapper to embed shell scripts in HTML documents ip - 2.6.11-050330-1 - iproute2 routing control utility ipkg - 0.99.149-2 - lightweight package management system ipkg-upgrade-fix - 0.2-1 - Shows warning about 'ipkg upgrade' when user tries to use it. iptables - 1.3.3-2 - The netfilter firewalling software for IPv4 iptables-extra - 1.3.3-2 - Other extra Iptables extensions (meta-package) iptables-mod-conntrack - 1.3.3-2 - Iptables (IPv4) extensions for connection tracking iptables-mod-extra - 1.3.3-2 - Other extra Iptables (IPv4) extensions iptables-mod-filter - 1.3.3-2 - Iptables (IPv4) extension for packet content inspection iptables-mod-imq - 1.3.3-2 - Iptables (IPv4) extensions for Intermediate Queuing Device QoS-support iptables-mod-ipopt - 1.3.3-2 - Iptables (IPv4) extensions for matching/changing IP packet options iptables-mod-ipsec - 1.3.3-2 - Iptables (IPv4) extensions for matching special IPsec packets iptables-mod-nat - 1.3.3-2 - Iptables (IPv4) extensions for different NAT targets iptables-mod-ulog - 1.3.3-2 - Iptables (IPv4) extension for user-space packet logging iptables-snmp - 0.1-1 - An snmpd plugin to access iptables rules iwlib - 29.pre10-1 - Library for setting up WiFi cards using the Wireless Extension kernel - 2.4.30-brcm-5 - kmod-brcm-wl - 2.4.30-brcm-5 - Proprietary driver for Broadcom Wireless chipsets kmod-diag - 2.4.30-brcm-5 - Kernel modules for LEDs and buttons kmod-imq - 2.4.30-brcm-5 - Kernel support for the Intermediate Queueing device kmod-ipt-conntrack - 2.4.30-brcm-5 - Extra Netfilter (IPv4) kernel modules for connection tracking kmod-ipt-extra - 2.4.30-brcm-5 - Other extra Netfilter (IPv4) kernel modules kmod-ipt-filter - 2.4.30-brcm-5 - Netfilter (IPv4) kernel modules for packet content inspection kmod-ipt-ipopt - 2.4.30-brcm-5 - Netfilter (IPv4) kernel modules for matching/changing IP packet options kmod-ipt-ipsec - 2.4.30-brcm-5 - Netfilter (IPv4) kernel modules for matching special IPsec packets kmod-ipt-nat - 2.4.30-brcm-5 - Netfilter (IPv4) kernel modules for different NAT targets kmod-ipt-nat-default - 2.4.30-brcm-5 - Default Netfilter (IPv4) NAT kernel modules for special protocols kmod-ipt-nat-extra - 2.4.30-brcm-5 - Extra Netfilter (IPv4) NAT kernel modules for special protocols kmod-ipt-queue - 2.4.30-brcm-5 - Netfilter (IPv4) kernel module for user-space packet queuing kmod-ipt-ulog - 2.4.30-brcm-5 - Netfilter (IPv4) kernel module for user-space packet logging kmod-iptables-extra - 2.4.30-brcm-5 - Extra kernel modules for iptables kmod-ppp - 2.4.30-brcm-5 - PPP support kmod-pppoe - 2.4.30-brcm-5 - PPP over Ethernet support kmod-sched - 2.4.30-brcm-5 - Kernel schedulers for IP traffic kmod-shfs - 2.4.30brcm+0.35-2 - SHell FileSystem Linux kernel module kmod-switch - 2.4.30-brcm-1 - switch driver for robo/admtek switch kmod-tun - 2.4.30-brcm-5 - Kernel TUN/TAP extension kmod-wlcompat - 2.4.30-brcm-4 - Compatibility module for using the Wireless Extension with broadcom's wl libelf - 0.8.8-1 - ELF object file access library liblzo - 2.02-1 - a real-time data compression library libnetsnmp - 5.1.2-2.1 - Open source SNMP implementation (librairies) libopenssl - 0.9.8d-1 - OpenSSL (Secure Socket Layer) libraries libpcre - 7.0-1 - A Perl Compatible Regular Expression library libpopt - 1.7-4 - a command line option parsing library libpthread - 0.9.27-1 - POSIX threads library libwrap - 7.6-1 - Security wrapper library for TCP services miniupnpd - 1.0-RC3-1 - a small and capable UPNP daemon. mtd - 4 - Tool for modifying the flash chip nas - 3.90.37-17 - Proprietary Broadcom WPA Authenticator/Supplicant ntpclient - 2003_194-2 - NTP client for setting system time from NTP servers. nvram - 1 - NVRAM utility and libraries for Broadcom hardware openvpn - 2.0.9-1 - Open source VPN solution using SSL ppp - 2.4.3-7 - a PPP (Point-to-Point Protocol) daemon (with MPPE/MPPC support) ppp-mod-pppoe - 2.4.3-7 - a PPPoE (PPP over Ethernet) plugin for PPP privoxy - 3.0.3-1 - web proxy with advanced filtering capabilities qos-scripts - 0.9.4-1 - QoS scripts for OpenWrt rsync - 2.6.5-1 - A fast incremental file transfer utility ruby - 1.8.5-1 - Ruby object-oriented scripting language interpreter shfs-utils - 0.35-2 - SHell FileSystem Linux mount/umount utilities snmp-utils - 5.1.2-2.1 - Open source SNMP implementation (utilities) snmpd - 5.1.2-2.1 - Open source SNMP implementation (daemon) tc - 2.6.11-050330-1 - iproute2 traffic control utility tftpd-hpa - 0.43-1 - An enhanced version of the BSD TFTP server tinyproxy - 1.6.3-1 - Tinyproxy is a lightweight HTTP and HTTPS proxy. uclibc - 0.9.27-9 - Standard C library for embedded Linux systems webif - 0.3-6 - wificonf - 6 - Replacement utility for wlconf wireless-tools - 29.pre10-1 - Tools for setting up WiFi cards using the Wireless Extension wl - 3.90.37-1 - Proprietary Broadcom utility for setting wireless driver parameters
Izmjenjeno od Ernad Husremović prije oko 17 godina
- Fajl openwrt.pdf openwrt.pdf dodano
archive//data/hg repozitoriji:
ovi hg reposi se osvježavaju iz /data/git/openwrt repos-a:- /data/hg/openwrt/opwenwrt
- /data/hg/openwrt/packages
- hernad@nmraka-1:/data/home/hernad/devel/hg/openwrt/xwrt$ hg clone ssh://archive//data/hg/xwrt/trunk
Izmjenjeno od Ernad Husremović prije oko 17 godina
hernad@nmraka-1:/data/home/hernad/devel/hg/openwrt/openwrt/feeds/
napravio simboličke linkove u openwrt/feeds
hernad@nmraka-1:/data/home/hernad/devel/hg/openwrt/openwrt/feeds$ ls -l packages xwrt lrwxrwxrwx 1 hernad hernad 39 2008-04-08 13:02 packages -> /home/hernad/devel/hg/openwrt/packages/ lrwxrwxrwx 1 hernad hernad 49 2008-04-08 13:02 xwrt -> /home/hernad/devel/hg/openwrt/xwrt/trunk/package/
osvježio index-e:
hernad@nmraka-1:/data/home/hernad/devel/hg/openwrt/openwrt$ scripts/feeds update -i
nakon toga one pakete koje želim uključiti u build instaliram kao ovdje:
hernad@nmraka-1:/data/home/hernad/devel/hg/openwrt/openwrt$ scripts/feeds install openvpn openssh-server wget nfs-utils iw monit gzip zip unzip nano cifsmount tftpd-hpa ntpclient monit sqlite3-cli
Izmjenjeno od Ernad Husremović prije oko 17 godina
hernad@nmraka-1:/data/home/hernad/devel/hg/openwrt/openwrt$ scripts/feeds install webif
Collecting package info: done Installing package 'haserl' Installing package 'webif'
Izmjenjeno od Ernad Husremović prije oko 17 godina
hernad@nmraka-1:/data/home/hernad/devel/hg/openwrt/openwrt$ scripts/feeds install dnsmasq dropbear ntpclient rsync tinyproxy wl
sada idem sa:
make menuconfig
da konačno odabirem šta buildam
Izmjenjeno od Ernad Husremović prije oko 17 godina
hernad@nmraka-1:/data/home/hernad/devel/hg/openwrt/openwrt$ scripts/feeds install aoetools ruby
Izmjenjeno od Ernad Husremović prije oko 17 godina
puk'o na nfs-utils
checking for nfs4_init_name_mapping in -lnfsidmap... no configure: error: libnfsidmap needed for nfsv4 support make[3]: *** [/data/home/hernad/devel/hg/openwrt/openwrt/build_dir/mipsel/nfs-utils-1.1.0/.configured] Error 1
make menuconfig - isključio nfs-utils iz build-a
Izmjenjeno od Ernad Husremović prije oko 17 godina
dobio sam
hernad@nmraka-1:~/devel/hg/openwrt/openwrt/bin$ ls 2.4*squ -l
-rw-r--r-- 1 hernad hernad 4067328 2008-04-08 15:50 openwrt-brcm-2.4-squashfs.trx
pristup router-u:
hernad@nmraka-1:~/devel/hg/openwrt/openwrt/bin$ sudo ip addr add 192.168.1.33/24 dev eth0
Izmjenjeno od Ernad Husremović prije oko 17 godina
root@OpenWrt:/tmp# scp hernad@192.168.1.33:~/devel/hg/openwrt/openwrt/bin/*2.4* .
root@OpenWrt:/tmp# mtd -r write openwrt-brcm-2.4-squashfs.trx linux
Izmjenjeno od Ernad Husremović prije oko 17 godina
hm, image prevelik:
Image too big for partition: linux Image check failed.
Izmjenjeno od Ernad Husremović prije oko 17 godina
Izmjenjeno od Ernad Husremović prije oko 17 godina
stanje stvari na starom router-u
root@sc_linksys_1:~$ df -h
Filesystem Size Used Available Use% Mounted on none 7.0M 80.0k 6.9M 1% /tmp /dev/mtdblock/4 1.8M 1.6M 196.0k 89% /jffs /jffs 1.4M 1.4M 0 100% / none 515.0G 496.7G 18.3G 96% /mnt/nas-1
Izmjenjeno od Ernad Husremović prije oko 17 godina
izbacio sambu, aoetools i sada može proći:
hernad@nmraka-1:/data/home/hernad/devel/hg/openwrt/openwrt/bin$
... hernad hernad 3674112 2008-04-08 19:23 openwrt-brcm-2.4-squashfs.trx
Izmjenjeno od Ernad Husremović prije oko 17 godina
restart ...
telnet 192.168.1.1
ali na bilo kojoj operacij zaglavi
Izmjenjeno od Ernad Husremović prije oko 17 godina
Filesystem Size Used Available Use% Mounted on
none 7.0M 60.0k 6.9M 1% /tmp mini_fo:/tmp/root 2.9M 2.9M 0 100% /tmp/root /dev/mtdblock/4 256.0k 256.0k 0 100% /jffs mini_fo:/jffs 2.9M 2.9M 0 100% /
Izmjenjeno od Ernad Husremović prije oko 17 godina
nakon toga stvar nikako ne ide - router neće da se boot-a
zato sam morao pribjeći tftp metodi:
pustio ovu komandu:
hernad@nmraka-1:/data/home/hernad/devel/hg/openwrt/openwrt/bin$ atftp --trace --option "timeout 1" --option "mode octet" --put --local-file openwrt-wrt54g-squashfs.bin 192.168.1.1
pa odmah nakon toga upalio router
Izmjenjeno od Ernad Husremović prije oko 17 godina
nakon whiterussian-a (RC5) pristupam normalno:
root@OpenWrt:/# df -h
Filesystem Size Used Available Use% Mounted on /dev/root 1.0M 1.0M 0 100% /rom none 7.0M 0 7.0M 0% /rom/mnt none 7.0M 16.0k 7.0M 0% /tmp /dev/mtdblock/4 2.2M 372.0k 1.8M 17% /
Izmjenjeno od Ernad Husremović prije oko 17 godina
root@OpenWrt:/# uname -a
Linux OpenWrt 2.4.35.4 #8 Tue Apr 8 20:57:10 CEST 2008 mips unknown
root@OpenWrt:/# df -h
Filesystem Size Used Available Use% Mounted on none 7.0M 56.0k 6.9M 1% /tmp mini_fo:/tmp/root 2.6M 2.6M 0 100% /tmp/root /dev/mtdblock/4 576.0k 324.0k 252.0k 56% /jffs mini_fo:/jffs 2.6M 2.6M 0 100% /
root@OpenWrt:/# ipkg list
base-files-brcm-2.4 - 12-unknown - bridge - 1.0.6-1 - busybox - 1.8.2-1 - dnsmasq - 2.41-1 - dropbear - 0.50-3 - haserl - 0.8.0-2 - ip - 2.6.20-070313-1 - iptables - 1.3.8-2 - kernel - 2.4.35.4-brcm-2.4-1 - kmod-brcm-wl - 2.4.35.4+4.150.10.5.2-brcm-2.4-1 - kmod-diag - 2.4.35.4-brcm-2.4-4 - kmod-ipt-conntrack - 2.4.35.4-brcm-2.4-1 - kmod-ipt-extra - 2.4.35.4-brcm-2.4-1 - kmod-ipt-filter - 2.4.35.4-brcm-2.4-1 - kmod-ipt-imq - 2.4.35.4-brcm-2.4-1 - kmod-ipt-ipopt - 2.4.35.4-brcm-2.4-1 - kmod-ipt-nathelper - 2.4.35.4-brcm-2.4-1 - kmod-ppp - 2.4.35.4-brcm-2.4-1 - kmod-pppoe - 2.4.35.4-brcm-2.4-1 - kmod-shfs - 2.4.35.4+0.35-brcm-2.4-2 - kmod-switch - 2.4.35.4-brcm-2.4-1 - kmod-tun - 2.4.35.4-brcm-2.4-1 - kmod-wlcompat - 2.4.35.4+4.150.10.5.2-brcm-2.4-1 - libblkid - 1.39-1 - libelf - 0.8.8-1 - libevent - 1.1-1 - libgcc - 3.4.6-12 - liblzo - 2.02-1 - libncurses - 5.6-1 - libnetsnmp - 5.1.2-2.3 - libopenssl - 0.9.8e-3 - libuci - 0.3.0-1 - libwrap - 7.6-1 - mtd - 6 - nano - 2.0.7-1 - nas - 4.150.10.5.2-1 - ntpclient - 2003_194-6 - nvram - 1 - openvpn - 2.0.9-2 - snmpd - 5.1.2-2.3 - uci - 0.3.0-1 - uclibc - 0.9.29-12 - webif - 0.3-10 - wget - 1.10.2-2 - wireless-tools - 29-2 - wl - 4.150.10.5.2-1 - wlc - 4.150.10.5.2-1 - zlib - 1.2.3-5 -
Izmjenjeno od Ernad Husremović prije oko 17 godina
root@OpenWrt:/# ls -l -h `which ip`
-rwxr-xr-x 1 root root 171.8k Apr 8 2008 /usr/sbin/ip
root@OpenWrt:/# ls -l /lib/modules/2.4.35.4/shfs.o
-rw-r--r-- 1 root root 78840 Apr 8 2008 /lib/modules/2.4.35.4/shfs.o
root@OpenWrt:/# ls -l /usr/sbin/snmpd
-rwxr-xr-x 1 root root 589403 Apr 8 2008 /usr/sbin/snmpd
Izmjenjeno od Ernad Husremović prije oko 17 godina
root@OpenWrt:/etc# ifconfig
br-lan Link encap:Ethernet HWaddr 00:1D:7E:55:69:5C
inet addr:192.168.1.1 Bcast:192.168.1.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:1452 errors:0 dropped:0 overruns:0 frame:0
TX packets:954 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:87721 (85.6 KiB) TX bytes:119506 (116.7 KiB)
eth0 Link encap:Ethernet HWaddr 00:1D:7E:55:69:5C
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:1438 errors:0 dropped:0 overruns:0 frame:0
TX packets:1125 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:118621 (115.8 KiB) TX bytes:185132 (180.7 KiB)
Interrupt:4
eth0.0 Link encap:Ethernet HWaddr 00:1D:7E:55:69:5C
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:1452 errors:0 dropped:0 overruns:0 frame:0
TX packets:954 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:93529 (91.3 KiB) TX bytes:123322 (120.4 KiB)
eth0.1 Link encap:Ethernet HWaddr 00:1D:7E:55:69:5C
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:178 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:0 (0.0 B) TX bytes:57672 (56.3 KiB)
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:2040 errors:0 dropped:0 overruns:0 frame:0
TX packets:2040 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:138720 (135.4 KiB) TX bytes:138720 (135.4 KiB)
Izmjenjeno od Ernad Husremović prije oko 17 godina
- % završeno promijenjeno iz 0 u 50
po default-u wireless je off, pa sam ga sa xwrt-om aktivirao
wl0 Link encap:Ethernet HWaddr 00:1D:7E:55:69:5E
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:1 errors:284 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:0 (0.0 B) TX bytes:68 (68.0 B)
Interrupt:2 Base address:0x5000
root@OpenWrt:/etc# brctl show
bridge name bridge id STP enabled interfaces
br-lan 8000.001d7e55695c no eth0.0
wl0
Izmjenjeno od Ernad Husremović prije oko 17 godina
isključiću iz image-a:
- snmpd (prevelik)
- nano (imam vi)
- kmod-ipt-nat
- shfs-utils
- kmod-nfs
- kmod-cifs
- cifmount
ali nikako da skontam koje sve trebam iptables kernel module. ovdje postoje bilješke kada sam ranije ovaj isti problem imao #11699, ali whiterussian izgleda nije isti kao kamikaze
Izmjenjeno od Ernad Husremović prije oko 17 godina
root@OpenWrt:/tmp# ipkg files kmod-ipt-extra
Package kmod-ipt-extra (2.4.35.4-brcm-2.4-1) is installed on root and has the following files: / /etc/ /etc/modules.d/ /etc/modules.d/40-ipt-extra /lib/ /lib/modules/ /lib/modules/2.4.35.4/ /lib/modules/2.4.35.4/ipt_pkttype.o /lib/modules/2.4.35.4/ipt_LOG.o /lib/modules/2.4.35.4/ipt_owner.o /lib/modules/2.4.35.4/ipt_condition.o
root@OpenWrt:/tmp# ipkg files kmod-ipt-nathelper
Package kmod-ipt-nathelper (2.4.35.4-brcm-2.4-1) is installed on root and has the following files: /lib/modules/2.4.35.4/ip_conntrack_tftp.o /lib/modules/2.4.35.4/ip_conntrack_ftp.o /lib/modules/2.4.35.4/ip_nat_ftp.o /lib/modules/2.4.35.4/ip_conntrack_irc.o /lib/modules/2.4.35.4/ip_nat_irc.o /etc/modules.d/40-ipt-nathelper
Package kmod-ipt-nathelper-extra (2.4.35.4-brcm-2.4-1) is installed on root and has the following files:
/lib/modules/2.4.35.4/ip_nat_h323.o /lib/modules/2.4.35.4/ip_conntrack_amanda.o /lib/modules/2.4.35.4/ip_conntrack_h323.o /lib/modules/2.4.35.4/ip_nat_pptp.o /lib/modules/2.4.35.4/ip_conntrack_rtsp.o /lib/modules/2.4.35.4/ip_nat_rtsp.o /lib/modules/2.4.35.4/ip_nat_snmp_basic.o /lib/modules/2.4.35.4/ip_conntrack_proto_gre.o /etc/modules.d/40-ipt-nathelper-extra /lib/modules/2.4.35.4/ip_conntrack_mms.o /lib/modules/2.4.35.4/ip_conntrack_pptp.o /lib/modules/2.4.35.4/ip_nat_mms.o /lib/modules/2.4.35.4/ip_nat_proto_gre.o
Izmjenjeno od Ernad Husremović prije oko 17 godina
iptables-utils dobio ovako
ručno ispravio .config
CONFIG_PACKAGE_iptables-mod-extra=y CONFIG_PACKAGE_iptables-mod-filter=y # CONFIG_PACKAGE_iptables-mod-imq is not set CONFIG_PACKAGE_iptables-mod-ipopt=y # CONFIG_PACKAGE_iptables-mod-iprange is not set # CONFIG_PACKAGE_iptables-mod-ipsec is not set # CONFIG_PACKAGE_iptables-mod-ipset is not set CONFIG_PACKAGE_iptables-mod-nat=y # CONFIG_PACKAGE_iptables-mod-ulog is not set CONFIG_PACKAGE_iptables-utils=y
hernad@nmraka-1:~/devel/hg/openwrt/openwrt$ make package/iptables/prepare V=99
++ mkdir -p /data/home/hernad/devel/hg/openwrt/openwrt/staging_dir/toolchain-mipsel_gcc3.4.6 ++ cd /data/home/hernad/devel/hg/openwrt/openwrt/staging_dir/toolchain-mipsel_gcc3.4.6 ++ mkdir -p bin lib include stamp Checking 'xgettext'... ok. Checking 'ruby'... ok. Checking 'bison'... ok. make[1]: Entering directory `/data/home/hernad/devel/hg/openwrt/openwrt' make[2]: Entering directory `/data/home/hernad/devel/hg/openwrt/openwrt/package/iptables' make[2]: Leaving directory `/data/home/hernad/devel/hg/openwrt/openwrt/package/iptables' make[1]: Leaving directory `/data/home/hernad/devel/hg/openwrt/openwrt'
hernad@nmraka-1:~/devel/hg/openwrt/openwrt$ make package/iptables/compile V=99
Izmjenjeno od Ernad Husremović prije oko 17 godina
yess sada fwbuilder sc_linksys_1.fw skripta radi kako treba
Izmjenjeno od Ernad Husremović prije oko 17 godina
Izmjenjeno od Ernad Husremović prije oko 17 godina
stanje config varijabli, inicijalno
root@OpenWrt:/tmp# uci show
cron.cfg028793=crond cron.cfg028793.enable=1 dhcp.cfg021c00=dnsmasq dhcp.cfg021c00.domainneeded=1 dhcp.cfg021c00.boguspriv=1 dhcp.cfg021c00.filterwin2k=0 dhcp.cfg021c00.localise_queries=1 dhcp.cfg021c00.local=/lan/ dhcp.cfg021c00.domain=lan dhcp.cfg021c00.expandhosts=1 dhcp.cfg021c00.nonegcache=0 dhcp.cfg021c00.authoritative=1 dhcp.cfg021c00.readethers=1 dhcp.cfg021c00.leasefile=/tmp/dhcp.leases dhcp.cfg021c00.resolvfile=/tmp/resolv.conf.auto dhcp.cfg0449a8=dhcp dhcp.cfg0449a8.interface=lan dhcp.cfg0449a8.start=100 dhcp.cfg0449a8.limit=150 dhcp.cfg0449a8.leasetime=12h dhcp.cfg06a6b0=dhcp dhcp.cfg06a6b0.interface=wan dhcp.cfg06a6b0.ignore=1 dropbear.cfg02541f=dropbear dropbear.cfg02541f.PasswordAuth=on dropbear.cfg02541f.Port=22 fstab.cfg023ae5=mount fstab.cfg023ae5.target=/home fstab.cfg023ae5.device=/dev/sda1 fstab.cfg023ae5.fstype=ext3 fstab.cfg023ae5.options=rw,sync fstab.cfg023ae5.enabled=0 fstab.cfg049a12=swap fstab.cfg049a12.device=/dev/sda2 fstab.cfg049a12.enabled=0 httpd.cfg024e53=httpd httpd.cfg024e53.port=80 httpd.cfg024e53.home=/www network.eth0=switch network.eth0.vlan0=0 1 2 3 5* network.eth0.vlan1=4 5 network.loopback=interface network.loopback.ifname=lo network.loopback.proto=static network.loopback.ipaddr=127.0.0.1 network.loopback.netmask=255.0.0.0 network.lan=interface network.lan.type=bridge network.lan.ifname=eth0.0 network.lan.proto=static network.lan.ipaddr=192.168.1.1 network.lan.netmask=255.255.255.0 network.wan=interface network.wan.ifname=eth0.1 network.wan.proto=dhcp ntpclient.cfg02a6f5=ntpclient ntpclient.cfg02a6f5.hostname=0.openwrt.pool.ntp.org ntpclient.cfg02a6f5.port=123 ntpclient.cfg02a6f5.count=1 ntpclient.cfg046f36=ntpclient ntpclient.cfg046f36.hostname=1.openwrt.pool.ntp.org ntpclient.cfg046f36.port=123 ntpclient.cfg046f36.count=1 ntpclient.cfg063777=ntpclient ntpclient.cfg063777.hostname=2.openwrt.pool.ntp.org ntpclient.cfg063777.port=123 ntpclient.cfg063777.count=1 ntpclient.cfg08ffb8=ntpclient ntpclient.cfg08ffb8.hostname=3.openwrt.pool.ntp.org ntpclient.cfg08ffb8.port=123 ntpclient.cfg08ffb8.count=1 ntpclient.cfg0afb6e=ntpdrift ntpclient.cfg0afb6e.freq=0 openvpn.general=openvpn openvpn.general.mode= openvpn.general.proto= openvpn.general.port= openvpn.client=openvpn openvpn.client.ipaddr= openvpn.client.auth= syslog.cfg0253b7=syslogd syslog.cfg0253b7.ipaddr= syslog.cfg0253b7.port= syslog.cfg0253b7.size=16 syslog.cfg0253b7.type=circular syslog.cfg0253b7.mark=0 syslog.cfg0253b7.file= syslog.cfg04ba70=klogd syslog.cfg04ba70.conloglevel= syslog.cfg0644ea=dmesg syslog.cfg0644ea.buffersize= syslog.cfg087eb9=dmesgbackup syslog.cfg087eb9.enabled=0 syslog.cfg087eb9.file=/var/log/dmesg syslog.cfg087eb9.gzip=1 system.cfg02f4d8=system system.cfg02f4d8.hostname=OpenWrt webif.general=webif webif.general.lang=en webif.general.firmware_name=OpenWrt Kamikaze webif.general.firmware_version=bleeding edge, unknown webif.general.firmware_subtitle=With X-Wrt Extensions webif.general.device_name=Linksys WRT54G/GS/GL webif.general.use_progressbar= webif.theme=webif webif.theme.id=xwrt webif.qos=webif webif.qos.show_advanced_rules=0 webif.misc=webif webif.misc.opendns=0 webif.wireless=webif webif.wireless.wifi0_txpower= webif.firewall=webif webif.firewall.log=0 webifssl.matrixtunnel=webifssl webifssl.matrixtunnel.enable=0 webifssl.certificates=webifssl webifssl.certificates.cafile=/etc/ssl/matrixtunnel.cert webifssl.certificates.privkey=/etc/ssl/matrixtunnel.key webifssl.listen=webifssl webifssl.listen.port=443 webifssl.remote=webifssl webifssl.remote.host=127.0.0.1 webifssl.remote.port=80 webifssl.syslog=webifssl webifssl.syslog.enable=0 webifssl.syslog.loglevel=0 wireless.wl0=wifi-device wireless.wl0.type=broadcom wireless.wl0.channel=5 wireless.wl0.disabled=1 wireless.cfg03c014=wifi-iface wireless.cfg03c014.device=wl0 wireless.cfg03c014.network=lan wireless.cfg03c014.mode=ap wireless.cfg03c014.ssid=OpenWrt wireless.cfg03c014.encryption=none
Akcije
#28
Izmjenjeno od Ernad Husremović prije oko 17 godina
- Fajl bihnet_on bihnet_on dodano
- Fajl router_sa_nvram_show.txt.gpg router_sa_nvram_show.txt.gpg dodano
na router-sa imamo dvije wan (adsl) konekcije:
- bihnet
- bihnet_freezone
pored toga imamo niz openvpn konekcija
root@sc_linksys_1:~$ route -n
Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 89.146.128.1 0.0.0.0 255.255.255.255 UH 0 0 0 ppp0 195.222.33.151 0.0.0.0 255.255.255.255 UH 0 0 0 ppp0 10.0.0.1 0.0.0.0 255.255.255.255 UH 0 0 0 ppp1 10.8.0.2 0.0.0.0 255.255.255.255 UH 0 0 0 tun0 192.168.55.0 10.8.0.2 255.255.255.0 UG 0 0 0 tun0 192.168.4.0 10.8.0.2 255.255.255.0 UG 0 0 0 tun0 195.222.62.0 0.0.0.0 255.255.255.0 U 0 0 0 ppp0 195.222.57.0 0.0.0.0 255.255.255.0 U 0 0 0 ppp0 192.168.65.0 10.8.0.2 255.255.255.0 UG 0 0 0 tun0 10.8.0.0 10.8.0.2 255.255.255.0 UG 0 0 0 tun0 192.168.66.0 10.8.0.2 255.255.255.0 UG 0 0 0 tun0 192.168.44.0 10.8.0.2 255.255.255.0 UG 0 0 0 tun0 80.65.85.0 10.0.0.1 255.255.255.0 UG 0 0 0 ppp1 192.168.45.0 0.0.0.0 255.255.255.0 U 0 0 0 br0 195.222.33.0 0.0.0.0 255.255.255.0 U 0 0 0 ppp0 195.222.0.0 10.0.0.1 255.255.0.0 UG 0 0 0 ppp1 0.0.0.0 89.146.128.1 0.0.0.0 UG 0 0 0 ppp0
Izmjenjeno od Ernad Husremović prije oko 17 godina
nver openwrt image-a
dodao:- ppp
- kmod-cifs
- kmod-ipt-ulog
- kmod-ipt-imq
- kmod-ipt-conntrack
takođe pokušao kompajlirati kmod-usb-core, kmod-usb-printer, kmod-usb-storage ali je ovdje ispao
make[8]: Entering directory `/data/home/hernad/devel/hg/openwrt/openwrt/build_dir/linux-brcm-2.4/linux-2.4.35.4/drivers/usb/storage' mipsel-linux-uclibc-gcc -D__KERNEL__ -I/data/home/hernad/devel/hg/openwrt/openwrt/build_dir/linux-brcm-2.4/linux-2.4.35.4/include -Wall -Wstrict-prototypes -Wno-trigraphs -Os -fno-strict-aliasing -fno-common -fno-builtin-strpbrk -fno-builtin-sprintf -fomit-frame-pointer -funit-at-a-time -I /data/home/hernad/devel/hg/openwrt/openwrt/build_dir/linux-brcm-2.4/linux-2.4.35.4/include/asm/gcc -G 0 -mno-abicalls -fno-pic -pipe -finline-limit=100000 -mabi=32 -march=mips32 -Wa,-32 -Wa,-march=mips32 -Wa,-mips32 -Wa,--trap -DMODULE -mlong-calls -fno-common -DCONFIG_MAC80211 -DCONFIG_CFG80211 -DCONFIG_NL80211 -DCONFIG_MAC80211_RC_DEFAULT_PID -DCONFIG_MAC80211_RC_PID -D__CONFIG_MAC80211_RC_DEFAULT=pid -nostdinc -iwithprefix include -DKBUILD_BASENAME=scsiglue -c -o scsiglue.o scsiglue.c In file included from scsiglue.c:47: scsiglue.h:45:18: scsi.h: No such file or directory scsiglue.h:46:19: hosts.h: No such file or directory In file included from scsiglue.c:47:
pa sam kmod-usb-* isključio
Izmjenjeno od Ernad Husremović prije oko 17 godina
u xwrt-u sam dodao novu konekciju pored wan konekcije jednostavno:
root@OpenWrt:/etc/ppp# uci show network | grep wan
network.wan=interface network.wan.ifname=eth0.1 network.wan.proto=pppoe network.wan.username=hsamrae network.wan.password=hsamraepwd network.wan.defaultroute=1 network.wan.ppp_redial=persist
root@OpenWrt:/etc/ppp# uci show network | grep freezone
network.freezone=interface network.freezone.proto=pppoe network.freezone.username=hsamrae@bih.net.ba network.freezone.password=istipwd network.freezone.defaultroute=0 network.freezone.ppp_redial=persist
e sad trebam probati kako se ovo ponaša kada se radi prava konekcija
Izmjenjeno od Ernad Husremović prije oko 17 godina
Izmjenjeno od Ernad Husremović prije oko 17 godina
pppoe sa predhodnim image-ima ipak ne radi, nema sve ppoe module
evo šta treba
root@OpenWrt:/tmp# ls *ppp*ipk
kmod-pppoe_2.4.35.4-brcm-2.4-1_mipsel.ipk ppp-mod-pppoe_2.4.3-9_mipsel.ipk ppp_2.4.3-9_mipsel.ipk
root@OpenWrt:/tmp# ifup wan
Plugin rp-pppoe.so loaded.
logread
... Jan 1 01:55:29 OpenWrt daemon.info pppd[7474]: Plugin rp-pppoe.so loaded. Jan 1 01:55:29 OpenWrt daemon.notice pppd[7475]: pppd 2.4.3 started by root, uid 0 Jan 1 01:55:44 OpenWrt daemon.warn pppd[7475]: Timeout waiting for PADO packets Jan 1 01:55:44 OpenWrt daemon.err pppd[7475]: Unable to complete PPPoE Discovery Jan 1 01:56:29 OpenWrt daemon.warn pppd[7475]: Timeout waiting for PADO packets Jan 1 01:56:29 OpenWrt daemon.err pppd[7475]: Unable to complete PPPoE Discovery
Izmjenjeno od Ernad Husremović prije oko 17 godina
kao što se vidi na kamikaze je podešenje drugačije, imamo dvije virtualne wireless konekcije:
- access point
- wds
dok je kod whiterussian-a sve to bila ap konekcija sa mogućnosti podešenja wds-a
prikopčao sam router-wan-sa-1 na mjesto router-sa i:- dobio sam internet konekciju
- dobio sam 2.2 MB copy između nmraka-1 -> ifold, što je odlično
međutim ono što ne radi jeste freezone
$ ifup freezone ne pije vode bilo da je wan (bihnet) konekcija dignuta, bilo da nije, treba to podesiti na isti način kako je to na router-sa urađeno
Izmjenjeno od Ernad Husremović prije oko 17 godina
sad nisam siguran za test freezone, jer sam skontao da sam pogrešno username stavljao ja stavljao hsamrae@bih.net.ba a trebalo je hsamrae*@bihnet*
Akcije
#35
Izmjenjeno od Ernad Husremović prije oko 17 godina
- Fajl ifup.pppoe ifup.pppoe dodano
- Fajl ifup.pppoe.bihnet_fz ifup.pppoe.bihnet_fz dodano
root@sc_linksys_1:/sbin$ ls ppp
ifup.pppoe ifup.pppoe.bihnet_fz
e sad u kamikaze umjesto "nvram" komande treba koristiti "uci"
Izmjenjeno od Ernad Husremović prije oko 17 godina
hernad@nmraka-1:~/admin/router-sa/init.d$ cat custom
router-sa /etc/init.d/S95custom-user-startup
#!/bin/sh
- napravi ~/.ssh radi sshmount-a
mkdir /tmp/.ssh/
cp /etc/known_hosts /tmp/.ssh/known_hosts
cp /etc/dropbear/authorized_keys /tmp/.ssh/authorized_keys
shfsmount -c "ssh -i /etc/dropbear_archive %u@%h /bin/bash" root@archive.sigma-com.net:/data /mnt/nas-1
sleep 2
/etc/init.d/tftpd-hpa start
/usr/sbin/wl txpwr 75
/usr/sbin/wl frameburst 1
rm -f /etc/mtab
ln -s /proc/mounts /etc/mtab
openvpn --config /etc/openvpn/server.conf&
ja ću se ubuduće držati konvencije da
/mnt/1uvijek sadrži:
- /mnt/1/usr/bin koje su u path-u,
- /mnt/1/usr/lib
- /mnt/1/etc/init.d/
- a ovdje opet ako ima custom-user-startup skripta ona se takođe pokreće
Izmjenjeno od Ernad Husremović prije oko 17 godina
ovo treba dodati u /etc/init.d/custom-user-startup
CUS_EXT=/mnt/1/etc/init.d/custom-user-startup if [ -x "$CUS_EXT" ] then . $CUS_EXT fi
Izmjenjeno od Ernad Husremović prije oko 17 godina
u custom-user-script dodati
SHFS_BOOT=`uci get fstab.shfs`
if [ "$SHFS_BOOT" == "boot" ]
then
SHFS_HOST=`uci get fstab.shfs.host`
echo "$SHFS_HOST ssh-rsa `uci get fstab.shfs.key`" >> /root/.ssh/authorized_keys
SHFS_USER=`uci get fstab.shfs.user`
SHFS_DIR=`uci get fstab.shfs.dir`
shfsmount -c "ssh -i /etc/dropbear/${SHFS_HOST}.key %u@%h /bin/bash" \
${SHFS_USER}@${SHFS_HOST}:${SHFS_DIR} /mnt/1
fi
ovo podesiti
root@router-wan-sa-1:/etc# uci show fstab | grep shfs
fstab.shfs=boot fstab.shfs.key=AAAAB3NzaC1yc2EAAAABIwAAAQEApbts .itd.itd.itd. 0BMw== fstab.shfs.dir=/data fstab.shfs.host=archive.sigma-com.net fstab.shfs.user=root
u /etc/dropbear/ staviti privatni ključ <shfs_hostname>.key, znači
/etc/dropbear/archive.sigma-com.net.key
Izmjenjeno od Ernad Husremović prije oko 17 godina
međutim, prilikom restarta mountiranje se ne desi
logread
... Jan 1 00:00:35 : Host 'archive.sigma-com.net' is not in the trusted hosts file. Jan 1 00:00:35 : (fingerprint md5 39:01:83:80:a6:2f:b7:ab:5f:6d:c0:55:3d:53:85:ac)
Izmjenjeno od Ernad Husremović prije oko 17 godina
- Fajl custom-user-startup custom-user-startup dodano
izvššio
baš se napati, rješenje je na kraju u "-y" switch-u
ssh -i /etc/dropbear/${SHFS_HOST}.key %u@%h /bin/bash" ...
s obzirom da je custom-user-startup webif komanda, ovu skriptu sam stavio u webf bring.out.ba branch repozitorij
Izmjenjeno od Ernad Husremović prije oko 17 godina
ajoj, opet razlika
whiterussian traži da radi publickey authentifikacije ključ bude u- ~/.ssh/authorized_keys
- /etc/dropbear/authorized_keys
Izmjenjeno od Ernad Husremović prije oko 17 godina
pravimo novi image
izbacujem:- wget (prevelik)
- webif (izmjena custom-users-scripts) ?? da li su obuhvacene, ne bih rekao ??
Izmjenjeno od Ernad Husremović prije oko 17 godina
novi image je prihvatio moje promjene na custom-user-script super
Izmjenjeno od Ernad Husremović prije oko 17 godina
Izmjenjeno od Ernad Husremović prije oko 17 godina
Izmjenjeno od Ernad Husremović prije oko 17 godina
- Status promijenjeno iz Dodijeljeno u Zatvoreno
Akcije