Commit Graph

174 Commits

Author SHA1 Message Date
Joe Ayers 07aa305e29 aredn: olsrd: add olsrd watchdog
Adding native olsrd watchdog on top of procd
ensures mesh nodes are always accessable.

closes #338
2019-01-27 14:12:37 -08:00
Joe Ayers 1c6d2286cc aredn: hap ac lite add 2G/5G lan ap options
Add option for hap ac lite to select which band to
use for LAN AP option, 2GHz or 5GHz.  Also, ensure
all wireless cards are defined when disabled to
prevent default wireless config options.
2018-12-17 20:13:37 -08:00
Joe AE6XE f777e914f9 aredn: Mesh RF enable/disable (#307)
add feature to turn off Mesh RF if not in use.  When off,
section to re-purpose wireless card to LAN bridged Access
Point becomes visable.
Closes #155
2018-12-12 15:16:07 -06:00
dman776 ce5a757ca0
bugfix: advanced config usb passthru errors when uci section is not available (#308) 2018-12-12 08:31:57 -06:00
Joe AE6XE 123949de9e
aredn: Standardize Ethernet Port vlans for UBNT XM devices (#297)
The secondary port on Ubnt XM devices was non-functional.
Enabled bridge type in network config to utilize both ports.
2018-12-02 17:52:48 -08:00
dman776 dab3f60c9a
bugfix: correct uhttpd page security on sysupgrade (#296) 2018-12-02 17:28:35 -06:00
dman776 86ec92ac46
bugfix: usb passthrough not initializing after reboot properly (#292) 2018-11-29 22:15:16 -06:00
Joe AE6XE a62fe95b26
aredn: hAP ac lite enable 5GHz LAN Access Point (#287)
* aredn: hAP ac lite enable 5GHz LAN Access Point

enable ability to bridge LAN physical ports with wireless
LAN Access Point capability. On dual band hAP ac lite,
used in parallel with mesh RF on 2GHz.  Enables future
features on single band devices to turn off mesh RF and
repurposed for mesh LAN Access Point.

closes: #215
2018-11-27 21:37:59 -08:00
dman776 854afdb32d
bugfix: correct initial values for poe and usb passthrough (#271)
* bugfix: correct initial values for poe and usb passthrough

* correct a few shellcheck errors
2018-11-16 22:41:58 -06:00
dman776 8716fd42be Add PoE passthrough option to advanced config (#243)
* minor changes

* handle null value (change to 0)

* add poe_passthrough script

* change key location

* change key name

* add default info into aredn uci file

* add conditional functions
2018-10-26 19:34:16 -07:00
dman776 9391ff5555
Add "Advanced config" page (#237)
* initial commit

* feature: advanced configuration page

fixes #230

* add help page updates

* added menu links to perlfunc.pm

* add default value for serverpath

* move "Reset to Firstboot" button from setup page to advancedconfig page

* secure page
minor ui changes

* center the help icon

* implement callback capabilities pre/post

* hardening uci calls to prevent command injection attacks

* moved settings to custom aredn uci file

* resolve shellcheck warnings
2018-10-25 21:06:05 -05:00
Joe AE6XE 9ce76e1e7e aredn: preserve custom firewall rules across sysupgrade
groups with custom rules created in /etc/local/mesh-firewall
for echolink, ampr.net, and other integrations with internet
based appications can preserve rules across a firmware
upgrade by locating the custom rules in this directory
using a file named 59-custom-rules
2018-09-06 19:45:42 -07:00
Joe AE6XE 0bd057ed40 aredn: phase 1 support for Mikrotik rb952Ui-5ac2nD
Add support for the hAP lite model rb952UI-5ac2nD equivilent to
the UBNT AirRouter.  The 5Ghz interface will be configured in a
2nd phase.  This hAP lite model has double the RAM and Flash
of the AR.  the 2Ghz is MIMO (5Ghz is single antenna).
2018-09-03 23:26:56 -07:00
Joe AE6XE 5abeb8f7ac bugfix: aredn slugbug mitigation
with low memory conditions, typically on 32Mb RAM, the
device would become unresponsive in hours to days. The
symptoms only occured when no RF links. iw processes
would hang in Zombie state.  Updates to use iwinfo where
possible and avoid using both iw and iwinfo.  crontab
script is implemented to detect Zombie processes and free
up resources in the reduced chance the symptoms are still
occuring.
2018-08-22 07:23:53 -07:00
Trevor Paskett af0e26dd84 config change to make uhttpd listen on port 80 and 8080 (#142)
* config change to make uhttpd listen on port 80 and 8080

* add port 80 to tunnel firewall rules

* add port 80 to tunnel firewall rules in config, update help

* firewall rules for wan + dtdlink
2018-08-20 14:09:47 -05:00
dman776 560070d2d1
bugfix: node description not saving properly (#101) 2018-08-02 15:58:01 -05:00
Joe AE6XE 53fd55b345 aredn: tunnel firewall rules upgrade to openwrt 18.06
fixes: #68
2018-07-14 21:34:00 -07:00
apcameron 0d95d4d708 ar71xx: Add Support for the TP-LINK CPE510 V2.0 Device
Once the PR for this is accepted by Openwrt we will need to remove the file
001-add_support_for_TP-Link_CPE510_v2.patch

Removed 001-add_support_for_TP-Link_CPE210_v2.patch as PR #937 has been committed

Updated 99_setup_aredn_include to remove unused Rssi Led configuration
2018-07-04 18:17:14 -07:00
Joe AE6XE 8cbc9a1435 hardware: add aredn definition for mikrotik 912uag-5hpnd
Mikrotik RouterBOARD 912UAG-5HPnD or BaseBox 5 definition
2018-06-15 17:50:18 -05:00
apcameron 9fd3f30934 ar71xx: Add Support for the TP-LINK CPE210 V2.0 Device
Once Support for the TP-LINK CPE210 V2.0 gets added to the OpenWrt code we will need to drop the patch 001-add_support_for_TP-Link_CPE210_v2.patch
2018-05-15 21:20:44 -07:00
Andrew Cameron 770fe43e23 aredn: upgrade setup_aredn_include to new generate_led 2018-03-29 23:55:55 -07:00
Andrew Cameron 1fc7a926ab bugfix: fix scripts to current standards
local can only be used in a function
2018-03-29 22:00:19 -07:00
Joe AE6XE b7cacc3d18 package: olsr: AREDN upgrade to 0.9.6.2 2018-03-29 21:03:16 -07:00
Darryl Quinn f532ee6a40 bugfix: tun_client connection does not persist/retry
refs AREDN->ticket:229

Change-Id: I843bd2eb7c6d88ec4917e52cfc5bbdfaeda9f4c0
2017-04-26 12:06:24 -05:00
Darryl Quinn 7d8496282b bugfix: remove unnecessary packages in order to reduce memory footprint
Change-Id: I0897be587cd1f46da758dda3efe65aea32c8a965
2017-04-04 03:11:46 +00:00
Conrad Lara - KG6JEI a57d5cd08c bugfix: olsrd-watchdog false reports
olsrd-watchdog can trigger when the olsrd service is restarted
Such as when a tunnel comes up, or when a config change is
made to olsrd.

procd already monitors olsrd and makes sure it remains running.

With procd we no longer need olsrd-watchdog and can remove it.

fixes AREDN->ticket:215

Change-Id: I5067d380a22bd0ab5e597746478ef3e1ba05d72d
2017-03-31 19:34:49 +00:00
Conrad Lara - KG6JEI 8ee8fbefe0 bugfix: Increase available memory during upgrade/install process
It is possible for the system to run out of memory when dealing
with large file uploads and installs.

As part of the upgrade procedure shutdown services that are not
essential for node operations to allow more memory for install
to take place.

Includes changes to linkled to indicate this new state as it will
be shutdown as part of the cleanup process.

Memory gain (approximate)

dropbear 100kb
linkled  200kb
logd     200kb
odhcp    100kb
snmpd    500kb
xinetd   100kb

Total(approximate): 1200kb (around %4 on 32mb devices)

This is somewhat similar to files/usr/local/bin/upgrade_kill_prep
except that it kills only a select group of services
so that the system can handle the file upload while
upgrade_kill_prep does the final system cleanup to run the full
upgrade.

ref AREDN->ticket:204

Change-Id: Ic6d3aa028725064a97c4723f6d9b36e1e51d87a7
2017-03-08 03:23:52 +00:00
Conrad Lara - KG6JEI c592f44ab0 Sourcecode license text spelling correction.
Inside the source files the word "contained" was mispelled
as "conained"

The website currently lists this correctly as "contained"

This was an error in the intial stamping of the source files in
changeset:5c3ee1d0686c6e6f2907fe4fc393d86d6c5a69b5/aredn_ar71xx

Line is part of "Additional Conditions" permitted by GPLv3.
Line does not impact coders prior to the AREDN setup date
as it was added by the AREDN team.

Change-Id: I3bc09aea548100f35c08aebe8686b8d4808d56d8
Signed-off-by: Conrad Lara - KG6JEI <KG6JEI@amsat.org>
Signed-off-by: Joe Ayers <ae6xe@arrl.net>
Signed-off-by: Darryl Quinn <k5dlq@arrl.net>
Signed-off-by: Trevor Paskett - K7FPV <snoopytjp@gmail.com>
2016-12-30 18:54:05 +00:00
Conrad Lara - KG6JEI 905995eb23 feature: Automate banner file creation Patch 1 of 2
Remove banner from the files set as it will override the build
version of the banner.

Patch 2 will be in arednbase repo.

Change-Id: Iefb8288985b39b8942419f43925d00aaab53d610
2016-12-16 22:47:46 +00:00
Conrad Lara - KG6JEI 27ea95209e bugfix: Have UI keep timezone after OTA
After OTA upgrade the timezone was kept in the system file
but not in the UI so when a user would save the timezone
would be overwritten.

fixes AREDN->ticket:186

Change-Id: I593afab0c3f67ba9d300228e9cbb47d7e3d894d1
2016-12-12 08:39:35 +00:00
Darryl Quinn 25dc984988 security: protect wifi scan page
fixes AREDN->ticket:195

Change-Id: I30f8087aa59483cdbf73cfde8029ccc7bbd42cb5
2016-11-17 14:50:10 -05:00
Darryl Quinn df9c6601be enable leafletjs, leafletcss, and maptiles to be based on uci config vars
fixes AREDN->ticket:174

Change-Id: I0133ab46df95b14d55192e5e47fa4e8f6377b4c9
2016-06-22 08:43:28 -05:00
Conrad Lara - KG6JEI 061ede3488 Merge branch 'ChaosCalmer' into develop
Change-Id: I26a8677595a25aae267b7365f1e5835ea68f49b4
2016-06-19 19:26:12 -07:00
Conrad Lara - KG6JEI 8f91ad1e0e security feature: Enhance HTTPD password security
Move httpd.conf to not store password and instead depend on the shadow password file.

Also tag the 40_aredn_migrate-httpdconf script to be +x. Not strictly necessary but wish to have this standard

Change-Id: I018d9a3294e45af2316b3c3947ef2a7d8081268b
2016-06-10 19:37:57 -07:00
Conrad Lara - KG6JEI 1271db794a Merge 3.16.1.0 as released into develop
Merge branch 'release-3.16.1.0' into develop
2016-05-17 09:50:40 -07:00
Darryl Quinn 6912f69dc8 fixes AREDN->ticket:165 2016-05-15 17:35:43 -05:00
Conrad Lara - KG6JEI 86d17e0998 bugfix: RFC Compliance for DHCP and Classless static routes
RFC requires that the DHCP server include the default gateway (0.0.0.0/0) route as part the Classless network list.

Moved to node-setup so it can be set dynamically at setup run time.

fixes AREDN->ticket:155
2016-03-31 22:54:29 -07:00
Darryl Quinn 35b8278b34 bugfix: traffic generated from the tun client would not forward thru the server 2016-02-23 13:20:19 -06:00
Conrad Lara - KG6JEI 7df4747aff bugfix: Traffic from Lan to DTDLINK not masqueraded when in NAT mode.
Due to a firewall chain name changes in BB when a node was in NAT mode (instead of recommended direct mode) connections that went out over DTDLink as the first hop would not be masqed and as such would not work.
2016-01-23 20:40:01 -08:00
Conrad Lara - KG6JEI b38309bab5 Merge branch 'FixupTunnelFirewall' into release-3.16.1.0
Various fixes around tunnel firewall rules
2016-01-21 20:40:43 -08:00
Conrad Lara - KG6JEI 29ba1c0419 bugfix: Tunnel Firewall: Accept SNMP and default to block on input chain instead of accept 2016-01-21 20:39:59 -08:00
Trevor Paskett - K7FPV 923039fcc0 Merge branch 'release-3.16.1.0' of ssh://git.aredn.org/aredn_ar71xx into release-3.16.1.0 2016-01-20 10:10:34 -07:00
Trevor Paskett - K7FPV 35e05b7dac change uhttpd script_timeout from 60 to 240 to fix uploading firmware on slow links 2016-01-20 10:09:52 -07:00
Conrad Lara - KG6JEI 0f837d601a bugfix: Tunnel firewall rules throw a chain does not exist on firewall restart.
This chain may not exist by design of the check.

Redirect the iptables error to /dev/null so it doesn't clog logs
2016-01-16 21:20:22 -08:00
Conrad Lara - KG6JEI 5663741cb1 bugfix: On firewall reload some tunnel rules were not being inserted into the default chains which are flushed on both reload and restart of firewall by OpenWRT fw scripts. 2016-01-16 21:20:22 -08:00
AE6XE 2be20cbde2 bugfix: Tunnel firewall rule chain names are incorrect.
Based on previously reverted commit 646702aab9
2016-01-16 21:20:16 -08:00
AE6XE 06eb7fa688 bugfix: Remove erroneous reference in license header of 01-tunnels script.
Script is a new file created after the split from BBHN and did not use code from a file BBHN worked on.
2016-01-16 19:58:38 -08:00
Conrad Lara - KG6JEI 921967d5f9 Revert "bugfix: resolve bad chain ref and port from hotplug to a firewall include"
This reverts commit 646702aab9.

Needs to be broken up into separate commits and doesn't cleanly fix issue with tunnel firewall
2016-01-16 19:55:20 -08:00
AE6XE 646702aab9 bugfix: resolve bad chain ref and port from hotplug to a firewall include 2016-01-16 13:26:14 -08:00
Conrad Lara - KG6JEI 243ded9f23 Bump banner to 3.16.1.0 in prep for release 2016-01-13 09:45:36 -08:00