Commit Graph

13 Commits

Author SHA1 Message Date
Joe AE6XE b7cacc3d18 package: olsr: AREDN upgrade to 0.9.6.2 2018-03-29 21:03:16 -07:00
Conrad Lara - KG6JEI 477a20d55a feature: FirewallIncludes: Add program that will auto include firewall rules that are in a set directory.
This is the basis for allowing packages to contain firewall rules that can be just dropped in a folder at install time.
2016-01-09 16:24:45 -08:00
Trevor Paskett - K7FPV 3359c44ca7 feature: add jsoninfo to olsr and open firewall ports 9090 2016-01-05 11:00:22 -07:00
Darryl Quinn 807f381a04 bugfix: network and firewall tunnel rules reworked 2015-06-14 23:30:06 -05:00
Darryl Quinn 91762973a5 bugfix: tunnel firewall changes 2015-06-11 01:02:55 -05:00
Conrad Lara - KG6JEI 94a803d456 feature: Add initial read-only SNMP support in mesh mode.
Config file is present upon initial start and in mesh mode.

Daemon still starts up in other modes but will not function w/o settings.

Firewall:
Permit access for UDP:161 (SNMPD) on  WIFI and DTDLINK
Lan is permitted by default allow rules.
2015-04-14 22:31:21 -07:00
Conrad Lara - KG6JEI a4dd9a9bdd Add new feature device-to-device linking (dtdlink)
The dtdlink interface is vlan 2 on eth0 and is used for linking two or more devices together.

This will allow for band-to-band repeaters, sector antenna setups, etc.

see BBHN->ticket:28
2014-04-08 23:19:45 -07:00
Conrad Lara - KG6JEI 2f126f4fa0 Prepwork for dealing with the common encrypted ports.
In order to maintain compatibility with existing deployed nodes, known common encrypted ports will NOT be blocked by default.

Users will receive a message during first setup encouraging them to review the rules that apply to how they intend to use their node and that laws very by country and frequency.

A package blockknownencrypted has been created in changeset:123a521df2b63ba1c5bdd6ad94ac402b86394579/bbhn_packages to be used in blocking known encrypted ports if the user feels it is necessary.

As developers we are not stating an opinion as to what the rules say or do not say in relationship to the traffic this deals with.  Each user will need to make their own determination of the rules.

This has been the current case since day one.

New file fwinfo page shows if the package is installed AND displays the active firewall rules at the time of the access.  This allows future grown to help test (because of the adhoc nature of the mesh) if packet filtering is the cause of a connection not working.

see BBHN->ticket:3
2014-01-28 13:05:58 -08:00
Conrad Lara - KG6JEI 32f107648a Open firewall to port 23 on WIFI in config=mesh
ref ticket: #2

Open firewall to allow telnet to the routers WIFI interface
in mesh mode.

closes #2
2013-12-07 18:38:47 -08:00
Conrad Lara - KG6JEI f6a0b09c6f Add rule to allow wifi to forward traffic to wifi
Previous rules would of not allowed mesh traffic to be forwarded out.
2013-12-04 19:29:42 -08:00
Conrad Lara - KG6JEI 2d73802aaa Protect from ssh over wifi in mesh
Block the built-in SSH server from connections on the mesh interface to
comply with FCC Part 97

see ticket #2
2013-12-02 15:43:52 -08:00
Conrad Lara - KG6JEI b948d97423 Merge SDWG Mesh progress with 1.0.0 BBHN
Includes removing files that are provided by packages instead
of being embedded as binaries.

Changes made for UBNT hardware AND for newer base openwrt (Backfire)
2013-12-02 12:04:54 -08:00
Conrad Lara - KG6JEI ae2674e764 import of files/ from BBHN 1.0.0 (bbhn svn 273) 2013-11-15 06:11:16 +00:00