Commit Graph

566 Commits

Author SHA1 Message Date
Tim Wilkinson a7bf530da3
First-use setup script to simplify initial setup of AREDN VMs. (#1257) 2024-08-04 16:36:39 -07:00
Tim Wilkinson 8d4eadee53
Rebuild the NAT version of the firewall (#1243)
* New fireware configuration for NATed LAN.

* Fix ip rule
2024-06-17 15:24:57 -07:00
Tim Wilkinson 2f74728693
Add names to xlink routes and bridges. (#1239)
Fix aredn_message_all file-not-found error.
2024-06-07 18:39:44 -07:00
Steve f2d8adb8d3
widen aam field on status page (#1237) 2024-06-03 13:29:39 -07:00
Tim Wilkinson 299645583c
Fetch routes from kernel rather than OLSR (#1235)
* Fetch routes from kernel rather than OLSR
Fix xlink detection

* Fix commit
2024-06-01 17:32:38 -07:00
Tim Wilkinson 0328f0ec7e
Olsrd crash fixes (#1234)
* Simplify the OLSR watchdog

* Dont pull the routing table into LQM for supernodes.
LQM tracks routes on nodes to help keep leaf nodes connected even
when circumstances would probably prevent this. However on supernodes
the routing table is massive and pulling this into LQM will frequently
crash OLSRD. As we dont need this for supernode just dont do it for them.
2024-05-31 22:44:36 -07:00
Tim Wilkinson d36bb88913
Only monitor active wireguard tunnels (#1232)
* Only monitor wireguard tunnels which are active
2024-05-29 22:49:38 -07:00
Tim Wilkinson da71e6e26b
Ignore badly formatted services (#1228) 2024-05-29 16:44:11 -07:00
Tim Wilkinson c0d38a4e89
Update registered trademarks (#1225) 2024-05-29 00:45:25 -07:00
Tim Wilkinson d6a652df31
Wireless monitoring improvements (#1222)
* Wireless monitor runs an emergeny wifi scan at 3am to recover forgotten nodes.
LQM no longer tries to ping stations which have disconnected.
2024-05-26 23:31:54 -07:00
Tim Wilkinson 2f1684a218
Rework the firewall for tunnels and xlinks to allow port forwarding. (#1220) 2024-05-26 16:41:18 -07:00
Tim Wilkinson 78fb72b917
Use increase in SNR to unblock quality block (#1218) 2024-05-25 16:51:37 -07:00
Tim Wilkinson ed422f3550
Better leaf node detection (#1214)
* Better leaf node detection

* Only count leafs what would be blocked
2024-05-22 19:46:41 -07:00
Tim Wilkinson fbaa54bb23
Avoid cutting off leaf nodes (#1211)
* Avoid cutting off leaf nodes

* Use OLSR broadcast with pending nodes
2024-05-21 21:02:58 -07:00
Tim Wilkinson 5069f0e480
Improve LQM interface detection (#1207) 2024-05-15 18:39:55 -07:00
Tim Wilkinson 250db5605f
Fix busy wait when tick == 0 (#1206) 2024-05-15 18:09:07 -07:00
Tim Wilkinson 146aebd881
Remove nodes if they've had a quality of 0 for an hour. (#1204)
They've probably gone, but the ARP cache tends to keep them around so we
can't rely on that timing them out.
2024-05-14 23:09:06 -07:00
Tim Wilkinson 3d3dbc5040
Use nixio.getnameinfo rather than our own nslookup hack (#1201) 2024-05-14 11:20:08 -07:00
Paul K3PGM 650e26667c
Improvements and fixes for Advanced DHCP Options (#1197)
- The "Always" checkbox now works for options with an explicit tag, and
is disabled for untagged options; the latter cannot be supported because
of a limitation in the OpwnWRT configuration language.
- Tagging by host name has been removed; it didn't work before and isn't
particularly useful in the AREDN context.
- Tagging by Agent Circuit ID, Agent Remote ID, and Subscriber-ID are
now supported so that a DHCP Relay Agent can be used to extend the LAN
across multiple subnets.
- Small improvements were made to error handling and hints.
2024-05-14 09:46:25 -07:00
Tim Wilkinson f79a90e816
Fix tunnel statistics (#1200) 2024-05-14 09:13:26 -07:00
Tim Wilkinson 7c4892d23f
More LQM quality tracking improvements. (#1196) 2024-05-12 22:10:53 -07:00
Tim Wilkinson 2454accbb5
Fix various status information errors (#1195)
* Fix various status information errors

* Fix whitespace
2024-05-12 14:53:37 -07:00
Tim Wilkinson 8bb01e0501
LQM improvements. (#1193)
Matched with changes in aredn_packages
2024-05-11 23:03:29 -07:00
Tim Wilkinson 4b13d5969f
Move manager logs into syslog (#1190) 2024-05-05 23:11:57 -07:00
Steve 76e0333968
fix extra curly brace (#1186) 2024-04-29 18:34:42 -07:00
Tim Wilkinson d4cfe9e9f2
Fix restarting firewall when wan telnet/ssh/web access changes (#1183) 2024-04-28 11:01:47 -07:00
Paul K3PGM 9dafffa152
Show progress bar during reboot/reflash and show estimated time remaining in MM:SS. (#1156)
* Reboot/reflash progress bar, time remaining in MM:SS

When rebooting or reflashing the node, display a progress bar as
well as the estimated time remaining. Also show the time remaining
in MM:SS format.

* Fix indentation error.

* Minor changes to improve browser compatibility.
2024-04-07 16:04:00 -04:00
Tim Wilkinson 0dba2661c3
Improve the reboot/flash timers (#1155)
During the initial setup the IP address of the node can move
around a fair bit. Make sure the reboot timeout code handles this.
2024-04-04 12:10:58 -07:00
Tim Wilkinson d8b85d5b4a
Fix library requires (#1147)
* Another attempt to stop the mesh page from being truncated sometimes

* Fix originator

* Fix the require(...) libraries
2024-04-01 22:15:45 -07:00
Tim Wilkinson 9b89db7a7f
Fix missing hosts on mesh page (#1146)
* Another attempt to stop the mesh page from being truncated sometimes

* Fix originator
2024-04-01 22:14:49 -07:00
Tim Wilkinson c7f79de97a
Add aux antenna support (#1136) 2024-03-29 12:25:04 -07:00
Tim Wilkinson 5c279f16e0
Add a countdown timer for reboots and updates (#1137) 2024-03-29 12:24:55 -07:00
Tim Wilkinson a97c1c277a
Use arpping to monitor poor arp-able links (#1134) 2024-03-28 23:01:48 -07:00
Tim Wilkinson 068e35dfc8
Fix missing cursor (#1132) 2024-03-28 23:01:37 -07:00
Tim Wilkinson f75e4d9675
Increase wifi retries by default. (#1129)
Experimental wifi research reports that increased retries (rather than decreased as I originally
thought) improves tcp throughput on multi-hop wifi networks.
2024-03-27 17:01:14 -07:00
Tim Wilkinson 8e751dcb62
Half the OLSR maintenance traffic (#1130) 2024-03-27 17:01:00 -07:00
Tim Wilkinson 3d1faf8939
Fix DTD and WLAN ips derived from matching MACs. (#1128)
On some devices the hardware MAC for the WLAN and ETH are the
same so the 10.DTD and 10.WLAN addresses are identical. If we
detect this, bump the DTD address.
Commonly seen on TP-Link devices (but there are others)
2024-03-26 22:56:21 -07:00
Tim Wilkinson a14b897e0f
Disable reducing retry counts (#1126) 2024-03-26 16:23:50 -07:00
Tim Wilkinson ff02f129f3
Improve xlink reporting in sysinfo (#1127) 2024-03-26 16:23:32 -07:00
Tim Wilkinson 2fc76191a0
Set pkt retry to 2 (was 1) for hub nodes. (#1125)
Too many retries appears to cause network congestion issues slowing down
links with multiple hops, but reducing this to 1 then caused single links
to have poor performance. Try a rety of 2 as a better compromise.
2024-03-25 21:08:30 -07:00
Tim Wilkinson 8b6339a099
Use adaptive reload mechanism when node upgrades or reboots (#1121) 2024-03-25 19:52:27 -07:00
Tim Wilkinson 6be1091ffb
Updates to /etc/local/services no longer require reboot (#1119) 2024-03-24 23:10:42 -07:00
Tim Wilkinson 5c633f2b8e
Support CIDR (e.g. /24, /16, etc) on a xlink (#1110)
* Revert hAP AC Lite xlink support

* Support CIDR (e.g. /24, /16, etc) on a xlink
Xlink had originally been envisaged as a point-to-point connection
leaving the "how" of that to other software. However, there's a use case
where the non-AREDN radios in the xlink need to be accessed, and allocating
addresses within the xlink's address range is a good way to do that.
By supporting a a subnet on a xlink we can enable this.
2024-03-04 21:08:27 -08:00
Tim Wilkinson e8abbb5489
Revert hAP AC Lite xlink support (#1106) 2024-03-01 15:23:15 -08:00
Tim Wilkinson 6d81b4c846
Enable xlinks on hap ac lites (#1104) 2024-02-28 23:57:13 -08:00
Tim Wilkinson 4ff44c2b21
Run the wireguard watchdog script every 5 minutes (#1102)
This fixes up wireguard connections to dynamically changing IP addresses
2024-02-23 23:02:45 -08:00
Tim Wilkinson d1777c016d
Correctly escape characters in the mailto: urls (#1099) 2024-02-19 17:33:41 -08:00
Tim Wilkinson 139c5f66e5
Merge the LQM info onto the Mesh page (#1095) 2024-02-09 20:45:52 -08:00
Tim Wilkinson 62a6959378
Collapse QEMU and VMWARE hardware into two basic types (#1091) 2024-02-05 11:51:43 -08:00
Tim Wilkinson f3de5785a0
Validate network override configs (#1085)
* Validate network override configs

* Extra vlans
2024-01-30 13:25:37 -08:00
Tim Wilkinson f3d49eab64
Hide long time idle neighbors (#1082)
* Dont show neighbor we can't resolve or route to

* Hide neighbor which have been non-routable for over an hour
2024-01-23 00:13:01 -08:00
Tim Wilkinson 1c72b145f6
Support for GL.iNet E750 (#1079)
* Support for GL.iNet E750
2024-01-22 20:22:27 -08:00
Tim Wilkinson 29cc59ac9c
Support wireguard linktype (#1077) 2024-01-21 20:20:21 -08:00
Paul K3PGM 4e35b2f0c6
First draft of advanced DHCP option specification on Ports tab. (#1073)
* First draft of advanced DHCP option specification on Ports tab.

Allows the node administrator to specify additional DHCP options that
will be supplied to LAN clients in specific circumstances. This change
adds two tables to the Ports configuration tab.

The "Tags for Advanced DHCP Options" table allows the administrator to
specify DHCP tags that will be assigned to clients that identify
themselves with specific values for properties such as Vendor Class or
MAC address.

The "Advanced DHCP Options" table allows the administrator to specify
arbitrary DHCP options to send to any client, or only to clients with a
specific tag. Option numbers can be entered directly or chosen from a
list of well-known options. Option values are manually entered by the
administrator.

In-browser validation is implemented for all input fields with easily
recognizable content such as host names, MAC addresses, and port and
option numbers. Placeholders are also supplied for input fields, such as
MAC addresses with wildcard matching, that might otherwise be difficult
to describe.

Issues with the current version:
- Sending DHCP options not requested by the client is implemented using
the dhcp_option_force UCI configuration option, but does not currently
work.
- Tagging by client host name is supported by dnsmasq, but not yet by
UCI.
- DHCP option values must be entered manually by the administrator, but
are not currently validated.

* Better validation, placeholders, and hints for existing input fields.

* Remove junk accidentally inserted in comment.

* Preserve Advanced DHCP options across updates.
2024-01-21 17:25:16 -08:00
Tim Wilkinson e83af37894
Label wireguard tunnels in LQM (#1068) 2024-01-17 14:02:20 -08:00
Tim Wilkinson fb0f9a4b56
Update cursors on each lqm iteration. (#1067)
If we dont, and other apps change values in the config files, old
cursors dont see the new values.
2024-01-17 11:43:52 -08:00
Tim Wilkinson ce5521f373
Fixes for remote logging (#1060) 2024-01-11 20:51:25 -08:00
Tim Wilkinson bb83a8d1c9
More wireguard fixes (#1059)
* More wireguard fixes

* Fix monitoring bug when finding tunnel address
2024-01-10 00:02:54 -08:00
Tim Wilkinson f1567d662f
Wireguard2 - bug fixes (#1057)
* Fix _add for wireguard

* Fix LQM for wireguard
2024-01-07 21:44:21 -08:00
Tim Wilkinson e486a61cc8
Wireguard support - take 2. (#1056) 2024-01-07 16:17:52 -08:00
Tim Wilkinson 185d6e0abf
Fix host checking (#1052)
* Fix host checking

* nameserver -> nameservice
2024-01-03 00:45:49 -08:00
Tim Wilkinson 6d8528fa56
Make sure the node nodes we use for tunnels are always uppercase (#1049) 2024-01-01 17:36:18 -08:00
Tim Wilkinson b6dfba160e
Remove need for /etc/config/services file (#1045) 2023-12-27 14:39:17 -08:00
Tim Wilkinson 509d475133
Fix firewall rules. (#1041)
1. Allow wireguard tunnels in iface mesh setup (treat like vtuns)
2. Fix incorrectly setting up dtd/wifi to wan rules
2023-12-21 11:06:15 -08:00
Tim Wilkinson e5bd9bc066
Simply the watchdog by fixing various timeouts. (#1038)
Unfortunately there doesnt appear to be much flexibility in the various
hardware watchdogs on radios, so setting the watchdog > 60 seconds mostly
doesnt work. So rework the settings to allow for this and that our watchdog
tests must be frequent and quick.
2023-12-20 00:25:12 -08:00
Tim Wilkinson 2fe3904f0a
Accidenally created the wireguard devices twice (#1036) 2023-12-19 16:13:26 -08:00
Tim Wilkinson 0899ae7d02
Make watchdog easier to configure and less aggressive (#1034) 2023-12-19 12:07:47 -08:00
Tim Wilkinson bd26116e45
Improve 'wait_for_ticks' handling of system clock changes (#1035) 2023-12-19 12:07:11 -08:00
Tim Wilkinson cd4b99197a
Watchdog support, initial version. (#1030)
* Watchdog support, initial version.
The watchdog monitors three things:
1. A set of important system daemons.
2. A set of pingable ip addresses.
3. A time the node should reboot everyday.
2023-12-18 23:07:52 -08:00
Tim Wilkinson cc5c7cafd0
Make sure switching wifi modes forces a reboot. (#1027)
Because some hardware doesnt handle this well.
2023-12-17 21:14:38 -08:00
Tim Wilkinson 14494a477f
Add missing Request class to luci.http (#1026)
This was removed in the latest OpenWRT but we still use it.
Original plan was to just provide the old http (as ohttp) along
side but too many third-party apps also need this.
2023-12-17 16:20:41 -08:00
Tim Wilkinson abd0f8075a
VMWare support (#1024) 2023-12-16 21:32:25 -08:00
Tim Wilkinson 9046357955
Fix wan client no encryption mode (#1023) 2023-12-16 21:26:33 -08:00
Tim Wilkinson 2ba923eaa9
Fix tunnel counts (missing commit) (#1022) 2023-12-16 17:55:18 -08:00
Tim Wilkinson b2fb79d6de
Typo (#1019) 2023-12-13 23:56:38 -08:00
Tim Wilkinson ceb7e973bf
Fix xlink monitoring by lqm (#1018) 2023-12-13 23:34:08 -08:00
Tim Wilkinson 18e17abf97
Fix services and xlinks (#1017) 2023-12-13 22:49:28 -08:00
Tim Wilkinson b702c1cfe7
Reduce packet retries on congested nodes (#1015)
* Experimental retry management

* Limit retries
2023-12-13 15:52:44 -08:00
Tim Wilkinson 4b29cd252d
Remove fixed tunnel limits (#1014)
* Remove need to predefine max number of tunnels

* Improve wireguard device creation
2023-12-13 13:59:54 -08:00
Tim Wilkinson 99a12238c1
Fix server vtun numbering (#1013) 2023-12-12 23:57:36 -08:00
Tim Wilkinson 188719c321
Reduce tunnels in olsrd to minimum (#1012)
Had attempt to optimize restarting olsrd by putting more tunnel devices
in the config file by default. Unfortunately, olsrd can't cope with too
many and performs poorly.
2023-12-12 23:26:27 -08:00
Tim Wilkinson 4120914a60
Improve node setup (#996)
* Reworking the node-setup system - less reboots when changing configuration

* Add restart-services to advnet
2023-12-12 20:01:23 -08:00
Tim Wilkinson d697fc0bec
Inprove vlan selection in advanced networking (#1002)
Add the GLiNet B1300
2023-12-10 14:33:49 -08:00
Tim Wilkinson aae5e14655
Add azimuth, elevation and antenna information (#979)
* Support antenna selection and allow heading to be specified

* More antennas

* Heading -> Azimuth

* Ubiquiti's catalog

* Add Mikrotik builtin antennas

* Some Ubiquiti builtins

* JP Performance Antennas

* Added Altelix

* More Altelix

* More radios

* Add elevation

* Add generic omnis, sectors and dishes

* Improve selection

* Improve display for non-wireless devices

* Improve omni and builtin setup

* mode -> model typo in antennas.json

* Typos

* Fix bad gateway when saving

* Add antenna height above ground level.
Fix more bad gateways

* Update antennas.json

* More radio antennas

* More antennas
2023-12-06 12:30:23 -08:00
Tim Wilkinson 6d15dfb869
Extra bad olsr protection (#992)
* Better protection for missing olsrd files
2023-12-06 12:24:43 -08:00
Tim Wilkinson 09ed681311
Support remote syslogging (#971) 2023-12-06 12:19:18 -08:00
Tim Wilkinson 205f6e4ad8
Increase Supernode pollrate (#984)
* Bump the OLSR poll rate on supernodes
2023-12-06 12:14:17 -08:00
Tim Wilkinson 1694e3a6c7
Simplify how we measure link performance (#975)
* Simplify the way we measure link ping times

* Dont ping non-routables
2023-12-06 12:11:11 -08:00
Tim Wilkinson 927bdd1c8f
dd-wrt ubiquiti firmware (#973)
* Enable dd-wrt firmware for Ubiquiti devices

* Dont include the wifi monitoring interface by default
We dont use it for anything

* Remove package which clashes with new firmware

* Disable chatty warning message

* Missed patch
2023-12-06 11:59:47 -08:00
Tim Wilkinson bf3aa67f78
Wireguard tunnel support (#968)
* Wireguard tunnel support

* Fix wireguard firewall rules

* Add Wireguard tunnels to LQM

* Filter vlans on main bridge

* If you paste a tunnel config into any field, it will auto-populate all fields correctly

* Fix bad password keyword

* Fix bad feeds change

* Fix bad merge
2023-12-06 11:39:23 -08:00
Tim Wilkinson 475f371bb8
Initial OpenWRT 23.05.0 merge (#963)
* Initial OpenWRT 23.05.0 merge

* Fix get_rfchannels for new iwinfo format

* Fix initial wlan name

* Move patches to 5.15 from 5.10

* Fix flash write problem on Ubiquiti devices

* Use new ssl patch

* Reduce binary sizes

* Have to have hostapd installed now, even on tiny builds

* Simplify device support

* Revert Mikrotik NAND sysupgrade system.
OpenWRT doesnt really support Mikrotik NAND devices after 2019 and the
new support appeared broken. So reverted to the 2022 mechanism which does
work and avoid upgrade problems.

* Fixes for tiny builds

* More tiny shrinking

* Fix newly added firewall rules

* Update permanent packages

* Update permanent packages

* Support for Nanobeam 2AC (2.4GHz) device. 20MHz channels only.

* Update support

* Add GL.iNet B1300

* Add to radios.json

* Update supported devices

* Dont force the LAN DHCP to run

* Revert CURL SSL test

* Fix radio count when there are no radios

* Switch the lan ports on the gl-b1300

* Add support for GL.iNET Beryl MT1300

* Fix visual lat/lon setting bug

* Make the setup "Save Changes" button also save the location data

* Fix location/map system with geo location fallback

* Recolor

* Fix default bandwidth selection

* Support multi-band radios

* Generic mechanism to set compat version to 1.1

* Switch ethernet ports

* 20 MHz channels only

* Update docs

* Add ham channels to Mediatek chips (20MHz only)

* Automatically update the permpkg list when we upgrade

* Fix 10MHz mode for Ubiquiti AC devices

* Fix tiny builds

* Bump the watch timeout for restarting olsrd
olsrd is reliable these days, and very occasionally this
was restarting it unnecessarily
2023-12-06 10:12:11 -08:00
Tim Wilkinson cdeb1b1d44
Improve dual radio customization support (#961) 2023-10-13 22:38:05 -07:00
Tim Wilkinson 63788ec9b1
Move cron.boot earlier (#955) 2023-10-07 10:52:54 -07:00
Steve 2d9914cb35
change pollrate default to one hour (#954) 2023-10-05 13:38:05 -07:00
Tim Wilkinson 880a4f195a
Improve the way we HUP dnsmasq (#953) 2023-09-29 20:09:53 -07:00
Brett T. Warden a2e9e3054c
Remove vestigial getServicesBy* methods (#952)
* Remove vestigial getServicesBy* methods

getServicesByNode is only a dummy method.
getServicesByService doesn't even exist.

Remove the last remaining references to them from cgi-bin/api, and remove the last traces of getServicesByNode from aredn/olsr.lua

Fixes #948
Fixes #949

* Bump API version

Breaking change, removing parameters services=bynode,byservice
2023-09-29 20:09:16 -07:00
Tim Wilkinson 48ee7595ce
Read supernode status from /etc/config.mesh (#946)
Avoids running this twice after initial supernode change
2023-09-26 20:11:48 -07:00
Tim Wilkinson da8520e202
Supernode improvements (#945)
* Supernode tunnels are always "perfect"

* Move Super Mesh button onto mesh page
2023-09-24 20:40:28 -07:00
Tim Wilkinson 57e0d045e9
Supernode fixes (#944)
* Subdomain check too slow for realtime
 so now do it in the namecheck service instead.
* Dont commit to VPN address until we set the DNS name
 helps supernode setup
2023-09-21 20:13:38 -07:00
Tim Wilkinson a494a8c374
Supernode support (#938)
* Supernode option

* Change supernode 10/8 route injection.
Identify supernode in sysinfo.json

* Supernode tunnels use port 5526

* Advertise supernode-ness

* Update DNS if supernodes are available

* Open up supernodes DNS service to incoming mesh requests

* Simply nameserver update

* Support supernodes on hap ac2

* Improve supernode nameserver update reliability

* Rework how supernode nameservers are managed

* Improve supernode dns advertising

* Add super mesh button

* User supernode name not ip in advert

* Less intustive way to identify supernode dns

* Add supernode ignore options
Change supernode enabled -> enable

* Improve DNS updates

* Remove tunnels when switching to/from supernode mode

* Blackhole any unknown routes on the supernode to avoid recursing packets

* Add explicit reverse lookup rule for supernode when available

* Just use dnsmasq changes for both forward and reverse names

* Improve supernode detection
So it doesnt keep writing to flash

* Add reverse tunnel ip lookup to supernode

* enabled => enable

* Supernode tunnels start 172.30

* Remove supernode switch

* Simplify supernode check

* Fix nav test
2023-09-19 20:06:09 -07:00