Commit Graph

341 Commits

Author SHA1 Message Date
Conrad Lara - KG6JEI 8f91ad1e0e security feature: Enhance HTTPD password security
Move httpd.conf to not store password and instead depend on the shadow password file.

Also tag the 40_aredn_migrate-httpdconf script to be +x. Not strictly necessary but wish to have this standard

Change-Id: I018d9a3294e45af2316b3c3947ef2a7d8081268b
2016-06-10 19:37:57 -07:00
Conrad Lara - KG6JEI 1271db794a Merge 3.16.1.0 as released into develop
Merge branch 'release-3.16.1.0' into develop
2016-05-17 09:50:40 -07:00
Darryl Quinn 6912f69dc8 fixes AREDN->ticket:165 2016-05-15 17:35:43 -05:00
Conrad Lara - KG6JEI 86d17e0998 bugfix: RFC Compliance for DHCP and Classless static routes
RFC requires that the DHCP server include the default gateway (0.0.0.0/0) route as part the Classless network list.

Moved to node-setup so it can be set dynamically at setup run time.

fixes AREDN->ticket:155
2016-03-31 22:54:29 -07:00
Darryl Quinn 35b8278b34 bugfix: traffic generated from the tun client would not forward thru the server 2016-02-23 13:20:19 -06:00
Conrad Lara - KG6JEI 7df4747aff bugfix: Traffic from Lan to DTDLINK not masqueraded when in NAT mode.
Due to a firewall chain name changes in BB when a node was in NAT mode (instead of recommended direct mode) connections that went out over DTDLink as the first hop would not be masqed and as such would not work.
2016-01-23 20:40:01 -08:00
Conrad Lara - KG6JEI b38309bab5 Merge branch 'FixupTunnelFirewall' into release-3.16.1.0
Various fixes around tunnel firewall rules
2016-01-21 20:40:43 -08:00
Conrad Lara - KG6JEI 29ba1c0419 bugfix: Tunnel Firewall: Accept SNMP and default to block on input chain instead of accept 2016-01-21 20:39:59 -08:00
Trevor Paskett - K7FPV 923039fcc0 Merge branch 'release-3.16.1.0' of ssh://git.aredn.org/aredn_ar71xx into release-3.16.1.0 2016-01-20 10:10:34 -07:00
Trevor Paskett - K7FPV 35e05b7dac change uhttpd script_timeout from 60 to 240 to fix uploading firmware on slow links 2016-01-20 10:09:52 -07:00
Conrad Lara - KG6JEI 0f837d601a bugfix: Tunnel firewall rules throw a chain does not exist on firewall restart.
This chain may not exist by design of the check.

Redirect the iptables error to /dev/null so it doesn't clog logs
2016-01-16 21:20:22 -08:00
Conrad Lara - KG6JEI 5663741cb1 bugfix: On firewall reload some tunnel rules were not being inserted into the default chains which are flushed on both reload and restart of firewall by OpenWRT fw scripts. 2016-01-16 21:20:22 -08:00
AE6XE 2be20cbde2 bugfix: Tunnel firewall rule chain names are incorrect.
Based on previously reverted commit 646702aab9
2016-01-16 21:20:16 -08:00
AE6XE 06eb7fa688 bugfix: Remove erroneous reference in license header of 01-tunnels script.
Script is a new file created after the split from BBHN and did not use code from a file BBHN worked on.
2016-01-16 19:58:38 -08:00
Conrad Lara - KG6JEI 921967d5f9 Revert "bugfix: resolve bad chain ref and port from hotplug to a firewall include"
This reverts commit 646702aab9.

Needs to be broken up into separate commits and doesn't cleanly fix issue with tunnel firewall
2016-01-16 19:55:20 -08:00
AE6XE 646702aab9 bugfix: resolve bad chain ref and port from hotplug to a firewall include 2016-01-16 13:26:14 -08:00
Conrad Lara - KG6JEI 243ded9f23 Bump banner to 3.16.1.0 in prep for release 2016-01-13 09:45:36 -08:00
Trevor Paskett - K7FPV 0aca4ce5c7 fix bug with spaces in time zone names 2016-01-12 10:58:06 -07:00
Conrad Lara - KG6JEI bb10ca7faf Merge branch 'FirewallIncludes' into develop 2016-01-09 19:48:18 -08:00
Conrad Lara - KG6JEI 813c4cefcf feature: Decrease WIFI Beacon rate in Mesh mode to around 2 times a second.
This changes the beacon rate from once every 100tu's to once every 500tu's

1tu=1024 microseconds

This will decrease the amount of RF time being used by beacon packets.

This is especially important on 900MHz and 2.4GHz using 5MHz wide channels where 10 nodes beaconing 10x a second at ~256kbit/s can use up around 45% of the RF channel in beacons alone.
Other bands and channels and widths are not expected to see as significant an advantage due to the faster data rates.
2016-01-09 17:39:44 -08:00
Conrad Lara - KG6JEI e8b2ffd7ea feature: FirewallIncludes: Migrate tunnel firewal rules to new include format.
These rules setup chains that may be needed by other firewall rules as such we need to set them up early to be sure includes work.
2016-01-09 16:24:54 -08:00
Conrad Lara - KG6JEI 477a20d55a feature: FirewallIncludes: Add program that will auto include firewall rules that are in a set directory.
This is the basis for allowing packages to contain firewall rules that can be just dropped in a folder at install time.
2016-01-09 16:24:45 -08:00
Trevor Paskett - K7FPV 6f3cb97ea2 fix new lines 2016-01-08 21:09:38 -07:00
Trevor Paskett - K7FPV 44ab46bc87 move new settings to optional area under table, disable ntp server, ntp server fqdn validation 2016-01-08 18:04:25 -07:00
Trevor Paskett - K7FPV c6d02d964a change timezone to time_zone 2016-01-08 11:50:45 -07:00
Trevor Paskett - K7FPV 6f97c52565 add time zone and ntp server to setup page 2016-01-08 10:58:22 -07:00
Darryl Quinn 07f447313f default wifi distance to 0, disallow saving with 0 value, change alert to show on 0 2016-01-05 23:09:34 -06:00
Trevor Paskett - K7FPV 3359c44ca7 feature: add jsoninfo to olsr and open firewall ports 9090 2016-01-05 11:00:22 -07:00
AE6XE 38209b0af2 bugfix: snrlog better handle neighbor references from mac to ip to hostname 2015-12-30 17:57:49 -08:00
Conrad Lara - KG6JEI 2dfc911df7 Merge branch 'release-3.15.1.0' into develop
Conflicts:
	files/www/cgi-bin/mesh
2015-12-22 08:45:09 -08:00
AE6XE f6c134fe7c feature: AREDN banner 2015-12-11 15:38:45 -08:00
Darryl Quinn 24ccfb30bc feature: save location data from admin page 2015-12-07 15:24:39 -06:00
Conrad Lara - KG6JEI 46b49369d4 bugfix: firstboot now requires user interaction or -y flag to approve an overwrite. 2015-11-23 20:08:07 -08:00
Darryl Quinn 51f4bcc550 bugfix: ssh keys not saving across sysupgrade 2015-11-16 14:44:52 -06:00
Conrad Lara - KG6JEI dabd9a4fbc bugfix: 802.11n devices did not use 802.11n datarates
This adds support for 802.11n data rates on the mesh.

This should improve dataspeeds across the board

MIMO devices like Rocket and NanoStation should be able to use dual chains which allows diverse data transmission on each chain increasing throughput

MCS data rates in theory should cut through noise better than legacy modulation and have higher speeds on each step which should allow overall higher datarate between nodes.
2015-11-15 19:50:54 -08:00
Conrad Lara - KG6JEI 48cb37bd05 Merge branch 'release-3.15.1.0' into develop
Merging in latest release-3.15.1.0 changes into develop to provide a foundation with recent release fixes for the develop branch.

This should be 3.15.1.0b03 code.

Conflicts:
	files/etc/crontabs/root
	files/usr/local/bin/wscan
	files/www/cgi-bin/sysinfo.json
2015-11-15 19:28:56 -08:00
AE6XE 8cd8e07885 bugfix: deaf chain workaround 2015-11-01 18:33:05 -08:00
Conrad Lara - KG6JEI af97ce3f49 bugfix: "Disable default route" not kept during OTA upgrade. 2015-07-28 08:49:48 -07:00
Darryl Quinn 3ae86c67ec feature: signal charts 2015-07-26 23:09:34 -05:00
Conrad Lara - KG6JEI 2511f585f0 bugfix: Should not keep /etc/config/* on sysupgrade
We don't really need any files in there,  and keeping the folder can interfere with the programs that populate /etc/aredn_include on firstboot from uci-default.

This will cause the node to boot up in default mode (with an AP on its interface on the default channels) during its first boot, and than very quickly reboot and come up under the mesh.
2015-07-23 11:35:54 -07:00
Conrad Lara - KG6JEI cc74123ad3 bugfix: vtund was missing from arednsysupgrad.conf 2015-07-10 18:56:30 -07:00
Conrad Lara - KG6JEI 442b7e9822 bugfix:
Make sure httpd.conf is up to date on first boot.
2015-07-09 16:10:50 -07:00
Conrad Lara - KG6JEI d7be9104d9 bugfix: We need to only pull a small selection of files over through sysupgrade instead of all config files.
opkg config can cause issues on OS upgrade among others.

ref AREDN->ticket:131
2015-07-09 09:25:00 -07:00
Conrad Lara - KG6JEI 8975c46c67 bugfix: TPLink and similar, fix port_map led mapping 2015-07-02 20:30:27 -07:00
Conrad Lara - KG6JEI 6b404c27ff bugfix: move set eth mac fixup to /etc/init.d/local
Not getting much debug information at moment, would like to put this in uci-defaults but with issues that I can't seem to log at moment (and not having serial cable for this device) I'm going with lets put it in /etc/init.d/local before nvram and similar gets set.

ref AREDN->ticket:115
2015-07-02 19:03:47 -07:00
Conrad Lara - KG6JEI 2482af260c bugfix: re-work the mac change code.
Old code would set mac on the sub-vlan not the master interface which could cause issues.

Rework to be more functional in the future and to work correctly on vlan interfaces.

ref AREDN->ticket:115
2015-07-01 23:03:01 -07:00
Conrad Lara - KG6JEI 794c00c7c6 bugfix: "wifi" network isn't yet defined during firstboot so hard code interface names to eth0 and wlan0
ref AREDN->ticket:115
2015-06-30 22:17:45 -07:00
Conrad Lara - KG6JEI 7985ff6ba3 bugfix: deal with duplicate MAC on LAN and WIFI
ref AREDN->ticket:115
2015-06-29 22:58:08 -07:00
Darryl Quinn 8da9756817 bugfix: removed debugging statements 2015-06-17 22:43:20 -05:00
Darryl Quinn 3d7893fd46 Revert "Revert "fixes AREDN->125""
This reverts commit d917b5b2ec.
2015-06-17 00:40:34 -05:00
Darryl Quinn d917b5b2ec Revert "fixes AREDN->125"
This reverts commit 7a05f76c93.
2015-06-17 00:39:07 -05:00
Darryl Quinn 7a05f76c93 fixes AREDN->125 2015-06-17 00:38:13 -05:00
Darryl Quinn 807f381a04 bugfix: network and firewall tunnel rules reworked 2015-06-14 23:30:06 -05:00
Darryl Quinn 5dc1d0fa02 Revert "bugfix: missing include in firewall config"
This reverts commit 05839715f6.
2015-06-14 22:28:47 -05:00
Darryl Quinn 05839715f6 bugfix: missing include in firewall config 2015-06-11 01:21:30 -05:00
Darryl Quinn 91762973a5 bugfix: tunnel firewall changes 2015-06-11 01:02:55 -05:00
Darryl Quinn 81ac8b7fbe bugfix: losing network interfaces after node-setup 2015-06-11 00:40:14 -05:00
Conrad Lara - KG6JEI 1f2737f0f3 bugfix: tunnels: Unable to route to connections across tunnel
Firewall rules don't get called because vtund is at /usr/sbin/vtund not /usr/bin/vtund

Also make the check if line posix compatible while we are chaning the path to be sure it works in the future too.
2015-05-25 23:04:34 -07:00
Conrad Lara - KG6JEI 3850cbac53 tunnels: Tunnels should only start when in mesh mode
Tunnels are not supported in other modes as such we should only let them start in mesh mode.
2015-05-24 12:59:11 -07:00
Conrad Lara - KG6JEI 5cc53dec88 tunnels: Set tunnel init.d scripts to be executable
Remove the chmod step inside of setup.

Came across one time where this didn't trigger.

In addition this saves us from using additional storage space on the node as a +x creates a duplicate file.
2015-05-24 12:30:23 -07:00
Conrad Lara - KG6JEI 06a46e4d2a bugfix: Radio0Path is unknonw WIFI doesn't start.
wifi detect  is called in /etc/init.d/boot before uci_apply_defaults is called.

Because of this if we don't have the data about the radio0path we need to remove the wifi config file first before calling wifi detect.
2015-05-16 11:32:29 -07:00
Conrad Lara - KG6JEI e69f1e98ba bugfix: Move aredn_include setup to uci-defaults and fix radio0path upgrade flaw
Needs to be in uci-defaults to be sure these data sets execute BEFORE the OS boots

We also need to get radio0 path because its mandatory for wifi to work.

Needed for sysupgrade from 3.0.2 to latest version.
2015-05-15 22:54:16 -07:00
Conrad Lara - KG6JEI dff687eed7 Merge branch 'DefaultChannel' into develop
Allows nodes to default to a common channel that is in the most common bandplan space for Part 97 usage.

Local cordination is still needed by users to make sure the channel matches the local deployment.

Defaults are as follows:

Band   : Channel Freq : Bandwidth
900    : 912MHz       : 5MHz
2400   : 1 2412MHz    : 20MHz
3400   : 3420MHz      : 5MHz
5800   : 149 5745MHz  : 5MHz

2.4GHz keeps channel 1 at 20MHz because it is the standard deployment.
All other bands are still 'new' and no standard exist so we are creating one.

5MHz chosen because it better fits the emcomm goal. Smaller width should be stronger allowing for better networks.

Local networks can change as they see fit.
2015-05-13 22:02:08 -07:00
Conrad Lara - KG6JEI 8761ffc3b8 feature: default rf channel : Remove setting RF channel on first boot.
Remove setting RF channel on first boot in uci-defaults.

This should allow the node to use standard wifi channels when it boots allowing mesh setup to be run from a laptop or mobile device.

We will later move them to a real mesh channel during the mesh setup page.

Should also resolv issue where nodes were booting up on channel -2 and similar and wifi would refuse to start due to regdomain.
2015-05-13 21:50:32 -07:00
Darryl Quinn 1ffa2b69a4 bugfix: tunnel: hot plug monitoring wrong interface name to trigger fw scripts 2015-05-12 19:24:06 -05:00
Conrad Lara - KG6JEI dcb4994cda bugfix: tunnels: Tunnels fail to start after saving.
etc/init.d/vtund needs to be +x
2015-05-10 14:39:03 -07:00
Conrad Lara - KG6JEI 27bf54f2dc Merge branch 'SupportTool' into develop
Add new feature for support information to admin interface

Conflicts:
	files/etc/httpd.conf
2015-05-08 20:03:22 -07:00
Conrad Lara - KG6JEI 8299862b57 feature: support tool: Restrict Access
Restrict access to support tool to logged in admin user
2015-05-08 19:55:09 -07:00
Darryl Quinn 5afde21c9f bugfix: secured vpn and vpnc pages 2015-05-07 22:41:06 -05:00
Darryl Quinn defd944fc1 changed graphics: https://www.iconfinder.com/icons/183208/bin_can_garbage_trash_icon#size=20 (Free for commercial use) 2015-04-28 22:37:33 -07:00
Darryl Quinn 5d6ba0c244 fix client options and disconnect graphic 2015-04-26 23:21:42 -05:00
Darryl Quinn a43ef2827b feature: improved stop methods for client and server. added IPs to uci config 2015-04-20 23:53:57 -05:00
Darryl Quinn dec3eeeb47 Merge commit '88037845309b311901a590ca2a2b91adbd79bfc0' into tunnel_mainline 2015-04-15 21:09:32 -05:00
Darryl Quinn 7371373235 feature: client and server fixes. calculate IP's for dest/gateway 2015-04-15 17:39:45 -05:00
Conrad Lara - KG6JEI 94a803d456 feature: Add initial read-only SNMP support in mesh mode.
Config file is present upon initial start and in mesh mode.

Daemon still starts up in other modes but will not function w/o settings.

Firewall:
Permit access for UDP:161 (SNMPD) on  WIFI and DTDLINK
Lan is permitted by default allow rules.
2015-04-14 22:31:21 -07:00
Darryl Quinn cf1ddb900b bugfix: network/start now resets to default, added icons for pages 2015-04-09 10:14:04 -05:00
Darryl Quinn c40a42562f feature: implement vtundsrv startup script. make 13-vtun vtund aware 2015-04-08 00:15:36 -05:00
Darryl Quinn eeebc9ac09 Merge branch 'develop' into tunnel_mainline 2015-04-07 10:59:06 -05:00
Conrad Lara - KG6JEI 908626336f bugfix: Configuration NOT Saved? Can't open '/etc/ared_include/system_netled'
File wasn't created on boot due to a missing space in if statment.

In addition other services would not start.
2015-04-07 08:51:32 -07:00
Darryl Quinn e6d08f5606 merged from develop 2015-04-07 10:36:42 -05:00
Conrad Lara - KG6JEI e7c3cdc909 bugfix: CPE510: Network activity led's broke after config save
Save the port mapping for link_lan led's for use in the system file so that the link led's will work after save and reboot
2015-04-06 21:03:13 -07:00
Conrad Lara - KG6JEI 6e74aaf0f4 bugfix: CPE510: networking does not function after initial config save
After saving the config the lack of the root level switch entry which enables vlans and resets the switch causes the network to shutdown.
2015-04-06 10:44:05 -07:00
Conrad Lara - KG6JEI 3c07872f06 bugfix: Make sure we create the swconfig file even if it will end up empty.
If we don't create the file the system will have nothing to include later on and the script will run on every boot
2015-04-05 23:05:42 -07:00
Conrad Lara - KG6JEI 79902f0876 hardware: CPE510: Retain device path information and import into configs at save time.
Save the intial path at install and include it each time we save the config
2015-04-05 23:04:32 -07:00
Conrad Lara - KG6JEI 8faab9c11c wireless: Let the OS build the default wireless config
The first wireless config will be built by OpenWRT instead of us.
2015-04-05 22:40:02 -07:00
Conrad Lara - KG6JEI 31bd519266 hardware: AR934x: Pull in stored swconfig information when saving configs 2015-04-05 21:06:39 -07:00
Conrad Lara - KG6JEI dccd1ea42c hardware: AR934x: Store swconfig information for future use 2015-04-05 21:03:50 -07:00
Darryl Quinn 32600d5467 initial deploy 2015-04-01 10:42:53 -05:00
Conrad Lara - KG6JEI a73e459263 Merge branch 'DynamicInterfaceNames' into develop 2015-03-27 23:56:14 -07:00
Conrad Lara - KG6JEI 8df5b5ff49 Merge branch 'cleanupoldfiles' into develop 2015-03-27 19:24:27 -07:00
Conrad Lara - KG6JEI 303c9c264f cleanup: opkg.conf is now built by the BuildRoot and is no longer needed. 2015-03-27 19:20:23 -07:00
Conrad Lara - KG6JEI 0dbe83c61e feature: Make nodes advertised targeted network routes to mesh.
Makes the nodes advertise using DHCP Options 121 and 249 routes to the mesh (10.0.0.0/8) and the reserved (172.16.0.0/12) address ranges.

This change allows directing systems to prefer the mesh node for mesh ranges unless another network rule is more specific (such as a directly connected network)
This is mostly useful where a PC may have multiple network connections active as it improves the desire for the packets to travel via the mesh network.

Currently the:

10.0.0.0/8 range is used by mesh nodes and dtdlinking of mesh nodes.
172.27.0.0/16 is used for default LAN network on NAT nodes.
172.33.0.0/16 is for ad-hoc tunnels

All others in the advertised range are reserved for future network use.
2015-03-27 11:30:52 -07:00
Conrad Lara - KG6JEI 93b922596f bugfix: node setup errors out on saving network file
Several _intf entries in the network file were named in reverse causing the node-setup script to be unable to save them
2015-03-26 01:47:06 -07:00
Conrad Lara - KG6JEI 99182e2b52 feature: Convert network settings files to use dynamic interfaces
config.*/network files now use dynamic interface names so that they can be changed on the fly in the future.
2015-03-25 14:02:38 -07:00
Conrad Lara - KG6JEI 097d62ae01 bugfix: OLSRD doesn't start on node reboot
Under Barrier Breaker sometimes OLSRD gets started before any interface is up causing OLSRD to shutdown because no interfaces exist.

Forces OLSRD to stay on and wait for the interfaces to come online.
2015-03-23 22:57:48 -07:00
Conrad Lara - KG6JEI 50c4e0ed11 bugfix: nodes sometimes show up as mid1
Nodes sometimes show up as a mid1 entry when dtdlink and RF connected.

Sometimes the nodes will get the eth0 ip because wlan0 is not up yet.

Under Barrier Breaker the MainIP option is now supported as part of the uci system which allows us to restore using this setting.

We can now force the IP address that is claimed (wlan0) for the primary IP of the node.
2015-03-23 22:55:09 -07:00
Conrad Lara - KG6JEI 5db6e2a747 Merge branch 'hotfix-3.0.2' into develop
Conflicts:
	files/www/cgi-bin/admin
2015-03-13 20:56:46 -07:00
Conrad Lara - KG6JEI e146193b65 Rerand from BBHN to AREDN(TM)
Since a large number of the  BBHNDev team has decided to create firmware fully independent of the BBHN Project the decision has been made to rebrand the firmware to differentiate from the origional BBHN work.

We would like to thank all those whom have worked on the BBHN firmware over the years and all those who continue to work on the firmware under AREDN(TM).
2015-03-09 16:39:04 -07:00
Conrad Lara - KG6JEI 633c83f7f7 Merge branch 'hotfix-3.0.1' into develop 2015-02-04 08:16:30 -08:00
Conrad Lara - KG6JEI b5dba400cc bugfix: Update URL for opkg database.
Previous URL may not have latest packages.
2014-12-13 23:30:54 -08:00
Conrad Lara - KG6JEI 44bf0bd4f0 bugfix: non mesh-gw nodes may use a less than optimum route to internet.
When a non mesh-gw node has a route via the WAN interface and through a mesh-gw it will choose the mesh-gw instead of the local WAN connection.and

We change the routing list to prefer the WAN link.

When the WAN is static configured the user will need to disable the WAN interface for the mesh internet to be chosen.

When the WAN is configured to dynamic the loss of a DHCP lease will allow the node to chose the remote mesh internet.

The simple solution would be to change the WAN to disabled and reboot to ensure a remote node is used instead if the local internet fails.

Thanks to Joe AE6XE and Clint AE5CA for pointing out this scenario.
2014-12-11 23:42:27 -08:00
Conrad Lara - KG6JEI c1de09455e Merge branch 'release-3.0.0' into develop 2014-11-25 10:25:47 -08:00
Conrad Lara - KG6JEI 4daf0e4f7e Merge branch 'sysupgradekeepsettings' into develop 2014-11-12 21:29:05 -08:00
Conrad Lara - KG6JEI cccf5a2ad7 feature: Add the ability to upgrade in place and keep settings.
By checking the "Keep Settings" box the node will run sysupgrade instead of mtd. Core settings are stored between installs and the _setup files are updated by pulling in missing items from the _setup.default files.
2014-11-12 21:25:41 -08:00
Conrad Lara - KG6JEI 742f8ec4ac bugfix: Differenece between short hold and long hold on the reset button is too small.
Time is now around 5 seconds for a passwd+dhcp reset (3-7 seconds window) and around 15 seconds for a full reset (12-20 seconds window)
2014-09-17 10:53:19 -07:00
Conrad Lara - KG6JEI a9ed10de33 feature: Use reset button to make field recovery easier.
Cleaner version with the config files included in the commit.
2014-09-12 12:03:16 -07:00
Conrad Lara - KG6JEI 2e0b2cbd90 feature: Use reset button to make field recovery easier.
Using a press of around 5 seconds (3-7) the node will reset the passord to BBHN default and enable dhcp on the lan interface.

A press of around 10 seconds (8-12) will cause the node to reset the node to 'just flashed' status and cause the node to reboot.
2014-09-12 12:00:14 -07:00
Conrad Lara - KG6JEI ed4b583277 Due to the following commits we need to increase the protocol version to V3
changeset:0e845a1743d3693fd5e1257f38b704c864f52220/bbhn_ar71xx
changeset:8417274fc4233bf0002c721d836e4fa5953f3db1/bbhn_ar71xx
2014-09-11 23:16:27 -07:00
Conrad Lara - KG6JEI 0e845a1743 Merge branch 'newssidformat' into develop 2014-09-11 23:07:10 -07:00
Conrad Lara - KG6JEI 9ae98554cf bugfix: Disable OLSRD Secure untill we can work on it more.
Due to multiple issues that olsrd secure seems to make occur more often (but is not soley caused by OLSR Secure) causing olsr to crash olsr secure is being pulled while we work on the module.

This partialy reverts commit 553c126490.

tag: RequiresProtocolIncrement
2014-09-11 23:02:47 -07:00
Conrad Lara - KG6JEI 6da1ad8b4e feature: Change SSID format to include rf channel bandwidth and protocol version
From now on all node SSID's will be NAME-<rf bandwidth>-v<protocol version>

tag: RequiresProtocolIncrement
2014-09-11 21:29:54 -07:00
Conrad Lara - KG6JEI 6036dc3ff6 bugfix: Enable watchdog in olsrd
Watchdog never got enabled in the olsrd config files.

fixes BBHN->ticket:60
2014-08-07 23:13:54 -07:00
Conrad Lara - KG6JEI 711dbc17f2 Add a channel bandwidth selector to the setup screen.
Required for 900mhz devices to be supported due to band size.

This can also be useful for allowing more devices to fit into the same amount of RF space as nodes may often not need full 20mhz wide channels.

2.4ghz while using standard BBHN SSID is restricted to 20mhz for compatibility.

ref BBHN->ticket:50
2014-07-14 20:40:49 -07:00
Conrad Lara - KG6JEI 70cce8c75e Resolve issue with NAT mode not working in 1.1.1 2014-07-10 20:04:06 -07:00
Conrad Lara - KG6JEI ae113ac7b0 Revert "As part of dtdlink node identification is being changed."
This reverts commit e36a2ffbf9.
2014-06-24 20:47:12 -07:00
Conrad Lara - KG6JEI b72ffed3cc bugfix: Correct check for dmz-mode. 2014-05-08 23:16:24 -07:00
Conrad Lara - KG6JEI 064fc82078 permpackage and repo address setup. 2014-05-06 14:58:42 -07:00
Conrad Lara - KG6JEI 9263b26e8e Increase default SSID to V2
SSID Version increment for
changeset:a4dd9a9bdd798b05d76d71d135d860f57cb83d8d/bbhn_ar71xx and changeset:553c126490790a3d9873741551813a635a439c0b/bbhn_ar71xx

ref BBHN->ticket:28 and BBHN->ticket:37
2014-04-19 19:54:49 -07:00
Conrad Lara - KG6JEI 553c126490 Re-enable olsrd_secure module -- provides a message handshake on OLSRD packets
fixes BBHN->ticket:37
2014-04-18 13:45:19 -07:00
Conrad Lara - KG6JEI c61d58e172 Add initial support for a monitor interface to be used for SSID based identification.
ref BBHN->ticket:28
2014-04-18 08:53:54 -07:00
Conrad Lara - KG6JEI e36a2ffbf9 As part of dtdlink node identification is being changed.
Due to the 10.x network no longer going out via wifi we now have a dedicated daemon for performing node identification out the wifi interface.  The old fccid scripts are no longer used.

ref BBHN->ticket:28
2014-04-17 21:51:41 -07:00
Conrad Lara - KG6JEI 2afedf6f65 Add support for selecting RF country in the user interface.
NOTE: This patch requires a kernel upgrade to fully work.

Adds new value wifi_country.

Country HX is being chosen for HAM band use.

Country selection is needed to help the device stay withing regulatory domain for worldwide use.

ref BBHN->ticket:29
2014-04-17 21:47:04 -07:00
Conrad Lara - KG6JEI a4dd9a9bdd Add new feature device-to-device linking (dtdlink)
The dtdlink interface is vlan 2 on eth0 and is used for linking two or more devices together.

This will allow for band-to-band repeaters, sector antenna setups, etc.

see BBHN->ticket:28
2014-04-08 23:19:45 -07:00
Conrad Lara - KG6JEI f5f4da5350 Fix issue where connections could not be made to dmz mode hosts.
Also re-number rules at same time to allow more flexability long term
2014-04-07 20:27:50 -07:00
Conrad Lara - KG6JEI c7b25f9d72 Fixes issue where packets route to wrong interface on mesh nodes.
see BBHN->ticket:35
2014-04-04 19:34:15 -07:00
Conrad Lara - KG6JEI 3b215c40c0 Initial code for 5GHZ (and other band) devices.
Includes band/channel mapping
Code to set default RF channel on first boot

Add many 5ghz Ubiquiti devices in a testing phase including:
NanoBeam M5 (Intl), NanoBridge M5, AirGrid M5 HP, AirGrid M5, NanoStation M5, NanoStation Loco M5, Bullet M5, Rocket M5

see BBHN->ticket:29
2014-03-27 22:53:06 -07:00
Conrad Lara - KG6JEI c59a9e6101 Fix issue where firewall.user does not get copied into place AND clean up firewall.user files 2014-01-31 16:26:33 -08:00
Conrad Lara - KG6JEI 09769d0717 Final permpkg list for distribution 2014-01-28 16:23:16 -08:00
Conrad Lara - KG6JEI 2f126f4fa0 Prepwork for dealing with the common encrypted ports.
In order to maintain compatibility with existing deployed nodes, known common encrypted ports will NOT be blocked by default.

Users will receive a message during first setup encouraging them to review the rules that apply to how they intend to use their node and that laws very by country and frequency.

A package blockknownencrypted has been created in changeset:123a521df2b63ba1c5bdd6ad94ac402b86394579/bbhn_packages to be used in blocking known encrypted ports if the user feels it is necessary.

As developers we are not stating an opinion as to what the rules say or do not say in relationship to the traffic this deals with.  Each user will need to make their own determination of the rules.

This has been the current case since day one.

New file fwinfo page shows if the package is installed AND displays the active firewall rules at the time of the access.  This allows future grown to help test (because of the adhoc nature of the mesh) if packet filtering is the cause of a connection not working.

see BBHN->ticket:3
2014-01-28 13:05:58 -08:00
Conrad Lara - KG6JEI bb245bffbe Adjust paths used for update routines to match future home on the BBHN website. 2014-01-28 12:32:47 -08:00
Conrad Lara - KG6JEI 7577bc2286 Allow forwarding between wifi and ethernet port in config=mesh_ap
fixes BBHN->ticket:26
2014-01-19 18:36:09 -08:00
Conrad Lara - KG6JEI 1eb65c15e3 Fix node name showing up twice on olsrd
No ticket created.

Issue with name service listing the name twice because /etc/init.d/olsrd AND olsrd-config both writing the local node name.
2013-12-31 12:44:03 -08:00
Conrad Lara - KG6JEI 1be27ac4fb uhttpd config file was missing for config=mesh_ap
Add uhttpd config file in correct position.

fixes BBHN->ticket:18
2013-12-30 21:55:25 -08:00
Conrad Lara - KG6JEI 237713aa67 Restore files/etc/hosts
files/etc/hosts was deleted in b948d97/bbhn_ar71xx

Recovered and modified IP address for localnode.

dnsmasq needs /etc/hosts to be pre-populated with  "localnode"
otherwise users have to type the ip address for first log in.

We populate this file via node-setup on mode changes.

fixes BBHN->ticket:10
2013-12-10 23:35:48 -08:00
Conrad Lara - KG6JEI 32f107648a Open firewall to port 23 on WIFI in config=mesh
ref ticket: #2

Open firewall to allow telnet to the routers WIFI interface
in mesh mode.

closes #2
2013-12-07 18:38:47 -08:00
Conrad Lara - KG6JEI c1bfe4dd19 Move custom files into their respective bbhn_packages
See
changeset:801f0e110c058d73fc7d2bd4b930305d89b3ce76/bbhn_packages
changeset:801f0e110c058d73fc7d2bd4b930305d89b3ce76/bbhn_packages
2013-12-07 16:15:10 -08:00
Conrad Lara - KG6JEI f6a0b09c6f Add rule to allow wifi to forward traffic to wifi
Previous rules would of not allowed mesh traffic to be forwarded out.
2013-12-04 19:29:42 -08:00
Conrad Lara - KG6JEI 2d73802aaa Protect from ssh over wifi in mesh
Block the built-in SSH server from connections on the mesh interface to
comply with FCC Part 97

see ticket #2
2013-12-02 15:43:52 -08:00
Conrad Lara - KG6JEI b948d97423 Merge SDWG Mesh progress with 1.0.0 BBHN
Includes removing files that are provided by packages instead
of being embedded as binaries.

Changes made for UBNT hardware AND for newer base openwrt (Backfire)
2013-12-02 12:04:54 -08:00
Conrad Lara - KG6JEI ebd2996564 Removed olsrd related binaries and init.d file -- Contained in custom olsrd package file instead 2013-11-16 15:36:58 -08:00
Conrad Lara - KG6JEI ae2674e764 import of files/ from BBHN 1.0.0 (bbhn svn 273) 2013-11-15 06:11:16 +00:00