technik:gateways:gateway-einrichten-node

Anleitung lokales Gateway auf einem Node

Zusätzlich installieren:

 opkg update
 opkg install http://downloads.openwrt.org/barrier_breaker/14.07/ar71xx/generic/packages/oldpackages/isc-dhcp-relay-ipv4_4.2.4-3_ar71xx.ipk
 opkg install openvpn-openssl mtr 

/etc/config/firewall hinzufügen

 config zone                                    
      option name 'vpn'                    
      list device 'tun0'                      
      option input 'REJECT'  
      option output 'ACCEPT'
      option forward 'ACCEPT'
      option masq '1'     
      option mtu_fix '1'
      option conntrack '1'              
                              
 config forwarding             
      option src 'client'    
      option dest 'vpn' 

/etc/config/dhcrelay anpassen

      option 'dhcpserver' '10.191.255.252 10.191.255.253'
      option 'interfaces' 'br-client'

/etc/config/openvpn:

 config openvpn custom_config
      # Set to 1 to enable this instance:
      option enabled 1
      # Include OpenVPN configuration
      option config /etc/openvpn/my-vpn.conf

/etc/openvpn/my-vpn.conf:

 script-security 2
 up "ff-up"
 down "ff-down"
 ...

/etc/openvpn/ff-up:

 #!/bin/sh
 # relay aktivieren wenn alles da ist
 /etc/init.d/dhcrelay4 restart
 # server aktivieren
 /usr/sbin/batctl gw server

/etc/openvpn/ff-down

 #!/bin/sh
 /usr/sbin/batctl gw client

Fixes zum verbessern

/etc/rc.local

 # lokale ip setzen
 ( sleep 30 && ip a add 10.190.128.77/18 dev br-client ) &
 # route fuer dhcp server
 ( sleep 35 && ip r add 10.190.0.0/15 via 10.190.128.8 ) &
 # routing fuer gws auf wan default
 ( sleep 40 && ip r add 5.196.123.227  via 172.27.77.253 ) &
 ( sleep 45 && ip r add 81.7.8.106     via 172.27.77.253 ) &
 ( sleep 50 && ip r add 164.132.230.36 via 172.27.77.253 ) &
 ( sleep 55 && ip r add 92.222.92.143  via 172.27.77.253 ) &
 # dns fixen
 ( sleep 60 && echo "nameserver 8.8.8.8" >> /etc/resolv.conf ) &
  • technik/gateways/gateway-einrichten-node.txt
  • Zuletzt geändert: vor 5 Jahren
  • von 127.0.0.1