9 May
2017
9 May
'17
1:20 p.m.
so, as i had mentioned to nicolas some time ago, i'd like to encrypt
and tunnel the whole traffic of a local network and would like to try
do it in a raspi.
i actually tried this configuration and it works really well. i made a
post in portuguese [1], based on this [2]. all traffic routed to the
raspi is sent over to a openvpn server. i actually changed the dhcp
server on a openwrt router to give out the raspi address as gateway to
all clients in the network, making the whole thing transparent to the
users.
now the question is, of course, how to get this working in libre-mesh?
simply changing the /etc/config/dhcp didn't work, since alfred seems
to be the one filling dhcp requests.
also, there seems to be two approaches: this first one would be to
change the gateway in the clients when they receive the dhcp lease.
the other would be to keep the localnode gateways (x.x.0.1) and route
the traffic from them to the raspi.
then there is also the issue of having more than one exits to the
internet. right now the raspi is hardwired to the actual exit gateway
(outside libre-mesh). but it could be automagically updated to use the
best exit. it also nice to have the raspi physically close to the
exit, so that that less internal bandwidth is wasted.
any thoughts? thanks!
bruno
[1]http://www.brunovianna.net/documenta/?p=93
[2]https://gist.github.com/superjamie/ac55b6d2c080582a3e64
--
bruno(a)pobox.com ▀─█▄██▄▀▄
http://brunovianna.net ─█▄██▄▀█▀█▄
skype: randomico▀─█▄██▄▀█▀█▄▌██─█▌█▌
11 May
11 May
5:01 p.m.
On 09/05/17 15:20, bruno vianna wrote:
so, as i had mentioned to nicolas some time ago,
i'd like to encrypt
and tunnel the whole traffic of a local network and would like to try
do it in a raspi.
i actually tried this configuration and it works really well. i made a
post in portuguese [1], based on this [2]. all traffic routed to the
raspi is sent over to a openvpn server. i actually changed the dhcp
server on a openwrt router to give out the raspi address as gateway to
all clients in the network, making the whole thing transparent to the
users.
now the question is, of course, how to get this working in libre-mesh?
simply changing the /etc/config/dhcp didn't work, since alfred seems
to be the one filling dhcp requests.
also, there seems to be two approaches: this first one would be to
change the gateway in the clients when they receive the dhcp lease.
the other would be to keep the localnode gateways (x.x.0.1) and route
the traffic from them to the raspi.
then there is also the issue of having more than one exits to the
internet. right now the raspi is hardwired to the actual exit gateway
(outside libre-mesh). but it could be automagically updated to use the
best exit. it also nice to have the raspi physically close to the
exit, so that that less internal bandwidth is wasted.
any thoughts? thanks!
So, if I understand correctly you want a do something like this:
AP clients -> Mesh nodes -> RasPi -> Mesh gateway -> Internet
Instead of:
AP clients -> Mesh nodes -> Mesh gateway -> Raspi -> Internet
To set the last, it is transparent to libremesh (since the Raspi is not
inside the mesh network). But for the first, I find it hard to integrate
into libremesh... the easiest would be to do something like:
Ap clients -> Raspi -> Mesh nodes -> Mesh gateway -> Internet
I'm not sure if I'm helping at all actually :/
--
./p4u
13 May
13 May
12:52 p.m.
Instead of:
AP clients -> Mesh nodes -> Mesh gateway -> Raspi -> Internet
actually you were of great help, this makes a lot more sense than the
other set-ups. nothing to be done in libremesh, except changing the
gateway in the libremesh exit router... I'll test that!
but still, this would not work when there are multiples exits. in this
case, this set-up would work better:
Ap clients -> Raspi -> Mesh nodes -> Mesh gateway -> Internet
and thus my doubt remains - how can we tell every ap client in the
mesh network to use the raspi as gateway?
it should be done on the dhcp ip assignation, but I still couldn't
figure how it works :)
thanks
bruno
2780
days inactive
2784
days old
lime-users@lists.libremesh.org
2 comments
2 participants
participants (2)
-
bruno vianna -
Pau