bridged wlan/ether still the same

Discussion:

(too old to reply)

Randy Bush

2010-04-02 03:35:24 UTC

i have a year old 8 soekris system i am about to upgrade. it is pppoe
externally, and has a bridged natted wireless/ether internal net.

.----------------.
| |
| b --wlan0|
| r | 192.168.0.0/24
ext iij | i --- vr1| LAN hosts,
PPP/NAT ---|vr0--- d | DHCP Clients
WAN | g --- vr2| ...
| e |
| 0 --- vr3|
| |
`----------------'

/etc/rc.conf

ppp_enable=YES
ppp_mode=dedicated
ppp_nat=YES
ppp_profile=iij
hostapd_enable=YES
wlans_ath0=wlan0
create_args_wlan0="wlanmode ap mode 11g channel 11 up"
cloned_interfaces=bridge0
ifconfig_bridge0="192.168.0.1 addm vr1 addm vr2 addm vr3 addm wlan0 addm wlan1 up"
ifconfig_vr1=up
ifconfig_vr2=up
ifconfig_vr3=up

/etc/hostap.conf

interface=wlan0
ctrl_interface=/var/run/hostapd
logger_syslog=-1
logger_syslog_level=0
ssid=rgnet-crypt
country_code=JP
hw_mode=g
wpa=2
wpa_key_mgmt=WPA-PSK
wpa_passphrase=notreally
wpa_pairwise=CCMP TKIP

/etc/ppp/ppp.conf entry

iij:
set device PPPoE:vr0
set MRU 1454 # NTT suggests this value
set MTU 1454
accept CHAP
enable lqr
add default HISADDR
nat enable yes
set authname nope
set authkey peon

is this still gonna work? is this a reasonable way to do this? i ask
because, if it does not, i will not have usable connectivity to get help
fixing it :)

randy

Randy Bush

2010-04-02 07:45:54 UTC

Permalink

thanks!

yep, i understood the stacks in from vr0 to the bridge. but yes,
short-cutting the diagram was a bad. thanks for the fix.

it's the bridge that worries me. took me a while to make it work

randy

Stefan Bethke

2010-04-03 10:15:53 UTC

Permalink

Post by Randy Bush
it's the bridge that worries me. took me a while to make it work

It looks sane to me. Here's my slightly more convoluted setup (8-stable):

cloned_interfaces="bridge0 tap0 vlan1 vlan2 vlan3 gif0"
ifconfig_bridge0="ether 02:00:00:00:00:01 addm tap0 addm vlan1"
ifconfig_bridge0_alias0="inet 44.128.65.1/26"
ifconfig_em0="up"
ifconfig_vlan1="vlandev em0 vlan 1"
ifconfig_vlan2="44.128.65.249/29 vlandev em0 vlan 2"
ifconfig_vlan3="172.23.54.1/24 vlandev em0 vlan 3"
ifconfig_tap0="up"

I've set bridge0's MAC address to avoid sillyness with a cheap desktop switch that would get confused on reboots.

HTH,
Stefan

--
Stefan Bethke <***@lassitu.de> Fon +49 151 14070811

Julian Elischer

2010-04-02 07:30:04 UTC

Permalink

Post by Randy Bush
i have a year old 8 soekris system i am about to upgrade. it is pppoe
externally, and has a bridged natted wireless/ether internal net.
.----------------.
| |
| b --wlan0|
| r | 192.168.0.0/24
ext iij | i --- vr1| LAN hosts,
PPP/NAT ---|vr0--- d | DHCP Clients
WAN | g --- vr2| ...
| e |
| 0 --- vr3|
| |
`----------------'

ok this is similar to my setup in some ways.
but the picture is wrong,

remember that vr0 is not (or at least should not be) part of the bridge.

Post by Randy Bush
.----------------------------------.
| |
| b --wlan0|
| r | 192.168.0.0/24
ext iij | i --- vr1| LAN hosts,
PPP/NAT ---|vr0[PPPoE][ppp]tun0--[R]-d | DHCP Clients
WAN | g --- vr2| ...
| e |
| 0 --- vr3|
| |
`----------------------------------'

where [R] is the IP forwarding code (i.e routing not bridging)

Post by Randy Bush
/etc/rc.conf
ppp_enable=YES
ppp_mode=dedicated
ppp_nat=YES
ppp_profile=iij

my profile is pppoe which is shown below
It's not completely different from yours but seems to work

Post by Randy Bush
hostapd_enable=YES
wlans_ath0=wlan0
create_args_wlan0="wlanmode ap mode 11g channel 11 up"
cloned_interfaces=bridge0
ifconfig_bridge0="192.168.0.1 addm vr1 addm vr2 addm vr3 addm wlan0 addm wlan1 up"

I can't help you withthe bridge part but it should be ok I think.

Post by Randy Bush
ifconfig_vr1=up
ifconfig_vr2=up
ifconfig_vr3=up
/etc/hostap.conf
interface=wlan0
ctrl_interface=/var/run/hostapd
logger_syslog=-1
logger_syslog_level=0
ssid=rgnet-crypt
country_code=JP
hw_mode=g
wpa=2
wpa_key_mgmt=WPA-PSK
wpa_passphrase=notreally
wpa_pairwise=CCMP TKIP
/etc/ppp/ppp.conf entry
set device PPPoE:vr0
set MRU 1454 # NTT suggests this value
set MTU 1454
accept CHAP
enable lqr
add default HISADDR
nat enable yes
set authname nope
set authkey peon

pppoe:

set device PPPoE:vr1
set redial 10.3 10000
set speed 115200 #not really intersting
set timeout 0 # Never time out

disable dns
disable ipv6cp
disable sroutes

set authname heyitsme
set authkey really?
set login
enable lqr

set ifaddr X.X.X.X/32 0.0.0.0/0 255.255.255.255 0.0.0.0
add default HISADDR # Add a (sticky) default route
set cd 5

Post by Randy Bush
is this still gonna work? is this a reasonable way to do this? i ask
because, if it does not, i will not have usable connectivity to get help
fixing it :)
randy
_______________________________________________
http://lists.freebsd.org/mailman/listinfo/freebsd-current