Thanks federico for the response. It seems that DHCP and NAT is serve by OpenWRT, right? In my case, I want the packet to go to Raspberry Pi first, before reaching Gateway, and I only use 2 AP. I have a research about OpenWRT compare with Mikrotik, so this is the case for OpenWRT network, is it possible?
On Wed, Jul 24, 2019 at 9:11 PM Federico Capoano <[email protected]> wrote: > In this case you don't have to bridge the wifi with the LAN, otherwise the > wifi clients will get their address from the DHCP server on the raspberry > pi. > > You have to set up a DHCP server on each OpenWRT router with a different > network from your organization's network, but you will also need to > configure the IP tables routes (or policy routing, depending on your needs > and tastes) to send packets to the organization's gateway in order for the > internet connection to work. > > OpenWISP can do this, OpenWISP can generate any configuration that OpenWRT > supports, it's just a matter of working to first find out what is the exact > working OpenWRT configuration you need to write, then follow the > documentation of the configuration engine library to understand how to put > it in OpenWISP: > http://netjsonconfig.openwisp.org/en/latest/backends/openwrt.html > > Disclaimer: this work makes sense only if you have many routers, say tens, > hundreds, thousands. > > I hope this helps > Federico > > On Tue, Jul 23, 2019 at 11:48 AM A Stanley <[email protected]> wrote: > >> Yes, I didn't mean to imply that this config was supported by openwisp >> but to point out that it would first have to be something possible in >> openwrt. >> >> On Tue, Jul 23, 2019 at 11:25 AM M Ricky Anggoro P < >> [email protected]> wrote: >> >>> Thanks @2stacks for the advice. Giving your advice, High availability in >>> openWRT is for fail over Router. But it seems like OpenWISP is not support >>> yet for the configuration, CMIIW. After I search in this forum, I found >>> something similar, in this -> >>> https://groups.google.com/d/msg/openwisp/UpVgnZlwdOg/py06vwLtCQAJ >>> Federico said to only bridging LAN interface and wireless interface, but >>> I want different network between LAN and wireless, so I can remote the >>> OpenWRT from outside (No need VPN, because my organization already >>> established VPN to access the LAN Network). >>> >>> Pada Selasa, 23 Juli 2019 21.22.56 UTC+7, 2stacks menulis: >>>> >>>> Almost forgot, the wirless routers will have to be configured with "IP >>>> Helper" address to forward DHCP requests to the Raspi. You should be able >>>> to find examples for most of this in the Openwrt docs. >>>> >>>> https://openwrt.org/docs/guide-user/network/high-availability >>>> >>>> On Tue, Jul 23, 2019 at 10:20 AM A Stanley <[email protected]> wrote: >>>> >>>>> I think what you are asking is possible but I've never tried it. A >>>>> few things you'll have to get working. >>>>> >>>>> 1. DHCP server on they raspi (I would install a full server not >>>>> dnsmasq) >>>>> 2. The Access Points will have to be configured as routers and not >>>>> bridges. >>>>> 3. Since you have two gateways on the same network you'll have to >>>>> synch your NAT and Default GW. >>>>> 4. You should be able to use keepalived to set up VRRP for your First >>>>> Hop Redundancy Protocol. >>>>> 5. You'll need to figure out a way to synchronize the NAT between the >>>>> two routers (I've only seen this done with Cisco Devices) >>>>> >>>>> I realize this isn't an answer so much as more things to think about. >>>>> >>>>> If it were me I'd put my wireless devices on their own vlan and >>>>> separate IP space and configure them as bridges. >>>>> >>>>> On Tue, Jul 23, 2019 at 9:42 AM M Ricky Anggoro P < >>>>> [email protected]> wrote: >>>>> >>>>>> Hello, this is my third time I ask for help in this forum, so I hope >>>>>> it solve my case >>>>>> So I want to established a Network like this: >>>>>> >>>>>> [image: Diagram.png] >>>>>> >>>>>> >>>>>> I Have OpenWISP2 Controller installed on my Raspberry Controller, >>>>>> that will control the Mikrotik-OpenWRT device. the Controller, and the >>>>>> Mikrotik OpenWRT device are on my organization network ( >>>>>> 10.33.109.0/24), and I want the wireless Network is different with >>>>>> the organization network, but the wireless Network on the OpenWRT 1 and >>>>>> OpenWRT 2 is same, and will get the DHCP service from the Raspberry >>>>>> Controller, not the OpenWRT device, and of course, it will need NAT. My >>>>>> question: >>>>>> >>>>>> - Is it possible for the wireless network to receive the Raspberry >>>>>> Controller and get NAT? >>>>>> >>>>>> - How to configure this to OpenWISP controller? >>>>>> >>>>>> >>>>>> I'm a little bit confused to configure this, and I heard I can use >>>>>> dnsmasq on Raspberry to build DHCP Server, but I dont know how to >>>>>> configure >>>>>> NAT from wireless Network to LAN (10.33.109.0/24) Network. >>>>>> >>>>>> >>>>>> >>>>>> Thank you very much >>>>>> >>>>>> -- >>>>>> You received this message because you are subscribed to the Google >>>>>> Groups "OpenWISP" group. >>>>>> To unsubscribe from this group and stop receiving emails from it, >>>>>> send an email to [email protected]. >>>>>> To view this discussion on the web, visit >>>>>> https://groups.google.com/d/msgid/openwisp/fc542a50-9b71-4e56-9e6c-cd1a242aa369%40googlegroups.com >>>>>> <https://groups.google.com/d/msgid/openwisp/fc542a50-9b71-4e56-9e6c-cd1a242aa369%40googlegroups.com?utm_medium=email&utm_source=footer> >>>>>> . >>>>>> >>>>> -- >>> You received this message because you are subscribed to the Google >>> Groups "OpenWISP" group. >>> To unsubscribe from this group and stop receiving emails from it, send >>> an email to [email protected]. >>> To view this discussion on the web, visit >>> https://groups.google.com/d/msgid/openwisp/016d3db3-0d08-4d69-b384-19561f3add1b%40googlegroups.com >>> <https://groups.google.com/d/msgid/openwisp/016d3db3-0d08-4d69-b384-19561f3add1b%40googlegroups.com?utm_medium=email&utm_source=footer> >>> . >>> >> -- >> You received this message because you are subscribed to the Google Groups >> "OpenWISP" group. >> To unsubscribe from this group and stop receiving emails from it, send an >> email to [email protected]. >> To view this discussion on the web, visit >> https://groups.google.com/d/msgid/openwisp/CAP6YPdoXQEOhZtbczpVqY7ebgHJ-Q_4B-ug82gBXCxP3k-oHdA%40mail.gmail.com >> <https://groups.google.com/d/msgid/openwisp/CAP6YPdoXQEOhZtbczpVqY7ebgHJ-Q_4B-ug82gBXCxP3k-oHdA%40mail.gmail.com?utm_medium=email&utm_source=footer> >> . >> > -- > You received this message because you are subscribed to the Google Groups > "OpenWISP" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To view this discussion on the web, visit > https://groups.google.com/d/msgid/openwisp/CAERYH6Up0agWVA%3DzswGnJHrfUROYd%2BP%3D7K0dUbMdhPFDqt5BuA%40mail.gmail.com > <https://groups.google.com/d/msgid/openwisp/CAERYH6Up0agWVA%3DzswGnJHrfUROYd%2BP%3D7K0dUbMdhPFDqt5BuA%40mail.gmail.com?utm_medium=email&utm_source=footer> > . > -- You received this message because you are subscribed to the Google Groups "OpenWISP" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web, visit https://groups.google.com/d/msgid/openwisp/CAB%3DGWjPBSYpW2obUyA5di_t8w3YwOMwYUvMQ8FyC6PWu5dMPAw%40mail.gmail.com.
