Hi Joseph
On 22/12/15 02:09, Jose Collin wrote:
some questions to finally implment LISPD in my openwrt thanks Albert :)
1- when you said that I need to subsitute my LAN ip 192.168.10.0/24
<http://192.168.10.0/24> , I put the eid-prefix you gave me
153.x.x.x/28 so I put 153.x.x.80 and mask 255.255.255.240 for /28
but after saved then I could not enter to LUCI admin.... opewnrt give
me and ip address 153.x.x.89 but can not login at 153.x.x.80
why luci does not appears anymore ? how I can get into ? fortunate I
install LISP in a exroot usb device.. so I write the USB to original
and can get luci but it takes every error 40 minutes
Have you assigned 153.x.x.81 to the LAN interface of your router?
153.X.X.80 is the network address and it should not be used. The same
happens with the last address: 153.X.X.96 which is the broadcast
address. If you have already configured it correctly, then check you
have ping and ssh connectivity.
2- In the info you gave me it appears
EID-prefix: 153.x.x.x0/28 (more specifics allowed)
EID loopback: 153.x.x.x1
EID-prefix ipv6: 2xxx:D0:1234::/48 (more specifics allowed)
EID loopback ipv6: 2xxx:D0:1234::153:16:9:81
so where shoud I put the EID-Prefix ipv6 and EID loopback ipv6 ? and
EID loopback 153.x.x.x1 ?
You can ignore the loopback lines. It reefers that the address of
loopback is added to the DNS as a lisp4.net entry but currently DNS is
not updated.
You should configure the IPv4 and IPv6 EID prefixes in your LAN
interface of the router. Usually you will assign the 153.x.x.81 and
2xxx:D0:1234::1 as the address of your LAN interface
3- I put EID-Prefix ipv6 value in INTERFACES-->global network
option-->IPv6 ULA-Prefix I am fine or not ?
Check how to configure static IPv6 address in openWrt
4- In NETWORK wan interfaces should be STATIC or could be DHCP ? in
my config I put wan to DHCP and wan2 and wan3 to static with metric
10,20 and 30
Could be static or DHCP but in order it works, the address assigned to
the interface MUST be public.
5- in rloc-set it appears rloc_name for each wan, should I rename with
something like wan, wan2 and wan3 or It could be the name alone ?
config 'rloc-set'
option 'name' 'RLOC_SET_A'
list 'rloc_name' 'RLOC_1'
list 'rloc_name' 'RLOC_2'
list 'rloc_name' 'RLOC_3'
You can use any name.
6-in the info for EID-Prefix it has address 153.x.x.x/28
(255.255.255.240) but the site said that with IPv4 should be at least
/30 (255.255.255.???) and IPv6 should has /126 what should I put and
how is the netmask for both ?
"To configure LISPmob to use it on xTR mode take into account the
following
considerations.
An EID /30 (at least) prefix is required for IPv4 EIDs. For IPv6 you
should have
a /126 (at least). This prefix should be used as the network prefix
for the subnet
where the hosts on the EID space connected to the router are
allocated. Assign
the EID to an interface on the router and configure it as you would do
for a normal
network prefix (static configuration, DHCP, etc...). No EID is used
for the 'lispTun0'
interface in router mode (a local address is automatically used by
LISPmob instead).
The following lines show an example of how 'ip addr' and 'ip route'
will look like
with IPv4, expect a similar output with IPv6:"
In IPv4 /28 is a bigger subnet than /30. In IPv6 /48 is bigger then
/126. You could check the concept of subnet here
<https://en.wikipedia.org/wiki/IPv4_subnetting_reference>
7-I atach my config files LISPD file and NETWORK Config to you to see
if need some changes
From your network configuration file I see that you have assigned
private addresses to your WAN interfaces. If you can not obtain public
addresses then LISPmob will not work for you. Please let me know if you
can obtain public addresses for your wan interfaces.
A part from this, your LAN configuration is wrong. You should have
assigned here your EID prefixes. It should look something like this:
config interface 'lan'
option force_link '1'
option type 'bridge'
option proto 'static'
option netmask '255.255.255.240'
option ipaddr '153.x.x.81'
option ip6addr '2xxx:D0:1234::1/48'
option defaultroute '0'
option _orig_ifname 'eth1 radio0.network1'
option _orig_bridge 'true'
option ifname 'eth1.1'
Regards
Albert
8- any recommendations ?
thanks for all almost is done.
On Fri, Dec 18, 2015 at 10:10 AM, Jose Collin <[email protected]
<mailto:[email protected]>> wrote:
thanks albert
new few questions
1- my openwrt router use LAN 192.168.10.1 and my PBX is in static
IP 192.168.10.150. in config with EID-prefix it would not be
anymore valid the 192.168.10.1 but the EID-prefix assigned by you
? or I can still have my 192.168.10.xxx
2- when config is done. I suppouse LISPD does not run by default
but need to put a command in order to enable/ disable..... what
would be the command to enable/disable ?
3-
in the dummy config you share it, I saw address like 3.3.3.3, 4.4.4.4
this should be subsitute with the EID-Prefix provisioning data
or should remain as is ?
4-your dummy config is only for xTR ? is the most common mode for
normal uses an multihoming? advantages of this vs RTR & MN and
advantages of RTR and MN modes? and in what scenarios should be
used each one.
5-the sponsors members of this project. has directly connected
their databases, minning etc to this projects or they only support
this with infrastructure, hardware, software. H.R. and the project
is independtly, self dependable of new code and opensource from
the sponsors member ?
6-this is a beta network. it is planed to charge $ after for the
EID-prefixes ? if yes what about the beta lisps users ?
thanks again albert : )
On Thu, Dec 17, 2015 at 5:48 PM, Jose Collin <[email protected]
<mailto:[email protected]>> wrote:
Thanks so much for the answers. and thanks for the EID prefix.
I have other questions
1-LISP for openwrt is available for AA 12.09 in particular to
tl-wr740n and tl-mr3420 both are atheros a7xxx I check with
opkg update for lispd and it appears to be version 3.xxx
2- how about security ? it is secure the communications ?
3- I usually use in my openwrt DnsCRYPT (dnscrypt-proxy) can
exists with LISP ?
4-with my new EID prefix can have and use my 3 wan interfaces
? you said at some point that withou EID it would be used only
one interface and other would behave as backup interfaces ( i
would like to use all my interfaces WANS to do multihoming
5- it is possible to use at full all wan interfaces with a
weight of 100 each at same time ? or should be the totals wans
100 and from there make like wan1 weight 70 wan2 weigh 20 and
wan3 weight 10 ?
6-what could be the consequences using version 5.xx LISP
without NAT. i asked because I have connected to openwrt a
PBX (freeSwitch) local and my phones are local. plus I have 2
ip cameras ( my external wan ip for all wans are dynamic )
7- LISP make my openwrt and clients faster, and more fail
tolerance ? I suppouse for example if I have connection to a
TV stream and the wan that is used at that moment lose
connection... then with LISP automatic will still using the
connection with the other wans ? and no break of internet link
with tv stream ? ZERO down time ?
8- LISP can help to connect to my cameras by remote android
phone with dynamic IP updater like no-ip.org <http://no-ip.org> ?
9- I suppouse that EID-Prefix IP is hosted in LISPmod Servers,
this make faster and avoid down time ? security ?
could you tell some of the advantages with this ?
10- thanks thanks so much for your fast answers, and your
attentions. you are very kind
thanks
inquba
On Tue, Dec 15, 2015 at 2:36 PM, Jose Collin
<[email protected] <mailto:[email protected]>> wrote:
HI. I want to try LISPd in my openwrt router CC chaos
calmer 15.05
I have Buffallo WZR-1750DHP router with openwrt, I
install LISPD by opkg update, opkg install lispd
my openwrt router is not atheros ar71x but (BCM4708)
kernel version 3.18.20
I would like to use LISPD as I want MULTIHOMING I have 3
wan phisical interfaces in router isolated as vlans
so I have some questions and hope you can help me..
1- LISPD multihoming add bandwidth from all my wans? ex
wan= 12mbpsDOWN/2mbpsUP
wan2 = 7mbpsDown/3mbpsUP wan3 = 10mbpsDown/4mpbsUP so
these 3 would add the bandwidth like bonding and have
29mbpsDown/9mpsUP ???
2-I install the version 4.1 of LISPD in openwrt that was
in the update software so with this version I would have
multihoming enable ?
3- per automatic config is recomended to put this
add the following lines to `/etc/sysctl.conf`. Remember to
reboot your system after adding these lines.
net.ipv4.conf.default.rp_filter=0
net.ipv4.conf.all.rp_filter=0
net.ipv4.ip_forward=1
net.ipv6.conf.all.forwarding=1
but my openwrt LISPD version is diferent here how it is
NOTE that it is not rp_filter=0 but arp_ignore=1 and what
should I put here 0 or 1 ? default is 1
and note2 instead of all.rp_filter=0 it said all.arp_ignore=1
kernel.panic=3
net.ipv4.conf.default.arp_ignore=1
net.ipv4.conf.all.arp_ignore=1
net.ipv4.ip_forward=1
net.ipv4.icmp_echo_ignore_broadcasts=1
net.ipv4.icmp_ignore_bogus_error_responses=1
net.ipv4.igmp_max_memberships=100
net.ipv4.tcp_ecn=0
net.ipv4.tcp_fin_timeout=30
net.ipv4.tcp_keepalive_time=120
net.ipv4.tcp_syncookies=1
net.ipv4.tcp_timestamps=1
net.ipv4.tcp_sack=1
net.ipv4.tcp_dsack=1
net.ipv6.conf.default.forwarding=1
net.ipv6.conf.all.forwarding=1
net.netfilter.nf_conntrack_acct=1
4- It said that I should add all my interfaces before
activating, so my question is how I put the interfaces and
how to set routes ?
could you set this for me.. since I am very newbie with
this ... here my data for interfaces
NOTE: wan's are in order of importance for the metrics...
wan is the most important then wan2 and less important is wan3
LAN= eth0.1 =ip 192.168.10.1
WAN= eth0.2 =ip is DHCP in 192.168.2.192/24
<http://192.168.2.192/24>
WAN2= eth0.200 =ip is DHCP in 192.168.11.192/24
<http://192.168.11.192/24>
WAN3= eth0.300 =ip is DHCP in 192.168.8.50/24
<http://192.168.8.50/24>
once made this the system would work out of the box ? or
need something ?
5- I have use mwan3 and multiwan but it seems it only do
load balancing but not add the bandwidth of all wans....
what would be the advantages of multihoming vs mwan3 and
multiwan if any ?
thanks so much in advance
Joseph Colin
