Hi I used 153.x.x.80 instead of 153.x.x.81 Now I Know it should be 153.x.x.81 in the LAN thanks
About public ip wans.... I have 3 wireless wans each with one openwrt in client mode (mr3020) the private ip you saw for each wan correspond to each LAN in its respective Openwrt in client mode giving public access to internet. This would work? I don't know if for example Instead of private 192.168.11.160 it could be the assigned wan Ip (maybe with scripting and dynamic revolvers like (no-ip.com) for each wan? Any idea? Thanks for all albert El 22 de diciembre de 2015 3:12:59 AM CST, "Albert López" <[email protected]> escribió: >Hi Joseph > >On 22/12/15 02:09, Jose Collin wrote: >> some questions to finally implment LISPD in my openwrt thanks Albert >:) >> >> 1- when you said that I need to subsitute my LAN ip 192.168.10.0/24 >> <http://192.168.10.0/24> , I put the eid-prefix you gave me >> 153.x.x.x/28 so I put 153.x.x.80 and mask 255.255.255.240 for /28 >> but after saved then I could not enter to LUCI admin.... opewnrt >give >> me and ip address 153.x.x.89 but can not login at 153.x.x.80 >> why luci does not appears anymore ? how I can get into ? fortunate I >> install LISP in a exroot usb device.. so I write the USB to original >> and can get luci but it takes every error 40 minutes >Have you assigned 153.x.x.81 to the LAN interface of your router? >153.X.X.80 is the network address and it should not be used. The same >happens with the last address: 153.X.X.96 which is the broadcast >address. If you have already configured it correctly, then check you >have ping and ssh connectivity. > >> >> 2- In the info you gave me it appears >> EID-prefix: 153.x.x.x0/28 (more specifics allowed) >> EID loopback: 153.x.x.x1 >> EID-prefix ipv6: 2xxx:D0:1234::/48 (more specifics allowed) >> EID loopback ipv6: 2xxx:D0:1234::153:16:9:81 >> >> so where shoud I put the EID-Prefix ipv6 and EID loopback ipv6 ? and >> EID loopback 153.x.x.x1 ? >You can ignore the loopback lines. It reefers that the address of >loopback is added to the DNS as a lisp4.net entry but currently DNS is >not updated. >You should configure the IPv4 and IPv6 EID prefixes in your LAN >interface of the router. Usually you will assign the 153.x.x.81 and >2xxx:D0:1234::1 as the address of your LAN interface >> >> 3- I put EID-Prefix ipv6 value in INTERFACES-->global network >> option-->IPv6 ULA-Prefix I am fine or not ? >Check how to configure static IPv6 address in openWrt >> >> 4- In NETWORK wan interfaces should be STATIC or could be DHCP ? in >> my config I put wan to DHCP and wan2 and wan3 to static with metric >> 10,20 and 30 >Could be static or DHCP but in order it works, the address assigned to >the interface MUST be public. >> >> 5- in rloc-set it appears rloc_name for each wan, should I rename >with >> something like wan, wan2 and wan3 or It could be the name alone ? >> >> config 'rloc-set' >> option 'name' 'RLOC_SET_A' >> list 'rloc_name' 'RLOC_1' >> list 'rloc_name' 'RLOC_2' >> list 'rloc_name' 'RLOC_3' >You can use any name. >> >> 6-in the info for EID-Prefix it has address 153.x.x.x/28 >> (255.255.255.240) but the site said that with IPv4 should be at least > >> /30 (255.255.255.???) and IPv6 should has /126 what should I put and >> how is the netmask for both ? >> >> "To configure LISPmob to use it on xTR mode take into account the >> following >> considerations. >> An EID /30 (at least) prefix is required for IPv4 EIDs. For IPv6 you >> should have >> a /126 (at least). This prefix should be used as the network prefix >> for the subnet >> where the hosts on the EID space connected to the router are >> allocated. Assign >> the EID to an interface on the router and configure it as you would >do >> for a normal >> network prefix (static configuration, DHCP, etc...). No EID is used >> for the 'lispTun0' >> interface in router mode (a local address is automatically used by >> LISPmob instead). >> The following lines show an example of how 'ip addr' and 'ip route' >> will look like >> with IPv4, expect a similar output with IPv6:" >In IPv4 /28 is a bigger subnet than /30. In IPv6 /48 is bigger then >/126. You could check the concept of subnet here ><https://en.wikipedia.org/wiki/IPv4_subnetting_reference> >> >> 7-I atach my config files LISPD file and NETWORK Config to you to see > >> if need some changes >> >> > From your network configuration file I see that you have assigned >private addresses to your WAN interfaces. If you can not obtain public >addresses then LISPmob will not work for you. Please let me know if >you >can obtain public addresses for your wan interfaces. >A part from this, your LAN configuration is wrong. You should have >assigned here your EID prefixes. It should look something like this: > > config interface 'lan' > option force_link '1' > option type 'bridge' > option proto 'static' > option netmask '255.255.255.240' > option ipaddr '153.x.x.81' > option ip6addr '2xxx:D0:1234::1/48' > option defaultroute '0' > option _orig_ifname 'eth1 radio0.network1' > option _orig_bridge 'true' > option ifname 'eth1.1' > >Regards > >Albert >> 8- any recommendations ? >> >> thanks for all almost is done. >> >> >> >> On Fri, Dec 18, 2015 at 10:10 AM, Jose Collin <[email protected] >> <mailto:[email protected]>> wrote: >> >> thanks albert >> >> new few questions >> >> 1- my openwrt router use LAN 192.168.10.1 and my PBX is in static >> IP 192.168.10.150. in config with EID-prefix it would not be >> anymore valid the 192.168.10.1 but the EID-prefix assigned by you >> ? or I can still have my 192.168.10.xxx >> >> 2- when config is done. I suppouse LISPD does not run by default >> but need to put a command in order to enable/ disable..... what >> would be the command to enable/disable ? >> >> 3- >> in the dummy config you share it, I saw address like 3.3.3.3, >4.4.4.4 >> this should be subsitute with the EID-Prefix provisioning data >> or should remain as is ? >> >> 4-your dummy config is only for xTR ? is the most common mode for >> normal uses an multihoming? advantages of this vs RTR & MN and >> advantages of RTR and MN modes? and in what scenarios should be >> used each one. >> >> 5-the sponsors members of this project. has directly connected >> their databases, minning etc to this projects or they only >support >> this with infrastructure, hardware, software. H.R. and the >project >> is independtly, self dependable of new code and opensource from >> the sponsors member ? >> >> 6-this is a beta network. it is planed to charge $ after for the >> EID-prefixes ? if yes what about the beta lisps users ? >> >> thanks again albert : ) >> >> On Thu, Dec 17, 2015 at 5:48 PM, Jose Collin ><[email protected] >> <mailto:[email protected]>> wrote: >> >> Thanks so much for the answers. and thanks for the EID >prefix. >> I have other questions >> >> 1-LISP for openwrt is available for AA 12.09 in particular to >> tl-wr740n and tl-mr3420 both are atheros a7xxx I check with >> opkg update for lispd and it appears to be version 3.xxx >> >> 2- how about security ? it is secure the communications ? >> >> 3- I usually use in my openwrt DnsCRYPT (dnscrypt-proxy) can >> exists with LISP ? >> >> 4-with my new EID prefix can have and use my 3 wan interfaces >> ? you said at some point that withou EID it would be used >only >> one interface and other would behave as backup interfaces ( i >> would like to use all my interfaces WANS to do multihoming >> >> 5- it is possible to use at full all wan interfaces with a >> weight of 100 each at same time ? or should be the totals >wans >> 100 and from there make like wan1 weight 70 wan2 weigh 20 >and >> wan3 weight 10 ? >> >> 6-what could be the consequences using version 5.xx LISP >> without NAT. i asked because I have connected to openwrt a >> PBX (freeSwitch) local and my phones are local. plus I have >2 >> ip cameras ( my external wan ip for all wans are dynamic ) >> >> 7- LISP make my openwrt and clients faster, and more fail >> tolerance ? I suppouse for example if I have connection to a >> TV stream and the wan that is used at that moment lose >> connection... then with LISP automatic will still using the >> connection with the other wans ? and no break of internet >link >> with tv stream ? ZERO down time ? >> >> 8- LISP can help to connect to my cameras by remote android >> phone with dynamic IP updater like no-ip.org ><http://no-ip.org> ? >> >> 9- I suppouse that EID-Prefix IP is hosted in LISPmod >Servers, >> this make faster and avoid down time ? security ? >> could you tell some of the advantages with this ? >> >> 10- thanks thanks so much for your fast answers, and your >> attentions. you are very kind >> >> thanks >> inquba >> >> On Tue, Dec 15, 2015 at 2:36 PM, Jose Collin >> <[email protected] <mailto:[email protected]>> wrote: >> >> HI. I want to try LISPd in my openwrt router CC chaos >> calmer 15.05 >> >> I have Buffallo WZR-1750DHP router with openwrt, I >> install LISPD by opkg update, opkg install lispd >> >> my openwrt router is not atheros ar71x but (BCM4708) >> kernel version 3.18.20 >> >> I would like to use LISPD as I want MULTIHOMING I have 3 >> wan phisical interfaces in router isolated as vlans >> >> so I have some questions and hope you can help me.. >> >> 1- LISPD multihoming add bandwidth from all my wans? ex >> wan= 12mbpsDOWN/2mbpsUP >> wan2 = 7mbpsDown/3mbpsUP wan3 = 10mbpsDown/4mpbsUP so >> these 3 would add the bandwidth like bonding and have >> 29mbpsDown/9mpsUP ??? >> >> 2-I install the version 4.1 of LISPD in openwrt that was >> in the update software so with this version I would have >> multihoming enable ? >> >> 3- per automatic config is recomended to put this >> add the following lines to `/etc/sysctl.conf`. Remember >to >> reboot your system after adding these lines. >> >> net.ipv4.conf.default.rp_filter=0 >> net.ipv4.conf.all.rp_filter=0 >> net.ipv4.ip_forward=1 >> net.ipv6.conf.all.forwarding=1 >> >> but my openwrt LISPD version is diferent here how it is >> NOTE that it is not rp_filter=0 but arp_ignore=1 and >what >> should I put here 0 or 1 ? default is 1 >> and note2 instead of all.rp_filter=0 it said >all.arp_ignore=1 >> >> kernel.panic=3 >> net.ipv4.conf.default.arp_ignore=1 >> net.ipv4.conf.all.arp_ignore=1 >> net.ipv4.ip_forward=1 >> net.ipv4.icmp_echo_ignore_broadcasts=1 >> net.ipv4.icmp_ignore_bogus_error_responses=1 >> net.ipv4.igmp_max_memberships=100 >> net.ipv4.tcp_ecn=0 >> net.ipv4.tcp_fin_timeout=30 >> net.ipv4.tcp_keepalive_time=120 >> net.ipv4.tcp_syncookies=1 >> net.ipv4.tcp_timestamps=1 >> net.ipv4.tcp_sack=1 >> net.ipv4.tcp_dsack=1 >> >> net.ipv6.conf.default.forwarding=1 >> net.ipv6.conf.all.forwarding=1 >> >> net.netfilter.nf_conntrack_acct=1 >> >> 4- It said that I should add all my interfaces before >> activating, so my question is how I put the interfaces >and >> how to set routes ? >> >> could you set this for me.. since I am very newbie with >> this ... here my data for interfaces >> NOTE: wan's are in order of importance for the metrics... >> wan is the most important then wan2 and less important is >wan3 >> >> LAN= eth0.1 =ip 192.168.10.1 >> WAN= eth0.2 =ip is DHCP in 192.168.2.192/24 >> <http://192.168.2.192/24> >> WAN2= eth0.200 =ip is DHCP in 192.168.11.192/24 >> <http://192.168.11.192/24> >> WAN3= eth0.300 =ip is DHCP in 192.168.8.50/24 >> <http://192.168.8.50/24> >> >> >> once made this the system would work out of the box ? or >> need something ? >> >> 5- I have use mwan3 and multiwan but it seems it only do >> load balancing but not add the bandwidth of all wans.... >> what would be the advantages of multihoming vs mwan3 and >> multiwan if any ? >> >> thanks so much in advance >> Joseph Colin >> >> -- Sent from my Android device with K-9 Mail. Please excuse my brevity.
