Hi I used 153.x.x.80 instead of 153.x.x.81 Now I Know it should be
153.x.x.81 in the LAN thanks
About public ip wans....
I have 3 wireless wans each with one openwrt in client mode (mr3020)
the private ip you saw for each wan correspond to each LAN in its
respective Openwrt in client mode giving public access to internet.
This would work? I don't know if for example Instead of private
192.168.11.160 <http://192.168.11.160> it could be the assigned wan Ip
(maybe with scripting and dynamic revolvers like (no-ip.com
<http://no-ip.com>) for each wan? Any idea?
Thanks for all albert
El 22 de diciembre de 2015 3:12:59 AM CST, "Albert López"
<[email protected]> escribió:
Hi Joseph
On 22/12/15 02:09, Jose Collin wrote:
some questions to finally implment LISPD in my openwrt thanks
Albert :)
1- when you said that I need to subsitute my LAN ip
192.168.10.0/24 <http://192.168.10.0/24> , I put the eid-prefix
you gave me 153.x.x.x/28 so I put 153.x.x.80 and mask
255.255.255.240 for /28 but after saved then I could not enter
to LUCI admin.... opewnrt give me and ip address 153.x.x.89 but
can not login at 153.x.x.80
why luci does not appears anymore ? how I can get into ?
fortunate I install LISP in a exroot usb device.. so I write the
USB to original and can get luci but it takes every error 40 minutes
Have you assigned 153.x.x.81 to the LAN interface of your router?
153.X.X.80 is the network address and it should not be used. The
same happens with the last address: 153.X.X.96 which is the
broadcast address. If you have already configured it correctly,
then check you have ping and ssh connectivity.
2- In the info you gave me it appears
EID-prefix: 153.x.x.x0/28 (more specifics allowed)
EID loopback: 153.x.x.x1
EID-prefix ipv6: 2xxx:D0:1234::/48 (more specifics allowed)
EID loopback ipv6: 2xxx:D0:1234::153:16:9:81
so where shoud I put the EID-Prefix ipv6 and EID loopback ipv6 ?
and EID loopback 153.x.x.x1 ?
You can ignore the loopback lines. It reefers that the address of
loopback is added to the DNS as a lisp4.net entry but currently
DNS is not updated.
You should configure the IPv4 and IPv6 EID prefixes in your LAN
interface of the router. Usually you will assign the 153.x.x.81
and 2xxx:D0:1234::1 as the address of your LAN interface
3- I put EID-Prefix ipv6 value in INTERFACES-->global network
option-->IPv6 ULA-Prefix I am fine or not ?
Check how to configure static IPv6 address in openWrt
4- In NETWORK wan interfaces should be STATIC or could be DHCP ?
in my config I put wan to DHCP and wan2 and wan3 to static with
metric 10,20 and 30
Could be static or DHCP but in order it works, the address
assigned to the interface MUST be public.
5- in rloc-set it appears rloc_name for each wan, should I rename
with something like wan, wan2 and wan3 or It could be the name
alone ?
config 'rloc-set'
option 'name' 'RLOC_SET_A'
list 'rloc_name' 'RLOC_1'
list 'rloc_name' 'RLOC_2'
list 'rloc_name' 'RLOC_3'
You can use any name.
6-in the info for EID-Prefix it has address 153.x.x.x/28
(255.255.255.240) but the site said that with IPv4 should be at
least /30 (255.255.255.???) and IPv6 should has /126 what should
I put and how is the netmask for both ?
"To configure LISPmob to use it on xTR mode take into account the
following
considerations.
An EID /30 (at least) prefix is required for IPv4 EIDs. For IPv6
you should have
a /126 (at least). This prefix should be used as the network
prefix for the subnet
where the hosts on the EID space connected to the router are
allocated. Assign
the EID to an interface on the router and configure it as you
would do for a normal
network prefix (static configuration, DHCP, etc...). No EID is
used for the 'lispTun0'
interface in router mode (a local address is automatically used
by LISPmob instead).
The following lines show an example of how 'ip addr' and 'ip
route' will look like
with IPv4, expect a similar output with IPv6:"
In IPv4 /28 is a bigger subnet than /30. In IPv6 /48 is bigger
then /126. You could check the concept of subnet here
<https://en.wikipedia.org/wiki/IPv4_subnetting_reference>
7-I atach my config files LISPD file and NETWORK Config to you to
see if need some changes
From your network configuration file I see that you have assigned
private addresses to your WAN interfaces. If you can not obtain
public addresses then LISPmob will not work for you. Please let
me know if you can obtain public addresses for your wan interfaces.
A part from this, your LAN configuration is wrong. You should have
assigned here your EID prefixes. It should look something like this:
config interface 'lan'
option force_link '1'
option type 'bridge'
option proto 'static'
option netmask '255.255.255.240'
option ipaddr '153.x.x.81'
option ip6addr '2xxx:D0:1234::1/48'
option defaultroute '0'
option _orig_ifname 'eth1 radio0.network1'
option _orig_bridge 'true'
option ifname 'eth1.1'
Regards
Albert
8- any recommendations ?
thanks for all almost is done.
On Fri, Dec 18, 2015 at 10:10 AM, Jose Collin
<[email protected] <mailto:[email protected]>> wrote:
thanks albert
new few questions
1- my openwrt router use LAN 192.168.10.1 and my PBX is in
static IP 192.168.10.150. in config with EID-prefix it would
not be anymore valid the 192.168.10.1 but the EID-prefix
assigned by you ? or I can still have my 192.168.10.xxx
2- when config is done. I suppouse LISPD does not run by
default but need to put a command in order to enable/
disable..... what would be the command to enable/disable ?
3-
in the dummy config you share it, I saw address like
3.3.3.3, 4.4.4.4
this should be subsitute with the EID-Prefix provisioning
data or should remain as is ?
4-your dummy config is only for xTR ? is the most common mode
for normal uses an multihoming? advantages of this vs RTR &
MN and advantages of RTR and MN modes? and in what
scenarios should be used each one.
5-the sponsors members of this project. has directly
connected their databases, minning etc to this projects or
they only support this with infrastructure, hardware,
software. H.R. and the project is independtly, self
dependable of new code and opensource from the sponsors member ?
6-this is a beta network. it is planed to charge $ after for
the EID-prefixes ? if yes what about the beta lisps users ?
thanks again albert : )
On Thu, Dec 17, 2015 at 5:48 PM, Jose Collin
<[email protected]> wrote:
Thanks so much for the answers. and thanks for the EID
prefix.
I have other questions
1-LISP for openwrt is available for AA 12.09 in
particular to tl-wr740n and tl-mr3420 both are atheros
a7xxx I check with opkg update for lispd and it appears
to be version 3.xxx
2- how about security ? it is secure the communications ?
3- I usually use in my openwrt DnsCRYPT (dnscrypt-proxy)
can exists with LISP ?
4-with my new EID prefix can have and use my 3 wan
interfaces ? you said at some point that withou EID it
would be used only one interface and other would behave
as backup interfaces ( i would like to use all my
interfaces WANS to do multihoming
5- it is possible to use at full all wan interfaces with
a weight of 100 each at same time ? or should be the
totals wans 100 and from there make like wan1 weight 70
wan2 weigh 20 and wan3 weight 10 ?
6-what could be the consequences using version 5.xx LISP
without NAT. i asked because I have connected to openwrt
a PBX (freeSwitch) local and my phones are local. plus I
have 2 ip cameras ( my external wan ip for all wans are
dynamic )
7- LISP make my openwrt and clients faster, and more fail
tolerance ? I suppouse for example if I have connection
to a TV stream and the wan that is used at that moment
lose connection... then with LISP automatic will still
using the connection with the other wans ? and no break
of internet link with tv stream ? ZERO down time ?
8- LISP can help to connect to my cameras by remote
android phone with dynamic IP updater like no-ip.org
<http://no-ip.org> ?
9- I suppouse that EID-Prefix IP is hosted in LISPmod
Servers, this make faster and avoid down time ? security ?
could you tell some of the advantages with this ?
10- thanks thanks so much for your fast answers, and your
attentions. you are very kind
thanks
inquba
On Tue, Dec 15, 2015 at 2:36 PM, Jose Collin
<[email protected] <mailto:[email protected]>> wrote:
HI. I want to try LISPd in my openwrt router CC chaos
calmer 15.05
I have Buffallo WZR-1750DHP router with openwrt, I
install LISPD by opkg update, opkg install lispd
my openwrt router is not atheros ar71x but (BCM4708)
kernel version 3.18.20
I would like to use LISPD as I want MULTIHOMING I
have 3 wan phisical interfaces in router isolated as
vlans
so I have some questions and hope you can help me..
1- LISPD multihoming add bandwidth from all my wans?
ex wan= 12mbpsDOWN/2mbpsUP
wan2 = 7mbpsDown/3mbpsUP wan3 = 10mbpsDown/4mpbsUP
so these 3 would add the bandwidth like bonding and
have 29mbpsDown/9mpsUP ???
2-I install the version 4.1 of LISPD in openwrt that
was in the update software so with this version I
would have multihoming enable ?
3- per automatic config is recomended to put this
add the following lines to `/etc/sysctl.conf`.
Remember to
reboot your system after adding these lines.
net.ipv4.conf.default.rp_filter=0
net.ipv4.conf.all.rp_filter=0
net.ipv4.ip_forward=1
net.ipv6.conf.all.forwarding=1
but my openwrt LISPD version is diferent here how it
is NOTE that it is not rp_filter=0 but arp_ignore=1
and what should I put here 0 or 1 ? default is 1
and note2 instead of all.rp_filter=0 it said
all.arp_ignore=1
kernel.panic=3
net.ipv4.conf.default.arp_ignore=1
net.ipv4.conf.all.arp_ignore=1
net.ipv4.ip_forward=1
net.ipv4.icmp_echo_ignore_broadcasts=1
net.ipv4.icmp_ignore_bogus_error_responses=1
net.ipv4.igmp_max_memberships=100
net.ipv4.tcp_ecn=0
net.ipv4.tcp_fin_timeout=30
net.ipv4.tcp_keepalive_time=120
net.ipv4.tcp_syncookies=1
net.ipv4.tcp_timestamps=1
net.ipv4.tcp_sack=1
net.ipv4.tcp_dsack=1
net.ipv6.conf.default.forwarding=1
net.ipv6.conf.all.forwarding=1
net.netfilter.nf_conntrack_acct=1
4- It said that I should add all my interfaces before
activating, so my question is how I put the
interfaces and how to set routes ?
could you set this for me.. since I am very newbie
with this ... here my data for interfaces
NOTE: wan's are in order of importance for the
metrics... wan is the most important then wan2 and
less important is wan3
LAN= eth0.1 =ip 192.168.10.1
WAN= eth0.2 =ip is DHCP in 192.168.2.192/24
<http://192.168.2.192/24>
WAN2= eth0.200 =ip is DHCP in 192.168.11.192/24
<http://192.168.11.192/24>
WAN3= eth0.300 =ip is DHCP in 192.168.8.50/24
<http://192.168.8.50/24>
once made this the system would work out of the box ?
or need something ?
5- I have use mwan3 and multiwan but it seems it only
do load balancing but not add the bandwidth of all
wans.... what would be the advantages of multihoming
vs mwan3 and multiwan if any ?
thanks so much in advance
Joseph Colin
--
Sent from my Android device with K-9 Mail. Please excuse my brevity.
