network issue after new carambola flash

emmerichoma commented 11 years ago

On Feb 1 I have been stopped in my Carambola Project by a fundamental Problem which I could not resolve, although I have studied the OpenWrt Manuals and also the Forum entries. May be you can give me recommendations.

I have created a new Flash for the Carambola based on the 8Devices Wiki recommendations on an UBUNTU 12.10 PC (because I needed some additional packages). I based the Flash on the stable release (as shown in the Wiki).

The Build went thru successfully

I have flashed the Carambola over the Ethernet using the LUCI Feature, retaining the configuration files (which is a Luci option/tick box). The Flash went thru successfully.

After the flash I could not connect thru Ethernet. Therefore I then connect with Carambola using the Serial Interface.

However. I have now a Situation that the Network does not work any longer. Carambola is connected with a switch thru the LAN Interface (not WAN) with a cable, the serial interface is connected with a Windows PC (V-TERM 32). Both PCs (Linux and Windows) are connected to the same LAN G-bit switch as Carambola.

A simple PING on Carambola nor from the PCs works (both direction no answer), however, the arcping does work, so seems to be a layer 3 problem

root@OpenWrt:/# arping 192.168.0.1 ARPING to 192.168.0.1 from 192.168.0.187 via eth0 Unicast reply from 192.168.0.1 [0:26:5a:ce:91:f] 0.618ms Unicast reply from 192.168.0.1 [0:26:5a:ce:91:f] 0.463ms Unicast reply from 192.168.0.1 [0:26:5a:ce:91:f] 0.453ms

root@OpenWrt:/# ping 192.168.0.1
PING 192.168.0.1 (192.168.0.1): 56 data bytes
^C
--- 192.168.0.1 ping statistics ---
5 packets transmitted, 0 packets received, 100% packet loss

My configuration files are as follows:

root@OpenWrt:/# route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
default 192.168.0.1 0.0.0.0 UG 0 0 0 br-lan
192.168.0.0 * 255.255.255.0 U 0 0 0 br-lan
192.168.0.0 * 255.255.255.0 U 0 0 0 wlan0
root@OpenWrt:/#

root@OpenWrt:/# uci show network network.loopback=interface network.loopback.ifname=lo network.loopback.proto=static network.loopback.ipaddr=127.0.0.1 network.loopback.netmask=255.0.0.0 network.lan=interface network.lan.ifname=eth0.1 network.lan.type=bridge network.lan._orig_ifname=eth0.1 network.lan._orig_bridge=true network.lan.proto=static network.lan.ipaddr=192.168.0.187 network.lan.netmask=255.255.255.0 network.lan.gateway=192.168.0.1 network.lan.dns=8.8.8.8 network.wan=interface network.wan.ifname=eth0.2 network.wan.proto=dhcp network.wwan=interface network.wwan._orig_ifname=wlan0 network.wwan._orig_bridge=false network.wwan.proto=static network.wwan.ipaddr=192.168.0.124 network.wwan.netmask=255.255.255.0 network.Ethernet=alias network.Ethernet.proto=static network.Ethernet.interface=wwan network.Ethernet.ipaddr=192.168.0.187 network.Ethernet.netmask=255.255.255.0 root@OpenWrt:/#

A Network restart does the following

root@OpenWrt:/etc/init.d# ./network restart
[ 3959.840000] br-lan: port 1(eth0.1) entered disabled state
[ 3959.860000] device eth0.1 left promiscuous mode
[ 3959.860000] device eth0 left promiscuous mode
[ 3959.870000] br-lan: port 1(eth0.1) entered disabled state
[ 3961.360000] device eth0.1 entered promiscuous mode
[ 3961.370000] device eth0 entered promiscuous mode
[ 3961.380000] br-lan: port 1(eth0.1) entered forwarding state
[ 3961.380000] br-lan: port 1(eth0.1) entered forwarding state
[ 3963.380000] br-lan: port 1(eth0.1) entered forwarding state
command failed: Device or resource busy (-16)
[ 3964.200000] phy0 -> rt2x00mac_conf_tx: Info - Configured TX queue 0 - CWmin: 5, CWmax: 10, Aifs: 2, TXop: 0.
[ 3964.210000] phy0 -> rt2x00mac_conf_tx: Info - Configured TX queue 1 - CWmin: 5, CWmax: 10, Aifs: 2, TXop: 0.
[ 3964.220000] phy0 -> rt2x00mac_conf_tx: Info - Configured TX queue 2 - CWmin: 5, CWmax: 10, Aifs: 2, TXop: 0.
[ 3964.230000] phy0 -> rt2x00mac_conf_tx: Info - Configured TX queue 3 - CWmin: 5, CWmax: 10, Aifs: 2, TXop: 0.
command failed: Invalid argument (-22)
Successfully initialized wpa_supplicant
root@OpenWrt:/etc/init.d#

Any help you can provide, because I googled many pages and looked thru various Forums, but now I am very helpless. Many thanks for your Support.

valinskas commented 11 years ago

Hi,

It is either firewall that is discarding packets (/etc/init.d/firewall stop) or it is routing. From you configuration fragment I see that wlan0 interface ant br-lan have the IP addresses from the same subnet! ARP are not routed so when IP packet arrives on wlan0 a reply is routed via br-lan (response packet is sent via incorrect interface due to routing).

Can you send full configuration ?

emmerichoma commented 11 years ago

Appreciate your quick response! I had stopped the firewall without success.

Here are the configuration files, please let me know if anything missing, thanks

root@OpenWrt:/etc/config# cat network

config interface 'loopback' option ifname 'lo' option proto 'static' option ipaddr '127.0.0.1' option netmask '255.0.0.0'

config interface 'lan' option ifname 'eth0.1' option type 'bridge' option _orig_ifname 'eth0.1' option _orig_bridge 'true' option proto 'static' option ipaddr '192.168.0.187' option netmask '255.255.255.0' option gateway '192.168.0.1' option dns '8.8.8.8'

config interface 'wan' option ifname 'eth0.2' option proto 'dhcp'

config interface 'wwan' option _orig_ifname 'wlan0' option _orig_bridge 'false' option proto 'static' option ipaddr '192.168.0.124' option netmask '255.255.255.0'

config alias 'Ethernet' option proto 'static' option interface 'wwan' option ipaddr '192.168.0.187' option netmask '255.255.255.0'

root@OpenWrt:/etc/config# cat firewall

config defaults option syn_flood '1' option input 'ACCEPT' option output 'ACCEPT' option forward 'REJECT'

config zone option name 'lan' option network 'lan' option input 'ACCEPT' option output 'ACCEPT' option forward 'REJECT'

config zone option name 'wan' option input 'REJECT' option output 'ACCEPT' option forward 'REJECT' option masq '1' option mtu_fix '1' option network 'wan wwan'

config forwarding option src 'lan' option dest 'wan'

config rule option name 'Allow-DHCP-Renew' option src 'wan' option proto 'udp' option dest_port '68' option target 'ACCEPT' option family 'ipv4'

config rule option name 'Allow-Ping' option src 'wan' option proto 'icmp' option icmp_type 'echo-request' option family 'ipv4' option target 'ACCEPT'

config rule option name 'Allow-DHCPv6' option src 'wan' option proto 'udp' option src_ip 'fe80::/10' option src_port '547' option dest_ip 'fe80::/10' option dest_port '546' option family 'ipv6' option target 'ACCEPT'

config rule option name 'Allow-ICMPv6-Input' option src 'wan' option proto 'icmp' list icmp_type 'echo-request' list icmp_type 'echo-reply' list icmp_type 'destination-unreachable' list icmp_type 'packet-too-big' list icmp_type 'time-exceeded' list icmp_type 'bad-header' list icmp_type 'unknown-header-type' list icmp_type 'router-solicitation' list icmp_type 'neighbour-solicitation' option limit '1000/sec' option family 'ipv6' option target 'ACCEPT'

config rule option name 'Allow-ICMPv6-Forward' option src 'wan' option dest '*' option proto 'icmp' list icmp_type 'echo-request' list icmp_type 'echo-reply' list icmp_type 'destination-unreachable' list icmp_type 'packet-too-big' list icmp_type 'time-exceeded' list icmp_type 'bad-header' list icmp_type 'unknown-header-type' option limit '1000/sec' option family 'ipv6' option target 'ACCEPT'

config include option path '/etc/firewall.user'

I have nothing in firewall.user

root@OpenWrt:/etc/config# cat wireless

config wifi-device 'radio0' option type 'mac80211' option macaddr 'c4:93:00:11:0a:50' option hwmode '11ng' option htmode 'HT20' list ht_capab 'GF' list ht_capab 'SHORT-GI-20' list ht_capab 'SHORT-GI-40' list ht_capab 'RX-STBC1' option country '00' option txpower '50' option channel '1'

config wifi-iface option ssid 'dlinkAP' option device 'radio0' option mode 'sta' option network 'wwan' option key 'priv password' ... I deleted my personal WLAN password option encryption 'pkt'

Thanks for your help. Emmerich

emmerichoma commented 11 years ago

During the bild process I had a few errors, could they have an impact??

Just wanted to ensure that I had not missed any information that could be important for your analysis of the problem.

tmp/.config-package.in:9357:warning: 'select' used by config symbol 'PACKAGE_luci-ssl' refer to undefined symbol 'PACKAGE_libustream-cyassl' tmp/.config-package.in:10382:warning: 'select' used by config symbol 'PACKAGE_luci-proto-ipv6' refer to undefined symbol 'PACKAGE_ipv6-support' tmp/.config-package.in:12501:warning: 'select' used by config symbol 'PACKAGE_deluge-ui-gtk' refer to undefined symbol 'PACKAGE_python-gtk' tmp/.config-package.in:12555:warning: 'select' used by config symbol 'PACKAGE_transmission-daemon' refer to undefined symbol 'PACKAGE_libevent2' tmp/.config-package.in:12588:warning: 'select' used by config symbol 'PACKAGE_transmission-remote' refer to undefined symbol 'PACKAGE_libevent2' tmp/.config-package.in:13490:warning: 'select' used by config symbol 'PACKAGE_conntrack-tools' refer to undefined symbol 'PACKAGE_libnetfilter-conntrack' tmp/.config-package.in:17407:warning: 'select' used by config symbol 'PACKAGE_lldpd' refer to undefined symbol 'PACKAGE_libevent2' tmp/.config-package.in:28674:warning: 'select' used by config symbol 'PACKAGE_vpzone' refer to undefined symbol 'PACKAGE_libevent2' tmp/.config-package.in:29534:warning: 'select' used by config symbol 'PACKAGE_obfsproxy' refer to undefined symbol 'PACKAGE_libevent2' tmp/.config-package.in:29619:warning: 'select' used by config symbol 'PACKAGE_redsocks' refer to undefined symbol 'PACKAGE_libevent2' tmp/.config-package.in:29650:warning: 'select' used by config symbol 'PACKAGE_seeks' refer to undefined symbol 'PACKAGE_libevent2' tmp/.config-package.in:30405:warning: 'select' used by config symbol 'PACKAGE_arpd' refer to undefined symbol 'PACKAGE_libevent2' tmp/.config-package.in:31686:warning: 'select' used by config symbol 'PACKAGE_iputils-arping' refer to undefined symbol 'PACKAGE_libsysfs' tmp/.config-package.in:33580:warning: 'select' used by config symbol 'PACKAGE_tor' refer to undefined symbol 'PACKAGE_libevent2' tmp/.config-package.in:33602:warning: 'select' used by config symbol 'PACKAGE_tor-alpha' refer to undefined symbol 'PACKAGE_libevent2' tmp/.config-package.in:33871:warning: 'select' used by config symbol 'PACKAGE_usbip' refer to undefined symbol 'PACKAGE_libsysfs' tmp/.config-package.in:35350:warning: 'select' used by config symbol 'PACKAGE_directfb' refer to undefined symbol 'PACKAGE_libsysfs' tmp/.config-package.in:37623:warning: 'select' used by config symbol 'PACKAGE_libnetfilter-log' refer to undefined symbol 'PACKAGE_libnfnetlink' tmp/.config-package.in:37638:warning: 'select' used by config symbol 'PACKAGE_libnetfilter-queue' refer to undefined symbol 'PACKAGE_libnfnetlink' tmp/.config-package.in:38118:warning: 'select' used by config symbol 'PACKAGE_libqmi' refer to undefined symbol 'PACKAGE_kmod-usb-net-qmi-wwan' tmp/.config-package.in:38356:warning: 'select' used by config symbol 'PACKAGE_libsensors' refer to undefined symbol 'PACKAGE_sysfsutils' tmp/.config-package.in:47388:warning: 'select' used by config symbol 'PACKAGE_lcd4linux-custom' refer to undefined symbol 'PACKAGE_libdpf' tmp/.config-package.in:47422:warning: 'select' used by config symbol 'PACKAGE_lcd4linux-full' refer to undefined symbol 'PACKAGE_libdpf' tmp/.config-package.in:47709:warning: 'select' used by config symbol 'PACKAGE_lm-sensors' refer to undefined symbol 'PACKAGE_sysfsutils' tmp/.config-package.in:47729:warning: 'select' used by config symbol 'PACKAGE_lm-sensors-detect' refer to undefined symbol 'PACKAGE_sysfsutils' tmp/.config-package.in:48642:warning: 'select' used by config symbol 'PACKAGE_mdadm' refer to undefined symbol 'KERNEL_DIRECT_IO' tmp/.config-package.in:50193:warning: 'select' used by config symbol 'PACKAGE_pcmciautils' refer to undefined symbol 'PACKAGE_libsysfs' tmp/.config-package.in:51349:warning: 'select' used by config symbol 'PACKAGE_tmux' refer to undefined symbol 'PACKAGE_libevent2' tmp/.config-package.in:53616:warning: 'select' used by config symbol 'PACKAGE_php5-mod-http' refer to undefined symbol 'PACKAGE_libevent2' tmp/.config-package.in:53672:warning: 'select' used by config symbol 'PACKAGE_php5-mod-libevent' refer to undefined symbol 'PACKAGE_libevent2' tmp/.config-package.in:56420:warning: 'select' used by config symbol 'PACKAGE_python-event' refer to undefined symbol 'PACKAGE_libevent2' Warning! Found recursive dependency: PACKAGE_lcd4linux-custom LCD4LINUX_CUSTOM_PLUGIN_mysql LCD4LINUX_CUSTOM_NEEDS_libmysqlclient PACKAGE_lcd4linux-tew673gru PACKAGE_lcd4linux-custom Warning! Found recursive dependency: PACKAGE_strongswan-full PACKAGE_strongswan-mod-mysql PACKAGE_strongswan-full Warning! Found recursive dependency: PACKAGE_nprobe NPROBE_MYSQL_SUPPORT PACKAGE_nprobe

Thanks, Emmerich

valinskas commented 11 years ago

config interface 'wwan'
option _orig_ifname 'wlan0'
option _orig_bridge 'false'
option proto 'static'
option ipaddr '192.168.0.124'
option netmask '255.255.255.0'

config alias 'Ethernet'
option proto 'static'
option interface 'wwan'
option ipaddr '192.168.1.187'  <--------- change to such IP address
option netmask '255.255.255.0'

Does ping work now ? Can you post an output of command::

# iptables-save

valinskas commented 11 years ago

and output of

# ifconfig -a

# route -n

emmerichoma commented 11 years ago

Hi Valinskas,

I have changed the ipaddr of Ethernet as suggested, however, the ping does still not work. Attached the three outputs as requested (sorry for the formating, seems that the copy/paste has created some loss of formating, is that a problem?):

iptables-save
# Generated by iptables-save v1.4.10 on Thu Jan 31 21:34:21 2013
*nat
:PREROUTING ACCEPT [17120:5359162]
:INPUT ACCEPT [155:25733]
:OUTPUT ACCEPT [164:10124]
:POSTROUTING ACCEPT [164:10124]
:postrouting_rule - [0:0]
:prerouting_lan - [0:0]
:prerouting_rule - [0:0]
:prerouting_wan - [0:0]
:zone_lan_nat - [0:0]
:zone_lan_prerouting - [0:0]
:zone_wan_nat - [0:0]
:zone_wan_prerouting - [0:0]
-A PREROUTING -j prerouting_rule 
-A PREROUTING -i br-lan -j zone_lan_prerouting 
-A PREROUTING -i wlan0 -j zone_wan_prerouting 
-A POSTROUTING -j postrouting_rule 
-A POSTROUTING -o br-lan -j zone_lan_nat 
-A POSTROUTING -o wlan0 -j zone_wan_nat 
-A zone_lan_prerouting -j prerouting_lan 
-A zone_wan_nat -j MASQUERADE 
-A zone_wan_prerouting -j prerouting_wan 
COMMIT
# Completed on Thu Jan 31 21:34:21 2013
# Generated by iptables-save v1.4.10 on Thu Jan 31 21:34:21 2013
*raw
:PREROUTING ACCEPT [22457:6342685]
:OUTPUT ACCEPT [309:21420]
:zone_lan_notrack - [0:0]
:zone_wan_notrack - [0:0]
-A PREROUTING -i br-lan -j zone_lan_notrack 
-A PREROUTING -i wlan0 -j zone_wan_notrack 
COMMIT
# Completed on Thu Jan 31 21:34:21 2013
# Generated by iptables-save v1.4.10 on Thu Jan 31 21:34:21 2013
*mangle
:PREROUTING ACCEPT [22457:6342685]
:INPUT ACCEPT [5492:1009256]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [309:21420]
:POSTROUTING ACCEPT [309:21420]
:qos_Default - [0:0]
:qos_Default_ct - [0:0]
:zone_wan_MSSFIX - [0:0]
-A FORWARD -j zone_wan_MSSFIX 
-A qos_Default -j CONNMARK --restore-mark --nfmask 0xff --ctmask 0xff 
-A qos_Default -m mark --mark 0x0/0xff -j qos_Default_ct 
-A qos_Default -m mark --mark 0x1/0xff -m length --length 400:65535 -j MARK --set-xmark 0x0/0xff 
-A qos_Default -m mark --mark 0x2/0xff -m length --length 800:65535 -j MARK --set-xmark 0x0/0xff 
-A qos_Default -p udp -m mark --mark 0x0/0xff -m length --length 0:500 -j MARK --set-xmark 0x2/0xff 
-A qos_Default -p icmp -j MARK --set-xmark 0x1/0xff 
-A qos_Default -p tcp -m mark --mark 0x0/0xff -m tcp --sport 1024:65535 --dport 1024:65535 -j MARK --set-xmark 0x4/0xff 
-A qos_Default -p udp -m mark --mark 0x0/0xff -m udp --sport 1024:65535 --dport 1024:65535 -j MARK --set-xmark 0x4/0xff 
-A qos_Default -p tcp -m length --length 0:128 -m mark ! --mark 0x4/0xff -m tcp --tcp-flags FIN,SYN,RST,PSH,ACK,URG SYN -j MARK --set-xmark 0x1/0xff 
-A qos_Default -p tcp -m length --length 0:128 -m mark ! --mark 0x4/0xff -m tcp --tcp-flags FIN,SYN,RST,PSH,ACK,URG ACK -j MARK --set-xmark 0x1/0xff 
-A qos_Default_ct -p tcp -m mark --mark 0x0/0xff -m tcp -m multiport --ports 22,53 -j MARK --set-xmark 0x1/0xff 
-A qos_Default_ct -p udp -m mark --mark 0x0/0xff -m udp -m multiport --ports 22,53 -j MARK --set-xmark 0x1/0xff 
-A qos_Default_ct -p tcp -m mark --mark 0x0/0xff -m tcp -m multiport --ports 20,21,25,80,110,443,993,995 -j MARK --set-xmark 0x3/0xff 
-A qos_Default_ct -p tcp -m mark --mark 0x0/0xff -m tcp -m multiport --ports 5190 -j MARK --set-xmark 0x2/0xff 
-A qos_Default_ct -p udp -m mark --mark 0x0/0xff -m udp -m multiport --ports 5190 -j MARK --set-xmark 0x2/0xff 
-A qos_Default_ct -j CONNMARK --save-mark --nfmask 0xff --ctmask 0xff 
-A zone_wan_MSSFIX -o wlan0 -p tcp -m tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu 
COMMIT
# Completed on Thu Jan 31 21:34:21 2013
# Generated by iptables-save v1.4.10 on Thu Jan 31 21:34:21 2013
*filter
:INPUT ACCEPT [5261:993268]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [0:0]
:forward - [0:0]
:forwarding_lan - [0:0]
:forwarding_rule - [0:0]
:forwarding_wan - [0:0]
:input - [0:0]
:input_lan - [0:0]
:input_rule - [0:0]
:input_wan - [0:0]
:output - [0:0]
:output_rule - [0:0]
:reject - [0:0]
:syn_flood - [0:0]
:zone_lan - [0:0]
:zone_lan_ACCEPT - [0:0]
:zone_lan_DROP - [0:0]
:zone_lan_REJECT - [0:0]
:zone_lan_forward - [0:0]
:zone_wan - [0:0]
:zone_wan_ACCEPT - [0:0]
:zone_wan_DROP - [0:0]
:zone_wan_REJECT - [0:0]
:zone_wan_forward - [0:0]
-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT 
-A INPUT -i lo -j ACCEPT 
-A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -j syn_flood 
-A INPUT -j input_rule 
-A INPUT -j input 
-A FORWARD -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT 
-A FORWARD -j forwarding_rule 
-A FORWARD -j forward 
-A FORWARD -j reject 
-A OUTPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT 
-A OUTPUT -o lo -j ACCEPT 
-A OUTPUT -j output_rule 
-A OUTPUT -j output 
-A forward -i br-lan -j zone_lan_forward 
-A forward -i wlan0 -j zone_wan_forward 
-A input -i br-lan -j zone_lan 
-A input -i wlan0 -j zone_wan 
-A output -j zone_lan_ACCEPT 
-A output -j zone_wan_ACCEPT 
-A reject -p tcp -j REJECT --reject-with tcp-reset 
-A reject -j REJECT --reject-with icmp-port-unreachable 
-A syn_flood -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -m limit --limit 25/sec --limit-burst 50 -j RETURN 
-A syn_flood -j DROP 
-A zone_lan -j input_lan 
-A zone_lan -j zone_lan_ACCEPT 
-A zone_lan_ACCEPT -o br-lan -j ACCEPT 
-A zone_lan_ACCEPT -i br-lan -j ACCEPT 
-A zone_lan_DROP -o br-lan -j DROP 
-A zone_lan_DROP -i br-lan -j DROP 
-A zone_lan_REJECT -o br-lan -j reject 
-A zone_lan_REJECT -i br-lan -j reject 
-A zone_lan_forward -j zone_wan_ACCEPT 
-A zone_lan_forward -j forwarding_lan 
-A zone_lan_forward -j zone_lan_REJECT 
-A zone_wan -p udp -m udp --dport 68 -j ACCEPT 
-A zone_wan -p icmp -m icmp --icmp-type 8 -j ACCEPT 
-A zone_wan -j input_wan 
-A zone_wan -j zone_wan_REJECT 
-A zone_wan_ACCEPT -o wlan0 -j ACCEPT 
-A zone_wan_ACCEPT -i wlan0 -j ACCEPT 
-A zone_wan_DROP -o wlan0 -j DROP 
-A zone_wan_DROP -i wlan0 -j DROP 
-A zone_wan_REJECT -o wlan0 -j reject 
-A zone_wan_REJECT -i wlan0 -j reject 
-A zone_wan_forward -j forwarding_wan 
-A zone_wan_forward -j zone_wan_REJECT 
COMMIT
# Completed on Thu Jan 31 21:34:21 2013

root@OpenWrt:/etc/config# ifconfig -a
br-lan    Link encap:Ethernet  HWaddr C4:93:00:11:0A:55  
          inet addr:192.168.0.187  Bcast:192.168.0.255  Mask:255.255.255.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:157 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:0 (0.0 B)  TX bytes:6954 (6.7 KiB)

eth0      Link encap:Ethernet  HWaddr C4:93:00:11:0A:55  
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:34478 errors:0 dropped:1171 overruns:0 frame:0
          TX packets:4123 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          RX bytes:7586900 (7.2 MiB)  TX bytes:1620586 (1.5 MiB)
          Interrupt:5 

eth0.1    Link encap:Ethernet  HWaddr C4:93:00:11:0A:55  
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:157 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:0 (0.0 B)  TX bytes:6954 (6.7 KiB)

eth0.2    Link encap:Ethernet  HWaddr C4:93:00:11:0A:55  
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:3966 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:0 (0.0 B)  TX bytes:1594332 (1.5 MiB)

ifb0      Link encap:Ethernet  HWaddr BE:ED:3C:9F:50:8B  
          BROADCAST NOARP  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:32 
          RX bytes:0 (0.0 B)  TX bytes:0 (0.0 B)

ifb1      Link encap:Ethernet  HWaddr 8E:DE:4C:EE:DA:BD  
          BROADCAST NOARP  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:32 
          RX bytes:0 (0.0 B)  TX bytes:0 (0.0 B)

lo        Link encap:Local Loopback  
          inet addr:127.0.0.1  Mask:255.0.0.0
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          RX packets:296 errors:0 dropped:0 overruns:0 frame:0
          TX packets:296 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:20340 (19.8 KiB)  TX bytes:20340 (19.8 KiB)

wlan0     Link encap:Ethernet  HWaddr C4:93:00:11:0A:50  
          inet addr:192.168.0.124  Bcast:192.168.0.255  Mask:255.255.255.0
          UP BROADCAST MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:32 
          RX bytes:0 (0.0 B)  TX bytes:0 (0.0 B)

root@OpenWrt:/etc/config# route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
0.0.0.0         192.168.0.1     0.0.0.0         UG    0      0        0 br-lan
192.168.0.0     0.0.0.0         255.255.255.0   U     0      0        0 br-lan
192.168.0.0     0.0.0.0         255.255.255.0   U     0      0        0 wlan0
root@OpenWrt:/etc/config#

Thanks, Emmerich

valinskas commented 11 years ago

Emmerich I had fixed up your post a little and it is readable now.

emmerichoma commented 11 years ago

Hi Zilvinas (sorry for confusing your name in my earlier note),

I have identified one further interesting point, ie that the ping with extension -I eth0 does work, see attachment, this did work even yesterday before I implemented your recommendation from the earlier post. Please note that this way there is still large number of losses (e.g. package number 1 and 2). 192.168.0.1 is our main router in the building, however works also with my connected PC 192.168.0.111.

root@OpenWrt:/etc/config# ping 192.168.0.1 -I eth0 PING 192.168.0.1 (192.168.0.1): 56 data bytes 64 bytes from 192.168.0.1: seq=3 ttl=64 time=2009.348 ms 64 bytes from 192.168.0.1: seq=4 ttl=64 time=1009.401 ms 64 bytes from 192.168.0.1: seq=5 ttl=64 time=9.199 ms 64 bytes from 192.168.0.1: seq=6 ttl=64 time=0.743 ms 64 bytes from 192.168.0.1: seq=7 ttl=64 time=0.744 ms 64 bytes from 192.168.0.1: seq=8 ttl=64 time=0.738 ms 64 bytes from 192.168.0.1: seq=9 ttl=64 time=0.757 ms 64 bytes from 192.168.0.1: seq=10 ttl=64 time=0.738 ms 64 bytes from 192.168.0.1: seq=11 ttl=64 time=0.735 ms 64 bytes from 192.168.0.1: seq=12 ttl=64 time=0.741 ms 64 bytes from 192.168.0.1: seq=13 ttl=64 time=0.726 ms 64 bytes from 192.168.0.1: seq=26 ttl=64 time=2001.123 ms 64 bytes from 192.168.0.1: seq=27 ttl=64 time=1001.167 ms 64 bytes from 192.168.0.1: seq=28 ttl=64 time=0.908 ms 64 bytes from 192.168.0.1: seq=29 ttl=64 time=0.728 ms 64 bytes from 192.168.0.1: seq=30 ttl=64 time=0.730 ms 64 bytes from 192.168.0.1: seq=31 ttl=64 time=0.726 ms 64 bytes from 192.168.0.1: seq=32 ttl=64 time=0.747 ms 64 bytes from 192.168.0.1: seq=33 ttl=64 time=0.667 ms 64 bytes from 192.168.0.1: seq=34 ttl=64 time=0.702 ms 64 bytes from 192.168.0.1: seq=35 ttl=64 time=0.697 ms 64 bytes from 192.168.0.1: seq=51 ttl=64 time=1.628 ms 64 bytes from 192.168.0.1: seq=52 ttl=64 time=1.076 ms 64 bytes from 192.168.0.1: seq=53 ttl=64 time=0.741 ms 64 bytes from 192.168.0.1: seq=54 ttl=64 time=0.801 ms 64 bytes from 192.168.0.1: seq=55 ttl=64 time=0.672 ms ^C --- 192.168.0.1 ping statistics --- 56 packets transmitted, 26 packets received, 53% packet loss round-trip min/avg/max = 0.667/232.576/2009.348 ms root@OpenWrt:/etc/config#

regards, Emmerich

emmerichoma commented 11 years ago

Hi Zilvinas, thanks for doing the fix, is now much easier to read. I just didn't know how to best achieve. Thanks, Emmerich

2013/2/6 Žilvinas Valinskas notifications@github.com

Emmerich I had fixed up your post a little and it is readable now.

— Reply to this email directly or view it on GitHubhttps://github.com/8devices/packages/issues/19#issuecomment-13176301.

ghost commented 11 years ago

The problem is - same subnet on multiple devices br-lan & wlan0.

emmerichoma commented 11 years ago

I have now changed the network config for wwan as well, as follows, however, no improvement, yet

cat network

config interface 'loopback' option ifname 'lo' option proto 'static' option ipaddr '127.0.0.1' option netmask '255.0.0.0'

config interface 'lan' option ifname 'eth0.1' option type 'bridge' option _orig_ifname 'eth0.1' option _orig_bridge 'true' option proto 'static' option ipaddr '192.168.0.187' option netmask '255.255.255.0' option gateway '192.168.0.1' option dns '8.8.8.8'

config interface 'wan' option ifname 'eth0.2' option proto 'dhcp'

config interface 'wwan' option _orig_ifname 'wlan0' option _orig_bridge 'false' option proto 'static' option ipaddr '192.168.1.124' <---------------------------------- changed from ...0.124 to ....1.124 option netmask '255.255.255.0'

config alias 'Ethernet' option proto 'static' option interface 'wwan' option ipaddr '192.168.1.187' <---------------------------------- changed from ...0.187 to ....1.187 option netmask '255.255.255.0'

root@OpenWrt:/etc/config# ping 192.168.0.1 PING 192.168.0.1 (192.168.0.1): 56 data bytes ^C --- 192.168.0.1 ping statistics --- 5 packets transmitted, 0 packets received, 100% packet loss

thanks, Emmerich

ghost commented 11 years ago

Do not use the same subnet for both interfaces. If you use 192.168.1.124/24 on wlan0 then on wan use something else e.g. 192.168.0.187/24

Oh, my fault. I missed that ip x.187 is alias.

emmerichoma commented 11 years ago

Hi, this change didn't make it either, seems something pretty wrong, please see attached

root@OpenWrt:/etc/config# cat network

config interface 'loopback' option ifname 'lo' option proto 'static' option ipaddr '127.0.0.1' option netmask '255.0.0.0'

config interface 'lan' option ifname 'eth0.1' option type 'bridge' option _orig_ifname 'eth0.1' option _orig_bridge 'true' option proto 'static' option ipaddr '192.168.0.187' option netmask '255.255.255.0' option gateway '192.168.0.1' option dns '8.8.8.8'

config interface 'wan' option ifname 'eth0.2' option proto 'dhcp'

config interface 'wwan' option _orig_ifname 'wlan0' option _orig_bridge 'false' option proto 'static' option ipaddr '192.168.1.124' option netmask '255.255.255.0'

config alias 'Ethernet' option proto 'static' option interface 'wwan' option ipaddr '192.168.0.187' option netmask '255.255.255.0'

root@OpenWrt:/etc/config# cd ../init.d

root@OpenWrt:/etc/init.d# ./network restart [29817.250000] br-lan: port 1(eth0.1) entered disabled state [29817.260000] device eth0.1 left promiscuous mode [29817.270000] device eth0 left promiscuous mode [29817.270000] br-lan: port 1(eth0.1) entered disabled state [29818.810000] device eth0.1 entered promiscuous mode [29818.820000] device eth0 entered promiscuous mode [29818.840000] br-lan: port 1(eth0.1) entered forwarding state [29818.840000] br-lan: port 1(eth0.1) entered forwarding state [29820.840000] br-lan: port 1(eth0.1) entered forwarding state command failed: Device or resource busy (-16) [29821.500000] phy0 -> rt2x00mac_conf_tx: Info - Configured TX queue 0 - CWmin: 5, CWmax: 10, Aifs: 2, TXop: 0. [29821.510000] phy0 -> rt2x00mac_conf_tx: Info - Configured TX queue 1 - CWmin: 5, CWmax: 10, Aifs: 2, TXop: 0. [29821.520000] phy0 -> rt2x00mac_conf_tx: Info - Configured TX queue 2 - CWmin: 5, CWmax: 10, Aifs: 2, TXop: 0. [29821.530000] phy0 -> rt2x00mac_conf_tx: Info - Configured TX queue 3 - CWmin: 5, CWmax: 10, Aifs: 2, TXop: 0. command failed: Invalid argument (-22) Successfully initialized wpa_supplicant root@OpenWrt:/etc/init.d# root@OpenWrt:/etc/init.d# ./network restart root@OpenWrt:/etc/init.d# network restart root@OpenWrt:/etc/init.d# cd ../init.d root@OpenWrt:/etc/init.d# cat network root@OpenWrt:/etc/init.d# cd ../config root@OpenWrt:/etc/init.d# cd ../init.d root@OpenWrt:/etc/init.d# ping 192.168.0.1 PING 192.168.0.1 (192.168.0.1): 56 data bytes ^C --- 192.168.0.1 ping statistics --- 5 packets transmitted, 0 packets received, 100% packet loss root@OpenWrt:/etc/init.d#

ghost commented 11 years ago

Delete these lines from configuration file. Then you should access carambola via lan ip 192.168.0.187.

config interface 'wwan'
option _orig_ifname 'wlan0'
option _orig_bridge 'false'
option proto 'static'
option ipaddr '192.168.0.124'
option netmask '255.255.255.0'
config alias 'Ethernet'
option proto 'static'
option interface 'wwan'
option ipaddr '192.168.0.187'
option netmask '255.255.255.0'

emmerichoma commented 11 years ago

Hi, I am sorry, I deleted the lines, however, still not working:

cat network

config interface 'loopback' option ifname 'lo' option proto 'static' option ipaddr '127.0.0.1' option netmask '255.0.0.0'

config interface 'lan' option ifname 'eth0.1' option type 'bridge' option _orig_ifname 'eth0.1' option _orig_bridge 'true' option proto 'static' option ipaddr '192.168.0.187' option netmask '255.255.255.0' option gateway '192.168.0.1' option dns '8.8.8.8'

config interface 'wan' option ifname 'eth0.2' option proto 'dhcp'

root@OpenWrt:/etc/config# cd ../init.d root@OpenWrt:/etc/init.d# ./network restart [32070.430000] br-lan: port 1(eth0.1) entered disabled state [32070.440000] device eth0.1 left promiscuous mode [32070.450000] device eth0 left promiscuous mode [32070.450000] br-lan: port 1(eth0.1) entered disabled state [32071.820000] device eth0.1 entered promiscuous mode [32071.830000] device eth0 entered promiscuous mode [32071.840000] br-lan: port 1(eth0.1) entered forwarding state [32071.840000] br-lan: port 1(eth0.1) entered forwarding state [32073.840000] br-lan: port 1(eth0.1) entered forwarding state command failed: Device or resource busy (-16) [32074.760000] phy0 -> rt2x00mac_conf_tx: Info - Configured TX queue 0 - CWmin: 5, CWmax: 10, Aifs: 2, TXop: 0. [32074.770000] phy0 -> rt2x00mac_conf_tx: Info - Configured TX queue 1 - CWmin: 5, CWmax: 10, Aifs: 2, TXop: 0. [32074.780000] phy0 -> rt2x00mac_conf_tx: Info - Configured TX queue 2 - CWmin: 5, CWmax: 10, Aifs: 2, TXop: 0. [32074.790000] phy0 -> rt2x00mac_conf_tx: Info - Configured TX queue 3 - CWmin: 5, CWmax: 10, Aifs: 2, TXop: 0. command failed: Invalid argument (-22) Command failed: Not found Successfully initialized wpa_supplicant Command failed: Not found root@OpenWrt:/etc/init.d# ping 192.168.0.1 PING 192.168.0.1 (192.168.0.1): 56 data bytes ^C --- 192.168.0.1 ping statistics --- 7 packets transmitted, 0 packets received, 100% packet loss root@OpenWrt:/etc/init.d# arping 192.168.0.1 ARPING to 192.168.0.1 from 192.168.0.187 via eth0 Unicast reply from 192.168.0.1 [0:26:5a:ce:91:f] 0.711ms Unicast reply from 192.168.0.1 [0:26:5a:ce:91:f] 0.454ms Unicast reply from 192.168.0.1 [0:26:5a:ce:91:f] 0.495ms Unicast reply from 192.168.0.1 [0:26:5a:ce:91:f] 0.457ms Unicast reply from 192.168.0.1 [0:26:5a:ce:91:f] 0.456ms Unicast reply from 192.168.0.1 [0:26:5a:ce:91:f] 0.459ms ^CSent 6 probe(s) (1 broadcast(s)) Received 6 reply (0 request(s), 0 broadcast(s))

Thanks, Emmerich

valinskas commented 11 years ago

I am pretty sure it's firewall that is messing with you now.

# /etc/init.d/firewall disable
# reboot

Alternatively:

# /etc/init.d/firewall stop
# ping ...

Does it work ?

emmerichoma commented 11 years ago

sorry, didn't work either. I first disabled and booted, then I went the alternative route, the result is as follows:

root@OpenWrt:/# ping 192.168.0.1 root@OpenWrt:/# etc/init.d/firewall stop root@OpenWrt:/# root@OpenWrt:/# etc/init.d/firewall stop root@OpenWrt:/# ping 192.168.0.1 PING 192.168.0.1 (192.168.0.1): 56 data bytes ^C --- 192.168.0.1 ping statistics --- 5 packets transmitted, 0 packets received, 100% packet loss root@OpenWrt:/# :

Thanks, Emmerich

valinskas commented 11 years ago

Can you send me your configuration. I will try to load it on my carambola device and then will see what is wrong. You can either:

# uci export > /tmp/emmerich.conf

And then attach that file to this ticket ? You will have to change wireless shared secret :) after that.

emmerichoma commented 11 years ago

Hi Zilvinas

I have created the file you requested, however, when dragging it to the post I am getting an error message: Unfortunately we don't support that file type yet. Try image files less than 5MB.

I have also transferred the file into an iso image, however, getting the same error message.

For that reason I am now copying the content of the config into the post, which is unfortunately very large. Did I do something wrong?

I hope this will not blow either the post or your e-mail system, however, I do not know any better way achieving what you asked, sorr.

Here comes the configuration

root@OpenWrt:/# uci export
package ahcpd

config ahcpd

package autossh

config autossh
option ssh '-i /etc/dropbear/id_rsa -N -T -R 2222:localhost:22 user@host'
option gatetime '0'
option monitorport '20000'
option poll '600'

package ddns

config service 'myddns'
option interface 'wan'
option service_name 'dyndns.org'
option domain 'mypersonaldomain.dyndns.org'
option username 'myusername'
option password 'mypassword'
option ip_source 'network'
option ip_network 'wan'
option force_interval '72'
option force_unit 'hours'
option check_interval '10'
option check_unit 'minutes'
option retry_interval '60'
option retry_unit 'seconds'

package dhcp

config dnsmasq
option domainneeded '1'
option boguspriv '1'
option localise_queries '1'
option rebind_protection '1'
option rebind_localhost '1'
option local '/lan/'
option domain 'lan'
option expandhosts '1'
option readethers '1'
option leasefile '/tmp/dhcp.leases'
option resolvfile '/tmp/resolv.conf.auto'
list server '87.118.100.175'

config dhcp 'lan'
option interface 'lan'
option start '100'
option limit '150'
option leasetime '12h'

config dhcp 'wan'
option interface 'wan'
option ignore '1'

config domain

package dropbear

config dropbear
option Port '22'
option PasswordAuth 'on'
option Interface 'lan'
option GatewayPorts 'on'

package firewall

config defaults
option syn_flood '1'
option input 'ACCEPT'
option output 'ACCEPT'
option forward 'REJECT'

config zone
option name 'lan'
option network 'lan'
option input 'ACCEPT'
option output 'ACCEPT'
option forward 'REJECT'

config zone
option name 'wan'
option input 'REJECT'
option output 'ACCEPT'
option forward 'REJECT'
option masq '1'
option mtu_fix '1'
option network 'wan wwan'

config forwarding
option src 'lan'
option dest 'wan'

config rule
option name 'Allow-DHCP-Renew'
option src 'wan'
option proto 'udp'
option dest_port '68'
option target 'ACCEPT'
option family 'ipv4'

config rule
option name 'Allow-Ping'
option src 'wan'
option proto 'icmp'
option icmp_type 'echo-request'
option family 'ipv4'
option target 'ACCEPT'

config rule
option name 'Allow-DHCPv6'
option src 'wan'
option proto 'udp'
option src_ip 'fe80::/10'
option src_port '547'
option dest_ip 'fe80::/10'
option dest_port '546'
option family 'ipv6'
option target 'ACCEPT'

config rule
option name 'Allow-ICMPv6-Input'
option src 'wan'
option proto 'icmp'
list icmp_type 'echo-request'
list icmp_type 'echo-reply'
list icmp_type 'destination-unreachable'
list icmp_type 'packet-too-big'
list icmp_type 'time-exceeded'
list icmp_type 'bad-header'
list icmp_type 'unknown-header-type'
list icmp_type 'router-solicitation'
list icmp_type 'neighbour-solicitation'
option limit '1000/sec'
option family 'ipv6'
option target 'ACCEPT'

config rule
option name 'Allow-ICMPv6-Forward'
option src 'wan'
option dest '*'
option proto 'icmp'
list icmp_type 'echo-request'
list icmp_type 'echo-reply'
list icmp_type 'destination-unreachable'
list icmp_type 'packet-too-big'
list icmp_type 'time-exceeded'
list icmp_type 'bad-header'
list icmp_type 'unknown-header-type'
option limit '1000/sec'
option family 'ipv6'
option target 'ACCEPT'

config include
option path '/etc/firewall.user'

package fstab

config global 'automount'
option from_fstab '1'
option anon_mount '1'

config global 'autoswap'
option from_fstab '1'
option anon_swap '0'

config mount
option target '/home'
option device '/dev/sda1'
option fstype 'ext4'
option options 'rw,sync'
option enabled '0'
option enabled_fsck '0'

config swap
option device '/dev/sda2'
option enabled '0'

uci: Parse error (invalid command) at line 1, byte 0
package luci

config core 'main'
option lang 'auto'
option mediaurlbase '/luci-static/openwrt.org'
option resourcebase '/luci-static/resources'

config extern 'flash_keep'
option uci '/etc/config/'
option dropbear '/etc/dropbear/'
option openvpn '/etc/openvpn/'
option passwd '/etc/passwd'
option opkg '/etc/opkg.conf'
option firewall '/etc/firewall.user'
option uploads '/lib/uci/upload/'

config internal 'languages'
option en 'English'

config internal 'sauth'
option sessionpath '/tmp/luci-sessions'
option sessiontime '3600'

config internal 'ccache'
option enable '1'

config internal 'themes'
option Bootstrap '/luci-static/bootstrap'
option OpenWrt '/luci-static/openwrt.org'

package luci_statistics

config statistics 'rrdtool'
option default_timespan '1hour'
option image_width '600'
option image_path '/tmp/rrdimg'

config statistics 'collectd'
option BaseDir '/var/run/collectd'
option Include '/etc/collectd/conf.d'
option PIDFile '/var/run/collectd.pid'
option PluginDir '/usr/lib/collectd'
option TypesDB '/usr/share/collectd/types.db'
option Interval '30'
option ReadThreads '2'

config statistics 'collectd_ping'
option enable '0'
option TTL '127'
option Interval '30'
option Hosts '127.0.0.1'

config statistics 'collectd_csv'
option enable '0'
option StoreRates '0'
option DataDir '/tmp'

config statistics 'collectd_df'
option enable '0'
option Devices '/dev/mtdblock/4'
option MountPoints '/jffs'
option FSTypes 'tmpfs'
option IgnoreSelected '0'

config statistics 'collectd_disk'
option enable '0'
option Disks 'hda1 hdb'
option IgnoreSelected '0'

config statistics 'collectd_dns'
option enable '0'
option Interfaces 'ffdhcp ff br-lan'
option IgnoreSources '127.0.0.1'

config statistics 'collectd_email'
option enable '0'
option SocketFile '/var/run/collectd/email.sock'
option SocketGroup 'nogroup'

config statistics 'collectd_exec'
option enable '0'

config statistics 'collectd_interface'
option enable '1'
option Interfaces 'br-lan br-ff'
option IgnoreSelected '0'

config statistics 'collectd_iptables'
option enable '1'

config collectd_iptables_match
option table 'nat'
option chain 'luci_fw_postrouting'
option target 'MASQUERADE'
option source '192.168.1.0/24'
option outputif 'br-ff'
option name 'Verkehr LAN-Clients'

config collectd_iptables_match
option chain 'luci_fw_postrouting'
option table 'nat'
option target 'MASQUERADE'
option source '10.61.230.0/24'
option outputif 'br-ff'
option name 'Verkehr WLAN-Clients'

config statistics 'collectd_irq'
option enable '0'
option Irqs '2 3 4 7'

config statistics 'collectd_load'
option enable '1'

config statistics 'collectd_logfile'
option enable '0'
option LogLevel 'notice'
option File '/var/log/collectd.log'
option Timestamp '1'

config statistics 'collectd_netlink'
option enable '0'
option IgnoreSelected '0'
option VerboseInterfaces 'br-lan br-ff'
option QDiscs 'br-lan br-ff'

config statistics 'collectd_network'
option enable '0'

config statistics 'collectd_processes'
option enable '1'
option Processes 'uhttpd dnsmasq dropbear'

config statistics 'collectd_tcpconns'
option enable '1'
option ListeningPorts '0'
option LocalPorts '22 80'

config statistics 'collectd_unixsock'
option enable '0'
option SocketFile '/var/run/collectd/query.sock'
option SocketGroup 'nogroup'

config statistics 'collectd_cpu'
option enable '1'

config statistics 'collectd_rrdtool'
option enable '1'
option DataDir '/tmp/rrd'
option RRARows '100'
option RRASingle '1'
option RRATimespans '1hour 1day 1week 1month 1year'

config statistics 'collectd_memory'
option enable '1'

config statistics 'collectd_conntrack'
option enable '1'

config statistics 'collectd_olsrd'
option enable '1'
option Port '2006'
option Host '127.0.0.1'

config statistics 'collectd_iwinfo'
option enable '1'

package lucid

config lucid 'main'
option pollinterval '15000'
option threadlimit '10'
option daemonize '1'
option debug '0'
list supports 'tcpserver'
list supports 'server'

config DirectoryPublisher 'webroot'
option name 'Webserver Share'
option physical '/www'

config LuciWebPublisher 'luciweb'
option name 'LuCI Webapplication'
option home '1'
list virtual '/luci'
list virtual '/cgi-bin/luci'

config tcpserver 'httpd'
option entrypoint 'luci.lucid.http'
list supports 'DirectoryPublisher'
list supports 'LuciWebPublisher'

config daemon 'http'
option slave 'httpd'
list address '80'
list publisher 'webroot'
list publisher 'luciweb'
list publisher 'statistics'
option nokeepalive '1'
option memlimit '1572864'
option enabled '1'

config daemon 'https'
option slave 'httpd'
list address '443'
list publisher 'webroot'
list publisher 'luciweb'
list publisher 'statistics'
option nokeepalive '1'
option memlimit '1572864'
option enabled '1'
option tls 'maincert'
option encryption 'enable'

config tls 'maincert'
option key '/etc/nixio/rsa_main.der'
option cert '/etc/nixio/cert_main.der'
option type 'asn1'
option generate '1'

config DirectoryPublisher 'statistics'
option name 'RRDTool Image Cache'
option physical '/tmp/rrdimg'
option virtual '/rrdimg'

package multiwan

config multiwan 'config'
option enabled '0'
option default_route 'balancer'

config interface 'wan'
option weight '10'
option health_interval '10'
option icmp_hosts 'dns'
option timeout '3'
option health_fail_retries '3'
option health_recovery_retries '5'
option failover_to 'wan2'
option dns 'auto'

config interface 'wan2'
option weight '10'
option health_interval '10'
option icmp_hosts 'gateway'
option timeout '3'
option health_fail_retries '3'
option health_recovery_retries '5'
option failover_to 'balancer'
option dns '208.67.222.222 208.67.220.220'

config mwanfw
option src '192.168.1.0/24'
option dst 'ftp.netlab7.com'
option proto 'tcp'
option ports '21'
option wanrule 'wan2'

config mwanfw
option src '192.168.0.3'
option proto 'icmp'
option wanrule 'balancer'

config mwanfw
option dst 'www.whatismyip.com'
option wanrule 'fastbalancer'

package network

config interface 'loopback'
option ifname 'lo'
option proto 'static'
option ipaddr '127.0.0.1'
option netmask '255.0.0.0'

config interface 'lan'
option ifname 'eth0.1'
option type 'bridge'
option _orig_ifname 'eth0.1'
option _orig_bridge 'true'
option proto 'static'
option ipaddr '192.168.0.187'
option netmask '255.255.255.0'
option gateway '192.168.0.1'
option dns '8.8.8.8'

config interface 'wan'
option ifname 'eth0.2'
option proto 'dhcp'

package ntpclient

config ntpserver
option hostname '0.openwrt.pool.ntp.org'
option port '123'

config ntpserver
option hostname '1.openwrt.pool.ntp.org'
option port '123'

config ntpserver
option hostname '2.openwrt.pool.ntp.org'
option port '123'

config ntpserver
option hostname '3.openwrt.pool.ntp.org'
option port '123'

config ntpdrift
option freq '0'

config ntpclient
option interval '600'

package qos

config interface 'wan'
option classgroup 'Default'
option enabled '0'
option upload '128'
option download '1024'

config classify
option target 'Priority'
option ports '22,53'

config classify
option target 'Normal'
option proto 'tcp'
option ports '20,21,25,80,110,443,993,995'

config classify
option target 'Express'
option ports '5190'

config default
option target 'Express'
option proto 'udp'
option pktsize '-500'

config reclassify
option target 'Priority'
option proto 'icmp'

config default
option target 'Bulk'
option portrange '1024-65535'

config reclassify
option target 'Priority'
option proto 'tcp'
option pktsize '-128'
option mark '!Bulk'
option tcpflags 'SYN'

config reclassify
option target 'Priority'
option proto 'tcp'
option pktsize '-128'
option mark '!Bulk'
option tcpflags 'ACK'

config classgroup 'Default'
option classes 'Priority Express Normal Bulk'
option default 'Normal'

config class 'Priority'
option packetsize '400'
option maxsize '400'
option avgrate '10'
option priority '20'

config class 'Priority_down'
option packetsize '1000'
option avgrate '10'

config class 'Express'
option packetsize '1000'
option maxsize '800'
option avgrate '50'
option priority '10'

config class 'Normal'
option packetsize '1500'
option packetdelay '100'
option avgrate '10'
option priority '5'

config class 'Normal_down'
option avgrate '20'

config class 'Bulk'
option avgrate '1'
option packetdelay '200'

package system

config system
option hostname 'OpenWrt'
option zonename 'Europe/Berlin'
option timezone 'CET-1CEST,M3.5.0,M10.5.0/3'
option conloglevel '8'
option cronloglevel '8'

config timeserver 'ntp'
list server '0.openwrt.pool.ntp.org'
list server '1.openwrt.pool.ntp.org'
list server '2.openwrt.pool.ntp.org'
list server '3.openwrt.pool.ntp.org'
option enable_server '0'

package ucitrack

config network
option init 'network'
list affects 'dhcp'
list affects 'radvd'

config wireless
list affects 'network'

config firewall
option init 'firewall'
list affects 'luci-splash'
list affects 'qos'
list affects 'miniupnpd'

config olsr
option init 'olsrd'

config dhcp
option init 'dnsmasq'

config dropbear
option init 'dropbear'

config httpd
option init 'httpd'

config fstab
option init 'fstab'

config qos
option init 'qos'

config system
option init 'led'
list affects 'luci_statistics'

config luci_splash
option init 'luci_splash'

config upnpd
option init 'miniupnpd'

config ntpclient
option init 'ntpclient'

config samba
option init 'samba'

config tinyproxy
option init 'tinyproxy'

config ahcpd
option init 'ahcpd'

config luci_statistics
option init 'luci_statistics'

package uhttpd

config uhttpd 'main'
list listen_http '0.0.0.0:80'
list listen_https '0.0.0.0:443'
option home '/www'
option rfc1918_filter '1'
option max_requests '3'
option cert '/etc/uhttpd.crt'
option key '/etc/uhttpd.key'
option cgi_prefix '/cgi-bin'
option script_timeout '60'
option network_timeout '30'
option tcp_keepalive '1'
option lua_handler '/usr/lib/lua/luci/sgi/uhttpd.lua'
option lua_prefix '/cgi-bin'

config cert 'px5g'
option days '730'
option bits '1024'
option country 'DE'
option state 'Berlin'
option location 'Berlin'
option commonname 'OpenWrt'

package wireless

config wifi-device 'radio0'
option type 'mac80211'
option macaddr 'c4:93:00:11:0a:50'
option hwmode '11ng'
option htmode 'HT20'
list ht_capab 'GF'
list ht_capab 'SHORT-GI-20'
list ht_capab 'SHORT-GI-40'
list ht_capab 'RX-STBC1'
option country '00'
option txpower '50'
option channel '1'

config wifi-iface
option ssid 'dlinkAP'
option device 'radio0'
option mode 'sta'
option network 'wwan'
option key 'sonjasonja'
option encryption 'pkt'

root@OpenWrt:/#

Thanks for your ongoing support and I am looking forward hearing from the results of your test, regards, Emmerich

valinskas commented 11 years ago

Emmerich,

Output is fine, I will copy & paste to the device tomorrow and will let you know the results. It's already too late here.

emmerichoma commented 11 years ago

Many thanks, apprechiate your support, and yes I understand its getting very late. Emmerich

emmerichoma commented 11 years ago

Hi Zilvinas,

I tried a further tweek, i.e. I added manually a route to the Routing table (route add 192.168.0.1 eth0) which resulted the ping to work, however, very unstable, and also the ping to outside (8.8.8.8) doesn't work at all, I thought this might be interesting in your Research

root@OpenWrt:/# route Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface default 192.168.0.1 0.0.0.0 UG 0 0 0 br-lan 192.168.0.0 * 255.255.255.0 U 0 0 0 br-lan 192.168.0.1 * 255.255.255.255 UH 0 0 0 eth0 root@OpenWrt:/# pin g 192.168.0.1 PING 192.168.0.1 (192.168.0.1): 56 data bytes 64 bytes from 192.168.0.1: seq=3 ttl=64 time=2003.460 ms 64 bytes from 192.168.0.1: seq=4 ttl=64 time=1003.548 ms 64 bytes from 192.168.0.1: seq=5 ttl=64 time=3.350 ms 64 bytes from 192.168.0.1: seq=6 ttl=64 time=1.013 ms 64 bytes from 192.168.0.1: seq=7 ttl=64 time=0.730 ms 64 bytes from 192.168.0.1: seq=8 ttl=64 time=0.727 ms 64 bytes from 192.168.0.1: seq=9 ttl=64 time=0.725 ms 64 bytes from 192.168.0.1: seq=10 ttl=64 time=0.740 ms 64 bytes from 192.168.0.1: seq=11 ttl=64 time=0.739 ms 64 bytes from 192.168.0.1: seq=12 ttl=64 time=0.657 ms 64 bytes from 192.168.0.1: seq=37 ttl=64 time=1001.488 ms 64 bytes from 192.168.0.1: seq=38 ttl=64 time=1.400 ms 64 bytes from 192.168.0.1: seq=39 ttl=64 time=0.748 ms 64 bytes from 192.168.0.1: seq=40 ttl=64 time=0.738 ms 64 bytes from 192.168.0.1: seq=41 ttl=64 time=0.730 ms 64 bytes from 192.168.0.1: seq=42 ttl=64 time=0.723 ms 64 bytes from 192.168.0.1: seq=43 ttl=64 time=0.672 ms 64 bytes from 192.168.0.1: seq=44 ttl=64 time=0.661 ms 64 bytes from 192.168.0.1: seq=45 ttl=64 time=0.654 ms 64 bytes from 192.168.0.1: seq=69 ttl=64 time=2000.185 ms 64 bytes from 192.168.0.1: seq=70 ttl=64 time=1000.110 ms 64 bytes from 192.168.0.1: seq=71 ttl=64 time=0.628 ms 64 bytes from 192.168.0.1: seq=72 ttl=64 time=0.715 ms 64 bytes from 192.168.0.1: seq=73 ttl=64 time=0.691 ms 64 bytes from 192.168.0.1: seq=74 ttl=64 time=0.726 ms 64 bytes from 192.168.0.1: seq=75 ttl=64 time=1.035 ms ^C --- 192.168.0.1 ping statistics --- 76 packets transmitted, 26 packets received, 65% packet loss round-trip min/avg/max = 0.628/270.292/2003.460 ms root@OpenWrt:/#

Thanks, Emmerich

emmerichoma commented 11 years ago

Hi Zilvinas,

I checked the installed packages, maybe I forgot to include something when creating this recent flash, may be you can have a look thru it and let me know whether the creation of the flash potentially needs to be expanded with more packages,

root@OpenWrt:/# opkg listing-installed autossh - 1.4b-6 base-files - 118-r33735 blkid - 2.21.2-1 block-mount - 0.2.0-9 busybox - 1.19.4-5 ddns-scripts - 1.0.0-21 dnsmasq - 2.62-2 dropbear - 2011.54-2 e2fsprogs - 1.42.4-1 fdisk - 2.21.2-1 firewall - 2-53 hotplug2 - 1.0-beta-4 ip - 3.3.0-1 iptables - 1.4.10-4 iptables-mod-conntrack-extra - 1.4.10-4 iptables-mod-filter - 1.4.10-4 iptables-mod-ipopt - 1.4.10-4 iw - 3.6-1 jshn - 2012-07-08-cca2ed6c8cdb3555fea43ff63ba1c9905dd7a164 kernel - 3.3.8-1-e19cbea35883e4beddf2093e4d26ad75 kmod-cfg80211 - 3.3.8+2012-09-07-3 kmod-crypto-aes - 3.3.8-1 kmod-crypto-arc4 - 3.3.8-1 kmod-crypto-core - 3.3.8-1 kmod-eeprom-93cx6 - 3.3.8-1 kmod-fs-vfat - 3.3.8-1 kmod-i2c-algo-bit - 3.3.8-1 kmod-i2c-core - 3.3.8-1 kmod-i2c-gpio - 3.3.8-1 kmod-ifb - 3.3.8-1 kmod-ipt-conntrack - 3.3.8-1 kmod-ipt-conntrack-extra - 3.3.8-1 kmod-ipt-core - 3.3.8-1 kmod-ipt-filter - 3.3.8-1 kmod-ipt-ipopt - 3.3.8-1 kmod-ipt-nat - 3.3.8-1 kmod-ipt-nathelper - 3.3.8-1 kmod-leds-gpio - 3.3.8-1 kmod-lib-crc-ccitt - 3.3.8-1 kmod-lib-crc-itu-t - 3.3.8-1 kmod-lib-textsearch - 3.3.8-1 kmod-lib80211 - 3.3.8+2012-09-07-3 kmod-mac80211 - 3.3.8+2012-09-07-3 kmod-nls-base - 3.3.8-1 kmod-nls-cp437 - 3.3.8-1 kmod-nls-iso8859-1 - 3.3.8-1 kmod-ppp - 3.3.8-1 kmod-pppoe - 3.3.8-1 kmod-pppox - 3.3.8-1 kmod-rt2500-usb - 3.3.8+2012-09-07-3 kmod-rt2800-lib - 3.3.8+2012-09-07-3 kmod-rt2800-pci - 3.3.8+2012-09-07-3 kmod-rt2800-usb - 3.3.8+2012-09-07-3 kmod-rt2x00-lib - 3.3.8+2012-09-07-3 kmod-rt2x00-pci - 3.3.8+2012-09-07-3 kmod-rt2x00-soc - 3.3.8+2012-09-07-3 kmod-rt2x00-usb - 3.3.8+2012-09-07-3 kmod-sched-connmark - 3.3.8-1 kmod-sched-core - 3.3.8-1 kmod-scsi-core - 3.3.8-1 kmod-usb-core - 3.3.8-1 kmod-usb-rt305x-dwc_otg - 3.3.8-1 kmod-usb-storage - 3.3.8-1 libblkid - 2.21.2-1 libblobmsg-json - 2012-07-08-cca2ed6c8cdb3555fea43ff63ba1c9905dd7a164 libc - 0.9.33.2-1 libcom_err - 1.42.4-1 libext2fs - 1.42.4-1 libgcc - 4.7-linaro-1 libip4tc - 1.4.10-4 libiwinfo - 35 libiwinfo-lua - 35 libjson - 0.9-2 liblua - 5.1.5-1 libnl-tiny - 0.1-3 libopenssl - 1.0.1c-1 libpcap - 1.1.1-2 libpthread - 0.9.33.2-1 librt - 0.9.33.2-1 libubox - 2012-07-08-cca2ed6c8cdb3555fea43ff63ba1c9905dd7a164 libubus - 2012-06-01-a62e2f8c15a65efb1a82404d8f31e3bfc1cbe7d9 libubus-lua - 2012-06-01-a62e2f8c15a65efb1a82404d8f31e3bfc1cbe7d9 libuci - 2012-03-28.1-1 libuci-lua - 2012-03-28.1-1 libuuid - 2.21.2-1 libxtables - 1.4.10-4 lua - 5.1.5-1 luci-app-ddns - trunk+svn-1 luci-app-firewall - trunk+svn-1 luci-app-ntpc - trunk+svn-1 luci-app-qos - trunk+svn-1 luci-i18n-english - trunk+svn-1 luci-lib-core - trunk+svn-1 luci-lib-ipkg - trunk+svn-1 luci-lib-lucid - trunk+svn-1 luci-lib-lucid-http - trunk+svn-1 luci-lib-nixio - trunk+svn-1 luci-lib-px5g - trunk+svn-1 luci-lib-sys - trunk+svn-1 luci-lib-web - trunk+svn-1 luci-mod-admin-core - trunk+svn-1 luci-mod-admin-full - trunk+svn-1 luci-proto-core - trunk+svn-1 luci-sgi-cgi - trunk+svn-1 luci-theme-base - trunk+svn-1 luci-theme-bootstrap - trunk+svn-1 maccalc - 1 mtd - 19 netifd - 2012-09-29-6653b861748719ab58e21a81e01d59d4d8afe10c ntpclient - 2007_365-4 openssh-keygen - 6.1p1-1 openssh-server - 6.1p1-1 openssh-sftp-client - 6.1p1-1 openssh-sftp-server - 6.1p1-1 opkg - 618-2 qos-scripts - 1.2.1-6 swap-utils - 2.21.2-1 swconfig - 10 tc - 3.3.0-1 ubus - 2012-06-01-a62e2f8c15a65efb1a82404d8f31e3bfc1cbe7d9 ubusd - 2012-06-01-a62e2f8c15a65efb1a82404d8f31e3bfc1cbe7d9 uci - 2012-03-28.1-1 udev - 173-1 wireless-tools - 29-5 wpad-mini - 20120910-1 zlib - 1.2.7-1 root@OpenWrt:/#

Many thanks, Emmerich

emmerichoma commented 11 years ago

Hi Zilvinas,

did you habe an opportunity to test my configuration, or is there any opportunity fo r me to provide more Informationen?

Thanks again and best reg a r ds, Emmerich

valinskas commented 11 years ago

Hi,

I am trying to setup a similar scenario where carambola is connecting as STA, using wpa-psk, to an access-point at home. PC is connected on LAN interface , NAT enabled on carambola WAN interface.

Is this the scenario you are trying to setup ?

emmerichoma commented 11 years ago

Hi Zilvinas, my set-up is slightly different.

my wi-fi network is wpa2 with a psk, I have a Router as Gateway to the outside (Internet) and an additional wireless access point, the Router is connected with several G-Bit switches
in my tests I have not used wifi, however, the carambola and the PC are both connected wired to an Ethernet switch.
on the carambola the LAN port is connected with the Ethernet switch, the WAN Port is not connected with anything.
I have also a serial connection from carambola to a PC which I am currently using for access to carambola (using a VTERM Software on a Windows PC)

If you recommend then I can change the test set-up e.g. for wi-fi, since in the end I want to use carambola anhow thru wi-fi, I just wanted to start as simple as possible.

NAT enabled on the carambola WAN is something I had not considered , since I did not intend to use the WAN port. My end game will be to use carambola as a controller driving devices thru its GPIOs, which I can control thru a uhttpd web server (with lua scripts) on the carambola.

Thanks for your ongoing Support, Emmerich

valinskas commented 11 years ago

Emmerich,

Does this match the network setup ?

     +-----> (PC)
     |
 +---+----+
 | switch |----- Ethernet -------------+
 +-+---+--+                            |
   |                                   |
   |                                   |
   | LAN port                          |
 +-+---------+                    +----+---+
 | carambola | <--- wireless ---> | router |<--- Internet --->
 +-+---------+                    +--------+
   |
   +-> WAN port (not connected)

Carambola's LAN port connected to Ethernet switch, PC is connect to Ethernet switch as well. According your configuration I see that Carambola is also configured to connect over Wireless to a wireless router!

Now there is a IP1 on LAN interface and IP2 on WWAN. Both IP addresses are from the same network (192.168.0.187 and 192.168.0.124). And that's your problem. Carambola now is reachable at two different paths (Either via Ethernet switch, or Wireless router).

I am not entirely sure what you are trying to achieve. It seems to me that you want to be able to access Carambola via single IP address. For example if you disconnect ethernet - carambola is reachable via Wireless connection. Or alternatively if wireless connection is gone, Carambola would be still reachable via Ethernet ... and it's always the same IP address ?

emmerichoma commented 11 years ago

Zilvinas

The picture you painted is correct.

Initialy I wanted to ignor the wireless access and only access Carambola from the PC thru Ethernet. So, what need I to so to switch off one of the channels?

Later I intend to access wireless, however, not initially, to keep things simple. Is that a correct assumption (it is more simple without wireless) or should I start with wireless right away???

In fact I only want the one way or the other, not two different paths.

Eventually, I want to access Carambola wireless and use the webserver to controll other devices thru GPIOs, so I never intend a dual access.

Thanks, ... And are you now ging into weekend ? Have Fun. ... :-). Regards from Bonn Germany, Emmerich

emmerichoma commented 11 years ago

Hi Zilvinas, is there anything else I can do at this time, as an example rebuild the flash with different parameters? The reason why I have not done further tests is because I do not have the LUCI user interface any longer and, therefore I cannot reflash the Carambola in the safe way.

In case a new reflash is the next step to do please advise which the safest route will be, e.g. through the serial line from the PC which seems to be the last chance I have?

Thanks for your help, regards, Emmerich

emmerichoma commented 11 years ago

Hi

i believe I have come closer to the Solution. By testing the Carambola with/without LAN cable connected and with Wifi disabled I could See that the Ethernet port does send successfully the PING Echo request to the Remote Host, and also the eth0 port does receive Data back thru the LAN cable, however, Not getting back to the PING program. this may be because the Port is connected with br-LAN which forwards the Data to ??? Resulting in PING Not receiving Responses from the Remote Host. does that Ring a Bell??? thanks, Emmerich

emmerichoma commented 11 years ago

Hi Zilvinas,

finally I have resolved the problem by creating a brand new network.conf file with exactly those entries I needed. Problem solved. Thanks for all support I received, Emmerich

valinskas commented 11 years ago

Congrats, you had solved it by yourself!

8devices / packages

network issue after new carambola flash #19