La xarxa guifi

Top

Guifi homepage; comuns (!!!); email fundació ; com conectarse, tutorial wikibook, preguntes i respostes, enllaços guifi, forums, llistes as guifi-dev

Serveis guifi.net, nanostation by guifi ; forums (cat) ; proxy's ; user queue, documentacio, Documents i solucions tècniques de guifi.net, Aplicacions

• Catalunya - main entry point - see horizontal menu
• Torrelles : 10.139.130.xxx ; format CNML zones & nodes
• Mataro
• Badalona : 10.139.21.xxx
• Valls : 10.90.166.xxx - Hack Lab Valls 4 proxies federats : 10.90.166.1 - Blat, 10.140.83.140 - Turba, 10.140.83.5 - Carme, 10.140.218.166 - Alcover.
• Baix Camp, Reus
• Baix Ebre :
  • Deltebre : 10.140.42.xxx - EbreCom o AuGuTe
  • L'Ampolla : Dani Munter ... "user daniel.montero"
    • camarles_pura_vida, alias "cmrlsprvd", device Ubiquiti 5GHz
    • ampolla_barranc_dardit alias "mpllbrrncdrdt", device Ubiquiti 5GHz
  • e-ports.eu, 977 588 667, oficina@e-ports.eu; 977 504 945, tecnics@e-ports.eu
• Santa Oliva : 10.139.159.xxx, 10.139.118.xxx, 10.139.202.xxx
• Hospitalet : 10.35.125.xxx - Hospitalet Wireless
• Benasque, Cerler : RibaGuifi
• Cubelles - SAT de XTA.cat o wifiPenedes
  Carles Freixa des carrer del Mig 12 carlesfreixas2018@gmail.com vol anar a CG-Jose Luis o CG-Urb-LaCreu - Castellet i Gornal
• Guifi Baix cooperativa
• Bellver, Ridolaina - 10.139.107.225 .. 10.139.107.228, 10.140.222.33 i amunt : detalls - servidor de grafiques : 54879
• Foros de guifi.net els contesta en Albert Homs, email, [tf] ;

Tots els nodes de guifi.net tenen una IP estatica, tot i que les antenes poden donar IP's via DHCP. Diverses raons per fer-ho així :

• administracio de IPs
  puc buscar tota la info de una IP amb una eina com IP search {requires Login() to guifi.net}
• control de xarxa : guifi.net fa unes grafiques maques gracies a SNMP CSV
• administracio de sortida via proxy : a cada IP se li poden assignar diversos (usuaris / claus de pas) pel proxy de la seva poblacio
• administracio tallafocs : si tinc un firewall, em cal que la IP de un client no canvii quan torni de vacances i engegi de nou la antena

Diverses maneres :

1. anem al node, as jordi travesset
2. dalt a la dreta posa "Request New Password"
3. ens demana "Nom d'usuari o adreça de correu electrònic"

Una altra :

1. anem a l'arrel
2. dalt a la dreta, piquem "iniciar sesion"
3. apareixen dos camps "username" i "password" i a sota podem veure "Request new password"
4. ens demana "Nom d'usuari o adreça de correu electrònic"

• (0) anem a guifi.net i registrar un compte de gmail
• ens arriba un email amb el usuari i la clau de pas inicial
• fer login a guifi.net amb usr/pwd

• (1) picar "Crear contingut/Create content" (menu on top, item at center) + "crear node" i afegir el nom del node, la regio/barri/zona (29844-L'Ampolla), ficar la seva ubicacio al mapa i l'alçada (camp numeric)
• o anem a afegir node :
  • posem nom al node: "LAmpollaFurone49"
  • cal el email de contacte
  • molt important : omplir "Zone" - picar alguna lletra i escollir del menu que surt
  • posem la ubicacio al mapa
  • posem l'altura de la antena sobre el terra
  • fem "check" de "Accepto les condicions"
  • piquem "Save"
• sempre podem "Editar" el node, com per canviar el seu "Node Status"
• convé mirar distancies !
• anem a la antena i fem un "scan" per veure els APs visibles

• (2) afegim un trasto nou ("dispositivo"-"add a new device") : type = "wireless device, AP"
  ens cal saber la MAC o ens la inventem
  • "adding a new radio at nom-node"
  • Device Model := Ubiquiti, airMaxM5 LBE-M5-23
  • + afegim una radio a "wireless networking section"

• (3) afegim un enllaç
  • edit device la radio picant la icona en forma de llapiç a la línia de la nova radio
  • anem a "Wireless networking section" + "Add a Radio" type "client"
  • cliquem a "1 Radio"
  • cliquem a "Radio #0"
  • anem a la seccio "Connection to AP - 0 address(es)"
  • piquem a la icona, on hi ha un missatge que diu "Create a simple (AP/client) link to an Access Point"
  • surt una llista de APs properes - n'escollim una i piquem el boto "Select device and back to main port" a baix
  • revisem les dades i piquem el boto "Save and Exit" a baix de tot

  • obtenim la IP adient al AP, sota "Connection to AP - 1 address(es)"
  • ja podem anar a la pagina principal del nostre node i veurem la IP i el enllaç
• posem la IP i el gateway a la antena : la IP ens la han donat i el GW es la IP del AP !

• anem al node
• piquem "profiles map" (mapa de perfil)
• escollim visibility cloak

• a guifi.net hem creat un node, com el 32887 d'en Carles Segura - hem posat al mapa la ubicació (coordenades) de l'antena i la seva alçada sobre el terra (molt important)
• llavors podem clicar a la solapa distancias sota el nom del node i veurem la seva visibilitat fins els super-nodes de Torrelles:
  • TDLLCementiri a 1,439 Km a 67º NE, bona visibilitat
  • TDLCanColl a 1,96 Km a 88º E, bona visibilitat
  • TDLCampanar a 2,437 Km a 78º E, sense visibilitat - hi ha un obstacle al mig
  • TDLTaborDip a 2,814 Km a 114º SE, bona visibilitat
• així, li convé enfocar l'antena cap al Cementiri doncs és on hi ha menys distancia
• de totes formes, lo millor en posar l'antena (apuntant al Tabor) i fer un "scan" per a que sigui l'antena que ens digui quin senyal reb

Passos :

1. anar a guifi.net
2. dalt a la dreta, picar "Iniciar Sessió"
3. posar el teu usuari i clau de pas
4. anar a la teva pagina : JB
5. trobar el trasto (radio anomenada "TDLfcoromines15Rd2") -
6. editar-lo : pica a la icona "llapis = editar" (tercera per la dreta)
7. quasi la primera linia es "Nom del trasto, estat" - pica el triangle per a que s'expandeixi
8. on posa "Status*", escull "Operatiu" (veure figura 1 aqui a la dreta)
9. si t'ogliga a posar una MAC, posa "00:00:00:00:00:00"
10. ara anem una mica mes avall, a "Model del trasto" - pica el triangle per a que s'expandeixi
11. a "Marca i Model" s'ha de escollir "Ubiquiti, airMax5 Rocket/Nano/Loco" per tenir "ath0" (veure figura 2)
12. per acabar, anem a baix de tot i fem "Guardar i Sortir"

Cal verificar CSV 30628

1. fem "login()" a https://guifi.net/en/
2. anem al node, as 118406
3. de les solapes que es veuen, "data devices distances expenses graphs links profiles map services users", piquem users
4. fem un usuari i una clau de pas

M clients can connect to M servers and also to AC servers
AC clients can only connect to AC servers

Our servers :

• Tabor : Rocket 5AC Lite - 500 Mbps
• Campanar : Rocket M5 - 150 Mbps

Per conectar una casa a guifi, ens cal :

1. una antena, per conectar la casa a un AP (Access Point, Punt d'Accés)
2. un router, per donar servei wifi a tota la casa

Comparacio models NanoBeam :

Comparacio models LiteBeam :

The LiteBeam M5 is a SISO device while the LiteBeam 5AC is a MIMO device.

Which product ? ... best

• NanoStation 5 Loco, la mes vella

• NanoStation Loco M5 - 70 €

• NanoBeam Ubiquiti NBE-M5-16 - 63 € {sense peça muntage poste} o 82 € "Incluye juego de montaje"
  Frecuencia de 5 GHz y modulación 64-QAM, rendimiento de 450+ Mbps y consumo de energía de 6 W

• TP-LINK TL-WA7510N - 48 €

• NanoBeam M5 19dBi - 88 €, 150 Mbps

• Ubiquiti LBE-M5-23 LiteBeam M 5GHz 23dBi airMAX - long-lange, lightweight airMAX® CPE, 100+ Mbps

• Ubiquiti ui LBE-5AC-23

• [***] Ubiquiti LiteBeam ui LBE-5AC-Gen2 - 2x2 MIMO airMAX® ac CPE, throughput 450+ Mbps, gain 23 dBi, 5 GHz, Management Radio - landa 56 €, Amazon 68 €

Atenció - els parametres importants a configurar en l'antena son :

• Wireless Mode := Station ;
• Network Mode := Router ;
• WAN network :
  • static IP
  • enable NAT := true ;
  • NAT Protocol : SIP, PPTP, FTP, RTSP "on"
  • block management access = disabled ;
  • DMZ = disabled ;
  • auto IP Aliasing = false ;
  • MAC Address Cloning = false ;
• LAN network :
  • static IP
  • enable DNS Proxy := false ; (configure DNS1 := 8.8.8.8)
    Take off DNS proxy so that it DHCPs the DNS server instead of the NAT proxy
  • enable DHCP Server := true ; (configure IP range) [1]
  • UPnP : disabled ; wikipedia

[1] Gracies, Jordi Travesset [20200507]

{201907} LiteBeam 5AC Gen2 ... 400 Mbps ! See "model comparison" a baix

{201906} Ubiquiti LBE-M5-23 LiteBeam M 5GHz 23dBi airMAX, PoE 25 V 0,2 A

quick setup guide

• specs at ui.com
• 47 € amazon. es
• 49 € pccomponentes
• 56 € landashop

Configuració per defecte:

• ip = 192.168.1.20
• usr/pwd = ubnt/ubnt
• country + language
• network mode := router ;
• wireless mode := station ;
• NAT Enable

De fet qualsevol ens val

• Eminent EM4544 - 30€

• Belkin F5D7234-4 v3 - 17 €

• Zyxel P-660HW-D1 - Timofónica, 60 €

• D-Link DIR-809, 36 €
  Router 802.11bgn, 750 Mbps (433 Mbps en la banda de 5 GHz y 300 Mbps en la banda de 2.4 GHz), 4 puertos de red RJ-45 10/100 Mbps

• TP-Link N300 TL-WR841N (19 €) -
  Router inalámbrico, MIMO 2T2R, 2.4 GHz, 300 Mbps velocidad inalambrica, dos antenas

• TP-Link TD W8970 - 70€

• TP-Link Archer C50, 33 €

• [*** see bellow ***] TP-Link N450 TL-WR940N, 21 €
  Router 802.11bgn, wifi speed 450 Mbps, antenas de 5 dBi, modo multi, 4 puertos LAN de 10 / 100 Mbps, 1 puerto WAN de 10 / 100 Mbps
  UG pdf

{201906} TP-Link N450 TL-WR940N

Amazon 21 €, datasheet

Configuracio per defecte :

• browser to 192.168.0.1 or tplinkwifi.net

• usr/pwd = admin/admin

• working mode := Access Point

  • Standard Wireless Router:
    In this mode, this device will only use WAN port to access Internet. The inner hosts can access Internet via 4 LAN ports or wireless

  • Access Point:
    In this mode, this device can be connected to a wired network and transform the wired access into wireless that multiple devices can share together, where only wired network is available.

  • Range Extender:
    In this mode, this device can copy and reinforce the existing wireless signal to extend the coverage of the signal, especially for a large space to eliminate signal-blind corners.

• network mode : Smart IP = (get DHCP)

• SSID := "TP-Link_56B6"

• security mode : "WPA/WPA2-PSK"

• wireless password := "nnmmppqq"

• DHCP disabled

Hem de recordar :

• a la xarxa de casa, el DHCP server ha de estar a la antena, no pas al router
• configuracion antena
• configuracio router

Top

Tots els nodes de Torrelles (188 nodes el 20170311), Baix Llobregat (665 nodes el 20170311).

Torrelles homepage, Google group, foro, email incidencies, e_mails, nif(G66268384)

Si no et funciona ho dius al GoogleGroup i posa el IP de la teva antena. En Lorenzo s'ho va mirant.

La "mask" a Torrelles sempre és 255.255.255.224, "FF.FF.FF.E0" ! Broadcast ?

Els Servidor de noms DNS de Torrelles son

• 30626, TDLAjuntamentSrvr1 / 10.139.130.34
• 31999, TDLLPuntOmnia / 10.139.238.194

Els proxy de Torrelles, 22900, son

• 30627, TDLAjuntamentSrvr1 / 10.139.130.34 (proxy.torrelles.guifi.net)
• 32000, TDLLPuntOmnia / 10.139.238.194 (puntomnia.torrelles.guifi.net)

També tenim 2 "SNP graph server" :

• 30628, TDLAjuntamentSrvr1 (url)
• 31998, TDLLPuntOmnia (url)

Servidors NT : 10.228.203.104

Contacte : Daniel Sanchez; Edgar, Edgar

e1001 administració Torrelles : eeeiii, Israel Antúnez@eeeiii.net, Carlos Vargas@eeeiii.net, samsitper : cementiri o campanar

Esquema Torrelles (###)

Contacta amb Interbaix, potser pot donar-vos servei: ms2k@interbaix.com, 93 654 82 08 / 09
A/At. Josep Alacid, 625 422 876 gMail Jacint Verdaguer, 144 ; Sant Boi de Llobregat ;

20220704 -

Els nostre 4 super-nodes (2010 i 2017) son :

• Tabor - 41.344446, 1.983605
• Campanar - 41.359242, 1.981439
• Cementiri (solar) - 41.359868, 1.968701
• Can Coll - 41.355305, 1.976126

Tenim 32 clients (20171031) : status - ping every 4 sec, HTML page every 5 min, FTP every 10 min, 3 cnt / 10 min.

Top

See "scan_tronc.sh" at

• //T60/home/sebas/eines/tronc/
• //pomnia/home/mate/eines/tronc/
• //mars/home/nicolau/eines/tronc/

El nostre enllaç mes critic és sens dubte la conexió del Tabor (172.25.66.2) al Campanar (172.25.66.3). Son 2 antenes Ubiquity PowerBeam 5AC 300, model PBE-5AC-300 - data sheet

Tabor firmware WA.V8.5.7, MAC 44:D9:E7:AE:2F:27, Ancho del Canal 80 MHz
Modo Inalambrico := Access Point PtP
Control Frequency List : 5540, 5545, 5550, 5555, 5560, 5700
Te AirMagic ! The airMagic tool is available only if the Wireless Mode is set to an "AP mode".

Campanar firmware WA.V8.5.4, MAC 44:D9:E7:AE:2E:FB, Ancho del Canal automatico 20/40/80 MHz
Modo Inalambrico := Station PtP
Control Frequency Scan List : 5180, 5185, 5190, 5195, 5200, 5205, 5210, 5215, 5220, 5225, 5230, 5235, 5240, 5260, 5265, 5270, 5275, 5280, 5285, 5290, 5295, 5300, 5305, 5310, 5315, 5320, 5500, 5505, 5510, 5515, 5520, 5525, 5530, 5535, 5540, 5545, 5550, 5555, 5560, 5565, 5570, 5575, 5580, 5585, 5590, 5595, 5600, 5605, 5610, 5615, 5620, 5625, 5630, 5635, 5640, 5645, 5650, 5655, 5660, 5665, 5670, 5675, 5680, 5685, 5690, 5695, 5700, 5740, 5745, 5750, 5755, 5760, 5765, 5770, 5775, 5780, 5785, 5790, 5795, 5800, 5805, 5810, 5815, 5820, 5825, 5830, 5835, 5840, 5845, 5850, 5855, 5860

Available channel widths depend on the selected Wireless Mode. Here are the options for each mode (AirOs v8 UG):

• Access Point PTP Supported wireless channel spectrum widths: 80 MHz, 60 MHz*, 50 MHz, 40 MHz, 30 MHz*, 20 MHz, and 10 MHz.
• Station PTP Supported wireless channel spectrum widths: Auto 20/40/80 MHz (recommended), 60 MHz*, 50 MHz, 30 MHz*, and 10 MHz.

Com carregar el enllaç ? Puc fer

O baixar un fitxer de 100 MB i mesurar el temps

20190126 - posem al Campanar una LiteBeam LBE 5AC Gen2 per enllaçar la xarxa guifi de Torrelles a la fibra óptica de Can Sostres. Proporciona un guany de 23 dBi i una velocitat de fins a 450 Mbps per només 8 W (24 V, 0,3 A) a 5 GHz - data sheet, qsg

20190126 - posem cable a Can Sostres per posar-hi la "parella" de l'antena del Campanar

Tenim un parell de LiteBeam per ficar un enllaç nou del Tabor a Can Sostres.

Comprem en Albert una OmniTIK 5 PoE i posem un "hot-spot" a Can Sostres. Porta un PoE de 24 V i 2,5 A (60 W)

31/07/2010 :

wifi home, 20151025 :

Un router curiós que veig vora l'estanc : guifi.net-TD-Rectoria, MAC 00:23:cd:1a:6c:d4, TP-Link

No som ningú !

Les IPs que ens dona guifi.net pels nostres clients son del rang 10.139.130.xxx i en diem "publiques"

A la xarxa guifi de Torrelles els routers tenen adreces 10.139.xx.xx, aixi que es poden accedir amb un SSH normal.

Les antenes de infraestructura interna, en canvi, tenen IPs internes com 172.25.xx.xx, a les que nomes es pot accedir via proxy, i en diem "privades"
Les trobades a 20180214 son :

W500 :

També :

Tambe /home/mate/eines/curl_i_wget/5_ssh.sh or //T60/home/sebas/eines/curl_i_wget/5_ssh.sh :

Ha de ser un enllaç d'aquestos :

El node Bellamar de Castelldefels l'administra en Bogdan - li escric {20190103}
20190105 - parla de retirar "Tabor-Castelldefels y Tabor-Corbera De Llobregat"

Al Tabor (PTP Bridge CPE) veiem "guifi.net-wds_TDL-ZF, DC.9F.DB.48.60.C9"

Hi ha un node que va a Sant Just : TDL-Torre, amb radio 10.146.6.2, switch 10.146.6.1. A 7,6 Km te 149102-SJD-RosaLuxemburg (SJD-RosaLuxemburg-RD-TDL-Torre) 172.25.36.162/172.25.36.161, 10.146.6.3/23

SJD-RosaLuxemburg, i el porta MEX Telecom - info@mextelecom.cat {email 20190111} - Enric Gomez tf 666 808 306.
Enric Gomez <enric.gomez@everywan.com>

Edgar Ramon, Albert Romagosa, Jordi Buzon.

Vocals : Carles, Mate, Sebas, Simo.

Juny 2018 : ho deix en Mate i en Albert, jo em poso de secretari i en Aleix de vocal.

La nostra "homepage" és xarxatorrelles.cat [***] - en un Plesk Onyx 17.5.3, i el "tema activo" és "Twenty Seventeen"

Hauriem de tenir quelcom com ... {compte : contactes email}

All nodes, all socis {own job}

Banc de Sabadell, IBAN: ES47 0081 0122 2800 0113 9623 / BSAB ESBB.

Quota 2016 : 40,00 € {pagat Febrer}

2017 (pagat 8 de juny) : us recordem que l'ingrés (40 €, uota 2017) s'ha de realitzar abans del dia 30/06/2017.
En l'ingrés, s'ha de fer constar un adreça de correu associada a la persona que obté l'accés a la xarxa.
El justificant de l'ingrés es comunicarà per correu electrònic al tresorer a l'adreça xarxatorrelles.tresorer@gmail.com

2019 (pagat Desembre 2018) - es imprescindible fer l'ingrés (40 €, quota 2019) abans del dia 10/02/2019.

2020 - pagat 20200419, 40€

A noip tenim xarxatorrelles.ddns.net

Falta obrir ports o configurar una VPN.

20170725, màgicament :

Eines per mesurar la velocitat

{201410} 8 Mbps baixada, 12 Mbps pujada
{201411} 5 Mbps baixada, 8 Mbps pujada
{20141207, 08h} 6,5 Mbps baixada, 8 Mbps pujada. Pero baixo fitxers a 300 KBps = 2,4 Mbps.
{20150814, 07:05} 5968 kbps = 746 KB/sec baixada, 8776 kbps = 1097 KB/sec pujada. Ping: 18 ms. Jitter: 24 ms.
{20151214, 07:35} 4,0 Mbps baixada, 9,7 Mbps pujada
{20160216, 07:35} 3,8 Mbps baixada, 4,0 Mbps pujada
{20160220, 12:20} 1,9 Mbps baixada, 8,6 Mbps pujada
{20160311, 07:30} 16 Mbps baixada, 12 Mbps pujada
{20160316, 21:00} 3,7 Mbps baixada, 5,7 Mbps pujada
{20160320, 22:30} 140 / 32 Mbps
{20160321, 07:50} 81 / 32 Mbps
{20160518, 09:10} 5 / 3 Mbps [FO]
{20170201, 10:55} 11 / 3 Mbps [Tfca 60/18]
{20170311, 10:01} 83 / 31 [fo tfca 82/79]
{20170511, 14:21} [FO 98 / 96]

Top

Hem de posar al navegador el Proxy del super-node (controlador) al que ens conectem.
En el meu cas, 10.139.130.65:3128, doncs entro pel Campanar.
Pel Tabor, 10.138.238.1:3128.

Per entrar un browser (des una IP com 10.139.130.117) a una antena amb una IP del rang "172.25.xx.xx" hem de fer servir un Proxy apuntant al controlador, al router :

Només n'hi ha a les antenes noves, és a dir a les "DipRocket", as Tabor ST3/AP3
És troba a

• solapa "Wireless"
• a baix de tot, sota "MAC ACL Activar", picar botó "ACL"

Direct url :

1. fem logon a la antena, as Tabor AP3
2. a la solapa "Main", a baix, sota "Monitor", piquem "Stations" - veiem MAC, IP, Device Name i podem fer "Kick"

1. fem logon al controlador amb WebFig
2. escollim "IP" a l'esquerra i després "Neighbors"

Aqui i aqui diu que Rocket M5 és MIMO !

El rang de IPs dels clients del Tabor :

El rang de IPs dels clients de Can Coll :

El rang de IPs dels clients del Cementiri :

El rang de IPs dels clients del Campanar :

La comanda màgica és "/ip address print"

Top

El Tabor te

• # 6 - enllaç al Cementiri
• # 11 - enllaç al Campanar
• Can Coll ?
• Can Sostres ?

{ WebFig(10.139.130.129) + IP + Addresses } or [ putty(10.139.130.129) + /ip address print]

Dubte : com es que puc fer "wget()" de Tabor_ST1, ip = 172.25.51.182

Pero no puc accedir a Tabor_ST1 amb "ping()", ip = 10.139.130.129

Igual de misteriós és

El DipST2 es un RB20 11 UiAS-RM :

• 1U rackmount
• 5xEthernet
• 5xGigabit Ethernet
• USB
• LCD
• PoE out on port 10 - can power other PoE capable devices with the same voltage as applied to the unit. Maximum load on the port is 500mA
• 600 MHz CPU
• 128 MB RAM
• RouterOS L5
• DC jack input voltage 8-30 V
• max power consumption 28 W
• max power consumption without attachments 6 W

The switch chip used for ports ether6-ether10 only has FastEthernet (100 Mbit/s) ports

Te 10 boques RJ45 ... i MAC D4:CA:6D:60:EB:8B (? 4C:5E:0C:49:92:9B i :A5 ?)

Es un Mikrotik-Routerboard 1100, RouterOSv6.x {blanc, a dalt de tot}, amb MAC E4:8D:8C:1F:47:25

Les especs del RB 1100 AH son :

• high speed rackmount
• 484000pps
• 13 Gigabit ports
• 1 Ghz CPU
• 2 GB RAM
• Max power consumption without attachments 20W

{ WebFig(10.138.238.1) + IP + Addresses } or [ putty(10.138.238.1) + /ip address print detail + "sort" manually ]

El Tabor te 6 antenes amb AirOs :

Filtre de SSH que trobo a ST2 :

El 15 de desembre de 2018 posem :

• PoE 38 v 0,5 a
• 2x Rocket R5AC-lite

A la antena "Rocket 5AC Lite" (Device Name "TDLTaborDipRocketRd2", SSID "xarxaTorrelles-TaborAP2") amb IP 172.25.38.190 hi ha (20190721) "Station List" :

El Gateway al uTik "ether7" és 10.139.239.65/172.25.38.189

A la antena "Rocket M5" (Device Name "TDLTaborDipRocketRd3", SSID "xarxaTorrelles-TaborAP3") amb IP 172.25.39.118 tenim (20190701) :

El Gateway al uTik "ether8" és 10.139.239.97/172.25.39.117

Compte que Tabor AP3 té ACL amb les MACs !

Top

Deix de funcionar el enllaç amb el Cementiri.

Comprem Ubiquiti LBE-M5-23 50 €

Can Coll te 1 controlador amb 2 antenes per clients i una antena direccional - the IPs are :

Les conexions de Can Coll explicades a guifi.net son velles :

Top

El Cementiri te 1 controlador i 2 antenes. Les IPs son :

El consum del conjunt és aprox :

La conexio amb el Tabor explicada a guifi.net es vella :

The actual one is :

El conexionat electric és especial doncs va amb un panel solar :

Panel solar specs (at STC 1000 W/m2, AM 1,5, cell T 25º) :

• Fabricant : Mitsubishi Electric
• Model : PV-TE125MF5N, data sheet
• Max Power : 125 W
• Max Power voltage : 17,3 V
• Max Power current : 7,23 A

El regulador es un Foton RAS 300

Si som vora les antenes del Cementiri, podem provar que el node funciona aixi :

1. engeguem el wifi del telefon i ens conectem a AP1 [IP 10.139.130.161, ssid "guifi.net-TDLLCmntrAP1"] o AP2
2. quina IP tenim ?
3. obrim un navegador i anem a
   • 10.139.238.193, que es el router del Campanar que apunta a Can Sostres
   • o be a la APP estat socis que hi ha al punt omnia

Comprovem el cami : telèfon -> AP1 -> Cementiri -> Tabor -> Campanar -> pomnia

Comprem mANTBox 15s, 5GHz 120 degree 15dBi dual polarization sector Integrated antenna with 720Mhz CPU, 128MB RAM, SFP, PSU and PoE - 135€

Nova bateria del EcoTaller :

• voltatge nominal, 12 V
• capacitat de carrega, 35 Ah
• potencia de descarrega, 300 A

Las baterías de ciclo profundo se caracterizan por su gran capacidad de descargas completas. De hecho soportan cientos de descargas completas, lo cual no es habitual en otros tipos de baterías.

Existen 2 tipos de reguladores de carga, el PWM o convencional, y el MPPT o maximizador.

• PWN - tension panel = tension bateria. A mayor tension, desconexion y perdida rendimiento. Mas barato.
• MPTT - tension panel >> tension bateria, o panel > 200 W. Mas caro.

Botiga de'n Ramon : Teknosolar

Compra 20180729 : (landatel/landashop)

• bateria AGM 100Ah 12V Enersys 12TD100F4 - 185€
• regulador de carga : charge controller 20A 12/24V LCD, 40A PWM - 39€

Trafo sense led verd : reset protecció del regulador

Tenim :

Top

El Campanar te 2 controladors i 7 antenes. Sembla que ST2 ja no existeix {2010}.

El controlador ST1 es un Mikrotik RB3011 UiAD-RM.

• 1U rackmount
• 10x Gigabit Ethernet
• SFP
• USB 3.0
• LCD
• PoE out on port 10
• 2x 1.4 GHz CPU
• 1 GB RAM
• RouterOS L5

ST1 te MAC E4.8D.8C.0A.3D.8F

Les 6 conexions (5 antenes i un cable) que hi ha son :

• antena enllaç al Tabor
• 4 APs per conexió dels clients
• cable de xarxa del Campanar al Ajuntament
• --- enllaç al Punt Omnia (clients no-socis)
• --- enllaç al Ajuntament -> enllaç al Punt Omnia (clients socis)

Accés al uTik :

• amb un browser a 10.139.130.97
• $ ssh user@10.139.130.97

MACs de les boques :

Configuracio ST1 20210510 :

Fem un bridge (de nom "bridge-Fibra") amb les boques ether9 i ether10 :

No se per a que serveix "bridge1" ... boques 1-2-7-9 - administracio ? recollia ports no fets servir ?

Podem fer ping de 10.139.130.97 (ether7, AP3) a 192.168.1.254, ether10, sortida del cable :

"Protocol Mode" := (none, STP, MSTP) RSTP

Arribem al router :

Oldie {2010}

El encaminament a 20211210 és :

An oldie was :

El detall de les antenes és :

Els models de les antenes del Campanar son :

• link a Tabor - PowerBeam 5AC 300 - UNMS
• link al Ajuntament, TDLCampanarLocoRd2 - NanoStation loco M5, XW.v6.1.4 comp 32113
• link a pomnia, wds-TDLCmpnPtOmnia - NanoStation5 Loco (sense M), XS5.ar2313.v4.0.4.5074.150724.1344
• link a Can Sostres : Ubiquiti LBE-5AC-GEN2 LiteBeam AC 5GHz - WA.V8.6.2
• AP1, TDLCampanarRocketRd1 - Rocket M5 - XW v6.1.11
• AP2, TDLCampanarRocketRd2 - Rocket M5
• AP3, TDLCampanarRocketRd3 - Rocket M5
• AP4, TDLCampanarRocketRd4 - Rocket M5

Aixi, per accedir de un client del Campanar a un client del Tabor, la trassa és :

Sonoff - wifi smart switch

Sonoff, 9 €

Requiere

• conexión a internet de la aplicación eWelink (en el smartphone)
• conexio wifi pel aparell de commutacio

Sonoff Basic WiFi electrical switch transmits data to a cloud platform through the WiFi Router, which enables users to remotely control all the connected appliances, via the mobile application eWeLink. The server is Amazon AWS global server

Deix de funcionar AP3. Canvio el PoE pero el LED #7 no s'encén.

• PoE model GP-B240-100, treu 24v, 1A - "POE-24-24W"
• (antena) Antena Ubiquiti Networks AM-5G17-90 17.1 dBi, 82 €
• (radio) Punto de Acceso Ubiquiti Networks Rocket M5 300Mbit/s, landa 90 €, amazon 87 €, Rocket M datasheet

Sembla que

• les antenes noves (NanoBeam M5 16, rodones) es conecten ok

• les antenes antigues (NanoStation 5 "Loco") no es conecten (no poden anar a 40 MHz de ample de canal)

Solucio :

• antena Nanostation Loco M5, pujar firmware XW 6.1.8 : direct, [local]

• read about compatibility between a legacy station and an airMAX M access point

  • upgrade airMAX M AP version 6.x

  • upgrade the Legacy station to version 4.x from here. For NS5 Loco latest version is XS5.ar2313.v4.0.4.5074.150724.1344.bin [local]

• read about "Compatibility between Non-Ubiquiti radios and an airMAX M access point"
  • navigate to the airMAX AP's GUI.
  • navigate to the airMAX tab.
  • disable airMAX protocol on airMAX.
  • click "Change" then "Apply."
  • now the airMAX M AP will use the 802.11 CSMA/CA protocol to work with other stations.
  • navigate to the Wireless page and ensure that "Channel Shifting" is disabled.

• airMAX "Help" at Rocket M5 :

  For compatibility, legacy or 802.11 a/b/g devices should use legacy firmware with airMAX support, such as airOS firmware v4.0. Legacy clients can only work as airMAX clients with the M Series device acting as an airMAX AP.

• Set a frequency, don't leave it on Auto. Pick a frequency that your device can use. Try 20MHz or 40MHz channel width.

Deix de funcionar AP1 i AP4. Torna AP1 pero cau al cap de un temps i cal reiniciar tot.

20190119 - canviem les radios de AP1 i AP4

El AP1 del Campanar es penja amb regularitat i cal reiniciar. Pensem de posar un rellotge com 1614775O8JPLL, 13 €
Jordi rev.de

20180521 - comprem KWE-TM01-EU de NinGbo Cowell Electronic Technology Co Ltd, Goodaftersales@outlook.com

Monitoritzacio : /home/mate/eines/monit_campanar/monit_campanar.py : s'atura cada dia de 04:11 a 04:13 am

Deix de funcionar internet i el router de Tfca esta OK.

Decidim canviar el Mikrotik RB30 11 UiAD-RM per el RB20 11 UiAS-RM (ex ST2 del Tabor)

Canviem el conector del cable del router

Tenim AirOS a

Les antenes que no tenen AirOS son :

Fem un wget() de una llista de IPs i intentem esbrinar que hi ha segons la resposta :

Proxy = Campanar 10.139.130.65:3128

Al "punt-omnia" (fent servir el proxy pxy_campanar = "http://10.139.130.65:3128") tenim

Genera qq_127.html, que enviem via FTP a un servidor public.

Podeu veure el resultat aqui qq_127.html

Eina en Delphi :

Cal afegir-hi el Punt Omnia i en node del Ajuntament (### pend ###)

Podeu veure el resultat aqui pagina.html

Ara be, igual en lloc de "ping" podem fer servir wget o curl (dead ?) or node-libcurl ... per fiabilitat

I usually use REQUEST, its a simplified but powerful HTTP client for node.js
It can be found in NPM : "npm install request"

Here is a usage sample:

Eina en bash + rexx

Podeu veure el resultat aqui conectats.html

Accedim un "RouterOS WebFig v6.38.1" via

Manual Webfig & TOC -> Help Mikrotik docs [***]

See commands

El Ajuntament de Torrelles te un node de guifi : el 30625 amb 4 devices :

Per algun lloc hi ha una antena: TDLAjuntamentST : wds-TDLAjntmntCmpnr 172.25.39.41/30 -> .42, pero no funcionen {20171212}

El tf fixe és el 93 461 34 15 i s'administra externament amb Alejandra o internament via url(192.168.1.1) amb proxy(10.139.130.65:3128)

En Josep Munmany de l'Ajuntament sap on és el router {tf 637 55 77 01, e1001, te la IP 10.139.238.131 de guifi pero no es soci}

El regidor de Noves Tecnologies (que es troba dins de Recursos Interns) es diu

• 2018 - Miquel Yuste, email
• 2019 - Jose Gallardo

El informàtic del Ajuntament és en Armengol {tf 607.690.293/669.343.160}
armengol.villaro@torrelles.cat, villarosa@diba.cat, oldie

El campanar és d'en Mossen Juan Antonio Vargas, [618 354 530], però les claus son a l'Ajuntament. La Teresa (llogatera de la parroquia) te les darreres claus.

Des la biblioteca

No m'arriba. A veure ara :

Top

Tots els nodes, buscador per IP {login first}

Al Tabor AP3 veiem

El device es diu "SantNicolau" pero la MAC es del node "CanNicolau" ...

E1001 Jordi.

Mele, 10.139.202.202/27

Tot Badalona, Albertinyu : Llibertat15, BDNLlbrtt15Rd1 = 10.139.17.167 ; es conecta a BDNmartiPujol301, 10.139.17.161 ;
El seu company és en José M Molés - li escric {20190103}

guifi·net al Barcelonès : aquesta és la pàgina web de la xarxa guifi·net a la comarca del Barcelonès. Si vols més informació, per participar-hi, si necessites ajuda, per plantejar dubtes o si tens qualsevol qüestió pots contactar amb la comunitat de guifi·net al Barcelonès de les següents formes:

• Presencialment: els dijous de 19:00 a 21:00 h ens reunim a les trobades setmanals, anomenades GuifiLabs. Pots trobar més informació sobre els GuifiLabs aquí, així com el calendari de l'associació eXO - Expansió Xarxa Oberta.
• Llistes de correu Per apuntar-t'hi i enviar missatges: subscriu-te a https://llistes.guifi.net/sympa/info/guifi-barcelones
  Per veure l'arxiu: entra a https://llistes.guifi.net/sympa/arc/guifi-barcelones
• Xat: sovint som a https://xat.guifi.net
  Fòrum: (en desús) http://guifi.net/forum

RiuMorell a RiuMar, Agusti : a Riumar no utilizem Nanostations sino SXT 5HPnD a 5 Ghz de Mikrotik. Pots connectar-te a la xarxa amb un sencill scan desde l'antena. Forum Mikrotik.

Mario Figueres Casanova, tf 636.878.611 (ebre.cat)

Comunitat Lluis (201709) : Instalador : Tecnosistems - Mario. Carrer Bonaire 66. 43740 Mora d'Ebre. 628 368 728 o 693 573 415, email.
Conexio : Eurona Wireless Telecom S.A. - carrer Agricultura, 106. 08019 Barcelona. Tf 901 444 888, email, homepage

Node Lluis Crespo

Ino

Node Toni, a L'Ampolla , Marti Batalla
Millor contactar directament amb la oficina dels mantenidors de l'antena a la qual et vols connectar : Delinternet Telecom, 877 990 500 o 600 606 570.
Associació d'usuaris Guifi de les Terres de l'Ebre, email, tf 977 44 28 23 / 636 11 13 84

• cost de l’antena (el preu pot variar des dels 80€ als 120€ +iva en funció del model triat per la distància al supernode)
• cost del router per als socis (sobre els 30€ +iva, aconsellem el model tplink 841n)

A la zona que em comentes, nosaltres no tenim cobertura. Hauries de parlar en l'empresa ebrecom que si que en té - tf 977 077 422, info@ebrecom.com, c Jaume Ferran i Clua número 3, Tortosa 43500 Tarragona

L'antena ha de ser Ubiquiti AC, recomanem Ubiquiti PBE-5AC-400. El router TP-Link WR841N. Per a que funcioni la nostra connexió posem un firmware personalitzat al router, basat en OpenWRT. Per tenir accés a Internet de franc no hi ha cap opció en aquesta zona. Per connectar-se al node hi ha un apadrinament obligatori de 20€ mensuals que ja inclouen la connexió a Internet de fins a 20Mbps simètrics.

En Jordi em deixa un router Comtrend HG536+ o CT-536+ {nov 2010}

Com que la antena agafa la IP 192.168.1.1 des de guifi.net, doncs li posem 192.168.1.2 al router !
Li dones la ip per ex: 192.168.1.2 al comtrend i li poses els dns 192.168.1.1 (nano), desactives el dhcp del comtrend i deixes activat el dhcp de la nano. Despres has de anar a l'apartat quality of service del comtrend i eliminar el que hi ha, per tal de poder utilitzar els 4 ports lan, ja que dos son per iptv i hg. {ignasiferrer@guifi.net}
imatge.

Ports especials (2)
No es necesario que metas ningún firmware anterior. Simplemente has de entrar en la configuración del router > Advanced Setup > Wan y verás 2 conexiones. Deja la pppoe_8_35 y borra la otra. En cuanto salves los cambios y rebotes el router, tendrás los puertos 3 y 4 listos para funcionar con normalidad. Consejo: si haces un backup del router antes de eliminar esa conexión wan, siempre podrás restaurar el router a su punto inicial. Te lo digo por si más adelante quisieras usar tv o voip.

20150106 : mac = 40.4A.03.AF.5B.FB {SAA}

Alimentacio : 16 V, 1 A

Per guifi:

• Web Encryption := WEP-128 -> DISABLE
• ZyXEL "Web Configurator" + "Advanced Setup" + "Wireless LAN" + "Wireless" : Enable Wireless LAN
• LAN -> LAN Setup -> DHCP := none ;

Firmware original (no "capat" per tfca) : pàgina del fabricant.
Upgrade procedure, download

NanoBeam M5 amb firmware XW v6.1.7 porta UNMS

Campanar AP1 : wss://10.139.238.194:8443, Campanar AP4 : wss://10.139.238.194:8443

With the router powered on, push "Reset" micro-button for about 30 seconds.

Default user/pwd = 1234/1234 ;

• Main menu
• LAN -> LAN setup -> DHCP := none ;
• IP = 192.168.1.2 ;
• Wireless LAN
• turn off static wep key :
• OFF enable key autogeneration and wep encryption
• 802.1x authentication
• key manager protocol = WPA-PSK ;
• pre-shared key = your-phrase-here

• wireless network properties
• security type = WPA-Personal ; {shows as WPA-PSK}
• encryption type = TKIP ;
• network secutiry key = your-phrase-here

Tools : Web Tool Hub, Proxy Server Privacy, Checking Tools

201506 - xarxa detectada :

NetCraft i nmap :

201507 - 88.0.20.17

20151209 - 2.136.45.31

20160107 - 81.32.151.177. Using Tor I get 216.17.99.183, then 158.130.0.242 in 3 minutes.

SpeedTest o WhatIsMyIP diu :

El meu node és el 33491 i soc el usuari 14116.

La meva IP interna : 10.139.130.69/27 al AP1 del Campanar {gateway 10.139.130.65, DNS 10.139.130.34}
{20160307} Paso a IP 10.139.130.117/27 al AP3 del Campanar {gateway 10.139.130.97, dns 8.8.8.8}

Els meus documents : T430\\MisCosas\Guifi.net\ o W500\\miscosas\guifi\Torrelles\Sebas\

• guifi_a_Torrelles_sag.docx {sagpdf} NS5 (rectangular)
• $_20161014_NanoBeam_M5.docx {sagpdf} NanoBeam M5 (rodona), v 1.3, 20190110

20101108 - compro una NanoStation 5 "Loco", NS5 from now on - data sheet : 5 Ghz, max data rate "54 Mbps", this is IEEE 802.11a

Antena client wifi 5 GHz nanostation5 loco; 13 dBi, 150 mW, 5 GHz, 802.11 a, 54 Mbps, 10 Km range.
TX Power: max. 24dBm, +/-2dB ; RX Sensitivity: min. -94dBm +/-2dB
WimaCom 65 € amb IVA ; Cilctel 68 € - [2x PLC = 80 €] ; Setup Informatica 78 € ;

Default IP = 192.168.1.20 ; usr/pwd = ubnt
(root/guifi after OneTouch cfg, file "unsolclick.cfg"; also nano5's IP is 192.168.1.1 after this moment, so you'd better change router IP to 192.168.1.2);
OpSys = AiROS v 3.5 ; MAC = (1012L) 00:15:6D:18:C8:95 ; firmware "XS5.ar2313.v3.5.4494.091109.1459"

El fitxer de configuracio de la NS5 s'agafa d'aqui : anar al node, escollir solapa "Trastos", escollir "unsolclic" i obrir enllaç.
En fem un backup aqui : (C:\sebas\miscosas\guifi\$_NS5) NodeSebastiaNetRd1_AP1.cfg i NodeSebastiaNetRd1_AP3.cfg

Tot el que es pot fer amb una NanoStation loco ("2" o "5") ... Acacha [*****] - all menus, IP (192.168.1.20), etc etc

The "Wireless Mode" and "Network Mode" work together to determine the behavior of your device. Suggested configurations :

• Station and Router for a wireless router/gateway
• Station and Bridge for bridge with bi-directional layer 2 NAT
• Station WDS and Bridge for a transparent bridge
• Station WDS and Router for a wireless router/gateway using 4-address frames
• Access Pont to support only Station nodes
• Access Point WDS to support Station and transparent bridges from Station WDS nodes

• Link Setup
  • Wireless Mode := "Station" ;
  • Wireless Security := "none" ;

• Network
  • Network Mode := "Router" ;
  • WLAN IP Address := "static" ;
  • IP Address := <IP provided by guifi.net> ;
  • Gateway IP := IP of the AP you are associated to ;
  • Primary DNS := "8.8.8.8" ;
  • Secondary DNS := "8.8.4.4" ;
  • Enable NAT := "true" ; /* punt clau */

Use "arp -a" to display MACs we know

Top

Node 33491, device 25142

Oldies :

• ip 10.139.130.69, gw (AP1) 10.139.130.65

• antena : NanoBeam M5 16, firmware version XW.v6.1.12, build number 32949 {20190610} - this is AirOS v6 (from "v6")
  Device Name : "NodeSebastiaNetRd1"
  Services + SNMP Agent : Location := NodeSebastiaNetRd1 ; {20190517, 17:22}

Vull posar el DHCP al Zyxel i no a la antena per intentar veure el trafic de Alexa amb WireShark

Si poso el DHCP al Zyxel, el trafic no troba dGW cap a 192.168.1.1

Puc funcionar configurant les IPs fixes i posant dGW = 192.168.1.1 a tots els Ubuntu, pero ...

... hi ha equips (endoll wifi, PC Irina) que els va millor una IP de DHCP

Conclusio : DHCP a la antena

Dubtes del Zyxel ...

• "DHCP Relay" ?
• "RIP direction" ? RIP version "RIP-2B" ?
• "Multicast = IGMPv2" ?
• NAT "Full Feature" or "SUA only" ?

NanoBeam M5 Solapa "Services" - see csv (*)

(2021/10) Movistar Amper asl-26555 : all manuals , manual de usuario

http://192.168.1.1 , the default password is "1234"

El ASL-26555 puede reiniciarse con su configuración original de fábrica con un clip. Apriete suavemente el botón de reinicio en la siguiente secuencia:

1. Asegúrese de que el ASL-26555 está encendido.
2. Mantenga pulsado el botón de reinicio de la parte trasera del dispositivo durante aproximadamente de 6 a 10 segundos.
3. Espere hasta que se reinicie el dispositivo - la luz de power cambia a rojo y parpadea

Recuerde que esto borrará cualquier ajuste almacenado en la memoria flash, incluida la información de la cuenta de usuario y los ajustes IP de la LAN.
La configuración del dispositivo volverá a la dirección IP por defecto de fábrica 192.168.1.1, la máscara de subred será 255.255.255.0;
el nombre de usuario de gestión por defecto será 1234 y la contraseña por defecto será 1234.
También se definirá por defecto el usuario con el nombre de usuario user y la contraseña user.

Li poso la IP = 192.168.1.2 abans de conectarlo a l'antena Ubiquiti

És bàsic que l'antena tingui senyal del Campanar i es pugui veure des un browser:

Atenció : els LEDs (físics i virtuals) no s'iluminen si no hi ha "associació" de l'antena amb el node

Atenció : l'associació de l'antena amb el super-node es fa en el moment de carregar el fitxer de configuració a l'antena

Firmware version : XS5.ar2313.v3.5.4494.091109.1459 {SAG}, XW v6.1.7 build 32555 {SAF NanoBeam M5}, XS5.ar2313.v4.0.4974.110823.1731 {LL.M.}

The POODLE Attack and the End of SSL 3.0

SSLv3 will be disabled by default in Firefox 34, which will be released on Nov 25 2014.

1. Firefox 39 about:config
2. search for "security.tls.version.min"
3. double-click on it and set it to "0" (zero)

Si en accedir a la NS5 el Chrome "47.0.2526.73 m" ens diu

Change Chrome advanced flags to support SSL v3.0 :

1. in the Chrome address bar type: chrome://flags
2. scroll down to Minimum SSL/TLS version supported and change it to SSLv3
3. restart chrome

Ara diu - Protocolo no admitido. El cliente y el servidor no son compatibles con la misma versión de protocolo SSL o de cifrado.

En la mateixa IP (NS5, 192.168.1.1), Firefox "Nightly 45.0a1" diu

Tambe Firefox 41 i 39 at Ubuntu 14

IE 11.0.9600.18097 : Turn on TLS 1.0, TLS 1.1, and TLS 1.2 in Advanced settings and try connecting to https://192.168.1.1 again.

VM(xp_min) : IE 6.0.2900.5512 : All OK

1. unistall firefox : sudo apt-get purge firefox
2. url says :
   • wget http://downloads.sourceforge.net/project/ubuntuzilla/mozilla/apt/pool/main/f/firefox-mozilla-build/firefox-mozilla-build_39.0.3-0ubuntu1_i386.deb
   • sudo dpkg -i firefox-mozilla-build_39.0.3-0ubuntu1_i386.deb
   • tenim FireFox 39 - start it with /usr/bin/firefox -> /opt/firefox/firefox

Firefox v30 portable :

[.]

20190718 Ffox to Tabor AP1 :

Un altre :

Un altre :

Homepage.
Nanobeam datasheet, DS.
User's Guide, v5, v6, v 7.2, v8

Throughput 150+ Mbps, range 10+ km, gain 16dBi
Power supply : 24V, 0,5A PoE, 6W

Buy at

• Landashop, 54 € - Aquisgrán, 2; 28232 Las Rozas, Madrid. Usuari registrat, 20161010.
• Senetic - Ubiquiti NanoBeam M5 16dBi 5GHz MIMO : 52 € + IVA = 63,34 € Entrega : DHL - 16 €, UPS - 16 €
• PC componentes : 57 -> 69 €
• Amazon - $69 (sense "wall mount"), es, 73 € - {20161011} SEUR, shipment information Nº 2016111088910125436621
• NBE-5AC-16 16dBi, incluye juego de montaje, 74€
• wifi-shop, Hamburg : 68 € amb IVA pero sense transport

Document configuració : $_20161014_NanoBeam_M5.docx {sagpdf} [] @ guifi : instalacio d'una antena NanoBeam Ubiquiti NBE-M5-16

Bridge mode

• the device forwards all network management and data packets from one network interface to the other without any intelligent routing. For simple applications, this provides an efficient and fully transparent network solution.

• WLAN and LAN interfaces belong to the same network segment and share the same IP address space. They form the virtual bridge interface while acting as bridge ports. The device features IP settings for management purposes.

• there is no network segmentation, and the broadcast domain is the same. Bridge mode does not block any broadcast or multicast traffic.

• you can configure additional firewall settings for Layer 2 packet filtering and access control.

Router mode

• the device operates in Layer 3 to perform routing and enable network segmentation.

• wireless clients and the WAN interface are on a different IP subnet.

• the device can act as a DHCP server and use Network Address Translation (masquerading), which is widely used by APs.

• NAT acts as the firewall between the LAN and WAN.

• router mode blocks broadcasts and can pass through multicast packet traffic.

• you can configure additional firewall settings for Layer 3 packet filtering and access control.

user's guide, pg 32 de 63

To reset to factory defaults, press and hold the Reset button for more than 10 seconds while the NanoBeam is already powered on. Alternatively, the NanoBeam may be reset remotely via a Reset button located on the bottom of the PoE Adapter

dl.ubnt.com

Default valkues are :

• ip = 192.168.1.20
• usr/pwd = ubnt/ubnt

Volem portar els accessos des la xarxa guifi a la meva antena (ip 10.139.130.117) via el port 3002 cap al meu T60 (ip fixe 192.168.1.60) on hi haura una APP, al port 3001.
Així la URL que ha de fer servir un client de la xarxa guifi es http://10.139.130.117:3002

Configurem

... i ara piquem

1. "Add" del PF
2. "Change" a baix
3. "Apply" a dalt

Port forwarding allows specific ports of the hosts on the local network to be forwarded to the external network (WAN).
PF available in Router or SOHO Router mode only.
In router mode the NanoBeam became the router for local network (LAN) and client on WLAN (WAN).

Com que no funciona, pregunto al foro : ubnt.com : "WLAN0", no "LAN0"

AirOS v5 user's guide :

• Interface : Select the appropriate interface.
• Private IP : The IP address of the local host that needs to be accessible from the external network.
• Private Port : The TCP or UDP port of the application running on the local host. The specified port will be accessible from the external network.
• Type : The Layer 3 protocol (IP) type that needs to be forwarded from the local network.
• Source IP/mask : The IP address and netmask of the source device. {per filtrar els clients}
• Public IP/mask : The public IP address and netmask of the device that will accept and forward the connections from the external network to the local host.

{Israel Antunez} Li recomanem que, si te configurat aquest proxy, el canvii pel del Punt Omnia ip: 10.139.238.194, port: 3128

{Carlos Vargas} Mentre dura aquest incident, us aconsellem que utilitzeu el proxy del Punt Omnia, 10.139.238.194

• tinc el node 33491 i el trasto 25142
  Si pico al trasto "NodeSebastiaNetRd1", hi tinc 2 grafiques : device 25142 i pings 25142
• el servidor de grafiques 30628 ...
  no em veu en la llista
• pregunto al foro guifi : cal canviar el servidor de gràfiques per defecte {Albert Homs, 20190514}
• no : el servidor de grafiques veu el trasto, no el node !
  A la llista hi ha "25142,#NodeSebastiaNetRd1,10.139.130.117,wifi0;TDLNdSbstNtRd1CPE0,Working"

Posem a baixar 12 GB amb

1 GB baixa en 4 minuts :

Also in //punt_omnia/home/mate/eines/curl_i_wget/speed_test_via_wget/get_nGB.sh

Node 32747, antena 101538
Adrià !

• antena NanoBeam M5, XW v6.1.12
• Ubiquiti LBE-M5-23 - 5 GHz, Litebeam, 23 dBi
• router TP Link AV200

repetidor

Can Serrat : Simon y Marta , veí -> LlicaMuntCanXicota

Conectem JB amb MB.

• LiteBeam M5
• u/p = ?/?
• IP = 192.168.1.25
• GW = 192.168.1.21 {marta's}
• device name := "JyB"

• NaniBeam-M5-16
• u/p = ubnt/m-
• wireless mode := AP, SSID := farolill0
• network mode := bridge
• IP := 192.168.1.21, dGw := 192.168.1.1 {router tfca}
• device name := mifarol
• mode : AP

• MOVISTAR_DD69 - 86.97.D1.4A.DD.72
• MOVISTAR_PLUS_DD69 - 98.97.D1.4A.DD.72

Node 85296, antena nnnnnn

Node 32889, antena 101442

router comunitari TP-Link TL-SG108E switch, os v4.0

El router/AP és un Evo-W54ARv2 Hem escrit un document de com es configura : W500\\guifi\lluis\Configuracio_del_router_OvisLink_per_guifi.docx {sagpdf}.

Per fer-li un "reset", cal :

1. turn on the AP power
2. press and hold the "Reset" button for 10 seconds
3. release the "Reset" button and wait the router to reboot

Llavors agafa la IP 192.168.1.1 i usr/pwd "admin/admin"

Els seus llums frontals son:

• M1 = "access point" status. ON = initializing, flashing = working properly, OFF = AP has hardware error.
• WLAN = wireless radio. OFF = disabled, flashing = enabled.
• 1/2/3/4 & WAN = devices. OFF = no device linked, ON = there is a device linked but no activity, flashing = there is an active device linked to the port.

La versió del firmware de la antena es XS5.ar2313.v4.0.4974.110823.1731

El seu router te problemes

• amb un tablet Lenovo
• amb una impresora HP ENVY 5644 - how to stop "wireless direct" ? Manuals : hp 5644, pagina 6 - com aturar wi-fi direct
  
  1. From the Home screen, touch (Wireless) and then touch (Settings)
  2. If the display shows that Wi-Fi Direct is Off, touch Wi-Fi Direct and then switch it on
  3. Turn it off

És el realitzador de un bon programa : Les Caixes de Amsterdam. Visita la casa d'en Néstor Majnó (min 39). Chomski al minut 16.

Hem de veure el resultat de aquesta comanda :

Node 72720

El esquema de la seva instalació pot ser :

• antena Nanostation Loco M5, firmware XW v5.6.6, compilacion 29183. Actualitzem el firmware a v 6.1.8 {20181220}
• router :

La comanda de comprovacio :

Node 79881, email Herbolari Sajolida

El router és un TP-Link "300Mbps Wireless N Gigabit ADSL2+ Modem Router - Model No. TD-W8970" - homepage ; [20180702] trobo un Jazztel AR-5387

L'antena és una TP-Link "5GHz 150Mbps Indoor/Outdoor Wireless Access Point - Model No. TL-WA7510N". Manual, homepage manual online (71 pg)
No sabem on posar la IP de guifi. Preguntem al foro guifi, i al grup
Aquestos dos paios el posen en modus "WISP client router" : 1, 2 : Configura la WAN de la TPL con la IP estática de Guifinet que le corresponda.

M'agrada mes d'aqui

Ens conectem a 00-27-22-9A-5E-FA / guifi.net-TDLCmpnrAP3

Document generat : w500\\guifi\gloria\ 201608_Guifi_Gloria.docx {sagpdf}

Node 80963

Gone tardor 2018.

202001 - FO amb Parlem

Node nou 54501 :

• ip externa 10.139.239.102
• mask 255.255.255.224
• gw 10.139.239.97 (TDLTaborDipRocketRd3)
• ip interna 192.168.1.1

• ip 10.139.238.132
• mask
• gw 10.139.238.129 (Tabor)
• ip interna

Els camins son :

La seva ruta cap a internet via Tabor ha de ser com

Quan apuntava a Cementiri, les dades eren :

I la seva ruta cap a internet via Cementiri ha de ser com

Node 51781 amb 2 radios :
IP nova 10.139.239.70, gw 10.139.239.65 (TDLTaborDipRocketRd2). (172.25.38.190)
IP vella 10.139.238.229, gw 10.139.238.225 (TDLTaborDipRocketRd1). (172.25.37.122)
IP vella 10.139.238.113, gw 10.139.238.97 (Tabor AP2).

Baixa 20200425 - miguel.ags@hotmail.com

• antena NanoBeam M5, firmware XW v6.1.7 compilacion 32555
• router Belkin, G Wireless Router, model F5D7234-4 v3 ; update belkin firmware to v3.00.03

Foro : To get a better idea on what is going on you can try:

• running airview maybe you will see some busy channels there
• run athstats utility from the CPE (antena) via SSH

Node 37548, IP 10.139.130.82, gw 10.139.130.65 (Campanar AP1).

email Jordi Travesset

Antena NanoStation loco M5, 5 Ghz airMax 13 dBi CPE, IP(int) 192.168.1.90, IP(ext) 10.139.130.82
Firmware XM v5.3 build 7782, updated 20190110
HowTo, v 6.1.8, v 6.1.12

Router Lynksys Cisco WRT120N - SN JUT00K427686 :
homepage, UG - pdf, DS
firmware download : bin
Update using TFTP
Recovering Tool, Boot Loader / Tiny Kernel Version v0.03 - keeps SSID "JT" and IP = 192.168.0.1
Josue - Your reference number is 10635826. Mardi B - 10635894.
live chat
Default : u(blank), p(admin), ip 192.168.1.1 (192.168.0.1 if Recovery)

Windows 8 v 6.3

Youtube channel !!

La comanda de comprovació :

Antena model : Nano Station "Loco" M5, MAC = DC:9F:DB:84:76:41
IP interna = 192.160.1.20, gw 255.255.255.0, DHCP (192.168.1.100 .. .200)
Firmware level XM.v6.2.0 {v 5.5.4 no veu Rocket 5AC del Tabor}

Router Cisco LinkSys wireless N Home Router WRT120N, IP = 192.168.1.1
20200529m - nou router 450M TL-WR940N, UG pdf

El seu node nou es el 119234, la seva IP es 10.139.238.228, mask 255.255.255.224, i conecta a Tabor ST3 AP1 = 10.139.238.225

El seu node vell era el 38034, la seva IP era 10.139.130.230, mask 255.255.255.224, i conectava a Can Coll AP2 = 10.139.130.225 (a 50 metres)

(20190818 : ip 10.139.130.238 - dhcp), (20200507 - all OK ip fixe)

email Joaquim Travesset i Barba

Node 34780, IP 10.139.238.169, gw TDLLCmntrAP2.

AirOs formware version "XS5.ar2313.v3.5.4494.091109.1459" -> "XS5.ar2313.v4.0.4.5074.150724.1344" {20180804 per AirControl}

Router :

• OvisLink EVO-W301AR {no se posar IP de DNS}
• OvisLink EVO-W311AR {wireless N Broaband Router} - antena al conector groc "WAN"

Dades a tenir/guardar :

• usr/pwd antena {ei/XX+X+.ceigy}
• usr/pwd router {admin x2}
• usr/pwd wifi casolana {toniyoli+fridauu6u->s5.s5}
• usr/pwd guifi.net {?}

Baixa 20200128

Node 94569, 2 IP :

• {old} 10.139.130.80 + gw TDLCmpnrAP1 + [172.25.33.10]
• {new} 10.139.130.121 + gw TDLCmpnrAP3 + [172.25.33.18]

Node 42218, MasGelat 19 ; IP 10.139.238.74 gw 10.139.238.65 Campanar AP4 ; AP antena 172.25.33.21

Stations at AP4 : MAC 78:8A:20:38:73:CE, antena NanoBeam M5 16, firmware XW.v6.1.4

Node 117920, radio 106076, user 49438 - csv

Millor distancia : ip 10.139.238.78, mask 255.255.255.224 o /27, gateway 10.139.238.65 = Campanar AP4 - no hi ha visibilitat

Scaneig : Tabor AP3, pero no AP2 (?)

Hw :

• antena : Ubiquiti LBE-M5-23 LiteBeam M 5GHz 23dBi airMAX
  Hostname "TDLMasGelat21Rd1", ip = 192.168.1.1, u/p=ubnt/ubnt, dhcp (30..99)
  MAC B4.FB.E4.60.E6.67
• router : TP-Link N450 TL-WR940N

Old

• node 40328
• IP 10.139.238.10
• GW tabor 10.139.238.97 AP2

csv (*)

Pol Martí

Node nou 98464, TDLDolcaProve24 - IP = 10.139.238.78/27, gw = 10.139.238.65, TDLCampanarST2/TDLCmpnrAP4

Node vell 79071, TDLSantMarti2

email, email

Node 116237, TDLCnCrnr, antena 105025, IP = 10.139.239.103/27, email, email ru

old 44752, TDLCanCarnero, ip 10.139.238.150, gw 10.139.238.129, Tabor ST1 AP3

Comprem una antena Ubiquiti LiteBeam M5 LBE-M5-23, 5 GHz, 23 dBi, PoE 25 V 0,2 A -
MAC WLAN0 fc.ec.da.2e.51.41
MAC LAN0 fc.ec.da.2f.51.41

Configuració per defecte:

• ip = 192.168.1.20
• usr/pwd = ubnt/ubnt
• country + language
• network mode := router ;
• wireless mode := station ;
• NAT Enable

Configuracio per guifi :

• usr/pwd = own/own
• IP = 10.139.239.103
• netmask = 255.255.255.0
• gateway IP = 10.139.239.97
• DNS = 8.8.8.8, 8.8.4.4

Wireless settings :

• "esborrar SSID"
• pulsar "Select"
• es fa un escaneig
• seleccionar TaborAP3 (-80 dBm)
• lock to AP
• 44:D9:E7:52:B2:15

Queda "AP MAC : Not Associated" -> posar la MAC al Tabor

Es un Eminent EM4553 R1 wireless 150N router. Default IP = 192.168.8.1, usr/pwd = admin/admin, manual
Press the RST/WPS button for 8~10 seconds to set back to factory defaults

Comprem un TL-WR940N, MAC B0.BE.76.80.56.B6

Configuracio per defecte :

• browser to 192.168.0.1 or tplinkwifi.net
• usr/pwd = admin/admin
• working mode := Access Point
• network mode : Smart IP = (get DHCP)
• SSID := "TP-Link_56B6"
• security mode : "WPA/WPA2-PSK"
• wireless password := "55839822"
• DHCP enabled [30..99]

• yandex : Manel Carnero <manel.carnero@yandex.com>
• guifi.net :
  • u : Manel.Carnero
  • add a node : 116237 - nick "TDLCnCrnr", old 44752 (same name)
  • add a "wireless device" - adding a new radio at TDLCnCrnr - radio Model : "Ubiquiti, airMaxM5 LBE-M5-23"
  • edit radio (boto "llapiç" al TDLCnCrnrRd1)
  • go to "Wireless networking section" - click "No radios"
  • add new radio (wireless client) - Device: TDLCnCrnrRd1
  • edit radio (llapiç de nou) - "Wireless networking section" - 1 radio - click "Radio #0"
  • "Connection to AP" - click on icon "Antena to Antena"
    • TDLTaborDipAP1 - 10.139.130.129
    • TDLTaborDipAP3 - 10.139.238.129
    • xarxaTorrellesTaborAP1 - 10.139.238.225
    • xarxaTorrellesTaborAP3 - 10.139.239.97 [***] - antena 172.25.39.118 - Rocket M5
  • "Got IP address 10.139.239.103/255.255.255.224" - "Save And Exit"
  • client/ap o gw : 10.139.239.103/10.139.239.97
  • edit device TDLCnCrnrRd1 - status "Online" !
• comprem antena LBE-M5-23, tipus "M"

20200128 - encara no conectat

Node 118405, csv

Node 35543, TDLcarrer328, carrer 32, numero 8

Llegim el que hi ha a guifi.net :

• Torre Belgica o "BellverPasseigPereElies"
• Bellver Poligon
• Ridolaina Pal
• Ridolaina Casa

Esquema (sense els AP) :

OK Filezilla client 3.3.5.1 - s'ha de configurar el proxy amb Squid.

Filezilla 3.2.7.1 : Edita, Paràmetres, Connexió, Servidor Intermediari Genéric, marcar tipus HTTP 1.1, IP+port+usr+pwd.
Te bajas el ultimo Filezilla Client (3.3.5.1) de aki : url
Lo arrancas y vas a : edit, settings, connection, "generic proxy", escoges HTTP/1.1 using CONNECT, pones nuestro proxy:puerto y luego user:pwd.
Total Commander 7.55a, File Manager amb FTP integrat, con el modo FTP on HTTP.

Per fer servir WGET amb proxy, fem un CMD que contingui

Al T60 :

VPN ?

http://80.32.135.160/ - no hi arriba (VPN bisc tfca). OK == Connection refused.
http://213.229.144.190/ - no hi arriba (VPN bisc colt). OK == Connection refused.

Messenger - si "v 2009"
Ir a IE : cfg proxy:port Ir a Messenger : Herramientas, Opciones, Conexion, Configuraciones Avanzadas. Ver proxy y puerto de IE + poner usr+pwd

Alternatives : pidgin - universal chat client : homepage; AMSN ; Browser based : eBuddy.

SkyPe - si "v 5.0.0.152"

Remote Desktop o escriptori remot per proxy : TeamViewer.

With TeamViewer you can remotely control any computer as if you were sitting right in front of it - even through firewalls. All your partner has to do is start a small application, which does not even require installation or administrative rights. No installation is required, just run the application on both sides and connect - even through tight firewalls.

Spotify ?
Abrimos Spotify y nos vamos a Edit > Preferences. En la parte de Proxy seleccionamos HTTP, e ingresamos la direccion y el puerto. No olvidar presionar Apply para guardar los cambios. Reiniciamos el programa.
Confirmacio : url
Alternativa : http://listen.grooveshark.com/, as "Jamendo/Magnatune" at Ubuntu ... {Francisco says}

WinAmp - si "v 5.56" : General Preferences + usr:pwd@10.139.130.34:3128
Radio Paradise

1. ping 192.168.1.2 (router)
2. ping 192.168.1.1 (nanostation)
3. ping 10.139.130.69 (own)
4. ping 10.139.130.65 (GateWay) []
5. ping 10.139.130.34 (DNS)
6. ping 10.139.130.34 (proxy.torrelles.guifi.net) + telnet port 3128
7. ping 10.139.238.194 (punt Omnia)
8. ping 88.17.203.10 (own, external IP)
9. ping 8.8.8.8 (google dns)

He muntat un Smokeping, sistema que monitoritza la qualitat del enlaç. Tambe tinc un MRTG recollint dades.

Lets download a large file in loop and monitor the required time

• input : iplist.txt
• code : monit_client.sh
  Compte diferencies "bash" de Ubuntu a cygwin : "ping -c" es "ping -n" i "/dev/null" es "nul" (minusculas)
• output : ping_monit.log

On es :

• T60 : /home/sebas/eines/monitor_cliente/monit_client.sh
• w500 : C:\cygwin64\home\Administrator\monitor_client\

Sample code :

• linuxquestions
  Uses "ping" and "if [ $? -eq 0 ]; then"
• ubnt
  Uses "fping"
• use curl maybe ?

Try this :

Openwrt 10.03 Backfire - lliure i altament personalitzable. Es fa servir per xarxa mesh (bàsicament una xarxa que funciona en mode ad-hoc i un protocol d'enrutament específic)

DD-WRT.

MikroTik RouterOS v 2.5, Jul 2002

Usr admin, pwd <empty>.

• tutorial
• com crear-lo
• guifi amunt
• media wiki
• media wiki

Top

ip = 10.139.130.34/38, node 30625 (.34 VM, .38 maquina fisica - .38 desapareix)

• node 30627 = proxy.torrelles.guifi.net:3128, proxy type = HTTP {no SOCKS}.
• node 30628 = servidor de gràfiques de Torrelles

S'hi arriba per la ruta

RB750G router/bridge details, usr/pwd/ip, user's guide - default IP address from LAN is 192.168.88.1 (with username "admin" and no password)

Les seves IPs i configuracio de cablejat al ajuntament :

Amb mes detall :

Això ens porta a un conexionat com :

Les rutes que te son :

El ARP és :

Els fitxers que hi trobo son :

Fem un fitxer que es pugui llegir :

Copiem el ".rsc" al w500 per llegir i veiem :

If you want to keep the Nano5 Antena and the PC proxy in the same subnet you can bridge the ether1 and ether4 interfaces and just set an IP address to the bridge, then you will have something like a two port switch:

url

Hi ha una IP interna que és sospitosa : 172.25.39.42, de Campanar ST1, en un enllaç anomenat "wds-TDLCmpnrAjuntmnt". Veure node TDLAjuntament :

Foxcom

Abans era Ubuntu 14.04 - php v5 - snpservices OK

Ara és Ubuntu 16.04 - php v7 - snpservices KO

All info :

CPU :

En engegar el PC, bios :

En engegar el PC, opsys :

Where the initial command executed for the user is :

Les definicions :

Quan no hi ha cable del RB750 al router de FO :

Amb cable del RB750 al router de FO :

La via cap a Internet :

(1) posem dGW = 10.139.130.36

(2) reiniciem la xarxa

Obtenim sortida a Internet :

En detall :

Periodicament ("user" crontabs) :

El movem a

pendent

El proxy ha de llegir dades de guifi.net amb una certa periodicitat.

La lectura de guifi.net es fa així

També es fa així (?) :

Aixi, tenim un "squid"

Per la 2-a via :

La feina que fa és :

Own configuration :

Al log veiem la darrera activitat del server :

Compte - hem de vigilar que no es faci la feina 2 cops :

Veiem els logs :

El resultat :

I tambe :

Sembla que s'executa dos cops - quin fitxer agafa el Squid ?

Aixi, treiem "/etc/cron.d/guifi-proxy" - run-parts does not execute jobs which have a dot in their name, so

Com que no tenim Squid, aturem ambdós shells !

Fins a finals de Març, a les 19 hores, funcionava "http://www.guifi.net/guifi/export/32000/federated_md5" per rebre usuaris/claus_de_pas dels usuaris de proxy federats.
Explicacio : https://llistes.guifi.net/sympa/arc/guifi-dev/2019-04/msg00000.html -> anar a guifi-proxy3

See pomnia services

Homepage - see FAQs

Veiem

To disable it (after next reboot)

It is still running :

We stop it

Now it is ok

El seu directori de treball és :

Per fer que la nostra IP estigui sempre permesa, s'ha de posar dintre de allowed-hosts :

• bind9
• squid
• apache2
• php
• noip2

This is a DNS server, and we dont use it, so we stop and disable the service :

Stop it :

Disable it :

Resultat :

Hi ha una versio vella (al punt omnia tenim 3.5.12) :

I per aixo te algun problema intern :

La pregunta és : com s'engega ? Deu ser un servei.

Els seus logs :

El aturem per sempre :

Full documentation

Default config file : /etc/apache2/apache2.conf

Main values :

And here we have

El log de acces es troba aqui : /var/log/apache2/access.log i error.log

El seu estat :

Prova de que funciona - compte que WGET escriu un fitxer "index.html" :

Mentre que CURL no escriu pas :

Directori amb les dades :

Passem a la versio 7 :

To verify noip2 is running, both IPs must be the same :

To install noip2 as a service

Or at /etc/init.d

Configuration file : /var/lib/noip2/noip2.conf (binary file)

Use https://10.139.130.34:10000/ !

Servidor de gràfiques : snpservices és un conjunt d'eines que permetran capturar les gràfiques dels nodes i supernodes que estiguin configurats en aquest servidor.

Servei : http://ipdelservidor/snpservices

El servidor de gràfiques és una aplicació que bàsicament funciona executant de forma periòdica un script PHP i un de MRTG:

La primera entrada és perque cada mitja hora descarregui de guifi.net la llista de trastos dels que ha de fer grafiques.
La segona perque cada 5 minuts reculli les dades de tots els trastos.

De fet, el mrtg només fa que omplir /var/lib/snpservices/rrdb (url)

Quan el usuari vol una grafica, es genera a l'instant mitjançant /usr/share/snpservices/common/misc.php

En el nostre cas (src) :

Apuntem 3 fitxers de configuració interessants :

• /var/www/html/snpservices/graphs/mrtgcsv2mrtgcfg.php - es configura a ma
• /var/lib/snpservices/data/mrtg.cfg - es baixa de internet cada 30 minuts
• /etc/snpservices/config.php - es configura a ma
  S'ha de copiar a /var/www/html/snpservices/common/, on el busca mrtgcsv2mrtgcfg.php

Apuntem 5 fitxers de log interessants :

• /var/log/snpservices/mrtgccfg.log - problemes en la lectura de la configuracio del mrtg
• /var/log/snpservices/mrtg.log - problemes en la execucio del mrtg
• /var/log/mrtg/mrtg.log - generat per /etc/cron.d/mrtg
• /var/log/apache2/access.log - problemes HTML
• /var/log/apache2/error.log - problemes PHP

La rotacio dels logs és important : /etc/logrotate.d/snpservices.dpkg-new

Apuntem 4 fitxers adicionals :

• /tmp/last_mrtg
• /tmp/last_update.mrtg
• /tmp/mrtg.csv
• /tmp/blacklist.snmp
• /tmp/blacklist.ips

Origen node 9071

Veig en marxa :

Sembla part de un servidor de gràfiques de guifi.net, i que està lligat al Apache !

mrtg homepage - Multi Router Traffic Grapher

Tenim :

• Fitxer de configuracio de snpservices : /etc/snpservices/config.php
• Configuracio de mrtg : /var/lib/snpservices/data/mrtg.cfg : "LogFormat: rrdtool"
• Comanda per verificar el fitxer de configuracio : sudo LANG=C LC_ALL=C /usr/bin/mrtg /var/lib/snpservices/data/mrtg.cfg -check
• Eines : cfgmaker, indexmaker, RRDs.pm

Comencem mirant la versio

Main config is

Private configuration is here

After customizing a configuration, you can test it by ;

url

Al PC del Ajuntament (ip = 10.139.130.34) tenim un servidor de grafiques al node 30628 - el identificador del servidor de gràfiques és "30628".

El seu "Service Name" és 30628-GrafiquesTorrelles

La configuració del servidor de grafiques es troba a /etc/snpservices/config.php

Podem fer servir http://www.guifi.net/snpservices/graphs/cnml2mrtgcsv.php?server=30628 per obtenir un fitxer CSV amb la llista de nodes gestionats pel servidor de gràfiques (cnml2mrtgcsv.txt), as

Fitxer de configuració del servidor de gràfiques :

Les URLs amb les grafiques son

• http://10.139.130.34/snpservices
• http://10.139.130.34/snpservices/index.php?call=version [ok]
• http://10.139.130.34/snpservices/index.php?call=serverinfo [ok]
• http://10.139.130.34/snpservices/index.php?call=example - Hello CNML world [ok]
• http://10.139.130.34/snpservices/index.php?call=liveping&ip=10.139.130.34 [ok]
• http://10.139.130.34/snpservices/index.php?call=stats [ok]
• http://10.139.130.34/snpservices/index.php?call=availability&device=24880 [<img>]
• http://10.139.130.34/snpservices/index.php?call=graph&type=device&node=32889&device=24582 [<img>]
• http://10.139.130.34/snpservices/index.php?call=graph&type=pings&node=32889&device=24582 [<img>]
• http://10.139.130.34/php.php - configuracio PHP del servidor
• http://10.139.130.34/snpservices/graphs/graphs.php
• estat.html - generat ?
• albert {torr desconectat}
• albert {torr desconectat}
• version
• server info
• stats

Si anem a un node de Torrelles, com el del Lluís, veurem que hi ha 2 enllaços buids :

• https://guifi.net/guifi/graph_detail?type=device&node=32889&device=24582
• https://guifi.net/guifi/graph_detail?type=pings&node=32889&device=24582

Mentre que el node del Albert hi ha 2 enllaços plens :

• https://guifi.net/guifi/graph_detail?type=device&node=102168&device=97933
• https://guifi.net/guifi/graph_detail?type=pings&node=102168&device=97933

El origen de les imatges és

Crontab crida /usr/bin/sarg-reports (Squid usage reports creation tool) amb 3 parametres - SARG is a powerful squid log analyzer.

*** hem aturat aquest cron ***

Alby :

• Empaquetant snpservices per a debian/ubuntu
  • configuració - /etc/snpservices/config.php /etc/snpservices/config.php.template
  • cron - /etc/cron.d/snpservices
  • logrotate - /etc/logrotate.d/snpservices
  • codi - /usr/share/snpservices
  • dades - /var/lib/snpservices
  • logs - /var/log/snpservices
  • web - /var/www/html/snpservices (ex softlink a /usr/share/snpservices ?)

• Crear Servidor de Grafiques SNMP guifi.net - (gil.obradors@gmail.com)
  • configuració - /var/www/html/snpservices/common/config.php
  • comandes de verificació apache2: obrim un explorador i anant a http://127.0.0.1 (o "curl http://127.0.0.1") ens ha de dir "It works!"

• Instal·lant i configurant un servidor de gràfiques de guifi en un Debian Etch

• Servidor de gràfiques Guifi.net o snpservices {*** exemple molt pràctic i detallat ***}

  Les dades importants son

  • versio CNML
  • la URL del servidor: http://80.32.55.197/snpservices/graphs/graphs.php

Primer amb apt :

Amb dpkg podem eliminar el package deixant els fitxers de configuracio :

O esborrar-ho tot :

Instalem :

Ens baixem el paquet :

I el instalem :

Posem un nou repositori apt guifi

El firmem :

Actualitzem el repositori (sovint) :

Actualitzem el sistema (poques vegades) :

Instalem snpservices

Aqui ens expliquen com obtenir el font de github, i el seu README s'explica millor :

To publish the directory, you might create an alias into the apache configuration for the directory:

Make the directory snpservices/tmp writable to everybody

Edit /etc/snpservices/config.php; in particular take attention to:

• set the Service ID (SNPGraphServerId) to match your service created in the database
• point MRTGConfigSource -if you don't have a cached CNML, use your Data server, be sure you specify the zone you are using as at the server parameter
• point CNMLSource - use your Data server

We have :

Install mrtg package

Verify directory

As /etc/cron.d/snpservices !

Verify it runs for the first time :

Then :

Display it

Mirem snpservices per dintre :

I les sevs dependencies :

Baixem una nova versio :

El "dpkg" no veu cap problema :

Solució SNP : "sudo apt-get install snpservices" amb php v5 i ubuntu 14.04 - VM
Veure "dpkg -L snpservices"
Veure "/etc/cron.d/snpservices" :

Hem de mirar doncs

I les URLS son (funcionen totes des de dintre de guifi.Torrelles)

20180316 - funciona !

Ara des el exterior podem veure les grafiques

• Albert
• Carles
• Jordi
• Lluís
• Sebas

Configuracio :

El seu contingut :

Llegeixo pero no fa servir DocRoot :

Llegeixo pero no se de on surt :

Fent proves, conclueixo que

• funciona si poso el Alias dintre de "/etc/apache2/sites-enabled/000-default.conf"
• no funciona si el poso dintre de "/etc/apache2/conf.d/snpservices.conf"

Solucio : posar a "/etc/apache2/sites-enabled/snpservices.conf" :

Ara accedim be :

Diuen : place it in "/etc/apache2/conf-available" and then enabled with "a2enconf snpservices"

• Mirem "/etc/snpservices/config.php" : trobem "$snp_path='/var/www/html/snpservices';"

  Mirem "/etc/cron.d/snpservices" ; trobem "cd /var/www/html/snpservices/graphs"

  Falla "cd /var/www/html/snpservices/graphs" - no existeix - ja si : 20180308

Volem executar

La sortida es "/var/lib/snpservices/data/mrtg.cfg"

• el fitxer de configuracio l'agafa de "../common/"

  Solucio :

  guifi@torrelles:/var/www/html/snpservices/common$ cp /etc/snpservices/config.php .

• error :
  guifi@torrelles:/var/www/html/snpservices/graphs$ php mrtgcsv2mrtgcfg.php PHP Notice: Undefined offset: 1 in /var/www/html/snpservices/graphs/mrtgcsv2mrtgcfg.php on line 92 Last: 2018/03/08 20:35:31 Now: 2018/03/08 22:21:21 ServerId: 30628 PHP Notice: A non well formed numeric value encountered in /var/www/html/snpservices/graphs/mrtgcsv2mrtgcfg.php on line 147 Sever CNML dated as: 2018/03/08 20:38:01 Waiting for 0.8 seconds 2018/03/08 22:21:21 /bin/grep: /tmp/blacklist.ips: No existe el archivo o el directorio PHP Warning: fputs() expects parameter 1 to be resource, boolean given in /var/www/html/snpservices/graphs/mrtgcsv2mrtgcfg.php on line 15 PHP Warning: fclose() expects parameter 1 to be resource, boolean given in /var/www/html/snpservices/graphs/mrtgcsv2mrtgcfg.php on line 89

  Els warning de php no son importants

  Solucio : "touch /tmp/blacklist.ips"

• PHP Warning: fputs() expects parameter 1 to be resource, boolean given in /var/www/html/snpservices/graphs/mrtgcsv2mrtgcfg.php on line 49 (i 84)

  Solucio : "php mrtgcsv2mrtgcfg.php CACHE"

• no existeix "../data/mrtg.cfg"

  Solucio : "mkdir data"

  *** tenim un "/var/www/html/snpservices/data/mrtg.cfg" magnífic !

  Tenim una eina per verificar el funcionament de mrtg :

  guifi@torrelles:~/logs$ sudo LANG=C LC_ALL=C /usr/bin/mrtg /var/www/html/snpservices/data/mrtg.cfg -check ERROR: could not find RRDs.pm. Use LibAdd: in mrtg.cfg to help mrtg find RRDs.pm

  Mes tard :

  guifi@torrelles:/var/log/apache2$ sudo LANG=C LC_ALL=C /usr/bin/mrtg /var/www/html/snpservices/data/mrtg.cfg -check ERROR: CFG Error in "logdir", file /var/www/html/snpservices/data/mrtg.cfg line 6: Log directory /var/lib/snpservices/rrdb/ does not exist

  Finalment tot funciona be :

  guifi@torrelles:/var/lib/snpservices$ sudo LANG=C LC_ALL=C /usr/bin/mrtg /var/www/html/snpservices/data/mrtg.cfg -check

Baixem el fitxer manualment :

Volem executar

• Error : "ERROR: could not find rrdtool. Use PathAdd: in mrtg.cfg to help mrtg find rrdtool"

  Solucio : "sudo apt install rrdtool"

• Error "ERROR: could not find RRDs.pm" - no hi es al disc :
  guifi@torrelles:~/logs$ sudo find / -type f -name RRDs.pm guifi@torrelles:~/logs$

  Verificacio funcionament rrds :

  guifi@torrelles:~/logs$ perl -MRRDs -le 'print q(ok!)' Can't locate RRDs.pm in @INC (you may need to install the RRDs module) (@INC contains: /etc/perl /usr/local/lib/i386-linux-gnu/perl/5.22.1 /usr/local/share/perl/5.22.1 /usr/lib/i386-linux-gnu/perl5/5.22 /usr/share/perl5 /usr/lib/i386-linux-gnu/perl/5.22 /usr/share/perl/5.22 /usr/local/lib/site_perl /usr/lib/i386-linux-gnu/perl-base .). BEGIN failed--compilation aborted.

  Solucio :

  guifi@torrelles:~/logs$ sudo apt install librrds-perl

  Ara tenim

  guifi@torrelles:~/logs$ perl -MRRDs -le 'print q(ok!)' ok!

• No existeix /usr/share/snpservices/, as /usr/share/snpservices/common/ping.sh
  Es troba a "/var/www/html/snpservices/common/"

  Solucio :

  guifi@torrelles:/usr/share/snpservices/common$ sudo cp /var/www/html/snpservices/common/ping.sh .

Ara be, des de fora ...

1. anem al node del Lluís = http://guifi.net/es/node/32889 - les grafiques no hi son
2. la IP base és 109.69.8.5, "guifi.net"
3. porten a "graph details for TDLmajor65Rd1 at TDLmajor65" = url - hi falten 4 grafiques
4. la primera es url, de IP = 10.139.130.34

Trobo

Documentacio oficial : "sudo iptables -F" (flush, sobreviu al reboot)

Mirem al servidor :

Accedim des un client

Trobo el problema :

Qui ho posa ? Ha de ser "denyhosts" - posar disabled

Si editem "/etc/hosts.deny", pensem en el directori "/var/lib/denyhosts"

With ssh login being slow the first thing to check is name resolution on the server running the sshd. SSHD will attempt to identify the incoming host and part of that is resolving the IP address of the incoming connection to a host name. So if you have a slow reverse DNS IP to name look up then you will see a delay in the login.

You can disable it :

Or add the host/ip of your client machine to the server's /etc/hosts

Queda bloquejat despres de

Google en va ple. Sembla que la solució és

O no fer servir el driver "wl" : disable the driver "wl" from the restricted drivers application - NO. Nosaltres no entrem per wireless al PC "proxy" del Ajuntament.

Una altra solucio (per RSPi3) es

Comanda :

From POMNIA :

Per no tenir problemes amb el SNPSERVICES, els posem en una VM
Detall : el SNPSERVIVES requereix PHP 5, i el Ubuntu 16.04 porta el 7. Aixi, a la VM posarem un Ubuntu 14.04, que te PHP5.

Oracle VM VirtualBox is a free and open-source hypervisor for x86 computers currently being developed by Oracle Corporation - wiki vBox. To install VirtualBox anyway you need to setup a 64-bit chroot environment.

Here is the VirtualBox packages download page
And some free VirtualBox images

Question : are we 386 or AMD64 ? Suposem 64-bit

Aixi, pel pajunt, agafem Ubuntu 14.04 ("Trusty")
El instalem amb

Així som i386 !

De un altre mode, afegim a /etc/apt/sources.list :

To install VirtualBox, do

User manual

The version we have :

Oracle VM VirtualBox offers the following tools to control virtualization engine settings, create new VMs, and work on existing VMs within Oracle VM VirtualBox:

• VirtualBox Manager, the GUI for controlling Oracle VM VirtualBox
• VBoxManage, the CLI to Oracle VM VirtualBox

Hi ha moltes eines

Run it from command line, samples. complete set of parameters

wiki Vagrant, repos (github), intro

url, complete

bibl

To remove the DVD from the VM configuration:

The default networking mode in VirtualBox is NAT, as it requires no configuration

If your virtual machine is using bridged networking, then it is on the same network as the host machine. It appears to be just another computer on the network, so any remote access or remote command mechanism that works between physical machines will work, as SSH

How to set "bridged" networking ?

You can use the VBoxManage guestcontrol command to run any command runnable in the guest provided you have guest additions installed.

Syntax : VBoxManage guestcontrol <vm> run <cmdlinetool> <cmdline args>

I want a static IP in my host and a static IP in my guest.

url

DNS - we do NOT edit /etc/resolv.conf - it gets overwritten on boot :

Then tell resolvconf to regenerate resolv.conf :

To set the default gateway :

Restart network interface :

Verify dGW :

Use it :

Hurray !

url - Oracle VM VirtualBox provides remote machine display through the VirtualBox Remote Desktop Extension (VRDE) interface implemented within the Oracle VM VirtualBox Extension Pack package, which you can download from the Oracle VM VirtualBox download page : extension pack

How to install the extension pack ?

Enable the VRDE server:

Now we start the VM :

Run "Remote Desktop" by "mstsc" to the host, ip = 10.139.130.34 - we get a BIOS error :

See /home/guifi/VirtualBox VMs/UBU14SNP/Logs/VBox.log file !

Stop the VM using the "Power Off" button :

Read here

Running "/usr/bin/VBoxManage list vms" from "/etc/rc.local" shows :

And the system log says

Disable SecureBoot ?

See status

Same user that created the VM has to run the commands !

Set AutoStart

Tutorial 1, 2

• add user "guifi" to group "vboxusers" :
  guifi@torrelles:/etc$ sudo usermod -a -G vboxusers guifi

  Verify it :

  guifi@torrelles:/etc$ groups guifi guifi : guifi adm dialout cdrom plugdev lpadmin sambashare admin vboxusers

• logoff and logon "guifi" user

• create file /etc/default/virtualbox
  guifi@torrelles:~$ sudo vi /etc/default/virtualbox VBOXAUTOSTART_DB=/etc/vbox VBOXAUTOSTART_CONFIG=/etc/vbox/autostart.cfg

• create file /etc/vbox/autostart.cfg
  guifi@torrelles:~$ sudo vi /etc/vbox/autostart.cfg # Default policy is to deny starting a VM, the other option is "allow". default_policy = allow

• set owner and permissions
  guifi@torrelles:~$ sudo chgrp vboxusers /etc/vbox guifi@torrelles:~$ sudo chmod 1775 /etc/vbox

• set path
  guifi@torrelles:~$ VBoxManage setproperty autostartdbpath /etc/vbox

• set autostart
  guifi@torrelles:~$ VBoxManage modifyvm UBU14SNP --autostart-enabled on

• verify we have a "myuserid.start" file in /etc/vbox directory :
  guifi@torrelles:~$ ls -al /etc/vbox -rw-r--r-- 1 root root 95 mar 15 22:11 autostart.cfg -rw------- 1 guifi guifi 1 mar 15 22:23 guifi.start

• restart service :
  guifi@torrelles:~$ sudo service vboxautostart-service restart

• reboot your system and your VM should start (without /etc/rc.local !)

/etc/rc6.d, url

• make it executable: "sudo chmod +x K99_script"
• must begin with "K99" (odre alfabetic)
• must be with no ".sh" extension

So we shall place a "Save State" shutdown command in K99_script :

Ho tenim tot a /home/guifi/backup_pajunt

Ho tenim a /home/sebas/backup_vm :

El mes important és el primer :

Ens trobem diversos problemes

En recollir el PC del Ajuntament, apareix aquest error en botar :

Solucions url :

• posem "use_lvmetad = 0" a /etc/lvm/lvm.conf - the warnings remain
• "sudo systemctl disable lvm2-lvmetad.service"

• posem una tarja nova
• configurem amb els noms nous
  1. dhcp : "iface eth0 inet dhcp" al "/etc/network/interfaces"
  2. "sudo /etc/init.d/networking restart" - control process exited with error code
  3. "sudo systemctl status networking.service"
  4. "sudo ifup eth0" - cannot find device eth0
  5. find the network device logical name by the command:
     • "sudo lshw -C network" : logical name "enp2s0"
     • or "ifconfig -a" : enp2s0
  6. dhcp : "iface enp2s0 inet dhcp" al "/etc/network/interfaces"

La xarxa ja funciona (per dhcp)

Amb aquesta configuracio

• sudo systemctl disable apache2
• sudo service apache2 stop

• sudo apt-get update ; (sovint) updates the list of available packages and their versions
• sudo apt-get -f install ; correct a system with broken dependencies in place
• see OpSys
  guifi@torrelles:~/logs$ cat /etc/issue Ubuntu 16.04.6 LTS \n \l
• sudo apt-get upgrade
• clean "/boot" of old kernels
  1. sudo dpkg --list 'linux-image*' | awk '{ if ($1=="ii") print $2}' | grep -v `uname -r` ; see old kernels
  2. sudo apt-get purge linux-image-2.6.31-14-generic-pae ; remove one by one
• "sudo apt-get autoremove"
• "sudo update-grub"

Comandes interessants :

• ip link show : display "enp2s0" as "state DOWN" and MAC "00.00.00.00.00.00"
• lshw command :
  root@ torrelles: $ lshw -class network *-network logical name: enp1s0 *-network DISABLED logical name: enp3s0
• udevadm info /sys/class/net/enp2s0 ("ls -al /sys/class/net/enp2s0")
• cat /etc/udev/rules.d/70-persistent-net.rules
  Generated by "sudo udevadm trigger --subsystem-match=net --action=add"
  ATTR{address}="00:22:68:86:d7:ab"
• configurem manualment :
  root@ torrelles: $ ip link set dev enp2s0 address 00:22:68:86:D7:AB
• el estat del servei :
  $ service --status-all | grep netw [-] networking
• sudo systemctl status networking.service + sudo systemctl restart networking.service
• editem /etc/network/interfaces i forcem que es llegeixi amb
  $ ip addr flush dev enp2s0 $ ifup enp2s0

Com tenim el disc - "/boot" és molt ple

Tampoc funciona VBox

Trobem

Fem "sudo apt-get install dkms build-essential linux-headers-`uname -r`"

Ens diu ben clar que hem de fer "sudo /sbin/vboxconfig"

Tenim errors de kernel, aixi que fem "sudo apt-get upgrade"

Trobo

Tot be pero el error segueix

El nostre servidor de grafiques es el node 30628

URLs que fem servir :

• wiki guifi SNPServices :
  • (Debian/Ubuntu) método apt + configuración virtualhost apache, (es)
  • (Debian/Ubuntu) método dpkg
  • (Debian/Ubuntu) extendido -> acacha.org
• wiki guifi Servidor de Graficas
• uji.es
• ca.wiki.guifi.net - SNP Services

Passos :

1. instalem snpservices
   guifi@torrelles:~$ sudo apt-get install snpservices Some packages could not be installed. This may mean that you have requested an impossible situation or if you are using the unstable distribution that some required packages have not yet been created or been moved out of Incoming. The following information may help to resolve the situation: The following packages have unmet dependencies: snpservices : Depends: php5 but it is not installable Depends: php5-cli but it is not installable Depends: php5-gd but it is not installable Depends: libapache2-mod-php5 but it is not installable E: Unable to correct problems, you have held broken packages.
2. instalem php5
   guifi@torrelles:~$ sudo apt-get install php5 Reading package lists... Done Building dependency tree Reading state information... Done Package php5 is not available, but is referred to by another package. This may mean that the package is missing, has been obsoleted, or is only available from another source E: Package 'php5' has no installation candidate
3. mirem si hi ha la versio 7 :
   guifi@torrelles:~$ sudo apt-cache search php7-* libapache2-mod-php7.0 - server-side, HTML-embedded scripting language (Apache 2 module) php7.0 - server-side, HTML-embedded scripting language (metapackage) php7.0-cgi - server-side, HTML-embedded scripting language (CGI binary) php7.0-cli - command-line interpreter for the PHP scripting language
4. mirem que tenim accessible :
   guifi@torrelles:~/logs$ sudo apt-cache showpkg snpservices Package: snpservices Versions: 0.2.2-9 (/var/lib/apt/lists/serveis.guifi.net_debian_guifi_Packages) Description Language: File: /var/lib/apt/lists/serveis.guifi.net_debian_guifi_Packages MD5: 647f6a7cd5b97fbb167dd8a84727b3d8 Reverse Depends: guifi-server,snpservices Dependencies: 0.2.2-9 - debconf (18 0.5) debconf-2.0 (0 (null)) apache2 (0 (null)) php5 (0 (null)) php5-cli (0 (null)) php5-gd (0 (null)) rrdtool (0 (null)) librrdp-perl (0 (null)) librrds-perl (0 (null)) mrtg-rrd (0 (null)) traceroute (0 (null)) libapache2-mod-php5 (0 (null)) php5-rrdtool (0 (null)) php5-rrdtool (0 (null)) Provides: 0.2.2-9 - php5-rrdtool (= ) Reverse Provides:
5. un altre metode
   guifi@torrelles:~/software$ sudo dpkg -i snpservices_0.2.2-9_all.deb Selecting previously unselected package snpservices. (Reading database ... 162047 files and directories currently installed.) Preparing to unpack snpservices_0.2.2-9_all.deb ... Unpacking snpservices (0.2.2-9) ... dpkg: dependency problems prevent configuration of snpservices: snpservices depends on php5; however: Package php5 is not installed. snpservices depends on php5-cli; however: Package php5-cli is not installed. snpservices depends on php5-gd; however: Package php5-gd is not installed. snpservices depends on librrdp-perl; however: Package librrdp-perl is not installed. snpservices depends on mrtg-rrd; however: Package mrtg-rrd is not installed. snpservices depends on libapache2-mod-php5; however: Package libapache2-mod-php5 is not installed. dpkg: error processing package snpservices (--install): dependency problems - leaving unconfigured Processing triggers for man-db (2.7.5-1) ... Errors were encountered while processing: snpservices
6. quan estigui rreglat, fem "apt-get -f install"
7. install add-apt-repository
   sudo apt -y install software-properties-common dirmngr apt-transport-https lsb-release ca-certificates
8. $ sudo add-apt-repository universe
9. $ sudo add-apt-repository multiverse
10. $ sudo apt-get update
11. $ sudo vi /etc/default/locale + reboot
    LANG="en_US" LANGUAGE="en_US:en" LC_ALL=en_US.UTF-8
12. sudo add-apt-repository ppa:ondrej/php
13. sudo add-apt-repository ppa:ondrej/apache2
14. sudo apt-get update
15. sudo apt-get -y install php5

Si snpservices requereix php5, que ve amb Ubuntu 14.04, i Ubuntu 16.04 porta php7, (i no tenim snpservices per php7) la solucio es instalar ubuntu v 14.04 al pc de grafiques.

• instalem USB installer
• en engegar, escollim el ISO : 638.582.784 ubuntu-14.04.6-server-i386.iso
• botem des USB
• install Ubuntu server
• kbd : spanish
• xarxa : eth0 (sembla que dhcp funciona)
• host(grafic)
• u(sebas)
• scsi3 (sda) 500 GB STM3500418AS - "usar todo el disco"
• sin actualizaciones automaticas
• services :
  • basic Ubuntu server
  • OpenSSAh server
  • Servidor de correo
    • sin configuracion
    • sitio de Internet - enviar y recibir usando SMTP (*) -
      • nombre del sistema de correo : "grafic.guifi.net"
      • crear un certificado SSL autofirmado, nombre del equipo (commonName) = ""
    • Internet con "smarthost" - recibir con "fetchmail", enviar con "smarthost"
• instalar el cargador de arranque GRUB en el registro principal de arranque (FreeDos en /dev/sdb1)
• cat /etc/issue : Ubuntu 14.04.6 LTS
• ifconfig : ip = 192.168.1.91
• posem "deb http://serveis.guifi.net/debian guifi/" dins "/etc/apt/sources.list" i el firmem
• sudo apt-get update + sudo apt-cache show snpservices +
  guifi@torrelles:~ $ sudo apt-get install snpservices (graph server id = 30628) Creating config file /etc/snpservices/config.php with new version The file mrtg.cfg is created or refreshed every 30 minutes. Please wait for minute 0 or 30 or run this to generate it manually: cd /usr/share/snpservices/graphs; /usr/bin/php mrtgcsv2mrtgcfg.php AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using 127.0.1.1. Set the 'ServerName' directive globally to suppress this message + "service apache2 reload"

  El resultat es el fitxer de configuracio del mrtg : /etc/snpservices/config.php

• ln -s /usr/share/snpservices /var/www/html/snpservices
• dpkg -L snpservices
• cat /etc/cron.d/snpservices
• sudo cat /var/log/snpservices/mrtgccfg.log - log obtencio configuracio del mrtg, fitxer /var/lib/snpservices/data/mrtg.cfg
• /var/log/snpservices/mrtg.log - problemes en la execucio del mrtg [*** error de format ***]
• /var/log/mrtg/mrtg.log - generat per /etc/cron.d (?oldie?)
   
• http://192.168.1.91/snpservices/ - pagines de /var/www/html/snpservices
  Usage: index.php?call=[service][&parameter[=value]]
• http://192.168.1.91/snpservices/index.php?call=help
• http://192.168.1.91/snpservices/index.php?call=version
• http://192.168.1.91/snpservices/index.php?call=phpinfo
• http://192.168.1.91/snpservices/index.php?call=serverinfo [ok]
• Availability : http://192.168.1.91/snpservices/index.php?call=availability&device=24880 [red], http://192.168.1.91/snpservices/index.php?call=availability&device=25142 [green]
• http://192.168.1.91/snpservices/index.php?call=example {Hello CNML World!}
• graph device's [<img>] : {sag "0"} + {lluis "-", disabled}
• graph + pings [<img>] {sag} [OK] + {lluis [offline]}
• http://192.168.1.91/snpservices/index.php?call=liveping&ip=8.8.8.8 [ok]
• http://192.168.1.91/snpservices/index.php?call=livetraceroute&ip=8.8.8.8 [ok]
• http://192.168.1.91/snpservices/index.php?call=stats [ok] {quite large}
• http://192.168.1.91/snpservices/index.php?call=stats&device=25142 {sag stats}
• http://192.168.1.91/php.php - configuracio PHP del servidor
• http://192.168.1.91/snpservices/graphs/graphs.php
   
• 1a part : cada 30 minuts obtenir la llista de trastos
  cd /var/www/html/snpservices/graphs; php mrtgcsv2mrtgcfg.php log : /var/log/snpservices/mrtgccfg.log sortida : /var/lib/snpservices/data/mrtg.cfg

  Agafa aquest fitxer 30628 csv

• 2a part : cada 5 minuts agafar dades dels trastos
  env LANG=C /usr/bin/mrtg /var/lib/snpservices/data/mrtg.cfg --lock-file /var/lock/mrtg/guifi_l >> /var/log/snpservices/mrtg.log

• snpservices per php7 : https://github.com/guifi/snpservices - Albert Homs 20190508

foto guifi - pings ok, device no

See snmpwalk :

• install it : "sudo apt-get install snmp"
• how to use it (v1, v2 and v3)

La meva antena es una Nanobeam M5 16 :

Solapa "Services" - "SNMP Agent" := 'enable' ; "SNMP comunity" := 'public' ;

Que es el OID ? Object Identifier

Per generar carrega, al T60 engego /home/sebas/eines/get_1gb.sh que baixa 20 vegades 1 GB

Ara

• tinc ping
• no tinc dades, pero els comptadors estan a "0", i abans estaven en blanc, as lluis

Blackhold (email) diu :
esborra el fitxer rdd corresponent al trasto i que torni a graficar de 0
Paths aqui :

url : para que cada trasto grafique ha de tener habilitado el agente SNMP con la comunidad "public", el nombre del nodo en la localización y el contacto "guifi@guifi.net"

En /etc/snpservices/config.php has modificado unas variables - como puedes comprobar son unas URL - has verificado que esas url funcionan?

• [no] http://snpservices.guifi.net
• [ok] http://snpservices.guifi.net/snpservices/ {service has to be specified}
• [ok] http://snpservices.guifi.net/snpservices/graphs/cnml2mrtgcsv.php?server=30628
• [ok] http://snpservices.guifi.net/snpservices/common/qnodes.php {node has to be given}, as 33491 (sag)

  Poso la sortida a "/usr/share/snpservices/data/guifi.cnml" i ja funciona T60 qnodes

  El missatge del PHP "A non well formed numeric value encountered in" vol dir "no tinc fitxer de entrada"

S'ha de especificar be el "locale" :

Desapareixen els errors per "no resposta"

Instalem Unbrowse-SNMP al w500 - users guide

• deb http://serveis.guifi.net/debian ubuntu/ a /etc/apt/sources.list {php7}
• deb http://serveis.guifi.net/debian guifi/ {php5}
• sudo apt-key adv --keyserver pgp.mit.edu --recv-keys 2E484DAB o be
• sudo apt-key adv --keyserver pgp.rediris.es --recv-keys 2E484DAB

• ip eth0 = 192.168.1.60
  $ cat /etc/network/interfaces auto lo iface lo inet loopback auto eth0 iface eth0 inet static address 192.168.1.60 netmask 255.255.255.0 gateway 192.168.1.1 dns-nameservers 8.8.8.8 8.8.4.4
  • define fixed IP and DNS
  • verify empty "/etc/dhcp/dhclient.conf"
  • "sudo ifdown -a" and "sudo ifup -a"
• ubuntu = 18.04
• posem "deb http://serveis.guifi.net/debian ubuntu/" a "/etc/apt/sources.list"
• ho firmem amb "sudo apt-key adv --keyserver pgp.rediris.es --recv-keys 2E484DAB"
• actualitzem el repositori : "sudo apt-get update"
• veiem que es accessible : "sudo apt-cache show snpservices"
• instalem amb "sudo apt-get install snpservices"
  1. make /etc/mrtg.cfg owned by root ? Yes
  2. SNP Graph Server Id := 30628 ;
• treiem paquets vells amb "sudo apt autoremove"
• php version : 7.2.17
• fitxer de configuracio : "/etc/snpservices/config.php"
• feina temporitzada : cat /etc/cron.d/snpservices
  • 2 feines :
    1-a : env LANG=C /usr/bin/php mrtgcsv2mrtgcfg.php >> /var/log/snpservices/mrtgccfg.log {out : mrtg.cfg} 2-a : env LANG=C /usr/bin/mrtg /var/lib/snpservices/data/mrtg.cfg >> /var/log/snpservices/mrtg.log {out : bbdd at /var/lib/snpservices/rrdb}
  • logs :
    • sudo cat /var/log/snpservices/mrtgccfg.log
    • sudo cat /var/log/snpservices/mrtg.log | grep 30628
• com posar CNML a versio 2 ? {email 20190516 rr -> mm}
• CNML són les sigles de Community Networks Markup Language
• CNML a wiki.guifi
• see /etc/snpservices/config.php :
  $CNMLSource='http://snpservices.guifi.net/snpservices/common/qnodes.php?nodes=%s'; # read CNML $CNMLData='/var/lib/snpservices/data/guifi.cnml'; # write CNML {empty ?}
• /var/log/apache2/error.log ens diu que "/usr/share/snpservices/common/qnodes.php linia 22" no pot carregar "/usr/share/snpservices/data/guifi.cnml"
• apacha :
  Hi ha dispositius que no mostres gràfiques, les gràfiques apareixen els dispositius amb valors -nan {***}
  Els dispositius han de tenir activat SNMP i posar la comunitat (community) a "public".
  També és important que el nom de la interfície de xarxa que volem monitoritzar tingui el mateix nom a la web de guifi.net (la podeu consultar al CNML o al fitxer CSV del servidor de gràfiques) que el que té en la realitat.
  El meu CSV conté "NodeSebastiaNetRd1" -> és el que s'ha de posar a la NanoBeam M5 ! {? Amb "#" al davant ? No !}
• NBE-M5-16 te "ath0" (see "snmpwalk" o "ubntbox status"), mentre que guifi.net vol "wifi0" (see CSV)
  ath0 is a virtual AP we create on the existing wifi0 physical interface
  Un trasto que surt com ath0 al CSV es 92966 i te model "Ubiquiti-airMaxM5 Bullet/PwBrg/AirGrd/NanoBr" amb "AirOsv5.x", mentre que jo tinc "Ubiquiti-airMaxM5 Rocket/Nano/Loco" amb "AirOsv5.x".

URLs :

• CSV
• TDL via "servidor de grafiques" : node 30628, ip = 10.139.130.34
  • snpservices
• TDL via T60 : CNML services Version: 0.2.3 :
  • sag : pings {ok}, device {ok}, qnodes 33491 {guifi.cnml manual}
  • jb : node 32747, trasto 101538 ; pings {ok}, device {ok}, perfect "snmpwalk -v1 -c public 10.139.130.113" [trasto "Working" {blank}, model antena {-nan}]
  • jt : node 37548, antena 102737, ip = 10.139.130.82, pings {ok}, device {ok}, perfect "snmpwalk -v1 -c public 10.139.130.82" [cfg SNMP Agent]
  • cc : node 72720 "TDLMontserratroig22a", antena 69290, ip = 10.139.239.66, model "NS Loco M5" {ath0 in csv} ; pings {ok}, device {ok}

  • jnj : node 35786, antena 93410 ; pings {blank} - "Planned"
  • sga : node 34143, antena 25956, ip = 10.139.238.36, model NBE-M5, id = "simoRd1" ; pings {ok}, device {-nan} - Location := "simoRd1" -> no ath0 neither wifi0 in CSV
  • pomnia : node 31847, antena 23629, ip = 10.139.238.195, id = "TDLPuntOminaNt1" ; pings {ok}, device {blank} - type <none>, no wifi0 neither ath0 in CSV
  • mabi : node 32889, antena 101442, ip = 10.139.130.81, id = "TDLmajor65Rd2" ; pings {blank}, device {blank} - type = "wifi0" - change Location := "TDLmajor65Rd2" ; radio is "planned"
  • mc : node 116237, antena 105025, ip = 10.139.239.103, pings {?}, device {?}, "snmpwalk -v1 -c public 10.139.239.103" [?]

• BDN (server 55045 "bcn") - Balmes 52 : pings {ok}, device {empty 0}
• Girones SNP server 12917 - Av Font Polvora 3 : pings {no va tecnoip}
• Alt Camp : server 47007 ; CNML services Version: 2.0 - Abat llort 22 : pings {ok}, device {ok}, graphs blank
• Osona + Santa Cecilia de Voltrega + Plana de Vic + Gurb : servidor grafiques : 6833, ramon roca, CNML services v 2.0
  • node 111774, GurbAbella, device 102893, GurbAbellaRd2 : pings {ok}, device {empty nil}
  • node 110925, GurbMarina, device 102106, GrbMrnRd1 : pings {ok}, device {ok}
• Catalunya + serveis - search "grafiques"

El unic requisit és tenir definit a guifi.net un servidor de grafiques per una zona, com poden ser 30628 per Torrelles o 47007 per Valls.
Podeu veure tots els serveis de guifi (incloent tots els servidors de grafiques) aqui (busqueu "SNP graph server").

Així, heu de tenir un "SNP Graph Server Id", que ve a ser el número de aquest node, com 30628 per Torrelles.

Passos per instalar snpservices :

1. instalem un Ubuntu 18.04.02 (LTS) - support guaranteed until April 2023 — 64-bit only
2. al fitxer "/etc/apt/sources.list" hi afegim a baix de tot la linia "deb http://serveis.guifi.net/debian ubuntu/"
3. firmem el nou repositori amb la comanda "sudo apt-key adv --keyserver pgp.rediris.es --recv-keys 2E484DAB"
   De vegades falla i es pot fer servir "sudo apt-key adv --keyserver pgp.mit.edu --recv-keys 2E484DAB"
4. actualitzem el repositori : "sudo apt-get update"
5. veiem que es accessible : "sudo apt-cache show snpservices"
6. instalem amb "sudo apt-get install snpservices"

Aixo hauria de funcionar. Punts a revisar :

• revisem la configuracio a "/etc/snpservices/config.php"
• revisem la feina temporitzada a "/etc/cron.d/snpservices"
• revisem el log de la feina per obtenir mrtg.cfg : sudo cat /var/log/snpservices/mrtgccfg.log
• revisem la feina de mrtg : "sudo tail -f /var/log/snpservices/mrtg.log"
• revisem que guifi ens dongui be el CSV : aqui hi ha el del meu servidor amb id = 30629 {canvieu la URL}
• revisem que snpservices estigui contestant : servidor de Valls {canvieu la URL}

Posar el trasto "Working" en lloc de "Planned" !

Per fer la grafica del ping(), el snpservices fa un ping(), aixi que segurament funciona.

En canvi per fer la grafica de dades, eñ snpservices fa servir el SNMP, vist que les antenes tenen un agent.

Possibles problemes i solucions :

• la grafica de dades no te numeros sino que te "-nan", as here
  El servidor SNMP de la antena no està "enabled" o no esta ben configurat
  La comanda "$ snmpwalk -v1 -c public 10.138.ip.de-la-antena" dona timeout
• la grafica de dades te "0" en tots els camps, as here
  El CSV que demana el snpservices (node 30628) no concorda amb la configuracio de la antena - veure "ATH0 per WIFI0" a sota

forum guifi.net

S'ha de editar el trasto a guifi.net

En el meu cas :

• quan tenia "Ubiquiti, 5Ghz Nano/NanoLoco/Bullet/Lite/Pico" al CSV sortia "wifi0" {antena vella Loco5}
• quan he posat "Ubiquiti, airMaxM5 Rocket/Nano/Loco" al CSV surt "ath0" {antena nova NBE-M5-16}

forum guifi.net

foro, Mataro

A partir de Maig de 2019 tot ho tenim a Can Sostres : PC "proxy" i PC "grafiques" (ex-Ajuntament)

El esquema (20190221) és :

El shell per mostrar les rutes es :

2 altres comandes interessants : "/ip address print detail" i "/ip arp print"

La ruta que ens porta del Campanar a la FO de Can Sostres és - anem a "IP + Routes" al Campanar :

Des la command line :

La ruta que ens porta del Tabor a la FO de Can Sostres és - anem a "IP + Routes" al Tabor :

Des la command line :

• MikroTik RB4011iGS+RM 188 €
• Mikrotik Hex S Ethernet Negro - Router 72 €
  (10,100,1000 Mbit/s, 10/100/1000Base-T(X), Negro, 256 MB, 11 W, CC)
• Mikrotik RB750GR3 - Router 57 €
  (Gigabit Ethernet, 10/100/1000Base-T(X), 10,100,1000 Mbit/s, MIPS64, 880 MHz, 0,16 GB)

Top

*** see new page ***

A la IP Punt Omnia = 10.139.238.194:3128 hi ha el proxy del PuntOmnia de la xarxa guifi de Torrelles.
És el node 31847, "TDLPuntOmina" (compte la dislèxia) i és de tipus HTTP, no pas SOCKS.

Un esquema pot ser

Te 3 "devices" :

I un "link" (obsolet ?) :

Les claus del edifici del parc ens les dona en Xavi Navarrete.

• conectem el w500 al router de FO
• obtenim una IP as 192.168.1.59
• funciona "ping 192.168.1.254", pc de can sostres
• entrem amb Putty
• verifiquem que funciona ping al Campanar : "ping 10.139.238.193"
• verifiquem que funciona ping a Google : "ping 8.8.8.8"

• te un PoE "Ubiquiti" de 15V, 0,8A, model UBI-POE-15-8, 9 € a amazon.es
• es una nanoStation Loco M5
• Wireless mode := station WDS, mode := station + WDS (Transparent Bridge Mode) := enable :
• Network mode := Bridge ;
• Firmware Version XM v5.6.5, build 29033

Lidia, parc de Can Sostres, 1er pis ; 93.689.0291, torrelles@xarxaomnia.gencat.cat, horari (9 a 1 de dilluns a divendres, de 3 a 5 el dilluns i el dimecres)

Des Juny de 2014 no cal posar proxy als usuaris que paguem. [ @@@ to POMNIA.HTM @@@ ]

• commandes interessants
  • vi /etc/ssh/sshd_config : "Banner /etc/ssh/sshd_banner.txt" + fill the file + sudo service sshd restart / sudo service ssh reload
  • apt list --installed ; docu
  • dpkg --get-selections > pkg-list ; get installed pkg list
  • sudo apt-get update ; (sovint) updates the list of available packages and their versions
  • sudo apt-get upgrade ; (poques vegades) actually installs newer versions of the packages you have : "podeu actualitzar 88 paquets"
  • uname -a ; veure versio Linux
  • sudo shutdown -h now ; tancar la maquina
  • sudo reboot ; sudo shutdown -r now ; reiniciar la maquina

• eines i versions :

  • ssh and sshd
    mate@punt-omnia:~$ ssh -V OpenSSH_7.2p2 Ubuntu-4ubuntu2.4, OpenSSL 1.0.2g 1 Mar 2016

  • cd /home/mate/eines/rexx/ + sudo apt install ./ooRexx-4.2.0-1.ubuntu1310.x86_64.deb
    mate@punt-omnia:~$ rexx -v Open Object Rexx Version 4.2.0

  • sudo apt install npm
    mate@punt-omnia:~$ npm -v 3.5.2

  • sudo apt install nodejs
    mate@punt-omnia:~$ nodejs -v v4.2.6

• want nmap to scan network : (sembla que detecta "router" pero no "antena")
  mate@punt-omnia:~$ sudo apt install nmap nmap -sn 10.139.130.0/24 : 16 hosts found in this range nmap -sn 10.139.238.0/24 : 19 nmap -sn 10.139.239.0/24 : 11 nmap -sn 10.139.0.0/16 : 46 nmap -sn --proxies http://10.139.130.65:3128 172.25.33.0/24 : 4 hosts *** 8 amb qq_127.html *** nmap -sn --proxies http://10.139.130.65:3128 172.25.37.0/24 : 0 *** 2 nmap -sn --proxies http://10.139.130.65:3128 172.25.38.0/24 : 0 *** 2 nmap -sn --proxies http://10.139.130.65:3128 172.25.39.0/24 : 0 *** 2 nmap -sn --proxies http://10.139.130.65:3128 172.25.51.0/24 : 0 *** 3 nmap -sn --proxies http://10.139.130.65:3128 172.25.66.0/24 : 1 *** 11 nmap -sn --proxies http://10.139.130.65:3128 172.25.0.0/16 : 5

• want to send mail :
  • $ sudo apt install ssmtp
  • edit /etc/ssmtp/ssmtp.conf - mailhub(smtp.gmail.com:587), AuthUser/AuthPass(gmail usr and pwd as Xarito)
  • $ sudo apt install mailutils
  • /home/mate/envia-email/fer.sh ; error
  • see "/var/log/mail.log"
  • see error
    • postfix is running with backwards-compatible default settings
    • to disable backwards compatibility use "postconf compatibility_level=2" and "postfix reload"
  • telnet gmail-smtp-in.l.google.com smtp - see SMTP commands
  • $ sudo apt install postfix
  • $ sudo postconf compatibility_level=2 ; va al fitxer /etc/postfix/main.cf
  • $ sudo /etc/init.d/postfix reload
  • /home/mate/envia-email/fer.sh ; OK now
  • edit "main.cf" per posar "myhostname=punt-omnia.guifi.net" + sudo service postfix restart

• send IP using email every hour :
  mate@punt-omnia: / $ cat /home/mate/envia-email/envia_ip.sh #!/bin/bash # filtered to folder "pomnia_ip" at bisc4k9@gmail.com # list using \\w500\C:\sebas\miscosas\python\read_emails\pomnia ipVar={$(curl -m 2 -s icanhazip.com)}; ipVar={$(curl -m 2 -s http://checkip.amazonaws.com)}; desti=bisc4k9@gmail.com myTm=$(date '+%Y %b %d %H:%M') myLog=/home/mate/logs/envia_email.log myVer="1.k" szIP="+++ $myTm +++ [$HOSTNAME] +++ [$(whoami)] +++ [$0] +++ Envia IP externa ($ipVar) a ($desti) +++ v ($myVer) +++" szSbj="* $myTm * [$0] * [$(whoami)] * [$HOSTNAME] * $myVer * IP {$ipVar} *" echo "$szIP" >> $myLog 2>&1 echo "$szIP" | mail -s "$szSbj" $desti # cat /var/log/mail.log # cat /var/log/mail.err exit 0

  Use it hourly :

  mate@punt-omnia:/etc/cron.hourly$ sudo ln -s /home/mate/envia-email/envia_ip.sh enviar_ip

• want to trace system restarts :

  The system start code gives us control here :

  mate@punt-omnia: /etc $ cat rc.local #!/bin/sh -e /usr/bin/pomnia_restart & exit 0

  On tenim

  $ cat /usr/bin/pomnia_restart #!/bin/bash # timestamp last system shutdown at own log file echo "Shutdown at" >> /home/mate/logs/engegades.log last -x >> /home/mate/logs/engegades.log date_name=`date +"Y%y/M%m/D%d"` time_name=`date +"h%H:m%M"` # timestamp system start at own log file echo "+++ +++ +++ (" $date_name "-" $time_name ") /usr/bin/pomnia_restart from /etc/rc.local" >> /home/mate/logs/engegades.log # trace in /var/log/syslog szTxt="("$date_name "-" $time_name") +++ +++ POMNIA +++ +++ put user init code in /usr/bin/pomnia-restart" logger -i -p user.info $szTxt # start nodejs to ping users and generate HTML page /home/mate/nodejs-projects/timer/ru.sh # start minimal web server so scan_tronc.sh does not indicate a false error on "PC pomnia" : /home/mate/nodejs-projects/min_web_server/ru.sh -> /usr/bin/node /home/mate/nodejs-projects/min_web_server/my_Server.js >> ~/logs/min_web_server.log

• want to do a periodic and automatic backup using mail :
  • install 7z compressor : sudo apt install p7zip-full - now "7z" command is available (de fet no el fem servir, jejeje)
  • /home/mate/backup_omnia conte
    • llista_de_fitxers.txt : conte el path al fitxer a salvar
    • fer_backup.sh : copia els fitxers a "./fitxers/", els comprimeix amb "7z" i els envia per correu
    • la comanda per comprimir un directori és "tar cvzf sortida.tar.gz ./fitxers/" (el tar sempre és al linux)
    • can install the shell into /etc/cron.weekly or /etc/cron.monthly, as required : "ln -s /home/mate/cat backup_omnia/fer_backup.sh /etc/cron.monthly/pomnia_backup"
  • use a yandex.com receiver
  mate@punt-omnia:/home/mate/backup_omnia # cat fer_backup.sh #!/bin/bash FN_in="/home/mate/backup_omnia/llista_fitxers.txt" DIR_name="/home/mate/backup_omnia/fitxers" DESTI="xarxatorrelles@gmail.com" --- blocked message DESTI="me@yandex.com,me@gmail.com" FN_LOG="/home/mate/logs/fer_backup.log" FN_out="/home/mate/backup_omnia/sortida.tar.gz" date_name=`date +"Y%y/M%m/D%d"` time_name=`date +"h%H:m%M"` time_stamp="("$date_name"-"$time_name")" echo "+++ [`date -R`] +++ Backup some files del Punt Omnia to be sent to ($DESTI)." >> $FN_LOG cat $FN_in | while read linia do echo "+++ Posem fitxer" $linia >> $FN_LOG cp -u $linia $DIR_name/. >> $FN_LOG 2>&1 done echo "esborrem fitxer vell ("$FN_out")" >> $FN_LOG rm -f $FN_out >> $FN_LOG echo "fem fitxer nou" >> $FN_LOG tar cvzf $FN_out $DIR_name/ >> $FN_LOG ; "7z a -pAAA000 $FN_out $DIR_name/" echo "enviem fitxer" >> $FN_LOG echo "Fitxers de POMNIA." | mail --attach=$FN_out -s "Backup PUNT-OMNIA data ($time_stamp)." $DESTI echo "$szCOS" | mutt -s "$szSubject" -a $szAttFiles -- $DESTI rv=$? echo "MAIL return code" $rv >> $FN_LOG echo "Que hi ha al LOG de MAIL :" >> $FN_LOG cat /var/log/mail.log | grep "yandex.com" >> $FN_LOG exit 0

  And we execute it from :

  mate@punt-omnia:/etc/cron.weekly$ sudo ln -s /home/mate/backup_omnia/fer_backup.sh pomnia_backup

  La llista de fitxers a salvar avui en dia és :

  /home/mate/backup_omnia $ cat llista_fitxers.txt /boot/config.txt /etc/apt/sources.list /etc/cron.hourly/pomnia_hourly /etc/motd /etc/network/interfaces /etc/postfix/main.cf /etc/squid/squid.conf /etc/ssmtp/ssmtp.conf /home/mate/.bashrc /home/mate/.profile /home/mate/backup_omnia/fer_backup.sh /home/mate/cron-jobs/cron_squid_i_ftp.txt /home/mate/cron-jobs/llegir_ip_externa.sh /home/mate/cron-jobs/monit_pomnia.sh /home/mate/cron-jobs/netejar_logs.sh /home/mate/cron-jobs/squid/guifi-proxy.sh /home/mate/eines/curl_i_wget/1_curl.sh /home/mate/eines/curl_i_wget/2_wget.sh /home/mate/eines/curl_i_wget/3_lynx.sh /home/mate/eines/curl_i_wget/4_gugel.sh /home/mate/eines/curl_i_wget/5_ssh.sh /home/mate/eines/curl_i_wget/6_ftp_via_curl.sh /home/mate/eines/rexx/scan_guifi/do.sh /home/mate/eines/rexx/scan_guifi/scan_list.rexx /home/mate/eines/rexx/scan_guifi/IPS.TXT /home/mate/eines/rexx/scan_guifi/qq_pfx.html /home/mate/eines/rexx/scan_guifi/qq_sufx.html /home/mate/eines/ssh/scan_i_create.sh /home/mate/eines/ssh/scan.sh /home/mate/eines/ssh/conectats.rexx /home/mate/eines/ssh/usuaris_proxy.sh /home/mate/eines/tronc/hit_one.sh /home/mate/eines/tronc/scan_tronc.sh /home/mate/envia-email/envia_ip.sh /home/mate/nodejs-projects/min_web_server/my_server.js /home/mate/nodejs-projects/min_web_server/ru.sh /home/mate/nodejs-projects/timer/1_gen_html.js /home/mate/nodejs-projects/timer/entrada.json /home/mate/nodejs-projects/timer/README.MD /home/mate/nodejs-projects/timer/ru.sh /home/mate/nodejs-projects/timer/send_page/send_page.sh /usr/bin/pomnia_restart

  (pend) Posar-ne mes !

  Corregir "Diagnostic-Code: smtp; 504 Need Fully Qualified Address" : "X-Postfix-Sender: rfc822; root@punt-omnia"

  • sudo vi /etc/postfix/main.c - "myorigin = /etc/mailname"
  • sudo vi /etc/mailname -
  • /etc/init.d/postfix reload - restart

  Passem a fer servir mutt que si que agafa la configuracio de /etc/mailname i /etc/postfix/main.cf, tot i que el fitxer principal de configuracio es ~/.muttrc (privat) i /etc/Muttrc (global)

• want to do a periodic log :

  Code

  mate@punt-omnia:/home/mate/cron-jobs$ cat llegir_ip_externa.sh #!/bin/bash my_log="/home/mate/logs/read_external_ip.log" my_IP=$(curl -m 2 -s icanhazip.com) my_IP=$(curl -m 2 -s http://checkip.amazonaws.com) rc1=$? echo ">>> (2) icanhazip rc ($rc1)" >> $myLog szIP="*** today {$(date '+%Y %b %d %H:%M')} my IP is {"$my_IP"} ***" echo "$szIP" >> $my_log 2>&1 exit 0

  Then make it run every day :

  mate@punt-omnia:/etc/cron.daily$ sudo ln -s /home/mate/cron-jobs/llegir_ip_externa.sh pomnia_llegir_ip_externa

• want to do a periodic cleanup :
  mate@punt-omnia:/etc/cron.weekly$ sudo ln -s /home/mate/cron-jobs/netejar_logs.sh pomnia_clean_logs

Sense el disc SCSI és així :

És força buid :

Llistarem tot el seu contingut :

Ubuntu switched from system-V (init) to systemd (2015). Read systemd for upstart users {****}

See pajunt services

Managed in Ubuntu style.

Al PC tenim 2 tarjes de xarxa (però un sol gateway) - tenim un cable de xarxa cap a guifi (ip = 10.139.238.194) i un altre cable cap a internet (ip = 192.168.1.254)

Fem un "port forwarding" del port 7080 del router de fibra optica cap a 192.168.1.254:80 al PC, on tenim un nodejs
O ha de ser a 10.139.238.194:80 ?

Els DNS :

La ruta cap l'exterior :

La IP externa :

Compareu amb https://www.whatismyip.com/

Funciona correctament :

Amb mes detall :

Nathan Giesbrecht github owner - Install DUC : (assuming results in /usr/local/bin)

Veure estat :

Te un script important pel squid (veure mes avall)

La llista de coses que es fan sota control de cron es pot veure a /home/mate/cron-jobs/cron_squid_i_ftp.txt, i és (a mes de /etc/cron.weekly /etc/cron.monthly)

• guifi-proxy.sh : sincronitza els usuaris de guifi.net amb els usuaris del nostre proxy al PuntOmnia
• send_page/send_page.sh : envia unes pagines HTML al host "000webhostapp.com" via FTP un cop cada 5 minuts. Serveix com "watchdog" del Punt Omnia.
• fer_backup.sh : un cop a la setmana envia els fitxers importants per email a xarxatorrelles@gmail.com
• netejar_logs.sh : un cop a la setmana fa girar els nostres logs privats
• squid -k rotate : fa rotar els logs del Squid per evitar que omplin tot el sistema de fitxers

To trace the "cron" events, we write some lines into "cron.log"

Ubuntu pages - Squid is a full-featured web proxy cache server application which provides proxy and cache services with access control

Squid homepage, wiki FAQs

El Squid és el proxy del Punt Omnia : 10.139.238.194:3128

Així, els usuaris de guifi.net que no siguin socis de l'associacio guifi de Torrelles poden sortir a Internet, amb un cert control de ample de banda

El nostre entorn és :

• install by "sudo apt install squid"
• after making changes to the /etc/squid/squid.conf file, restart the squid server with sudo systemctl restart squid.service

  Aqui li diem, entre altres coses, on volem el fitxer amb els usuaris i les claus de pas :

  auth_param basic program /usr/lib/squid3/basic_ncsa_auth /usr/etc/passwd

  I al job "guifi-proxy.sh" que llegeix de guifi.net hi tenim, casualment :

  passwd_dir='/usr/etc/'
• sudo apt-get purge squid ; remove old version and cfg files
• install squid3 : sudo apt install squid3
• display squid version : "/usr/sbin/squid -v" : 3.5.12
• there is some warning with "hierarchy_stoplist" sentence in /etc/squid/squid.conf - see "mail" for su

La llista d'usuaris i claus de pas s'actualitza cada hora amb el job "guifi-proxy.sh", que es programa amb el crontab de root següent:

La comanda que engega el cron és

Posem com executable el shell amb "chmod 744 guifi-proxy.sh"

Reiniciem el servei : "sudo service cron restart"

Si hi ha algun problema, el servidor de cron envia un "mail" a root !

I al shell "guifi-proxy.sh" hi posarem unes primeres línies com

Compte que hem editat la linia "$reload" per Ubuntu (i sense el "3")

Al Foro hi diu

Compte amb la privacitat : guifi-dev@llistes.guifi.net - fer servir en un Ubuntu :

guifi-dev, msg sag @ foro

[***] wiki.guifi : "Que és guifi-proxy3?" i "Configuració del guifi-proxy3"

Blackhold ens dona un ejemple de configuracio : servidor proxy federado de guifi.net

Els passos son :

Fem servir services o systemctl

Mes info - (url)

Quite interesting :

Per a que no engegui mai mes :

• anem al nostre node, as 33491
• fem login()
• anem a la solapa "users"
• piquem el boto "Add User"
• omplim les dades

• /etc/squid/squid.conf
• /var/log/squid/cache.log
• /var/log/squid3/access.log
• /home/mate/cron-jobs/squid/guifi-proxy.sh
• /home/mate/cron-jobs/squid/cron_squid.txt
• /home/mate/logs/squid_sync.log

El directori /usr/etc/ l'hem de crear a ma, doncs no existeix i ens cal.

Wiki Squid.

Trobo molt interessant la comanda "curl 10.139.238.194:3128", resposta del squid "missing url"

Search here for "Internet access trough a proxy"

Hi habia un altre proxy : 10.138.27.163, que es troba a Gran Via amb Villarroel (?)

Com arribo al proxy :

Squid will shut itself down if it can't write to its logfiles

• cache.log
• access.log
• store.log
• swap.state
• squid.out
• useragent.log

Location : /var/log/squid or /var/log/squid3

Tons of software to monitor Squid logs :

3rd party, or Monitis, SARG, 3 more

... as Cacti : 1, 2

You need to rotate your log files with a cron job, as

Install the Squid client as well, as we will need it for monitoring and testing purposes:

How do I know who's connected to my SQUID server ?

Can get an error :

To verify that a new access can be done thru pomnia proxy, do :

1. run "C:\sebas\miscosas\guifi\Torrelles\punt_omnia\scripts\curl_i_wget\8_verify_proxy.cmd"
2. display squidclient mgr:client_list command result
3. verify your IP is there, as mine = 10.139.130.117 !

The working script is :

Squid proxy server is used to limit bandwidth usage for each user (or for a whole network) using classes.

Linux Help

1. edit /etc/squid/squid.config
2. add these lines :

How to verify the limitation is working ? Downloading a large file, as 750 MB ISO or 1GB

Instalem FO en lloc de ADSL i obtenim "ERROR - The requested URL could not be retrieved"
Unable to determine IP address from host name "www.apple.com"
The DNS server returned: No DNS records

Solucio :

És un entorn de progamació per escriure aplicacions web en JavaScript.
En el nostre cas, l'aplicació fa "ping" a una llista de nodes (supernodes de guifi i nodes de usuari) i genera un fitxer HTML amb els resultats.

See results

• {internal from pomnia} http://192.168.1.102:3001 or
• {external from guifi.torrelles} http://10.139.238.194:3001/ with events or
• {world wide web} https://torrelles-guifi.000webhostapp.com/pagina.html

Install : "sudo apt install git-core"

Github origin : timer. Clone it using git :

End the configuration :

• sudo ln -s /usr/bin/nodejs /usr/bin/node ; some old apps use old name
• sudo npm install -g ; install all packages required by package.json as "global" -> /usr/local/lib/node_modules/
• sudo npm link express
• sudo npm link python-shell
• /home/pi/timer/2_do_ping.py here is /home/mate/nodejs-projects (in python_options)
• sudo apt install python-pip ; install python installer
• sudo pip install pyping ; instal python "ping"
• sudo pip install --upgrade pip ; go to pip 9.0.1

Run APP :

Aquesta APP fa

1. ping a una serie de nodes (de entrada.json)
2. genera una pagina HTML amb els resultats

Cal un "cron" que envii la pagina html cap a un servidor públic : veure aqui

La comanda que ho fa és :

1. hi ha una eina que fa "wget" de les IPs de la xarxa guifi de torrelles :
   /home/mate/eines/tronc/scan_tronc.sh v 1.5.c or (+)
2. el PC del punt omnia no te cap server al port 80, per lo que dona un fals negatiu
3. per evitar-ho, engeguem un web-server minim al punt omnia :
   /home/mate/nodejs-projects/min_web_server/ru.sh -> /home/mate/logs/min_web_server.log
4. s'hi pot acccedir des la ip 10.139.238.194 interna o ip:7080 externa

Podem fer servir Winston en el raspberry pi o Morgan en les webapps amb express.

Canvia els console.log per winston i fliparàs !

Webmin is a program that simplifies the process of managing a Linux or Unix system though a web browser

Homepage, wiki page, how-to :

1. $ sudo apt install webmin - no s'ha trobat el paquet "webmin"
2. 15.462.446 webmin_1.860_all.deb to /home/mate/webmin from source
3. sudo apt install ./webmin_1.860_all.deb
4. netstat -plnt | grep 10000
5. https://192.168.1.102:10000, usr = xarxa, guifi !

Darrer nivell

Volem configurar el router de la Fibra Optica (http://192.168.1.1), accedint-hi des el PC "pomnia" (ip = 192.168.1.254).

Una via es posar Remote Desktop al pc "pomnia". Una altra es configurar el proxy del MikroTik ip = (10.139.130.33/192.168.1.253) {Edgar} url {***}

XRDP is a Remote Desktop Protocol (RDP) Server, allowing RDP clients to be presented an X windows desktop to the user.

Versions

Instalem xrdp al pomnia :

• sudo apt-get update {posem la maquina al dia}
• sudo apt-get install ubuntu-desktop {install desktop environment, 2 GB disk}
• sudo apt-get -y install xrdp {install xrdp}
• sudo ufw status verbose {display firewall status}
  mate@punt-omnia:~$ sudo ufw status verbose Estat: inactiu

• si volem activar el Firewall :
  • sudo ufw enable {firewall is disabled by default}
  • sudo ufw show raw {display actual rules}
  • sudo ufw allow 3389/tcp {allow just RDP through the local firewall}

• sudo /etc/init.d/xrdp restart {restart xrdp}
  mate@punt-omnia:/var/log$ netstat -an | grep "LISTEN " | grep ":3389" tcp 0 0 0.0.0.0:3389 0.0.0.0:* LISTEN

• (win) mstsc + "10.139.238.194" ; modules :
  • sesman-Xvnc : connecting to sesman ip 127.0.0.1 port 3350
  • console : 127.0.0.1:5900

• /etc/init.d/xrdp status {veure estat xrdp}
  mate@punt-omnia:/etc/X11$ /etc/init.d/xrdp status â xrdp.service - LSB: Start xrdp and sesman daemons Loaded: loaded (/etc/init.d/xrdp; bad; vendor preset: enabled) Active: active (running) since dv 2019-05-31 17:18:32 CEST; 21min ago Docs: man:systemd-sysv-generator(8) Process: 4441 ExecStop=/etc/init.d/xrdp stop (code=exited, status=0/SUCCESS) Process: 4456 ExecStart=/etc/init.d/xrdp start (code=exited, status=0/SUCCESS) Tasks: 1 Memory: 1.4M CPU: 241ms CGroup: /system.slice/xrdp.service ââ4465 /usr/sbin/xrdp mai 31 17:18:32 punt-omnia systemd[1]: Starting LSB: Start xrdp and sesman daemons... mai 31 17:18:32 punt-omnia xrdp[4456]: * Starting Remote Desktop Protocol server mai 31 17:18:32 punt-omnia xrdp[4456]: ...done. mai 31 17:18:32 punt-omnia systemd[1]: Started LSB: Start xrdp and sesman daemons.

• remote desktop client al ubntu :
  (t60) rdesktop -u nom_usuari -p clau_de_pas 10.139.238.194 <gray> (pomnia) mate@punt-omnia:~$ rdesktop -u nom_usuari -p clau_de_pas 192.168.1.60 ERROR: Failed to open display: rdesktop -d domain -u username -p password -k fr-be -g 1920x1024 -T Customer-SupportPC -a 24 IP -k keyboard to emulate -g geometry -T window title -a colour depth, bpp (8, 15, 16, 24 or 32)

  Missatge :

  connecting to sesman ip 127.0.0.1 port 3350

• modify /etc/xrdp/xrdp.ini to have "address=0.0.0.0" right after "#background=626x72" line

• (win) mstsc + "10.139.238.194" - login OK
  mate@punt-omnia:/var/log$ sudo cat xrdp-sesman.log [20190531-18:30:34] [INFO ] scp thread on sck 7 started successfully [20190531-18:30:35] [INFO ] ++ created session (access granted): username mate, ip 10.139.130.117:59072 - socket: 7 [20190531-18:30:35] [INFO ] starting Xvnc session... [20190531-18:30:35] [INFO ] starting xrdp-sessvc - xpid=12081 - wmpid=12080 [20190531-18:30:40] [INFO ] ++ terminated session: username mate, display :10.0, session_pid 12078, ip 10.139.130.117:59072 - socket: 7
• session closes after 5 seconds - I find
  mate@punt-omnia:~$ cat .xsession-errors Xsession: X session started for at dv mai 31 18:28:35 CEST 2019 X Error of failed request: BadValue (integer parameter out of range for operation) Major opcode of failed request: 109 (X_ChangeHosts) Value in failed request: 0x5 Serial number of failed request: 6 Current serial number in output stream: 8 localuser:mate being added to access control list X Error of failed request: BadValue (integer parameter out of range for operation) Major opcode of failed request: 109 (X_ChangeHosts) Value in failed request: 0x5 Serial number of failed request: 6 Current serial number in output stream: 8 openConnection: connect: El fitxer o directori no existeix cannot connect to brltty at :0 gpg-agent[10794]: directory '/home/mate/.gnupg/private-keys-v1.d' created gpg-agent[10795]: gpg-agent (GnuPG) 2.1.11 started
• config file : /etc/xrdp/sesman.ini
• stop xrdp : /etc/init.d/xrdp stop
• try
  1. create another user "sebas" :
     mate@punt-omnia:/home$ sudo adduser sebas
  2. make it "auto login" :
     • add line to /etc/pam.d/lightdm
       mate@punt-omnia:/etc/pam.d$ cat lightdm auth sufficient pam_succeed_if.so user ingroup nopasswdlogin
     • add user to group "nopasswdlogin"
       mate@punt-omnia:/etc/pam.d$ groupadd -r nopasswdlogin {create group} gpasswd -a sebas nopasswdlogin {assign user to group}
     • verify user is in group
       mate@punt-omnia:/home$ getent group nopasswdlogin nopasswdlogin:x:121:sebas
     • try remote login : "error - problem connecting"
       sebas@punt-omnia:~$ cat .xsession-errors Xsession: X session started for at ds jun 1 12:10:44 CEST 2019 X Error of failed request: BadValue (integer parameter out of range for operation) Major opcode of failed request: 109 (X_ChangeHosts) Value in failed request: 0x5 Serial number of failed request: 6 Current serial number in output stream: 8 localuser:sebas being added to access control list X Error of failed request: BadValue (integer parameter out of range for operation) Major opcode of failed request: 109 (X_ChangeHosts) Value in failed request: 0x5 Serial number of failed request: 6 Current serial number in output stream: 8 openConnection: connect: No such file or directory cannot connect to brltty at :0
• verify
  sebas@punt-omnia:/usr/share/xsessions$ cat ubuntu.desktop [Desktop Entry] Name=Ubuntu Comment=This session logs you into Ubuntu Exec=gnome-session --session=ubuntu TryExec=unity Icon= Type=Application DesktopNames=Unity X-Ubuntu-Gettext-Domain=gnome-session-3.0

• install Light Desktop LXDE :
  1. sudo apt-get update
  2. sudo apt-get install lxde
  3. echo lxsession -s LXDE -e LXDE > ~/.xsession
  4. sudo service xrdp restart

  To remove it : "$ sudo apt-get --purge autoremove lxde"

  To restore session :

  cd /home/youruser echo "gnome-session --session=ubuntu-2d" > .xsession sudo /etc/init.d/xrdp restart

• "~/.xsession" and "/etc/xrdp/startwm.sh" (/etc/X11/Xsession)

• gray screen : xfce4

• amb un "restart" el xrdp funciona amb usuari "sebas" i desktop "XFCE" (sudo apt-get install xfce4)
  sebas@punt-omnia:~$ cat .xsession xfce4-session

• T60 + "rdesktop -u user -p passwd 10.139.238.194"

El nostre entorn és :

Des de casa : (a) si que va

Des de pomnia : (b) si va el SSH

Des de pomnia : (b) no va el CURL

Ens cal una eina com :

Configurem :

And we test :

Compte : aquesta comanda actualitza "/home/mate/.ssh/known_hosts" -> ho hem de fer per totes les IP 172.xxx !

Solució : Web Proxy

Read here

wiki Lynx is a customizable text-based web browser for use on cursor-addressable character cell terminals.

Homepage, users guide

Install : sudo apt install lynx

We can use /etc/lynx/lynx.cfg to allow proxy for lynx, or

Result : HTTP/1.0 403 Forbidden

It starts loading lynx.isc.org, configured at "C:\Program Files (x86)\Lynx\lynx.cfg"

This client does not contain support for HTTPS URLs

You will need these DLLs, either in Lynx's directory or in your system32 directory:

• libssl-1_1.dll (replaces ssleay32.dll)
• libcrypto-1_1.dll (replaces libeay32.dll)
  url
• msvcr120.dll (provided with Visual Studio 2012)

Or use the Cygwin version of lynx : cygwin homepage - run "setup", select location, goto "web" section and select "lynx"

How to install sshpass at cygwin :

1. $ curl -LO http://downloads.sourceforge.net/sshpass/sshpass-1.06.tar.gz
2. $ md5sum sshpass-1.06.tar.gz
3. $ tar xvf sshpass-1.06.tar.gz
4. $ cd sshpass-1.06
5. $ ./configure - "gcc" compiler required
6. $ make
7. $ sudo make install
8. $ sshpass

Al PuntOmnia tenim el servidor de grafiques al node 31998 - el identificador del servidor de gràfiques és "31998". El seu "Service Name" és 31998-GraficsTDLLPuntOmnia

No esta ben configurat a guifi : http://www.guifi.net/snpservices/graphs/cnml2mrtgcsv.php?server=31998 no treu res

Seqüencia d'instalació :

1. instalar apache2
2. instalar snpservices
3. configurar crontab

Important : "DocumentRoot /var/www" a /etc/apache2/sites-available/000-default.conf !

És recomenable afegir un alias al servidor. Un alies es una redirecció o un nom més curt d'una adreça més llarga.

Hem fet que fent http://127.0.0.1/guifigraphs anem a http://127.0.0.1/snpservices/graphs que en el fons és /var/www/html/snpservices/graphs

Comprovar que Apache funciona : anem a http://127.0.0.1 (o "curl http://127.0.0.1") i ens ha de dir "It works!""

Comprovar que DocumentRoot és correcte : "curl http://10.139.130.34/index.html"

Comprovar que "Alias" funciona : "curl http://127.0.0.1/guifigraphs"

Mostar la configuracio del Apache :

Comprovar que php5 funciona :

1. editem /var/www/html/php.php :
   <?php phpinfo(); phpinfo(INFO_MODULES); ?>

2. obrim http://127.0.0.1/php.php (local) o http://10.139.130.34/php.php (remot)
   Compte que "curl http://127.0.0.1/php.php" no treu tot el contingut pero si l'esquelet

3. surt una pàgina ben llarga amb un munt de dades del PHP -> ok, 2010227

Ens sortirà un menú de configuració que ens demanarà algunes dades (/var/www/html/snpservices/common/config.php):

I començarà a descarregar el fitxer mrtg.cfg corresponent al servidor de gràfiques definit en el punt 1.

per comprovar que php_snpservices funciona, anem a una cosola i escrivim:

A bit later :

En aquest punt ja podem accedir al servei snpservices via web a aquesta url:

Si no funciona comprova que tinguis un enllaç simbòlic a /var/www que es digui snpservices i apunti a /usr/share/snpservices. Si no existeix, crea'l :

Compte - snpservices utilitza MRTG però no en el format original (utilitzava uns fitxers de log) sinó utilitzant RRD com a logformat.
Això es pot veure al fitxer /var/lib/snpservices/data/mrtg.cfg on s'ha indicat la variable: LogFormat: rrdtool

Funciona (20180227) :

Tens totes les urls aqui

2 linies :

• la primera perque cada mitja hora descarregui de guifi.net la llista de trastos dels que ha de fer grafiques
• la segona perque cada 5 minuts reculli les dades de tots els trastos

Forceu la primera descarrega dels trastos a graficar des de guifi.net executant:

Podem veure la configuració aqui :

• http://guifi.net/snpservices/graphs/cnml2mrtgcsv.php?server=30628 [*** Ajuntament]
• http://guifi.net/snpservices/graphs/cnml2mrtgcsv.php?server=31998 [ko PuntOmnia]

Ara tenim :

Ens dona

*** Access our AirControl by https://10.139.238.194/ {20180703} ***

Read how-to-install in nanobeam data sheet

1. download server and install
2. install airControl client for Windows/Linux/OSX
3. to check the connection to the server is working properly, in a web browser on the client navigate to http://ip-of-ac2-server:9081/diag.
   You will then see diagnostic information for the airControl Server.

Read the AirControl User's Guide

Here's how to reset pwd using /opt/Ubiquiti/AirControl2/airControl2Server.vmoptions

Monitoring cannot be started on a device with firmware version older than 3.6

In pomnia we have :

Els logs son a

In W500 we have

• status : 'sudo service airControl2Server status'
• stop : 'sudo service airControl2Server stop'
• lets disable it :
  mate@punt-omnia:/opt/Ubiquiti/AirControl2$ sudo ./airControl2Server status airControl2Server is running. mate@punt-omnia:/opt/Ubiquiti/AirControl2$ sudo ./airControl2Server stop Shutting down airControl2Server Stopped. mate@punt-omnia:/opt/Ubiquiti/AirControl2$ sudo ./airControl2Server status airControl2Server is stopped.
• rename /opt/Ubiquiti/AirControl2/airControl2Server to airControl2Server.disabled, called from "/etc/init.d" {20190314, ok}

In order to use Google Maps locally a valid API key is required. For details on obtaining a key please see this guide.
The key should be assigned to the domain or IP address of your airControl.

Si volem monitoritzar les antenes de infraestructura (172.25.37.122 = Dip Rocket RD1) des pomnia (10.139.238.194) ens cal passar per un proxy.

foro AC 2 beta

Dates de quan re-engego la maquina (no de quan s'ha aturat) :

Fitxer interessant :

La seva configuració : /etc/systemd/logind.conf

Comanda interessant :

Els serveis s'aturen via "services-manager" :

Molt interessant :

Un missatge similar, pero no igual :

Pregunta : on es el texte "Power key pressed." ?

Comanda

• installed software and its configuration files
• personal settings
• system settings
• crontab

El disc dur envia missatges extranys al log de Ubuntu - fem copia (despres de "fsck /dev/sda1")

1. CPU architecture : i396/AMD64 - i396
2. get ISO : clonezilla-live-20190108-cosmic-i386.iso [289.406.976] to //w500/c:\temp\guifi\eines\clonezilla
3. Rufus 1.4.12.535 (-> 3.4) to USB :
   • device - USB name [klnzlla] == Integral 8GB
   • Boot selection - ISO file
   • Partition scheme - MBR
   • Target system - BIOS
   • Volume Label - from file
   • File System - FAT32
   • Cluster size - 4.096

Botem el USB al T60 :

• Clonezilla live, VGA 800x600, version 20190108-cosmic-i386
• choose language - UTF-8 english
• keyboard configuration - US kbd
• Start Clonezilla
• OpenSource Clone Systems - device-image : work with disks or partitions using images
• image directory - where to save image or where to read from : local_dev
  if you want to use USB devive as a Clonezilla image repository, ...
  • insert it *now*
  • wait for about 5 secs
  • press ENTER key
  
  We have
  sda1 80 GB ext4 Hitachi sdb1 160 GB ext4 Hitachi sdd1 8 GB ext4 TDK
• now we need to mount a device as /home/partimag so we can read or save the image : sdd1 EXT4 7,5 GB
• which directory is for the Clonezilla image repository : "pepeta"
  /dev/sdd1 ext4 -> /home/partimag
• choose the mode to run : Beginner - Expert - Exit
• select mode : savedisk - save local disk as an image
• input a name for the saved image to use : 2019-03-04-10-img
• choose local disk as source
  • [*] sda 80 GB
  • [.] sdb 160 GB
• want to check and repair the file system before saving it ? -sfsck : skip checking/repairing source file system
• after the image is saved, do you want to check if the image is restorable ? no
• do you want to encrypt the image ? no
• action to perform when everything is finished : choose / reboot / shutdown
• 5 minuts

Al USB "TDK" hi ha

• 2019-03-04-10-img <dir>
• dintre hi ha un log a "clonezilla-img"

Live version :

url :

• Gnome Disk Utility
• DD

• disk dur 40 GB dona errors de hardware
• poso un disk dur de 60 GB
• instalem Ubuntu Server "874.512.384 ubuntu-18.04.2-live-server-amd64.iso" del USB 2 GB

Top

Es el que abans era "servidor de grafiques al PC del Ajuntament".

Top

20190610 :

• Dell Power Edge 1850, model EMU, serial GNTDV1J (gran), 1 GB RAM, 2x 133 GB raid 1
• Dell Power Edge R200, model SVP, serial 3K9NP3J (petit), 2 GB RAM, 2x 146 GB raid 1
• pantalla Dell 1707FPt, 1280x1024

specs, user's guide [***], installation and troubleshooting guide [as disable pwd] pdf

Tech specs :

Power On :

• PowerEdge 1850, BIOS Revision A04
• F2 = Setup, F10 = utility mode (system diagnostics), F12 = PXE boot
• one 3,20 GHz processor, processor bus 800 MHz, L2 cache 2 MB
• LSI Logic MPT BIOS
  press "Ctrl+A" to start LSI configuration utility
  searching for device(s) ... HBA ID LUN Vendor Product --- -- --- ------ ------- 0 0 0 Fujitsu MBA3147NC 0 1 0 Seagate ST3146854LC 0 6 0 PE/PV 1x2 SCSI BP 0 7 0 LSILogic 1020/1030
• intel MPT boot ROM
• intel Boot Agent
• Baseboard Management Controller
  press "Ctrl+E" for BMC setup
• si F10, Utility Partition not available {no puc executar Diagnostics}
• si F12, "attempting PXE boot"
  1. initializing
  2. Media Test Failure - test cable (cable al interior)
  3. client MAC 00.14.22.17.8B.14
  4. DHCP *
  5. PXE-E53 : no boot filename received
• Debian GNU/Linux 6.0 PANDORA tty1

F2 Setup :

• Intel Xeon processor
• processor speed 3,20 GHz, bus speed 800 MHz, level 2 cache 2 MB
• BIOS Revision A04
• service tag GNTDV1J
• system memory 1024 MB ECC DDR2
• video memory 16 MB
• boot sequence
  1. IDE CD-ROM device
  2. hard drive C:
  3. PXE
• integrated devices
  • embedded RAID controller - SCSI enabled
  • embedded Gb NIC1 enabled with PXE, MAC 00.14.22.17.8B.14 (mes extern dels dos, enp6s7)
  • embedded Gb NIC2 enabled without PXE, MAC 00.14.22.17.8B.15 (me intern dels dos, enp7s8)

Instalació :

1. DVD - no el detecta, no puc botar de DVD : es un CD-ROM !
2. CD amb mini.iso, 64 MB : missatge ISOLINUX 6.03 20171017 ETCD i res mes
3. PXE @ T60 : engega instalacio Ubuntu, pero dona "loading libc6-udeb failed"

Debian GRUB krak :

1. reach the GRUB menu and touch any key
2. go to "linux" line and add "init=/bin/bash" at end
3. boot with "Ctrl+x"
4. make filesystem read-write : "mount -o remount /"
5. set pwd with "passwd"
6. reboot (ja fa "sync")

Amb Webmin o htop o lshw o hardinfo o inxi :

• TCP/IP : IP fixe = 192.168.1.9
• CPU (bogomips at cat /proc/cpuinfo) :
• RAM (cat /proc/meminfo) :
• HDD : 2x 133 GB, raid 1

spec sheet, all manuals : owner's manual, drivers

Tech specs :

Power On :

• BIOS Revision 1.2.1
• F2 = setup mode, F10 = Utility mode, F11 = Boot menu, F12 = PXE boot
• one 2,13 GHz Quad-core processor, bus speed 1066 MHz, L2 cache 2x4 MB
• system memory size = 2,0 GB, system memory speed = 667 MHz
• Broadcom NetXtreme Ethernet Boot Agent
  press "Ctrl+S" for ethernet MBA boot agent configuration (requires PXE enabled NIC)
• Dell SAS 6 Host Bus Adapter BIOS (enter ctrl+C)
  press "Ctrl+C" for SAS configuration utility (Serial Attached SCSI)
  HBA 0 = virtual disk 135 GB, HBA 1 Lsi Logic SAS 1068
• Baseboard Management Console
  press "Ctrl+E" for BMC setup
• Debian GNU/Linux 7 mateum tty1

Setup menu

• memory :
  • system memory size 2,0 GB
  • system memory type ECC DDR2
  • system memory speed 667 MHz
  • video memory 32 MB
• CPU :
  • 64 bit : yes
  • core speed 2,13 GHz
  • bus speed 1066 MHz
  • level 2 cache 2x4 MB
  • number of cores 4
• SATA :
  • port C : HL-DT-STCD-RW/DVD-ROM GCC-T20N
• boot sequence
  1. SATA CD-ROM
  2. hard drive c:
  3. PXE embedded NIC
• integrated
  • embedded Gb NIC1 - enabled with PXE, MAC 00.1E.C9.BB.D3.0A
  • embedded Gb NIC2 - enabled without PXE, MAC 00.1E.C9.BB.D3.0B

SAS configuration

• adapter list : SAS1068E, enabled
• limited to RAID 0 or 1
• RAID properties
  • type = integrated mirror
  • slot #0 ST3146855SS, primary
  • slot #1 ST3146855SS, secondary

Instalació

• 64 bit ubuntu server 18.04.2, 834 MB
• eth interfaces :
  • eno1 : upper
  • eno2 : lower
• hard disk : use whole disk, 135,972 GB {invisible raid}
• popular snaps :
  • mosquitto : eclipse mqtt broker
  • google-cloud-sdk : command line interface for Google Cloud Platform
• reboot

Top

Homepage, community, V55 user's guide, AirOs v8 et all, as V 8 v02

Nice article : airMAX Which product should I use ? [*****]

Comandos basicos para Ubiquiti : mostrar configuracion, modificarla, cambiar la contraseña, ...

• wireless mode : AP or station
• network mode : bridge or router

El esquema queda aixi :

1. if antena-2 has set "network mode" to router (set WAN static IP and dGW, set LAN IP and DHCP) the traffic back from internet can not find those IPs
2. so, all antenas must have "network mode" to bridge
3. AP antena : set "wireless mode" to AP, set SSID
   Atencio : les antenes "Loco" no poden treballar en mode "AP" - minim "antena rodona" NB-M5-16
4. "station" antena - associate to ESSID

En general, ... the omni to be the AP, and directionals pointing to it, stations

Les antenes Ubiquiti poden tenir 3 valors en el cap "wireless mode" :

• station
• AP, access point {nomes NanoBeam M5 16, no la Loco}
• AP-repeater - what is it ?
  will only work between two Ubiquiti radios

ubiquiti : what wireless mode to use to connect 2 networks ? {20211111 - "bridge"}

Station - if you have a client device to connect to an AP, configure the client device as Station mode. The client device acts as the subscriber station while it is connecting to the AP. The SSID of the AP is used, and all the traffic to and from the network devices connected to the Ethernet interface is forwarded

Access Point - if you have a single device to act as an AP, configure it as Access Point mode.

airOS ug , pg 28/68

Bridge - the device acts as a transparent bridge, operates in Layer 2 (like a managed switch), and usually has only one IP address (for management purposes only).

Router - the device is usually separated into two networks or subnets (one WAN and one LAN). The WLAN functions as the Wide Area Network (WAN). The Ethernet ports function as the LAN. Each wireless or wired interface on the WAN or LAN has an IP address (for management purposes only).

airOS ug , pg 34/68

The following summarizes the differences between Bridge and Router modes:

• Bridge Mode
  • • The device forwards all network management and data packets from one network interface to the other without any intelligent routing. For simple applications, this provides an efficient and fully transparent network solution.
  • • There is no network segmentation, and the broadcast domain is the same. Bridge mode does not block any broadcast or multicast traffic. You can configure additional firewall settings for Layer 2 packet filtering and access control.
  • • WLAN and LAN interfaces belong to the same network segment and share the same IP address space. They form the virtual bridge interface while acting as bridge ports. The device features IP settings for management purposes.

• Router Mode
  • • The device operates in Layer 3 to perform routing and enable network segmentation ; wireless clients and the WAN interface are on a different IP subnet. Router mode blocks broadcasts and can pass through multicast packet traffic. You can configure additional firewall settings for Layer 3 packet filtering and access control.
  • • The device can act as a DHCP server and use Network Address Translation (Masquerading), which is widely used by APs. NAT acts as the firewall between the LAN and WAN.
  • • For example, Router mode is used in a typical Customer Premises Equipment (CPE) installation. The device acts as the demarcation (demarc) point between the CPE and Wireless Internet Service Provider (WISP), with the wireless interface of the device connecting to the WISP.

• ping watchdog - failure count to reboot [!?!?]

• Device Discovery ?

• CDP ? Cisco Discovery Protocol

• DFS ? Dynamic Frequency Selection selects a free channel at startup and changes to a free channel if radar etc is detected.
  To disable it, just set country to US and it works

• System Log - on es pot veure ?
  You can access the system log on the Main tab, under "Monitor" (bottom part), far right, besides "DHCP leases"
  Some addtional info can be found by SSHing to the unit, and running "dmesg".
  If you want to see what is inside the .sup file, change the extension to .tgz and use something like 7Z to extract it.

• Remote Log (port 514)

• airMax {pdf} -

  AirControl is a powerful and intuitive web based server network management application which allows operators to centrally manage entire networks of Ubiqutii devices.

• Ubiquiti-proprietary UDP discovery protocol

  There is a Ubiquiti discovery protocol that operates over UDP port 10001. It sends probes for radio hardware, and gets back responses that describe the hardware, firmware image, MAC address, etc.

• Ubiquiti-proprietary spectral analysis ("AirView", spectral{player,server,tool} binaries, TCP/18888 protocol)

  There is a Ubiquiti protocol that operates over TCP port 18888, dumping spectral signal information from a special daemon that operates on the radio hardware. In conjunction with a Java program on the client side, this displays a spectragraph showing spectral usage.

  Ubiquiti's AirView is a revolutionary product which consists of a tiny USB module, that when paired with a common laptop or PC, transforms into a powerful Spectrum Analyzer - ubnt news

Top

RouterOS is MikroTik's stand-alone operating system based on linux v3.3.5 kernel

Mikrotik homepage, documentation wiki , Help Mikrotik docs [***]

RouterOS - documentation , features

To manage your router, use the web interface, or download the maintenance utilities :

• Winbox to connect to your device - download winbox 4 guidous
• Dude to monitor your network
• Netinstall for recovery and re-installation

Configure the router using scripting, .RSC files

Top 10 RouterOS configuration mistakes (video) :

• 10 - same IP on multiple/different interfaces : "/ip address print" o "/ip route print" (3:12)
• 9 - lack of monitoring
  • what is the health of my router ? see "System Health" menu !
  • is it reachable from everywhere it should ?
  • isn't it overloaded ?
• 8 - DNS issues
• 7 - firewall inefficiency (25:17)
• 6 - NAT issues
• 5 - allowed IP spoofing - test your network : https://spoofer.caida.org
• 4 - bridge issues
• 3 - PoE issues (44:40)
• 2 - waiting for hackers
• 1 - admin / no password (52:05)

Reset to factory :

1. turn "off" the router
2. push the "RESET" button and keep it pushed
3. turn "on" the router and wait for the "beep"
4. LCD message in red : "Secure your router"
5. IP = 192.168.88.1, user "admin", pwd {blank}

Read how to use TouchScreen

If configuring a port you are required to enter a "PIN", the defalut is 1234

Interesting commands :

More :

• Mikrotik real world tips
• Tips para principiantes
• Mikrotik basics
• first time configuration
• simple static routing

Depending on the router model, different Quickset modes might be available from the Quickset dropdown menu:

• CAP: Controlled Access Point, an AP device, that will be managed by a centralised CAPsMAN server. Only use if you have already set up a CAPsMAN server.
• CPE: Client device, which will connect to an Access Point (AP) device. Provides option to scan for AP devices in your area.
• HomeAP: The default Access Point config page for most home users. Provides less options and simplified terminology.
• HomeAP dual: Dual band devices (2GHz/5GHz). The default Access Point config page for most home users. Provides less options and simplified terminology.
• PTP Bridge AP: When you need to transparently interconnect two remote locations together in the same network, set one device to this mode, and the other device to the next (PTP Bridge CPE) mode.
• PTP Bridge CPE: When you need to transparently interconnect two remote locations together in the same network, set one device to this mode, and the other device to the previous (PTP Bridge AP) mode.
• WISP AP: Similar to the HomeAP mode, but provides more advanced options and uses industry standard terminology, like SSID and WPA.

QuickSet

Some links :

• simple static route sample
• manual /ip route

Naltros al Campanar tenim :

Interessant :
Packets that are marked by firewall with this value of routing-mark will be routed using routes from this table, unless overridden by policy routing rules.

First list is :

"tool" details

To display locally connected MACs we do

Sota de ip tenim:

Quatre comandes que funcionen (see "/home/mate/eines/ssh/router_command.sh") :

Si es criden des un shell, el "print" ha de ser "print detail" :

Una altra manera de fer-ho és :

Use ping or flood-ping :

A very interesting set of commands via putty :

Wireless interfaces in AP mode don't show as "running" unless a client is connected.

Here we can see the relationship between the port number and cable (under "interface", numbering as on case) to their IP (or IPs)

Backup manual , configuration , Management

RouterOS backup feature allows you to save your current device's configuration, which then can be re-applied on the same or a different device (with the same model name/number).

Read wiki on backup

To save the router configuration to file test :

In a more explicit way :

If you want to save the configuration to a remote site, use FTP or WinSCP

To see the files stored in the router:

To load the saved backup file "test.backup" :

The export command prints a script that can be used to restore configuration.

The command can be invoked at any menu level, and it acts for that menu level and all menu levels below it.

Now we have

At mikrotik forum they ask me for

The root level command /import [file_name] executes a script stored in the specified file (in "Files")

See cfg mgmnt : see "Configuration parts to watch out for in exported .rsc files"

The command /system reset-configuration clears all configuration of the router and sets it to the default including the login name and password ('admin' and no password), IP addresses and other configuration is erased, interfaces will become disabled. After the reset command router will reboot.

See default configurations

The simplest way to make sure you have absolutely clean router is to run :

mikrotik help

All RouterBOARDs from factory come with default configuration. There are several different configurations depending on board type:

• CPE Router
• LTE CPE AP router
• AP Router (single or dual band)
• PTP Bridge (AP or CPE)
• WISP Bridge (AP in ap_bridge mode)
• Switch
• IP Only
• CAP

You can run command /system default-configuration print to see exact applied default configuration commands.

Contingut Campanar :

Interessant :

Click "system->logging->actions->memory" and set 1 lines, OK, then set back to 1000 lines.

uTik forum

We have

Un shell senzill per donar una comanda al router (see mate@punt-omnia:~/eines/ssh$ cat router_command.sh) :

Si accedim a una IP nova, ens cal "ssh-keygen -f "/home/mate/.ssh/known_hosts" -R 10.139.130.161"

WinBox is a small utility that allows administration of MikroTik RouterOS using a fast and simple GUI. It is a native Win32 binary.

Get it here

Compte vulnerabilitat WinBox !

Wiki : API API Delphi

API Delphi Client, at github

API Links (sense Delphi)

• API Links
• Manual : API

Network Address Translation is an Internet standard that allows hosts on local area networks to use one set of IP addresses for internal communications and another set of IP addresses for external communications.

A LAN that uses NAT is referred as natted network.

For NAT to function, there should be a NAT gateway in each natted network. The NAT gateway (NAT router) performs IP address rewriting on the way a packet travel from/to LAN.

There are two types of NAT:

• source NAT or srcnat.
  This type of NAT is performed on packets that are originated from a natted network. A NAT router replaces the private source address of an IP packet with a new public IP address as it travels through the router. A reverse operation is applied to the reply packets travelling in the other direction.
• destination NAT or dstnat.
  This type of NAT is performed on packets that are destined to the natted network. It is most comonly used to make hosts on a private network to be acceesible from the Internet. A NAT router performing dstnat replaces the destination IP address of an IP packet as it travel through the router towards a private network.

Masquerade

Firewall NAT action=masquerade is unique subversion of action=srcnat.
It was designed for specific use in situations when public IP can randomly change, for example DHCP-server changes it, or PPPoE tunnel after disconnect gets different IP. In short - when public IP is dynamic.

Every time interface disconnects and/or its IP address changes, router will clear all masqueraded connection tracking entries that send packet out that interface, this way improving system recovery time after public ip address change.

When action=srcnat is used instead, connection tracking entries remain and connections can simply resume.

mikrotik wiki on NAT

MikroTik RouterOS performs proxying of HTTP and HTTP-proxy (for FTP and HTTP protocols) requests.

Ens cal configurar

O directament al router :

• proxy manual - stop downloading specific types of files like .flv
• http proxy - molt detallat
• Router OS basic setup guide
• 'web-proxy' package {no el tenim} - web proxy, system zone

Alguns dels mikrotik que tenim van amb mipsle i d'altres amb ppc; tenim 1 que és ARM: el campanar ST1

Podem veure l'arquitectura del Mikrotik anant al seu WebFig i allí al "Terminal" :

MIPSBE : CRS1xx, CRS2xx, DISC, LDF, LHG, NetBox, NetMetal, PowerBox, QRT, RB9xx, hAP, hAP ac, hAP ac lite, mANTBox, mAP, RB4xx, cAP, hEX, wAP, BaseBox, DynaDish, RB20 11, SXT, OmniTik, Groove, Metal, Sextant, RB7xx
SMIPS : hAP mini, hAP lite
TILE : CCR
PPC : RB3xx, RB600, RB8xx, RB1100AHx2, RB1100AH, RB1100
ARM : Wireless Wire, CRS3xx, RB3011, RB1100AHx4
X86 : RB230, X86
MIPSLE : RB1xx, RB5xx, Crossroads
MMIPS : RB750Gr3, RBMxx

Dude homepage, download, installation

V6 applies to RouterOS v6.34+

It will automatically scan all devices within specified subnets, draw and layout a map of your networks, monitor services of your devices and execute actions based on device state changes.

El client va a Guindous. El Server que hem de posar és ... MIPSBE o SMIPS o TILE o PPC o ARM o X86 o MIPSLE o MMIPS ?

Mostrar :

Campanar (gracies, Edgar)

No hi ha DUDE per PPC (tabor i can coll) ni mipsbe (tabor i cementiri) (foro)

Enter guifi network and start client pointing to 10.139.130.65 (campanar)

Al servidor ...

Compte :

• webfig + routing : que es
  • BFD
  • BGP - Border Gateway Protocol - url
  • Filters
  • MME
  • OSPF - Open Shortest Path First - url
  • Prefix Lists
  • RIP - Routing Information Protocol - url

Top

La Diputació estendrà la fibra òptica una desena de municipis de l'Alt Penedès, el Garraf i el Baix Llobregat
16/04/2018 - 20.30 - ACN Vilafranca del Penedès.
La Diputació de Barcelona iniciarà aquest mes d'abril les obres per fer arribar la fibra òptica a sis municipis de la comarca de l'Alt Penedès (Font-rubí, Les Cabanyes, Sant Llorenç d'Hortons, Santa Fe del Penedès, Torrelavit i Vilobí del Penedès), dos del Garraf (Sitges i Sant Pere de Ribes), i un del Baix Llobregat (Torrelles de Llobregat). En conjunt, s'abastiran més de 33.500 veïns a través de 40 quilòmetres nous de cablejat que la Diputació construirà seguint la xarxa local de carreteres. Hi invertirà 3,21 milions d'euros (MEUR) i preveu que l'obra estarà acabada a finals d'aquest 2018, segons ha anunciat aquest dilluns el diputat d'Hisenda, Recursos Humans, Processos i Societat de la Informació, Joan Carles García Cañizares, i el d'Infraestructures Viàries i Mobilitat, Jordi Fàbrega, davant del Consell Comarcal de l'Alt Penedès.
Per comarques, a l'Alt Penedès es cablejaran 20,9 Km de carreteres amb una inversió de 1,67 MEUR per una població potencial de 7.794 habitants; al Garraf, es realitzaran 6,4 Km amb una inversió de 359.000 euros i al Baix Llobregat, 12,7 km amb una inversió de 1,185 MEUR.

La Diputació assegura que el projecte de fibra òptica té la voluntat de "promoure que qualsevol persona tingui accés als serveis de banda ampla treballant, alhora, per mantenir l'equilibri territorial de la demarcació". Pel que fa als detalls de l'obra, a la xarxa de transport soterrada es proposa una secció de 4 tri-tubs de 20 mm i comptarà amb arquetes als extrems, als nuclis de població i als polígons. El projecte s'ha fet de forma coordinada amb el Centre de Telecomunicacions i Tecnologies de la Informació de la Generalitat (CTTI) i l'acord permetrà a la corporació reservar conductes per al seu possible ús en serveis tecnològics sobre les carreteres. La Diputació destaca que soterrar la fibra òptica és un sistema de distribució dels senyals de telecomunicació "molt fiable, de molt altes prestacions, i poc o gens afectat per les condicions ambientals i meteorològiques externes".

3/24

El tf fixe és el 93 461 34 15 - baixa el 20190424, numero A925299319

Des el exterior es pot arribar a nosaltres aixi : http://xarxatorrelles.ddns.net/ - [83.38.149.14] 20180308, [83.34.47.52] 20190301

Obro el port 80 (http) i el 443 (https) per a que vagi al port 80 de la IP 10.139.130.34 (PC del Ajuntament), on hi ha un Apache.

Anem a "Menu" i "Puertos" :

Veig

És millor fer-ho via Alejandra

Des del Campanar tenim la bifurcació :

[2.138.13.247] 20190313

Top

Nice page: comandos router Zyxel

Top

CATNIX - punt d'intercanvi de tràfic de dades en l'àmbit territorial català

• UPC-CN-C6-E104 - url
• UPC-CN-C6-E208
• BCN-UPC-DSG
  Link a BCNPsoZFranca204

UPC @ guifi, p4u 2012

DSG, as On the Guifi.net community network economics, pdf

Top

• verificar el throughput del enllaç campanar a tabor

• determinar si el problema es de "propagació del BGP" :
  • Mikrotik BGP HowTo & FAQ
  • BGP manual
  • log

• verificar si la velocitat del cable del Campanar al Ajuntament és de 1.000 Mbps

• conectar-nos a la resta de la xarxa guifi : ping 10.139.17.167 (albert)

• ping 10.139.130.38 des casa meva (antena de Tabor a Can Sostres, va amb proxy)

Top

• antenes WDS

• modelo hibrido, supernodos hibridos

• wifi mesh

Origin :

• fq_codel (RFC8290)
• fq_codel for wifi
• google ( ending the anomaly )
• sch_cake mainlined into linux 4.19
• What is a typical dslreports score for bufferbloat on various bits of guifi's network?

Top

• associació guifi de Torrelles :

  • homepage amb noticies, estat de la xarxa, etc - és un Plesk

  • grup de Google per reportar incidents, discusions, etc

  • email per contactar-nos directament

  • tots els nodes de Torrelles, as Tabor, Campanar, Can Coll o Cementiri

  • a noip tenim xarxatorrelles.ddns.net

  • Hostname [punt-omnia] generem pàgines a https://www.000webhost.com/ :

    • qSocis : estat dels nodes clients i infraestructura
      • programa : JavaScript, "/home/mate/nodejs-projects/timer/1_gen_html.js"
      • com engega : via /etc/rc.local -> /usr/bin/pomnia_restart -> /home/mate/nodejs-projects/timer/ru.sh -> 1_gen_html.js
      • entrada : llegeix "/home/mate/nodejs-projects/timer/entrada.json" amb nom+ip
      • sortida : genera "/home/mate/nodejs-projects/timer/public/pagina.html"
      • log : /home/mate/logs/timer.log
      • [1] internet : s'envia "pagina.html" a webhost via ftp via crontab
      • [2] git : el projecte es pot veure a github/sebas/timer, see README.MD

    • qIntNodes : estat dels nodes interns
      • programa : /home/mate/eines/rexx/scan_guifi/scan_list.rexx
      • com engega : via crontab, que llença /home/mate/eines/ssh/scan_i_create.sh cada 10 minuts
      • entrada : IPS.TXT
      • sortida : genera "qq_127.html"
      • log : /home/mate/logs/scan_guifi.log
      • [1] internet : s'envia "qq_127.html" a webhost via ftp via crontab
      • [2] git / backup

    • qConnNodes : nodes conectats ara mateix
      • programa [ /home/mate/eines/ssh/scan.sh ] - in : <none>, out : out.txt
        programa [ /home/mate/eines/ssh/conectats.rexx ] - in : out.txt, out : conectats.html
      • com engega : via crontab, que llença /home/mate/eines/ssh/scan_i_create.sh cada 10 minuts
      • entrada : hi ha una llista de IPs dins de "scan.sh"
      • sortida : genera "conectats.html"
      • log : /home/mate/logs/scan.log i /home/mate/logs/conectats.log : out.txt pot contenir errors del scan.sh
      • [1] internet : s'envia "conectats.html" a webhost via ftp via crontab
      • [2] git / backup

    [1] Per enviar pagines (de public_html/) a internet, fem servir :

    */10 * * * * /home/mate/nodejs-projects/timer/send_page/send_page.sh >> /home/mate/logs/send_page.log

    Els fitxers enviats son

    • /home/mate/nodejs-projects/timer/public/pagina.html
    • /home/mate/eines/rexx/scan_guifi/qq_127.html
    • /home/mate/eines/ssh/conectats.html

    [2] Per salvar codi (enviant-lo en un email), fem servir

    • posem el nom del fitxer a "/home/mate/backup_omnia/llista_fitxers.txt" amb el path sencer, as here

    • des cron.weekly s'engega "/home/mate/backup_omnia/fer_backup.sh"

• gent federada al TDLLPuntOmnia

• guifi te :
  • homepage
  • forums guifi en català
  • buscador de nodes de guifi (cal fer login per fer-ho servir)
    • per IP, as "10.139.130.117" - compte que la IP no pot portar ni un espai al darrere
    • per MAC

• router Mikrotik links :
  • RouterOS documentation
  • forum
  • QuickSet {***}
  • scripting (???)
  • security
    • botnet,
    • buffer overflow
  • Troubleshooting tools, as packet snifer, torch, etc
  • use torch to identify the source of traffic congestion

• Ubiquiti links :

  • antena firmware Ubiquiti links :
    • Ubiquiti Networks homepage
    • legacy firmware
    • update antena firmware :
      • how to
      • downloads
      • airMax-M
      • direct URL XW v6.1.8
      • direct URL XM v6.1.8
    • forum

  • ubiquiti trainings, as "Broadband Wireless Admin"

• Alejandra : administracio dels routers de fibra optica

• els repositoris per "apt" son a /etc/apt/sources.list - buscar el de guifi per SNP

• speed test sites :
  • Comparitech (charity)
  • SpeedTest.net {***}
  • ADSL ayuda
  • Movistar
  • CNET
  • SourceForge
  • DSL reports
  • HTML5 Internet Speed Test
  • Speed Check

• homepage Mate

• projectes de'n Sebas a github

• $$$ Ajuntament - proposta : 11 Febrer 2019, 20 h ! 72 acceptades, 13 filtrades

• guifi mailing lists : guifi-dev : go to "Arxiu" i alli fem servir "Cercar"

• directius guifi (wiki) : Ramon Roca <ramon.roca@guifi.net>, Lluis Dalmau
  Altra gent de guifi que conec :
  • Albert Homs i Gall <alberthoms@gmail.com>
  • Miguel Martos <miquelmartos@gmail.com> i <miquel.martos@guifi.net>

• reparacio antena Tabot 202102 : Reformes Jordi Joan Trisot - Segona Avinguda, 64 - 679 95 81 58 -
  info@reformesjordijoan.cat , homepage

• webmin docu : doxfer - web browser tool to admin a Linux system

• Blackhold : nusepas, blog a guifi.net

• Power Over Ethernet (wiki)

• es wiki guifi Portada !

• seguros antenas

• vulnerabilidad routeros