Lugro-Mesh - Software Used

B.A.T.M.A.N.-Experimental

• BMX Guide
• bmxd man page

WiFiDog

• Description: WiFiDog offers a simple way to provide restricted access to an internet connection. It allows to control the speed and the time to each connection, and also a list users allowed or denied. It is intended for use on wireless Access Points running OpenWRT (but may also work on other Linux-based devices).
• Current Use: In Nightwing it's the captive portal used, contains the component called Gateway. It also uses the Authentication Server.

Install and configure the Authentication Server

To use your own WiFiDog server, modify the values of the file /etc/config/wifidog like this:

• Replace "wifidog.lugro-mesh.org.ar" in option server for your own FQDN. This can be done thru nw_conf.
• In case that you don't have support for SSL, change option ssl to no
• Reboot

Steps to follow for installing the WiFiDog Server:

http://dev.wifidog.org/wiki/doc/install/debian/auth-server

In case that you have another distro see:

http://dev.wifidog.org/wiki/doc

Install and configure the Gateway

(Extracted from: http://dev.wifidog.org/wiki/doc/install/gateway)

What do I need?

1. Basic proficiency in a GNU/Linux environment.
2. A GNU/Linux OS with netfilter compiled into the kernel.
3. The iptables package
4. The GNU C compiler (gcc). Other compilers may work, but we have not tested and will not support them.
5. The latest Wifidog tarball which can be obtained from (http://sourceforge.net/project/showfiles.php?group_id=102646

Pre-installation

This is where a lot of people run into problems, so let's state this in bold:
MAKE SURE EVERYTHING WORKS FIRST BEFORE INTRODUCING Wifidog INTO THE ENVIRONMENT

That especially means:

• The router must boot properly.
• The router must bring up the interfaces properly.
• The router must set up the routes properly.
• The router must connect to the internet properly.
• DNS settings must be set or obtained properly. DNS must work.
• DHCP settings (client, server or both) must be set or obtained properly.
• The ipt_mac.o kernel module must be loaded.
• If using NAT, the router must setup NAT/masquerading rules with iptables properly.
• Clients on the desired (WIFI) network must be able to bind, associate, lease and connect the Internet properly.
• All the above must happen automatically when the router starts or gets rebooted.

Do NOT proceed with installing Wifidog until you've satisfied the above. It will not work otherwise and you will waste lots of time.

Installation

Wifidog, like many open source projects, is distributed with standard autotools utilities to make installation easy. Unpack the tarball (from Sourceforge) or get the lastest source from SVN (see Download menu), then follow the standard:

./autogen.sh
make
make install


If you do not install it with make install, then you will find the compiled wifidog gateway binary in src/wifidog (also don't forget to copy wifidog.conf to /etc).

Configuration

Edit /etc/wifidog.conf and follow the instructions in the file. Things should be self-explanatory.

Running Wifidog for the first time

Run Wifidog with the following switches:
wifidog -f -d 7
-f means to run in foreground (do not become a background daemon)
-d 7 increases debug output level to the maximum

Testing

As a client on the WiFi network (or whatever interface is configured as the LAN interface in /etc/wifidog.conf), open a web browser and try to browse to your favourite web site. Monitor the output of the running Wifidog to see what it's doing.

Dnsmasq

• Description:Dnsmasq is a lightweight, easy to configure DNS server and DHCP server. It is designed to provide DNS and optionally DHCP, to a small network. It can serve the names of local machines which are not in the global DNS. The DHCP server integrates with the DNS server and allows machines with DHCP-allocated addresses to appear in the DNS with names configured either in each host or in a central configuration file. Dnsmasq supports static and dynamic DHCP leases and BOOTP/TFTP for network booting of booting of diskless machines.
• Current Use: In Nightwing as the local DNS server and as the local DHCP server.
• Configuration: http://wiki.openwrt.org/OpenWrtDocs/dnsmasq,http://thekelleys.org.uk/dnsmasq/doc.html

OpenWrt

• Description: Es una distribución de GNU/Linux para dispositivos empotrados.
  En lugar de tratar de crear un único y estático firmware, OpenWRT ofrece un sistema de archivos con completa escritura y un administrador de paquetes. Esto te libera de la selección y configuración de aplicaciones provista por el vendedor y permite personalizar el dispositivo a través del uso de paquetes para adaptarse a cualquier aplicación. Para los desarrolladores, OpenWrt es el framework para construir una aplicación sin tener que construir un firmware completo parra éste; para los usuarios ésto significa la capacidad para adaptarlo completamente, para usar el dispositivo en formas nunca previstas.
• Uso actual: Distribución GNU/Linux base para el desarrollo de Nightwing.
• Instalation: http://wiki.openwrt.org/OpenWrtDocs/Installation
• uninstallation: http://wiki.openwrt.org/OpenWrtDocs/Deinstalling
• Configuration: http://wiki.openwrt.org/OpenWrtDocs/KamikazeConfiguration
• Customization: http://wiki.openwrt.org/OpenWrtDocs/Customizing
• Más: http://wiki.openwrt.org/ y https://dev.openwrt.org/wiki

OpenDNS

• Description:OpenDNS is a free DNS resolution service for consumers and businesses offered as an alternative to using their Internet service provider's DNS servers. By placing OpenDNS servers in strategic locations and employing a large cache of the domain names, DNS queries are usually processed much more quickly, thereby increasing page retrieval speed. DNS query results are sometimes cached by the local operating system and/or applications, so this speed increase may not be noticeable with every request, but only with requests that are not stored in a local cache. OpenDNS also allows the posibility of using other features like Adult Site Blocking, Phishing Protection and more.
• Current Use:As the external DNS server and as content filtering tool.
• Configuration:
  • http://forum.openwrt.org/viewtopic.php?id=12408
  • http://www.talentgrouplabs.com/blog/archive/2008/06/08/opendns-on-openwrt-with-my-linksys-router.aspx

Netfilter/iptables

• Description:Netfilter is a framework that provides a set of hooks within the Linux kernel for intercepting and manipulating network packets. The best-known component on top of netfilter is the firewall which filters packets, but the hooks are also used by other components which perform network address translation, stateful tracking and packet enqueueing to user space. The name Netfilter also refers to the name of the project that provides a set of firewalling tools for Linux. These components are usually loadable kernel modules, although the project also offers a set of userspace tools and libraries. iptables is the name of the user space tool by which administrators create rules for the packet filtering (both inbound and outbound) and NAT modules. While technically iptables is merely the tool which controls the packet filtering and NAT components within the kernel, the name iptables is often used to refer to the entire infrastructure, including netfilter, connection tracking and NAT, as well as the tool itself. iptables is a standard part of all modern Linux distributions.
• Current Use:For filtering, connection tracking and network address translation (NAT)..
• Configuration:http://wiki.openwrt.org/OpenWrtDocs/IPTables
• Tutorial:http://iptables-tutorial.frozentux.net/