Version vom 1. Januar 1970, 02:00 Uhr

Freifunk

Firmware signieren

cd ~/Freifunk/manifest-ffms
git pull
./sign.sh ../firmware-secret site-ffms 191 stable

Administration

https://forum.freifunk-muensterland.de/t/admintagebuch-dokumentation-der-admintaetigkeiten/75/15
https://freifunk-muensterland.de/wiki/doku.php?id=technik:gateway
https://mpw.no-ip.biz/freifunk/münster-stadt/
https://github.com/FreiFunkMuenster/site-ffms/tree/Münster-Stadt
Backbone-Rechner:
- ssh root@parad0x.gw.freifunk-muenster.de
Des-Gateways: 5.9.86.144 und 5.9.86.145
Ansible-Host: ssh root@ffhost01.yadn.de -p 222
Map-Merger: ssh root@2a01:4f8:162:10d2:5:23:d0:0f http://ffms-map.fungur.eu/map/
Service-VM: ssh root@89.163.231.228 http://89.163.231.228/map/
Legacy-Servcie-VM: ssh root@217.79.181.126 -p 2210
Firmware-Server: ssh root@firmware.freifunk-muensterland.org -p 223

Hosts

erzeugt durch cat /data/src/ffm/ansible-ffms/hosts | sed -e 's/ansible_ssh_host=/ssh root@/' -e 's/ansible_ssh_port=/-p /'

 
# Allgemeine Infrastruktur-Server 
[common]
buildserver ssh root@217.79.181.126 -p 2215
monitoring  ssh root@178.62.2.100
services-legacy ssh root@217.79.181.126 -p 2210
webserver   ssh root@89.163.231.227

# Service-VM für Zentrale Dienste (Karte, Statistik)  
[services]
services    ssh root@89.163.231.228

# Backbone Server 
[backbone]
c1024    ssh root@176.9.88.123
fanlin   ssh root@89.163.221.125 
parad0x  ssh root@5.9.67.189

# Supernode Server 
[supernodes]
sn-fanlin-1   ssh root@85.14.245.16
sn-fanlin-2   ssh root@213.202.222.143
fussel        ssh root@37.120.168.53
sn-parad0x-1  ssh root@5.9.166.66
sense         ssh root@176.221.46.161
sn-sense-4    ssh root@134.119.42.10 
sn-descilla-1 ssh root@5.9.86.154
# sn-descilla-2 ssh root@5.9.86.145
sn-kgbvax-2   ssh root@136.243.99.72
sn-kgbvax-3   ssh root@136.243.99.49

[domaene-01]
#remue-01	ssh root@148.251.208.170
greyworm-01     ssh root@89.163.247.45
sense-02	ssh root@134.119.20.233

[domaene-02]
greyworm-02     ssh root@89.163.247.46
sense-03	ssh root@134.119.36.210 

[domaene-test]
test-des1	ssh root@5.9.86.144
test-des2	ssh root@5.9.86.145

# Sonstige Server
[ffms-arbeitsmittel]
ffms-ansible    ssh root@148.251.208.168

[ffms-mapserver]
ffms-map    ssh root@2a01:4f8:162:10d2:5:23:d0:0f

Sonstiges

https://freifunk-muensterland.de/wiki/doku.php?id=intern:ssh-logging
Gateway-Einrichtung mit systemd-units in Fulda: https://wiki.mag.lab.sh/wiki/Freifunk_Fulda/Gateway/NG#Einwahlknoten_f.C3.BCr_fastd

Ausgeführte Befehle

git clone https://github.com/FreiFunkMuenster/ffmap-backend
apt install python3-bs4

Knoten umziehen

uci add_list autoupdater.stable.mirror=http://[2a01:4f8:162:10d2:5:23:d0:0f]/site-ffms/stable/sysupgrade
uci del_list autoupdater.stable.mirror=http://firmware.ffms/site-ffms/stable/sysupgrade
uci set autoupdater.stable.good_signatures=0
uci commit
autoupdater

l2tp_client übersetzen

ssh root@firmware.freifunk-muensterland.org -p 223
cd /home/gluon/gits/gluon/openwrt/build_dir/target-mips_34kc_uClibc-0.9.33.2_gluon-ar71xx-nand/tunneldigger-0.4.5
PATH=$PATH:/home/gluon/gits/gluon/openwrt/staging_dir/toolchain-mips_34kc_gcc-4.8-linaro_uClibc-0.9.33.2/bin/
mips-openwrt-linux-uclibc-gcc -Os -pipe -mno-branch-likely -mips32r2 -mtune=34kc -fno-caller-saves -fhonour-copts -Wno-error=unused-but-set-variable -Wno-error=unused-result -msoft-float -mips16 -minterlink-mips16 -I/home/gluon/gits/gluon/build/ar71xx-generic/openwrt/staging_dir/target-mips_34kc_uClibc-0.9.33.2_gluon-ar71xx-generic/usr/include/libnl-tiny -I/home/gluon/gits/gluon/build/ar71xx-generic/openwrt/staging_dir/target-mips_34kc_uClibc-0.9.33.2_gluon-ar71xx-generic/usr/include -DLIBNL_TINY  -I/home/gluon/gits/gluon/build/ar71xx-generic/openwrt/staging_dir/target-mips_34kc_uClibc-0.9.33.2_gluon-ar71xx-generic/usr/include -I/home/gluon/gits/gluon/build/ar71xx-generic/openwrt/staging_dir/target-mips_34kc_uClibc-0.9.33.2_gluon-ar71xx-generic/include -I/home/gluon/gits/gluon/build/ar71xx-generic/openwrt/staging_dir/toolchain-mips_34kc_gcc-4.8-linaro_uClibc-0.9.33.2/usr/include -I/home/gluon/gits/gluon/build/ar71xx-generic/openwrt/staging_dir/toolchain-mips_34kc_gcc-4.8-linaro_uClibc-0.9.33.2/include   -c -I. -o l2tp_client.o l2tp_client.c
mips-openwrt-linux-uclibc-gcc -L/home/gluon/gits/gluon/build/ar71xx-generic/openwrt/staging_dir/target-mips_34kc_uClibc-0.9.33.2_gluon-ar71xx-generic/usr/lib -L/home/gluon/gits/gluon/build/ar71xx-generic/openwrt/staging_dir/target-mips_34kc_uClibc-0.9.33.2_gluon-ar71xx-generic/lib -L/home/gluon/gits/gluon/build/ar71xx-generic/openwrt/staging_dir/toolchain-mips_34kc_gcc-4.8-linaro_uClibc-0.9.33.2/usr/lib -L/home/gluon/gits/gluon/build/ar71xx-generic/openwrt/staging_dir/toolchain-mips_34kc_gcc-4.8-linaro_uClibc-0.9.33.2/lib  -o l2tp_client l2tp_client.o asyncns.o -lpthread -lnl-tiny -lrt -lresol
mips-openwrt-linux-uclibc-strip l2tp_client

auf dem Router:

/etc/init.d/tunneldigger stop
scp root@144.76.30.226:/home/gluon/gits/gluon/openwrt/build_dir/target-mips_34kc_uClibc-0.9.33.2_gluon-ar71xx-nand/tunneldigger-0.4.5/l2tp_client -P 223 /usr/bin/tunneldigger
/etc/init.d/tunneldigger start

KategorieWissen

@@ Zeile 109: / Zeile 109: @@
-== Temp ==
+== l2tp_client übersetzen ==
-letsencrypt-Zertifikat auf service einrichten:
 <pre><nowiki>
-cd /usr/src
+ssh root@firmware.freifunk-muensterland.org -p 223
-git clone https://github.com/kuba/simp_le
+cd /home/gluon/gits/gluon/openwrt/build_dir/target-mips_34kc_uClibc-0.9.33.2_gluon-ar71xx-nand/tunneldigger-0.4.5
-cd simp_le/
+PATH=$PATH:/home/gluon/gits/gluon/openwrt/staging_dir/toolchain-mips_34kc_gcc-4.8-linaro_uClibc-0.9.33.2/bin/
-./bootstrap.sh
+mips-openwrt-linux-uclibc-gcc -Os -pipe -mno-branch-likely -mips32r2 -mtune=34kc -fno-caller-saves -fhonour-copts -Wno-error=unused-but-set-variable -Wno-error=unused-result -msoft-float -mips16 -minterlink-mips16 -I/home/gluon/gits/gluon/build/ar71xx-generic/openwrt/staging_dir/target-mips_34kc_uClibc-0.9.33.2_gluon-ar71xx-generic/usr/include/libnl-tiny -I/home/gluon/gits/gluon/build/ar71xx-generic/openwrt/staging_dir/target-mips_34kc_uClibc-0.9.33.2_gluon-ar71xx-generic/usr/include -DLIBNL_TINY  -I/home/gluon/gits/gluon/build/ar71xx-generic/openwrt/staging_dir/target-mips_34kc_uClibc-0.9.33.2_gluon-ar71xx-generic/usr/include -I/home/gluon/gits/gluon/build/ar71xx-generic/openwrt/staging_dir/target-mips_34kc_uClibc-0.9.33.2_gluon-ar71xx-generic/include -I/home/gluon/gits/gluon/build/ar71xx-generic/openwrt/staging_dir/toolchain-mips_34kc_gcc-4.8-linaro_uClibc-0.9.33.2/usr/include -I/home/gluon/gits/gluon/build/ar71xx-generic/openwrt/staging_dir/toolchain-mips_34kc_gcc-4.8-linaro_uClibc-0.9.33.2/include   -c -I. -o l2tp_client.o l2tp_client.c
-  # macht eigentlich nur: apt-get install -y --no-install-recommends ca-certificates gcc libssl-dev libffi-dev python python-dev virtualenv
+mips-openwrt-linux-uclibc-gcc -L/home/gluon/gits/gluon/build/ar71xx-generic/openwrt/staging_dir/target-mips_34kc_uClibc-0.9.33.2_gluon-ar71xx-generic/usr/lib -L/home/gluon/gits/gluon/build/ar71xx-generic/openwrt/staging_dir/target-mips_34kc_uClibc-0.9.33.2_gluon-ar71xx-generic/lib -L/home/gluon/gits/gluon/build/ar71xx-generic/openwrt/staging_dir/toolchain-mips_34kc_gcc-4.8-linaro_uClibc-0.9.33.2/usr/lib -L/home/gluon/gits/gluon/build/ar71xx-generic/openwrt/staging_dir/toolchain-mips_34kc_gcc-4.8-linaro_uClibc-0.9.33.2/lib  -o l2tp_client l2tp_client.o asyncns.o -lpthread -lnl-tiny -lrt -lresol
-./venv.sh
+mips-openwrt-linux-uclibc-strip l2tp_client
-export PATH=/usr/src/simp_le/venv/bin:$PATH
-cd /etc/ssl
-simp_le --email ffms@fungur.eu -f account_key.json -f key.pem -f fullchain.pem -d service.freifunk-muensterland.de:/var/www/html -d karte.freifunk-muensterland.org:/var/www/html/maps
 </nowiki></pre>
+auf dem Router:
-Tunnel-Ping-Test
 <pre><nowiki>
-- name: execute gretunnel test on gateways                                                                                                      │·····
+/etc/init.d/tunneldigger stop
-  command: ping -c1 192.168.{{domaenen_id*10 + hostvars[item].server_id}}.{{server_id*4+1}}                                                     │·····
+scp root@144.76.30.226:/home/gluon/gits/gluon/openwrt/build_dir/target-mips_34kc_uClibc-0.9.33.2_gluon-ar71xx-nand/tunneldigger-0.4.5/l2tp_client -P 223 /usr/bin/tunneldigger
-  with_items: groups['backbone']                                                                                                                │·····
+/etc/init.d/tunneldigger start
-  register: localping_result                                                                                                                    │·····
-  ignore_errors: yes                                                                                                                            │·····
-  failed_when: "localping_result.rc == 1"                                                                                                       │·····
-  changed_when: "1 == 'JustNeverBeStatusChanged'"
 </nowiki></pre>

Freifunk: Unterschied zwischen den Versionen

Version vom 1. Januar 1970, 02:00 Uhr

Freifunk

Firmware signieren

Administration

Hosts

Sonstiges

Ausgeführte Befehle

Knoten umziehen

l2tp_client übersetzen

Navigationsmenü

Freifunk: Unterschied zwischen den Versionen

Version vom 1. Januar 1970, 02:00 Uhr

Freifunk

Firmware signieren

Administration

Hosts

Sonstiges

Ausgeführte Befehle

Knoten umziehen

l2tp_client übersetzen

Navigationsmenü

Suche