site.conf 7.4 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240
  1. {
  2. -- A new node's name will be autogenerated from
  3. -- it's primary MAC address and this prefix.
  4. -- e.g. freifunk-0123456789ab
  5. hostname_prefix = 'freifunk',
  6. -- name of this site
  7. -- site_name = 'Freifunk Hochstift - ${site}',
  8. site_name = 'Bitte wählen',
  9. -- short name of this site
  10. -- site_code = 'ffho_${un-code}'
  11. site_code = 'ffho',
  12. -- v4 and v6 prefixes in which nodes+clients might get an IP
  13. prefix4 = '10.132.0.0/18',
  14. prefix6 = 'fdca:ffee:ff12:132::/64',
  15. -- extra ipv6 prefixes used in this mesh area
  16. additional_prefix6 = { '2001:470:6d:860::/64', '2a03:2260:2342:2300::/64', },
  17. -- timezone
  18. timezone = 'CET-1CEST,M3.5.0,M10.5.0/3', -- Europe/Berlin
  19. -- network-internal ntp service
  20. ntp_servers = {'ntp.in.ffho.net'},
  21. -- OpenWRT Package Repository (IPv6 capable)
  22. opkg = {
  23. openwrt = 'http://openwrt.draic.info/%n/%v/%S/packages',
  24. extra = {
  25. modules = 'http://firmware.ffho.net/modules/gluon-ffho-%GR/%S',
  26. },
  27. },
  28. -- regulatory domain of your wifi
  29. regdom = '00',
  30. -- wifi settings (2.4 GHz and 5 GHz)
  31. -- ap.ssid = 'hochstift.freifunk.net/${kürzel}',
  32. -- ibss.ssid = 'ffho-mesh-${un-code}',
  33. -- ibss.bssid = '${idividual-mac}'
  34. wifi24 = {
  35. channel = 1,
  36. ap = {
  37. ssid = 'paderborn.freifunk.net',
  38. },
  39. ibss = {
  40. ssid = '02:d1:11:13:87:ad',
  41. bssid = '02:d1:11:13:87:ad',
  42. mesh_mcast_rate = 12000,
  43. },
  44. },
  45. wifi5 = {
  46. channel = 44,
  47. ap = {
  48. ssid = 'paderborn.freifunk.net',
  49. },
  50. ibss = {
  51. ssid = '02:d1:11:13:87:ad',
  52. bssid = '02:d1:11:13:87:ad',
  53. mesh_mcast_rate = 12000,
  54. },
  55. },
  56. -- IP address of each router
  57. -- At this IP a client can always connect to its
  58. -- currently connected node. Both v4 and v6 addr.
  59. -- must lie in the above prefix4 and prefix6.
  60. next_node = {
  61. ip4 = '10.132.0.1',
  62. ip6 = 'fdca:ffee:ff12:132::1',
  63. -- mac address, must be unique in the client network
  64. -- (usually, you don't need to change this)
  65. mac = '16:41:95:40:f7:dc',
  66. },
  67. -- fastd (vpn) settings
  68. fastd_mesh_vpn = {
  69. -- cipher(s) to use
  70. methods = {'salsa2012+gmac'},
  71. -- the maximum transfer unit
  72. -- use 1426 for IPv4 gateways
  73. mtu = 1406,
  74. groups = {
  75. backbone = {
  76. -- specifies how many servers are contacted
  77. -- by a client simultanously
  78. limit = 1,
  79. -- list all available vpn servers
  80. peers = {
  81. gw01 = {
  82. -- public fastd key of the vpn server
  83. key = '97bc56ae561f67cfe15364134868c3553b5f1eab06f7bd9c5b93fbf280a52b51',
  84. -- remotes is an array of ways on how to reach the VPN server
  85. -- Use public addresses here, these addresses are used when the mesh might not be connected yet.
  86. -- format: '[|ipv4|ipv6] "hostname-or-ip-address" port 10000'
  87. remotes = {
  88. 'ipv6 "v6.gw01.paderborn.freifunk.net" port 10000',
  89. 'ipv4 "v4.gw01.paderborn.freifunk.net" port 10000',
  90. 'ipv6 "2a01:4f8:190:2105::ff12" port 10000',
  91. 'ipv4 "85.10.248.243" port 10000',
  92. },
  93. },
  94. gw02 = {
  95. key = 'e8fa9bf402fd33dd1ba804a97f2e46c704423ff49e9c55312845a7bfb93121ad',
  96. remotes = {
  97. 'ipv6 "v6.gw02.paderborn.freifunk.net" port 10000',
  98. 'ipv4 "v4.gw02.paderborn.freifunk.net" port 10000',
  99. 'ipv6 "2a01:4f8:190:6500::18:1" port 10000',
  100. 'ipv4 "78.46.242.24" port 10000',
  101. },
  102. },
  103. gw04 = {
  104. key = 'cf3855e5fa04e4c04a294cb6e8902f91c7ff7ef82bf031cc842a2b79b936677c',
  105. remotes = {
  106. 'ipv6 "v6.gw04.paderborn.freifunk.net" port 10000',
  107. 'ipv4 "v4.gw04.paderborn.freifunk.net" port 10000',
  108. 'ipv6 "2a02:450:1:4::10" port 10000',
  109. 'ipv4 "80.70.181.57" port 10000',
  110. },
  111. },
  112. gw05 = {
  113. key = 'd0d32a2f536a0fc1f0c848e6da15bd96851d5ff4fdf9239c830bab033ddcec1a',
  114. remotes = {
  115. 'ipv6 "v6.gw05.paderborn.freifunk.net" port 10000',
  116. 'ipv4 "v4.gw05.paderborn.freifunk.net" port 10000',
  117. 'ipv6 "2001:638:502:1884::ff05" port 10000',
  118. 'ipv4 "192.26.175.182" port 10000',
  119. },
  120. },
  121. gw06 = {
  122. key = 'b912bcf1c1335390364b8030448e53d8869b650f32923e59bf01d763d3028840',
  123. remotes = {
  124. 'ipv6 "v6.gw06.paderborn.freifunk.net" port 10000',
  125. 'ipv4 "v4.gw06.paderborn.freifunk.net" port 10000',
  126. 'ipv6 "2a03:4000:6:20f0::ff12" port 10000',
  127. 'ipv4 "5.45.111.222" port 10000',
  128. },
  129. },
  130. gw08 = {
  131. key = '3da050bbf1c3e95af286af65553f546fd563d9cb5d4b3b3444069bef281de621',
  132. remotes = {
  133. 'ipv6 "v6.gw08.paderborn.freifunk.net" port 10000',
  134. 'ipv4 "v4.gw08.paderborn.freifunk.net" port 10000',
  135. 'ipv6 "2a03:4000:6:1151::ff12" port 10000',
  136. 'ipv4 "5.45.107.59" port 10000',
  137. },
  138. },
  139. },
  140. },
  141. },
  142. -- default traffic shaping (bandwidth limit) settings
  143. bandwidth_limit = {
  144. enabled = false,
  145. egress = 200,
  146. ingress = 3000,
  147. },
  148. },
  149. -- configure the autoupdater
  150. autoupdater = {
  151. enabled = 1,
  152. -- default branch for a firmware
  153. -- In config-mode, the user can select a different branch from below
  154. branch = 'stable',
  155. -- available branches for the autoupdater
  156. branches = {
  157. stable = {
  158. -- visible name of this branch (why not use the internal identifier here, too)
  159. name = 'stable',
  160. -- where to get the manifest file (without the trailing /manifest)
  161. -- It's wise to use an internal address here,
  162. -- but specifying a publicly available update site does not hurt.
  163. mirrors = {'http://[fdca:ffee:ff12:a254::80]/%GS/stable', 'http://firmware.ffho.net/%GS/stable'},
  164. -- Number of valid manifest signatures necessary to accept the manifest as "good".
  165. good_signatures = 3,
  166. -- list of public keys which are considered "good" for manifest signatures
  167. pubkeys = {
  168. '16b0e942929d6592d4a01b66b334427ba4db03b388a876432958d9010bd8d8b5', -- HeJ
  169. 'ba2e6ff4de41ade9959702195d4c26c764e7aab85c627363681c29dbc4a8a2c5', -- oscar-
  170. 'fb9d6beba63dcb6175d0248c1e743b5fe4359474eb264d27f389d7a962e24477', -- northalpha
  171. 'f70f9ddeb307fff8fca31a76f4fbd0ac676dab8ad143625f0a4160d434d72876', -- Barbarossa
  172. '9841dde0b9f6485d5fcdc858fb15c1db1c3bc77fb81aef3f0d4b835f76a3d73b', -- kb-light
  173. },
  174. },
  175. testing = {
  176. name = 'testing',
  177. mirrors = {'http://[fdca:ffee:ff12:a254::80]/%GS/testing','http://firmware.ffho.net/%GS/testing'},
  178. good_signatures = 2,
  179. pubkeys = {
  180. '16b0e942929d6592d4a01b66b334427ba4db03b388a876432958d9010bd8d8b5', -- HeJ
  181. 'ba2e6ff4de41ade9959702195d4c26c764e7aab85c627363681c29dbc4a8a2c5', -- oscar-
  182. 'fb9d6beba63dcb6175d0248c1e743b5fe4359474eb264d27f389d7a962e24477', -- northalpha
  183. 'f70f9ddeb307fff8fca31a76f4fbd0ac676dab8ad143625f0a4160d434d72876', -- Barbarossa
  184. '9841dde0b9f6485d5fcdc858fb15c1db1c3bc77fb81aef3f0d4b835f76a3d73b', -- kb-light
  185. },
  186. },
  187. experimental = {
  188. name = 'experimental',
  189. mirrors = {'http://[fdca:ffee:ff12:a254::80]/%GS/experimental','http://firmware.ffho.net/%GS/experimental'},
  190. good_signatures = 1,
  191. pubkeys = {
  192. '16b0e942929d6592d4a01b66b334427ba4db03b388a876432958d9010bd8d8b5', -- HeJ
  193. 'ba2e6ff4de41ade9959702195d4c26c764e7aab85c627363681c29dbc4a8a2c5', -- oscar-
  194. 'fb9d6beba63dcb6175d0248c1e743b5fe4359474eb264d27f389d7a962e24477', -- northalpha
  195. 'f70f9ddeb307fff8fca31a76f4fbd0ac676dab8ad143625f0a4160d434d72876', -- Barbarossa
  196. '9841dde0b9f6485d5fcdc858fb15c1db1c3bc77fb81aef3f0d4b835f76a3d73b', -- kb-light
  197. },
  198. },
  199. },
  200. },
  201. -- configure ffho-debug
  202. debugserver = {
  203. host = { 'debugreport.ffho.net', 'fdca:ffee:ff12:a254::deb9' },
  204. port = 1337,
  205. liveport = 1338,
  206. },
  207. -- enable BATMAN on WAN interface by default (requires gluon-batman-on-wan package)
  208. batman_on_wan = 0,
  209. }