Strona główna Odkrywaj Pomoc
Zarejestruj się Zaloguj się
FreifunkHochstift
/
ffho-site
3
0
Forkuj 1
Pliki Problemy 0 Oczekujące zmiany 0
Drzewo: c668712cf1
Gałęzie Tagi
ffho-site
/
extra
/
template.conf

template.conf 7.0 KB
Historia Czysty

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236 
  1. {
    2. 

  2. 	-- A new node's name will be autogenerated from
    3. 

  3. 	-- it's primary MAC address and this prefix.
    4. 

  4. 	-- e.g. freifunk-0123456789ab
    5. 

  5. 	hostname_prefix = 'freifunk',
    6. 

  6. 

  7. 	-- name of this site
    8. 

  8. 	-- site_name = 'Freifunk Hochstift - ${site}',
    9. 

  9. 	site_name = '%SN',
    10. 

  10. 

  11. 	-- short name of this site
    12. 

  12. 	-- site_code = 'ffho_${un-code}'
    13. 

  13. 	site_code = '%SC',
    14. 

  14. 

  15. 	-- v4 and v6 prefixes in which nodes+clients might get an IP
    16. 

  16. 	prefix4 = '%V4',
    17. 

  17. 	prefix6 = '2a03:2260:2342:%V6::/64',
    18. 

  18. 

  19. 	-- timezone
    20. 

  20. 	timezone = 'CET-1CEST,M3.5.0,M10.5.0/3', -- Europe/Berlin
    21. 

  21. 

  22. 	-- network-internal ntp service
    23. 

  23. 	ntp_servers = {'ntp.srv.in.ffho.net'},
    24. 

  24. 

  25. 	-- OpenWRT Package Repository (IPv6 capable)
    26. 

  26. 	opkg = {
    27. 

  27. 		lede = 'http://firmware.srv.in.ffho.net/lede/packages-%v/%A',
    28. 

  28. 		extra = {
    29. 

  29. 			gluon = 'http://firmware.srv.in.ffho.net/%GR/modules/%S',
    30. 

  30. 		},
    31. 

  31. 	},
    32. 

  32. 

  33. 	-- regulatory domain of your wifi
    34. 

  34. 	regdom = 'DE',
    35. 

  35. 

  36. 	-- wifi settings (2.4 GHz and 5 GHz)
    37. 

  37. 	-- ap.ssid = 'hochstift.freifunk.net/${kürzel}',
    38. 

  38. 	-- mesh.id = 'ffho-mesh-${group-name}',
    39. 

  39. 	wifi24 = {
    40. 

  40. 		channel = 1,
    41. 

  41. 		supported_rates = {6000, 9000, 12000, 18000, 24000, 36000, 48000, 54000},
    42. 

  42. 		basic_rate = {6000, 9000, 18000, 36000, 54000},
    43. 

  43. 		ap = {
    44. 

  44. 			ssid = '%SS',
    45. 

  45. 		},
    46. 

  46. 		mesh = {
    47. 

  47. 			id = 'ffho-mesh-%GN',
    48. 

  48. 			mcast_rate = 12000,
    49. 

  49. 		},
    50. 

  50. 	},
    51. 

  51. 

  52. 	wifi5 = {
    53. 

  53. 		channel = 44,
    54. 

  54. 		ap = {
    55. 

  55. 			ssid = '%SS',
    56. 

  56. 		},
    57. 

  57. 		mesh = {
    58. 

  58. 			id = 'ffho-mesh-%GN',
    59. 

  59. 			mcast_rate = 12000,
    60. 

  60. 		},
    61. 

  61. 	},
    62. 

  62. 

  63. 	-- IP address of each router
    64. 

  64. 	-- At this IP a client can always connect to its
    65. 

  65. 	-- currently connected node. Both v4 and v6 addr.
    66. 

  66. 	-- must lie in the above prefix4 and prefix6.
    67. 

  67. 	next_node = {
    68. 

  68. 		ip4 = '%N4',
    69. 

  69. 		ip6 = '2a03:2260:2342:%V6::1',
    70. 

  70. 		name = 'node.ffho.net',
    71. 

  71. 

  72. 		-- mac address, must be unique in the client network
    73. 

  73. 		-- (usually, you don't need to change this)
    74. 

  74. 		mac = 'f2:ff:ff:%ID:ff:ff',
    75. 

  75. 	},
    76. 

  76. 

  77. 	mesh_vpn = {
    78. 

  78. 		-- the maximum transfer unit
    79. 

  79. 		mtu = 1406,
    80. 

  80. 

  81. 		-- fastd (vpn) settings
    82. 

  82. 		fastd = {
    83. 

  83. 			-- cipher(s) to use
    84. 

  84. 			methods = {'salsa2012+umac'},
    85. 

  85. 

  86. 			groups = {
    87. 

  87. 				backbone = {
    88. 

  88. 					-- specifies how many servers are contacted
    89. 

  89. 					-- by a client simultanously
    90. 

  90. 					limit = 1,
    91. 

  91. 

  92. 					-- list all available vpn servers
    93. 

  93. 					peers = {
    94. 

  94. 						gw01 = {
    95. 

  95. 							-- public fastd key of the vpn server
    96. 

  96. 							key = '97bc56ae561f67cfe15364134868c3553b5f1eab06f7bd9c5b93fbf280a52b51',
    97. 

  97. 							-- remotes is an array of ways on how to reach the VPN server
    98. 

  98. 							-- Use public addresses here, these addresses are used when the mesh might not be connected yet.
    99. 

  99. 							-- format: '[|ipv4|ipv6] "hostname-or-ip-address" port 10000'
    100. 

  100. 							remotes = {
    101. 

  101. 								'"gw01.ffho.net" port 100%ID',
    102. 

  102. 								'ipv6 "2001:830:c:9::12" port 100%ID',
    103. 

  103. 								'ipv4 "80.242.130.70" port 100%ID',
    104. 

  104. 							},
    105. 

  105. 						},
    106. 

  106. 						gw02 = {
    107. 

  107. 							key = 'e8fa9bf402fd33dd1ba804a97f2e46c704423ff49e9c55312845a7bfb93121ad',
    108. 

  108. 							remotes = {
    109. 

  109. 								'"gw02.ffho.net" port 100%ID',
    110. 

  110. 								'ipv6 "2a01:4f8:190:6500::18:1" port 100%ID',
    111. 

  111. 								'ipv4 "78.46.242.24" port 100%ID',
    112. 

  112. 							},
    113. 

  113. 						},
    114. 

  114. 						gw03 = {
    115. 

  115. 							key = '629b2742922f068ef49558283aea4b75c1427d8cdd3fcd2dbd7c00880547d3b3',
    116. 

  116. 							remotes = {
    117. 

  117. 								'"gw03.ffho.net" port 100%ID',
    118. 

  118. 								'ipv6 "2a00:13c8:1000:2::165" port 100%ID',
    119. 

  119. 								'ipv4 "185.46.137.165" port 100%ID',
    120. 

  120. 							},
    121. 

  121. 						},
    122. 

  122. 						gw04 = {
    123. 

  123. 							key = 'cf3855e5fa04e4c04a294cb6e8902f91c7ff7ef82bf031cc842a2b79b936677c',
    124. 

  124. 							remotes = {
    125. 

  125. 								'"gw04.ffho.net" port 100%ID',
    126. 

  126. 								'ipv6 "2a02:450:1::22" port 100%ID',
    127. 

  127. 								'ipv4 "80.70.181.63" port 100%ID',
    128. 

  128. 							},
    129. 

  129. 						},
    130. 

  130. 						gw05 = {
    131. 

  131. 							key = 'd0d32a2f536a0fc1f0c848e6da15bd96851d5ff4fdf9239c830bab033ddcec1a',
    132. 

  132. 							remotes = {
    133. 

  133. 								'"gw05.ffho.net" port 100%ID',
    134. 

  134. 								'ipv6 "2001:638:502:1884::ff15" port 100%ID',
    135. 

  135. 								'ipv4 "192.26.175.183" port 100%ID',
    136. 

  136. 							},
    137. 

  137. 						},
    138. 

  138. 						gw06 = {
    139. 

  139. 							key = '88b570c4cc811259b7c4106943098c9bee1126d692ddacedd23cd48efc28b0bf',
    140. 

  140. 							remotes = {
    141. 

  141. 								'"gw06.ffho.net" port 100%ID',
    142. 

  142. 								'ipv6 "2001:41d0:a:377a::54" port 100%ID',
    143. 

  143. 								'ipv4 "5.196.106.54" port 100%ID',
    144. 

  144. 							},
    145. 

  145. 						},
    146. 

  146. 					},
    147. 

  147. 				},
    148. 

  148. 			},
    149. 

  149. 		},
    150. 

  150. 

  151. 		-- default traffic shaping (bandwidth limit) settings
    152. 

  152. 		bandwidth_limit = {
    153. 

  153. 			enabled = false,
    154. 

  154. 			egress = 500,
    155. 

  155. 			ingress = 4000,
    156. 

  156. 		},
    157. 

  157. 	},
    158. 

  158. 

  159. 	-- configure the autoupdater
    160. 

  160. 	autoupdater = {
    161. 

  161. 		-- default branch for a firmware without enabled autoupdater
    162. 

  162. 		branch = 'stable',
    163. 

  163. 

  164. 		-- available branches for the autoupdater
    165. 

  165. 		branches = {
    166. 

  166. 			stable = {
    167. 

  167. 				-- visible name of this branch (why not use the internal identifier here, too)
    168. 

  168. 				name = 'stable',
    169. 

  169. 

  170. 				-- where to get the manifest file (without the trailing /manifest)
    171. 

  171. 				-- It's wise to use an internal address here,
    172. 

  172. 				-- but specifying a publicly available update site does not hurt.
    173. 

  173. 				mirrors = {'http://firmware.srv.in.ffho.net/%SC/stable/sysupgrade', 'http://[2a03:2260:2342:f251::6]/%SC/stable/sysupgrade'},
    174. 

  174. 

  175. 				-- Number of valid manifest signatures necessary to accept the manifest as "good".
    176. 

  176. 				good_signatures = 3,
    177. 

  177. 

  178. 				-- list of public keys which are considered "good" for manifest signatures
    179. 

  179. 				pubkeys = {
    180. 

  180. 					'ba2e6ff4de41ade9959702195d4c26c764e7aab85c627363681c29dbc4a8a2c5', -- oscar-
    181. 

  181. 					'fb9d6beba63dcb6175d0248c1e743b5fe4359474eb264d27f389d7a962e24477', -- northalpha
    182. 

  182. 					'f70f9ddeb307fff8fca31a76f4fbd0ac676dab8ad143625f0a4160d434d72876', -- Barbarossa
    183. 

  183. 					'9841dde0b9f6485d5fcdc858fb15c1db1c3bc77fb81aef3f0d4b835f76a3d73b', -- kb-light
    184. 

  184. 					'39ef16b1853e54249dae2d06948329a93e3e13f354aaab792552aacd1d0b45ba', -- phimeas
    185. 

  185. 				},
    186. 

  186. 			},
    187. 

  187. 			testing = {
    188. 

  188. 				name = 'testing',
    189. 

  189. 				mirrors = {'http://firmware.srv.in.ffho.net/%SC/testing/sysupgrade', 'http://[2a03:2260:2342:f251::6]/%SC/testing/sysupgrade'},
    190. 

  190. 				good_signatures = 2,
    191. 

  191. 				pubkeys = {
    192. 

  192. 					'ba2e6ff4de41ade9959702195d4c26c764e7aab85c627363681c29dbc4a8a2c5', -- oscar-
    193. 

  193. 					'fb9d6beba63dcb6175d0248c1e743b5fe4359474eb264d27f389d7a962e24477', -- northalpha
    194. 

  194. 					'f70f9ddeb307fff8fca31a76f4fbd0ac676dab8ad143625f0a4160d434d72876', -- Barbarossa
    195. 

  195. 					'9841dde0b9f6485d5fcdc858fb15c1db1c3bc77fb81aef3f0d4b835f76a3d73b', -- kb-light
    196. 

  196. 					'39ef16b1853e54249dae2d06948329a93e3e13f354aaab792552aacd1d0b45ba', -- phimeas
    197. 

  197. 				},
    198. 

  198. 			},
    199. 

  199. 			experimental = {
    200. 

  200. 				name = 'experimental',
    201. 

  201. 				mirrors = {'http://firmware.srv.in.ffho.net/%SC/experimental/sysupgrade', 'http://[2a03:2260:2342:f251::6]/%SC/experimental/sysupgrade'},
    202. 

  202. 				good_signatures = 1,
    203. 

  203. 				pubkeys = {
    204. 

  204. 					'ba2e6ff4de41ade9959702195d4c26c764e7aab85c627363681c29dbc4a8a2c5', -- oscar-
    205. 

  205. 					'fb9d6beba63dcb6175d0248c1e743b5fe4359474eb264d27f389d7a962e24477', -- northalpha
    206. 

  206. 					'f70f9ddeb307fff8fca31a76f4fbd0ac676dab8ad143625f0a4160d434d72876', -- Barbarossa
    207. 

  207. 					'9841dde0b9f6485d5fcdc858fb15c1db1c3bc77fb81aef3f0d4b835f76a3d73b', -- kb-light
    208. 

  208. 					'39ef16b1853e54249dae2d06948329a93e3e13f354aaab792552aacd1d0b45ba', -- phimeas
    209. 

  209. 				},
    210. 

  210. 			},
    211. 

  211. 		},
    212. 

  212. 	},
    213. 

  213. 

  214. 	-- configure ffho-debug
    215. 

  215. 	debugserver = {
    216. 

  216. 		host = { 'debugreport.ffho.net', '2a01:a700:4621:d102::10' },
    217. 

  217. 		port = 1337,
    218. 

  218. 	},
    219. 

  219. 

  220. 	config_mode = {
    221. 

  221. 		-- Show/hide the altitude field
    222. 

  222. 		geo_location = {
    223. 

  223. 			show_altitude = false,
    224. 

  224. 		},
    225. 

  225. 		-- define if the contact field is obligatory (optional)
    226. 

  226. 		owner = {
    227. 

  227. 			obligatory = false,
    228. 

  228. 		},
    229. 

  229. 	},
    230. 

  230. 

  231. 	-- configure DNS caching
    232. 

  232. 	dns = {
    233. 

  233. 		cacheentries = 1000,
    234. 

  234. 		servers = { '2a03:2260:2342:f251::53' },
    235. 

  235. 	},
    236. 

  236. }
    237.