Головна сторінка Огляд Довідка
Реєстрація Увійти
ffpb-archiv
/
site-ffpb
2
0
Відгалуження 0
Файли
Гілка: 11s-mesh
Гілки Теги
site-ffpb
/
site.conf

site.conf 7.8 KB
Постійне посилання Історія Запис

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249 
  1. {
    2. 

  2. 	-- A new node's name will be autogenerated from
    3. 

  3. 	-- it's primary MAC address and this prefix.
    4. 

  4. 	-- e.g. freifunk-0123456789ab
    5. 

  5. 	hostname_prefix = 'freifunk',
    6. 

  6. 

  7. 	-- name of this community
    8. 

  8. 	site_name = 'Freifunk Paderborn',
    9. 

  9. 	-- short name of this community
    10. 

  10. 	site_code = 'ffpb',
    11. 

  11. 

  12. 	-- v4 and v6 prefixes in which nodes+clients might get an IP
    13. 

  13. 	prefix4 = '10.132.0.0/18',
    14. 

  14. 	prefix6 = 'fdca:ffee:ff12:132::/64',
    15. 

  15. 

  16. 	-- extra ipv6 prefixes used in this mesh area
    17. 

  17. 	additional_prefix6 = { '2001:470:6d:860::/64', },
    18. 

  18. 

  19. 	-- timezone
    20. 

  20. 	timezone = 'CET-1CEST,M3.5.0,M10.5.0/3', -- Europe/Berlin
    21. 

  21. 

  22. 	-- network-internal ntp service
    23. 

  23. 	ntp_servers = {'ntp.services.ffpb'},
    24. 

  24. 

  25.         -- OpenWRT Package Repository (IPv6 capable)
    26. 

  26. 	opkg_repo = 'http://bo.mirror.garr.it/pub/1/openwrt/chaos_calmer/15.05-rc3/%S/packages/',
    27. 

  27. 

  28. 	-- regulatory domain of your wifi
    29. 

  29. 	regdom = 'DE',
    30. 

  30. 

  31. 	-- Wireless configuration for 2.4 GHz interfaces.
    32. 

  32. 	wifi24 = {
    33. 

  33. 		channel = 1,
    34. 

  34. 		htmode = 'HT20',
    35. 

  35. 		ap = {
    36. 

  36. 			ssid = 'paderborn.freifunk.net',
    37. 

  37. 		},
    38. 

  38. 		mesh = {
    39. 

  39. 			id = 'FFHO-PAD-MESH',
    40. 

  40. 			mcast_rate = 12000,
    41. 

  41. 		},
    42. 

  42. 		ibss = {
    43. 

  43. 			ssid = '02:d1:11:13:87:ad',
    44. 

  44. 			bssid = '02:d1:11:13:87:ad',
    45. 

  45. 			mcast_rate = 12000,
    46. 

  46. 			disabled = true,
    47. 

  47. 		},
    48. 

  48. 	},
    49. 

  49. 

  50. 	-- Wireless configuration for 5 GHz interfaces.
    51. 

  51. 	wifi5 = {
    52. 

  52. 		channel = 44,
    53. 

  53. 		htmode = 'HT40+',
    54. 

  54. 		ap = {
    55. 

  55. 			ssid = 'paderborn.freifunk.net (5GHz)',
    56. 

  56. 		},
    57. 

  57. 		mesh = {
    58. 

  58. 			id = 'FFHO-PAD-MESH',
    59. 

  59. 			mcast_rate = 12000,
    60. 

  60. 		},
    61. 

  61. 		ibss = {
    62. 

  62. 			ssid = '02:d1:11:13:87:ad',
    63. 

  63. 			bssid = '02:d1:11:13:87:ad',
    64. 

  64. 			mcast_rate = 12000,
    65. 

  65. 			disabled = true,
    66. 

  66.         },
    67. 

  67. 	},
    68. 

  68. 

  69. 	-- IP address of each router
    70. 

  70. 	-- At this IP a client can always connect to its
    71. 

  71. 	-- currently connected node. Both v4 and v6 addr.
    72. 

  72. 	-- must lie in the above prefix4 and prefix6.
    73. 

  73. 	next_node = {
    74. 

  74. 		ip4 = '10.132.0.1',
    75. 

  75. 		ip6 = 'fdca:ffee:ff12:132::1',
    76. 

  76. 

  77. 		-- mac address, must be unique in the client network
    78. 

  78. 		-- (usually, you don't need to change this)
    79. 

  79. 		mac = '16:41:95:40:f7:dc',
    80. 

  80. 	},
    81. 

  81. 

  82. 	-- fastd (vpn) settings
    83. 

  83. 	fastd_mesh_vpn = {
    84. 

  84. 		-- cipher(s) to use
    85. 

  85. 		methods = {'salsa2012+gmac'},
    86. 

  86. 

  87. 		-- the maximum transfer unit
    88. 

  88. 		-- use 1426 for IPv4 gateways
    89. 

  89. 		mtu = 1406,
    90. 

  90. 

  91. 		groups = {
    92. 

  92. 			backbone = {
    93. 

  93. 				-- specifies how many servers are contacted
    94. 

  94. 				-- by a client simultanously
    95. 

  95. 				limit = 1,
    96. 

  96. 	
    97. 

  97. 				-- list all available vpn servers
    98. 

  98. 				peers = {
    99. 

  99. 					gw01 = {
    100. 

  100. 						-- public fastd key of the vpn server
    101. 

  101. 						key = '97bc56ae561f67cfe15364134868c3553b5f1eab06f7bd9c5b93fbf280a52b51',
    102. 

  102. 						-- remotes is an array of ways on how to reach the VPN server
    103. 

  103. 						-- Use public addresses here, these addresses are used when the mesh might not be connected yet.
    104. 

  104. 						-- format: '[|ipv4|ipv6] "hostname-or-ip-address" port 10000'
    105. 

  105. 						remotes = {
    106. 

  106. 							'ipv6 "v6.gw01.paderborn.freifunk.net" port 10000',
    107. 

  107. 							'ipv4 "v4.gw01.paderborn.freifunk.net" port 10000',
    108. 

  108. 							'ipv6 "2a01:4f8:190:2105::ff12" port 10000',
    109. 

  109. 							'ipv4 "85.10.248.243" port 10000',
    110. 

  110. 						},
    111. 

  111. 					},
    112. 

  112. 					gw02 = {
    113. 

  113. 						key = 'e8fa9bf402fd33dd1ba804a97f2e46c704423ff49e9c55312845a7bfb93121ad',
    114. 

  114. 						remotes = {
    115. 

  115. 							'ipv6 "v6.gw02.paderborn.freifunk.net" port 10000',
    116. 

  116. 							'ipv4 "v4.gw02.paderborn.freifunk.net" port 10000',
    117. 

  117. 							'ipv6 "2a01:4f8:190:6500::18:1" port 10000',
    118. 

  118. 							'ipv4 "78.46.242.24" port 10000',
    119. 

  119. 						},
    120. 

  120. 					},
    121. 

  121. 					gw03 = {
    122. 

  122. 						key = 'cf7b54f7221a26251a5970e1d404f864ff4bfed3254bd741cf754445e040b9d0',
    123. 

  123. 						remotes = {
    124. 

  124. 							'ipv6 "v6.gw03.paderborn.freifunk.net" port 10000',
    125. 

  125. 							'ipv4 "v4.gw03.paderborn.freifunk.net" port 10000',
    126. 

  126. 							'ipv6 "2a01:a700:4621:d100::10" port 10000',
    127. 

  127. 							'ipv4 "31.172.8.123" port 10000',
    128. 

  128. 						},
    129. 

  129. 					},
    130. 

  130. 					gw04 = {
    131. 

  131. 						key = 'cf3855e5fa04e4c04a294cb6e8902f91c7ff7ef82bf031cc842a2b79b936677c',
    132. 

  132. 						remotes = {
    133. 

  133. 							'ipv6 "v6.gw04.paderborn.freifunk.net" port 10000',
    134. 

  134. 							'ipv4 "v4.gw04.paderborn.freifunk.net" port 10000',
    135. 

  135. 							'ipv6 "2a02:450:1:4::10" port 10000',
    136. 

  136. 							'ipv4 "80.70.181.57" port 10000',
    137. 

  137. 						},
    138. 

  138. 					},
    139. 

  139. 					gw05 = {
    140. 

  140. 						key = 'd0d32a2f536a0fc1f0c848e6da15bd96851d5ff4fdf9239c830bab033ddcec1a',
    141. 

  141. 						remotes = {
    142. 

  142. 							'ipv6 "v6.gw05.paderborn.freifunk.net" port 10000',
    143. 

  143. 							'ipv4 "v4.gw05.paderborn.freifunk.net" port 10000',
    144. 

  144. 							'ipv6 "2001:638:502:1884::ff05" port 10000',
    145. 

  145. 							'ipv4 "192.26.175.182" port 10000',
    146. 

  146. 						},
    147. 

  147. 					},
    148. 

  148. 					gw06 = {
    149. 

  149. 						key = 'b912bcf1c1335390364b8030448e53d8869b650f32923e59bf01d763d3028840',
    150. 

  150. 						remotes = {
    151. 

  151. 							'ipv6 "v6.gw06.paderborn.freifunk.net" port 10000',
    152. 

  152. 							'ipv4 "v4.gw06.paderborn.freifunk.net" port 10000',
    153. 

  153. 							'ipv6 "2a03:4000:6:20f0::ff12" port 10000',
    154. 

  154. 							'ipv4 "5.45.111.222" port 10000',
    155. 

  155. 						},
    156. 

  156. 					},
    157. 

  157. 					gw08 = {
    158. 

  158. 						key = '3da050bbf1c3e95af286af65553f546fd563d9cb5d4b3b3444069bef281de621',
    159. 

  159. 						remotes = {
    160. 

  160. 							'ipv6 "v6.gw08.paderborn.freifunk.net" port 10000',
    161. 

  161. 							'ipv4 "v4.gw08.paderborn.freifunk.net" port 10000',
    162. 

  162. 							'ipv6 "2a03:4000:6:1151::ff12" port 10000',
    163. 

  163. 							'ipv4 "5.45.107.59" port 10000',
    164. 

  164. 						},
    165. 

  165. 					},
    166. 

  166. 				},
    167. 

  167. 			},
    168. 

  168. 		},
    169. 

  169. 	},
    170. 

  170. 

  171. 	-- configure the autoupdater
    172. 

  172. 	autoupdater = {
    173. 

  173. 		enabled = 1,
    174. 

  174. 

  175. 		-- default branch for a firmware
    176. 

  176. 		-- In config-mode, the user can select a different branch from below
    177. 

  177. 		branch = 'stable',
    178. 

  178. 

  179. 		-- available branches for the autoupdater
    180. 

  180. 		branches = {
    181. 

  181. 			stable = {
    182. 

  182. 				-- visible name of this branch (why not use the internal identifier here, too)
    183. 

  183. 				name = 'stable',
    184. 

  184. 

  185. 				-- where to get the manifest file (without the trailing /manifest)
    186. 

  186. 				-- It's wise to use an internal address here,
    187. 

  187. 				-- but specifying a publicly available update site does not hurt.
    188. 

  188. 				mirrors = {'http://[fdca:ffee:ff12:a254::80]/stable', 'http://firmware.paderborn.freifunk.net/stable'},
    189. 

  189. 

  190. 				-- Number of valid manifest signatures necessary to accept the manifest as "good".
    191. 

  191. 				good_signatures = 3,
    192. 

  192. 

  193. 				-- list of public keys which are considered "good" for manifest signatures
    194. 

  194. 				pubkeys = {
    195. 

  195. 					'16b0e942929d6592d4a01b66b334427ba4db03b388a876432958d9010bd8d8b5', -- HeJ
    196. 

  196. 					'b0197042824a752c2dba717a4b2ded88852111bbe12e6b5f57fdfa3abb9312c0', -- thardes2
    197. 

  197. 					'ba2e6ff4de41ade9959702195d4c26c764e7aab85c627363681c29dbc4a8a2c5', -- oscar-
    198. 

  198. 					'fb9d6beba63dcb6175d0248c1e743b5fe4359474eb264d27f389d7a962e24477', -- northalpha
    199. 

  199. 					'f70f9ddeb307fff8fca31a76f4fbd0ac676dab8ad143625f0a4160d434d72876', -- Barbarossa
    200. 

  200. 				},
    201. 

  201. 			},
    202. 

  202. 			testing = {
    203. 

  203. 				name = 'testing',
    204. 

  204. 				mirrors = {'http://[fdca:ffee:ff12:a254::80]/testing','http://firmware.paderborn.freifunk.net/testing'},
    205. 

  205. 				good_signatures = 2,
    206. 

  206. 				pubkeys = {
    207. 

  207. 					'16b0e942929d6592d4a01b66b334427ba4db03b388a876432958d9010bd8d8b5', -- HeJ
    208. 

  208. 					'b0197042824a752c2dba717a4b2ded88852111bbe12e6b5f57fdfa3abb9312c0', -- thardes2
    209. 

  209. 					'ba2e6ff4de41ade9959702195d4c26c764e7aab85c627363681c29dbc4a8a2c5', -- oscar-
    210. 

  210. 					'fb9d6beba63dcb6175d0248c1e743b5fe4359474eb264d27f389d7a962e24477', -- northalpha
    211. 

  211. 					'f70f9ddeb307fff8fca31a76f4fbd0ac676dab8ad143625f0a4160d434d72876', -- Barbarossa
    212. 

  212. 				},
    213. 

  213. 			},
    214. 

  214. 			experimental = {
    215. 

  215. 				name = 'experimental',
    216. 

  216. 				mirrors = {'http://[fdca:ffee:ff12:a254::80]/experimental','http://firmware.paderborn.freifunk.net/experimental'},
    217. 

  217. 				good_signatures = 1,
    218. 

  218. 				pubkeys = {
    219. 

  219. 					'16b0e942929d6592d4a01b66b334427ba4db03b388a876432958d9010bd8d8b5', -- HeJ
    220. 

  220. 					'b0197042824a752c2dba717a4b2ded88852111bbe12e6b5f57fdfa3abb9312c0', -- thardes2
    221. 

  221. 					'ba2e6ff4de41ade9959702195d4c26c764e7aab85c627363681c29dbc4a8a2c5', -- oscar-
    222. 

  222. 					'fb9d6beba63dcb6175d0248c1e743b5fe4359474eb264d27f389d7a962e24477', -- northalpha
    223. 

  223. 					'f70f9ddeb307fff8fca31a76f4fbd0ac676dab8ad143625f0a4160d434d72876', -- Barbarossa
    224. 

  224. 				},
    225. 

  225. 			},
    226. 

  226. 		},
    227. 

  227. 	},
    228. 

  228. 

  229. 	-- default traffic shaping (bandwidth limit) settings
    230. 

  230. 	simple_tc = {
    231. 

  231. 		mesh_vpn = {
    232. 

  232. 			ifname = 'mesh-vpn',
    233. 

  233. 			enabled = false,
    234. 

  234. 			limit_egress = 200,
    235. 

  235. 			limit_ingress = 3000,
    236. 

  236. 		},
    237. 

  237. 	},
    238. 

  238. 

  239. 	-- configure ffpb-debug
    240. 

  240. 	debugserver = {
    241. 

  241. 		host = { 'debugreport.paderborn.freifunk.net', 'fdca:ffee:ff12:a254::deb9' },
    242. 

  242. 		port = 1337,
    243. 

  243. 		liveport = 1338,
    244. 

  244. 	},
    245. 

  245. 

  246. 	-- enable BATMAN on WAN interface by default (requires gluon-batman-on-wan package)
    247. 

  247. 	batman_on_wan = 0,
    248. 

  248. 

  249. }
    250.