]]--
local uci = require "luci.model.uci".cursor()
-local tools = require "luci.tools.ffwizard"
-local util = require "luci.util"
-
-local io = require "io"
-
-------------------- View --------------------
f = SimpleForm("siitwizward", "4over6-Assistent",
"Dieser Assistent unterstüzt bei der Einrichtung von IPv4-over-IPv6 Translation.")
mode = f:field(ListValue, "mode", "Betriebsmodus")
-mode:value("gateway", "Gateway")
mode:value("client", "Client")
+mode:value("gateway", "Gateway")
dev = f:field(ListValue, "device", "WLAN-Gerät")
-uci:foreach("network", "interface",
+uci:foreach("wireless", "wifi-device",
function(section)
- if section[".name"] ~= "siit0" then
- dev:value(section[".name"])
- end
+ dev:value(section[".name"])
end)
+lanip = f:field(Value, "ipaddr", "LAN IP Adresse")
+lanip.value = "172.23.1.1"
+
+lanmsk = f:field(Value, "lanmask", "Lokale LAN Netzmaske")
+lanmsk.value = "255.255.255.0"
+
+gv4msk = f:field(Value, "gv4mask", "Globale LAN Netzmaske")
+gv4msk.value = "255.255.0.0"
+
-------------------- Control --------------------
-LL_PREFIX = luci.ip.IPv6("fe80::/16")
+LL_PREFIX = luci.ip.IPv6("fe80::/64")
--
-- find link-local address
--
-function find_ll(dev)
+function find_ll()
for _, r in ipairs(luci.sys.net.routes6()) do
- if r.device == dev and LL_PREFIX:contains(r.dest) then
+ if LL_PREFIX:contains(r.dest) and r.dest:higher(LL_PREFIX) then
return r.dest:sub(LL_PREFIX)
end
end
function mode.write(self, section, value)
+ -- lan interface
+ local lan_net = luci.ip.IPv4(
+ lanip:formvalue(section) or "192.168.1.1",
+ lanmsk:formvalue(section) or "255.255.255.0"
+ )
+
+ local gv4_net = luci.ip.IPv4(
+ lanip:formvalue(section) or "192.168.1.1",
+ gv4msk:formvalue(section) or "255.255.0.0"
+ )
+
+ --
+ -- Configure wifi device
+ --
+ local wifi_device = dev:formvalue(section)
+ local wifi_essid = uci:get("siit", "wifi", "essid") or "6mesh.freifunk.net"
+ local wifi_bssid = uci:get("siit", "wifi", "bssid") or "02:ca:ff:ee:ba:be"
+ local wifi_channel = uci:get("siit", "wifi", "channel") or "1"
+
+ -- nuke old device definition
+ uci:delete_all("wireless", "wifi-iface",
+ function(s) return s.device == wifi_device end )
+
+ uci:delete_all("network", "interface",
+ function(s) return s['.name'] == wifi_device end )
+
+ -- create wifi device definition
+ uci:tset("wireless", wifi_device, {
+ disabled = 0,
+ channel = wifi_channel,
+-- txantenna = 1,
+-- rxantenna = 1,
+-- diversity = 0
+ })
+
+ uci:section("wireless", "wifi-iface", nil, {
+ encryption = "none",
+ mode = "adhoc",
+ network = wifi_device,
+ device = wifi_device,
+ ssid = wifi_essid,
+ bssid = wifi_bssid,
+ })
+
+
--
-- Determine defaults
--
- local ula_prefix = uci:get("siit", "defaults", "ula_prefix") or "fd00::"
- local ula_global = uci:get("siit", "defaults", "ula_global") or "00ca:ffee:babe::" -- = Freifunk
- local ula_subnet = uci:get("siit", "defaults", "ula_subnet") or "0000:0000:0000:4223::" -- = Berlin
- local siit_prefix = uci:get("siit", "defaults", "siit_prefix") or "::ffff:ffff:0000:0000"
- local siit_route = luci.ip.IPv6(siit_prefix .. "/96")
+ local ula_prefix = uci:get("siit", "ipv6", "ula_prefix") or "fd00::"
+ local ula_global = uci:get("siit", "ipv6", "ula_global") or "00ca:ffee:babe::" -- = Freifunk
+ local ula_subnet = uci:get("siit", "ipv6", "ula_subnet") or "0000:0000:0000:4223::" -- = Berlin
+ local siit_prefix = uci:get("siit", "ipv6", "siit_prefix") or "::ffff:0000:0000"
-- Find wifi interface
local device = dev:formvalue(section)
--
-- Generate ULA
--
- local ula = luci.ip.IPv6("::")
+ local ula = luci.ip.IPv6("::/64")
for _, prefix in ipairs({ ula_prefix, ula_global, ula_subnet }) do
ula = ula:add(luci.ip.IPv6(prefix))
end
- ula = ula:add(find_ll(uci:get("network", device, "ifname") or device))
+ ula = ula:add(find_ll())
--
-- Gateway mode
--
-- * wan port is dhcp, lan port is 172.23.1.1/24
- -- * siit0 gets a dummy address: 169.254.42.42
- -- * wl0 gets an ipv6 address, in this case the fdca:ffee:babe::1:1/64
- -- * we do a ::ffff:ffff:0/96 route into siit0, so everything from 6mesh goes into translation.
- -- * an HNA6 of ::ffff:ffff:0:0/96 announces the mapped 0.0.0.0/0 ipv4 space.
- -- * MTU on WAN, LAN down to 1400, ipv6 headers are slighly larger.
+ -- * siit0 gets a dummy address: 169.254.42.42
+ -- * wl0 gets an ipv6 address, in this case the fdca:ffee:babe::1:1/64
+ -- * we do a ::ffff:ffff:0/96 route into siit0, so everything from 6mesh goes into translation.
+ -- * an HNA6 of ::ffff:ffff:0:0/96 announces the mapped 0.0.0.0/0 ipv4 space.
+ -- * MTU on WAN, LAN down to 1400, ipv6 headers are slighly larger.
if value == "gateway" then
+
+ -- wan mtu
uci:set("network", "wan", "mtu", 1400)
+ -- lan settings
+ uci:tset("network", "lan", {
+ mtu = 1400,
+ ipaddr = lan_net:host():string(),
+ netmask = lan_net:mask():string()
+ })
+
+ -- use full siit subnet
+ siit_route = luci.ip.IPv6(siit_prefix .. "/96")
+
+ -- v4 <-> siit route
+ uci:delete_all("network", "route",
+ function(s) return s.interface == "siit0" end)
+
+ uci:section("network", "route", nil, {
+ interface = "siit0",
+ target = gv4_net:host():string(),
+ netmask = gv4_net:mask():string()
+ })
--
-- Client mode
--
-- * 172.23.2.1/24 on its lan, fdca:ffee:babe::1:2 on wl0 and the usual dummy address on siit0.
- -- * we do a ::ffff:ffff:172.13.2.0/120 to siit0, because in this case, only traffic directed to clients needs to go into translation.
- -- * same route as HNA6 announcement to catch the traffic out of the mesh.
- -- * Also, MTU on LAN reduced to 1400.
+ -- * we do a ::ffff:ffff:172.13.2.0/120 to siit0, because in this case, only traffic directed to clients needs to go into translation.
+ -- * same route as HNA6 announcement to catch the traffic out of the mesh.
+ -- * Also, MTU on LAN reduced to 1400.
else
- local lan_ip = luci.ip.IPv4(
- uci:get("network", "lan", "ipaddr"),
- uci:get("network", "lan", "netmask")
- )
- siit_route = luci.ip.IPv6(
- siit_prefix .. "/" .. (96 + lan_ip:prefix())
- ):add(lan_ip[2])
+ -- lan settings
+ uci:tset("network", "lan", {
+ mtu = 1400,
+ ipaddr = lan_net:host():string(),
+ netmask = lan_net:mask():string()
+ })
+ -- derive siit subnet from lan config
+ siit_route = luci.ip.IPv6(
+ siit_prefix .. "/" .. (96 + lan_net:prefix())
+ ):add(lan_net[2])
+
+ -- ipv4 <-> siit route
+ uci:delete_all("network", "route",
+ function(s) return s.interface == "siit0" end)
+
+ -- XXX: kind of a catch all, gv4_net would be better
+ -- but does not cover non-local v4 space
+ uci:section("network", "route", nil, {
+ interface = "siit0",
+ target = "0.0.0.0",
+ netmask = "0.0.0.0"
+ })
end
+ -- setup the firewall
+ uci:delete_all("firewall", "zone",
+ function(s) return (
+ s['.name'] == "siit0" or s.name == "siit0" or
+ s.network == "siit0" or s['.name'] == wifi_device or
+ s.name == wifi_device or s.network == wifi_device
+ ) end)
+
+ uci:delete_all("firewall", "forwarding",
+ function(s) return (
+ s.src == wifi_device and s.dest == "siit0" or
+ s.dest == wifi_device and s.src == "siit0" or
+ s.src == "lan" and s.dest == "siit0" or
+ s.dest == "lan" and s.src == "siit0"
+ ) end)
+
+ uci:section("firewall", "zone", "siit0", {
+ name = "siit0",
+ network = "siit0",
+ input = "ACCEPT",
+ output = "ACCEPT",
+ forward = "ACCEPT"
+ })
+
+ uci:section("firewall", "zone", wifi_device, {
+ name = wifi_device,
+ network = wifi_device,
+ input = "ACCEPT",
+ output = "ACCEPT",
+ forward = "ACCEPT"
+ })
+
+ uci:section("firewall", "forwarding", nil, {
+ src = wifi_device,
+ dest = "siit0"
+ })
+
+ uci:section("firewall", "forwarding", nil, {
+ src = "siit0",
+ dest = wifi_device
+ })
+
+ uci:section("firewall", "forwarding", nil, {
+ src = "lan",
+ dest = "siit0"
+ })
+
+ uci:section("firewall", "forwarding", nil, {
+ src = "siit0",
+ dest = "lan"
+ })
+
-- siit0 interface
uci:delete_all("network", "interface",
function(s) return ( s.ifname == "siit0" ) end)
function(s) return siit_route:contains(luci.ip.IPv6(s.target)) end)
uci:section("network", "route6", nil, {
- interface = device,
+ interface = "siit0",
target = siit_route:string()
})
- -- interface
- uci:set("network", device, "ip6addr", ula:string())
- uci:set("network", "lan", "mtu", 1400)
+ -- create wifi network interface
+ uci:section("network", "interface", wifi_device, {
+ proto = "static",
+ mtu = 1400,
+ ip6addr = ula:string()
+ })
- uci:set("olsrd", "general", "IpVersion", 6)
- uci:foreach("olsrd", "Interface",
- function(s)
- if s.interface == device then
- uci:set("olsrd", s[".name"], "Ip6AddrType", "global")
- end
- uci:delete("olsrd", s[".name"], "Ip4Boradcast")
- end)
+ -- nuke old olsrd interfaces
+ uci:delete_all("olsrd", "Interface",
+ function(s) return s.interface == wifi_device end)
+
+ -- configure olsrd interface
+ uci:foreach("olsrd", "olsrd",
+ function(s) uci:set("olsrd", s['.name'], "IpVersion", 6) end)
+
+ uci:section("olsrd", "Interface", nil, {
+ ignore = 0,
+ interface = wifi_device,
+ Ip6AddrType = "global"
+ })
-- hna6
uci:delete_all("olsrd", "Hna6",
prefix = siit_route:prefix()
})
+ uci:save("wireless")
+ uci:save("firewall")
uci:save("network")
uci:save("olsrd")
end