DD-WRT: Difference between revisions

From Yggenyk
Jump to navigation Jump to search
Line 50: Line 50:
==Wireless Access Point==
==Wireless Access Point==
* [http://www.dd-wrt.com/wiki/index.php/Wireless_Access_Point Set up your router as Wireless Access Point]
* [http://www.dd-wrt.com/wiki/index.php/Wireless_Access_Point Set up your router as Wireless Access Point]
(Optional) Assign WAN Port to Switch (visible only with WAN Connection Type set to disabled): Enable this if you want to use WAN port as a switch port
Here's how to create a Wireless Access Point using dd-wrt v24. Please pay special attention to the Review section of this article, especially if you are using an older version.
Hard reset or 30/30/30 the router to dd-wrt default settings
Connect to the router @ http://192.168.1.1
Note: If this router is wired to another router, there may be conflicts (both routers could have the same IP address). For the time being, disconnect this router from the main one.
Open the Setup -> Basic Setup tab
WAN Connection Type : Disabled
Local IP Address: 192.168.1.2 (i.e. different from primary router and out of DHCP pool)
Subnet Mask: 255.255.255.0 (i.e. same as primary router)
DHCP Server: Disable (also uncheck DNSmasq options)
(Recommended) Gateway/Local DNS: IP address of primary router (many things will fail without this)
(Optional) NTP Client: Enable/Disable (if Enabled, specify Gateway/Local DNS above)
Save
Open the Setup -> Advanced Routing tab
(Optional) Change operating mode to: Router
Save
Open the Wireless -> Basic Settings tab
Wireless Network Name (SSID): YourNetworkNameHere
(Optional) Sensitivity Range: The max distance (in meters) to clients x2
Save
Open the Wireless -> Wireless Security tab
Note: Security is optional, but recommended! Clients must support whatever mode you select here.
(Recommended) Security Mode: WPA2
(Recommended) WPA Algorithm: AES
(Recommended) WPA Shared Key: >8 characters
Save
Open the Services -> Services tab
(Optional) DNSMasq: Disable (enable if you use additional DNSMasq settings)
(Optional) ttraff Daemon: Disable
Save
Open the Security -> Firewall tab
Uncheck all boxes except Filter Multicast
Save
Disable SPI firewall
Save
Open the Administration -> Management tab
(Recommended) Info Site Password Protection: Enable
(Recommended) Routing: Disabled (enable if you need to route between interfaces)
Apply Settings and connect Ethernet cable to main router via LAN-to-LAN uplink*
Notes:
To connect the WAP to the main router, you can probably use either a patch cable, straight-thru, or a crossover cable. Most DD-WRT capable devices can do auto-sensing so the cable type doesn't usually matter.
You can connect the WAP to the main router via LAN-to-WAN so long as you have assigned the WAN port to switch (see step 3).


==Netgear WNDR3700 and DD-WRT==
==Netgear WNDR3700 and DD-WRT==

Revision as of 19:40, 23 August 2012

<google>ENGELSK</google>

DD-WRT

DD-WRT is an opensource linux based firmware for Linksys WRT54G and similar 802.11g wireless routers.


Wiviz, an open source GPL project, allows you to use your WRT to see other networks. It scans for networks and then shows signal strength and effects of antenna adjustment in real time.

Redirect all SMTP traffic to your internet providers SMTP server

Let DD-WRT redirect SMTP traffic to a valid SMTP server so everyone on your net can send mail

How DD-WRT routes traffic

To get a better understanding on how DD-WRT routes traffic, you can read:

If you are interested it tells how to show routing information:

To list your currently active rule-set: iptables -L

This command should list your currently active rule-set, and translate everything possible to a more readable form. For example, it will translate all the different ports according to the /etc/services file as well as DNS all the IP addresses to get DNS records instead. The latter can be a bit of a problem though. For example, it will try to resolve LAN IP addresses, i.e. 192.168.1.1, to something useful. 192.168.0.0/16 is a private range though and should not resolve to anything and the command will seem to hang while resolving the IP. To get around this problem we would do something like the following:

iptables -L -n

Another thing that might be interesting is to see a few statistics about each policy, rule and chain. We could get this by adding the verbose flag. It would then look something like this:

iptables -L -n -v

Don't forget that it is also possible to list the nat and mangle tables. This is done with the -t switch, like this:

iptables -L -t nat

There are also a few files that might be interesting to look at in the /proc file system. For example, it might be interesting to know what connections are currently in the conntrack table. This table contains all the different connections currently tracked and serves as a basic table so we always know what state a connection currently is in. This table can't be edited and even if it was possible, it would be a bad idea. To see the table you can run the following command:

cat /proc/net/ip_conntrack | less

The above command will show all currently tracked connections even though it might be a bit hard to understand everything.

Virtual Interfaces multiple SSID's

Wireless Access Point

(Optional) Assign WAN Port to Switch (visible only with WAN Connection Type set to disabled): Enable this if you want to use WAN port as a switch port

Here's how to create a Wireless Access Point using dd-wrt v24. Please pay special attention to the Review section of this article, especially if you are using an older version. Hard reset or 30/30/30 the router to dd-wrt default settings Connect to the router @ http://192.168.1.1 Note: If this router is wired to another router, there may be conflicts (both routers could have the same IP address). For the time being, disconnect this router from the main one. Open the Setup -> Basic Setup tab WAN Connection Type : Disabled Local IP Address: 192.168.1.2 (i.e. different from primary router and out of DHCP pool) Subnet Mask: 255.255.255.0 (i.e. same as primary router) DHCP Server: Disable (also uncheck DNSmasq options) (Recommended) Gateway/Local DNS: IP address of primary router (many things will fail without this) (Optional) NTP Client: Enable/Disable (if Enabled, specify Gateway/Local DNS above) Save Open the Setup -> Advanced Routing tab (Optional) Change operating mode to: Router Save Open the Wireless -> Basic Settings tab Wireless Network Name (SSID): YourNetworkNameHere (Optional) Sensitivity Range: The max distance (in meters) to clients x2 Save Open the Wireless -> Wireless Security tab Note: Security is optional, but recommended! Clients must support whatever mode you select here. (Recommended) Security Mode: WPA2 (Recommended) WPA Algorithm: AES (Recommended) WPA Shared Key: >8 characters Save Open the Services -> Services tab (Optional) DNSMasq: Disable (enable if you use additional DNSMasq settings) (Optional) ttraff Daemon: Disable Save Open the Security -> Firewall tab Uncheck all boxes except Filter Multicast Save Disable SPI firewall Save Open the Administration -> Management tab (Recommended) Info Site Password Protection: Enable (Recommended) Routing: Disabled (enable if you need to route between interfaces) Apply Settings and connect Ethernet cable to main router via LAN-to-LAN uplink*

Notes: To connect the WAP to the main router, you can probably use either a patch cable, straight-thru, or a crossover cable. Most DD-WRT capable devices can do auto-sensing so the cable type doesn't usually matter. You can connect the WAP to the main router via LAN-to-WAN so long as you have assigned the WAN port to switch (see step 3).

Netgear WNDR3700 and DD-WRT

Netgear WNDR4000 and DD-WRT

Port forward problem

Netgear WNDR4500 and DD-WRT

Extend the range of your wireless network

Commercial antenna

Do it yourself antenna

WDS (Wireless Distribution System) Repeater for range extension

<google>ENGELSK</google>

id=siteTree

Retrieved from "http://yggenyk.dk/index.php?title=DD-WRT&oldid=6464"