[Lugro-mesh] Re: Achicando imagen
Sebastián D. Criado
lugro-mesh@lugro.org.ar
Tue, 18 Dec 2007 22:04:04 -0300
--=-xuqJs/T4FI/6G5+jTfPv
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
El mar, 18-12-2007 a las 20:26 -0300, Gustavo Lindberg escribi=C3=B3:
> Y lo importante, carga el modulo teniendo el TC ???
>=20
Ups jeje, me olvide lo importante. :D
Si, as=C3=AD es, con el tc instalado, salio andando, eso si, tambi=C3=A9n h=
e
tenido que instalar el kmod-imq
Comento lo que paso paso a paso:
Despu=C3=A9s de esto el nodogspash tiro otros errores, que me pararon por
rato:
/etc/init.d/nodogsplash restart
nodogsplash: Stopping nodogsplash ...=20
nodogsplash: I was not running
nodogsplash: Starting nodogsplash ...=20
Testing module ipt_mac
ipt_mac is working
Testing module ipt_mark
ipt_mark is working
Testing module ipt_REDIRECT
ipt_REDIRECT is working
Testing module imq
imq is working
Testing module ipt_IMQ
ipt_IMQ is working
Testing module sch_htb
Module sch_htb not working
Scanning disk for sch_htb module
sch_htb exists, trying to load
sch_htb loaded successfully
nodogsplash: started
~ $ iptables v1.3.8: Couldn't load match `mark':File not found
Try `iptables -h' or 'iptables --help' for more information.
[3][Sat Jan 1 00:09:46 2000][2429](fw_iptables.c:85) Nonzero exit
status 2 from command: iptables -t nat -A ndsOUT -m mark --mark 0xf -j
ACCEPT
iptables v1.3.8: Couldn't load match `mark':File not found
Try `iptables -h' or 'iptables --help' for more information.
[3][Sat Jan 1 00:09:46 2000][2429](fw_iptables.c:85) Nonzero exit
status 2 from command: iptables -t nat -A ndsOUT -m mark --mark 0xd -j
ACCEPT
iptables v1.3.8: Couldn't load match `mark':File not found
Try `iptables -h' or 'iptables --help' for more information.
[3][Sat Jan 1 00:09:47 2000][2429](fw_iptables.c:85) Nonzero exit
status 2 from command: iptables -t filter -A ndsRTR -m mark --mark 0xe
-j DROP
iptables v1.3.8: Couldn't load match `mark':File not found
Try `iptables -h' or 'iptables --help' for more information.
[3][Sat Jan 1 00:09:47 2000][2429](fw_iptables.c:85) Nonzero exit
status 2 from command: iptables -t filter -A ndsRTR -m mark --mark 0xf
-j ACCEPT
iptables v1.3.8: Couldn't load match `mark':File not found
Try `iptables -h' or 'iptables --help' for more information.
[3][Sat Jan 1 00:09:48 2000][2429](fw_iptables.c:85) Nonzero exit
status 2 from command: iptables -t filter -A ndsNET -m mark --mark 0xe
-j DROP
iptables v1.3.8: Couldn't load match `mark':File not found
Try `iptables -h' or 'iptables --help' for more information.
[3][Sat Jan 1 00:09:48 2000][2429](fw_iptables.c:85) Nonzero exit
status 2 from command: iptables -t filter -A ndsNET -m mark --mark 0xf
-j ACCEPT
iptables v1.3.8: Couldn't load match `mark':File not found
Try `iptables -h' or 'iptables --help' for more information.
[3][Sat Jan 1 00:09:48 2000][2429](fw_iptables.c:85) Nonzero exit
status 2 from command: iptables -t filter -A ndsNET -m mark --mark 0xd
-j ndsAUT
[3][Sat Jan 1 00:09:48 2000][2429](gateway.c:418) Error initializing
firewall rules! Cleaning up
[3][Sat Jan 1 00:09:51 2000][2429](gateway.c:420) Exiting because of
error initializing firewall rules
Prob=C3=A9 instalando los=20
iptables-mod-extra_1.3.8-2_mips.ipk
kmod-ipt-extra_2.6.23.1-atheros-1_mips.ipk
Pero sigui=C3=B3 igual.
Cre=C3=AD que el problema ven=C3=ADa por el tema de QoS, as=C3=AD que me pu=
se a
compilar e instalar QoS que es de donde va a sacar el mark.
Este modulo requiere los siguientes paquetes:
iptables-mod-filter=20
iptables-mod-ipopt=20
kmod-ipt-filter=20
kmod-ipt-ipopt
Cuando termine de instalar estos ultimos m=C3=B3dulos, y sin haber instalad=
o
los script de QoS, salio andando el nodogsplash.
Resultado, el siguiente:
/etc/init.d/nodogsplash restart
nodogsplash: Stopping nodogsplash ...=20
nodogsplash: I was not running
nodogsplash: Starting nodogsplash ...=20
Testing module ipt_mac
ipt_mac is working
Testing module ipt_mark
ipt_mark is working
Testing module ipt_REDIRECT
ipt_REDIRECT is working
Testing module imq
imq is working
Testing module ipt_IMQ
ipt_IMQ is working
Testing module sch_htb
Module sch_htb not working
Scanning disk for sch_htb module
sch_htb exists, trying to load
sch_htb loaded successfully
nodogsplash: started
root@robin:~$ iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination =20
ndsRTR all -- anywhere anywhere =20
Chain FORWARD (policy ACCEPT)
target prot opt source destination =20
ndsNET all -- anywhere anywhere =20
DROP all -- anywhere !xxxxxxxxxxx.org=20
DROP all -- anywhere !xxxxxxxxxxx.org
#### Interesante esta linea, por que resolvi=C3=B3 cual era el gateway.
Chain OUTPUT (policy ACCEPT)
target prot opt source destination =20
Chain ndsAUT (1 references)
target prot opt source destination =20
ACCEPT all -- anywhere anywhere state
RELATED,ESTABLISHED=20
REJECT all -- anywhere 10.0.0.0/8 reject-with
icmp-port-unreachable=20
ACCEPT all -- anywhere anywhere =20
REJECT all -- anywhere anywhere reject-with
icmp-port-unreachable=20
Chain ndsNET (1 references)
target prot opt source destination =20
DROP all -- anywhere anywhere MARK match
0xe=20
DROP all -- anywhere anywhere state
INVALID=20
TCPMSS tcp -- anywhere anywhere tcp
flags:SYN,RST/SYN TCPMSS clamp to PMTU=20
ACCEPT all -- anywhere anywhere MARK match
0xf=20
ndsAUT all -- anywhere anywhere MARK match
0xd=20
REJECT all -- anywhere 10.0.0.0/8 reject-with
icmp-port-unreachable=20
ACCEPT all -- anywhere anywhere =20
REJECT all -- anywhere anywhere reject-with
icmp-port-unreachable=20
Chain ndsRTR (1 references)
target prot opt source destination =20
DROP all -- anywhere anywhere MARK match
0xe=20
DROP all -- anywhere anywhere state
INVALID=20
ACCEPT all -- anywhere anywhere state
RELATED,ESTABLISHED=20
DROP tcp -- anywhere anywhere tcp
option=3D!2 flags:SYN/SYN=20
ACCEPT all -- anywhere anywhere MARK match
0xf=20
ACCEPT tcp -- anywhere anywhere tcp
dpt:2050=20
ACCEPT udp -- anywhere anywhere udp dpt:53=20
ACCEPT tcp -- anywhere anywhere tcp dpt:53=20
ACCEPT udp -- anywhere anywhere udp dpt:67=20
ACCEPT tcp -- anywhere anywhere tcp dpt:20=20
ACCEPT tcp -- anywhere anywhere tcp dpt:21=20
ACCEPT tcp -- anywhere anywhere tcp dpt:22=20
ACCEPT tcp -- anywhere anywhere tcp dpt:23=20
ACCEPT tcp -- anywhere anywhere tcp dpt:80=20
ACCEPT tcp -- anywhere anywhere tcp
dpt:443=20
REJECT all -- anywhere anywhere reject-with
icmp-port-unreachable=20
Y si recuerdan los errores que tiraba antes, miren
IPP2P v0.8.1_rc1 loading
IMQ starting with 2 devices...
IMQ driver loaded successfully.
Hooking IMQ before NAT on PREROUTING.
Hooking IMQ after NAT on POSTROUTING.
Luego de que esto anduviera, instale el dnsmasq (ya me estoy quedando
con poco libre)
y quedo andando as=C3=AD:
ps ax
PID Uid VSZ Stat Command
1 root 2380 S init =20
2 root SW< [kthreadd]
3 root SW< [ksoftirqd/0]
4 root SW< [events/0]
5 root SW< [khelper]
20 root SW< [kblockd/0]
40 root SW [pdflush]
41 root SW [pdflush]
42 root SW< [kswapd0]
43 root SW< [aio/0]
87 root SW< [mtdblockd]
256 root SWN [jffs2_gcd_mtd2]
262 root 2380 S logger -s -p 6 -t =20
263 root 2384 S /bin/ash --login=20
271 root 2392 S syslogd -C16=20
273 root 2372 S klogd=20
281 root 1128 S /sbin/hotplug2 --override --persistent
--max-children
669 root 2380 S httpd -p 80 -h /www -r OpenWrt=20
673 root 2376 S telnetd -l /bin/ash=20
885 root 2380 S /usr/sbin/httpd -p 8080 -h /www=20
1080 root 1404 S hostapd -B /var/run/hostapd-ath2.conf=20
1122 root 1580 S /usr/sbin/batmand -o 1500 -g 5000 -a
10.22.64.0/25 -a
1123 root 1580 S /usr/sbin/batmand -o 1500 -g 5000 -a
10.22.64.0/25 -a
1125 root 1580 S /usr/sbin/batmand -o 1500 -g 5000 -a
10.22.64.0/25 -a
1126 root 1580 S /usr/sbin/batmand -o 1500 -g 5000 -a
10.22.64.0/25 -a
1156 nobody 1260 S /usr/sbin/dnsmasq -C /etc/dnsmasq.ap.conf
--bind-inte
1161 nobody 1260 S /usr/sbin/dnsmasq -C /etc/dnsmasq.Myap.conf
--bind-in
1165 root 2384 S crond -c /etc/crontabs=20
1217 root 2112 S /usr/bin/nodogsplash=20
1387 root 2112 S /usr/bin/nodogsplash=20
1388 root 2112 S /usr/bin/nodogsplash=20
1389 root 2112 S /usr/bin/nodogsplash=20
Por =C3=BAltimo le instale el coova, por que si no, no sirve de nada el
captive :D
Pero no lo he hecho andar.
;)
>=20
--=20
Sebasti=C3=A1n D. Criado - scriado{en}ciudad.com.ar
NO A LA MATRICULACI=C3=93N OBLIGATORIA -
http://noalamatricula.wordpress.com/about/
L.U.G.Ro - http://www.lugro.org.ar
GNU/Linux Registered User # 146768
-------------------------------------------------------------------
"Si el Universo fuera un programa estar=C3=ADa hecho en C, y correr=C3=ADa =
sobre
un sistema UNIX"
--=-xuqJs/T4FI/6G5+jTfPv
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: Esta parte del mensaje =?ISO-8859-1?Q?est=E1?= firmada
digitalmente
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQBHaG4E8hmHQ8ZCg0IRAqbeAJ0ZU4UgBOlY1vmpXzZtNyd4al/PiQCeIjtz
v4PpbI3VcX/St0KWU3nTZzY=
=snme
-----END PGP SIGNATURE-----
--=-xuqJs/T4FI/6G5+jTfPv--