Mesh Gateway With VLANs and VSSID on Service Set
From wiliGear wiki
Description
For mesh networks, sometimes it is desirable to have different types of traffic on one physical service set. This is possible by using VSSIDs to create logical wireless interfaces on one physical interface. Along with VSSIDs, VLAN interfaces may be created and joined with the VSSIDs in a separate bridge so the traffic is separated into different networks.
Configuration Sample
################################# # Configuration created by mattttttt # Skin: LIGOMESH, version: 0.4.0 # Generated on 1970-01-01 00:05:54 UTC ################################# # # Section: autolock autolock.control.1.devname=ath1 autolock.control.1.status=enabled autolock.control.2.devname=ms1 autolock.control.2.status=enabled autolock.interval=0 autolock.lock.action=down autolock.retry_count=0 autolock.status=enabled autolock.unlock.action=up autolock.verbose=enabled # # Section: bridge bridge.1.ageing=300 bridge.1.devname=br0 bridge.1.fd=1 bridge.1.hello=20 bridge.1.maxage=300 bridge.1.port.1.devname=ixp1 bridge.1.port.1.status=enabled bridge.1.port.2.devname=ixp0 bridge.1.port.2.status=enabled bridge.1.port.3.devname=ath0 bridge.1.port.3.status=enabled bridge.1.port.4.devname=ath2 bridge.1.port.4.status=disabled bridge.1.port.5.devname=ath1 bridge.1.port.5.status=disabled bridge.1.priority=2 bridge.1.status=enabled bridge.1.stp.status=disabled # Create bridge 2 for VLAN 100 traffic (note ath1 traffic is bridged) bridge.2.devname=br1 bridge.2.fd=1 bridge.2.port.1.devname=ixp1.100 bridge.2.port.1.status=enabled bridge.2.port.2.devname=ath1 bridge.2.port.2.status=enabled bridge.2.port.3.devname=ath0.100 bridge.2.port.3.status=enabled bridge.2.status=enabled bridge.2.stp.status=enabled # Create bridge 3 for VLAN 101 traffic (note ms1 VSSID is bridged) bridge.3.devname=br2 bridge.3.fd=1 bridge.3.port.1.devname=ixp1.101 bridge.3.port.1.status=enabled bridge.3.port.2.devname=ath0.101 bridge.3.port.2.status=enabled bridge.3.port.3.devname=ms1 bridge.3.port.3.status=enabled bridge.3.status=enabled bridge.3.stp.status=enabled bridge.status=enabled # # Section: dhcpc dhcpc.1.devname=br0 dhcpc.1.status=enabled dhcpc.2.devname=br2 dhcpc.2.status=disabled dhcpc.status=enabled # # Section: discoveryd discoveryd.status=enabled # # Section: ebtables ebtables.rule.1.chain=BROUTING ebtables.rule.1.protocol=0x888e ebtables.rule.1.status=enabled ebtables.rule.1.table=broute ebtables.rule.1.target=DROP # Rule to drop VLAN 100 traffic from bridge ebtables.rule.2.chain=BROUTING ebtables.rule.2.protocol=0x8100 ebtables.rule.2.status=enabled ebtables.rule.2.table=broute ebtables.rule.2.target=DROP ebtables.rule.2.vlan.id=100 # Rule to drop VLAN 101 traffic from bridge ebtables.rule.3.chain=BROUTING ebtables.rule.3.protocol=0x8100 ebtables.rule.3.status=enabled ebtables.rule.3.table=broute ebtables.rule.3.target=DROP ebtables.rule.3.vlan.id=101 ebtables.status=enabled # # Section: httpd httpd.backlog=100 httpd.external.status=disabled httpd.max.connections=50 httpd.max.request=51200 httpd.port.admin=444 httpd.port.http=80 httpd.port.https=443 httpd.status=enabled httpd.verbose=disabled # # Section: mesh mesh.downlink.1.devname=ath0 mesh.downlink.1.status=enabled mesh.ssid=DLB-MESH mesh.ssid.is_hex=disabled mesh.status=enabled mesh.uplink.1.devname=ath2 mesh.uplink.1.status=disabled # # Section: netconf netconf.1.devname=br0 netconf.1.ip=192.168.2.66 netconf.1.mode=lan netconf.1.netmask=255.255.255.0 netconf.1.status=enabled netconf.1.type=bridge netconf.1.up=enabled netconf.2.devname=ixp1 netconf.2.ip=0.0.0.0 netconf.2.mode=wan netconf.2.netmask=255.255.255.255 netconf.2.status=enabled netconf.2.type=ethernet netconf.2.up=enabled netconf.3.devname=ixp0 netconf.3.ip=0.0.0.0 netconf.3.mode=lan netconf.3.netmask=255.255.255.255 netconf.3.status=enabled netconf.3.type=ethernet netconf.3.up=enabled netconf.4.devname=ath2 netconf.4.ip=0.0.0.0 netconf.4.mode=lan netconf.4.netmask=255.255.255.255 netconf.4.status=enabled netconf.4.type=wireless netconf.4.up=disabled netconf.5.devname=ath0 netconf.5.ip=0.0.0.0 netconf.5.mode=lan netconf.5.netmask=255.255.255.255 netconf.5.status=enabled netconf.5.type=wireless netconf.5.up=enabled netconf.6.devname=ath1 netconf.6.ip=0.0.0.0 netconf.6.mode=lan netconf.6.netmask=255.255.255.255 netconf.6.status=enabled netconf.6.type=wireless netconf.6.up=enabled # Create IP interface for VLANs netconf.7.devname=ath0.100 netconf.7.ip=0.0.0.0 netconf.7.mode=lan netconf.7.netmask=255.255.255.0 netconf.7.status=enabled netconf.7.type=ethernet netconf.7.up=enabled netconf.8.devname=br1 netconf.8.ip=10.15.0.2 netconf.8.mode=lan netconf.8.netmask=255.255.252.0 netconf.8.status=enabled netconf.8.type=bridge netconf.8.up=enabled netconf.9.devname=ath1.100 netconf.9.ip=0.0.0.0 netconf.9.mode=lan netconf.9.netmask=255.255.255.0 netconf.9.status=enabled netconf.9.type=ethernet netconf.9.up=enabled #VSSID netconf.10.devname=ms1 netconf.10.ip=0.0.0.0 netconf.10.mode=lan netconf.10.netmask=255.255.255.255 netconf.10.status=enabled netconf.10.type=wireless netconf.10.up=enabled netconf.11.devname=ath0.101 netconf.11.ip=0.0.0.0 netconf.11.mode=lan netconf.11.netmask=255.255.255.0 netconf.11.status=enabled netconf.11.type=ethernet netconf.11.up=enabled netconf.12.devname=br2 netconf.12.ip=192.168.2.66 netconf.12.mode=lan netconf.12.netmask=255.255.255.0 netconf.12.status=enabled netconf.12.type=bridge netconf.12.up=enabled netconf.13.devname=ixp1.101 netconf.13.ip=0.0.0.0 netconf.13.mode=lan netconf.13.netmask=255.255.255.0 netconf.13.status=enabled netconf.13.type=ethernet netconf.13.up=enabled netconf.status=enabled # # Section: radio radio.1.autochannel.status=disabled radio.1.channel=60 radio.1.devname=ath0 radio.1.frag=off radio.1.ieee_mode=A radio.1.mode=master radio.1.rate.auto=enabled radio.1.rate.max=54M radio.1.rts=off radio.1.rx_antenna=1 radio.1.rx_antenna_diversity=disabled radio.1.status=enabled radio.1.turbo=disabled radio.1.tx_antenna=1 radio.1.tx_antenna_diversity=disabled radio.1.txpower=23 radio.2.autochannel.1.channel=1 radio.2.autochannel.1.status=enabled radio.2.autochannel.10.channel=10 radio.2.autochannel.10.status=enabled radio.2.autochannel.11.channel=11 radio.2.autochannel.11.status=enabled radio.2.autochannel.2.channel=2 radio.2.autochannel.2.status=enabled radio.2.autochannel.3.channel=3 radio.2.autochannel.3.status=enabled radio.2.autochannel.4.channel=4 radio.2.autochannel.4.status=enabled radio.2.autochannel.5.channel=5 radio.2.autochannel.5.status=enabled radio.2.autochannel.6.channel=6 radio.2.autochannel.6.status=enabled radio.2.autochannel.7.channel=7 radio.2.autochannel.7.status=enabled radio.2.autochannel.8.channel=8 radio.2.autochannel.8.status=enabled radio.2.autochannel.9.channel=9 radio.2.autochannel.9.status=enabled radio.2.autochannel.status=enabled radio.2.devname=ath1 radio.2.frag=off radio.2.ieee_mode=G radio.2.mode=master radio.2.rate.auto=enabled radio.2.rate.max=54M radio.2.rts=off radio.2.rx_antenna=1 radio.2.rx_antenna_diversity=disabled radio.2.status=enabled radio.2.turbo=disabled radio.2.tx_antenna=1 radio.2.tx_antenna_diversity=disabled radio.2.txpower=23 radio.countrycode=US radio.status=enabled statsd.status=enabled statsd.verbose=yes # # Section: resolv resolv.status=enabled # # Section: route route.1.devname=br0 route.1.gateway=192.168.2.1 route.1.ip=0.0.0.0 route.1.netmask=0 route.1.status=enabled route.status=enabled # # Section: skin skin.active=wili-mesh skin.version=0.3.15466 # # Section: snmpd snmpd.contact=contact snmpd.location=location snmpd.name=DVP - Gateway(Roof) snmpd.rocommunity=public snmpd.ropassword=password snmpd.rouser=public snmpd.status=enabled # # Section: sshd sshd.port=22 sshd.status=enabled # # Section: syslog syslog.file=/var/log/messages syslog.file.msg.level=info syslog.file.umask=077 syslog.fwd=disabled syslog.fwd.msg.level=info syslog.fwd.status=disabled syslog.rotate=true syslog.rotate.at_size=102400 syslog.status=enabled # # Section: users users.1.name=admin users.1.password=oHSl3yqR.t1uQ users.1.status=enabled users.status=enabled # Create VLANs 100 and 101 on ath0 and ixp1 # # Section: vlan vlan.1.id=100 vlan.1.parent=ixp1 vlan.1.status=enabled vlan.2.id=100 vlan.2.parent=ath0 vlan.2.status=enabled vlan.3.id=101 vlan.3.parent=ath0 vlan.3.status=enabled vlan.4.id=101 vlan.4.parent=ixp1 vlan.4.status=enabled vlan.status=enabled # # Section: vssid # ath2 is used for mesh uplink vssid.1.devname=ath2 vssid.1.mode=managed vssid.1.parent=ath0 vssid.1.status=enabled # ms1 is used for extra service set VSSID, bridged with VLAN vssid.2.devname=ms1 vssid.2.mode=master vssid.2.parent=ath1 vssid.2.status=enabled vssid.status=enabled # # Section: wireless wireless.1.compression=enabled wireless.1.devname=ath0 wireless.1.fastframes=enabled wireless.1.frameburst=enabled wireless.1.max_clients=64 wireless.1.ssid=downlink-DLB-MESH wireless.1.ssid_broadcast=enabled wireless.1.status=enabled wireless.1.wmm=enabled wireless.2.compression=enabled wireless.2.devname=ath2 wireless.2.fastframes=enabled wireless.2.frameburst=enabled wireless.2.max_clients=64 wireless.2.ssid=uplink-DLB-MESH wireless.2.status=disabled wireless.2.wmm=enabled wireless.3.compression=disabled wireless.3.devname=ath1 wireless.3.fastframes=disabled wireless.3.frameburst=disabled wireless.3.l2_isolation=disabled wireless.3.max_clients=64 wireless.3.security=none wireless.3.ssid=DVP-Hotspot wireless.3.ssid_broadcast=enabled wireless.3.status=enabled wireless.3.wmm=enabled # VSSID wireless section wireless.4.compression=disabled wireless.4.devname=ms1 wireless.4.fastframes=disabled wireless.4.frameburst=disabled wireless.4.l2_isolation=disabled wireless.4.max_clients=64 wireless.4.security=none wireless.4.ssid=Deliberant wireless.4.ssid_broadcast=enabled wireless.4.status=enabled wireless.4.wmm=enabled wireless.status=enabled
