projects / project / luci.git / blob
? search:


3603d6e363a4c214d83b43816b1291a058cf16de
[project/luci.git] / applications / luci-siitwizard / luasrc / model / cbi / siitwizard.lua
1 --[[
2 LuCI - Lua Configuration Interface
3
4 Copyright 2008 Steven Barth <steven@midlink.org>
5 Copyright 2008 Jo-Philipp Wich <xm@leipzig.freifunk.net>
6
7 Licensed under the Apache License, Version 2.0 (the "License");
8 you may not use this file except in compliance with the License.
9 You may obtain a copy of the License at
10
11 http://www.apache.org/licenses/LICENSE-2.0
12
13 $Id$
14
15 ]]--
16
17 local uci = require "luci.model.uci".cursor()
18
19 -------------------- Init --------------------
20
21 --
22 -- Find link-local address
23 --
24 LL_PREFIX = luci.ip.IPv6("fe80::/64")
25 function find_ll()
26 for _, r in ipairs(luci.sys.net.routes6()) do
27 if LL_PREFIX:contains(r.dest) and r.dest:higher(LL_PREFIX) then
28 return r.dest:sub(LL_PREFIX)
29 end
30 end
31 return luci.ip.IPv6("::")
32 end
33
34 --
35 -- Determine defaults
36 --
37 local ula_prefix = uci:get("siit", "ipv6", "ula_prefix") or "fd00::"
38 local ula_global = uci:get("siit", "ipv6", "ula_global") or "00ca:ffee:babe::" -- = Freifunk
39 local ula_subnet = uci:get("siit", "ipv6", "ula_subnet") or "0000:0000:0000:4223::" -- = Berlin
40 local siit_prefix = uci:get("siit", "ipv6", "siit_prefix") or "::ffff:0000:0000"
41 local ipv4_pool = uci:get("siit", "ipv4", "pool") or "172.16.0.0/12"
42 local ipv4_netsz = uci:get("siit", "ipv4", "netsize") or "24"
43
44 --
45 -- Find IPv4 allocation pool
46 --
47 local gv4_net = luci.ip.IPv4(ipv4_pool)
48
49 --
50 -- Generate ULA
51 --
52 local ula = luci.ip.IPv6("::/64")
53
54 for _, prefix in ipairs({ ula_prefix, ula_global, ula_subnet }) do
55 ula = ula:add(luci.ip.IPv6(prefix))
56 end
57
58 ula = ula:add(find_ll())
59
60
61 -------------------- View --------------------
62 f = SimpleForm("siitwizward", "SIIT-Wizzard",
63 "This wizzard helps to setup SIIT (IPv4-over-IPv6) translation according to RFC2765.")
64
65 f:field(DummyValue, "info_ula", "Mesh ULA address").value = ula:string()
66
67 f:field(DummyValue, "ipv4_pool", "IPv4 allocation pool").value =
68 "%s (%i hosts)" %{ gv4_net:string(), 2 ^ ( 32 - gv4_net:prefix() ) - 2 }
69
70 f:field(DummyValue, "ipv4_size", "IPv4 LAN network prefix").value =
71 "%i bit (%i hosts)" %{ ipv4_netsz, 2 ^ ( 32 - ipv4_netsz ) - 2 }
72
73 mode = f:field(ListValue, "mode", "Operation mode")
74 mode:value("client", "Client")
75 mode:value("gateway", "Gateway")
76
77 dev = f:field(ListValue, "device", "Wireless device")
78 uci:foreach("wireless", "wifi-device",
79 function(section)
80 dev:value(section[".name"])
81 end)
82
83 lanip = f:field(Value, "ipaddr", "LAN IPv4 subnet")
84 function lanip.formvalue(self, section)
85 local val = self.map:formvalue(self:cbid(section))
86 local net = luci.ip.IPv4("%s/%i" %{ val, ipv4_netsz })
87
88 if net then
89 if gv4_net:contains(net) then
90 if not net:minhost():equal(net:host()) then
91 self.error = { [section] = true }
92 f.errmessage = "IPv4 address is not the first host of " ..
93 "subnet, expected " .. net:minhost():string()
94 end
95 else
96 self.error = { [section] = true }
97 f.errmessage = "IPv4 address is not within the allocation pool"
98 end
99 else
100 self.error = { [section] = true }
101 f.errmessage = "Invalid IPv4 address given"
102 end
103
104 return val
105 end
106
107 dns = f:field(Value, "dns", "DNS server for LAN clients")
108 dns.value = "141.1.1.1"
109
110 -------------------- Control --------------------
111 function f.handle(self, state, data)
112 if state == FORM_VALID then
113 luci.http.redirect(luci.dispatcher.build_url("admin", "uci", "changes"))
114 return false
115 end
116 return true
117 end
118
119 function mode.write(self, section, value)
120
121 --
122 -- Find LAN IPv4 range
123 --
124 local lan_net = luci.ip.IPv4(
125 ( lanip:formvalue(section) or "172.16.0.1" ) .. "/" .. ipv4_netsz
126 )
127
128 if not lan_net then return end
129
130 --
131 -- Find wifi interface, dns server and hostname
132 --
133 local device = dev:formvalue(section)
134 local dns_server = dns:formvalue(section) or "141.1.1.1"
135 local hostname = "siit-" .. lan_net:host():string():gsub("%.","-")
136
137 --
138 -- Configure wifi device
139 --
140 local wifi_device = dev:formvalue(section)
141 local wifi_essid = uci:get("siit", "wifi", "essid") or "6mesh.freifunk.net"
142 local wifi_bssid = uci:get("siit", "wifi", "bssid") or "02:ca:ff:ee:ba:be"
143 local wifi_channel = uci:get("siit", "wifi", "channel") or "1"
144
145 -- nuke old device definition
146 uci:delete_all("wireless", "wifi-iface",
147 function(s) return s.device == wifi_device end )
148
149 uci:delete_all("network", "interface",
150 function(s) return s['.name'] == wifi_device end )
151
152 -- create wifi device definition
153 uci:tset("wireless", wifi_device, {
154 disabled = 0,
155 channel = wifi_channel,
156 -- txantenna = 1,
157 -- rxantenna = 1,
158 -- diversity = 0
159 })
160
161 uci:section("wireless", "wifi-iface", nil, {
162 encryption = "none",
163 mode = "adhoc",
164 txpower = 10,
165 sw_merge = 1,
166 network = wifi_device,
167 device = wifi_device,
168 ssid = wifi_essid,
169 bssid = wifi_bssid,
170 })
171
172 --
173 -- Gateway mode
174 --
175 -- * wan port is dhcp, lan port is 172.23.1.1/24
176 -- * siit0 gets a dummy address: 169.254.42.42
177 -- * wl0 gets an ipv6 address, in this case the fdca:ffee:babe::1:1/64
178 -- * we do a ::ffff:ffff:0/96 route into siit0, so everything from 6mesh goes into translation.
179 -- * an HNA6 of ::ffff:ffff:0:0/96 announces the mapped 0.0.0.0/0 ipv4 space.
180 -- * MTU on WAN, LAN down to 1400, ipv6 headers are slighly larger.
181
182 if value == "gateway" then
183
184 -- wan mtu
185 uci:set("network", "wan", "mtu", 1240)
186
187 -- lan settings
188 uci:tset("network", "lan", {
189 mtu = 1240,
190 ipaddr = lan_net:host():string(),
191 netmask = lan_net:mask():string(),
192 proto = "static"
193 })
194
195 -- use full siit subnet
196 siit_route = luci.ip.IPv6(siit_prefix .. "/96")
197
198 -- v4 <-> siit route
199 uci:delete_all("network", "route",
200 function(s) return s.interface == "siit0" end)
201
202 uci:section("network", "route", nil, {
203 interface = "siit0",
204 target = gv4_net:network():string(),
205 netmask = gv4_net:mask():string()
206 })
207
208 --
209 -- Client mode
210 --
211 -- * 172.23.2.1/24 on its lan, fdca:ffee:babe::1:2 on wl0 and the usual dummy address on siit0.
212 -- * we do a ::ffff:ffff:172.13.2.0/120 to siit0, because in this case, only traffic directed to clients needs to go into translation.
213 -- * same route as HNA6 announcement to catch the traffic out of the mesh.
214 -- * Also, MTU on LAN reduced to 1400.
215
216 else
217
218 -- lan settings
219 uci:tset("network", "lan", {
220 mtu = 1240,
221 ipaddr = lan_net:host():string(),
222 netmask = lan_net:mask():string()
223 })
224
225 -- derive siit subnet from lan config
226 siit_route = luci.ip.IPv6(
227 siit_prefix .. "/" .. (96 + lan_net:prefix())
228 ):add(lan_net[2])
229
230 -- ipv4 <-> siit route
231 uci:delete_all("network", "route",
232 function(s) return s.interface == "siit0" end)
233
234 -- XXX: kind of a catch all, gv4_net would be better
235 -- but does not cover non-local v4 space
236 uci:section("network", "route", nil, {
237 interface = "siit0",
238 target = "0.0.0.0",
239 netmask = "0.0.0.0"
240 })
241 end
242
243 -- setup the firewall
244 uci:delete_all("firewall", "zone",
245 function(s) return (
246 s['.name'] == "siit0" or s.name == "siit0" or
247 s.network == "siit0" or s['.name'] == wifi_device or
248 s.name == wifi_device or s.network == wifi_device
249 ) end)
250
251 uci:delete_all("firewall", "forwarding",
252 function(s) return (
253 s.src == wifi_device and s.dest == "siit0" or
254 s.dest == wifi_device and s.src == "siit0" or
255 s.src == "lan" and s.dest == "siit0" or
256 s.dest == "lan" and s.src == "siit0"
257 ) end)
258
259 uci:section("firewall", "zone", "siit0", {
260 name = "siit0",
261 network = "siit0",
262 input = "ACCEPT",
263 output = "ACCEPT",
264 forward = "ACCEPT"
265 })
266
267 uci:section("firewall", "zone", wifi_device, {
268 name = wifi_device,
269 network = wifi_device,
270 input = "ACCEPT",
271 output = "ACCEPT",
272 forward = "ACCEPT"
273 })
274
275 uci:section("firewall", "forwarding", nil, {
276 src = wifi_device,
277 dest = "siit0"
278 })
279
280 uci:section("firewall", "forwarding", nil, {
281 src = "siit0",
282 dest = wifi_device
283 })
284
285 uci:section("firewall", "forwarding", nil, {
286 src = "lan",
287 dest = "siit0"
288 })
289
290 uci:section("firewall", "forwarding", nil, {
291 src = "siit0",
292 dest = "lan"
293 })
294
295 -- firewall include
296 uci:delete_all("firewall", "include",
297 function(s) return s.path == "/etc/firewall.user" end)
298
299 uci:section("firewall", "include", nil, {
300 path = "/etc/firewall.user"
301 })
302
303
304 -- siit0 interface
305 uci:delete_all("network", "interface",
306 function(s) return ( s.ifname == "siit0" ) end)
307
308 uci:section("network", "interface", "siit0", {
309 ifname = "siit0",
310 proto = "none"
311 })
312
313 -- siit0 route
314 uci:delete_all("network", "route6",
315 function(s) return siit_route:contains(luci.ip.IPv6(s.target)) end)
316
317 uci:section("network", "route6", nil, {
318 interface = "siit0",
319 target = siit_route:string()
320 })
321
322 -- create wifi network interface
323 uci:section("network", "interface", wifi_device, {
324 proto = "static",
325 mtu = 1400,
326 ip6addr = ula:string()
327 })
328
329 -- nuke old olsrd interfaces
330 uci:delete_all("olsrd", "Interface",
331 function(s) return s.interface == wifi_device end)
332
333 -- configure olsrd interface
334 uci:foreach("olsrd", "olsrd",
335 function(s) uci:set("olsrd", s['.name'], "IpVersion", 6) end)
336
337 uci:section("olsrd", "Interface", nil, {
338 ignore = 0,
339 interface = wifi_device,
340 Ip6AddrType = "global"
341 })
342
343 -- hna6
344 uci:delete_all("olsrd", "Hna6",
345 function(s) return true end)
346
347 uci:section("olsrd", "Hna6", nil, {
348 netaddr = siit_route:host():string(),
349 prefix = siit_route:prefix()
350 })
351
352 -- txtinfo v6 & olsrd nameservice
353 uci:foreach("olsrd", "LoadPlugin",
354 function(s)
355 if s.library == "olsrd_txtinfo.so.0.1" then
356 uci:set("olsrd", s['.name'], "accept", "::1")
357 elseif s.library == "olsrd_nameservice.so.0.3" then
358 uci:set("olsrd", s['.name'], "name", hostname)
359 end
360 end)
361
362 -- lan dns
363 uci:tset("dhcp", "lan", {
364 dhcp_option = "6," .. dns_server,
365 start = bit.band(lan_net:minhost():add(1)[2][2], 0xFF),
366 limit = ( 2 ^ ( 32 - lan_net:prefix() ) ) - 3
367 })
368
369 -- hostname
370 uci:foreach("system", "system",
371 function(s)
372 uci:set("system", s['.name'], "hostname", hostname)
373 end)
374
375 uci:save("wireless")
376 uci:save("firewall")
377 uci:save("network")
378 uci:save("system")
379 uci:save("olsrd")
380 uci:save("dhcp")
381 end
382
383 return f
Lua Configuration Interface (mirror)