2022-07-03 01:25:42 +00:00
|
|
|
Installation and Confguration
|
2022-06-26 20:48:34 +00:00
|
|
|
==============================
|
|
|
|
|
|
|
|
### `sw-access0{1-2}`
|
|
|
|
|
|
|
|
OS:
|
|
|
|
- `OpenWrt 21.02.3`
|
|
|
|
- custom build with [garet](https://git.sr.ht/~hirnpfirsich/garet)
|
|
|
|
- profile: `zyxel-gs1900-8hp_21.02.3`
|
|
|
|
- commit: `31b86557add49187a2ee161465b51fe120076a3c`
|
|
|
|
|
|
|
|
Config:
|
|
|
|
1. configure `sw-access01`:
|
|
|
|
```
|
|
|
|
uci batch << EOF
|
|
|
|
# configure hostname
|
|
|
|
set system.@system[0].hostname=sw-access01
|
|
|
|
|
|
|
|
# configure mgmt ip
|
|
|
|
set network.mgmt.ipaddr=10.84.1.11
|
|
|
|
EOF
|
|
|
|
```
|
|
|
|
2. configure `sw-access02`:
|
|
|
|
```
|
|
|
|
uci batch << EOF
|
|
|
|
# configure hostname
|
|
|
|
set system.@system[0].hostname=sw-access02
|
|
|
|
|
|
|
|
# configure mgmt ip
|
|
|
|
set network.mgmt.ipaddr=10.84.1.12
|
|
|
|
EOF
|
|
|
|
```
|
|
|
|
3. finish config on both nodes:
|
|
|
|
```
|
|
|
|
# configure root password
|
|
|
|
passwd
|
|
|
|
|
|
|
|
uci batch << EOF
|
|
|
|
# configure mgmt ip
|
|
|
|
set network.mgmt.proto=static
|
|
|
|
set network.mgmt.netmask=255.255.255.0
|
|
|
|
set network.mgmt.gateway=10.84.1.1
|
|
|
|
add_list network.mgmt.dns=10.84.1.1
|
|
|
|
|
|
|
|
# create clients vlan for switch
|
|
|
|
set network.clients_vlan=bridge-vlan
|
|
|
|
set network.clients_vlan.device=switch
|
|
|
|
set network.clients_vlan.vlan=2
|
|
|
|
set network.clients_vlan.ports="lan1:t lan2:t lan3:t lan4:t lan5:t lan6:t lan7:t lan8:t"
|
|
|
|
EOF
|
|
|
|
|
|
|
|
uci commit
|
|
|
|
/etc/init.d/system reload
|
|
|
|
/etc/init.d/network reload
|
|
|
|
```
|
2022-06-30 23:40:35 +00:00
|
|
|
4. install `rsync` (will be included in the next image!)
|
2022-06-26 20:48:34 +00:00
|
|
|
|
|
|
|
### `ap-xxxx`
|
|
|
|
|
|
|
|
OS:
|
|
|
|
- `OpenWrt 21.02.3`
|
|
|
|
- custom build with [garet](https://git.sr.ht/~hirnpfirsich/garet)
|
|
|
|
- profile: `aruba-ap-105_21.02.3`
|
|
|
|
- commit: `18ced036173a23280efd3b87df06ccaa46eb9a04`
|
|
|
|
|
|
|
|
1. initially configure password and ip for every ap:
|
|
|
|
```
|
|
|
|
passwd
|
|
|
|
|
|
|
|
uci batch << EOF
|
|
|
|
set network.mgmt.proto=static
|
|
|
|
set network.mgmt.ipaddr=10.84.1.37
|
|
|
|
set network.mgmt.netmask=255.255.255.0
|
|
|
|
set network.mgmt.gateway=10.84.1.1
|
|
|
|
add_list network.mgmt.dns=10.84.1.1
|
|
|
|
EOF
|
|
|
|
uci commit network
|
|
|
|
/etc/init.d/network reload
|
|
|
|
```
|
|
|
|
|
|
|
|
2. configure network via `playbook_provision_aps.yml`
|
|
|
|
|
|
|
|
### hyper01
|
|
|
|
|
|
|
|
OS:
|
|
|
|
- Proxmox VE 7.2-1
|
|
|
|
|
|
|
|
Installation Questions:
|
|
|
|
- Proxmox Virtual Environment (PVE)
|
|
|
|
- Target Harddrive: Options
|
|
|
|
- Filesystem: `zfs (RAID0)`
|
|
|
|
- Disk Setup
|
|
|
|
- Harddisk 0: /dev/sda (300GB)
|
|
|
|
- Advanced Options:
|
|
|
|
- copies: 2
|
|
|
|
- Location and Time Zone selection:
|
|
|
|
- Country: Germany
|
|
|
|
- Time zone: Europe/Berlin
|
|
|
|
- Keyboard Layout: German
|
|
|
|
- Administration Password and Email Address
|
|
|
|
- Password: `pass EAE_Am-Deutschen-Platz/hyper01`
|
|
|
|
- EMail: `info@freifunk-leipzig.de`
|
|
|
|
- Mangement Network Configuration
|
|
|
|
- Management Interface: `enp2s0`
|
|
|
|
- Hostname (FQDN): `hyper01.eae-adp.freifunk-leipzig.de`
|
|
|
|
- IP Address (CIDR): `10.84.1.21/24`
|
|
|
|
- Gateway: `10.84.1.1`
|
|
|
|
- DNS Server: `10.84.1.1`
|
|
|
|
|
2022-06-30 23:40:35 +00:00
|
|
|
Postinstall cleanup:
|
|
|
|
|
|
|
|
* remove enterprise repos and activate community repo:
|
|
|
|
```
|
|
|
|
root@hyper01:/etc/apt# rm /etc/apt/sources.list.d/pve-enterprise.list
|
|
|
|
root@hyper01:/etc/apt# cat > /etc/apt/sources.list.d/pve-no-subscription.list << EOF
|
|
|
|
> # PVE pve-no-subscription repository provided by proxmox.com,
|
|
|
|
# NOT recommended for production use
|
|
|
|
deb http://download.proxmox.com/debian/pve bullseye pve-no-subscription
|
|
|
|
> EOF
|
|
|
|
root@hyper01:/etc/apt#
|
|
|
|
```
|
|
|
|
* update: `apt update && apt dist-upgrade -y && reboot`
|
|
|
|
* install alpine template: `pveam update && pveam download local alpine-3.16-default_20220622_amd64.tar.xz`
|
2022-07-02 23:25:54 +00:00
|
|
|
* remove alpine template and download debian template
|
2022-06-30 23:40:35 +00:00
|
|
|
|
2022-06-26 20:48:34 +00:00
|
|
|
### eap-adp-jump01
|
|
|
|
|
|
|
|
OS:
|
|
|
|
- OpenBSD 7.1
|
|
|
|
|
|
|
|
Installation:
|
|
|
|
- with full disk encryption: https://www.openbsd.org/faq/faq14.html#softraidFDE
|
|
|
|
- via autoinstall
|
|
|
|
|
|
|
|
1. boot into OpenBSD iso
|
|
|
|
2. type s to open the shell after booting
|
|
|
|
```
|
|
|
|
Welcome to the OpenBSD/amd64 7.1 installation program.
|
|
|
|
(I)nstall, (U)pgrade, (A)utoinstall or (S)hell?
|
|
|
|
```
|
|
|
|
3. create encrypted drive
|
|
|
|
```
|
|
|
|
# cd /dev && sh MAKEDEV sd0
|
|
|
|
# dd if=/dev/urandom of=/dev/rsd0c bs=1m
|
|
|
|
# fdisk -iy sd0
|
|
|
|
# disklabel -E sd0
|
|
|
|
[...]
|
|
|
|
> a a
|
|
|
|
> 64
|
|
|
|
> *
|
|
|
|
> RAID
|
|
|
|
> w
|
|
|
|
> q
|
|
|
|
# bioctl -c C -l sd0a softraid0
|
|
|
|
[...]
|
|
|
|
passphrase
|
|
|
|
passphrase again
|
|
|
|
# cd /dev && sh MAKEDEV sd1
|
|
|
|
# dd if=/dev/zero of=/dev/rsd1c bs=1m count=1
|
|
|
|
```
|
|
|
|
4. execute autoinstall
|
|
|
|
```
|
|
|
|
# cd /
|
2022-06-30 23:40:35 +00:00
|
|
|
# ifconfig vio0 autoconf
|
2022-06-26 20:48:34 +00:00
|
|
|
# ftp https://git.sr.ht/~hirnpfirsich/ffl-eae-adp/blob/master/files/eae-adp-jump01.install.conf
|
|
|
|
# install -a -f eae-adp-jump01.install.conf
|
|
|
|
[...]
|
|
|
|
# reboot
|
|
|
|
```
|
2022-06-30 23:40:35 +00:00
|
|
|
5. install syspatches
|
|
|
|
```
|
|
|
|
eae-adp-jump01# syspatch
|
|
|
|
[...]
|
|
|
|
eae-adp-jump01# syspatch
|
|
|
|
[...]
|
|
|
|
eae-adp-jump01# reboot
|
|
|
|
```
|
|
|
|
6. install python3 for ansible
|
|
|
|
```
|
|
|
|
eae-adp-jump01# pkg_add python3
|
|
|
|
```
|