Open Infrastructure

{{toc}}

h1. Managing OpenWRT

h2. Installing and configuring Jool

* You can use one of the known NAT64 prefixes from our networks (LINK!)

** In the example below this is 2a0a:e5c0:2:10::/96

* You need to have a /96 (or better: /64) routed to the openwrt

** In the example below this is 2a0a:e5c0:17:1::/96

<pre>

opkg install kmod-jool

opkg install jool-tools

# Load the kernel module

modprobe jool_siit

# The range which will be the target for the 2nd NAT (if needed to reach a v4 ip)

jool_siit -6 2a0a:e5c0:2:10::/96

# Pick a v6 range to translate TO and a v4 range to translate from

jool_siit -e -a 2a0a:e5c0:17:1::/96 192.168.61.0/24

# Accept Router Advertisements to keep the default address

sysctl -w net.ipv6.conf.all.accept_ra=2

sysctl -w net.ipv6.conf.default.accept_ra=2

sysctl -w net.ipv6.conf.eth0.accept_ra=2

sysctl -w net.ipv6.conf.br-lan.accept_ra=2

</pre>

h2. Enabling routing with router advertisements

* By default ipv6 forwarding is on (good!)

* By default accept_ra is 0

** This does not set the route properly into the kernel -> routing is broken

* Need to modify accept_ra to 2

h2. Enabling SSH access on wan 

Enable it in the web interface

<pre> $URL/cgi-bin/luci/admin/system/admin/dropbear </pre>

OR

Dropbear uci var (not tested):

<pre>	option GatewayPorts 'on' </pre>

h2. Resetting to factory default

* See https://openwrt.org/docs/guide-user/troubleshooting/failsafe_and_factory_reset

<pre>

firstboot -y && reboot now

</pre>