Changes between Version 11 and Version 12 of Internal/Soekris


Ignore:
Timestamp:
Sep 20, 2006, 10:11:20 PM (18 years ago)
Author:
Joseph F. Miklojcik III
Comment:

Legend:

Unmodified
Added
Removed
Modified

  • Internal/Soekris

    v11 v12  
    7777}}}
    7878
    79 Attach the CF card.  If it gets automounted, unmount it.  Cd into the untarred directory and run voyage.update as root.  The CF card is likely to be /dev/sdb.  On an Ubuntu box you can use /media/usbdisk as the mount point.  When this finishes, move the CF card into the Soekris net4801, and reboot it.
     79There's a README in that tarball, and you should.
    8080
    81 LILO may be less than perfect at
     81Attach the CF card to your linux laptop.  If it gets automounted, unmount it.  Cd into the untarred directory and run voyage.update as root.  The CF card is likely to be /dev/sdb.  On an Ubuntu box you can use /media/usbdisk as the mount point.  When this finishes, move the CF card into the Soekris net4801, and reboot it.
    8282
    83 Log in as root.  The default root password is, predictably, 'voyage'.  Voyage linux tries to be cute by mounting everything read only, so you need to remount the root partition as read write, like this:
     83LILO may be less than perfect at displaying over the serial port. Don't worry, it will boot.
     84
     85Log in to the net4801 as root.  The default root password is, predictably, 'voyage'.  Voyage linux tries to be cute by mounting everything read only, so you need to remount the root partition as read write, like this:
    8486
    8587{{{
     
    9193Change /etc/rc2.d/S99voyage so that the commands that keep remounting / ro are disabled.
    9294
    93 Note that things like /root are normally linked to /rw/root, which is a tmpfs.  It's all very cute, but you probably want to disable it.
     95You may also want to remove the rc link for rc2.d/S89watchdog, or set run_watchdog to 0 in init.d/watchdog.
     96
     97Note that things like /root are normally linked to /rw/root, which is a tmpfs.  It's all very cute, but you need to disable it at least for /root.  /root needs to hold a persistent .ssh directory.
    9498
    9599Run
     
    100104}}}
    101105
    102 as usual.
     106as usual. Reboot.
    103107
    104108== PPP/SSH client configuration ==
     
    107111
    108112http://tldp.org/HOWTO/ppp-ssh
     113
     114Details of how the commands below work are probably most in the man pages for pppd and ssh.
    109115
    110116The idea is:
     
    116122vpn: ALL=NOPASSWD: VPN
    117123}}}
    118 3. Allow the vpn client to log in to the vpn account on the landing using an ssh key with no password.
     1243. Allow the vpn client to log in to the vpn account on the landing using an ssh key with no password.  You're proably looking for this command:
     125{{{
     126ssh-keygen -b 2048 -t rsa
     127}}}
    1191284. Run a script like the following on the landing.
    120129{{{
     
    134143exit 0
    135144}}}
    136 5. Change iptables so that the traffic incoming
     1455. Change iptables and the routing table in the Soekris net4801 so that the traffic coming in over ppp0 goes to the right interface on the ORBIT node, and so that all traffic from the ORBIT node's interfaces goes to ppp0.
     1466. Change iptables, the routing table, and multi-homed interfaces in the landing so that packets for the remote ORBIT nodes get there.
     147
     148As of 9/20, we're up to 5.