Difference between revisions of "Mesh Node HOWTO"
(→How it Works)
(→Setting up the device)
|Line 101:||Line 101:|
==Setting up the device==
==Setting up the device==
===Preparing the interface===
===Preparing the interface===
Revision as of 05:59, 16 March 2017
Following are instructions to set up a mesh-networking node in Debian. This guide assumes Debian Stable, jessie or later. If you are unsure of which release of Debian you are using, try the command
This is a step-by-step guide, intended to help in understanding the process. If you want easy deployment, see http://libre-mesh.org/howitworks.html, OpenWRT, or other projects that will be listed here.
- 1 How it Works
- 2 Set up hardware
- 3 Choosing and installing a mesh routing program
- 4 Setting up the device
- 5 Setting up services
How it Works
The contemplated device is one which can be left outside in a weather-proofed enclosure, perhaps with independent power generation and storage (like a small solar cell and battery). Alternately it could replace the CPE router used in people's homes to attach their Internet connection to their home network.
The device consists of a router and two or more wifi radios. It may have other features such as a wired Ethernet interface. It routes between two or more discrete networks, at least one of which is an ad-hoc mesh. Optionally it may connect to Internet service. The Internet-connected interface, if any, should be configured as a Tor relay node for one more of the networks. That is, all Internet access from the provided networks will be via Tor, and hosts on the provided networks will not be exposed to the Internet except via Tor (in order to prevent port scanning and other automated shenanigans, and to protect node owners who choose to share their Internet connections with their network from consequences incurred by bad actors on that network.
Set up hardwareFirst you will need to verify that your radio supports mesh mode or IBSS mode. These two modes are the new version of what used to be called "Repeater" and "Ad Hoc" modes. No mode called "Ad Hoc" exists any more in the
iwconfigin Jessie still supports Ad-Hoc mode. https://wireless.wiki.kernel.org/en/users/drivers uses the mesh / IBSS terminology, so this guide will standardize on that.
The difference between the two modes
The mode can be Ad-Hoc (network composed of only one cell and without Access Point), Managed (node connects to a network composed of many Access Points, with roaming), Master (the node is the synchronisation master or acts as an Access Point), Repeater (the node forwards packets between other wire‐ less nodes), Secondary (the node acts as a backup mas‐ ter/repeater), Monitor (the node is not associated with any cell and passively monitor all packets on the frequency) or Auto.
Once you have verified that your radio hardware supports the requisite mode, you must ensure that the correct firmware is installed to make it work properly. Some radios will still work with limited functionality without the correct firmware file installed, which can be confusing.
Kernel module / driver
https://wireless.wiki.kernel.org/en/users/drivers contains a list and feature matrix of available kernel modules.Of course, your system should detect and use the correct kernel module on its own; use
lsmodto check once you have verified the correct chipset ID of the radio hardware using lspci / lsusb as appropriate.
Choosing and installing a mesh routing program
CJDNS is an all-in-one networking stack authored mostly (entirely?) by Caleb James Delisle (cjd, not to be confused with [djb]). It offers a host of excellent features such as end-to-end encryption, zeroconf, and other nice things. It has a strange build system (nodejs - based, but not one of the existing node libs for this purpose) and can be difficult in deployment. Joining a cjdns mesh requires interaction with a human being to acquire a key. To my knowledge cjdns is not packaged for any Linux distribution.
Optimized Link State Routing Daemon is packaged in Debian.
Babel is the routing protocol developed by HacDC's Byzantium project.
Better Approach to Mobile Ad-Hoc Networking is a project related in some way to FreiFunk.
BATMAN works only with ipv4 and has other limitations, which is why batman-adv exists.
- https://www.open-mesh.org/projects/batmand/wiki/InternetTuning - managing and announcing Internet gateways on your BATMAN network
From the BATMAN FAQ: What is the batgat kernel module good for?
The batman daemon maintains a tunnel connection to every "batman internet client". Every packet that goes to the internet or comes back has to go through this tunnel. As it is a user space tunnel a lot of copying between user space and kernel land is necessary. Depending on the number of clients and the CPU power available this might be a bottleneck. The batgat kernel module tries to overcome this limitation. Once loaded the batman daemon will detect its presence automatically on startup. The daemon will activate the kernel module to let it handle the tunneling, hence avoiding the expensive copy operations. There is no difference between the daemon tunneling and the kernel tunneling other than that.
batctl is the command-line interface to batman-adv.
Most recent release as of this writing: https://www.open-mesh.org/projects/open-mesh/wiki/2016-12-15-batman-adv-2016-5-release
Setting up the device
The sample configuration
The first iteration of these instructions are written as I set up a group of radios to participate in a local mesh.
Each of the radios in this initial mesh will have identical configuration, as I intend to deploy them via Ansible or similar. The scripts will be available to download from this website or from a git repository with URI to be added here later.
- OS: Debian stable (jessie)
- Routing protocol: batman-adv with a publicly-routable ipv6 prefix which I have available.
- Services: radvd, sshd, tor
- Name service... tbd
Preparing the interface
Once batman-adv is up and running, a device called bat0 will be available in the output of `ip add show` or similar.
After you have verified that this is the case you can run `batctl` to configure the device, find a mesh to which to connect, and to effect the connection.
Adding the interface to the mesh
Setting up services
When you have verified that the