-
Notifications
You must be signed in to change notification settings - Fork 16
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
RFC: Default settings for first-boot #187
Comments
many thanks for wrapping your head around this.
is there any other approach? does utilizing namespaces help? hard-coding these hostnames might evoke future issues as we would be dependent on the current state of hostname topology involved which of course is not set in stone.
+1 for WAN DNS
+1 for SSID, these 28 chars fit into 32 chars max ssid length. |
While this would be a work around for nodes attached to an internet connection during setup, it would not work for nodes setups without an internet connection. It would be a good idea to remove the map-feature from the wizard in case the required hosts are unreachable. Instead of the map a notice should be shown that tells the user that he can manually enter the coordinates or configure them later using a map once the node is setup and has an internet connection. Another way would be to ask the user for permission to automatically determine the position. The position from the the device accessing the wizard could be used (https://developer.mozilla.org/de/docs/Web/API/Geolocation/getCurrentPosition) which would work if you setup the node where it is installed at the end (Examplecode: https://codepen.io/ambiweb/pen/PoprmMX). Another way would be to ask for permission to use the Mozilla Location Service (https://location.services.mozilla.com/) and then use known wifi networks to periodically determine the location of a node. I love the idea with the config SSID this makes it a lot easier to configure nodes. |
Sounds really good to me. For 1.ii) I'd like to have |
yes
Currently, as clients have no access to internet even with WAN attached, the map just doesn't show up. I guess that it would be the same "look and feel" as it is now. Simply no map.
I don't really like this idea. It's not always going to be the case that someone sets up a router at the same place where they want to deploy it (for example, at a friend's place, freifunk meeting, workshop, install party).
|
Great idea. |
At a recent freifunk meeting we discussed the possibilities a little bit more and came up with the following idea.
Please provide some feedback |
I could use some support testing an idea. I have tried it on a few routers and so far it's worked overall. The test is this: Now set the second router also to VHT40 and do the tests again. It would be cool to test this also on routers which do not support VHT40. Try setting it to VHT40 and see if it still works. Repeat the tests. |
With the changes in 21.02 we should rewrite how networking is set up in the defaults packages (see #182). I propose the following for the first-boot scenario. If there are any other ideas for the first-boot settings, please contribute to this issue. Note: this is a discussion about the settings before the wizard/luci is started.
list dhcp_option '3'
on the "lan" interface which causes any attached clients to not have a default route. In the firewall config, the "lan" interface is not in any firewall zone preventing forwarding. The combination of these causes any attached client not to be able to reach the internet. The reason for this is to force the user to configure the router completely before it's put into service. The problem with this setup is that the map feature (to choose the coordinates) does not work. I propose that we set it up so thatlist dhcp_option '3'
is not set (let the client get a default route)option peerdns '0'
option in the "wan" interface. This prevents both the router and any attached client from being able to resolve hostnames. While we prefer to use DNS servers which are privacy-friendly, for first-boot I would argue that the DNS server provided over the "wan" interface is totally usable. I could also imagine hard-coding a privacy-friendly DNS server into the config, but that would just add some maintenance issues.The text was updated successfully, but these errors were encountered: