diff --git a/commotionwireless.net/docs/cck/installing-configuring/configure-commotion/index.md b/commotionwireless.net/docs/cck/installing-configuring/configure-commotion/index.md index 6141503a..8a298e4f 100644 --- a/commotionwireless.net/docs/cck/installing-configuring/configure-commotion/index.md +++ b/commotionwireless.net/docs/cck/installing-configuring/configure-commotion/index.md @@ -385,7 +385,9 @@ Be sure to record your node and network settings so that you can re-enter them w

Advanced Commotion mesh settings

-

You can change the configuration of a router on the mesh network that you set during the Quickstart process. You might do this either to separate from the mesh network or to change the identity of the network.

+

Changing mesh configurations

+ +

You can change the configuration of a router on the mesh network that you set during the Setup Wizard process. You might do this create a separate network, or to change the identity of the network.

  1. Navigate to Basic Config -> Network Settings -> Mesh Network
    2. @@ -393,6 +395,48 @@ Be sure to record your node and network settings so that you can re-enter them w
  2. In the “Mesh SSID” field, enter the name of your network. This name must be the same for every node on the network.
+

Opening the firewall for remote Administration

+ +

By default, Commotion prevents access to the administration web +interface from a node's Ethernet port, because sometimes this port will +be connected directly to the Internet. Preventing access to the admin +portal from the Internet helps keep unwanted intruders from damaging the +node and other parts of the network.

+ +

However, in some advanced network configurations, you'll need to access +the administration web interface over a node's Ethernet port. This may +be the case if the node is configured to mesh over Ethernet, or when the +node is attached to a common Ethernet switch with other nodes.

+ +

If this is the case, you can add a rule to the node's firewall in order +to access the admin portal over the node's Ethernet interface. You'll +begin by connecting to the node's wireless access point, and going to +http://thisnode in your browser.

+ +
    +
  1. Click on the Administration button on the bottom of the page.
    2. +
  2. Go to Advanced -> Network -> Firewall.
    3. +
  3. At the top of the page, click on the "Traffic Rules" tab.
    4. +
+

+
    +
  1. Under the "Open ports on router" section, you'll fill in the following values:
    2. +
      +
    1. Name: "Admin interface"
      2. +
    2. Protocol: "TCP"
      3. +
    3. External port: 443
      4. +
    +
  2. Click the "Add" button next to the fields you just filled out.
    3. +
+

+
    +
  1. Click on "Save & Apply" at the bottom of the page.
    2. +
+ +

After you click "Save and Apply", the changes will be made and you will see the new entry in the Firewall rules: +

+ +

The node with this configuration should now allow access to the Administration panel from any computer or network connected to the WAN (Ethernet) port.

 

diff --git a/commotionwireless.net/files/CCK_ConfigureRouters_Firewall1.png b/commotionwireless.net/files/CCK_ConfigureRouters_Firewall1.png new file mode 100644 index 00000000..20339189 Binary files /dev/null and b/commotionwireless.net/files/CCK_ConfigureRouters_Firewall1.png differ diff --git a/commotionwireless.net/files/CCK_ConfigureRouters_Firewall2.png b/commotionwireless.net/files/CCK_ConfigureRouters_Firewall2.png new file mode 100644 index 00000000..fac55fe0 Binary files /dev/null and b/commotionwireless.net/files/CCK_ConfigureRouters_Firewall2.png differ diff --git a/commotionwireless.net/files/CCK_ConfigureRouters_Firewall3.png b/commotionwireless.net/files/CCK_ConfigureRouters_Firewall3.png new file mode 100644 index 00000000..d64db76a Binary files /dev/null and b/commotionwireless.net/files/CCK_ConfigureRouters_Firewall3.png differ