ROBIN -  Open Source Mesh Network Forum Index ROBIN - Open Source Mesh Network
users community forum
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

Connecting client devices to inside the mesh - Where are we?
Goto page Previous  1, 2
 
Post new topic   Reply to topic    ROBIN - Open Source Mesh Network Forum Index -> Absolute Beginner Talk
View previous topic :: View next topic  
Author Message
Ads






Posted: Fri Nov 17, 2017 9:10 pm    Post subject: Ads

Back to top
codyc1515
Moderator
Moderator


Joined: 31 May 2010
Posts: 1752
Location: New Zealand

PostPosted: Thu Oct 20, 2011 3:06 am    Post subject: Reply with quote

sadlerventures wrote:
Reading Robin-Dash documentation and this page mentions Transparent bridging on the Public and Private network as a setting, but it is not available in the Robin-Dash GUI.
Not implemented, or is this automatic with R3842?


Only registered users can see links on this forum!
Register or Login on forum!


It is available but doesn't work correctly to my knowledge, I will have to test it sometime and then choose whether to enable or disable it.

_________________

Only registered users can see links on this forum!
Register or Login on forum!

Back to top
View user's profile Send private message Visit poster's website
sadlerventures
User
User


Joined: 07 Oct 2011
Posts: 20
Location: USA

PostPosted: Thu Oct 20, 2011 12:45 pm    Post subject: Reply with quote

I'll be happy to try a test dashboard if you want to enable it.
What is the purpose of not being able to select http for non-authenticated users on the firewall settings page? It is unselectable.

Only registered users can see links on this forum!
Register or Login on forum!

Back to top
View user's profile Send private message
codyc1515
Moderator
Moderator


Joined: 31 May 2010
Posts: 1752
Location: New Zealand

PostPosted: Thu Oct 20, 2011 12:50 pm    Post subject: Reply with quote

sadlerventures wrote:
I'll be happy to try a test dashboard if you want to enable it.
What is the purpose of not being able to select http for non-authenticated users on the firewall settings page? It is unselectable.

Only registered users can see links on this forum!
Register or Login on forum!


Otherwise they won't be able to be shown the Splash Page, and if you have no splash page then they are automatically authenticated.
Tomorrow I will be doing some extensive testing on a number of things...

_________________

Only registered users can see links on this forum!
Register or Login on forum!

Back to top
View user's profile Send private message Visit poster's website
sadlerventures
User
User


Joined: 07 Oct 2011
Posts: 20
Location: USA

PostPosted: Fri Oct 21, 2011 3:47 pm    Post subject: Reply with quote

codyc1515 wrote:
Otherwise they won't be able to be shown the Splash Page, and if you have no splash page then they are automatically authenticated.
Tomorrow I will be doing some extensive testing on a number of things...


waiting quietly........
Back to top
View user's profile Send private message
sadlerventures
User
User


Joined: 07 Oct 2011
Posts: 20
Location: USA

PostPosted: Mon Oct 24, 2011 2:45 pm    Post subject: Reply with quote

Maybe I'm just thinking too hard about all this.

1. Why can a laptop connect just fine anywhere in the mesh, yet the gateway cannot unless it is connected to the front end router? (192.168.1.x)

2. Why does the gateway "appear" to have contacted box.weatherdirect.com (steady red light on the gateway), yet no data is pushed?

3. Why is it the Advanced gateway utility on my laptop cannot see the gateway unless both the laptop and the gateway are connected through a switch to eth0? (if the laptop is connected wireless, and the gateway is connected wired to the repeater node, they both get the same subnet address, but the gatway is not seen by the config utility.)

Is it really this simple? Where in the network do I setup the port forwarding? The head end router? the gateway? the repeater? all of em?
From the Weather Direct FAQ:

"Can a TX60 be installed in a corporate environment?"

Yes, any weather direct component can be installed in a corporate setting. Network security rules may require you to set a static ip on the gateway which requires a Windows utility to do. The network needs to permit http port 80 and http put communications through your firewall. We do not support proxy server communication.
Back to top
View user's profile Send private message
ispyisail
Site Admin
Site Admin


Joined: 12 Sep 2008
Posts: 4604
Location: New Zealand

PostPosted: Mon Oct 24, 2011 7:12 pm    Post subject: Reply with quote

My guess for some time has been that the weather station uses both port 80 and another unkown port for authencation. (It must be noted that these are outgoing ports)

On most routers all outgoing ports are all open (0-65535) with nodogsplash it appears that only 9 ports are open?

Code:
    FirewallRule allow udp port 53   
    FirewallRule allow tcp port 53   
    FirewallRule allow udp port 67
    FirewallRule allow tcp port 20
    FirewallRule allow tcp port 21
    FirewallRule allow tcp port 22
    FirewallRule allow tcp port 23
    FirewallRule allow tcp port 80
    FirewallRule allow tcp port 443

_________________
ROBIN-Mesh Wiki:

Only registered users can see links on this forum!
Register or Login on forum!

Test Network:
Only registered users can see links on this forum!
Register or Login on forum!



Please donate to ROBIN by paypal:

Only registered users can see links on this forum!
Register or Login on forum!

!
Back to top
View user's profile Send private message
codyc1515
Moderator
Moderator


Joined: 31 May 2010
Posts: 1752
Location: New Zealand

PostPosted: Tue Oct 25, 2011 7:39 am    Post subject: Reply with quote

ispyisail wrote:
My guess for some time has been that the weather station uses both port 80 and another unkown port for authencation. (It must be noted that these are outgoing ports)

On most routers all outgoing ports are all open (0-65535) with nodogsplash it appears that only 9 ports are open?

Code:
    FirewallRule allow udp port 53   
    FirewallRule allow tcp port 53   
    FirewallRule allow udp port 67
    FirewallRule allow tcp port 20
    FirewallRule allow tcp port 21
    FirewallRule allow tcp port 22
    FirewallRule allow tcp port 23
    FirewallRule allow tcp port 80
    FirewallRule allow tcp port 443

Whitelist the mac and all of that is avoided.

_________________

Only registered users can see links on this forum!
Register or Login on forum!

Back to top
View user's profile Send private message Visit poster's website
ispyisail
Site Admin
Site Admin


Joined: 12 Sep 2008
Posts: 4604
Location: New Zealand

PostPosted: Tue Oct 25, 2011 8:35 am    Post subject: Reply with quote


Only registered users can see links on this forum!
Register or Login on forum!



I did not know that

_________________
ROBIN-Mesh Wiki:

Only registered users can see links on this forum!
Register or Login on forum!

Test Network:
Only registered users can see links on this forum!
Register or Login on forum!



Please donate to ROBIN by paypal:

Only registered users can see links on this forum!
Register or Login on forum!

!
Back to top
View user's profile Send private message
sadlerventures
User
User


Joined: 07 Oct 2011
Posts: 20
Location: USA

PostPosted: Tue Oct 25, 2011 6:47 pm    Post subject: Reply with quote

BINGO!

In fact, reading back, Dalenorman gave the correct advice in the 2nd post. Unfortunately, I didn't know what I didn't know at the time.

I had to reflash the nodes back to r26xxx, and then let them update back to r3842. Put the MAC of the Weatherdirect Gateway in the whitelist, and all is good.

So, even without a splash page, nodogsplash is limiting what passes. Whitelist allows whatever it needs to communicate with box.weatherdirect.com. I had that setting confused with Access Control List, which limits who can get on the network.

What I uncovered of value, is that when you startup a robin-dash account, and import the nodes from Cloudtrax, it was importing the wrong MAC (in my case it was 00:15:6D:D3:B9:B4 instead of 00:15:6D:D2:B9:B4)

For some reason unknown, when you turn off nodogsplash (selelct NO captive portal) in robin-dash, the mesh nodes stop broadcasting their SSIDs. Turning nodog back on did not reinstate SSID broadcast.

It is easy for a beginner to misunderstand the alternate dashboard forwarding. I wound up with a forward at robin-dash, and at Cloudtrax, which put the nodes in an endless loop of alternate checkins, never really checking in. I have since found the instructions on how to do this correctly.

Thanks to all who took the time to participate.

Webcams are next.
Back to top
View user's profile Send private message
ispyisail
Site Admin
Site Admin


Joined: 12 Sep 2008
Posts: 4604
Location: New Zealand

PostPosted: Wed Oct 26, 2011 8:04 am    Post subject: Reply with quote

Quote:
1. whitelist the mac address of the device
2. turn off the splash page (at least temporarily)
3. set Dashboard to put wired clients on AP2 rather than AP1.


It appears that point 3 is only valid for NG firmware?

_________________
ROBIN-Mesh Wiki:

Only registered users can see links on this forum!
Register or Login on forum!

Test Network:
Only registered users can see links on this forum!
Register or Login on forum!



Please donate to ROBIN by paypal:

Only registered users can see links on this forum!
Register or Login on forum!

!
Back to top
View user's profile Send private message
codyc1515
Moderator
Moderator


Joined: 31 May 2010
Posts: 1752
Location: New Zealand

PostPosted: Wed Oct 26, 2011 9:55 am    Post subject: Reply with quote

ispyisail wrote:
Quote:
1. whitelist the mac address of the device
2. turn off the splash page (at least temporarily)
3. set Dashboard to put wired clients on AP2 rather than AP1.


It appears that point 3 is only valid for NG firmware?

That would seem to be correct.

_________________

Only registered users can see links on this forum!
Register or Login on forum!

Back to top
View user's profile Send private message Visit poster's website
Display posts from previous:   
Post new topic   Reply to topic    ROBIN - Open Source Mesh Network Forum Index -> Absolute Beginner Talk All times are GMT + 1 Hour
Goto page Previous  1, 2
Page 2 of 2

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
c d
e



Powered by phpBB © 2001, 2005 phpBB Group

Abuse - Report Abuse - TOS & Privacy.
Powered by forumup.it free forum, create your free forum! Created by Hyarbor & Qooqoa
Confirmed

Page generation time: 3.902