ungleich-public/ungleich-tools
6
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

[openwrt] +teltonika details

Browse source
This commit is contained in:
Nico Schottelius 2022-01-26 17:33:18 +01:00
parent 0b2ef8216d
commit c7dd061609
2 changed files with 74 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
openwrt/teltonika-firmware-upgrade.sh
View file

@ -1,5 +1,7 @@
#!/bin/sh
# Nico Schottelius, 2022-01-26
# https://wiki.teltonika-networks.com/view/Firmware_upgrade_via_command_line
# https://wiki.teltonika-networks.com/view/RUT240_Firmware_Downloads
if [ $# -ne 1 ]; then
echo "$0 address"

72
openwrt/vpn-add.sh
View file

@ -229,3 +229,75 @@ uci delete wireless.radio0.disabled
uci set network.lan.proto='dhcp'
uci delete network.lan.ipaddr
uci delete network.lan.netmask
# Teltonika syntax: network
config interface 'wg_wg0'
option proto 'wireguard'
option private_key '...='
option public_key 'ZZYoBV8b2LhqCrcQ8wFv6e6mu41w9i1g5kh4LiKefFI='
list addresses '185.155.30.3/32'
option listen_port '51820'
option disabled '0'
config wireguard_wg_wg0
option description 'ungleich-ipv4'
option public_key '5ach7pUQ57aa402LHz1MYh7lyBZS0GvBEw2PC6dMHW4='
list allowed_ips '0.0.0.0/0'
option route_allowed_ips '1'
option endpoint_host 'vpn-18515530.ungleich.ch'
option persistent_keepalive '25'
config interface 'wg_ipv6'
option proto 'wireguard'
option private_key '...='
option public_key 'N2buXMy2IJDH+Au/e0ripdiWYlpTQVdWeCeGHpXyjB0='
list addresses '2a0a:e5c1:19e::42/48'
option listen_port '51821'
option disabled '0'
config wireguard_wg_ipv6
option public_key 'hi60lGP+xEUQ+kVnqA7PlJAO1SVqTS1W36g0LhFP0xQ='
list allowed_ips '::/0'
option route_allowed_ips '1'
option endpoint_host 'vpn-2a0ae5c1.ungleich.ch'
option endpoint_port '51820'
option persistent_keepalive '25'
option description 'ungleich-ipv6'
# Teltonika firewall
config zone
option name 'wireguard'
option input 'ACCEPT'
option output 'ACCEPT'
option forward 'REJECT'
option masq '1'
option device 'wg_+'
config rule
option name 'Allow-WireGuard'
option src 'wan'
option proto 'udp'
option target 'ACCEPT'
option enabled '1'
option dest_port '51820 51821'
config rule
option dest_port '51820'
option src 'wan'
option name 'Allow-wireguard_wg_wg0-traffic'
option target 'ACCEPT'
option vpn_type 'wireguard'
option proto 'udp'
option family 'ipv4'
config rule
option dest_port '51821'
option src 'wan'
option name 'Allow-wireguard_wg_ipv6-traffic'
option target 'ACCEPT'
option vpn_type 'wireguard'
option proto 'udp'
option family 'ipv4'