cpe specification (of sorts)

Dave Taht dave.taht at gmail.com
Thu Apr 19 23:13:40 UTC 2012 

So, unless there is an objection or alternative presented to me in the
next 48 hrs

1) Next build will have wireless in it.

I will document how to turn it off and simplify the firewall rules.

If we can't make it work with wireless on, we'll try again with wireless off.

2) dhcpd appears to be a requirement now to co-exist with the 3 other
giant dhcp binaries.

- In order to fit 2) I will have to rip out something else, probably
ipsec (strongswan), in the core of cerowrt.
Bind is already gone. An instance of the onboard web pages will also go.

- The next cost on this will be: the dnsmasq gui configuration for dns
and dhcp will no longer work.

- dhcpd
(in addition to all other things dhcp, dccra, dhcpdc) will need to be
configured by hand, on the inside and outside of the b4.

- Similarly, dhcpd will need to be tested and proved to work as a
replacement for dnsmasq for at least the duration of a demo.

- Lastly, strongswan included the kernel tunnelling modules so I'll
have to figure out which is needed to be installed separately.

- I am not planning on dhcpv6-pd support AT ALL.

3) 2nd onboard web server and general web pages will go as irrelevant
to this project.

+ configuration web server remain
- support for local transfers of things such as debug data will be scp
only, no http.

4) The integral firewall rules need to be simplified to suit the
requirements of b4 development environment.
I'm really not sure what that is - current rules, proven in the field,
do a lot of filtering. I will will probably fiddle with this most, in
the next few days, to try and get it more right.

5) a pointer to a server where the additional packages needed for
debugging (like vim, gdb, oprofile, etc) can be put is *integral* to
the build. Unless one materializes, I will put them on
huchra.bufferbloat.net/~iscwrt.

6) My first priority is to make B4s that work behind a routed subnet.
If possible, make proxyarp sane to configure.

7) Not looking at multicast right now at all.

...

Right now I am doing a final (or so I hope) integration pass on
cerowrt-3.3-9, while that is undergoing tests, I'll try to resurrect
the lab boxes and see for real what went wrong - and make the scripts
more robust.

After that I hope that francis will have frozen his code enough for me
to do a pull and re-integrate the packages, to try again.

It will probably take me several builds to get this right, and my
testing workload was just reduced by not needing to test wireless and
increased, by having to make isc-dhcpd work sans gui.

Each partial build takes 3+ hours to do on current hardware, a full
build 17+, an individual package rebuild a few minutes...



-- 
Dave Täht
SKYPE: davetaht
US Tel: 1-239-829-5608
http://www.bufferbloat.net

More information about the sdcpe-devel mailing list