status (Thursday soon)
Francis Dupont
fdupont at isc.org
Thu Mar 22 13:22:31 UTC 2012
Basically what we want works but:
- the DHCPv4 server config on SD-B4s has not yet been verified
- there is at least a shorcoming in the B4 SNAT rules: some
packets are spuriously natted, IMHO this is why NAT-PMP doesn't
work. I'll investigate and tried to fix it.
- there is a clean clash between the default cerowrt firewall
setup and the SD-B4 one. BTW:
* an SD-CPE should be far simpler, for instance the same WAN
interface in IPv4 and IPv6 (note I know how to simulate a
SD-NAT444 with netfilter even it should be slow)
* the miniupnpd package should help us if it was integrated
* anyway a rule like '-i <lanif> ! -o <lanif>' has no chance
to eork as it.
- an ICMP tool is missing: I'll write one
- as soon as we have something which works after a reboot on
sd-cpe2 bis the config and documentation should be saved.
The ideal should be to get images (and how to reflash them)
ready before the demo.
Regards
Francis Dupont <fdupont at isc.org>
PS: for cerowrt:
config in /etc/config/firewall
script in /lib/firewall/core_init.sh
miniupnpd stuff in sources at feeds/packages/net/miniupnpd/files
More information about the sdcpe-devel
mailing list