Differences

This shows you the differences between two versions of the page.

--- technical:openvpn-bridges-prep-coova [2023/10/23 20:18]
admin [Test it out]
+++ technical:openvpn-bridges-prep-coova [2024/01/16 10:46] (current)
admin [Test it out]
@@ Line 75: / Line 75: @@
   * Create a file called **/etc/chilli/config** and use the following as reference:
 <file bash /etc/chilli/config>
-HS_WANIF=eth1            # WAN Interface toward the Internet
+HS_WANIF=eth0            # WAN Interface toward the Internet
 HS_DNS1=4.4.4.4
 HS_DNS2=8.8.8.8
-HS_RADIUS=198.27.111.78
+HS_RADIUS=164.160.89.129
-HS_RADIUS2=198.27.111.78
+HS_RADIUS2=164.160.89.129
 HS_RADSECRET=testing123    # Set to be your RADIUS shared secret
 HS_UAMSECRET=greatsecret     # Set to be your UAM secret
 HS_UAMALIASNAME=chilli
 HS_UAMSERVER=$HS_UAMLISTEN
-HS_UAMFORMAT=http://198.27.111.78/cake2/rd_cake/dynamic_details/chilli_browser_detect/
+HS_UAMFORMAT=https://cloud.radiusdesk.com/cake4/rd_cake/dynamic-details/chilli-browser-detect/
 HS_UAMHOMEPAGE=http://\$HS_UAMLISTEN:\$HS_UAMPORT/www/coova.html
 HS_MODE=hotspot
@@ Line 93: / Line 93: @@
 HS_PROVIDER_LINK=http://coova.github.io/
 HS_LOC_NAME="My HotSpot"           # WISPr Location Name and used in portal
+HS_UAMUISSL=on
+HS_SSLKEYFILE=/etc/chilli/key.pem
+HS_SSLCERTFILE=/etc/chilli/cert.pem
+HS_UAMALIASNAME=uam
+HS_DNS_DOMAIN=mesh-manager.com
+HS_UAMUIPORT=4990
 </file>
+  * Make sure you include the **key.pem** and **cert.pem** in order for SSL to work correct.
+  * You can use these from the MESHdesk firmware
+  * https://github.com/RADIUSdesk/openwrt-meshdesk/tree/main/MESHdesk/files/MESHdesk/captive_portals
   * Create the VLAN config directories
 <code>
@@ Line 186: / Line 195: @@
   * Restart CoovaChilli for the latest changes to be effected.
 <code bash>
+#This is required
+systemctl disable chilli
+#Now issue the following
 sudo systemctl stop chilli
 sudo systemctl status chilli
@@ Line 242: / Line 254: @@
 </code>
   * Reboot the system and make sure everything is up and running after the reboot.
+===== System Checks =====
+  * To confirm the bridges are up along with the OpenVPN tunnels
+<code bash>
+root@localhost:/home/system# brctl show
+bridge name	bridge id		STP enabled	interfaces
+br0.101		8000.002222ffffff	no		eth1.101
+							tap0
+br0.102		8000.002222ffffff	no		eth1.102
+							tap1
+br0.103		8000.002222ffffff	no		eth1.103
+							tap2
+</code>
+  * To check if CoovaChilli started up fine:
+<code bash>
+ifconfig
+....
+tun0: flags=81<UP,POINTOPOINT,RUNNING>  mtu 1500
+        inet 10.101.0.1  netmask 255.255.0.0  destination 10.101.0.1
+        inet6 fe80::70ad:961c:836d:ea9  prefixlen 64  scopeid 0x20<link>
+        unspec 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00  txqueuelen 100  (UNSPEC)
+        RX packets 0  bytes 0 (0.0 B)
+        RX errors 0  dropped 0  overruns 0  frame 0
+        TX packets 10  bytes 592 (592.0 B)
+        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
+tun1: flags=81<UP,POINTOPOINT,RUNNING>  mtu 1500
+        inet 10.1.0.1  netmask 255.255.255.0  destination 10.1.0.1
+        inet6 fe80::dfa6:b905:30f9:8478  prefixlen 64  scopeid 0x20<link>
+        unspec 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00  txqueuelen 100  (UNSPEC)
+        RX packets 0  bytes 0 (0.0 B)
+        RX errors 0  dropped 0  overruns 0  frame 0
+        TX packets 10  bytes 592 (592.0 B)
+        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
+tun2: flags=81<UP,POINTOPOINT,RUNNING>  mtu 1500
+        inet 10.1.0.1  netmask 255.255.255.0  destination 10.1.0.1
+        inet6 fe80::c5e:ff84:c088:a947  prefixlen 64  scopeid 0x20<link>
+        unspec 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00  txqueuelen 100  (UNSPEC)
+        RX packets 0  bytes 0 (0.0 B)
+        RX errors 0  dropped 0  overruns 0  frame 0
+        TX packets 10  bytes 592 (592.0 B)
+        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
+....
+</code>

RADIUSdesk

Page Tools

Site Tools

User Tools

Differences