Skip to content

Instantly share code, notes, and snippets.

View tcatm's full-sized avatar

Nils Schneider tcatm

191 followers · 1 following
View GitHub Profile
@tcatm
tcatm / gist:a520a1225808714a8da9
Created June 21, 2015 13:54
diff --git a/roles/base/files/etc/iptables/iptables.rules b/roles/base/files/etc/iptables/iptables.rules
index defea6f..05c75f3 100644
--- a/roles/base/files/etc/iptables/iptables.rules
+++ b/roles/base/files/etc/iptables/iptables.rules
@@ -1,3 +1,8 @@
+*filter
+-A OUTPUT -o internet -p icmp -m icmp --icmp-type 3/1 -j DROP
+-A OUTPUT -o eth0 -p icmp -m icmp --icmp-type 3/1 -j DROP
+-A OUTPUT -o eth2 -p icmp -m icmp --icmp-type 3/1 -j DROP
+COMMIT
@tcatm
tcatm / foo.py
Created May 30, 2015 21:51
def wrap_housekeeping(f):
def inner(self, *args):
d = None
try:
ret = f(self, *args)
except Exception as e:
d = e
self.loop.create_task(self.housekeeping())
@tcatm
tcatm / gist:ed28c64ec4e3699b1c9d
Created May 28, 2015 10:07
Häufig. Prefixlänge
46 16
6 17
8 18
1 19
1 20
2 21
4 22
8 23
@tcatm
tcatm / foo.patch
Last active August 29, 2015 14:22
commit ac5f52daf419e0e8383fe860a1215f3a44717f0a (HEAD, refs/heads/master)
Author: Nils Schneider <[email protected]>
Date: Thu May 28 11:56:05 2015 +0200
mkroa: refactor default_max_prefixlen
Rename default_max_prefixlen to min_prefixlen + some refactoring.
diff --git a/mkroa b/mkroa
index 9f44dc4..ef8948d 100755
@tcatm
tcatm / bootlog.txt
Last active August 29, 2015 14:21
LevelOne WAP-6101
APC772AM_P01 Jboot S797
AR Phy ,0x3100
flash manufacture id: c2, device id 20 18
SPI FLASH: MX25l12805d 16M
.....................
Starting kernel @80000000...
Linux version 2.6.36 ([email protected]) (gcc version 4.3.5 (Buildroot 2011.05) ) #1 SMP PREEMPT Fri Nov 29 11:45:59 CST 2013
ISPRAM0: PA=00330000,Size=00008000,enabled
Ralink RT63165 SOC prom init
@tcatm
tcatm / build.sh
Created May 18, 2015 09:05
#!/bin/bash
set -e
export GLUON_BRANCH=experimental
export GLUON_IMAGEDIR=$(mktemp -d)
export GLUON_SITEDIR=$(pwd)/site-ffhl
export GLUON_TARGET=ar71xx-generic
git -C site-ffhl pull
@tcatm
tcatm / gist:47f26bc3bb1fc6b0fee4
Created May 11, 2015 19:56
global: time, sequence_id, nodestotal, nodesonline, clients, gateways
gateway.$node_id: time, sequence_id, nodecount
node.$node_id.statistics: per node (only if online): time, sequence_id, uptime, memory_usage, clients, loadavg
node.$node_id.events.online: time, sequence_id, true/false
node.$node_id.events.firmware: time, sequence_id, value
node.$node_id.events.hostname: time, sequence_id, value
@tcatm
tcatm / multiprefix-ipv6.md
Created May 11, 2015 12:30

Problemstellung

An mehreren Knoten wird je ein IPv6 /64 per radvd mit defaultroute announct. Anhand der Source-IP müsste nun der richtige Gateway gewählt werden.

Lösungsidee

  • Gateways geben eine Liste von Prefixen und Routen bekannt (spezifischstes Prefix/Route gewinnt). Die Prefixe haben ein Flag, das angibt, ob sie per RA verteilt werden dürfen (ggf. mit lifetime, usw...).
  • Knoten verteilen alle per RA erhaltenen Prefixe an die Clients weiter.
  • Knoten sind für die Clients default gateway.
  • Knoten routen die Pakete entsprechend der Source IPs an eines der zuständige Gateways.
@tcatm
tcatm / gist:92de89034b8857519a70
Created May 9, 2015 20:06
[
{
"node_id": "002586e6f1bf",
"hostname": "krtek",
"network": {
"mesh": {
"bat0": {
"interfaces": {
"tunnel": [
"00:25:86:e6:f1:bf"
@tcatm
tcatm / gist:841fdc834214bde13ff0
Created May 9, 2015 14:30
server {
listen 0.0.0.0:80;
listen [::]:80;
server_name seafile.chaotikum.org;
return 301 https://seafile.chaotikum.org$request_uri;
}
server {
listen 0.0.0.0:443 ssl;
listen [::]:443 ssl;