Merge branch 'main' of git.deuxfleurs.fr:quentin/wpj428
This commit is contained in:
commit
e5dcff60f3
1 changed files with 9 additions and 39 deletions
48
README.md
48
README.md
|
|
@ -211,7 +211,7 @@ verbose call end reason (3,2001): [cm] no-service
|
||||||
|
|
||||||
1. Set a password
|
1. Set a password
|
||||||
2. Set a name: `parangon`
|
2. Set a name: `parangon`
|
||||||
3. Set IP range: `192.168.0.254/24`
|
4. Set IP range: `192.168.0.254/24`
|
||||||
|
|
||||||
### ModemManager
|
### ModemManager
|
||||||
|
|
||||||
|
|
@ -223,6 +223,12 @@ config interface 'broadband'
|
||||||
option proto 'modemmanager'
|
option proto 'modemmanager'
|
||||||
option apn 'free'
|
option apn 'free'
|
||||||
option iptype 'ipv4v6'
|
option iptype 'ipv4v6'
|
||||||
|
option auth 'none'
|
||||||
|
option peerdns '0'
|
||||||
|
list dns '9.9.9.10'
|
||||||
|
list dns '149.112.112.10'
|
||||||
|
list dns '2620:fe::10'
|
||||||
|
list dns '2620:fe::fe:10'
|
||||||
```
|
```
|
||||||
|
|
||||||
Then we can start the interface with:
|
Then we can start the interface with:
|
||||||
|
|
@ -243,6 +249,8 @@ ping -6 openwrt.org
|
||||||
|
|
||||||
### Configure Wireguard
|
### Configure Wireguard
|
||||||
|
|
||||||
|
!!!!! BROKEN !!!!!!
|
||||||
|
|
||||||
On the router:
|
On the router:
|
||||||
|
|
||||||
```bash
|
```bash
|
||||||
|
|
@ -280,44 +288,6 @@ Doc:
|
||||||
|
|
||||||
*Not relevant now*
|
*Not relevant now*
|
||||||
|
|
||||||
### Configure our DNS recursive resolver
|
|
||||||
|
|
||||||
We use LuCi to setup our recursive DNS
|
|
||||||
|
|
||||||
Go to Network -> DHCP and DNS -> Advanced Settings -> Set port 5353 for the DNS server
|
|
||||||
Go to Service -> Recursive DNS -> Unbound -> DHCP -> and select dnsmasq
|
|
||||||
Go to System -> Startup -> Start unbound
|
|
||||||
Check in Service -> Recursive DNS -> Files -> Show: Unbound -> at the end, forward-zone must be declared for you
|
|
||||||
Check with `netstat -tlpn` that unbound listens on port 53 and dnsmasq on port 5353.
|
|
||||||
Finally check with `dig +short @192.168.1.1 sci-hub.se` and `dig +short @192.168.1.1 parangon.lan` (this is the name of our router)
|
|
||||||
|
|
||||||
We use:
|
|
||||||
- http://kacangbawang.com/say-bye-to-providers-dns-servers-be-your-own-dns-resolver/
|
|
||||||
|
|
||||||
Related with OpenWRT:
|
|
||||||
- https://openwrt.org/docs/guide-user/services/dns/unbound
|
|
||||||
- https://openwrt.org/docs/guide-user/services/dns/dot\_unbound
|
|
||||||
- https://forum.openwrt.org/t/using-unbound-alongside-dnsmasq/50537
|
|
||||||
- https://gist.github.com/kevinoid/00656e6e4815e3ffe25dabe252e0f1e3
|
|
||||||
- https://kevinlocke.name/bits/2017/03/09/unbound-with-dnsmasq-on-openwrt/
|
|
||||||
- https://blog.josefsson.org/tag/openwrt/
|
|
||||||
- https://zhmail.com/2018/04/20/setting-up-a-dns-over-tls-forwarding-cache-on-openwrt-snapshot-r6693-or-later/
|
|
||||||
- https://www.dnssec-deployment.org/2012/03/a-validating-recursive-resolver-on-a-70-home-router/
|
|
||||||
- https://blog.grobox.de/2018/what-is-dns-privacy-and-how-to-set-it-up-for-openwrt/
|
|
||||||
|
|
||||||
Not related with OpenWRT:
|
|
||||||
- https://calomel.org/unbound_dns.html
|
|
||||||
- https://feeding.cloud.geek.nz/posts/setting-up-your-own-dnssec-aware/
|
|
||||||
|
|
||||||
Sites to test:
|
|
||||||
- sci-hub.se (`ping sci-hub.se` should not return `127.0.0.1`)
|
|
||||||
|
|
||||||
### Configure our adblocker
|
|
||||||
|
|
||||||
*Not yet written*
|
|
||||||
|
|
||||||
Test with Youtube on Android.
|
|
||||||
|
|
||||||
## Known Bugs
|
## Known Bugs
|
||||||
|
|
||||||
section\_id is not defined: https://forum.openwrt.org/t/updated-cant-fetch-latest-git-error-when-creating-interface-with-luci-section-id-is-not-defined/91836/3
|
section\_id is not defined: https://forum.openwrt.org/t/updated-cant-fetch-latest-git-error-when-creating-interface-with-luci-section-id-is-not-defined/91836/3
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue