Commit Graph

413 Commits

Author SHA1 Message Date
Matthias Schiffer
543eb17882
gluon-core: remove DNS cache feature
dnsmasq's caching is severly broken and does not handle all answer records
equally. In particular, its cached answers are missing DNSKEY and DS
records, breaking DNSSEC validation on clients.

Remove the cache for now. It may return if dnsmasq is fixed or we switch to
a different resolver.
2018-04-13 15:15:40 +02:00
Matthias Schiffer
84f82a1339
docs: remove duplicated (and outdated) site docs
At the moment, we don't have a good guideline for package-specific
configuration, but it seems like a good idea not to split configuration
into too many tiny pages, especially for packages that aren't commonly
selected explicitly.

Some uncommon configuration is dropped from the example site.conf to remove
clutter.
2018-03-17 21:20:47 +01:00
Matthias Schiffer
7827f8960f
gluon-config-mode-hostname: add config_mode.hostname.optional site option
This setting allows to enforce manually setting a hostname.

In the initial configuration, the hostname field is now left empty; when
setting the hostname is not enforced, the default hostname is shown as the
field placeholder.

Fixes #1139
2018-03-17 12:51:14 +01:00
Matthias Schiffer
486c2e4821
gluon-config-mode-contact-info: change "mandatory" site option to "optional"
Also add documentation about config mode settings.
2018-03-17 12:27:57 +01:00
Matthias Schiffer
440cc1ec54
docs: remove obsolete gluon-legacy configuration 2018-03-17 12:05:59 +01:00
Andreas Ziegler
d66ff7b087 docs: features/dns-cache: multiple names and better example domain 2018-03-13 04:18:16 +01:00
Matthias Walther
4aa6dce17a docs: hardware.rst: explain how to get the image name for a new device (#1335) 2018-03-12 03:28:28 +01:00
Matthias Schiffer
17370d8462
gluon-ebtables: unconditionally segment IGMP/MLD
We must ensure that each node becomes IGMP/MLD querier for its local
clients; having only a single querier for the whole mesh is generally
unreliable, leading to frequent "IGMP/MLD querier appeared/disappeared"
messages from batman-adv and unreliable snooping.

In smaller meshes it might be interesting only segment querier domains, but
allow membership reports to pass through the mesh, in order to support
snooping switches outside the mesh without special configuration. A
site.conf switch is provided to control this behaviour.

Fixes #1320
2018-03-07 08:12:30 +01:00
Matthias Schiffer
002ab9b0e5
docs: package/gluon-config-mode-domain-select: fix syntax error 2018-02-23 14:06:43 +01:00
Matthias Schiffer
4ba7356a24
docs: dev/web: update i18n docs 2018-02-23 14:05:32 +01:00
Andreas Ziegler
b38ca0a794
docs: update copyright year in sphinx's conf.py 2018-02-20 15:45:43 +01:00
lemoer
84618ed65a docs: add features/vpn to index (#1330) 2018-02-20 15:28:15 +01:00
Jan-Tarek Butt
60ca1ddf1a docs: add Unifi AC-LR and AC-Mesh to HW list. 2018-02-20 15:22:21 +01:00
lemoer
1a5ae67ff8 docs: add general documentation about vpn protocols (#1330) 2018-02-19 08:01:06 +01:00
Christof Schulze
9711afaf69
gluon-core: allow multiple domain names for next_node-feature
* change type of next_node.name
* create domain entry for each entry and add to dnsmasq configuration

[Matthias Schiffer: reword documentation]
2018-02-16 15:15:31 +01:00
kb-light
b98956e47e
gluon-config-mode-domain-select: new package
[Matthias Schiffer: slightly clean up code]
2018-02-15 20:57:53 +01:00
Martin Weinelt
42763d21dc
gluon-mesh-vpn-core: add public key to nodeinfo response
This is currently only implemented in the gluon-mesh-vpn-fastd
package.

Advertising the public key may be deemed problematic when
your threat-model involves protecting the nodes privacy
from tunnel traffic correlation by onlink observers.

It can be enabled by setting site.mesh_vpn.fastd.pubkey_privacy
to `false`.
2018-02-04 20:47:53 +01:00
Matthias Schiffer
6137169104
docs, README: Gluon v2017.1.5 2018-01-31 21:56:01 +01:00
Matthias Schiffer
40efe80c2f
docs, README: Gluon v2017.1.4 2018-01-31 21:54:59 +01:00
Jan-Philipp Litza
cf329daaf0
Add package gluon-radv-filterd
This package drops all incoming router advertisements except for the
default router with the best metric according to B.A.T.M.A.N. advanced.

Note that advertisements originating from the node itself (for example
via gluon-radvd) are not affected.
2018-01-25 23:02:49 +01:00
Matthias Schiffer
0cb4cfdadf
docs: dev/hardware: remove some outdated info, reword a bit 2018-01-19 14:17:33 +01:00
lemoer
b520bf5c50
gluon-core: rename site_seed to domain_seed
[Matthias Schiffer: rebase]
2018-01-19 03:30:06 +01:00
Matthias Schiffer
18b9174d03
Use 'disabled' attribute instead of 'auto' to disable wired mesh interfaces
The 'auto' attribute still allows enabling the interface using ifup, which
is not intended when wired mesh is disabled.
2018-01-11 23:06:36 +01:00
Andreas Ziegler
979c69ffc3 docs: move GLUON_WLAN_MESH to site.rst & improve text
fixes an error and removes the focus on ath10k
2018-01-11 03:59:47 +01:00
Tata
919dda90b3 build: introduce GLUON_WLAN_MESH build variable (#1298)
defaults to 11s, allowing to build devices without IBSS-support

obsoletes GLUON_ATH10K_MESH
2018-01-10 15:49:33 +01:00
Matthias Schiffer
e65dc0e7dd
docs: add package/gluon-web-logging to index 2018-01-09 23:12:28 +01:00
Ruben Barkow
a92cfa3194 docs: standardize package descriptions and add missing example in site-example (#1179) 2017-12-27 21:48:21 +01:00
Ralf Jung
4bae0a429f docs: dns-cache: explain setting dns.servers a bit more (#1268) 2017-12-27 00:21:08 +01:00
Andreas Ziegler
6f7504b48a docs: site-example: site.conf: fix typo 2017-11-15 03:44:53 +01:00
Matthias Schiffer
3fce6a6836
docs: fix recommended command line to generate site seed
Without -v, hexdump would sometimes replace duplicate bytes with "*" and
a newline.
2017-10-31 22:41:33 +01:00
lrnzo
0b4cbec0e9
docs: change group name gluon-fastd to gluon-mesh-vpn
The group was renamed during the development of Gluon v2017.1, adjust the
documentation accordingly.
2017-10-22 20:34:05 +02:00
Martin Weinelt
1992d4fd29 docs: mtu: fix reference to faq entry, add mtu diagram locally 2017-10-17 01:16:26 +02:00
Martin Weinelt
e4ef421711 docs: faq: clarify how to calculate proper mesh-vpn mtu value 2017-10-14 13:59:46 +02:00
Martin Weinelt
0d1d579196 docs: mesh-vpn: recommend better default mtu 2017-10-14 13:59:46 +02:00
Tarnatos
230897be86 docs: autoupdater.rst: add GLUON_RELEASE to make manifest (#1235) 2017-10-12 09:50:17 +02:00
hexa-
ea01c467f2
docs: fix typo in v2017.1.3 release notes (#1234) 2017-10-11 02:01:50 +02:00
Matthias Schiffer
36c940c11d
docs, README: import v2017.1.3 release notes 2017-10-04 22:53:30 +02:00
Chrissi^
ab296fcd13
docs: mention GLUON_RELEASE in make manifest instructions
Adding the fact that GLUON_RELEASE is needed with 'make manifest'
if it is used with 'make'.

This fact was mentioned in the v2017.1 release notes but is not (clearly)
mentioned inside other parts of the documentation.

Signed-off-by: Chrissi^ <chris@tinyhost.de>

[Matthias Schiffer: minor rewording]
2017-09-06 18:26:29 +02:00
Matthias Schiffer
2c7f4487fd
docs: features/autoupdater: whitespace cleanup 2017-09-06 18:24:03 +02:00
A.Kasper
5de9f0469e Update dns-cache.rst: adding a best practices for setting the name
Adding hints that the next_node name should contain a dot to avoid (mobile) browsers interpreting "nextnode" as searchphrase. Also setting it to an fqdn helps when clients use static dns servers.
2017-08-25 23:04:32 +02:00
Matthias Schiffer
9168107f13
docs: import v2017.1.2 release notes 2017-08-14 02:06:31 +02:00
Matthias Schiffer
24cfdc384a
docs: import v2016.2.7 release notes 2017-08-14 02:04:16 +02:00
hexa-
5617eec665 docs/site-example: fix comment and syntax error (#1186) 2017-07-11 04:14:24 +02:00
kb-light
46126de792 Add new package gluon-web-logging (#1153) 2017-07-11 02:58:45 +02:00
Matthias Schiffer
9ae2be7b55
docs: dev/feature-flags: fix a few typos 2017-07-09 02:35:06 +02:00
Matthias Schiffer
6ca841bad5
build: introduce GLUON_FEATURES
To reduce the number of packages that need to be listed in
GLUON_SITE_PACKAGES, this adds a new variable GLUON_FEATURES. Sets of
packages are enabled automatically based on the combination of listed
feature flags.

Site-specified package feeds can provide their own feature flag
definitions.
2017-07-09 02:31:38 +02:00
Matthias Schiffer
2cd30d644b
Remove redundant virtual packages
As PROVIDES can be used to replace real packages now, we don't need the
virtual packages as workaround anymore. This also means that the providing
packages don't need to be added to site.mk explicitly anymore when the
default provider is used.
2017-07-08 16:34:40 +02:00
Ruben Barkow
84d117ff73
gluon-web-admin: add option to show/hide password-login and add minimum password length 2017-07-07 02:15:52 +02:00
Matthias Schiffer
d72a1ea9c6
docs, README: import Gluon v2017.1.1 release notes 2017-07-03 17:17:02 +02:00
Matthias Schiffer
8bcd0975af
gluon-core: add a "site seed" to site.conf to seed site-specific random values 2017-06-27 23:00:17 +02:00