apps/openlan
1
0
Fork 0
mirror of https://github.com/luscis/openlan.git synced 2025-10-07 17:40:54 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity
Files
fallback
openlan/docs/central.md
Daniel Ding b025178053
Some checks failed
Coverage CI / build (push) Has been cancelled
Details
CodeQL / Analyze (go) (push) Has been cancelled
Details
Ubuntu CI / build (push) Has been cancelled
Details
docs: update install.md
2025-04-24 17:03:41 +08:00

105 lines
2.4 KiB
Markdown
Executable File
Raw Permalink Blame History

# Central Branch Example
## Topology
```
Switch(Central) - 10.16.1.10/24
^
|
Wifi(DNAT)
|
|
+---------------------Internet-----------------------+
^ ^ ^
| | |
Branch1 Branch2 Branch3
| | |
Access Point Access Point Access Point
10.16.1.11/24 10.16.1.12/24 10.16.1.13/24
```
## Configure Central Switch
Generage a pre-shared key:
```
[root@switch ~]# uuidgen
e108fe36-a2cd-43bc-82e2-f367aa429ed2
[root@switch ~]#
```
Global configure with pre-share key:
```
[root@switch ~]# cd /etc/openlan/switch
[root@switch ~]# cat > switch.yaml <<EOF
crypt:
secret: f367aa429ed2
EOF
```
Add a user network configuration:
```
[root@switch ~]# cd network
[root@switch ~]# cat > central.yaml <<EOF
name: central
bridge:
name: br-em1
address: 10.16.1.10/24
subnet:
endAt: 10.16.1.100
startAt: 10.16.1.44
hosts:
- hostname: access1.hostname
address: 10.16.1.11
openvpn:
listen: 0.0.0.0:1194
subnet: 172.32.194.0/24
EOF
```
Add three access users on central network:
```
[root@switch ~]# openlan user add --name admin@central --role admin
[root@switch ~]# openlan user add --name access1@central
[root@switch ~]# openlan user add --name access2@central
[root@switch ~]# openlan user add --name access3@central
```
## Configure Access Point
Add a user network configuration:
```
[root@access1 ~]# cd /etc/openlan
[root@access1 ~]# cat > central.yaml <<EOF
crypt:
secret: f367aa429ed2
connection: public-ip-of-switch
username: access1@central
password: get-password-of-switch-administrator
EOF
[root@access1 ~]# cat central.yaml | python -m json.tool
```
Enable Access Point for central network:
```
systemctl enable --now openlan-access@central
```
Check journal log:
```
journalctl -u openlan-access@central
```
Reference in New Issue View Git Blame Copy Permalink