I am currently trying to bridge a connection between two computers. I want to be able to send and receive data from Computer B (remote computer) to Computer A (local computer), over this wireless link.
- Computer A has IP 192.168.160.15 ... this is 'local machine'
- Computer B has IP 192.168.160.10 ... this is 'remote machine'
When I configure this I cannot ping back and forth between the computers when connected through the Onion's. If I connect an Ethernet cable between Computer A and B for testing purposes I can ping back and forth.
I am using two Onion Omega 2+ to do this. The Onion Omega's are configured:
- Onion Omega 2+
- Mounted to Expansion Dock
- Ethernet Dock Mounted on top.
- Both Onion's are running 0.3.3 b247
I am connecting:
- Computer A via ethernet to Onion(A) acting as a 'Router' per instructions here: https://docs.onion.io/omega2-docs/omega-router.html
- Computer B via ethernet to Onion(B) acting as an 'Ethernet Bridge' per instructions here: https://docs.onion.io/omega2-docs/omega-router.html
- Onion(B) is connected to Onion(A)'s SSID.
I have now tried the walkthrough's in these three times and it doesn't seem to be working so I thought I would try asking here. Thank you.
I am currently connecting and configuring the Onion's via serial terminal and making sure I use /etc/init.d/(firewall or network or wireless) restart after every time I make a change
Configuration of Onion(A) (connected to local machine):
Firewall
config defaults
option syn_flood '1'
option input 'ACCEPT'
option output 'ACCEPT'
option forward 'REJECT'
option disable_ipv6 '1'
config zone
option name 'lan'
option input 'ACCEPT'
option output 'ACCEPT'
option forward 'ACCEPT'
option network 'wlan'
config zone
option name 'wan'
option output 'ACCEPT'
option forward 'ACCEPT'
option masq '1'
option mtu_fix '1'
list network 'wwan'
list network 'wan'
option input 'ACCEPT'
config forwarding
option src 'lan'
option dest 'wan'
config rule
option name 'Allow-DHCP-Renew'
option src 'wan'
option proto 'udp'
option dest_port '68'
option target 'ACCEPT'
option family 'ipv4'
config rule
option name 'Allow-Ping'
option src 'wan'
option proto 'icmp'
option icmp_type 'echo-request'
option family 'ipv4'
option target 'ACCEPT'
config rule
option name 'Allow-IGMP'
option src 'wan'
option proto 'igmp'
option family 'ipv4'
option target 'ACCEPT'
config rule
option name 'Allow-DHCPv6'
option src 'wan'
option proto 'udp'
option src_ip 'fc00::/6'
option dest_ip 'fc00::/6'
option dest_port '546'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-MLD'
option src 'wan'
option proto 'icmp'
option src_ip 'fe80::/10'
list icmp_type '130/0'
list icmp_type '131/0'
list icmp_type '132/0'
list icmp_type '143/0'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-ICMPv6-Input'
option src 'wan'
option proto 'icmp'
list icmp_type 'echo-request'
list icmp_type 'echo-reply'
list icmp_type 'destination-unreachable'
list icmp_type 'packet-too-big'
list icmp_type 'time-exceeded'
list icmp_type 'bad-header'
list icmp_type 'unknown-header-type'
list icmp_type 'router-solicitation'
list icmp_type 'neighbour-solicitation'
list icmp_type 'router-advertisement'
list icmp_type 'neighbour-advertisement'
option limit '1000/sec'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-ICMPv6-Forward'
option src 'wan'
option dest '*'
option proto 'icmp'
list icmp_type 'echo-request'
list icmp_type 'echo-reply'
list icmp_type 'destination-unreachable'
list icmp_type 'packet-too-big'
list icmp_type 'time-exceeded'
list icmp_type 'bad-header'
list icmp_type 'unknown-header-type'
option limit '1000/sec'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-IPSec-ESP'
option src 'wan'
option dest 'lan'
option proto 'esp'
option target 'ACCEPT'
config rule
option name 'Allow-ISAKMP'
option src 'wan'
option dest 'lan'
option dest_port '500'
option proto 'udp'
option target 'ACCEPT'
config include
option path '/etc/firewall.user'
Wireless
config wifi-device 'radio0'
option type 'ralink'
option variant 'mt7628'
option country 'US'
option hwmode '11g'
option htmode 'HT40'
option channel 'auto'
option disabled '0'
option device_mode 'apsta'
option op_mode 'preference'
config wifi-iface 'ap'
option device 'radio0'
option mode 'ap'
option network 'wlan'
option ifname 'ra0'
option encryption 'psk2'
option disabled '0'
option ssid 'AATEST'
option key '12345678'
config wifi-iface 'sta'
option device 'radio0'
option mode 'sta'
option ifname 'apcli0'
option encryption 'psk2'
option ssid 'YourSsidHere'
option key 'YourPasswordHere'
option network 'wwan'
option disabled '1'
option led 'omega2p:blue:wifi'
Network
config interface 'loopback'
option ifname 'lo'
option proto 'static'
option ipaddr '127.0.0.1'
option netmask '255.0.0.0'
config globals 'globals'
option ula_prefix 'fd1d:48c4:7633::/48'
config interface 'wlan'
option type 'bridge'
option proto 'static'
option ipaddr '192.168.160.11'
option netmask '255.255.255.0'
option ip6assign '60'
config interface 'wwan'
option ifname 'apcli0'
option proto 'dhcp'
option hostname 'Omega-E264'
config interface 'wan'
option ifname 'eth0'
option proto 'dhcp'
Configuration of Onion(B) (connect to remote machine):
Firewall
config defaults
option syn_flood '1'
option input 'ACCEPT'
option output 'ACCEPT'
option forward 'REJECT'
option disable_ipv6 '1'
config zone
option name 'lan'
option input 'ACCEPT'
option output 'ACCEPT'
option forward 'ACCEPT'
option network 'wlan'
config zone
option name 'wan'
option output 'ACCEPT'
option forward 'REJECT'
option masq '1'
option mtu_fix '1'
option network 'wwan'
option input 'ACCEPT'
config forwarding
option src 'lan'
option dest 'wan'
config rule
option name 'Allow-DHCP-Renew'
option src 'wan'
option proto 'udp'
option dest_port '68'
option target 'ACCEPT'
option family 'ipv4'
config rule
option name 'Allow-Ping'
option src 'wan'
option proto 'icmp'
option icmp_type 'echo-request'
option family 'ipv4'
option target 'ACCEPT'
config rule
option name 'Allow-IGMP'
option src 'wan'
option proto 'igmp'
option family 'ipv4'
option target 'ACCEPT'
config rule
option name 'Allow-DHCPv6'
option src 'wan'
option proto 'udp'
option src_ip 'fc00::/6'
option dest_ip 'fc00::/6'
option dest_port '546'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-MLD'
option src 'wan'
option proto 'icmp'
option src_ip 'fe80::/10'
list icmp_type '130/0'
list icmp_type '131/0'
list icmp_type '132/0'
list icmp_type '143/0'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-ICMPv6-Input'
option src 'wan'
option proto 'icmp'
list icmp_type 'echo-request'
list icmp_type 'echo-reply'
list icmp_type 'destination-unreachable'
list icmp_type 'packet-too-big'
list icmp_type 'time-exceeded'
list icmp_type 'bad-header'
list icmp_type 'unknown-header-type'
list icmp_type 'router-solicitation'
list icmp_type 'neighbour-solicitation'
list icmp_type 'router-advertisement'
list icmp_type 'neighbour-advertisement'
option limit '1000/sec'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-ICMPv6-Forward'
option src 'wan'
option dest '*'
option proto 'icmp'
list icmp_type 'echo-request'
list icmp_type 'echo-reply'
list icmp_type 'destination-unreachable'
list icmp_type 'packet-too-big'
list icmp_type 'time-exceeded'
list icmp_type 'bad-header'
list icmp_type 'unknown-header-type'
option limit '1000/sec'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-IPSec-ESP'
option src 'wan'
option dest 'lan'
option proto 'esp'
option target 'ACCEPT'
config rule
option name 'Allow-ISAKMP'
option src 'wan'
option dest 'lan'
option dest_port '500'
option proto 'udp'
option target 'ACCEPT'
config include
option path '/etc/firewall.user'
Wireless
config wifi-device 'radio0'
option type 'ralink'
option variant 'mt7628'
option country 'US'
option hwmode '11g'
option htmode 'HT40'
option channel 'auto'
option disabled '0'
option device_mode 'apsta'
option op_mode 'preference'
config wifi-iface 'ap'
option device 'radio0'
option mode 'ap'
option network 'wlan'
option ifname 'ra0'
option encryption 'psk2'
option key '12345678'
option disabled '0'
option ssid 'Omega-E3FC'
config wifi-iface 'sta'
option device 'radio0'
option mode 'sta'
option ifname 'apcli0'
option encryption 'psk2'
option network 'wwan'
option led 'omega2p:blue:wifi'
option disabled '0'
option key '12345678'
option ssid 'AATEST'
config wifi-config
option key '12345678'
option ssid 'AATEST'
option encryption 'psk2'
Network
config interface 'loopback'
option ifname 'lo'
option proto 'static'
option ipaddr '127.0.0.1'
option netmask '255.0.0.0'
config globals 'globals'
option ula_prefix 'fd1d:48c4:7633::/48'
config interface 'wlan'
option type 'bridge'
option proto 'static'
option ifname 'eth0'
option ipaddr '192.168.160.13'
option netmask '255.255.255.0'
option ip6assign '60'
config interface 'wwan'
option ifname 'apcli0'
option proto 'dhcp'
option hostname 'Omega-E3FC'