move to new init.d structure
SVN-Revision: 18
This commit is contained in:
parent
5517f1169f
commit
c055b4eb2d
11 changed files with 88 additions and 231 deletions
|
@ -1,26 +0,0 @@
|
|||
#!/bin/sh
|
||||
|
||||
IPT=/usr/sbin/iptables
|
||||
|
||||
for T in filter nat mangle ; do
|
||||
$IPT -t $T -F
|
||||
$IPT -t $T -X
|
||||
done
|
||||
|
||||
$IPT -t filter -A INPUT -m state --state INVALID -j DROP
|
||||
$IPT -t filter -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
|
||||
$IPT -t filter -A INPUT -p icmp -j ACCEPT
|
||||
$IPT -t filter -A INPUT -i vlan1 -p tcp -j REJECT --reject-with tcp-reset
|
||||
$IPT -t filter -A INPUT -i vlan1 -j REJECT --reject-with icmp-port-unreachable
|
||||
$IPT -t filter -A FORWARD -m state --state INVALID -j DROP
|
||||
$IPT -t filter -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT
|
||||
$IPT -t filter -A FORWARD -i vlan1 -m state --state NEW,INVALID -j DROP
|
||||
|
||||
$IPT -t nat -A POSTROUTING -o vlan1 -j MASQUERADE
|
||||
|
||||
echo "1" >/proc/sys/net/ipv4/ip_forward
|
||||
echo "1" >/proc/sys/net/ipv4/icmp_echo_ignore_broadcasts
|
||||
echo "1" >/proc/sys/net/ipv4/icmp_ignore_bogus_error_responses
|
||||
echo "30" >/proc/sys/net/ipv4/tcp_fin_timeout
|
||||
echo "120" >/proc/sys/net/ipv4/tcp_keepalive_time
|
||||
echo "0" >/proc/sys/net/ipv4/tcp_timestamps
|
21
root/etc/init.d/S10boot
Executable file
21
root/etc/init.d/S10boot
Executable file
|
@ -0,0 +1,21 @@
|
|||
#!/bin/sh
|
||||
sysctl -p
|
||||
|
||||
insmod diag
|
||||
echo "0x01" > /proc/sys/diag
|
||||
|
||||
# networking stub
|
||||
insmod et
|
||||
insmod wl
|
||||
|
||||
ifconfig lo 127.0.0.1 up
|
||||
ifconfig eth0 promisc
|
||||
|
||||
HOSTNAME=$(nvram get wan_hostname)
|
||||
DOMAINNAME=${HOSTNAME##*.}
|
||||
HOSTNAME=${HOSTNAME%%.*}
|
||||
|
||||
echo ${HOSTNAME:=OpenWrt} > /proc/sys/kernel/hostname
|
||||
echo ${DOMAINNAME:=lan} > /proc/sys/kernel/domainname
|
||||
|
||||
vconfig set_name_type VLAN_PLUS_VID_NO_PAD
|
10
root/etc/init.d/S40network
Executable file
10
root/etc/init.d/S40network
Executable file
|
@ -0,0 +1,10 @@
|
|||
#!/bin/sh
|
||||
. /etc/functions.sh
|
||||
case "$1" in
|
||||
start|restart)
|
||||
ifup lan
|
||||
ifup wan
|
||||
ifup wifi
|
||||
wifi up
|
||||
;;
|
||||
esac
|
22
root/etc/init.d/S45firewall
Executable file
22
root/etc/init.d/S45firewall
Executable file
|
@ -0,0 +1,22 @@
|
|||
#!/bin/sh
|
||||
. /etc/functions.sh
|
||||
|
||||
WAN=$(nvram_get wan_ifname)
|
||||
|
||||
IPT=/usr/sbin/iptables
|
||||
|
||||
for T in filter nat mangle ; do
|
||||
$IPT -t $T -F
|
||||
$IPT -t $T -X
|
||||
done
|
||||
|
||||
$IPT -t filter -A INPUT -m state --state INVALID -j DROP
|
||||
$IPT -t filter -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
|
||||
$IPT -t filter -A INPUT -p icmp -j ACCEPT
|
||||
$IPT -t filter -A INPUT -i $WAN -p tcp -j REJECT --reject-with tcp-reset
|
||||
$IPT -t filter -A INPUT -i $WAN -j REJECT --reject-with icmp-port-unreachable
|
||||
$IPT -t filter -A FORWARD -m state --state INVALID -j DROP
|
||||
$IPT -t filter -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT
|
||||
$IPT -t filter -A FORWARD -i $WAN -m state --state NEW,INVALID -j DROP
|
||||
|
||||
$IPT -t nat -A POSTROUTING -o $WAN -j MASQUERADE
|
5
root/etc/init.d/S50services
Executable file
5
root/etc/init.d/S50services
Executable file
|
@ -0,0 +1,5 @@
|
|||
#!/bin/sh
|
||||
/usr/sbin/telnetd -l /bin/login
|
||||
/usr/sbin/httpd -p 80 -h /www -r WRT54G Router
|
||||
/usr/sbin/udhcpd /etc/udhcpd.conf
|
||||
#udhcpd started from /etc/inittab
|
3
root/etc/init.d/S99done
Executable file
3
root/etc/init.d/S99done
Executable file
|
@ -0,0 +1,3 @@
|
|||
#!/bin/sh
|
||||
# turn off DMZ led
|
||||
echo "0x00" > /proc/sys/diag
|
25
root/etc/init.d/rcS
Executable file
25
root/etc/init.d/rcS
Executable file
|
@ -0,0 +1,25 @@
|
|||
#!/bin/sh
|
||||
|
||||
# Start all init scripts in /etc/init.d
|
||||
# executing them in numerical order.
|
||||
#
|
||||
for i in /etc/init.d/S??* ;do
|
||||
|
||||
# Ignore dangling symlinks (if any).
|
||||
[ ! -f "$i" ] && continue
|
||||
|
||||
case "$i" in
|
||||
*.sh)
|
||||
# Source shell script for speed.
|
||||
(
|
||||
trap - INT QUIT TSTP
|
||||
set start
|
||||
. $i
|
||||
)
|
||||
;;
|
||||
*)
|
||||
# No sh extension, so fork subprocess.
|
||||
$i start
|
||||
;;
|
||||
esac
|
||||
done
|
|
@ -1,7 +1,3 @@
|
|||
::sysinit:/etc/rcS
|
||||
::restart:/sbin/init
|
||||
::ctrlaltdel:/sbin/reboot
|
||||
::sysinit:/etc/init.d/rcS
|
||||
::shutdown:/bin/alldone
|
||||
::respawn:/usr/sbin/dnsmasq -d -l /tmp/udhcpd.leases -s lan
|
||||
|
||||
|
||||
|
|
|
@ -1,172 +0,0 @@
|
|||
#!/bin/sh
|
||||
# OpenWrt Networking script
|
||||
# $Id$
|
||||
# Copyright (c) 2004 Mike Baker <mbm at alt.org>
|
||||
|
||||
# to debug:
|
||||
# export DEBUG=echo
|
||||
|
||||
export PATH=/usr/bin:/bin:/usr/sbin:/sbin
|
||||
|
||||
# lookup an interface by mac address
|
||||
mac2if () {
|
||||
if=$(ifconfig -a | awk '{IGNORECASE=1} /^eth.*'$1'/ {print $1; exit}')
|
||||
echo $if
|
||||
}
|
||||
|
||||
# allow env to override nvram
|
||||
nvram_get () {
|
||||
eval "echo \${$1:-\$(nvram get $1)}"
|
||||
}
|
||||
|
||||
# valid interface?
|
||||
if_valid () {
|
||||
[ "${1%%[0-9]}" = "vlan" ] && {
|
||||
i=${1#vlan}
|
||||
hwname=$(nvram_get vlan${i}hwname)
|
||||
hwaddr=$(nvram_get ${hwname}macaddr)
|
||||
[ -z "$hwaddr" ] && return 1
|
||||
|
||||
vif=$(mac2if $hwaddr)
|
||||
echo "# vlan$i: $hwname $hwaddr => $vif"
|
||||
|
||||
$DEBUG ifconfig $vif up
|
||||
$DEBUG vconfig add $vif $i 2>/dev/null
|
||||
}
|
||||
ifconfig "$1" >/dev/null 2>&1 || [ "${1%%[0-9]}" = "br" ]
|
||||
return $?
|
||||
}
|
||||
|
||||
wifi_init () {
|
||||
echo "# --- wifi init ---"
|
||||
if=$(awk 'gsub(":","") {print $1}' /proc/net/wireless)
|
||||
$DEBUG wlconf $if up
|
||||
}
|
||||
|
||||
configure () {
|
||||
type=$1
|
||||
echo "# --- $type ---"
|
||||
|
||||
if=$(nvram_get ${type}_ifname)
|
||||
if [ "${if%%[0-9]}" = "ppp" ]; then
|
||||
if=$(nvram_get pppoe_ifname)
|
||||
fi
|
||||
if_valid $if || return
|
||||
|
||||
$DEBUG ifconfig $if down
|
||||
if [ "${if%%[0-9]}" = "br" ]; then
|
||||
stp=$(nvram_get ${type}_stp)
|
||||
$DEBUG brctl delbr $if
|
||||
$DEBUG brctl addbr $if
|
||||
$DEBUG brctl setfd $if 0
|
||||
$DEBUG brctl stp $if $stp
|
||||
if_list=$(nvram_get ${type}_ifnames)
|
||||
for sif in $if_list; do {
|
||||
if_valid $sif || continue
|
||||
$DEBUG ifconfig $sif 0.0.0.0 up
|
||||
$DEBUG brctl addif $if $sif
|
||||
} done
|
||||
fi
|
||||
|
||||
if_mac=$(nvram_get ${type}_hwaddr)
|
||||
[ -z "$if_mac" ] || $DEBUG ifconfig $if hw ether $if_mac
|
||||
|
||||
if_proto=$(nvram_get ${type}_proto)
|
||||
case "$if_proto" in
|
||||
static)
|
||||
if_ip=$(nvram_get ${type}_ipaddr)
|
||||
if_netmask=$(nvram_get ${type}_netmask)
|
||||
if_gateway=$(nvram_get ${type}_gateway)
|
||||
|
||||
ipcalc -s "$if_ip" || return
|
||||
ipcalc -s "$if_netmask" || return
|
||||
$DEBUG ifconfig $if $if_ip netmask $if_netmask up
|
||||
|
||||
ipcalc -s "$if_gateway" || return
|
||||
$DEBUG route add default gw $if_gateway
|
||||
|
||||
[ -f /etc/resolv.conf ] && return
|
||||
|
||||
echo "# --- creating /etc/resolv.conf ---"
|
||||
for dns in $(nvram_get ${type}_dns); do {
|
||||
echo "nameserver $dns" >> /etc/resolv.conf
|
||||
} done
|
||||
;;
|
||||
dhcp)
|
||||
pidfile=/tmp/dhcp-${type}.pid
|
||||
if [ -f $pidfile ]; then
|
||||
$DEBUG kill $(cat $pidfile)
|
||||
fi
|
||||
$DEBUG udhcpc -i $if -b -p /tmp/dhcp-${type}.pid
|
||||
;;
|
||||
pppoe)
|
||||
if_username=$(nvram_get ppp_username)
|
||||
if_password=$(nvram_get ppp_passwd)
|
||||
if_redial=$(nvram_get ppp_redialperiod)
|
||||
if_idletime=$(nvram_get ppp_idletime)
|
||||
|
||||
$DEBUG ifconfig $if 0.0.0.0 up
|
||||
|
||||
$DEBUG /sbin/pppoecd $if -u $if_username -p $if_password -i 0 -I $if_redial -T $if_idletime -k
|
||||
;;
|
||||
*)
|
||||
echo "$if: $if_proto is not supported"
|
||||
;;
|
||||
esac
|
||||
}
|
||||
|
||||
### START NETWORKING ###
|
||||
$DEBUG vconfig set_name_type VLAN_PLUS_VID_NO_PAD
|
||||
|
||||
# hacks for 1.x hardware
|
||||
[ "$(nvram get boardnum)" = "42" ] && \
|
||||
[ "$(nvram get boardtype)" = "bcm94710dev" ] && {
|
||||
echo "# 1.x HACK"
|
||||
vlan1hwname="et0"
|
||||
vlan2hwname="et0"
|
||||
|
||||
# we remap old device names to new
|
||||
# it's recommended that you continue to
|
||||
# use the old names to preserve backwards
|
||||
# compatibility
|
||||
remap () {
|
||||
eval $1=\"$(nvram_get $1 | awk 'gsub("eth0","vlan2") gsub("eth1","vlan1")')\"
|
||||
}
|
||||
|
||||
remap lan_ifname
|
||||
remap lan_ifnames
|
||||
remap wifi_ifname
|
||||
remap wifi_ifnames
|
||||
remap wan_ifname
|
||||
remap wan_ifnames
|
||||
remap pppoe_ifname
|
||||
}
|
||||
|
||||
# failsafe if reset is held
|
||||
[ "$FAILSAFE" = "true" ] && {
|
||||
lan_ifname="br0"
|
||||
lan_ifnames="vlan0 vlan2 eth1 eth2 eth3"
|
||||
lan_ipaddr="192.168.1.1"
|
||||
lan_netmask="255.255.255.0"
|
||||
lan_hwaddr="00:0B:AD:0A:DD:00"
|
||||
wan_ifname="none"
|
||||
wifi_ifname="none"
|
||||
}
|
||||
|
||||
# linksys bug has lan doing dhcp; force static
|
||||
lan_proto="static"
|
||||
|
||||
configure lan
|
||||
configure wifi
|
||||
configure wan
|
||||
|
||||
wifi_init
|
||||
|
||||
for route in $(nvram_get static_route); do {
|
||||
ip=${route%%:*} route=${route#*:}
|
||||
netmask=${route%%:*} route=${route#*:}
|
||||
gateway=${route%%:*} route=${route#*:}
|
||||
metric=${route%%:*} route=${route#*:}
|
||||
if=${route%%:*}
|
||||
$DEBUG route add -net $ip netmask $netmask gw $gateway metric $metric dev $if
|
||||
} done
|
|
@ -1,7 +1,7 @@
|
|||
#!/bin/sh
|
||||
mount none /proc -t proc
|
||||
if /sbin/resetmon ; then
|
||||
mtd unlock mtd4
|
||||
if /sbin/resetmon ; then
|
||||
mount -t jffs2 /dev/mtdblock/4 /jffs
|
||||
pivot_root /jffs /jffs/rom
|
||||
mount none /dev -t devfs
|
||||
|
|
27
root/etc/rcS
27
root/etc/rcS
|
@ -1,27 +0,0 @@
|
|||
#!/bin/sh
|
||||
|
||||
export TZ=$(nvram get tz)
|
||||
|
||||
insmod diag
|
||||
echo "0x01" > /proc/sys/diag
|
||||
echo "3" >/proc/sys/kernel/panic
|
||||
|
||||
# networking
|
||||
insmod et
|
||||
insmod wl
|
||||
|
||||
ifconfig lo 127.0.0.1 up
|
||||
|
||||
# eth0 and eth1 are shared, must set eth0 as promisc
|
||||
ifconfig eth0 promisc
|
||||
ifconfig eth1 promisc
|
||||
/etc/networking.sh
|
||||
|
||||
# now lets set up a basic set of rules to do ip masquerade
|
||||
/etc/firewall.sh
|
||||
|
||||
# now lets start some basic services
|
||||
/usr/sbin/telnetd
|
||||
/usr/sbin/httpd -p 80 -h /www -r WRT54G Router
|
||||
/usr/sbin/udhcpd /etc/udhcpd.conf
|
||||
|
Loading…
Reference in a new issue