Hi there,<\/p>\n
there is a lack of detailed information about to building a system, that shares it’s wireless connection which has internet (like eduroam or any other network) via an own wireless AP with it’s own setup configuration. Because of this, I’ll publish the manual how to do so with an RPI (or any other Debian system). To have a system like this can be really helpfull if you have an old system which only supports WEP, to connect with an AP which only allows devices wia WPA or certain cerificates to connect.<\/p>\n
So what I literally want to do is the following<\/strong><\/span><\/span><\/p>\n The setup<\/strong><\/span><\/span><\/p>\n The Manual<\/strong><\/span><\/span><\/p>\n I will devide the manual into three parts, while in the first part I will describe how to connect via the first W-LAN stick and the\u00a0wpa_supplicant<\/strong> to an\u00a0access point (AP)\u00a0which offers an internet connection. The second part describes, how to setup the other W-LAN stick as an AP via hostapd<\/strong> and dnsmasq<\/strong>, so that you can connect to your RPI via W-LAN from your notebook (NB). In the last part I’ll setup the routing between the two W-LAN sticks via iptables<\/strong>, so that you can use the internet connection of the first W-LAN stick trough the second.<\/p>\n Part I (Connecting to any network)<\/strong><\/span><\/p>\n If you have wpa_supplicant<\/strong> already installed on your system, everything is fine, otherwise install it via:<\/p>\n Now create a new config file, so that the supplicant knows, how to connect to the AP with the internet connection. Create it with the following command:<\/p>\n Now you can edit the file with your favorite editor (nano, etc.):<\/p>\n Search via any search engine you like, to setup the connection information to any other network. You can also try man wpa_supplicant.conf<\/em> in the cli for more information.<\/p>\n For connecting with this network at startup of the system you have to add some lines to the\u00a0\/etc\/network\/interfaces<\/em>\u00a0file. Make sure that the device you want to connect with is wlan0<\/em> (Or replace wlan0<\/em> with the name of your device e.g. wlan1<\/em>). Be also sure, that there is no other line wich configures your device (Delete or comment every other line, which has wlan0<\/em> in it)<\/strong>:<\/p>\n Now you can reboot your system and try to ping any website. If it works, be happy.<\/p>\n If it’s not working<\/strong>, try the following two commands, which kills the actual wpa_supplicant and runs it in debug-mode.<\/p>\n Part II (Setup an AP for accessing the Pi via W-LAN)<\/strong><\/span><\/span><\/p>\n Install hostapd<\/strong> so that the Pi can act as an AP, and dnsmasq<\/strong> for beeing an dhcp server:<\/p>\n After installing, you need to setup your W-LAN stick, with an static IP, so that hostapd can work properly. Add the following lines to your \/etc\/network\/interfaces<\/em>:<\/p>\n Now, the hostapd<\/strong> needs to be configured. To do so, you need to tell him, where the configuration file is. Eddit the file \/etc\/default\/hostapd<\/em>\u00a0in the following way:<\/p>\n Now edit the config file, with the wieless setup configuration you like:<\/p>\n Now you need to configure the dnsmasq<\/strong>, so that your NB or PDA gets a IP address when it’s connecting to your Pi. To do so edit the\u00a0\/etc\/dnsmasq.conf<\/em> file in the following way:<\/p>\n The above setup means, that dnsmasq<\/strong> listens only on interface wlan1<\/em> and the second line gives every device which connects to it, an IP address between 10.0.0.2 and 10.0.0.128 for 12 hours.<\/p>\n Now you can reboot the Pi and try to connect to it with the security setup you have choosen.<\/p>\n Part III (Connecting wlan0 and wlan1, so that NB can connect to the inet)<\/strong><\/span><\/span><\/p>\n Now l turn the Raspberry Pi into a router.\u00a0First thing you need to do is to enable packet forwarding.\u00a0In the file \/etc\/sysctl.conf<\/em>, we need to uncomment the following line (should be line 28).<\/p>\n After changing that, run this command to re-read the sysctl.conf<\/em> file<\/p>\n Now install iptables<\/strong>, so that the packeges from wlan1<\/strong> can go through wlan0<\/strong> and vice versa.<\/p>\n Now you have to define certain rules, so that the IP packages can be handed over. To do so, create a file and give it rights to be executed on every startup of the system (Update 2013-06-03: Add router.sh script to rc.local. Otherwise it wont run at startup.):<\/p>\n Now edit the rules in \/etc\/network\/if-up.d\/router.sh in the following way:<\/p>\n The last step is, to let dnsmasq tell the connected devices, that itself is an gateway to the internet. To do so, edit the file \/etc\/dnsmasq.conf in the folowing way:<\/p>\n Now, after a reboot, the system should act as mentioned.<\/p>\n Troubleshoot<\/strong><\/span><\/span><\/p>\n Hi there, there is a lack of detailed information about to building a system, that shares it’s wireless connection which has internet (like eduroam or any other network) via an own wireless AP with it’s own setup configuration. Because of this, I’ll publish the manual how to do so with an RPI (or any other … Continue reading Building a wireless router for a wireless network with a Raspberry Pi<\/span> Raspberry Pi acting as wireless router\r\n between AP1 and devices via AP2. Security, SSID etc.,\r\n of AP2 are independent of AP1.\r\n _____\r\n\\|\/ \\|\/ | RPI | \\|\/ \\|\/ |Devices which\r\n | AP1(e.g. | |Linux| | AP2 | |use AP2 (NB,\r\n | eduroam) |_wlan0|_____|wlan1_| |__|PDA, etc.<\/pre>\n
\n
$ sudo apt-get install wpasupplicant<\/pre>\n
$ sudo touch \/etc\/wpa.conf<\/pre>\n
# Content of \/etc\/wpa.conf\r\nctrl_interface=\/var\/run\/wpa_supplicant\r\n\r\n# Conenctioninfo for e.g. university of paderborn network\r\n\r\nnetwork={\u00a0\r\n\u00a0 \u00a0 \u00a0 \u00a0 ssid=\"eduroam\"\r\n\u00a0 \u00a0 \u00a0 \u00a0 key_mgmt=WPA-EAP\r\n\u00a0 \u00a0 \u00a0 \u00a0 identity=\"benutzername@uni-paderborn.de\"\r\n\u00a0 \u00a0 \u00a0 \u00a0 private_key=\"\/Verzeichnis\/Network_Certificate.p12\"\r\n\u00a0 \u00a0 \u00a0 \u00a0 private_key_passwd=\"Zertfikiatspasswort\"\r\n\u00a0 \u00a0 \u00a0 \u00a0 priority=0\r\n\u00a0 \u00a0 \u00a0 \u00a0 }<\/pre>\n## Additional lines in \/etc\/network\/interfaces for wlan0 device\r\n# Start the device at system startup\r\nauto wlan0\r\n# Configure the device via dhcp\r\niface wlan0 inet dhcp\r\n# Use the given file for connecting to the internet\r\nwpa-conf \/etc\/wpa.conf<\/pre>\n
$ sudo killall wpa_supplicant\r\n$ sudo wpa_supplicant -iwlan0 -c\/etc\/wpa.conf -dd<\/pre>\n
$ sudo apt-get install hostapd\r\n$ sudo apt-get install dnsmasq<\/pre>\n
## Additional lines in \/etc\/network\/interfaces for wlan1 device\r\n# Setup the device with an static IP\r\niface wlan1 inet static\r\n# Static IP-Address\r\naddress 10.0.0.1\r\n# Networkmask\r\nnetmask 255.255.255.0<\/pre>\n
DAEMON_CONF=\"\/etc\/hostapd\/hostapd.conf\"<\/pre>\n
# Content of \/etc\/hostapd\/hostapd.conf\r\n# 1. The Device which will act as AP\r\ninterface=wlan1\r\ndriver=nl80211\r\n\r\n# 2. Parameters so that the daemon runs\r\nctrl_interface=\/var\/run\/hostapd\r\nctrl_interface_group=0\r\n\r\n# 3. The Wifi configuration\r\nssid=pi\r\nchannel=6\r\nhw_mode=g\r\nieee80211n=1\r\n\r\n# 4. Security of the Wifi connection\r\nwpa=2\r\nwpa_passphrase=VERYSECRET\r\nwpa_key_mgmt=WPA-PSK\r\nwpa_pairwise=CCMP\r\nrsn_pairwise=CCMP\r\n\r\n# 5. Other settings\r\nbeacon_int=100\r\nauth_algs=3\r\nwmm_enabled=1<\/pre>\n
interface=wlan1\r\ndhcp-range=10.0.0.2,10.0.0.128,255.255.255.0,12h<\/pre>\n
net.ipv4.ip_forward=1<\/pre>\n
$ sysctl -p<\/pre>\n
$ sudo apt-get install iptables<\/pre>\n
$ sudo touch \/etc\/network\/if-up.d\/router.sh\r\n$ sudo chmod +x \/etc\/network\/if-up.d\/router.sh\r\n$ sudo su -c \"echo '\/etc\/network\/if-up.d\/router.sh' >> \/etc\/rc.local\"<\/pre>\n
iptables --table nat --append POSTROUTING --out-interface wlan0 -j MASQUERADE\r\niptables --append FORWARD --in-interface wlan1 -j ACCEPT<\/pre>\n
dhcp-option=3,10.0.0.1<\/pre>\n
\n