September 2017 – Packet-radio.net

Traceroute -m 64 bad.horse

Posted on30 September 2017AuthorPD9QLeave a comment

root@pi1lap:~# traceroute -m 64 bad.horse
traceroute to bad.horse (162.252.205.157), 64 hops max, 60 byte packets
18  bad.horse (162.252.205.130)  138.709 ms  140.816 ms  139.755 ms
19  bad.horse (162.252.205.131)  149.362 ms  148.325 ms  147.516 ms
20  bad.horse (162.252.205.132)  154.015 ms  150.660 ms  150.547 ms
21  bad.horse (162.252.205.133)  162.613 ms  152.024 ms  153.963 ms
22  he.rides.across.the.nation (162.252.205.134)  168.164 ms  167.627 ms  157.998 ms
23  the.thoroughbred.of.sin (162.252.205.135)  161.472 ms  165.656 ms  166.011 ms
24  he.got.the.application (162.252.205.136)  169.413 ms  168.101 ms  192.127 ms
25  that.you.just.sent.in (162.252.205.137)  187.624 ms  175.584 ms  174.123 ms
26  it.needs.evaluation (162.252.205.138)  187.203 ms  178.079 ms  188.922 ms
27  so.let.the.games.begin (162.252.205.139)  194.090 ms  190.662 ms  189.273 ms
28  a.heinous.crime (162.252.205.140)  192.752 ms  188.997 ms  193.715 ms
29  a.show.of.force (162.252.205.141)  202.382 ms  202.387 ms  203.915 ms
30  a.murder.would.be.nice.of.course (162.252.205.142)  234.657 ms  203.534 ms  200.304 ms
31  bad.horse (162.252.205.143)  206.686 ms  205.931 ms  205.938 ms
32  bad.horse (162.252.205.144)  211.575 ms  215.600 ms  218.457 ms
33  bad.horse (162.252.205.145)  216.021 ms  222.228 ms  222.077 ms
34  he-s.bad (162.252.205.146)  222.613 ms  229.693 ms  228.600 ms
35  the.evil.league.of.evil (162.252.205.147)  227.446 ms  235.141 ms  235.604 ms
36  is.watching.so.beware (162.252.205.148)  228.613 ms  229.605 ms  229.793 ms
37  the.grade.that.you.receive (162.252.205.149)  244.729 ms  238.574 ms  243.192 ms
38  will.be.your.last.we.swear (162.252.205.150)  243.546 ms  245.120 ms  238.522 ms
39  so.make.the.bad.horse.gleeful (162.252.205.151)  244.504 ms  244.750 ms  244.333 ms
40  or.he-ll.make.you.his.mare (162.252.205.152)  287.329 ms  258.506 ms  249.524 ms
41  o_o (162.252.205.153)  257.108 ms  259.796 ms  258.953 ms
42  you-re.saddled.up (162.252.205.154)  260.623 ms  260.135 ms  257.166 ms
43  there-s.no.recourse (162.252.205.155)  263.938 ms  263.962 ms  266.667 ms
44  it-s.hi-ho.silver (162.252.205.156)  284.177 ms  278.989 ms  271.777 m

sexy ifconfig

Posted on24 September 20179 November 2019AuthorPD9QLeave a comment

ax0 voor link fbb
ax1 voor link Convers
eth0 Dit is de Baas
sl0 voor (X)net
tun0 voor Jnos
tunl0 voor ampr Gateway

Om te zorgen dat de data gaat lopen hebben we een aantal ip routes nodig.

ip route add 44.137.31.70 dev sl0 table 44 src 44.137.31.69
ip route add 44.137.31.67 dev tun0 table 44 src 44.137.31.82

En voor de iptables firewall
$ipt -A FORWARD -i tunl0 -o sl0 -j ACCEPT
$ipt -A FORWARD -i sl0 -o tunl0 -j ACCEPT
$ipt -A FORWARD -i tunl0 -o tun0 -j ACCEPT
$ipt -A FORWARD -i tun0 -o tunl0 -j ACCEPT

Met deze bovenstaande regels heeft iedereen toegang tot sl0 en tun0

VE7FET AX.25 packages update

Posted on24 September 20179 November 2019AuthorPD9QLeave a comment

VE7FET heeft een fork geschreven voor de AX25Tools / AX25Libs / AX25Apps. Hier in zijn bekende bugs opgelost. Deze zijn hier te vinden https://github.com/ve7fet/linuxax25

In onderstaande link valt te lezen wat er zo wel is aangepast.

http://www.trinityos.com/HAM/CentosDigitalModes/hampacketizing-centos.html#3.ax25tools

Verder is er een update script, deze maakt het makkelijk om de ax25 tools te updaten.

Als je de niet-officiële ax25 bron gebruiken moet je een simlink toevoegen aan de RT Library routines.
ln -s /usr/local/lib/libax25.so.1 /usr/lib/libax25.so.0
ln -s /usr/local/lib/libax25io.so.1 /usr/lib/libax25.io.so.0

#!/bin/bash
# script updated December-8-2015 for VE7FET new AX.25 github repository (F6BVP)
# Copy this script file in /usr/local/src/ax25/updAX25.sh
# cd into /usr/local/src/ax25
# and execute command : sudo chmod a+x updAX25.sh
# execute command to run the script : ./updAX25.sh
# It will update and re-compile AX.25 libraries, AX.25 tools and AX.25 apps

LIBAX25=linuxax25-master/libax25/
TOOLS=linuxax25-master/ax25tools/
APPS=linuxax25-master/ax25apps/

# Color Codes
Reset='e[0m'
Red='e[31m'
Green='e[30;42m'  # Black/Green
Yellow='e[33m'
YelRed='e[31;43m' #Red/Yellow
Blue='e[34m'
White='e[37m'
BluW='e[37;44m'

echo -e "${BluW}tnt Script provided by Charles S. Schuman modified by F6BVP for updating AX.25 libraries and applicationstnttt ${Red} November-30-2015    n tt${Yellow}       k4gbb1@gmail.com n${Reset}"

  if ! uid=0
   then su
  fi

#if [ -f /usr/lib/libax25.a ]; then
echo -e "${Green} Removing Old Libax25 files out of the way${Reset}"
  rm -fr /usr/lib/libax25*
  rm -fr /usr/lib/libax25*.*
#fi

# Make directories if not exist
if [ -d /usr/local/src/ax25/ ]
	then echo "directory /usr/local/src/ax25 already exists"
	else 
	mkdir /usr/local/src/ax25/
fi
if ! [ -d /usr/local/etc/ax25/ ]
	then mkdir /usr/local/etc/ax25/
fi
if ! [ -d /usr/local/var/ax25/ ] 
	then 
		mkdir /usr/local/var/
		mkdir /usr/local/var/ax25
fi
#
# Download libax25 source file 
  cd /usr/local/src/ax25
  rm -fr /usr/local/src/ax25/libax25
  rm -f master.zip
  echo -e "${Green} Getting AX25 libraries, AX25 tools and AX25 apps archives${Reset}"
   wget https://github.com/ve7fet/linuxax25/archive/master.zip
  if [ $? -ne 0 ]
   then
     echo -e "${Red}t Ax25 Source files are Missing${Reset}"
     exit 1
  fi

echo -e "${Green} Now unarchiving AX.25 files ${Reset}"
  rm -fr linuxax25-master
  unzip master.zip
#Libax25 (updating configure.ac for automake > 1.12 compliance)
  cd /usr/local/src/ax25/$LIBAX25
#  
  echo -e "${Green}t Creating Makefile(s) to prepare libraries compilation ${Reset}"
  ./autogen.sh
  ./configure > liberror.txt 2>&1
  echo -e -n "t  *"
  echo -e "${Green}t Compiling Runtime Lib files ${Reset}"

# Clean old binaries
  make clean
# Compile
  echo -n "  *"   
  make
  echo -e "t  *" 
  if [ $? -ne 0 ]
    then
     echo -e "${Red}t Libax25 Compile error - See liberror.txt ${Reset}"
     exit 1
  fi
  echo  "  *n"
# Install
#  make install >> liberror.txt 2>&1
  make install
  if [ $? -ne 0 ]
   then
     echo -e "${Red} Libax25 Install error - See liberror.txt${Reset}"
     exit 1
   else   
     echo -e "${Green} Libax25 Installed${Reset}"
     rm liberror.txt
  fi

# AX25 libraries declaration (into ld.so.conf)
  echo "/usr/local/lib" >> /etc/ld.so.conf && /sbin/ldconfig

# AX25-APPS
  cd /usr/local/src/ax25
  rm -fr /usr/local/src/ax25/ax25apps
  echo -e "${Green} AX.25 applications${Reset}"
#Libax25 (updating configure.ac for automake > 1.12 compliance)
  cd /usr/local/src/ax25/$APPS
#  
  echo -e "${Green}t Creating Makefile(s) to prepare apps compilation ${Reset}"
  ./autogen.sh
  ./configure > appserror.txt 2>&1
  echo -n -e "t  *" 
# Clean old binaries
  make clean
# Compile Ax25-apps
  echo -n "  *" 
  echo -e "${Green}t Compiling Ax25 apps ${Reset}"
  make
  echo -n -e "t  *" 
  if [ $? -ne 0 ]
   then
     echo -e "${Red}t Ax25-Apps Compile Error - see appserror.txt ${Reset}"
     exit 1
  fi
# Install Ax25-apps
  echo "  *" 
#  make  install >> appserror.txt 2>&1
  make  install
  echo -e "t  *" 
  if [ $? -ne 0 ]
  then
     echo -e "${Red} Ax25-Apps Install Error - see appserror.txt ${Reset}"
     exit 1
  else
     echo -e "${Green} Ax25-apps Installed ${Reset}"
     rm appserror.txt
  fi

# AX25-TOOLS
  cd /usr/local/src/ax25
  rm -fr /usr/local/src/ax25/ax25tools
  echo -e "${Green} AX.25 tools${Reset}"
  cd /usr/local/src/ax25/$TOOLS
#  
  echo -n -e "t  *" 
  echo -e "${Green}t Creating Makefile(s) to prepare apps compilation ${Reset}"
  ./autogen.sh
  ./configure > toolserror.txt 2>&1
# Clean old binaries
  make clean
# Compile Ax.25 tools
  echo -e "${Green}t Compiling AX.25 tools ${Reset}"
  echo -e "t  *" 
  make
  echo -e "t  *" 
    if [ $? -ne 0 ]
      then
        echo -e "${Red}t AX.25 tools Compile error - See toolserror.txt ${Reset}"
        exit 1
    fi
# Install Ax.25 tools
  echo "  *" 
  make install
  if [ $? -ne 0 ]
    then
      echo -e "${Red}t AX.25 tools Install error - See toolserror.txt ${Reset}"
      exit 1
    else
      echo -e "${Green} AX.25 tools Installed  ${Reset}"
      rm toolserror.txt
    fi

# Set permissions for /usr/local/sbin/ and /usr/local/bin
  cd /usr/local/sbin/
  chmod 4775 *
  cd /usr/local/bin/
  chmod 4775 *
  echo -e "t e[030;42m   Ax.25 Libraries, applications and tools were successfully rebuilt and installed${Reset}"
      echo -e "${Green} If this is a first install of AX.25 tools execute 'make installconf' from ax25tools directory${Reset}"
      echo -e "${Green} If this is a first install of AX.25 apps execute 'make installconf' from ax25apps directory${Reset}"
      echo -e "${Green} in order to create sample configuration files into /usr/local/etc/ax25/${Reset}"
  echo -e "t e[030;42m   Now it is time to compile and install AX.25 application programs${Reset}"
# (End of Script)

ip6tables firewall

Posted on22 September 20179 November 2019AuthorPD9QLeave a comment

Als je netwerk wordt klaar gemaakt voor ipv6 dan is het noodzakelijk ook een ipv6 firewall op te zetten.
Aangezien iptables alleen werkt met ipv4. Hier hebben we dus ip6tables voor nodig. Nou hier onder een klein voorbeeld van een simpele ip6tabels firewall (etje).

#!/bin/bash

# ip6tables single-host firewall script

# Define your command variables
ipt6="/sbin/ip6tables"

# Flush all rules and delete all chains
$ipt6 -F
$ipt6 -X

# Zero out all counters
$ipt6 -Z

# deny all incoming / Unrestricted outgoing

$ipt6 -P INPUT DROP
$ipt6 -P FORWARD DROP
$ipt6 -P OUTPUT ACCEPT

# Must allow loopback interface
$ipt6 -A INPUT -i lo -j ACCEPT

# Allow return connections
$ipt6 -A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT

# Accept all ICMP v6 packets
$ipt6 -A INPUT -p ipv6-icmp -j ACCEPT

# Allow DHCPv6 from LAN only
$ipt6 -A INPUT -m state --state NEW -m udp -p udp 
-s fe80::/10 --dport 546 -j ACCEPT

# Allow connections from SSH clients
$ipt6 -A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT

# Allow HTTP and HTTPS traffic
$ipt6 -A INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT
$ipt6 -A INPUT -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT

Klein maar doeltreffend.

Yo2tm ampr.org locatie map

Posted on22 September 20179 November 2019AuthorPD9QLeave a comment

Als je gebruik maakt van ampr-ripd kan je een optie meegeven zodat je call en locatie op de website van Yo2tm komen te staan.

B.v /usr/sbin/ampr-ripd -s -r -t 44 -i tunl0 -L pi1lap@jo11vn

http://yo2tm.ampr.org/ampr-map/

URONode ipv6 ready

Posted on21 September 20179 November 2019AuthorPD9QLeave a comment

URONode van Brian N1URO is ipv6 ready.
Dit wou ik natuurlijk even uitproberen. Nu was ik nog niet zo veel met ipv6 bezig geweest dus het was even uitzoeken hoe het moest. Het viel allemaal wel weer mee 🙂

Eerst moet de nieuwste versie van uronode geïnstalleerd worden (versie 2.7)
Verder moet er een regel aangepast worden in /etc/inetd.conf

Hier onder hebben we de (tcp6) toegevoegd. kill -HUP inetd

uronode  stream  tcp6,tcp     nowait  root    /usr/local/sbin/uronode  uronode

Maak je gebruikt van xinetd, dan ziet het er zo uit.

service uronode
{
        disable         = no
        socket_type     = stream
        protocol        = tcp
        flags           = IPv6
        user            = root
        server          = /usr/local/sbin/uronode
        wait            = no
        instances       = 20
}

Hier wordt de “flags = IPv6” toegevoegd.

Nu moest ik nog wat aanpassingen doen aan me router en firewall om het werkend te krijgen. Dit is natuurlijk voor een ieder verschillend.
Verder heb ik bij me hosting provider nog een AAAA record aan gemaakt in de DNS server zodat je dat langen ipv6 adres niet hoeft te onthouden.
Nu wordt het pi1lap.packet-radio.net mooi omgezet naar een ipv6 adres 2a02:f6d:2d:0:212:3fff:fe2b:c66f

telnet -6 pi1lap.packet-radio.net 3694
Trying 2a02:f6d:2d:0:212:3fff:fe2b:c66f...
Connected to pi1lap.packet-radio.net.
Escape character is '^]'.
(pi1lap.packet-radio.net:uronode) login: pd2lt
*** Password required! If you don't have a password please email pd2lt@packet-radio.net for a password you wish to use.
Password:
[URONode v2.7]
Welcome pd2lt to the pi1lap.packet-radio.net packet shell.
       _ _ _
 _ __ (_) | | __ _ _ __
| '_ | | | |/ _` | '_ 
| |_) | | | | (_| | |_) |
| .__/|_|_|_|__,_| .__/
|_|               |_|



SystemD - pd2lt@pi1lap.packet-radio.net:

Werkt dus uit de kunst.

https://sourceforge.net/projects/uronode/
https://uronode.n1uro.com/

Tcp Access Control Jnos

Posted on2 September 201723 November 2018AuthorPD9QLeave a comment

Jnos works with an access control list. Here a small example what you can put in there. There are things double in it, this is just an example what is possible

# ACCESS CONTROL
#===============
#Allow a specific Hostname (eerst ff wachten "now+0001" tot de dns online is)
at now+0001 "tcp access permit packet-radio.net all"
# Localhost (altijd handig)
tcp access permit 127.0.0.1 all
# Ampr.org (Compleet ampr.org netwerk)
tcp access permit 44.0.0.0/8 all
# Nederlands Ampr.org netwerk
tcp access permit 44.137/32 all
# Eigen Ampr.org netwerk
tcp access permit 44.137.31.64/27 all
# Lokaal netwerk
tcp access permit 192.168.1.0/24 all
# Lokaal netwerk met toegewezen poort
tcp access permit 192.168.1.175/24 25 110
# Friendjes :)
tcp access permit 82.176.45.213 all
# blacklist bad logins for 15 minutes (900 seconds)
mbox blacklist 900
# run expiry process every 20 minutes
tcp access expiry 20
# Acces deny (Bad boy)
tcp access deny 81.21.45.213
# Subnet access to ports 1 through 25,
tcp access permit 23.1.46/24 1 25
tcp clean

Xnet axudp link Jnos

Posted on2 September 201723 November 2018AuthorPD9Q2 Comments

The axudp link from xnet to jnos has caused a lot of problems.
But he is up and running … Here the explanation.

In the line “attach axudp xnet 256 192.168.1.112” (jnos) is the secret.
This must therefore “not” refer to the ip address of xnet like you
have indicated in ip.net at myip, but to the IP address of Linux itself.
So the ip address of (for example) eth0

Autoexec.nos (Jnos)

attach tun tun0 1500 0
#
ifconfig tun0 ipaddress 192.168.1.222
ifconfig tun0 netmask 255.255.255.0
ifconfig tun0 mtu 1500

shell ifconfig tun0 192.168.1.221 pointopoint 192.168.1.222 mtu 1500 up
pause 2
shell echo 1 >/proc/sys/net/ipv4/ip_forward
shell /usr/sbin/arp -i eth0 -Ds 192.168.1.222 eth0 pub

attach axudp xnet 256 192.168.1.112 (ip-adres Linux (eth0))
ifconfig xnet description "axip link xnet"

Eth0 (Linux)

eth0      Link encap:Ethernet  HWaddr 00:12:3f:2b:c6:6f
          inet addr:192.168.1.112  Bcast:192.168.1.255  Mask:255.255.255.0
          inet6 addr: fe80::212:3fff:fe2b:c66f/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:7844 errors:0 dropped:0 overruns:0 frame:0
          TX packets:7255 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:885500 (864.7 KiB)  TX bytes:1166950 (1.1 MiB)
          Interrupt:16

Ip.net (xnet)

IP.net
#        File: IP.NET
#       (X)Net IP Address
#
myip 192.168.1.201
subnet 192.168.1.0/24
#
# ARP entry for all received IP Frames
arp add 192.168.1.201 slip sdev6
#
#
# Default route
ipr add default SLIP 192.168.1.201
#
iproute add 192.168.1.0/24 slip 192.168.1.201

Autoboot.net (xnet)

attach IP0 axudp 0 1 192.168.1.222   (Ip-adres van Jnos) 

po 0 acon 1
po 0 baud 9600
po 0 dup 0
po 0 win 7
po 0 quality 0
po 0 name pd2lt
r bc ad 0 pd2lt
r bc ad 0 nodes
ro lo a 0 pd2lt-9 d