242 lines
6.6 KiB
Markdown
242 lines
6.6 KiB
Markdown
# Network Manager
|
|
|
|
```TODO : INCOMPLETE```
|
|
|
|
Setup overall networking. This is focused on ethernet/WiFi as an internet connection.
|
|
|
|
## Inspiration / Further Reading
|
|
|
|
- [https://developer.gnome.org/NetworkManager/stable/NetworkManager.html](https://developer.gnome.org/NetworkManager/stable/NetworkManager.html)
|
|
- [https://developer.gnome.org/NetworkManager/stable/NetworkManager.conf.html](https://developer.gnome.org/NetworkManager/stable/NetworkManager.conf.html)
|
|
- [https://developer.gnome.org/NetworkManager/stable/nmcli.html](https://developer.gnome.org/NetworkManager/stable/nmcli.html)
|
|
- [https://developer.gnome.org/NetworkManager/stable/nmcli-examples.html](https://developer.gnome.org/NetworkManager/stable/nmcli-examples.html)
|
|
|
|
## Overview
|
|
|
|
Setup the base NetworkManager config/networking. This will help with making the Internet side of networking more dynamic and responsive to devices being added/removed.
|
|
|
|
The author assumes LAN/Ethernet > WiFi > 3G/LTE for connection priority. (*Note: NetworkManager assumes this too*)
|
|
|
|
## Install / Enable
|
|
|
|
``` bash
|
|
|
|
apt update
|
|
# Install additional deps
|
|
apt install ebtables ipset
|
|
# Install + add-ons
|
|
apt install network-manager \
|
|
network-manager-openvpn network-manager-pptp
|
|
systemctl enable NetworkManager # Enable the service
|
|
systemctl start NetworkManager # Start the service
|
|
|
|
```
|
|
|
|
## Disable Stock Networking
|
|
|
|
Edit ```/etc/network/interfaces``` and make sure eth0 directives aren't present.
|
|
|
|
Reboot after above cleanup of interfaces file.
|
|
|
|
## ProTip
|
|
|
|
```nmtui``` can be used for an ncurses graphical interface for NetworkManager
|
|
|
|
## Set Hostname
|
|
|
|
``` bash
|
|
|
|
nmcli general hostname [hostname] # Additional parm sets hostname
|
|
systemctl reboot # Reboot to pickup the change
|
|
|
|
```
|
|
|
|
## Get Status
|
|
|
|
Some commands that help getting the status of NetworkManager
|
|
|
|
- ```nmcli networking connectivity```
|
|
- ```nmcli monitor```
|
|
- ```nmcli device monitor```
|
|
- ```nmcli connection monitor```
|
|
|
|
## Enable / Disable ALL
|
|
|
|
Handy if you want to shut down *all* networking for some reason
|
|
|
|
```nmcli networking on|off```
|
|
|
|
## Radio Control
|
|
|
|
Control WiFi / GSM radios
|
|
|
|
### Wifi
|
|
|
|
```nmcli radio wifi [on|off]```
|
|
|
|
### 3G/LTE
|
|
|
|
```nmcli radio wwan [on|off]```
|
|
|
|
## Connection / Device Related
|
|
|
|
Some useful commands for adjusting connection/device status
|
|
|
|
- ```nmcli connection reload # Reload any changes / updates (this isn't automagic by default)```
|
|
- ```nmcli connection show --active```
|
|
- ```nmcli connection up [id]```
|
|
- ```nmcli connection down [id]```
|
|
- ```nmcli device status```
|
|
- ```nmcli device show [ifname]```
|
|
- ```nmcli device connect [ifname]```
|
|
- ```nmcli device disconnect [ifname]```
|
|
|
|
## Disable Orange Pi Zero Internal WiFi
|
|
|
|
If you're using an Orange Pi Zero, the internal WiFi adapter is unstable at best. The following will disable the adapter.
|
|
|
|
``` bash
|
|
|
|
nmcli device status # Verify the internal WiFi is shwoing as wlan0
|
|
nmcli device disconnect wlan0 # Run this if it shows as connected
|
|
nmcli device set wlan0 autoconnect no
|
|
|
|
```
|
|
|
|
## Setup Networks
|
|
|
|
Some configuration via ```nmcli``` for various networks/interfaces/devices that may or may not be in use at any given moment. These commands just make NetworkManager aware of the overall topology and connections. Routing, firewall and more is setup later.
|
|
|
|
*Note: Add autoconnect false if you don't want the connection auto started if a device is present*
|
|
|
|
### Clear Existing
|
|
|
|
Run ```nmcli connection show``` to get a list of active network connections. We will want to remove all of these.
|
|
|
|
Run ```nmcli connection del [UUID]``` for each UUID listed in the previous commands output.
|
|
|
|
### Management Ethernet
|
|
|
|
*Note: It's assumed the on-board ethernet adapter will be used for management and an EXTERNAL USB Ethernet adapter used for WAN (if needed)*
|
|
|
|
``` bash
|
|
|
|
# Management via usb ethernet adapter
|
|
# includes network sharing
|
|
nmcli connection add save yes \
|
|
type ethernet \
|
|
con-name mgmt \
|
|
ifname eth0 \
|
|
-- \
|
|
ipv4.method shared \
|
|
ipv4.addr 172.16.16.16/24 \
|
|
ipv6.method ignore
|
|
nmcli device set eth0 autoconnect yes
|
|
|
|
```
|
|
|
|
### WiFi 2.4ghz Access Point
|
|
|
|
*Note: You can use ```802-11-wireless.channel #``` in the below command to force a channel to be used*
|
|
|
|
``` bash
|
|
|
|
# Get the ifname of the wifi adapter with `nmcli dev show`
|
|
|
|
# HostAP mode (2.4ghz / wireless access point)
|
|
# includes network sharing
|
|
nmcli connection add save yes \
|
|
type wifi \
|
|
con-name wifi-ap-24 \
|
|
ifname [wifi iface] \
|
|
ssid 24.lolipop.domain.tld \
|
|
-- \
|
|
ipv4.method shared \
|
|
ipv4.addresses 172.17.17.17/24 \
|
|
ipv6.method ignore \
|
|
802-11-wireless.mode ap \
|
|
802-11-wireless.band bg \
|
|
802-11-wireless.channel 11 \
|
|
802-11-wireless-security.key-mgmt wpa-psk \
|
|
802-11-wireless-security.proto rsn \
|
|
802-11-wireless-security.psk MyPassword
|
|
|
|
```
|
|
|
|
### WiFi 5ghz Access Point
|
|
|
|
*Note: You can use ```802-11-wireless.channel #``` in the below command to force a channel to be used*
|
|
|
|
``` bash
|
|
|
|
# Get the ifname of the wifi adapter with `nmcli dev show`
|
|
|
|
# HostAP mode (5ghz / wireless access point)
|
|
# includes network sharing
|
|
nmcli connection add save yes \
|
|
type wifi \
|
|
con-name wifi-ap-50 \
|
|
ifname [wifi iface] \
|
|
ssid 50.lolipop.domain.tld \
|
|
-- \
|
|
ipv4.method shared \
|
|
ipv4.addresses 172.18.18.18/24 \
|
|
ipv6.method ignore \
|
|
802-11-wireless.mode ap \
|
|
802-11-wireless.band a \
|
|
802-11-wireless.channel 40 \
|
|
802-11-wireless-security.key-mgmt wpa-psk \
|
|
802-11-wireless-security.proto rsn \
|
|
802-11-wireless-security.psk MyPassword
|
|
|
|
```
|
|
|
|
### WAN - Ethernet (External USB Adapter)
|
|
|
|
*Note: It's assumed you'll be using a USB Ethernet adapter for WAN if needed. This matches the overall use of USB devices that are plugged/unplugged as necessary for WAN needs*
|
|
|
|
``` bash
|
|
|
|
# WAN via ethernet cable
|
|
nmcli connection add save yes \
|
|
type ethernet \
|
|
con-name wan-eth \
|
|
ifname eth1 \
|
|
-- \
|
|
ipv4.method auto \
|
|
ipv6.method auto
|
|
nmcli device set eth1 autoconnect yes
|
|
|
|
```
|
|
|
|
### WAN - WiFi Bridge
|
|
|
|
``` bash
|
|
|
|
# Get list of access points in the area
|
|
nmcli dev wifi list
|
|
|
|
# Get the ifname of the client wifi adapter with `nmcli dev show`
|
|
|
|
# WAN via Client mode (wireless bridge)
|
|
# Note the ASK flag so you're prompted to enter user/pass type infos
|
|
nmcli connection add save yes \
|
|
type wifi \
|
|
con-name wan-wifi \
|
|
ifname [wifi iface] \
|
|
ssid [ssidFromAbove] \
|
|
-- \
|
|
wifi-sec.key-mgmt wpa-psk \
|
|
wifi-sec.psk [wpaPassword]
|
|
nmcli device set [wifi iface] autoconnect yes
|
|
|
|
```
|
|
|
|
### WAN - GSM (3G/LTE)
|
|
|
|
See [Modem Manager](modem_manager.md) for details on integrating a 3G/LTE modem into the networking setup.
|
|
|
|
## Auto Config
|
|
|
|
Once the above is setup Network Manager should handle the auto configuration of your WAN/LAN/Modems/etc for you.
|