Japanese notation
はじめに
PowerShellでSSHアクセス
-
PowerShellの開始 (キー入力):
Win+x>a>はい
※Windows7以降標準搭載
ssh root@192.168.1.1
ssh root@192.168.1.1のショートカット作成(デスクトップ)
powershell
$DESKTOP = ([Environment]::GetFolderPath("Desktop") + "\192.168.1.1.lnk")
$WshShell = New-Object -comObject WScript.Shell
$Shortcut = $WshShell.CreateShortcut("$DESKTOP")
$Shortcut.TargetPath = "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe"
$Shortcut.Arguments = '-windowstyle hidden -ExecutionPolicy RemoteSigned "Start-Process ssh root@192.168.1.1"'
$Shortcut.IconLocation = "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe,0"
$Shortcut.WorkingDirectory = "."
$Shortcut.Save()
強制的に貼り付けyes
SSHログイン出来ない場合
known_hostsクリア
-
C:\Users\yourusername\.ssh\known_hosts※Windows隠しファイル
powershell
Clear-Content .ssh\known_hosts -Force
OpenSSHのインストール
※Windows 10 Fall Creators Update(1709)以降標準搭載
- 機能の確認
powershell
Get-WindowsCapability -Online | Where-Object Name -like 'OpenSSH*'
- 機能のインストール
powershell
Add-WindowsCapability -Online -Name OpenSSH.Server~~~~0.0.1.0
Dynamic frequency selection (DFS)
ZZDFS
DFSによるWi-Fi停波対策
仕様
iwinfoをトリガーにセット済みDFS用チャンネルへフォールバックし30分後元チャンネルに復旧する仕様
※固定チャンネルかつ160MHz利用で特に有効
- インターバル:更新間隔(初期値5分)
zzdfst
※インターバル変更はzzdfslを利用下さい(CRONから変更しても復元する)
DFS帯域確認
iw reg get
デバイス確認
{
#! /bin/sh
RADIO=`uci show wireless | grep "band='5g'" | cut -d'.' -f2 | awk '{ print $1 }'`
CHS=`echo ${RADIO} | wc -w`
if [ ${CHS} = 2 ];then
RADIO=`echo ${RADIO}| awk '{print $2}'`
fi
CH=`echo ${RADIO} | grep -o "[0-9]*"`
DEV=`iw dev | awk '/Interface/{print $2}' | grep ${CH}`
CHANNEL=$(uci get wireless.${RADIO}.channel)
echo -------------------
echo radio: ${RADIO}
echo device: ${DEV}
echo channel: ${CHANNEL}
echo -------------------
}
動作確認
構成
-
サービス
/etc/init.d/zzdfs -
スクリプト
/etc/config-software/zzdfs.sh
/usr/bin/zzdfsl
/usr/bin/zzdfst -
ログ
/var/log/syslog
設定
※サービス起動後、1分15秒スリープする
#! /bin/sh
cat << "EOF" > /etc/init.d/zzdfs
#!/bin/sh /etc/rc.common
INTERVAL=5 # check interval (min)
FB_BAND=40 # fallback band
FB_CHANNEL=36 # fallback channel
START=99
STOP=01
start() {
sleep 1m 15s
mkdir -p /tmp/config-software/
RADIO=`uci show wireless | grep "band='5g'" | cut -d'.' -f2 | awk '{ print $1 }'`
CHS=`echo ${RADIO} | wc -w`
if [ ${CHS} = 2 ];then
RADIO=`echo ${RADIO}| awk '{print $2}'`
fi
CH=`echo ${RADIO} | grep -o "[0-9]*"`
echo $(iw dev | awk '/Interface/{print $2}' | grep ${CH}) > /tmp/config-software/dev
echo ${INTERVAL} > /tmp/config-software/interval
echo ${RADIO} > /tmp/config-software/radio
echo ${FB_BAND} > /tmp/config-software/fb_band
echo ${FB_CHANNEL} > /tmp/config-software/fb_channel
logger "ZZDFS: Start"
sed -i "/zzdfs.sh/d" /etc/crontabs/root
echo "*/${INTERVAL} * * * * sh /etc/config-software/zzdfs.sh # ZZDFS" >> /etc/crontabs/root
service cron restart
exit 0
}
restart() {
exit 0
}
stop() {
logger "ZZDFS: Stop"
sed -i "/zzdfs.sh/d" /etc/crontabs/root
service cron restart
rm -rf /tmp/config-software
exit 0
}
EOF
chmod +x /etc/init.d/zzdfs
mkdir -p /etc/config-software/
cat << "EOF" > /etc/config-software/zzdfs.sh
#! /bin/sh
read DEV < /tmp/config-software/dev
iwinfo ${DEV} info 2>&1 | grep -q 'No such wireless device'
if [ $? = 0 ]; then
read RADIO < /tmp/config-software/radio
WIFI=`uci get wireless.${RADIO}.disabled`
if [ "${WIFI}" != 1 ]; then
logger "ZZDFS: ZZDFS_On"
sed -i "/zzdfs.sh/d" /etc/crontabs/root
/etc/init.d/cron restart
read INTERVAL < /tmp/config-software/interval
read FB_CHANNEL < /tmp/config-software/fb_channel
read FB_BAND < /tmp/config-software/fb_band
CHANNEL=$(uci get wireless.${RADIO}.channel | tee /tmp/config-software/channel)
HTMODE=$(uci get wireless.${RADIO}.htmode | tee /tmp/config-software/htmode)
MODE=`echo ${HTMODE} | grep -o "[A-Z]*"`
uci set wireless.${RADIO}.channel=${FB_CHANNEL}
uci set wireless.${RADIO}.htmode=${MODE}${FB_BAND}
uci commit wireless
wifi reload ${RADIO}
sleep 30m
logger "ZZDFS: ZZDFS_Off"
uci set wireless.${RADIO}.channel=${CHANNEL}
uci set wireless.${RADIO}.htmode=${HTMODE}
uci commit wireless
wifi reload ${RADIO}
sleep 1m 10s
echo "*/${INTERVAL} * * * * sh /etc/config-software/zzdfs.sh # ZZDFS" >> /etc/crontabs/root
service cron restart
else
logger "ZZDFS: ${RADIO}_Disable"
fi
fi
EOF
cat <<"EOF" > /usr/bin/zzdfst
#! /bin/sh
read INTERVAL < /tmp/config-software/interval
if [ -n "$1" ]; then
logger "ZZDFS: Interval_Change"
description_INTERVAL="$1"
sed -i -e "s/INTERVAL=${INTERVAL}/INTERVAL=${description_INTERVAL}/g" /etc/init.d/zzdfs
echo ${description_INTERVAL} > /tmp/config-software/interval
sed -i "/zzdfs.sh/d" /etc/crontabs/root
echo "*/${description_INTERVAL} * * * * sh /etc/config-software/zzdfs.sh # DFS ZZDFS" >> /etc/crontabs/root
service cron restart
echo " Set time: ${description_INTERVAL} min"
exit 0
else
while :
do
logger "ZZDFS: Interval_Change"
echo -e " \033[1;37mInterval time setting\033[0;39m"
echo -e " \033[1;37mNow Interval: ${INTERVAL} min\033[0;39m"
read -p " Interval time change (y or q): " input_CHANGE
if [ "${input_CHANGE}" = "q" ]; then
exit 0
fi
read -p " Interval time (min): " input_INTERVAL
read -p " Please select key [y or q]: " num
case "${num}" in
"y" ) sed -i -e "s/INTERVAL=${INTERVAL}/INTERVAL=${input_INTERVAL}/g" /etc/init.d/zzdfs
echo ${input_INTERVAL} > /tmp/config-software/interval
sed -i "/zzdfs.sh/d" /etc/crontabs/root
echo "*/${input_INTERVAL} * * * * sh /etc/config-software/zzdfs.sh # ZZDFS" >> /etc/crontabs/root
service cron restart
echo " Set time: ${input_INTERVAL} min"
exit 0 ;;
"q" ) exit 0 ;;
esac
done
fi
EOF
chmod +x /usr/bin/zzdfst
cat <<"EOF" > /usr/bin/zzdfsl
#!/bin/sh
echo -e "\033[1;36mZZDFS\033[0;39m"
echo -e "\033[1;36mLOG ------------------------------------\033[0;39m"
echo -e "\033[1;37mLOG:\033[0;39m"
exec logread | grep "ZZDFS" | awk '{ print $1,$2,$3,$4,$5,$9 }' | tail -n 10
echo -e "\033[1;37mDISABLED:\033[0;39m"
exec logread | grep "DFS->disabled" | awk '{ print $1,$2,$3,$4,$5,$11 }' | tail -n 1
echo -e "\033[1;37mENABLED:\033[0;39m"
exec logread | grep "DFS->ENABLED" | awk '{ print $1,$2,$3,$4,$5,$11 }' | tail -n 1
echo -e "\033[1;36mINFORMATION ----------------------------\033[0;39m"
read INTERVAL < /tmp/config-software/interval
echo -e "\033[1;37mInterval: ${INTERVAL}min\033[0;39m"
read FB_BAND < /tmp/config-software/fb_band
read FB_CHANNEL < /tmp/config-software/fb_channel
read RADIO < /tmp/config-software/radio
HTMODE=$(uci get wireless.${RADIO}.htmode)
MODE=`echo ${HTMODE} | grep -o "[A-Z]*"`
read RADIO < /tmp/config-software/radio
CHANNEL=$(uci get wireless.${RADIO}.channel)
HTMODE=$(uci get wireless.${RADIO}.htmode)
WIFI=`uci get wireless.${RADIO}.disabled` 2>/dev/null
if [ "${WIFI}" != 1 ]; then
echo -e "\033[1;37mWi-Fi 5G ${RADIO} ENABLE\033[0;39m"
else
echo -e "\033[1;37mWi-Fi 5G ${RADIO} DISABLE\033[0;39m"
fi
echo -e "\033[1;37mWi-Fi 5G Channel/ Htmode: ${CHANNEL}Ch/ ${HTMODE}\033[0;39m"
echo -e "\033[1;37mFALLBACK Channel/ Htmode: ${FB_CHANNEL}Ch/ ${MODE}${FB_BAND}\033[0;39m"
echo -e "\033[1;36m----------------------------------------\033[0;39m"
EOF
chmod +x /usr/bin/zzdfsl
service zzdfs enable
service zzdfs start
zzdfsl
サービス開始及び停止
# 有効
service zzdfs enable
# 開始
service zzdfs start
# 停止
service zzdfs stop
# 無効
service zzdfs disable
動作確認
zzdfsl
インターバル時間設定変更
- コマンド実行
zzdfst
サンプル
zzdfst 2
- CRON実行
サンプル
echo "00 00 * * * zzdfst 30" >> /etc/crontabs/root
echo "00 08 * * * zzdfst 2" >> /etc/crontabs/root
スクリプト速度測定
time sh /etc/config-software/zzdfs.sh
ログ
cat /var/log/syslog
削除
- ファイル
service zzdfs stop
service zzdfs disable
rm -rf /etc/config-software/zzdfs.sh
rm -rf /etc/init.d/zzdfs
rm -rf /usr/bin/zzdfsl
rm -rf /usr/bin/zzdfst
rm -rf /tmp/config-software/
旧版
logread トリガー版
ワンポイント:update不要なら最初に#を入力
opkg update
opkg install coreutils-date
#! /bin/sh
cat << "EOF" > /etc/init.d/zzdfs
#!/bin/sh /etc/rc.common
INTERVAL=5 # check interval (min)
FB_BAND=40 # fallback band
FB_CHANNEL=36 # fallback channel
START=99
STOP=01
start() {
sleep 1m 10s
logger "ZZDFS: Start"
mkdir -p /tmp/config-software/
RADIO=`uci show wireless | grep "band='5g'" | cut -d'.' -f2 | awk '{ print $1 }'`
CHS=`echo ${RADIO} | wc -w`
if [ ${CHS} = 2 ];then
RADIO=`echo ${RADIO}| awk '{print $2}'`
fi
CH=`echo ${RADIO} | grep -o "[0-9]*"`
echo $(iw dev | awk '/Interface/{print $2}' | grep ${CH}) > /tmp/config-software/dev
echo ${INTERVAL} > /tmp/config-software/interval
expr $((${INTERVAL} * 60)) > /tmp/config-software/schedule
echo ${RADIO} > /tmp/config-software/radio
echo $(uci get wireless.${RADIO}.channel) > /tmp/config-software/channel
echo $(uci get wireless.${RADIO}.htmode) > /tmp/config-software/htmode
echo ${FB_BAND} > /tmp/config-software/fb_band
echo ${FB_CHANNEL} > /tmp/config-software/fb_channel
sed -i "/zzdfs.sh/d" /etc/crontabs/root
echo "*/${INTERVAL} * * * * sh /etc/config-software/zzdfs.sh # ZZDFS" >> /etc/crontabs/root
service cron restart
exit 0
}
restart() {
exit 0
}
stop() {
logger "ZZDFS: Stop"
sed -i "/zzdfs.sh/d" /etc/crontabs/root
service cron restart
rm -rf /tmp/config-software
exit 0
}
EOF
chmod +x /etc/init.d/zzdfs
mkdir -p /etc/config-software/
cat << "EOF" > /etc/config-software/zzdfs.sh
#! /bin/sh
function _DISABLE() {
DATE=`date +%s`
DATEDD=`date +%s -d "${DATED}"`
TIME=`expr $((${DATE} - ${DATEDD}))`
read SCHEDULE < /tmp/config-software/schedule
if [ ${TIME} -lt ${SCHEDULE} ]; then
logger "ZZDFS: ZZDFS_ON"
echo $(uci get wireless.${RADIO}.channel) > /tmp/config-software/channel
HTMODE=$(uci get wireless.${RADIO}.htmode | tee /tmp/config-software/htmode)
read RADIO < /tmp/config-software/radio
read DFS_CHANNEL < /tmp/config-software/dfs_channel
MODE=`echo ${HTMODE} | grep -o "[A-Z]*"`
read DFS_BAND < /tmp/config-software/dfs_band
uci set wireless.${RADIO}.channel=${DFS_CHANNEL}
uci set wireless.${RADIO}.htmode=${MODE}${DFS_BAND}
uci commit wireless
wifi reload ${RADIO}
return 0
else
logger "ZZDFS: ZZDFS_ON_TIME_OVER"
return 0
fi
}
function _ENABLE() {
DATE=`date +%s`
DATEEE=`date +%s -d "${DATEE}"`
TIME=`expr $((${DATE} - ${DATEEE}))`
read SCHEDULE < /tmp/config-software/schedule
if [ ${TIME} -lt ${SCHEDULE} ]; then
logger "ZZDFS: ZZDFS_OFF"
read RADIO < /tmp/config-software/radio
read CHANNEL < /tmp/config-software/channel
read HTMODE < /tmp/config-software/htmode
uci set wireless.${RADIO}.channel=${CHANNEL}
uci set wireless.${RADIO}.htmode=${HTMODE}
uci commit wireless
wifi reload ${RADIO}
return 0
else
logger "ZZDFS: DZZDFS_OFF_TIME_OVER"
return 0
fi
}
DATED=`exec logread | grep "DFS->DISABLED" | awk '{ print $1,$2,$3,$4,$5 }' | tail -n 1`
DATEE=`exec logread | grep "DFS->ENABLED" | awk '{ print $1,$2,$3,$4,$5 }' | tail -n 1`
if [[ -n "${DATED}" && -z "${DATEE}" ]]; then
logger "ZZDFS: DISABLE_ON_ENABLE_OFF"
_DISABLE
elif [[ -n "${DATED}" && -n "${DATEE}" ]]; then
if [ "${DATEE}" -lt "${DATED}" ]; then
logger "ZZDFS: DISABLE_ON_ENABLE_ON"
_DISABLE
else
if [ "${DATED}" -lt "${DATEE}" ]; then
_ENABLE
logger "ZZDFS: ENABLE_ON_DISABLE_ON"
fi
fi
elif [ -n "${DATEE}" ]; then
logger "ZZDFS: ENABLE_ON"
_ENABLE
fi
EOF
cat <<"EOF" > /usr/bin/zzdfst
#! /bin/sh
read INTERVAL < /tmp/config-software/interval
if [ -n "$1" ]; then
logger "ZZDFS: Interval_Change"
description_INTERVAL="$1"
sed -i -e "s/INTERVAL=${INTERVAL}/INTERVAL=${description_INTERVAL}/g" /etc/init.d/zzdfs
echo ${description_INTERVAL} > /tmp/config-software/interval
expr $((${description_INTERVAL} * 60)) > /tmp/config-software/schedule
sed -i "/zzdfs.sh/d" /etc/crontabs/root
echo "*/${description_INTERVAL} * * * * sh /etc/config-software/zzdfs.sh # DFS ZZDFS" >> /etc/crontabs/root
service cron restart
echo " Set time: ${description_INTERVAL} min"
exit 0
else
while :
do
logger "ZZDFS: Interval_Change"
echo -e " \033[1;37mInterval time setting\033[0;39m"
echo -e " \033[1;37mNow Interval: ${INTERVAL} min\033[0;39m"
read -p " Interval time change (y or q): " input_CHANGE
if [ "${input_CHANGE}" = "q" ]; then
exit 0
fi
read -p " Interval time (min): " input_INTERVAL
read -p " Please select key [y or q]: " num
case "${num}" in
"y" ) sed -i -e "s/INTERVAL=${INTERVAL}/INTERVAL=${input_INTERVAL}/g" /etc/init.d/zzdfs
echo ${input_INTERVAL} > /tmp/config-software/interval
expr $((${input_INTERVAL} * 60)) > /tmp/config-software/schedule
sed -i "/zzdfs.sh/d" /etc/crontabs/root
echo "*/${input_INTERVAL} * * * * sh /etc/config-software/zzdfs.sh # ZZDFS" >> /etc/crontabs/root
service cron restart
echo " Set time: ${input_INTERVAL} min"
exit 0 ;;
"q" ) exit 0 ;;
esac
done
fi
EOF
chmod +x /usr/bin/zzdfst
cat <<"EOF" > /usr/bin/zzdfsl
#!/bin/sh
echo -e "\033[1;36mZZDFS\033[0;39m"
echo -e "\033[1;36mLOG ------------------------------------\033[0;39m"
echo -e "\033[1;37mLOG:\033[0;39m"
exec logread | grep "ZZDFS" | awk '{ print $1,$2,$3,$4,$5,$9 }' | tail -n 10
echo -e "\033[1;37mDISABLED:\033[0;39m"
exec logread | grep "DFS->DISABLED" | awk '{ print $1,$2,$3,$4,$5,$11 }' | tail -n 1
echo -e "\033[1;37mENABLED:\033[0;39m"
exec logread | grep "DFS->ENABLED" | awk '{ print $1,$2,$3,$4,$5,$11 }' | tail -n 1
echo -e "\033[1;36mINFORMATION ----------------------------\033[0;39m"
read INTERVAL < /tmp/config-software/interval
echo -e "\033[1;37mInterval: ${INTERVAL}min\033[0;39m"
read FB_BAND < /tmp/config-software/fb_band
read FB_CHANNEL < /tmp/config-software/fb_channel
read RADIO < /tmp/config-software/radio
HTMODE=$(uci get wireless.${RADIO}.htmode)
MODE=`echo ${HTMODE} | grep -o "[A-Z]*"`
read RADIO < /tmp/config-software/radio
CHANNEL=$(uci get wireless.${RADIO}.channel)
HTMODE=$(uci get wireless.${RADIO}.htmode)
WIFI=`uci get wireless.${RADIO}.disabled` 2>/dev/null
if [ "${WIFI}" != 1 ]; then
echo -e "\033[1;37mWi-Fi 5G ${RADIO} ENABLE\033[0;39m"
else
echo -e "\033[1;37mWi-Fi 5G ${RADIO} DISABLE\033[0;39m"
fi
echo -e "\033[1;37mWi-Fi 5G Channel/ Htmode: ${CHANNEL}Ch/ ${HTMODE}\033[0;39m"
echo -e "\033[1;37mFALLBACK Channel/ Htmode: ${FB_CHANNEL}Ch/ ${MODE}${FB_BAND}\033[0;39m"
echo -e "\033[1;36m----------------------------------------\033[0;39m"
EOF
chmod +x /usr/bin/zzdfsl
service zzdfs enable
service zzdfs start
zzdfsl
iw dev トリガー版
設定
#! /bin/sh
cat << "EOF" > /etc/init.d/dfs_check
#!/bin/sh /etc/rc.common
START=99
STOP=01
start() {
sed -i "/dfs_check.sh/d" /etc/crontabs/root
/etc/init.d/cron restart
logger "perimeter DFS Check ON"
echo "*/15 * * * * sh /etc/config-software/dfs_check.sh # DFS Check ON" >> /etc/crontabs/root
/etc/init.d/cron restart
exit 0
}
restart() {
exit 0
}
stop() {
logger "perimeter DFS Check OFF"
sed -i "/dfs_check.sh/d" /etc/crontabs/root
/etc/init.d/cron restart
exit 0
}
EOF
chmod +x /etc/init.d/dfs_check
mkdir -p /etc/config-software
cat << "EOF" > /etc/config-software/dfs_check.sh
#! /bin/sh
RADIO=`uci show wireless | grep "band='5g'" | cut -d'.' -f2 | awk '{ print $1 }'`
CHS=`echo ${RADIO} | wc -w`
if [ ${CHS} = 2 ];then
RADIO=`echo ${RADIO}| awk '{print $2}'`
fi
CH=`echo ${RADIO} | grep -o "[0-9]*"`
DEV=`iw dev | awk '/Interface/{print $2}' | grep ${CH}`
IW_CHANNEL=$(iw dev ${DEV} info | awk '/channel/{print $2}')
if [ -z ${IW_CHANNEL} ]; then
printf "Wifi restart because of DFS bug!\n"
wifi reload ${RADIO}
else
if [ $(uci get wireless.${RADIO}.channel) -ne ${IW_CHANNEL} ]; then
printf "Wifi restart because of channel!\n"
wifi reload ${RADIO}
fi
fi
EOF
chmod +x /etc/config-software/dfs_check.sh
service dfs_check enable
service dfs_check start
サービス開始及び停止
# 有効
service dfs_check enable
# 開始
service dfs_check start
# 停止
service dfs_check stop
# 無効
service dfs_check disable
削除
service dfs_check stop
service dfs_check disable
rm -rf /etc/config-software/dfs_check.sh
rm -rf /etc/init.d/dfs_check
他参考
アイロス DFS リセット
opkg update
opkg install airos-dfs-reset
USERNAME='root'
PASSWORD='password'
DEVICE='radio1' # radio0 or radio1
DAYTIME_LIMIT='08:00-23:00'
NET_IF="lan"
. /lib/functions/network.sh
network_flush_cache
network_get_ipaddr NET_ADDR "${NET_IF}"
uci add airos-dfs-reset.general=airos-dfs-reset
uci set airos-dfs-reset.general.interval='600'
uci set airos-dfs-reset.general.reset_sleep='120'
uci set airos-dfs-reset.${DEVICE}=device
uci set airos-dfs-reset.${DEVICE}.target=${NET_ADDR}
uci set airos-dfs-reset.${DEVICE}.username=${USERNAME}
uci set airos-dfs-reset.${DEVICE}.password=${PASSWORD}
uci set airos-dfs-reset.${DEVICE}.daytime_limit=${DAYTIME_LIMIT}
uci commit airos-dfs-reset
iwchanによるWi-Fi自動チャンネル選択
- iwchanによるWi-Fi自動チャンネル選択
- これはドキュメントの古いリビジョンです
[解決済み] Iwchan.awk で Wi-Fi 情報を表示する
URL="https://openwrt.org/_export/code/docs/guide-user/network/wifi/iwchan"
uclient-fetch -O /root/iwchan.awk "${URL}?codeblock=0"
uclient-fetch -O /root/iwchan.sh "${URL}?codeblock=1"
cat << EOF >> /etc/sysupgrade.conf
/root
EOF
cat << "EOF" >> /etc/crontabs/root
0 4 * * * . /root/iwchan.sh
EOF
/etc/init.d/cron restart
Guest Wi-Fi (QR code)
Guest Wi-Fi
ゲストのサービス化 (QRコード発行とランダムパスワード)
service guest_wifi start
service guest_wifi stop
The URI is defined by [7] and formatted by the WIFI-qr ABNF rule:
※つまるところWPA3は無い
qrencode
WIFI-qr = “WIFI:” [type “;”] [trdisable “;”] ssid “;” [hidden “;”] [id “;”] [password “;”] [publickey “;”] “;”
type = “T:” *(unreserved) ; security type
trdisable = “R:” *(HEXDIG) ; Transition Disable value
ssid = “S:” *(printable / pct-encoded) ; SSID of the network
hidden = “H:true” ; when present, indicates a hidden (stealth) SSID is used
id = “I:” *(printable / pct-encoded) ; UTF-8 encoded password identifier, present if the password
has an SAE password identifier
password = “P:” *(printable / pct-encoded) ; password, present for password-based authentication
public-key = “K:” *PKCHAR ; DER of ASN.1 SubjectPublicKeyInfo in compressed form and encoded in
“base64” as per [6], present when the network supports SAE-PK, else absent
printable = %x20-3a / %x3c-7e ; semi-colon excluded
PKCHAR = ALPHA / DIGIT / %x2b / %x2f / %x3d
#!/bin/sh
opkg update
opkg install bash
opkg install qrencode
opkg install at
cat << "EOF" > /etc/init.d/guest_wifi
#!/bin/bash /etc/rc.common
TYPE="WPA2"
TRDISABLE="1"
SSID_F="お客様"
SSID_B="_optout_nomap"
ENCRYPTION="psk-mixed"
TIMEOUT="60"
INTERFACE="lan"
BGCOLOR="0000FF"
echo "<body bgcolor=#${BGCOLOR}>" > /tmp/.guest_bgcolor
START=99
STOP=01
start() {
DEL=`atq | awk '{ print $1 }' | sed -n 1p`
if [ ${DEL} ]; then
atrm ${DEL}
fi
echo ${TYPE} > /tmp/.guest_type
echo "service guest_wifi stop" | at now +${TIMEOUT} minutes
echo "<font color="yellow">Stops after "${TIMEOUT}" min.</font>" > /tmp/.guest_comment1
TIMEOUT_SSID="${SSID_F}@`atq | awk '{ print $5 }' | cut -d':' -f1,2`${SSID_B}"
echo ${TIMEOUT_SSID} > /tmp/.guest_ssid
RANDOM_PASSWORD=`head /dev/urandom | env LC_CTYPE=C tr -cd 'a-fA-F0-9'| cut -b -8`
echo ${RANDOM_PASSWORD} > /tmp/.guest_password
qrencode --foreground=${RANDOM_PASSWORD:0:6} --inline --type=SVG --output=- --size 3 "WIFI:S:${TIMEOUT_SSID};T:${TYPE};R:${TRDISABLE};P:${RANDOM_PASSWORD};;" > /tmp/.guest_qr
echo "Please disable the service don't use guest Wi-Fi." > /tmp/.guest_comment2
WIFI_DEV="$(uci get wireless.@wifi-iface[0].device)"
uci -q delete wireless.guest
uci set wireless.guest="wifi-iface"
uci set wireless.guest.device="${WIFI_DEV}"
uci set wireless.guest.mode="ap"
uci set wireless.guest.network="${INTERFACE}"
uci set wireless.guest.ssid="${TIMEOUT_SSID}"
uci set wireless.guest.encryption="${ENCRYPTION}"
uci set wireless.guest.key="${RANDOM_PASSWORD}"
uci set wireless.guest.macaddr="random"
uci set wireless.guest.multicast_to_unicast_all='1'
uci set wireless.guest.isolate='1'
uci delete wireless.${WIFI_DEV}.disabled
uci commit wireless
wifi reload
logger "perimeter Wi-Fi Guest ON"
exit 0
}
restart() {
exit 0
}
stop() {
DEL=`atq | awk '{ print $1 }' | sed -n 1p`
if [ ${DEL} ]; then
atrm ${DEL}
fi
echo "<font color="red">Out of service.</font>" > /tmp/.guest_comment1
qrencode --foreground=${BGCOLOR} --background=808080 --inline --type=SVG --output=- --size 3 "WIFI:S:Out of service.;T:${TYPE};R:${TRDISABLE};P:Out of service.;;" > /tmp/.guest_qr
echo "Please enable the service to use guest Wi-Fi." > /tmp/.guest_comment2
echo > /tmp/.guest_type
echo > /tmp/.guest_ssid
echo > /tmp/.guest_password
uci -q delete wireless.guest
uci commit wireless
wifi reload
logger "perimeter Guest Wi-Fi OFF"
exit 0
}
EOF
chmod +x /etc/init.d/guest_wifi
cat << "EOF" > /www/cgi-bin/guest
#!/bin/bash
SSID=$(</tmp/.guest_ssid )
QR=$(</tmp/.guest_qr)
PASSWORD=$(</tmp/.guest_password)
COMMENT1=$(</tmp/.guest_comment1)
COMMENT2=$(</tmp/.guest_comment2)
BGCOLOR=$(</tmp/.guest_bgcolor)
printf "%s\n" "Content-Type: text/html"
printf "%s\n" ""
printf "%s\n" "<?xml version="1.0" encoding="utf-8"?>"
printf "%s\n" "<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">"
printf "%s\n" "<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">"
printf "%s\n" "<head>"
printf "%s\n" "<title>Guest Wi-Fi</title>"
printf "%s\n" "<meta charset="UTF-8" name="viewport" content="width=device-width, height=device-height, initial-scale=1.0, minimum-scale=1.0">"
printf "%s\n" "<meta http-equiv="Cache-Control" content="no-cache, no-store, must-revalidate">"
printf "%s\n" "<meta http-equiv="Pragma" content="no-cache">"
printf "%s\n" "<meta http-equiv="Expires" content="0">"
printf "%s\n" "</head>"
printf "%s\n" "${BGCOLOR}"
printf "%s\n" "<div style='text-align:center;color:#fff;font-family:UnitRoundedOT,Helvetica Neue,Helvetica,Arial,sans-serif;font-size:30px;font-weight:500;'>"
printf "%s\n" "<h1>Guest Wi-Fi</h1>"
printf "%s\n" "<h5>${COMMENT1}<br />${SSID}<br />${PASSWORD}</h5>"
printf "%s\n" "${QR}"
printf "%s\n" "<h5>${COMMENT2}</h5>"
printf "%s\n" "</div>"
printf "%s\n" "</body>"
printf "%s\n" "</html>"
EOF
chmod +x /www/cgi-bin/guest
cat << "EOF" > /www/guest.html
<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http-equiv="Cache-Control" content="no-cache, no-store, must-revalidate" />
<meta http-equiv="Pragma" content="no-cache" />
<meta http-equiv="Expires" content="0" />
<meta http-equiv="refresh" content="0; URL=cgi-bin/guest" />
</head>
<body>
<a href="cgi-bin/guest/style.css?ver=240313" rel="stylesheet">Guest Wi-Fi</a>
</body>
</html>
EOF
chmod +r /www/guest.html
echo -e " \033[1;37mIf a white QR code appears, it's a miracle.\033[0;39m"
service guest_wifi start
以下仕様
- ucitのアラート
- atのアラート
- 再起動でatのタスクが消える (OpenWrt仕様)
- 強固なセキュリティが必要な場合は
lanを別系統用意するのが良いだろう
ゲスト Wi-Fi の基本
旧版
#!/bin/sh
opkg update
opkg install bash
opkg install openssl-util
opkg install qrencode
opkg install at
opkg install iconv
cat << "EOF" > /etc/init.d/guest_wifi
#!/bin/bash /etc/rc.common
TYPE="WPA2"
TRDISABLE="1"
SSID_F="げすと"
SSID_B="_optout_nomap"
ENCRYPTION="psk-mixed"
TIMEOUT="60"
INTERFACE="lan"
START=99
STOP=01
start() {
DEL=`atq | awk '{ print $1 }' | sed -n 1p`
if [ ${DEL} ]; then
atrm ${DEL}
fi
echo "Please disable the service don't use guest Wi-Fi." > /root/.guest_comment1
echo ${TYPE} > /root/.guest_type
echo "service guest_wifi stop" | at now +${TIMEOUT} minutes
TIMEOUT_SSID=""${SSID_F}"@`atq | awk '{ print $5 }' | cut -d':' -f1,2`${SSID_B}"
echo ${TIMEOUT_SSID} > /root/.guest_ssid
RANDOM_PASSWORD=`openssl rand -base64 6`
echo $RANDOM_PASSWORD > /root/.guest_password
FOREGROUND=`openssl rand -hex 3`
qrencode --foreground=${FOREGROUND} --inline --type=SVG --output=- --size 4 "WIFI:S:${TIMEOUT_SSID};T:${TYPE};R:${TRDISABLE};P:${RANDOM_PASSWORD};;" > /root/.guest_qr
echo "<font color="yellow">Stops after "${TIMEOUT}" min.</font>" > /root/.guest_comment2
WIFI_DEV="$(uci get wireless.@wifi-iface[0].device)"
uci -q delete wireless.guest
uci set wireless.guest="wifi-iface"
uci set wireless.guest.device="${WIFI_DEV}"
uci set wireless.guest.mode="ap"
uci set wireless.guest.network="${INTERFACE}"
uci set wireless.guest.ssid="${TIMEOUT_SSID}"
uci set wireless.guest.encryption="${ENCRYPTION}"
uci set wireless.guest.key="${RANDOM_PASSWORD}"
uci set wireless.guest.macaddr="random"
uci set wireless.guest.multicast_to_unicast_all='1'
uci set wireless.guest.isolate='1'
uci delete wireless.${WIFI_DEV}.disabled
uci commit wireless
wifi reload
logger "perimeter Wi-Fi Guest ON"
exit 0
}
restart() {
exit 0
}
stop() {
DEL=`atq | awk '{ print $1 }' | sed -n 1p`
if [ ${DEL} ]; then
atrm ${DEL}
fi
echo "Please enable the service to use guest Wi-Fi." > /root/.guest_comment1
qrencode --foreground="808080" --background="0000FF" --inline --type=SVG --output=- --size 4 "WIFI:S:Out of service.;T:${TYPE};R:${TRDISABLE};P:Out of service.;;" > /root/.guest_qr
echo "<font color="red">Out of service.</font>" > /root/.guest_comment2
echo > /root/.guest_type
echo > /root/.guest_ssid
echo > /root/.guest_password
uci -q delete wireless.guest
uci commit wireless
wifi reload
logger "perimeter Guest Wi-Fi OFF"
exit 0
}
EOF
chmod +x /etc/init.d/guest_wifi
cat << "EOF" > /www/cgi-bin/guest
#!/bin/bash
#SSID=$(</root/.guest_ssid )
SSID=$(iconv -c -f CP932 -t SHIFT-JIS </root/.guest_ssid )
QR=$(</root/.guest_qr)
PASSWORD=$(</root/.guest_password)
COMMENT1=$(</root/.guest_comment1)
COMMENT2=$(</root/.guest_comment2)
echo "Content-Type: text/html"
echo ""
echo "<?xml version="1.0" encoding="utf-8"?>"
echo "<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">"
echo '<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="ja" lang="ja">'
echo "<head>"
echo "<title>Guest Wi-Fi</title>"
echo '<meta charset="UTF-8" name="viewport" content="width=device-width, height=device-height, initial-scale=1.0, minimum-scale=1.0">'
echo '<meta http-equiv="Cache-Control" content="no-cache, no-store, must-revalidate">'
echo '<meta http-equiv="Pragma" content="no-cache">'
echo '<meta http-equiv="Expires" content="0">'
echo "</head>"
echo '<body bgcolor="blue">'
echo "<div style='text-align:center;color:#fff;font-family:UnitRoundedOT,Helvetica Neue,Helvetica,Arial,sans-serif;font-size:28px;font-weight:500;'>"
echo "<h1>Guest Wi-Fi</h1>"
echo "<p><font>${COMMENT1}</font></p>"
echo "<p>${QR}</p>"
echo "<p>${COMMENT2}</p>"
echo "<p>${SSID}</p>"
echo "<p>${PASSWORD}</p>"
echo "</div>"
echo "</body>"
echo "</html>"
EOF
chmod +x /www/cgi-bin/guest
cat << "EOF" > /www/guest.html
<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="ja" lang="ja">
<head>
<meta http-equiv="Cache-Control" content="no-cache, no-store, must-revalidate" />
<meta http-equiv="Pragma" content="no-cache" />
<meta http-equiv="Expires" content="0" />
<meta http-equiv="refresh" content="0; URL=cgi-bin/guest" />
</head>
<body>
<a href="cgi-bin/guest/style.css?ver=240313" rel="stylesheet">Guest Wi-Fi</a>
</body>
</html>
EOF
chmod +r /www/guest.html
echo -e " \033[1;37mIf a white QR code appears, it's a miracle.\033[0;39m"
service guest_wifi start
以下仕様
- ucitのアラート
- atのアラート
- 再起動でatのタスクが消える (OpenWrt仕様)
- SSIDの日本語表示は文字コード変換サンプル
※(文字化けする場合: iconv -c -f CP932 -t SHIFT-JIS を変更) - 強固なセキュリティが必要な場合は
lanを別系統用意するのが良いだろう
ゲスト Wi-Fi の基本
サービス開始及び再起動、停止
192.168.1.1/cgi-bin/luci/admin/system/startup
# 有効
service guest_wifi enable
# 開始
service guest_wifi start
# 停止
service guest_wifi stop
# 無効
service guest_wifi disable
at ジョブ確認
# 保留中ジョブ確認
atq
# 保留中ジョブ削除
JOB="番号"
atrm ${JOB}
※他でat commandを利用している場合、最後のジョブを削除してしまう仕様
QRコード
- Webページ
192.168.1.1/guest.html
※QRが薄く認識しない場合はサービスを再度スタートさせる
QRコードスキャナー
Windows11用
-
バーコード マネージャー for Windows
※画面上のQRコードをクリップし接続可能
削除
service guest_wifi stop
service guest_wifi disable
rm -rf /etc/init.d/guest_wifi
rm -rf /www/cgi-bin/guest
rm -rf /www/guest.html
Target Wake Time (TWT)
Target Wake Time (TWT)
※Only WiFi6 (ax)
参考:Linux Hostpad
- he_twt_required: Whether TWT is required
0 = not required (default)
1 = required
he_twt_required=0 or 1 - he_twt_responder: Whether TWT (HE) responder is enabled
0 = disabled
1 = enabled if supported by the driver (default)
he_twt_responder=0 or 1
ON
sed -i -e "s/he_twt_required:0/he_twt_required:1/g" /lib/netifd/wireless/mac80211.sh
uci add_list wireless.radio0.hostapd_options='he_twt_responder=1'
uci add_list wireless.radio1.hostapd_options='he_twt_responder=1'
uci add_list wireless.radio2.hostapd_options='he_twt_responder=1'
uci commit wireless
wifi
OFF
sed -i -e "s/he_twt_required:1/he_twt_required:0/g" /lib/netifd/wireless/mac80211.sh
uci del_list wireless.radio0.hostapd_options='he_twt_responder=1'
uci del_list wireless.radio1.hostapd_options='he_twt_responder=1'
uci del_list wireless.radio2.hostapd_options='he_twt_responder=1'
uci commit wireless
wifi
参考資料(感謝
)
-
QR コードハック
面白いサイトだなと思ったら、この方がqrencodeの製作者でした
あとがき
DFSはなかなか調整が難しい
所有のデバイスは5Gで2つの帯域が使えるので、3バンド専用のDFS対策スクリプトを作ってみようかな
1つをW52で固定しておいてバンドステアリングして、DFSイネーブルのログを拾ったら初期値バンドに誘導復帰される感じ
これなら、途切れる事も無いし、再起動時もすぐ繋がる
2Gとのバンドステアリングでも良いかも、これなら汎用的だ