I have been trying to configure the AMPRtunnel for a while without success. Could someone please point me to the right direction.
I am running Debian 11 with public IP. I have configured the public IP in the AMPR portal as gateway.
I am trying to follow this document https://wiki.ampr.org/wiki/Ubuntu_Linux_Gateway_Example
When I try to run find_password.sh in ampr-ripd-2.4, I am stopped at Waiting for RIPv2 broadcasts... and never retrieve a password.
Here is what I have done so far.
in /etc/network/interfaces, I added
auto ens3:1
iface ens3:1 inet static
address 44.26.0.168
netmask 255.255.255.248
Then I created ipip tunnel using following commands
ip tunnel add ampr0 mode ipip local 209.141.42.9 ttl 255
ip link set dev ampr0 up
ifconfig ampr0 multicast
ip rule add to 44.0.0.0/8 table 44 priority 44
ip rule add from 44.26.0.168/29 table 44 priority 45
ip route add default dev ampr0 via 169.228.34.84 onlink table 44
ip route add 44.26.0.168/29 dev ens3 table 44
Then, I run ampr-ripd -d -v -i ens3 to get the password in order to plug into lat command
ampr-ripd -s -i ampr0 -a 209.141.42.9-t 44 -p <SecretPassword>
However, the find_password.sh stopped at waiting for ripv2 broadcast. Here is the logs for command
Using metric 0 for routes.
Using TCP window 840 for routes.
Using gateway 209.141.42.1 for direct 44net endpoints via interface ens3.
Waiting for RIPv2 broadcasts...
Any idea on what am I doing wrong?
Thanks
Kun
Hi,
As I have heard, it is not allowed for ARDC to create route objects in
ARIN's IRR and for that reason, RADb is used.
I am just curious why this is the case?
(It seems in general, creating IRR objects is possible via IRR-online [1])
Best,
Nick
[1] https://www.arin.net/resources/manage/irr/userguide/
Hi list,
I hope I am not spamming this list; I would like to express my sinciere
gratitude to AMPR (everyone who made and makes 44/8 for hams possible)
and especially to Chris who helped me a lot in the process for a BGP
routable network.
Thank you for gifting me an enormous time sink.
It was always a dream of mine to connect directly to the "core" of the
internet, play around with BGP and, in some ways, completely independent
of an ISP. I had given up this dream long time ago until recently my
friend told me about AMPR. It's a privilege that hams are given the
opportunity to experiment with something that would otherwise be out of
reach for hobbyists, similar as radio would be without ham. (while the
same with IPv6 is 'somewhat' still accessible, /24 prefixes meanwhile go
for 15k and since this is the smallest for anything interesting [BGP,
AS], it's just out of reach for experimentation)
There are so many exciting things to play with. Subnetting the /24,
using /30 or /31 networks for example is something I knew in theory but
never really applied in that intensity because with RFC1918, there is no
need. BGP I knew in theory but setting up bird and seeing how a session
is established, a prefix is announced and watching via looking glass how
it propagates through the global interconnected network brings this to a
whole new level.
I am currently trying to implement a "real" multi homing setup. I have
two cheap consumer grade internet links: DSL and 5G. The latter one is
CGNAT. Normally there is no way to make anything useful out of this
(other than having a manual backup connection). For the first line, I
created an ipip tunnel, for the second one a wireguard (due to CGNAT)
and connect a third network over them. This network is now accessible
straight from the internet on two lines. Exactly as the internet was
originally conceived, the packets can now flow on either connection!
In next steps I would like to set up OSPF (or maybe iBGP?) and possibly
adding more tunnels to create realistic routing networks.
And further down, I'd like to see if I can find something interesting to
implement anycast. Maybe some spectrum sensing via RTL2832 at two
different locations accessible via the same address? Let me know if you
have any good ideas.
Nick, KM6RDV
This may be beyond the scope of some since I mentioned JNOS, but the
basics should be the same. I have been running the n2nov.ampr.org JNOS
system since the late 90s, but recently any emails that I send to GMAIL
and some other services are being rejected. The same happens when any
email is sent to me from those same commercial SMTP services. This is
all boiling down to the modern SMTP security functions are not part of
JNOS. It has been mentioned that I should use the Postfix on the CentOS
server that it sits on as it is already servicing various accounts that
I maintain for clients and amateur radio groups. If someone else is
using this arrangement already, I would like to see how you are doing it
and what the limitations are. I believe the Santa Clara group was going
to implement something like this a few years ago. Thanks in advance.
--
de N2NOV
n2nov(a)n2nov.ampr.org
n2nov(a)n2nov.#rich.ny.usa.noam
The upgrade to a 10Gb/s link to the gateway machine went ahead at 10:30pm last night (UK time), 2:30pm Pacific.
I am pleased to report that the upgrade was successful, we also took the opportunity to reboot the machine: previously it has been difficult to reboot the gateway machine as it messed up the switch it was connected to (the switch was configured with mirrored ports for the CAIDA telescope and a reboot stopped it working). The gateway machine is now connected to a different switch and I can reboot it without it causing any detrimental effects.
You can see the transition here: http://mrtg.portal.ampr.org
73,
Chris - G1FEF
—
ARDC IT Director
Web: https://www.ardc.net
FYI
The gateway machine at UCSD has been under a sustained DDOS attack now for over 24 hours, so if anyone is seeing heavy packet loss through the gateway, that’s why. The 1Gb/s interface is max’d out. You can view the interface stats here:
http://mrtg.portal.ampr.org
73,
Chris - G1FEF
—
ARDC IT Director
Web: https://www.ardc.net
All,
I see a slight increase in traffic inbound toward my /24 at my tunl0 interface (0.6 kbps to 1.1 kbps) - most still appearing to be blocked by my firewall. From netflow data, the majority of this traffic appears to be: TCP, GRE and pings.
73,
- Lynwood
KB3VWG
Hi all,
I'm looking to get back on the 44net after many many years. There used
to be a hamgate in Muskegon MI run by WB8I, and is also listed on the
AMPR.ORG site - however my several attempts to contact him have gone
unanswered. I also haven't heard anything on the radio local....
Does anyone have any information on a hamgate in the Muskegon / Grand
Rapids area in Michigan?
Any info is appreciated!
73
Chris KC8BAT
