个人资料
归档
正文

网络与路由

(2014-12-03 08:57:31) 下一个

1. WIFI Basic

2. 2701HG DSL + 802.11n

2wire的2701HG DSLrouter是802.11b/g,最多54Mb,用了多年很可靠。后来特别是印度开发的就难说了。为NAS用途买了带USB3存储口的Netgear 1750(R6300V2) 802.11ac router,号称802.11b/g/n 2.4G最大450M,802.11a/ac 5G最大1300M。由于laptop都还只有802.11n,实测用5G时可达360Mb,2G时不到300Mb。6300的2G/5G是分开的ssid。USB3口无线网口访问时极不可靠破坏数据。

目前R8500三频路由器已停产,网上变砖的不少,这货能用时穿墙能力最好。

1.1 NetGear 6300V2 AC1750
R6300V2的侧面USB2可连打印机通过ReadyShare Printer变为无线打印机,WPS按键帮助建立连接;背面USB3可连硬盘(FAT32/NTFS/EXT3.XFS/HFS等)通过 ReadyShare软件构成网络盘,若有dynamic DNS可以ftp存取。在ADVACED/USBStorage/Media Server下可选ReadyDLNA用作DLNA server。UPnP类似。主要软件界面是Netgear Genie用www.routerlogin.net访问。用户手册p88-89是router状态包括冲突和开启时长。
Port trigging的概念:“When you initiate a session with destination port 6667, you have to also allow incoming traffic on port 113 to reach the originating computer.”
Port forwarding允许外界client初始化至本地server的连接,例如:“When you receive incoming traffic on port 80 (the standard port number for a web server process), forward it to the local computer at 192.168.1.123.”外网访问内网必须。

1.2.1 两个wifi的冲突

打印机原来是wifi到2701工作正常。加6300V2后5G时看不到打印机;用2701时也看不到6300上的U盘。5G时2701的IP仍是192.168.1.254可以访问,但6300的路由IP是10.0.0.1而且PC也自动改为同一基段。为同时能用打印机和U盘,方案一:为使双router处于同一基网中,将6300以AP(access point)方式使用,选上ADVANCED/Wireless AP并Enable AP Mode,视情选用fixed IP。如果网络设备分置两处又不好拉线,比如楼上楼下,可以使用bridge mode,主从设备用无线或电力线中继器代替网线。即主设备去互联网,从设备在ADVACNED/Advanced Setup/Wireless Settings下选Use other operation mode并Enable Bridge mode。方案二:去除2701的路由功能仅做modem使用,详见:http://blog.wenxuecity.com/myblog/36867/201802/3712.html 

小结一下: 把6300与2701Hg隔开放在电视柜上下层可以连上了,但2701上的wifi打印机PC看不见,设成 AP也不行。设AP后6300的IP变了,必须装Netgear Giene用它显示的Internet port IP用地址直接访问,也许routerlogin.net可以。最后,只用6300的wifi,2701的关了。

AP改为router需回复出厂设置,方法是按复位键待电源灯闪一下松开,等(...)亮。如routerlogin不成试192.168.1.1,192.168.0.1,10.0.0.1:https://kb.netgear.com/29886/How-to-reconfigure-your-router-from-Access-Point-mode-to-default-router-mode 
官网:http://support.netgear.com/product/R6300v2 http://downloadcenter.netgear.com/en/product/R6300v2#searchResults

1.2.2 毛病和升级 

从一开始,6300V2 WIFI就常断,而且是今天这两台PC断,后天是那两台,有时就是某个网站上不去,复位后就好。Netgear的客服没额外收钱前不会具体帮你,如此一拖就是9个月。上网下载的软件,升级时必定报错,最后在网上找到一些信息,差别在于源码中board_id,原装是U12H240T00_NETGEAR,Charter卖的是U12H240T70_NETGEAR;6300V2面板下黄是原装,蓝色是Charter的不能用官网固件也没有更新。检查这两个版本的方法是:网线连接PC,http://www.routerlogin.net 登录admin/password进R6300V2,Advanced > Administration > Router Status, 固件版本后缀为CH的是charter版,如我的是V1.0.3.6_1.0.63CH:
ftp://downloads.netgear.com/r6300v2/chnas/R6300v2-V1.0.3.6_1.0.63CH.CHK 
终于发现,CH版可以用K大的CH版更新,然后就可以用Netgear官网更新,然后factory reset:https://community.netgear.com/t5/R6000-Series-AC-WiFi-Routers/New-firmwaare-R6300v2-V1-0-3-6-1-0-63CH/m-p/431001#M3237 原机复位后,V1.0.3.6_1.0.63CH直接为同版本ddwrt,重启后192.168.1.1可见ddwrt,用其界面直接升级最新官版版Nergear 1.0.30,重启后一定要复位,不然router/PC可能不在同一网段里。试用后一周断网减少,router还没重启过,但速度不快。

固件更新常规方法:https://kb.netgear.com/23960/How-do-I-manually-upgrade-firmware-to-my-NETGEAR-router 刷前刷后都进系统管理恢复出厂设置:恢复/导出/上传设置-原厂默认值,然后重启。

1.3 变砖修复

(XP) http://koolshare.cn/thread-63587-1-1.html (Win7/10) http://koolshare.cn/thread-66974-1-1.html win10用npcap代替winpcap。要在路由器通电5-10秒,电源灯点亮后且是橙色时使用nmrpflash.exe才能有效。两个办法,一是路由开机过程中不停的PING 192.168.1.1,通的时候马上用刷机指令;二是路由开机后马上刷机,第1次执行指令会失败重复一遍就可以了。

http://myopenrouter.com/article/how-debrick-or-recover-netgear-r7000-r6300v2-or-r6250-wi-fi-routers http://www.right.com.cn/forum/forum.php?mod=viewthread&tid=253451&highlight=6300V2?

http://advancedhomeserver.com/upgrade-a-netgear-ac1450-router-to-ac1750-r6300v2/ 

2. 开源dd-wrt

http://firmware.koolshare.cn/merlin_8wan_firmware/?  http://koolshare.cn/forum-96-1.html?  升级前在系统工具里清空配置和格式化jffs分区

2.1 版本http://www.dd-wrt.com/wiki/index.php/Netgear_R6300v2 

dd-wrt NAS:https://www.bestvpn.com/blog/8798/use-dd-wrt-router-nas-storage/ 
更有甚者,1450可以firmware升级成为1750(6300),而R6300/R6300V2可以升级为ASUS,升级或dd-wrt的功能更多,如DNS,有的说无线更好,有的说有些问题。
dd-wrt官网下载:ftp://ftp.dd-wrt.com/betas/2015/  Kong版:http://desipro.de/ddwrt/K3-AC-Arm/   http://www.myopenrouter.com/download/52007/DD-WRT-Firmware-for-NETGEAR-R6300v2/
GPL(V2)开源无线路由器固件,由Linksys WRT54G的源码发展而来,后者因为是基于Linux,Cisco被迫公开的。支持的设备列表:http://www.dd-wrt.com/wiki/index.php/What_is_DD-WRT%3F  
http://www.dd-wrt.com/wiki/index.php/刷机  http://www.dd-wrt.com/wiki/index.php/Netgear_R6300v2 
Note: Some users have needed to reset NVRAM from the CLI, see the "NO 30-30-30 reset..." section below for details. While these last few steps may not be necessary, the wiki author has performed them without issues.

  1. Turn on router, wait for Power light to go solid green, use a paper clip to press and hold the Reset button on the back of the router for at least 20 seconds. After releasing Reset button, router should reboot with much flashing of lights, wait for Power light to go solid green again.
  2. Connect PC to one of router's LAN ports with wired cable. This should be the ONLY connection for the router & PC (means don't use WIFI)
  3. Clear web browser cache. For Firefox go Tools|Optons|Advanced|Network, the ClearNow for Cashed web contents
  4. In web browser, go to http://www.routerlogin.net netgear default username & password is "admin" & "password" respectively (no quotes)
  5. Click on Advanced > Administration > Router Update
  6. Select special .chk firmware file you downloaded from table above.
  7. After the router says it is done... wait 5+ minutes for it to fully reboot and power light to go solid green again.
  8. In web browser, go to http://192.168.1.1 and Verify installation.
  9. Reset router (as documented above), and wait for router to reboot and Power light to go solid green again.
  10. In web browser, go to http://192.168.1.1 (you should see the DD-WRT create password screen)
  11. Create a password using the standard DD-WRT GUI
  12. Set Password, Login and manually configure DD-WRT.
  13. Telnet over to router (username = root & password = the one you just set)
  14. From telnet pass the following command (without quotes): "nvram erase && reboot"
  15. ...wait for router to reboot and Power light to go solid green again (5 minutes).
  16. In web browser, go to http://192.168.1.1 (you should be back at the set password screen again)
  17. Set Password, Login and manually configure DD-WRT.

Merlin固件:ftp://www.nap6.com/  http://www.chiphell.com/forum.php?mod=viewthread&tid=1316373 简单概括刷机步骤 - 不要IE用Chrome
    1. 恢复出厂设置,刷过渡 dd-wrt,原厂固件可以直接刷dd-wrt:ftp://ftp.dd-wrt.com/others/eko/BrainSlayer-V24-preSP2/2014/05-27-2014-r24160/netgear-r6300v2/  或?
http://pan.baidu.com/s/1i3F3A3j
    2. 通过putty 软件选择SSH链接路由器,输入用户名和密码,再运行命令 :nvram get boardnum,nvram get boardtype,nvram get boardrev,结果必须是:boardnum=679,boardtype=0x0646,boardrev=0x1110,否则刷回官方固件重新开始。
    3. 由web升级界面选梅林固件1.0: http://pan.baidu.com/s/1pJBn9CB ,升级
    4. 现在你应该已经进入了merlin界面,在简单的设置无线密码进入主界面之后,请到【高级设置】【系统管理】【恢复/导出/上传设置】恢复出厂设置,并重启!
    5. 再刷梅林固件1.2版。以后版本均可由1.2正常升级,比如最新版R6300V2_378.55_0.trx。
https://sites.google.com/site/serialtips/rt-ac56u/asuswrt-merlin 
asus-merlin简介及最新版: http://koolshare.cn/thread-3578-1-1.html 
R6300V2改AC68U:http://upsangel.com/dd-wrt/netgear-r6300v2-merlin-firmware-flash-guide/ 
R6300V2改AC68U性能测试:https://www.nap6.com/question/447 
asus-merlin最新版:http://koolshare.cn/thread-6306-1-1.html 
转头法:http://www.right.com.cn/forum/forum.php?mod=viewthread&tid=155203&highlight=R6300V2

梅林固件里的JFFS就是你为路由安装插件的盘,允许后可加装多个功能插件。

2.2 其它功能
好处有BT,FTP/Httpserver,VPN,VLAN:http://upsangel.com/dd-wrt/dd-wrt-flash-purpose/ 
merlin版带SS翻墙方便:http://www.wkek.net/archives/753.html 
http://www.wkek.net/archives/753.html 
http://www.hkepc.com/forum/viewthread.php?tid=2025967&extra=page%3D1 
http://www.hkepc.com/forum/viewthread.php?tid=2025967&extra=page%3D1 
BT to router disk:http://www.ytyzx.net/index.php?title=路由器(DD-WRT)如何脱机下载BT文件

3. 组网及覆盖

Benchmark:http://www.smallnetbuilder.com/tools/charts/router/bar/175-ntfs-read-usb-3-0 

3.1 基本要点

Router可选自动或指定某一频道。2.4G的频道带宽原为20M仅1/6/11无交叠,但802.11n倍宽加用5G频道,802.11ac用2.4/5G双道,5G的频道带宽40M无交叠:

建议在手机上装wifi analyzer观察各频道强度,在6300V2中选2.4G频道避开邻频干扰。

要扩展范围可用AP、repeater或extender,包括电力线载波的,注意同频转发可用数据率减半,但信号可增强;AP可选不同频段例如1/6/11。2.4G较5G信号强。

有线网永远比无线网可靠。要扩展无线网的覆盖范围,可用Access Point、Repeater或Extender。对AP可选不同频段例如1/6/11,SSID可不同,其它设备SSID需相同,家用时建议所有设备都用同一个SSID。有线网永远比无线网可靠。扩网最简单的repeater无线方式只要接电源,放在两侧无线设备的中间,转发两侧的信号,因此数据率减半;如果中继到router的通信不良较难检测,而且配对时若router上有WPS键较方便。改进是用网线连接router和中继设备再无线连接消费电子。布线不便时用电力线载波中继,起点由router网线连接中继器小盒,另一端大盒可无线或有线连去消费电子。

3.2 多台无线router/access pointer

它们必须用线连至局网,必须设置为相同的SSID和密码类型,必须用不同的static IP,有且只有一台开启DHCP服务,而且设置时只能连其中一台。设置完后都开启。2Wire 2701是进HomeNetwork|Advanced,去除default然后选config manual给IP,不选DHCP。 Windows static IP setting is in: start menu -> settings -> network connections ->Internet Protocol (IPV4)
http://stackoverflow.com/questions/19845580/system-error-1450-has-occurred-insufficient-system-resources-exist-to-complete 
http://answers.microsoft.com/en-us/windows/forum/windows_7-hardware/error-insufficient-system-resources-exist-to/119b839c-117d-4ca4-bde4-4e62e64b2b74?auth=1 

如果第二router支持WDS,只需按上述并允许WDS:http://www.192ly.com/qiu-zhu/2-r-lj-tu.html  否则加扩展器或repeater。WDS:http://www.smallnetbuilder.com/wireless/wireless-howto/31191-everything-you-need-to-know-about-wireless-bridging-and-repeating-part-1-wds 

3.3 More on 2701

Reset: Unplug the DSL phone cord from the modem. Hold the red "reset" button on the back for about 15-20 seconds. After the modem finishes booting up, get to the screen to customize system password. Before the modem syncs up you can change the system password without the current system password. Then create & save a new password. To change SSID, go Top Network features|Network Name via wired LAN connection.

as AP/Switch http://www.techsupportforum.com/3001-connecting-additional-routers/  setup the wireless configuration which is identical to the current or main router. The Network Encryption (WEP, WPA, WPA2) will need to match the SSID (wireless network name) of the main router, prererred WPA2. Preferred Channel 1, 6 or 11. Connect a straight/patch network cable from the main router's LAN port to one of the LAN ports on the second and/or additional router. You may use a cross-over network cable if none of the routers has auto-sensing Ports.

two 2701?Yeshttps://www.techwalla.com/articles/how-to-configure-a-2wire-2701-as-a-repeater  photo in:http://www.dslreports.com/faq/15835  2nd router config detail: 192.168.1.254/mdc; "Broadband|Configure" and confirm VPI=8,VCI=35,ATM PVC Search=Disabled, ConnectionType=DirectIP, then Submit; "Configure Services|Advanced" and Enable routing=unchecked(Bridge mode), Submit; connect two routers with Ethernet cable. 2nd router will be wireless. 注意这是bridge mode即两者间是有线连接,其一做DHCP server。

two 2701 无线连接?No https://www.experts-exchange.com/questions/27582685/Two-2wire-2701hg-b-working-together.html 

3.4 Wifi repeater

Amazon price tracker: http://www.pricejot.com/ 

Top10:https://wiki.ezvid.com/best-wifi-boosters?id=bngprtnr 

双波段750M:https://www.youtube.com/watch?v=9HbZPwiFjSY  http://en.comfast.com.cn/product/SmartRepeater/item-203.html 

TP-Link TL-WA850RE: https://www.youtube.com/watch?v=PPPkcLhbUes 

3.4 Switch

作为DSL/cable modem和网电设备的中介。目前GS108T和SLM-2008T提供链路聚合 (link aggregation) 功能,在多客户同时访问或者同一客户多个 TCP 连接时带宽加倍。例如连接双网口的NAS,单网口的双机同时访问NAS,每机都有1G带宽,假如NAS的硬盘够快。如果只有NAS是双网口,路由器R8500也可(该机故障甚多缺乏支持)。客户端有Windows的NIC Teaming和Linux Ethernet Bonding Driver及OpenWrt。RealTek网卡需teaming utility。 

4 由外网访问

外网访问NAS整体解决方案:https://post.smzdm.com/p/568990/?  

4.1 DDNS
为了在外面访问家网,比如你建了个网站(在Linux下建一个就几行命令),你必须有个静态IP,或者用dynamic DNS(www.dyn.com),后者允许你用hostname以http://hostname.dyndns.org的方式访问(手册P103)。比如R6300V2的ADVACNED/Advanced Setup//Remote Management允许在互联网上用端口8080管理。http://www.makeuseof.com/tag/5-best-dynamic-dns-providers-can-lookup-free-today/

dyndns不再免费了,dnsdynamic没反应,我用了dynu:https://www.dynu.com/Resources/Tutorials/DynamicDNS/RemoteDesktop。开户后远程待访机name已确定,下载运行或设置router支持ddns client:https://www.dynu.com/Support/Download,这个软件保持dns同步,  然后在本地机上运行Remote Desktop用chinomango.dynu.com登录远程待访机。在能访问前要做几件事:https://www.dynu.com/Resources/Tutorials/DynamicDNS/RemoteDesktop 

a. 待访PC允许Remote Desktop(Control Panel|System and Security|System|Remote Settings )

b. 待访PC改为静态IP,因为router端口开放是映射到指定PC IP上,DNS端口可由这里选:
https://www.petri.com/configure-static-ipv4-address-windows-7
c. 待访PC增改Windows Credentials,去credential manager,address是full computer name,然后用待访的用户名和口令。注意,用户名必须根据CMD下whoami显示的字符串如aabb,即PC名或Domain名+反斜线+原始用户名。
d. 待访PC firewall中和防病毒软件中允许remote desktop (McAfee文档TS100887,360杀毒可能需要禁止。可运行services.msc,将相关项目启动类型改为手动。
e. 在router上开放端口3389,在router上设置port forwarding把3389对应为待访机本地IP:
Port forwarding: http://foscam.us/blog/foscamipcameras/guide-to-port-forwarding-2wire-router/ 
http://portforward.com/english/routers/port_forwarding/2wire/2701HG-B/defaultguide.htm
https://www.mts.ca/mts/support/internet/high+speed/2wire+gateway+port+forwarding+and+dmzplus+guide 
这一步因router而异,按上述连接,我的2wire 2710 firewall|settings, click "allow individual applications", "allow new user defined application" 创建名port3389, 加TCP端口3389,再加到Hosted Applications中。直接加XP remote desktop可能也行。选PC名,Done,然后在View Firewall Summary画面确认PC IP无错。
f. 在待访PC上检查端口确实可访:https://www.dynu.com/networktools/portcheck 注意用vpn可不受限制。也可在CMD下用:netstat /p tcp /a | findstr 3389,正常显示为: TCP   0.0.0.0:3389           computername:0                LISTENING

4.2 网名更改后远程登录的修正:公司搬家网名或办公室PC名改了,control panel下的Windows Credentials要删掉重加:

https://www.dickinson.edu/download/downloads/id/2663/remotedesktop_pdf 
http://smallbusiness.chron.com/delete-remote-desktop-cache-54543.html 
http://wenku.baidu.com/view/34783ce3998fcc22bcd10d66.html?re=view 
win10: https://social.technet.microsoft.com/Forums/en-US/0652e827-650d-4b20-afe5-d2112e830875/cannot-rdp-into-windows-10-from-windows-7?forum=WinPreview2014General  
最后,remote desktop登录是的computer,用computer name如SCC1XL14R1;username用domainusername在remote desktop的add user|check user中;远程机最好 Ctrl|DEL|ALT 再lock it,以免它退出了。
for example from office to home I use computer: chinomango.dynu.com and username: cox6410jj26410 coxd620joxxx

4.3 国内的DDNS

f3322.net注册网址是http://www.pubyun.com/,可在http://www.pubyun.com/user/dyndns/rrs/addrrs_html/试找可用前缀。注册时记住用户名、密码。

花生壳,据说免费账号长断。

如果家在国外只是回国上网需要,可在家里和带回国的PC上都装teamviewer,家里PC/路由一直开着或设置WakeOnLan。这样不用DDNS也行,因为你操控家里的PC就知道路由的外网IP了,它不常变。

[ 打印 ]
阅读 ()评论 (0)
评论
目前还没有任何评论
登录后才可评论.