個人資料
chinomango
chinomango
給我悄悄話
  • 博客訪問:
歸檔

2008 (7)

2009 (2)

2010 (1)

正文

網絡與路由

(2014-12-03 08:57:31) 下一個

1. WIFI Basic

2. 2701HG DSL + 802.11n

2wire的2701HG DSLrouter是802.11b/g,最多54Mb,用了多年很可靠。後來特別是印度開發的就難說了。為NAS用途買了帶USB3存儲口的Netgear 1750(R6300V2) 802.11ac router,號稱802.11b/g/n 2.4G最大450M,802.11a/ac 5G最大1300M。由於laptop都還隻有802.11n,實測用5G時可達360Mb,2G時不到300Mb。6300的2G/5G是分開的ssid。USB3口無線網口訪問時極不可靠破壞數據。

目前R8500三頻路由器已停產,網上變磚的不少,這貨能用時穿牆能力最好。

1.1 NetGear 6300V2 AC1750
R6300V2的側麵USB2可連打印機通過ReadyShare Printer變為無線打印機,WPS按鍵幫助建立連接;背麵USB3可連硬盤(FAT32/NTFS/EXT3.XFS/HFS等)通過 ReadyShare軟件構成網絡盤,若有dynamic DNS可以ftp存取。在ADVACED/USBStorage/Media Server下可選ReadyDLNA用作DLNA server。UPnP類似。主要軟件界麵是Netgear Genie用www.routerlogin.net訪問。用戶手冊p88-89是router狀態包括衝突和開啟時長。
Port trigging的概念:“When you initiate a session with destination port 6667, you have to also allow incoming traffic on port 113 to reach the originating computer.”
Port forwarding允許外界client初始化至本地server的連接,例如:“When you receive incoming traffic on port 80 (the standard port number for a web server process), forward it to the local computer at 192.168.1.123.”外網訪問內網必須。

1.2.1 兩個wifi的衝突

打印機原來是wifi到2701工作正常。加6300V2後5G時看不到打印機;用2701時也看不到6300上的U盤。5G時2701的IP仍是192.168.1.254可以訪問,但6300的路由IP是10.0.0.1而且PC也自動改為同一基段。為同時能用打印機和U盤,方案一:為使雙router處於同一基網中,將6300以AP(access point)方式使用,選上ADVANCED/Wireless AP並Enable AP Mode,視情選用fixed IP。如果網絡設備分置兩處又不好拉線,比如樓上樓下,可以使用bridge mode,主從設備用無線或電力線中繼器代替網線。即主設備去互聯網,從設備在ADVACNED/Advanced Setup/Wireless Settings下選Use other operation mode並Enable Bridge mode。方案二:去除2701的路由功能僅做modem使用,詳見:http://blog.wenxuecity.com/myblog/36867/201802/3712.html 

小結一下: 把6300與2701Hg隔開放在電視櫃上下層可以連上了,但2701上的wifi打印機PC看不見,設成 AP也不行。設AP後6300的IP變了,必須裝Netgear Giene用它顯示的Internet port IP用地址直接訪問,也許routerlogin.net可以。最後,隻用6300的wifi,2701的關了。

AP改為router需回複出廠設置,方法是按複位鍵待電源燈閃一下鬆開,等(...)亮。如routerlogin不成試192.168.1.1,192.168.0.1,10.0.0.1:https://kb.netgear.com/29886/How-to-reconfigure-your-router-from-Access-Point-mode-to-default-router-mode 
官網:http://support.netgear.com/product/R6300v2 http://downloadcenter.netgear.com/en/product/R6300v2#searchResults

1.2.2 毛病和升級 

從一開始,6300V2 WIFI就常斷,而且是今天這兩台PC斷,後天是那兩台,有時就是某個網站上不去,複位後就好。Netgear的客服沒額外收錢前不會具體幫你,如此一拖就是9個月。上網下載的軟件,升級時必定報錯,最後在網上找到一些信息,差別在於源碼中board_id,原裝是U12H240T00_NETGEAR,Charter賣的是U12H240T70_NETGEAR;6300V2麵板下黃是原裝,藍色是Charter的不能用官網固件也沒有更新。檢查這兩個版本的方法是:網線連接PC,http://www.routerlogin.net 登錄admin/password進R6300V2,Advanced > Administration > Router Status, 固件版本後綴為CH的是charter版,如我的是V1.0.3.6_1.0.63CH:
ftp://downloads.netgear.com/r6300v2/chnas/R6300v2-V1.0.3.6_1.0.63CH.CHK 
終於發現,CH版可以用K大的CH版更新,然後就可以用Netgear官網更新,然後factory reset:https://community.netgear.com/t5/R6000-Series-AC-WiFi-Routers/New-firmwaare-R6300v2-V1-0-3-6-1-0-63CH/m-p/431001#M3237 原機複位後,V1.0.3.6_1.0.63CH直接為同版本ddwrt,重啟後192.168.1.1可見ddwrt,用其界麵直接升級最新官版版Nergear 1.0.30,重啟後一定要複位,不然router/PC可能不在同一網段裏。試用後一周斷網減少,router還沒重啟過,但速度不快。

固件更新常規方法:https://kb.netgear.com/23960/How-do-I-manually-upgrade-firmware-to-my-NETGEAR-router 刷前刷後都進係統管理恢複出廠設置:恢複/導出/上傳設置-原廠默認值,然後重啟。

1.3 變磚修複

(XP) http://koolshare.cn/thread-63587-1-1.html (Win7/10) http://koolshare.cn/thread-66974-1-1.html win10用npcap代替winpcap。要在路由器通電5-10秒,電源燈點亮後且是橙色時使用nmrpflash.exe才能有效。兩個辦法,一是路由開機過程中不停的PING 192.168.1.1,通的時候馬上用刷機指令;二是路由開機後馬上刷機,第1次執行指令會失敗重複一遍就可以了。

http://myopenrouter.com/article/how-debrick-or-recover-netgear-r7000-r6300v2-or-r6250-wi-fi-routers http://www.right.com.cn/forum/forum.php?mod=viewthread&tid=253451&highlight=6300V2?

http://advancedhomeserver.com/upgrade-a-netgear-ac1450-router-to-ac1750-r6300v2/ 

2. 開源dd-wrt

http://firmware.koolshare.cn/merlin_8wan_firmware/?  http://koolshare.cn/forum-96-1.html?  升級前在係統工具裏清空配置和格式化jffs分區

2.1 版本http://www.dd-wrt.com/wiki/index.php/Netgear_R6300v2 

dd-wrt NAS:https://www.bestvpn.com/blog/8798/use-dd-wrt-router-nas-storage/ 
更有甚者,1450可以firmware升級成為1750(6300),而R6300/R6300V2可以升級為ASUS,升級或dd-wrt的功能更多,如DNS,有的說無線更好,有的說有些問題。
dd-wrt官網下載:ftp://ftp.dd-wrt.com/betas/2015/  Kong版:http://desipro.de/ddwrt/K3-AC-Arm/   http://www.myopenrouter.com/download/52007/DD-WRT-Firmware-for-NETGEAR-R6300v2/
GPL(V2)開源無線路由器固件,由Linksys WRT54G的源碼發展而來,後者因為是基於Linux,Cisco被迫公開的。支持的設備列表:http://www.dd-wrt.com/wiki/index.php/What_is_DD-WRT%3F  
http://www.dd-wrt.com/wiki/index.php/刷機  http://www.dd-wrt.com/wiki/index.php/Netgear_R6300v2 
Note: Some users have needed to reset NVRAM from the CLI, see the "NO 30-30-30 reset..." section below for details. While these last few steps may not be necessary, the wiki author has performed them without issues.

  1. Turn on router, wait for Power light to go solid green, use a paper clip to press and hold the Reset button on the back of the router for at least 20 seconds. After releasing Reset button, router should reboot with much flashing of lights, wait for Power light to go solid green again.
  2. Connect PC to one of router's LAN ports with wired cable. This should be the ONLY connection for the router & PC (means don't use WIFI)
  3. Clear web browser cache. For Firefox go Tools|Optons|Advanced|Network, the ClearNow for Cashed web contents
  4. In web browser, go to http://www.routerlogin.net netgear default username & password is "admin" & "password" respectively (no quotes)
  5. Click on Advanced > Administration > Router Update
  6. Select special .chk firmware file you downloaded from table above.
  7. After the router says it is done... wait 5+ minutes for it to fully reboot and power light to go solid green again.
  8. In web browser, go to http://192.168.1.1 and Verify installation.
  9. Reset router (as documented above), and wait for router to reboot and Power light to go solid green again.
  10. In web browser, go to http://192.168.1.1 (you should see the DD-WRT create password screen)
  11. Create a password using the standard DD-WRT GUI
  12. Set Password, Login and manually configure DD-WRT.
  13. Telnet over to router (username = root & password = the one you just set)
  14. From telnet pass the following command (without quotes): "nvram erase && reboot"
  15. ...wait for router to reboot and Power light to go solid green again (5 minutes).
  16. In web browser, go to http://192.168.1.1 (you should be back at the set password screen again)
  17. Set Password, Login and manually configure DD-WRT.

Merlin固件:ftp://www.nap6.com/  http://www.chiphell.com/forum.php?mod=viewthread&tid=1316373 簡單概括刷機步驟 - 不要IE用Chrome
    1. 恢複出廠設置,刷過渡 dd-wrt,原廠固件可以直接刷dd-wrt:ftp://ftp.dd-wrt.com/others/eko/BrainSlayer-V24-preSP2/2014/05-27-2014-r24160/netgear-r6300v2/  或?
http://pan.baidu.com/s/1i3F3A3j
    2. 通過putty 軟件選擇SSH鏈接路由器,輸入用戶名和密碼,再運行命令 :nvram get boardnum,nvram get boardtype,nvram get boardrev,結果必須是:boardnum=679,boardtype=0x0646,boardrev=0x1110,否則刷回官方固件重新開始。
    3. 由web升級界麵選梅林固件1.0: http://pan.baidu.com/s/1pJBn9CB ,升級
    4. 現在你應該已經進入了merlin界麵,在簡單的設置無線密碼進入主界麵之後,請到【高級設置】【係統管理】【恢複/導出/上傳設置】恢複出廠設置,並重啟!
    5. 再刷梅林固件1.2版。以後版本均可由1.2正常升級,比如最新版R6300V2_378.55_0.trx。
https://sites.google.com/site/serialtips/rt-ac56u/asuswrt-merlin 
asus-merlin簡介及最新版: http://koolshare.cn/thread-3578-1-1.html 
R6300V2改AC68U:http://upsangel.com/dd-wrt/netgear-r6300v2-merlin-firmware-flash-guide/ 
R6300V2改AC68U性能測試:https://www.nap6.com/question/447 
asus-merlin最新版:http://koolshare.cn/thread-6306-1-1.html 
轉頭法:http://www.right.com.cn/forum/forum.php?mod=viewthread&tid=155203&highlight=R6300V2

梅林固件裏的JFFS就是你為路由安裝插件的盤,允許後可加裝多個功能插件。

2.2 其它功能
好處有BT,FTP/Httpserver,VPN,VLAN:http://upsangel.com/dd-wrt/dd-wrt-flash-purpose/ 
merlin版帶SS翻牆方便:http://www.wkek.net/archives/753.html 
http://www.wkek.net/archives/753.html 
http://www.hkepc.com/forum/viewthread.php?tid=2025967&extra=page%3D1 
http://www.hkepc.com/forum/viewthread.php?tid=2025967&extra=page%3D1 
BT to router disk:http://www.ytyzx.net/index.php?title=路由器(DD-WRT)如何脫機下載BT文件

3. 組網及覆蓋

Benchmark:http://www.smallnetbuilder.com/tools/charts/router/bar/175-ntfs-read-usb-3-0 

3.1 基本要點

Router可選自動或指定某一頻道。2.4G的頻道帶寬原為20M僅1/6/11無交疊,但802.11n倍寬加用5G頻道,802.11ac用2.4/5G雙道,5G的頻道帶寬40M無交疊:

建議在手機上裝wifi analyzer觀察各頻道強度,在6300V2中選2.4G頻道避開鄰頻幹擾。

要擴展範圍可用AP、repeater或extender,包括電力線載波的,注意同頻轉發可用數據率減半,但信號可增強;AP可選不同頻段例如1/6/11。2.4G較5G信號強。

有線網永遠比無線網可靠。要擴展無線網的覆蓋範圍,可用Access Point、Repeater或Extender。對AP可選不同頻段例如1/6/11,SSID可不同,其它設備SSID需相同,家用時建議所有設備都用同一個SSID。有線網永遠比無線網可靠。擴網最簡單的repeater無線方式隻要接電源,放在兩側無線設備的中間,轉發兩側的信號,因此數據率減半;如果中繼到router的通信不良較難檢測,而且配對時若router上有WPS鍵較方便。改進是用網線連接router和中繼設備再無線連接消費電子。布線不便時用電力線載波中繼,起點由router網線連接中繼器小盒,另一端大盒可無線或有線連去消費電子。

3.2 多台無線router/access pointer

它們必須用線連至局網,必須設置為相同的SSID和密碼類型,必須用不同的static IP,有且隻有一台開啟DHCP服務,而且設置時隻能連其中一台。設置完後都開啟。2Wire 2701是進HomeNetwork|Advanced,去除default然後選config manual給IP,不選DHCP。 Windows static IP setting is in: start menu -> settings -> network connections ->Internet Protocol (IPV4)
http://stackoverflow.com/questions/19845580/system-error-1450-has-occurred-insufficient-system-resources-exist-to-complete 
http://answers.microsoft.com/en-us/windows/forum/windows_7-hardware/error-insufficient-system-resources-exist-to/119b839c-117d-4ca4-bde4-4e62e64b2b74?auth=1 

如果第二router支持WDS,隻需按上述並允許WDS:http://www.192ly.com/qiu-zhu/2-r-lj-tu.html  否則加擴展器或repeater。WDS:http://www.smallnetbuilder.com/wireless/wireless-howto/31191-everything-you-need-to-know-about-wireless-bridging-and-repeating-part-1-wds 

3.3 More on 2701

Reset: Unplug the DSL phone cord from the modem. Hold the red "reset" button on the back for about 15-20 seconds. After the modem finishes booting up, get to the screen to customize system password. Before the modem syncs up you can change the system password without the current system password. Then create & save a new password. To change SSID, go Top Network features|Network Name via wired LAN connection.

as AP/Switch http://www.techsupportforum.com/3001-connecting-additional-routers/  setup the wireless configuration which is identical to the current or main router. The Network Encryption (WEP, WPA, WPA2) will need to match the SSID (wireless network name) of the main router, prererred WPA2. Preferred Channel 1, 6 or 11. Connect a straight/patch network cable from the main router's LAN port to one of the LAN ports on the second and/or additional router. You may use a cross-over network cable if none of the routers has auto-sensing Ports.

two 2701?Yeshttps://www.techwalla.com/articles/how-to-configure-a-2wire-2701-as-a-repeater  photo in:http://www.dslreports.com/faq/15835  2nd router config detail: 192.168.1.254/mdc; "Broadband|Configure" and confirm VPI=8,VCI=35,ATM PVC Search=Disabled, ConnectionType=DirectIP, then Submit; "Configure Services|Advanced" and Enable routing=unchecked(Bridge mode), Submit; connect two routers with Ethernet cable. 2nd router will be wireless. 注意這是bridge mode即兩者間是有線連接,其一做DHCP server。

two 2701 無線連接?No https://www.experts-exchange.com/questions/27582685/Two-2wire-2701hg-b-working-together.html 

3.4 Wifi repeater

Amazon price tracker: http://www.pricejot.com/ 

Top10:https://wiki.ezvid.com/best-wifi-boosters?id=bngprtnr 

雙波段750M:https://www.youtube.com/watch?v=9HbZPwiFjSY  http://en.comfast.com.cn/product/SmartRepeater/item-203.html 

TP-Link TL-WA850RE: https://www.youtube.com/watch?v=PPPkcLhbUes 

3.4 Switch

作為DSL/cable modem和網電設備的中介。目前GS108T和SLM-2008T提供鏈路聚合 (link aggregation) 功能,在多客戶同時訪問或者同一客戶多個 TCP 連接時帶寬加倍。例如連接雙網口的NAS,單網口的雙機同時訪問NAS,每機都有1G帶寬,假如NAS的硬盤夠快。如果隻有NAS是雙網口,路由器R8500也可(該機故障甚多缺乏支持)。客戶端有Windows的NIC Teaming和Linux Ethernet Bonding Driver及OpenWrt。RealTek網卡需teaming utility。 

4 由外網訪問

外網訪問NAS整體解決方案:https://post.smzdm.com/p/568990/?  

4.1 DDNS
為了在外麵訪問家網,比如你建了個網站(在Linux下建一個就幾行命令),你必須有個靜態IP,或者用dynamic DNS(www.dyn.com),後者允許你用hostname以http://hostname.dyndns.org的方式訪問(手冊P103)。比如R6300V2的ADVACNED/Advanced Setup//Remote Management允許在互聯網上用端口8080管理。http://www.makeuseof.com/tag/5-best-dynamic-dns-providers-can-lookup-free-today/

dyndns不再免費了,dnsdynamic沒反應,我用了dynu:https://www.dynu.com/Resources/Tutorials/DynamicDNS/RemoteDesktop。開戶後遠程待訪機name已確定,下載運行或設置router支持ddns client:https://www.dynu.com/Support/Download,這個軟件保持dns同步,  然後在本地機上運行Remote Desktop用chinomango.dynu.com登錄遠程待訪機。在能訪問前要做幾件事:https://www.dynu.com/Resources/Tutorials/DynamicDNS/RemoteDesktop 

a. 待訪PC允許Remote Desktop(Control Panel|System and Security|System|Remote Settings )

b. 待訪PC改為靜態IP,因為router端口開放是映射到指定PC IP上,DNS端口可由這裏選:
https://www.petri.com/configure-static-ipv4-address-windows-7
c. 待訪PC增改Windows Credentials,去credential manager,address是full computer name,然後用待訪的用戶名和口令。注意,用戶名必須根據CMD下whoami顯示的字符串如aabb,即PC名或Domain名+反斜線+原始用戶名。
d. 待訪PC firewall中和防病毒軟件中允許remote desktop (McAfee文檔TS100887,360殺毒可能需要禁止。可運行services.msc,將相關項目啟動類型改為手動。
e. 在router上開放端口3389,在router上設置port forwarding把3389對應為待訪機本地IP:
Port forwarding: http://foscam.us/blog/foscamipcameras/guide-to-port-forwarding-2wire-router/ 
http://portforward.com/english/routers/port_forwarding/2wire/2701HG-B/defaultguide.htm
https://www.mts.ca/mts/support/internet/high+speed/2wire+gateway+port+forwarding+and+dmzplus+guide 
這一步因router而異,按上述連接,我的2wire 2710 firewall|settings, click "allow individual applications", "allow new user defined application" 創建名port3389, 加TCP端口3389,再加到Hosted Applications中。直接加XP remote desktop可能也行。選PC名,Done,然後在View Firewall Summary畫麵確認PC IP無錯。
f. 在待訪PC上檢查端口確實可訪:https://www.dynu.com/networktools/portcheck 注意用vpn可不受限製。也可在CMD下用:netstat /p tcp /a | findstr 3389,正常顯示為: TCP   0.0.0.0:3389           computername:0                LISTENING

4.2 網名更改後遠程登錄的修正:公司搬家網名或辦公室PC名改了,control panel下的Windows Credentials要刪掉重加:

https://www.dickinson.edu/download/downloads/id/2663/remotedesktop_pdf 
http://smallbusiness.chron.com/delete-remote-desktop-cache-54543.html 
http://wenku.baidu.com/view/34783ce3998fcc22bcd10d66.html?re=view 
win10: https://social.technet.microsoft.com/Forums/en-US/0652e827-650d-4b20-afe5-d2112e830875/cannot-rdp-into-windows-10-from-windows-7?forum=WinPreview2014General  
最後,remote desktop登錄是的computer,用computer name如SCC1XL14R1;username用domainusername在remote desktop的add user|check user中;遠程機最好 Ctrl|DEL|ALT 再lock it,以免它退出了。
for example from office to home I use computer: chinomango.dynu.com and username: cox6410jj26410 coxd620joxxx

4.3 國內的DDNS

f3322.net注冊網址是http://www.pubyun.com/,可在http://www.pubyun.com/user/dyndns/rrs/addrrs_html/試找可用前綴。注冊時記住用戶名、密碼。

花生殼,據說免費賬號長斷。

如果家在國外隻是回國上網需要,可在家裏和帶回國的PC上都裝teamviewer,家裏PC/路由一直開著或設置WakeOnLan。這樣不用DDNS也行,因為你操控家裏的PC就知道路由的外網IP了,它不常變。

[ 打印 ]
[ 加入書簽 ]
閱讀 ()評論 (0)
評論
目前還沒有任何評論
登錄後才可評論.