USB Networking
From Openmoko
Contents |
On the Openmoko device
Name resolution
By default Openmoko's usb0 interface is available as the Ethernet gadget (g_ether) is compiled into the kernel.
On the Openmoko device, if you want to connect to the Internet using a fully qualified hostname, your DNS server should be defined. To achieve this, create a file /etc/resolv.conf with at least one line reading:
nameserver xxx.xxx.xxx.xxx
e.g. nameserver 192.168.1.1
(if you are unsure as to which nameserver IP address to use, a valid IP is typically available in the /etc/resolv.conf file of your host system)
It is also possible to update your 2007.2 OpenMoko package with the command "opkg update && opkg upgrade" on the phone.
A better approach is to edit: /etc/network/interfaces and modify the line:
up echo nameserver 192.168.0.200 >/etc/resolv.conf
to specify your preferred DNS server instead of 192.168.0.200.
example: up echo nameserver 4.2.2.2 >/etc/resolv.conf
Another approach is to create a symlink (NOW OBSOLETE?)
ln -s /var/run/resolv.conf /etc/resolv.conf
and fill the file at bootup with a script /etc/network/if-up.d/08setupdns containing:
#!/bin/sh -e echo nameserver 192.168.0.200 > /var/run/resolv.conf
this way the file is correctly handled from the ppp package when dialing into gprs.
Routing
You need an additional route for traffic to the internet. This traffic can be routed through your PC (see below) if the PC is the default route destination. This can be achieved by adding
gateway 192.168.0.200
to your /etc/network/interfaces in the usb0 section.
On the desktop computer
Manual method
With the device connected, modprobe usbnet module and configure usb0 interface (as root):
ifconfig usb0 192.168.0.200 netmask 255.255.255.0
If your eth0 interface is also in the same 'range' (e.g. 192.168.0.105) then you can do the following:
1. ping the Neo with
# ping -I usb0 192.168.0.202
2. add a route to your Neo:
# /sbin/route add -host 192.168.0.202/32 dev usb0
3 log in to the Neo
# ssh root@192.168.0.202
If you don't have the necessary modules to get usb0 going, make sure you have the following kernel options enabled:
- CONFIG_USB_USBNET
- CONFIG_USB_NET_CDCETHER
Both options are available in the Device Drivers -> USB support -> USB Network Adapters or Device Drivers -> Network Device Support -> USB Network Adapters -> Multipurpose USB Networking Framework. For more info see the usbnet driver homepage.
Do not forget to adjust your firewall so that you can connect to the device.
To manually enable iptables pass-through on the host for those using a distribution not listed in the Automatic method:
# echo 1 > /proc/sys/net/ipv4/ip_forward # iptables -A POSTROUTING -t nat -j MASQUERADE -s 192.168.0.0/24 # iptables -P FORWARD ACCEPT
Manually disable nat pass-through using:
# iptables -t nat -F POSTROUTING # echo 0 > /proc/sys/net/ipv4/ip_forward
This could be put in a script to call on demand or more elegantly automated, otherwise follow the Automatic method for your distribution.
Automatic method
Took from Hotplugging usbnet post by Marcin 'Hrw' Juszkiewicz.
Debian or similar
Edit /etc/network/interfaces:
allow-hotplug usb0
iface usb0 inet static
address 192.168.0.200
netmask 255.255.255.0
network 192.168.0.0
post-up iptables -A POSTROUTING -t nat -j MASQUERADE -s 192.168.0.0/24
post-up echo 1 > /proc/sys/net/ipv4/ip_forward
post-up iptables -P FORWARD ACCEPT
I would even suggest to use the more refined one bellow, to adapt to existing home networks already using 192.168.0.x addresses (which would be between 192.168.0.1 and 192.168.0.191) -- OlivierBerger :
allow-hotplug usb0
iface usb0 inet static
address 192.168.0.200
netmask 255.255.255.192
post-up iptables -A POSTROUTING -t nat -j MASQUERADE -s 192.168.0.192/26
post-up echo 1 > /proc/sys/net/ipv4/ip_forward
post-up iptables -P FORWARD ACCEPT
pre-down iptables -D POSTROUTING -t nat -j MASQUERADE -s 192.168.0.192/26
Ubuntu (Tested with Feisty, Gutsy and Hardy)
Edit /etc/network/interfaces:
auto usb0
iface usb0 inet static
address 192.168.0.200
netmask 255.255.255.0
network 192.168.0.0
up iptables -A POSTROUTING -t nat -j MASQUERADE -s 192.168.0.0/24 &
up echo 1 > /proc/sys/net/ipv4/ip_forward &
up iptables -P FORWARD ACCEPT &
down iptables -D POSTROUTING -t nat -j MASQUERADE -s 192.168.0.0/24 &
?? What to do if your dhcp offers your eth0 is already in the 192.168.0.200 range? On ubuntu side it will work, but there is no editor on the openmoko to change on the device the bit in the ip number
If you are doing the echo 1 > /proc/... command manually, sudo may not be enough, then you will have to execute it from a sudo bash.
Ubuntu Feisty, Gutsy and Hardy appear to have a bug where ifdown is not run when the interface is unplugged, meaning this only works once after the system is booted.
This was reported to ubuntu a long time ago, so don't file a duplicate bug. Write a comment instead at https://bugs.launchpad.net/ubuntu/+source/ifupdown/+bug/130437
One can patch /etc/udev/rules.d/85-ifupdown.rules, editing the two lines at the end of the file:
SUBSYSTEM=="net", DRIVERS=="?*", GOTO="net_start"
GOTO="net_end"
LABEL="net_start"
# Bring devices up and down only if they're marked auto.
# Use start-stop-daemon so we don't wait on dhcp
ACTION=="add", RUN+="/sbin/start-stop-daemon --start --background --pidfile /var/run/network/bogus --startas /sbin/ifup -- --allow auto $env{INTERFACE}"
LABEL="net_end"
ACTION=="remove", RUN+="/sbin/start-stop-daemon --start --background --pidfile /var/run/network/bogus --startas /sbin/ifdown -- --allow auto $env{INTERFACE}"
the bug is that the LABEL="net_end" is at the wrong position
Once connected to usb0 through the terminal, you can click on: Places > Connect to Server > Service Type: SSH Server 192.168.0.202 User Name: root Allowing for a GUI interface for all your file transfers and editing.
Mandriva
Tested with Mandriva 2008.1
This is the method that worked for me, YMMV. My network is on the 192.168.0.0 subnet so these instructions will have to be modified if you are on a different subnet.
The idea here is that we will carve out a small (8 hosts) subnet from the main subnet. So our netmask will be 255.255.255.252
This first file configures the network system for the usb0 interface. Any time you plug in the FreeRunner the interface will be configured.
/etc/sysconfig/network-scripts/ifcfg-usb0
DEVICE=usb0 BOOTPROTO=static IPADDR=192.168.0.200 NETMASK=255.255.255.252 ONBOOT=yes METRIC=10 MII_NOT_SUPPORTED=no USERCTL=yes
This next file configures the static routes that we need to communicate to the subnet. Since it has "usb0" in the name, the system will automatically apply these static routes any time that the usb0 interface is configured. (i.e. when you connect the FreeRunner)
/etc/sysconfig/network-scripts/usb0-routes
ADDRESS0=192.168.0.200 NETMASK0=255.255.255.252
Now we need to restart the network system to pick up the changes.
service network restart
If you want to make your life a little easier by not having to type out the FreeRunners ip address each time add an alias by adding a line to your hosts file.
/etc/hosts
<any existing lines> 192.168.0.202 moko
SuSE
/etc/sysconfig/network/ifcfg-usb0
# USB configuration for PDAs (openmoko) IPADDR=192.168.0.200 NETMASK=255.255.255.0 STARTMODE=onboot
For more information on getting USB networking up using YaST, see USB_Networking_with_openSUSE.
Fedora
Option (A) (Tested with FC8)
/etc/sysconfig/network-scripts/ifcfg-usb0
# USB configuration for PDAs (openmoko) # from http://www.handhelds.org/moin/moin.cgi/UsbNet DEVICE=usb0 BOOTPROTO=none IPADDR=192.168.0.200 NETMASK=255.255.255.0 ONBOOT=yes
Option (B)
Set /etc/sysconfig/network-scripts/ifcfg-usb0 to this:
DEVICE=usb0 IPADDR=192.168.0.200 NETMASK=255.255.255.0
Set /etc/sysconfig/network-scripts/ifup-usb to this:
#!/bin/bash
. /etc/init.d/functions
cd /etc/sysconfig/network-scripts
. ./network-functions
[ -f ../network ] && . ../network
CONFIG=${1}
need_config ${CONFIG}
source_config
NETBITS=`ipcalc -p ${IPADDR} ${NETMASK} | awk -F'=' '{print $2;}'`
/sbin/ip addr flush dev ${DEVICE} 2>/dev/null
/sbin/ip link set dev ${DEVICE} up
/sbin/ip addr add dev ${DEVICE} ${IPADDR}/${NETBITS}
/sbin/iptables -I POSTROUTING -t nat -j MASQUERADE -s ${IPADDR}/${NETBITS}
/sbin/sysctl net.ipv4.ip_forward=1
/sbin/iptables -I FORWARD -s ${IPADDR}/${NETBITS} -j ACCEPT
/sbin/iptables -I FORWARD -d ${IPADDR}/${NETBITS} -j ACCEPT
Set /etc/sysconfig/network-scripts/ifdown-usb to this:
#!/bin/bash
. /etc/init.d/functions
cd /etc/sysconfig/network-scripts
. ./network-functions
[ -f ../network ] && . ../network
CONFIG=${1}
need_config ${CONFIG}
source_config
NETBITS=`ipcalc -p ${IPADDR} ${NETMASK} | awk -F'=' '{print $2;}'`
/sbin/iptables -D FORWARD -d ${IPADDR}/${NETBITS} -j ACCEPT
/sbin/iptables -D FORWARD -s ${IPADDR}/${NETBITS} -j ACCEPT
/sbin/sysctl net.ipv4.ip_forward=0
/sbin/iptables -D POSTROUTING -t nat -j MASQUERADE -s ${IPADDR}/${NETBITS}
/sbin/ip link set dev ${DEVICE} down
/sbin/ip addr flush dev ${DEVICE} 2>/dev/null
If you are using NetworkManager, restart it and enable the usb device from its menu, otherwise it will disable your connection shortly after you enable it.
/sbin/service NetworkManager restart
Red Hat or similar (tested with Workstation 5)
Edit /etc/sysconfig/network-scripts/net.hotplug:
After this command
case $INTERFACE in
# interfaces that are registered after being "up" (?)
add
usb0)
ifconfig usb0 192.168.0.200 netmask 255.255.255.0
route add 192.168.0.202 usb0
iptables -I INPUT 1 -s 192.168.0.202 -j ACCEPT
iptables -I OUTPUT 1 -s 192.168.0.200 -j ACCEPT
iptables -A POSTROUTING -t nat -j MASQUERADE -s 192.168.0.0/24
echo 1 > /proc/sys/net/ipv4/ip_forward
exit 0
;;
Gentoo
- Open /etc/conf.d/net and add:
# Neo config_usb0=( "192.168.0.200 netmask 255.255.255.0" ) routes_usb0=( "192.168.0.202/32 via 192.168.0.200" )
- Create a new init script:
cd /etc/init.d ln -s net.lo net.usb0
- Put iptables into use:
iptables -I INPUT 1 -s 192.168.0.202 -j ACCEPT iptables -I OUTPUT 1 -s 192.168.0.200 -j ACCEPT iptables -A POSTROUTING -t nat -j MASQUERADE -s 192.168.0.0/24
- Store them
/etc/init.d/iptables save
- If you want the routing by default:
rc-update add iptables default
- You must also inform the kernel, to start forwarding.
echo 1 > /proc/sys/net/ipv4/ip_forward
One way to automate all this is to create /etc/conf.d/net.usb0 as follows. It sets ip forwarding and the iptables rules all in one go. It removes the iptables rules and disables ip forwarding when the NEO is unplugged.
preup() {
echo 1 > /proc/sys/net/ipv4/ip_forward
iptables -I INPUT 1 -s 192.168.0.202 -j ACCEPT
iptables -I OUTPUT 1 -s 192.168.0.200 -j ACCEPT
iptables -A POSTROUTING -t nat -j MASQUERADE -s 192.168.0.0/24
return 0
}
postdown() {
echo 0 > /proc/sys/net/ipv4/ip_forward
iptables -D INPUT -s 192.168.0.202 -j ACCEPT
iptables -D OUTPUT -s 192.168.0.200 -j ACCEPT
iptables -D POSTROUTING -t nat -j MASQUERADE -s 192.168.0.0/24
return 0
}
MacOS X
See the USB Networking section in the MacOS X article.
Windows
See the USB Ethernet emulation section in the Neo1973 and Windows article.
Mobile development
Proxying DNS requests
If, like me, you move about quite a lot, connecting to various networks as you go and getting your ip via dhcp, you'll probably be annoyed at having to constantly update your resolv.conf on the Neo 1973.
To get round this, as part of my setup script, I run a proxy dns on the ip address the neo comes in on at the usb0 port. This means that my Neo /etc/resolv.conf only contains:
nameserver 192.168.0.200
and my laptop will proxy all dns requests based on it's own /etc/resolv.conf
note that we only run the dns proxy on the usb0 interface so that we don't break any other networking
Proxying with dnrd
The script is designed to use dnrd as the dns proxy. The script and a copy of dnrd are available from my site. The script also performs the initial setup of the connection as per the USB_Networking#Manual_method above.
Proxying with a UDP forwarder
Another easy setup is using a udp forwarder like the one from http://www.tapor.com/udpf/ - is use it with the command
udpf-elf\
-p=53\
-f=`cat /etc/resolv.conf|awk '$1 == "nameserver"{print $2; exit(0);}'`:53
Proxying with iptables
Its is possible to forward DNS requests with iptables using the DNAT target
iptables -t nat -A PREROUTING -p tcp -s 192.168.0.202 -d 192.168.0.200 --dport domain -j DNAT --to-destination 192.168.0.1 iptables -t nat -A PREROUTING -p udp -s 192.168.0.202 -d 192.168.0.200 --dport domain -j DNAT --to-destination 192.168.0.1
where 192.168.0.1 is the IP of your residential gateway (router). This is the easiest method, but its not recommended if you have a direct connection to the Internet as ISP DNS servers can change, and this does no load-balancing.
Connecting to phone
Then ssh root@192.168.0.202 with empty password to get into phone.
NOTE: the ssh daemon (dropbear 0.49) on the OpenMoko appears to have a bug when sending the exit status back to the client. From time to time you receive an exit status of 255.
SSH Extras
If you get fed up with typing root@192.168.0.202, on your PC edit /etc/hosts and add an entry for 'phone'
192.168.0.202 phone
then edit ~/.ssh/config (or create it) and add
host phone user root
then all you need to do is type
# ssh phone
To avoid ssh added a new line for every ssh host-key to you known_hosts you can add the following to the phone section in ~/.ssh/config
UserKnownHostsFile /dev/null
You might want to use keys to bypass the login prompt too.
SSH Keys
From host to phone
To generate ssh keys for use as a login mechanism type
ssh-keygen -t rsa
when prompted for a password either hit enter for no password (not really a good idea) or enter a password for this key. ssh into the phone and create ~/.ssh
# mkdir ~/.ssh
then from your PC copy the .pub file to the phone.
# scp ~/.ssh/id_rsa.pub phone:.ssh/authorized_keys
You should now be able to ssh directly into the phone.
To disable password logins (after setting up key access) edit /etc/init.d/dropbear and change the following line:
DROPBEAR_EXTRA_ARGS=
to
DROPBEAR_EXTRA_ARGS="-s"
You will need to restart dropbear for this to take effect.
From phone to host
Generate the key
dropbearkey -t rsa -f id_rsa
The output will look something like this:
Will output 1024 bit rsa secret key to 'id_rsa' Generating key, this may take a while... Public key portion is: ssh-rsa AAAAB3Nza[...] Fingerprint: md5 ca:e8:f0:b7:f6:7b:c2:b6:b9:71:e4:45:86:a9:ff:b8
Copy and paste the one line (in this example, starting with 'ssh-rsa' onto the end of the host's authorized_keys file (often in ~/.ssh/).
From the phone, ssh with -i:
ssh -i id_rsa user@host
This works for me. I ripped off these instructions from: [[1]]
Changing host keys
From: Joachim Steiger <roh@openmoko.org> Date: Thu, Jul 17, 2008 at 2:21 PM
for people who often reflash and thus have new host keys on their mokos i can share this ~/.ssh/config snippet:
Host moko HostName 192.168.0.202 StrictHostKeyChecking no UserKnownHostsFile /dev/null User root
the result is that one can just 'ssh moko' press return and be done (logged in) every time. but beware: it ignores changing host keys completely then. (one could tap your usb cable!!!!) ;)
GUI on desktop through SSH
If you need to get the GUI on the phone onto the desktop via usb, you can use ssh as follows
ssh -l root -X -v 192.168.0.202
Login, and run openmoko-finger-demo for example, and it will open up on the desktop. To get landscape view, just resize the GUI window on the desktop.
Remote apps on neo
To get desktop apps to show up on your neo, first log in to the phone
ssh -l root 192.168.0.202
Then once inside, run:
DISPLAY=:0 xhost +192.168.0.200
After this you can close the ssh session. Back on the desktop computer, run:
DISPLAY=moko:0 xclock
Note that the xhost command will allow remote applications on 192.168.0.200 to access the X server. It will allow anyone on the desktop machine to access the X server of the neo, including snooping anything you type on it. To disallow remote applications again, run this in the neo:
DISPLAY=:0 xhost -192.168.0.200
 |
Languages: |
English • العربية • Български • Česky • Dansk • Deutsch • Esperanto • Eesti • Español • فارسی • Suomi • Français • עברית • Magyar • Italiano • 한국어 • Nederlands • Norsk (bokmål) • Polski • Português • Română • Русский • Svenska • Slovenčina • Українська • 中文(中国大陆) • 中文(台灣) • Euskara • Català |
