{"id":1051,"date":"2019-12-07T10:57:27","date_gmt":"2019-12-07T19:57:27","guid":{"rendered":"\/blog\/?p=1051"},"modified":"2023-09-21T09:26:45","modified_gmt":"2023-09-21T00:26:45","slug":"wevo-11ac-nas-uci%eb%a5%bc-%ec%82%ac%ec%9a%a9%ed%95%9c-openwrt-%ec%9d%bc%ea%b4%84-%ec%84%a4%ec%a0%95","status":"publish","type":"post","link":"https:\/\/hasu0707.duckdns.org\/blog\/?p=1051","title":{"rendered":"[WeVO 11AC NAS] UCI\ub97c \uc0ac\uc6a9\ud55c OpenWRT \uc77c\uad04 \uc124\uc815"},"content":{"rendered":"\n<pre class=\"wp-block-syntaxhighlighter-code\">#!\/bin\/sh\n######################################################################\n#\n# OpenWRT \uc124\uc815 \uc2a4\ud06c\ub9bd\ud2b8\n#\n######################################################################\nTRUST_HOST=\"211.196.252.73\"\n\nfunction check_board_name() {\n  echo \"###########################################################\"\n  echo \"#\"\n  echo \"# Check board name\"\n  echo \"#\"\n  echo \"###########################################################\"\n\n  grep \"11AC\" \/etc\/os-release > \/dev\/null\n  if [ $? -eq 0 ]\n  then\n    echo \"This board is WeVO 11AC NAS Router\"\n    export DEVICE_NAME=\"WeVO 11AC NAS Router\"\n    export DEVICE_HOSTNAME=\"11ac_nas\"\n    return\n  else\n    echo \"This board is netis WF2881 Router\"\n    export DEVICE_NAME=\"netis WF2881 Router\"\n    export DEVICE_HOSTNAME=\"wf2881\"\n    return\n  fi\n}\n\nfunc_set_vsftpd() {\n  echo \"###########################################################\"\n  echo \"#\"\n  echo \"# useradd openwrt\"\n  echo \"#\"\n  echo \"###########################################################\"\n  echo \"\"\n  echo \"chroot_local_user=YES\" >> \/etc\/vsftpd.conf\n  echo \"allow_writeable_chroot=YES\" >> \/etc\/vsftpd.conf\n  echo \"openwrt:x:500:65534:openwrt:\/mnt:\/bin\/false\" >> \/etc\/passwd\n  echo \"openwrt:x:0:0:99999:7:::\" >> \/etc\/shadow\n  chown -R openwrt:nogroup \/mnt\n}\n\nfunc_set_system() {\n  echo \"###########################################################\"\n  echo \"#\"\n  echo \"# set system\"\n  echo \"#\"\n  echo \"###########################################################\"\n  echo \"\"\n  uci set system.@system[0].timezone='KST-9'\n  uci set system.@system[0].hostname=\"${DEVICE_HOSTNAME}\"\n\n  uci -q delete system.ntp.server\n  uci add_list system.ntp.server='3.kr.pool.ntp.org'\n  uci add_list system.ntp.server='3.asia.pool.ntp.org'\n  uci add_list system.ntp.server='1.asia.pool.ntp.org'\n  uci commit system\n}\n\nfunc_set_ntpclient() {\n  uci delete ntpclient.@ntpserver[0]\n  uci delete ntpclient.@ntpserver[0]\n  uci delete ntpclient.@ntpserver[0]\n  uci delete ntpclient.@ntpserver[0]\n  uci add ntpclient ntpserver\n  uci set ntpclient.@ntpserver[-1].port='123'\n  uci set ntpclient.@ntpserver[-1].hostname='3.kr.pool.ntp.org'\n  uci add ntpclient ntpserver\n  uci set ntpclient.@ntpserver[-1].port='123'\n  uci set ntpclient.@ntpserver[-1].hostname='3.asia.pool.ntp.org'\n  uci add ntpclient ntpserver\n  uci set ntpclient.@ntpserver[-1].port='123'\n  uci set ntpclient.@ntpserver[-1].hostname='1.asia.pool.ntp.org'\n  uci commit ntpclient\n}\n\nfunc_make_mount_script() {\n  echo \"###########################################################\"\n  echo \"#\"\n  echo \"# \/etc\/hotplug.d\/block\/10-mount\"\n  echo \"#\"\n  echo \"###########################################################\"\n  echo \"\"\n  echo \"#!\/bin\/sh\" > \/etc\/hotplug.d\/block\/10-mount\n  echo \"\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"# Copyright (C) 2020 OpenWrt.org\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"# more apps installed, need more time to load kernel modules!\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"sleep 5\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"blkdev=\\`dirname \\$DEVPATH\\`\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"if [ \\`basename \\$blkdev\\` != \\\"block\\\" ]; then\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"  device=\\`basename \\$DEVPATH\\`\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"  case \\\"\\$ACTION\\\" in\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"    add)\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"      mkdir -p \/mnt\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"      # vfat &amp; ntfs-3g check\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"      if [ \\`which fdisk\\` ]; then\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"        isntfs=\\`fdisk -l | grep \\$device | grep NTFS\\`\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"        isvfat=\\`fdisk -l | grep \\$device | grep FAT\\`\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"        isfuse=\\`lsmod | grep fuse\\`\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"        isntfs3g=\\`which ntfs-3g\\`\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"      else\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"        isntfs=\\\"\\\"\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"        isvfat=\\\"\\\"\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"      fi\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"      # mount with ntfs-3g if possible, else with default mount\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"      if [ \\\"\\$isntfs\\\" -a \\\"\\$isfuse\\\" -a \\\"\\$isntfs3g\\\" ]; then\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"        ntfs-3g -o rw,sync,uid=500,gid=65534 \/dev\/\\$device \/mnt\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"      elif [ \\\"\\$isvfat\\\" ]; then\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"        mount -o rw,uid=500,gid=65534,codepage=949,iocharset=utf8 \/dev\/\\$device \/mnt\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"      else\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"        mount -o rw,sync,uid=500,gid=65534 \/dev\/\\$device \/mnt\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"      fi\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"      ;;\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"    remove)\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"      umount -l \/dev\/\\$device\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"      ;;\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"  esac\" >> \/etc\/hotplug.d\/block\/10-mount\n  echo \"fi\" >> \/etc\/hotplug.d\/block\/10-mount\n  chmod 755 \/etc\/hotplug.d\/block\/10-mount\n}\n\nfunc_echo_reboot_now() {\n  echo \"\"\n  echo \"###########################################################\"\n  echo \"#\"\n  echo \"# PLEASE, REBOOT NOW\"\n  echo \"#\"\n  echo \"###########################################################\"\n  echo \"\"\n}\n\nfunc_set_ddns() {\n  echo \"###########################################################\"\n  echo \"#\"\n  echo \"# set_ddns\"\n  echo \"#\"\n  echo \"###########################################################\"\n  echo \"\"\n  uci set ddns.global=ddns\n  uci set ddns.global.ddns_dateformat='%F %R'\n  uci set ddns.global.ddns_loglines='250'\n  uci set ddns.global.upd_privateip='0'\n  uci set ddns.duckdns=service\n  uci set ddns.duckdns.enabled='1'\n  uci set ddns.duckdns.password='f63a82fe-e69b-4df7-a0fa-bda0d58e6714'\n  uci set ddns.duckdns.ip_source='network'\n  uci set ddns.duckdns.ip_network='wan'\n  uci set ddns.duckdns.lookup_host='hasu0707.duckdns.org'\n  uci set ddns.duckdns.service_name='duckdns.org'\n  uci set ddns.duckdns.domain='hasu0707.duckdns.org'\n  uci commit ddns\n\n  uci delete ddns.myddns_ipv4\n  uci delete ddns.myddns_ipv6\n  uci commit ddns\n}\n\nfunc_set_dhcp() {\n  echo \"###########################################################\"\n  echo \"#\"\n  echo \"# set dhcp\"\n  echo \"#\"\n  echo \"###########################################################\"\n  echo \"\"\n  uci set dhcp.lan.start='101'\n  uci set dhcp.lan.limit='98'\n  #uci set dhcp.lan.dhcp_option='6,8.8.8.8,8.8.4.4'\n\n  uci add dhcp host\n  uci set dhcp.@host[-1].name=\"ODROID-HC2\"\n  uci set dhcp.@host[-1].mac=\"00:1E:06:36:F6:02\"\n  uci set dhcp.@host[-1].ip=\"192.168.1.10\"\n\n  uci add dhcp host\n  uci set dhcp.@host[-1].name=\"OPIPC2\"\n  uci set dhcp.@host[-1].mac=\"02:01:3D:51:DC:63\"\n  uci set dhcp.@host[-1].ip=\"192.168.1.20\"\n\n  uci add dhcp host\n  uci set dhcp.@host[-1].name=\"OPIPC2_WIFI\"\n  uci set dhcp.@host[-1].mac=\"00:26:66:42:DC:DF\"\n  uci set dhcp.@host[-1].ip=\"192.168.1.21\"\n\n  uci add dhcp host\n  uci set dhcp.@host[-1].name=\"OPIZERO\"\n  uci set dhcp.@host[-1].mac=\"02:42:E3:78:DA:7B\"\n  uci set dhcp.@host[-1].ip=\"192.168.1.22\"\n\n  uci add dhcp host\n  uci set dhcp.@host[-1].name=\"OPIZERO_WIFI\"\n  uci set dhcp.@host[-1].mac=\"12:42:E3:78:DA:7B\"\n  uci set dhcp.@host[-1].ip=\"192.168.1.23\"\n\n  uci add dhcp host\n  uci set dhcp.@host[-1].name=\"PROBOOK_4330S\"\n  uci set dhcp.@host[-1].mac=\"E4:11:5B:43:B7:53\"\n  uci set dhcp.@host[-1].ip=\"192.168.1.30\"\n\n  uci add dhcp host\n  uci set dhcp.@host[-1].name=\"PROBOOK_4330S_WIFI\"\n  uci set dhcp.@host[-1].mac=\"9C:B7:0D:60:EF:6D\"\n  uci set dhcp.@host[-1].ip=\"192.168.1.31\"\n\n  uci add dhcp host\n  uci set dhcp.@host[-1].name=\"LM-V500N\"\n  uci set dhcp.@host[-1].mac=\"98:B8:BA:11:09:DF\"\n  uci set dhcp.@host[-1].ip=\"192.168.1.40\"\n\n  uci add dhcp host\n  uci set dhcp.@host[-1].name=\"SM-A520K\"\n  uci set dhcp.@host[-1].mac=\"BC:54:51:8A:62:54\"\n  uci set dhcp.@host[-1].ip=\"192.168.1.41\"\n\n  uci add dhcp host\n  uci set dhcp.@host[-1].name=\"IPHONE_6\"\n  uci set dhcp.@host[-1].mac=\"48:43:7C:F1:2D:B2\"\n  uci set dhcp.@host[-1].ip=\"192.168.1.42\"\n\n  uci add dhcp host\n  uci set dhcp.@host[-1].name=\"VNS-L62\"\n  uci set dhcp.@host[-1].mac=\"D0:65:CA:CA:0A:B0\"\n  uci set dhcp.@host[-1].ip=\"192.168.1.43\"\n\n  uci add dhcp host\n  uci set dhcp.@host[-1].name=\"EASYN_ES200K\"\n  uci set dhcp.@host[-1].mac=\"00:AF:87:7E:38:29\"\n  uci set dhcp.@host[-1].ip=\"192.168.1.50\"\n\n  uci add dhcp host\n  uci set dhcp.@host[-1].name=\"EASYN_ES200K_WIFI\"\n  uci set dhcp.@host[-1].mac=\"1C:BF:CE:3D:93:4F\"\n  uci set dhcp.@host[-1].ip=\"192.168.1.51\"\n\n  uci add dhcp host\n  uci set dhcp.@host[-1].name=\"XIAOWA_C10\"\n  uci set dhcp.@host[-1].mac=\"78:11:DC:52:6D:3D\"\n  uci set dhcp.@host[-1].ip=\"192.168.1.60\"\n\n  rm -f \/tmp\/dhcp.leases\n  uci commit dhcp\n}\n\nfunc_set_samba() {\n  echo \"###########################################################\"\n  echo \"#\"\n  echo \"# set samba\"\n  echo \"#\"\n  echo \"###########################################################\"\n  echo \"\"\n  uci set samba.@samba[0]='samba'\n  uci set samba.@samba[0].name='openwrt'\n  uci set samba.@samba[0].workgroup='WORKGROUP'\n  uci set samba.@samba[0].description=\"${DEVICE_NAME}\"\n  uci set samba.@samba[0].homes='0'\n  uci add samba sambashare\n  uci set samba.@sambashare[-1]='sambashare'\n  uci set samba.@sambashare[-1].browseable='yes'\n  uci set samba.@sambashare[-1].path='\/mnt'\n  uci set samba.@sambashare[-1].users='openwrt'\n  uci set samba.@sambashare[-1].read_only='no'\n  uci set samba.@sambashare[-1].guest_ok='no'\n  uci set samba.@sambashare[-1].create_mask='600'\n  uci set samba.@sambashare[-1].dir_mask='700'\n  uci set samba.@sambashare[-1].name='STORAGE'\n\n  uci commit samba\n  \/etc\/init.d\/samba stop\n  uci commit samba\n  umount \/mnt\n  chown openwrt:nogroup \/mnt\n  \/etc\/init.d\/samba enable\n  \/etc\/init.d\/samba start\n}\n\nfunc_set_firewall() {\n  echo \"###########################################################\"\n  echo \"#\"\n  echo \"# firewall defaults\"\n  echo \"#\"\n  echo \"###########################################################\"\n  echo \"\"\n  uci set firewall.@defaults[0]=defaults\n  uci set firewall.@defaults[0].syn_flood='1'\n  uci set firewall.@defaults[0].input='DROP'\n  uci set firewall.@defaults[0].forward='DROP'\n  uci set firewall.@defaults[0].output='DROP'\n  uci set firewall.@rule[0].enabled='1'\n  uci set firewall.@rule[1].enabled='0'\n  uci set firewall.@rule[2].enabled='1'\n  uci set firewall.@rule[3].enabled='0'\n  uci set firewall.@rule[4].enabled='0'\n  uci set firewall.@rule[5].enabled='0'\n  uci set firewall.@rule[6].enabled='0'\n  uci set firewall.@rule[7].enabled='0'\n  uci set firewall.@rule[8].enabled='0'\n  uci set firewall.@rule[0].extra='-m geoip --src-cc KR'\n  uci set firewall.@rule[1].extra='-m geoip --src-cc KR'\n  uci set firewall.@rule[2].extra='-m geoip --src-cc KR'\n  uci set firewall.@rule[3].extra='-m geoip --src-cc KR'\n  uci set firewall.@rule[4].extra='-m geoip --src-cc KR'\n  uci set firewall.@rule[5].extra='-m geoip --src-cc KR'\n  uci set firewall.@rule[6].extra='-m geoip --src-cc KR'\n  uci set firewall.@rule[7].extra='-m geoip --src-cc KR'\n  uci set firewall.@rule[8].extra='-m geoip --src-cc KR'\n\n  echo \"###########################################################\"\n  echo \"#\"\n  echo \"# add firewall rule\"\n  echo \"#\"\n  echo \"###########################################################\"\n  echo \"\"\n  uci add firewall rule\n  uci set firewall.@rule[-1]=rule\n  uci set firewall.@rule[-1].target='ACCEPT'\n  uci set firewall.@rule[-1].name='allow-es200k lan to wan ntp'\n  uci set firewall.@rule[-1].family='ipv4'\n  uci set firewall.@rule[-1].src='lan'\n  uci set firewall.@rule[-1].src_ip='192.168.1.50'\n  uci set firewall.@rule[-1].dest_port='37 123'\n  uci set firewall.@rule[-1].proto='tcp udp'\n  uci set firewall.@rule[-1].dest='wan'\n  uci set firewall.@rule[-1].enabled='1'\n\n  uci add firewall rule\n  uci set firewall.@rule[-1]=rule\n  uci set firewall.@rule[-1].target='ACCEPT'\n  uci set firewall.@rule[-1].name='allow-es200k wifi lan to wan ntp'\n  uci set firewall.@rule[-1].family='ipv4'\n  uci set firewall.@rule[-1].src='lan'\n  uci set firewall.@rule[-1].src_ip='192.168.1.51'\n  uci set firewall.@rule[-1].dest_port='37 123'\n  uci set firewall.@rule[-1].proto='tcp udp'\n  uci set firewall.@rule[-1].dest='wan'\n  uci set firewall.@rule[-1].enabled='1'\n\n  uci add firewall rule\n  uci set firewall.@rule[-1]=rule\n  uci set firewall.@rule[-1].name='reject-es200k lan to wan'\n  uci set firewall.@rule[-1].src_ip='192.168.1.50'\n  uci set firewall.@rule[-1].target='REJECT'\n  uci set firewall.@rule[-1].family='ipv4'\n  uci set firewall.@rule[-1].src='lan'\n  uci set firewall.@rule[-1].proto='tcp udp'\n  uci set firewall.@rule[-1].dest='wan'\n  uci set firewall.@rule[-1].enabled='1'\n\n  uci add firewall rule\n  uci set firewall.@rule[-1]=rule\n  uci set firewall.@rule[-1].name='reject-es200k wifi lan to wan'\n  uci set firewall.@rule[-1].src_ip='192.168.1.51'\n  uci set firewall.@rule[-1].target='REJECT'\n  uci set firewall.@rule[-1].family='ipv4'\n  uci set firewall.@rule[-1].src='lan'\n  uci set firewall.@rule[-1].proto='tcp udp'\n  uci set firewall.@rule[-1].dest='wan'\n  uci set firewall.@rule[-1].enabled='1'\n\n  echo \"###########################################################\"\n  echo \"#\"\n  echo \"# add firewall redirect\"\n  echo \"#\"\n  echo \"###########################################################\"\n  echo \"\"\n  uci add firewall redirect\n  uci set firewall.@redirect[-1]=redirect\n  uci set firewall.@redirect[-1].target='DNAT'\n  uci set firewall.@redirect[-1].src='wan'\n  uci set firewall.@redirect[-1].dest='lan'\n  uci set firewall.@redirect[-1].proto='tcp'\n  uci set firewall.@redirect[-1].src_dport='5005'\n  uci set firewall.@redirect[-1].dest_ip='192.168.1.10'\n  uci set firewall.@redirect[-1].dest_port='5005'\n  uci set firewall.@redirect[-1].name='webdav'\n  uci set firewall.@redirect[-1].enabled='1'\n  uci set firewall.@redirect[-1].extra='-m geoip --src-cc KR'\n\n  uci add firewall redirect\n  uci set firewall.@redirect[-1]=redirect\n  uci set firewall.@redirect[-1].target='DNAT'\n  uci set firewall.@redirect[-1].src='wan'\n  uci set firewall.@redirect[-1].src_ip=\"${TRUST_HOST}\"\n  uci set firewall.@redirect[-1].dest='lan'\n  uci set firewall.@redirect[-1].proto='tcp'\n  uci set firewall.@redirect[-1].src_dport='9091'\n  uci set firewall.@redirect[-1].dest_ip='192.168.1.10'\n  uci set firewall.@redirect[-1].dest_port='9091'\n  uci set firewall.@redirect[-1].name='transmission-daemon'\n  uci set firewall.@redirect[-1].enabled='1'\n  uci set firewall.@redirect[-1].extra='-m geoip --src-cc KR'\n\n  uci add firewall redirect\n  uci set firewall.@redirect[-1]=redirect\n  uci set firewall.@redirect[-1].target='DNAT'\n  uci set firewall.@redirect[-1].src='wan'\n  uci set firewall.@redirect[-1].dest='lan'\n  uci set firewall.@redirect[-1].proto='tcp'\n  uci set firewall.@redirect[-1].src_dport='443'\n  uci set firewall.@redirect[-1].dest_ip='192.168.1.10'\n  uci set firewall.@redirect[-1].dest_port='443'\n  uci set firewall.@redirect[-1].name='https'\n  uci set firewall.@redirect[-1].enabled='1'\n  uci set firewall.@redirect[-1].extra='-m geoip --src-cc KR'\n\n  uci add firewall redirect\n  uci set firewall.@redirect[-1]=redirect\n  uci set firewall.@redirect[-1].target='DNAT'\n  uci set firewall.@redirect[-1].src='wan'\n  uci set firewall.@redirect[-1].src_ip=\"${TRUST_HOST}\"\n  uci set firewall.@redirect[-1].dest='lan'\n  uci set firewall.@redirect[-1].proto='tcp'\n  uci set firewall.@redirect[-1].src_dport='5901'\n  uci set firewall.@redirect[-1].dest_ip='192.168.1.20'\n  uci set firewall.@redirect[-1].dest_port='5901'\n  uci set firewall.@redirect[-1].name='vnc-192.168.1.20'\n  uci set firewall.@redirect[-1].enabled='1'\n\n  uci add firewall redirect\n  uci set firewall.@redirect[-1]=redirect\n  uci set firewall.@redirect[-1].target='DNAT'\n  uci set firewall.@redirect[-1].src='wan'\n  uci set firewall.@redirect[-1].src_ip=\"${TRUST_HOST}\"\n  uci set firewall.@redirect[-1].dest='lan'\n  uci set firewall.@redirect[-1].proto='tcp'\n  uci set firewall.@redirect[-1].src_dport='3389'\n  uci set firewall.@redirect[-1].dest_ip='192.168.1.30'\n  uci set firewall.@redirect[-1].dest_port='3389'\n  uci set firewall.@redirect[-1].name='rdp-192.168.1.30'\n  uci set firewall.@redirect[-1].enabled='1'\n\n  uci add firewall redirect\n  uci set firewall.@redirect[-1]=redirect\n  uci set firewall.@redirect[-1].target='DNAT'\n  uci set firewall.@redirect[-1].src='wan'\n  uci set firewall.@redirect[-1].dest='lan'\n  uci set firewall.@redirect[-1].proto='tcp udp'\n  uci set firewall.@redirect[-1].src_dport='51413'\n  uci set firewall.@redirect[-1].dest_ip='192.168.1.20'\n  uci set firewall.@redirect[-1].dest_port='51413'\n  uci set firewall.@redirect[-1].name='transmission-peer'\n  uci set firewall.@redirect[-1].enabled='1'\n\n  uci add firewall redirect\n  uci set firewall.@redirect[-1]=redirect\n  uci set firewall.@redirect[-1].src_ip=\"${TRUST_HOST}\"\n  uci set firewall.@redirect[-1].target='DNAT'\n  uci set firewall.@redirect[-1].src='wan'\n  uci set firewall.@redirect[-1].dest='lan'\n  uci set firewall.@redirect[-1].proto='tcp'\n  uci set firewall.@redirect[-1].src_dport='21'\n  uci set firewall.@redirect[-1].dest_ip='192.168.1.10'\n  uci set firewall.@redirect[-1].dest_port='21'\n  uci set firewall.@redirect[-1].name='ftp'\n  uci set firewall.@redirect[-1].enabled='1'\n\n  uci add firewall redirect\n  uci set firewall.@redirect[-1]=redirect\n  uci set firewall.@redirect[-1].src_ip=\"${TRUST_HOST}\"\n  uci set firewall.@redirect[-1].target='DNAT'\n  uci set firewall.@redirect[-1].src='wan'\n  uci set firewall.@redirect[-1].dest='lan'\n  uci set firewall.@redirect[-1].proto='tcp'\n  uci set firewall.@redirect[-1].src_dport='5500-5532'\n  uci set firewall.@redirect[-1].dest_ip='192.168.1.10'\n  uci set firewall.@redirect[-1].name='ftp-passive'\n  uci set firewall.@redirect[-1].enabled='1'\n\n  uci add firewall redirect\n  uci set firewall.@redirect[-1]=redirect\n  uci set firewall.@redirect[-1].src_ip=\"${TRUST_HOST}\"\n  uci set firewall.@redirect[-1].target='DNAT'\n  uci set firewall.@redirect[-1].src='wan'\n  uci set firewall.@redirect[-1].dest='lan'\n  uci set firewall.@redirect[-1].proto='tcp'\n  uci set firewall.@redirect[-1].src_dport='22'\n  uci set firewall.@redirect[-1].dest_ip='192.168.1.10'\n  uci set firewall.@redirect[-1].dest_port='9910'\n  uci set firewall.@redirect[-1].name='ssh-192.168.1.10'\n  uci set firewall.@redirect[-1].enabled='1'\n\n  uci add firewall redirect\n  uci set firewall.@redirect[-1]=redirect\n  uci set firewall.@redirect[-1].src_ip=\"${TRUST_HOST}\"\n  uci set firewall.@redirect[-1].target='DNAT'\n  uci set firewall.@redirect[-1].src='wan'\n  uci set firewall.@redirect[-1].dest='lan'\n  uci set firewall.@redirect[-1].proto='tcp'\n  uci set firewall.@redirect[-1].src_dport='22'\n  uci set firewall.@redirect[-1].dest_ip='192.168.1.20'\n  uci set firewall.@redirect[-1].dest_port='9920'\n  uci set firewall.@redirect[-1].name='ssh-192.168.1.20'\n  uci set firewall.@redirect[-1].enabled='1'\n\n  uci add firewall redirect\n  uci set firewall.@redirect[-1]=redirect\n  uci set firewall.@redirect[-1].src_ip=\"${TRUST_HOST}\"\n  uci set firewall.@redirect[-1].target='DNAT'\n  uci set firewall.@redirect[-1].src='wan'\n  uci set firewall.@redirect[-1].dest='lan'\n  uci set firewall.@redirect[-1].proto='tcp'\n  uci set firewall.@redirect[-1].src_dport='32400'\n  uci set firewall.@redirect[-1].dest_ip='192.168.1.20'\n  uci set firewall.@redirect[-1].dest_port='32400'\n  uci set firewall.@redirect[-1].name='plex_media_server'\n  uci set firewall.@redirect[-1].enabled='1'\n\n  echo \"###########################################################\"\n  echo \"#\"\n  echo \"# add firewall NFS redirect\"\n  echo \"#\"\n  echo \"###########################################################\"\n  echo \"\"\n  uci add firewall redirect\n  uci set firewall.@redirect[-1]=redirect\n  uci set firewall.@redirect[-1].target='DNAT'\n  uci set firewall.@redirect[-1].src='wan'\n  uci set firewall.@redirect[-1].src_ip=\"${TRUST_HOST}\"\n  uci set firewall.@redirect[-1].dest='lan'\n  uci set firewall.@redirect[-1].proto='tcp udp'\n  uci set firewall.@redirect[-1].src_dport='111'\n  uci set firewall.@redirect[-1].dest_ip='192.168.1.10'\n  uci set firewall.@redirect[-1].dest_port='111'\n  uci set firewall.@redirect[-1].name='nfs_portmapper'\n  uci set firewall.@redirect[-1].enabled='1'\n\n  uci add firewall redirect\n  uci set firewall.@redirect[-1]=redirect\n  uci set firewall.@redirect[-1].target='DNAT'\n  uci set firewall.@redirect[-1].src='wan'\n  uci set firewall.@redirect[-1].src_ip=\"${TRUST_HOST}\"\n  uci set firewall.@redirect[-1].dest='lan'\n  uci set firewall.@redirect[-1].proto='tcp udp'\n  uci set firewall.@redirect[-1].src_dport='2049'\n  uci set firewall.@redirect[-1].dest_ip='192.168.1.10'\n  uci set firewall.@redirect[-1].dest_port='2049'\n  uci set firewall.@redirect[-1].name='nfs'\n  uci set firewall.@redirect[-1].enabled='1'\n\n  uci add firewall redirect\n  uci set firewall.@redirect[-1]=redirect\n  uci set firewall.@redirect[-1].target='DNAT'\n  uci set firewall.@redirect[-1].src='wan'\n  uci set firewall.@redirect[-1].src_ip=\"${TRUST_HOST}\"\n  uci set firewall.@redirect[-1].dest='lan'\n  uci set firewall.@redirect[-1].proto='tcp udp'\n  uci set firewall.@redirect[-1].src_dport='4001'\n  uci set firewall.@redirect[-1].dest_ip='192.168.1.10'\n  uci set firewall.@redirect[-1].dest_port='4001'\n  uci set firewall.@redirect[-1].name='nfs_nlockmgr'\n  uci set firewall.@redirect[-1].enabled='1'\n\n  uci add firewall redirect\n  uci set firewall.@redirect[-1]=redirect\n  uci set firewall.@redirect[-1].target='DNAT'\n  uci set firewall.@redirect[-1].src='wan'\n  uci set firewall.@redirect[-1].src_ip=\"${TRUST_HOST}\"\n  uci set firewall.@redirect[-1].dest='lan'\n  uci set firewall.@redirect[-1].proto='tcp udp'\n  uci set firewall.@redirect[-1].src_dport='4002'\n  uci set firewall.@redirect[-1].dest_ip='192.168.1.10'\n  uci set firewall.@redirect[-1].dest_port='4002'\n  uci set firewall.@redirect[-1].name='nfs_mountd'\n  uci set firewall.@redirect[-1].enabled='1'\n\n  uci commit firewall\n}\n\nfunc_set_wireless() {\n  echo \"###########################################################\"\n  echo \"#\"\n  echo \"# set wifi\"\n  echo \"#\"\n  echo \"###########################################################\"\n  echo \"\"\n  uci set wireless.default_radio0.mode='ap'\n  uci set wireless.default_radio0.ssid='IEEE_802.11_BGN'\n  uci set wireless.default_radio0.encryption='psk2'\n  uci set wireless.default_radio0.key='01086023358'\n  uci set wireless.default_radio0.disabled='0'\n\n  uci set wireless.default_radio1.mode='ap'\n  uci set wireless.default_radio1.ssid='IEEE_802.11_NAC'\n  uci set wireless.default_radio1.encryption='psk2'\n  uci set wireless.default_radio1.key='01086023358'\n  uci set wireless.default_radio1.disabled='0'\n\n  uci commit wireless\n}\n\nfunc_hd_idle() {\n  echo \"config hd-idle\" > \/etc\/config\/hd-idle\n  echo \"  option disk 'sda'\" >> \/etc\/config\/hd-idle\n  echo \"  option idle_time_unit 'minutes'\" >> \/etc\/config\/hd-idle\n  echo \"  option idle_time_interval '5'\" >> \/etc\/config\/hd-idle\n  echo \"  option enabled '1'\" >> \/etc\/config\/hd-idle\n\n  uci commit hd-idle\n}\n\nfunc_passwd_openwrt() {\n  echo \"###########################################################\"\n  echo \"#\"\n  echo \"# passwd openwrt\"\n  echo \"#\"\n  echo \"###########################################################\"\n  echo \"\"\n  passwd openwrt\n}\n\nfunc_smbpasswd_openwrt() {\n  echo \"\"\n  echo \"###########################################################\"\n  echo \"#\"\n  echo \"# smbpasswd -a openwrt\"\n  echo \"#\"\n  echo \"###########################################################\"\n  echo \"\"\n  smbpasswd -a openwrt\n}\n\ncheck_board_name\nfunc_set_vsftpd\nfunc_set_system\nfunc_set_ntpclient\nfunc_make_mount_script\nfunc_set_ddns\nfunc_set_dhcp\nfunc_set_samba\nfunc_set_firewall\nfunc_set_wireless\nfunc_hd_idle\nluci-reload\nfunc_passwd_openwrt\nfunc_smbpasswd_openwrt\nfunc_echo_reboot_now\nrm -f $0<\/pre>\n","protected":false},"excerpt":{"rendered":"","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_import_markdown_pro_load_document_selector":0,"_import_markdown_pro_submit_text_textarea":"","site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[21],"tags":[],"class_list":["post-1051","post","type-post","status-publish","format-standard","hentry","category-development_openwrt"],"_links":{"self":[{"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=\/wp\/v2\/posts\/1051","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1051"}],"version-history":[{"count":0,"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=\/wp\/v2\/posts\/1051\/revisions"}],"wp:attachment":[{"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1051"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1051"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/hasu0707.duckdns.org\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1051"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}