Slashdot Mirror

← Back to Stories (view on slashdot.org)

Linux Firmware For Some 802.11b Access Points

Posted by timothy on from the now-that-is-a-busybox dept.

drwho writes "This just unveiled at the BAWUG meeting tonight: Linux firmware for Access Points. Check this URL for more info. I haven't tried it yet but it looks great!" The upshot is that certain Access Points can be flashed with a stripped-down Linux system, which makes them more flexible than they'd be under the included firmware. There are even some screenshots of a modded access point booting up.

29 of 151 comments (clear)

  1. 2.4.x by tulare · · Score: 5, Interesting

    A quick thought - iptables on an access point? That I like. Think of all the possiblities...

    --
    political_news.c: warning: comparison is always true due to limited range of data type
    1. Re:2.4.x by autocracy · · Score: 3, Insightful

      Other quick thought - wouldn't that take up all the RAM while processing packets?

      --
      SIG: HUP
    2. Re:2.4.x by 1010011010 · · Score: 5, Insightful

      Another thought:

      IPSec on the access point. Screw WEP!

      --
      Napster-to-go says "Fill and refill your compatible MP3 player", which is a lie. It's not MP3. It's WMA with DRM.
    3. Re:2.4.x by tulare · · Score: 4, Interesting
      Not a bad point, actually. I don't imagine that you could run all the packets through some 500-line list of various netfilter errata. What I had in mind would be more like
      1. iptables -A INPUT -s --source-mac [mac address of my allowed devices] -j ACCEPT

      2. iptables -P INPUT DROP
        iptables -t nat -A POSTROUTING -o [er, whatever the interface is called] -j MASQUERADE
      Not neccessarily complete or accurate in terms of syntax, but you get the gist. Nothing requiring too much memory usage, but enough to ensure you can limit the use of the access point to trusted devices.
      --
      political_news.c: warning: comparison is always true due to limited range of data type
    4. Re:2.4.x by louissypher · · Score: 4, Insightful

      With the embedded processor that those access points have (16.4 BogoMips), forget IPSEC.

      --
      www.bleepyou.com
    5. Re:2.4.x by medcalf · · Score: 3, Funny

      Just get an airport base station as your 802.11 access point, and then configure it to only accept connections from MACs you trust, using the appropriate box in the GUI. Oh, wait, that wouldn't be as much fun. It's too easy.

      --
      -- Two men say they're Jesus. One of them must be wrong. - Dire Straits
  2. Sweet! by jiminim · · Score: 3, Funny

    So now I can run Seti on my AP?

    1. Re:Sweet! by mbyte · · Score: 3, Funny

      > So now I can run Seti on my AP ?

      yes. with 16 bogomips (according to screenshot ;)

  3. firewall replacement by 47PHA60 · · Score: 5, Insightful

    One thing that irks me to no end is that my home firewall is a noisy old Pentium 200 with disks and fans. I've been looking into embedded systems to do this, and the current access points I've seen are not effective firewalls at all; no logging, and they don't _reall_ block everything, even though they say they do. A small Linux kernel which does not need to be built up with support for PCI, two ethernet cards, disks and multiple filesystems might just do the trick.

    1. Re:firewall replacement by linzeal · · Score: 3, Interesting

      Underclock the proc and run it without a fan but get a big cheap socket 7 heatsink and get an rpm adjustable fan that will rev up and down according to a temparture probe included. I have an amd 500mhz underclocked to 375mhz without a fan that runs my firewall.

      --
      An Education is the Font of All Liberty
    2. Re:firewall replacement by Raptor+CK · · Score: 3, Interesting

      How about this?

      Two 10/100 ports, 1 serial port, one Mini-PCI slot, two PCMCIA/CardBus slots.
      Granted, it's not out just yet, but you could make it handle wireless, inbound traffic, and two internal segments fairly easily.

      The only problem is the dependence on CF. Logging isn't generally a good idea to media that can't handle excessive writes. While a Microdrive would fare better, it would also cost much more.

      --
      Raptor
      "Procrastination is great. It gives me a lot more time to do things that I'm never going to do."
    3. Re:firewall replacement by Howie · · Score: 3, Funny

      I use it as my MP3 server.

      Without any disks?

      --
      "don't fall into the fallacy of believing that Perl can solve social problems. Maybe Perl 6 can, but that's a ways off"
    4. Re:firewall replacement by Etyenne · · Score: 3, Informative

      syslogd -r

      --
      :wq
  4. Slogan by Hougaard · · Score: 5, Funny

    I Like their slogan:

    "All your base stations are belong to us"

    .. Sense of humor :)

  5. Mirror of Screenshots by NewbieSpaz · · Score: 4, Informative

    Here: http://kevindustries.com/screens.html

    --
    ------
    Random, useless fact: I type in startx entirely with my left hand.
    1. Re:Mirror of Screenshots by Mignon · · Score: 3, Funny
      Moderation Totals: Redundant=1, Informative=1, Total=2.

      When I first saw this post, I thought - what a jackass moderator, marking this post as redundant. I mean, he's just trying to help. Then I realized that that's exactly what posting a mirror is: redundant and informative.

  6. Finally by mattyohe · · Score: 3, Informative

    Multi-point to Multi-point works with this solution... its funny how going to linux solves my problems

    --
    - what is the definition of simultanagnosia?! I've been meaning to look it up!
  7. Same Some Bucks? by blitzrage · · Score: 3, Insightful

    I think that this is a cool idea. You can now upgrade and fix bugs, security holes etc.. yourself instead of having to wait for the vendor to do it (if they do it). Not to mention if you have a really old AP, maybe you can get it out and play around with Linux on it. This could allow you to take old AP's that people are pretty much throwing out, and recycle them. Might save you a few bucks. That'd be cool.

    --

    I have no signature
  8. Hmm, security? by RC514 · · Score: 5, Interesting

    After the initial install with the SRAM card the access point can be upgraded over the network.

    Does that mean the vendors of access points do not write protect the operating system on the hardware level? Or are future modifications only possible when the jumper remains in the upgrade position? If the jumper becomes meaningless after the upgrade, its implementation is a serious design flaw and an undetected rooting waiting to happen.

    --

  9. Re:802.11b ? by Hougaard · · Score: 3, Informative

    802.11b is wireless LAN. 11Mbit (With fallback to 5 and 2). A good reference is Nokia since they produce a complete setup.

    Nokia Wireless LAN

    I'm using (Nokia) 802.11b for all my home stuff now. No more cables running across the floor (This is really a wife pleaser :). Even my printers are connected on a miniport (To a jet direct box) and mounted on a little mobile table.

  10. Hardware by Cybersonic · · Score: 4, Informative

    in case your curious, this works on access points using the Eumitcom WL11000SA-N boards...
    ( ref: http://opensource.instant802.com/hardware.php )
    Tested: US Robotics 2450, SMC EZconnect 2652W

    Time to buy an SMC for me :)

    --
    Cybie! aka Ralph Bonnell
  11. Re:How are they doing bridging? by irregular_hero · · Score: 4, Informative

    The "bridging code" is standard Linux bridging. I think what you're referring to is the "Host AP" or "Infrastructure" mode of the wireless card inside the AP.

    If the card is based on the Prism chipset, there's already a Linux driver that will operate the card in Host AP mode by implementing some of the functions normally present in the access point's Infrastructure mode in user space. Other things are handled by the card.

    For example, the card itself will handle time-dependent functions like beacon-sending. And it will handle hardware-dependent functions like WEP encrypt-decrypt (optionally). But the association table and all the rest of the functions are part of user space.

    Incidentally, you don't need the Host AP driver for your Wireless card to operate a bridged network. Oddly enough, the bridge code in the Linux kernel functions just fine with a wireless card in Peer-to-Peer mode -- it is, after all, just another interface to the kernel itself. What you won't get in peer to peer is sophisticated association handling -- that means that the signal strength meter in your wireless tools won't work exactly right in most commercial packages.

  12. Repeater? by 1010011010 · · Score: 3, Insightful

    Could someone elaborate on the repeater functionality? Could I place unwired access points at regular distances, with only the one at the end wired to the regular network, and roam all down the chain with an 802.11b device (PDA for instance)?

    --
    Napster-to-go says "Fill and refill your compatible MP3 player", which is a lie. It's not MP3. It's WMA with DRM.
    1. Re:Repeater? by dwhedon · · Score: 3, Informative

      Exactly correct. The mesh formed between APs is an ethernet bridge. Stations associated with completely wireless APs (that is, no direct ethernet connection) will have their packets forwarded to the destination which may involve multiple wireless-wireless AP hops. The mesh is dynamic, APs can appear and disappear and stations can move between APs without loss of service.

      David Kimdon
      Instant802 Networks Inc.

  13. You can build an AP on a PC: by burntfungus · · Score: 4, Informative

    You can build a Linux Access point on a PC or laptop, pehaps even a PDA:

    http://people.ssh.com/jkm/Prism2/

    Bridging software: http://bridge.sourceforge.net

    --
    http://wireless.pasadena.net
  14. Use serial port for modem backup? by Fencepost · · Score: 4, Interesting

    One of the features that I like about the MultiTech router/switch I have is that a modem can be hung off the serial port and used as a backup connection. What would it take to do the same with this, and is there a getty out there that would support operating both ways (i.e. use a modem for dialout, but if a terminal was connected instead then allow login).

    --
    fencepost
    just a little off
  15. Try an old Laptop by luiss · · Score: 3, Insightful

    Try getting hold of an old laptop. I got a 486 toshiba satelite for about $20, added two cheap PCMCIA ethernet cards, and loaded linux on it.

    No fans (I think), battery backup, and LCD screen, nice...

    There is a Linux on Laptops FAQ somewhere out there where you can check for compatability. Ebay is a good place to check for cheapo laptops. Just whatch out the the amount of RAM available. With no CD-ROM most of the old cheapo laptops can be a pain to get linux loaded, if your working from a distro whose imstall img can be over 8MB in size.

  16. Re:Can I use this to turn my old notebook into an by burntfungus · · Score: 3, Informative

    Yes see: http://people.ssh.com/jkm/Prism2/

    Lots o links on this subject: http://wireless.pasadena.net/links.php

    --
    http://wireless.pasadena.net
  17. Linux for the Airport by ekalb · · Score: 3, Informative

    There is a port of linux to the Apple Airport Base Station as well. However, it requires the use of a dhcp & tftp server, as well as the Java-based Airport admin tools.