with ipset, dnsmasq-full, bbr , wg etc support
- update with offical common source with aarch64_cortex-a53
root@MT-3000:/etc/opkg# cat distfeeds.conf
src/gz openwrt_base https://downloads.openwrt.org/releases/21.02-SNAPSHOT/packages/aarch64_cortex-a53/base
src/gz openwrt_luci https://downloads.openwrt.org/releases/21.02-SNAPSHOT/packages/aarch64_cortex-a53/luci
src/gz openwrt_packages https://downloads.openwrt.org/releases/21.02-SNAPSHOT/packages/aarch64_cortex-a53/packages
src/gz openwrt_routing https://downloads.openwrt.org/releases/21.02-SNAPSHOT/packages/aarch64_cortex-a53/routing
src/gz openwrt_telephony https://downloads.openwrt.org/releases/21.02-SNAPSHOT/packages/aarch64_cortex-a53/telephony
opkg update
- install openssh dig bash etc
opkg install openssh-server openssh-client openssh-sftp-server openssh-sftp-client bash bind-dig haproxy
opkg remove dropbear
rm /bin/ash
ln -s /bin/bash /bin/ash
/etc/init.d/sshd restart
# remove unused ko
cd /etc/modules.d/
rm usb-serial* usb-net-rtl8150 usb-net-rtl8152 ipt-offload
- set wg
#!/bin/sh
ip link add wg-client type wireguard
ip link set mtu 1420 up dev wg-client
ip -4 address add 10.0.1.2 dev wg-client
ip route add 10.0.1.0/24 dev wg-client
wg setconf wg-client client.conf
iptables -t nat -A POSTROUTING -o wg-client -j MASQUERADE
iptables -I FORWARD -i wg-client -j ACCEPT
iptables -I FORWARD -o wg-client -j ACCEPT
- fullconenat
iptables -t nat -I PREROUTING -i eth0 -p udp -j FULLCONENAT
iptables -t nat -I POSTROUTING -o eth0 -p udp -j FULLCONENAT
- fix some chinese phone hijack dns query to 114 etc
# fix dns
iptables -t nat -N DNS
iptables -t nat -A DNS -p udp -j REDIRECT --to-ports 53
iptables -t nat -I PREROUTING -p udp --dport 53 -j DNS
- bug