M'nkhaniyi, ndiyesera kufotokoza sitepe ndi sitepe ndondomeko yoyika seva yoyesera ntchito yabwino kwambiri kuti ikhale yogwira ntchito mokwanira, ndikuwonetsa njira zothandiza zogwirira ntchito ndi mikrotik: kasinthidwe kupyolera mu magawo, kuchitidwa kwa malemba, kukonzanso, kukhazikitsa ma modules owonjezera, ndi zina zotero.
Cholinga cha nkhaniyi ndi kulimbikitsa anzake kusiya kusamalira zipangizo maukonde ntchito rakes zoopsa ndi ndodo, mu mawonekedwe a zolembedwa paokha, Dude, Ansible, etc. mabwalo.
0. Kusankha
Chifukwa chiyani ma freeacs osati ma genie-acs omwe atchulidwamo , kuli bwanji ndi moyo?
Chifukwa malinga ndi ma genie-acs okhala ndi mikrotik pali zofalitsa za anthu aku Spain. Ndi awa ΠΈ kuchokera kwa MUM chaka chatha. Autocaricatures pazithunzi ndizozizira, koma ndikufuna kuchoka ku lingaliro lolemba zolemba, kuyendetsa zolemba, kuyendetsa zolemba ...
1. Ikani ma freeacs
Tiyiyika mu Centos7, ndipo popeza zida zimatumiza zambiri, ndipo ACS imagwira ntchito mwachangu ndi nkhokwe, sitidzakhala aumbombo ndi zothandizira. Kuti tigwire ntchito yabwino, tidzagawira 2 CPU cores, 4GB RAM ndi 16GB yosungirako ssd raid10 yofulumira. Ndikhazikitsa ma freeacs mu chidebe cha Proxmox VE lxc, ndipo mutha kugwiritsa ntchito chida chilichonse chomwe chili choyenera kwa inu.
Onetsetsani kuti mwakhazikitsa nthawi yoyenera pamakina anu a ACS.
Dongosololi lidzakhala loyesa, kotero sitigawanitsa tsitsi ndikungogwiritsa ntchito zolemba zoperekedwa mwachifundo momwe ziliri.
wget https://raw.githubusercontent.com/freeacs/freeacs/master/scripts/install_centos.sh
chmod +x install_centos.sh
./ install_centos.shMukangomaliza kulemba, mutha kulowa nthawi yomweyo pa intaneti kudzera pa IP ya makina, ndi zidziwitso za admin / freeacs.
Uwu ndi mawonekedwe abwino a minimalistic, komanso momwe zonse zidakhalira bwino komanso mwachangu
2. Kukonzekera koyambirira kwa ma freeacs
Chigawo choyambirira cha ACS ndi unit kapena CPE (Customer Premises Equipment). Ndipo chinthu chofunikira kwambiri chomwe tiyenera kuyang'anira mayunitsi ndi mtundu wawo wa Unit, i.e. mtundu wa zida zomwe zimatanthawuza magawo osinthika a unit ndi mapulogalamu ake. Koma ngakhale sitikudziwa momwe tingapangire mtundu watsopano wa Unit Type, zingakhale bwino kufunsa gawolo payokha poyatsa Discovery Mode.
Mtundu uwu sungagwiritsidwe ntchito popanga, koma tiyenera kuyambitsa injini posachedwa ndikuwona kuthekera kwadongosolo. Zokonda zonse zoyambira zimasungidwa mu /opt/freeacs-*. Chifukwa chake, timatsegula
vi /opt/freeacs-tr069/config/application-config.conf , tikupeza
discovery.mode = falsendi kusintha ku
discovery.mode = trueKuphatikiza apo, tikufuna kuwonjezera kukula kwa mafayilo omwe nginx ndi mysql azigwira nawo. Kwa mysql, onjezani mzere ku /etc/my.cnf
max_allowed_packet=32M, ndi nginx, onjezani ku /etc/nginx/nginx.conf
client_max_body_size 32m;ku gawo la http. Kupanda kutero, tidzatha kugwira ntchito ndi firmware osapitilira 1M.
Timayambiranso, ndipo ndife okonzeka kugwira ntchito ndi zipangizo.
Ndipo mu gawo la chipangizo (CPE) tidzakhala ndi mwana wogwira ntchito mwakhama .
Asanapange kugwirizana mayeso, izo m'pofunika kuti pamanja sintha CPE kuti osachepera ntchito kasinthidwe kuti magawo kuti mukufuna sintha m'tsogolo alibe kanthu. Kwa rauta, chochepera chomwe mungachite ndikupangitsa kasitomala wa dhcp pa ether1, kukhazikitsa phukusi la tr-069client ndikuyika mawu achinsinsi.
3. Lumikizani Mikrotik
Ndikoyenera kulumikiza mayunitsi onse pogwiritsa ntchito nambala yovomerezeka ngati malowedwe. Ndiye zonse zidzamveka bwino kwa inu m'zipika. Wina amalangiza kugwiritsa ntchito WAN MAC - musakhulupirire. Ngati wina agwiritsa ntchito malo olowera / odutsa omwe amapezeka kwa aliyense, apeweni.
Tsegulani chipika tr-069 kuti muwunikire "zokambirana"
tail -f /var/log/freeacs-tr069/tr069-conversation.logTsegulani winbox, menyu TR-069.
ACS URL: http://10.110.0.109/tr069/prov (sinthani ndi IP yanu)
Dzina lolowera: 9249094C26CB (koperani nambala ya serial kuchokera ku system>routerboard)
Achinsinsi: 123456 (osafunikira kuti apezeke, koma ofunikira)
Sitisintha nthawi yodziwitsa za Periodic. Tidzapereka izi kudzera mu ACS yathu
M'munsimu muli zoikidwiratu za kutali kulumikiza kwa kugwirizana, koma sindinathe kupeza mikrotik ntchito ndi izi. Ngakhale pempho lakutali limagwira ntchito kunja kwa bokosi ndi mafoni. Tiyenera kuzilingalira.
Pambuyo podina Ikani batani, deta idzasinthidwa mu terminal, ndipo mu mawonekedwe a intaneti a Freeacs mudzatha kuwona rauta yathu ndi Unit Type Type "hAPaclite" yomwe idapangidwa yokha.
Router yalumikizidwa. Mutha kuyang'ana mu Unit Type yopangidwa yokha. Kutsegula Easy Provisioning > Unit Type > Unit Type Overview > hAPaclite. Zomwe palibe! Zambiri mpaka 928 magawo (ndinayang'ana mu chipolopolo). Kaya ndi zambiri kapena zazing'ono, tidzazizindikira mtsogolo, koma pakadali pano tingoyang'ana mwachangu. Izi ndi zomwe Unit Type ikutanthauza. Uwu ndi mndandanda wamagawo omwe amathandizidwa okhala ndi makiyi koma opanda zikhalidwe. Miyezo imayikidwa m'magawo omwe ali pansipa - Mbiri ndi Mayunitsi.
4. Konzani Mikrotik
Yakwana nthawi yotsitsa Bukuli la 2011 lili ngati botolo la vinyo wabwino, wokalamba. Tiyeni titsegule ndipo tipume.
Ndipo ife tokha, mu mawonekedwe a intaneti, dinani pensulo pafupi ndi gawo lathu ndikupita kumayendedwe a unit. Zikuwoneka motere:
Tiyeni tiwone mwachidule zomwe zili zosangalatsa patsamba lino:
Chida cha kasinthidwe ka unit
- Mbiri: Iyi ndi mbiri mkati mwa Unit Type. Hierarchy ili motere:
UnitType > Profile > Unit. Ndiko kuti, tikhoza kupanga, mwachitsanzo, mbirihAPaclite > hotspotΠΈhAPaclite > branch, koma mkati mwachitsanzo cha chipangizo
Kupereka block ndi mabatani
Malangizo a zida akuwonetsa kuti mabatani onse omwe ali mu Provisioning block amatha kugwiritsa ntchito masinthidwe nthawi yomweyo kudzera pa ConnectionRequestURL. Koma, monga ndanenera pamwambapa, izi sizikugwira ntchito, chifukwa chake mutatha kukanikiza mabataniwo muyenera kuyambitsanso kasitomala wa tr-069 pa mikrotik kuti muyambe kupereka.
- Freq / Kufalikira: Kangati pa sabata kuti mupereke kasinthidwe Β±% kuchepetsa katundu pa seva ndi njira zoyankhulirana. Mwachikhazikitso ndi 7/20, i.e. tsiku lililonse Β± 20% ndikuwonetsa momwe zimakhalira mumasekondi. Palibe chifukwa chosinthira ma frequency operekera pano, chifukwa ... padzakhala phokoso lowonjezera muzopika ndipo zoikamo sizidzagwiritsidwa ntchito nthawi zonse monga momwe zikuyembekezeredwa
Kupereka mbiri block (maola 48 apitawo)
- M'mawonekedwe, nkhaniyi ili ngati nkhani, koma podina mutuwo, mumatengedwa kupita ku chida chosavuta chofufuzira, chokhala ndi regexp ndi zabwino.
Parameters block
Chida chachikulu komanso chofunikira kwambiri, komwe, kwenikweni, magawo agawo lopatsidwa amayikidwa ndikuwerengedwa. Tsopano tikuwona magawo ofunika kwambiri a dongosolo, popanda zomwe ACS imagwira ntchito ndi unit sizingatheke. Koma tikukumbukira kuti mu Unit Type yathu tili nawo - 928. Tiyeni tiwone matanthauzo onse ndikusankha zomwe aliyense amadya ndi Mikrotik.
4.1 Kuwerenga magawo
Mu Provisioning block, dinani batani la Werengani zonse. Pali zolembedwa zofiira mu chipikacho. Chigawo chidzawoneka kumanja Mtengo wa CPE (panopa).. Pazigawo zamakina, ProvisioningMode yasintha kukhala READALL.
Ndipo... palibe chomwe chidzachitike kupatula uthenga womwe uli mu System.X_FREEACS-COM.IM.Message Kick failed at....
Yambitsaninso kasitomala wa TR-069 kapena yambitsaninso rauta, ndipo pitilizani kutsitsimutsa tsamba la osatsegula mpaka mutapeza magawo kumanja mumakona a imvi okondwa.
Ngati wina akufuna kuti amwe vinyo wakale wokalamba, njirayi ikufotokozedwa m'bukuli ngati 10.2 Inspection mode. Imayatsa ndikugwira ntchito mosiyana, koma tanthauzo lake limafotokozedwa bwino
Njira ya READALL idzazimitsa pambuyo pa mphindi 15, ndipo tidzayesa kudziwa zomwe zili zothandiza apa, ndi zomwe zingawongoledwe "pa ntchentche" pamene tili munjira iyi.
Mutha kusintha ma adilesi a IP, yambitsani / kuletsa zolumikizira, malamulo a firewall, omwe ali ndi ndemanga (kupanda kutero ndi chisokonezo chonse), Wi-Fi, ndi zina zotero.
Ndiko kuti, sikutheka kukhazikitsa mwanzeru mikrotik pogwiritsa ntchito TR-069. Koma mukhoza kuyang'anitsitsa bwino. Ziwerengero za ma interfaces ndi mawonekedwe awo, kukumbukira kwaulere, ndi zina zambiri zilipo.
4.2 Kupereka magawo
Tiyeni tsopano tiyese kupereka magawo ku rauta, kudzera pa tr-069, munjira "yachilengedwe". Wozunzidwa woyamba adzakhala Device.DeviceInfo.X_MIKROTIK_SystemIdentity. Timazipeza mu magawo a All unit. Monga mukuonera, sizinatchulidwe. Izi zikutanthauza kuti unit iliyonse ikhoza kukhala ndi Identity iliyonse. Zokwanira kulekerera izi!
Dinani bokosi loyang'ana pagawo lopanga, ikani dzina la Mr.White ndikudina batani la Update parameters. Munaganiza kale zomwe zidzachitike kenako. Pa gawo lotsatira lolumikizana ndi likulu, rauta iyenera kusintha Identity yake.
Koma izi sizokwanira kwa ife. Parameter ngati Identity ndi yabwino kukhala nayo nthawi zonse pofufuza gawo lomwe mukufuna. Dinani pa dzina la parameter ndikuyang'ana mabokosi a Display(D) ndi Searchable (S). Kusintha kofunikira kwa parameter ku RWSD (Kumbukirani, mayina ndi makiyi amayikidwa pamlingo wapamwamba kwambiri wa Unit Type)
Mtengowu sunangowonetsedwa pamndandanda wazosaka, komanso ukupezeka kuti usakidwe Support > Search > Advanced form
Timayamba kupereka ndikuyang'ana pa Identity. Hello Mr.White! Tsopano simungathe kusintha dzina lanu pomwe tr-069client ikugwira ntchito
4.3 Kupanga ma script
Popeza tapeza kuti sitingathe kukhala popanda iwo, tiyeni tigwiritse ntchito.
Koma tisanayambe kugwira ntchito ndi mafayilo, tiyenera kukonza malangizowo public.url mu file /opt/freeacs-tr069/config/application-config.conf
Tili ndi makonzedwe oyesera omwe adayikidwa ndi script imodzi. Kodi mwayiwala?
# --- Public url (used for download f. ex.) ---
public.url = "http://10.110.0.109"
public.url: ${?PUBLIC_URL}Timayambiranso ACS ndikulunjika ku Files & Scripts.
Koma zomwe zikutitsegulira tsopano ndi za Unit Type, i.e. padziko lonse lapansi kwa ma routers onse a haAP ac lite, akhale rauta yanthambi, hotspot kapena capsman. Sitikufunikirabe mlingo wapamwamba wotere, choncho tisanagwire ntchito ndi zolemba ndi mafayilo, tiyenera kupanga mbiri. Mutha kuyitcha ichi "ntchito" ya chipangizocho.
Tiyeni timupange mwana wathu kukhala seva yanthawi. Malo abwino okhala ndi phukusi lapadera la mapulogalamu ndi magawo ochepa. Tiyeni tipite Easy Provisioning > Profile > Create Profile ndikupanga mbiri mu Unit Type: hAPaclite timeserver. Tinalibe magawo mu mbiri yokhazikika, kotero palibe choti tikope Koperani magawo kuchokera: "osakopera..."
Palibe magawo pano pano, koma zitha kukhazikitsidwa zomwe tidzafuna kuziwona pambuyo pake pamaseva athu anthawi, olumikizidwa pamodzi kuchokera ku hAPaclite. Mwachitsanzo, ma adilesi onse a ma seva a NTP.
Tiyeni tipite ku kasinthidwe kagawo ndikusunthira ku mbiri ya timeserver
Ife potsiriza tipita Files & Scripts, pangani zolemba, ndipo apa mabasi osavuta akuyembekezera ife.
Kuti tigwiritse ntchito script pa unit, tiyenera kusankha Mtundu: TR069_SCRIPT Π° dzina ΠΈ Dzina Lachindunji ayenera kukhala ndi extension .alter
Nthawi yomweyo, pazolemba, mosiyana ndi mapulogalamu, mutha kutsitsa fayilo yopangidwa kale kapena kungolemba / kuyisintha m'munda. Zokhutira. Tiyeni tiyesere kulemba pamenepo.
Ndipo kuti muwone zotsatira zake nthawi yomweyo, tiyeni tiwonjezere vlan ku rauta pa ether1
/interface vlan
add interface=ether1 name=vlan1 vlan-id=1
Lowetsani mkati, dinani Kwezani ndipo mwamaliza. Script yathu vlan1.alter kuyembekezera m'mapiko.
Chabwino, tiyeni? Ayi. Tiyeneranso kuwonjezera gulu la mbiri yathu. Magulu sakuphatikizidwa muulamuliro wa zida, koma amafunikira kuti afufuze mayunitsi mu UnitType kapena Mbiri ndipo amafunikira polemba zolemba kudzera mu Advanced Provisioning. Kawirikawiri, magulu amagwirizanitsidwa ndi malo ndipo amakhala ndi zisa. Tiyeni tipange gulu Russia.
Kodi mungaganize kuti tangotha ββkuchepetsa kusaka kuchokera ku "Ma seva anthawi zonse padziko lapansi pa hAPaclite" mpaka "Ma seva anthawi zonse ku Russia pa hAPaclite". Palinso gulu lalikulu la zinthu zosangalatsa ndi magulu, koma tilibe nthawi. Tiyeni tipite ku zolembedwa.
Advanced Provisioning > Job > Create Job
Popeza tili, pambuyo pa zonse, mu Advanced mode, apa mutha kufotokozera mulu wazinthu zosiyanasiyana zoyambira ntchito, machitidwe pakachitika zolakwika, kubwereza komanso kutha kwa nthawi. Ndikupangira kuti muwerenge zonsezi m'mabuku kapena kukambirana pambuyo pake pozikhazikitsa popanga. Pakalipano, tangoyika n1 mu Stop malamulo kuti ntchitoyo iime ikangomaliza pa 1 unit yathu.
Timadzaza zofunikira, ndipo zomwe zatsala ndikuyambitsa!
Dinani START ndikudikirira. Tsopano zowerengera za zida zomwe zidaphedwa ndi zolemba zosasinthidwa bwino zikuyenda mwachangu! Inde sichoncho. Ntchito zoterezi zimatenga nthawi yayitali, ndipo uku ndiko kusiyana kwawo ndi zolemba, Ansible, etc. Mayunitsi okha amafunsira ntchito pa ndandanda kapena momwe amawonekera pa netiweki, ACS imayang'anira zomwe mayunitsi adalandira kale ntchito, ndi momwe adamaliza, ndikulemba izi m'magawo a unit. Pali 1 unit mugulu lathu, ndipo akadakhala 1001, admin akanayambitsa ntchitoyi ndikupita kukawedza.
Inu. Yambitsaninso rauta kapena yambitsaninso kasitomala wa TR-069. Chilichonse chiyenera kuyenda bwino ndipo Mr.White adzalandira vlan yatsopano. Ndipo ntchito yathu ya Stop rule isintha kukhala PAUSED status. Ndiye kuti, ikhoza kuyambiranso kapena kusinthidwa. Mukadina FINISH, ntchitoyo idzasungidwa
4.4 Kusintha pulogalamu
Iyi ndi mfundo yofunika kwambiri, popeza Firmware ya Mikrotik ndi yokhazikika, koma kuwonjezera ma module sikusintha mtundu wonse wa firmware wa chipangizocho. ACS yathu ndiyabwinobwino ndipo sinagwiritsidwe ntchito ndi izi.
Tsopano tizichita mwachangu ndi zonyansa ndikukankhira gawo la NTP mu firmware wamba nthawi yomweyo, koma mtunduwo ukangosinthidwa pa chipangizocho, sitingathe kuwonjezera gawo lina mwanjira yomweyo.
Popanga, ndibwino kuti musagwiritse ntchito chinyengo choterocho, ndikuyika ma modules omwe angasankhe pa Unit Type pogwiritsa ntchito malemba.
Chifukwa chake, chinthu choyamba chomwe tiyenera kuchita ndikukonzekera phukusi la mapulogalamu amitundu yofunikira ndi zomanga, ndikuziyika pa seva yopezeka pa intaneti. Poyesa, aliyense amene Mr.White angafikire adzachita mayesero, koma kuti apange ndi bwino kusonkhanitsa galasi lodzipangira okha la mapulogalamu ofunikira, omwe sawopsyeza kuika pa intaneti.
Zofunika! Musaiwale kuti nthawi zonse muziphatikiza phukusi la tr-069client pazosintha zanu!
Monga momwe zimakhalira, kutalika kwa njira yopita kumapaketi ndikofunika kwambiri! Pamene ndikuyesera kugwiritsa ntchito chinthu chonga http://192.168.0.237/routeros/stable/mipsbe/routeros-mipsbe-6.45.6.npk, mikrotik inagwera mu mgwirizano wa cyclic ndi gwero, kutumiza mobwerezabwereza TRANSFERCOMPLETE ku chipika cha tr-069. Ndipo ndinathera ma cell ena a minyewa ndikuyesa kupeza chomwe chinali cholakwika. Chifukwa chake, mpaka pano, tiyeni tiyike pamizu, mpaka tipeze
Chifukwa chake tiyenera kukhala ndi mafayilo atatu a npk omwe akupezeka kudzera pa http. Zinakhala chonchi kwa ine
http://192.168.0.241/routeros-mipsbe-6.45.6.npk
http://192.168.0.241/routeros/stable/mipsbe/ntp-6.45.6-mipsbe.npk
http://192.168.0.241/routeros/stable/mipsbe/tr069-client-6.45.6-mipsbe.npkTsopano izi ziyenera kusinthidwa kukhala fayilo ya xml ndi FileType = "1 Firmware Upgrade Image", yomwe tidzadyetsa ku Mikrotik. Dzina likhale ros.xml
Timachita molingana ndi malangizo ochokera :
<upgrade version="1" type="links">
<config />
<links>
<link>
<url>http://192.168.0.241/routeros-mipsbe-6.45.6.npk</url>
</link>
<link>
<url>http://192.168.0.241/ntp-6.45.6-mipsbe.npk</url>
</link>
<link>
<url>http://192.168.0.241/tr069-client-6.45.6-mipsbe.npk</url>
</link>
</links>
</upgrade>Pali kusowa koonekeratu Username/Password kuti mupeze seva yotsitsa. Mutha kuyesa kuyika izi monga mu ndime A.3.2.8 ya protocol tr-069:
<link>
<url>http://192.168.0.237/routeros/stable/mipsbe/ntp-6.45.6-mipsbe.npk</url>
<Username>user</Username>
<Password>pass</Password>
</link>Kapena funsani akuluakulu a Mikrotik mwachindunji za kutalika kwa njira yopita ku *.npk
Tiyeni tipite kumalo omwe timawadziwa Files & Scripts, ndikupanga fayilo ya SOFTWARE pamenepo ndi Name:ros.xml, Dzina Lolinga:ros.xml ndi Version:6.45.6
Chenjerani! Mtundu pano uyenera kufotokozedwa ndendende momwe umasonyezedwera pa chipangizocho ndikudutsa pagawo System.X_FREEACS-COM.Device.SoftwareVersion.
Sankhani fayilo yathu ya xm kuti muyike ndipo mwamaliza.
Tsopano tili ndi njira zambiri zosinthira chipangizochi. Kupyolera mu Wizard mumndandanda waukulu, kudzera mu Advanced Provisioning ndi ntchito ndi mtundu wa SOFTWARE, kapena ingopitani ku kasinthidwe ka unit ndikudina Sinthani. Tiyeni tisankhe njira yosavuta, apo ayi nkhaniyo yatupa kale.
Timasindikiza batani, kuyambitsa zoperekera ndipo mwamaliza. Pulogalamu yoyeserera yatha. Tsopano titha kuchita zambiri ndi mikrotik.
5. Kutsiliza
Nditayamba kulemba, poyamba ndinkafuna kufotokoza kugwirizana kwa foni ya IP, ndikugwiritsa ntchito chitsanzo chake kufotokoza momwe zimakhalira ozizira pamene tr-069 imagwira ntchito mosavuta komanso molimbika. Koma kenako, pamene ndikupita patsogolo ndikukumba mu zipangizozo, ndinaganiza kuti kwa iwo omwe adagwirizanitsa Mikrotik, palibe foni yomwe ingakhale yowopsya pakuphunzira paokha.
M'malo mwake, Freeacs, yomwe tidayesa, ikhoza kugwiritsidwa ntchito kale popanga, koma chifukwa cha izi muyenera kukonza chitetezo, SSL, muyenera kukonza Mikrotik kuti muyambe kukonzanso pambuyo pa kukonzanso, muyenera kukonza zolakwika zowonjezera za Unit Type, santhulani ntchito zamawebusayiti ndi chipolopolo chophatikizika, ndi zina zambiri. Yesani, yambitsani, ndi kulemba yotsatira!
Aliyense, zikomo chifukwa cha chidwi chanu! Ndidzakhala wokondwa kuwona zowongolera ndi ndemanga!
Mndandanda wazinthu zomwe zimagwiritsidwa ntchito ndi maulalo othandiza:
Source: www.habr.com