Installing a WLAN access point on Fedora

Sometimes you need a configurable access point on your Fedora desktop. This can be done in a few simple steps:WARNING: Now comes a lot of code!1. Install the required software: yum install hostapd dnsmasq 2. configure your WLAN adapter First, check if your adapter is online: # iwconfig wlan0 IEEE 802.11bgn ESSID: off/any Mode: Managed Access Point: Not-Associated Tx-Power0 dBm Retry short limit: 7 RTS thr:off Fragment thr:off Encryption key: off Power Management: off lo no wireless extensions. eth0 no wireless extensions. Now check if the Network Manager has control over your device: # nmcli -p r Radio switches WIFI-HW WIFI WWAN-HW WWAN -------------------------------------- enabled enabled enabled disabled If it is enabled, disable it with the nmcli: # nmcli r wifi off The Network Manager sets the killswitch to "on", so we need to set it back to off to re-enable wifi outside the NM. # rfkill unblock wlan After this step, we have an active WiFi card without interference from the network manager. Configure the hostapd The configuration file is located in /etc/hostapd/hostapd.conf. Here are useful settings to enable WPA2 with TKIP-CCMP: # Einige verwendbare Standardeinstellungen ... macaddr_acl0 auth_algs1 ignore_broadcast_ssid0 # Kommentieren Sie diese für Basis WPA & WPA2-Unterstützung mit einem Pre-Shared Key wpa3 wpa_key_mgmtWPA-PSK wpa_pairwiseTKIP rsn_pairwiseCCMP # NICHT VERGESSEN EIN WPA-PASSPHRASE EINZURICHTEN!! wpa_passphrase # Die meisten modernen WLAN-Treiber im Kernel benötigen drivernl80211 drivernl80211 # Passen Sie diese Einstellungen für Ihre lokale Konfiguration an... interfacewlan0 hw_modeg channel ssid ieee80211n1 After that the whole thing can be started: # systemctl start hostapd.service # systemctl status hostapd.service hostapd.service - Hostapd IEEE 802.11 AP, IEEE 802.1X / WPA / WPA2 / EAP / RADIUS Authenticator Loaded: geladene (/usr/lib/systemd/system/hostapd.service; disabled) Aktiv: aktiv (läuft), da Fr 2014.08.01 13.24.08 CEST; Vor 4s Prozess: 12208 ExecStart/usr/sbin/hostapd/etc/hostapd/hostapd.conf -P /run/hostapd.pid -B (codeexited, status0/SUCCESS) Haupt PID: 12209 (hostapd) CGroup: /system.slice/hostapd.service └─12209 /usr/sbin/hostapd/etc/hostapd/hostapd.conf -P /run/hostapd.pid -B 1. August 13.24.08 seger systemd: Gestartet Hostapd IEEE 802.11 AP, IEEE 802.1X/WPA/WPA2/EAP/RADIUS Authenticator. Configure DNSMASQ Dnsmasq is a combination DHCP / DNS server with a small memory footprint. The configuration is in /etc/dnsmasq/dnsmasq.conf. The main configuration options: server10.159.14.14 # Upstream DNS interfacewlan0 dhcp-range192.168.23.50,192.168.23.150,12h no-resolv no-Umfrage Configure the firewall Fedora 20 comes with firewalld that can dynamically adjust iptables rules. For our setup, we need to be able to access the outside network, DNS and DHCP access and IP forwarding from wlan0: # Setzen Sie die Schnittstelle in einer Zone firewall-cmd --zonepublic --add-interfacewlan0 # MASQ Aktivieren für diese Zone firewall-cmd --zonepublic --add-masquerade # Lassen Sie DHCP firewall-cmd --zonepublic --add-servicedhcp # Zulassen DNS firewall-cmd --zonepublic --add-servicedns Now connect them all together: After all services are configured, a small script is enough to run the whole thing: #!/bin/bash # WLAN sollte nicht mehr von Network Manager verwaltet werden nmcli r wifi off # WLAN Entblocken rfkill unblock wlan # Rufen Sie die Schnittstelle aufifconfig wlan0 192.168.23.1 Netzmaske 255.255.255.0 up # IP forward aktivieren ## -> bereits aktiviert! # Setzen Sie die Schnittstelle in einer Zone firewall-cmd --zonepublic --add-interfacewlan0 # MASQ für diese Zone aktivieren firewall-cmd --zonepublic --add-masquerade # DHCP erlauben firewall-cmd --zonepublic --add-servicedhcp # DNS erlauben firewall-cmd --zonepublic --add-servicedns # hostapd und dnsmasq startensystemctl start hostapd.service systemctl start dnsmasq.service That's it, have fun with your WLAN access point!

atixadmin

Latest posts by atixadmin (see all)