High Performance Linux Router With Optional LMS Web Panel And Radius Server In 5 Minutes

Want to support HowtoForge? Become a subscriber!
 
Submitted by kadzbi (Contact Author) (Forums) on Fri, 2013-06-21 18:16. :: Debian

High Performance Linux Router With Optional LMS Web Panel And Radius Server In 5 Minutes

Every network administrator managing a pool of many routers, knows how important configuration repeatability is.

For this reason I have presented how to install high performance router under Debian Linux OS with configuration done in an easily editable text files in few simple and pleasant steps. The whole installation should not take more than 5 minutes!  Installed system includes following features:

  • Fully working users bandwidth limiting system for your network customers.
  • Access to the router over MAC-telnet service, known from Mikrotik OS.
  • High performance firewall utilizing hash tables and ip sets, two high performance Linux techniques.
  • Possibility to administrate router through www panel (LMS – lms.org.pl).
  • Possibility to administrate router from configuration files (text files), without using web panel.
  • Radius authorization server, to authenticate users access over WiFi network or PPPoE protocol.
  • Tools to check users bandwidth utilization in real time.
  • TCP connections logging for administrative and security purpose.
  • DHCP server for users IP address assignment. Authorization of the users by ip-mac address pair check, DNS cache server for users.
  • Message for new users – when unknown device is connected web page with office/admin contact information page is displayed.
  • Messaging system to remind users about unpaid payments. Messages are turned on from web panel or configuration files.
  • Internet access blocking with proper message diplay for the user. Disabled is www service and bandwidth is limited to very low speed. User is still able to log in to his/her Bank account to make payment.
  • Easy way to make backup – whole customers configurations is written in the /etc/www_vberry_net folder in text files. Additionally restart script make automatic backup of the running configuration at every change issued.

Let`s do this!:

  1. Install Debian system version 6 squeeze or 7 wheezy (64 bit – amd64 architecture). Install netinstall.iso version.
  2. Check if your computer has two network cards and Internet accesss.
  3. As root user issue following commands:

For Debian 7 (wheezy):

cd /root

wget http://pliki.vberry.net/vberry-2.0/vberry-2.0-install.sh

chmod +x ./vberry-2.0-install.sh

./vberry-2.0-install.sh

For Debian 6 (squeeze):

cd /root

wget http://pliki.vberry.net/vberry-1.0/vberry-1.0-install.sh

chmod +x ./vberry-1.0-install.sh

./vberry-1.0-install.sh

Follow installer script instructions (which means press enter key most of the time  ) During installation mrt packeg will ask you about mrtg file permissions, just press enter, it does not matter what you choose.

During mysql database installation, you will be asked to enter root user sql password (twice). Write down password you have entered, the installation script will ask you to enter this password in next step.

NOTICE: If you have existing database named „lms” it will be removed during this installation (all customer information will be lost), therefore it is recommended to install this software on a fresh installed system and then to transfer your LMS data to newly installed database using LMS backup system.

 

Post install configuration

  • In this project interface WAN=eth1, LAN=eth0. If your router is connected in a different way, reconnect cables properly  In default configuration router will try to find ip address on the eth1 (WAN) interface using dhcp service (dhcp client).
  • Default login for LMS panel is: admin/admin
  • In a file vberry_local you can disable WAN access to the www server (interface eth1).
  • If you are not planning to use LMS web interface the turn off automatic generation of the configuration files: chmod –x /etc/www_vberry_net/rc.lmsd
  • Configuration is reloaded the changes are detected. Check period is 3 minutes. If you want to change check period edit file: /etc/cron.d/lmsd.
  • In the file /etc/www_vberry_net/vberry_conf you can change your WAN connection speed (section QOS – WAN Interface).

More information can be found in the project documentation, which I highly recommend to read!!! 


Please do not use the comment function to ask for help! If you need help, please use our forum.
Comments will be published after administrator approval.
Submitted by simas (registered user) on Sat, 2013-07-27 23:28.

Very poor tutorial: no project desciption, no comments, no links to project page. What is vberry.net and whay pliki is on it's server? I have managed to find only pdf document in Polish language. Is there any english description? Who created that system? Seems very suspicious to me... And the "tutorial" only teaches how to download file and unzip it and start shell script. Can we call it "tutorial"?

Submitted by Anonymous (not registered) on Tue, 2014-02-04 16:29.

install ok but how to login LMS?

 

Submitted by vberry (not registered) on Sat, 2014-05-17 23:12.

Default login for LMS panel is: admin/admin

Website address as You can gues is www.vberry.net

True there is no english documentation yet. It is free project, so You cant demand anything. There is forum.vberry.net, You can ask a question there.

I have tested it in production environments from 1000 - 4000 users. Cpu load was minimal. One core out of eight at 30% at max speed arround 500 Mbit.