This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
basic-network [2022/03/25 08:34] – add recommendation for Wireless Ethernet Bridge m_ars | basic-network [2023/02/15 21:11] – Removed inconsistent, forced line wrapping techie007 | ||
---|---|---|---|
Line 6: | Line 6: | ||
{{: | {{: | ||
+ | |||
+ | \\ | ||
**Number of WAN ports**: This lets you select the number of WAN ports to be used on the device. On routers with only one physical WAN interface, options with WAN ports larger than one will be greyed out. This allows you to select only “1 WAN” on such devices. | **Number of WAN ports**: This lets you select the number of WAN ports to be used on the device. On routers with only one physical WAN interface, options with WAN ports larger than one will be greyed out. This allows you to select only “1 WAN” on such devices. | ||
**Tune route cache**: for multiwan in load balancing mode - This is a suggested settings if two or more of your WANs have a weight higher than 0. Basically to improve the worload sharing some kernel tweaks are needed. Enabling this option you specifically affect the following: | **Tune route cache**: for multiwan in load balancing mode - This is a suggested settings if two or more of your WANs have a weight higher than 0. Basically to improve the worload sharing some kernel tweaks are needed. Enabling this option you specifically affect the following: | ||
+ | |||
+ | \\ | ||
<code bash> | <code bash> | ||
Line 30: | Line 34: | ||
/bin/echo 512 > / | /bin/echo 512 > / | ||
</ | </ | ||
+ | |||
+ | \\ | ||
**Check Connections Every: **This is a quick way to make FreshTomato automatically test the reliability of your WAN connection. (Default: Disabled). Choosing any setting other than [Disabled] will execute the Watchdog script. The Watchdog script uses ping or traceroute to test WAN connection status. | **Check Connections Every: **This is a quick way to make FreshTomato automatically test the reliability of your WAN connection. (Default: Disabled). Choosing any setting other than [Disabled] will execute the Watchdog script. The Watchdog script uses ping or traceroute to test WAN connection status. | ||
Line 36: | Line 42: | ||
**Target 1: **Address of first host you want FreshTomato to ping regularly (Default: Google.com)\\ **Target 2:** Address of second host you want FreshTomato to ping regularly (Default: Microsoft.com) | **Target 1: **Address of first host you want FreshTomato to ping regularly (Default: Google.com)\\ **Target 2:** Address of second host you want FreshTomato to ping regularly (Default: Microsoft.com) | ||
+ | |||
===== WAN Settings ===== | ===== WAN Settings ===== | ||
Line 102: | Line 109: | ||
\\ Manually chosen DNS servers are useful if your ISP's DNS servers are slow or unreliable, or can be used for parental filtering. | \\ Manually chosen DNS servers are useful if your ISP's DNS servers are slow or unreliable, or can be used for parental filtering. | ||
- | **MTU: | + | **MTU: |
- | * (Default: 1500), is typical for Ethernet devices, and is usually suitable. | + | * (Default: 1500), is typical for Ethernet devices, and is usually suitable. When Default is selected, the number in the Manual field is greyed out and can't be changed. |
- | * Manual: Selecting manual lets you to enter a custom number in the field \\ beside it. Jumbo Frame sizes typically begin at a size of 2000 bytes. | + | * Manual: Selecting manual lets you to enter a custom number in the field beside it. Jumbo Frame sizes typically begin at a size of 2000 bytes. |
**Use DHCP: | **Use DHCP: | ||
Line 151: | Line 158: | ||
**Lease Time (// | **Lease Time (// | ||
+ | |||
+ | **Automatic IP**: | ||
+ | |||
+ | Starting with release 2022.6 the FT user can select this option if the router is in Access Point Mode or Wireless Ethernet Bridge Mode or Media Bridge Mode. | ||
+ | This option will allow to obtain a LAN IP via DHCP. | ||
+ | |||
+ | Note: After saving the settings, the router' | ||
+ | |||
+ | {{: | ||
===== Ethernet Ports State - Configuration ===== | ===== Ethernet Ports State - Configuration ===== | ||
Line 209: | Line 225: | ||
\\ | \\ | ||
- | Wireless Band Steering is available starting with release 2020.8 . | + | Wireless Band Steering is available starting with release 2020.8 |
===== Wireless (2.4 GHz / interface eth1) ===== | ===== Wireless (2.4 GHz / interface eth1) ===== | ||
Line 234: | Line 250: | ||
\\ **Wireless Network Mode: **This lets you choose which 802.11 WiFi protocol(s) to make available to clients. | \\ **Wireless Network Mode: **This lets you choose which 802.11 WiFi protocol(s) to make available to clients. | ||
- | * Auto: FreshTomato and WiFi client devices negotiate the best wireless\\ protocol automatically. Generally, Auto is recommended, | + | * Auto: FreshTomato and WiFi client devices negotiate the best wireless protocol automatically. Generally, Auto is recommended, |
* B Only: This allows W-Fi clients to connect using only the 802.11b protocol. | * B Only: This allows W-Fi clients to connect using only the 802.11b protocol. | ||
* G Only: This allows WiFi clients to connect using only the 802.11n protocol. | * G Only: This allows WiFi clients to connect using only the 802.11n protocol. | ||
Line 250: | Line 266: | ||
**Channel: **Selects the channel on which the 2.4 GHz radio interface will operate. Generally, it's a good idea to choose a different channel than the one your neighbours are using. (Default: Auto). | **Channel: **Selects the channel on which the 2.4 GHz radio interface will operate. Generally, it's a good idea to choose a different channel than the one your neighbours are using. (Default: Auto). | ||
- | * Auto: This default setting is generally safe unless there is significant interference | + | * Auto: This default setting is generally safe unless there is significant interference from nearby networks or other equipment. |
FreshTomato chooses and uses the channel it believes has the least interference. | FreshTomato chooses and uses the channel it believes has the least interference. | ||
- | * Channel: This menu lets you manually choose available WiFi channels | + | * Channel: This menu lets you manually choose available WiFi channels on the band. Unavailable channels will not appear here. |
**Channel Width: | **Channel Width: | ||
Line 270: | Line 286: | ||
**Security**: | **Security**: | ||
- | * Disabled: disables security entirely, leaving the network open to anyone. | + | * Disabled: disables security entirely, leaving the network open to anyone. Avoid using this, as it is an almost unlimited security risk. |
- | * WEP: enables Wired Equivalent Privacy protocol. Avoid using this. It's obsolete | + | * WEP: enables Wired Equivalent Privacy protocol. Avoid using this. It's obsolete due to serious vulnerabilities, |
- | * WPA Personal: enables WiFi Protected Access Protocol (1.x). WPA uses the \\ RC4-based TKIP protocol, letting hosts exchange pre-shared keys more secure. | + | * WPA Personal: enables WiFi Protected Access Protocol (1.x). WPA uses the RC4-based TKIP protocol, letting hosts exchange pre-shared keys more secure. While more secure than WEP, WPA still has weaknesses, like lower encryption standards. WPA is strongly discouraged in favour of WPA2 or higher. |
- | * WPA Enterprise: Also known as WPA-802.1X, this is similar to WPA Personal, | + | * WPA Enterprise: Also known as WPA-802.1X, this is similar to WPA Personal, but each user has their own username/ |
- | * WPA2 Personal: WiFi Protected Access version 2 uses elements of the\\ 802.11i standard, like mandatory support for AES encryption. This makes it\\ much more secure than older protocols. WPA2 Personal is recommended for small-\\ to mid-sized, informal networks. | + | * WPA2 Personal: WiFi Protected Access version 2 uses elements of the 802.11i standard, like mandatory support for AES encryption. This makes it much more secure than older protocols. WPA2 Personal is recommended for small to mid-sized, informal networks. |
- | * WPA2 Enterprise: This enables the Enterprise version of WPA2. This uses WPA2, but\\ each user has their own WiFi username/ | + | * WPA2 Enterprise: This enables the Enterprise version of WPA2. This uses WPA2, but each user has their own WiFi username/ |
* WPA / WPA2 Personal: | * WPA / WPA2 Personal: | ||
* WPA / WPA2 Enterprise: | * WPA / WPA2 Enterprise: | ||
- | * RADIUS: Enables FreshTomato' | + | * RADIUS: Enables FreshTomato' |
**Shared Key: | **Shared Key: | ||
Line 346: | Line 362: | ||
**Security** | **Security** | ||
- | * Disabled: disables security entirely, leaving the network open to anyone. | + | * Disabled: disables security entirely, leaving the network open to anyone. Avoid using this, as it is an almost unlimited security risk. |
- | * WEP: enables Wired Equivalent Privacy protocol. Avoid using this, as it is obsolete | + | * WEP: enables Wired Equivalent Privacy protocol. Avoid using this, as it is obsolete due to serious vulnerabilities, |
- | * WPA Personal: enables WiFi Protected Access Protocol (1.x). WPA uses the \\ RC4-based TKIP protocol, letting hosts exchange pre-shared keys more secure. | + | * WPA Personal: enables WiFi Protected Access Protocol (1.x). WPA uses the RC4-based TKIP protocol, letting hosts exchange pre-shared keys more secure. While more secure than WEP, WPA still has weaknesses, like lower encryption standards. WPA is strongly discouraged in favour of WPA2 or higher. |
- | * WPA Enterprise: Also known as WPA-802.1X, this is similar to WPA Personal, | + | * WPA Enterprise: Also known as WPA-802.1X, this is similar to WPA Personal, but each user has their own username/ |
- | * WPA2 Personal: WiFi Protected Access version 2 uses elements of the\\ 802.11i standard, like mandatory support for AES encryption. This makes it\\ much more secure than older protocols. WPA2 Personal is recommended for small-\\ to mid-sized, informal networks. | + | * WPA2 Personal: WiFi Protected Access version 2 uses elements of the 802.11i standard, like mandatory support for AES encryption. This makes it much more secure than older protocols. WPA2 Personal is recommended for small to mid-sized, informal networks. |
- | * WPA2 Enterprise: This enables the Enterprise version of WPA2. This uses WPA2, but\\ each user has their own WiFi username/ | + | * WPA2 Enterprise: This enables the Enterprise version of WPA2. This uses WPA2, but each user has their own WiFi username/ |
* WPA / WPA2 Personal: | * WPA / WPA2 Personal: | ||
* WPA / WPA2 Enterprise: | * WPA / WPA2 Enterprise: | ||
- | * RADIUS: Enables FreshTomato' | + | * RADIUS: Enables FreshTomato' |
**Shared Key: | **Shared Key: |