I want my Router to offer a open WiFi with NDS and route all Traffic trough Tor.
What I got working so far:
- Have an open WiFi and all Traffic routed trough Tor
Where I stuck on:
- NDS
Here are WiFi <-> Tor related config-sections:
/etc/config/dhcp
config dhcp 'tor'
option interface 'tor'
option start '50'
option limit '250'
option leasetime '12h'
option force '1'
/etc/config/network
config interface 'tor'
option proto 'static'
option ipaddr '192.168.2.1'
option netmask '255.255.255.0'
/etc/config/wireless
config wifi-iface 'tor_radio0'
option device 'radio0'
option network 'tor'
option mode 'ap'
option encryption 'none'
option macaddr '00:88:88:88:00:2A'
option ssid 'Tor'
option isolate '1'
/etc/config/firewall
config zone
option name 'tor'
option network 'tor'
option input 'REJECT'
option output 'ACCEPT'
option forward 'REJECT'
config rule
option name 'transtor-dhcp'
option src 'tor'
option proto 'udp'
option dest_port '67'
option target 'ACCEPT'
/etc/firewall.user
iptables -t nat -A PREROUTING -i wlan0-1 -p udp --dport 53 -j REDIRECT --to-ports 9053
iptables -t nat -A PREROUTING -i wlan0-1 -p tcp --syn -j REDIRECT --to-ports 9040
/etc/tor/torrc
User tor
RunAsDaemon 1
PidFile /var/run/tor.pid
DataDirectory /var/lib/tor
VirtualAddrNetwork 10.192.0.0/10
AutomapHostsOnResolve 1
TransPort 192.168.2.1:9040
DNSPort 192.168.2.1:9053
This is what I have done on
/etc/config/nodogsplash
[...]
option gatewayinterface 'tor'
[...]
However, if I Connect to my "Tor" Network it really pushes everything trough Tor and even Skips the NDS... So it works too good, but not how I want it...
I think I need one more line in my /etc/firewall.user - somebody can help me out on that?