can anyone from this l33t community drop me small step by step guide or url with howto create transparent filtering AP with http://www.zerfleddert.de/wrt54g/wrt-radauth/ compiled into firmware? i read http://wiki.openwrt.org/BuildingPackagesHowTo and http://openwrt.org/TransparentFirewall but i can't find ebtables patch in source tree (i know its removed from release, but why it can,t be in sources?) and don't know can i use patch from http://support.mprg.org/openwrt/100-ebtables.patch.txt

how can i:
- change default nvram variables to create one bridge with all ports in my own firmware?
- change other default nvram variables in my own firmware?
- change reset rules? because i don't want to look on damn blinking lamps and try to catch 2 sec. default reset timeout... i want press reset, wait for 5 sec., reboot and voila - have clean config
- use future ebtables.sf.net pathches?

btw, my HW is Asus WL-500 Deluxe and my future firmvare ("when it's done"(c)J.Carmack) will work on ths HW because i need more than 20 of them...

thanks and sorry for my english...

It may be easier to use mtd to make a clone image of your first router, then restore it on each of your other 19 routers.  You can backup the linux and nvram partitions on the first, then write them to each of the remaining routers.  Search the forum for MTD...

Just dont forget to change the MAC address for your interfaces after you restore...

This will save you from having to figure out how to change the default nvram variables in your CFE.  From what I understand, OpenWRT doesn't support writing the CFE any longer. 

Did you have problems patching your kernel for ebtables with the above patch?  I have used it before with no problems...

(Last edited by netprince on 15 Sep 2005, 19:10)

nbd removed ebtables kernel patch, because it slows down any kind of tcp/ip communication without actively using it. Just removing the patch improved the performance extremely.
We need some kind of kernelpatch magic in our buildroot, so that ebtables users can choose it and get a kernel with a applied patch. Or someone need to fix ebtables, so that it does not slow down every operation only because it is in the kernel.

m-m-m... i think there something strange with Linux in "filtering bridge" mode because my BSD boxes works wery well with transparent filtering + traffic shaiping... i _really_ need perfomance in communications between AP clients and ethernet LAN... i don't want anything else, no IPv6, no PPP/PPTP/PPPoE or any kind of routing, WAN communications etc. i want only filtering traffic thru my AP...

i think many people want your magic i want it, i need it and i wait for it
why we can't patch kernel sources inside /openwrt/build_mipsel/linux with native patches?

where i can find info for buildroot updates? mailinglist, thish forum or another way? i want ebtables, i need it and of course i want be up-to-date with buildroot for creating my own FilteringWRT