#19650: High CPU LOAD on my yucky 3COM WL-537 after second psk2 wifi network
-------------------------+----------------------------------
Reporter: giubenez | Owner: developers
Type: defect | Status: new
Priority: high | Milestone: Chaos Calmer (trunk)
Component: base system | Version: Trunk
Keywords: |
-------------------------+----------------------------------
Hello everybody! I'm pretty a noob with openwrt but i've installed OpenWrt
on my old 3COM WL-537. It works well, but sometimes it starts freaking out
and cpu load goes @ 700%.
I've tried to contain this problem and now it's only at 300% :)
I guess one problem was that i was trying to connect to a wifi in
masquerade mode but i was also linking the wifi interface to the wan port
(dunno why but it was causing cpu overload troubles...)
Now it seems that masquerading works fine using lan ports (the wifi is
only associated in client mode and redirect my LAN traffic to the host
wifi)
BUT
when i enable the second wifi (it's intended to be a private network for
my smartphones etc) crypted in psk2 the are some troubles..
I'll list cardinal infos below...hoping someone can understand my
problem!!
BusyBox v1.22.1 (2014-09-26 08:03:12 CEST) built-in shell (ash)
Enter 'help' for a list of built-in commands.
{{{
_______ ________ __
| |.-----.-----.-----.| | | |.----.| |_
| - || _ | -__| || | | || _|| _|
|_______|| __|_____|__|__||________||__| |____|
|__| W I R E L E S S F R E E D O M
-----------------------------------------------------
CHAOS CALMER (Bleeding Edge, r42666)
-----------------------------------------------------
* 1 1/2 oz Gin Shake with a glassful
* 1/4 oz Triple Sec of broken ice and pour
* 3/4 oz Lime Juice unstrained into a goblet.
* 1 1/2 oz Orange Juice
* 1 tsp. Grenadine Syrup
-----------------------------------------------------
}}}
root@OpenWrt:~# cat /proc/loadavg /proc/cpuinfo /etc/config/*
{{{
2.13 2.55 2.18 3/31 1068
}}}
{{{
system type : Atheros AR2316
machine : Unknown
processor : 0
cpu model : MIPS 4KEc V6.4
BogoMIPS : 182.68
wait instruction : yes
microsecond timers : yes
tlb_entries : 16
extra interrupt vector : yes
hardware watchpoint : no
isa : mips1 mips2 mips32r1 mips32r2
ASEs implemented :
shadow register sets : 1
kscratch registers : 0
core : 0
VCED exceptions : not available
VCEI exceptions : not available
}}}
{{{
config dnsmasq
option domainneeded '1'
option boguspriv '1'
option filterwin2k '0'
option localise_queries '1'
option rebind_protection '1'
option rebind_localhost '1'
option local '/lan/'
option domain 'lan'
option expandhosts '1'
option nonegcache '0'
option authoritative '1'
option readethers '1'
option leasefile '/tmp/dhcp.leases'
option resolvfile '/tmp/resolv.conf.auto'
config dhcp 'lan'
option interface 'lan'
option start '100'
option limit '150'
option leasetime '12h'
option dhcpv6 'server'
option ra 'server'
config dhcp 'wan'
option interface 'wan'
option ignore '1'
config odhcpd 'odhcpd'
option maindhcp '0'
option leasefile '/tmp/hosts/odhcpd'
option leasetrigger '/usr/sbin/odhcpd-update'
config dropbear
option PasswordAuth 'on'
option RootPasswordAuth 'on'
option Port '22'
# option BannerFile '/etc/banner'
config defaults
option syn_flood 1
option input ACCEPT
option output ACCEPT
option forward REJECT
# Uncomment this line to disable ipv6 rules
# option disable_ipv6 1
config zone
option name lan
list network 'lan'
option input ACCEPT
option output ACCEPT
option forward ACCEPT
config zone
option name wan
list network 'wan'
list network 'wan6'
option input REJECT
option output ACCEPT
option forward REJECT
option masq 1
option mtu_fix 1
config forwarding
option src lan
option dest wan
# We need to accept udp packets on port 68,
# see https://dev.openwrt.org/ticket/4108
config rule
option name Allow-DHCP-Renew
option src wan
option proto udp
option dest_port 68
option target ACCEPT
option family ipv4
# Allow IPv4 ping
#removed due to masquerade mode
#config rule
# option name Allow-Ping
# option src wan
# option proto icmp
# option icmp_type echo-request
# option family ipv4
# option target ACCEPT
# Allow DHCPv6 replies
# see https://dev.openwrt.org/ticket/10381
config rule
option name Allow-DHCPv6
option src wan
option proto udp
option src_ip fe80::/10
option src_port 547
option dest_ip fe80::/10
option dest_port 546
option family ipv6
option target ACCEPT
# Allow essential incoming IPv6 ICMP traffic
config rule
option name Allow-ICMPv6-Input
option src wan
option proto icmp
list icmp_type echo-request
list icmp_type echo-reply
list icmp_type destination-unreachable
list icmp_type packet-too-big
list icmp_type time-exceeded
list icmp_type bad-header
list icmp_type unknown-header-type
list icmp_type router-solicitation
list icmp_type neighbour-solicitation
list icmp_type router-advertisement
list icmp_type neighbour-advertisement
option limit 1000/sec
option family ipv6
option target ACCEPT
# Allow essential forwarded IPv6 ICMP traffic
config rule
option name Allow-ICMPv6-Forward
option src wan
option dest *
option proto icmp
list icmp_type echo-request
list icmp_type echo-reply
list icmp_type destination-unreachable
list icmp_type packet-too-big
list icmp_type time-exceeded
list icmp_type bad-header
list icmp_type unknown-header-type
option limit 1000/sec
option family ipv6
option target ACCEPT
# include a file with users custom iptables rules
config include
option path /etc/firewall.user
### EXAMPLE CONFIG SECTIONS
# do not allow a specific ip to access wan
#config rule
# option src lan
# option src_ip 192.168.45.2
# option dest wan
# option proto tcp
# option target REJECT
# block a specific mac on wan
#config rule
# option dest wan
# option src_mac 00:11:22:33:44:66
# option target REJECT
# block incoming ICMP traffic on a zone
#config rule
# option src lan
# option proto ICMP
# option target DROP
# port redirect port coming in on wan to lan
#config redirect
# option src wan
# option src_dport 80
# option dest lan
# option dest_ip 192.168.16.235
# option dest_port 80
# option proto tcp
# port redirect of remapped ssh port (22001) on wan
#config redirect
# option src wan
# option src_dport 22001
# option dest lan
# option dest_port 22
# option proto tcp
# allow IPsec/ESP and ISAKMP passthrough
#config rule
# option src wan
# option dest lan
# option protocol esp
# option target ACCEPT
#config rule
# option src wan
# option dest lan
# option src_port 500
# option dest_port 500
# option proto udp
# option target ACCEPT
### FULL CONFIG SECTIONS
#config rule
# option src lan
# option src_ip 192.168.45.2
# option src_mac 00:11:22:33:44:55
# option src_port 80
# option dest wan
# option dest_ip 194.25.2.129
# option dest_port 120
# option proto tcp
# option target REJECT
#config redirect
# option src lan
# option src_ip 192.168.45.2
# option src_mac 00:11:22:33:44:55
# option src_port 1024
# option src_dport 80
# option dest_ip 194.25.2.129
# option dest_port 120
# option proto tcp
config interface 'loopback'
option ifname 'lo'
option proto 'static'
option ipaddr '127.0.0.1'
option netmask '255.0.0.0'
config interface 'lan'
option type 'bridge'
option proto 'static'
option ipaddr '192.168.2.1'
option netmask '255.255.255.0'
# option ip6assign '60'
option ifname 'eth0.1'
#config interface 'wan6'
# option ifname '@wan'
# option proto 'dhcpv6'
config globals 'globals'
option ula_prefix 'fdf8:d90b:f6cf::/48'
config switch 'eth0'
option name 'eth0'
option reset '1'
option enable_vlan '1'
config switch_vlan 'eth0_1'
option device 'eth0'
option vlan '1'
option ports '0 1 2 3 5t'
config switch_vlan 'eth0_2'
option device 'eth0'
option vlan '2'
option ports '4 5t'
config interface 'wan'
# option ifname 'eth0.2'
option proto 'static'
option ipaddr '192.168.1.210'
option netmask '255.255.255.0'
option gateway '192.168.1.1'
option dns '192.168.1.1'
config system
option hostname 'OpenWrt'
option timezone 'UTC'
config timeserver 'ntp'
list server '0.openwrt.pool.ntp.org'
list server '1.openwrt.pool.ntp.org'
list server '2.openwrt.pool.ntp.org'
list server '3.openwrt.pool.ntp.org'
config button
option button 'reset'
option action 'released'
option handler 'logger reboot'
option min '0'
option max '4'
config button
option button 'reset'
option action 'released'
option handler 'logger factory default'
option min '5'
option max '30'
config led 'led_wlan'
option name 'wlan'
option sysfs 'wlan'
option trigger 'netdev'
option dev 'wlan0'
option mode 'link tx rx'
config wifi-device radio0
option type mac80211
option channel 6
option hwmode 11g
option path 'platform/ar231x-wmac.0'
option htmode
# REMOVE THIS LINE TO ENABLE WIFI:
#option disabled 1
config wifi-iface
option device radio0
option network lan
option mode ap
option ssid 'pupupup'
option encryption psk2
option key 'papapapa'
# option disabled 1
config wifi-iface
option device radio0
option network wan
option mode sta
option ssid popopo
option encryption psk2
option key pipipi
}}}
--
Ticket URL: <https://dev.openwrt.org/ticket/19650>
OpenWrt <http://openwrt.org>
Opensource Wireless Router Technology
_______________________________________________
openwrt-tickets mailing list
[email protected]
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-tickets
