Last active
July 25, 2024 09:13
uci script for OpenWRT guest WiFi configuration
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| uci batch << EOF | |
| add network switch_vlan | |
| set network.@switch_vlan[-1].device='switch0' | |
| set network.@switch_vlan[-1].ports='1t 5t' | |
| set network.@switch_vlan[-1].vlan='2' | |
| set network.guest='interface' | |
| set network.guest.type='bridge' | |
| set network.guest.ipaddr='192.168.17.1' | |
| set network.guest.ifname='eth0.2' | |
| set network.guest.netmask='255.255.255.0' | |
| set network.guest.proto='static' | |
| set network.guest.metric='9000' | |
| set dhcp.guest='dhcp' | |
| set dhcp.guest.interface='guest' | |
| set dhcp.guest.leasetime='4h' | |
| set dhcp.guest.limit='128' | |
| set dhcp.guest.ra_management='1' | |
| set dhcp.guest.start='33' | |
| add wireless wifi-iface | |
| set wireless.@wifi-iface[-1].ssid='example' | |
| set wireless.@wifi-iface[-1].device='radio0' | |
| set wireless.@wifi-iface[-1].mode='ap' | |
| set wireless.@wifi-iface[-1].encryption='psk2+ccmp' | |
| set wireless.@wifi-iface[-1].key='example' | |
| set wireless.@wifi-iface[-1].wps_pushbutton='0' | |
| set wireless.@wifi-iface[-1].network='guest' | |
| add wireless wifi-iface | |
| set wireless.@wifi-iface[-1].ssid='example5' | |
| set wireless.@wifi-iface[-1].device='radio1' | |
| set wireless.@wifi-iface[-1].mode='ap' | |
| set wireless.@wifi-iface[-1].encryption='psk2+ccmp' | |
| set wireless.@wifi-iface[-1].key='example' | |
| set wireless.@wifi-iface[-1].wps_pushbutton='0' | |
| set wireless.@wifi-iface[-1].network='guest' | |
| add firewall zone | |
| set firewall.@zone[-1].name='guest' | |
| set firewall.@zone[-1].network='guest' | |
| set firewall.@zone[-1].output='ACCEPT' | |
| set firewall.@zone[-1].input='REJECT' | |
| set firewall.@zone[-1].forward='ACCEPT' | |
| add firewall forwarding | |
| set firewall.@forwarding[-1].dest='wan' | |
| set firewall.@forwarding[-1].src='guest' | |
| add firewall rule | |
| set firewall.@rule[-1].target='ACCEPT' | |
| set firewall.@rule[-1].proto='tcp udp' | |
| set firewall.@rule[-1].dest_port='53' | |
| set firewall.@rule[-1].name='Allow-DNS' | |
| set firewall.@rule[-1].src='guest' | |
| add firewall rule | |
| set firewall.@rule[-1].target='ACCEPT' | |
| set firewall.@rule[-1].dest_port='67' | |
| set firewall.@rule[-1].name='Allow-DHCP-Client' | |
| set firewall.@rule[-1].src='guest' | |
| set firewall.@rule[-1].proto='udp' | |
| commit | |
| EOF |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Thank you for posting this script, it completely works. Do anyone know how we can delete any ssid using scripting method?