[arm-allstar] Is there a suggested guide, for this distro, to convert into a private node?

Doug Crompton wa3dsp at gmail.com
Fri Jul 7 20:45:33 EST 2017 

When you do setup it asks if this is a private node. Private nodes have
nodes number less than 2000. The image install initially has two nodes 1998
and 1999. When you setup to a registered node it replaces 1998 but 1999
remains and effectively is a private pseudo (no radio) node unless you
define it as something else.

The definition of private has many meanings though. You can make a
registered node somewhat private simply by not advertising it to allstar
and also not port forwarding. In that case no one should know about it and
if they tried to connect to that node number it would not connect. However
you would have full outbound connection capability. Since it is registered
other nodes would know how to get back to it.

A strictly private node <2000 unregistered node would require specific
routing in BOTH directions to wherever it was to connect. This is done in
rpt.conf in the node stanza near the bottom of the file. It looks like
this. Lets suppose your node is 1600 and you want to connect to 1601 that
is somewhere out on the Internet. BOTH ends would either need a static or
dynDNS public address -

[nodes]
; Note, if you are using automatic updates for allstar link nodes,
; no allstar link nodes should be defined here. Only place a definition
; for your local (within your LAN) nodes, and private (off of allstar
; link) nodes here.

1601 = radio at 12.156.78.123/1601,NONE

OR

1601 = radio at somename.somedomain/1601,NONE


At the other end it would be just the opposite pointing back to 1600. If
you are connecting private nodes on the same LAN the internal IP address of
each is adequate. Once this routing is in place and port forwarded at both
ends either end could connect to the other. No one else could connect since
routing would not be setup for them.

Private nodes like this are not registered so no registration lines are
needed in iax.conf. Non-registered nodes will not and do not need to
download the registered node list but if another node is registered on your
public IP it will still download since any of the servers behind that
public IP will be seen as registered when requesting the node list. It
doesn't matter if it downloads because in a strictly private unregistered
mode you cannot use it anyway.

I am not sure what your specific needs are since I don't think you
mentioned that. Private nodes are often used to link repeaters or just have
a private connection outside of the Allstar network. Allstar is/has been
used commercially and in that case ham calls do not matter. They would use
strictly private.

I hope this answers your question but if you are still not clear on
something let me know.


*73 Doug*

*WA3DSP*

*http://www.crompton.com/hamradio <http://www.crompton.com/hamradio>*



On Fri, Jul 7, 2017 at 7:45 PM, "kd4ont via arm-allstar" <
arm-allstar at hamvoip.org> wrote:

> A node I'm connecting to is going to go private eventually. Security
> reasons. Is there a good tutorial out there that will work well with the
> Crompton distribution?
> _______________________________________________
>
> arm-allstar mailing list
> arm-allstar at hamvoip.org
> http://lists.hamvoip.org/cgi-bin/mailman/listinfo/arm-allstar
>
> Visit the BBB and RPi2/3 web page - http://hamvoip.org

More information about the arm-allstar mailing list