Known devices

README.md

@@ -0,0 +1,31 @@
+# gargoyle
+Known Devices
+
+The idea is to be able to set policy (Quota, QoS, Restrictions etc) over a
+Group of Known Devices (owned by an individual for example). To achieve this,
+the Known Devices need to be identified by their MAC address' and then arranged
+into Groups. Both Devices and Groups can be named by the Gargoyle Administrator.
+
+Up until now, the best way for a Gargoyle admin to apply policy to users with
+a number of devices has been to assign a static IP address to each device such
+that each users' devices are in an IP range. Then, the policy is applied to the
+IP range, and the IP range is displayed throughout the Gargoyle GUI. Known Devices
+and Groups enable the Gargoyle admin to work with meaningful names rather than IP
+ranges, and relieves the need to assign static IP addresses.
+
+Status
+- Gargoyle-Connection-Devices has a Section for Known Devices and another for Device Groups.
+- Device Groups may be used:
+ - Gargoyle-Firewall-Quotas-BandwidthQuotas-AppliesTo
+ - Gargoyle-Firewall-Restrictions-AccessRestrictions-RuleAppliesTo
+ - Gargoyle-Firewall-Restrictions-Exceptions(Whitelist)-RuleAppliesTo
+ - Gargoyle-Forewall-QoS(Upload)-ClassificationRules
+ - Gargoyle-Forewall-QoS(Download)-ClassificationRules
+
+Technical
+- Approx 17k in size
+- Known Devices are stored as a host in uci /etc/config/dhcp
+- Each host has a supplementary Group section
+- Each Device Group is represented by an ipset (each set = 550 bytes min)
+- IP addresses in each ipset are dynamically adjusted when dnsmasq issues a dhcp lease
+- Existing iptables quota rules can check against the membership of an ipset

package/gargoyle-firewall-util/src/Makefile

@@ -4,7 +4,7 @@ print_quotas: print_quotas.c
 	        $(CC) $(CFLAGS) $(LDFLAGS) $^ -o $@ -lericstools -luci -liptbwctl
 
 restore_quotas: restore_quotas.c
-	        $(CC) $(CFLAGS) $(LDFLAGS) $^ -o $@ -lericstools -luci -liptbwctl
+	        $(CC) $(CFLAGS) $(LDFLAGS)  uci-util.c restore_quotas.c -o restore_quotas -lericstools -luci -liptbwctl
 
 backup_quotas: backup_quotas.c
 	        $(CC) $(CFLAGS) $(LDFLAGS) $^ -o $@ -lericstools -luci -liptbwctl
@@ -13,7 +13,7 @@ delete_chain_from_table: delete_chain_from_table.c
 	$(CC) $(CFLAGS) $(LDFLAGS)  $^ -o  $@ -lericstools
 
 make_iptables_rules: make_iptables_rules.c
-	$(CC) $(CFLAGS) $(LDFLAGS) make_iptables_rules.c -o make_iptables_rules -lericstools -luci -lm
+	$(CC) $(CFLAGS) $(LDFLAGS)  uci-util.c make_iptables_rules.c -o make_iptables_rules -lericstools -luci -lm
 
 clean:
 	rm -rf make_iptables_rules delete_chain_from_table print_quotas backup_quotas restore_quotas *.o *~ .*sw*