Skip to content

Latest commit

 

History

History
97 lines (67 loc) · 5.32 KB

factory-start.md

File metadata and controls

97 lines (67 loc) · 5.32 KB

Factory or Restart of BMROS

Initial Start-up or Factory Reset

BMROS does not make any permanent changes to the OS. Most changes are volatile and will be removed after a reboot or power-cycle. This requires loading the configuration each time the system starts.

BMROS Factory Start

  1. SysV init.d/bmros.sh start
  2. Check for FACTORY_START flag in /var/flags/bmros.FACTORY_START
  3. Run /usr/lib/routershell/start.sh --factory-reset
  4. RouterShell will load /usr/lib/routershell/config/factory-startup.cfg
  5. Remove FACTORY_START flag

BMROS Restart

  1. SysV init.d/bmros.sh start
  2. Run /usr/lib/routershell/start.sh
  3. RouterShell will load /usr/lib/routershell/config/startup-startup.cfg

Default Start Login

When you first boot up the system, the default username is root, and there is no password set. However, as a security measure, once you create a new username, the root account is automatically removed. Follow the steps below to create a new user account and secure your router.

Connection Options

  1. Console (Serial)

    • Serial Connection Settings: To connect via the console, use a serial connection configured with the following settings:
      • Baud Rate: 9600
      • Data Bits: 8
      • Parity: None
      • Stop Bits: 1
    • Physical Connection: Use a serial cable to connect your computer's serial port to the router's console port. You might need a USB-to-serial adapter if your computer lacks a serial port.
    • Terminal Emulation Software: Use terminal emulation software such as PuTTY, Tera Term, or minicom. Configure the software with the serial connection settings mentioned above.

  2. Video Output

    • Direct Connection: Connect a monitor to the router's video output port (VGA, HDMI, or similar) and a keyboard to a USB port on the router.
    • Boot Process: Power on the router. The BIOS/bootloader messages will be displayed on the monitor.
    • Login Screen: Follow the on-screen instructions to log in using the default root account and proceed with the normal login procedure as described below.

  3. Network

    • Initial Setup: If using the default build, the network interfaces may not be immediately available. You might need to load a vanilla build to identify the network interface chipset and configure the appropriate drivers via Kernel Menuconfig.

    • Kernel Menuconfig: Access the kernel configuration menu by running make menuconfig in the terminal. Navigate to the network drivers section and select the appropriate drivers for your network interfaces. Rebuild the kernel with these settings.

    • Ethernet Ports: Once configured, connect to any onboard Ethernet port. By default, all Ethernet ports are bonded and assigned the IP address 192.168.0.100/24.

    • Access via Telnet: Use telnet to connect to the router:

      telnet 192.168.0.100

    • startup-config.cfg: You can customize your initial address to connect to a headless router.

Step-by-Step Instructions

  1. Login as root: On initial boot, you will be prompted to login. Enter root as the username. Since no password is set initially, you will proceed to the next step directly.

    Router login: root

  2. Create a New User: You will be prompted to create a new username. Enter your desired username, for example, dev01.

    Enter the new username: dev01

  3. Set a Password: After entering the new username, you will need to set a password for this new account. The password must be at least 5 characters long and should include a combination of upper and lower case letters, as well as numbers for enhanced security.

    Enter the new password (minimum of 5 characters)
Please use a combination of upper and lower case letters and numbers.
New password:

  4. Confirm the Password: Re-enter the password to confirm it. If the passwords match, the new password will be set, and the root account will be disabled for security reasons.

    Re-enter new password: 
passwd: password changed.

  5. Using bare-metal-router-vanilla/debug build: In this build, the root username is retained, allowing direct access to the shell. To initiate the RouterShell, execute the following commands:

    cd /usr/lib/routershell
./start.sh

Important Security Notes

  • Password Strength: Always use a strong password to ensure the security of your router. A strong password typically includes a mix of upper and lower case letters, numbers, and special characters.

  • User Management: Once the root account is removed, manage user accounts carefully. Ensure that you create accounts with the least privilege necessary for users to perform their tasks.

  • System Access: After the initial setup, you will use the newly created username and password to access the router. Keep your credentials secure and do not share them with unauthorized individuals.

By following these steps, you can ensure that your router is set up securely from the start, minimizing the risk of unauthorized access.