Installing qbee-agent

In the ever-evolving landscape of networking technology, OpenWRT stands as a beacon of flexibility and empowerment for users seeking more from their routers. OpenWRT, short for Open Wireless Router, is an open-source firmware that replaces the standard firmware on many commercial routers. This transformation brings a wealth of advanced features, customization options, and enhanced control over your network.

With large fleets (or even small farms) of OpenWRT devices comes the challenge of managing them through their life cycle. The qbee-agent is designed to run on any Linux and is a perfect fit to achieve system management capabilities.

  1. Install the qbee-agent package for OpenWRT

    opkg update
    LATEST=$(wget -q -O - https://cdn.qbee.io/software/qbee-agent/latest.txt)
    wget -q https://cdn.qbee.io/software/qbee-agent/$LATEST/experimental/openwrt/qbee-agent_${LATEST}_$(uname -m).ipk
    wget -q https://cdn.qbee.io/software/qbee-agent/$LATEST/experimental/openwrt/qbee-agent_${LATEST}_$(uname -m).ipk.sha256
    sha256sum -c qbee-agent_${LATEST}_$(uname -m).ipk.sha256
    opkg install qbee-agent_${LATEST}_$(uname -m).ipk
    
  2. Proceed with bootstrapping as you would on a regular device and start qbee-agent.

    qbee-agent bootstrap -k <bootstrap_key>
    /etc/init.d/qbee-agent start
    

Configuring the OpenWRT device depends on the actual operational needs. You can either use the configuration options that qbee.io offers or use qbee-connect to create a tunnel to the OpenWRT web based configuration interface.

!openwrt-qbee-agent-port-forwarding

Accessing the mapped port with a web browser will then display the following OpenWRT interface

!openwrt-qbee-agent-web-ui

Setting initial administrative password

The OpenWRT clearly notifies that there are no administrative password set for this router. The password can easily be set (and rotated) as part of a qbee password configuration policy. Please note that your OpenWRT might not be configured with SHA hashing support and that you might need to generate passwords using legacy MD5 hashing to use for your qbee configuration.

openssl passwd -1 <your-password>