Custom firmware build for R9000

  • ATTENTION! As of November 1, 2020, you are not able to reply to threads 6 months after the thread is opened if there are more than 500 posts in the thread.
    Threads will not be locked, so posts may still be edited by their authors.
    Just start a new thread on the topic to post if you get an error message when trying to reply to a thread.

Wesleyrpg

New Around Here
Greetings all, hope you're all fine and dandy!

What's with HT160 and the Intel 9260 AC Wifi card, i can't for the life of me get that card to connect at 1733. (866 max for me)

From my experience with routers over the years its probably something like 5 different companies trying to implement their own version of 1733 (HT160) and none of them are compatible? Would i be roughly correct?

Oh and Voxel, nice firmware man, expect a donation for me in the coming weeks........(maybe an even bigger donation if you could give us a very detailed technical reason on why the Intel 9260 and Nighthawk X10 don't play well together.)

Oh and i don't know if you guys have noticed, but Netgear have realeased a new gaming router The Netgear XR700 with exactly the same chipset/ports etc as our beloved X10 but it has a new blood red interface and OS which looks pretty cool! i wonder if we could 'port' the firmware across to this router, as the XR700 might have a newer OS/Drivers etc.....

https://www.netgear.com/npg/xr700/

https://www.pccasegear.com/products/44731/netgear-xr700-nighthawk-pro-gaming-router
 
Last edited:

Charlie Sanz

New Around Here
Dear All,

Thank you to Voxel and all others contributors for putting this software together. I have very little experience and following the instructions, reading on the forums and after a lot of google, I was able to install the firmware on my Netgear R9000.


I am a completely newbie so, must of this linux and vpn things are literally a different language to me. I still have 4 questions which I have not been able to find out the answers.

If someone can point me in the right direction it will be appreciated.

1. My ISP speed is 250MB down and 50up (which I get when the VPN is off)

While using a PIA (UDP/1198 AES 128CBC) gateway in my same city the performance goes down to about 70MB down and 20 up. Is that an acceptable performance for the R9000 with voxel?

(as tested with /bin/ookla --configurl=http://www.speedtest.net/api/embed/trial/config.php)

2. Crontab (using crontab –e) and adding */5 * * * * /usr/bin/vpncmon.sh

the line gets removed after rebooting the router. Any suggestions on how to keep it in and the vpncmon.sh running?

3. Also, I have access via telnet to the router from my Mac. But I have not been able to transfer files directly from my computer to the router. Using SCP I received the following error,

"Connection to [email protected]:22 exited: No auth methods could be used.
lost connection
[email protected]:/$ "

4. Any tweak I should do to improve my PIA openvpn performance?

Thank you all for your time and suggestions.

cs
 

Voxel

Very Senior Member
1. IMO it should be faster. BTW, do you use HW version?

2. Crontab: for simplification you can use Entware cron. Or modify /etc/rc.local (force it to add you cron job). /etc/rc.local is called after reboot.

3.
"Connection to [email protected]:22 exited: No auth methods could be used.
lost connection
[email protected]:/$ "

It seems that you try to use SCP from your Mac using user/password. But it should use authentication by key. The same as SSH There is Appendix A in my README re: how to do this on router.

4. Try to use HF-HW version of you do not use it. Or vice versa if you are using HF. In general OpenVPN client is enough optimized.

Voxel.
 

Voxel

Very Senior Member
@Voxel, in OpenWRT there is a VPN package / client for Cisco AnyConnect. Any chance to have it added to your custom FW?
There is a package in Entware:

openconnect A VPN client compatible with Cisco's AnyConnect SSL VPN, ocserv and Juniper (Pulse secure).

So maybe it has sense for you to try it. FYI: I did not try it myself, sorry.

Voxel.
 

Wesleyrpg

New Around Here
Greetings all, hope you're all fine and dandy!

What's with HT160 and the Intel 9260 AC Wifi card, i can't for the life of me get that card to connect at 1733. (866 max for me)

From my experience with routers over the years its probably something like 5 different companies trying to implement their own version of 1733 (HT160) and none of them are compatible? Would i be roughly correct?

Oh and Voxel, nice firmware man, expect a donation for me in the coming weeks........(maybe an even bigger donation if you could give us a very detailed technical reason on why the Intel 9260 and Nighthawk X10 don't play well together.)

Oh and i don't know if you guys have noticed, but Netgear have realeased a new gaming router The Netgear XR700 with exactly the same chipset/ports etc as our beloved X10 but it has a new blood red interface and OS which looks pretty cool! i wonder if we could 'port' the firmware across to this router, as the XR700 might have a newer OS/Drivers etc.....

https://www.netgear.com/npg/xr700/

https://www.pccasegear.com/products/44731/netgear-xr700-nighthawk-pro-gaming-router

hi voxel, do you think a port of this new OS/firmware is possible from the new XR700?

Thank you for your time.....
 

Voxel

Very Senior Member
hi voxel, do you think a port of this new OS/firmware is possible from the new XR700?

Thank you for your time.....
Theoretically it is possible. But sorry I think it is illegal and immoral. First, NG does not publish full source codes for XR700. So such porting is something like cracking binary firmware for XR700. Second, it would be just an action against of DumaOS developers and NG business plans.

It is why I do not plan any support for XR500/XR700 (clones of R7800/R9000): there are a lot of hackers around to hack my binary builds and to "port" them to R7800/R9000.

Voxel.
 

marka2k

Occasional Visitor
Admitted noob here

I have the Netgear R9000 Router and installed Voxel Firmware, I use the VPN Unlimited service and generated the OPVN file from their website, copied it to a thumb drive and rebooted. When Open VPN is active I have no DNS, for example I can ping 8.8.8.8 but not www.mtv.com below is the OPVN file generated.

client
dev tun
reneg-sec 0
persist-tun
persist-key
ping 5
ping-exit 30
nobind
comp-lzo no
remote-random
remote-cert-tls server
auth-nocache
route-metric 1
<ca>
-----BEGIN CERTIFICATE-----

-----END PRIVATE KEY-----
</key>
remote us-sl.vpnunlimitedapp.com
proto udp

Log Screen Shot:

Thu Jan 10 12:57:26 UTC 2019 Voxel: OpenVPNclient stop run: ip route del:
default via 12.5.228.10 dev ppp0
12.5.228.10 dev ppp0 proto kernel scope link src 12.19.118.237
172.16.62.0/24 dev br0 proto kernel scope link src 172.16.62.1
239.0.0.0/8 dev br0 scope link
Thu Jan 10 12:59:47 UTC 2019 Voxel: OpenVPNclient stop run: ip route del:
default via 12.5.228.10 dev ppp0
12.5.228.10 dev ppp0 proto kernel scope link src 12.19.118.237
172.16.62.0/24 dev br0 proto kernel scope link src 172.16.62.1
239.0.0.0/8 dev br0 scope link
Thu Jan 10 13:00:02 2019 OpenVPN 2.4.6 arm-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD]
Thu Jan 10 13:00:02 2019 library versions: OpenSSL 1.0.2q 20 Nov 2018, LZO 2.10
Thu Jan 10 13:00:02 2019 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Thu Jan 10 13:00:02 2019 nice -20 succeeded
Thu Jan 10 13:00:02 2019 TCP/UDP: Preserving recently used remote address: [AF_INET]129.232.219.195:1194
Thu Jan 10 13:00:02 2019 UDP link local: (not bound)
Thu Jan 10 13:00:02 2019 UDP link remote: [AF_INET]129.232.219.195:1194
Thu Jan 10 13:00:03 2019 OpenVPN 2.4.6 arm-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD]
Thu Jan 10 13:00:03 2019 library versions: OpenSSL 1.0.2q 20 Nov 2018, LZO 2.10
Thu Jan 10 13:00:03 2019 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Thu Jan 10 13:00:03 2019 nice -20 succeeded
Thu Jan 10 13:00:03 2019 TCP/UDP: Preserving recently used remote address: [AF_INET]129.232.134.122:1194
Thu Jan 10 13:00:03 2019 UDP link local: (not bound)
Thu Jan 10 13:00:03 2019 UDP link remote: [AF_INET]129.232.134.122:1194
Thu Jan 10 13:00:04 2019 [openvpn2.vpnunlimitedapp.com] Peer Connection Initiated with [AF_INET]129.232.219.195:1194
Thu Jan 10 13:00:05 2019 [openvpn2.vpnunlimitedapp.com] Peer Connection Initiated with [AF_INET]129.232.134.122:1194
Thu Jan 10 13:00:15 2019 TUN/TAP device tun0 opened
Thu Jan 10 13:00:15 2019 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Thu Jan 10 13:00:15 2019 /sbin/ifconfig tun0 10.200.0.18 pointopoint 10.200.0.17 mtu 1500
Thu Jan 10 13:00:15 2019 /etc/openvpn/ovpnclient-up.sh tun0 1500 1553 10.200.0.18 10.200.0.17 init
Thu Jan 10 13:00:15 2019 Initialization Sequence Completed
Thu Jan 10 13:00:42 2019 [openvpn2.vpnunlimitedapp.com] Inactivity timeout (--ping-exit), exiting
Thu Jan 10 13:00:42 2019 SIGTERM[soft,ping-exit] received, process exiting

Sorry for all the information :/

Thank you!
 
Last edited:

marka2k

Occasional Visitor
UPDATE: Got it to work, thank you Voxel for making this possible and everyone that contributed to the thread page 6 was very hopeful for my situation.

Mark
 

Voxel

Very Senior Member
UPDATE: Got it to work, thank you Voxel for making this possible and everyone that contributed to the thread page 6 was very hopeful for my situation.

Mark
It is good that you were able to solve the problem yourself. My congratulations.

BTW, it is recommended to use something like dnscrypt proxy or stubby for OpenVPN. Instead of DNS resolver from your ISP or OVPN provider. So see e.g. how to enable Dnscrypt Proxy 2 in latest FW for R9000.

Voxel.
 

marka2k

Occasional Visitor
It is good that you were able to solve the problem yourself. My congratulations.

BTW, it is recommended to use something like dnscrypt proxy or stubby for OpenVPN. Instead of DNS resolver from your ISP or OVPN provider. So see e.g. how to enable Dnscrypt Proxy 2 in latest FW for R9000.

Voxel.

I will read up and see what I can break on my end ;) Thank you for pointing this out.
 

saki2fifty

New Around Here
So i've been using Voxel's firmware on my R9000 for a while now, along with all the known mods. I am using the OpenVpn client talking to one of my servers to tunnel all our devices in the house out...

I am wanting to use the SoftEther VPN client, and I have it installed via Entware out to /opt/libexec/softethervpn/. I do know that after the client has been configured, you still have to modify/add routes to redirect your gateway through the tunnel as the gateway. However, here is the problem i'm trying to address first:

First off, I know the server is ok as I have installed the SoftEther VPN client on my Windows machine, and am able to establish a connection. Seems really quick compared to IPVanish/OpenVpn.

I have created the tunnel via the SoftEther client named "vpn_tun0", and you can see in the screenshot that I am using udhcpc to get a lease from the remote VPN server. Done, it gets a lease.

I then run an ifconfig on the interface, and i'm not see that it has an ip address assigned to it (not gonna blur anything else, it'll all change):


So at this point, we know the client is talking to the remote VPN server, as that is where its getting its ip. Again, if i do an ifconfig on that adapter, it still doesn't show an IP, yet its communicating.

The server manager does show it has a new session:




If I assign the IP manually, it sticks, but I dont want to do that. I would like DHCP to function properly:
(yeah, I need to clean it up)


So I guess my questions are, what is the proper way to assign a dhcp ip? Is udhcpc the proper way to do it? is there another method?

My other question is related to the way my "vpn_tun0" interface was created. I created it via "Entware/SoftEther --> ./vpncmd". ./vpncmd --> menu --> "niccreate", and it creates the virtual adapter. However, when I look at the nic properties within ./vpncmd, it errors out with an error;33. When researched, they are saying that I have to modprobe tun in order to enable Tunneling. However, modprobe has been removed and cant use it. Is this even needed at all? OpenVpn worked fine without modprobe'ing anything:


I don't suppose there many who use this, but do appreciate any feedback. (I'm thinking it may have something to do with my new routes not set up yet)

Going to bed now... :)
 
Last edited:

saki2fifty

New Around Here
Well, it is difficult to say. I know that Zyxmon played with SoftEther VPN. Try to ask him

https://www.snbforums.com/threads/e...86u-with-asuswrt-merlin-firmware.44393/page-6

Voxel.

Yeah, my main problem was simply trying to grab an ip... nothing really to do with EtherVPN. It would grab an ip, but when I immediately did an ifconfig, it did not show any ip assigned. So I was wondering if udhcpc was even the proper method of assigning an ip.

I think I got it corrected, will find out when I get off of work.

Xia Xia / Thanks / Gracias,
 

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top