Diversion Diversion on RT-AX58U (AX3000)

[jata]

Hi all,

I have recently setup a new/clean AX-58U with merlin 384.19 and all working fine and stable with a min/simple config.

Yesterday I installed Diversion standard and it was active but it wasn't blocking any adds. I checked the log and I see that there is a fatal signal error. I have done a reboot and the issue happened again. then I removed Diversion and everything is ok again.

So it looks like I have an issue with Diversion on my AX58U. Can anyone help?

Hopefully the log extract below is helpful...

Aug 28 21:04:41 rc_service: service 14494:notify_rc restart_dnsmasq
Aug 28 21:04:41 custom_script: Running /jffs/scripts/dnsmasq.postconf (args: /etc/dnsmasq.conf)
Aug 28 21:04:42 Diversion: restarted Dnsmasq to apply settings
Aug 28 21:04:42 custom_script: Running /jffs/scripts/service-event-end (args: restart dnsmasq)
Aug 28 21:04:44 Diversion: created br0:pixelserv-tls for 192.168.100.2
Aug 28 21:04:44 pixelserv-tls[11407]: 383 uts, 1 log, 0 kcc, 0 kmx, 0.00 kvg, 0 krq, 101 req, 0 avg, 0 rmx, 0 tav, 0 tmx, 0 slh, 8 slm, 0 sle, 0 slc, 93 slu, 0 v13, 0 v12, 0 v10, 0 zrt, 1 uca, 0 ucb, 0 uce, 85 ush, 22 sct, 89 sch, 4 scm, 0 scp, 0 ssh, 0 ssm, 0 ssp, 0 nfe, 0 gif, 0 ico, 0 txt, 0 jpg, 0 png, 0 swf, 0 ufe, 0 opt, 0 pst, 0 hed, 0 rdr, 0 nou, 0 pth, 0 204, 0 bad, 0 cls, 0 cly, 0 clt, 0 err
Aug 28 21:04:44 pixelserv-tls[14811]: pixelserv-tls 2.3.1 (compiled: Jun 12 2020 20:24:48 flags: tls1_3) options: 192.168.100.2
Aug 28 21:04:44 Entware (armv7sf-k2.6): Started pixelserv-tls (Diversion)
Aug 28 21:04:44 pixelserv-tls[14811]: Listening on :192.168.100.2:443
Aug 28 21:04:44 pixelserv-tls[14811]: Listening on :192.168.100.2:80
Aug 28 21:08:49 kernel: potentially unexpected fatal signal 11.
Aug 28 21:08:49 kernel: CPU: 1 PID: 8677 Comm: dcd Tainted: P           O    4.1.52 #1
Aug 28 21:08:49 kernel: Hardware name: Generic DT based system
Aug 28 21:08:49 kernel: task: d1858400 ti: d05fa000 task.ti: d05fa000
Aug 28 21:08:49 kernel: PC is at 0xb6cd239c
Aug 28 21:08:49 kernel: LR is at 0x1dd14
Aug 28 21:08:49 kernel: pc : [<b6cd239c>]    lr : [<0001dd14>]    psr: 600f0010
Aug 28 21:08:49 kernel: sp : bed04908  ip : 000a2050  fp : b5fff024
Aug 28 21:08:49 kernel: r10: 000a23c4  r9 : b5fff9c8  r8 : 000a287c
Aug 28 21:08:49 kernel: r7 : b5fffa00  r6 : 000a2876  r5 : 00000000  r4 : b5fff9ac
Aug 28 21:08:49 kernel: r3 : 00000000  r2 : bed048e4  r1 : 0007d612  r0 : 00000000
Aug 28 21:08:49 kernel: Flags: nZCv  IRQs on  FIQs on  Mode USER_32  ISA ARM  Segment user
Aug 28 21:08:49 kernel: Control: 10c5387d  Table: 118b404a  DAC: 00000015
Aug 28 21:08:49 kernel: CPU: 1 PID: 8677 Comm: dcd Tainted: P           O    4.1.52 #1
Aug 28 21:08:49 kernel: Hardware name: Generic DT based system
Aug 28 21:08:49 kernel: [<c0026e60>] (unwind_backtrace) from [<c0022c38>] (show_stack+0x10/0x14)
Aug 28 21:08:49 kernel: [<c0022c38>] (show_stack) from [<c045237c>] (dump_stack+0x8c/0xa0)
Aug 28 21:08:49 kernel: [<c045237c>] (dump_stack) from [<c003aad4>] (get_signal+0x490/0x558)
Aug 28 21:08:49 kernel: [<c003aad4>] (get_signal) from [<c00221d0>] (do_signal+0xc8/0x3ac)
Aug 28 21:08:49 kernel: [<c00221d0>] (do_signal) from [<c0022658>] (do_work_pending+0x94/0xa4)
Aug 28 21:08:49 kernel: [<c0022658>] (do_work_pending) from [<c001f4cc>] (work_pending+0xc/0x20)

 

[L&LD]

After flashing RMerlin firmware, did you do a full M&M Config?

After doing the above, did you prepare the USB drive using the suggestions in the amtm Step-by-Step Guide (ignoring the 'install amtm' section, amtm is installed by default since RMerlin version 384.15_0)?

If not, I would start again from the top to ensure your router configuration will be stable as long as possible after you have fully and properly set it up.

 

[jata]

Thanks. Yes I did. I have used merlin and diversion on a AC-86U fro 2 years before changing to this router.

I had FlexQOS working for a week. Then installed USB and swap via amtm a few days ago to check everything was stable before installing diversion

 

[jata]

I have now installed diversion lite and it is running. no kernel crash. but haven't noticed any ads being blocked - but this could be they are all https...

 

[bluepoint]

I have now installed diversion lite and it is running. no kernel crash. but haven't noticed any ads being blocked - but this could be they are all https...

Diversion lite can stil block ads from https requests, what you probably have is a browser(DOH) that bypasses your dnsmasq, therefore nothing is being blocked.

 

[jata]

Thanks. rebooted my Mac and renewed DHCP lease and ads are being blocked.

If the lite version blocks https ads then what is the advantage of the standard version with pixelserv-tls? Is it just the ad (white space) is removed from the page?

I'm trying to decide if I should stick with the lite version or try to solve the error/crash I have with the standard version

 

[SomeWhereOverTheRainBow]

lite only blocks http, not https. The standard version uses pixelserv-tls which can block https ads along with http ads. Also, pixelserv-tls replaces the blocked ad "image" with a tiny undetectable image it creates. For best performance, this require users to load a self generated pixelserv-tls certificate onto their devices. The lite version does not use pixelserv-tls nor does it block https, but it does not require users to load pixelserv-tls certificates on their devices either. Well the lite might be blocking some https ads by firewall rules that would simply prevent the request from coming through.

 

[thelonelycoder]

Thanks. rebooted my Mac and renewed DHCP lease and ads are being blocked.

If the lite version blocks https ads then what is the advantage of the standard version with pixelserv-tls? Is it just the ad (white space) is removed from the page?

I'm trying to decide if I should stick with the lite version or try to solve the error/crash I have with the standard version

Both the Lite and Standard Diversion Edition block https ads, the Standard Edition blocks them gracefully, without leaving an ugly space where the ad would be in certain cases. One needs to import the pixelserv-tls certificate into browsers and devices to benefit from it fully.