What's new

[Fork] Asuswrt-Merlin 374.43 LTS releases (Archive)

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Which timezone? Some of them have the option, some of them don't.
Hey, thanks. I'm in the (GMT+02:00) Helsinki, Riika, Tallinna time zone which is missing the DST option. (Some of the city names might be translated differently in othe languanges.) Funny thing that the previous and next time zones in the list do have the option to set DST. :)
 
Hey, thanks. I'm in the (GMT+02:00) Helsinki, Riika, Tallinna time zone which is missing the DST option. (Some of the city names might be translated differently in othe languanges.) Funny thing that the previous and next time zones in the list do have the option to set DST. :)
@fiasko @john9527

I notice that in John's firmware TZ40=Helsinki, Riika, Tallinna and TZ40=UTC-2_1.

Merlin's firmware has a separate entry for Helsinki, TZ33_1=Helsinki and TZ33_1=UTC-2DST_3.

So I think that's where the problem is.
 
@fiasko @john9527

I notice that in John's firmware TZ40=Helsinki, Riika, Tallinna and TZ40=UTC-2_1.

Merlin's firmware has a separate entry for Helsinki, TZ33_1=Helsinki and TZ33_1=UTC-2DST_3.

So I think that's where the problem is.
Not surprising since the tz data has had only a few minor tweaks over the last 6 years ;)

I've put up a 44D6 release in the development folder
https://1drv.ms/f/s!Ainhp1nBLzMJiF2l3WjM46lSmxrH
which backports part of the tz updates from Merlin. It will allow you to set the DST times for some additional locations, including the new separate entry for Helsinki.
(A second part, which sets the default DST start and end times per location still needs to be backported, but will take some additional work. So please manually verify/set those values for your location).

EDIT: This also includes the reintroduction of dropbear chachapoly ciphers with the fix from themiron.
 
Last edited:
Not surprising since the tz data has had only a few minor tweaks over the last 6 years ;)

I've put up a 44D6 release in the development folder
https://1drv.ms/f/s!Ainhp1nBLzMJiF2l3WjM46lSmxrH
which backports part of the tz updates from Merlin. It will allow you to set the DST times for some additional locations, including the new separate entry for Helsinki.
(A second part, which sets the default DST start and end times per location still needs to be backported, but will take some additional work. So please manually verify/set those values for your location).
After updating to 44D6 my timezone changed and I had to reset it. It's not unexpected and I'm not sure if everyone will have this result, but I wanted to share my experience.
 
Last edited:
Flashed the 44D6 in my AC68U Rev. A1 without any problem. Working as always. DST automatically correct (Amsterdam UTC+1) Summertime:)
 
VPN - Server2.jpg
I have used john's build on my old rt-ac56u and wonder if this VPN-status page is displaying right?
Compared with RMerlin it should display more information.
 
I have used john's build on my old rt-ac56u and wonder if this VPN-status page is displaying right?
Compared with RMerlin it should display more information.
No that's not right Untitled.png. Check the system log. I suspect the client has failed to connect.
 
The statistics show up for me whether Policy Rules are used or not.
Okey, cant get it working for now. Its just basic config with 4 certs and only 2 raw in custom config. Do you use 44D6?
 
Last edited:
I get this:
js1.jpg
Check the browser console for any errors....
TypeError: staticstatsTableEntries[j] is undefinedAdvanced_VPNStatus.asp:288:1
parseStatus http://192.168.14.1/Advanced_VPNStatus.asp:288
initial http://192.168.14.1/Advanced_VPNStatus.asp:104
onload http://192.168.14.1/Advanced_VPNStatus.asp:1

I get this under Edge browser:
  1. HTML1300: Användaren har navigerat.
    Advanced_VPNStatus.asp (1,1)
  2. HTML1524: Ogiltig HTML5 DOCTYPE. Överväg att använda den interoperabla formen "<!DOCTYPE html>".
    Advanced_VPNStatus.asp (1,1)
  3. HTML1513: En extra <html>-tagg hittades. Det får bara finnas en <html>-tagg i ett dokument.
    Advanced_VPNStatus.asp (3,1)
  4. HTML1509: Omatchad sluttagg.
    Advanced_VPNStatus.asp (480,1)
  5. HTML1521: Oväntad </body>-tagg eller oväntat filslut. Alla öppna element måste stängas före dokumentslutet.
    Advanced_VPNStatus.asp (489,1)
  6. 0: Unable to get property '0' of undefined or null reference
    Advanced_VPNStatus.asp (287,1)
  7. 13
    0: Unable to get property 'getElementsByTagName' of undefined or null referencestate.js (2211,1)
 
Last edited:
Hmm, more quirks.. seems that curl have some problem when trying to update afraid.org
get this answer: curl: (60) SSL certificate problem: certificate has expired
Works before updating to 44D6
 
Hmm, more quirks.. seems that curl have some problem when trying to update afraid.org
get this answer: curl: (60) SSL certificate problem: certificate has expired
Works before updating to 44D6
Not firmware specific. I get expired message and I’m on Merlin at the moment.
Code:
# curl -v https://freedns.afraid.org/
*   Trying 204.140.20.21:443...
* Connected to freedns.afraid.org (204.140.20.21) port 443 (#0)
* ALPN, offering http/1.1
* Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH
* successfully set certificate verify locations:
*   CAfile: /etc/ssl/certs/ca-certificates.crt
  CApath: none
* TLSv1.2 (OUT), TLS header, Certificate Status (22):
* TLSv1.2 (OUT), TLS handshake, Client hello (1):
* TLSv1.2 (IN), TLS handshake, Server hello (2):
* TLSv1.2 (IN), TLS handshake, Certificate (11):
* TLSv1.2 (OUT), TLS alert, certificate expired (557):
* SSL certificate problem: certificate has expired
* Closing connection 0
curl: (60) SSL certificate problem: certificate has expired
More details here: https://curl.haxx.se/docs/sslcerts.html

curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.
 
Not firmware specific. I get expired message and I’m on Merlin at the moment.
Code:
# curl -v https://freedns.afraid.org/
*   Trying 204.140.20.21:443...
* Connected to freedns.afraid.org (204.140.20.21) port 443 (#0)
* ALPN, offering http/1.1
* Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH
* successfully set certificate verify locations:
*   CAfile: /etc/ssl/certs/ca-certificates.crt
  CApath: none
* TLSv1.2 (OUT), TLS header, Certificate Status (22):
* TLSv1.2 (OUT), TLS handshake, Client hello (1):
* TLSv1.2 (IN), TLS handshake, Server hello (2):
* TLSv1.2 (IN), TLS handshake, Certificate (11):
* TLSv1.2 (OUT), TLS alert, certificate expired (557):
* SSL certificate problem: certificate has expired
* Closing connection 0
curl: (60) SSL certificate problem: certificate has expired
More details here: https://curl.haxx.se/docs/sslcerts.html

curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.

I just tested and have same answer Merlin, seems problem is with afraig.org then?
 
If it says "certificate is expired", then that's what it is: the certificate on the remote server is expired.
 

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top