Kamoj Kamoj add-on V5 for Netgear R7800 X4S and R9000 X10

  • ATTENTION! As of November 1, 2020, you are not able to reply to threads 6 months after the thread is opened if there are more than 500 posts in the thread.
    Threads will not be locked, so posts may still be edited by their authors.
    Just start a new thread on the topic to post if you get an error message when trying to reply to a thread.

kamoj

Very Senior Member
Introduction:

THIS IS A BETA VERSION
Bug reports and questions can be reported in this thread

This add-on must be used with Voxel Firmware.
This is an update of an existing add-on (See Release Note below for information).
More information and functions are added.

Add-on features in short:
Extended information about the router, settings, firmware etc. Examples:
  • Router Temperatures
  • CPU Load Total (per core)
  • Memory Usage
  • Disk Usage
  • Connected Devices
  • WiFi Speed, Power and RSSI
  • Latest Available Firmware indication
  • Access to Hidden Menus
New router functionality. Examples:
  • OpenVPN Client handling
  • Bypassing OpenVPN Client tunnel for specific clients (MAC addresses)
  • DNS Encryption Privacy (DNSCrypt proxy 2/Stubby)
  • Ad-Blocking, Malware-blocking etc
  • Time synch without NTP
  • HDD Spin down (sleep)
  • Wake-On-LAN
  • Cron Jobs
  • Open port 67 for DHCP lease renewal (for IPTV DHCP Options 60 and 61)
  • Congestion Control
  • Network Parameter Options
  • WiFi Devices Info
  • Top command
  • Log-files
  • Show all devices in "Attached Devices" and "Access Control" - even when idle/sleeping.
  • Supervision of the WAN connection, and make Power LED amber if no connection.
  • High OpenVPN Client speed (120+ Mbps)
  • Speed test script (command line command)
Pre-requisites:

How to install:
#1. Logon (From your web-browser):
http://www.routerlogin.net

#2. Make a backup of current settings (Not needed, but easy done):
Advanced, Administration, Backup Settings, Back Up, Save

#3. Enable Telnet:
http://www.routerlogin.net/debug.htm
Check (Set a tick in the box for) "Enable Telnet". (No apply needed)

#4. Login to the router using telnet:
Hold down the Windows Key, then press the “R“ key.
The Run dialog box appears. In the Open: window, type:
cmd
Click OK.
Code:
telnet www.routerlogin.net
The password is the same as from the normal router login page http://routerlogin.net

#5. Download the add-on:

For R7800:
Code:
curl -k -R -O https://voxel-firmware.com/Downloads/kamoj-addon_191214-083737-1_ipq806x.ipk
# or:
wget --no-check-certificate https://voxel-firmware.com/Downloads/kamoj-addon_191214-083737-1_ipq806x.ipk
For R8900/R9000:
Code:
curl -k -R -O https://voxel-firmware.com/Downloads/kamoj-addon_191214-083737-1_r9000.ipk
# or:
wget --no-check-certificate https://voxel-firmware.com/Downloads/kamoj-addon_191214-083737-1_r9000.ipk
#6. Install:
For R7800:
Code:
/bin/opkg install --force-overwrite kamoj-addon_191214-083737-1_ipq806x.ipk
For R8900/R9000:
Code:
/bin/opkg install --force-overwrite kamoj-addon_191214-083737-1_r9000.ipk
#7. Finish the installation with a reboot:
Code:
reboot
#8. To see the result, open your web-browser and go to your router:
http://www.routerlogin.net/index.htm and click the ADVANCED tab.
Here you will find the new options:
  • Kamoj Menu
  • Hidden Menus

DONE!

Removal of all Kamoj add-on nvram setings:
Login to the router using telnet and issue these commands:
Code:
nvram show | awk -F= '/^kamoj/ {print $1}' | xargs -n1 nvram unset
nvram commit

Uninstall/Removal of the Kamoj add-on code:

Login to the router using telnet and issue these commands:
Code:
/bin/opkg remove kamoj-addon
reboot

Content:


Content, Information headers:
  • Router Information
  • System Version Information
  • QoS Information
  • System Uptime
  • CPU Governors and Frequencies
  • CPU Load Total (processes) (per core)
  • CPU Temperature
  • Network SubSystem Accelerator
  • RAM Memory Usage (Used/Total)
  • Flash Usage (Used/Total)
  • Disk Usage (Used/Total)
  • NVRAM Usage (Used/Total)
  • Temperatures CPU / WiFi0 / WiFi1
  • Temperatures 802.11ad Radio / Antenna
  • 5G WiFi0 (ath0)
  • 5G WiFi0 Temperature
  • 2G WiFi1 (ath1)
  • 2G WiFi1 Temperature
  • 802.11ad 60 GHz (wlan0)
  • Temperatures 802.11ad Radio / Antenna
  • 60 GHz 802.11ad Radio Temperature
  • 60 GHz 802.11ad Antennas Temperature
  • OpenVPN Clients Available
  • OpenVPN Client Name
  • OpenVPN Client Status
  • DNSCrypt v2 Servers
  • Stubby DNS Servers
  • Congestion Control; Current ( Available )
  • NTP synchronized
  • DNS status
  • Internet connection status
  • Network Session (Active/Total)
  • WAN Speed (average value)
  • Port Status
  • eSATA Device
  • USB Device

Known Issues:
OpenVPN Bypass only working ok for devices with reserved ip-addresses.

Future:
You are welcome to wish for more information/functions to be added,
or even other add-ons.

Thanks:
To @Voxel for all help and support he's given to many people during long time.

To everyone active in the forum, especially those that have liked or commented my add-on.
/Kamoj

Release Note / Changes since last release:

Previous version can be found here:
https://www.snbforums.com/threads/k...800-x4s-and-r9000-x10-temperatures-a-o.55063/
https://www.snbforums.com/threads/k...800-x4s-and-r9000-x10-temperatures-a-o.49907/
https://www.snbforums.com/threads/k...on-for-netgear-r7800-x4s-and-r9000-x10.48965/
https://www.snbforums.com/threads/k...tgear-r7800-x4s-running-voxel-firmware.48139/

Previously installed Kamoj add-on should be uninstalled before installing new version.

Added Information:
  • Added color bars for cpu load, memory usage, disk usage and temperatures
  • Added Qos info
  • Added NSS info
  • Added Auto Refresh function
Changed:
Corrected:
  • Bug identifying EXT4 file system on USB-devices
  • Bug when identifying USB-devices with several partitions
Added Functionality:
  • Kamoj Menu
    • Router Information
    • OpenVPN Client
    • OpenVPN ByPass
    • DNS Privacy/Ad-Blocking
    • Settings
  • Hidden Menus
    • Netgear Debug Info
    • Connected Devices List
    • Hidden Info
    • Router Status
    • QoS Setup
    • QoS Debug
    • QoS nodes
    • QoS flows
    • Hidden POT
    • WiFi 2G coexist
    • Secondary Channel
    • Antenna Configurations
    • Fan Control Temperature
    • Update Assistant
    • Guest Management
    • Emule Server List
    • Extender Mode
    • 11ad Settings
    • Hidden CPU
    • Hidden CPU Status
  • kamoj_no_ntp_check : Don't try to speed up setting correct date and time
  • kamoj_no_temp_check : Don't supervise top temperature
  • kamoj_no_wan_speed : Don't measure current WAN speed
  • kamoj_no_bypassvpnip : Switch off the OpenVPN Client tunnel bypassing
  • kamoj_ping_www : Domain name for ping. Default is www.cloudflare.com
  • kamoj_ping_ip : IP-address or "gateway" to automatically used current gateway. Default is 1.1.1.1
How to use these nvram variables:
  • To switch off a function, run e.g. these commands (end with "nvram commit")
Code:
nvram set kamoj_no_wan_speed=1
nvram set kamoj_ping_www=www.google.com
nvram set kamoj_ping_ip=gateway
nvram commit
reboot
  • To switch on a function again, run e.g. these commands(end with "nvram commit")
Code:
nvram unset kamoj_no_wan_speed
nvram unset kamoj_ping_www
nvram unset kamoj_ping_ip
nvram commit
reboot
 
Last edited:

kamoj

Very Senior Member
FAQ:

Q: I can't make the settings stick, or access the add-ons GUI. What to do?
Answer:
  • Try another web-browser
  • Try "New Incognito Window" in the Google Chrome browser (Ctrl+Shift+N).
Known issues that are fixed in next minor release coming next:
  • Advanced: Administration: Firmware Update: Corrected corrupt Netgear menu
  • Hidden Menus: Removed link to menus not existing in R8900/R9000.
  • Kamoj Menu: Removed Netgears openvpn client
  • OpenVPN Bypass: Clear NOVPN from nvram: button Enabled
  • OpenVPN Bypass: Clear NOVPN from nvram: Working without reboot.
  • OpenVPN Bypass: Several bug-fixes
  • OpenVPN Client: Create OpenVPN Client Configuration: Fixed credential containing blanks and special characters
  • OpenVPN Client: Create/Edit an OpenVPN Client Configuration manually: Fixed credential containing blanks and special characters
  • OpenVPN Client: Cyclic Status update: Remember setting
  • OpenVPN Client: Fixed "Client:No password file found: /tmp/openvpn_client/idpw" when giving full path to password file
  • OpenVPN Client: Mullvad: Adapted to changed web structure using json
  • OpenVPN Client: Removed erroneous openvpn optimization for R8900/R9000
  • OpenVPN Client: Surfshark: Added Azerbaijan, Colombia and Philippines
  • Router Information: Corrected version of OpenSSL used by OpenVPN. (Dannis)
  • Router Information: CPU Governors and Frequencies: Show all R9000 CPUs
  • Router Information: USB Device: File system: Enhanced detection
  • Settings: Cron #2 and #3: Fixed not showing it checked/ticked
    https://www.snbforums.com/threads/k...00-x4s-and-r9000-x10.60590/page-7#post-556746
  • Settings: DHCP Options: Bug-fixed option 60+61
  • Settings: Output WiFi devices info to syslog when loading addon debug page: Bug-fixed
  • Settings: Show idle devices in device lists: Bug-fixed not showing all
  • Settings: Tags for html code aligned for better compatibility with Firefox a.o.
Coming next:
  • Added favourite (Voxel) icon for Advanced tab (and bookmarks) (nsx)
  • DNS Privacy/Ad-Blocking: Added: Own "Ip Blacklist" for DNSCrypt Proxy 2.
  • DNS Privacy/Ad-Blocking: Added: DNSCrypt 2: Close log-window button
  • DNS Privacy/Ad-Blocking: Added: Stubby: Close log-window button
  • DNS Privacy/Ad-Blocking: DNSCrypt 2 + Stubby: Dynamic size of Log windows
  • DNS Privacy/Ad-Blocking: New style and help links (nsx)
  • DNSCrypt proxy 2: Keep custom dnscrypt config at uninstall
  • Kamoj Menu and Hidden Menus: Open windows in frame instead of new page (nsx)
  • Kamoj Menu items: Removed Kamoj Header
  • Network filters firewalls a.o.: New /usr/sbin/net-wall
    to be able to have separate /etc/netwall*.conf files.
    to be able to have separate /opt/scripts/firewall-start*.sh files.
    (These changes prepares for e.g. the Wireguard client and special IPTV settings)
  • OpenVPN Bypass: Added: ip rule show
  • OpenVPN Bypass: Auto-update ip rules when router get new ip (masta_orc request)
  • OpenVPN Bypass: Bugs concerning devices with reserved addresses corrected (nsx)
  • OpenVPN Bypass: Corrected counters for Tunnel devices and Bypass devices (nsx)
  • OpenVPN Bypass: Devices should not be in both tables (nsx)
  • OpenVPN Bypass: ip rule show: Help text added
    Sorted by ip-address
    Dynamic size of Log window
  • OpenVPN Bypass: Enhanced and speeded up display of devices.
  • OpenVPN Bypass: Get Manufacturer of "unknown/noname" devices
  • OpenVPN Bypass: Remember disconnected devices and show in Bypass list
    only if their ip address is not used by another device.
  • OpenVPN Client: Added: OpenVPN Client: Close log-window button
  • OpenVPN Client: Dynamic size of Log window
  • OpenVPN Client: Removed pop-up window when selecting provider
  • Operating system log files are saved to /opt/kamoj/logs, at boot time
  • Router Information: Added: Available CPU Governors (for R7800)
  • Router Information: Added Flash memory chip type and UBI erase counters.
  • Router Information: Added: nvram Timestamp
  • Router Information: Added Production date
  • Router Information: Added wifi status/speed after LAN and WAN speed
  • Router Information: OpenVPN Clients Available: Limited shown .ovpn files to 4.
    (Can be set with e.g. "nvram set kamoj_show_vpnconfigs=5; nvram commit")
  • Settings: Block traffic to Netgear's ngxcld domain: Added
  • Settings: Console Log: Added
  • Settings: Cron #4 and #5: Added
  • Settings: DHCP DNS Options: Added for custom DNS, e.g. a Raspberry Pi
  • Settings: DHCP Options: Added "Open port 67 for DHCP lease renewal". Needed for Sky IPTV.
  • Settings: Disable Kwilt: Added
  • Settings: Disable NG Downloader: Added
  • Settings: Disable NSS Network SubSystem Accelerator for ipv4: Removed
  • Settings: Disable NSS Network SubSystem Accelerator for ipv6: Removed
  • Settings: Disable ReadyCLOUD: Added
  • Settings: Disable Router GUI timeout: Added
  • Settings: Disable Transmission: Added
  • Settings: Enable Telnet after boot: Added
  • Settings: Hairpinning for brwan: Added
  • Settings: Open firewall WAN ports: Added
  • Settings: Router Information: Services Status: Added
  • Settings: Router Information: Dynamic size of output windows
  • Settings: top: Formatted output
  • Settings: Unrestricted Port Forwarding: Added, allowing to forward WAN-port to own router
  • Settings: WiFi Info: Added "Connected time"
  • Settings: WiFi info: Formatted output
  • Static Routes: Private: column Added
  • Top Menu: Added Help Link to Voxel's website and "Kamoj" tag on SNB forums (nsx)
  • Top Menu: Added Added links to Netgear Support, Voxel and Kamoj (nsx)
  • Top Menu: Added Kamoj Add-on version
Thank you everyone for reporting issues and wishes!
 
Last edited:

Gar

Very Senior Member
noob question: where do you save the downloaded code? i assume only the install code is used at the cmd line, or does it all get used at the cmd line?
 

Murtaza12

Regular Contributor
Brilliant stuff Kamoj.

Will try it out very soon when I switch both my R7800s back to Voxel FW.
 

tarassippo

Regular Contributor
First of all a BIG thanks to Voxel, your firmware is simply great !!

@kamoj
Many thanks for the hard work, lots of options/features... I wish I was able to understand at least half of those :rolleyes:o_O

Anyway, as for my feedback, I can confirm DHCP 60 & 61 work :) - great stuff !

Also, with my former router running FreshTomato, I did learn how to use DoT, pretty easy: I like to use Quad9 as DNS servers, enabling DNSSEC and enabling Stubby and job done.

Within your DNS Encryption menu I tried to do the same: enabling Stubby, I actually didn't see the option for DNSSEC, and DNS servers still Quad9 but if I do so my Internet stops, I can't browse at all and as soon as disable Stubby and click on "None" I'm able to browse again...
This is what I get in the log (lots of those lines):
Code:
[17:58:01.061846] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.062064] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.062220] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.062502] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.062689] STUBBY: 1.0.0.1 : Upstream : !Backing off TLS on this upstream - Will retry again in 2s at Sun Dec 15 17:58:03 2019
[17:58:01.088712] STUBBY: 2606:4700:4700::1001 : Upstream : No valid upstreams for TLS... promoting this backed-off upstream for re-try...
[17:58:01.117016] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.117235] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.117453] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.117641] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.143945] STUBBY: 2606:4700:4700::1111 : Upstream : !Backing off TLS on this upstream - Will retry again in 2s at Sun Dec 15 17:58:03 2019
[17:58:01.171280] STUBBY: 2606:4700:4700::1111 : Upstream : No valid upstreams for TLS... promoting this backed-off upstream for re-try...
[17:58:01.171530] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.171749] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.171936] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.172092] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.172249] STUBBY: 2606:4700:4700::1001 : Upstream : !Backing off TLS on this upstream - Will retry again in 2s at Sun Dec 15 17:58:03 2019
Plus, with that former router I was able to pass this test: https://dnssec.vs.uni-due.de/ Now it states "test result is inconclusive."

Lastly, perhaps it could be useful to be able to select the additional features to install: with so many 'hidden' options, a noob like me could easily mess up configurations...
 
Last edited:

microchip

Very Senior Member
Works perfectly. Thanks! :)
 

kamoj

Very Senior Member
Use dnscrypt for now.
I have reported the problem to voxel.
Its a configuration TLS problem.
You must change min from 1.3 to 1.2 .
First of all a BIG thanks to Voxel, your firmware is simply great !!

@kamoj
Many thanks for the hard work, lots of options/features... I wish I was able to understand at least half of those :rolleyes:o_O

Anyway, as for my feedback, I can confirm DHCP 60 & 61 work :) - great stuff !

Also, with my former router running FreshTomato, I did learn how to use DoT, pretty easy: I like to use Quad9 as DNS servers, enabling DNSSEC and enabling Stubby and job done.

Within your DNS Encryption menu I tried to do the same: enabling Stubby, I actually didn't see the option for DNSSEC, and DNS servers still Quad9 but if I do so my Internet stops, I can't browse at all and as soon as disable Stubby and click on "None" I'm able to browse again...
This is what I get in the log (lots of those lines):
Code:
[17:58:01.061846] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.062064] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.062220] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.062502] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.062689] STUBBY: 1.0.0.1 : Upstream : !Backing off TLS on this upstream - Will retry again in 2s at Sun Dec 15 17:58:03 2019
[17:58:01.088712] STUBBY: 2606:4700:4700::1001 : Upstream : No valid upstreams for TLS... promoting this backed-off upstream for re-try...
[17:58:01.117016] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.117235] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.117453] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.117641] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.143945] STUBBY: 2606:4700:4700::1111 : Upstream : !Backing off TLS on this upstream - Will retry again in 2s at Sun Dec 15 17:58:03 2019
[17:58:01.171280] STUBBY: 2606:4700:4700::1111 : Upstream : No valid upstreams for TLS... promoting this backed-off upstream for re-try...
[17:58:01.171530] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.171749] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.171936] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.172092] STUBBY: *FAILURE* no valid transports or upstreams available!
[17:58:01.172249] STUBBY: 2606:4700:4700::1001 : Upstream : !Backing off TLS on this upstream - Will retry again in 2s at Sun Dec 15 17:58:03 2019
Plus, with that former router I was able to pass this test: https://dnssec.vs.uni-due.de/ Now it states "test result is inconclusive."

Lastly, perhaps it could be useful to be able to select the additional features to install: with so many 'hidden' options, a noob like me could easily mess up configurations...
 

microchip

Very Senior Member
@kamoj

Quick question. When I go to Kamoj Addon - > Router Information I see that both CPU cores are reported to work at full speed (1.725 GHz) all the time yet the demand reports very low percentages (7% for core 1 and 1% for core 2). Is this a bug or normal behavior? I recall when I was on stock firmware, the debug page reported CPU frequencies dynamically scaling up or down based on load. Your addon always reports the full speed of the cores. Thoughts?

Thanks
 

farenheit

Regular Contributor
Hi Kamoj,

i get the following error on R9000:

Code:
 === LOGIN ===============================
  Please enter your password,It's the same
  with DUT login password
 ------------------------------------------
[email protected]:/$
[email protected]:/$ wget --no-check-certificate https://voxel-firmware.com/Downloads/k
amoj-addon_191214-083737-1_ipq806x.ipk
--2019-12-16 09:49:33--  https://voxel-firmware.com/Downloads/kamoj-addon_191214
-083737-1_ipq806x.ipk
Resolving voxel-firmware.com... 194.135.87.112
Connecting to voxel-firmware.com|194.135.87.112|:443... connected.
HTTP request sent, awaiting response... 200 OK
Length: 134860 (132K) [application/vnd.shana.informed.package]
Saving to: 'kamoj-addon_191214-083737-1_ipq806x.ipk.1'

kamoj-addon_191214- 100%[===================>] 131.70K   518KB/s    in 0.3s

2019-12-16 09:49:34 (518 KB/s) - 'kamoj-addon_191214-083737-1_ipq806x.ipk.1' sav
ed [134860/134860]

[email protected]:/$
[email protected]:/$ /bin/opkg install --force-overwrite kamoj-addon_191214-083737-1_ip
q806x.ipk
Unknown package 'kamoj-addon'.
Collected errors:
 * pkg_hash_fetch_best_installation_candidate: Packages for kamoj-addon found, b
ut incompatible with the architectures configured
 * opkg_install_cmd: Cannot install package kamoj-addon.
[email protected]:/$
[email protected]:/$
 

farenheit

Regular Contributor
I'm guessing for the R9000 it should be:
Code:
wget --no-check-certificate https://voxel-firmware.com/Downloads/kamoj-addon_191214-083737-1_r9000.ipk
and
Code:
/bin/opkg install --force-overwrite kamoj-addon_191214-083737-1_r9000.ipk
 

kamoj

Very Senior Member
It just show what is max freq with current governor.
@kamoj

Quick question. When I go to Kamoj Addon - > Router Information I see that both CPU cores are reported to work at full speed (1.725 GHz) all the time yet the demand reports very low percentages (7% for core 1 and 1% for core 2). Is this a bug or normal behavior? I recall when I was on stock firmware, the debug page reported CPU frequencies dynamically scaling up or down based on load. Your addon always reports the full speed of the cores. Thoughts?

Thanks
 

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top