Custom firmware for R7800 to extend its functionality

417 posts / 0 new
Last post
Luki
Luki's picture
Hello

Hello

is there a chance to run the modem Huawei e3372s-153 on this router?
If so, how to do it?

Voxel
Voxel's picture
Luki:

Luki:

There is a theme
 

http://myopenrouter.com/forum/r7500v1-and-lte-modem

better to write there. I did not try to do the same for R7800 yet. While only for R7500v1

Regards,
Voxel.

 

nilugeator
nilugeator's picture
Hello Voxel

Hello Voxel

 

Thank you for your hard work.

 

Is there a chance to add an OpenVPN CLIENT (not the SERVER as it is in the original firmware)

I would like to use it with transmission BT...

 

thank you for your answer.

Voxel
Voxel's picture
Hello Nilugeator,

Hello Nilugeator,

 

OpenVPN is in FW, so it is possible to use it as a server or as a client too. But w/o WebGUI, manual configuration (config file) from console. Using OpenVPN from FW or from Entware-NG.

Regards,
Voxel.

nilugeator
nilugeator's picture
thank you for your answer!

thank you for your answer!

I will try to find a tutorial to do that

 

some other questions :

1) Do you think that you will one day or another add webgui to openvpn? (lol) :)

2) With custom firmware like ddwrt or tomato, I used a script to set my VPN and exceptions (this computer goes through VPN, this one wont, etc..) I put this script inside the firewall script admin of the gui... Can I do the same with your firmware? (I didnt find some kind of "boot at startup script " section)

 

thanks in advance

nilugeator
nilugeator's picture
Didnt find how to configure

Didnt find how to configure my openvpn client ...

I used airvpn provider

I have thoses files to use:

servername_UDP-443.openvpn

ca.crt

ta.key

user.crt

user.key

 

 

I read your "readme" file, I only had to put thoses files in /root/openvpn directory. ?

I should do something wrong, because it apparently cant connect to the vpn server of airvpn

 

 

Voxel
Voxel's picture
My "readme" is related to use

My "readme" is related to use OpenVPN server. Controlled by WebGUI. You have to start your own client from console. Please send me your servername_UDP-443.openvpn if you do not know how to do that. Maybe in P.M. I'll iform you how to run client. Initially in manual mode, then you can use your own script in /etc/init.d/ directory.

Regards,

Voxel.

Voxel
Voxel's picture
Hi all,

Hi all,

 

I publish new version of custom firmware: 1.0.2.10SF.

The link is https://yadi.sk/d/Xmdn5x9Cw7fA5

 

What’s new/changed (vs 1.02.07SF):

 

  1. TCP congestion controls:

a. Now the following algorithms are available, user can select: westwood+ reno cubic vegas yeah Illinois

b. Default algorithm is weswood+.

  1. Some minor bugs made by Netgear are corrected.
  2. OpenSSL version is updated. 1.0.2h->1.0.2j
  3. OpenVPN version is updated. 2.3.11->2.3.12
  4. Beta support of  LTE modem in hostless mode, i.e. HiLink (when plugged into your computer, it appears as an Ethernet device rather than a USB device). I.e. you use your browser to control this modem by its WebGUI, not "Connection Manager"

 

To use it you should attach modem to USB port. If no LTE modem is attached, router will operate as usual.

  1. minidlna: The string "root_container=B" is added to default minidlna.conf.
  2. Correction of problem with ReadyCLOUD reported by Zeljko1234.
  3. I updated build tools to more fresh version. It is internal purposes (to build firmware). But might be something will be more stable.

Voxel.

Zeljko1234
Zeljko1234's picture
Great job Voxel. Thanks a lot

Great job Voxel. Thanks a lot :)

Voxel
Voxel's picture
I publish new version of

I publish new version of Entware compiled with optimization for use with IPQ806x CPU (optimization for Cortex-A15). This version is named by authors as Entware-3x, i.e. Entware for devices with version of kernel 3.x.

Main differences (vs Entware-ng):

  1. Optional possibility to use own independent users (/opt/etc/passwd /opt/etc/group).
  2. busybox is installed obligatory.

 

Additional difference this version vs version I published last time (Entware-ng)

  1. New compiler is used (v. 5.4.0).
  2. A lot of packages are updated (newest versions are used).
  3. Name of architecture is cortex-a15-3x (there was cortex-a15).

Difference my version vs official version

  1. Kernel 3.4.103
  2. Hard FP support.
  3. Optimization for Cortex-A15.
  4. General optimization (-O3).
  5. OpenSSL is accelerated.
  6. Several packages are renewed.
  7. /opt/etc/passwd, /opt/etc/group, /opt/etc/shadow, /opt/etc/shells are symlinks to /etc analogs (you can change this).

The links are:

https://yadi.sk/d/YROkl3T5xeCpR initial minimal set of preinstalled packages

https://yadi.sk/d/DTr4u2IRxe8AF full set of packages

 

Installation is similar to installation of Entware-ng.

 

Voxel.

Voxel
Voxel's picture
I publish new version of

I publish new version of custom firmware: 1.0.2.12SF.

 

The link is: https://yadi.sk/d/omigvS9qxjMTM

 

Changes (vs 1.0.2.10SF):
 

1. QoS script is updated to allow settings own download/upload limits (problem reported by UK Sentinel).
2. Missing patch in Netgear's GPL is added to fcgi package, extracted from old stock 1.0.0.40 (the same QoS problems).
3. TCP congestion control is changed back to YeAH (more fast according to my tests).
4. ntpclient is changed to support LTE modem connection.
5. sqlite version is updated. 3120200->3130000
6. tar version is updated. 1.28->1.29
7. libusb version is updated. 1.0.19-1.0.20
8. libxml version is updated. 2.9.3->2.9.4
9. wget version is updated. 1.17.1->1.18
10. dnsmasq.conf is changed to allow use of /etc/hosts file.
11. dnscrypt-resolver.csv is updated.
12. Cosmetic changes: now /etc/dnscrypt.conf and /etc/netwall.conf can be used instead of /root/dnscrypt-list and /root/netwall-rules. Similar use.
13. Changed logic of LTE modem detection (not even tried if you have WAN cable attached).
Voxel.
Zeljko1234
Zeljko1234's picture
Thx for spooky build :)

Thx for spooky build :)

Voxel
Voxel's picture
I publish new version of

I publish new version of custom firmware: 1.0.2.13SF.

Not so much time since 1.0.2.12SF release but Netgear released new stock FW.

 

The link is https://yadi.sk/d/53fQQWr6ybQF9

Changes (vs 1.0.2.12SF):
 

1.0.3.13SF
1. Integration with stock 1.0.2.12.
From Netgear notes to 1.0.2.12:
New Features and Enhancements:
* Added WiFi 5G band support for FCC DFS channels 52, 56, 60, 64, 100, 104, 108, 112, 116, 120, 124, 128, 132, 136, 140.
* Upgraded OpenSSL cryptography library from V1.0.0 to v1.0.2h.
Bug Fixes:
* Fixes security issue in which TCP port 80 and port 443 were always opened in IPv6 environment.
* Fixes security issue in which remote management interface still could be accessed even if it was disabled when the request 
* Fixes security issue in which R7800 reboots when using $(reboot) as user name to register ReadyCLOUD.
* Fixes the issue in which the flash drive connected to USB port2 cannot be added into approved USB devices list.
* Fixes the issue in which the desktop genie was unable to access R7800 remotely.
* Fixed other minor bug fixes.
2. New Netgear's ReadyCLOUD installer archive is moved from FW to external download to save space (installed automatically from Google drive).
3. OpenVPN version is updated 2.3.12->2.3.13.
4. zipsplit/zipnote/zipcloack are removed to save space (not used).
5. sqlite-cli package is removed to save space (not used).
6. libvorbisenc/libvorbisfile are removed to save space (not used).
7. /bin/config and /bin/readycloud_nvram are now symlinks to /bin/nvram
8. dnscrypt-resolvers.csv is updated.
9. Added possibility to use UVC webcam (changes in kernel header).
 
 
Voxel.
Voxel
Voxel's picture
Who wants to use USB webcam
Who wants to use USB webcam with R7800 for live streaming (Linux-UVC compatible webcams are supported, my last FW 1.0.2.13SF should be flashed):
 
 
1. Download archive from the link above, unpack and copy the following files:
 
kmod-uvc-video_3.4.103-1_ipq806x.ipk
libwebcam_0.2.5_ipq806x.ipk
mjpg-streamer_r182-8_ipq806x.ipk
uvcdynctrl_0.2.5_ipq806x.ipk
 
to your R7800.
 
2. Install kernel modules for UVC-video support from console (use full path to opkg):
 
/bin/opkg install kmod-uvc-video_3.4.103-1_ipq806x.ipk
 
3. Install mjpeg-streamer (use full path to opkg):
 
/bin/opkg install mjpg-streamer_r182-8_ipq806x.ipk
 
4. Enable mjpeg-streamer to be started automatically after reboot:
 
/etc/init.d/mjpeg-streamer enable
 
5. Reboot your router and check if you can see your webcam picture (mjpeg-streamer example page), i.e. open in your browser IP of your router, port 8080, e.g. http://192.168.1.1:8080
 
You can change the resolution and FPS modifying /etc/init.d/mjpeg-streamer file. I set 864x480, 30fps.
 
You can also use other optional Webcam Video Surveillance packages from Entware, for example motion, not using mjpeg-streamer. But mjpeg-streamer above does not require Entware installation.
 
uvcdynctrl_0.2.5_ipq806x.ipk and libwebcam_0.2.5_ipq806x.ipk are needed to install uvcdynctrl (camera control tools) if you need to change default camera controls such as focus, exposure, white balance temperature etc. Install first libwebcam then uvcdynctrl.
 
I checked with my two Logitech webcams (C525 and C920HD). Some kind of IP-camera. Should work with other Linux-UVC compatible webcams). 
 
Voxel.
 
Zeljko1234
Zeljko1234's picture
Fantastic! I was just going

Fantastic! I was just going to ask you about your new custom firmware based on the latest official. Thx and I'm glad that you can post again :)

Voxel
Voxel's picture
Thanks for thanks ;-)

Thanks for thanks ;-)

Yes, I warn everybody that I am often not able to post anything here, in this forum. Today and yesterday - exeptions.

Voxel.

Pasydron
Pasydron's picture
Please for all your

Please for all your electronic/electrical appliances as well as manuals on how to install as well as repair such appliances, you can visit this page >>>http://www.win-source.net

streilu
streilu's picture
Hi guys, I'm struggling with

Hi guys, I'm struggling with the SSH authentication for some hours now. I can't get it to work.

Formated a USB-Key with ext2 with the command 'mkfs.ext2 /dev/sdb1'.

Generated a keypair with "ssh-keygen" and added the one in id_rsa.pub to 'authorized_keys' after unpacking setssh.tar on the root folder of the stick.

Checked if 'autorun/scripts/post-mount.sh' is set executable (+x).

Plugged the stick into USB1 on the Nighthawk and wait some minutes, tried to ssh to the router with result 'Permission denied (publickey).'.

Rebooted the router and tried again to ssh to the router with the same result.

 

I've also tried 3 different USB-sticks. Looks like the autorun script is not executed?

I'm using the last version you posted some days ago.

Voxel
Voxel's picture
streilu:

streilu:
 

https://yadi.sk/i/TZ9VR_ygyxQQZ

 

It is what to paste into authorized_keys, not id_rsa.pub.

Regards,

Voxel.

Voxel
Voxel's picture
Sorry, ignore this. I was not

Sorry, ignore this. I was not attentive.

You have to check by telnet (http://routerlogin.net/debug.htm) that /root/.ssh exists and there is proper authorized_keys there.
Voxel.

streilu
streilu's picture
I got it now, the problem was

I got it now, the problem was that there was an empty authorized_keys file.

Modified the post-mount.sh to first delete this file and then to copy the right one.

 

Thanks anyway, great work from you!

 

Another question, is it possible to change the openVPN config to give the clients static IP addresses?

Voxel
Voxel's picture
Thanks for thanks ;-)

Thanks for thanks ;-)

I corrected script and upgraded setssh.tar to avoid such problems in the future.

 

Regarding OpenVPN: you can control server config  creration according to your taste modifying the file /etc/init.d/openvpn. Seek the lines:
 

dh $dh
ca $ca
cert $cert
 
(for tun and tap) and correct the rest according to your needs. I am not "super expert" in OpenVPN. It is working for me, both tun and tap, with my dh/key/crt/ca And it is enough for me.

Regards,

Voxel.
streilu
streilu's picture
Thanks, will give it a try to

Thanks, will give it a try to change the configs this evening.

What happens if I reconfigure it with the webinterface? Are these just the templates used by web-if?

 

Another problem: Does anyone else have problems with accessing LAN-clients (smb, rdp, ssh, ...) from WLAN-clients? Nothing working here except of pinging them. I don't know if that is related to your firmware or even to the original firmware. Maybe you can investigate that bug?

 

BR Luke

Voxel
Voxel's picture
What happens if I reconfigure

What happens if I reconfigure it with the webinterface? Are these just the templates used by web-if?

 

This script  is used by Web-GUI.

 

Another problem: Does anyone else have problems with accessing LAN-clients (smb, rdp, ssh, ...) from WLAN-clients? Nothing working here except of pinging them. I don't know if that is related to your firmware or even to the original firmware. Maybe you can investigate that bug?

 

I am sorry, but I do not have such problems. I often use my notebook (Wi-Fi) to enter to my Debian server (LAN, cable connection) by ssh, ftp, samba and http proxy. Last time yesterday.

 

Voxel.

Zeljko1234
Zeljko1234's picture
It's not helpful, but I don't

It's not helpful, but I don't have such problem either. Are you using firewall?

streilu
streilu's picture
No, I'm not using any

No, I'm not using any firewall on any of my devices.

Accessing LAN devices is not possible from any wireless device (laptop, smartphone, tablet).

I think it may has something to do with VLAN on the WAN interface.

vladlenas
vladlenas's picture
Hi Voxel.

Hi Voxel.

Great job!

A perfect example, how to make the maximum of this powerful device.

And thank you very much for your help in PM)

 

 

Voxel
Voxel's picture
Vladlenas:

Vladlenas:

 

You are welcome. But your PM is full now. I cannot write you in PM. You have to clean messages in PM

 

Voxel.

deweezy
deweezy's picture
Does this have any advanced

Does this have any advanced qos settings? Bascially like the sqm from openwrt?

Voxel
Voxel's picture
QoS is the same like in stock

QoS is the same like in stock FW.

 

Voxel.

Pages