Custom firmware build for R9000

56 posts / 0 new
Last post
Voxel
Voxel's picture
New version of my custom

New version of my custom firmware build: 1.0.4.5HF/1.0.4.5HF-HW.

Changes (vs 1.0.4.4HF/1.0.4.4HF-HW):

1. dnsmasq: dnsmasq.conf options are changed (compliance with v. 2.78).
2. OpenVPN client optimization.
3. ethtool package is upgaded 4.16->4.17.
4. iperf3 package is upgraded 3.5->3.6.
5. haveged package is upgraded 1.9.1->1.9.2.
6. transmission package is upgraded 2.93->2.94.
7. dbus package is upgraded 1.10.4->1.12.8.
8. curl package is upgraded 7.60.0->7.61.0.
9. libubox package is upgraded 2018-04-12->2018-06-07.
10. jansson package is upgraded 2.10->2.11.
11. libgcrypt package is upgraded 1.6.6->1.8.3.
12. libogg packages is upgraded 1.3.2->1.3.3.
13. HW version: mbedtls package is upgraded 2.7.0->2.11.0.

The link is:

https://www.voxel-firmware.com

 

Voxel.

Voxel
Voxel's picture
New version of my custom

New version of my custom firmware build: 1.0.4.6HF/1.0.4.6HF-HW.

Changes (vs 1.0.4.5HF/1.0.4.5HF-HW):

1. uhttpd: Fix for Attached Device Names is included (similar to R7800).
2. OpenVPN client optimization.
3. OpenSSL is upgraded 1.0.2o->1.0.2p (CVE-2018-0732, CVE-2018-0737).
4. dnsmasq: dnsmasq.conf options optimized.
5. ntpclient: init script is changed (automatization of setting date for OpenVPN client).
6. avahi package is upgraded 0.6.32->0.7.
7. ubus package is upgraded 2018-01-16->2018-07-26.
8. libubox package is upgraded 2018-06-07->2018-07-25.
9. uci package is upgraded 2018-03-24->2018-08-11.
10. e2fsprogs package is upgraded 1.43.9->1.44.4.
11. util-linux package is upgraded 2.32->2.32.1.
12. ffmpeg package is upgraded 3.2.10->3.2.12.
13. libgpg-error package is upgraded 1.27->1.32
14. HW version: mbedtls package is upgraded 2.11.0->2.12.0.

The link is:

https://www.voxel-firmware.com 

Difference 1.0.4.6HF-HW vs 1.0.4.6HF: “HW” version means hardware acceleration of OpenSSL.

Voxel.

molano
molano's picture
Hello Voxel,

Hello Voxel,

 

I am a happy user of your firmware for a couple of months now.  I just have some questions which I hope you can answer...

 

- Is it normal that I loose my openvpn-settings, dnscrypt and ssh access after every firmware update?  Is there anything I can do to make it persistent...?

- Do you happen to know how I can start/stop the Plex Media Server from commandline (in SSH)?
Thanks in advance.

Voxel
Voxel's picture
 

 

 Hi,

 Is it normal that I loose my openvpn-settings, dnscrypt and ssh access after every firmware update?  Is there anything I can do to make it persistent...?

 

Your changes are kept in overlay partition and the last is erased when you perform new fw flashing. So it is better to have a backup on external USB disk/stick. You could easely restory all your tuning after new flashing. See:
 

https://www.snbforums.com/threads/enabling-dhcp-auth-options-60-and-61-o...

As a rule backup is created only once, so just restore from tarbal after flashing.

Do you happen to know how I can start/stop the Plex Media Server from commandline (in SSH)?
 

Start/stop Plex:
 

/etc/plexmediaserver/cmdplexmediaserver start

/etc/plexmediaserver/cmdplexmediaserver stop

 

Voxel.

 
 

molano
molano's picture
Voxel,

Voxel,

 

Thanks for sharing.  Howerver, the plexcommands does not seem to work.  I got no output so it seems the script runs fine, but when I stop plex with commandline, I am still able to access it. Also the webUI still shows plex as running.

Is it possible to verify on your end if it works?

 

I got one additional question:  In your readme, it says how to disable cloudready, but it does not really explain how to remove the bits.  Can you please explain?

 

I have already posted also in the snbforum, since it seems that is your preferred place.

 

Thanks

molano
molano's picture
Drop the plex thing.  Seems

Drop the plex thing.  Seems to be working, but you need to give the full path when running cmdplexmediaserver.

I try to run this from a remote host over ssh, but that now gives me an error that it can't locate any USB drives...

When I run it on the router itself, it works fine now.

 

 

bytears
bytears's picture
Hi.

Hi.

Sorry for my poor english.

I'm successfully setup Voxel's 1.0.4.6HF-HW version firmware and Entware.(Thanks Voxel.)

I want to use freedns.araid.org for DDNS.

Please suggest solution for DDNS. Thanks for all.

Voxel
Voxel's picture
I want to use freedns.araid

I want to use freedns.araid.org for DDNS.

Please suggest solution for DDNS. Thanks for all.

 

There is the possibility. Using Entware and ddclient. Entware for Perl installation (ddclient is using Perl). But this ways requires some knowledge of Linux.
 

https://sourceforge.net/p/ddclient/wiki/Home/
 

Voxel.

farenheit
farenheit's picture
 

 

Just received an email from netgear advising of a new firmware .12 :)

Voxel
Voxel's picture
New version of my custom
New version of my custom firmware build: 1.0.4.13HF/1.0.4.13HF-HW.

Changes (vs 1.0.4.6HF/1.0.4.6HF-HW):

1. Integration of changes from the stock v. 1.0.4.12.
2. stubby package is added (with all needed dependences) to provide DNS-over-TLS support:
to enable stubby run the commands from telnet/ssh console:
nvram set stubby=1
nvram commit

and reboot your router; to disable stubby run the commands from telnet/ssh console:
nvram set stubby=0
nvram commit

and reboot your router.
3. Temporary fix for NG's bug (Attached Device List) is removerd (is working now).
4. dnsmasq: dnsmasq.conf options optimized.
5. dbus package is upgraded 1.12.8->1.12.10.
6. expat package is upgraded 2.2.5->2.2.6.
7. liblz4 package is upgraded 1.8.2->1.8.3.
8. ethtool package is upgaded 4.17->4.18.
9. curl package is upgraded 7.61.0->7.61.1.
10. at package is upgraded 3.1.20->3.1.23.
11. sqlite package is upgraded 3230100->3240000.
12. sysstat package is upgraded 11.0.4->11.6.4.
13. HW version: mbedtls package is upgraded 2.12.0->2.13.0.
14. plexmedia package: some re-order.
15. Host tools: several components are upgraded.
16. /etc/profile default profile is changed (no PATH for /opt/bin:/opr/sbin). 
Entware users should set the PATH for Entware in /root/.profile file.

The link is:

https://www.voxel-firmware.com (thanks to vladlenas for his help with hosting).

So important notes:

1. stubby (DNS-Over-TLS) is already included into firmware. To enable stubby run the commands from telnet/ssh console:
nvram set stubby=1
nvram commit

and reboot your router; to disable stubby run the commands from telnet/ssh console:
nvram set stubby=0
nvram commit

and reboot your router. Currently it is configured to use Cloudflare servers (DoT). You may customize your config file: 

/etc/stubby/stubby.yml 

2. Info for Entware users. /etc/profile default profile is changed (no PATH for Entware is set by default, i.e. /opt/bin:/opr/sbin). Set the PATH for Entware in /root/.profile file, something like:

export PATH=/opt/bin:/opt/sbin:/bin:/sbin:/usr/bin:/usr/sbin

Difference 1.0.4.13HF-HW vs 1.0.13.6HF: “HW” version means hardware acceleration of OpenSSL.

Voxel.

 

 

 

Voxel
Voxel's picture
Just received an email from

Just received an email from netgear advising of a new firmware .12 :)

 

Yeah, I know. See above.

 

Voxel.

Voxel
Voxel's picture
New version of my custom

New version of my custom firmware build: 1.0.4.14HF/1.0.4.14HF-HW.

Changes (vs 1.0.4.13HF/1.0.4.13HF-HW):

1. Partial rollback: most of integrated binaries and kernel objects from the stock 1.0.4.12 are reverted back to CountryIE version.
(to provide stability of Wi-Fi connection)
2. ubus package is upgraded 2018-07-26->2018-10-06-221ce7e7.
3. libevent2 package is upgraded 2.0.22-1->2.1.8.
4. libevent-core and libevent2-pthreads packages are removed (not used).
5. unbound package is upgraded 1.8.0->1.8.1.
6. NG Downloader: fixing problems with http/ftp downloads.
7. Toolchain: binutils version is upgraded to 2.31.1.


The link is:

https://www.voxel-firmware.com (thanks to vladlenas for his help with hosting).

 

Voxel.

BigWhoop
BigWhoop's picture
Iam on V1.0.4.14HF-HW and

Iam on V1.0.4.14HF-HW and cant use entware.

There is no perl package by default and i cant opkg update because of this:

opkg update
Downloading http://downloads.openwrt.org/attitude_adjustment/12.09-rc1/r9000/generic....
Collected errors:
* opkg_download: Failed to download http://downloads.openwrt.org/attitude_adjustment/12.09-rc1/r9000/generic... Error.

jsonman
jsonman's picture
Hi Voxel, I want to  switch

Hi Voxel, I want to  switch to your firmware from DD-WRT (wish I would of seen you kept settings before going with them) but few questions.

 

1. Does your firmware have a tool to monitor outbound bandwith usage?  Comcast is saying I'm going over my data and stock NG firmware sucks for tracking usuage 

2. On the download page what is the diffrence between the hf and hf-hw .zip/image files?  Which one would be needed for someone going from stock to your firmware?

Thanks

Voxel
Voxel's picture
Hi,

Hi,

1. Rather not. My version is improvement of a stock. Sorry.

2. HF-HW is using hardware acceleration of OpenSSL (i.e. some components such as OpenVPN, https, ReadyCLOUD should work much faster). Ordinary "HF" version is just some kind of fallback if somebody face the issue with HF-HW (still no such alarms). So HF-HW is recommended.

Voxel.

Voxel
Voxel's picture
 
 

New version of my custom firmware build: 1.0.4.15HF/1.0.4.15HF-HW.

Changes (vs 1.0.4.14HF/1.0.4.14HF-HW):

1. OpenSSL package is upgraded 1.0.2p->1.0.2q.
2. DNSCrypt Proxy v.2 (2.0.19) is included into firmware:

to enable DNSCrypt Proxy v.2 run the commands from telnet/ssh console:
 
nvram set dnscrypt2=1
nvram commit

and reboot your router;
to disable DNSCrypt Proxy v.2 run the commands from telnet/ssh console:

nvram set dnscrypt2=0
nvram commit

and reboot your router.​

3. unbound package (used in stubby) is upgraded 1.8.1->1.8.2.
4. wget package is upgraded 1.19.5->1.20.
5. util-linux package is upgraded 2.32.1->2.33.
6. haveged package is upgraded 1.9.2->1.9.4.
7. ethtool package is upgaded 4.18->4.19.
8. libjpeg package is upgraded 9a->9c.
9. curl package is upgraded 7.61.1->7.62.0.
10. libgcrypt package is upgraded 1.8.3->1.8.4.
11. libubox package is upgraded 2018-07-25->2018-11-16.
12. sqlite package is upgraded 3240000->3250300.
13. HW version: cryptodev-linux package is upgraded 1.9.git-2017-10-04->1.9.git-2018-11-02.

The link is:

https://www.voxel-firmware.com (thanks to vladlenas for his help with hosting).

1. stubby (DNS-Over-TLS) is already included into firmware. To enable stubby run the commands from telnet/ssh console:

nvram set stubby=1
nvram commit

and reboot your router; to disable stubby run the commands from telnet/ssh console:

nvram set stubby=0
nvram commit

and reboot your router. Currently it is configured to use Cloudflare servers (DoT). You may customize your config file:

/etc/stubby/stubby.yml

2. DNSCrypt Proxy v.2 is already included into firmware. To enable DNSCrypt Proxy v.2 run the commands from telnet/ssh console:

nvram set dnscrypt2=1
nvram commit

and reboot your router;
to disable DNSCrypt Proxy v.2 run the commands from telnet/ssh console:

nvram set dnscrypt2=0
nvram commit

and reboot your router. Currently is is configured to is Cloudflare, ipredator, scaleway-fr, dnscrypt.eu-nl, dnscrypt.eu-dk. You may customize your config file /etc/dnscrypt-proxy-2.toml to add/remove your selected servers.

3. If both (stubby and DNSCrypt Proxy v.2) are enabled, stubby has highest priority (it will shutdown all dnscrypt (v1 and v2)). DNSCrypt Proxy v1 if still used has lowest priority.

Difference 1.0.4.14HF-HW vs 1.0.4.14HF: “HW” version means hardware acceleration of OpenSSL.

Voxel.

 

 

 

 

Danser
Danser's picture
Voxel I'm new here and was

Voxel I'm new here and to flashing routers. I was wondering why it seems to be that you don't install your firmware the same as the others? I have a R9000, there's a lot talking about your work, but I can't figure out how to install by what you are saying. Is it me?

Thanks,

Danser

Voxel
Voxel's picture
Voxel I'm new here and to

Voxel I'm new here and to flashing routers. I was wondering why it seems to be that you don't install your firmware the same as the others? I have a R9000, there's a lot talking about your work, but I can't figure out how to install by what you are saying. Is it me?

Sorry, I do not understand your question. If you do not know how to install my build from the stock fw, it is quite easy: download zip with my firmware, unpack it to get IMG file and point this IMG file from WebGUI of router (Advanced->Administration->Firmware Update) as a firmware to flash.

Voxel.

 

Danser
Danser's picture
No, I'm sorry by not
No, I'm sorry by not conveying my thoughts and a better way of making any sense. Thank you Voxel for coming back. I have never flashed a router other than to flash updates from Netgear and want to use yours when you get to the RC version of the file. Do you have any idea when that may be? Are you going to produce a Youtube and steps to flash with your file? You out of maybe ten came back to say anything. I have asked what file to use when flashing my router. Usually, there are two, .bin and img. What's the difference? Can I use an external USB drive attached to the router to flash with your img file? All I've seen is an ethernet cable. So many questions I know and if you have the time to answer them, you won't only be helping me, but whomever may run upon this post. 
Thanks again
Danser
Voxel
Voxel's picture
It is a bit problematic for

It is a bit problematic for me to understand you. What do you mean under "RC version of the file"?  I do use as a base for my build official GPL source codes of a stock firmware.

If you are using only firmware from NG there is no any necessity in special actions and special additional hardware such as USB drive to flash my version. No necessity in special BIN file.

 

To flash my build it is enough (when you are with official NG firmware):

1. Download an archive https://www.voxel-firmware.com/Downloads/Voxel/R9000-Voxel-firmware/R900... to your computer

2. Unpack it, you will get the file R9000-V1.0.4.15HF-HW.img

3. Enter to router WebGUI: http://routerlogin.net/index.htm

4. Select the tab ADVANCED and select Administration->Firmware Update in the left part of this page menu.

5. Use  the button [Browse] to select the file  R9000-V1.0.4.15HF-HW.img and then click [Upload]

Thats' all. Your current settings should be kept.

To revert back to stock download the file http://www.downloads.netgear.com/files/GDC/R9000/R9000-V1.0.4.12.zip (it is official latest stock firmware file), And do similar to flash IMG stored in this archive. You will get a router with official NG firmware.

Both procedures takes not more than 5 minutes. And no any special file or USB or whatever else are needed. No necessity to re-configure router. So if you flash my version and after this revert back to stock, you will not see any changes.

Voxel.

Danser
Danser's picture
Basically where your file is

On the (RC). Basically where your file is now.

From WIKI:

A release candidate (RC), also known as "going silver", is a beta version with potential to be a final product, which is ready to release unless significant bugs emerge. ... 
 
On the USB stick, or ethernet cable. Can either be used to flash the file? On the reset. How do you accomplish it? I think you said somewhere not to use the 30/30/30.
Thanks
 
Danser
Danser's picture
On the USB stick, or ethernet

On the USB stick, or ethernet cable. Can either be used to flash the file.

Nevermind got to thinking about it and I'd say no with the USB. 

Voxel
Voxel's picture
New version of my custom

New version of my custom firmware build: 1.0.4.16HF/1.0.4.16HF-HW.

(NOTE: This release does not contain integration of latest stock firmware changes. Too many negative feedback (issues) for release of the stock firmware. But there are several fixes of security issues so it has a sense to perform upgrade from previous version. Thus it is intermediate maintenance release to provide synchronization of changes for R7800.)

Changes (vs 1.0.4.15HF/1.0.4.15HF-HW):

1. dropbear: security issue CVE-2018-15599 is fixed, see:

for details.
2. curl package is upgraded 7.62.0->7.63.0.
3. dbus package is upgraded 1.12.10->1.12.12.
4. e2fsprogs package is upgraded 1.44.4->1.44.5.
5. jansson package is upgraded 2.11->2.12.
6. libgpg-error package is upgraded 1.32->1.34.
7. libxml2 package is upgraded 2.9.8->2.9.9.
8. sqlite package is upgraded 3250300->3260000.
9. wget package is upgraded 1.20->1.20.1.
10. jq package is upgraded 1.5->1.6.
11. getdns package (used un stubby) is upgraded 1.4.2->1.5.0.
12. unbound package (used in stubby) is upgraded 1.8.2->1.8.3.
13. stubby package is upgraded 0.2.3->0.2.4.
14. HW version: mbedtls package is upgraded 2.13.0->2.16.0.
15. HW version: cryptodev-linux package is upgraded 1.9.git-2018-11-02->1.10.
16. Toolchain: gdb is upgraded to 8.2.1.
17. Host tools: two components are upgraded.

The link is:

https://www.voxel-firmware.com (thanks to vladlenas for his help with hosting).


Difference 1.0.4.16HF-HW vs 1.0.4.16HF: “HW” version means hardware acceleration of OpenSSL.

Voxel.

 

Voxel
Voxel's picture
New version of my custom

New version of my custom firmware build: 1.0.4.27HF/1.0.4.27HF-HW.

Changes (vs 1.0.4.16HF/1.0.4.16HF-HW):

1. Integration of changes from the stock v. 1.0.4.26 including:

  • a login password enhancement in the router web interface to support a more secure password (no saving passwords in NVRAM in plain text form).
  • fixing the issue where the speed test in the QoS page always fails.
  • Dynamic QoS database v1.46 update.

2. tar package is upgraded 1.30->1.31.
3. curl package is upgraded 7.63.0->7.64.0.
4. unbound package (used in stubby) is upgraded 1.8.3->1.9.0.
5. libvorbis package is upgraded 1.3.5->1.3.6.
6. ffmpeg package is upgraded 3.2.12->3.4.5.
7. libsodium package is upgraded 1.0.16->1.0.17.
8. busybox package: patch command is added.
9. Host tools: two components are upgraded.

The link is:

https://www.voxel-firmware.com (thanks to vladlenas for his help with hosting).

Difference 1.0.4.27HF-HW vs 1.0.4.27HF: “HW” version means hardware acceleration of OpenSSL.

Voxel.

 

Voxel
Voxel's picture
New version of my custom
New version of my custom firmware build: 1.0.4.29HF/1.0.4.29HF-HW.

Changes (vs 1.0.4.27HF/1.0.4.27HF-HW):

1. Integration of changes from the stock v. 1.0.4.28.
2. dropbear package is upgraded 2018.76->2019.78.
3. OpenSSL package is upgraded 1.0.2q->1.0.2r.
4. OpenVPN is upgraded 2.4.6->2.4.7.
5. DNSCrypt Proxy v.2 is upgraded 2.0.19->2.0.22.
6. unbound package (used in stubby) is upgraded 1.9.0->1.9.1.
7. ca-certificates package is upgraded 20180409->20190110.
8. libubox package is upgraded 2018-11-16->2019-02-27.
9. tar package is upgraded 1.31->1.32.
10. libgpg-error package is upgraded 1.34->1.36.
11. busybox package: dos2unix/unix2dos commands are added.
12. proftpd: read access issue for admin user is fixed (NG bug).
13. Toolchain: binutils version is upgraded to 2.32.

The link is:

https://www.voxel-firmware.com (thanks to vladlenas for his help with hosting).

Difference 1.0.4.29HF-HW vs 1.0.4.29HF: “HW” version means hardware acceleration of OpenSSL.

Voxel.

 

Pages