Entware (software packages) for R7500

95 posts / 0 new
Last post
Voxel
Voxel's picture
Entware (software packages) for R7500

Strange - forum is changed and my instruction for testing Entware under R7500 was wiped out... I repeat it:

Draft instruction on the fly. It allows to test Entware manually. Enough for test. I did not finish automatic start of Entware settings. Too different environment ASUS vs Netgear.

You will need USB HDD or stick to set Entware environment there. Also, telnetenable for r7000/R7500 tools to enable telnet to Netgear console.

telnetenable is available from this link (Linux/Windows):

https://github.com/insanid/NetgearTelnetEnable/tree/master/binaries

1) Enable telnet for your R7500 (see http://wiki.openwrt.org/toh/netgear/telnet.console re: how).

2) Enter by telnet to your router console.

3) Attach you HDD or USB stick to router port. It should be mounted to /tmp/mnt/sda1 or /tmp/mnt/mnt/sdb1 or similar. Run "df" command to see where it is mounted:

root@R7500:~# df
Filesystem 1k-blocks Used Available Use% Mounted on
tmpfs 512 0 512 0% /dev
ubi0:ubifs 4012 44 3728 1% /overlay
overlayfs:/overlay 4012 44 3728 1% /
/dev/sda1 367455920 5622176 343440528 2% /tmp/mnt/sda1

4) Unmount your HDD/stick:

umount /tmp/mnt/sda1

if device is busy you can use "-l" option for "umount"

5) Create ext2 or ext3 or ext4 filesystem on your device:

mkfs.ext4 /dev/sda1

6) Mount your device again:

mount /dev/sda1 /tmp/mnt/sda1

6) Copy entware.tar file downloaded from this link:

https://yadi.sk/d/dVjq9kLHfzRaq

to your HDD/stick root. By e.g. file sharing or so.

7) Untar archive being in the root of HDD/stick:

cd /tmp/mnt/sda1
tar xof entware.tar

You will get entware.arm directory in the root of your device.

8) Create symbol links for /opt (I suggest two consequential links):

ln -sf /tmp/mnt/sda1/entware.arm /tmp/opt
ln -sf /tmp/opt /opt

Check that /opt contains bin/ etc/ /usr and other subdirectories:

ls /opt/

9) Change the path to include /opt directories:

export PATH=/opt/bin:/opt/sbin:/opt/usr/bin:/opt/usr/sbin:/bin:/sbin:/usr/bin:/usr/sbin

Check that PATH is set correctly. The command "which wget" should display "/opt/bin/wget"

NOTE: it is possible to modify line in "/etc/profile" to add this PATH automatically after each telnet.

10) That's all. Now Entware should work. Try to run "mc" to see Midnight Commander panel for example.

"opkg list" will show you Entware packages. "opkg install packagename" should install needed package from Entware to /opt.

Important note:

After reboot of router the last will mount your HDD/stick with option "noexecute" and Entware programs cannot be run from your /tmp/mnt/sda1. So it is necessary to unmount it and mount again using commands umount/mount described above. Check also after reboot that link is OK (i.e. that /opt contains bin/ usr/ etc/ lib/ and so on.)

I did not complete yet automatization of Entware (e.g. automatic umount/mount etc.). Setting dropbear from Entware to avoid this telnetenable. Strange for me that Netgear has both "root" and "admin" user. Not so with ASUS.

Voxel
Voxel's picture
Impression of R7500: very

Impression of R7500: very good hardware, but very bad software (I mean official fw). Firmware from NETGEAR is too dirty. Made from OpenWRT, a lot of scripts/configs which are not used (left from OpenWRT codes). It is possible to use R7500 more or less comfortable if to disable practically all features of official fw and enabling what is needed by use of Entware and chroot-ed Debian.

Currently I have more or less good environment. Dropbear from Entware (SSH daemon) is started automatically from external HDD after each reboot or attaching HDD to router. It allows me to enter to router console for installation anfd configuration of Entware programs/daemons and/or  Debian packages like nginx, ownCloud, Transmission.Waiting for opensource fw...

Automatization is possible by modification of /sbin/hotplug2.mount script from official fw. It is executed every time when you connect HDD to router. So changing mount options (disabling noexecute) and adding call of own script from HDD I got SSH daemon and start of chroot-ed Debian daemons.

Also, seems official fw underclock R7500 CPU. It works from 800 to 1000MHz. Very strange for me. Script /etc/init.d/powerctl set such freq. I modified it to use full power of R7500 (1400MHz). CPU benchmark of R7500 with 1.4GHz vs overclocled ASUS RT-AC68U (1.0GHz) displays what could be expected. R7500 is faster in 1.35-1.4 times. It also means that R7500 faster than r7000 and R8000 in 1.35-1.4 times. So perhaps goal of underclocking R7500 is to push R8000 and r7000 to the market.

Now my R7500 serves ownCloud server, nginx web-server, proftp, bit-torrent Transmission, minidlna with enabled thumbnails, SSH daemond, samba daemon with my settings/permissions, OpenVPN with tun and tap. True 1.4GHz CPU.

Waiting for opensource fw...
I can share my experience with R7500 environment setting if there is an interest.
 

weiyu99
weiyu99's picture
Hi Voxel,

Hi Voxel,

 

Is it possible to install/enable SSH w/o using external USB storage device?

I'm interested in install/enable SSH and how to unlock CPU frequency, etc.

Appreciated if you can share your experience...

thanks,

Dennis

Voxel
Voxel's picture
Hi Dennis,

Hi Dennis,
I'm afraid, there is no free space w/o external storage to install Entware:

root@nighthawk:~# df
Filesystem 1k-blocks Used Available Use% Mounted on
tmpfs 512 0 512 0% /dev
ubi0:ubifs 4012 56 3716 1% /overlay
overlayfs:/overlay 4012 56 3716 1% /

Only 3.7MB are available. My minimal installation of Entware (wget, mc, dropbear (==SSH), samba, swaputils) takes about 21MB... So external HDD/USB stick is needed. R7500 have enough flash space, but I do not know where/ho it is used and why is not available.
In general, you can unlock CPU frequency w/o SSH (dropbear) installation. It is enough to use telnetenable (see my first post), enter by telnet to router, modify the file /etc/init.d/powerctl by vi editor.
Modify the line at the end of this file:

config_get mode powerctl mode "auto"

to

config_get mode powerctl mode "turbo"

That's all. Reboot after modification. Now your router will be always with 1.4GHz CPU.

If you want to use USB stick or so, it is better to format is as HPS+ (Apple FS). By unclear for me (yet) reason R7500 mounts ext2/ext3/ext4 filesystems with permissions 777 (full control). SSH does not like such permissions.

If any questions - welcome.

Be carefull with modification of /etc/init.d/powerctl. You can brick your router in case of incorrect manipulations.

iceroute
iceroute's picture
Voxel

Voxel

 

I would be interested in the mods you have made if you wouldnt mind sharing them.

iceroute
iceroute's picture
I wonder if we could now

I wonder if we could now extend the openwrt image by using the entware repo as it has most of the add-ons most people have been looking for.

Voxel
Voxel's picture
It is difficult to share all

It is difficult to share all what I made. I do not know concrete needs. Most of people are interested in OpenWRT or DD-WRT. But in general all what I need from firmware:

1) Usual router functionality (fast LAN/Wi-Fi, port forwarding). This is provided by official FW from Netgear.

2) Support of USB/eSATA HDD (to have possibility of Entware and Debian use from them).

3) SSH/Telnet access to router command line for Entware/Debian setup/confiruration.

I am not much interested in exactly OpenWRT/DD-WRT. Because w/o software packages such FW are useless. When Entware/Debian provide more than enough.

I am interested in stable opensource FW only because there is no normal access to command line in official FW. This is why I made all these hacks.

Now I succeeded to install dropbear (==SSH) to official FW (w/o needs in attached external HDD/stick). Fortunately, dropbearmulti binary from ASUS RT-AC68U (Merlin build) is compatible with R7500. Takes only about 200KB of space. So in case of problems with external HDD I have possibility to enter to router Linux and repair them.

So if you are interested in something concrete - please concrete questions. I really do not know what for example you want to have at the end of all. How to install Entware to official FW is described. It is more easy to do with OpenWRT I guess using the same instruction. I have SSH access to router with official FW mod. It is practically what I need from FW. All "advantages" of official FW (samba, minidlna, FTP server, OpenVPN etc) are disabled (turned off) in FW by me and I use Entware and chroot-ed Debian analogs. More stable. More possibilities. More flexible. No dependence on FW bugs.

Voxel
Voxel's picture
OK, small instruction (from

OK, small instruction (from my experience) how to install dropbear to R7500 (to have SSH server) with official FW. W/o external HDD/USB-stick.

NOTE: I assume basic experience with Linux tools and console. If you do not have such experience - better do not do all this. I am not responsible for bricked routers due to wrong manipulations.

You need (at the first step) telnetenable to your router.

1) Download https://yadi.sk/d/vDHnWo9LgWKFM (dropbear.tar.gz)

It contains usr/bin/dropbearmulti - binary compatible with R7500 and with symbol links in the same directory (dbclient, ssh, dropbear etc. which are (important!) symbol links to dropbearmulti). Also etc/init.d/powerctl - modified init script which:

a) Sets R7500 to turbo mode (1.4GHz)
b) Runs dropbear (SSH daemon) at the boot time
c) Modifies /etc/passwd changing its home from /tmp to /root (see below why)

2) Copy files from TAR-archive to corresponding place (/etc and /usr/bin). Using console tools by telnet to your router. With keeping +x (executable) attributes for /usr/bin file/links. Use links to dropbearmuli to keep free space of router flash.

To enter it by SSH client you need some additional manipulation (again, I assume basic knowledge of Linux tools including SSH):

3) Create own SSH key and store it in the /root/.ssh/authorized_keys file. Make sure that this file has 600 mask. We do not have root password so SSH key authorization is IMO most proper case. See google re: how to create/use SSH keys.

4) The reason why I change the root's home from /tmp to /root in powerctl is that /tmp has 777 attribute. Not acceptable for SSH login with SSH key.

5) Reboot and after this you will have dropbear (SSH daemon) started. Port 22.

IMPORTANT: For test and checking that your SSH keys are workable I suggest to run dropbear manually from console, changing /etc/passwd manually

root:!:0:0:root:/tmp:/bin/ash --> root:!:0:0:root:/root:/bin/ash

and by creation of /root/.ssh/authorized_keys before reboot. Just run "dropbear -p 22 -a" and try to enter by SSH with keys to your router's root. If something is wrong: better to return all back and check what is wrong.

That's all.

Zdenkod
Zdenkod's picture
Hi Voxel!

Hi Voxel!

This page is excellent news for me.

Sick & tired of Netgear FW and their support. They were not able to switch on VPN service on my R7500. I use static IP from my ISP, and VPN service can not be switched ON. The official FW is the WORST - with big (uppercase) letters.

So to the topic.

I'm very happy that something is in work for that excellent hardware.

My questions are:

1. Is it possible to use packages from http://qnapware.zyxmon.org/binaries-armv7/Packages.html ? Or else is there any other packages repository for that router?

2. In your first post you have not described how to manage Entware installed apps. Do I have to for instance stop a service, edit config file for that service save it and start service again.? Or else do I have a web interface for any (Samba, FTP server, VPN service..)

3. Power loss - Do I have to manually start entware with login through SSH? SSH service is Entware, so can not be started remote.

4. The must be on my R7500 are

   2 & 5 GHz WiFi at full speed

   NAS (SAMBA server) at full speed - video share

   1GB LAN on all ports

   SSH & VPN server

   dynamic QOS - works excellent with original FW

5. Additions missing on original FW that I would like to use

   SFTP server with users with different access rights

   transmission service

  NAS with users with different access rights

Can I reach all above with current Entware?

Sorry for a long list, but original FW is really worst, even much more then expected, reading forums before purchase.

Was spoiled with my good old WRT610n V2 on steroids (kongmod, dd-wrt+optware at first).

Hardly waiting for your reply.

Have nice day!

Zdenko

 

 

 

 

 

Voxel
Voxel's picture
Hi Zdenko!

Hi Zdenko!

Concerning your questions:

Q1. Is it possible to use packages from http://qnapware.zyxmon.org/binaries-armv7/Packages.html ? Or else is there any other packages repository for that router?
A1. Yes of course you can use packages from this link (many thanks to Zyxmon). It is exactly Entware repository.

Q2. In your first post you have not described how to manage Entware installed apps. Do I have to for instance stop a service, edit config file for that service save it and start service again.? Or else do I have a web interface for any (Samba, FTP server, VPN service..)
A2. Entware is managed from router console (by telnet or ssh after having ssh access). With use of opkg program. For example: "opkg install dropbear" will install dropbear. "opkg remove dropbear" removes it. There is no web interface for these packages, just config files.
The reason why I published already installed Entware (with small subset of installed applications) is that standard wget from Netgear environment fails to download packages from Entware repository (Zyxmon site). It is just to simplify initial environment of Entware. I used this environment on my ASUS RT-AC68U router.

Q3. Power loss - Do I have to manually start entware with login through SSH? SSH service is Entware, so can not be started remote.
A3. Please see my post #7. It describes how to use SSH even w/o Entware and external USB HDD/stick. I do use such approach now, and I do not use SSH from Entware. Only other packages such as samba, midnight commander etc.

Q4. The must be on my R7500 are:
A4. All this is available from Entware. Plus official FW functionality. Only you need USB HDD/stick for Entware.

Q5. Additions missing on original FW that I would like to use
A5. Also available from Entware. Only necessary to understand how to configure all daemons you need. Not so dufficult if you are familiar with Linux console, tools.

I have now:

SSH daemon started with router boot even w/o external storage
Samba server from Entware with different right for users (my config)
Set of chroot-ed Debian daemons:
Transmission
ProFTP daemon with SSL
nginx Web server
OpenVPN with two my own configs (TUN and TAP)
ownCloud
minidlna
etc etc etc

I suggest you to try Entware, then (maybe) you will be interested in chroot-ed Debian. The last is just normal Linux. I even compile my own packages under Debian and for this Debian if necessary. Directly on router.

Also I wrote above that I suggest to use external storage (USB HDD/stick) with HFSPLUS filesystem. Native ext2/ext3/ext4 FS are mounted with 777 access attributes for all files. I do not know why. Maybe with OpenWRT it is not so.

To start Entware daemons automatically after reboot and to mount external USB HDD I changed /sbin/hotplug2.mount script. Removing "noexec" option in mount command. And adding such condition after mounting:

if [ -f /mnt/$1/autorun/scripts/post-mount.sh ]; then
/mnt/$1/autorun/scripts/post-mount.sh $1 &
fi

So if I have in my external HDD script post-mount.sh in /autorun/scripts directory, it will be executed after reboot or after plugging HDD to already started router. hotplug2.mount is executed after attaching HDD to router automatically (or after reboot).

Have a nice day too.

iceroute
iceroute's picture
Voxel

Voxel

 

Could I bother you for the instructions for you Chrooted debian OpenVPN (TUN and TAP)

 

I too am happy with the base firmware except for its OpenVPN client, so I am looking for the following

  • ssh access (instructions above)
  • Ability to run my own scripts (instructions above)
  • Run CPU at turbo (instructions above)
  • OpenVPN with IPv6 enabled, and run both tun and tap (missing)

 

Thanks

Chris

Voxel
Voxel's picture
Chris

Chris

Installation of chroot-ed Debianis described here:

https://www.asuswrt.eu/how-to-install-debian-wheezy-arm/

It is for ASUS ARM routers, but practically the same is for R7500 if you understand what you are doing. Instruction from link above contains also link to archive with Debian itself. Only thing is how to start Debian services after router reboot. In instruction above you can see reference to scripts which are started during boot from /jffs/scripts directory. No such possibility in R7500. So there should be trick with other startup scripts from R7500. For example I suggest to use something like I pointed above with modification of hotplug2.mount script from /sbin directory. And note about use of HFS+ for your external HDD/stick where Debian and/or Entware will be used. Mount of your HFS+ external partition should be done w/o "noexecute" option and with removing the command after mount "chmod -R 777" which sets 777 permission for all files in official FW.

From the other hand, if you need only OpenVPN and all the rest is not interesting, I do not think that you need Debian. Entware IMO is enough. I use Debian because of a lot of daemons I need from Debian. Including my own.

Concerning OpenVPN itself. Does not matter Debian or Entware. There is Netgear FW specific needed to be solved to run your own daemon. First, I modified openvpn script from /etc/init.d to force it creation of needed interfaces always, even if OpenVPN is disabled in WebUI of R7500. Part of /etc/init.d/openvpn script after my modification:

start() {
set_up_ethernet_bridge

# open the door to let client in
net-wall rule
net-wall start
}

I.e. I removed all checking "is OpenVPN is enabled in WebUI".

Second, Netgear has own strange specific for firewall rules. It does not use "iptables" directly, and changes firewall too often sp even if you run "iptables" manually it can be spoiled. Netgear runs its own program net-wall. Logic of program is:

1) Execution of "net-wall rules" generates file /tmp/netwall-rules to open ports.

2) Execution of "net-wall start" uses this generated file /tmp/netwall-rules to start firewall according to /tmp/netwall-rules.

So I patched this firewall strange scheme:

a) Rename /usr/bin/net-wall to /usr/bin/net-wall-prog (it is precompiled binary)

b) Create own script /usr/bin/net-wall:

----------------------------------------
#!/bin/sh

/usr/sbin/net-wall-prog $*
if [ "$1" = "rule" ]; then
if [ -f /root/firewall-start.txt ]; then
mv /tmp/netwall-rules /tmp/netwall-rules.txt
cat /root/firewall-start.txt > /tmp/netwall-rules
cat /tmp/netwall-rules.txt >> /tmp/netwall-rules
rm /tmp/netwall-rules.txt
fi
fi
----------------------------------------

to add my rules which are in /root/firewall-start.txt text file. My rules are added to /tmp/netwall-rules every time when R7500 runs "net-wall rules" so I can open ports I need.

Concerning use of OpenVPN with your settings - I am not a very big specialist in OpenVPN. If you have your own workable configs of OpenVPN and CA/CRT/EY files, all should work. Maybe you need neither Entware nor Debian. Just your own configs, modification of /etc/init.d/openvpn as above to create OpenVPN ethernet bridge, then open your ports using modification of net-wall above and run openvpn included to official FW with your configs.

Zdenkod
Zdenkod's picture
Hi Voxel!

Hi Voxel!

I'm very pleased with your reply.

BIG THANKS!

My very expensive ruter will finally receive decent software to support it.

Yes, Linux is my hobby - Slackware > 10 years.

Regardless above, vi is a "finger broker" for me, so I'm happy that mc is in your Entware package.

 

Regards,

 

Zdenko

 

iceroute
iceroute's picture
Voxel

Voxel

 

Thankyou very much, now I am all set, time to start tinkering.

 

Chris

Voxel
Voxel's picture
Zdenko? I'm glad if my

Zdenko? I'm glad if my experience with R7500 could help.
Also, glad to see Linux user.

My experience: SCO->IRIX->HP-UX->AIX->Linux  and then Windows, Windows, Windows, Windows.... So R7500 is a kind of rest.

Voxel
Voxel's picture
Chris, good luck!

Chris, good luck!

iceroute
iceroute's picture
So the "/bin/config" command

So the "/bin/config" command works just like the old nvram command.

 

I was able to via the Gui configure the VPN, and then diable it to enable IPv6 within the netgear gui, and then I just reenabled the VPN by issueing a "/bin/config vpn_enable=1" and a "/bin/config commit"

 

I am sure there are more goodies in the config show output, but unfortuneately it doesnt give any information on how netgear is generating the netwall config file, or the nat iptable rules.

 

After reviewing the openvpn init script it does seem like netgear has a hidden partition where they stash some files, I will see if I can desipher what the hidden partition is and how to access it, and I think we will have the firewall cracked then.

 

Chris

Zdenkod
Zdenkod's picture
Hi Voxel!

Hi Voxel!

Have two questions regarding dropbear installation:

1. Wondering about fixed 1.4 GHz CPU speed against auto/on demand - Is there any temperature issue possible?

My R7500 is closed in an wardrobe, to be in a safe place from children and burglers (a month ago I have an undesirable visit while was at work). At default FW settings (1 GHz) the routher is warm and summer is coming.

How about to set max freq. to 1400 in ipq806x_power_auto(). The speed at load would be max and 800MHz at idle (most of the time)?

2. The clauses at the end of the post starting with IMPORTANT:

Do you mean testing by changing /etc/passwd  and clause following that?

And to "return all back"  what to return back? 

      /etc/passwd mentioned above is security fix and is independent of dropbear/SSH - can be done independently (alone without SSH server install)

     when something is wrong and dropbear do not start, nothing else is affected and router works normally.

So I do not understand your "If something is wrong: better to return all back and check what is wrong." By that you probably mean that only dropbear will not work or anything worse? - If I reboot it if something is wrong, do I brick it?

 

 

Regradrs,

 

Zdenko

Voxel
Voxel's picture
My yesterday's answer still

My yesterday's answer still is not published. Censorship? If this forum is working under Netgear control - I do NOT write anything what could be estimated as something against your (Netgear) production. Vice versa, I think that possibility to tune/modify such raw FW would help Netgear with R7500 sales.

Zdenkod
Zdenkod's picture
Hi Voxel!

Hi Voxel!

I have a truoble with your manual above.

Following the steps 100% I'm stuck with "permision denied" and not finding executables in /opt subdirectories.

wget can not find in /opt/bin, and so mc - "permision denied". As I see files permissions are OK.

Can you please explain, what went wrong. Below is a telnet session.

 

Regards,

 

Zdenko

root@R7500:/# echo $PATH
/opt/bin:/opt/sbin:/opt/usr/bin:/opt/usr/sbin:/bin:/sbin:/usr/bin:/usr/sbin
root@R7500:/#
root@R7500:/# which wget
/usr/bin/wget
root@R7500:/#
root@R7500:/# ls -l /opt/bin
-rwxr-xr-x    1 root     root        14148 Mar  4 05:39 bmtemp
-rwxr-xr-x    1 root     root        25407 Aug  6  2014 chroot
-rwxr-xr-x    1 root     root       216936 Mar  4 04:33 find
-rwxr-xr-x    1 root     root        31780 Mar  3 19:59 locale.new
-rwxr-xr-x    1 root     root       289124 Mar  3 19:59 localedef.new
-rwxr-xr-x    1 root     root       767200 Mar  4 05:28 mc
lrwxrwxrwx    1 root     root            2 May 21 16:27 mcdiff -> mc
lrwxrwxrwx    1 root     root            2 May 21 16:27 mcedit -> mc
-rwxr-xr-x    1 root     root       126824 Mar  4 19:02 opkg
lrwxrwxrwx    1 root     root            8 May 21 16:27 wget -> wget-ssl
-rwxr-xr-x    1 root     root       429764 Mar  4 05:35 wget-ssl
-rwxr-xr-x    1 root     root        47944 Mar  4 04:33 xargs
root@R7500:/#
root@R7500:/# /opt/bin/mc
/bin/ash: /opt/bin/mc: Permission denied
 

weiyu99
weiyu99's picture
Hi Voxel,

Hi Voxel,

 

I followed your "small instruction" and found the SSH login is not working as you described.

I have

1. the modified "powerctl" file under /etc/init.d

-rwxr-xr-x    1 root     root         3385 May 21 10:22 powerctl

2. SSH key placed under /root/.ssh (SSH key tested OK with with my other router setup)

-rw-------    1 root     root          391 May 22 02:44 authorized_keys

3. dropbearmulti & symbol links under /usr/bin/

-rwxr-xr-x    1 root     root       211956 May 21 10:26 dropbearmulti

lrwxrwxrwx    1 root     root           13 May 21 10:26 dropbear -> dropbearmulti

lrwxrwxrwx    1 root     root           13 May 21 10:26 dbclient -> dropbearmulti

lrwxrwxrwx    1 root     root           13 May 21 10:27 dropbearconvert -> dropbearmulti

lrwxrwxrwx    1 root     root           13 May 21 10:27 dropbearkey -> dropbearmulti

lrwxrwxrwx    1 root     root           13 May 21 10:27 scp -> dropbearmulti

lrwxrwxrwx    1 root     root           13 May 21 10:27 ssh -> dropbearmulti

After reboot, try to login with SSH I got:

ssh: connect to host 192.168.2.1 port 22: Connection refused

Any idea how to debug this?

 

Thanks,

Dennis

 

 

wholly
wholly's picture
Here we go!!

Here we go!!

I followed all the instructions to get dropbear and powerctl onto R7500.

??? How do I know if the script has run and set the CPU to 100% ???

 

TROUBLE::::   Dropbear is not running NO SSH ??????

 

I don't know why!!!!!

 

Any help would be great!!!

 

Voxel
Voxel's picture
Dennis,

Dennis,
Just also create for example dropbear RSA host key and put it into /etc/dropbear directory. I.e. you should have:

/etc/dropbear/dropbear_rsa_host_key

NOTE: Create exactly dropbear host key, not OpenSSH or so. This key is binary file, not text. Google should help to find how to create your own unique dropbear RSA hostkey. Or run

dropbear --help

to see option for host keys creation.

Voxel

Voxel
Voxel's picture
wholly,

wholly,

See my answer to Dennis (SSH). Add /etc/dropbear/dropbear_rsa_host_key to your router.

To check that your CPU is always 1.4GHz - I do not know exactly how to help you. I used benchmarks to check this. You cannot run my benchmarks w/o Debian installation.

Try to run "cat /sys/devices/system/cpu/cpu0/cpufreq/scaling_setspeed", you should get:

root@nighthawk:~# cat /sys/devices/system/cpu/cpu0/cpufreq/scaling_setspeed
1400000

and for second core:

root@nighthawk:~# cat /sys/devices/system/cpu/cpu1/cpufreq/scaling_setspeed
1400000

Voxel

Voxel
Voxel's picture
2all:

2all:

This forum is often frozen. My answers sometimes are not published or published with delay. Write me PM if you need more fast answer. I'll try to help when have a time frame.

Voxel.

weiyu99
weiyu99's picture
Hi Voxel,

Hi Voxel,

 

But there's no /etc/dropbear directory.  Also, I tried /usr/bin/dropbear -R but found no dropbear rsa host key created anywhere.

What else I can try?

 

thanks,

Dennis

Voxel
Voxel's picture
Hi Dennis,

Hi Dennis,

Just create /etc/dropbear directory:

mkdir /etc/dropbear
cp dropbear_rsa_host_key /etc/dropbear
chmod 600 /etc/dropbear/dropbear_rsa_host_key

Voxel

Voxel
Voxel's picture
Forgot to add, how to easely

Forgot to add, how to easely generate RSA host key:

cd /tmp
/usr/bin/dropbearkey -t rsa -f dropbear_rsa_host_key

then:

mkdir /etc/dropbear
cp dropbear_rsa_host_key /etc/dropbear
chmod 600 /etc/dropbear/dropbear_rsa_host_key

Voxel

weiyu99
weiyu99's picture
Hi Voxel,

Hi Voxel,

 

Thanks, SSH login final is working on my R7500.  But I notice that telent has stopped working once SSH login is enabled, is this correct?

 

Regards,

Dennis

wholly
wholly's picture
 

 

dropbear (SSH) now working --- excellent based on reply #27 (thanks Voxel)!

 

BTW... what are the user and password credentials????? (dumb question)????

 

Thanks

 

weiyu99
weiyu99's picture
Hi wholly,

Hi wholly,

 

No password needed if use public key authentication.

 

Thanks

Pages