1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Asuswrt-Merlin on Netgear R7000

Discussion in 'Other Firmware Projects' started by XVortex, Mar 27, 2015.

  1. rok999

    rok999 New Member Member

    Ipv4 for speed test result. I need to find a reliable ipv6 test site as the DSLR test doesn't like me very much. I get 500/850 there.

    AT&T just went dual stack within the last month or so. It should be available nearly a everywhere as they recently pushed new firmware to most of the current RGs. This doesn't affect me as I'm connected to the ont via a vlan capable switch.

    With CTF enabled, there is hardly any cpu usage even at full bore 900+ mbs
    test.PNG

    Edit: Using Comcast's server in Katy Texas I get the following:
    katy-ipv4.PNG

    katy-ipv6.PNG

    Bottom line is it is fairly inconsistent
     
    Last edited: Jun 16, 2017
    Makaveli likes this.
  2. peyton

    peyton LI Guru Member

    It's strange because the picture said 380.66_4 and xvortex did not make it.
     
  3. Almighty1

    Almighty1 Reformed Router Member

    Wonder if 380.66_4 is just XWRT 380.66_2 modified.
     
  4. Makaveli

    Makaveli Serious Server Member

    Guess that will depends on if "koolshare" is doing his own ports from merlin's firmware or just modify's vertex's port.
     
    Last edited: Jun 16, 2017
  5. Almighty1

    Almighty1 Reformed Router Member

    Good question but the screenshot in post #4284 does show Vortex so one would assume he modified Vortex's port unless Vortex shared with him what needs to be done to port it.
     
  6. rok999

    rok999 New Member Member

    Well the "official" Asus-Merlin is on version 380.66_4

    Code:
    380.66_4 (26-May-2017)
      - CHANGED: Updated dropbear to 2017.75
      - FIXED: Security issue CVE-2017-7494 in Samba.
     
  7. cybrnook

    cybrnook Addicted to LI Member

    It's XVortex's port base. Xvortex already explained a long time back that all the QoS features (Trend Micro Engine) is still in the build provided here. He has just had to disable the ability to use it, that's why you can't see it. It's too far integrated into the Kernel/Firmware itself to just be ripped out.

    What Koolshare is doing is just re-enabling your ability to see / influence it, even though XVortex does not, as that started issues with Merlin and Asus, since it's licensed property of Asus to be run only on Asus hardware.

    This is exactly the type of activity that is causing Asus to start blackbox closed sourcing everything now.
     
  8. Almighty1

    Almighty1 Reformed Router Member

    Interesting. I never knew XVortex released the source code for someone to just use it and modify it. I do wonder though, for those who use RMerlin on ASUS hardware, is the QoS features (Trend Micro Engine) actually enabled and available or is it only enabled in original ASUS OEM firmware? As far as Koolshare, does he even have a website and from what I gather, is his firmware going to have a interface in chinese only or does it support other languages as well?
     
  9. Makaveli

    Makaveli Serious Server Member

    I don't think vertex released his source.

    And the QOS features are enabled in merlin's firmware.

    The firmware already supports many languages I don't think it requires a lot of work in the GUI.
     
    Almighty1 and slidermike like this.
  10. slidermike

    slidermike Networkin' Nut Member

    Makaveli is correct, xvortex did not release his code.
    It's caused some folks heart burn.
    Makaveli is spot on with his entire post.
    Merlin only releases for genuine Asus routers and it's nearly stock firmware.

    Standard qos is broken in Asus firmware but the trend micro qos works.
    Not for us Netgear users of xvortex since the trend micro is disabled due to possible violations for xvortex.
     
    Almighty1 likes this.
  11. Almighty1

    Almighty1 Reformed Router Member

    Thanks Makaveli and slidermike for confirming since I remember many were asking for XVortex to release his code but it was never released so wonder how Koolshare can mention Vortex if XVortex never released his code. I know RMerlin is for genuine ASUS routers only but I somehow mistaken that ASUS was restricting the Trend Micro to their own firmware only which means even RMerlin doesn't have it enable for genuine ASUS routers. That explains why QoS is broken in XWRT as when I enabled QoS, the Amazon Echo would not be able to connect to the router.
     
  12. cybrnook

    cybrnook Addicted to LI Member

    Just because he doesn't freely share his fork of asus merlin in the OP link, doesn't mean he doesn't have it in an online repo (like bitbucket :rolleyes: ). If you think about, how else is he going to continually track and merge Merlins changes into his fork, one by one by hand? .....
     
    Almighty1 likes this.
  13. Almighty1

    Almighty1 Reformed Router Member

    LOL, good points but since if he isn't freely sharing it, he would probably keep it well hidden since he can always continually track it using some other method that only he has access to.
     
  14. cybrnook

    cybrnook Addicted to LI Member

    And he does. It's only shared with a few individuals, likely koolshare being one.
     
    Almighty1 likes this.
  15. peyton

    peyton LI Guru Member

    What does that firmware got in addition of xvortex's one (except trend enabled) ?
     
  16. Nitin Vaid

    Nitin Vaid Connected Client Member

    There is another port of Asus Merlin For our Routers?"
    for R7000 Too? where is it and whats the advantages over this firmware

    Its been a long time no update:(
     
  17. Makaveli

    Makaveli Serious Server Member

    Google is your friend!

    You will have to try it I doubt anyone on this site is running it therefore won't be able to provide any feedback. Plus this isn't really the place for it, this thread is for Vortex's port.
     
    Last edited: Jun 20, 2017
  18. SpideRMaN

    SpideRMaN Connected Client Member

    Hi All, (newbie here)

    Does vortex firmware accept CIDR format in rules (ovpn)

    I am trying to create a rule that blocks internet access to all devices in lan if vpn is dropped so in rules for routing I am trying to put 192.168.2.120/150 as source ip, 0.0.0.0 as destination and VPN in iFace but it's not accepting the CIDR. an error pops up saying I can use CIDR format.

    what am I doing wrong ?

    Thanks
     
  19. Almighty1

    Almighty1 Reformed Router Member

    I have no idea if XVortex accepts CIDR format in rules but your issue is the CIDR blocks has a range of 0-32, 150 is not a valid size for a CIDR block as remember ipv4 is 32 bit.

    upload_2017-6-23_7-53-16.png
     
    Makaveli and cybrnook like this.
  20. SpideRMaN

    SpideRMaN Connected Client Member

    Thank you very much!
     
    Almighty1 likes this.
  21. Jan Reinhoud

    Jan Reinhoud New Member Member

    Using 380.66 2 i still have problems with the huawei (e392 u-12) dongle on my R7000.
    Losing connection at least 10 times in 5 minutes.
    This is what i could find in the log:

    Code:
    Aug  1 02:00:52 kernel: DROP IN=usb0 OUT= MAC= SRC=192.168.42.63 DST=224.0.0.252 LEN=51 TOS=0x00 PREC=0x00 TTL=255 ID=0 DF PROTO=UDP SPT=5355 DPT=5355 LEN=31
    Aug  1 02:00:52 kernel: DROP IN=usb0 OUT= MAC= SRC=192.168.42.63 DST=224.0.0.252 LEN=72 TOS=0x00 PREC=0x00 TTL=255 ID=0 DF PROTO=UDP SPT=5355 DPT=5355 LEN=52
    Aug  1 02:00:52 kernel: DROP IN=usb0 OUT= MAC= SRC=192.168.42.63 DST=224.0.0.252 LEN=56 TOS=0x00 PREC=0x00 TTL=255 ID=0 DF PROTO=UDP SPT=5355 DPT=5355 LEN=36
    Aug  1 02:00:52 kernel: DROP IN=usb0 OUT= MAC= SRC=192.168.42.63 DST=224.0.0.252 LEN=62 TOS=0x00 PREC=0x00 TTL=255 ID=0 DF PROTO=UDP SPT=5355 DPT=5355 LEN=42 
    I hope you can help me, thanks in advance
     
  22. Almighty1

    Almighty1 Reformed Router Member

    A few words to add, just remember the netmask is the important part so a CIDR/24 is basically known as a Class C or a 255.255.255.0 netmask so depending how big or small you want the IP address space is, remember that you usually will lose 3 IP's as one is for the network, one is for the gateway and one is for the broadcast.
     
    Last edited: Jun 24, 2017 at 8:27 PM
  23. SpideRMaN

    SpideRMaN Connected Client Member

    Thanks a lot, infact i created a policy route (strict) to pass all devices to vpn using the /24 then if i want one of my devices to bypass the vpn i put the ip and an iface to wan (wan is processed before vpn)
     
    Almighty1 likes this.
  24. potatosalad

    potatosalad New Member Member

    Thank you XVortex for this firmware for our R7000 routers! I am almost 100% satisfied with it. I LOVE that I can use the Asus Router App on my iPhone with it, Tomato lacked any app support.

    One thing I am having a problem with that I want to see if anyone can help me with is that I setup a 3G modem as the WAN connection. Internet works fine on all devices.

    The problem is that my routers Internet activity light is amber instead of white like everything else.

    I remember when I first got the 3G modem setup(which was very tedious) that it needed to change the routers ip address because of conflicts. Afterwards I am getting this amber light.

    I am using a Velocity Prepaid AT&T hotspot.

    The router gui says Internet status: Connected.

    Also, I dont know where I can add manual DNS servers like Googles to the asus router in the GUI. It normally is under WAN but once you have 3G modem setup there is no place for custom DNS servers.
     
  25. Almighty1

    Almighty1 Reformed Router Member

  26. potatosalad

    potatosalad New Member Member

    I am pulling my hair out trying to get a new Unite Explore hotspot to work via USB tether with the R7000. The funny thing is, when I just swapped the Velocity with the Unite Explore it worked right away.

    But when I had to reset the router because for some reason my router login reverted to admin/admin, setting up the hotspot is an exercise in frustration.

    Every single time I go through setting up the Merlin router setup, it always has Dual Wan on and Connection set to Wan.

    When I change it to USB it has to restart the router. This takes forever. Afterwards, it says IP conflict. I let it change the router ip and again it has to restart the router which is understandable. Takes forever to restart as always.

    Then when I go to the router merlin GUI it wants me to run setup again!

    Ive gone through the same process countless times, nothing changes.

    Ive tried enabling USB modem manually. Still doesnt do anything but restart router and eventually I have to run setup again!

    The other frustrating thing is that it keeps resetting to router login of admin/admin when I am changing Dual Wan or changing IP conflict or anything that restarts the router and brings me to the eventual network setup.

    So forget the problem I was having with the amber light. This is my current situation :(
     
  27. slidermike

    slidermike Networkin' Nut Member

    Sounds like a possible browser cache issue.
    Try a different browser to configure the router.

    Also, be sure to hit save in the GUI if there is an option.
     
    Makaveli likes this.
  28. potatosalad

    potatosalad New Member Member

    Alright so a browser cache clear fixed it from resetting router login to admin/admin.

    But I ran through setup > picked 3G Modem in setup > changed it to Manual so I can change APN to broadband since Im using an AT&T Unite Explore > Setup Wifi > it restarts router.

    No internet connection. Wan is set to Dual. So I change from Dual to USB. Router restarts.

    Again, wifi has been reset, login to router and again its asking to setup all over again.

    It resets the router every single time I change Dual WAN to Off and set it to USB.

    Im going crazy.
     
  29. potatosalad

    potatosalad New Member Member

    And if I go through all of that, it still says there is an IP Conflict. I let it change the ip and every single time it resets the router to factory defaults again and I have to go through setup again.
     
  30. potatosalad

    potatosalad New Member Member

    If I let it stay at Dual WAN.

    The USB Modem connection set to primary.

    It says Primary connection is Disconnected and the WAN IP is 0.0.0.0

    Im thinking that means its not getting a connection to the 3g modem(Unite Explore)

    Also, if I set the APN to Automatic. I have to set Location to USA. Then I set ISP to AT&T.

    If I do this, the Dial Number changes to *99***1# instead of *99# which is what was working for the AT&T ZTE Mobley I use to have.

    If I save settings with that, it restarts router.

    Then I go back to the 3G Modem settings and the ISP has changed to Telecom Italia Mobile and the APN changed to proxy.

    So im guessing it couldnt connect using the settings I gave it and it reverted to the default selection.
     
  31. Jan Reinhoud

    Jan Reinhoud New Member Member

    Maybe same problem as me?

     
  32. Jan Reinhoud

    Jan Reinhoud New Member Member

    and this

     
  33. Mezrein

    Mezrein New Member Member

    Hey guys, hopefully not a double question, there are a lot of pages here but had a question regarding accessing my wifi.
    Currently, my wifi has guest turned off, and everyone just needs to enter my wifi passcode to use my internet. Is it possible to make it so after someone enters the code, the router generates an email to me stating that someone is attempting to use my wifi and then prompt me to allow that mac address or to deny it? So from the user side, it would show that it connected successfully to the wifi, but would not allow outbound traffic until I approved it. Not sure if that makes sense or is even possible but wanted to ask. I've been having situations where my children are bringing home devices and joining them without asking to get around parental controls. Yes I know I could just change it and make it so they have to get it from me, but I'd rather catch them trying to sneak it in.
     
  34. slidermike

    slidermike Networkin' Nut Member

    Not natively in the gui no.
    Maybe someone else has a better answer or alternative solution.
     
  35. Makaveli

    Makaveli Serious Server Member

    I think you maybe able to script the email part not sure about it prompting you to accept or deny.

    Why don't you just lock down the amount of available IP's and just use MAC Address filtering.

    or you would need to spend money on enterprise level gear.

    If your children are smart enough to be spoofing mac's addresses etc then the battle is already lost.
     
  36. Mezrein

    Mezrein New Member Member

    lol amen to that. Was just reading up on mac address filtering trying to remember if I knew how it worked since part of me remembered something about it being easy to spoof. That may be the way I have to go. ultimately, reason I wanted to try and get something through an email approval is so I can be anywhere, including camping and just click accept. Im hopeful I can get the netgear R7000 android app working on my phone in conjunction with the merlin os so I could accept mac addresses that way.
     
  37. SpideRMaN

    SpideRMaN Connected Client Member

    How can i check tx power (2.4ghz) from ssh, am trying nvram get wl0_TxPower, also tried wl, wl1 but am getting no reply

    Please help
    Thanks
     
  38. Makaveli

    Makaveli Serious Server Member

    The Asus Router app would allow you to enable or block internet access I think per device while mobile. However this would be after they already connected but maybe good enough.
     

Share This Page