1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

[Fork] Tomato by Shibby, compiled by @kille72

Discussion in 'Tomato Firmware' started by kille72, Mar 24, 2017.

  1. kille72

    kille72 LI Guru Member

    I'm not a programmer, but I try as best as I can. I want to learn something new and develop my skills. I have been following Tomato for 10 years. I remember my first Tomato router, it was in 2006 - WRT54GL with firmware by Jonathan. A few years ago I met Shibby IRL, he inspired and impressed me. I thought it was impossible to learn even a bit of what he knows, but one day I was able to compile Tomato firmware...Special thanks to @AndreDVJ, and @pedro311, well done!

    [Kille72's Tomato-ARM]
    Forked off from Tomato-ARM by Shibby, builds compiled by @kille72

    Latest version: 2017.2 - 2017-07-07
    Changelog: https://exotic.se/tomato-arm/changelog.txt
    Source code: https://bitbucket.org/kille72/tomato-arm-kille72
    Downloads: https://exotic.se/tomato-arm
    About me/Donate: https://exotic.se

    For the following ARM routers: Asus N18U, AC56S, AC56U, AC68U/R/P, AC3200, Netgear R6250, R6300v2, R6400, R7000, R8000, Linksys EA6300v1/EA6400, EA6500v2, EA6700, EA6900, Tenda AC15.

    Thanks to @shibby20 @AndreDVJ @Jacky444 @koitsu @M_ars @Vindicator @Sean B. @Toastman @RMerlin @tsynik @tvlz @lancethepants @pedro311 @Elfew @Edrikk and all others who helped me with this project.

    Disclaimer: I am not responsible for any bricked routers, nor do I encourage other people to flash alternative firmwares on their routers. Use at your own risk!
     
    Last edited: Jul 12, 2017
  2. edusodanos

    edusodanos Serious Server Member

    Please can you make some VPN versions that are missing (R7000)?
     
  3. kille72

    kille72 LI Guru Member

    Why not try AIO (All-in-One)?
     
  4. edusodanos

    edusodanos Serious Server Member

    Thank you so much for your work ,the VPN has everything I need and maybe has less chances of bugs...
     
  5. kille72

    kille72 LI Guru Member

    I promise, I'll compile the VPN version for R7000 next time.
     
    Last edited: Mar 24, 2017
    edusodanos likes this.
  6. pomidor1

    pomidor1 Serious Server Member

  7. kille72

    kille72 LI Guru Member

    Haha, it is clear that it will, but not after 3 new commits :)
     
  8. cdteik

    cdteik New Member Member

    @kille72 Can you compile the VPN version for Huawei WS880?
     
  9. AndreDVJ

    AndreDVJ Addicted to LI Member

    @pomidor1 specifically about digest ID's, they are not urgent to require another build.

    Not everyone can use DNSSEC as not all ISP support it in their DNS servers. Nor DNSSEC is required either for normal internet navigation.
     
    pomidor1 likes this.
  10. pomidor1

    pomidor1 Serious Server Member

    It is nice that you are working on this tomato live, maybe not as fast as soft RMerlin but ... in my opinion it is more like to say ergonomic, and we all know who it is like to be married ;-) (Shibby-There are really more important things in life than routers ;-) ) and It can not be that a project so common for many people was hugged by one person even the most outstanding.

    Thank you once for your work and for even more of course ;-)
     
    Last edited: Mar 25, 2017
  11. Elfew

    Elfew Network Guru Member

    Thank you @kille72 ! I haven checked your builds but did you release NO-SMP version for rt-18u? Or maybe better question, which build do you recommend for rt-18u - "standard" or no-smp version?
     
  12. pomidor1

    pomidor1 Serious Server Member

    tomato-RT-N18U-ARM--138.13-kille72--VPN-64K-NOSMP.trx.zip ?
     
  13. kille72

    kille72 LI Guru Member

    @Elfew
    Yes, I have compiled both NOSMP and SMP for the RT-N18U. I'm administrator of Openlinksys.info and there were more people who chose NOSMP, but it is individual, I think. I know NOSMP displays correctly "CPU load" but have different and older driver for WiFi (6.37.14.73 vs 6.37.14.86). You have to test yourself and see which is better for you.

    https://mega.nz/#F!bAcVXCSY!DgPc0zfhunujKblc1qsQ0w!mYswFCRL
     
  14. rs232

    rs232 Network Guru Member

    This looks very promising. Is there any sort of changlog publishes anywhere?

    Thanks!
     
  15. kille72

    kille72 LI Guru Member

  16. rs232

    rs232 Network Guru Member

    Thanks! I should have done some search before asking :)
    You should put those links in your signature ;-)

    Thanks for the effort btw! I have just upgraded tom Shibby v138 AIO without flashing the NVRAM and it seems to work out of the box on my ASUS-AC56U.

    On the side notes, I can see an update to ipset in the changelog. It seems like this hasn't affected P2Partisan at all :)

    Code:
    root@tomato36k:/tmp/mnt/usb/p2partisan# ./p2partisan.sh status
    
    +------------------------- P2Partisan --------------------------+
    |            _______ __          __
    |           |     __|  |_.---.-.|  |_.--.--.-----.
    |           |__     |   _|  _  ||   _|  |  |__ --|
    |           |_______|____|___._||____|_____|_____|
    |
    | Release version:  v6.07 (21/05/2016)
    +---------------------------------------------------------------+
    |         Running:  Yes
    |         Autorun:  Yes
    |           Tutor:  Yes / 0 problems in the last 24h
    |        Debugger:  Off
    | Partisan uptime:  0d - 00:04:37
    |    Startup time:  34 seconds
    |      Dropped in:  117
    |    Rejected out:  7
    +---------------------------------------------------------------+
    |       Black IPs:  3
    |        Grey IPs:  0
    |       White IPs:  0
    |  TransmissionBT:  Off
    |  Grey ports TCP:  22008,22002,22003
    |  Grey ports UDP:  22008,22002,22003
    | White ports TCP:  4000:4200,5730:5739,6665:6670,8800:8899,27000:27050
    | White ports TCP:  25,80,443,465,993,3658,4380,8080,14020
    | White ports UDP:  1194:1197,4000:4200,5730:5739,6665:6670,8800:8899,27000:27050
    | White ports UDP:  53,123,655,3658,4380,14020,67,68
    |    Blacklist_01:  [o] [e] [o] [o] - 4741 KB - level1
    |    Blacklist_02:  [o] [e] [o] [o] - 1361 KB - level2
    |    Blacklist_03:  [o] [e] [o] [o] -    8 KB - edu
    |    Blacklist_04:  [o] [e] [o] [o] -   49 KB - spywere
    |    Blacklist_05:  [o] [e] [o] [o] -   47 KB - advertisement
    |    Blacklist_06:  [o] [e] [o] [o] -    9 KB - dshields
    |                    ^   ^   ^   ^
    |      maxload: 2 - pri sec cid ipt - [e]mpty [l]oading l[o]aded [p]artial [q]ueued
    |    Consumed RAM:  6267 KB
    +----------------------- Logs max(1/hour) ----------------------+
    | Mar 25 10:29:20 I=vlan2 O=br0 S=203.168.84.45 D=10.10.10.109 UDP S=18842 D=22008
    | Mar 25 10:30:39 I=br0 O=vlan2 S=10.10.10.109 D=139.162.168.10 UDP S=22008 D=6881
    +---------------------------------------------------------------+
     
    kille72 likes this.
  17. kille72

    kille72 LI Guru Member

  18. pomidor1

    pomidor1 Serious Server Member

    Like warm rolls, like that
     
    kille72 likes this.
  19. edusodanos

    edusodanos Serious Server Member

    @kille72, thanks again for all of your work ahead of Tomato and the VPN version of the R7000.
     
    kille72 likes this.
  20. alf5683

    alf5683 Connected Client Member

    Hi thx for your job !!

    I try it today :d
    Do you think it's possible to update tinc ?
     
  21. kille72

    kille72 LI Guru Member

    @alf5683 Update version 1.1pre11 to 1.1pre14? I know almost nothing about Tinc, but I can try to compile a test version. What router do you have?
     
    Last edited: Mar 25, 2017
  22. Elfew

    Elfew Network Guru Member

    Thank you for your reply. So the main differents are wifi driver and Paragon/Tuxera driver. So with SMP version there are issues with higher CPU load or the CPU load in GUI output is broken?
     
  23. kille72

    kille72 LI Guru Member

    With SMP on single core CPU, allegedly only badly show the CPU load in GUI/Terminal (top/htop).

    "Make an image for RT-N18U without SMP (NOSMP) – fixed CPU load but older wl/et/cft modules and Paragon NTFS driver instead of Tuxera"

    SMP = (symmetric multiprocessing) is the processing of programs by multiple processors that share a common operating system and memory. In symmetric (or "tightly coupled") multiprocessing, the processors share memory and the I/O bus or data path.
     
    Elfew likes this.
  24. kille72

    kille72 LI Guru Member

    What I have on my to-do list is to fix Radius/WPAx-Enterprise in MultiWAN versions. It stopped working when @shibby20 released MultiWAN. Works well in v132 for example. I can not fix it, but is there anyone who can help?
     
  25. Elfew

    Elfew Network Guru Member

    @kille72 - will be there any official bug tracker or list of known bugs? It would be really useful to track them and know what to fix or not.
     
  26. kille72

    kille72 LI Guru Member

    I hope Shibby come back soon and release the v139 which will hopefully be "merged" with my repo, so I don't have to have bug-tracker itself and we can use his :)
     
    Last edited: Mar 25, 2017
  27. Elfew

    Elfew Network Guru Member

    Anyway would be really nice to track all bugs and issues which were introduced by adding DualWAN feature. Make v139 (v140) at least same stable and working as build v132 is.
     
  28. The Master

    The Master Network Guru Member

    All Stable here @R7000 Thank you.

    Use MultiWan Cable +LTE :)
     
    kille72 likes this.
  29. alf5683

    alf5683 Connected Client Member

    I have the "Asus RT-N18U" and the "Asus RT-N16" ! If you ty, I can test !!!

    Thx
     
  30. AndreDVJ

    AndreDVJ Addicted to LI Member

    I have no way to run a RADIUS server myself (and haven't looked into RADIUS stuff in six years!), but script at /usr/sbin/nas.sh may have something to be looked at.
     
    edusodanos and kille72 like this.
  31. kille72

    kille72 LI Guru Member

    @AndreDVJ: I have compared /usr/sbin/nas.sh from v132, v138 and Toastman. All are exactly the same...
     
  32. AndreDVJ

    AndreDVJ Addicted to LI Member

    Actually I'm not really expecting to be that simple. A RADIUS server should be fairly simple to get one running, but we need to understand where it breaks down, especially the executable which is called by the script.

    Many things changed when Multi-WAN was introduced, so I think nas_arm stuff was overlooked. Even fairly simple binaries like wanuptime had to be changed for Multi-WAN. It used to segfault until it was fixed, so I'm not surprised /usr/sbin/nas is segfaulting as well.

    So I don't know what needs to be changed, neither I understand now that executable is really called (backtracing code is a PITA).
     
  33. joew333

    joew333 LI Guru Member

    Would also like a R7000 VPN build. The VPN build is leaner and runs faster IMHO. Thank you!
     
  34. kille72

    kille72 LI Guru Member

    Ok, it is done ;)
     
  35. kille72

    kille72 LI Guru Member

    @AndreDVJ: Log from the client attempting connect to Radius (v138). Works in v132.

    Code:
    rad_recv: Access-Request packet from host 10.0.0.1 port 17969, id=0, length=125
            User-Name = "anonim"
            NAS-IP-Address = 10.0.0.1
            Called-Station-Id = "0862669674a8"
            Calling-Station-Id = "a8c83a397d37"
            NAS-Identifier = "0862669674a8"
            NAS-Port = 115
            Framed-MTU = 1400
            NAS-Port-Type = Wireless-802.11
            EAP-Message = 0x0200000b01616e6f6e696d
            Message-Authenticator = 0xd5bb7e55237d40e736f147ed2b2c6d6d
    Sun Mar 26 09:32:06 2017 : Info: # Executing section authorize from file /opt/etc/freeradius2/sites/default
    Sun Mar 26 09:32:06 2017 : Info: +group authorize {
    Sun Mar 26 09:32:06 2017 : Info: ++[chap] = noop
    Sun Mar 26 09:32:06 2017 : Info: ++[mschap] = noop
    Sun Mar 26 09:32:06 2017 : Info: [eap] EAP packet type response id 0 length 11
    Sun Mar 26 09:32:06 2017 : Info: [eap] No EAP Start, assuming it's an on-going EAP conversation
    Sun Mar 26 09:32:06 2017 : Info: ++[eap] = updated
    Sun Mar 26 09:32:06 2017 : Info: [sql]  expand: %{User-Name} -> anonim
    Sun Mar 26 09:32:06 2017 : Info: [sql] sql_set_user escaped user --> 'anonim'
    Sun Mar 26 09:32:06 2017 : Debug: rlm_sql (sql): Reserving sql socket id: 30
    Sun Mar 26 09:32:06 2017 : Info: [sql]  expand: SELECT id, username, attribute, value, op           FROM radcheck           WHERE username = '%{SQL-User-Name}'           ORDER BY id -> SELECT id, username, attribute, value, op           FROM radcheck           WHERE username = 'anonim'           ORDER BY id
    Sun Mar 26 09:32:06 2017 : Info: [sql]  expand: SELECT groupname           FROM usergroup           WHERE username = '%{SQL-User-Name}'           ORDER BY priority -> SELECT groupname           FROM usergroup           WHERE username = 'anonim'           ORDER BY priority
    Sun Mar 26 09:32:06 2017 : Debug: rlm_sql (sql): Released sql socket id: 30
    Sun Mar 26 09:32:06 2017 : Info: [sql] User anonim not found
    Sun Mar 26 09:32:06 2017 : Info: ++[sql] = notfound
    Sun Mar 26 09:32:06 2017 : Info: [pap] WARNING! No "known good" password found for the user.  Authentication may fail because of this.
    Sun Mar 26 09:32:06 2017 : Info: ++[pap] = noop
    Sun Mar 26 09:32:06 2017 : Info: +} # group authorize = updated
    Sun Mar 26 09:32:06 2017 : Info: Found Auth-Type = EAP
    Sun Mar 26 09:32:06 2017 : Info: # Executing group from file /opt/etc/freeradius2/sites/default
    Sun Mar 26 09:32:06 2017 : Info: +group authenticate {
    Sun Mar 26 09:32:06 2017 : Info: [eap] EAP Identity
    Sun Mar 26 09:32:06 2017 : Info: [eap] processing type tls
    Sun Mar 26 09:32:06 2017 : Info: [tls] Initiate
    Sun Mar 26 09:32:06 2017 : Info: [tls] Start returned 1
    Sun Mar 26 09:32:06 2017 : Info: ++[eap] = handled
    Sun Mar 26 09:32:06 2017 : Info: +} # group authenticate = handled
    Sending Access-Challenge of id 0 to 10.0.0.1 port 17969
            EAP-Message = 0x010100061920
            Message-Authenticator = 0x00000000000000000000000000000000
            State = 0x29110ef8291017c346a4d4f5022b8e76
    Sun Mar 26 09:32:06 2017 : Info: Finished request 0.
    Sun Mar 26 09:32:06 2017 : Debug: Going to the next request
    Sun Mar 26 09:32:06 2017 : Debug: Waking up in 4.9 seconds.
    rad_recv: Access-Request packet from host 10.0.0.1 port 17969, id=0, length=300
    Sun Mar 26 09:32:06 2017 : Info: Cleaning up request 0 ID 0 with timestamp +19
            User-Name = "anonim"
            NAS-IP-Address = 10.0.0.1
            Called-Station-Id = "0862669674a8"
            Calling-Station-Id = "a8c83a397d37"
            NAS-Identifier = "0862669674a8"
            NAS-Port = 115
            Framed-MTU = 1400
            State = 0x29110ef8291017c346a4d4f5022b8e76
            NAS-Port-Type = Wireless-802.11
            EAP-Message = 0x020100a819800000009e1603010099010000950303e08140458f3837b21d7cb29656256a7251b1edc57ebbd458649b62b8b9dce8c400003cc02cc030009fc02bc02f009ec00ac024c014c0280039006bc009c023c013c02700330067c007c011009d009c0035003d002f003c00050004000a00ff0100003000170000000d001600140601060305010503040104030301030302010203000b00020100000a00080006001700180019
            Message-Authenticator = 0x3d0ae8baf78327b0333b8b3f12c16e74
    Sun Mar 26 09:32:06 2017 : Info: # Executing section authorize from file /opt/etc/freeradius2/sites/default
    Sun Mar 26 09:32:06 2017 : Info: +group authorize {
    Sun Mar 26 09:32:06 2017 : Info: ++[chap] = noop
    Sun Mar 26 09:32:06 2017 : Info: ++[mschap] = noop
    Sun Mar 26 09:32:06 2017 : Info: [eap] EAP packet type response id 1 length 168
    Sun Mar 26 09:32:06 2017 : Info: [eap] Continuing tunnel setup.
    Sun Mar 26 09:32:06 2017 : Info: ++[eap] = ok
    Sun Mar 26 09:32:06 2017 : Info: +} # group authorize = ok
    Sun Mar 26 09:32:06 2017 : Info: Found Auth-Type = EAP
    Sun Mar 26 09:32:06 2017 : Info: # Executing group from file /opt/etc/freeradius2/sites/default
    Sun Mar 26 09:32:06 2017 : Info: +group authenticate {
    Sun Mar 26 09:32:06 2017 : Info: [eap] Request found, released from the list
    Sun Mar 26 09:32:06 2017 : Info: [eap] EAP/peap
    Sun Mar 26 09:32:06 2017 : Info: [eap] processing type peap
    Sun Mar 26 09:32:06 2017 : Info: [peap] processing EAP-TLS
    Sun Mar 26 09:32:06 2017 : Debug:   TLS Length 158
    Sun Mar 26 09:32:06 2017 : Info: [peap] Length Included
    Sun Mar 26 09:32:06 2017 : Info: [peap] eaptls_verify returned 11
    Sun Mar 26 09:32:06 2017 : Info: [peap]     (other): before/accept initialization
    Sun Mar 26 09:32:06 2017 : Info: [peap]     TLS_accept: before/accept initialization
    Sun Mar 26 09:32:06 2017 : Info: [peap] <<< Unknown TLS version [length 0005]
    Sun Mar 26 09:32:06 2017 : Info: [peap] <<< Unknown TLS version [length 0099]
    Sun Mar 26 09:32:06 2017 : Info: [peap]     TLS_accept: unknown state
    Sun Mar 26 09:32:06 2017 : Info: [peap] >>> Unknown TLS version [length 0005]
    Sun Mar 26 09:32:06 2017 : Info: [peap] >>> Unknown TLS version [length 0039]
    Sun Mar 26 09:32:06 2017 : Info: [peap]     TLS_accept: unknown state
    Sun Mar 26 09:32:06 2017 : Info: [peap] >>> Unknown TLS version [length 0005]
    Sun Mar 26 09:32:06 2017 : Info: [peap] >>> Unknown TLS version [length 09bf]
    Sun Mar 26 09:32:06 2017 : Info: [peap]     TLS_accept: unknown state
    Sun Mar 26 09:32:06 2017 : Info: [peap] >>> Unknown TLS version [length 0005]
    Sun Mar 26 09:32:06 2017 : Info: [peap] >>> Unknown TLS version [length 014d]
    Sun Mar 26 09:32:06 2017 : Info: [peap]     TLS_accept: unknown state
    Sun Mar 26 09:32:06 2017 : Info: [peap] >>> Unknown TLS version [length 0005]
    Sun Mar 26 09:32:06 2017 : Info: [peap] >>> Unknown TLS version [length 0004]
    Sun Mar 26 09:32:06 2017 : Info: [peap]     TLS_accept: unknown state
    Sun Mar 26 09:32:06 2017 : Info: [peap]     TLS_accept: unknown state
    Sun Mar 26 09:32:06 2017 : Info: [peap]     TLS_accept: unknown state
    Sun Mar 26 09:32:06 2017 : Info: [peap]     TLS_accept: Need to read more data: unknown state
    Sun Mar 26 09:32:06 2017 : Info: [peap]     TLS_accept: Need to read more data: unknown state
    Sun Mar 26 09:32:06 2017 : Debug: In SSL Handshake Phase
    Sun Mar 26 09:32:06 2017 : Debug: In SSL Accept mode
    Sun Mar 26 09:32:06 2017 : Info: [peap] eaptls_process returned 13
    Sun Mar 26 09:32:06 2017 : Info: [peap] EAPTLS_HANDLED
    Sun Mar 26 09:32:06 2017 : Info: ++[eap] = handled
    Sun Mar 26 09:32:06 2017 : Info: +} # group authenticate = handled
    Sending Access-Challenge of id 0 to 10.0.0.1 port 17969
            EAP-Message = 0x0102057419c000000b5d1603030039020000350303df179158899f25cd6a650aeed1e6b7049e0c802f4b38bb1d732058c1e2deee7200c03000000dff01000100000b00040300010216030309bf0b0009bb0009b800050a30820506308203eea003020102020101300d06092a864886f70d0101040500308192310b300906035504061302504c310b300906035504081302534c310f300d060355040713064265647a696e3110300e060355040a13074f70656e56504e310c300a060355040b1303446f6d3111300f0603550403130852542d41433638553111300f0603550429130852542d4143363855311f301d06092a864886f70d01090116106164
            EAP-Message = 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
            EAP-Message = 0xa42a5cc80c7bceba8a10478109b65421d742fa38b01b60fe96993c16195bfed51699bde701055ddceb3d11594bf018c342de3451a2b2e6d60ab20a11ece903d6c799890ec0317823a01d9fd5dfc67b817eaf57e06b738c3af8e348d48039ddd7f74f117f315c861fcc77a4405d9e134a96c35246bd7d49d370fab7348d5c6dbb9c7f1a97d82fee0c91ce3b20337dabe80287e8caa4536c6338aa3f8e561981497a94a3fe90011a867840d7a8e80b37c931d21ded23a9b5667bb3d325ecb084c6b74973b44fb60412d363dffcc4aadadd2a3f1a98671e5f86230ef23cf85d6711bc64ec051fa5e10203010001a38201633082015f30090603551d130402
            EAP-Message = 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
            EAP-Message = 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
            EAP-Message = 0x79d52de0347c5f6f6304cb73d61e28f12d5caa0c3dbb7895587f1a652f937e61fd59b2c02683614484e048ea32348afc1c21d89e5c59217e16852f8704a64a939f36e1f8cfd69b4086f94eb0ea9ae8ea57d8fb4cb0895c90ef1fd34870412e18450c3fd906addaa4139ad1a3c4a52b020004a8308204a43082038ca003020102020900
            Message-Authenticator = 0x00000000000000000000000000000000
            State = 0x29110ef8281317c346a4d4f5022b8e76
    Sun Mar 26 09:32:06 2017 : Info: Finished request 1.
    Sun Mar 26 09:32:06 2017 : Debug: Going to the next request
    Sun Mar 26 09:32:06 2017 : Debug: Waking up in 4.9 seconds.
    rad_recv: Access-Request packet from host 10.0.0.1 port 17969, id=0, length=282
    Sun Mar 26 09:32:06 2017 : Info: Cleaning up request 1 ID 0 with timestamp +19
            User-Name = "anonim"
            NAS-IP-Address = 10.0.0.1
            Called-Station-Id = "0862669674a8"
            Calling-Station-Id = "a8c83a397d37"
            NAS-Identifier = "0862669674a8"
            NAS-Port = 115
            Framed-MTU = 1400
            NAS-Port-Type = Wireless-802.11
            EAP-Message = 0x020100a819800000009e1603010099010000950303e08140458f3837b21d7cb29656256a7251b1edc57ebbd458649b62b8b9dce8c400003cc02cc030009fc02bc02f009ec00ac024c014c0280039006bc009c023c013c02700330067c007c011009d009c0035003d002f003c00050004000a00ff0100003000170000000d001600140601060305010503040104030301030302010203000b00020100000a00080006001700180019
            Message-Authenticator = 0x5a36bddec25788d6d5afa501c49261ec
    Sun Mar 26 09:32:06 2017 : Info: # Executing section authorize from file /opt/etc/freeradius2/sites/default
    Sun Mar 26 09:32:06 2017 : Info: +group authorize {
    Sun Mar 26 09:32:06 2017 : Info: ++[chap] = noop
    Sun Mar 26 09:32:06 2017 : Info: ++[mschap] = noop
    Sun Mar 26 09:32:06 2017 : Info: [eap] EAP packet type response id 1 length 168
    Sun Mar 26 09:32:06 2017 : Info: [eap] Continuing tunnel setup.
    Sun Mar 26 09:32:06 2017 : Info: ++[eap] = ok
    Sun Mar 26 09:32:06 2017 : Info: +} # group authorize = ok
    Sun Mar 26 09:32:06 2017 : Info: Found Auth-Type = EAP
    Sun Mar 26 09:32:06 2017 : Info: # Executing group from file /opt/etc/freeradius2/sites/default
    Sun Mar 26 09:32:06 2017 : Info: +group authenticate {
    Sun Mar 26 09:32:06 2017 : Info: [eap] Either EAP-request timed out OR EAP-response to an unknown EAP-request
    Sun Mar 26 09:32:06 2017 : Info: [eap] Failed in handler
    Sun Mar 26 09:32:06 2017 : Info: ++[eap] = invalid
    Sun Mar 26 09:32:06 2017 : Info: +} # group authenticate = invalid
    Sun Mar 26 09:32:06 2017 : Info: Failed to authenticate the user.
    Sun Mar 26 09:32:06 2017 : Info: Using Post-Auth-Type Reject
    Sun Mar 26 09:32:06 2017 : Info: # Executing group from file /opt/etc/freeradius2/sites/default
    Sun Mar 26 09:32:06 2017 : Info: +group REJECT {
    Sun Mar 26 09:32:06 2017 : Info: [sql]  expand: %{User-Name} -> anonim
    Sun Mar 26 09:32:06 2017 : Info: [sql] sql_set_user escaped user --> 'anonim'
    Sun Mar 26 09:32:06 2017 : Info: [sql]  expand: %{User-Password} ->
    Sun Mar 26 09:32:06 2017 : Info: [sql]  ... expanding second conditional
    Sun Mar 26 09:32:06 2017 : Info: [sql]  expand: %{Chap-Password} ->
    Sun Mar 26 09:32:06 2017 : Info: [sql]  expand: INSERT INTO radpostauth                           (username, pass, reply, authdate)                           VALUES (                           '%{User-Name}',                           '%{%{User-Password}:-%{Chap-Password}}',                           '%{reply:Packet-Type}', '%S') -> INSERT INTO radpostauth                           (username, pass, reply, authdate)                           VALUES (                           'anonim',                           '',                           'Access-Reject', '2017-03-26 09:32:06')
    Sun Mar 26 09:32:06 2017 : Debug: rlm_sql (sql) in sql_postauth: query is INSERT INTO radpostauth                           (username, pass, reply, authdate)                           VALUES (                           'anonim',                           '',                           'Access-Reject', '2017-03-26 09:32:06')
    Sun Mar 26 09:32:06 2017 : Debug: rlm_sql (sql): Reserving sql socket id: 29
    Sun Mar 26 09:32:06 2017 : Debug: rlm_sql (sql): Released sql socket id: 29
    Sun Mar 26 09:32:06 2017 : Info: ++[sql] = ok
    Sun Mar 26 09:32:06 2017 : Info: [eap] Either EAP-request timed out OR EAP-response to an unknown EAP-request
    Sun Mar 26 09:32:06 2017 : Info: [eap] Failed to get handler, probably already removed, not inserting EAP-Failure
    Sun Mar 26 09:32:06 2017 : Info: ++[eap] = noop
    Sun Mar 26 09:32:06 2017 : Info: +} # group REJECT = ok
    Sun Mar 26 09:32:06 2017 : Info: Delaying reject of request 2 for 1 seconds
    Sun Mar 26 09:32:06 2017 : Debug: Going to the next request
    Sun Mar 26 09:32:06 2017 : Debug: Waking up in 0.9 seconds.
    rad_recv: Access-Request packet from host 10.0.0.205 port 44473, id=20, length=192
            User-Name = "anonim"
            Called-Station-Id = "00-0C-43-76-20-78:Orlais24-3"
            NAS-Port-Type = Wireless-802.11
            Service-Type = Framed-User
            NAS-Port = 1
            Calling-Station-Id = "A8-C8-3A-39-7D-37"
            Connect-Info = "CONNECT 54Mbps 802.11g"
            Acct-Session-Id = "6332029B61608F86"
            Attr-186 = 0x000fac04
            Attr-187 = 0x000fac04
            Attr-188 = 0x000fac01
            Framed-MTU = 1400
            EAP-Message = 0x0267000b01616e6f6e696d
            Message-Authenticator = 0xa05c921db8acb9e755ce48fb55188207
    Sun Mar 26 09:32:06 2017 : Info: # Executing section authorize from file /opt/etc/freeradius2/sites/default
    Sun Mar 26 09:32:06 2017 : Info: +group authorize {
    Sun Mar 26 09:32:06 2017 : Info: ++[chap] = noop
    Sun Mar 26 09:32:06 2017 : Info: ++[mschap] = noop
    Sun Mar 26 09:32:06 2017 : Info: [eap] EAP packet type response id 103 length 11
    Sun Mar 26 09:32:06 2017 : Info: [eap] No EAP Start, assuming it's an on-going EAP conversation
    Sun Mar 26 09:32:06 2017 : Info: ++[eap] = updated
    Sun Mar 26 09:32:06 2017 : Info: [sql]  expand: %{User-Name} -> anonim
    Sun Mar 26 09:32:06 2017 : Info: [sql] sql_set_user escaped user --> 'anonim'
    Sun Mar 26 09:32:06 2017 : Debug: rlm_sql (sql): Reserving sql socket id: 28
    Sun Mar 26 09:32:06 2017 : Info: [sql]  expand: SELECT id, username, attribute, value, op           FROM radcheck           WHERE username = '%{SQL-User-Name}'           ORDER BY id -> SELECT id, username, attribute, value, op           FROM radcheck           WHERE username = 'anonim'           ORDER BY id
    Sun Mar 26 09:32:06 2017 : Info: [sql]  expand: SELECT groupname           FROM usergroup           WHERE username = '%{SQL-User-Name}'           ORDER BY priority -> SELECT groupname           FROM usergroup           WHERE username = 'anonim'           ORDER BY priority
    Sun Mar 26 09:32:06 2017 : Debug: rlm_sql (sql): Released sql socket id: 28
    Sun Mar 26 09:32:06 2017 : Info: [sql] User anonim not found
    Sun Mar 26 09:32:06 2017 : Info: ++[sql] = notfound
    Sun Mar 26 09:32:06 2017 : Info: [pap] WARNING! No "known good" password found for the user.  Authentication may fail because of this.
    Sun Mar 26 09:32:06 2017 : Info: ++[pap] = noop
    Sun Mar 26 09:32:06 2017 : Info: +} # group authorize = updated
    Sun Mar 26 09:32:06 2017 : Info: Found Auth-Type = EAP
    Sun Mar 26 09:32:06 2017 : Info: # Executing group from file /opt/etc/freeradius2/sites/default
    Sun Mar 26 09:32:06 2017 : Info: +group authenticate {
    Sun Mar 26 09:32:06 2017 : Info: [eap] EAP Identity
    Sun Mar 26 09:32:06 2017 : Info: [eap] processing type tls
    Sun Mar 26 09:32:06 2017 : Info: [tls] Initiate
    Sun Mar 26 09:32:06 2017 : Info: [tls] Start returned 1
    Sun Mar 26 09:32:06 2017 : Info: ++[eap] = handled
    Sun Mar 26 09:32:06 2017 : Info: +} # group authenticate = handled
    Sending Access-Challenge of id 20 to 10.0.0.205 port 44473
            EAP-Message = 0x016800061920
            Message-Authenticator = 0x00000000000000000000000000000000
            State = 0x6349ec606321f53343a1289a213a67f4
    Sun Mar 26 09:32:06 2017 : Info: Finished request 3.
    Sun Mar 26 09:32:06 2017 : Debug: Going to the next request
    Sun Mar 26 09:32:06 2017 : Debug: Waking up in 0.3 seconds.
    Sun Mar 26 09:32:07 2017 : Info: Sending delayed reject for request 2
    Sending Access-Reject of id 0 to 10.0.0.1 port 17969
    Sun Mar 26 09:32:07 2017 : Debug: Waking up in 4.6 seconds.
    Sun Mar 26 09:32:11 2017 : Info: Cleaning up request 3 ID 20 with timestamp +19
    Sun Mar 26 09:32:11 2017 : Debug: WARNING: !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
    Sun Mar 26 09:32:11 2017 : Debug: WARNING: !! EAP session for state 0x6349ec606321f533 did not finish!
    Sun Mar 26 09:32:11 2017 : Debug: WARNING: !! Please read http://wiki.freeradius.org/guide/Certificate_Compatibility
    Sun Mar 26 09:32:11 2017 : Debug: WARNING: !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
    Sun Mar 26 09:32:11 2017 : Debug: Waking up in 0.3 seconds.
    Sun Mar 26 09:32:12 2017 : Info: Cleaning up request 2 ID 0 with timestamp +19
    Sun Mar 26 09:32:12 2017 : Info: Ready to process requests.
     
    Last edited: Mar 26, 2017
  36. kille72

    kille72 LI Guru Member

    @alf5683: tried upgrade Tinc to 1.0.31-stable and 1.1pre14 without result. This requires a more competent person...
     
  37. alf5683

    alf5683 Connected Client Member

    No problem thank you for your try :d
     
    kille72 likes this.
  38. joew333

    joew333 LI Guru Member

    Thanks for compiling the VPN version. The VPN has all the core router functions, and boots faster and has better throughput than the AIO version. For me, things like the APC UPS software I will never use, so the APC apcupsd software errors during the boot cycle just slows things down with no benefit for many users. Just an example. Due to less CPU load, the base temperature runs at 63 degrees C with VPN and 67 degrees with AIO. Simple reason is that the CPU is running a lot less processes. So many thanks to you for compiling the VPN version for us!!! Is is possible to compile without TomatoAnon or is that a No No?
     
    kille72 likes this.
  39. kille72

    kille72 LI Guru Member

    No. Anon is off by default.
     
  40. joew333

    joew333 LI Guru Member

    Heja Sverige! Can the Anon SW be removed? Sorry just paranoid. Really appreciate very much the VPN version. It rocks!
     
  41. AndreDVJ

    AndreDVJ Addicted to LI Member

    TomatoAnon is not a software, period. It's a shell script anyone can read by issuing command cat /usr/sbin/tomatoanon

    Or check the sources at release/src-rt-6.x.4708/router/others/tomatoanon
     
  42. rs232

    rs232 Network Guru Member

    Perhaps @lancethepants can help with this?
     
    kille72 likes this.
  43. kille72

    kille72 LI Guru Member

    Yes please...

    1. Tinc upgrade
    2. Radius/WPAx-Enterprise fix
    3. Switch-4g (improvements that one user testing now)

    This is my short to-do list.
     
    The Master likes this.
  44. edusodanos

    edusodanos Serious Server Member

    I am using R7000 with 138v13VPN and the "Use received DNS with user-entered DNS" option is not working ...:(
    Is this a known bug in MultiWan or v138? Some help?
     
  45. The Master

    The Master Network Guru Member

    3)
    2)
    1)
    for me @kile72 :)
     
    kille72 likes this.
  46. lancethepants

    lancethepants Network Guru Member

    Users of tinc just need to remember they must run the exact version everywhere since 1.1 is still in pre-release. I was hoping tinc1.1 would be finalised by this point, but there's no indication of when that might be. I've been running 1.1pre14 for a while, and it's pretty good. I think it should compile just as easily by changing out the sources. Newer or older versions can be "mount -bind"ed over what's built into the firmware if users need a particular version, which would require sufficient jffs space.
     
  47. AndreDVJ

    AndreDVJ Addicted to LI Member

    It does work. In WAN Settings, probably "DNS 1" and "DNS 2" are empty in your setup. These fields are responsible for storing IP addresses in NVRAM variable wan_dns, and gets appended in wan_get_dns.
     
    edusodanos and kille72 like this.
  48. kille72

    kille72 LI Guru Member

    "Stable" is updated more often?
    January 15th 2017 Version 1.0.31 released
    May 1st 2016 Version 1.1pre14 released

    I get the following error when I try to compile 1.1pre14 with Tomato:
    Code:
    net_packet.o: In function `try_mtu':
    net_packet.c:(.text.try_mtu+0x208): undefined reference to `powf'
    collect2: ld returned 1 exit status
    Makefile:872: recipe for target 'tincd' failed
    make[7]: *** [tincd] Error 1
    make[7]: Leaving directory '/home/kille72/tomato-arm/release/src-rt-6.x.4708/router/tinc/src'
    Makefile:375: recipe for target 'all-recursive' failed
    make[6]: *** [all-recursive] Error 1
    make[6]: Leaving directory '/home/kille72/tomato-arm/release/src-rt-6.x.4708/router/tinc'
    Makefile:316: recipe for target 'all' failed
    make[5]: *** [all] Error 2
    make[5]: Leaving directory '/home/kille72/tomato-arm/release/src-rt-6.x.4708/router/tinc'
    Makefile:2576: recipe for target 'tinc' failed
    make[4]: *** [tinc] Error 2
    make[4]: Leaving directory '/home/kille72/tomato-arm/release/src-rt-6.x.4708/router'
    Makefile:127: recipe for target 'all' failed
    make[3]: *** [all] Error 2
    make[3]: Leaving directory '/home/kille72/tomato-arm/release/src-rt-6.x.4708'
    Makefile:957: recipe for target 'bin' failed
    make[2]: *** [bin] Error 2
    make[2]: Leaving directory '/home/kille72/tomato-arm/release/src-rt-6.x.4708'
    Makefile:976: recipe for target 'z' failed
    make[1]: *** [z] Error 2
    make[1]: Leaving directory '/home/kille72/tomato-arm/release/src-rt-6.x.4708'
    Makefile:988: recipe for target 'n18z' failed
    make: *** [n18z] Error 2
     
  49. edusodanos

    edusodanos Serious Server Member

    Thanks, but the DNS of the 'basic' page are already configured with the DNS I want, I just like this option because it serves as a 'failover'
     
  50. AndreDVJ

    AndreDVJ Addicted to LI Member

    1) Have you checked if these NVRAM values are actually populated?
    2) Have you checked if /etc/resolv.dnsmasq gets populated?
     
  51. gffmac

    gffmac Networkin' Nut Member

    What is not in the VPN one that is included in AIO version? Just before I decide which to flash, thanks. For AC68U.
     
  52. H48W30c0HK

    H48W30c0HK Network Newbie Member

    Thanks for all your work @kille72 !

    Any ideas on this issue? I've also tried wiping NVRAM when upgrading. Strange that only one device is failing DHCP negotiation.
     
  53. edusodanos

    edusodanos Serious Server Member

    Thanks for the attention, I just did the test putting a random DNS (does not exist) in the "basic" settings to make it mandatory to use the DNS of the ISP, I was using the version of Toastman and that simple test it worked normally.
     
  54. kille72

    kille72 LI Guru Member

    LAN or WLAN?
     
  55. H48W30c0HK

    H48W30c0HK Network Newbie Member

    LAN
     
  56. kille72

    kille72 LI Guru Member

    BUILD_DESC="AIO" --> OPENVPN=y NTFS=y BBEXTRAS=y USBEXTRAS=y EBTABLES=y MEDIASRV=y IPV6SUPP=y MULTIWAN=y CTF=y GRO=y USB="USB" NOCAT=y BTCLIENT=y TR_EXTRAS=y DNSCRYPT=y UPS=y PPTPD=y DNSSEC=y TINC=y SNMP=y RAID=y NFS=y NANO=y TOR=y NGINX=y + PHP + MySQL

    BUILD_DESC="VPN" --> NTFS=y BBEXTRAS=y USBEXTRAS=y EBTABLES=y IPV6SUPP=y MEDIASRV=y MULTIWAN=y CTF=y GRO=y USB="USB" PPTPD=y OPENVPN=y DNSSEC=y SNMP=y
     
    Last edited: Mar 27, 2017
    H48W30c0HK and gffmac like this.
  57. kille72

    kille72 LI Guru Member

    Hmm, have you tested with a different firmware? Do you see anything in the log?
     
  58. Elfew

    Elfew Network Guru Member

    Would be nice to see details about connection in GUI (if you use 3g/4g usb modems). Now you can see that in log
     
  59. AndreDVJ

    AndreDVJ Addicted to LI Member

    it does not make any sense at all, neither you answered my questions.

    I will repeat myself, twice:
    dnsmasq will look after DNS servers stored in /etc/resolv.dnsmasq.

    1) If you want to exclusively use DNS servers provided by your ISP, you are ought to blank out values at DNS 1 and DNS 2 fields, put back DNS Server to Auto, and finally you can either tick or untick Use received DNS with user-entered DNS checkbox because it won't make a difference.

    2) If you want to use only custom DNS servers (e.g. Google ones), you set DNS Server to Manual, put addresses at DNS 1 and DNS 2 fields.

    3) If you want to have both custom and ISP provided DNS servers, first set DNS server to manual, put addresses at DNS 1 and DNS 2 fields, set back DNS server to Auto, and finally tick Use received DNS with user-entered DNS checkbox.

    Again, repeating myself, that way you'll manipulate wan_get_dns that will ultimately be appended at file /etc/resolv.dnsmasq, which will be used as resolvers by dnsmasq.

    Finally, if you really want dnsmasq telling what are the DNS servers it is forwarding queries, issue the following command:
    Code:
    killall -USR1 dnsmasq

    Explanation for that signal, from dnsmasq manual:
    Essentially, for that section in bold text, you will find in either syslog, or whatever file you specified for log-facility, statistics for each DNS server dnsmasq is forwarding queries to.

    There are other ways to manipulate DNS servers. dnsmasq has the ability to poll configuration files, but that approach isn't reliable enough for me, so restarting dnsmasq is usually safer, faster, and better. I used to get rid of a dead DNS server my ISP provided. They eventually fixed it, so I turned off my DNS server checks.

    I am unable to help you beyond this point, as I provided all three common usages.
     
    edusodanos likes this.
  60. edusodanos

    edusodanos Serious Server Member

    Okay, I'll try.
     
  61. kille72

    kille72 LI Guru Member

    @NeoX working on it, "Modem information" and another project "Speed Test", all from the GUI.
     
  62. kille72

    kille72 LI Guru Member

    Last edited: Mar 27, 2017
  63. crusher9

    crusher9 Reformed Router Member

  64. AndreDVJ

    AndreDVJ Addicted to LI Member

    I am very confused. Any device, whether wired or wireless, will appear at Devices List. What is the actual issue, and how to reproduce it?

    Dunno what Pedro is trying to accomplish (no comments or anything helpful), but looks like he's trying to:

    1) Improve logging capabilitites with switch4g script.
    2) Improve failover scenarios in a Multi-WAN configuration (such as restarting the right wan i.e. service wan1 | wan2 | wan3 | wan4 restart) with watchdog script.

    I have no way to test these, as I don't own a LTE modem (and my data plan is for my cellphone only).

    I tried to look into this. We're missing a header file, and looks like it's something at toolchain level, and I'm not really willing to dig further into this.
     
    Last edited: Mar 27, 2017
    kille72 likes this.
  65. Edrikk

    Edrikk Network Guru Member


    I actually have a device (HP 2600n Printer) which is hardwired, but doesn't actually show up on the device list. It's the only device that I have which behaves this way, but I can vouch that it "happens". Never cared much about it, but that's how it is....

    This has been the behavior for this device "forever". On my old E3000, on the new R7000, on Victek builds, Shibby, Toastman, across various versions over the (I believe) 8-9 years I've had that printer.

    I've assigned it a static IP address, so I know what its IP is without hassle...
     
  66. ghoffman

    ghoffman LI Guru Member

    did you assign the static address on your router (meaning assiign the printer's MAC address a static IP on the router, but set the printer to get an IP via DHCP), or did you assign a static IP on the printer? if the latter, the router may not know the printer exists since it didn't ask for an IP address.
     
  67. The Master

    The Master Network Guru Member

    How could i check this as a "normal" Tomato User? I have a MultiWan Setup here. Cable +LTE? Could i help too?
     
  68. kille72

    kille72 LI Guru Member

    I don't remember your router model, I can compile a test version for you if you want to test modified switch4g/watchdog.
     
  69. Edrikk

    Edrikk Network Guru Member

    Indeed via router's static DHCP, using the printer's MAC address (with printer set to get IP via DHCP).
    I just double checked both the printer and router to confirm.

    In checking I found that the printer model is actually "HP-CP1525NW". It's been a loooong time... :)
     
  70. ghoffman

    ghoffman LI Guru Member

    i'm not sure, but try setitng your printer to disable the bootp protocol.
     
    Edrikk likes this.
  71. Edrikk

    Edrikk Network Guru Member

    Yup, that did it! So I guess with a bootp setup (which was default checkbox ALONG WITH dhcp), the bootp gets the up on startup and never checks back in which causes the device to drop off the device list after a while and/or if the router is restarted?!

    Great tip with the bootp theory!
     
  72. ghoffman

    ghoffman LI Guru Member

    thanks for confirming. i played around with this years ago.
    i wonder if ther is a problem wiht the way the tomato DHCP server deals with bootp requests, since it apparently responds enough to hand out an IP address, but doesnt register it in its lease list (since it's not a 'lease' because it doesnt expire).
     
    AndreDVJ likes this.
  73. Jeffry

    Jeffry Networkin' Nut Member

    @kille72 Thanks for your work! Running this on a R7000 in Bridge Mode. Now if we could only figure out how to get Client Mode working on a WPA2/AES connection. ;)
     
  74. The Master

    The Master Network Guru Member

    R7000 The only Austria in the Anon Log :D
    And that would be great. If you need logs or something...say it...i look into it.
     
    Last edited: Mar 28, 2017
    kille72 likes this.
  75. livepu

    livepu Network Newbie Member

    Inside Merlin's git, BCM driver updates. Shibby is not updated for a long time, I am looking forward to update the driver.
     
  76. pomidor1

    pomidor1 Serious Server Member

    AndreDVJ said:
    http://www.linksysinfo.org/index.php?threads/tomato-shibbys-releases.33858/page-76#post-286100

    "What I did was to take beamforming parameters from Genie into Tomato. It's pretty much irrelevant for those who don't have AC devices. That change pretty much solved crappy speeds on my cellphone, which supports 802.11ac.

    About 2.4Ghz devices, and everything else, Tomato is stuck on an old wireless driver (from 2015 I think) and there's absolutely no way to replace that driver for a newer version, period. I tried that and - as expected - bricked my router.

    I can look up Netgear sources again, but no promises any changes will be done."
     
    RichtigFalsch, peyton and kille72 like this.
  77. srouquette

    srouquette Network Guru Member

    would be nice to have some kind of poll on the latest build. I'm wondering if 138.13 is stable enough...
     
  78. pomidor1

    pomidor1 Serious Server Member

    How the results tests, switch4g / watchdog scripts ?
     
  79. kille72

    kille72 LI Guru Member

    I don't have time right now...
     
    Last edited: Apr 3, 2017
  80. lepa71

    lepa71 Networkin' Nut Member

    Do I have to be on a specific stock version for R7000 before installing R7000 initial fw? Thanks
     
  81. AndreDVJ

    AndreDVJ Addicted to LI Member

    As far as I know, you can just go ahead and flash Initial firmware, as long as you reset to factory defaults beforehand.
     
  82. kille72

    kille72 LI Guru Member

    @lancethepants:
    I get the following error when I try to compile 1.1pre14 with Tomato, can you please help?

    Code:
    net_packet.o: In function `try_mtu':
    net_packet.c:(.text.try_mtu+0x208): undefined reference to `powf'
    collect2: ld returned 1 exit status
    Makefile:872: recipe for target 'tincd' failed
    make[7]: *** [tincd] Error 1
    make[7]: Leaving directory '/home/kille72/tomato-arm/release/src-rt-6.x.4708/router/tinc/src'
    Makefile:375: recipe for target 'all-recursive' failed
    make[6]: *** [all-recursive] Error 1
    make[6]: Leaving directory '/home/kille72/tomato-arm/release/src-rt-6.x.4708/router/tinc'
    Makefile:316: recipe for target 'all' failed
    make[5]: *** [all] Error 2
    make[5]: Leaving directory '/home/kille72/tomato-arm/release/src-rt-6.x.4708/router/tinc'
    Makefile:2576: recipe for target 'tinc' failed
    make[4]: *** [tinc] Error 2
    make[4]: Leaving directory '/home/kille72/tomato-arm/release/src-rt-6.x.4708/router'
    Makefile:127: recipe for target 'all' failed
    make[3]: *** [all] Error 2
    make[3]: Leaving directory '/home/kille72/tomato-arm/release/src-rt-6.x.4708'
    Makefile:957: recipe for target 'bin' failed
    make[2]: *** [bin] Error 2
    make[2]: Leaving directory '/home/kille72/tomato-arm/release/src-rt-6.x.4708'
    Makefile:976: recipe for target 'z' failed
    make[1]: *** [z] Error 2
    make[1]: Leaving directory '/home/kille72/tomato-arm/release/src-rt-6.x.4708'
    Makefile:988: recipe for target 'n18z' failed
    make: *** [n18z] Error 2
     
  83. Jose C

    Jose C Serious Server Member

    Reset to default from netgear firmware, use initial from shibby, and then go to kille release, remember to default nvram after every flash.


    Sent from my iPhone using Tapatalk
     
  84. lancethepants

    lancethepants Network Guru Member

    pomidor1, M_ars and Elfew like this.
  85. kille72

    kille72 LI Guru Member

    Last edited: Apr 12, 2017
  86. chchia

    chchia LI Guru Member

    Thanks kille72 for the great work, now i can have new tomato patched with all known flaws.

    by the way, I am on R7000, if it is not too trouble some, i wish to have a version that without APC UPS as i do not have one.

    by the way i am trying to compile my own version from your fork, however i am running in this error which i not sure how to fix it, would you mind to share your compiling environment? i am on ubuntu 16.04.

    under module e2fsprogs i got this:

    Code:
      CC       crypto_generichash/blake2b/ref/libssse3_la-blake2b-compress-ssse3.lo
      CC       crypto_pwhash/argon2/libssse3_la-argon2-fill-block-ssse3.lo
      CC       crypto_stream/chacha20/dolbeau/libssse3_la-chacha20_dolbeau-ssse3.lo
      CC       crypto_generichash/blake2b/ref/libsse41_la-blake2b-compress-sse41.lo
      CC       crypto_generichash/blake2b/ref/libavx2_la-blake2b-compress-avx2.lo
      CC       crypto_stream/chacha20/dolbeau/libavx2_la-chacha20_dolbeau-avx2.lo
      CC       crypto_stream/salsa20/xmm6int/libavx2_la-salsa20_xmm6int-avx2.lo
      CCLD     libaesni.la
      CCLD     libsse2.la
    libtool: warning: '-version-info/-version-number' is ignored for convenience libraries
      CCLD     libssse3.la
    libtool: warning: '-version-info/-version-number' is ignored for convenience libraries
      CCLD     libsse41.la
    libtool: warning: '-version-info/-version-number' is ignored for convenience libraries
    libtool: warning: '-version-info/-version-number' is ignored for convenience libraries
      CCLD     libavx2.la
    libtool: warning: '-version-info/-version-number' is ignored for convenience libraries
      CCLD     libsodium.la
    make[8]: Leaving directory '/home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708/router/libsodium/src/libsodium'
    make[7]: Leaving directory '/home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708/router/libsodium/src/libsodium'
    make[7]: Entering directory '/home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708/router/libsodium/src'
    make[7]: Nothing to be done for 'all-am'.
    make[7]: Leaving directory '/home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708/router/libsodium/src'
    make[6]: Leaving directory '/home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708/router/libsodium/src'
    Making all in test
    make[6]: Entering directory '/home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708/router/libsodium/test'
    Making all in default
    make[7]: Entering directory '/home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708/router/libsodium/test/default'
    make[7]: Nothing to be done for 'all'.
    make[7]: Leaving directory '/home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708/router/libsodium/test/default'
    make[7]: Entering directory '/home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708/router/libsodium/test'
    make[7]: Nothing to be done for 'all-am'.
    make[7]: Leaving directory '/home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708/router/libsodium/test'
    make[6]: Leaving directory '/home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708/router/libsodium/test'
    make[6]: Entering directory '/home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708/router/libsodium'
    make[6]: Nothing to be done for 'all-am'.
    make[6]: Leaving directory '/home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708/router/libsodium'
    make[5]: Leaving directory '/home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708/router/libsodium'
    cd /home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708/router/dnscrypt && CC=arm-brcm-linux-uclibcgnueabi-gcc STRIP=arm-brcm-linux-uclibcgnueabi-strip \
    autoreconf -fsi && \
    CFLAGS="-Os -Wall -DLINUX26 -DCONFIG_BCMWL5 -DCONFIG_BCMWL6 -DCONFIG_BCMWL6A -DPART_JFFS2_GAP=0UL -pipe -fno-strict-aliasing -DBCMWPA2 -DBCMARM -marm  -DTCONFIG_NVRAM_64K -DLINUX_KERNEL_VERSION=132644 -ffunction-sections -fdata-sections" \
    CPPFLAGS="-I/home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708/router/libsodium/src/libsodium/include" \
    LDFLAGS="-ffunction-sections -fdata-sections -Wl,--gc-sections -L/home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708/router/libsodium/src/libsodium/.libs" \
    ./configure --host=arm-linux --build=x86_64-linux-gnu --prefix=/usr --disable-ssp
    aclocal: error: aclocal: file 'm4/argz.m4' does not exist
    autoreconf: aclocal failed with exit status: 1
    Makefile:2677: recipe for target 'dnscrypt/stamp-h1' failed
    make[4]: *** [dnscrypt/stamp-h1] Error 1
    make[4]: Leaving directory '/home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708/router'
    Makefile:127: recipe for target 'all' failed
    make[3]: *** [all] Error 2
    make[3]: Leaving directory '/home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708'
    Makefile:957: recipe for target 'bin' failed
    make[2]: *** [bin] Error 2
    make[2]: Leaving directory '/home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708'
    Makefile:979: recipe for target 'zz' failed
    make[1]: *** [zz] Error 2
    make[1]: Leaving directory '/home/chchia/tomato-arm-kille72/release/src-rt-6.x.4708'
    Makefile:1003: recipe for target 'r7000zz' failed
    make: *** [r7000zz] Error 2
    
     
  87. kille72

    kille72 LI Guru Member

    I also had a lot of problems in Ubuntu, I switched to Debian 8.x and everything works now...
    Shibby will implement UPS on/off function in the GUI.
     
  88. lancethepants

    lancethepants Network Guru Member

    Docker is great for something like this. I run Debian anyway, but I create a debian docker container that is setup specifically for compiling tomato. I don't want to sully my pristine server with all the miscellaneous packages and hacks to get things working. It's also great with automation. With my project tomatoware, I use it to automatically download and compile the latest commits nightly, then make them available for download without even having to do anything after 'git push'. Such a thing could be easily done with tomato.

    http://www.linksysinfo.org/index.php?threads/tomato-build-environment.72034/#post-279056

    I used this guide to start out with, which got me 99% of the way. I think then I just created a few symlinks for automake 1.15 binaries to make it happy.
     
    kille72 likes this.
  89. imran khalid

    imran khalid Connected Client Member

  90. kille72

    kille72 LI Guru Member

    imran khalid likes this.
  91. alf5683

    alf5683 Connected Client Member



    Hey !!!!! I see it !!!
    https://bitbucket.org/kille72/tomato-arm-kille72/commits/all

    Thx :) I have a "Asus RT-N18U" and a "Asus RT-N16"

    I use your frimware whith my n18u since 25 march and and it's perfect !!! the vlan works fine and the bandwidth limiter too !!
     
    crashnburn likes this.
  92. crashnburn

    crashnburn LI Guru Member

    Can you please do the RT-N16 also, I'd like to test it and see if Multi WAN works.

    @alf5683 - Did your Multi WAN work well on RT-N16 - Which release? Were you using multi Wan?
     
  93. kille72

    kille72 LI Guru Member

    I'm sorry, but I just compile images for ARM routers. Wait for v139 MIPS by Shibby.
     
  94. limaunion

    limaunion New Member Member

    Hi, any chance of having your fimrware compiled for Linksys E900?

    Linksys E900 v1.0
    Chipset Broadcom BCM53572 chip rev 1 pkg 8
    CPU Freq 300MHz
    Flash Size 8MB

    TIA
     
  95. kille72

    kille72 LI Guru Member

    Last edited: Apr 14, 2017
  96. alf5683

    alf5683 Connected Client Member

    Okay ready to test !!
     
  97. kthaddock

    kthaddock Network Guru Member

    Test what?
     
  98. alf5683

    alf5683 Connected Client Member

    This :


    I try 138.14 now !
     
  99. kille72

    kille72 LI Guru Member

    Version 138.14 is ready for testing.
    Happy Easter!
     
    Last edited: Apr 16, 2017
  100. rickmav3

    rickmav3 Serious Server Member

    Thank You for keeping Tomato alive!
     
    kille72 likes this.

Share This Page