[Fork] FreshTomato-ARM

Discussion in 'Tomato Firmware' started by kille72, Apr 15, 2018.

  1. boulder

    boulder New Member Member

    My case: in 2018.4-Max version NAT-PMP doesn't work at all, at least while both UPnP and NAT-PMP are enabled. NAT-PMP works just fine in 2018.3.011-beta-Max. Checked on Linksys E2000 with uTorrent and Tranmission 2.94 on Windows.
     
    Last edited: Nov 5, 2018
  2. thewaywardgeek00

    thewaywardgeek00 Network Newbie Member

  3. Tony Ramirez

    Tony Ramirez Reformed Router Member

    Thanks for keeping Tomato up to date. Since I was running AdvancedTomato which also seems to be abounded and I first decided to try DD-WRT again. Well DD-WRT still sucks and now I know why I switched 2 years ago.

    Wifi speeds still drop and don't top out. Wifi still randomly drops. Wifi range is the same as Tomato so where are the benefits. Still no support if you have any issues all know it all's on there forms who tell you to just "Search" which does not work or "Google it" which I did which is why I am asking or do there stupid 30/30/30 which also does not work.

    Well running the latest FreshTomato on my R7000 and running the "olio_v1" theme which makes it look decent it runs great. I still would like a fork of Advanced FreshTomato.
     
  4. kille72

    kille72 LI Guru Member

    Look here:
    https://bitbucket.org/AndreDVJ/advancedtomato-arm/downloads/
     
    Tony Ramirez and rgnldo like this.
  5. kille72

    kille72 LI Guru Member

    Soon I hope :)
     
  6. oTradeMark

    oTradeMark New Member Member

    Hello, I have a Tenda AC15 that I would like to install Tomato on. Are the instructions listed below valid for FreshTomato? They were originally posted by Techie007 in another thread.
    1. Connect an Ethernet cable between your PC and port 1 on the router.
    2. Set your PC to use a static IP address of 192.168.1.2 (instructions are here if you need them).
    3. If the router is on, turn it off. Find the reset hole at the top of the router and insert a paperclip to hold the reset button down. While holding reset down, power the router on.
    4. After about 25 seconds, the right-most LED (with the gear/settings symbol) should turn on. If it doesn't after a minute, you probably didn't hold the reset button down the whole time. Go back to step 3.
    5. Release the reset button and open 192.168.1.1 in your web browser.
    6. Use the CFE screen to upload the new firmware.
    7. Give the router about five minutes to upload, flash and reboot. When the router reboots, all the lights will flash briefly. Once Tomato is up and running, the two WiFi LEDs will light up.
    8. Click the Continue link (or reopen 192.168.1.1 in your web browser) to configure your new firmware. Default username and password are both admin.
    9. As the Tenda settings are incompatible with Tomato, go to Administration -> Configuration -> Restore Default Configuration, select Erase all data in NVRAM memory and click [OK].
    10. Don't forget to re-set your PC to get its IP automatically when you're done!
    I apologize for my lack of knowledge regarding the topic. I haven't had Tomato since my WRT54G and I have had this Tenda sitting around so I wanted to test it out.
     
  7. rgnldo

    rgnldo Serious Server Member

  8. Tony Ramirez

    Tony Ramirez Reformed Router Member

  9. sac7000

    sac7000 Serious Server Member

  10. Admiral2145

    Admiral2145 New Member Member

    Anyway to fix the poor 5ghz signal problem? Either a different firmware or something....
     
    Last edited: Nov 7, 2018 at 1:31 PM
  11. rgnldo

    rgnldo Serious Server Member

    In Wireless mode: auto
    40ghz
    Channel 40
     
  12. Tony Ramirez

    Tony Ramirez Reformed Router Member

    That made it much worse for me. Went down to 3 bars only 1 meter from the router.
     
    Admiral2145 likes this.
  13. Techie007

    Techie007 Serious Server Member

    Should've been posted in the Tenda AC15 thread, but yes; you bet those instructions are still good. They are unlikely to need updated and would apply to any Tenda AC15 firmware installation as the instructions are for the router's built-in CFE and a PC. The Tenda AC15 with Fresh Tomato is my "go to" router for most residential networks, although the 5 GHz WiFi remains weak as no one has figured out how to turn on its power amplifiers from Tomato yet.
     
    Last edited: Nov 7, 2018 at 8:10 PM
  14. rgnldo

    rgnldo Serious Server Member

    It will depend on the router. With me, on the router RT-AC68U, use channel153, 80ghz ..
    Increase TX Power to 200mw
     
  15. usergay

    usergay Network Newbie Member

    I have the best 5ghz result with the following settings on my R7000:

    80 Mhz - Channel 149 or 153 - 5ghz country setting = SINGAPORE, TX power = 0, Wmm = Enable, Frame Burst = enable.
     
  16. tbrautaset

    tbrautaset Network Newbie Member


    Any hope to get back CaptivePortal, as mentioned by @pedro ?
     
  17. AndreDVJ

    AndreDVJ LI Guru Member

    You can always clone the repo then compile a target yourself. If you find a component which is unstable, you can always try to fix it and hopefully do a PR.

    If we can live with NoCatSplash's limitations and flaws, a git revert is all it takes.
    I don't do releases, so I don't mind if FreshTomato features it.
     
    tbrautaset likes this.
  18. Bad_Dog

    Bad_Dog Network Newbie Member

    I haven't found this written elsewhere, so I think I may have stumbled on a bug...

    Running ASUS AC3200. I repeated this in Freshtomato 2018.3 and 2018.4.

    The issue I ran into is changing the Router's IP address. In Basic | Network, I changed the router's IP from 192.168.1.1, to 192.168.2.1, and the DHCP range to be 192.168.2.150 ~ 254. Upon reboot, the NVRAM appears to get screwed up because when I go back into the Basic | Network screen, I can't click on any of the buttons (Scan for Wireless Networks, SAVE, etc.). I also have three large-font headers on the page for WAN 2, WAN 3 and WAN 4, with a single empty (small) box beneath them.

    Rebooting it seems to get it stuck. It doesn't appear to be in a reboot loop, as all the lights come on and stay on, but I can't reach the router (by either IP) and DHCP doesn't respond.

    This was after flashing from Shibby 140 to 2018.4, clearing NVRAM. I re-installed the Freshtomato firmware many times, each time clearing NVRAM. The very first change I would make would be to adjust the router's IP and DHCP range to get this end result. I initially made other changes, but narrowed it down to changing the router's IP and DHCP range causing this. I didn't try just the router IP, but by that point, I just wanted it to work.

    I later tried making other edits to the configuration, and then go back to the Network configuration page to change the IP & Range, and got the same result.

    So as it stands, the router is working with 2018.4, but I'm stuck with the default IP. I did change the DHCP range, without changing the router's IP, and it remains stable.

    So, is there any way to change the router's IP?
     
  19. pedro311

    pedro311 Networkin' Nut Member

    Clean browser cache, and/or use ctrl+F5
     
    kille72 likes this.
  20. Carmine

    Carmine New Member Member

    Feature Request - add SoftEther VPN Server and Client functionality

    Thank you all for continuously updating Tomato. I would suggest the addition of SoftEther VPN Server and Client functionality. My tests adding the Lancethepants builds to my R7000 Freshtomato setup show increased throughput performance over OpenVPN.

    I think adding SoftEther VPN support would increase the flexibility and functionality to what is already a great project.
     
    maurer and Wizardknight like this.
  21. wetpaint

    wetpaint Connected Client Member

    You are doing the right thing, i believe, but i suspect that your computers ip address isn't changing when you change the router ip address. I have changed the ip address of both my routers to 192.168.10.x quite happily but my laptop (Win 10) doesn't change with it until I have disabled and re-enabled the network card......maybe something to try.......

    Can also try a 30/30/30 reset as a good clearout

    Good luck
     
  22. Bad_Dog

    Bad_Dog Network Newbie Member

    That did it! Actually, I used Firefox's Privacy mode while doing the changes. :)

    Thanks!
     
  23. danell

    danell New Member Member

    Have anyone figured out how to get a good and strong wifi connection (2.4 and 5) for the R6250 yet?
    I have search long and far and tried most of the things I found but nothing that makes the wifi go above ~50mbit while stock gives 250mbit for me. I have tried Tomato, FreshTomato, AdvancedTomato, DD-Wrt and OpenWRT but all gives same result. :/
     
  24. rgnldo

    rgnldo Serious Server Member

    Increase STUBBY native FreshTomato

    After some testing with FreshTomato's native Stubby, with DNSSEC and DoT support. I came to this configuration. Excellent latency

    [​IMG]
    Stubby 0.23 interacts with the Stritc-Order option.

    In Wan Up

    cp -R /jffs/scripts/stubby.yml / etc

    Code:
    tls_ca_file: "/rom/cacert.pem"
    
    resolution_type: GETDNS_RESOLUTION_STUB
    dns_transport_list:
      - GETDNS_TRANSPORT_TLS
    tls_authentication: GETDNS_AUTHENTICATION_REQUIRED
    
    tls_query_padding_blocksize: 256
    
    edns_client_subnet_private : 1
    
    idle_timeout: 60000
    
    round_robin_upstreams: 1
    
    appdata_dir: "/opt/var/cache/stubby"
    
    listen_addresses:
      - 127.0.0.1@5453
      - 0::1@5453
    
    upstream_recursive_servers:
    # IPv4 addresses
    # Cloudflare
      - address_data: 1.1.1.1
        tls_auth_name: "cloudflare-dns.com"
      - address_data: 1.0.0.1
        tls_auth_name: "cloudflare-dns.com"
    # Quad 9 'secure' service - Filters, does DNSSEC, doesn't send ECS
    #  - address_data: 9.9.9.9
    #    tls_auth_name: "dns.quad9.net"
    # The Surfnet/Sinodun servers
    #  - address_data: 145.100.185.15
    #    tls_auth_name: "dnsovertls.sinodun.com"
    #    tls_pubkey_pinset:
    #      - digest: "sha256"
    #        value: 62lKu9HsDVbyiPenApnc4sfmSYTHOVfFgL3pyB+cBL4=
    #  - address_data: 145.100.185.16
    #    tls_auth_name: "dnsovertls1.sinodun.com"
    #    tls_pubkey_pinset:
    #      - digest: "sha256"
    #        value: cE2ecALeE5B+urJhDrJlVFmf38cJLAvqekONvjvpqUA=
    # The getdnsapi.net server
    #  - address_data: 185.49.141.37
    #    tls_auth_name: "getdnsapi.net"
    #    tls_pubkey_pinset:
    #      - digest: "sha256"
    #        value: foxZRnIh9gZpWnl+zEiKa0EJ2rdCGroMWm02gaxSc9Q=
    # IPv6 addresses
    # Cloudflare
      - address_data: 2606:4700:4700::1111
        tls_auth_name: "cloudflare-dns.com"
      - address_data: 2606:4700:4700::1001
        tls_auth_name: "cloudflare-dns.com"
    # Quad 9 'secure' service - Filters, does DNSSEC, doesn't send ECS
    #  - address_data: 2620:fe::fe
    #    tls_auth_name: "dns.quad9.net"
    # The Surfnet/Sinodun servers
    #  - address_data: 2001:610:1:40ba:145:100:185:15
    #    tls_auth_name: "dnsovertls.sinodun.com"
    #    tls_pubkey_pinset:
    #      - digest: "sha256"
    #        value: 62lKu9HsDVbyiPenApnc4sfmSYTHOVfFgL3pyB+cBL4=
    #  - address_data: 2001:610:1:40ba:145:100:185:16
    #    tls_auth_name: "dnsovertls1.sinodun.com"
    #    tls_pubkey_pinset:
    #      - digest: "sha256"
    #        value: cE2ecALeE5B+urJhDrJlVFmf38cJLAvqekONvjvpqUA=
    # The getdnsapi.net server
    #  - address_data: 2a04:b900:0:100::38
    #    tls_auth_name: "getdnsapi.net"
    #    tls_pubkey_pinset:
    #      - digest: "sha256"
    #        value: foxZRnIh9gZpWnl+zEiKa0EJ2rdCGroMWm02gaxSc9Q=
    
    Tests DNSSEC:

    [​IMG]

    [​IMG]

    [​IMG]
     
    Last edited: Nov 10, 2018 at 1:03 PM
  25. txnative

    txnative Networkin' Nut Member

    Do you have apple devices that are not opening ports while NAT-PMP is selected? If so could show some logs.
     
  26. roberthuang

    roberthuang Serious Server Member

    Currently I'm worried about the stability of running Tomato on R6250. 2.4G is almost unusable with Tomato by Shibby v138 due to the driver issue. Constant packets loss is noticed. If 2.4GHz is stable on FreshTomato latest version, I will love to migrate. I don't care about the throughput that much.
     
  27. sac7000

    sac7000 Serious Server Member

    Last edited: Nov 11, 2018 at 8:18 PM
  28. pedro311

    pedro311 Networkin' Nut Member

  29. sac7000

    sac7000 Serious Server Member

    pedro311 I
    I do not see your link, this fix - 5713e12
    - https://bitbucket.org/tsynik/tomato-arm/commits/5713e12745bc6d1f422111648ec3bc9113cf193c
    This will allow using GeOIP without installing Entware.
    (Tomato must be compiled with GeoIP data in firmware (geoip files in / usr / share / tor)

    Add to Administration / Scheduler / User 2
    Here is a custom script -
    # TOR GeoIP DB
    logger -s $(basename $0) "### TOR GeoIP DB ###"
    if [ -d /opt/share/tor ]; then
    [ -f /opt/share/tor/geoip ] && \
    ( ! mount | grep -q "/tmp/tor/geoip" ) && {
    logger -s $(basename $0) "### GeoIP found in /opt, mount..."
    touch /tmp/tor/geoip
    mount -o bind /opt/share/tor/geoip /tmp/tor/geoip
    }
    [ -f /opt/share/tor/geoip6 ] && \
    ( ! mount | grep -q "/tmp/tor/geoip6" ) && {
    logger -s $(basename $0) "### GeoIPv6 found in /opt, mount..."
    touch /tmp/tor/geoip6
    mount -o bind /opt/share/tor/geoip6 /tmp/tor/geoip6
    }
    else
    mkdir -p /tmp/tor && cd /tmp/tor
    wget https://geolite.maxmind.com/download/geoip/database/GeoLite2-Country.mmdb.gz
    gunzip GeoLite2-Country.mmdb.gz
    wget https://gitweb.torproject.org/tor.git/plain/src/config/mmdb-convert.py
    python mmdb-convert.py GeoLite2-Country.mmdb
    chmod 644 geoip*
    rm -f GeoLite2-Country.mmdb*
    fi
    # Reload TOR config to use GeoIP data
    kill -HUP `pidof tor`

    p/s
    Sorry pedro311 I saw this path on your links - /tmp/tor usr/share/tor. But when I installed
    FreshTomato
    firmware geoip not working, in the firmware from tsynik it worked.
     
    Last edited: Nov 11, 2018 at 9:46 PM
  30. pedro311

    pedro311 Networkin' Nut Member

    That @tsynik commit, which you point me out, only adds a symlink, nothing more.
    And it's already implemented in FreshTomato.
    So you can copy geoip db to /tmp/tor/geoip[6] by custom script or by hand, and just reload tor.

    And/Or add this to the tor custom config:
    Code:
    ExitNodes {XX}
    StrictNodes 1
    where XX is country code. And it's fully working.

    If db has to be in other location ie. /opt/etc/geoip, add:
    Code:
    GeoIPFile /opt/etc/geoip
     
  31. sac7000

    sac7000 Serious Server Member

    Thank you pedro311 I now use the firmware from @tsynik . As soon as you release a new firmware I will install it again and check the operation of the geoip.
     
  32. davexx

    davexx New Member Member

    hi,

    i @kille72 installed the 2018.4 and i have a serious problem, with shibby 140 i had adblock enabled and everythings working fine, but now if i activate adblock i have no internet access....
    please fix this serious bug
     
  33. pedro311

    pedro311 Networkin' Nut Member

    Please read a few posts back in this thread about adblock problems (to be more accurate, with one of the blacklist).
     
    rgnldo likes this.
  34. rgnldo

    rgnldo Serious Server Member

    This is a blacklist formatting problem created by some server. This is already being planned and fixed in FreshTomato build 2018.5. Uncheck all server options and add only this blacklist: http://sbc.io/hosts/hosts
     
  35. mauriga

    mauriga Reformed Router Member

    Sorry Rgndlo but you prolly didn’t see my post #1187, so I ask you one more time.
    I’ve understand step 1 and step 2 but I dont understant what I have to do with
    Code:
     tls_ca_file 
    ecc ecc
    Tnx in advance for your help

    mau——
     
  36. rgnldo

    rgnldo Serious Server Member

    this is the path to the FreshTomato firmware TLS security certificate.
     
  37. davexx

    davexx New Member Member

    using stubby it stop the adblock feature?
     
  38. icecold2018

    icecold2018 New Member Member

    I'm currently on dd-wrt but would like to move to freshtomato arm.
    Device - Netgear R7000. Questions

    1. Are there Wifi issues on 2.4 and 5ghz? on dd-wrt this currently isn't great.
    2. Is there any plans to include support for wireguard VPN in FreshTomato?

    Thanks
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice