Router: Asus RT-AC5300
Firmware: DD-WRT v3.0-r39855M kongac (05/25/19)
Kernel: Linux 4.4.180 #662 SMP Sat May 25 15:26:57 CEST 2019 armv7l
Previous: stock
Status: Working
Reset: Yes
Errors: All SSIDs set to Security Mode WPA2-PSK but one of the 5 GHZ is broadcasting as WEP
I saw this same issue reported in the new build thread for build 33657M, and it was noted that other builds had it as well.
Is there a solution or a build appropriate for the AC5300 that doesn't have this?
Really appreciate the work of the builders.
I am not seeing this on any of my AC5300's. Maybe do an erase nvram or nvram erase
I did another reset and nvram erase, and it didn't resolve anything. I had to shut off the second 5 GHz radio. If I use all three, one of them always shows as WEP.
Looking for an earlier build that hopefully won't have this issue.
Weird, I am also running a 2.4ghz VAP om each unit along with VPN and eoip. However I do not run the default wifi settings. Maybe this would make a difference. I got these settings from another user which I have been using since I started using the ac5300. They have worked well for me.
Router: Asus TM-AC1900 (Converted to RT-AC68U, Rev B1)
Firmware: DD-WRT v3.0-r39855M kongac (05/25/19)
Kernel: Linux 4.4.180 #662 SMP Sat May 25 15:26:57 CEST 2019 armv7l
Status: ok (Running as a Client Bridge, connected via 5Ghz Radio)
Reset: Yes (nvram erase && reboot after flash)
Errors: no
Uptime: 30 min _________________ ASUS RT-AC3100 AP Merlin 386.12_4
ASUS RT-AC68U Media Bridge/Merlin 386.12_4 (x2)
ASUS RT-AC68U AP r54604
ASUS RT-AC68U Gateway/AP r54604
Edgerouter-4, v2.0.9-hotfix7
@kp69 That is exactly what is going on, my ISP DNSserver is used and I did not want it.
The ISP DNS server is automatically added to the specified DNS servers you specify in Static DNS 1,2,3.
But this is only the case if WAN connection type is set on automatic DHCP, not on static. I have not tested other WAN connection types.
You can just telnet to your router and do:
cat /tmp/resolv.dnsmasq
Mine looks like this (mind you the first three entries are the ones I specified, the fourth is my ISP's which is automatically added):
I do not use any DNSMasq directive. DNSMasq will query all specified DNS server and uses the quickest or if you have specified strict order it will start with using the first one and if it fails the second etc.
So specifying strict order will give you some protection but if all your specified DNS servers fail it will use your ISP's.
@rnio you are absolutely right that DNSSEC is the better choice but it does not always work reliably yet
Regarding VPN, there another form of DNS leak can be possible if you are using PBR.
See my signature, in the Simple-PBR thread there is a paper regarding DNS leaks and how to mitigate that (second post).
This will remove the ISP dns ip. Once it will work on your router, run a cron job on this script. You might also need to delete this file resolv.dnsmasq_isp using this script:
rm -f /tmp/resolv.dnsmasq_isp. I somehow see this file created.
Firmware: v3.0-r39855M kongac (05/25/19)
Kernel: Linux 4.4.180 #662 SMP Sat May 25 15:26:57 CEST 2019 armv7l
Previous: v3.0-r39715M kongac (05/09/19)
Mode/Status: Up and runnig for 5 days
Reset: Soft boot before and after ddup
Issues/Errors: None
Upgraded via "ddup --flash-latest" over ssh. No 'nvram erase' this time. No unexpected messages in the syslog.
The temperatures are good: CPU 58.0 °C / WL0 45.5 °C / WL1 48.5 °C (The R7000 is wall-mounted.)
Current basic R7000 setup (subject to change of course):
- SFE - On
- STP - On
- Static WAN IP
- LAN DHCP Enabled
- IPv4 only
- Wireless: Regulatory Domain = UNITED_STATES, wl0 Mixed (ch. 1), wl1 NA-Mixed (ch. 161 + 159), AES
- 1 wireless VLAN on wl0
- SNMP disabled, SSH enabled, Telnet disabled
- Firewall enabled, Log Level high
- Syslog: to local server. klogd: disabled.
- USB support - Off
- NO: ttraf, VNC, Zabbix, VPN, Radius, OpenVPN
- NO: UPnP, DMZ, QoS
- NO: Samba, CIFS, JFFS2, miniDLNA, Entware, Optware _________________ Netgear R7000: v3.0-r54248 std (11/29/23)
EdgeRouter-X: EdgeOS v2.0.9-hotfix 7
Router: Asus RT-AC68U, Rev E1
Firmware: Firmware: DD-WRT v3.0-r39855M (05/25/19)
Kernel: Linux 4.4.180 #662 SMP Sat May 25 15:26:57 CEST 2019 armv7l
Status: Up and running
Reset: Yes (Reset to default)
Errors / Issue:very low WAN-LAN and LAN-LAN performace
-> "Shortcut Forwarding Engine" Enabled: WAN-LAN: 20-75Mbit/s
-> "Shortcut Forwarding Engine" Disbaled: WAN-LAN: 20-75Mbit/s
-> CPU Load Average on test < 10% something is slowing down /blocking the WAN-LAN transfer
.
-> LAN-LAN performance is also very low: 20-75Mbit/s
(Assign WAN Port to Switch, DHCP Forwarder; used the Test-Router as switch, without the Test-Router 950MBit/s)
Posted: Mon Jun 03, 2019 21:12 Post subject: no SSH management on r6400v1
Router: Netgear r6400v1
Firmware: DD-WRT v3.0-r39855M kongac (05/25/19)
Kernel: Linux 4.4.180 #662 SMP Sat May 25 15:26:57 CEST 2019 armv7l
Status: ok
Reset: no
Errors: "SSH Management" under "Administration > Router Management" is disabled and grayed out, it cannot be enabled.
Expected: "SSH Management" can be enabled, like on previous versions of the firmware.
Problems and workarounds:
1) When VAP is not working at boot; workaround startup command:
sleep 10; stopservice nas; stopservice wlconf; startservice wlconf; startservice nas;
2) Aternative way to get VAP working: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=317181
3) An other user reports the following workaround (save as startup):
sleep 4; stopservice cron; stopservice wlconf; wlconf eth1 up; wlconf eth2 up; startservice cron;
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=319412
4)This one is from @Redhawk (guaranteed to work Wink ):
sleep 20; stopservice nas; wlconf eth1 down; wlconf eth2 down; wlconf eth1 up; wlconf eth2 up; startservice nas
#4 worked for me under r38580M.
But under this version when using a guest network, wl0.1 (2.4GHz) fails to connect (tries several times and ends with an authentication error) while wl1.1 (5GHz) works fine. The standard wl0 and wl1 also work fine.
Router: r6700v3
Firmware: r38580M -> r39855M
Kernel: Linux linky 4.4.180 #662 SMP Sat May 25 15:26:57 CEST 2019 armv7l DD-WRT
If there is not an easy fix, does anyone have the dd-wrt.v24-K3_AC_ARM_STD_128K.bin binary for r38580M (unfortunately, I only have the chk version).
Joined: 18 Mar 2014 Posts: 12905 Location: Netherlands
Posted: Tue Jun 04, 2019 5:38 Post subject:
The VAP bug is really frustrating.
Did you do an:
Code:
nvram erase && reboot
from the command line and put settings n manually?
When having problems it is good practice to start fresh.
It could well be that it is not helping and that you have to go back to on older build.
Normally we uses Vincent's repository for old Kong builds: http://ddwrt-kong.clonevince.fr/
But I took a quick peak and it could be that this version is missing (I can recall that the 38570 had a glitch and the same day Kong came with 38580, Vincent uses the date to track new builds so this one could have slipped).
But the good news is I have one for the R6400v2 and R6700v3.
Joined: 06 Jun 2006 Posts: 7492 Location: Dresden, Germany
Posted: Tue Jun 04, 2019 6:18 Post subject: Re: no SSH management on r6400v1
retgab wrote:
Router: Netgear r6400v1
Firmware: DD-WRT v3.0-r39855M kongac (05/25/19)
Kernel: Linux 4.4.180 #662 SMP Sat May 25 15:26:57 CEST 2019 armv7l
Status: ok
Reset: no
Errors: "SSH Management" under "Administration > Router Management" is disabled and grayed out, it cannot be enabled.
Expected: "SSH Management" can be enabled, like on previous versions of the firmware.
please enable ssh on the services tab. otherwise its greyed out and that correct. no ssh, no management available _________________ "So you tried to use the computer and it started smoking? Sounds like a Mac to me.." - Louis Rossmann https://www.youtube.com/watch?v=eL_5YDRWqGE&t=60s
Needed to updated 2 family members's R7000s since DNSCrypt-Proxy V1 is loosing support and replaced with DNSCrypt-Proxy V2. Having a couple of spare R7000 I loaded up Build 39855M and Entware for DNSCrypt-Proxy V2 & ip-full support. I have posted how to get Entware DNScrypt-Proxy V2 working https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320764
Router: (Family #1) R7000 Gateway
Firmware: v3.0-r39855M kongac (05/25/19) (from r37985M)
Kernel: Linux 4.4.180 #662 SMP Sat May 25 15:26:57 CEST 2019 armv7l (from Linux 4.4.167 #625 SMP)
Status: Working & Uptime Over 141 Hours
Reset: nvram erase && reboot
Errors: None, currently running/testing
Configuration/Setup
- WAN DHCP
- SFE Dsabled
- STP Disabled
- DNSMasq for IPv4 & IPv6
- DNSCrypt-Proxy V2 via Entwware
- NTP Client
- DDNS
- Gateway Mode
- 7x Local VLANs all Bridged via GUI
- 7x Bridges via GUI
- Wireless has 5x SSIDs (WL0,WL0.1,WL0.2,WL1 & WL1.1) all Bridged via GUI
- SSH, Telnet & SysLog Enabled
- WAN Traffic Disabled
- USB Storage
- VPN Client va Startup
- SPI Firewall Enabled
- QoS Enabled
- 4x Cron Jobs
- Custom Startup & Firewall Commands with ebtables & ip6tables
- Running Entware & YAMon v3.4.5
Router: (Family #2) R7000 Gateway
Firmware: v3.0-r39855M kongac (05/25/19) (from r37985M)
Kernel: Linux 4.4.180 #662 SMP Sat May 25 15:26:57 CEST 2019 armv7l (from Linux 4.4.167 #625 SMP)
Status: Working & Uptime Over 34 Hours
Reset: nvram erase && reboot
Errors: None, currently running/testing
Configuration/Setup
- WAN DHCP
- SFE Dsabled
- STP Disabled
- DNSMasq for IPv4 & IPv6
- Static Leases
- DNSCrypt-Proxy V2 via Entwware
- NTP Client
- DDNS
- Gateway Mode
- 5x Local VLANs all Bridged via GUI
- 5x Bridges via GUI
- Wireless has 4x SSIDs (WL0,WL0.1,WL0.2 & WL1) all Bridged via GUI
- Wirless MAC Filtering on WL0 & WL1
- SSH, Telnet & SysLog Enabled
- WAN Traffic Disabled
- USB Storage
- SPI Firewall Enabled
- QoS Enabled
- 4x Cron Jobs
- Custom Startup & Firewall Commands with ebtables & ip6tables
- Running Entware, YAMon v3.4.5 & adbhostgen v20180727a1
Thanks DD-WRT Developers! _________________ Home Network on Telus 1Gb PureFibre - 10GbE Copper Backbone
2x R7800 - Gateway & WiFi & 3xWireGuard - DDWRT r53562 Std k4.9
Off Site 1
R7000 - Gateway & WiFi & WireGuard - DDWRT r54517 Std
E3000 - Station Bridge - DDWRT r49626 Mega K4.4
Off Site 2
R7000 - Gateway & WiFi - DDWRT r54517 Std
E2000 - Wired ISP IPTV PVR Blocker - DDWRT r35531