Notes: 1. SFE accelerated NAT is in 33006+ builds but only in kernel 3.2 and newer 2. 'KRACK' vulnerability fixes were completed in r33678 for Broadcom, including k26 (33655) & k24 (33656); use 33772 or later.
3. Bridge modes on k4.4 devices may sometimes work in some configurations in certain builds but are not supported by the bcmdhd driver. Use client or repeater instead as WDS doesn't work with Broadcom ARM either (see Issues below).
4. PBR/UDP with SFE working again since r40513 (see 6729)
4. CAKE scheduler added since r40547 (see 5796)
Issues, observations, and/or workarounds reported: 1.Trendnet 81*DRU models are missing factory-to-flash 2.DNScrypt is mostly only using v2 protocols now, but requires Golang that DD can't use:6246 3.WDS does not work on Broadcom ARM devices (only MIPS<->MIPS) 4.K2.6 builds are broken since 38253(?) (GUI issues):6538 5.VAPs not working at boot; workaround startup command:
sleep 10;stopservice nas;stopservice wlconf;startservice wlconf;startservice nas
This appears fixed (only for unbridged VAPs?) with r40564:40566...
Important: if reporting any issues, provide applicable info (GUI syslog, `dmesg`, `cat /var/log/messages`, etc.)
Or put into SVN ticket. For firewall issues, also provide "iptables" info (`iptables -L`, `iptables -t nat -L`, & the /tmp/.ipt file).
Template to copy (after "Code:") for posting issues, be sure to include the mode in use (gateway, AP, CB, etc.):
WARNING:This thread is to report on flashing this experimental test build, providing important info for both developers and users. Always state your hardware model, version, mode (e.g. Repeater) and SPECIFIC build (e.g. 33555_NEWD-2_K3.x_mega-nv64k.bin). Please avoid discussions and create a new thread to discuss specific problems or questions, as this thread is for reporting, not support. Posts may be deleted or moved to keep this thread manageable and useful. If you don't understand the risks or what to flash and how, with a means of recovery if it bricks, do NOT flash this experimental test build. _________________ #NAT/SFE/CTF: limited speed w/ DD#Repeater issues#DD-WRT info: FAQ, Builds, Types, Modes, Changes, Demo#
OPNsense x64 5050e ITX|DD: DIR-810L, 2*EA6900@1GHz, R6300v1, RT-N66U@663, WNDR4000@533, E1500@353,
WRT54G{Lv1.1,Sv6}@250|FreshTomato: F7D8302@532|OpenWRT: F9K1119v1, RT-ACRH13, R6220, WNDR3700v4
Last edited by jwh7 on Wed Aug 21, 2019 18:08; edited 2 times in total
r7000p booted up fine. made adjustments to QoS and enabled usb & rebooted. now its unresponsive. some lights are on.
Exactly what settings did you change, to give BS an idea of how to replicate... _________________ #NAT/SFE/CTF: limited speed w/ DD#Repeater issues#DD-WRT info: FAQ, Builds, Types, Modes, Changes, Demo#
OPNsense x64 5050e ITX|DD: DIR-810L, 2*EA6900@1GHz, R6300v1, RT-N66U@663, WNDR4000@533, E1500@353,
WRT54G{Lv1.1,Sv6}@250|FreshTomato: F7D8302@532|OpenWRT: F9K1119v1, RT-ACRH13, R6220, WNDR3700v4
flashed dd-wrt-40723-ea2700.trx today and still testing SFE. But I noticed and now I'm sure that, the issue in ticket 6721 https://svn.dd-wrt.com/ticket/6721 isn't related to TKIP+CCMP or CCMP-only. This time I've chosen "CCMP-128 (AES)" which TKIP will not be allowed, and given it my own Wlan AP password, then "Apply Settings", the whole router hang/bricked again, UNTIL I had to unplug the DC power for at least 30s and re powered on again (hard reboot by power supply interruption), then everything works fine and I can go back into the WebGUI as usual.
So this issue IS NOT ABOUT WHAT I HAVE CHOSEN in this Wireless Security page, but happens every time just when I've CHOSEN ANYTHING or EVEN CHOSEN NOTHING BUT JUST CLICKED THE "Apply Settings" BUTTON IN THAT PAGE, kaboom! CRASHED/BRICKED UNTIL UNPLUGGING POWER AND PLUGGED IN AGAIN. This issue seems more serious than what I thought before. I've no ideas about if any other Broadcom MIPS routers with the same issue happen. But you guys should really fix this.
Just one button clicked then crashed without doing anything else.
Router/Version: Netgear R7000
Firmware: DD-WRT v3.0-r40723 std (08/21/19)
Kernel: Linux 4.4.189 #842 SMP PREEMPT Wed Aug 21 05:31:18 +04 2019 armv7l
Previous: r40672
Mode/Status: Gateway / working
Reset: no
Issues/Errors: Working so far.
Thanks to @tinkeruntilitworks (for testing and posting the result) and @jwh7 (for tracing the issue and updating the thread)... I would have played with fq_codel_fast for sure.
Uptime: 18min
Temperatures: CPU 70.2 °C / WL0 49.0 °C / WL1 55.0 °C
Router/Version: Asus RT-N66U
File: dd-wrt.v24-40723_NEWD-2_K3.x-big-RT-N66U.trx
Firmware: DD-WRT v3.0-r40723 big (08/21/19)
Kernel: Linux 3.10.108-d8 #26069 Wed Aug 21 10:27:18 +04 2019 mips
Mode: Gateway, Wifi disabled
Reset: No
Status: ~8h up, SFE enabled, "seems faster" than 40065 it sported before
After flashing, I was able to reset to factory defaults twice. Thereafter, setting factory defaults did not work. From the GUI, it goes to the apply page, but then nothing happened. Then from the reset button, nothing. After a power cycle, it prompts for a password, but doesn't accept my last settings or root/admin. 30/30/30: not reset.
Just tried your new "SMP version" SFE recently. Seems much better than the old SFE, faster and stabler, but not seems perfect yet. I've even replaced all my ethernet cables to the newer cat6 ones instead, and fully reset my android phone, before testing your new SFE. No transport layer hangs most of the day, but some seldom hangs or very long lags when the least usage time like midnight. Maybe it's caused by the slower wifi speed or default speed, lower bandwidth usage or less working queues? Or caused by the runt frames amount much more than the MTU size (e.g. 1500 or 2348) frames at the low usage time? Or maybe caused by expired DNS record caches and so the conflicts between DNSmasq and SFE when DNSmasq need to re query the DNS records again from the upstream servers? Great job already but you guys still have a long way to go for this issue.
P.S. For bandwidth speed test now, between LAN and WAN a.k.a. internet speed test, never faster than 70Mbps to a local server when SFE disabled (slower but stabler), but always over 90Mbps when SFE enabled (faster but less stable, My ISP provides me 100Mbps WAN speed). For intranet between LAN to LAN, always around 940Mbps to 950Mbps from ethernet cable to ethernet cable.
Flashed without reset and it loaded fine. i proceeded to go to test CAKE again and then i saw two undefined choices and i chose the first one and KABLAM, weird bricked, can access WIFI but not ethernet. Reset button does not work and power cycle did nothing either. In the process of finding my USB serial cable. Using the WZR-1750 DHP on r40527.