Posted: Mon Nov 06, 2017 20:39 Post subject: Re: 31221 and KRACK
gregfrankenstein wrote:
mistrauisch wrote:
I upgraded to dd-wrt.v24-31221_NEWD-2_K2.6_mini from the 15962 initial flash without a problem. I've been using this old workhorse as my primary router for months without a significant issue.
The wiki claims that 33413 is also working, but I don't want to bother with it because it doesn't patch KRACK. Still, feel free to confirm whether it works. If anyone still has one of these wnr2000v2 routers around to test and can load something newer than 33607 on it, I would appreciate the report. I read that 33607 is pretty small, so there's possibly hope there.
For the record, KRACK is a client-side vulnerability. My understanding is the only risk at the router level is if you were meshing mulitple together. Maybe a developer can correct me on that.
I'm still hoping for an update, but no more than usual.
You're absolutely right. Because repeater bridge doesn't work for K26 builds anymore, fixing KRACK doesn't matter for the standard setup. That said, if anyone is still using a wnr2000v2 as a repeater bridge with an old build, it may be vulnerable.
So I guess I'm back to "maybe the new builds will work." The wiki claims that 33679 works at 3,567,616 bytes, and the latest build
dd-wrt.v24-33679_NEWD-2_K2.6_mini.bin
comes out to 3,563,520 bytes, as did 33607.
I had been running dd-wrt.v24-27745_NEWD-2_K2.6_openvpn_small.bin on mine for a couple of years, supporting a single low-bandwidth device over the OpenVPN tunnel. Had almost no downtime or even spontaneous reboots.
However, my OpenVPN provider recently began to require TLS 1.1 or higher. I discovered that the OpenVPN 2.3.8 in 27745 did not really support any workable TLS 1.1 or 1.2 cipher - with most it would not even start. This set me on a search for a newer build.
Research led me to try:
dd-wrt.v24-29621_NEWD-2_K2.6_openvpn_small.bin
which loaded and connected its OpenVPN 2.3.10, but proved wildly unstable with spontaneous reboots several times an hour. So back to drawing board.
dd-wrt.v24-29721_NEWD-2_K2.6_openvpn_small.bin made a brick.
dd-wrt.v24-29739_NEWD-2_K2.6_openvpn_small.bin made a brick.
dd-wrt.v24-29816_NEWD-2_K2.6_openvpn_small.bin seems to be stable enough, running for hours and successfully connecting with TLS 1.2 via OpenVPN 2.3.11 - I'm sticking with it for now.
Other openvpn_small builds that made bricks ("contributed to my learning") include 30731 and 32597.
Hope someone else with a taste for antiquated hardware finds this useful.
Posted: Sat May 05, 2018 22:58 Post subject: Re: Newer openvpn_small builds
dkenglish7 wrote:
Research led me to try:
dd-wrt.v24-29621_NEWD-2_K2.6_openvpn_small.bin
which loaded and connected its OpenVPN 2.3.10, but proved wildly unstable with spontaneous reboots several times an hour. So back to drawing board.
dd-wrt.v24-29721_NEWD-2_K2.6_openvpn_small.bin made a brick.
dd-wrt.v24-29739_NEWD-2_K2.6_openvpn_small.bin made a brick.
dd-wrt.v24-29816_NEWD-2_K2.6_openvpn_small.bin seems to be stable enough, running for hours and successfully connecting with TLS 1.2 via OpenVPN 2.3.11 - I'm sticking with it for now.
Other openvpn_small builds that made bricks ("contributed to my learning") include 30731 and 32597.
Hope someone else with a taste for antiquated hardware finds this useful.
Good info. The latest openvpn_small build I was aware of working was 26490. I might try flashing 29816 to mine. I couldn't experiment because it's my primary router at the moment. Is it still running well a few weeks later?
Posted: Sun May 06, 2018 3:20 Post subject: dd-wrt.v24-29816_NEWD-2_K2.6_openvpn_small.bin is stable
Update:
After more than 3 weeks, I am finding dd-wrt.v24-29816_NEWD-2_K2.6_openvpn_small.bin to be very stable, rebooting only when cron tells it to. And my OpenVPN tunnel stays up all day and all night.
Well, in the wake of the VPNFilter headlines and the vague information as to what firmware is actually affected, I decided to get gutsy and flash an updated build, if only to flush the NVRAM, and totally risk a brick in the process.
I'm successfully running 36079, the absolute latest at the time of writing, brick-free. The only thing I've come across a problem with so far is assigning static IPs. Your mileage may vary on that, and maybe if I find the time I'll try to log what's going on and report it as an issue, but the important thing is it boots and functions, so it can be downgraded if this issue turns out to be real and reproducible.
Joined: 23 Feb 2009 Posts: 76 Location: Denver, CO
Posted: Thu Feb 28, 2019 3:30 Post subject:
I've been running v3.0-r33413 mini (09/27/17) for about a year. It seems stable - been up the whole time. The only issues I've seen are that I can't get it to act as a wireless AP, and the web ui sometimes disappears/fails to load, and I have to telnet in and run the following commands:
Code:
nvram set remote_management=1
nvram set http_wanport=8080
nvram set httpsd_enable=1
nvram set https_enable=1
nvram set remote_mgt_https=1
nvram commit
reboot
I'm tempted to try the latest, but it sounds dicey. _________________ 1x Netgear R9000
1 x Netgear N900
2 x Netgear WNR2000
~12 x Netgear WRT54g
Posted: Wed Mar 20, 2019 19:40 Post subject: loaded 39230; could use recommendation on build for repeater
Hey gang, I'm surprised it didn't brick but I loaded a recent build onto my WNR 2000v2 after trying several other builds (including: dd-wrt.v24-38937_NEWD-2_K2.6_mini.bin and a few random older ones)
Firmware: DD-WRT v3.0-r39230 mini (03/19/19)
Time: 11:41:02 up 9 min, load average: 0.11, 0.11, 0.05
WAN IP: 192.168.7.4
In case anyone else is brave... It seemed to work fine except for the one use case i'm trying to setup of course... does anyone have a solid repeater firmware to recommend?
I know... i know... probably user error/config, and i've read the wiki steps, the peacock thread, and been down several rabbit holes on this forum. I've tried
I can get my dd-wrt router to join the host network wirelessly (yeah!), I can set up a new subnet and dhcp which works fine over ethernet switch (yeah!), if I add a virtual wireless thing with a different SSID but no encryption it works (yeah!), if I enable WPA2/AES (same as host router and recommended in wiki/docs) I can't see the new SSID at all.
There's a lot of notes in the docs about certain builds being broken in repeater mode, but it's old, and no mention of exactly when (if?) it's been fixed subsequently?
""Note copied from Repeater Bridge mode, as it may also apply to Repeater mode: "Repeater Bridge with WPA2-AES is broken for k2.6 builds after 25974, though some models might work through 26125." See Repeater Bridge for original note.""
hey i have a netgear wnr2000 v2 that has
DD-WRT v24-sp2 (03/25/13) mini - build 21061
on it
its been on there for years i just happened to notice that there is a new offering for this router
dd-wrt.v24-40559_NEWD-2_K2.6_big-nv64k.bin
i went to administration/upgrade and selected the new file the router reboots and flashes the power led in a 3 times pulse, and after a few min i can access it again but it is still the old firmware
how do i update to the new firmware correctly?
thank you
hey i have a netgear wnr2000 v2 that has
DD-WRT v24-sp2 (03/25/13) mini - build 21061
on it
its been on there for years i just happened to notice that there is a new offering for this router
dd-wrt.v24-40559_NEWD-2_K2.6_big-nv64k.bin
i went to administration/upgrade and selected the new file the router reboots and flashes the power led in a 3 times pulse, and after a few min i can access it again but it is still the old firmware
how do i update to the new firmware correctly?
thank you
I'm surprised you didn't brick it, since it is a 4MB flash. This device will only flash K2.6 mini builds. Also, that is not the latest beta release.
Joined: 08 May 2018 Posts: 14223 Location: Texas, USA
Posted: Thu Sep 19, 2019 2:52 Post subject:
The Router Database, even though it has been 'updated' is still unreliable for information. I posted the wiki and 2019 betas download folder in the links in my previous post. Best advice I can give is research the build threads or this thread for information, or throw caution to the wind and try the most recent build if you have means to recover if you brick it.
I tried to flash dd-wrt.v24-38937_NEWD-2_K2.6_mini to my 2000v2, which was on an earlier version of ddwrt, but it bricked,
i can ping it, but when i try to flash it with tftp2, it pops up a box saying "erasing flash, this can take a while" but then it goes away after a few seconds back to the main screen.
is this router dead or is there anything else to try?
I am looking for a cheap router similar to these netgear ones, only has to be g/n speed, i only use it as a repeater/ap. what would you recommend where i can just open the router in a browser and flash ddwrt on it like i did in the past, everything seems very complicated now, and i am having a hard time even finding the ddwrt firmware for particular routers, because the database doesn't give you the correct ones.