Notes: 1. SFE accelerated NAT is in 33006+ builds but only in kernel 3.2 and newer 2. 'KRACK' vulnerability fixes were completed in r33678 for Broadcom, including k26 (33655) & k24 (33656); use 33772 or later.
3. Bridge modes on k4.4 devices may sometimes work in some configurations in certain builds but are not supported by the bcmdhd driver. Use client or repeater instead as WDS doesn't work with Broadcom ARM either (see Issues below).
4. PBR/UDP with SFE working again since r40513 (see 6729)
5. CAKE scheduler changes "completed" with r41057 (see 5796) & FQ_CODEL_FAST with r41027 (reset first!)
6. Reset button was broken in 40571; fixed in build 40750.
Template to copy (after "Code:") for posting issues, be sure to include the mode in use (gateway, AP, CB, etc.):
WARNING:This thread is to report on flashing this experimental test build, providing important info for both developers and users. Always state your hardware model, version, mode (e.g. Repeater) and SPECIFIC build (e.g. 33555_NEWD-2_K3.x_mega-nv64k.bin). Please avoid discussions and create a new thread to discuss specific problems or questions, as this thread is for reporting, not support. Posts may be deleted or moved to keep this thread manageable and useful. If you don't understand the risks or what to flash and how, with a means of recovery if it bricks, do NOT flash this experimental test build. _________________ Routers:Netgear R7000, R6400v1, R6400v2, EA6900 (XvortexCFE), E2000, E1200v1, WRT54GS v1.
Install guide R6400v2, R6700v3,XR300:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399 Install guide R7800/XR500:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614 Forum Guide Lines (important read):https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
EA8500
DD-WRT v3.0-r41321 std (10/14/19)
Linux 4.9.196 #481 SMP Mon Oct 14 02:15:59 CEST 2019 armv7l
uptime 1:50
NO reset -- GUI install over r41241
main gateway router -- all good
JFFS is now fixed on the EA8500 ...thanks BS
Not currently using JFFS on this router but I tried it on the other EA8500
WNDR3700 V4
DD-WRT v3.0-r41321 std (10/14/19)
Linux 3.18.140 #57108 Mon Oct 14 05:44:29 +04 2019 mips
NO reset -- GUI install over r41241
uptime 10:05
just used as switch / ovpn server / samba share
all ok
WRT160NL
DD-WRT v3.0-r41321 std (10/14/19)
Linux 3.10.108-d8 #25247 Mon Oct 14 04:17:32 +04 2019 mips
NO reset -- GUI install over r41241
uptime 10:06
just a switch / samba share
all good
Joined: 18 Mar 2014 Posts: 12913 Location: Netherlands
Posted: Mon Oct 14, 2019 13:20 Post subject:
Router Model: Netgear R7800
Firmware Version: DD-WRT v3.0-r41174 std (09/26/19)
Kernel Version: Linux 4.9.196 #481 SMP Mon Oct 14 02:15:59 CEST 2019 armv7l
Upgraded from: DD-WRT v3.0-r41174 std (09/26/19)
Reset: No, not this time
Status: Up and running for 8 hours, basic setup as Gateway, static leases, OpenVPN client (on PIA) with Policy Based Routing up and running, 2,4GHz, 5Ghz USB storage NAS and OpenVPN server working.
Resolved:
1. Pushed DNS servers from VPN provider are now used, if you do not want that, add the following to the Additional Config of the VPN client:
pull-filter ignore "dhcp-option DNS"
2. Build 41174 has an improved VPN Policy Based Routing, it is now possible to use the VPN route command i.e. to route a DNS server via the VPN (in this way you will get rid of the DNS leak), see: https://svn.dd-wrt.com/ticket/6815#comment:1 , and for DNS leaks the second posting of this thread: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318662 3. Another improvement on PBR is that local routes are now copied over to the alternate routing table so there is communication if you have unbridged VAP's and you can set the router's IP on PBR.
See: https://svn.dd-wrt.com/ticket/6821#comment:3 4. Starting with build 41174, the PBR has become more versatile, you can now use " from [IP address] to [IP address] ", so if you enter the following in the PBR field:
192.168.1.124 to 95.85.16.212 #ipleak.net, it will only route IP address 95.85.16.212 (which is ip leak.net) from my IP address 192.168.1.124 via the VPN everything else from this IP address will route via the WAN (this is just an example).
See: https://svn.dd-wrt.com/ticket/6822
Although this command itself supports routing per port this is however only available starting from K 4.17 so we have to rely on scripting for per port routing until then.
5. New OpenVPN TLS ciphers are added in 41308 see: https://svn.dd-wrt.com/changeset/41308 6. Starting with 41304 you can now choose which TLS Key you want to use: TLS Auth or the newer/better TLS Crypt. See https://svn.dd-wrt.com/ticket/6845#comment:17
Posted: Mon Oct 14, 2019 15:20 Post subject: JFFS (now UBIFS) works well on build r41321
As in the other post, JFFS2 is working well now. Thank you BS! Size is changed from 32 MB to 24 MB, I reckon there is a reason for that technically. Again major kudos for BS for moving us on to UBIFS. I configured the router from scratch just in case any NVRAM settings had changed, fired up JFFS2 in settings and cleared JFFS2 in Admin settings. Log file entries look great. And, I am running stubby now from JFFS (UBIFS) mounted as /OPT without any errors. This is great. The only weird thing I noticed was when I applied wireless security settings I lost contact with the router and it sort of hung. I power cycled it and it rebooted fine with the settings I had applied earlier; I could not recreate the fault. I also noticed that the ticket 5699 https://svn.dd-wrt.com/ticket/5699 to remove the invalid wireless extension settings in build r41269 is not fixed; the invalid extension settings are still there.
still bad, the usual poor k4.x ipq performance. about doubled the cpu load with sirq, latency is high, wifi throughput is jittery and low etc, even when bridged with no nat/firewall/qos enabled on the r7800. and BS has "no issues"... (r7800). ipq806x is trashed by kernel 4.x even after all these years. seems kong was the only one on earth able to fix it.. _________________ LATEST FIRMWARE(S)
BrainSlayer wrote:
we just do it since we do not like any restrictions enforced by stupid cocaine snorting managers
EA8500...main router
I enabled unbound but its still same ol same ol when connected to its ovpn server.
Clients can't go anywheres while only the ovpn server IP is pushed as DNS.
Copied modified unbound.conf to /jffs/etc/
Restart unbound and it works perfectly --- ovpn client also only use unbound + local DNS working just fine.
all in all this r41321 prolly a damn good build for the EA8500
Joined: 21 Jan 2017 Posts: 1783 Location: Illinois Moderator
Posted: Mon Oct 14, 2019 19:36 Post subject:
tatsuya46 wrote:
wifi is full of "ghost load" now on top of the usual k4.x latency and high cpu load etc. unusable even when bridged with no nat/firewall/qos on the r7800. and BS has "no issues"... (r7800).
I'll have to fire up the R7800 and take a peek, but for sure when q-boost was on it was causing gremlins on the R9000...had to turn off q-boost. I think the only reason to use q-boost would be between two routers that support it with no other clients getting on either wifi... q-boost was interfering with my motorola baby monitor on 2.4ghz eating bandwidth/causing noise. The gui showed a 25-35% drop in channel quality on the status>wireless page for both 2.4 and 5ghz.
Are you seeing the wifi load issue with q-boost off? I assume so, but want to make sure. _________________ FORUM RULES
Joined: 21 Jan 2017 Posts: 1783 Location: Illinois Moderator
Posted: Mon Oct 14, 2019 19:41 Post subject: Re: WL security settings are amazing
bdg2 wrote:
SDundee wrote:
Agree that the wireless security settings are, in a word, AMAZING. WPA3 is already provided + many cipher options. Really well done.
It's just unfortunate that it seems to let you choose combinations that do not make any sense.
The only thing I can point to is that Broadcom and QCA handle spectrum allocation different, from reading somewhere... Though you would think the code between the two would be different and not coded as "one size fits all."
I am not enough of an expert to look at the code and know if BS has separated out the wifi channel selection dependent on chipset; but my SWAG is he did not based on other comments I seem to recall in the SVN's... it will forever be an issue if it's a one size fits all... QCA seems to have their shit together when it comes to wifi standards and leading the pack on technology, while broadcom seems to veer off track....that's just based on a hunch more than anything... _________________ FORUM RULES
Posted: Mon Oct 14, 2019 21:54 Post subject: Great build for the EA8500
Agree with our beloved and esteemed colleague mrjcd™. This is a great build for the EA8500 router. Very nice to have JFFS functionality back using UBIFS developed by our Nokia friends. Out of morbid curiosity (or Norbit for cinema buffs), has anyone played with GPIO scripts to get the doggone LED working on the EA8500? A little light from that LED provides a lot of bio-feedback during booting. So very interested to know the experiences from the group on the LED functionality using GPIO or other fixes.
I concour, both images. _________________ Segment 1 XR700 10Gb LAN, 1Gb WAN ISP BS
Wired AP 1 Unifi Wifi 6 LR US 1Gb LAN
Wired AP 2 Unifi Wifi 6 LR US 1Gb LAN
Wired AP 3 Unifi Wifi 6 LR US 1Gb LAN
Syslog Services Asustor 7110T NAS 10GB
NetGear XS716T 10GB Switch
download1.dd-wrt.com/dd-wrtv2/downloads/betas/ (Brain Slayer)
YAMon https://usage-monitoring.com/index.php