Posted: Wed Nov 06, 2019 13:30 Post subject: Odd behaviour with Netgear 3400
Hi,
Hope someone can assist
I have had my Netgear 3400 with I think K3 firmware from feb (poss a little latter) for ages. Its configured to be a VPN client and print server.
I turn the power off (to all kit) when I go out.
when I came back last night and turned things on and tried to print it failed. On loggining into the router I found its configuration wiped and it was prompting me to set the router password. I feared a hack. The router is behind another with standard filtering so it is not exposed to the internet other than via the VPN (openvpn) connection. I am not sure what the filters on that I do not think it is exposed.
I fearing a hack I immediately re-flashed the firmware to a K2 version. However on further investigation the nvram settings ate in tact. the do not seem to influence the K2 firmware.
I am thus a little confused and concerned about these sequence of events. Can anyone offer any advise. Is it likely that turning off the power every day could prompt this behaviour? Is it likely that there has been a hack. Is any further action needed than a re-flash?
Joined: 16 Mar 2019 Posts: 353 Location: Szczecin, Poland EU
Posted: Wed Nov 06, 2019 18:56 Post subject: Odd behaviour with Netgear 3400
Check which version of dd-wrt you have on Netgear 3400. You can try the newest available version #39715 (K3 from may 2019), K2 version is old and I don't suggest you to install. You should do completly new config of device. Type hard password to web gui login, disble possibly insecure login way (telnet, tftp). You can use ssh. Fundamental option to change is: "Allow Any Remote IP" set this to disable. If you not change this hosts from internet can try to login to your device. Generally problem is probably in your config mistake.
I have now upgraded to Firmware: DD-WRT v3.0-r40559 mega (08/06/19). There are some oddities.
1. the firewall rules do not get applied *Administration->Commands
2. When I login via ssh I get:
Using username "root".
DD-WRT v3.0-r40559 mega (c) 2019 NewMedia-NET GmbH
Release: 08/06/19
Board: Netgear WNDR3400
Authenticating with public key "robert@raspberrypi"
==========================================================
Joined: 08 May 2018 Posts: 14125 Location: Texas, USA
Posted: Tue Nov 19, 2019 19:25 Post subject:
If you're using a k2.6 build, you need one newer than 40708. Otherwise, shell scripts and a whole bunch of other stuff don't work right. Why you switched back from K3.x, I don't know, but all you should've had to do was upgrade to a newer K3.x build.
Joined: 08 May 2018 Posts: 14125 Location: Texas, USA
Posted: Thu Nov 21, 2019 18:35 Post subject:
rbannocks wrote:
I fearing a hack I immediately re-flashed the firmware to a K2 version. However on further investigation the nvram settings ate in tact. the do not seem to influence the K2 firmware.
^ Ok, did you flash back to the old K3.x firmware you had before?
rbannocks wrote:
trying to upgrade....
When I try with the GUI it fails with a blank screen. Firmware does not change. It is reporting the versions quoted before. I thought this was K3.
When I try on the command line is get:
Netgear chk format detected
Error: board id! but U12H155T00_NETGEAR expected
Are you sure you used the correct file? Is it a plain 3400 or CVNA?
If you running DD, use the nv64k.bin files. You may need to flash an older k3x file when running k26 (or back to OEM and start over...). Read those links I listed. Dr_K has this model; I don't. Or you could try TFTP. _________________ #NAT/SFE/CTF: limited speed w/ DD#Repeater issues#DD-WRT info: FAQ, Builds, Types, Modes, Changes, Demo#
OPNsense x64 5050e ITX|DD: DIR-810L, 2*EA6900@1GHz, R6300v1, RT-N66U@663, WNDR4000@533, E1500@353,
WRT54G{Lv1.1,Sv6}@250|FreshTomato: F7D8302@532|OpenWRT: F9K1119v1, RT-ACRH13, R6220, WNDR3700v4
Joined: 08 May 2018 Posts: 14125 Location: Texas, USA
Posted: Thu Nov 21, 2019 21:24 Post subject:
jwh7 wrote:
rbannocks wrote:
latest version fails with the former error
If you running DD, use the nv64k.bin files. You may need to flash an older k3x file when running k26 (or back to OEM and start over...). Read those links I listed. Dr_K has this model; I don't. Or you could try TFTP.
Ok, I have reverted to the Netgear firmware. I tried to load the latest K3 build 21.11.2019 for the 3400 without sucess - I had to revert again via tftp to the netgear firmware. The 3400 page lists a K2 version for the factory. Before going any further, is it the correct procedure to load the K2 then ddwrt-upgrade to K3?
Joined: 08 May 2018 Posts: 14125 Location: Texas, USA
Posted: Fri Nov 22, 2019 21:19 Post subject:
rbannocks wrote:
Ok, I have reverted to the Netgear firmware. I tried to load the latest K3 build 21.11.2019 for the 3400 without sucess - I had to revert again via tftp to the netgear firmware. The 3400 page lists a K2 version for the factory. Before going any further, is it the correct procedure to load the K2 then ddwrt-upgrade to K3?
What you may have to do is revert to an older version of the Netgear firmware via tftp / nmrpflash. The wiki seems to have a v1 firmware zip file, there are 3 different versions of this router, looks like. All of them are Broadcom, thankfully, so I don't think there is an issue there. But you likely have to revert to 1.0.0.50 or older Netgear firmware to get it to flash correctly.... but you've already had DD-WRT on it, so, you may wish to try an older version of DD-WRT... but probably not as old as in the supported devices wiki, which, by the way, only shows the V1 being supported:
So, I am completely at a loss not knowing which version of this router you have one the one hand, but on the other, you had one version of DD-WRT flashed, so.... hmm. Was the initial file a K3.x that you originally tried? _________________ "Life is but a fleeting moment, a vapor that vanishes quickly; All is vanity"
Contribute To DD-WRT Pogo - A minimal level of ability is expected and needed... DD-WRT Releases 2023 (PolitePol)
DD-WRT Releases 2023 (RSS Everything)
----------------------
Linux User #377467 counter.li.org / linuxcounter.net
I have version 1. Yes I followed the procedure there to reset the router. And used the download from that site to get the firmware to put the netgear firmware back there.
The initial K3 was the very latest from Betas. I will now try the older K3 on that page.