Posted: Wed Mar 12, 2025 15:04 Post subject: New Build - 03/12/2025 - r60269
Welcome to Atheros r60269 beta release thread for reporting, feedback to developers and community benefit.
Please do not flash builds until installation is understood, risks involved and device specificrecovery methods.
Avoid discussions, create threads for questions, general problems or use search; this thread is not for support.
List router model & version or revision, operating & wireless modes & exact filename/firmware image flashed.
CLI Flash: 'cd /tmp' then 'wget {file URL}' (httponly) or 'curl -O {file URL}' (http, https, ftp) 'write {file} linux' then 'reboot'.
Issues, observations, and/or workarounds reported:
• WebUI: Clear history or use a portable. Temporary cache bypass: Ctrl+F5, Cmd+Shift+R or new private window/incognito.
• Please report findings with steps needed to reproduce, configuration, clients, output, logs and important information below!
Important:
• Detail issues & relevant configs, logs: syslog klog 'dmesg' 'cat /tmp/var/log/messages' nvram set console_debug=1, serial.
• Firewall NAT: 'iptables -vnL' 'iptables -t nat -vnL' 'iptables -t mangle -vnL' & 'cat /tmp/.ipt'. Debug Analyze: stracetcpdump.
• Gremlins: reboot. cold boot. Reset & reconfigure not restore backup. Search Trac & discuss in forum before opening tickets.
• Include operating & wireless modes (e.g. Gateway, Router, AP, SB, WDS, Mesh) and applicable configurations to reproduce.
Update method: Console Upgrade
Router/Version: GL.iNet-AR150
File/Kernel: DD-WRT v3.0-r60269 std (03/12/25)
Previous/Reset: DD-WRT v3.0-r59171 std (01/14/25) / No reset.
Mode/Status: Gateway, Wireguard, OpenVPN Server and Client, PPTP Server and Client, DDNS, SSH, Wireless Radio Mode: Station
Issues/Errors: Site Survey shows empty list. Incorrect rate of wlan0 - 800 Mbit/s!. Last working release which correctly displays APs on Site Survey and rate of wlan0 was r59171.
Joined: 04 Dec 2007 Posts: 1147 Location: Murrysville, PA
Posted: Wed Mar 12, 2025 16:39 Post subject:
Update method: SSH / CLI using PuTTY
Router/Version: Netgear R9000
File/Kernel: DD-WRT v3.0-r60269 std (03/12/25) / Linux 4.9.337 #767 SMP Sat Mar 8 04:00:25 +07 2025 armv7l
Previous/Reset: DD-WRT v3.0-r60137 std (03/08/25) / Linux 4.9.337 #767 SMP Sat Mar 8 04:00:25 +07 2025 armv7l
Mode/Status: Gateway / Working Normally
Issues/Errors: None
A few notes:
I tried turning on the new "flood" filters. The Block UDP Floods filter seemed to interfere with MS Teams meetings. Made them choppy, so I turned that one off. I have the others on.
Very minor nit: In the Impede WAS DoS / Bruteforce section, the PPTP choice label has a typo. "qccess" instead of "access"
The flash process seemed quicker than usual
_________________ Netgear R9000 DD-WRT v3.0-r60662 std (04/10/25)
Linux 4.9.337 #768 SMP Thu Mar 20 12:30:25 +07 2025 armv7 Gateway, AP, DNSMasq, Clock 2000MHz
VAP on wlan1 for internet devices
IPv4 & IPv6 (Prefix Delegation)
Static Leases & DHCP
SmartDNS (using Cloudflare, Quad9 and Google), no QoS, no SFE
2.4GHz: AP, DD-WRT, N Only, ACK Timing 500, WPA2 w/AES
5GHz: AP, DD-WRT, AC Only, ACK Timing 500, WPA2 w/AES
2 Netgear AX1800 WiFi Mesh Extenders
Xfinity 1.2Gbps/40Mbps
Posted: Wed Mar 12, 2025 17:36 Post subject: WR841ND
Router/Version: TP-Link TL-WR841ND v11
Update method: WebUpgrade
File/Kernel: tl-wr841nd-webflash.bin_r60269 / Linux 3.18.140-d6 #233106 Wed Mar 12 14:00:20 +07 2025 mips
Previous/Reset: r60217 / no
Mode/Status: AP wired and wireless / Up and running for 2:31
Issues/Errors: Nothing significant
If your router's light turns red, don't worry. Internet connection is ok.
Incorrect rate of wlan0 - 800 Mbit/s!
Thank you BS and gurus! _________________ Atheros
Netgear XR500 Nighthawk - DD-WRT 59468
Tp-Link TL-WDR4900 v1.3 - DD-WRT 53133
TP-Link WR1043ND v4 - DD-WRT 51838
TP-Link WR1043ND v2 - Gargoyle OS 1.13.0
TP-Link WR841ND v11 - DD-WRT 60586
Broadcom
Asus RT-AC88U - DD-WRT 60586
Asus RT-AC87U R - DD-WRT 60586
Asus RT-N66U - DD-WRT 60511
Linksys WRT54GL v1.1 - DD-WRT 54517M
Linksys WRT54GL v1.1 - FreshTomato 2023.4_MIPS_K26
Linksys WRT54GL v1.1 - Gargoyle OS 1.6.2
Joined: 07 Jan 2025 Posts: 96 Location: Bethel Park, PA, USA
Posted: Wed Mar 12, 2025 20:04 Post subject:
Router/Version: Linksys MR7350 x 3
File/Kernel: DD-WRT v3.0-r60269 std (03/12/25), Linux 6.6.82-rt29 #2870 SMP Tue Mar 11 06:29:17 +07 2025 aarch64
Previous/Reset: DD-WRT v3.0-r60217 std (03/11/25), last reset on r60098
Mode/Status: Gateway (NSS-ECM), Access Point (5GHZ AX/AC/N mixed, WPA2/WPA3, 802.11r/v/k, guest network, domain:UNITED STATES), performance governor, IPV6 (DHCP6 w/ prefix delegation), Entware, DOT via SmartDNS/DNSMasq, OpenVPN server, Wireguard Server + 2 Wired access points (2.4GHz, 5GHZ, WPA2/WPA3, 802.11r/v/k, guest network, domain:UNITED STATES)
Issues/Errors:
Up 5 hours. USB 3.2 stick working properly for Entware and "jffs" partitions. Speed, wired and wifi, is very close to published, which is equal or favorable to the ISP router - tested via nPerf.com. Wireguard and OpenVPN servers both working as expected and throughput sufficient to open video files on network shares. 5GHz showing 22dBm or 26dBm, depending on channel (set to 30dBm). 2.4GHz showing 28dBm (also set to 30dBm).
I turned back on "Detect and Block Port Scans", "Filter TCP Sync Flood", "Filter UDP Flood" and "Filter Ping of Death." No issues with dropped pings or DNS over TLS.
@MLandi, I didn't see any issues with Teams meetings (audio and screensharing, no video) but my company routes the traffic from our laptops through their ZScaler proxy, so I can't say it's a clean test.
Joined: 04 Dec 2007 Posts: 1147 Location: Murrysville, PA
Posted: Wed Mar 12, 2025 20:08 Post subject:
dplotz wrote:
@MLandi, I didn't see any issues with Teams meetings (audio and screensharing, no video) but my company routes the traffic from our laptops through their ZScaler proxy, so I can't say it's a clean test.
My company uses Global Protect so that may add traffic that is tripping the Flood UDP protocol. I will play around with it.
Do you know of a setting that would log when one of these rules are engaged? _________________ Netgear R9000 DD-WRT v3.0-r60662 std (04/10/25)
Linux 4.9.337 #768 SMP Thu Mar 20 12:30:25 +07 2025 armv7 Gateway, AP, DNSMasq, Clock 2000MHz
VAP on wlan1 for internet devices
IPv4 & IPv6 (Prefix Delegation)
Static Leases & DHCP
SmartDNS (using Cloudflare, Quad9 and Google), no QoS, no SFE
2.4GHz: AP, DD-WRT, N Only, ACK Timing 500, WPA2 w/AES
5GHz: AP, DD-WRT, AC Only, ACK Timing 500, WPA2 w/AES
2 Netgear AX1800 WiFi Mesh Extenders
Xfinity 1.2Gbps/40Mbps
Do you know of a setting that would log when one of these rules are engaged?
Haven't tried them but I think the firewall logging options on the Security/Firewall tab.
Yes, this is where you turn on the firewall logging, but beware that it will create a LOT of text even when set to Medium! I would not recommend it unless you are saving logs into /jffs.
Also, be sure to click the Help on the Security page. It has lots of good new information about these new features. ie. Do not Filter UDP floods if you are using Wireguard. _________________ - Linksys EA8500: I-Gateway, WAP/VAP 5ghz only. Features: VLANs, Samba, WG, Entware - r60621
- Linksys EA8500: 802.11s Secondary w/VLAN Trunk over 5ghz - r60621
- Linksys MX4300: 802.11s Primary w/VLAN Trunk over 5ghz. 2.4ghz WAP/VAP only - r60269
- Linksys MX4300: (WAP/VAP (7)) Multiple VLANs over single trunk port. Entware/Samba r60269
- Linksys MR7350: WDS Station for extended Ethernet r60662
- Linksys MR7500, MX8500: None in production. Just testing. r60662
- OSes: Fedora 40, 10 RPis (2,3,4,5), 23 ESP8266s: Straight from Amiga to Linux in '95, never having owned a Windows PC.
- Forum member #248
Joined: 04 Dec 2007 Posts: 1147 Location: Murrysville, PA
Posted: Wed Mar 12, 2025 20:50 Post subject:
dplotz wrote:
MLandi wrote:
Do you know of a setting that would log when one of these rules are engaged?
Haven't tried them but I think the firewall logging options on the Security/Firewall tab.
I've used that before and it produces a LOT of noise messages. I'll try. _________________ Netgear R9000 DD-WRT v3.0-r60662 std (04/10/25)
Linux 4.9.337 #768 SMP Thu Mar 20 12:30:25 +07 2025 armv7 Gateway, AP, DNSMasq, Clock 2000MHz
VAP on wlan1 for internet devices
IPv4 & IPv6 (Prefix Delegation)
Static Leases & DHCP
SmartDNS (using Cloudflare, Quad9 and Google), no QoS, no SFE
2.4GHz: AP, DD-WRT, N Only, ACK Timing 500, WPA2 w/AES
5GHz: AP, DD-WRT, AC Only, ACK Timing 500, WPA2 w/AES
2 Netgear AX1800 WiFi Mesh Extenders
Xfinity 1.2Gbps/40Mbps
Joined: 06 Jun 2006 Posts: 7675 Location: Dresden, Germany
Posted: Thu Mar 13, 2025 7:24 Post subject:
lexridge wrote:
dplotz wrote:
MLandi wrote:
Do you know of a setting that would log when one of these rules are engaged?
Haven't tried them but I think the firewall logging options on the Security/Firewall tab.
Yes, this is where you turn on the firewall logging, but beware that it will create a LOT of text even when set to Medium! I would not recommend it unless you are saving logs into /jffs.
Also, be sure to click the Help on the Security page. It has lots of good new information about these new features. ie. Do not Filter UDP floods if you are using Wireguard.
port scans are always logged with a single entry and yes all what matches will be shown if logging is enabled. but running constant logging should be used for diagnostic. i mean you get thousands of entries for blocked external packets these days. there are some tools which allow to use this data for analysizing using syslog. that the only application i can imagin _________________ "So you tried to use the computer and it started smoking? Sounds like a Mac to me.." - Louis Rossmann https://www.youtube.com/watch?v=eL_5YDRWqGE&t=60s
Joined: 04 Dec 2007 Posts: 1147 Location: Murrysville, PA
Posted: Thu Mar 13, 2025 14:37 Post subject:
BrainSlayer wrote:
lexridge wrote:
dplotz wrote:
MLandi wrote:
Do you know of a setting that would log when one of these rules are engaged?
Haven't tried them but I think the firewall logging options on the Security/Firewall tab.
Yes, this is where you turn on the firewall logging, but beware that it will create a LOT of text even when set to Medium! I would not recommend it unless you are saving logs into /jffs.
Also, be sure to click the Help on the Security page. It has lots of good new information about these new features. ie. Do not Filter UDP floods if you are using Wireguard.
port scans are always logged with a single entry and yes all what matches will be shown if logging is enabled. but running constant logging should be used for diagnostic. i mean you get thousands of entries for blocked external packets these days. there are some tools which allow to use this data for analysizing using syslog. that the only application i can imagin
When I try to enable Filter UDP Floods, I have trouble with my work machine that uses PaloAlto's Global Protect. DNS requests seem to fail and Teams meetings become very choppy. I see nothing happening in the logs. I have to turn it off to get the work machine to work properly. _________________ Netgear R9000 DD-WRT v3.0-r60662 std (04/10/25)
Linux 4.9.337 #768 SMP Thu Mar 20 12:30:25 +07 2025 armv7 Gateway, AP, DNSMasq, Clock 2000MHz
VAP on wlan1 for internet devices
IPv4 & IPv6 (Prefix Delegation)
Static Leases & DHCP
SmartDNS (using Cloudflare, Quad9 and Google), no QoS, no SFE
2.4GHz: AP, DD-WRT, N Only, ACK Timing 500, WPA2 w/AES
5GHz: AP, DD-WRT, AC Only, ACK Timing 500, WPA2 w/AES
2 Netgear AX1800 WiFi Mesh Extenders
Xfinity 1.2Gbps/40Mbps
