WNR834bV1 (V1 only) revive router's MAC address.

Post new topic   Reply to topic    DD-WRT Forum Index -> Broadcom SoC based Hardware
Goto page 1, 2  Next
Author Message
redhawk0
DD-WRT Guru


Joined: 04 Jan 2007
Posts: 11563
Location: Wherever the wind blows- North America

PostPosted: Sun Mar 22, 2009 21:05    Post subject: WNR834bV1 (V1 only) revive router's MAC address. Reply with quote
OK all....I received a WNR834bV1 as a donation...it was bricked when it arrived. It was upgraded from NG firmware to Sveasoft's Talisman firmware...but in the process...it bricked and the owner didn't want to deal with it....so it was provided to me.

As I have always said...any donations are put to use for the dd-wrt project and this one was no exception...so here is my donation in the form of info to get your MAC address back to its original and not the generic 00:C0:02:63:00:08 address.

I read A LOT of information to come up with this solution...it was spread far and wide in our forum and at various placed on the www ....but here is the process that worked for me to regain my MAC address for the WNR834Bv1 unit.

A word of warning....this router does NOT have JTAG...so it is not an easy unit to debrick if somethings goes wrong...if you haven't had problems with the default MAC address...then don't attempt this.

A temporary solution to change the MAC address is to use

nvram set et0macaddr=00:11:22:33:44:55
nvram commit





You may want a Serial level converter cable for this process....it helps to see what is going on with the CFE.

1 - Extract your CFE from the router by typing

http://<IP addrss>/backup/cfe.bin

Using a Hex Editor changed both the et0macaddr and et1macaddr in the CFE to the unit's MAC located on the sticker (yes...both et0 and et1 are the same)

2 - using the WinSCP utility (must have ssh enabled) to put that new cfe.bin file in the /tmp directory of the router and issue the following commands in a telnet session

mtd unlock cfe
mtd write /tmp/cfe.bin cfe

This overwrites your CFE with the edits you just made....now power cycle the router and let it boot up.

3 - Start a dd-wrt flash from the router's web gui...but unplug it in the middle of the flash to corrupt the flash....unless the flash is corrupt...the CFE won't accept the original .img file in the next step.


4 - Use tftp utility to flash an original .img file from Netgear to reflash the router. The CFE will only accept a .img file...(you MUST load the NG firmware to recreate the "special" partition that contains the MAC address)

NG IP is 192.168.1.1 and admin/password to get in


5 - Once the NG firmware is loaded you can use the Firmware update tab in the NG web gui to load a special .img build of 11580_mini firmware (provided by simri in this post.... http://www.dd-wrt.com/phpBB2/viewtopic.php?p=260792#260792 )...also provided below.

6 - Once that is loaded you can then upgrade to any build of dd-wrt you wish (except Mega)


This is the method I used to completely revived my new toy...Please if you attempt this process and you find an error or find an alternate method...please inform.

A big thanx goes to Simri, sparkie, Tornado and Eko...I learned a lot from you guys in the various threads that I read through.

Also a Special Thanx to jalanmac for the donation of the router.

redhawk



Clipboard01.jpg
 Description:
Notice MAC is not the old 00:C0:02....value.
 Filesize:  46.86 KB
 Viewed:  23047 Time(s)

Clipboard01.jpg



wnr834bv1_1_0_4_2_for_na.zip
 Description:
Netgear firmware for WNR834bV1 image file (.img)

Download
 Filename:  wnr834bv1_1_0_4_2_for_na.zip
 Filesize:  3.07 MB
 Downloaded:  4645 Time(s)


dd-wrt.v24-11580_NEWD_mini_wnr834bv1.zip
 Description:
dd-wrt wnr834bV1 image file (by Simri)...build is 11580_mini

Download
 Filename:  dd-wrt.v24-11580_NEWD_mini_wnr834bv1.zip
 Filesize:  2.89 MB
 Downloaded:  8981 Time(s)


_________________
The only stupid question....is the unasked one.


Last edited by redhawk0 on Sat Oct 31, 2009 13:58; edited 1 time in total
Sponsor
KeithB
DD-WRT User


Joined: 22 Jun 2008
Posts: 489

PostPosted: Mon Mar 23, 2009 1:17    Post subject: Reply with quote
So, you used a serial cable to read the console output and determine what caused the brick?
_________________
2x Asus RT-AC68U
redhawk0
DD-WRT Guru


Joined: 04 Jan 2007
Posts: 11563
Location: Wherever the wind blows- North America

PostPosted: Mon Mar 23, 2009 2:07    Post subject: Reply with quote
KeithB wrote:
So, you used a serial cable to read the console output and determine what caused the brick?


Actually...no - I never determined where the problem was...I put the serial console on but the only thing it told me was that the firmware was corrupt. The CFE then halted the boot process.

I just did an "nvram erase". from then on it booted up into the Talisman 1.3.1 build.

redhawk

_________________
The only stupid question....is the unasked one.
Donny
DD-WRT Guru


Joined: 13 Nov 2008
Posts: 5266
Location: CENTRAL Midnowhere

PostPosted: Mon Mar 23, 2009 2:19    Post subject: Reply with quote
Impressive work, as always, Red.
_________________
Warning: I'm "out of my element!"
http://www.youtube.com/watch?v=MjYJ7zZ9BRw&NR=1

Peacock Thread Sticky- Just read it! (Anyone using SP1 will be taken out back and shot)
http://www.dd-wrt.com/phpBB2/viewtopic.php?t=51486
barryware
DD-WRT Guru


Joined: 26 Jan 2008
Posts: 13049
Location: Behind The Reset Button

PostPosted: Tue Oct 27, 2009 2:54    Post subject: Re: WNR834bV1 (V1 only) revive router's MAC address. Reply with quote
redhawk0 wrote:

1 - Extract your CFE from the router by typing

http://<IP addrss>/backup/cfe.bin

Using a Hex Editor changed both the et0macaddr and et1macaddr in the CFE to the unit's MAC located on the sticker (yes...both et0 and et1 are the same)

2 - using the WinSCP utility (must have ssh enabled) to put that new cfe.bin file in the /tmp directory of the router and issue the following commands in a telnet session

mtd unlock cfe
mtd write -f /tmp/cfe.bin cfe

This overwrites your CFE with the edits you just made....now power cycle the router and let it boot up.


@ Redhawk.... I am fixing this device for someone I work with. Had to replace three puffy caps and the unit fired up.. I should'a left well enough alone.

I plowed dd-wrt on the device and the mac's are messed up (duh!)

I extracted the cfe with dd-wrt running. It is 128K, please confirm.

I edited the cfe, et0 & et1 with the correct macs. I copied the cfe to the /tmp folder of the router using winSCP. For fun, I closed the session and re-opened it. The cfe.bin is still there Shocked

My question is your syntax.. I only got one shot at this I expect and I want to make sure I have either spaces or no spaces in the command.

an underscore " _ " will be a space ok?

your command: "mtd write -f /tmp/cfe.bin cfe"...

is: mtd write_-f_/tmp/cfe.bin_cfe

Correct? see the underscores that are spaces.. three of'em...

Thanks for the help..

_________________
[Moderator Deleted] Shocked
redhawk0
DD-WRT Guru


Joined: 04 Jan 2007
Posts: 11563
Location: Wherever the wind blows- North America

PostPosted: Tue Oct 27, 2009 10:18    Post subject: Reply with quote
Correct....but I was told by Tornado (or BS) that you don't need the -f

mtd write /tmp/cfe.bin cfe (only 2 spaces now)

redhawk

_________________
The only stupid question....is the unasked one.
barryware
DD-WRT Guru


Joined: 26 Jan 2008
Posts: 13049
Location: Behind The Reset Button

PostPosted: Tue Oct 27, 2009 12:37    Post subject: Reply with quote
redhawk0 wrote:
Correct....but I was told by Tornado (or BS) that you don't need the -f

mtd write /tmp/cfe.bin cfe (only 2 spaces now)

redhawk


Thanks Red..

What does the -f do?

Can this procedure be used to flash a cfe on any linux box? There is some buzz in the 610 thread about replacing the .12 cfe with a .16. I don't quite understand why there is hesitation to use jtag. Some want to use serial.. That's ok just baffles me. True the 610 has one of those micro headers which is a PITA

_________________
[Moderator Deleted] Shocked
barryware
DD-WRT Guru


Joined: 26 Jan 2008
Posts: 13049
Location: Behind The Reset Button

PostPosted: Tue Oct 27, 2009 14:10    Post subject: Reply with quote
I got another question for anybody with experience on one of these units...

The stock .img file, you can rename it to a zip file, then extract the image which is a bin. This file is supposed to contain both the cfe and the firmware image. Looking at it, I believe it does.

Then you can use a hex editor and delete all data from the beginning of the file up to the header of the firmware image which is HDR0.

Then save the file. Now you have the stock netgear firmware that is a bin.

Has anybody tried flashing this bin through the dd-wrt gui to revert?

Trying to flash the raw .img file, dd-wrt won't take it. Says it has to be a bin. Renaming the .img to a .bin, blows out with a flash failed.

I'm a little uncomfortable pulling out the power plug in the middle of a flash to corrupt the kernel so the netgear will allow a flash of an .img file via tftp.

I've done all the steps in regards to changing the macs in the cfe and extracting the bin from the img and editing it from the 1st byte up to HDR0. Not really ready to pull the trigger flashing it via dd-wrt gui. I can find no information about this device except what is in the wiki, and Red's post(s).

Any thoughts or experience with this idea?

_________________
[Moderator Deleted] Shocked
redhawk0
DD-WRT Guru


Joined: 04 Jan 2007
Posts: 11563
Location: Wherever the wind blows- North America

PostPosted: Tue Oct 27, 2009 19:20    Post subject: Reply with quote
barryware wrote:

Then you can use a hex editor and delete all data from the beginning of the file up to the header of the firmware image which is HDR0.

Then save the file. Now you have the stock netgear firmware that is a bin.

Has anybody tried flashing this bin through the dd-wrt gui to revert?


Yes...it works...but you must use the netgear WW file...not the NA file....here is a revert file. Flash it from the web gui.

redhawk



WNR834B_revert-1.0.4.2ww.bin
 Description:
For the V1 ONLY

Download
 Filename:  WNR834B_revert-1.0.4.2ww.bin
 Filesize:  3.88 MB
 Downloaded:  1292 Time(s)


_________________
The only stupid question....is the unasked one.
barryware
DD-WRT Guru


Joined: 26 Jan 2008
Posts: 13049
Location: Behind The Reset Button

PostPosted: Tue Oct 27, 2009 19:40    Post subject: Reply with quote
Thanks.. 1st.. what does -f do?

2nd.. I got the yellow internet light figured out.. It seems that with this device, yellow (amber) means the port is operating @ 10mbs, green means 100mbs

BTW.. Thanks for testing.

_________________
[Moderator Deleted] Shocked
redhawk0
DD-WRT Guru


Joined: 04 Jan 2007
Posts: 11563
Location: Wherever the wind blows- North America

PostPosted: Tue Oct 27, 2009 21:34    Post subject: Reply with quote
barryware wrote:
Thanks.. 1st.. what does -f do?

2nd.. I got the yellow internet light figured out.. It seems that with this device, yellow (amber) means the port is operating @ 10mbs, green means 100mbs

BTW.. Thanks for testing.


-f forces the write...I believe the problem comes in if there is an error...it continues to write anyway. It was recommended to me that it NOT be used.

Good find on the Yellow light....that light actually can be any of 3 colors....Green, Yellow, Amber.

redhawk

_________________
The only stupid question....is the unasked one.
barryware
DD-WRT Guru


Joined: 26 Jan 2008
Posts: 13049
Location: Behind The Reset Button

PostPosted: Wed Oct 28, 2009 0:03    Post subject: Reply with quote
redhawk0 wrote:
barryware wrote:
Thanks.. 1st.. what does -f do?

2nd.. I got the yellow internet light figured out.. It seems that with this device, yellow (amber) means the port is operating @ 10mbs, green means 100mbs

BTW.. Thanks for testing.


-f forces the write...I believe the problem comes in if there is an error...it continues to write anyway. It was recommended to me that it NOT be used.

Good find on the Yellow light....that light actually can be any of 3 colors....Green, Yellow, Amber.

redhawk


Thanks for the info...

I was wrong about the light. I got the cfe flashed, the macs straightened out, etc... Running dd-wrt, the internet light is amber, stock firmware it is green.

Running dd-wrt with the amber light, there are no ill effects. I have a wan connection, the light flickers with activity but it is amber. As said, stock firmware it is green.

I have flashed back and forth a few times to make sure.. Yes.. hard resets and so on. On this box, dd-wrt has an amber light, stock it is green..

No big deal.. I am returning this box to the owner with the stock firmware. I would rather see the devs fix up the problem I have with wl1 on the 610 than worry about a gpio with a 3 year old router..

BTW... I went searching (bing & google) for MTD, -MTD, MTD linux, linux commands, etc...

I have a gazilloin (that is a lot of zero's) pages of linux commands.. never found mtd. There is mt (mount)..

In screwing up the syntax on a command, a help screen popped up (thank goodness). Where does one find this information?

Over the months, with help from the forum, I figured out how to flash a kernel via serial. Again, with additional help from the forum, I have now flashed a cfe via telnet. Where can I find this info so I can be the "helper" as opposed to the "helpee"? I am very greatful for the help, support, and talent on this forum. Without hesitation, I can say that this is the best technical forum in regards to this project, in the world!

_________________
[Moderator Deleted] Shocked
redhawk0
DD-WRT Guru


Joined: 04 Jan 2007
Posts: 11563
Location: Wherever the wind blows- North America

PostPosted: Wed Oct 28, 2009 12:10    Post subject: Reply with quote
barryware wrote:
I was wrong about the light. I got the cfe flashed, the macs straightened out, etc... Running dd-wrt, the internet light is amber, stock firmware it is green.

Running dd-wrt with the amber light, there are no ill effects. I have a wan connection, the light flickers with activity but it is amber. As said, stock firmware it is green.

I have flashed back and forth a few times to make sure.. Yes.. hard resets and so on. On this box, dd-wrt has an amber light, stock it is green..


Something still isn't right...I have the exact same model WNR834b (no designator...it's a V1...no JTAG)...but with stock or dd-wrt FW, my power LED is Green when all is working correctly.

there is some (although limited) info on the web for mtd command...I did a google search and found some info...but you're correct...the info seems to be very illusive.

redhawk

_________________
The only stupid question....is the unasked one.
barryware
DD-WRT Guru


Joined: 26 Jan 2008
Posts: 13049
Location: Behind The Reset Button

PostPosted: Wed Oct 28, 2009 12:53    Post subject: Reply with quote
redhawk0 wrote:

Something still isn't right...I have the exact same model WNR834b (no designator...it's a V1...no JTAG)...but with stock or dd-wrt FW, my power LED is Green when all is working correctly.

redhawk


my power light is green after it boots. It is the internet (wan port) led that is amber (with dd-wrt). Possibly with dd-wrt it changes color based on connection type???

I typically set the wan connection type as auto-dhcp when testing and just plug it into my network which is operating on a subnet different than the standard 192.168.1.x

_________________
[Moderator Deleted] Shocked
redhawk0
DD-WRT Guru


Joined: 04 Jan 2007
Posts: 11563
Location: Wherever the wind blows- North America

PostPosted: Wed Oct 28, 2009 13:33    Post subject: Reply with quote
barryware wrote:
redhawk0 wrote:

Something still isn't right...I have the exact same model WNR834b (no designator...it's a V1...no JTAG)...but with stock or dd-wrt FW, my power LED is Green when all is working correctly.

redhawk


my power light is green after it boots. It is the internet (wan port) led that is amber (with dd-wrt). Possibly with dd-wrt it changes color based on connection type???

I typically set the wan connection type as auto-dhcp when testing and just plug it into my network which is operating on a subnet different than the standard 192.168.1.x


Ah...gotcha...now I understand...My WAN LED never lights up...I have mine in RB mode (WAN=Disabled)

That would explain it. I thought you were refering to the Power LED...that one is Tri-Color...the WAN LED is most likely Bi-color.

redhawk

_________________
The only stupid question....is the unasked one.
Goto page 1, 2  Next Display posts from previous:    Page 1 of 2
Post new topic   Reply to topic    DD-WRT Forum Index -> Broadcom SoC based Hardware All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum