Joined: 16 Nov 2015 Posts: 6445 Location: UK, London, just across the river..
Posted: Thu Jan 19, 2017 13:36 Post subject:
decryption the only one thing that im aware of
DNSCrypt is not working without NTP so turn NTP ON if this is the reason otherwise no idea... _________________ Atheros
TP-Link WR740Nv1 ---DD-WRT 55630 WAP
TP-Link WR1043NDv2 -DD-WRT 55723 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55779 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55819 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55779 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
I think you have to reboot for the added functions to be available
Then have your DNSMasq additions/changes input and choose a resolver and maybe have to enable the recursive DNS, but I think that would depend on whether DNSSEC is supported on the site as well.
I haven't actually done it yet because I don't think my VPN service supports it and I'm still getting a handle on the scripting changes with and without DNSSEC support too.
DNScrypt needs to sync time before it will start, so ntp needs an IP address pointer that will work before the rest of the system can function.
Router: 2x R7000
Firmware: 31135M -> 31160M
Kernel: Linux 4.4.42 #216 SMP -> Linux 4.4.43 #223 SMP Wed Jan 18 20:22:16 CET 2017 armv7l
Status: Both Working
Reset: Erase NVRAM & Manual Configure
Errors: None so far
#1 R7000 (WAN)
- Custom Startup Script for Route Tables & OpenVPN Client
- WiFi Disabled
- WAN port -> Cable Modem
- DNSCrpyt via GUI
- DNSSEC via GUI (THX Kong for the Tip!)
- NTP with Static IP
- QoS
- DDNS
- 6 BRs/VLANS
- SSH (WAN Access)
- WAN Traffic Disabled
- USB Storage
- YaMON 3.1
#2 R7000 (WiFi)
- OpenVPN Client via GUI
- 2.4Ghz Radio with 3 SSIDs (BW 40Mhz)
- 5Ghz Radio with 2 SSIDs (BW 80Mhz)
- WAN port -> Vlan Switch
- SPI Firewall Disabled
- DNSSEC via GUI
- NTP with Static IP
- 5 BRs/VLANS
- SSH (local only)
- WAN Traffic Disabled
Over 11 Hours uptime, all working fine so far. Thanks Kong & BrainSlayer for your QUICK upgrades/fixes and hard work!
UpDate after a day, this Build fixed...
This build has fixed OpenVPN (GUI version) reconnection on #2 R7000 before this build any manual reboot on #1 R7000 would require #2 R7000 to be rebooted to get OpenVPN operational.
Other changes made are setting NTP back to a Static IP, this rendered faster start-up of services like DNSCrypt & OpenVPN that need to verify the dates certificates. Tied Server NTP Name with Server=/ntp.org/8.8.8.8 but it wasn't as fast as a Static IP in the NTP Client GUI.
Labeling this issue as my own script errors...
I did run into a problem after a day of uptime where #1 R7000's custom route table would get messed-up. I have been correcting my scritps ending with '.wanup' that caused multiple runs of the scripts. Now, created one large '.startup' script for Route Tables and OpenVPN Client. I'll see see after a couple of days if it's fixed, but everything is running fine so far. _________________ Home Network on Telus 1Gb PureFibre - 10GbE Copper Backbone
2x R7800 - Gateway & WiFi & 3xWireGuard - DDWRT r53562 Std k4.9
Off Site 1
R7000 - Gateway & WiFi & WireGuard - DDWRT r54517 Std
E3000 - Station Bridge - DDWRT r49626 Mega K4.4
Off Site 2
R7000 - Gateway & WiFi - DDWRT r54517 Std
E2000 - Wired ISP IPTV PVR Blocker - DDWRT r35531
Router: Netgear EX6200
Firmware: DD-WRT v3.0-r31160M mini (01/18/17)
Kernel: Linux 4.4.43 #222 SMP Wed Jan 18 20:15:47 CET 2017 armv7l
Status: Working
Reset: No
Previous: no previous - first flash of DD-WRT
Services: OpenVPN client
Errors: when enabling "Encrypt DNS" in the DNSMasq options, the drop down box for DNS Crypt Resolver is empty. No options can be selected. Is this normal? How do I get DNS Crypt to work? Here's a screenshot:
On the EX6200 there is not enough space for it. Just forgot to mask out the options on targets that do not have space for it. _________________ KONG PB's: http://www.desipro.de/ddwrt/
KONG Info: http://tips.desipro.de/
Flashed on a new R8000, and did reset before and after.
After setting client bridge on the 2.4 Ghz network, router rebooted and has been unable to boot since.
It doesn't respond to ping or telnet, and seems stuck in a repeated sequence of leds flashing. 30/30/30 reset did not do anything either. Currently looking into the serial cables I've seen mentioned around here.
Any thoughts on whether client bridge is expected to work? And other thoughts on recovery options?
Thanks
I can confirm, that bridge mode is broken for the R8000. It was working at around 28000. Could come from DHD driver update, not sure if it is fixable without a fixed blob for DHD. Not sure if it also affects the R8500, since the R8500 has a different blob. _________________ KONG PB's: http://www.desipro.de/ddwrt/
KONG Info: http://tips.desipro.de/
Posted: Fri Jan 20, 2017 7:42 Post subject: Asus RT-AC68U
Router: Asus RT-AC68U
Firmware: DD-WRT v3.0-r31160M kongac (01/18/17)
Previous: DD-WRT v3.0-r31135M kongac (01/14/17)
Kernel: Linux 4.4.43 #223 SMP Wed Jan 18 20:22:16 CET 2017 armv7l
Previous: Linux 4.4.42 #216 SMP Sat Jan 14 01:08:00 CET 2017 armv7l
Status: OK
Reset: yes
Errors: The static DHCP feature seems to not work in this firmware version r31160M; it worked OK in r31135M. The error is DHCP does not assign my predetermined static IP addresses; it assigns dynamic addresses. I would appreciate any help.
@RainGater posted (Sun Jan 22, 2017 3:39 pm):
Static DHCP works fine as @eywong mentioned that it wasn't working... It works fine for me.
Last edited by eywong on Tue Jan 24, 2017 16:54; edited 2 times in total
Netgear R7000 on latest build upgraded via ddup from r31100 no reset. I have dnsomatic via inadyn custom settings and on reboot is unable to register new ip (invalid remote ip error) but it succeeds if I manually click on apply settings button. I'm connected through pppoe.
Router: R8000
Firmware:31160M
Kernel: Linux 4.4.43 #223 SMP Wed Jan 18 20:22:16 CET 2017 armv7l
Status: Working
Reset: Y
Errors: Wireless appears to drop occasionally and comes back
Using mostly default and recommended settings since I am fairly new to DD-WRT and flashing routers.
Router: Netgear R7000
Firmware: DD-WRT v3.0-r31160M kongac (01/18/17)
Kernel: Linux 4.4.43 #223 SMP Wed Jan 18 20:22:16 CET 2017 armv7l
Status: Working
Reset: No
Previous: ddup'd from 31100
Errors: No
skipped the build before this because some R7000 users were reporting bricked devices, but this seems good
CPU Temperature : CPU 60.8 °C / WL0 47.5 °C / WL1 52.9 °C
Last edited by ciscodlink on Fri Jan 20, 2017 17:29; edited 1 time in total