New Firmware?

jackiechun · 2017-06-20T23:29:45.000Z

@nikor: the issue might be because 2.26 in GL.iNet download center is listed as openwrt-ar300m-nand-2.25.tar instead of openwrt-ar300m-nand-2.26.tar

Try downloading GL.iNet download center and manually upload it on the flash firmware page.

nikor · 2017-06-20T23:50:08.000Z

Thanx jackiechun, it works

glitch · 2017-06-21T02:37:28.000Z

OK, downloaded and set the “new” new 2.26 version and mostly fine (as with 2.257).
However:

I had to login via LAN and reset my wifi password (previously defaulted to UI password, I believe).
Thanks for adding the option to disable UPnP (perhaps it should be diasbaled by default).
I would still like to default wifi zone to be anything other than the US (eg. 00) as my main router is on channel 12.
My repeater setting in GL UI shows “fixed by repeater” (channel 6) even though it is actually channel 12. Also, logging into Luci, it confirms this conflict (router on Ch.12 / operating frequency Ch.6).
I would request a “don’t show this message again” checkbox when accessing Luci.

alzhao · 2017-06-22T17:57:49.000Z

I am not sure why this happens. You surely should be able to setup using wifi
1. We will fix this later.
Because it is only one radio, you cannot change ap channel when using repeater.
Now it is just a very simple confirm box. Maybe you can just use your middle mouse key to bypass this message.

nikor · 2017-06-22T18:12:07.000Z

Hi Alzhao,

I’m using AR300M as WISP mode repeater, so I should not see devices outside my subnet in addition to the master router (192.168.1.1.). Why is this happening here as you can see from the attached photo?

Thanx in advance…

P.S.: Obviously WAN access disable, UpnP disabled

alzhao · 2017-06-22T18:21:00.000Z

I thought I fixed this in v2.26

this list all devices it tries to communicate. So there are some devices in the WAN is listed but doesn’t mean these devices is in the LAN.

nikor · 2017-06-22T18:27:51.000Z

This is certainly the case, also because I have activated the MAC address filter, among other things. However, it should be corrected for a cleaner job

Best regards

axebro · 2017-06-27T10:55:30.000Z

sorry alfie … this ones no good. I see lots of leaking w. the VPN going on. I connect to VPN, and go to ipchicken.com or dnsleaktest.com and it shows my isp ip address, not the vpn. In this case I was using my cell phone as a hotspot to connect the AR300M to. I downloaded the .tar file from the link posted and uploaded manually, and removed the checkbox to retain settings. Even tried a full reset, just incase something stuck around.

Also, in custom DNS, i put my VPN server’s internal DNS address (192.168.x.x). However, when I hit apply on that the tunnel resets. And now that it can’t reach the dns, I get host not found error on the vpn. If i slide the switch back to the right, the vpn doesn’t connect.

I think 2.24 was the most table version, for me. 2.25 had a lot of issues, and 2.26 seems more of a beta .

alzhao · 2017-06-27T15:40:19.000Z

@AxeBro,

For the switch button, if you don’t set up the function in the main UI, it should just have no function. If you bind it with openvpn, when moved to the right, it will disable openvpn. You cannot even start openvpn when the switch is on the right side.

For DNS leaks, I think it is a problem of all versions. If you set up DNS server, try not to use the internal DNS server. Because if you set that, before connecting to the VPN server, the DNS cannot be resolved at all. So cannot connected. The ovpn files should contains IP address rather than domain names.

Your VPN service provider should have a public DNS server IP and you need to use that.

axebro · 2017-06-27T22:34:23.000Z

Alfie - i don’t think I had this issue with the 2.24 version. I might go back to that despite the CSRF exploit.

alzhao · 2017-06-29T15:54:37.000Z

@AxeBro, I still don’t suggest you to use v2.24 as the security issue.

glitch · 2017-07-07T14:39:43.000Z

2.261:
Are we going to get a tutorial (or at least an explanation) for:
ShadowSocks
DNS-Forwarder
China DNS

Regards,
Glitch

axebro · 2017-07-07T18:54:34.000Z

@Glitch

looks like sometihng related to bypassing the greatfirewall.

github.com

aa65535/openwrt-dns-forwarder/blob/master/README.md

DNS-Forwarder for OpenWrt
===

 [![Download][B]][2]

���
---

 ����Ŀ�� [DNS-Forwarder][1] �� OpenWrt �ϵ���ֲ  

����
---

 - �� OpenWrt �� [SDK][S] ����  

   ```bash
   # �� ar71xx ƽ̨Ϊ��
   tar xjf OpenWrt-SDK-ar71xx-for-linux-x86_64-gcc-4.8-linaro_uClibc-0.9.33.2.tar.bz2
   cd OpenWrt-SDK-ar71xx-*
   # ��ȡ Makefile

This file has been truncated. show original

GitHub

GitHub - aa65535/openwrt-chinadns: ChinaDNS for OpenWrt/LEDE

ChinaDNS for OpenWrt/LEDE. Contribute to aa65535/openwrt-chinadns development by creating an account on GitHub.

GitHub

Use DNS Forwarder · aa65535/openwrt-chinadns Wiki

ChinaDNS for OpenWrt/LEDE. Contribute to aa65535/openwrt-chinadns development by creating an account on GitHub.

If you use Chrome, just right click on the page and hit translate.

alzhao · 2017-07-07T19:45:50.000Z

let’s forget about the greatfirewall thing.

Shadowsocks is a socket proxy. You can start a server in your home and start a client in your travel router. It is light weight and faster than openvpn.

We didn’t have time to make the UI. But it is easy to configure.

doki · 2017-10-11T16:14:35.000Z

How to configure the shadowsocks in the current firmware? Sorry im a newbie . I see there’s a plan for Shadowsocks UI in the upcomming firmware. Is there a beta for this? or when will be released? Thanks

joffling · 2018-01-24T02:41:37.000Z

Kedalion, would you be able to clarify how you connected to the eduroam network wirelessly? I have an AR300M

kedalion · 2018-01-25T08:11:35.000Z

@joffling: The main issue was an old (and bugged) version of wpad. Currently, I have version 2016-01-15-2 and that works.

As for the precise way… hmmm… it’s been some time. If I recall correctly, you need to uninstall ‘wpad-mini’ and install ‘wpad’ through the advanced menu under software. As said above, you need at least version 2016-01-15-2 for wpa2 to work properly for eduroam. Then with that you simply enter your credentials and security settings according to the howto for setting up eduroam that your university provides. Usually the version for android or linux tells you the actual settings instead of providing a setup wizard. For me it was WPA2-EAP, TTLS, MSCHAPV2, ‘auto’ for cipher (not sure about this one) for security settings.

Hope that helps you set it up.

joffling · 2018-01-26T08:03:06.000Z

UPDATE: After finding and manually installing the newer wpad ipk file I was able to connect with minimal issue. Thank you for your help!

My only question is why does the broken wpad package come with the newest firmware…

I really appreciate the reply,

I am running the latest firmware (2.264) but I see that my wpad version is 2016-01-15-1 so it looks like that is the issue. When I run opkg it says wpad is up to date (15-1), so how would I go about manually updating to 15-2?

To clarify the issue: Currently I try and connect to the network through LUCI (either by scan or manual input), but once the settings are applied I lose connection to the console. The wifi light turns off or keeps flashing, either way I can’t reconnect even when doing the 3 second reset. So every time I have to factory reset. I can connect to non EAP networks with no issue.

kedalion · 2018-01-26T09:46:28.000Z

So 2016-15-1 does not work? Which version did you install in the end?

joffling · 2018-02-11T06:56:01.000Z

2016-15-1 doesn’t work with WPA-EAP networks. I installed 2016-15-2 and despite a few glitches with the UI it connected with very little effort.