Yes, i figured it out. I was just browsing the url from first post and found the ipk i need it.

But got another problem. When i install luci-app-adblock, the internet is not accessible. Connection to router is working but no internet connection, maybe something with firewall problem.

And another one. On stock firmware, wifi is full speed (all 40mbps from modem). But on your build it is just half of 54mbps, even on 5ghz and 40 mhz channel width.

Any tips or solutions? I like this build, so i want to use it.

This build is made from trunk with default wireless drivers. If there's an issue, create a ticket.

(Last edited by arokh on 19 Mar 2016, 14:15)

@arokh

I just flashed your latest build 49005 onto my WNDR3700V1 and it's ZINGING. GREAT JOB, great improvements from the older version I was running... I first flashed your build onto my router about a year and a half ago and had that going solid the whole time...

If anyone is wondering - the WNDR3700V1 can handle the image but you can't try to add too much to it, no extra packages or nano editor etc... You fill up your root really quickly. I'm running my root from a USB plugged in the back so now I have all the room I would ever need for a router OS.

I enabled jumbo frames on the switch settings and I'm getting massive throughput increases on file transfers from my media server. Absolutely tearing the max of 1Gbps... The wifi is really strong and stable, no issues. Streaming 8-10G movies wirelessly to TV's etc...

I'm only sad for 1 reason. I can't put this on my other routers! I have a WNDR4000 and WNDR3400... Well I suppose I can if I 'build' it as per your instructions... But would those routers handle it? The WNDR4000 is VERY similar to the 3700 so I would think so... WNDR3400 not so much.

Thank you again for all the hard work and continued building. Your build is absolutely amazing.

PPS> I'm using your built in ad-blocking and it's doing wonders. Back in the day on the older builds it was a little slower/buggy but now it's great.

I experience extreme slowlyness on my 1900acs(latest build) after some time(like one week) after router restart,everything is OK.

I have everything started except miniupnp and tor.

Anx tought's?

Standard behavior of the 1900AC/S and 1200AC builds, they are not completely stable yet.

@arokh
Do you use bendavid patches (https://github.com/bendavid/openwrt/commits/c2600tmp3) in your Tp-Link AC2600 builds?

@sirrush

Thanks for the feedback Unfortunately I have no plans to add other routers atm, it already takes enough time to build for the current set.

@starki

Yes indeed I do

@bill1228 regarding certificates for HTTPS, have a look at https://letsencrypt.org/, a new free Certificate Authority

(Last edited by luisd on 20 Mar 2016, 17:39)

@luisd
Thanks for the info. In my small home residence network I don't see a big need for https and certificates. If I have a man-in-the middle I probably have bigger issues. Good to know that you can get a certificate free just in case.

--bill

Two questions...
1. How do you run the root from a USB drive? I'd like to have more room to add a few packages
2. How do you enable the jumbo frames?

Thanks

khm, i did not see that is coming:-)
So, solution is to schedule restart every two nights?

what's causing this behaviour? something in kernel?

That is a perfectly fine solution indeed. The problems have been talked about a lot in the WRT1900AC thread:
https://forum.openwrt.org/viewtopic.php?id=50173

Kernel problems and Wi-Fi driver problems are blamed, but what it is exactly is still somewhat unclear. If you want more discussion about it, I would suggest to do it there as it is off-topic here.

(Last edited by johan81 on 21 Mar 2016, 14:49)

@arokh

What build should I use for a Netgear WNDR3700v3?

I see a V1, a V2 and V4, but not a V3.

http://luci.subsignal.org/~trondah/wndr … ory-NA.img

http://luci.subsignal.org/~trondah/wndr … actory.img

http://luci.subsignal.org/~trondah/wndr … actory.img

http://luci.subsignal.org/~trondah/wndr … actory.img

????

Thanks!

Luis

Oh shoot, I guess I am screwed ...

WNDR3700v3 uses a Broadcom SOC, not Atheros.

Damn netgear

How well or badly is the V3 supported?

Thanks,

Luis

@arokh :

I believe that teaching a man to fish will feed him for a lifetime. Could you show me the steps to building an image for my router, WR841N v10 with a few extras ?

I have done the first step, which is downloading your source tarball. I can't find a profile for my router, though. I primarily want it with the following options :

• All frequencies and channels at full power
  DNSCrypt
  DNSSec
  Dynamic DNS support
  LuCI web interface
  NO  IPv6 support
  NO kernel debugging
  NO USB support

I would be deeply grateful if you show me the steps and point me towards the right resources. On a previous model of the same router, WR841N v8, I was relying on builds made by 'mk13139' [ https://forum.openwrt.org/viewtopic.php?id=47382 ] and 'amq' [ https://forum.openwrt.org/viewtopic.php?id=54604 ] before they stopped getting updated.

Tridon

all channels available at full power is not available in any regulatory domain, you need to tell it what country you are in and stick with those limits.

What you can do is to find your router in the one of the image trees (nightly or cc release), grab the config file from there, put it in your compile directory and do a make oldconfig, then do a make to create an image. make sure that image works on your device (note it will not have all the software configured)

This is a sanity check to make sure that you can compile an image that boots on your router.

Then grab the config from this image (should be in the release directories), put it on your build system and do make oldconfig. Then you will need to do a make menuconfig and go in and change the settings so it works on your router. This may be as trivial as selecting a different target, or it may be a lot of work.

look at the differences between the two config files and when you start to understand what they mean, you will be a master at it :-)

You can ask people for help figuring out what's different, but you really should do that learning on a different thread to keep the noise level down here.

When enabling pushbullet and adding in my api key OpenVPN on android comes back with authentication failed. If I set option push back to 0 it starts working again. I've double checked my api key so I don't think that's the issue. It has a period in it, do I need to escape that or something? On r49005

EDIT: Also, I've been using your builds for a long long time. I appreciate everything you've put into this!

(Last edited by pinion on 22 Mar 2016, 00:01)

@Tridon

Haha wise words Since you caught me in a good mood let's make a fisherman out of you then:

Your router has a MIPS cpu and is supported by the ar71xx target, so I suggest using the wndr3700 profile as a base. Looks like you only have 4MB of flash though, I'm not really sure how much you can fit on that these days. Start with the 8MB profile and remove what you don't need.

$ cp profiles/wndr3700_8MB .config && make menuconfig && make V=99

Y means build into the image, M means build as a package.

@pinion

I'm not sure that the push setting should be able to affect OpenVPN authentication. Did you modify the OpenVPN config in any way? Try a clean flash.

Push is done through the client_connect parameter in /etc/config/openvpn, it runs /usr/bin/push.sh which does the rest. The script is run _after_ authentication...

which adblock package is used in this build?
I think its not working.

Tue Mar 22 19:24:32 2016 daemon.info dnsmasq[5586]: exiting on receipt of SIGTERM
Tue Mar 22 19:24:36 2016 daemon.info dnsmasq[5658]: started, version 2.75 cachesize 5000
Tue Mar 22 19:24:36 2016 daemon.info dnsmasq[5658]: compile time options: IPv6 GNU-getopt no-DBus no-i18n no-IDN DHCP no-DHCPv6 no-Lua TFTP no-conntrack ipset no-auth DNSSEC loop-detect inotify
Tue Mar 22 19:24:36 2016 daemon.info dnsmasq[5658]: DNSSEC validation enabled
Tue Mar 22 19:24:36 2016 daemon.info dnsmasq-dhcp[5658]: DHCP, IP range 192.168.3.100 -- 192.168.3.249, lease time 12h
Tue Mar 22 19:24:36 2016 daemon.info dnsmasq[5658]: using nameserver 8.8.8.8#53
Tue Mar 22 19:24:36 2016 daemon.info dnsmasq[5658]: using local addresses only for domain lan
Tue Mar 22 19:24:36 2016 daemon.info dnsmasq[5658]: read /etc/hosts - 4 addresses
Tue Mar 22 19:24:36 2016 daemon.info dnsmasq[5658]: read /tmp/hosts/odhcpd - 2 addresses
Tue Mar 22 19:24:36 2016 daemon.info dnsmasq[5658]: read /tmp/hosts/dhcp - 2 addresses
Tue Mar 22 19:24:37 2016 daemon.info dnsmasq[5658]: read /tmp/hosts/hosts.bad - 66784 addresses
Tue Mar 22 19:24:37 2016 daemon.info dnsmasq-dhcp[5658]: read /etc/ethers - 0 addresses

Tue Mar 22 19:24:37 2016 daemon.info dnsmasq[5658]: read /tmp/hosts/hosts.bad - 66784 addresses

It's working.

It's not a package, it's a simple script made by bole5. Have a look at /etc/init.d/adblock.

@arokh Any guidance/pointers/ideas on how to get a good OpenWrt build for WNDR3700v3?

Or is it going to be frustrating?

Thanks!

See my instructions above and adapt to your needs. Building is documented in the wiki as well.

Hope other manufacturers don't follow TP-Link's lead and lock down their routers so that 3rd party firmware cannot be installed. Announcement effects routers sold in the US. See this link for the FAQ talking about this. Was afraid this would happen when the FCC was setting out their rules for wireless routers.

http://www.tp-link.us/faq-1058.html

--bill

You can install dd-wrt, then the remove dd-wrt. that will downgrade you to a firmware version that will allow unsigned firmwares to be flashed.

Wndrmacv2, cable connection, aes256cbc, sha256, no lzo, minimal firewall rules and running services.
Speed on 15.05 stable with no overclock - 12-13Mbit
Speed on latest Arokh build r49005 at 800mhz - 8-9Mbit
Is it okay?

OpenSSL 1.0.2g  1 Mar 2016
blowfish cbc     14189.97k    15587.81k    15974.91k    15990.84k    16057.96k
aes-128 cbc       9119.79k     9945.17k    10167.65k    10231.78k    10209.96k
aes-256 cbc       7133.35k     7609.92k     7732.74k     7770.76k     7770.07k
sha256            2291.09k     5660.63k    10225.70k    12974.32k    14113.96k
OpenSSL 1.0.2f  28 Jan 2016
blowfish cbc      9777.22k    10729.63k    10906.20k    11084.89k    10942.76k
aes-128 cbc       8296.84k     9155.11k     9408.30k     9358.47k     9441.63k
aes-256 cbc       6498.46k     6996.84k     7158.42k     7124.51k     7195.08k
sha256            2453.92k     6310.44k    12274.68k    16049.96k    17890.09k

And one more question, 5ghz wifi is limited to 50mw?