OpenWrt Forum Archive

Topic: davidc502 1900ac 3200acm builds

The content of this topic has been archived between 26 Feb 2018 and 7 May 2018. Unfortunately there are posts – most likely complete pages – missing.

@davidc502

Would you consider installing wpad instead of wpad-mini in your builds? I know it's approx 200k bigger but then you'll get all the goodies such as the 802.11r settings. Anyways. Thanks for a great image!

mariano.silva wrote:

@davidc502, the following are out in the Lede repo:

base-files - 172-r4114-6704410 - 172-r4119-1a16cb9
wpad-mini - 2016-12-19-ad02e79d-2 - 2016-12-19-ad02e79d-3
kmod-mwifiex-sdio - 4.9.20+2017-01-31-1 - 4.9.20+2017-01-31-2
kmod-mac80211 - 4.9.20+2017-01-31-1 - 4.9.20+2017-01-31-2
hostapd-common - 2016-12-19-ad02e79d-2 - 2016-12-19-ad02e79d-3
kmod-cfg80211 - 4.9.20+2017-01-31-1 - 4.9.20+2017-01-31-2

I've tried installing everything "BUT" base-files as instructed by guru @starcms , but it woudln't allow me to given the dependencies.

Collected errors:
 * satisfy_dependencies_for: Cannot satisfy the following dependencies for kmod-mwifiex-sdio:
 *      kernel (= 4.9.20-1-5055dabc4cbff36edffa3c5ec4be734f) *
 * satisfy_dependencies_for: Cannot satisfy the following dependencies for kmod-mac80211:
 *      kernel (= 4.9.20-1-5055dabc4cbff36edffa3c5ec4be734f) *
 * satisfy_dependencies_for: Cannot satisfy the following dependencies for kmod-cfg80211:
 *      kernel (= 4.9.20-1-5055dabc4cbff36edffa3c5ec4be734f) *
xargs: opkg: exited with status 255; aborting

I guess you'll have to do a new build, wouldn't you? sad

For any packages beginning with kmod, you will have to wait for @david to update to a new build.  You can't upgrade them because @david's kernel (even though it is version 4.9.20 like the snapshot repo) is a different configuration (those kmod packages from the snapshot repo need a kernel matching 4.9.20-1-5055dabc4cbff36edffa3c5ec4be734f while @david's is 4.9.20-1-951e34d20fb4d980332c5ff14baa8407).

As someone said, opkg is simply protecting you from breaking your router if those packages were allowed to upgrade.  You'll have this problem with pretty much any package beginning with kmod (kernel mod).  Maybe it would be better to have your repos configured as followed:

src/gz reboot_core https://davidc502sis.dynamic-dns.net/snapshots/r4114/targets/mvebu/generic/packages
src/gz reboot_base https://downloads.lede-project.org/snapshots/packages/arm_cortex-a9_vfpv3/base
src/gz reboot_luci https://downloads.lede-project.org/snapshots/packages/arm_cortex-a9_vfpv3/luci
src/gz reboot_packages https://downloads.lede-project.org/snapshots/packages/arm_cortex-a9_vfpv3/packages
src/gz reboot_routing https://downloads.lede-project.org/snapshots/packages/arm_cortex-a9_vfpv3/routing
src/gz reboot_telephony https://downloads.lede-project.org/snapshots/packages/arm_cortex-a9_vfpv3/telephony
src/gz reboot_darkmatter https://davidc502sis.dynamic-dns.net/snapshots/r4114/packages/arm_cortex-a9_vfpv3/darkmatter

(leave the reboot_core repo pointing to @david's server because that is where the kmod packages come from, and also the darkmatter repo because there is no corresponding repo on the LEDE servers.  base-files also comes from the reboot_core repo, so with this configuration, you wouldn't have to worry about that showing up either)

Hope that helps!  Sorry for not explaining it in more detail earlier!

(Last edited by starcms on 14 May 2017, 14:03)

Uploaded new builds for wrt1900ac V1 based on kernel 4.4.x.

https://davidc502sis.dynamic-dns.net/sn … u/generic/

To switch to darkmatter, be sure to remove the # symbol from the darkmatter distribution feed, and then update lists.

starcms wrote:

@davidc502, the following are out in the Lede repo:

base-files - 172-r4114-6704410 - 172-r4119-1a16cb9
wpad-mini - 2016-12-19-ad02e79d-2 - 2016-12-19-ad02e79d-3
kmod-mwifiex-sdio - 4.9.20+2017-01-31-1 - 4.9.20+2017-01-31-2
kmod-mac80211 - 4.9.20+2017-01-31-1 - 4.9.20+2017-01-31-2
hostapd-common - 2016-12-19-ad02e79d-2 - 2016-12-19-ad02e79d-3
kmod-cfg80211 - 4.9.20+2017-01-31-1 - 4.9.20+2017-01-31-2

For any packages beginning with kmod, you will have to wait for @david to update to a new build.  You can't upgrade them because @david's kernel (even though it is version 4.9.20 like the snapshot repo) is a different configuration (those kmod packages from the snapshot repo need a kernel matching 4.9.20-1-5055dabc4cbff36edffa3c5ec4be734f while @david's is 4.9.20-1-951e34d20fb4d980332c5ff14baa8407).

As someone said, opkg is simply protecting you from breaking your router if those packages were allowed to upgrade.

That was myself saying that! smile I knew the consequences, therefore I was asking for a new build wink

I'll do what you suggested, leaving one of the lines in opkg.conf pointing to David's repo.

Guys, anyone has a good script or step by step instruction set on what you do when you're upgrading your routers whenever @davidc502 releases a new version? I have my own "homegrown" step-by-step (copy stuff over , backup configs, apply image, restore stuff, reinstall packages ) but I'm sure you guys have scripts and better ideas to do so smile

mariano.silva wrote:

Guys, anyone has a good script or step by step instruction set on what you do when you're upgrading your routers whenever @davidc502 releases a new version? I have my own "homegrown" step-by-step (copy stuff over , backup configs, apply image, restore stuff, reinstall packages ) but I'm sure you guys have scripts and better ideas to do so smile

Besides the base build, what other packages are installed?

Redferne wrote:

@davidc502

Would you consider installing wpad instead of wpad-mini in your builds? I know it's approx 200k bigger but then you'll get all the goodies such as the 802.11r settings. Anyways. Thanks for a great image!

That's no problem considering space isn't an issue in the 1900/3200 line.

Done

(Last edited by davidc502 on 15 May 2017, 01:35)

Enabled feed for darkmatter for future builds.  This way users don't have to edit the distribution feed to install.

davidc502 wrote:
mariano.silva wrote:

Guys, anyone has a good script or step by step instruction set on what you do when you're upgrading your routers whenever @davidc502 releases a new version? I have my own "homegrown" step-by-step (copy stuff over , backup configs, apply image, restore stuff, reinstall packages ) but I'm sure you guys have scripts and better ideas to do so smile

Besides the base build, what other packages are installed?

@davidc502 , this is what I have to do after each upgrade :

opkg update; opkg install collectd-mod-conntrack collectd-mod-cpu collectd-mod-df collectd-mod-disk collectd-mod-interface collectd-mod-iptables collectd-mod-iwinfo collectd-mod-load collectd-mod-netlink collectd-mod-network collectd-mod-ping collectd-mod-processes collectd-mod-protocols collectd-mod-rrdtool collectd-mod-sensors collectd-mod-syslog collectd-mod-tcpconns collectd-mod-uptime collectd-mod-wireless

opkg install collectd-mod-logfile kmod-fs-f2fs e2fsprogs cfdisk iftop nano tar darkstat bandwidthd f2fs-tools vsftpd-tls luci-app-wol bmon mailsend mpack htop ssmtp kmod-fs-cifs cifsmount transmission-daemon-openssl transmission-web luci-app-transmission luci-app-uhttpd collectd-mod-cpufreq

EDIT: Looking at your site ""Pre-Installed Packages" it looks like I'm installing some stuff that's unnecessary since it is already in the build... for any reason I put them there at some point in time ( most probably in error ) , like collectd-mod-iwinfo

(Last edited by mariano.silva on 15 May 2017, 01:45)

mariano.silva wrote:
davidc502 wrote:
mariano.silva wrote:

Guys, anyone has a good script or step by step instruction set on what you do when you're upgrading your routers whenever @davidc502 releases a new version? I have my own "homegrown" step-by-step (copy stuff over , backup configs, apply image, restore stuff, reinstall packages ) but I'm sure you guys have scripts and better ideas to do so smile

Besides the base build, what other packages are installed?

@davidc502 , this is what I have to do after each upgrade :

opkg update; opkg install collectd-mod-conntrack collectd-mod-cpu collectd-mod-df collectd-mod-disk collectd-mod-interface collectd-mod-iptables collectd-mod-iwinfo collectd-mod-load collectd-mod-netlink collectd-mod-network collectd-mod-ping collectd-mod-processes collectd-mod-protocols collectd-mod-rrdtool collectd-mod-sensors collectd-mod-syslog collectd-mod-tcpconns collectd-mod-uptime collectd-mod-wireless

opkg install collectd-mod-logfile kmod-fs-f2fs e2fsprogs cfdisk iftop nano tar darkstat bandwidthd f2fs-tools vsftpd-tls luci-app-wol bmon mailsend mpack htop ssmtp kmod-fs-cifs cifsmount transmission-daemon-openssl transmission-web luci-app-transmission luci-app-uhttpd collectd-mod-cpufreq

That's a lot of packages wink   luci-app-uhttpd can be removed as it was added as part of the base build.  Looks like a very solid build after you're complete though... Very nice.

In reality it's two commands, so  those two could be put into a script, but takes a command to set if off, so I don't know how much more efficient scripting would make it.

On a side note htop and iftop should be added to the base build. Nano should be added considering how many people use it.

*EDIT* I see nano is already there. Maybe it's Vim I'm seeing people download in the stats page.

(Last edited by davidc502 on 15 May 2017, 02:06)

That's a lot of packages wink   luci-app-uhttpd can be removed as it was added as part of the base build.

Done.

Looks like a very solid build after you're complete though... Very nice.

Well, thanks, coming from you it's a great compliment wink (BTW: And everything works together wink )

In reality it's two commands, so  those two could be put into a script, but takes a command to set if off, so I don't know how much more efficient scripting would make it.

Well, I do other stuff too, not just those 2 lines...

Before I flash, I disable and stop collectd ... i had too many problems with the rdd files... than after flash I do:

/etc/init.d/darkstat enable;/etc/init.d/darkstat start;/etc/init.d/transmission enable; /etc/init.d/transmission start; /etc/init.d/collectd enable; /etc/init.d/collectd start;

Then I create a symlink for the vsftp server:

    ln -sf /mnt/sdb1/FTPServer/ /root/FTPDirectory

And then ( and here's where I can get some help ) , I MANUALLY mount the cifs partition, since I was not successful in doing this through fstab:

    mkdir /mnt/NAS
    mount.cifs //192.168.1.102/4TB_Disk /mnt/NAS -o unc=\\\\192.168.1.102\\4TB_Disk,ip=192.168.1.102,user=USERGOESHERE,pass="PASSGOES()HERE_and$has$special##characters",dom=workgroup

On a side note htop and iftop should be added to the base build. Nano should be added considering how many people use it.

*EDIT* I see nano is already there. Maybe it's Vim I'm seeing people download in the stats page.

Yes, NANO is already there... I'll give VIM a try then...

And you're right, I can stuff all of this in a script and that'd be it ... any other suggestions, like cleanup of directories or others? smile

*EDIT* vim is horrible... I'll stick to NANO :

(Last edited by mariano.silva on 15 May 2017, 02:37)

Is it a manual mount  (cifs) after each reboot? or only the first time?

davidc502 wrote:

Is it a manual mount  (cifs) after each reboot? or only the first time?

Just the first time, then it stays connected after any number of reboots.

mariano.silva wrote:
davidc502 wrote:

Is it a manual mount  (cifs) after each reboot? or only the first time?

Just the first time, then it stays connected after any number of reboots.

It appears beside disabling collectd before flashing, the rest of the commands can be lined up logically and executed one by one in a script. I've never tried installing packages via a script, so it may be best to break some of them up into separate commands.

maybe something like this? 

#!/bin/sh
# My script to prepare the router after flash

opkg update

opkg install collectd-mod-conntrack collectd-mod-cpu collectd-mod-df collectd-mod-disk collectd-mod-interface collectd-mod-iptables collectd-mod-iwinfo collectd-mod-load collectd-mod-netlink collectd-mod-network collectd-mod-ping collectd-mod-processes collectd-mod-protocols collectd-mod-rrdtool collectd-mod-sensors collectd-mod-syslog collectd-mod-tcpconns collectd-mod-uptime collectd-mod-wireless

opkg install collectd-mod-logfile kmod-fs-f2fs e2fsprogs cfdisk iftop tar darkstat bandwidthd f2fs-tools vsftpd-tls luci-app-wol bmon mailsend mpack htop ssmtp kmod-fs-cifs cifsmount transmission-daemon-openssl transmission-web luci-app-transmission collectd-mod-cpufreq

#enable after install
/etc/init.d/darkstat enable;/etc/init.d/darkstat start;/etc/init.d/transmission enable; /etc/init.d/transmission start; /etc/init.d/collectd enable; /etc/init.d/collectd start

# manually mount cifs partition
mkdir /mnt/NAS

mount.cifs //192.168.1.102/4TB_Disk /mnt/NAS -o unc=\\\\192.168.1.102\\4TB_Disk,ip=192.168.1.102,user=USERGOESHERE,pass="PASSGOES()HERE_and$has$special##characters",dom=workgroup

# create a symlink for the vsftp server

mkdir /root/FTPDirectory
ln -sf /mnt/sdb1/FTPServer/ /root/FTPDirectory


exit 0
davidc502 wrote:
mariano.silva wrote:

Guys, anyone has a good script or step by step instruction set on what you do when you're upgrading your routers whenever @davidc502 releases a new version? I have my own "homegrown" step-by-step (copy stuff over , backup configs, apply image, restore stuff, reinstall packages ) but I'm sure you guys have scripts and better ideas to do so smile

Besides the base build, what other packages are installed?

I install dnscrypt-proxy (now included), luci-ssl-openssl (now included), luci-app-uhttpd (now included), adblock (I believe now included), joe (my favorite text editor), ethtool, and darkmatter.

(Last edited by starcms on 15 May 2017, 04:34)

These are my personal instructions to myself after flashing the latest build

1) Install DNSCrypt-proxy (or DNS won't work if using stored settings)
2) Install Luci-SSL-OPENSSL
3) Install both ca-bundle and ca-certificates packages and change sources from http:// to https://
4) install joe (text editor)
5) Install luci-app-uhttpd
6) Install ipset (for firewall) (is this needed??)
7) Install adblock and luci-app-adblock
8) Delete openvpn, qos, ddns, igmpproxy
9) Disable samba and miniupnpd from startup
10) Changes sources to snapshot and upgrade packages
src/gz reboot_core https://downloads.lede-project.org/snapshots/targets/mvebu/generic/packages
src/gz reboot_base https://downloads.lede-project.org/snapshots/packages/arm_cortex-a9_vfpv3/base
src/gz reboot_luci https://downloads.lede-project.org/snapshots/packages/arm_cortex-a9_vfpv3/luci
src/gz reboot_packages https://downloads.lede-project.org/snapshots/packages/arm_cortex-a9_vfpv3/packages
src/gz reboot_routing https://downloads.lede-project.org/snapshots/packages/arm_cortex-a9_vfpv3/routing
src/gz reboot_telephony https://downloads.lede-project.org/snapshots/packages/arm_cortex-a9_vfpv3/telephony
11) Restore backup
12) Add " net.netfilter.nf_conntrack_helper=1 " to /etc/sysctl.conf to restore behavior prior to kernel 4.7
12) Add " option ra_useleasetime '1' " to dhcp section of /etc/config/dhcp
13) Turn off TCO (TC Offloads) to add performance to SQM

a)install ethtool
b)edit /etc/init.d/sqm
add 
"ethtool -K eth1 tso off gso off gro off "
to both startup functions (start and boot) of sqm start script

Reason: http://burntchrome.blogspot.com/2015/06/tcp-offloads-more-harm-than-good.html?m=1
(little more info on commands, but different ones which also disable RX and TX checksumming (not required))

Use: ethtool --show-offload  eth1
for status and confirmation

14) Minimize log spam

A)DNSCrypt
a) add " option loglevel '5' " to /etc/config/dnscrypt-proxy
b) edit /etc/init.d/dnscrypt-proxy to add entry for LogLevel (more detailed instructions needed)

B)ODHCPD
a) edit /etc/config/dhcp and add " loglevel '5' " in odhcpd section

C)DHCP
a) edit /etc/config/dhcp and add " option quietdhcp '1' " in dnsmasq section

D)WiFi
a) edit /etc/config/wireless and add " option log_loglevel '3' "
      to 'radio0' and 'radio1' sections

------Old------

A)Now handled by .profile and .upgrade scripts:
1) Flag hold default, ugly Luci theme so it won't revert when upgrading Luci in the future
" opkg flag hold luci-theme-bootstrap "
2) Flag hold base-files to prevent from upgrading
" opkg flag hold base-files "

I need to update it now since many of those packages are now included.  Thanks @david! smile

(Last edited by starcms on 15 May 2017, 04:42)

Hi @davidc502, I've installed your latest build for the 1900acs refurb v1 and am having trouble getting my OpenVPN client to connect. I have a NordVPN account and I've tried following their instructions but get a failed auth with:

unrecognized option or missing parameter

In my password file

Here's their link:
https://nordvpn.com/tutorials/openwrt/openvpn/

Do you know of any open issues I may consider?

My username is an email address so there's a @ in it, is that a problem?

(Last edited by jobiegermano on 15 May 2017, 07:39)

jobiegermano wrote:

Hi @davidc502, I've installed your latest build for the 1900acs refurb v1 and am having trouble getting my OpenVPN client to connect. I have a NordVPN account and I've tried following their instructions but get a failed auth with:

unrecognized option or missing parameter

In my password file

Here's their link:
https://nordvpn.com/tutorials/openwrt/openvpn/

Do you know of any open issues I may consider?

My username is an email address so there's a @ in it, is that a problem?

Was this working with a previous build, and now doesn't with the latest build?

I do not understand why I do not have a retracker.local (bittorrent) on the 4.4.61 kernel and it works on 3.18.45

Thanks for taking the time to make this David.  I've been using it on my WRT1900ACS for a couple of weeks now and decided to upgrade my WRT1900AC V1.  I tried the 4.9 kernel first and left it over night.  It has the reboot issue mentioned by others so I loaded the 4.4 kernel version instead. 

As a note of interest I had wifi disabled on the wrt1900ac  v1 when testing the 4.9 kernel version (2017-05-12 15:33) and experienced the random reboots.  Is there a thread on the V1 issues with the 4.9 Kernel?

thanks,
Brendin

Just wanna share things with adblock and dnscrypt.
I now use dnscrypt to bock the ads and did not longer use adblock.
If anyone interested heres what I do for this.

nano /etc/config/dnscrypt-proxy

config dnscrypt-proxy ns1
        option address '127.0.0.1'
        option port '5454'
        option resolver 'cisco'
        option resolvers_list '/usr/share/dnscrypt-proxy/dnscrypt-resolvers.csv'
        list blacklist 'domains:/etc/MeineBlacklist.txt'

        config dnscrypt-proxy ns2
                option address '127.0.0.1'
                option port '5455'
                option resolver 'd0wn-random-ns2'
                list blacklist 'domains:/etc/MeineBlacklist.txt'

###################################################

Then I make a Folder called Blacklist
mkdir /usr/share/dnscrypt-proxy/Blacklist
Here I could have a little help because if I flash a new version this Folder is deleted.
(Not to much into lede but open for learning)

Into that Folder I have 5 files. 4 of them could be downloaded from
github.com/jedisct1/dnscrypt-proxy/tree/master/contrib

I use "domains-blacklist-local-additions.txt" "domains-blacklist.conf" "domains-whitelist.txt" "generate-domains-blacklist.py"

if you look at nano /usr/share/dnscrypt-proxy/Blacklist/domains-blacklist.conf you can add own blockrules from "adblock Plus" or just uncomment the ones that are already in there.

for executing Phyton I "opkg install phyton"
then change permissions from generate-domains-blacklist.py with "chmod +rx generate-domains-blacklist.py"

At that point I can run ./generate-domains-blacklist.py > /etc/MeineBlacklist.txt" to generate the Blacklist.

(needs reboot to work with the new blacklist)

To automate getting new blacklists every day I made another little skript called "updatelist.py"
nano /usr/share/dnscrypt-proxy/Blacklist/updatelist.py

there I write down just the following 2 lines

cd /usr/share/dnscrypt-proxy/Blacklist
./generate-domains-blacklist.py > /etc/MeineBlacklist.txt

and safe it.

change permissions with chmod +rx updatelist.py

Finaly I make a cron job with luci under "System" > "planned tasks" and place this 2 lines there

0 3 * * * sleep 70 && touch /etc/banner && reboot
45 2 * * * /usr/share/dnscrypt-proxy/Blacklist/updatelist.py

hit save and apply.

Now every day at 2:45 the Blacklist is new generated at 3:00 there is a planed reboot. After that reboot the new blacklist is used.

##########

Shure there are many things that could be made better than the solution I made and everyone is welcome to make this more easy. I have much more to learn and this was more like a dirty solution but it works and I do not know better at the moment. wink

EDIT:
the /etc/config/dhcp is also edited

nano /etc/config/dhcp
then add this 3 lines under "config dnsmasq"

        list server '127.0.0.1#5454'
        list server '127.0.0.1#5455'
        list server '/pool.ntp.org/208.67.222.222'

hope did not forget anything else wink

(Last edited by raspioff on 15 May 2017, 19:53)

Xnaron wrote:

Thanks for taking the time to make this David.  I've been using it on my WRT1900ACS for a couple of weeks now and decided to upgrade my WRT1900AC V1.  I tried the 4.9 kernel first and left it over night.  It has the reboot issue mentioned by others so I loaded the 4.4 kernel version instead. 

As a note of interest I had wifi disabled on the wrt1900ac  v1 when testing the 4.9 kernel version (2017-05-12 15:33) and experienced the random reboots.  Is there a thread on the V1 issues with the 4.9 Kernel?

thanks,
Brendin

Yes, there is on the lede forum >  https://forum.lede-project.org/t/wrt190 … -9/2025/38

Currently, I'm told that it's expected to create 2 images. 1 with kernel 4.4.x for V1 owners and 1 for the rest of the line-up with kernel 4.9.x.

davidc502 wrote:
jobiegermano wrote:

Hi @davidc502, I've installed your latest build for the 1900acs refurb v1 and am having trouble getting my OpenVPN client to connect. I have a NordVPN account and I've tried following their instructions but get a failed auth with:

unrecognized option or missing parameter

In my password file

Here's their link:
https://nordvpn.com/tutorials/openwrt/openvpn/

Do you know of any open issues I may consider?

My username is an email address so there's a @ in it, is that a problem?

Was this working with a previous build, and now doesn't with the latest build?

I can't say. This is my first time ever installing your build, or flashing a router at all. All of the NordVPN specific instructions I've found have little typos here and there, but I feel I understand the general concept. It seems like no matter what I do what I see in the GUI will always be different than what is actually configured via uci.

davidc502 wrote:
Xnaron wrote:

Thanks for taking the time to make this David.  I've been using it on my WRT1900ACS for a couple of weeks now and decided to upgrade my WRT1900AC V1.  I tried the 4.9 kernel first and left it over night.  It has the reboot issue mentioned by others so I loaded the 4.4 kernel version instead. 

As a note of interest I had wifi disabled on the wrt1900ac  v1 when testing the 4.9 kernel version (2017-05-12 15:33) and experienced the random reboots.  Is there a thread on the V1 issues with the 4.9 Kernel?

thanks,
Brendin

Yes, there is on the lede forum >  https://forum.lede-project.org/t/wrt190 … -9/2025/38

Currently, I'm told that it's expected to create 2 images. 1 with kernel 4.4.x for V1 owners and 1 for the rest of the line-up with kernel 4.9.x.


Thanks that's the info I was looking for.

davidc502 wrote:

The new build with the latest mwlwifi driver 10.3.4.0-20170512  is now ready.  This should fix the memory leak, and users so far are reporting that it does.

https://davidc502sis.dynamic-dns.net/releases/

Tried 1900AC v1. No luck, reboots every 5 min. Reverted back to 4.4.

Sorry, posts 1876 to 1875 are missing from our archive.