Beta Asuswrt-Merlin 386.1 Beta (stage 2) is now available

[86Upino]

Hello everyone

on the ac86u with the 386 beta4b I notice that the openvpn in this case of Surfshark the download and upload speeds are low and do not pass in the case dow 87 and up 90, more or less. while with 384.1 the speeds go 190 dow and 120 up, I liked to know if it is normal and will correct it.

386.1 beta picture 390 dow its without VPN
picture 86 dow with VPN

384.1 +icture 182 dow with VPN
picture 518 dow without VPN

NOTE : my service its 500/100 by MEO

 

[aex.perez]

AX88U HW 1.1, AT&T Fiber - Bandwidth results

The ~910/~600Mbps I had reported on Beta 3 and Beta4b were comprimised. As soon as I disabled Skynet, the results shot back up to match the ~930Mbps on the PC. As soon as I turned on AIprotection/Two-Way IPS and Infected Device Protection and Blocking the results were back down into the ~400/~500Mbps range. Disabling but still opting in to TrendMicro Privacy, back up to ~930Mbps up and down. Enabling Skynet inbound only drops me to ~920Mbps in both directions. Left Skynet set to inbound only. Several runs againt same target server to get an average, in case anybody is curious.

Will continue to monitor with spdMerlin to see if the anomaly of the random drop that required me to withdraw from privacy comes up again.

I suspect, based on metrics I'm seeing on Skynet and having both inbound and outbound monitored, that something with it and AIProtect happened causing the trigger that created the bandwidth drop as if the features were turned on since while the features were off I had still not withdrawn from Privacy. Could be completely off base but basing this assumption on a outbound http ban of "BanAiProtect:" in its metrics...

 

[ajp2k14]

Hello everyone

on the ac86u with the 386 beta4b I notice that the openvpn in this case of Surfshark the download and upload speeds are low and do not pass in the case dow 87 and up 90, more or less. while with 384.1 the speeds go 190 dow and 120 up, I liked to know if it is normal and will correct it.

386.1 beta picture 390 dow its without VPN
picture 86 dow with VPN

384.1 +icture 182 dow with VPN
picture 518 dow without VPN

NOTE : my service its 500/100 by MEO

I noticed the same thing with my AC86U, almost half the normal speed compared to 384.19. I just thought there was something wrong with mine at the time...

 

[John Fitzgerald]

I'm using a password based SSH access. When enabling SSH on a linux system it will generate a SSH key pair but looking at the logs I'm getting this

Jan 13 17:47:04 dropbear[3465]: Failed loading /etc/dropbear/dropbear_rsa_host_key
Jan 13 17:47:04 dropbear[3465]: Failed loading /etc/dropbear/dropbear_dss_host_key
Jan 13 17:47:04 dropbear[3465]: Failed loading /etc/dropbear/dropbear_ecdsa_host_key
Jan 13 17:47:04 dropbear[3465]: Failed loading /etc/dropbear/dropbear_ed25519_host_key
Jan 13 17:47:04 dropbear[3465]: Early exit: No hostkeys available. 'dropbear -R' may be useful or run dropbearkey.
Jan 13 17:47:04 hour_monitor: daemon is starting

Looking at more logs I think its because the JFFS Partition is read-only, or not mounted but hard to tell without SSH access

I did a nuclear reset the other day and formatted on next boot the JFFS Partition and its the first time enabling SSH again and assume its all linked

Not sure what you mean about CERT, I assume you mean the management SSL CERT or DDNS

Does this help: https://superuser.com/questions/130...ssh-login-on-router-with-asus-merlin-firmware

asuswrt-merlin/release/src/router/dropbear/README at master · RMerl/asuswrt-merlin

Enhanced version of Asus's router firmware (Asuswrt) (legacy code base) - RMerl/asuswrt-merlin

github.com

How I got Asuswrt device tracker working with SSH key files

I think on my latest try I didn’t, I just saved it. Just now tried it again with the export and now there’s only 1 error left: Invalid config for [device_tracker.asuswrt]: file not readable for dictionary value @ data[‘ssh_key’]. Got...

community.home-assistant.io

Enable SSH on Asus Routers with(out) SSH Keys •

Enable SSH on Asus routers with or without SSH keys to remotely manage your router, add custom software with Optware or configure custom Dynamic DNS (DDNS)

www.htpcguides.com

 

[86Upino]

I noticed the same thing with my AC86U, almost half the normal speed compared to 384.19. I just thought there was something wrong with mine at the time...

It seems to be general even hopefully that they will resolve in time for 386.1 "official"

 

[beerglass007]

Does this help: https://superuser.com/questions/130...ssh-login-on-router-with-asus-merlin-firmware

asuswrt-merlin/release/src/router/dropbear/README at master · RMerl/asuswrt-merlin

Enhanced version of Asus's router firmware (Asuswrt) (legacy code base) - RMerl/asuswrt-merlin

github.com

How I got Asuswrt device tracker working with SSH key files

I think on my latest try I didn’t, I just saved it. Just now tried it again with the export and now there’s only 1 error left: Invalid config for [device_tracker.asuswrt]: file not readable for dictionary value @ data[‘ssh_key’]. Got...

community.home-assistant.io

Enable SSH on Asus Routers with(out) SSH Keys •

Enable SSH on Asus routers with or without SSH keys to remotely manage your router, add custom software with Optware or configure custom Dynamic DNS (DDNS)

www.htpcguides.com

No sorry that doesn't help in the current state. Those URL's help with either a SSH key access or Password access

The problem my AX86u is having is it cannot generate a SSH key itself. When you enable SSH in the GUI its basically generating a key pair and you can see from the logs it cannot do that. So pasting a client public key into the GUI or just enabling SSH password access isn't going to help

The AX68u cannot generate a key pair and so doesn't even attempt to start the SSHd and its not listening on port 22

Looking at the logs it looks like a jffs read-only problem and very possible since I reset the router yesterday. It looks like toast now 8(

Some people say click the format jffs box and reboot, once will take longer because its formatting and then reboot again because sometimes it doesn't mount. I can't see if anything is mounted or not because I don't have SSH access

Its like going around in circles trying to get CLI access to the device to see what's happening

 

[John Fitzgerald]

No sorry that doesn't help in the current state. Those URL's help with either a SSH key access or Password access

The problem my AX86u is having is it cannot generate a SSH key itself. When you enable SSH in the GUI its basically generating a key pair and you can see from the logs it cannot do that. So pasting a client public key into the GUI or just enabling SSH password access isn't going to help

The AX68u cannot generate a key pair and so doesn't even attempt to start the SSHd and its not listening on port 22

Looking at the logs it looks like a jffs read-only problem and very possible since I reset the router yesterday. It looks like toast now 8(

Some people say click the format jffs box and reboot, once will take longer because its formatting and then reboot again because sometimes it doesn't mount. I can't see if anything is mounted or not because I don't have SSH access

Its like going around in circles trying to get CLI access to the device to see what's happening

And another link and inside see the sub link:

SSH With Keys

Can anyone point me to a Asus Merlin SSH keys for dummies guide ? I have read several threads and did generate keys but can not seem to make this work. With the current ssh issues I have been seeing, I think key access is better than name/password. Thanks

www.snbforums.com

 

[beerglass007]

And another link and inside see the sub link:

SSH With Keys

Can anyone point me to a Asus Merlin SSH keys for dummies guide ? I have read several threads and did generate keys but can not seem to make this work. With the current ssh issues I have been seeing, I think key access is better than name/password. Thanks

www.snbforums.com

Yeah sorry this is all for client side and generating keys to load onto the GUI

My problem is the key on the AX86u, when enabling SSH it doesn't generate them

 

[beerglass007]

Yeah sorry this is all for client side and generating keys to load onto the GUI

My problem is the key on the AX86u, when enabling SSH it doesn't generate them

I can confirm SSH isn't listening because its failed to load using NMAP on a client

root@rpi4:/home/pi# nmap  -sV 192.168.0.1
Starting Nmap 7.70 ( https://nmap.org ) at 2021-01-13 18:55 GMT
Nmap scan report for Router_001.home.com (192.168.0.1)
Host is up (0.010s latency).
Not shown: 996 closed ports
PORT      STATE SERVICE  VERSION
53/tcp    open  domain   (generic dns response: NOTIMP)
80/tcp    open  http     ASUS WRT http admin
8443/tcp  open  ssl/http ASUS WRT http admin
49152/tcp open  upnp     Cisco-Linksys E4200 WAP upnpd (UPnP 1.0)

So when enabling SSH on the GUI this is happening in the background, the key pairs on the router cannot be made and SSH fails to start

Jan 13 19:00:04 syslogd exiting
Jan 13 19:00:04 syslogd started: BusyBox v1.25.1
Jan 13 19:00:04 kernel: klogd started: BusyBox v1.25.1 (2021-01-08 17:43:19 EST)
Jan 13 19:00:10 dropbear[6479]: Failed loading /etc/dropbear/dropbear_rsa_host_key
Jan 13 19:00:10 dropbear[6479]: Failed loading /etc/dropbear/dropbear_dss_host_key
Jan 13 19:00:10 dropbear[6479]: Failed loading /etc/dropbear/dropbear_ecdsa_host_key
Jan 13 19:00:10 dropbear[6479]: Failed loading /etc/dropbear/dropbear_ed25519_host_key
Jan 13 19:00:10 dropbear[6479]: Early exit: No hostkeys available. 'dropbear -R' may be useful or run dropbearkey.
Jan 13 19:00:10 dnsmasq[1231]: exiting on receipt of SIGTERM

 

[jerry6]

so far beta 4 is working well on my rt5300 , no problems in 4 days use . thanks Merlin for al the work you put in

 

[John Fitzgerald]

I can confirm SSH isn't listening because its failed to load using NMAP on a client

root@rpi4:/home/pi# nmap  -sV 192.168.0.1
Starting Nmap 7.70 ( https://nmap.org ) at 2021-01-13 18:55 GMT
Nmap scan report for Router_001.home.com (192.168.0.1)
Host is up (0.010s latency).
Not shown: 996 closed ports
PORT      STATE SERVICE  VERSION
53/tcp    open  domain   (generic dns response: NOTIMP)
80/tcp    open  http     ASUS WRT http admin
8443/tcp  open  ssl/http ASUS WRT http admin
49152/tcp open  upnp     Cisco-Linksys E4200 WAP upnpd (UPnP 1.0)

So when enabling SSH on the GUI this is happening in the background, the key pairs on the router cannot be made and SSH fails to start

Jan 13 19:00:04 syslogd exiting
Jan 13 19:00:04 syslogd started: BusyBox v1.25.1
Jan 13 19:00:04 kernel: klogd started: BusyBox v1.25.1 (2021-01-08 17:43:19 EST)
Jan 13 19:00:10 dropbear[6479]: Failed loading /etc/dropbear/dropbear_rsa_host_key
Jan 13 19:00:10 dropbear[6479]: Failed loading /etc/dropbear/dropbear_dss_host_key
Jan 13 19:00:10 dropbear[6479]: Failed loading /etc/dropbear/dropbear_ecdsa_host_key
Jan 13 19:00:10 dropbear[6479]: Failed loading /etc/dropbear/dropbear_ed25519_host_key
Jan 13 19:00:10 dropbear[6479]: Early exit: No hostkeys available. 'dropbear -R' may be useful or run dropbearkey.
Jan 13 19:00:10 dnsmasq[1231]: exiting on receipt of SIGTERM

So to clarify, you are not inserting a premade key but are trying to create the key from scratch.
Looking at this:

dropbear failing to generate SSH key? - Google Suche

www.google.com

 

[beerglass007]

I can confirm SSH isn't listening because its failed to load using NMAP on a client

root@rpi4:/home/pi# nmap  -sV 192.168.0.1
Starting Nmap 7.70 ( https://nmap.org ) at 2021-01-13 18:55 GMT
Nmap scan report for Router_001.home.com (192.168.0.1)
Host is up (0.010s latency).
Not shown: 996 closed ports
PORT      STATE SERVICE  VERSION
53/tcp    open  domain   (generic dns response: NOTIMP)
80/tcp    open  http     ASUS WRT http admin
8443/tcp  open  ssl/http ASUS WRT http admin
49152/tcp open  upnp     Cisco-Linksys E4200 WAP upnpd (UPnP 1.0)

So when enabling SSH on the GUI this is happening in the background, the key pairs on the router cannot be made and SSH fails to start

Jan 13 19:00:04 syslogd exiting
Jan 13 19:00:04 syslogd started: BusyBox v1.25.1
Jan 13 19:00:04 kernel: klogd started: BusyBox v1.25.1 (2021-01-08 17:43:19 EST)
Jan 13 19:00:10 dropbear[6479]: Failed loading /etc/dropbear/dropbear_rsa_host_key
Jan 13 19:00:10 dropbear[6479]: Failed loading /etc/dropbear/dropbear_dss_host_key
Jan 13 19:00:10 dropbear[6479]: Failed loading /etc/dropbear/dropbear_ecdsa_host_key
Jan 13 19:00:10 dropbear[6479]: Failed loading /etc/dropbear/dropbear_ed25519_host_key
Jan 13 19:00:10 dropbear[6479]: Early exit: No hostkeys available. 'dropbear -R' may be useful or run dropbearkey.
Jan 13 19:00:10 dnsmasq[1231]: exiting on receipt of SIGTERM

Managed to install OEM firmware and get TELNET [ Yuk ] enabled. I can now cli to the device and see the JFFS isn't mounted or something else

The host keys appear to be in /etc/dropbear and linked to /jffs/.ssh/ which it can't access

So now stuck as what is the problem

Any idea's please ?

 

[beerglass007]

So to clarify, you are not inserting a premade key but are trying to create the key from scratch.
Looking at this:

dropbear failing to generate SSH key? - Google Suche

www.google.com

No you don't generate a host key. When you enable SSH via the GUI this is done for you and then looks to create a link to /jffs/.ssh

 

[RMerlin]

Some people say click the format jffs box and reboot, once will take longer because its formatting and then reboot again because sometimes it doesn't mount. I can't see if anything is mounted or not because I don't have SSH access

The JFFS partition state is shown on the Tools -> Sysinfo page.

 

[beerglass007]

The JFFS partition state is shown on the Tools -> Sysinfo page.

Hiya

Yeah its currently UNMOUNTED and hence I think its my problem

 

[Deleted member 22229]

What router ? On my AC3100 formatting JFFS don't work. The router always boots back up unmounted. A simple reboot with out formatting seems to bring it back to mounted and working.

 

[beerglass007]

AX

What router ? On my AC3100 formatting JFFS don't work. The router always boots back up unmounted. A simple reboot with out formatting seems to bring it back to mounted and working.

AX86u with beta 4

 

[beerglass007]

I think I'm gonna throw it out the window in a minute...

No clue as to way this isn't mounted but without it you can't SSH 8(


UPDATE....Its going out the window or bin

I have done a complete rebuild again and taken all the logs off the device during boot up and can't see anything. I can't paste on here because there to big but really stuck now at run out of ideas

I know its the JFSS which is unmounted causing the SSH problem but why would that happen, I came from OEM > Beta 3 > Beta 4 and never installed any custom script or even enabled JFSS for scripts

 

[SomeWhereOverTheRainBow]

here was my 7 day speed test W/ trendmicro on.(clients get around 900Mbps down and 40Mbps up). Model RT-AX88U
it starts with beta 3

then flawed beta 4

then beta 4b

 

[Deleted member 22229]

I think I'm gonna throw it out the window in a minute...

No clue as to way this isn't mounted but without it you can't SSH 8(


UPDATE....Its going out the window or bin

I have done a complete rebuild again and taken all the logs off the device during boot up and can't see anything. I can't paste on here because there to big but really stuck now at run out of ideas

I know its the JFSS which is unmounted causing the SSH problem but why would that happen, I came from OEM > Beta 3 > Beta 4 and never installed any custom script or even enabled JFSS for scripts

Try Asus stock firmware never seen any issues with JFFS like there is with Merlin's. He must handle it differently for what ever reason.