Release Asuswrt-Merlin 386.7 is now available for all models

[dave14305]

Worth a try to see if at least that patch can be applied to 4.1.xx. I'll need to find some spare time however to configure an IPv6 test setup, dunno when that will happen.

It comes from the Linux-4.1.y tree, so I’m hoping it’s clean. If you compile it and boot it on an AC86U, I will test the IPv6 part on my device.

 

[RMerlin]

Wonder why I dont see this issue? Perhaps because all my ipv6 goes out Wireguard instead of WAN (I dont have ipv6 WAN)? Naa, that can't be it.

In his test case he was redirecting queries to dnsmasq, and dnsmasq is the one crashing. This sounds like an issue specific to dnsmasq (with possible links to a kernel issue, based on the stack trace).

 

[RMerlin]

This kernel commit may be relevant, based on the call trace:

udp: properly support MSG_PEEK with truncated buffers - kernel/git/stable/linux.git - Linux kernel stable tree

git.kernel.org

But I’m too chicken to try to compile it.

That patch is already present in 4.1.51 (used by the RT-AX88U and newer), but not in 4.1.27 (used by the RT-AC86U and GT-AC2900). Did we get any report of a crash on anything else than the RT-AC86U and GT-AC2900?

 

[dave14305]

That patch is already present in 4.1.51 (used by the RT-AX88U and newer), but not in 4.1.27 (used by the RT-AC86U and GT-AC2900). Did we get any report of a crash on anything else than the RT-AC86U and GT-AC2900?

There are AX86U reports in this thread. Damn.

 

[RMerlin]

There are AX86U reports in this thread. Damn.

What might help is to compile dnsmasq with debug symbols in, to at least get an idea as to where it's crashing specifically.

 

[Thermaltake]

What is this mean is info log

Jun 27 18:18:04 miniupnpd[2456]: PCP MAP: failed to add mapping TCP 51390->192.168.2.10:51389 'PCP MAP 97592a284242d494880187e4'
Jun 27 18:18:04 miniupnpd[2456]: PCP MAP: failed to add mapping UDP 51390->192.168.2.10:51389 'PCP MAP 2748d7d95f66b10456d38a57'
Jun 27 18:18:04 miniupnpd[2456]: private/reserved address 192.168.100.2 is not suitable for external IP
Jun 27 18:21:10 miniupnpd[2456]: Failed to remove PCP mapping internal port 51389, protocol TCP
Jun 27 18:21:10 miniupnpd[2456]: Failed to remove PCP mapping internal port 51389, protocol UDP

51390 is my port for qbittorrent program, and 192.168.2.10 is my IP that I fix for my PC. 192.168.100.2 is my WAN IP from ISP router that I set in Asus router.

 

[ZebMcKayhan]

In his test case he was redirecting queries to dnsmasq, and dnsmasq is the one crashing.

So we're I when I turned DNS DNAT back to router and did a lookup with ie quad9 ipv6. Dnsmasq is the only one listening there. Maybee I'm missing something and should stay out of this.

 

[dave14305]

What might help is to compile dnsmasq with debug symbols in, to at least get an idea as to where it's crashing specifically.

It doesn’t crash really, in the sense that the pid is constant between occurrences, unless I restart it manually.

 

[Tech9]

What is this

Not sure, perhaps means UPnP not working in double NAT in this firmware.

Release - Asuswrt-Merlin 386.7 is now available for all models

Hello, first of all this is what i think of humans that make things like these firmwares (not only scripst). As cooking is an act of love I can see this very similar so THANK YOU VERY MUCH! (as you can see i was already reading about scmerlin because i really need wireguard) I come from...

www.snbforums.com

 

[vlord]

I recently purchased an RT-AX86S and have been having random crashes/reboots every 2-3 days. I'm running Merlin 386.7 along with:

1. QOS (AI protection is OFF)
2. Diversion Standard with adblocking, medium list, youtube blocking, and pixelserv
3. Skynet
4. Unbound
5. ntpMerlin
6. scMerlin
7. uiDivStats
8. vnstat
9. diskcheck script (1TB USB HDD)
10. SMB server with light use
11. Open VPN server

Q1. Is my router with 512mb/2 core powerful enough for what I'm running? I see the free memory constantly close to 10-30mb free. Also, CPUs seem to be 20-100% depending on what's going on. I pegged the CPUs and rendered the UI unusable when I changed Diversion to the large list.

Q2. How can I go about tracking down what's causing the issue? When I look at the system logs, there doesn't appear to be any real indicator as to what's crashing and why.

 

[L&LD]

Remove the HDD, test.

Keep removing scripts in the reverse order of installation, test.

Be sure to reboot after each change.

 

[eibgrad]

I recently purchased an RT-AX86S and have been having random crashes/reboots every 2-3 days. I'm running Merlin 386.7 along with:

1. QOS (AI protection is OFF)
2. Diversion Standard with adblocking, medium list, youtube blocking, and pixelserv
3. Skynet
4. Unbound
5. ntpMerlin
6. scMerlin
7. uiDivStats
8. vnstat
9. diskcheck script (1TB USB HDD)
10. SMB server with light use
11. Open VPN server

Q1. Is my router with 512mb/2 core powerful enough for what I'm running? I see the free memory constantly close to 10-30mb free. Also, CPUs seem to be 20-100% depending on what's going on. I pegged the CPUs and rendered the UI unusable when I changed Diversion to the large list.

Q2. How can I go about tracking down what's causing the issue? When I look at the system logs, there doesn't appear to be any real indicator as to what's crashing and why.

We're starting to get into the area of normal abnormalities here. IOW, this deserves its own thread, imo. Otherwise, it becomes buried in this thread and difficult to track. You also lose the input of others that might be able to help because they assume this thread is for installation problems (and may have even UNwatch'd it at this point).

 

[alan6854321]

I recently purchased an RT-AX86S and have been having random crashes/reboots every 2-3 days.

Take a look at this thread...

Sporadic GT-AXE11000 reboots due to kernel panic

I bought GT-AXE11000 last spring and at some moment looking at the uptime noticed it gets rebooted from time to time once 3-4 weeks. Nothing helpful were in native logs, so I did establish remote logging and was able to receive things like this each time it got rebooted...

www.snbforums.com

 

[automaton]

Read a little further down from your previous post:

EDIT: Your info: If it's not used it should be ( 0 / 63 )

NVRAM usage 57201 / 65536 bytes
JFFS 4.17 / 62.75 MB

I was corrected yesterday that some platforms have a 63mb JFFS. Varies by model.
Mine is now 47. Not 48 which was in error during the alpha and beta1 testing.

As far as factory wiping goes, see here:

After upgrade to 386.7 warning about low level of free NVRAM

Hello, After upgading my ASUS RT-AC68U to the new 386.7 version of Merlin there is a flashing warning in top right corner of the GUI saying: "Your router is running low on free NVRAM, which might affect its stability. Review long parameter lists (like DHCP reservations), or consider doing a...

www.snbforums.com

The JFFS wipe is here:

Release - Asuswrt-Merlin 386.7 is now available for all models

AX58U Anyone else notice AiProtection isn't logging malicious site blocks now? It was working in Beta 2, but now I'm not seeing anything logged in AiProtection. I tested that the feature is working, the blocked events show up in the system log, but not on the AiProtection tab. I've had that...

www.snbforums.com

Okay, so basically that's not the issue. I guess it's something else.

 

[aublumberg]

Equivalent of USD58 per month. No 'great firewal' in Hong Kong (well, not at this stage anyway) and VPNs fully functional to any global destination. I've been very pleased with the GT-AX6000 performance (credit to Merlin!) and also use a QNAP QSW-1105-5T which nicely extends the 2.5Gbps to multiple devices.

My math was wrong ... USD43 equiv per month

 

[RMerlin]

It doesn’t crash really, in the sense that the pid is constant between occurrences, unless I restart it manually.

So here's what I've gathered.

It's not a crash, it's a kernel error that an invalid checksum was detected, and it then dumps the stack as well as the name of the process that generated the packet. These checksum errors can occur for a number of reason, one of them being hardware offloading done by the switch (like GSO/GRO).

I already eliminated the possibility of it being caused by flow cache or archer/runner.

I've tried redirecting to the link-local address, as well as to the local loopback (which didn't work), without any success.

I've also gone back through around 4 years of commits to the kernel udp.c driver as well as Netfilter's NAT driver. I tested two potential candidate, without any success.

So at this stage, there's a chance it may be an issue related to the Broadcom network driver (the kernel had a few drivers that needed fixing in the past over this issue).

It could also be an issue tied to packet fragmentation occurring with large UDP packets (that might explain why it does not happen with every IPv6 queries).

I think this is unlikely to be fixable without a low level debugging of the generated traffic, something beyond my current knowledge of networking (and not something I'm willing to devote hours into figuring out). So most likely fix at this time will be to remove IPv6 support from DNSFilter mode "Router".

I haven't yet tested it on a newer HND 5.04 device, tho even if it worked that wouldn't tell us much, as it has both a newer kernel and Broadcom SDK.

I've said it before, and I'll say it again: I hate IPv6.

 

[Thermaltake]

UPNP is complaining in Double NAT:

Jun 23 20:50:13 miniupnpd[4040]: SendNATPMPPublicAddressChangeNotification: cannot get public IP address, stopping
Jun 23 20:52:32 miniupnpd[4040]: private/reserved address 192.168.144.16 is not suitable for external IP

View attachment 42112

I believe it was working and showing forwarded ports correctly in System Log, Port Forwarding on 386.5_2 firmware.

Hmm...but why ?

 

[Calkulin]

Rt-AX88U owners do you see these continous logs after three days? I have no Aimesh setup just one addon(diversion lite) and guest clients.

Jun 26 10:30:54 kernel: CONSOLE: 171145.317 wlc_ap_authresp: status 0
Jun 26 10:30:54 kernel: CONSOLE: 171145.322 wlc_ap_process_assocreq_done status 0
Jun 26 10:30:54 kernel: CONSOLE: 171145.325 iov:SCB_DEAUTH
Jun 26 10:30:54 kernel: CONSOLE: 171145.327 tx:prep:802.1x
Jun 26 10:30:54 kernel: CONSOLE: 171145.334 wl0.2: wlc_send_bar: for d4:a6:51:xx:xx:xx seq 0x1 tid 5
Jun 26 10:30:54 kernel: CONSOLE: 171145.337 tx:prep:802.1x
Jun 26 10:30:54 kernel: CONSOLE: 171145.339 iov:SCB_AUTH
Jun 26 10:30:54 kernel: CONSOLE: 171145.365 wl0.2: wlc_send_bar: for d4:a6:51:xx:xx:xx seq 0x1 tid 6
Jun 26 10:30:55 kernel: CONSOLE: 171146.095 wl0.2: wlc_send_bar: for 84:e3:42:xx:xx:xx seq 0x16 tid 0
Jun 26 10:30:57 kernel: CONSOLE: 171147.547 wl0.2: wlc_send_bar: for d4:a6:51:xx:xx:xx seq 0x1 tid 0
Jun 26 10:30:57 kernel: CONSOLE: 171147.667 wl0.0: wlc_send_bar: for f0:72:ea:xx:xx:xx seq 0xc3 tid 3
Jun 26 10:30:57 kernel: CONSOLE: 171148.085 wl0: wlc_ampdu_recv_addba_resp: 54:60:09:xx:xx:xx: Failed. status 37 wsize 64 policy 1
Jun 26 10:30:59 kernel: CONSOLE: 171150.288 wl0.2: wlc_send_bar: for 84:e3:42:xx:xx:xx seq 0x18 tid 0
Jun 26 10:31:00 kernel: CONSOLE: 171151.071 wl0: dc:91:bf:xx:xx:xx: addba timed out 0
Jun 26 10:31:00 kernel: CONSOLE: 171151.358 wl0.2: wlc_send_bar: for dc:91:bf:xx:xx:xx seq 0x173 tid 0
Jun 26 10:31:01 kernel: CONSOLE: 171151.485 wl0.0: wlc_send_bar: for 54:60:09:xx:xx:xx seq 0x1 tid 3
Jun 26 10:31:14 kernel: CONSOLE: 171164.856 wl0.2: wlc_send_bar: for dc:91:bf:xx:xx:xx seq 0x17c tid 0
Jun 26 10:31:18 kernel: CONSOLE: 171169.113 wl0.2: wlc_send_bar: for dc:91:bf:xx:xx:xx seq 0xa tid 3
Jun 26 10:31:19 kernel: CONSOLE: 171170.196 wl0.2: wlc_send_bar: for 84:e3:42:xx:xx:xx seq 0x19 tid 0
Jun 26 10:31:21 kernel: CONSOLE: 171172.212 wl0.2: wlc_send_bar: for dc:91:bf:xx:xx:xx seq 0x18c tid 0
Jun 26 10:31:25 kernel: CONSOLE: 171175.491 wl0.0: wlc_ampdu_resp_timeout: 54:e0:19:xx:xx:xx: tid 0 cleaning up resp tid waiting for seq 0x50 for 200 ms
Jun 26 10:31:28 kernel: CONSOLE: 171178.374 wl0.2: wlc_send_bar: for dc:91:bf:xx:xx:xx seq 0x19c tid 0
Jun 26 10:31:30 kernel: CONSOLE: 171180.985 wl0: wlc_ampdu_recv_addba_resp: d4:a6:51:xx:xx:xx: Failed. status 37 wsize 16 policy 1
Jun 26 10:31:30 kernel: CONSOLE: 171180.985 wl0: wlc_ampdu_recv_addba_resp: d4:a6:51:xx:xx:xx: Failed. status 37 wsize 16 policy 1
Jun 26 10:31:30 kernel: CONSOLE: 171180.986 wl0: wlc_ampdu_recv_addba_resp: d4:a6:51:xx:xx:xx: Failed. status 37 wsize 16 policy 1

@RMerlin
These are the logs I was referring to from the already closed thread. Waited for awhile to post it until it comes out. New debug log from this GPL?

I have those type of logs on a AX88U and AX11000(and I think I saw a post of it happening on a AX86U also) on 386.7. Usually when those logs start to show up hours after a reboot, devices connected to my XT8 node start to report offline even though they are connected, so I have reverted to 386.5_2 and will skip this release as this behavior has been happening on all the alphas and betas for this GPL

 

[DJones]

@RMerlin Is their any way we can get better AIMesh reconnectivity. I’m running this firmware on both a gt-ax11000 (main router) and a rt-ax58u (node), however on reboot of the main router should it need to be done I find the node will disappear from the list and not connect. It does show its connected under the wireless log but aimesh doesn’t detect it and it usually requires a manual reset of the node which is a pain in the butt when it’s only working off a wireless only backbone meaning I need to bring the router downstairs to setback up. I have the feeling that the node reverts to the 192.168.50.1 (default ip when first reset) where I’ve set the private ip on the main to 192.168.1.1 instead.

I can’t use a cable. I’ve tried powerlines before but they sucked and it still has the chance of just not connecting correctly.

 

[learning_curve]

~~ I've said it before, and I'll say it again: I hate IPv6.

But, but, but, we don't! We like it, use it a lot & are very happy to be using it in a location where is prominent now and works very well. << That includes my current router c/w RMerlin firmware.

~~~ So most likely fix at this time will be to remove IPv6 support from DNSFilter mode "Router".

I haven't yet tested it on a newer HND 5.04 device, tho even if it worked that wouldn't tell us much, as it has both a newer kernel and Broadcom SDK ~~

I have a HND device (not sure if it's HND 5.04, but you will know) It's on a Broadcom BCM4908 CPU which again, you'll already know, but I do use IPv6 all the time, including, the DNSFilter being set on "Router" & without any additional Custom (user-defined) DNS entries - IPv4 or IPv6.

As previously posted, I've had no IPv6 issues at all (so far) when using this current firmware on said router, so if you have a script for a test or, a list of instructions, happy to run that / follow them & post back the results / findings - IF - that's of any use / value to you @RMerlin