What's new

Voxel Custom firmware build for R9000/R8900 v. 1.0.4.76HF

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Voxel

Part of the Furniture
Continuation of:

https://www.snbforums.com/threads/custom-firmware-build-for-r9000.40125/
. . .
https://www.snbforums.com/threads/custom-firmware-build-for-r9000-r8900-v-1-0-4-74hf.90228/
https://www.snbforums.com/threads/custom-firmware-build-for-r9000-r8900-v-1-0-4-75hf.90893/

New version of my custom firmware build: 1.0.4.76HF.

Changes (vs 1.0.4.75HF):

1. Toolchain: GCC is upgraded 14.1.0->14.2.0.
2. Toolchain: binutils is upgraded 2.42->2.43.
3. Toolchain: Go is upgraded 1.22.5->1.22.6.
4. OpenVPN is upgraded 2.6.11->2.6.12 (fixing CVE-2024-5594).
5. less package is upgraded 643->661.
6. util-linux package is upgraded 2.38.1->2.40.2.
7. curl package is upgraded 8.8.0->8.9.1.
8. netatalk package is upgraded 3.2.2->3.2.5.
9. nano package is upgraded 8.0->8.1.
10. ffmpeg (minidlna) package is upgraded 6.1.1->6.1.2.
11. lz4 package is upgraded 1.9.1->1.10.0 (multithreading support).
12. libreadline package is upgraded 8.2->8.2.13.
13. ipset: add patch to fix json output format for IPSET_OPT_IP.
14. Host tools: upgrade mtd-utils to 2.2.0.
15. Host tools: upgrade xz to 5.6.2.

The link is:

https://www.voxel-firmware.com (thanks to vladlenas for his help with hosting).

Voxel.
 
Dirty update from 1.0.4.73HF to 1.0.4.76HF via an Ethernet connected Windows 10 computer and Firefox.

The update process went smoothly and everything appears to work as expected. I have not had the opportunity to test the OpenVPN server function.

Thank you for your efforts and continued support of the R9000.
 
@Voxel, thank you for dedication to the project and maintaining it over the years. Wanted to ask for clarification regarding some arbitrary instructions from read-me when setting up the dnscrypt2-proxy.

Guide is somewhat hazy when it comes to technical aspect of set up. In one portion it says to commit to nvram without expanding. Further information related to the keyword says to set up DNS servers to e.g., 9.9.9.9. However:
a) What are the implications if we set up DNS servers such as those found in the .toml file plus partials that aren't?
b) Is the correct guideline to set the DNS server as the router IP itself?

I've found that DNS works when pointing DNS servers to router - and it will default to usually two...two which I know are set up to follow dnscrypt protocol. Yet it is unclear if I set up others - will those not part of the dnscrypt protocol config override the nvram commit? If so, shouldn't dnscrypt enable attribute always take precedence?

Thank you,
 
@Voxel, thank you for dedication to the project and maintaining it over the years. Wanted to ask for clarification regarding some arbitrary instructions from read-me when setting up the dnscrypt2-proxy.

Guide is somewhat hazy when it comes to technical aspect of set up. In one portion it says to commit to nvram without expanding. Further information related to the keyword says to set up DNS servers to e.g., 9.9.9.9. However:
a) What are the implications if we set up DNS servers such as those found in the .toml file plus partials that aren't?
b) Is the correct guideline to set the DNS server as the router IP itself?

I've found that DNS works when pointing DNS servers to router - and it will default to usually two...two which I know are set up to follow dnscrypt protocol. Yet it is unclear if I set up others - will those not part of the dnscrypt protocol config override the nvram commit? If so, shouldn't dnscrypt enable attribute always take precedence?

Thank you,
I may have misunderstood your questions. If you set nvram

nvram set dnscrypt2=1
nvram commit


Then your router will use encrypted DNS. And if all your clients on the LAN for which your router is the DNS server will also use encrypted DNS queries. You don't need to do anything special, just specify your preferred servers in dnscrypt-proxy-2.toml from this list:

https://dnscrypt.info/public-servers/


Voxel.
 
I may have misunderstood your questions. If you set nvram

nvram set dnscrypt2=1
nvram commit


Then your router will use encrypted DNS. And if all your clients on the LAN for which your router is the DNS server will also use encrypted DNS queries. You don't need to do anything special, just specify your preferred servers in dnscrypt-proxy-2.toml from this list:

https://dnscrypt.info/public-servers/


Voxel.
Voxel,

That is the confusing part. Your guide lists to select servers in the Admin UI on the router page under Setup->Internet to select DNS servers - however, it does not indicate whether these servers:
a) Override the .toml file
b) Have anything to do with DNSCrypt if it is enabled/disabled?
c) No instructions on how to modify the .toml file.

Can you kindly help clarify?
 
Voxel,

That is the confusing part. Your guide lists to select servers in the Admin UI on the router page under Setup->Internet to select DNS servers - however, it does not indicate whether these servers:
a) Override the .toml file
b) Have anything to do with DNSCrypt if it is enabled/disabled?
c) No instructions on how to modify the .toml file.

Can you kindly help clarify?

Again your train of thought and doubts are not entirely clear for me. If you enable DNSCrypt2 in nvram and just reboot the router, the DNSCrypt protocol will automatically be used, even if you don't change the /etc/dnscrypt-proxy-2.toml file. The DNSCrypt servers that are already in .toml will be used. And any DNS server settings in the WebGUI will be ignored, and only DNSCrypt servers with DNS query encryption will be used.

If you want to use your own set of DNSCrypt servers, you must change the /etc/dnscrypt-proxy-2.toml file with a text editor from the ssh/telnet console, for example by calling the

nano /etc/dnscrypt-proxy-2.toml

from ssh/telnet and by editing the line

server_names = ['cloudflare', 'sth-dnscrypt-se', 'scaleway-fr', 'techsaviours.org-dnscrypt', 'ams-dnscrypt-nl', 'dnscrypt.pl', 'serbica', 'faelix-ch-ipv4']

and using your preferred names from this set:

https://dnscrypt.info/public-servers/

For example change it to:

server_names = ['quad9-dnscrypt-ip4-nofilter-pri']

to use Quad9.

Voxel.
 

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top