Diversion Diversion - the Router Ad-Blocker

[M@rco]

  ✔  Diversion Standard v4.0.2 auto-update complete

That was another 'Glatt wie ein Babypopo'-update. I'm loving it.

 

[thelonelycoder]

@thelonelycoder Thanks for ab-solution - I have been using it for past 1 year without any issues.
I recently upgraded the merlin firmware (384.6) on rt-ac88u and tried a fresh install of diversion after erasing jffs partition. The install fails every time with the message 'Level 3 did not respond, pinging cloudfare. Check your internet access'. I have internet access working fine on numerous other devices so I am not sure of the problem. Can you help me with a way to resolve the issue? Also, I have no knowledge of coding so please provide code lines if you would want any logs from me. Thanks in advance.

You seem to block Level 3 and Cloudfare IP addresses. The v4.0.2 Diversion update has a workaround to continue anyway (at your own risk).

 

[thelonelycoder]

@thelonelycoder Is there any straightforward way to define two IPs for pixelserv-tls from Diversion?

No.
What's the advantage of such a setup and how do you think this would work with the blocking file, blacklist and wildcard-blacklist that all use the pixelserv-tls IP to redirect domains to it?

 

[Clark Griswald]

Attempted update "d", and got this return:

/opt/bin/diversion: line 227: can't fork
cat: error while loading shared libraries: libm.so.6: failed to map segment from shared object

 

[thelonelycoder]

Attempted update "d", and got this return:

/opt/bin/diversion: line 227: can't fork
cat: error while loading shared libraries: libm.so.6: failed to map segment from shared object

Do you happen to run that special pixelserv-tls version?
Anyway, disable shell history sh.
Worst case you can exit all Diversion UI sessions and modify the diversion.conf to say:

shHistory=off

 

[Richie]

You seem to block Level 3 and Cloudfare IP addresses. The v4.0.2 Diversion update has a workaround to continue anyway (at your own risk).

Can I unblock Level 3 and Cloudfare IP addresses? I'd just like to be able to do a normal clean install.
Just wondering if firmware upgrade could have caused this (i think not) but that was the only change in environment. I tried re-installing ab-solution and got the same error of internet access.

Can you please clarify on the risks involved in the workaround present in version 4.0.2?

Thanks!

 

[Clark Griswald]

Do you happen to run that special pixelserv-tls version?
Anyway, disable shell history sh.
Worst case you can exit all Diversion UI sessions and modify the diversion.conf to say:

shHistory=off

I do run pixelserv-tls version 2.2.0-rc.5. I had a moment, so I wiped the usb and reinstalled Diversion and pixelserv. All seems to be working now.

@thelonelycoder Thank You for your work!

 

[thelonelycoder]

Can I unblock Level 3 and Cloudfare IP addresses? I'd just like to be able to do a normal clean install.
Just wondering if firmware upgrade could have caused this (i think not) but that was the only change in environment. I tried re-installing ab-solution and got the same error of internet access.

Can you please clarify on the risks involved in the workaround present in version 4.0.2?

Thanks!

The pings are a general test for internet connectivity. If your router is off the grid then downloading Entware and the hosts files might not be possible.
You can test it in the ssh terminal yourself:

ping 8.8.8.8

(use CTRL-C to exit the ping)
This is for google, the others are Level 3 (IP 209.244.0.3), Cloudfare (1.1.1.1).
Asuswrt-Merlin does not block these AFAIK, unless you have things enabled that do. It is your router, know it.

It is up to you to continue anyway in Diversion.
AB-Solution has the same internet checks as Diversion. Diversion receives updates, AB-Solution does not.

 

[thelonelycoder]

I do run pixelserv-tls version 2.2.0-rc.5. I had a moment, so I wiped the usb and reinstalled Diversion and pixelserv. All seems to be working now.

@thelonelycoder Thank You for your work!

I also run pixelserv-tls v2.2.0-rc.5 on all the routers I test Diversion on. I have never seen that error.
Do me the favor of enabling sh again, then exit and restart the Diversion UI if not already done.

 

[Asad Ali]

I also run pixelserv-tls v2.2.0-rc.5 on all the routers I test Diversion on. I have never seen that error.
Do me the favor of enabling sh again, then exit and restart the Diversion UI if not already done.

RC5 have two builds, one is dynamic and second is statically linked with openssl 1.1.1.

I have statically linked one installed and updated diversion without any issues.

 

[Clark Griswald]

Statically linked pixelserv-tls (support TLS 1.3 and versions <= 1.2)
is the build that I had/have installed.

I have enabled sh and restarted, and Diversion & pixelserv seem to be working correctly.

 

[thelonelycoder]

@thelonelycoder any way to make an iOS shortcut similar to this but for Diversion?

What does it do and how does it work?

 

[XIII]

RC5 have two builds, one is dynamic and second is statically linked with openssl 1.1.1.

I have statically linked one installed and updated diversion without any issues.

I on the other hand use the dynamic one and updating went fine as well.

 

[thelonelycoder]

I on the other hand use the dynamic one and updating went fine as well.

Might have been a freak accident for @Clark Griswald, you know, he's the type to have these occasionally

 

[dvohwinkel]

How does one uninstall Diversion/pixelserv-tls ?

 

[Adamm]

What does it do and how does it work?

Essentially pointless at this point. iOS 12 has the ability to create your own basic toggles which have limited if/else style scripting.

One of the functions is run a command via SSH, but stupidly it doesn’t even support SSH keys.

Many terminal apps out there handle “quick commands” much better, I wouldn’t lose any sleep over it until apple beef up it’s usefulness.

 

[thelonelycoder]

How does one uninstall Diversion/pixelserv-tls ?

In the Diversion UI enter d.

 

[thelonelycoder]

Essentially pointless at this point. iOS 12 has the ability to create your own basic toggles which have limited if/else style scripting.

One of the functions is run a command via SSH, but stupidly it doesn’t even support SSH keys.

Many terminal apps out there handle “quick commands” much better, I wouldn’t lose any sleep over it until apple beef up it’s usefulness.

That could be handy if it evolves to something useful. But before I look into it there are more pressing things in my to do list.

 

[Hate]

Really appreciate you developing this @thelonelycoder , it's great!

Not sure if you are accepting bug reports here, but did [possibly?] find a small one.

When I was adding a domain to the whitelist (image included) it came back with "found exact match in blocking file:" but listed the domain I entered. Assuming (but you know what they say about assuming ) it should lists the actual host(s) files that have the domain listed? Or maybe it is intended the way it is? Either way, thank you for the amazing service!

 

[Rhialto]

I use Statcounter to monitor some stats so I need to be able to visit https://statcounter.com/

When I disable and enable Diversion I can get access to it but just for a short time then I get a certificate error. I use Standard list btw.

Is the option to add it to the whitelist? What format exactly?