What's new

[Fork] Asuswrt-Merlin 374.43 LTS releases (Archive)

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

somehow my optware has disappeared. how do i get it back without having to reinstall all the optware applications and settings?
All the optware stuff should be in the jffs space. Login to make sure that /jffs is accessable and has been formatted (it has the scripts and configs directories).
If not, then make sure jffs is enabled and enable format at next boot and reboot.
Then restore your jffs backup and everything should be back.
 
Thanks John for the information, Since I not noticed issues I will keep it as it is but have made a note just in case.
 
All the optware stuff should be in the jffs space. Login to make sure that /jffs is accessable and has been formatted (it has the scripts and configs directories).
If not, then make sure jffs is enabled and enable format at next boot and reboot.
Then restore your jffs backup and everything should be back.
shall do that. accidentally tried to install optware and it clashed with the original entware install. got it all sorted out finally.
 
Hi John! I wanted to enable https for the router's admin page. When I enabled it, while it does show https, the browser also shows a privacy error since the certificate is not trusted. Had a couple of issues:
-What does the setting "Save HTTPS certificate**" do?
-How do I trust the certificate the router is using? And should I do this? Will this expose my computer to man in the middle attacks (lenovo superfish comes to mind)?

Guess it was more than a couple issues ;). Thanks for your time!
 
Hi John! I wanted to enable https for the router's admin page. When I enabled it, while it does show https, the browser also shows a privacy error since the certificate is not trusted. Had a couple of issues:
-What does the setting "Save HTTPS certificate**" do?
-How do I trust the certificate the router is using? And should I do this? Will this expose my computer to man in the middle attacks (lenovo superfish comes to mind)?

Check for the solution here: http://www.snbforums.com/threads/pi...ebserver-for-adblock.26114/page-9#post-252339

edit: information for creating the certificates if you are starting from scratch is here: https://github.com/kvic-z/pixelserv-tls#prepare-your-root-ca-cert
 
Hi John! I wanted to enable https for the router's admin page. When I enabled it, while it does show https, the browser also shows a privacy error since the certificate is not trusted. Had a couple of issues:
-What does the setting "Save HTTPS certificate**" do?
Normally, the router will generate a new certificate every time the router is rebooted. This makes it impossible to save this self signed certificate in the browser and have it be persistent. Saving the certificate makes the router keep the same certificate across reboots.
-How do I trust the certificate the router is using? And should I do this? Will this expose my computer to man in the middle attacks (lenovo superfish comes to mind)?
Do a google search on how to save a self signed certificate on your particular browser (each browser is a bit different). I have it saved under IE11, Firefox and Chrome, primarily for test purposes. As far as exposures go, IMHO, you shouldn't be using the option to access the gui from the WAN. Set up the router as an OpenVPN server and get access to the gui that way if you need to. Then you only need to worry about people you've already given access to your local LAN and what they can do.

People more familiar with these security aspects, please feel free to chime in.
 
The only "secure" way I know of is to create your own Certificate Authority (trust the created CA in your browser) then create whatever host-keys you want, sign them with your own CA, then transfer said cert to the host.


Simple.. right? o_O

Keep your CA's signing key very private.
 
Hi all. I installed today V17E8 and my router comes online for about 10 sec's / 30 sec? and then i can only ping it nothing more. Connect to it / ssh to it nothing works.

Right now i'm in rescue mode and pushing 16E? to it... hope that works.. but maybe someone can explain me why this happend. I always update the modem every month when theres a new firmware here. But this one goes bad on me.

I cannot reply to you because i have to catch a flight today but i can scroll back when i'm back and trying to update again with 17E8.

Thx for your reply's :)

Regards,

Tim
Can someone help me pls? i'm back from vacation and wanna fix my router. n66U right now i cant connect to it. What shall i do best?
 
The only "secure" way I know of is to create your own Certificate Authority (trust the created CA in your browser) then create whatever host-keys you want, sign

Simple.. right? o_O

Keep your CA's signing key very private.

Very simple indeed :D. This is what i had learnt back in college.
 
Can someone help me pls? i'm back from vacation and wanna fix my router. n66U right now i cant connect to it. What shall i do best?
Can you give an update as to exactly where you are at now (what firmware, can you get to the syslog and post it)?

If it's still hung and can't boot....
- power off, and try disconnecting any USB drives and see if that allows it to boot
- perform a factory reset by powering off, hold down the WPS button while powering on, wait for the power LED to start a fast blink, wait a few more seconds then release the WPS button. The router should then reboot back to factory defaults.
 
Can you give an update as to exactly where you are at now (what firmware, can you get to the syslog and post it)?

If it's still hung and can't boot....
- power off, and try disconnecting any USB drives and see if that allows it to boot
- perform a factory reset by powering off, hold down the WPS button while powering on, wait for the power LED to start a fast blink, wait a few more seconds then release the WPS button. The router should then reboot back to factory defaults.

For now its working again. But thru recovery tool. I have now a original rom installed (the latest beta version) and the wifi is about 50% slower!!
So i like to install this Rom again. But i'm afraid with latest rom what is different with the one's before?

I'm using this rom 2 years now (i think from the beginning) and never had issues until V17E8?
Can you or someone explain me what i done wrong because i really like to see this rom on it again.
And its 2 years ago that i flashed this rom, can i just goto the webpage login with admin goto firmware and write over this rom or do i need to take care some things first?

Thx for your time,

Regards,

Tim

update: just flashed with fingers crossed 17E2 this works!!
so if someone can explain what went wrong with 17E8 i flashed that rom but in the mean time i'm happy with 17e2 again!!
 
Last edited:
This one is going to be tough. The fix that was referenced was actually reverting a change from V17 that I thought may have helped the case when you tried to logon from two different clients at once, and had a side effect that on a page refresh (or page change) it would cause a re-logon. Unfortunately, I have no way to test Safari....I check
Firefox, IE11 under Windows 7
Firefox, Chrome under Linux Mint (Ubuntu)

If you switch to another gui page, and then back to the syslog page, did the logons continue while you are on the other page (that is, is this unique to the syslog page?)

Switched to ssl and this issue resolved itself :D no more multiple logins on safari.
 
Switched to ssl and this issue resolved itself :D no more multiple logins on safari.
I tried that a little while back and while it does take care of the syslog issue, the browsing becomes noticeably slow and for whatever reason, I haven't figured out how to get it to use the certificate I want. The https_crt_file nvram variable seems to end up being something random, even though I set https_crt_save to 1 and dropped the cert and key I wanted into /etc/cert.pem and cert.key. I switched it back to http, as the log file flooding is far less annoying than the certificate warning. Any ideas?
 
I tried that a little while back and while it does take care of the syslog issue, the browsing becomes noticeably slow and for whatever reason, I haven't figured out how to get it to use the certificate I want. The https_crt_file nvram variable seems to end up being something random, even though I set https_crt_save to 1 and dropped the cert and key I wanted into /etc/cert.pem and cert.key. I switched it back to http, as the log file flooding is far less annoying than the certificate warning. Any ideas?
If you want to use your own certificate follow the procedure here....
http://www.rickygao.com/how-to-upload-ssl-certificate-to-asus-router/
 
I tried that a little while back and while it does take care of the syslog issue, the browsing becomes noticeably slow and for whatever reason, I haven't figured out how to get it to use the certificate I want. The https_crt_file nvram variable seems to end up being something random, even though I set https_crt_save to 1 and dropped the cert and key I wanted into /etc/cert.pem and cert.key. I switched it back to http, as the log file flooding is far less annoying than the certificate warning. Any ideas?

I haven't noticed any slowdowns in browsing with https... however I do think there could be issues accessing the ui over openvpn. Yet to confirm this since I mistakenly deleted the app from my phone and am too lazy to reconfigure. Will post back when I do.
 
Can't speak for phone access, but I regularly access via Firefox and Chrome from a Linux laptop through the OpenVPN server without any problems.
 

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Staff online

Top