[Fork] FreshTomato-MIPS

Discussion in 'Tomato Firmware' started by kille72, Apr 26, 2018.

  1. pedro311

    pedro311 Networkin' Nut Member

    All WL drivers in MIPS are the same as on V140 by Shibby.
    pharma likes this.
  2. Beast

    Beast Network Guru Member

    I have been thinking that i noticed the devices not dropping from the list, was about the same time the changes to the quality calulations where changed. Also observed the same thing with quality being 85-100. And before the changes every connection was very low indeed, somewhere around 28 to 40.
  3. danielhaden

    danielhaden Network Guru Member

    Shibby, Feburary 2018: https://openlinksys.info/forum/view...24&highlight=krack+141&pid=167137#post_167137

    Option: I just found Toastman 2017 builds https://www.4shared.com/folder/rnihHn43/Toastman_Firmware.html I had to use chrome and ublock adblocker during downloads, but then it worked. The typical Toastman build is non-multiwan and can support a multitude of clients, including mine. Let's hope the source code hasn't been lost.

    Edit: I didn't manage an accurate comparison, because I loaded the RT instead of the RTN build. The 2.4ghz wifi throughput is 28% higher and 5 barz, to most rooms. Atf is not present.

    News: The phone issue is gone after clicking "measure" to measure the background noise. This resets the graph to reasonable figures. The phone is not associated ~19 seconds after it is powered off. If Toastman's source code can be found, the fix is in it.
    Last edited: Oct 5, 2018
  4. glehel

    glehel Reformed Router Member


    my AC66U run v1.28.0511 MIPSR2Toastman-RT-AC K26AC USB VPN
    can you update the latest freshtomato keeping the settings?
    unfortunately I do not have time to re-configure.
  5. Feliciano

    Feliciano Network Newbie Member

    From one branch to the other, and sometimes from one build to the next, variables are added and removed, and/or renamed. Therefore you are advised to not do so.

    To save me time as well, I have a txt file with all the configurations of my router, then I copy and paste as needed when upgrading/downgrading or doing a reset to default.
    glehel likes this.
  6. kernel-panic69

    kernel-panic69 Network Newbie Member

    I forgot to specify that this is where I found Toastman's and other Tomato source code when I posted originally

    Last edited: Oct 14, 2018 at 6:28 PM
  7. tbrautaset

    tbrautaset Network Newbie Member

    Know it's a little too late now, but on my TomatoUSB
    Model Asus RT-AC3200
    Chipset ARMv7 Processor Rev 0 (v7l)
    CPU Frequency 1000 MHz (dual-core)
    Flash size 128 MB

    Captive Portal Management has worked perfectly :), upgraded to the next version as usual, but not this time for 2018.4 everything was constantly looping:oops: and now I understand why. Captive Portal has been removed:(!

    Possibly I'm the only one who likes to have a nice welcome page for guests and others?


    Is it possible to get this implemented again? Or do I have to look for other third-party firmware that has this feature?
    Last edited: Oct 7, 2018
  8. pedro311

    pedro311 Networkin' Nut Member

    Well, I'll consider adding this feature again, then.
    rs232 and tbrautaset like this.
  9. tbrautaset

    tbrautaset Network Newbie Member

    It would have been great if you do, thank you in advance @pedro311[​IMG]
  10. kernel-panic69

    kernel-panic69 Network Newbie Member

    I guess you could possibly try nodogsplash, but nocatsplash / nocatauth may not work correctly without some patching, I think because the required dependencies break http/https redirect badly?
    tbrautaset likes this.
  11. Sean B.

    Sean B. LI Guru Member

    Optware/Entware have captive portal packages, such as chillispot.
    tbrautaset likes this.
  12. FredericM

    FredericM Network Newbie Member

    I also tried your suggestion but it doesn't seem to be a success on my router. I clicked measure and the noise floor changed to -92 dbm (eth1) and -90 dbm (eth2) from -99 dbm.
  13. Sean B.

    Sean B. LI Guru Member

    Out of curiosity, try Tools->Wireless Survey and click refresh.
  14. tbrautaset

    tbrautaset Network Newbie Member

    It's possible there were weaknesses with the built-in solution up to 2018.3, but for me it worked perfectly.

    Got a great welcome page, user authentication with forwarding where i would without error in any way, bandwidth limiter for default class LAN1 (br1) also worked, what more could you wish for?

    Things can always be better, and the way you do it can certainly also be safer, but for me that's all right!
    kernel-panic69 likes this.
  15. FredericM

    FredericM Network Newbie Member

    After executing the survey, my phone had no rssi and and quality value anymore in the client list.
    Also all other wireless client have reconnected to the router.
  16. CroRoby

    CroRoby New Member Member


    For Tenda N60 router the "freshtomato-K26USB_RT-N5x-MIPSR2-2018.1.066-beta-TendaN60.zip" was the latest firmware I could flash due to file size. It is working very well, but I would like to upgrade to latest freshtomato releases if it is possible to repair.

    The error message during the upgrade process is:

    " File is too big to fit in MTD "

    Thank you for your hard work!
  17. pedro311

    pedro311 Networkin' Nut Member

    @up: I'll remove minidlna (as always) from the image and add dnscrypt-proxy and JFFS (as ie. in a/r2a targets). It should fit then.
    Will upload in "test" folder ASAP.

    //EDIT: uploaded, as "freshtomato-K26USB_RT-N5x-MIPSR2-2018.5.020-beta-TendaN60", enjoy.
    Last edited: Oct 8, 2018
    Monk E. Boy and CroRoby like this.
  18. AndreDVJ

    AndreDVJ LI Guru Member

    As NoCatSplash in TomatoUSB stands, it has a big problem: It doesn't intercept HTTPS.
    • If you try https://www.google.com, it won't work. The browser hangs and you won't even get into splash page.
    • If you try this forum http://linksysinfo.org, it works. You'll see the splash page and will redirect properly.
    This is not acceptable. It doesn't qualify as "works perfectly" in any way. I have no idea of any other security implications of that. That's the main reason why Captive Portal feature needs to be retired.

    And to make matters worse, enabling QoS will completely break NoCatSplash, and will completely break all web browsing. They don't co-exist unless someone have a look on how iptables rules are generated, though I have no desire in looking into it.
    pharma, Sean B., kille72 and 2 others like this.
  19. tbrautaset

    tbrautaset Network Newbie Member

    For my use at home, I do not see the need for a ssl based welcome page under the authentication of my guests, have set a limit of 20Mbps both ways and when authorized, everything works, so it depends on the use I guess:). As long as there are no built-in options that provide what you want when it comes to intercept / redirecting to https://? This alternative is better than discontinuing it. Well thats my two cents;).
  20. maurer

    maurer Network Guru Member

    I believe you're the one of the very few still using Captive Portal
    I don't think it worth keeping this functionality only for some very few users.
    You can basically compile it yourself (adding the captive portal) - just open a new thread
    pharma likes this.
  21. kernel-panic69

    kernel-panic69 Network Newbie Member

    Kinda figured the thing with Captive Portal is what it is. Not sure about the difference in Tomato and routers, but I had a working NoCatAuth authentication gateway working on OBSD and Linux 2.4 on x86 hardware forever ago. Never had an issue with https redirects that I recall off the top of my head, but I've slept since then.
  22. CroRoby

    CroRoby New Member Member

    Thank you for the fast reply.

    Yesterday I downloaded and flashed it. Now it is running for 10 hours wihout errors.
  23. danielhaden

    danielhaden Network Guru Member

    I noticed that Victek had "speedtest" version for RT-N16, E3000, E4200...
    Does that mean Vectored Interrupt Support?
  24. kiki64

    kiki64 New Member Member

    Hello everyone, thank you all for helping this project and continuing to support this firmware.

    I have been having some issues with 2018.4 fresh tomato while I have had 60+ days of uptime with advanced tomato.

    Router Model: Asus RT-AC66W (RT-AC66U)
    Chipset: Broadcom BCM5300 chip rev 1
    Flash Size: 128MB
    NVRAM: 64KB
    Fresh Tomato Firmware: freshtomato-mips 2018.4/K26RT-AC/freshtomato-RT-AC66U_RT-AC6x-2018.4-AIO-64K.zip
    Advanced Tomato Firmware: tomato-RT-AC66U_AT-RT-AC6x-3.5-140-AIO-64K.trx (latest)

    Modem: ARRIS TM1602AP2 (Spectrum supplied)
    Secondary Router: D-Link DIR-655 A 1.37
    Country: United States

    My enviornment is 1 modem, 2 routers, 3 wired machines, multiple wireless machines. Both routers are enabled with one supporting 192.168.1.X /24, the other 192.168.2.X /24, and both WANs using DHCP.

    My issue has been with the WAN port. Once I plug in the WAN port it will configure itself and within ~3 mins it seems to reset the entire device over and over again. If I do not plug in a cable to the WAN port the router seems stable. This happens when the router's WAN is plugged directly into the modem and also when it is plugged into the other router's LAN which has it's WAN plugged into the modem.

    The firmware that I mentioned above is the only Fresh Tomato Firmware that I have tried thus far. When flashing I checked the clear NVRAM checkbox. I also had to Administration > Configuration > Restore Default Configuration > "Erase all data in NVRAM memory (through)" and reboot immediately to get the 5GHz band to appear.

    As far as the settings I changed once the router is live: time, the basic wireless settings, the wireless country for both bands, admin access settings. I leave all of the default settings for WAN and IPv6. (also tried to match with advanced tomato) Usually I would configure things much more but I am trying to pin down the issue while still having internet. I have also noticed that when I disable 2.4GHz on the ASUS, save, and when the router resets that it enables the 2.4GHz band again. Not sure if that is normal or not.

    When looking in the logs, the only thing that was listed was a SIGTERM at the time of the reset. If there is more log information that I can enable and how to make it survive a reset I would like to know so I can post my logs.

    This router usually needs to be in use so it will take time to go through the network permutations and firmware bisects that I haven't tried yet. Thanks for any help you can provide.
  25. tbrautaset

    tbrautaset Network Newbie Member

    Like this ?
  26. Feliciano

    Feliciano Network Newbie Member

    Log to an external server, and select all the debug information you think it might be related.
  27. Radojevic

    Radojevic New Member Member

    Maybe it's the 'WAN Port Speed' setting, which is 'Auto', by default.

    It's here:
    Advanced -> Miscellaneous -> WAN Port Speed
    Set it to '100Mb Full'.

    This should narrow down the problem.
  28. txnative

    txnative Networkin' Nut Member

    Have you changed the IP address of the Router? The Arris ip is you should change yours. Only use one router as a gateway the other router is whatever you want it to be other wise you'll have a Double NAT using both wan ports Asus & D-link. I'm not sure if you are familiar with Spectrum modems, you need to reboot the modem and router so they sync together, usually I'd wait after a minute and half before rebooting your router, you know after the Arris has started cycling then they'll be insync doesn't matter if it's not perfect just so that the Arris is waiting for your router to finish it's cycle is fine. How you configure your network is up to you afterwards.
  29. koitsu

    koitsu Network Guru Member

    Arris cable modems (i.e. bridges) are usually, not -- note the last two octets. The TM1602AP2 appears to be just a modem.

    Maybe off-topic, if so sorry: cable modems also have a weird form of layer 3 monitoring for their LAN or Ethernet side (read: not coax). They do in fact monitor packets destined to their particular IP address ( in most cases, but it varies per modem brand and sometimes per model), even if your own LAN network isn't in space. Yes really! Tomato has a feature that helps work with this as well (the "Route Modem IP" field in Basic -> Networking), or if you're using older Tomato where this GUI field isn't present you can add the appropriate IP routing rules yourself. Other brands/models actually require your LAN network to live within the same network the modem expects -- which really sucks for live troubleshooting (I had an RCA/Thompson modem back in the early 2000s that worked that way. Awful product in general).
    pharma likes this.
  30. txnative

    txnative Networkin' Nut Member

    oops on the ip address and yes the arris is a teleophony modem and phone line, that is what I use to have before switching out for a technicolor and phone line no bridging involved when using these devices. It is just that if you use your own router and pending on your plan you'll most likely receive one of these telephone modems or end up using a all in one router/modem. For some ISP that may require some specific I image if you are with a particular setup that will require some more than usual setup for your network as you were explaining to use the feature in tomato basic network setup. Mainly the issues I had was not the modem(arris) it was more on the tier station problem and once they resolve it now everything is normal now.
  31. kernel-panic69

    kernel-panic69 Network Newbie Member

    X2 on the "Route Modem IP". You have to either enter the actual IP or, if I remember right. Otherwise, things get a little screwy.
  32. kiki64

    kiki64 New Member Member

    Thanks for the responses everyone, I got a chance to setup a logging server and test the router.

    I attempted to change this setting and on the status page of the router the WAN port speed didn't change. I'm guessing I can't change it from auto negotiation on this router.
    I saw no real change to the stability of the router even with half duplex set.

    You are correct that this modem's internal ip address is set to

    Now for what I tried so far,
    I attempted to remove everything from the network. The devices remaining were: modem, router, desktop, and raspberry pi for log collecting. This time I only changed the logging server (enabled all checkboxes), time, and wireless country. I didn't reconfigure the wireless settings to stop my phone and other devices we have from connecting. The router still had some issues resetting but I was able to watch a 25 minute youtube video without disconnecting during the video but once the video was over the router reset.

    My phone: Nexus 5x Android 8.1.0 (October 5 2018)

    After this I configured the wireless settings to let just my phone connect to the wifi and the constant resetting started to happen. By looking at the logs, it looks like the phone keeps trying to configure itself with DHCP but it must fail and keeps trying. I compared the logs to advanced tomato and it is missing a log line while the phone is connecting.

    I have scrubbed logs of the host / device parts of the unique addresses. Any identifiers (IP / MAC) that have the same network / manufacturer address parts are the same devices through out. Neither the raspberry pi or my desktop ever showed up in the logs sent to the raspberry pi. My guess is that they got the setting they needed and don't retry unless the address lease expires or something. Only my phone was ever listed in the logs by the router.

    Fresh tomato 2018.4:

    Advanced tomato:
    Oct 15 04:39:38 unknown daemon.info dnsmasq-dhcp[2529]: DHCPDISCOVER(br0) 64:bc:0c:xx:xx:16
    Oct 15 04:39:38 unknown daemon.info dnsmasq-dhcp[2529]: DHCPOFFER(br0) 64:bc:0c:xx:xx:16
    Oct 15 04:39:38 unknown daemon.info dnsmasq-dhcp[2529]: DHCPREQUEST(br0) 64:bc:0c:xx:xx:16
    Oct 15 04:39:38 unknown daemon.info dnsmasq-dhcp[2529]: DHCPACK(br0) 64:bc:0c:xx:xx:16
    Oct 15 04:39:39 unknown daemon.info dnsmasq-dhcp[2529]: RTR-SOLICIT(br0) 64:bc:0c:xx:xx:16
    I was hoping for more verbose logs on what is sending the terminate but not sure how to turn that on or if that is a thing. Thanks again for any help.
    Last edited: Oct 16, 2018 at 6:03 AM
  33. kernel-panic69

    kernel-panic69 Network Newbie Member

    The dnsmasq is dhcp for the LAN side. Only thing I know that sends a sigterm to it is the large adblock lists, wound up disabling adblock because of it. That shouldn't affect WAN side, but it may cause a reboot. There are fixes in 2.80test7 and 2.80test8, I believe 2.80test7 is merged in the latest commits, so some of the issues may have to wait until next build unless you compile yourself.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice