Linksys WRT54G Firmware: OpenWRT, DDWRT, Tomato

September 15, 2011 by · 2 Comments 

Note:  it is inherently risky to install firmware on your router.  It is possible to make your router unfixable.  So please try this at your own risk.  Learn from what happened to me.

Summary:  I bought a WRT54G router with DDWRT installed, which has since made a one-way trip to a landfill.  I was able to find another WRT54G V2 at a local pawnshop and I put Tomato on it.  Most of this article has to do with my use of that first router.

I played with the original WRT54G with DDWRT for a maximum of 15 minutes, then flashed Tomato to the drive, then imposed access controls.  Everything was fine.  It was faster than the WRT54G Tomato router I have at home.  Then I flashed to OpenWRT because I wanted to turn on Asterisk.  Then I discovered OpenWRT doesn’t do access control as well as Tomato.  Then I tried to flash back to Tomato and…. guess what… OpenWRT does not allow you to use the GUI to flash other firmware.  Making the most of the situation, despite my panic, I played with OpenWRT for a while, trying to install first dansguardian, then uninstalling dansguardian and trying to install Asterisk completely unsuccessfully—router was unable to see repositories of download sites.  At this point I realized that even if I was able to install Asterisk I would have to administer it using the command line, not a gui, and overall the setup would be prone to break even if I got it working.  My previous experience with Linux command line is that I have learned some BASH script but troubleshooting from the command line is like driving a car by issuing instructions in a foreign language to a blindfolded driver who is volatile and unpredictable.  Therefore I decided at this point that Asterisk on the WRT54G was not a good idea due to the router’s limited capacity—Asterisk should be installed on a piece of more serious hardware, or should be installed by someone who is more of an expert than I am. I tried using telnet and the command line to install Tomato, and bricked my router (it became unresponsive to SSH and Telnet and unavailable via the router webpage).  I tried using tftp to install Tomato.  Apparently I did that wrong, and I more deeply bricked my router; I became unable to ping my router, and the power light was flashing (indicating a more serious bricking problem).  I cracked open the router and tried to bridge pins 15 and 16 on the flash chip (according to instructions I found online) but guess what… I bridged pins on the wrong chip and accidentally bent pins on the wrong chip so they stayed in contact.  Unfortunately after this the secret wisp of smoke that had previously magically made my router do its electronic work escaped and the router became garbage fodder—a $35 experiment gone wrong.  And now with some conviction I advise you not to try to use OpenWRT.

The lesson that I learned from this exercise is… do not install OpenWRT.  Or if you do, and you brick your router, (1) spend an hour or so reading about updating your flash firmware before you issue any commands to your router, seeing a couple of alternative methods and choosing the best one before you act; (2) use a small (not big and heavy) screwdriver to do the hardware debrick method, and make sure you are on the correct chip before you make any contact with metal parts while the router is on.  Preferably use a huge worktable magnifying glass and a good light source to see what you are doing on the router board as you are debricking it.  One tip I can give you is that instead of counting by sight, you can run the screwdriver along the pins next to the silicone, and as it passes over each ridge you can count one… two… three… up to fifteen.  When you pass fifteen you are now making contact between the fifteenth and sixteenth pins.  So now, if you are following the debricking instructions and have the ping –t command running—now is the time that you would plug in your router according to the online hardware debricking instructions (this should enable a response to your pings).  **I do not accept any responsibility if you are trying to debrick your router according to the online instructions and thereby let your own wisp of smoke escape—that is your responsibility NOT MINE**

Tomato, OpenWRT, and DDWRT

None of these software packages is perfect.  Tomato is strong for access control and internet monitoring.  OpenWRT is strong for added features (especially Asterisk).  DDWRT as far as I can tell is a very interesting software package but not as good as Tomato for access control, and not as good as OpenWRT for additional software.  However it is good for making your router a multi-wan router.  This is a useful application if for example you want to have two potential internet sources just in case—for business this might be a good idea. 

Considering how affordable these routers are compared with the dedicated components you can buy, it would be reasonable to have a collection of WRT54G routers, running with different firmware and for different purposes.

Overall I would recommend Tomato as the best of these for access control and general versatile use, DDWRT for multi-wan setup, and OpenWRT for Asterisk (if you are working with a WRT54G router).  Tomato is also good and easy to configure as a wifi bridge or client.  You can for example use a pair of these Tomato routers to inexpensively create a secure 54Mbs wifi bridge between two buildings or two spots in your house, if you don’t want to wire your house with ethernet cable.  The implications of that bridging capacity alone are really mind-boggling.

You will probably need some BASH scripting experience to use OpenWRT (although I guess it’s called ASH and is more limited than BASH), but not necessarily with Tomato.

Tomato

I’ve been using Tomato for a couple of years.  (here’s a good guide to the Tomato menu) It provides detailed information about your usage of the internet.  It is probably the best software for access control—you can easily block all internet access at certain times of day without trying to write iptables instructions.  You can block keywords—if you block about 10 obviously knowable bad words you’ll immediately have blocked a LOT of the bad stuff on the internet.  Also it’s user-friendly and easy to work with.  Maybe that’s just from my familiarity with it, but based on what I’ve seen it’s just the best.  DDWRT was not as easy to block bad stuff with as Tomato, although I believe it was easier to use than OpenWRT.  (Not to complain about any of this software, it’s just I have a preference for Tomato).

You can also do more complicated things with Tomato, including iptables scripts.  However I have found that unnecessary.

Tomato is nice for benchmarking your internet use because it shows you nice and precise almost-real-time graphs of your internet use.

See some screenshots of Tomato:

ScreenShot009ScreenShot008ScreenShot006ScreenShot005ScreenShot004ScreenShot002ScreenShot001

 

I tried desperately to install Asterisk VOIP control software on the Tomato Linksys WRT54G, but that did not work.  Some instructions advise that you can install Asterisk to a Tomato router (http://www.consumedconsumer.org/2010/02/voip-from-scratch-ii-hardware.html, http://www.toao.net/425-asterisk-on-a-router), but those instructions are for routers with USB ports (which the WRT54G does not have).  I believe that the file system in Tomato is less developed than the one in OpenWRT, which is why OpenWRT is able to install an additional component like Asterisk.  To make a long story short I tried to activate the JFFS2 file system in Tomato and then tried to install Asterisk to JFFS2—but it was only one megabyte and that was not enough space to hold Asterisk.

OpenWRT

ScreenShot011

ScreenShot012

OpenWRT has more of a Linux culture than Tomato.  The instructions to download and install the software exist but take some doing to figure out.  Unlike Tomato which is laid out in a way that shows that the developers put some thought into your navigation of their website.  OpenWRT is more of the wild untamed Linux world, where “anything is possible” but you sometimes have to spin your wheels to move from step one to step two.  Once you get moving I guess the world is your oyster.

I didn’t see any good directions to install OpenWRT, so I am going to lay it out for you.  To install OpenWRT:

1) Select your device and find the correct firmware based on your device:  http://wiki.openwrt.org/toh/start

2) Download an image, the correct one for your device by these means:  http://wiki.openwrt.org/doc/howto/obtain.firmware 

You have to know which package you are looking for before you visit this area:  http://downloads.openwrt.org/backfire/10.03)

3) Flash the firmware to your router using the “firmware upgrade”

 

OpenWRT is good because it can have Asterisk installed on it. (http://lestblood.imagodirt.net/archives/106-Asterisk-on-OpenWRT-part-2.html)

OpenWRT is more like a full-on Linux distro because it is designed with additional packages that can be incorporated.  In theory you can incorporate dansguardian which is an excellent (if touchy) internet access control software. (https://forum.openwrt.org/viewtopic.php?id=8448).  I personally had trouble with it in the five minutes I devoted to it, and anyway the reason I’m here doing this is for Asterisk, so…

One strange thing about OpenWRT is that once you install it it is difficult to uninstall it and reflash back to Tomato.  I know this because after I flashed it and realized it had extremely limited internet controls on it I immediately tried to reflash back to Tomato but the software wouldn’t let me! Probably there is a way that I haven’t found.  (See Gary’s comment below)

Tomato is a control panel, OpenWRT is a maze of controls—not necessarily all the controls you want.  But it does Asterisk, so…

Update:  OpenWRT is dangerous.  Once you install it it’s difficult to get rid of, unlike the other softwares which are not designed to entrap you.

 

DDWRT

DDWRT I am sure is good but I don’t know how you do access control or Asterisk on it.

A major advantage with DDWRT is that you can make your router a dual wan router.  You can buy cheap dual wan routers on ebay for about $80.  Or you can make your hacked router (which you can get for $54 brand new at Newegg) do it using DDWRT.  Here is a google search on that issue.  Tomato is not really set up for that yet.  It is possible to do it with OpenWRT but based on my experience with OpenWRT, and also based on the number of people complaining online that they have a bug in their multi-wan configuration through OpenWRT I would think it’s easier to accomplish multi-wan with DDWRT.

I was going to switch to OpenWRT but I need access control so I am sticking to Tomato for now.  Later if I invest in more of these WRT54Gs I will likely continue to experiment with both DDWRT and OpenWRT.

I tried to install Asterisk with OpenWRT and ran into a lot of problems.  I decided at the time it wasn’t worth it—the router became slow and apparently was unable to see the repositories it needed to download the necessary files? 

The Linksys router is cheap, but my feeling at the time was that if you really want Asterisk it’s worth upgrading to something more powerful to run it on.

 

Here’s another article saying Tomato is better than the others.  http://www.decimation.com/markw/2007/10/02/dd-wrt-vs-tomato-winner-is-tomato/

13-38

Houstonian Corner (V12-I10)

March 4, 2010 by · Leave a Comment 

PARENTS: Get Your Children Health Insurance On March 12th At Shifa Clinic

“Houston Shifa Foundation (HSF) established a partnership with the Children’s Defense Fund (CDF) some twelve months ago, when HSF was offered training by Ms. Kelli Jackson. Because of this partnership we have managed to enroll close to 150+ families in various CHIP and Medicaid programs. This has benefited the most vulnerable members of our community, our children. Now on Friday, March 12th, 2010, 1pm.-5pm., our community parents can come to our Southwest Clinic at 10415 Synott Road, Bldg “D”, Sugar Land, Texas 77478 and get their children’s CHIP / MEDICAID Applications filled out. For eligibility, documentation requirements and more details, parents can call Mahmood Marfani at 832-660-1848 or visit www.ShifaClinicHouston.org:” This was informed at a Special Press Briefing for Community Media at HSF by Rafique Jangda, Executive Director of the Shifa Clinic.

Kelli King-Jackson, Director of Outreach for CDF-TX provided information on mission of the Children’s Defense Fund: “There are 1,584,276 (24.1%) children uninsured in Texas. Just in two of the 13 counties in the greater Houston region, Harris County has 332,093 (30.7%) children uninsured and Fort Bend has 336,030 (26.2%) children without health insurance. Our motto is that every step we take to improve the lives of children improves the lives of all of us: Today – Tomorrow – Together. Our mission is to leave no child behind without proper healthcare and our partnership with Shifa is significant, as this institution is providing excellent basic health services at a very minimal cost or for free to those vulnerable in our society, who have no other place to go. We would like to invite all the eligible parents to come on Friday, March 12th, 2010, between 1pm.-5pm., at HSF located at 10415 Synott Road, Bldg “D”, Sugar Land, Texas 77478 and get their children’s CHIP / MEDICAID Applications filled out. For eligibility, documentation requirements and more details, parents can call CDF office at 713-664-1975 or visit www.ChildrensDefense.Org

Other than the Children’s Defense Fund, HSF has established partnerships with Denver Harbor Clinic and Airline Children’s Clinic, which gives opportunity for the community living in other parts of town to avail excellent low cost (some free) health services near their home. Marisa Ponti, Marketing Director of Denver Harbor Clinic was present at the Press Conference. Denver Harbor Clinic is located at 424 Hahlo Street, Houston, Texas 77020, Phone: 713-674-3326 and Airline Children’s Clinic is situated at 5808 Airline Drive, Houston, Texas 77076, Phone: 713-695-4013.

Another good resource to visit is www.CHIPMedicAID.Org

Mayor Parker & Faith Leaders Unite to Celebrate Census Sabbath This Weekend

Picture AX
Census Sabbath Press Conference by Interfaith Ministries at United Methodist Church Downtown Houston…

Community Being Encouraged To Simple Mail-In The Census 10 Questions Form by March 21st, 2010

“As members of this faith-based community and the communities in which we live and work, we have much at stake going into the 2010 Census. We pledge to dedicate sermons, provide spiritual guidance, and teachings focused on a ‘higher calling’ to make every person count.”

This was the pledge read by Mayor of Houston Annise Parker at the special press conference held to announce March 5th, 6th, & 7th, 2010 as the Census Sabbath in Houston.

Census numbers are important, as they determine the representation in the US Congress and if all Houstonians are counted, there is every possibility that this region will get a new Congressional Seat. The US Constitution requires Census to be done every ten years at the beginning of the decade and the results also provide a yardstick to allocate federal and state funds for infrastructure development, health, education, and other developmental projects at local levels.

Houston Mayor Annise Parker and Congresswoman Sheila Jackson Lee, joined by Pastor Rudy Rasmus of St. John’s United Methodist Church and President of the Islamic Society of Greater Houston Dr. Aziz Siddiqi to call on Houston’s religious community from all walks of faith to pledge their commitment to provide Census education to their congregations during Census Sabbath weekend.

“The weekend of March 5-7 celebrates Census Sabbath, a time in which faith-based institutions throughout Houston will dedicate sermons, provide spiritual guidance and teachings focused on a ‘higher calling’ to make every person count. A complete count in Houston will result in additional federal funding to help meet the growing needs of Houston’s diverse communities. We want to gain congressional seat; make sure legislative boundaries are drawn based on all the persons counted; and not lose $1,700 per person who does not get counted. It is Easy – It is Important – It is Safe.”

Mayor Parker said that funding based on the Census will help expand community centers, improve transportation and increase health care options.

Houston mail-in response rate in 2000 Census was 61%, 3 points lower than national average of 64%: So this year all Houstonians are being urged by our media outlet that they need to beat the national average this year. The moment you receive the Census Form in the mail around March 15th, 2010, simply fill out the easy 10 questions and mail them in, to fulfill your moral, national, community, and societal duty.

12-10