FXC-U-Boot 3.6.0.0_v01_20130805

Board: Ralink APSoC DRAM: 128 MB
relocate_code Pointer at: 87fac000
enable ephy clock…done. rf reg 29 = 5
SSC disabled.
spi_wait_nsec: 29
spi device id: c2 20 18 c2 20 (2018c220)
find flash: MX25L12805D
raspi_read: from:30000 len:1000
raspi_read: from:30000 len:1000
============================================
Ralink UBoot Version: 4.1.1.0
——————————————–
ASIC 7620_MP (Port5<->Phy)
DRAM component: 1024 Mbits DDR, width 16
DRAM bus: 16 bit
Total memory: 128 MBytes
Flash component: SPI Flash
Date:Oct 14 2013 Time:21:23:03
============================================
icache: sets:512, ways:4, linesz:32 ,total:65536
dcache: sets:256, ways:4, linesz:32 ,total:32768

##### The CPU freq = 580 MHZ ####
estimate memory size =128 Mbytes
PHY 4 Reg 27 = 35
PHY 4 Reg 27 = 31
PHY 5 Reg 27 = ffff
PHY 5 Reg 27 = fffb
### Tom ====== RTL8211E Phy2—time3
raspi_read: from:50000 len:60

=================================================
Check image validation:
Image1 Header Magic Number –> OK
Image1 Header Checksum –> OK
Image1 Data Checksum –> raspi_read: from:50060 len:5303d0
OK
=================================================

Please choose the operation:
1: Load system code to SDRAM via TFTP.
2: Load system code then write to Flash via TFTP.
3: Boot system code via Flash (default).
4: Entr boot command line interface.
7: Load Boot Loader code then write to Flash via Serial.
9: Load Boot Loader code then write to Flash via TFTP.
0

3: System Boot system code via Flash.

3: System Boot system code via Flash at addr=0xbc050000
## Booting image at bc050000 …
raspi_read: from:30000 len:10000
Erasing SPI Flash…
raspi_erase: offs:30000 len:10000
.
Writing to SPI Flash…
raspi_write: to:30000 len:10000
.
done
raspi_read: from:50000 len:60
Image Name: j18h130.00.v07050.20131113.foxconn
Image Type: MIPS Linux Kernel Image (lzma compressed)
Data Size: 5440464 Bytes = 5.2 MB
Load Address: 80000000
Entry Point: 8000c310
raspi_read: from:50060 len:5303d0
Verifying Checksum … OK
Uncompressing Kernel Image … OK
No initrd
## Transferring control to Linux (at address 8000c310) …
## Giving linux memsize in MB, 128

Starting kernel …

LINUX started…

THIS IS ASIC
Linux version 2.6.36 (tom@localhost.localdomain) (gcc version 3.4.2) #867 Wed Nov 13 10:55:17 CST 2013

The CPU feqenuce set to 580 MHz

MIPS CPU sleep mode enabled.
PCIE: bypass PCIe DLL.
PCIE: Elastic buffer control: Addr:0x68 -> 0xB4
disable all power about PCIe
CPU revision is: 00019650 (MIPS 24Kc)
Determined physical RAM map:
memory: 08000000 @ 00000000 (usable)
Initrd not found or empty – disabling initrd
Zone PFN ranges:
Normal 0x00000000 -> 0x00008000
Movable zone start PFN for each node
early_node_map[1] active PFN ranges
0: 0x00000000 -> 0x00008000
Built 1 zonelists in Zone order, mobility grouping on. Total pages: 32512
Kernel command line: console=ttyS1,57600n8 root=/dev/ram0 console=ttyS0
PID hash table entries: 512 (order: -1, 2048 bytes)
Dentry cache hash table entries: 16384 (order: 4, 65536 bytes)
Inode-cache hash table entries: 8192 (order: 3, 32768 bytes)
Primary instruction cache 64kB, VIPT, 4-way, linesize 32 bytes.
Primary data cache 32kB, 4-way, PIPT, no aliases, linesize 32 bytes
Writing ErrCtl register=0004546b
Readback ErrCtl register=0004546b
Memory: 121972k/131072k available (2858k kernel code, 9100k reserved, 678k data, 4208k init, 0k highmem)
NR_IRQS:128
MTK/Ralink System Tick Counter init… cd:8035def8, m:214748, s:32
console [ttyS1] enabled
Calibrating delay loop… 386.04 BogoMIPS (lpj=772096)
pid_max: default: 32768 minimum: 301
Mount-cache hash table entries: 512
NET: Registered protocol family 16
RALINK_GPIOMODE = 1a301d
RALINK_GPIOMODE = 18301d
PPLL_CFG1=0xe64000
MT7620 PPLL lock
PPLL_DRV =0x80080504
start PCIe register access
RALINK_PCI_PCICFG_ADDR = 1000f0

*************** MT7620 PCIe RC mode *************
bio: create slab at 0
vgaarb: loaded
SCSI subsystem initialized
usbcore: registered new interface driver usbfs
usbcore: registered new interface driver hub
usbcore: registered new device driver usb
pci 0000:00:00.0: BAR 14: assigned [mem 0x20000000-0x200fffff]
pci 0000:00:00.0: BAR 15: assigned [mem 0x20100000-0x201fffff pref]
pci 0000:00:00.0: BAR 1: assigned [mem 0x20200000-0x2020ffff]
pci 0000:00:00.0: BAR 1: set to [mem 0x20200000-0x2020ffff] (PCI address [0x20200000-0x2020ffff]
pci 0000:01:00.0: BAR 0: assigned [mem 0x20000000-0x200fffff 64bit]
pci 0000:01:00.0: BAR 0: set to [mem 0x20000000-0x200fffff 64bit] (PCI address [0x20000000-0x200fffff]
pci 0000:01:00.0: BAR 6: assigned [mem 0x20100000-0x2010ffff pref]
pci 0000:00:00.0: PCI bridge to [bus 01-01]
pci 0000:00:00.0: bridge window [io disabled]
pci 0000:00:00.0: bridge window [mem 0x20000000-0x200fffff]
pci 0000:00:00.0: bridge window [mem 0x20100000-0x201fffff pref]
BAR0 at slot 0 = 0
bus=0x0, slot = 0x0
res[0]->start = 0
res[0]->end = 0
res[1]->start = 20200000
res[1]->end = 2020ffff
res[2]->start = 0
res[2]->end = 0
res[3]->start = 0
res[3]->end = 0
res[4]->start = 0
res[4]->end = 0
res[5]->start = 0
res[5]->end = 0
bus=0x1, slot = 0x0
res[0]->start = 20000000
res[0]->end = 200fffff
res[1]->start = 0
res[1]->end = 0
res[2]->start = 0
res[2]->end = 0
res[3]->start = 0
res[3]->end = 0
res[4]->start = 0
res[4]->end = 0
res[5]->start = 0
res[5]->end = 0
Switching to clocksource Ralink external timer
NET: Registered protocol family 2
IP route cache hash table entries: 1024 (order: 0, 4096 bytes)
TCP established hash table entries: 4096 (order: 3, 32768 bytes)
TCP bind hash table entries: 4096 (order: 2, 16384 bytes)
TCP: Hash tables configured (established 4096 bind 4096)
TCP reno registered
UDP hash table entries: 256 (order: 0, 4096 bytes)
UDP-Lite hash table entries: 256 (order: 0, 4096 bytes)
NET: Registered protocol family 1
Load Ralink Timer0 Module
Load Ralink Timer1 Module
RT3xxx EHCI/OHCI init.
fuse init (API version 7.15)
Block layer SCSI generic (bsg) driver version 0.4 loaded (major 254)
io scheduler noop registered (default)
pci-stub: invalid id string “”
###[FXC] change gpio2 polarity to maintains status.
Ralink gpio driver initialized
Serial: 8250/16550 driver, 2 ports, IRQ sharing disabled
serial8250: ttyS0 at MMIO 0x10000500 (irq = 37) is a 16550A
serial8250: ttyS1 at MMIO 0x10000c00 (irq = 12) is a 16550A
brd: module loaded
deice id : c2 20 18 c2 20 (2018c220)
MX25L12805D(c2 2018c220) (16384 Kbytes)
mtd .name = raspi, .size = 0x01000000 (0M) .erasesize = 0x00000010 (0K) .numeraseregions = 65536
Creating 7 MTD partitions on “raspi”:
0x000000000000-0x000001000000 : “ALL”
0x000000000000-0x000000030000 : “Bootloader”
0x000000030000-0x000000040000 : “Config”
0x000000040000-0x000000050000 : “Factory”
0x000000050000-0x000000fe0000 : “Kernel”
0x000000fe0000-0x000000ff0000 : “Config_Bak”
0x000000ff0000-0x000001000000 : “Radconfig_Bak”
rdm_major = 253
SMACCR1 — : 0x000018aa
SMACCR0 — : 0x45135e89
Ralink APSoC Ethernet Driver Initilization. v3.0 256 rx/tx descriptors allocated, mtu = 1500!
SMACCR1 — : 0x000018aa
SMACCR0 — : 0x45135e89
PROC INIT OK!
PPP generic driver version 2.4.2
PPP MPPE Compression module registered
NET: Registered protocol family 24
PPTP driver version 0.8.5
ehci_hcd: USB 2.0 ‘Enhanced’ Host Controller (EHCI) Driver
rt3xxx-ehci rt3xxx-ehci: Ralink EHCI Host Controller
rt3xxx-ehci rt3xxx-ehci: new USB bus registered, assigned bus number 1
rt3xxx-ehci rt3xxx-ehci: irq 18, io mem 0x101c0000
rt3xxx-ehci rt3xxx-ehci: USB 0.0 started, EHCI 1.00
hub 1-0:1.0: USB hub found
hub 1-0:1.0: 1 port detected
ohci_hcd: USB 1.1 ‘Open’ Host Controller (OHCI) Driver
rt3xxx-ohci rt3xxx-ohci: RT3xxx OHCI Controller
rt3xxx-ohci rt3xxx-ohci: new USB bus registered, assigned bus number 2
rt3xxx-ohci rt3xxx-ohci: irq 18, io mem 0x101c1000
hub 2-0:1.0: USB hub found
hub 2-0:1.0: 1 port detected
Netfilter messages via NETLINK v0.30.
nf_conntrack version 0.5.0 (1905 buckets, 7620 max)
ctnetlink v0.93: registering with nfnetlink.
NF_TPROXY: Transparent proxy support initialized, version 4.1.0
NF_TPROXY: Copyright (c) 2006-2007 BalaBit IT Ltd.
IPVS: Registered protocols ()
IPVS: Connection hash table configured (size=4096, memory=32Kbytes)
IPVS: ipvs loaded.
GRE over IPv4 demultiplexor driver
gre: can’t add protocol
ip_tables: (C) 2000-2006 Netfilter Core Team, Type=Restricted Cone
ipt_CLUSTERIP: ClusterIP Version 0.8 loaded successfully
TCP cubic registered
NET: Registered protocol family 10
NET: Registered protocol family 17
L2TP core driver, V2.0
802.1Q VLAN Support v1.8 Ben Greear
All bugs added by David S. Miller
Freeing unused kernel memory: 4208k freed
init started: BusyBox v1.12.1 Algorithmics/MIPS FPU Emulator v1.5
(2013-11-13 10:34:55 CST)
startingdevpts: called with bogus options
pid 32, tty ”: ‘/etc_ro/rcS’
mount: mounting none on /proc/bus/usb failed: No such file or directory
Welcome to
_______ _______ ___ __ ____ _ _ ___
| ___ \| __ || | |__|| \ | || | / /
| |___| || |__| || |__ __ | \| || |/ /
| _ /| _ || || || |\ || \
|__| \__\|__| |__||______||__||_| \____||_|\___\

=System Architecture Department=

Tue Oct 1 00:00:00 UTC 2013
mii_mgr -s -p 0 -r 0 -v 3900
starting pid 41, tty ‘/dev/ttyS1′: ‘/bin/login’
Set: phy[0].reg[0] = 3900
FON login:
[waitNvram] goahead: nvram_daemon is ok…
old version is–>:07050
###FXC:yes find the file
###FXC:yes get the Version
new version is —>:07050
[FXC] do nothing, no new version update.
###FXC:nvram_deamon–> SSID1_2G&5G has already been right value.
###FXC:the fon feature are all same
fxc-load-fon-value.sh
killall -9 udhcpc
killall: udhcpc: no process killed
killall -9 hotspotd && nvram_set 2860 FonStatus 0
killall: hotspotd: no process killed
internet.sh
Set: phy[4].reg[0] = 1940
run START here–>genDevNode
run END here–>genDevNode
Password for ‘FON2601E’ changed
rmmod: ralink_wdt: No such file or directory
rmmod: cls: No such file or directory
rmmod: hw_nat: No such file or directory
rmmod: raeth: No such file or directory
insmod: bridge.ko: module not found
insmod: mii.ko: module not found
insmod: raeth.ko: module not found

##### disable 1st wireless interface #####

##### disable 2nd wireless interface #####
rmmod: rt2860v2_ap_net: No such file or directory
rmmod: rt2860v2_ap: No such file or directory
rmmod: rt2860v2_ap_util: No such file or directory
rmmod: rlt_wifi: No such file or directory
insmod: rt2860v2_ap_util.ko: module not found

=== pAd = c05a2000, size = 806064 ===

<-- RTMPAllocTxRxRingMemory, Status=0 <-- RTMPAllocAdapterBlock, Status=0 insmod: rt2860v2_ap_net.ko: module not found === pAd = c0b02000, size = 1335176 === <-- RTMPAllocTxRxRingMemory, Status=0 <-- RTMPAllocAdapterBlock, Status=0 device_id =0x7662 ==>rlt_wlan_chip_onoff(): OnOff:1, Reset= 1, pAd->WlanFunCtrl:0x0, Reg-WlanFunCtrl=0x20a
RtmpChipOpsEepromHook::e2p_type=0, inf_Type=5
RtmpEepromGetDefault::e2p_dafault=2
NVM is FLASH mode
build time =
20130809220650a
rom patch for E3 IC

platform =
ALPS
hw/sw version =

patch version =

FW Version:0.0.00 Build:1
Build Time:201309042057____
fw for E3 IC
RX[0] DESC a6017000 size = 4096
RX[1] DESC a6028000 size = 4096
cfg_mode=14
cfg_mode=14
wmode_band_equal(): Band Not Equal!
1. Phy Mode = 49
Country Region from e2p = ffff
2. Phy Mode = 49
3. Phy Mode = 49
andes_pci_fw_init
0x1300 = 00073200
AntCfgInit: primary/secondary ant 0/1
andes_load_cr:cr_type(2)
ChipStructAssign(): MT76x2 hook !
MCS Set = ff ff 00 00 01
TX0 power compensation = 0x38
TX1 power compensation = 0x38
mt76x2_switch_channel(): Switch to Ch#36(2T2R), BBP_BW=0, bbp_ch_idx=0)
mt76x2_switch_channel(): Switch to Ch#40(2T2R), BBP_BW=0, bbp_ch_idx=0)
mt76x2_switch_channel(): Switch to Ch#44(2T2R), BBP_BW=0, bbp_ch_idx=0)
mt76x2_switch_channel(): Switch to Ch#48(2T2R), BBP_BW=0, bbp_ch_idx=0)
mt76x2_switch_channel(): Switch to Ch#52(2T2R), BBP_BW=0, bbp_ch_idx=0)
mt76x2_switch_channel(): Switch to Ch#56(2T2R), BBP_BW=0, bbp_ch_idx=0)
mt76x2_switch_channel(): Switch to Ch#60(2T2R), BBP_BW=0, bbp_ch_idx=0)
mt76x2_switch_channel(): Switch to Ch#64(2T2R), BBP_BW=0, bbp_ch_idx=0)
mt76x2_switch_channel(): Switch to Ch#100(2T2R), BBP_BW=0, bbp_ch_idx=0)
mt76x2_switch_channel(): Switch to Ch#104(2T2R), BBP_BW=0, bbp_ch_idx=0)
mt76x2_switch_channel(): Switch to Ch#108(2T2R), BBP_BW=0, bbp_ch_idx=0)
mt76x2_switch_channel(): Switch to Ch#112(2T2R), BBP_BW=0, bbp_ch_idx=0)
mt76x2_switch_channel(): Switch to Ch#116(2T2R), BBP_BW=0, bbp_ch_idx=0)
mt76x2_switch_channel(): Switch to Ch#120(2T2R), BBP_BW=0, bbp_ch_idx=0)
mt76x2_switch_channel(): Switch to Ch#124(2T2R), BBP_BW=0, bbp_ch_idx=0)
mt76x2_switch_channel(): Switch to Ch#128(2T2R), BBP_BW=0, bbp_ch_idx=0)
mt76x2_switch_channel(): Switch to Ch#132(2T2R), BBP_BW=0, bbp_ch_idx=0)
mt76x2_switch_channel(): Switch to Ch#136(2T2R), BBP_BW=0, bbp_ch_idx=0)
mt76x2_switch_channel(): Switch to Ch#140(2T2R), BBP_BW=0, bbp_ch_idx=0)
mt76x2_bbp_adjust():rf_bw=2, ext_ch=1, PrimCh=52, HT-CentCh=54, VHT-CentCh=58
mt76x2_switch_channel(): Switch to Ch#58(2T2R), BBP_BW=2, bbp_ch_idx=0)
APStartUp(): AP Set CentralFreq at 58(Prim=52, HT-CentCh=54, VHT-CentCh=58, BBP_BW=2)
mt76x2_calibration():RDMode is in Silent State, do not calibration.
lala: Rx_PE_Mask=0xff
Main bssid = 18:aa:45:13:5e:90
mt76x2_reinit_agc_gain:original agc_vga0 = 0x5c, agc_vga1 = 0x5c
mt76x2_reinit_agc_gain:updated agc_vga0 = 0x5c, agc_vga1 = 0x5c
<==== rt28xx_init, Status=0 RTMPDrvOpen(1):Check if PDMA is idle! RTMPDrvOpen(2):Check if PDMA is idle! RX DESC a6376000 size = 2048 1. Phy Mode = 9 2. Phy Mode = 9 3. Phy Mode = 9 AntCfgInit: primary/secondary ant 0/1 Current Temperature from BBP_R49=0xfffffff1 MCS Set = ff ff 00 00 01 Main bssid = 18:aa:45:13:5e:98 <==== rt28xx_init, Status=0 0x1300 = 00064380 ifconfig: ioctl 0x8913 failed: No such device brctl: bridge br0: No such device or address ifconfig: ioctl 0x8913 failed: No such device brctl: bridge br1: No such device or address Raeth v3.0 (Tasklet,SkbRecycle) phy_tx_ring = 0x05a5c000, tx_ring = 0xa5a5c000 phy_rx_ring0 = 0x05a5d000, rx_ring0 = 0xa5a5d000 Reg 27 = fffbReg 27 = 31#####Tom debug:Set auto polling phy address just P4=4 RTL8211 GE1 phy_id0 RTL8211 GE1 phy_id1 ###Tom debug: RTL phy_id0=ffff,EXT_RTL8211_PHY_ID0=1c ###Tom debug: RTL phy_id1=ffff,EXT_RTL8211_PHY_ID1=c915 ###Tom debug: can't match the RTL8211 PHY ID. #####Tom debug:Set auto polling phy address just P4=4 RTL8211 GE2 phy_id0 RTL8211 GE2 phy_id1 ###Tom debug: RTL phy_id0=1c,EXT_RTL8211_PHY_ID0=1c ###Tom debug: RTL phy_id1=c915,EXT_RTL8211_PHY_ID1=c915 ###Tom debug:match the RTL8211 PHY ID. #####RTL8211 GE2 as WAN port Before - RALINK_ETH_SW_BASE+0x7014 = e0000c After - RALINK_ETH_SW_BASE+0x7014 = e00004 Before - RALINK_ETH_SW_BASE+0x701C = 700000c After - RALINK_ETH_SW_BASE+0x701C = 7000004 SMACCR1 -- : 0x000018aa SMACCR0 -- : 0x45135e89 CDMA_CSG_CFG = 81000000 GDMA1_FWD_CFG = 21710000 vconfig: ioctl error for rem: No such device vconfig: ioctl error for rem: No such device vconfig: ioctl error for rem: No such device vconfig: ioctl error for rem: No such device vconfig: ioctl error for rem: No such device rmmod: 8021q: No such file or directory insmod: 8021q.ko: module not found device eth2 entered promiscuous mode ##### FXC config Ralink ESW vlan partition (LLLLW) ##### ###[FXC]debug:now is GateWay mode, run config-vlan.sh 3 12345 for private & public switch reg write offset=2004, value=ff0003 switch reg write offset=2104, value=ff0003 switch reg write offset=2204, value=ff0003 switch reg write offset=2304, value=ff0003 switch reg write offset=2404, value=ff0003 switch reg write offset=2504, value=ff0003 switch reg write offset=2010, value=810000c0 switch reg write offset=2110, value=810000c0 switch reg write offset=2210, value=810000c0 switch reg write offset=2310, value=810000c0 switch reg write offset=2410, value=810000c0 switch reg write offset=2510, value=810000c0 switch reg write offset=2610, value=81000000 switch reg write offset=2710, value=81000000 switch reg write offset=2604, value=20ff0003 switch reg write offset=2704, value=20ff0003 Special Tag Enabled switch reg write offset=2610, value=81000020 portmap format error, should be of length 7 portmap format error, should be of length 7 portmap format error, should be of length 7 portmap format error, should be of length 7 portmap format error, should be of length 7 portmap format error, should be of length 7 portmap format error, should be of length 7 12345 switch reg write offset=2014, value=10001 switch reg write offset=2114, value=10002 switch reg write offset=2214, value=10003 switch reg write offset=2314, value=10004 switch reg write offset=2414, value=10005 switch reg write offset=2514, value=10006 REG_ESW_WT_MAC_ATC is 0x7ff0002 done. disable IPv6 device ra0 entered promiscuous mode ##### enable 1nd private wireless interface ##### device eth2.1 entered promiscuous mode device eth2.2 entered promiscuous mode device eth2.3 entered promiscuous mode device ra1 entered promiscuous mode ##### enable 1nd public wireless interface ##### device rai0 entered promiscuous mode ##### enable 2nd private wireless interface ##### device rai1 entered promiscuous mode ##### enable 2nd public wireless interface ##### device rai2 entered promiscuous mode Enlarge min_free_kbytes.... T = 76921, W= 141 detected by ch 0 killall: udhcpc: no process killed killall: pppd: no process killed DFS Channel changed 52 to 120 mt76x2_bbp_adjust():rf_bw=2, ext_ch=3, PrimCh=120, HT-CentCh=118, VHT-CentCh=122 mt76x2_switch_channel(): Switch to Ch#122(2T2R), BBP_BW=2, bbp_ch_idx=1) APStartUp(): AP Set CentralFreq at 122(Prim=120, HT-CentCh=118, VHT-CentCh=122, BBP_BW=2) mt76x2_calibration():RDMode is in Silent State, do not calibration. lala: Rx_PE_Mask=0xff udhcpc (v1.12.1) started br0: port 3(rai0) entering learning state br0: port 3(rai0) entering learning state br0: port 2(eth2.1) entering learning state br0: port 2(eth2.1) entering learning state br0: port 1(ra0) entering learning state br0: port 1(ra0) entering learning state br0: port 3(rai0) entering forwarding state br0: port 2(eth2.1) entering forwarding state br0: port 1(ra0) entering forwarding state br1: port 1(eth2.2) entering learning state br1: port 1(eth2.2) entering learning state ifconfig br1 192.168.182.1 netmask 255.255.255.0 br2: port 1(eth2.3) entering learning state br2: port 1(eth2.3) entering learning state ifconfig br2 192.168.183.1 netmask 255.255.255.0 killall: udhcpd: no process killed run free public dhcp server run eap public dhcp server ifconfig: ioctl 0x8913 failed: No such device rm: cannot remove '/etc/radvd.conf': No such file or directory insmod: hw_nat.ko: module not found ADDRCONF(NETDEV_UP): ifb0: link is not ready ADDRCONF(NETDEV_UP): ifb1: link is not ready ADDRCONF(NETDEV_UP): rai1: link is not ready ADDRCONF(NETDEV_UP): rai2: link is not ready ADDRCONF(NETDEV_UP): apclii0: link is not ready ADDRCONF(NETDEV_UP): ra1: link is not ready ADDRCONF(NETDEV_UP): apcli0: link is not ready killall rt2860apd 1>/dev/null 2>&1
killall rtinicapd 1>/dev/null 2>&1
rtinicapd&
iptables -F -t filter 1>/dev/null 2>&1
Ralink DOT1X daemon, version = ‘2.6.0.0’
iptables -D FORWARD -j macipport_filter 1>/dev/null 2>&1
iptables -F macipport_filter 1>/dev/null 2>&1
iptables -D FORWARD -j web_filter 1>/dev/null 2>&1
iptables -F web_filter 1>/dev/null 2>&1
iptables -D FORWARD -j malicious_filter 1>/dev/null 2>&1
iptables -F malicious_filter 1>/dev/null 2>&1
iptables -D INPUT -j malicious_input_filter 1>/dev/null 2>&1
iptables -F malicious_input_filter 1>/dev/null 2>&1
iptables -P INPUT ACCEPT
iptables -P OUTPUT ACCEPT
iptables -P FORWARD ACCEPT
iptables -t filter -N web_filter 1>/dev/null 2>&1
iptables -t filter -N macipport_filter 1>/dev/null 2>&1
iptables -t filter -N malicious_filter 1>/dev/null 2>&1
iptables -t filter -N synflood_filter 1>/dev/null 2>&1
iptables -t filter -N malicious_input_filter 1>/dev/null 2>&1
iptables -t filter -N synflood_input_filter 1>/dev/null 2>&1
iptables -t filter -A FORWARD -j web_filter 1>/dev/null 2>&1
iptables -t filter -A FORWARD -j macipport_filter 1>/dev/null 2>&1
iptables -t filter -A FORWARD -j malicious_filter 1>/dev/null 2>&1
iptables -t filter -A malicious_filter -p tcp –syn -j synflood_filter 1>/dev/null 2>&1
iptables -t filter -A INPUT -j malicious_input_filter 1>/dev/null 2>&1
iptables -t filter -A malicious_input_filter -p tcp –syn -j synflood_input_filter 1>/dev/null 2>&1
iptables -A FORWARD -p tcp –tcp-flags SYN,RST SYN -j TCPMSS –clamp-mss-to-pmtu 1>/dev/null 2>&1
iptables -A INPUT -p tcp -i br1 -d 192.168.182.1/24 -j REJECT –reject-with tcp-reset 1>/dev/null 2>&1
iptables -A INPUT -p udp -i br1 -d 192.168.182.1/24 -j REJECT –reject-with icmp-port-unreachable 1>/dev/null 2>&1
iptables -A INPUT -p tcp -i br2 -d 192.168.183.1/24 -j REJECT –reject-with tcp-reset 1>/dev/null 2>&1
iptables -A INPUT -p udp -i br2 -d 192.168.183.1/24 -j REJECT –reject-with icmp-port-unreachable 1>/dev/null 2>&1
iptables -A INPUT -p tcp -i br1 -d 192.168.10.1/24 -j REJECT –reject-with tcp-reset 1>/dev/null 2>&1
iptables -A INPUT -p udp -i br1 -d 192.168.10.1/24 -j REJECT –reject-with icmp-port-unreachable 1>/dev/null 2>&1
iptables -A INPUT -p tcp -i br2 -d 192.168.10.1/24 -j REJECT –reject-with tcp-reset 1>/dev/null 2>&1
iptables -A INPUT -p udp -i br2 -d 192.168.10.1/24 -j REJECT –reject-with icmp-port-unreachable 1>/dev/null 2>&1
iptables -A INPUT -p tcp -i br1 -d 192.168.183.1/24 -j REJECT –reject-with tcp-reset 1>/dev/null 2>&1
iptables -A INPUT -p udp -i br1 -d 192.168.183.1/24 -j REJECT –reject-with icmp-port-unreachable 1>/dev/null 2>&1
iptables -A INPUT -p tcp -i br2 -d 192.168.182.1/24 -j REJECT –reject-with tcp-reset 1>/dev/null 2>&1
iptables -A INPUT -p udp -i br2 -d 192.168.182.1/24 -j REJECT –reject-with icmp-port-unreachable 1>/dev/null 2>&1
iptables -A INPUT -p tcp -i br0 -d 192.168.182.1/24 -j REJECT –reject-with tcp-reset 1>/dev/null 2>&1
iptables -A INPUT -p udp -i br0 -d 192.168.182.1/24 -j REJECT –reject-with icmp-port-unreachable 1>/dev/null 2>&1
iptables -A INPUT -p tcp -i br0 -d 192.168.183.1/24 -j REJECT –reject-with tcp-reset 1>/dev/null 2>&1
iptables -A INPUT -p udp -i br0 -d 192.168.183.1/24 -j REJECT –reject-with icmp-port-unreachable 1>/dev/null 2>&1
iptables -A malicious_input_filter -i eth2.5 -p tcp –dport 80 -j REJECT –reject-with tcp-reset
iptables -A malicious_input_filter -i eth2.5 -p udp –dport 80 -j REJECT –reject-with icmp-port-unreachable
iptables -A malicious_input_filter -p tcp -i eth2.5 –dport 53 -j REJECT –reject-with tcp-reset
iptables -A malicious_input_filter -p udp -i eth2.5 –dport 53 -j REJECT –reject-with icmp-port-unreachable
iptables -A malicious_input_filter -p icmp -i eth2.5 –icmp-type timestamp-request -j DROP
/bin/super_dmz -f
ifconfig br1 192.168.182.1 netmask 255.255.255.0
ifconfig br2 192.168.183.1 netmask 255.255.255.0
Wizard Debug:lease fail time 1
br1: port 1(eth2.2) entering forwarding state
br2: port 1(eth2.3) entering forwarding state
killall: udhcpd: no process killed
run free public dhcp server
run eap public dhcp server
sh: arptables: not found
superdmz:Can’t get WAN gateway
iptables -t nat -D PREROUTING -j port_forward 1>/dev/null 2>&1
iptables -t nat -F port_forward 1>/dev/null 2>&1; iptables -t nat -X port_forward 1>/dev/null 2>&1
iptables -t nat -D PREROUTING -j DMZ 1>/dev/null 2>&1
iptables -t nat -F DMZ 1>/dev/null 2>&1; iptables -t nat -X DMZ 1>/dev/null 2>&1
cat /proc/sys/net/netfilter/nf_conntrack_udp_timeout > /var/.udpbackup
echo 0 > /proc/sys/net/netfilter/nf_conntrack_udp_timeout
cat /var/.udpbackup > /proc/sys/net/netfilter/nf_conntrack_udp_timeout; rm -f /var/.udpbackup
cat /proc/sys/net/netfilter/nf_conntrack_tcp_timeout_established > /var/.tcpbackup
echo 0 > /proc/sys/net/netfilter/nf_conntrack_tcp_timeout_established
cat /var/.tcpbackup > /proc/sys/net/netfilter/nf_conntrack_tcp_timeout_established; rm -f /var/.tcpbackup
iptables -t nat -N port_forward 1>/dev/null 2>&1; iptables -t nat -I PREROUTING 1 -j port_forward 1>/dev/null 2>&1
iptables -t nat -N DMZ 1>/dev/null 2>&1; iptables -t nat -I PREROUTING 2 -j DMZ 1>/dev/null 2>&1
ntp.sh
ddns.sh
iwpriv ra0 set WscConfMode=0 1>/dev/null 2>&1
iwpriv rai0 set WscConfMode=7
route add -host 239.255.255.250 dev br0 1>/dev/null 2>&1
killall -q klogd
killall -q syslogd
syslogd -C8 1>/dev/null 2>&1
klogd 1>/dev/null 2>&1
killall -q zebra
killall -q ripd
echo 1 > /proc/sys/net/ipv6/conf/all/disable_ipv6
mii_mgr -s -p 4 -r 0 -v 1140
Set: phy[4].reg[0] = 1140
webs: Listening for HTTP requests at address 192.168.10.1
###FXC:telnet status is locked.
mii_mgr -s -p 0 -r 0 -v 3100
Set: phy[0].reg[0] = 3100

process ‘/bin/login’ (pid 41) exited. Scheduling for restart.
starting pid 8247, tty ‘/dev/ttyS1′: ‘/bin/login’
FON login: Wizard Debug:lease fail time 2
mt76x2_calibration(channel = 122)
Wizard Debug:lease fail time 3
Wizard Debug:lease fail time >= 3,Try to discover PPPoE Server now……
killall: pppd: no process killed
Plugin /etc_ro/ppp/plugins/rp-pppoe.so loaded.
RP-PPPoE plugin version 3.8p compiled against pppd 2.4.5

process ‘/bin/login’ (pid 8247) exited. Scheduling for restart.
starting pid 8395, tty ‘/dev/ttyS1′: ‘/bin/login’
FON login:

PS VitaのHackが進んでいる今日このごろですが、今まではブラウザ経由でのmoduleファイルダンプなどが中心で、主に開発者向けという感じでした。

今回Brian Balling氏が公開した動画はそのexploitを利用して、PS Vitaで初の自作ソフトを動作させるというもので、その動作が確認できます。内容としては、SceNet関数とsceMotionGetState関数を利用して■を動かしたときにPS Vitaから出力されるデータ(傾きセンサーからのデータ)をPCに送信しているようです。

厳密に言うと自作ソフトでは無いとは思いますが、こういったことがこれまでの積み重ねなのでしょうね。これからどのようになるか、期待です。