I would also like to ask a question about this device . . . and trust Walter will not object to me raising it here. ;)
This "Superhub" (as TalkTalk describe it) is undoubtedly a modem/router/DHCP server/DNS server/WAP/firewall. I would be interested in knowing if the modem is VDSL2 capable or, rather like the Beattie HH3 & HH4, is limited to ADSL2+ as its maximum?
Running nmap from the LAN-side will show what port(s), if any, is/are open.
For Walter's convenience, I have re-attached the two DSL Connection Status screen-scrapes as PNG images, below.
[It might be worth checking what is displayed when the rights, at the bottom of that GUI page, is selected.]
can't find the config file unfortunately....
CFE version 1.0.38-114.174 for BCM963268 (32bit,SP,BE)
Build Date: Sat Nov 9 13:59:00 CST 2013 (l00184769@localhost)
Copyright (C) 2000-2011 Broadcom Corporation.
NAND flash device: name , id 0x98d1 block 128KB size 131072KB
External switch id = 53125
Chip ID: BCM63168D0, MIPS: 400MHz, DDR: 400MHz, Bus: 200MHz
Main Thread: TP0
Memory Test Passed
Total Memory: 134217728 bytes (128MB)
Boot Address: 0xb8000000
Boot :e=192.168.1.1:ffffff00 h=192.168.1.100 g= r=f f=vmlinux i=bcm963xx_fs_kernel d=1 p=0
*** Press any key to stop auto run (3 seconds) ***
Auto run second count down: 333
CFE>
web info: Waiting for connection on socket 0.[J
CFE> help
Available commands:
gccs get hw chk sign mode.
p Print boot line and board parameter info
ccs hw chk sign mode.
c Change booline parameters
b Change board parameters
cg hw boot.
r Run program from flash image or from host depend on [f/h] flag
reset Reset the board
help Obtain help for CFE commands
Boot :e=192.168.1.1:ffffff00 h=192.168.1.100 g= r=f f=vmlinux i=bcm963xx_fs_kernel d=1 p=0
*** Press any key to stop auto run (3 seconds) ***
Auto run second count down: 33210
Power down external PHY port.Boot from main system!
SIGN CHK ALWAYLYS.
get bootflag = 1
check tag at block 1 crc ok
Check Image Crc Success
I have find vmlinux.lz at block 11
I have get vmlinux.lz size at block 25
Decompression OK!
Entry at 0x803bb870
Closing network.
no Disabling Switch ports.
Flushing Receive Buffers...
0 buffers found.
Closing DMA Channels.
Starting program at 0x803bb870
init started: BusyBox vv1.9.1 ()
starting pid 299, tty '': '/etc/init.d/rcS'
RCS DONE
starting pid 301, tty '': '/bin/sh'
BusyBox vv1.9.1 () built-in shell (ash)
Enter 'help' for a list of built-in commands.
rootdir=/
table='/etc/devicetable'
mount config success
mount coredump success
-/bin/sh: cannot create /proc/tty/mode: nonexistent directory
Loading drivers and kernel modules...
Start mic now ...
GlobeMac Init OKload cfm ok.
##sendmsg return 16, errno 0.
ethcmdVportEnable--------SUPPORT_ATP_ETH_BCM_EXT_SWITCH_53125-----
ARL table flush done
Success
MASK- ifconfig [eth0]**********
device eth0 is not a slave of br0
LedcmswpsChgProc :9
I can't get ping to work on the wan but the same issue is reported in standard configurations on the TT forums and no solution seems to offered.
Welcome, you are from 192.168.1.65
-------------------------------
-----Welcome to ATP Cli------
-------------------------------
Login: admin
Password:
Login incorrect. Try again.
Login:
Page URL: http://192.168.1.1/html/advance.html#tr069
Enable remote management: Ticked
Enable periodic information: Ticked
Periodic information interval: 86400
ACS URL: http://acs.talktalk.co.uk:7547/ACS-server/ACS
ACS username: Blank
ACS password: Blank
Connection request username: cpeuser
Connection request password: (Encrypted)
Connection request port: 7547
Enable certificates: Not ticked
Certificate file path: No file selected
I gave it a few posts above.
Welcome, you are from 192.168.1.64
-------------------------------
-----Welcome to ATP Cli------
-------------------------------
Login: !!Huawei
Password:
ATP>xdslcmd info --stats
Command failed.
ATP>
1) Change the admin / telnet username.
Jianlian 총 Cejinliaolv 엻쾂 additional information Duan Hao »Jun ᠏ shelter ᥊ Qinfu ꏣᗧ 䔁 Jue 䲘 noise Chao ᕐ ៀ Qin Ῥ Juyun 끪 䂢 Que pour ⒆ Xuan Nie 쮓 corner Shen Bo still 런 䆏 ج Lvnuo column ᜩ sets 귀 De Ἆ 츮 䒕 㾚 읽 㸦 Ji 풞씩 4 Hu 겾 Xinongjiangmu 쑩 ⋭﮻ 䵤 홿 ㅋ ridge 㸊 쬝 wei 볓 㡂 Tou Yang Tao ۉ⮏ Nu Chek pile 䰮 䠁 ጻ 䠪 ᥲ Ken cast ꅺ⦕ 졈 䪢 꼿 ꨗ Ru 䋷 㧏 ڨ 뮃 Jiu 㛸 worm screws 줫 ꔧ 릚 invited ╅ 㙧 䴁 ꋿ◲ᖷ Shao Kai ݰ 㻠 퇱 braid Che ꖻ ჼ slough 맇 bit ھꪷ ⳬ Gong Fu 㵉 㷰 ؏ ꎙ 긔 ⮊ꌿ 䐦 㙧 횄 㧖 Lu complain Ὲɞꪵꢔꔈⅾ 톇 Wan Zhan Xiao Qiao hip ᤄ engine 䈥 ⹒مم rejoice vi 튛 Ken ῷ lagoon Yuan 햛 Baoyidianhu ꏍ 멍 | Ni ❢ 홤 ꄀ 젭얥 pole Re ۉ ‰ ႝ ⩺ 㘤 ꫧੋ Min ᬢ β
Invalid username '!!Huawei'
standard telnet port, which apparently isnt stealthed
@datasegmentQuotestandard telnet port, which apparently isnt stealthed
mine was??
I am not able to try it for a couple of days but here is an open WAN port 23 suggestion for testing by me or another. The opensource firmware used port 23 for its TR069. If with a new WAN, port 23 is open then setting the port in remote management to 23 saving then back to the correct value of 7547 and saving may fix it. This test would not involve a resync.
my HG635 is running the full open source firmware
Someone who can work with iptables ought to be able to sort this all out via the telnet. Update == it is report that provided TR069 is enabled the WAN ping and setting to TBB works via adding it to the acl.
su
iptables -I INPUT_SERVICE_ACL 1 -p icmp --icmp-type echo-request -j ACCEPT
suNote: "su" is only needed once in a session.
iptables -L INPUT_SERVICE_ACL --line-numbers
iptables -L INPUT_SERVICE_ACL --line-numbers
If you allow pings the shieldsup will report the test as failed
su
are you sure you need those?
1) starting with the router powered off
2) place the PC's ethernet port on a static IP address (I used 192.168.1.100)
3) press the routers reset button with a paperclip holding it in for about ten seconds while the router powers up.
4) If the power light stays green continue, if it goes red after about 20 seconds repeat step 3).
5) if the power light remains green connect to the PC via ethernet.
6) In a browser (I used Firefox) go to 192.168.1.1
7) if all is well the web page will ask for the location of the firmware image file, enter this and press install.
8 ) The web page says it will take 2 minutes to install. There was no indication when it was done, so after the 2 minutes I reloaded 192.168.1.1 and found the routers alive and kicking. 8)
I am surprised that you managed to brick it, normally it is almost impossible to do that except by uploading duff firmware.
3. If that works you may/should have telnet access with login of !!Huawei / @HuaweiHgw
user & pwIf you change the password for the admin (gui) login......then the telnet password for the username "!!Huawei" becomes the new password.
you haven't got a fixed ip of 0.253 on the laptop have you?
TT have started pushing out firmware v1.06t
if you can still get stats via telnet
any dsl driver changes.
Does the HG635 support bridge mode?
$ xdslcmd --help
Usage: xdslcmd start [--up] [--mod <a|d|l|t|2|p|e|m|v>] [--lpair <(i)nner|(o)uter>]
[--trellis <on|off>] [--snr <snrQ4>] [--bitswap <on|off>] [--sesdrop <on|off>]
[--sra <on|off>] [--CoMinMgn <on|off>] [--i24k <on|off>] [--phyReXmt <0xBitMap-UsDs>]
[--TpsTc <0xBitMap-AvPvAaPa>] [--monitorTone <on|off>]
[--profile <0x00 - 0xFF>|<"8a |8b |8c |8d |12a |12b |17a |30a">] [--us0 <on|off>]
[--dynamicD <on|off>] [--dynamicF <on|off>] [--SOS <on|off>]
[--forceJ43 <on|off>] [--toggleJ43B43 <on|off>]
xdslcmd stop
xdslcmd connection [--up] [--down] [--loopback] [--reverb]
[--medley] [--noretrain] [--L3] [--diagmode] [--L0]
[--tones] [--normal] [--freezeReverb] [--freezeMedley]
xdslcmd configure [--mod <a|d|l|t|2|p|e|m|v>] [--lpair <(i)nner|(o)uter>]
[--trellis <on|off>] [--snr <snrQ4>] [--bitswap <on|off>] [--sesdrop <on|off>]
[--sra <on|off>] [--CoMinMgn <on|off>] [--i24k <on|off>] [--phyReXmt <0xBitMap-UsDs>]
[--TpsTc <0xBitMap-AvPvAaPa>] [--monitorTone <on|off>]
[--profile <0x00 - 0xFF>|<"8a |8b |8c |8d |12a |12b |17a |30a">] [--us0 <on|off>]
[--dynamicD <on|off>] [--dynamicF <on|off>] [--SOS <on|off>]
[--forceJ43 <on|off>] [--toggleJ43B43 <on|off>]
xdslcmd bert [--start <#seconds>] [--stop] [--show]
xdslcmd afelb [--time <sec>] [--tones] [--signal <1/2/8>]
xdslcmd qlnmntr [--time <sec>] [--freq <msec>]
xdslcmd inm [--start <BB_THRESH 10*dB> <INMIATO> <INMIATS>] [--stop] [--show]
xdslcmd snrclamp [--shape <shapeId>] [--bpshape [bpIndex-bpLevel,]]
xdslcmd diag [--logstart <nBytes>] [--logpause] [--logstop] [--loguntilbufferfull <nBytes>]
[--loguntilretrain <nBytes>]
xdslcmd info [--state] [--show] [--stats] [--SNR] [--QLN] [--Hlog] [--Hlin] [--HlinS] [--Bits]
[--24hrhiststat]
[--pbParams] [--linediag] [--linediag1] [--vdsllinediag] [--adsllinediag] [--total] [--testparam]
[--toneGroupObjects][--reset] [--vendor] [--cfg]
xdslcmd profile [--show] [--save] [--restore]
xdslcmd --version
xdslcmd --help
My HG635 got updated this morning and caused me a whole load of grief.
20:51:45 03/12/2014 User Level Notice User sh login fail by telnet 186.223.109.178.
20:51:03 03/12/2014 User Level Notice User root login fail by telnet 186.223.109.178.
20:50:25 03/12/2014 User Level Notice User root login fail by telnet 186.223.109.178.
20:49:45 03/12/2014 User Level Notice User root login fail by telnet 186.223.109.178.
20:49:06 03/12/2014 User Level Notice User root login fail by telnet 186.223.109.178.
20:48:26 03/12/2014 User Level Notice User root login fail by telnet 186.223.109.178.
20:47:47 03/12/2014 User Level Notice User root login fail by telnet 186.223.109.178.
20:47:08 03/12/2014 User Level Notice User root login fail by telnet 186.223.109.178.
20:46:28 03/12/2014 User Level Notice User root login fail by telnet 186.223.109.178.
20:45:49 03/12/2014 User Level Notice User root login fail by telnet 186.223.109.178.
20:45:10 03/12/2014 User Level Notice User root login fail by telnet 186.223.109.178.
20:44:30 03/12/2014 User Level Notice User root login fail by telnet 186.223.109.178.
20:44:02 03/12/2014 User Level Notice User admin login from 192.168.1.2 successfully.
20:43:51 03/12/2014 User Level Notice User root login fail by telnet 186.223.109.178.
20:43:12 03/12/2014 User Level Notice User root login fail by telnet 186.223.109.178.
20:42:33 03/12/2014 User Level Notice User root login fail by telnet 186.223.109.178.
I have asked TT for a copy of 1.04 since their update gave me an issue I didn't have before. Don't hold your breath though.
The custom dns settings I have problems with are in home network > LAN interface > DHCP server.
I think this is the same settings which broadstairs has problems with.
00:06:08 15/12/2014 User Level Notice User root login fail by telnet 176.35.53.104.
00:05:52 15/12/2014 User Level Notice User root login fail by telnet 176.35.53.104.
23:50:34 14/12/2014 User Level Notice User root login fail by telnet 190.200.56.168.
23:50:18 14/12/2014 User Level Notice User root login fail by telnet 190.200.56.168.
23:50:02 14/12/2014 User Level Notice User support login fail by telnet 190.200.56.168.
I had TR069 and remote management enabled and that may be a factor as that checks a number things after after a reboot.
it remains possible to find port 23 open when you do some things. I will try to see if I can track down which things.
The config does not change on firmware update, so no ISP lock (my hg635 on plusnet ADSL was still able to connect).
now not being a tt customer
Just to add that with beta testing help from kitzuser87430, I am very close to releasing an update to HG612 Modem Stats that will work with the HG635.