I am quite convinced of the IP address, having now seen your evidence. What was bothering me was the analogy with the Huawei HG612. The IP address used for the GUI to re-flash its firmware is the same IP address as its normal user GUI, once unlocked. I was pondering if the "re-flash the firmware" GUI for the HH3.0B is identical to its normal user GUI -- that is 192.168.1.254
That would have made more sense.
One thing we could try is modifying the CFE configuration so that it boots from the (h)ost PC (192.168.1.100) instead of from (f)lash. That's very simple. It involves changing the "
r=f" parameter to "
r=h" in the CFE config above.
Before re-fitting the NAND flash IC to the Home Hub PCB, it would be better to install a
TSOP IC cradle to the board first,
à la one of these, below. At least then the flash can be readily removed without de-soldering, modified arbitrarily, and then refitted (repeat until the dirty deed of unlocking is done).
The HG612 was tweaked to do this - to retrieve its kernel from a tftp server running on the LAN. But since the original kernel is hard-coded to mount the root file system from flash, there's nothing much achieved by net-booting. Ideally, the kernel needs to be rebuilt to support an NFS root file system, so that can be mounted over the network. When we tried this with the HG612, at the time, we didn't have Huawei's patches to the kernel source (specifically, the kernel driver for the ethernet switch controller, iirc) so it wasn't going to work.
Nits? Do you have a louse infestation? I wear a flea-collar and find that keeps the nasties at bay!
Yup, Our Wayne brought the head lice back from Boot Camp, a present for all the family, bless him!
cheers, a