Posts by hamborambo

hamborambo · Apr 25th 2013

Hi,

I'm having a few connectivity issues running openvpn on GP3 Dm800 as a client, occassionally it work ok but most of the time fails at the route add command before the tun device is opened. I think its an issue opening the tun device rather than route add but I've not found a fix. I've tried various vpn provides and had the configfs working under Windows, Linux and openwrt devices.

Failed Example

Code

Sun Jan  6 15:40:19 2013 OpenVPN 2.2.2 mipsel-oe-linux [SSL] [LZO2] [EPOLL] [eurephia] built on Mar  7 2012
Sun Jan  6 15:40:19 2013 WARNING: file '/etc/openvpn/authpass' is group or others accessible
Sun Jan  6 15:40:19 2013 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Sun Jan  6 15:40:19 2013 WARNING: file 'ivacy-client.key' is group or others accessible
Sun Jan  6 15:40:19 2013 WARNING: file 'ivacy-tls.key' is group or others accessible
Sun Jan  6 15:40:19 2013 Control Channel Authentication: using 'ivacy-tls.key' as a OpenVPN static key file
Sun Jan  6 15:40:19 2013 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Jan  6 15:40:19 2013 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Jan  6 15:40:19 2013 LZO compression initialized
Sun Jan  6 15:40:19 2013 Control Channel MTU parms [ L:1542 D:166 EF:66 EB:0 ET:0 EL:0 ]
Sun Jan  6 15:40:19 2013 Socket Buffers: R=[103424->131072] S=[103424->131072]
Sun Jan  6 15:40:19 2013 RESOLVE: NOTE: openvpn.ivacy.com resolves to 3 addresses
Sun Jan  6 15:40:19 2013 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Sun Jan  6 15:40:19 2013 Local Options hash (VER=V4): '504e774e'
Sun Jan  6 15:40:19 2013 Expected Remote Options hash (VER=V4): '14168603'
Sun Jan  6 15:40:19 2013 UDPv4 link local: [undef]
Sun Jan  6 15:40:19 2013 UDPv4 link remote: 213.232.200.170:1194
Sun Jan  6 15:40:19 2013 TLS: Initial packet from 213.232.200.170:1194, sid=0ba3f877 9ae59387
Sun Jan  6 15:40:19 2013 WARNING: this configuration may cache passwords  in memory -- use the auth-nocache option to prevent this
Sun Jan  6 15:40:20 2013 VERIFY OK: depth=1, /C=RU/ST=MR/L=Moscow/O=ivacy.com/CN=ivacy.com_CA/emailAddress=admin@ivacy.com
Sun Jan  6 15:40:20 2013 VERIFY OK: nsCertType=SERVER
Sun Jan  6 15:40:20 2013 VERIFY OK: depth=0, /C=RU/ST=MR/L=Moscow/O=ivacy.com/CN=openvpn.ivacy.com/emailAddress=admin@ivacy.com
Sun Jan  6 15:40:22 2013 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Sun Jan  6 15:40:22 2013 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Jan  6 15:40:22 2013 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Sun Jan  6 15:40:22 2013 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Jan  6 15:40:22 2013 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Sun Jan  6 15:40:22 2013 [openvpn.ivacy.com] Peer Connection Initiated with 213.232.200.170:1194
Sun Jan  6 15:40:24 2013 SENT CONTROL [openvpn.ivacy.com]: 'PUSH_REQUEST' (status=1)
Sun Jan  6 15:40:24 2013 PUSH: Received control message:  'PUSH_REPLY,route 1.0.0.0 255.0.0.0,dhcp-option DNS  1.254.2.2,dhcp-option DNS 1.254.2.3,dhcp-option DOMAIN  vpn,explicit-exit-notify 2,route-gateway 1.2.124.1,topology subnet,ping  10,ping-restart 60,ifconfig 1.2.124.110 255.255.255.0'
Sun Jan  6 15:40:24 2013 OPTIONS IMPORT: timers and/or timeouts modified
Sun Jan  6 15:40:24 2013 OPTIONS IMPORT: explicit notify parm(s) modified
Sun Jan  6 15:40:24 2013 OPTIONS IMPORT: --ifconfig/up options modified
Sun Jan  6 15:40:24 2013 OPTIONS IMPORT: route options modified
Sun Jan  6 15:40:24 2013 OPTIONS IMPORT: route-related options modified
Sun Jan  6 15:40:24 2013 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Sun Jan  6 15:40:24 2013 ROUTE default_gateway=192.168.33.2

Display More

Successful Example

Code

Sun Jan  6 16:23:32 2013 OpenVPN 2.2.2 mipsel-oe-linux [SSL] [LZO2] [EPOLL] [eurephia] built on Mar  7 2012
Sun Jan  6 16:23:32 2013 WARNING: file '/etc/openvpn/authpass' is group or others accessible
Sun Jan  6 16:23:32 2013 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Sun Jan  6 16:23:32 2013 WARNING: file 'ivacy-client.key' is group or others accessible
Sun Jan  6 16:23:32 2013 WARNING: file 'ivacy-tls.key' is group or others accessible
Sun Jan  6 16:23:32 2013 Control Channel Authentication: using 'ivacy-tls.key' as a OpenVPN static key file
Sun Jan  6 16:23:32 2013 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Jan  6 16:23:32 2013 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Jan  6 16:23:32 2013 LZO compression initialized
Sun Jan  6 16:23:32 2013 Control Channel MTU parms [ L:1542 D:166 EF:66 EB:0 ET:0 EL:0 ]
Sun Jan  6 16:23:32 2013 Socket Buffers: R=[103424->131072] S=[103424->131072]
Sun Jan  6 16:23:32 2013 RESOLVE: NOTE: openvpn.ivacy.com resolves to 3 addresses
Sun Jan  6 16:23:32 2013 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Sun Jan  6 16:23:32 2013 Local Options hash (VER=V4): '504e774e'
Sun Jan  6 16:23:32 2013 Expected Remote Options hash (VER=V4): '14168603'
Sun Jan  6 16:23:32 2013 UDPv4 link local: [undef]
Sun Jan  6 16:23:32 2013 UDPv4 link remote: 213.232.200.172:1194
Sun Jan  6 16:23:32 2013 TLS: Initial packet from 213.232.200.172:1194, sid=695cef27 21c0c54d
Sun Jan  6 16:23:32 2013 WARNING: this configuration may cache passwords  in memory -- use the auth-nocache option to prevent this
Sun Jan  6 16:23:33 2013 VERIFY OK: depth=1, /C=RU/ST=MR/L=Moscow/O=ivacy.com/CN=ivacy.com_CA/emailAddress=admin@ivacy.com
Sun Jan  6 16:23:33 2013 VERIFY OK: nsCertType=SERVER
Sun Jan  6 16:23:33 2013 VERIFY OK: depth=0, /C=RU/ST=MR/L=Moscow/O=ivacy.com/CN=openvpn.ivacy.com/emailAddress=admin@ivacy.com
Sun Jan  6 16:23:35 2013 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Sun Jan  6 16:23:35 2013 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Jan  6 16:23:35 2013 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Sun Jan  6 16:23:35 2013 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Jan  6 16:23:35 2013 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Sun Jan  6 16:23:35 2013 [openvpn.ivacy.com] Peer Connection Initiated with 213.232.200.172:1194
Sun Jan  6 16:23:37 2013 SENT CONTROL [openvpn.ivacy.com]: 'PUSH_REQUEST' (status=1)
Sun Jan  6 16:23:37 2013 PUSH: Received control message:  'PUSH_REPLY,route 1.0.0.0 255.0.0.0,dhcp-option DNS  1.254.2.2,dhcp-option DNS 1.254.2.3,dhcp-option DOMAIN  vpn,explicit-exit-notify 2,route-gateway 1.2.112.1,topology subnet,ping  10,ping-restart 60,ifconfig 1.2.112.101 255.255.252.0'
Sun Jan  6 16:23:37 2013 OPTIONS IMPORT: timers and/or timeouts modified
Sun Jan  6 16:23:37 2013 OPTIONS IMPORT: explicit notify parm(s) modified
Sun Jan  6 16:23:37 2013 OPTIONS IMPORT: --ifconfig/up options modified
Sun Jan  6 16:23:37 2013 OPTIONS IMPORT: route options modified
Sun Jan  6 16:23:37 2013 OPTIONS IMPORT: route-related options modified
Sun Jan  6 16:23:37 2013 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Sun Jan  6 16:23:37 2013 ROUTE default_gateway=192.168.33.2
Sun Jan  6 16:23:37 2013 TUN/TAP device tun0 opened
Sun Jan  6 16:23:37 2013 TUN/TAP TX queue length set to 100
Sun Jan  6 16:23:37 2013 /sbin/ifconfig tun0 1.2.112.101 netmask 255.255.252.0 mtu 1500 broadcast 1.2.115.255
Sun Jan  6 16:23:37 2013 /sbin/route add -net 213.232.200.172 netmask 255.255.255.255 gw 192.168.33.2
Sun Jan  6 16:23:37 2013 /sbin/route del -net 0.0.0.0 netmask 0.0.0.0
Sun Jan  6 16:23:37 2013 /sbin/route add -net 0.0.0.0 netmask 0.0.0.0 gw 1.2.112.1
Sun Jan  6 16:23:37 2013 WARNING: potential route subnet conflict  between local LAN [1.2.112.0/255.255.255.0] and remote VPN  [1.0.0.0/255.0.0.0]
Sun Jan  6 16:23:37 2013 /sbin/route add -net 1.0.0.0 netmask 255.0.0.0 gw 1.2.112.1
Sun Jan  6 16:23:37 2013 Initialization Sequence Completed

Display More

I've hit a bit of a brick wall with this one, just wondering if anyone can help or if anyone know of any images they have successfully had openvpn working regularly on a dm800 non se sim2.01

Thanks

hamborambo · Nov 3rd 2012

Hi,

These boxes are getting better all the time but I've put together a short list of firmware improvements I would like to see:

Timers
=====
1. Support for weekly repeat timer.
2. Ability to add start and end times instead of start time and duration.
3. Additional Timer slots.
4. Timer completion event added to go to standby or stay switched on.
5. Ability to set the recording name and not just the default channel name/date/time default.
6. Ability to set recording categories e.g. Film, Documentary etc.

Media Player
=========
Great addition to the boxes.
1. Option to resume from the last viewed frame of the movie.

Tuner
====
1. Ability to record from a channel and watch a recording via the media player like other single tuner boxes e.g. Dreambox DM800.
2. Ability to record two channels via the same transponder at the same time like other single tuner boxes e.g. Dreambox DM800.

Network Apps
==========
1. Additional network apps of particular interest would be an external EPG for Satellites with just the now and next schedule information that integrates with the Timers.

I would be very grateful if you guys could add to this and if anyone could pass this back to the Openbox/Slybox developers that would be fantastic.

hamborambo · Jan 21st 2012

Hi

Last summer I posted on here with a list of recommended firmware improvements and asked if anyone could feed back to the manufacturers. Shortly afterwards we saw the media player added a great addition.

Just wondering if some of the following suggestions could be added.

1. Timers. A weekly option on the timers once and daily a bit restrictive.
2. Timers. Option to goto standby after record ends.
3. Timers. Option to specify record end time instead of duration.
4. Epg. Option to import Epg either via something like cross Epg or another program run via the computer that can be imported via the usb stick.
5. Media player. Ability to play additional file formats e.g. transport stream .ts.

Regards

Hambo

hamborambo · Jan 21st 2012

Hi this works great on my original s9. When the Fav button is pressed I have the 1 column channel list.

hamborambo · Jun 29th 2011

To add to the above post you cant stream from the openbox to a pc. You can however record to a usb drive either in dvr format with older firmware or transport stream with the later firmware then watch the recording on the pc. there is a took to convert the dvr format to ts. vlc media player will play the recording on the pc. Not sure about mac tools for the openbox sorry.

hamborambo · Jun 20th 2011

The latest firmware 17-06-2011 now contains a media player that plays mp4 and mpeg1 and 2 files. Works well.

hamborambo · Jun 20th 2011

Just flashed this on my S9 HD. Media player a very useful new addition thank you for this, playing mp4 and mpeg 1 and 2 files without any problems. I also think the picture particularly on HD is a little sharper and the colours better.

Best image for me so far. Would still like to see the media player supporting more formats particularly dreambox .ts and improvements to the epg and record timers.

hamborambo · Jun 14th 2011

hooley are you using an rs232 cable into a serial port or through a usb adapter?

daft question but have you used the rs232 lead successfully with a different type of receiver e.g dreambox and dreamup?

Have you tried altering the com port and port settings eg bits per second parity etc?

hamborambo · Jun 13th 2011

Oh dear. Hooley any luck recovering your box?

hamborambo · Jun 9th 2011

Interesting find.

hamborambo · Jun 2nd 2011

Lets hope we'll also see epg and timer improvements too.

hamborambo · May 4th 2011

With homeplugs I think you're best sticking with the same make and speed to ensure compatibility. I had a couple of the black 85MBPS PE85's and checked compatibility with the newer white PE85 MK2.

hamborambo · May 3rd 2011

As far as I know this is not possible with the Openbox it does not support third party plugins.

hamborambo · May 3rd 2011

It sounds like either your image has got corrupt and needs reflashing or your sat feed cable needs checking. Do you have another feed to test with first before reflashing or do anoither box to test you're sat connections?

hamborambo · Apr 30th 2011

Easiest option as above would be to use one of your dreamboxes as a server for a small setup like yours. I run a similar setup. If your environment grows then you will need to upgrade to a pc server.

hamborambo · Apr 30th 2011

I've had that before with my netgear router and check with a port test website if i cant see any client connections e.g Open Port Check Tool

hamborambo · Apr 28th 2011

Agree with Hooley go for one with external power from our sponsors who should be able to advise on the best option. I've tested a few 2.5" USB HD's on my Openbox without external power some work and some don't so it is hit and miss. I guess the USB port is not putting out the full 500 milliamps.

hamborambo · Apr 27th 2011

The *** Zone 1 dish is too small for multiple LNB's. The Zone 2 dish works for Hotbird and Astra 1 in the UK with either a monoblock or user made bracket with good quality LNB's but you will need a Triax 40mm lnb adapter bracket to use other Universal LNB's e.g. TRIAX 40MM ADAPTER LNB HOLDER FOR SKY MINIDISH | eBay UK

I personally use a Zone 2 dish with Technomate 0.1DB Universal LNB's for Hotbird 13.0 (Centre), Astra 1 19.2 offset one side and Astra 4A 4.8 the other side. I can get most of the channels on Hotbird and Astra 1 including HD and the European bands on Astra 4A. I do suffer a bit with rain fade but I'm happy with what I can get. Will eventually upgrade to a larger dish and motor.

hamborambo · Apr 27th 2011

Can you please provide us with more information to go on?

hamborambo · Apr 27th 2011

Hi cdr, I'm seeing permission denied errors to your oscam.sh script. Have you set permissions to 755 to allow execution?

Posts by hamborambo

OpenVPN Problem

Firmware Upgrade Improvements

Openbox S9 Firmware Improvements

Firmware OPENBOX S9HD Original & Clones 05/01/2012 Beta !!!!!!

New to Openbox S9

Play avi, mpg, etc.... on Openbox

Openbox S9 CONM_C2DS2_America.abs

Openbox S9HD JUNE 2011 TESTING FIRMWARE !!!!!!!

Openbox S9HD JUNE 2011 TESTING FIRMWARE !!!!!!!

Save your money Get a 3D converter

S9 HD Firmware Openbox 11/05/2011

Are differant brand home plugs compatable ?

random downloading by openbox s9

Dm500s boot loop problem

Need help !

DM800 NO clients

Best hard drive ?

DIY Multi LNB Arm??

dreamer 500hd

Oscam Auto Update Script for Receivers