So I have a Netgear R8000 router and remember in the OFW that there was an option to be able to join both 5GHz bands together to increase the range of that band. I am currently on 2024.1 and was wondering is there an option in the Tomato FW to do the samething!?

I finally got around to commissioning a used R8000 I bought a few days ago. I have a very basic configuration running right now. Basic networking and some DHCP and 2.4 and 5.0 with basically default settings. The issue I have is that twice now, the wifi (2.4, haven't checked 5.0) has failed. No wifi device is able to connect. Wired connections work fine.

I'm just wondering if there are any known issues with this setup. Obviously, as the router is used, there could be questions there but obviously I'd be happier to be told an upgrade to 2024.1 would fix things or that I need to change a setting.

Hello all,

I have a Linksys WRT300N V1, which is supported according to the Fresh Tomato hardware compatibility table. This table states that I need to use MIPS-R1 K26 (SDK5.10) firmware. Looking at the Downloads for MIPS R1 K26 none of the MIPS R1 downloads have this router listed in the README as supported.

Is it because I need to find whatever this "SDK 5.10" firmware is? Where do I find this? Basically I just want to find the latest Fresh Tomato for my router and any help would be appreciated.

EDIT: the latest Fresh Tomato mini images seem to work just fine on the WRT300N V1 despite not listing it as supported. Don't use any of the Max images because this thing only has 4MB flash.

As in title.

I have just realized that I am running Shibby 1.28 on my home router Asus RT-N66U (not best practice). "Unfortunately" it has been running very smooth for the last decade, but its days may be over.

Any suggestions on

• upgrading from Shibby to FreshTomato on current router (I would rather not, but security)
• how to back up its configuration
• which is current best-in-class robust router (10 years longevity would be nice, but hey)
• how to import backup configuration into that router

NB: Last post I found is from a year ago

https://old.reddit.com/r/TomatoFTW/comments/x0i39v/shibby_128_to_fresh_tomato_upgrade_help/

Hi all,

I’m rather new to this but I unfortunately purchased a ASUS ax3000 v2 before realising a VPN can’t be installed on it. Currently I live in china so would be nice to install a VPN like mulvad or astrill onto it. Both use Merlin I believe. If I flash the router with tomato will I be able to do this ? Thank you.

Hello guys, where can i find open source firmware for this router? Or can i find the firmware by searching for router's shipset instead of name, would that work as well?

Hello! I'm running Tomato as an access point (router and DHCP handled on my OPNsense firewall).

I'm trying to transition some of my IOT devices to using the Matter Protocol (over Wifi). This is an IPv6-only protocol. However, when I tried to add my first (and only) device, it failed and I think it's because my wireless AP has no IPv6 address. I don't need it to be full, publicly routable IPv6, I just need a local link address, that starts with the fe80:: that you've probably already seen already.

Is that a thing? Does my idea make sense?

Thanks for your help in advance.

I need to put A VPN directly on a NetGear Nighthawk AX4 4G LTE Cellular Router or a TP Link 505 Wifi Repeater. Any insight?

Hello, I'm new to all this so bear with me. I wish to setup a guest WiFi that uses a VLAN (to separate it from the main one) on my APs running latest FreshTomato.

Topology is: ISP modem > OPNsense box (main router) > the AP (wired to main router). Note: I don't have a switch.

Here are my issues:

1. I've setup a VLAN on the OPNsense box following this guide but I'm not sure if that's correct for my purposes or on how to verify if it's working: https://homenetworkguy.com/how-to/beginners-guide-to-set-up-home-network-using-opnsense/
2. On FreshTomato AP: I know how to setup a VLAN and setup the guest WiFi (if used as a main router).

I created a VLAN with same tag (VID 3 if I'm understanding FreshTomato correctly) and IP (same subnet with starting IP of 192.168.10.1, no DHCP or pool assigned) as the VLAN (tag 3) on the OPNsense box. I even tagged (tried without tagging too) the port connecting the main router and the AP on the AP. I can connect but it says no internet. I've no idea what's wrong or how to proceed.

Any help is appreciated, preferably step-by-step.

hi everyone, why i can't find the transmission fuction in Freshtomato? is there the only problem i met? where is it? if someone konw that please tell me how the use fuction of transmission. thank you!

https://preview.redd.it/qxo2eqk05utc1.png?width=962&format=png&auto=webp&s=324973b4f17b9db949bf55d1e7d841a559e1e992

Hello,

I've tried to search reddit and the FT wiki as I could. Would anyone be willing to recommend a good router I could get on Amazon that would run Fresh Tomato?

I have Starlink, and so my speeds are O.K. The most important features for me is low latency and taking care of bufferbloat problems.

I really like the option to be able to limit devices on my LAN so they can't saturate my connection and introduce lag. Can you use Bandwidth limiting with SQM? Tomato has SQM, right?

I ran Tomato by shibby I think, maybe 8 years ago or so. My favorite features of Tomato has been the detailed network traffic and seeing in real time what is downloading \ uploading. Still a thing?

Tl:dr

1.) Recommend a solid Router (don't need wireless, I have a mesh system I can use in WIFI only mode). Would like to get one from Amazon.

2.) Does Fresh Tomato support SQM to help with buffer bloat?

3.) Can you use Bandwidth limiter and SQM together?

4.) Does FT still have bandwidth graphs and charts?

​

Thanks!

I just installed Fresh Tomato 2024.1 on my Netgear R7000 router. I have the OpenVPN server configured and running. What VPN throughput should I be getting? I'm getting 13Mbit up and down, which is lower than I would expect.

Both ends of the VPN tunnel have 1 Gbit fiber connections to the internet, and they always hit 850+ Mbit up and down via speedtest.net.

I don't see the cpu usage on the router go above 35% when testing VPN throughput.

I tried limiting the cipher to AES-128-CBC (verified by checking the client logs), and that made no difference to the throughput. That suggests to me that router CPU isn't the bottleneck, but I'm no expert.

Fresh Tomato is mostly using the default settings. I tried enabling CTF and that didn't seem to make a difference either.

current vpn configuration below.

any ideas on how to improve the throughput? or is the r7000 OpenVPN server maxed out at 13Mbit?

thanks

https://preview.redd.it/ubdafz3bijsc1.png?width=763&format=png&auto=webp&s=8278ffdb2104a91b2fcb54aaf86fe2f242db186a

https://preview.redd.it/vb59iu18ijsc1.png?width=757&format=png&auto=webp&s=57aafeb3a52dd43353a85e5848ad2b1a39db4dbf

Seems like the Asus AC68U has now reached EoL for the offical FW.

As I was generally content with the hardware, would it make sense to switch to the next FreshTomato release to keep security up-to-date?

Will WiFi 2.4Ghz and 5 Ghz work just as well / fast as with AsusWRT?

Will FreshTomato also be able to handle a 1 Gbps WAN to LAN. With offical FW at least this works fine.

In short: Are there things I must be aware of which will not work as well or fast as with the offical FW, e.g. due to missing drivers?

Thanks!

Let's ignore country regulation. The allowed range is 5 - 1000mW.

1. What is default power for "use 0 for country default" for, say Singapore?

2. I tried a few values. 100mW on both 2.4G and 5G was weak.

150mW was OK: both 2.4G and 5G strength -80dBm. Getting wifi download speed 80 from my 100Mbps service.

200mW: seemed not any better.

If 200mW is far under the designed power, I'll boost it to the normal level, which I have no idea being at what range. If it is about the average I'll keep it as is.

Broadband service is switching to 1000 in a month so signal test will need to be done again.

====================

Netgear R6300V2

I have a single router, and multiple subnets. One subnet is for IoT devices only, while another contains devices I trust such as my NAS. All access between subnets is blocked, but they can all access the internet. I would like to stream some media by Plex, Emby, or similar from my NAS to my Smart TV.

Is there a way I can create a safe access path between my IoT subnet and my NAS? I'm thinking something like port forwarding, but between subnets instead of from LAN to WAN.

Alternatively, is there a widely available server/client system that can stream media similar to Plex but without requiring LAN access between the server and client, and without requiring holes in my WAN firewall?

My WiFi radios keep randomly turning off, and I noticed that in the logs I see:

Mar 31 23:22:14	user	info	buttons[743]	WLAN button pushed for 2202000 ms - toggle radio

This leads me to believe that the WiFi button is broken.

I see in the Administration panel that there is an option to disable the WPS button completely but no option for the WiFi button. Is there any mechanism to completely disable the WiFi button through some of the tools in /sbin/? I noticed that /sbin/buttons has the string with that log message but it doesn't seem to be accessible as a commandline tool. I'm also unsure if this WiFi / Radio button is available under the gpio tool. I also noticed that radio exists, but that is for turning the radio on / off, and I want to disable the WiFi / radio button.

I just setup MultiWAN for my R7000 because I currently have 2 1000Mbps plan. However, my wifi speed becomes ridiculously slow but my Ethernet connection to pc is working fine.

My wifi speed was ~250Mbps then becomes lower than 5Mbps

My Ethernet however remains the same at around ~800Mbps-1.5Gbps

Currently, I have reverted back to the old backup(luckily I get my old WiFi speed back), however can anyone help me fix the issue because I don’t want to waste 1000Mbps alone unplugged.

Broadband service is 1000Mbps. CTF (Cut-Through Forwarding) on and I have 910M download, 870 upload when wired behind the router. However wifi gives only DL 100-120M, UL 16M on either 2.4GHz or 5GHz, when the phones are right next to the router. Signal strength hasn't been edited.

When Broadband service was 100M and router is on DD-WRT, wifi DL speed was 60-80 if I remember it correctly.

Are my phones weak or something?

​

• Netgear R6300v2
• FreshTomato 2024.1 K26ARM USB AIO_Lite-64K
• Sony Xepria XA2 Plus (802.11n dual-band only, no ac)
• Samsung Galaxy Tab A 8.0 & S Pen (2019) (802.11ac)

I found out about https://github.com/NotVaryClever/tomato-nvram a year ago and it really changed my tomato game. I used to use the venerable Asus RT-AC68U and related AC-1900P for years and years but it seems closed out. In fact there are very few FT supported models out there it seems, and only one AX (I guess it's wifi6??) model that's half-supported.

Anyway I tried to go from a 1900P to a 3100 Asus and it did seem to load, I refreshed the page and bam, everything was there. But when I rebooted, it was back to stock! 192 address, stock theme, no config! Do I have to simply make a new build for this model Asus? Just trying to save some headache.

title says it all

I want to block youtube from my kids devices.

I have an old router I use as a media-bridge with FreshTomato to connect my wired desktop to my ISP's router via wifi via the 5G band. It works great for this.

What I want to do is broadcast the Tomato router's 2.4 signal as an access point where my kids devices will connect to. Then tomato's access Restriction will kick in and keep their devices off youtube at the network level. In VLAN I have the 2.4G network (wl0) going to the same "ethernet to bridge" as the 5G network (wl1)

I set their laptop with a static IP. I have its MAC (which is not randomized) and IP address in the access restriction, and for the sake of testing I have "block all internet access" enabled, and their devices are still getting online.

Networks aren't my strong suit, but my understanding is basically I have this router configured to accept devices over ethernet, or its 2.4G signal, go through tomato's rules, and bridge it to my ISP's router/modem? What am I not understanding?

I also tried the parental control's on the ISP's device, but I just chalked that up to old crappy firmware.

Here is how I have the VLAN setup

Thanks

I have a cheap IP camera, which I don't exactly trust, so I'd like to be able to prevent it from accessing the wider internet, while allowing it access to the local network. I've been searching for a way to do this for a long time, but can't figure it out. Is this possible? Router has Version 2024.1.

I have a R7000 with freshtomato installed. The router keeps dropping connection with both ethernet and wifi connected devices. Internet will drop and come back within a 45 seconds on my computer but will continue dropping continuously.

I have narrowed it down to being an issue with router and not my connection from the ISP because the same thing is happening with devices communicating locally. I have several local smart devices that are constantly dropping and then reconnecting.

​

Any ideas to help with troubleshooting would be appreciated!

Hi Is there a guide how to properly separate iot and other random devices from the 'private' network with all the pcs? If I would create vlan0 with pcs and vlan1 with iot+printer, would I be able to access printer from vlan0, but restrict vlan1 from accessing vlan0?

Also, how do you keep track of the devices? Around half of the devices in my network do not have hostnames nor the network card manufacturer info. Can I somehow identify these?

Thanks!

I have an R7000 with 2 OpenVPN Clients running.

Is there a way for a PC on the LAN to select through which VPN to go through?

​

Thanks!

Using FreshTomato:

​

I have two homes connected via VPN, using R7000 netgears.

​

So Home 1 has a client R7000 linked to the server R7000 of Home 2 (VPN1) and Home 2 has another R7000 Client connected to the Server R7000 of Home 1 (VPN2).

I have two opvn config files, one splitting the VPN so that I only access the LAN of the other home and another where I access the home LAN AND its internet.

​

Does anyone know how I could use one R7000 in each home acting both as client and server, so that Home 1 has an R7000 with Client VPN1 and Server VPN2 and Home 2 has one with Client VPN2 and Server VPN1?

​

Any help would be greatl appreaciated!