Recent Forum Posts
From categories:
page »


So I've worked out how to, and have placed my server on a VLAN.

However I am still struggling with getting port 53 UDP to work for me.



Re: DNS port 53 UDP forwarding by derfzderfz, 24 May 2018 20:44


I need help I am installing a tomato in a ASUS RT68U, which is configured to be an access point. The internet is provided by another router that is from my ISP. So far no troubles
I first installed advanced tomato VPN version, configured the PPTP server and everything was fine. I was able to connect to PPTP server inside and outside the LAN (at my work).
Then I decided to try the AIO version and my problems with my PPTP server began.
I am only able to connect to it if I am inside my LAN. If I am away, it does not work.
There is some difference in firewall between VPN and AIO version that is blocking connections from outside the LAN, but I cant find anything related…
Can anyone please please help?


Hello all

I've just install TomatoUSB on my netgear R8000 router in an attempt to resolve a port forwarding issue I am experiencing.

My issue is that port 53 UDP doesn't seem to forward at all.

Here is what I am attempting to achieve.
I have several domains, and I wish to host my own websites and related services including DNS (bind9).
I wish to use buddydns as a secondary DNS service.
But buddydns cannot connect to my bind9 server via port 53 UDP. Port 53 TCP works just fine, and their buddyboard states that my delegation and transfer setup appears correct.

Given that I am very new to this sort of thing. What would be the best way to estabish the connections I require. And I guess I also need to address the issue of protecting the rest of my LAN from those resourseful individuals who would seek to be less than appropriate on my network.

My server has a wireless connection as it is located remotely and getting a hardwire connection would be very difficult to achieve although no impossible.



DNS port 53 UDP forwarding by derfzderfz, 23 May 2018 20:02
Re: IPV6 Xfinity
myricemyrice 06 May 2018 04:24
in discussion Discussions / General » IPV6 Xfinity

I have same issue. I can ping from R7000 router. However, my desktop cannot get ipv6 address from the router.

Re: IPV6 Xfinity by myricemyrice, 06 May 2018 04:24

I have setup a Raspberry Pi and installed PiVPN, all well so far. I then installed OpenVPN GUI on my desktop and OpenVPN Connect on my Pixel phone. Using the instructions provided by the PiVPN project I created a config.ovpn file. I installed that file on my desktop OpenVPN GUI and my Pixels OpenVPN Connect app. I then tested both the desktop and the Pixel connections and they worked perfectly.
Now the problem, I wanted to setup my Asus RT-AC68P running AdvancedTomato Shibby version 1.28.0000 -3.5-140 K26ARM USB AIO-64K as a VPN client connected to the Pi I just setup. I was able to edit the config.ovpn file and copy the Certificate Authority, Client Certificate, Client Key and the ta key and I used that information in the appropriate area on the routers Client VPN settings page.
Using the settings provided by a helpful user I was able to establish what I though was a connection because when I selected StartVPN it came back and said Running. But, if I checked to see if the Wan IP address had changed to the Pi’s ISP it did not. I had my local ISP’s address.

When I checked the Pi OpenVPN log file it had the following error messages:
TLS Error: cannot locate HMAC in incoming packet from [AF_INET]
TLS Error: cannot locate HMAC in incoming packet from [AF_INET]
TLS Error: cannot locate HMAC in incoming packet from [AF_INET]
TLS Error: cannot locate HMAC in incoming packet from [AF_INET]
TLS Error: cannot locate HMAC in incoming packet from [AF_INET]
TLS Error: cannot locate HMAC in incoming packet from [AF_INET]
( my client IP address redacted)

Can anyone tell me what I can do to correct this and make this work? If you need more information please let me know and I will happily provide it. And if this is the wrong place to post this, let me know where I should.

same thing here: Linksys E series router (E3200) with Shibby v140: After initial firmware flush all seems to work. but after few restarts : 5Ghz network is well defined in the router menus but no device can detect / "see" its SSID in the house. no Android device (like Xiaomi Mi TV box) and no 2017 MacBook pro can see the 5Ghz SSID.
the 2.4Ghz bands works flawlessly.
tried changing various 5Ghz menu settings in the router UI but so far no success.

My USB menu was never disabled , so I doubt this affect my 5Ghz .
seems like an inherent bug in the firmware:
Tomato Firmware 1.28.0000 MIPSR2-3.5-140 K26 USB Mega-VPN

In compulsory tunneling, the carrier network provider manages VPN connection setup. When the client first makes an ordinary connection to the carrier, the carrier in turn immediately brokers a VPN connection between that client and a VPN server. From the client point of view, VPN connections are set up in just one step compared to the two-step procedure required for voluntary tunnels.

Re: VPN Tunneling Setup by zmirlizmirli, 27 Apr 2018 10:19

You can just set parental controls on the account and then determine which website can be used. Alternatively you can use apps to block website on Mac. below are the two apps i use to block apps and websites on Mac.

I know this is an old thread, but I want to update my findings after trying with a recent build on a F7D7301.

  • In fact, I had to do a factory reset after coming from dd-wrt to solve the wrong user/password issue
  • I've flashed v1.28.0511 MIPSR2Toastman-RT-N K26 USB Lite (Ext doesn't fit)
  • And I've found some other issues:
    • The USB NAS menu doesn't work if I change the IP address from to something else ( in my case)
    • There are other menus like IPv6, Adblock, MultiWAN, etc. that appears (but show nothing) when changing from default network segment
    • The Route Modem IP option is not working. However I can cincumvent it by running an init script
    • The Ethernet Ports status graph don't work either
  • Tried with Sibby, and noticed a similar behavior

Hi, can anyone help. For some reason in the OpenVPN Tunneling Client Configuration basic setup page I have to enter the IP address in the "Server Address/Port field as opposed to the server name which is what most VPN providers want to supply you.

Can anyone tell me why this is not working?

Thanks so much.

VPN Tunneling Setup by MikeNZ57MikeNZ57, 16 Apr 2018 22:59

Well, sorry for the question, but are we still here, in 2018?
We can mount CIFS by IP only?

Re: IPV6 Xfinity
websheriffwebsheriff 13 Apr 2018 21:26
in discussion Discussions / General » IPV6 Xfinity

I am having this same issue. Unfortunately have not figured a solution yet… hopefully someone knows.

Re: IPV6 Xfinity by websheriffwebsheriff, 13 Apr 2018 21:26

I'm running Advanced Tomato which is a "modern" UI on top of Shibby Tomato. I'm a bit behind on the updates, v3.1-136 AIO, but kinda doubt that's the issue.

If I connect my PC directly to the cable modem, I can get 200 MBs as measured with the DSLReports speedtest. If I use a cat-6 wired connection from my Asus RT-n16 the connection slows down to about 110 MBs. I've tried multiple cables and ports. The cables are 2 meters so its not a distance issue.

Is there some setting that could be limiting my throughput, or is it time for a new router?


IPV6 Xfinity
davezub1davezub1 11 Apr 2018 13:34
in discussion Discussions / General » IPV6 Xfinity

I'm not sure if this the correct forum since I'm using Advanced Tomato, but I could not locate a forum for Advanced. I'm running Tomato Firmware 1.28.0000 -3.5-140 K26ARM USB AIO-64K on a Netgear R8000. The stock firmware worked well with IPV6 but I always wanted to test other firmware for advanced features. Everything is working pretty good much smoother than dd-wrt, except I can't get IPV6 to work on the WAN connection, LAN works fine. The status WAN page does show a IPV6 address but when I run any online IPV6 test it only shows IPV4. Any help would be appreciated. I searched the forum here concerning IPV6 but could not find any solutions.

Using DHCPv6 with Prefix Delegation
Length 64
Accept RA WAN

Status WAN
IPv6 Address 2001:558:6020:xxx:xxxx:xxxx:xxxx:xxxx

IPV6 Xfinity by davezub1davezub1, 11 Apr 2018 13:34

Can someone provide a script for showing how to block an individual IP or country block using the firewall in Tomato? (I'm using Advanced Tomato but it should not matter).

I believe this is still done using IPTABLES.

How can I make certain websites require a password to access the websites?

I have two remote LANs (let's say LAN1 and LAN2) with Netgear WNR3500L v2 routers (ROUT1 and ROUT2) with Tomato Firmware 1.28.0000 MIPSR2-3.5-140 K26 USB AIO.
I want to totally share resources of this LANs. But I'm noob in network stuff.

My current config is:
PPTP IPs: (default values)
ROUT1 Static Routing: Dest: Gateway:

DDNS works fine and PPTP client connects to the server, but I didn't test routing yet.

Current problems:
GUI doesn't allow to assign exact address ( for current user. If another user will occupy this IP, routing will fail.

How should I solve this?
If LAN1, LAN2 and PPTP will use different ranges of the same subnet (,,, will it work without static routing? Or conversely it will not work at all?

I'm trying to solve this for years. Please, help me.
And sorry for my english.

PPTP LAN-to-LAN connection by leadravenleadraven, 08 Apr 2018 16:42

Dear Forumers!

I have an Asus RT-N18U with the latest Tomato version. I would like to install owncloud 10 to the USB attached storage but the built in php and mysql version is not good enough for owncloud 10.
Therefore I installed to /opt lighthttpd, php7 packages and mariadb. I copied over owncloud files to the www root. Everything seems to be good except the database.
I know SQLite could be used as datbase but I would give try to use it as a database. Seems much better solution.

What I tried:

On webinterface: webserver/mysql/basic
Enabled MySQL server and set MySQL binary path to /opt/bin
In the console:
opkg install mysql-server
mysql_install_db —force
I didn't find any errors.

Then I tried to start the db server.
/opt/etc/init.d/S70mariadbd start
I dind't receive any feeback.
Then I entered: /opt/etc/init.d/S70mariadbd status
and received: mysqld is not running

I tried to reboot the router and reinstall all the packages from the start even from entware installing but nothing chagned.
Unfortunately I couldn't find any up to date guide. Do you have any idea what could I did wrong?


MariaDB install on Tomato by Imre84Imre84, 04 Apr 2018 20:11

You’ll be able to contact our enjoyable client help team, who is ready to answer any questions you could have about your online payday loan. Online lenders make up the fastest rising part of the payday mortgage marketplace, according to tom falter of the customer federation of America, which does analysis and advocacy on quite a lot of shopper issues. Which suggests there’s a short however considerable group of people who are so monetarily desperate and/or monetarily ignorant that they will most likely get into enormous hassle with a financial gadget like a [
text loans no brokers]. Lenders hold the checks till the subsequent payday when Online Payday Loans and the finance rates should be paid in a single lump sum. In contrast to online payday loans, the lenders of installment loans would like to see your credit historical past and prefer these having a very good credit score file. An unsecured private loan generally is a useful thing to consolidate your debts and get a hard and easy monthly fee at a decrease charge.

Buying / construct a new house need a large amount of money which is very tricky to pay from savings outright. in addition, the accretion of the money takes years before one can pursue the transaction. That’s why house loan is the most suitable and prudent way of financing and inexpensive in terms of time. When one acquires house loan the money can be returned through monthly installments known as EMIs payweeklyloansuk

page »
Unless otherwise stated, the content of this page is licensed under Creative Commons Attribution-ShareAlike 3.0 License