User Tools
kb:flash:wrt54gshibbydefaults
Table of Contents
WRT54G Tomato Shibby Defaults
Table of Contents
This document provides some default settings when a WRT54G router has just been flashed with Tomato Shibby using the Firmware file: tomato-ND-1.28.5x-121-VPN.bin
Please Note:
The MAC addresses in this document are from a spare WRT54G that I happened to grab to do this. So the MAC addresses for any other router will be something else– with actual values specific to each piece of equipment.
The MAC addresses in this document are from a spare WRT54G that I happened to grab to do this. So the MAC addresses for any other router will be something else– with actual values specific to each piece of equipment.
Where possible, I am using blocks of mono-spaced Unicode text to document this in an easy to update format. In doing that, I have used a empty or filled star to represent an empty or a selected/checked item in these settings.
Status
Overview
System (hide)
Name TomatoUSB Model Linksys WRT54G/GS/GL Chipset Broadcom BCM5352 chip rev 0 pkg 2 CPU Freq 200MHz Flash Size 4MB Time Not Available Uptime 0 days, 00:09:15 CPU Load (1 / 5 / 15 mins) 0.00 / 0.03 / 0.03 Total / Free Memory 14.04 MB / 8,592.00 KB (59.78%) Total / Free NVRAM 32.00 KB / 14.51 KB (45.34%)
Ethernet Ports State
WAN (hide)
MAC Address 00:14:BF:1F:D5:52 Connection Type DHCP IP Address 0.0.0.0 Logout Subnet Mask 0.0.0.0 Gateway 0.0.0.0 DNS MTU 1500 Status Renewing... Connection Uptime Remaining Lease Time 0 days, 00:00:00
LAN (hide)
Router MAC Address 00:14:BF:1F:D5:51 Router IP Addresses br0 (LAN) 192.168.1.1/24 DHCP br0 (LAN) 192.168.1.2 - 192.168.1.51
Wireless (2.4 GHz / eth1) (hide)
MAC Address 00:90:4C:5F:00:2A Wireless Mode Access Point Wireless Network Mode Auto Interface Status Up (LAN) Radio Enabled SSID Tomato24 Broadcast Enabled Security Channel 6 - 2.437 GHz Rate 54 Mbp
Basic
Network
WAN / Internet
Type DHCP MTU Default 1500 Route Modem IP 0.0.0.0 (must be in different subnet to router, 0.0.0.0 to disable)
LAN
| Bridge | STP | I P Address | Netmask | DHCP | IP Range (first/last) | Lease Time (mins) |
|---|---|---|---|---|---|---|
| br0 | Disabled | 192.168.1.1 | 255.255.255.0 | Enabled | 192.168.1.2 - 51 | 1440 |
Static DNS 0.0.0.0 (IP port)
0.0.0.0
0.0.0.0
WINS (for DHCP) 0.0.0.0
Ethernet Ports State Configuration
Enable Ports State ★ Show Speed Info ★ Invert Ports Order ☆
Wireless (2.4 GHz / eth1)
Enable Wireless ★ MAC Address 00:90:4C:5F:00:2A Wireless Mode Access Point Wireless Network Mode Auto SSID Tomato24 Broadcast ★ Channel 6 - 2.437 GHz Security Disabled
Identification
Router Identification
Router Name TomatoUSB Hostname unknown Domain Name
Time
Time
Router Time Not Available Time Zone UTC+01:00 France, Germany, Italy, Poland, Spain, Sweden Auto Daylight Savings Time ★ Auto Update Time Every 4 hours Trigger Connect On Demand ☆ NTP Time Server Europe
Static DHCP/ARP/IPT
Static DHCP/ARP/IPT
| MAC Address | Bound to | P Address | IPTraffic | Hostname |
|---|---|---|---|---|
| 00.00.00.00.00.00 | 192.168.1.2 | |||
| 00.00.00.00.00.00 |
Options
Ignore DHCP requests from unknown device ☆
Wireless Filter
Wireless Client Filter
★ Disable filter ☆ Permit only the following clients ☆ Block the following client
| MAC Address | Description |
|---|---|
| 00.00.00.00.00.00 |
Advanced
Conntrack/Netfilter
Connections
Maximum Connections 8192 [ count current... ]
TCP Timeout
(seconds) Established 1200 SYN Sent 120 SYN Received 60 FIN Wait 120 Time Wait 120 Close 10 Close Wait 60 Firewall Last ACK 30
UDP Timeout
(seconds) Unreplied 30 Assured 180
Other Timeouts
(seconds) Generic 600 ICMP 30
Tracking / NAT Helpers
FTP ★ GRE / PPTP ★ H.323 ★ RTSP ★
Miscellaneous
TTL Adjust None Inbound Layer 7 ★
DHCP/DNS
DHCP / DNS Server (LAN)
Use internal DNS ★ Use received DNS with user-entered DNS ☆ Prevent DNS-rebind attacks ★ Intercept DNS port (UDP 53) ☆ Use user-entered gateway if WAN is disabled ☆ Ignore DHCP requests from unknown devices ☆ Maximum active DHCP leases 255 Static lease time Same as normal lease time Announce IPv6 on LAN ☆ Mute dhcpv4 loggin ☆ Mute dhcpv6 logging ☆ Mute RA logging ☆ Dnsmasq Custom configuration
DHCP Client (WAN)
DHCPC Options Reduce packet size ★
Firewall
Firewall
Respond to ICMP ping ☆ Limits per second ☆ ⇐ Greyed out when "Respond to ICMP ping" not selected ICMP 1 request per second Traceroute 5 request per second Enable SYN cookies ☆ Enable DSCP Fix ☆ Fixes Comcast incorrect DSCP
NAT
NAT loopback All NAT target MASQUERADE
Multicast
Enable IGMPproxy ☆ LAN ☆ | LAN1 ☆ |⇐ Greyed out when "Enable IGMPproxy" not selected LAN2 ☆ | LAN3 ☆ | Enable Udpxy ☆ Enable client statistics ☆ ⇐ Greyed out when "Enable Udpxy" not selected Max clients 3 Udpxy port 4022
Miscellaneous
Miscellaneous
Boot Wait Time * 5 seconds WAN Port Speed * Auto
Routing
Current Routing Table
| Destination | Gateway / Next Hop | Subnet Mask | Metric | Interface |
|---|---|---|---|---|
| 192.168.1.0 | * | 255.255.255.0 | 0 | br0 (LAN) |
| 127.0.0.0 | * | 255.0.0.0 | 0 | lo |
Static Routing Table
| Destination | Gateway | Subnet Mask | Metric | Interface | Description |
|---|---|---|---|---|---|
Miscellaneous
Mode Gateway RIPv1 & v2 LAN ☆ LAN1 ☆ |⇐ Greyed out when "LAN" not selected LAN2 ☆ | LAN3 ☆ | WAN ☆ DHCP Routes ★
VLAN
VLAN
| VLAN ▲ | VID | Port 1 | Tagged | Port 2 | Tagged | Port 3 | Tagged | Port 4 | Tagged | WAN Port | Tagged | Default | Bridge |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 0 | 0 | Yes | Yes | Yes | Yes | * | LAN (br0) | ||||||
| 1 | 1 | Yes | WAN |
VID Offset
First 802.1Q VLAN tag 0 (range: 0 4080; must be a multiple of 16; set to 0 to disable)
Wireless
Bridge eth1 to LAN (br0)
Trunk VLAN support override (experimental)
Enable ☆
Virtual Wireless
Virtual Wireless Interfaces
| Overview | eth1 (wl0) | wl0.1 | wl0.2 | wl0.3 |
|---|
| Interface | Enabled | SSID | Mode | Bridge |
|---|---|---|---|---|
| eth1 (wl0) | Yes | Tomato24 | Access Point | LAN (br0) |
| LAN (br0) ⇓ | ★ | Access Point ⇓ | none ⇓ |
Wireless Interfaces Details (Click here to show)
Options (Click here to show)
Wireless
Wireless Settings (2.4 GHz / eth1)
Afterburner Disable * AP Isolation Disable * Authentication Type Auto * Basic Rate Default * Beacon Interval 100 (range: 1 65535; default: 100) CTS Protection Mode Disable * Regulatory Mode Off * Country / Region UNITED STATES Bluetooth Coexistence Disable * Distance / ACK Timing 0 meters (range: 0 99999; 0 = use default) DTIM Interval 1 (range: 1 255; default: 1) Fragmentation Threshold 2346 (range: 256 2346; default: 2346) Frame Burst Disable * Firewall Maximum Clients 128 (range: 1 255; default: 128) Multicast Rate Auto * Preamble Long * RTS Threshold 2347 (range: 0 2347; default: 2347) Receive Antenna Auto * Transmit Antenna Auto * Transmit Power 42 mW (range: 0 400, actual max depends on Country selected; use 0 for hardware default) Transmission Rate Auto * Interference Mitigation None * WMM Enable No ACK Disable * APSD Mode Enable * Wireless Multicast Forwarding Disable *
The default settings are indicated with an asterisk * symbol.
QoS
Basic Settings
Basic Settings
Enable QoS ☆ Prioritize small packets with these control flags ☆ ACK ★ SYN ★ FIN ★RST Prioritize ICMP ★ No Ingress QOS for UDP ☆ Reset class when changing settings ☆ Default class P2P/Bulk Qdisc Scheduler sfq
NOTE: When “Enable QoS” is not checked, then the selection boxes on the 4 lines below that are Greyed out.
Settings for DSL only
DSL Overhead Value ATM Encapsulation Type None
Outbound Rates / Limits
Max Bandwidth Limit 700 kbit/s (Set to measured bandwidth less 15-30%) Service 5% 100% 35 - 700 kbit/s VOIP/Game 5% 30% 35 - 210 kbit/s Media 5% 30% 35 - 210 kbit/s Remote 5% 100% 35 - 700 kbit/s WWW 20% 100% 140 - 700 kbit/s Mail 5% 70% 35 - 490 kbit/s About Messenger 5% 70% 35 - 490 kbit/s FileXfer 5% 70% 35 - 490 kbit/s P2P/Bulk 5% 30% 35 - 210 kbit/s Crawl 1% 5% 7 - 35 kbit/s
Inbound Rates / Limits
Max Bandwidth Limit 16000 kbit/s (Set to measured bandwidth less 15-30%) Service 5% 100% 800 - 16000 kbit/s VOIP/Game 5% 30% 800 - 4800 kbit/s Media 5% 40% 800 - 6400 kbit/s Remote 5% 100% 800 - 16000 kbit/s WWW 20% 90% 3,200 - 14400 kbit/s Mail 5% 60% 800 - 9600 kbit/s About Messenger 5% 60% 800 - 9600 kbit/s FileXfer 5% 60% 800 - 9600 kbit/s P2P/Bulk 5% 60% 800 - 9600 kbit/s Crawl 1% 5% 160 - 800 kbit/s
QOS Class Names (Toggle Visibility)
TCP Vegas (Network Congestion Control)
Enable TCP Vegas ☆ Alpha 2 Beta 6 Gamma 2
Classification
Outbound Direction
| Match Rule | Class | Description | # |
|---|---|---|---|
| TCP/UDP Dst Port: 53 Transferred: 0 - 10 KB | Service | DNS | 1 |
| TCP/UDP Dst Port: 37 Transferred: 0 - 10 KB | Service | Time | 2 |
| UDP Dst Port: 123 Transferred: 0 - 10 KB | Service | NTP | 3 |
| TCP/UDP Dst Port: 3455 Transferred: 0 - 10 KB | Service | RSVP | 4 |
| TCP/UDP Dst Port: 3455 Transferred: 0 - 10 KB | WWW | SCTP, Discard | 5 |
| TCP/UDP Port: 135,2101,2103,2105 | WWW | RPC (Microsoft) | 6 |
| UDP Dst Port: 3544 | Disabled | Teredo Tunnel | 7 |
| TCP Port: 22,2222 | Remote | SSH | 8 |
| TCP Dst Port: 23,992 | Remote | Telnet | 9 |
| TCP Src Port: 80,5938,8080,2222 | Remote | Remote Access | 10 |
| TCP/UDP Port: 3389 | Remote | Remote Assistance | 11 |
| TCP/UDP Port: 6970-7170,8554 | Media | Quicktime/RealAudio | 12 |
| TCP/UDP Dst Port: 1220,7070 | Media | Quicktime/RealAudio | 13 |
| TCP/UDP Port: 554,5004,5005 | Media | RTP, RTSP | 14 |
| TCP/UDP Port: 1755 | Media | MMS (Microsoft) | 15 |
| TCP/UDP Dst Port: 3478,3479,5060-5063 | VOIP/Game | SIP, Sipgate Stun Services | 16 |
| TCP/UDP Src Port: 53,88,3074 | VOIP/Game | Xbox Live | 17 |
| TCP Dst Port: 1718-1720 | VOIP/Game | H323 | 18 |
| TCP/UDP Dst Port: 11031,11235-11335,11999,2300-2400,6073,28800-29100,47624 | VOIP/Game | Various Games | 19 |
| TCP/UDP Dst Port: 1493,1502,1503,1542,1863,1963,3389,5061,5190-5193,7001 | Messenger | MSGR1 Windows Live | 20 |
| TCP/UDP Dst Port: 10711074,1455,1638,1644,5000-5010,5050,5100,5101,5150,8000-8002 | Messenger | MSGR2 Yahoo | 21 |
| TCP/UDP Dst Port: 194,1720,17301732,5220-5223,5298,6660-6669,2255 | Messenger | MSGR3 Additional | 22 |
| TCP/UDP Dst Port: 19294-19310 | Messenger | Google+ & Voice | 23 |
| TCP Dst Port: 6005,6006 | Messenger | Camfrog | 24 |
| TCP/UDP Port: 6571,6891-6901 | Messenger | WLM File/Webcam | 25 |
| TCP/UDP L7: skypetoskype | VOIP/Game | Skype to Skype | 26 |
| TCP/UDP L7: skypeout | Disabled | Skype Phone (deprecated) | 27 |
| TCP/UDP L7: youtube2012 | Media | YouTube 2012 (Youtube) | 28 |
| TCP/UDP L7: flash | Media | Flash Video (Youtube) | 29 |
| TCP/UDP L7: httpvideo | Media | HTTP Video (Youtube) | 30 |
| TCP/UDP L7: rtp | Media | RTP | 31 |
| TCP/UDP L7: rtmp | Media | RTMP | 32 |
| TCP/UDP L7: rtmpt | Media | RTMPT (RTMP over HTTP) | 33 |
| TCP/UDP L7: shoutcast | Media | Shoutcast | 34 |
| TCP/UDP L7: irc | Messenger | IRC | 35 |
| TCP Dst Port: 80,443,8080 Transferred: 0 - 512 KB | WWW | HTTP, HTTPS, HTTP Proxy | 36 |
| TCP Dst Port: 80,443,8080 Transferred: 512 KB+ | FileXfer | HTTP, SSL File Transfers | 37 |
| TCP Dst Port: 20,21,989,990 | FileXfer | FTP | 38 |
| TCP Dst Port: 119,563 | FileXfer | NNTP News & Downloads | 39 |
| TCP Dst Port: 25,587,465,2525 | SMTP, Submission Mail | 40 | |
| TCP Dst Port: 110,995 | POP3 Mail | 41 | |
| TCP Dst Port: 143,220,585,993 | MAP Mail | 42 | |
| UDP Dst Port: 1-65535 | Crawl | P2P (uTP, UDP) | 43 |
——–
Bandwidth Limiter
Bandwidth Limiter for LAN (br0)
Enable Limiter ☆
| IP / IP Range / MAC Address | DLRate | DLCeil | ULRate | ULCeil | Priority | TCP Limit | UDP Limit |
|---|---|---|---|---|---|---|---|
- IP Address / IP Range:
- Example: 192.168.1.5 for one IP.
- Example: 192.168.1.4-7 for IP 192.168.1.4 to 192.168.1.7
- Example: 4-7 for IP Range .4 to .7
- The IP Range devices will share the Bandwidth
- MAC Address Example: 00:2E:3C:6A:22:D8
Default Class for unlisted MAC / IP's in LAN (br0)
Enable ☆ ⇐ Greyed out when "Enable Limiter" not selected
- Default Class IP / MAC's non included in the list will take the Default Rate/Ceiling setting
- The bandwidth will be shared by all unlisted hosts in br0
Default Class for LAN1 (br1)
Enable ☆ ⇐ Greyed out when "Enable Limiter" not selected
- The bandwidth will be shared by all hosts in br1.
Default Class for LAN2 (br2)
Enable ☆ ⇐ Greyed out when "Enable Limiter" not selected
- The bandwidth will be shared by all hosts in br2.
Default Class for LAN3 (br3)
Enable ☆ ⇐ Greyed out when "Enable Limiter" not selected
- The bandwidth will be shared by all hosts in br3.
kb/flash/wrt54gshibbydefaults.txt · Last modified: 2016/01/13 20:35 (external edit)
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
