Temat: przerobienie Check Point 600 na openWRT
Witam wszystkich serdecznie
wpadł mi w ręce firewall Check Point 600 model L50W
urządzenie naprawdę fajne - slot na kartę SD, 2 USB, switch 8 x 1GB, karta WIFI
zdjęcie: http://zdalnypomocnik.pl/CP600.jpg
chciałem przerobić go na openWRT i używać go jako serwer domowy (serwer www, samba, DLNA, openvpn)
niestety mam kilka problemów z przerabianiem ...
urządzenie przy starcie przedstawia się jako: MARVELL BOARD: RD-88F6281A LE
czyli tak samo jak NAS STORA czy ZXCELL NAS 310 (które na openwrt przerabia się bez większych problemów - aczlkolwiek ten check point jest na AMR9)
używając kabla konsolowego wybierając menu u-boot mamy kilka możliwości:
======================================================================
______ __ __ _______ _
.' ___ |[ | [ | _ |_ __ \ (_) / |_
/ .' \_| | |--. .-- .---. | | / ] | __) | .--. __ _ .-. `| |-'
| | | .-. |/ /__\\/ /'`]| '' < | ___/ .'`\ \[ | [ `.-. | | |
\ `.___.'\ | | | || \_.,| \__. | |`\\ _| |_ | \__. | | | | | | | | |,
`.____ .[___]|__]'.__.''.__.'[__| \_] |_____| '.__.' [___][___||__]\__/
** MARVELL BOARD: RD-88F6281A LE
U-oot 1.1.4 (Aug 5 2013 - 17:11:28) Check Pont version: 983002045
U-ot code: 00600000 -> 0067FFF0 BSS: -> 006FCE0
************ Hit 'Ctrl + C' for boot menu ************
lash: 0 kB
set device[0x21] gpio[3] hi
set device[0x21] gpio4] hi
set device[0x20] gpio[7] hi
et device[0x20] gpio[1] hi
set device[0x20] gpio[3] hi
set device[0x20] gpio[0] hi
set dvce[0x20] gpio[4] hi
set device[0x20] gpio[2] h
set device[0x20] gpio[5] hi
set device[0x21] gpio[2] hi
set device[0x2]gpio[5] hi
set device[0x20] gpio[6] o
set device[0x21] gpio[5] hi
set device[0x20] gpio[6 hi
set device[0x21] gpio[0] low
set device[0x21] gpio[6] low
set device[0x21] gpio[0] hi
set device[0x21] gpio[6] hi
set device[0x21] gpio[7] low
set device[0x21] gpio[1] low
set device[0x21] gpio[7] hi
set device[0x21] gpio[1] hi
set device[0x21] gpio[3] low
set device[0x21] gpio[4] low
CPU : Marvell Feroceon (Rev 1)
Streaming disabled
Write allocate disabled
Module 0 is RGMII
Module 1 is TDM
USB 0: host mode
PEX 0: PCI Express Root Complex Interface
PE interface detected LikX1
Ne: egiga0, egiga1 [PRIM]
Reading data from 0xe0000 -- 100% complete.
Veifig CRC for settings area... Done
/* Wireless region code*/
'Ctrl + C' Detected. Proceeding to boot men. 0
Welcome to Gaia Embedded Boot Meu:
1. Start in normal Mode
2. Start in debug Mode
3. Start in maintenance ode
4. Restore to Facor Defaults (local)
5. Install/Update Image/Boot-Loader from Network
6. Install/Updat mage from USB
7. InstllUpate Boot-Loader from USB
8. Restart Boo-Laer
9. Install DSL Firmware / Upload preset configuration file
Please enter your selection :
Unknown option - ? -
======================================================================
po wybraniu 1 startuje normalnie system, pod 2 tak samo, 3 odpala linuxa ARM
opcje 5/6/7 nie działają z niczym innym jak oprogramowaniem check point (próbowałem wrzucić inny u-boot, wystartować z pendriva itd - za każdym razem dupa)
kiedy wybiorę 2-kę niby da się coś podziałać
======================================================================
Going to boot from local image (Maintenance Mode)...
Wireless device found...
NAND read: device 0 offset 0x100000, sie x8000
Reading data from 0x300000 -- 25% complete.Redngdata from 0x320000 -- 6% compl Reading data from 0x900000 -- 100% complete.
8388608 bytes read: OK
Saving Environment to NAND...
Erasing Nand...Writing to Nand... done
## Booting image at 02000200 ...
Image Name: Linux-2.6.22.18
Created: 2018-11-04 16:24:52 UTC
Image Type: ARM Linux Kernel Image (uncompressed)
Data Size: 5776544 Bytes = 5.5 MB
Load Address: 00008000
Entry Point: 00008000
Verifying Checksum ... OK
OK
Starting kernel ...
Uncompressing Linux............................................................. ................................................................................ ................................................................................ .................................... done, booting the kernel.
Linux version 2.6.22.18(gcc version 4.2.0 20070413 (prerelease)) #1 Sun Nov 4 18 :24:46 IST 2018
CPU: ARM926EJ-S [56251311] revision 1 (ARMv5TE), cr=00053977
Machine: Feroceon-KW
Using UBoot passing parameters structure
Memory policy: ECC disabled, Data cache writeback
CPU0: D VIVT write-back cache
CPU0: I cache: 16384 bytes, associativity 4, 32 byte lines, 128 sets
CPU0: D cache: 16384 bytes, associativity 4, 32 byte lines, 128 sets
Built 1 zonelists. Total pages: 130048
Kernel command line: mv_net_config=10,(00:1C:7F:27:4E:97,0)(00:1C:7F:27:4E:9F,8) (00:1C:7F:27:4E:98,1)(00:1C:7F:27:4E:99,2)(00:1C:7F:27:4E:9A,3)(00:1C:7F:27:4E:9 B,4)(00:1C:7F:27:4E:9C,5)(00:1C:7F:27:4E:9D,6)(00:1C:7F:27:4E:9E,7)(A0:00:00:00: 00:00,9),mtu=1500 console=ttyS0,115200 maintenance mtdparts=nand_mtd:640k(u-boot )ro,384k(bootldr-env),8m(kernel-1),113m(rootfs-1),8m(kernel-2),113m(rootfs-2),12 1m(default_sw),24m(logs),1m(preset_cfg),1m(adsl),-(storage) maintenance noExtPor ts= boardFlavor=SEATTLE
PID hash table entries: 2048 (order: 11, 8192 bytes)
Console: colour dummy device 80x30
Dentry cache hash table entries: 65536 (order: 6, 262144 bytes)
Inode-cache hash table entries: 32768 (order: 5, 131072 bytes)
Memory: 256MB 256MB 0MB 0MB = 512MB total
Memory: 511488KB available (4468K code, 310K data, 3464K init)
Mount-cache hash table entries: 512
CPU: Testing write buffer coherency: ok
NET: Registered protocol family 16
HWWD value (count down from boot timer, decrease 1 every CPU clock tick) 7ffffff f 0
HWWD: No upgrade - HWWD not started
CPU Interface
-------------
SDRAM_CS0 ....base 00000000, size 256MB
SDRAM_CS1 ....base 10000000, size 256MB
SDRAM_CS2 ....disable
SDRAM_CS3 ....disable
PEX0_MEM ....base e8000000, size 128MB
PEX0_IO ....base f2000000, size 1MB
INTER_REGS ....base f1000000, size 1MB
NFLASH_CS ....base fa000000, size 2MB
SPI_CS ....base f4000000, size 16MB
BOOT_ROM_CS ....no such
DEV_BOOTCS ....no such
CRYPT_ENG ....base f0000000, size 2MB
Marvell Development Board (LSP Version KW_LSP_4.2.7_patch39_DSAv03)-- RD-88F62 81A Soc: 88F6281 A1 LE
Detected Tclk 200000000 and SysClk 400000000
Marvell USB EHCI Host controller #0: c0cb9600
PEX0 interface detected Link X1
PCI: bus0: Fast back to back transfers disabled
SCSI subsystem initialized
usbcore: registered new interface driver usbfs
usbcore: registered new interface driver hub
usbcore: registered new device driver usb
NET: Registered protocol family 8
NET: Registered protocol family 20
NET: Registered protocol family 2
Time: kw_clocksource clocksource has been installed.
IP route cache hash table entries: 16384 (order: 4, 65536 bytes)
TCP established hash table entries: 65536 (order: 7, 524288 bytes)
TCP bind hash table entries: 65536 (order: 6, 262144 bytes)
TCP: Hash tables configured (established 65536 bind 65536)
TCP reno registered
RTC has been updated!!!
RTC registered
Use the XOR engines (acceleration) for enhancing the following functions:
o RAID 5 Xor calculation
o kernel memcpy
o kenrel memzero
Number of XOR engines to use: 4
cesadev_init(c000e74c)
mvCesaInit: sessions=640, queue=64, pSram=f0000000
squashfs: version 3.3 (2007/10/31) Phillip Lougher
squashfs: LZMA suppport for slax.org by jro
NTFS driver 2.1.28 [Flags: R/W].
JFFS2 version 2.2. (NAND) (SUMMARY) © 2001-2006 Red Hat, Inc.
io scheduler noop registered
io scheduler anticipatory registered (default)
Generic LED driver initialize
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
Initialize DSL driver
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
i2c driver was not initialized yet.
Serial: 8250/16550 driver $Revision: 1.90 $ 4 ports, IRQ sharing disabled
serial8250.0: ttyS0 at MMIO 0xf1012000 (irq = 33) is a 16550A
Loading Marvell Ethernet Driver:
o Cached descriptors in DRAM
o DRAM SW cache-coherency
o Single RX Queue support - ETH_DEF_RXQ=0
o Single TX Queue support - ETH_DEF_TXQ=0
o Receive checksum offload enabled
o Driver ERROR statistics enabled
o Driver INFO statistics enabled
o Proc tool API enabled
o Gateway support enabled
o Using Marvell Header Mode
o Rx descripors: q0=512
o Tx descripors: q0=532
o Loading network interface(s):
o device registered under mv88fx_eth platform
eth0: Dropping NETIF_F_SG since no checksum feature.
o eth0, ifindex = 1, GbE port = 0
o Loading Gateway interface(s):
o Using command line network interface configuration
command is 10,(00:1C:7F:27:4E:97,0)(00:1C:7F:27:4E:9F,8)(00:1C:7F:27:4E:98 ,1)(00:1C:7F:27:4E:99,2)(00:1C:7F:27:4E:9A,3)(00:1C:7F:27:4E:9B,4)(00:1C:7F:27:4 E:9C,5)(00:1C:7F:27:4E:9D,6)(00:1C:7F:27:4E:9E,7)(A0:00:00:00:00:00,9),mtu=1500
mv_gtw_get_if_nummv_gtw_get_if_num gtw_config.vlans_num=10number of interfaces i n command line is 10
o MTU set to 1500
o mac_addr 00:1c:7f:27:4e:97, VID 0x100, port list: port-0
o mac_addr 00:1c:7f:27:4e:9f, VID 0x200, port list: port-8
o mac_addr 00:1c:7f:27:4e:98, VID 0x300, port list: port-1
o mac_addr 00:1c:7f:27:4e:99, VID 0x400, port list: port-2
o mac_addr 00:1c:7f:27:4e:9a, VID 0x500, port list: port-3
o mac_addr 00:1c:7f:27:4e:9b, VID 0x600, port list: port-4
o mac_addr 00:1c:7f:27:4e:9c, VID 0x700, port list: port-5
o mac_addr 00:1c:7f:27:4e:9d, VID 0x800, port list: port-6
o mac_addr 00:1c:7f:27:4e:9e, VID 0x900, port list: port-7
o mac_addr a0:00:00:00:00:00, VID 0xa00, port list: port-9
eth1: Dropping NETIF_F_SG since no checksum feature.
i2c driver was not initialized yet.
o eth1, ifindex = 2, GbE port = 1
eth2: Dropping NETIF_F_SG since no checksum feature.
o eth2, ifindex = 3, GbE port = 1
eth3: Dropping NETIF_F_SG since no checksum feature.
o eth3, ifindex = 4, GbE port = 1
eth4: Dropping NETIF_F_SG since no checksum feature.
o eth4, ifindex = 5, GbE port = 1
eth5: Dropping NETIF_F_SG since no checksum feature.
o eth5, ifindex = 6, GbE port = 1
eth6: Dropping NETIF_F_SG since no checksum feature.
o eth6, ifindex = 7, GbE port = 1
eth7: Dropping NETIF_F_SG since no checksum feature.
o eth7, ifindex = 8, GbE port = 1
eth8: Dropping NETIF_F_SG since no checksum feature.
o eth8, ifindex = 9, GbE port = 1
eth9: Dropping NETIF_F_SG since no checksum feature.
o eth9, ifindex = 10, GbE port = 1
eth10: Dropping NETIF_F_SG since no checksum feature.
o eth10, ifindex = 11, GbE port = 1
Intel(R) PRO/1000 Network Driver - version 7.3.20-k2-NAPI
Copyright (c) 1999-2006 Intel Corporation.
i2c driver was not initialized yet.
e100: Intel(R) PRO/100 Network Driver, 3.5.17-k4-NAPI
e100: Copyright(c) 1999-2006 Intel Corporation
PPP generic driver version 2.4.2
PPP BSD Compression module registered
PPP MPPE Compression module registered
NET: Registered protocol family 24
Init ADSL control eth device
usbcore: registered new interface driver cdc_ether
GobiNet: 2013-10-08/NTGR_2.21
usbcore: registered new interface driver GobiNet
Madge ATM Ambassador driver version 1.2.4
amb: debug bitmap is 0
Madge ATM Horizon [Ultra] driver version 1.2.1
hrz: debug bitmap is 0
Integrated Sata device found
scsi0 : Marvell SCSI to SATA adapter
scsi1 : Marvell SCSI to SATA adapter
NFTL driver: nftlcore.c $Revision: 1.98 $, nftlmount.c $Revision: 1.41 $
Using Hamming 1-bit ECC for NAND device
NAND device: Manufacturer ID: 0xad, Chip ID: 0xdc (Hynix NAND 512MiB 3,3V 8-bit)
Scanning device for bad blocks
Bad eraseblock 601 at 0x04b20000
Bad eraseblock 890 at 0x06f40000
Bad eraseblock 1117 at 0x08ba0000
Bad eraseblock 3169 at 0x18c20000
11 cmdlinepart partitions found on MTD device nand_mtd
Using command line partition definition
Creating 11 MTD partitions on "nand_mtd":
0x00000000-0x000a0000 : "u-boot"
i2c driver was not initialized yet.
0x000a0000-0x00100000 : "bootldr-env"
0x00100000-0x00900000 : "kernel-1"
0x00900000-0x07a00000 : "rootfs-1"
0x07a00000-0x08200000 : "kernel-2"
0x08200000-0x0f300000 : "rootfs-2"
0x0f300000-0x16c00000 : "default_sw"
0x16c00000-0x18400000 : "logs"
0x18400000-0x18500000 : "preset_cfg"
0x18500000-0x18600000 : "adsl"
0x18600000-0x20000000 : "storage"
ehci_marvell ehci_marvell.70059: Marvell Orion EHCI
ehci_marvell ehci_marvell.70059: new USB bus registered, assigned bus number 1
ehci_marvell ehci_marvell.70059: irq 19, io base 0xf1050100
ehci_marvell ehci_marvell.70059: USB 2.0 started, EHCI 1.00, driver 10 Dec 2004
usb usb1: configuration #1 chosen from 1 choice
hub 1-0:1.0: USB hub found
hub 1-0:1.0: 1 port detected
i2c driver was not initialized yet.
USB Universal Host Controller Interface driver v3.0
i2c driver was not initialized yet.
i2c driver was not initialized yet.
usb 1-1: new high speed USB device using ehci_marvell and address 2
i2c driver was not initialized yet.
usb 1-1: configuration #1 chosen from 1 choice
hub 1-1:1.0: USB hub found
hub 1-1:1.0: 4 ports detected
i2c driver was not initialized yet.
usbcore: registered new interface driver cdc_acm
drivers/usb/class/cdc-acm.c: v0.25:USB Abstract Control Model driver for USB mod ems and ISDN adapters
usbcore: registered new interface driver usblp
drivers/usb/class/usblp.c: v0.13: USB Printer Device Class driver
Initializing USB Mass Storage driver...
usbcore: registered new interface driver usb-storage
USB Mass Storage support registered.
usbcore: registered new interface driver usbserial
drivers/usb/serial/usb-serial.c: USB Serial support registered for generic
usbcore: registered new interface driver usbserial_generic
drivers/usb/serial/usb-serial.c: USB Serial Driver core
drivers/usb/serial/usb-serial.c: USB Serial support registered for cp2101
usbcore: registered new interface driver cp2101
drivers/usb/serial/cp2101.c: Silicon Labs CP2101/CP2102 RS232 serial adaptor dri ver v0.07
i2c driver was not initialized yet.
drivers/usb/serial/usb-serial.c: USB Serial support registered for FTDI USB Seri al Device
usbcore: registered new interface driver ftdi_sio
drivers/usb/serial/ftdi_sio.c: v1.4.3:USB FTDI Serial Converters Driver
drivers/usb/serial/usb-serial.c: USB Serial support registered for IPWireless co nverter
usbcore: registered new interface driver ipwtty
drivers/usb/serial/ipw.c: IPWireless tty driver v0.3
drivers/usb/serial/usb-serial.c: USB Serial support registered for GSM modem (1- port)
usbcore: registered new interface driver option
drivers/usb/serial/option.c: USB Driver for GSM modems: v0.7.1
drivers/usb/serial/usb-serial.c: USB Serial support registered for pl2303
usbcore: registered new interface driver pl2303
drivers/usb/serial/pl2303.c: Prolific PL2303 USB to serial adaptor driver
drivers/usb/serial/usb-serial.c: USB Serial support registered for Sierra USB mo dem
usbcore: registered new interface driver sierra
drivers/usb/serial/sierra.c: USB Driver for Sierra Wireless USB modems: v.1.7.40
drivers/usb/serial/usb-serial.c: USB Serial support registered for GobiSerial
usbcore: registered new interface driver GobiSerial
GobiSerial: 2013-10-08/NTGR_2.12
usbcore: registered new interface driver sierra_net
mice: PS/2 mouse device common for all mice
i2c /dev entries driver
rtc-s35390a 0-0030: rtc core: registered rtc-s35390a as rtc0
Linux telephony interface: v1.00
device-mapper: ioctl: 4.11.0-ioctl (2006-10-12) initialised
dm_crypt using the OCF package.
sdhci: Secure Digital Host Controller Interface driver
sdhci: Copyright(c) Pierre Ossman
mvsdmmc: irq =28 start f1090000
mvsdmmc: irq_detect=110
usbcore: registered new interface driver usbhid
drivers/hid/usbhid/hid-core.c: v2.6:USB HID core driver
oprofile: using timer interrupt.
Netfilter messages via NETLINK v0.30.
IPv4 over IPv4 tunneling driver
TCP cubic registered
NET: Registered protocol family 1
NET: Registered protocol family 17
lec.c: Nov 4 2018 18:23:10 initialized
mpc.c: Nov 4 2018 18:23:08 initialized
802.1Q VLAN Support v1.8 Ben Greear
All bugs added by David S. Miller
rtc-s35390a 0-0030: setting the system clock to 2019-06-20 20:50:52 (1561063852)
Freeing init memory: 3464K
INIT: version 2.86 booting
Booting Check Point RD-6281-A User Space...
Linux (none) 2.6.22.18 #1 Sun Nov 4 18:24:46 IST 2018 armv5tejl arm
Mounting 'tmpfs, proc and devpts'... Done
Mounting platform
Checking U-boot parameters
System Initialized...
INIT: Entering runlevel: 3
Entering Full multiuser mode..... RTC Device: rtc-s35390a
Brining up loopback interface... Done
Setting Hostname... Done
Number of LAN ports is 8.
Active Partition is 1
jffs2_scan_dirent_node(): Node CRC failed on node at 0x061ab7e8: Read 0xffffffff , calculated 0x80d2e236
Active Configuration Flag is 1
Creating /data/tmp if not there.
https.crt https.key
USB Device Installation
expert mode Installation... Done
Maintenance mode detected
System Started...
Going into maintenance mode
Safe@ is not running
This is the first time you enter the expert mode.
Expert password must be changed.
Enter new expert password:
Enter new expert password (again):
[Expert@MAINTENANCE_MODE]#
[Expert@MAINTENANCE_MODE]# cat /proc/cpuinfo
Processor : ARM926EJ-S rev 1 (v5l)
BogoMIPS : 1192.75
Features : swp half thumb fastmult edsp
CPU implementer : 0x56
CPU architecture: 5TE
CPU variant : 0x2
CPU part : 0x131
CPU revision : 1
Cache type : write-back
Cache clean : cp15 c7 ops
Cache lockdown : format C
Cache format : Harvard
I size : 16384
I assoc : 4
I line length : 32
I sets : 128
D size : 16384
D assoc : 4
D line length : 32
D sets : 128
Hardware : Feroceon-KW
Revision : 0000
Serial : 0000000000000000
[Expert@MAINTENANCE_MODE]# cat /proc/meminfo
MemTotal: 514976 kB
MemFree: 483820 kB
Buffers: 0 kB
Cached: 12080 kB
SwapCached: 0 kB
Active: 5180 kB
Inactive: 7648 kB
SwapTotal: 0 kB
SwapFree: 0 kB
Dirty: 0 kB
Writeback: 0 kB
AnonPages: 748 kB
Mapped: 1952 kB
Slab: 15716 kB
SReclaimable: 1480 kB
SUnreclaim: 14236 kB
PageTables: 52 kB
NFS_Unstable: 0 kB
Bounce: 0 kB
CommitLimit: 257488 kB
Committed_AS: 1364 kB
VmallocTotal: 122880 kB
VmallocUsed: 736 kB
VmallocChunk: 122140 kB
[Expert@MAINTENANCE_MODE]# df -h
Filesystem Size Used Available Use% Mounted on
tmpfs 20.0M 0 20.0M 0% /tmp
tmpfs 40.0M 4.0k 40.0M 0% /fwtmp
/dev/mtdblock7 24.0M 812.0k 23.2M 3% /logs
/dev/mtdblock10 122.0M 83.0M 39.0M 68% /storage
/dev/mtdblock3 113.0M 95.1M 17.9M 84% /pfrm2.0
[Expert@MAINTENANCE_MODE]# nand #--->>> tab
nanddump nandwrite
=======================================================================
niby mogę coś na tym linuxie podziałać
niby narzędzie do wgrywania do pamięci nand jest (jak wyżej)
lecz tylko do wgrywania (wykasować przed wgrywaniem nie ma)
wiem, że powinienem zacząć od u-boota (w wersji umożliwiającej jakieś zmiany)
lecz nie wiem, czy mogę rozpocząć od wgrywania bez kasowania...
szczerze nie wiem jak się do tego zabrać
Towarzysze - pomożecie ?