Hi Bruce, Please have a look at this link, the second and third post from meister_sd. This is the guy who originally
developed the process. There are also links to the firmware that you need to upload: http://www.dslreports.com/forum/remark,14707195~days=9999~start=980 Basically, the whole process is based on provisioning the unit. The Vonage devices are programed from factory to provision themselves from Vonage when you connect them to the internet. Even if the router has not been activated with their servers, it will still download a generic configuration file. The provisioning settings will also load automatically into the Voice part of the device when you factory reset it. Basically, they contain the path to the provisioning file, an encryption key unique to every device, an admin password and the Vonage DNS servers - the Voice part of the device will try to use the Vonage DNS whenever it needs to resolve an address, instead of the ones programmed in the router part, or obtained from your ISP. The router's DNS servers are used only as a last resort, in case none of the Vonage servers are reachable. Also, each time the device downloads a config file from Vonage, the encryption key will change to a key that is valid for the next download. Also, the path to the provisioning file changes every time. In my opinion it's a pretty neat system. The unlocking process is based on a bug that existed in early versions of the Voice part of the firmware, where if the device would accept a non-encrypted provisioning file even though there is an encryption key programmed into the device. Therefore, you must downgrade the firmware to the version found in the URL above. However, to upload a firmware into the router, you must use either the admin or the user account for the Voice module (you will be asked about it in the middle of the upgrade). Luckily, Vonage uses only a couple passwords for the user account, either 8995523 or 7756112. But the router must have been connected for at least 10 minutes to the interner since the last factory reset for that password to be loaded. So, first step, make sure your router has connectivity to internet for 10-15 minutes. Then for the rest of the process, *the router must NOT have access to internet*. Period. Otherwise it will reload the newest firmware and settings from Vonage. Then load the firmware from the above link, using the account "user" and one of the passwords above when prompted in the middle of the upgrade. Once the downgrade is completed, you should see the new firmware version in the upper right corner of the router setup page. Now here comes the hard part: you need an ethernet hub (not switch), and a computer running the Ethereal tool for capturing packets, a DNS server (most people use Simple DNS Pro which is a shareware, I prefer Tree Walk) and a TFTP server (Solar Winds is pretty good and free). Set up the WAN interface of the router with a static IP (a private address). Also set up the computer with an IP in the same range. Finally, set up the router to use the computer's IP as DNS server for the router. Then. connect the WAN port of the router and the computer's ethernet interface to the hub, start Ethereal and power cycle the router. Wait patiently for the packets to come. Initially, you will see some requests looking for different time servers. Then it will attempt to resolve some Vonage addresses, such as ls.tftp.vonage.net or ls.tftp.vonage.com and download a file from there. You must add to your DNS all the addresses that you see the router trying to resolve, and make them point to the PC where you have the TFTP server. After a while (between 5-15 minutes), you will see in the activity window of the TFTP server, an attempt to download a file from a subfolder, like abcdefgh\spaXXXXXXXX.xml where XXXXXXXX is your router's MAC address for the WAN interface. You must create that folder, and inside the folder create the file, then paste the XML content from the link above into that file. Then, reboot the router and wait until it grabs the file again. This time, since the file is there already, it will grab it and clear the admin password. Now you should be able to access the Voice Part of the router at http://192.168.15.1/Voice_adminPage.htm. Go to the Provisioning tab and, disable the provisioning and clear all the GPP_* fields. Save the settings, wait for reboot, then upgrade the firmware back to the newest version. Once the provisioning settings are cleared, it's safe to connect the router back to the internet. That's pretty much it. Please note that if you factory reset the device, it will reload the admin password and the provisioning settings. There's no easy way to prevent that feature. You would need to either desolder the flash memory and clear the part where it stores the factory defaults, or load a custom firmware that can clear that part. Flashing the device from the web interface does not modify that area. Personally, I add a couple more steps to the unlocking process, in order to obtain the original encryption key, which can be used to find the admin password that Vonage would load on the device if it was reset back to the factory settings. From my experience, only the first Vonage provisioning file changes the admin password for the Voice part of the device, after that is stays the same, so if you obtain the first provisioning file, you will have the password in case you factory reset the router. Liviu On 4/10/07, Bruce Nik <[EMAIL PROTECTED]> wrote:
Hey Liviu, Can you please expand on how you did it? I am following the bargainshare thread now and I am stuck at getting the .xml file....way to go.......pretty time consuming :( Thanks ________________________________ From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Re: [on-asterisk] wrt54gp2 and openwrt Date: Mon, 9 Apr 2007 23:04:17 -0400 Ah, I forgot, openwrt doesn't work on these. Completely different architecture than WRT54G. Liviu ----- Original Message ----- From: Bruce Nik To: [email protected] Sent: Monday, April 09, 2007 10:03 PM Subject: [on-asterisk] wrt54gp2 and openwrt Hello everyone, Has anyone tried to unlock of the vonage wrt54gp2 devices? Or tried openwrt on it? is it even possible? bargainshare way of expalaining things just doesn't work and is too much time consuming for unlocking the device. Does anyone know any other method? maybe a jumper reset? Thanks ________________________________ Explore the seven wonders of the world Learn more! ________________________________ Discover the new Windows Vista Learn more!
