AP121-OpenWRT-Install

How to Install OpenWRT on AeroHive AP121 Wireless Access Point.

This is a short guide on how I installed and configured my 4 Aerohive AP121's with OpenWRT 22.03.3 in January 2023. This guide will work regardless if the AP's Serial Number is still bound to its original owners ExtremeCloud IQ account/network.

Note: This guide is not for beginners, if you are unsure about what you are doing please read the whole guide before attempting.

The usual Disclaimer: USE THIS GUIDE AT YOUR OWN RISK, I DO NOT ACCEPT ANY RESPONSIBILITY FOR BRICKED/BROKEN HARDWARE.

Hardware Requirements;

• Aerohive AP121 - Working
• Cisco Console Cable (RJ45 - DB9 Serial - NOTE: As most PC's don't have RS232 DB9 connectors anymore, I bought an RJ45 - USB [via FTDI232RL+ZT213LEEA chips] Console cable.) Console Cable
• 802.3af Gigabit POE adapter (for powering the AP) TP-Link Example OR
• Centre Positive Barrel Jack 12v 2A DC Power Supply (The AP121 is Center Positive! I could not find this information anywhere, all of the "official" DC 12v Power Supplies for Aerohive had the Jack wiring label scratched off...) (The AP121 is rated for 1.1A - according to whats printed on the case, but I used 1A & 2A supply with no issues) Example
• RJ45 Network Cable
• RJ45 Network Port (Cannot be done over Wi-Fi, ie netbooks)

Software Requirements;

• PuTTY Serial Console (This is included in the standard version of PuTTY SSH Console) Link
• TFTPD64 TFTP Server Link
• Static IP (Details Below)
• OpenWRT Image for AP121 - https://downloads.openwrt.org/releases/22.03.3/targets/ath79/nand/openwrt-22.03.3-ath79-nand-aerohive_hiveap-121-squashfs-sysupgrade.bin

NOTE: incase the OpenWRT link dies or the package is no longer available, I have included the package I have used in this repository. It has not been changed in any way, but use at your own risk. This addition is mainly a backup for me.

Initial Setup;

1: Download OpenWRT Image for Aerohive AP121.

2: Install PuTTY & TFTPD64

3: Disconnect all networks & network cables from the Computer, go to network settings and set the main ethernet network adapters' IP Address to Static IP 192.168.1.10, with a subnet of 255.255.255.0.

4: Run TFTPD64. It is Vital that you run TFTPD64 in administrator mode, to do this Right Click on the TFTPD64 icon and select Run As Administrator, accepting any security prompts that will pop up.

NOTE: If you do not run TFTPD64 in administrator mode, the TFTP server will be detected by the Aerohive successfully, but it WILL NOT transfer the file. Instead it will either throw a bad checksum error, or it will sit retrying the connection until it eventually times out with a timeout error. I can only assume this is because TFTPD64 does not have permission to read the .bin file in Documents without administrator privileges.

5: In TFTPD64 > Settings > Global, ensure "Start Services" shows only "TFTP Server", "Syslog Server", & "DHCP Server". If "TFTP Client" is enabled, disable it.

6: Under Settings > TFTP, ensure TFTP security is set to "None", and "Option Negotiation", "Show Progress Bar" & "Translate Unix File Names" are enabled under "Advanced Settings".

7: In TFTPD64, set the IP Address in "Server Interfaces" to be "192.168.1.10". Your Network adapter name (For Example, Realtek Gaming 2.5GbE Family Controller) will be listed next to the IP Address.

8: Create a folder in documents called OpenWRT, place the OpenWRT Firmware image inside this folder. Then, in TFTPD64 set the "Current Directory" to the OpenWRT Folder in Documents. You can also set the "Base Directory" to the same Documents folder. This option can be found in Settings > TFTP > Base Directory.

9: Plug in your RJ45 - USB console cable to your PC's USB Port and identify the COM Port its using (for example mine was using COM6 - you can use device manager for this).

10: Plug one end of the RJ45 Network cable into the ETH0 on the AP121, and the other into your PC's Network Port.

11: Plug the RJ45 console cable into the CONSOLE port on the AP121.

12: Launch PuTTY and select Serial, input your COM port (ie COM6) and ensure the Baud rate is set to 9600. Press start and Click the blank window to ensure its highlighted.

13: Plug the DC Jack into the 12v plug on the AP121, but do not turn on yet.

Software Setup;

1: When you are ready, Supply Power to the AP121 and watch the PuTTY serial console window for activity. Soon it should display some text and say "Press any key to stop boot". Press any key NOW.

2: You will be prompted for the console password, it is either

administrator 

OR

AhNf?d@ta06 (this was the one my AP worked with). 

You should now be logged in.

3: Run command:

version

NOTE: The following bootloaders are listed as compatible with OpenWRT (Via their website), these are:

• v1.0.0.43 (Supplied with HiveOS 6.2r1)

• v1.0.0.4f (Supplied with HiveOS 6.5r4)

• v1.0.0.50 (Supplied with HiveOS 6.5r3)

• v1.0.0.52 (Supplied with HiveOS 6.5r8b) - This was the firmare my router used.

• IF THE FIRMARE IS LISTED LOWER THAN V1.0.0.43: STOP NOW, your bootloader probably isn't compatible.

• (Issue #2) - Firmware version v1.0.0.39 has been reported to work. I am unable to test this, but see "Additional Firmware Troubleshooting" below to view steps for flashing AeroHive's with this firmware version.

NOTE 2: If the Command "Version" Fails with a "version command not found" (or something to that effect). This happened to me when I copy/pasted the command "version" from the Github page. When i manually typed the command into the terminal the command ran just fine and printed the bootloader version.

4: Transfer the OpenWRT image to the AP's memory. Be Patient, it might take a while. (Change to your file name in the command - the "openwrt-22.03.3....." part)

tftpboot 0x81000000 openwrt-22.03.3-ath79-nand-aerohive_hiveap-121-squashfs-factory.bin

-- NOTE: The next instructions erase/write NAND, this is permenant and if done wrong may brick the router's firmware or cause OpenWRT to not boot properly. --

5: Erase the NAND Flash in the Access Point to make way for OpenWRT using the command;

nand erase 0x800000 0x7400000

Command Breakdown:

• 0x800000 is the flash memory address in the Access Point.
• 0x7400000 is the filesize. This is important later.

6: Write the OpenWRT Image to NAND Flash in the AP using the command;

nand write 0x81000000 0x800000 0x7400000

Command Breakdown:

• 0x8100000 is the memory address that the OpenWRT image is stored in.
• 0x800000 is the flash memory address for the Access Point.
• 0x7400000 is the filesize.

NOTE: Some guides list the filesize as 0x800000 as well as the address, this is wrong and will result in a semi-corrupted OpenWRT install (will show a kernel panic during boot) as only the first 0x800000 was written too. If you have done this, rerun steps 5: & 6: with 0x7400000.

7: If you have done 5: and 6: correctly and recieved "OK" after each, run the command;

reset

This will restart the router.

NOTE: During first reboot, if the AP was booting via its secondary backup flash chip located at 0xd00000 then the boot may fail with a Bad Magic number error. Do not panic, allow the boot process to fail 3 times, after which the AP will then default to booting from 0x800000 and should boot OpenWRT Normally.

8: During Boot watch for the orange light to turn Flashing white. This means the boot process is occuring, monitor the console for errors. If the LED turns solid white then the AP has successfully booted - this may take 90s or more.

9: You can now navigate to 192.168.1.1 in the browser and view the LUCi interface to configure the AP.

OpenWRT (LUCi) Configuration:

1: OpenWRT web interface default password is:

passwd

CHANGE IT! (It will be under System > Administration)

2: Navigate to;

Network > Wireless

• The Atheros AR9340 802.11bgn is the 2.4GHz Wireless Adapter.
• The Generic MAC80211 802.11an is the 5GHz Wireless Adapter.

3: Press Edit on either SSID, Change the operating frequency width to 40MHz. This will get you more speed (almost 2x), although if your having issues with congestion change this to 20MHz.

4: Change the ESSID to a Name of your choice, this is your network ID that all devices will see. I used;

Aerohive Mesh

5: Navigate to Wireless Security, under "Encryption" you will see lots of different protocols. WPA2-PSK is currently the Home Standard (This is what my networks use).

NOTE: WPA3-SAE is a newer encryption standard than WPA2-PSK. This means its much more secure, but at the cost of being completely incompatible with many (at least in my case) devices. IOT devices (such as Amazon Blink/Alexa, TP-Link and Tuya Smart plugs etc), as well as older iPads (running current IOS Software) could not connect to WPA3 secured Aerohives. Because of this I reccomend selecting WPA2-PSK for both 2.4 & 5GHz networks. If you absolutely want WPA3 on your main SSID, create a seperate SSID for IOT/Non Compatible devices on 2.4GHz, and use WPA2 encryption. This will ensure that the IOT/older devices will work, and save you from having connection failures when you try to bind them.

6: Repeat 3: 4: & 5: for the other SSID (i have my 2.4 & 5GHz networks seperate, using the "Legacy" name to denote the 2.4GHz network - ie Aerohive Legacy.)

7: Enable both SSID's using the enable button.

8: On your Mobile, ensure the SSID you just setup shows up and can be connected to.

12: Navigate to;

System > System

10: Under General Settings, change the hostname to whatever you like. This will be the name the AP presents to the network in order for it to be easier identified next to its IP address. As I have 4 Aerohives i names mine Aerohive1 - 4.

11: Save and Apply

12: Navigate to;

Network > Interfaces

13: In interfaces, 1 LAN should be listed as "BR-LAN". Press Edit.

14: Change the Protocol to;

DHCP-Client

This will disable the DHCP server on the access point and force it to get an IP address from your existing router

15: Navigate to firewall settings and under the Create / Assign firewall-zone dropdown, select;

unspecified

This will disable the AP's local firewall - fine as your main Router handles it.

16: Press Save and Apply. This will bring up a menu warning about connectivity change. If you press;

Apply with revert after connectivity loss

You will have 90s to unplug the router network cable from your PC, replug into your existing network, and get LUCi up on a device to accept the changes.

The other button is;

Apply and keep settings

This will just apply the changes and not check the new link works. I use this as i restart the router before i plug into my existing network.

17: Unplug the AP, then plug into your existing network. I usually power off the AP and restart the AP during this.

18: Use Advanced IP Scanner (Windows) or LanScan (MacOS) to identify the AP's new IP address. it should show up as your set Hostname, with the adapter listed as "Extreme Networks, Inc"

19: Navigate back to the LUCi Interface and check settings.

20: Connect WiFi device to the AP SSID, go to Fast.com and run.

• My Network speed from 1m away from the router using 5GHz is 200Mbps (with a 1Gbps WAN) on my iPhone 13. (If you get 100Mbps, check that your SSID operating frequency width is set to 40MHz, not 20MHz).
• My Network speed from 1m away from the router using 2.4GHz is 75Mbps (with a 1Gbps WAN) on my iPhone 13. (If you get 30Mbps, check that your SSID operating frequency width is set to 40MHz, not 20MHz).

You have now successfully setup your Aerohive AP121 with OpenWRT!

Additional Firmware Troubleshooting

Flashing AeroHive's with Firmware Version 1.0.0.39

(This was submitted in Issue #2, I am unable to test this as I don't own an AeroHive with this firmware version so use at your own risk. Many thanks (and full credit) to diggerbonk for his flashing steps below).

Just wanted to let you know I was able to install OpenWRT on an AP121 with the 1.0.0.39 bootloader

ar7240> version

Aerohive Boot Loader v1.0.0.39, Build time Mon Dec 23 11:54:09 2013

ar7240>

Using the following instructions:

1. Connect to the AP's serial port (9600 8N1)
2. Press space to interrupt the boot process
3. Enter the password (either 'administrator' or 'AhNf?d@ta06')
4. Execute the following commands:

dhcp; 
setenv serverip 192.168.0.12; 
tftpboot 0x81000000 openwrt-23.05.0-ath79-nand-aerohive_hiveap-121-squashfs-factory.bin; 
// Make note of the size returned by above commmend (eg 0x9a0000)
nand erase 0x800000 <size>; 
nand write 0x81000000 0x800000 <size>; 
reset;

5. Press return to activate the console, you should see:

 _______                     ________        __
|       |.-----.-----.-----.|  |  |  |.----.|  |_
|   -   ||  _  |  -__|     ||  |  |  ||   _||   _|
|_______||   __|_____|__|__||________||__|  |____|
         |__| W I R E L E S S   F R E E D O M
-----------------------------------------------------

6. Edit /etc/config/network so that eth0 uses dhcp:

config interface 'loopback' option ifname 'lo' option proto 'static' option ipaddr '127.0.0.1' option netmask '255.0.0.0' config globals 'globals' option ula_prefix 'fd5c:8cdc:2566::/48' config interface 'lan' option type 'bridge' option ifname 'eth0' option proto 'dhcp'
7) Reboot

You should now be able to access the web based configuration dashboard where you can set up the wifi radios, set a root password, etc.

Troubleshooting

1: Aerohive gets stuck printing T after issuing TFTP command in Software Step 4.

This is likely caused by TFTPD64 NOT being run in Administrator Mode. To correct this. Close TFTPD64, and rerun Initial Setup Step 4 again.

2: Aerohive prints Bad Checksum error after issuing TFTP command in Software Step 4.

Ensure ALL network connections, except the static ethernet connection to the Aerohive are disabled, this included Wi-Fi too. During testing, leaving Wi-Fi enabled whilst issuing the TFTP command would result in a Bad Checksum being printed. If you are still getting this error, try Troubleshooting Step 1.

3: If the Aerohive is failing to boot with the Bad Magic Number error.

This is normal for a first boot, as outlined in Software Setup Step 7.

4: Aerohive prints a Kernel Panic Error during boot.

This most likely means the Firmware is corrupted and will need reflashing. Ensure during Nand Write you enter the correct file size. Refer to Software Setup Step 6 for more information.

5: Trying to replace Wpad-Wolfssl with Wpad results in opkg JSON errors in LUCI, as well as "Package cannot be found" errors over SSH.

This was an issue I ran into while trying to replace Wpad-Wolfssl with Wpad. After removing Wpad-Wolfssl to install Wpad, opkg would no longer update either through LUCI or SSH and trying to install Wpad would flag the same error. This resulted in me having to Reflash the router with the original OpenWRT .bin image. I would reccomend people to not try to replace Wpad-wolfssl because of this. I am currently unsure if this applies for other packages or installing additional packages?

References, Credits and Thanks

A big thank you to the OpenWRT creators and supporters/contributers.

diggerbonk - Issue #2 report and guide for firmware 1.0.0.39

This guide was made referencing these guides.

OpenWRT AP121 Info Page - Good info on NAND layout here

OpenWRT Forum AP121 Won't Boot - Issue with memory Erase

Aerohive AP121 User Guide - for information on the AP [I have included a backup of this in the files section incase it is ever removed from the aerohive website]