The N3FUD and W3ND AREDN systems are being upgraded to firmware version 4.26.1.0. The BABEL routing protocol completely replaces the OSLR protocol, and any legacy tunnels will not work (Wireguard tunnels only). N3FUD-NCPA, which handles all of the tunnels for the N3FUD system, has been running the BABEL protocol since firmware version 3.25.10.

As you can imagine, it takes time to upgrade each node and device to the new firmware. The N3FUD system has three deployed routers to upgrade. The W3ND system has one router and two RF nodes deployed, and one router and three RF nodes in pre-deployment stages to be upgraded. Each device takes about 10 minutes to upgrade, as the backup routine is run first before upgrading to the new firmware. After that, each device is tested for connectivity and routing.

I ask that you be patient during the upgrade period.

Below is the official announcement of the 4.26.1.0 firmware release.

---

AREDN production release 4.26.1.0 is now available

This release is the first AREDN production release that omits the legacy OLSR protocol, and consequently, the first release with the major number 4. That may sound scary, but if all your local nodes are on 3.25.5.0 or greater, they already speak Babel. That means a migration to this production release should pretty much be a non-event for your network.

If you are upgrading to 4.26.1.0 from a Babel nightly build, you may see the following message:

BEWARE: Downgrading firmware WILL result in a broken or incomplete node configuration.

This can be safely ignored during this upgrade.

Major Features

• Babel only routing. OLSR is no longer available.
• OpenWRT 24.10.5 (https://openwrt.org/releases/24.10/notes-24.10.5)
• Support for some HaLow (802.11ah) 900 MHz radios
• Default NTP now aredn.pool.NTP.org
• Tunnel backup and restore to simplify node migration (https://docs.arednmesh.org/en/latest/arednGettingStarted/node_admin.html#tunnel-backup-restore)
• Support for user-defined files in backups and upgrades (https://docs.arednmesh.org/en/latest/arednGettingStarted/node_admin.html#backup-configuration)
• Support for new app launcher in sidebar (https://docs.arednmesh.org/en/latest/arednHow-toGuides/app-launcher.html)
• Save AREDN node as a webapp.
• Bump the major release number to 4.

New Devices Supported

• Nanostation AC Loco
• Cudy TR1200
• Cudy TR3000
• HaLowLink 1
• Heltec HT-HD01
• Heltec HT-HD7608
• Alfa Tube-AHM
• Alfa Tube-AHM PoE
• Bhyve virtual machines
• VirtualBox virtual machines

Notes

• There is still some instability with HaLow devices due to immature support for these radios in current Linux kernels. This manifests as occasional device restarts.
• HaLow devices may sometimes require power cycling after upgrading.

Fixes and Enhancements

 

• Add API to publish and find services. #2587
• Disable short preambles when we can. #2586
• Improve MAC to IP acquisition in LQM #2582
• Make the upgrade system use the common backup mechanism. #2581
• Use canonical ip for tracking if a simple IP is not available. #2580
• Upgrade default NTP servers #2577
• Add the official ‘aredn.pool.ntp.org’ #2576
• Launch icons for installed apps (experimental). #2575
• Add mechanism to let users include files in backups #2573
• Protect against badly formatted wireguard configurations #2567
• Fix password to escape all special characters in pattern match. #2564
• Don’t use a basename with LAN address when setting up DHCP. #2563
• Improve the way to add new supported features. #2557
• Improve when we display messages about poor tunnel performance. #2550
• Protect UI from bad tunnel server ip address. #2547
• Add some alert messaging around poorly performing tunnels #2546
• Restart babel when we restart the network. #2544
• Workaround for routing table = 0 meaning default routing table #2539
• Add default babel buffer size in as hint text #2529
• Allow Babel protocol buffer size to be overridden #2528
• Disable Babel monitor on supernodes. #2526
• Yank the DNS regexps out of the inner loop. #2517
• Fix ssh option capitalization. #2516
• Name wireguard config sections to wireguard watchdog tools can find them #2512
• Fix watchdog out-of-bound array access #2511
• Fix identification of Mikrotik v7 bootloader. #2508
• Make sure tunnel costs can never be zero. #2502
• Add /var/etc/babel-active.conf to support data. #2501
• LAN/WAN firewall rules not needed here anymore. #2500
• Improve consistency of neighbor status display #2496
• Delay firewall restart #2487
• Rework the tunnel config message field names to match UI. #2482
• Upgrade to OpenWRT 24.10.3 (Babel Only Builds) #2481
• Fix first use progress bars. #2476
• Missing sleep after shutting down babel during upgrade. #2473
• Fix allow range of tunnel costs #2472
• Add a 2-minute last seen margin #2469
• Lower min kernel memory requirement while uploading new firmware. #2466
• Improve bad radio hardware handling in UI #2461
• Don’t override vm.min_free_kbytes #2460
• Fix issues with hidden node detection #2456
• Add free memory to sysinfo.json #2449
• Increase timeouts when running service restarts #2442
• Improve HTMODE selection (with thanks to https://github.com/grozzie2) #2440
• Add glinet,gl-b1300 as a supernode #2436
• Add radio mode (unused currently) to getHTMode() #2435
• Hide supernode indicator if hardware cannot be a supernode #2434
• Use NOHT mode on ac2/ac3 to see if this stabilizes the radios. #2431
• Add missing gpsd packages. #2430
• Aggressively turn down wifi high-throughput support on error. #2423
• Improved log watch command #2422
• Give babel time to stop before restarting #2418
• Drop babel monitor LQ requirement to 50% #2416
• Fix longer reboot/upgrade timer progress bar #2412
• Make sure to run wpa_supplicant for open stations. #2410
• Improve selection of hostapd and wpa_supplicant #2407
• Add basic validation to lan and wan vlan settings #2405
• Improve babel monitoring to eliminate false positives #2402
• Require a perfect LQ to trigger the babel monitor restart #2400
• Add missing ucode dependency (was being implicitly included) #2399
• Monitor Babel and restart if necessary. #2396
• Tidy RTT display for DtDs #2393
• Use EFI/x86 upgrades when necessary. #2390
• Show the correct default VLANs for WAN and LAN in Network popup. #2386
• Add templates (Camera + Video) for Amcrest cameras #2380
• Allow setting of LAN VLAN for single port devices. #2379
• Improved location handling when the map cannot be reached. #2371
• Support HTTP preflight #2361
• Make icon spin when loading cloud nodes in appmode. #2340
• Provide a 307 redirect in the server for the root page. #2339
• Improve video proxy error handling. #2337
• Add cloud and map pages to webapp #2332
• Add cloud and map shortcuts to manifest #2327
• Fix math for generating M9 channel numbers. #2326
• Add webapp manifest support. #2323
• Improve UI around video proxy. #2321
• Add a few more service templates. #2318
• Improve URL parser. #2316
• Quiet bad message pings. #2313
• More tightening of proxies. #2310
• Add a reminder to install ffmpeg if used without it. #2308
• Common validation of the URLs passed to the various proxy urls. #2306
• Improve UI around local service proxies #2305
• Use resolv library again now that the file descriptor leak has been fixed. #2301
• Add Advanced Options to let the operator restart specific services. #2299
• Don’t preserve babel state across upgrades #2290
• Add the other missing backup message when auto selecting firmware #2287
• Add missing backup message when auto selecting firmware. #2285
• Ping correct download servers rather than usng hardwired #2282
• Don’t add the WAN default route if there isn’t one. #2278
• Add timeout to socat in case the connection hangs. #2277
• Fix unnecessary reboot requests with user blocks. #2270
• Change check for adhoc mode to avoid circular dependency #2267
• Restore user blocks for all mesh types. #2264
• Make the tunnel restore UI a little less janky. #2262
• UI to backup and restore just the tunnel configuration. #2260
• PTxP fixes for what memory saving broke. #2258
• Disable wpa_supplicant if we’re not using encryption even if we need hostapd #2255
• Preserve custom babel rules. #2252
• Allow the ID beacon to be disabled. #2251
• More emphatic message that downgrading from Babel-only build can ruin your life. #2244
• Improve tunnel migration. #2243
• Refine the portable theme so it only kicks for admin. #2239
• Arednlink pub/sub like mechanism #2237
• Make sure dtdlink always has an ipv6 link local address. #2234
• Use mac address as neighbor popup title if nothing else #2232
• Improve feature detection #2231
• Fix create of allow/deny maclist files for PtXP modes #2230
• Improve watchdog so it can shutdown without a reboot and you can update the firmware without disabling it #2227
• Add Babel’s RTT calculation to main display #2226
• Fix 3GHz setup being set to wrong band #2225
• Change the tunnel server network setup now we have no vtun #2223
• Remove lowmem fixups we no longer need. #2222
• Improve way we calculate routable information (for display only) #2221
• Handle Old UI wifi migration. #2219
• Remove old wifi keys #2218
• Temporary fixup for nodes with bad dtdlink addresses. #2213
• Automatically select the best firmware to upgrade to. #2209
• Remove multicast_querier property. #2208
• Remove bad port forwarding rule for wan only. #2206
• Fix memory leak in dnsmasq. #2204
• Fix broken reboot when restoring. #2199
• Allow LAN subnet to access WAN subnet so port forwarding will work. #2198
• Use the DEVICE variable when setting up wan/lan routes during network setup #2195
• Fix local access to wan subnet #2191
• More backup and support data improvements. #2189
• Reduce the files we keep in the backups. #2188
• Delete old gateway keys #2187
• Let the mesh stats open the mesh page #2183
• Display Babel round trip time #2182
• Fix use of old key names rather than new ones #2179
• Provide flexible reboot/upgrade timeouts for slower devices #2177
• Rewrite routing rules (babel edition) #2175
• Fix calculation of 3GHz channel numbers #2174
• Improve display of status information for babel-only supernodes. #2162
• Enable channels 180-184 in PtXP modes #2157
• Fix propagation of correct LAN host names. #2156
• Improve neighbor information #2154
• Tweak uptime description #2153
• Make the link ip clickable. #2150
• Provide link uptime as well as last seen time. #2149
• Let hosts without services take whole line to improve readability #2136
• Don’t forward 172.3x.x.x to supernodes for lookups #2132
• Allow . in cron script names #2131
• Don’t masquerade source address for broadcast traffic #2129
• Always show DNS (if defined) rather then only when WAN is enabled #2126
• Missing tunnel endpoint when setting up firewall #2123
• Handle radio type of ‘none’ #2118
• SNAT tunnels and xlinks so we don’t redistribute their actual endpoint IPs #2115
• Fix GPS detection #2111