A couple of days ago, the router was updated and everything broke. The speed has become 1-2Mbps, before that with lockband it was 60-70mbps. I do not understand what is the point of such sabotage, they sell their routers, claiming that they have become even faster, but they prohibit choosing a band, as a result, all users use one overloaded band and hate pldt because of the low speed.
So I decided to see how the router works a bit. I was able to get root access to 192.168.8.1 via ssh when connected via usb.
Ok, I got root access to openwrt, but it seems I cannot change nothing. As far as I understand, two different configs are used, and from the debug we cannot access the main one. If you connect to 192.168.8.1 via usb, you will see that the interface is different and the service firmware = P28M26HAPLDT_CP_R281_V002.1
The main firmware if you connect to the router via WiFi = P28PLDT_AP_R281_V004.1
As you can see, these are different firmware and having access to the service firmware, you cannot change the main one.
How it is physically organized, I do not know, perhaps it works through some kind of virtualization, two firmwares simultaneously work in isolated containers.
The router is arranged like this, the WiFi router with OpenWRT and external LTE modem on a Marvell PXA1826 chip is connected via PCI-e
The service firmware only allows is to access the LTE modem device and send AT commands to it.
After last firmware update, some AT commands are still being works, for example info command AT+ZNLOCKBAND=?
But commands for get or set any options don't work. This may be due to changes in the router firmware, or due to a change in the lte-modem firmware. In the second case, häçking will most likely be impossible.
In the first option, one of the directions for further häçking is get /bin/atcmdsrv form old firmware, replace it and use to send AT commands.
The second option is to disassemble the router, get the lte modem out of it and connect it directly via the pci-e connector to the computer and try to somehow get access to this device or send AT commands to it directly.
Perhaps something can come of it.
To get root access use this command in console or use any ssh client such as Putty:
ssh root@192.168.8.1
with password:
notion