MAC of br-lan and wan interface is not matching the real hardware address (Archer C5 v2)

From your post history, I see that you have good knowledge about reprogramming using EPROM and soldering, so I assume that you are after the instructions about editing your actual mtd4 partition, wright?

• The first step is to dump your mtd4 partition on /tmp:
  dd if=/dev/mtd4 of=/tmp/tplink.bin
• Download it to your computer (using FileZilla for instance)
• Use your favourite Hex editor (I'm using HxD under Windows) to replace MAC from address in offset 0xf100 with yours, using only the hexadecimals values from the MAC printed on your label:

• Upload that altered bin file to your router /tmp
• You need to make the mtd4 partition writable because it's not by default. This is achieved by building a patched firmware to allow writes to it - see this page: "Above method could work, but (...)"
  i. This is probably the line that you need to remove to get access: https://github.com/lede-project/source/blob/master/target/linux/ramips/dts/ArcherC50.dts#L122

I'm just pointing you out to the instructions as I haven't done that...

@DjiPi

Thank you for help, i'am will read posts and instala aplicativos.

Are you familiar with compiling LEDE ? Because it will involve modifying the source code and compiling it, unless there are already available tools for that.

@DjiPi No,

I never compiled one vs of the LEDE, so I will have a lot to study and learn to walk to get me, for this reason all information and help on the subject and welcome.

I have been researching on all the forums and websites how to do it, because the subject matter was very interesting, and I must first try to use the LEDE and finished brick my Archer C50, but how did I get it back from the dead, although not 100%, error Which I will not repeat with the new Archer C7 I bought.

Thank you and I count on the help of friends.

Guedes

Ok I'll try to help you on that on my spare time.

Since it's related to your bricked Archer C50, I'll post that into your thread.

Please keep a watch on this, It will be really interesting to modify accordingly using a script, and be able to make an image for TP-LINKs that reads not just the macaddress to make SSID look like factory one "TP-LINK_XXXXXX" also with your PIN (also printed on bottom label) use that as a default password too.

This was a post from me some time ago: https://forum.openwrt.org/viewtopic.php?id=69509

I reposted here: How to read TP-Link factory wireless pin from flash - art

Meanwhile your wan mac is fixed, you can use mac address cloning for the wan interface and specify your own. This would allow you to have a working interconnected network maybe. As for the lan mac this would still be a problem since I don't think that you can specify a custom one.

Yes, I thought already about. But don't worry. It is an absolute non-critical mission in a youth club. Currently, I am running one device successfully in the network. Sure, with less coverage in the distance, but nobody cares. They are happy that there is a wireless internet access at all

@braian87b: Is there something I can share with you? Or something to test? I have still two TP-Link C5 on the bench.

Yes! I have several Routers around to test, but not your model:
Please try to run (replace 80091905 with your Pin)

cat /dev/mtd0 | grep 80091905
cat /dev/mtd1 | grep 80091905
cat /dev/mtd2 | grep 80091905
cat /dev/mtd3 | grep 80091905
cat /dev/mtd4 | grep 80091905
cat /dev/mtd5 | grep 80091905
cat /dev/mtd6 | grep 80091905

try /dev/mtd0ro instead or /dev/mtdblock0 if /dev/mtd0 if you dont found anything

info here: How to read TP-Link factory wireless pin from flash - art

as DjiPi already determined correctly from the dump, my WDS Pin is is located in mtd4 (tplink -partition, as the Archer C5 v2 does not have an art partition) on several positions. The first hit is on Hex address 0x208

root@NODE04:~# hexdump -C -s 0x208 /dev/mtd4  | head -n 1

returns this output:

00000208  32 37 30 35 30 33 38 35  ff ff ff ff ff ff ff ff  |27050385........|

In Hex, 32 37 30 35 30 33 38 35 is exactly the WDS Pin printed on the device label.
I have confirmed this on two other devices.

By the way, in the meantime I have found my mistake why I was unable to find my device mac address.
I have searched in HxD only in the text strings, but I had to search in the hex values instead. With this in mind, the mac was easy to find. The first hit on 0x8 was only the LAN-MAC, but there is another position which is containing the other ones.

The further positions are:
0x50138 --> A4 2B B0 EA 11 FA
0x50140 --> A4 2B B0 EA 11 FB
0x50146 --> A4 2B B0 EA 11 FC

Do you know which one is associated with what? Finally maybe you'll need to install stock tp-link firmware to know what is what...

So A4:2B:B0:EA:11:FA is not your WAN MAC? The WAN MAC is printed on the label.

I have flashed the stock image
archer_c5v2_en-up-ver3-17-3-P1[20150130-rel33049].bin

It shows me on the status page following MACs

LAN
MAC Address: A4-2B-B0-EA-11-FA

Wireless 2.4GHz
MAC Address: A4-2B-B0-EA-11-F9

Wireless 5GHz
MAC Address: A4-2B-B0-EA-11-F8

WAN
MAC Address: A4-2B-B0-EA-11-FB

But I was not able to login into the stock firmware via SSH, it seems in the stock firmware the SSH feature is limited to a TP-Link App called 'Tether'

To bad that there was no more progress in the meantime. I have tried to open a bug by myselve, but it seems to impossible for not insiders. For my current project, I am going to look for another hardware base. Maybe also with full support of the wireless chipsets in the 5ghz band. I was fully aware that the Archer C5 was not fully supported, but it was the nearest available device.

Nevertheless, I want to say thank you to everyone helped me so far.

hello Martin
would you plz send me full dump from your router "c5 v2 "
i want full dump