I captured a Vodafone firmware update on the HG658c. I used telnet to access the cli on my OpenWrt r40296 router, an HG556a, and set tcpdump to capture all eth0 traffic.
tcpdump -nnvvXSs0 -w /mnt/usb/HG658c_update_bin
I used a cat5 cable to connect Lan1on the HG556a to the red WAN port on the HG658c. Within 20mins, the firmware on the HG658c had updated from:
Product type HG658c
Device IDF83DFF-Q8Y7NA9382600371
Hardware version HG658BZV VER.A
Software version V100R001C172B211
Batch number BC172P0.211.A2pv6F037g.d24b1
MAC Address 00:66:4B:32:CE:08
System up time 0 days 0 hours 1 minutes 43 seconds
to
Product type HG658c
Device ID F83DFF-Q8Y7NA9382600371
Hardware version HG658BZV VER.A
Software version V100R001C172B214
Batch number BC172P0.214.A2pv6F038m.d24b1
MAC Address 00:66:4B:32:CE:08
System up time 0 days 4 hours 34 minutes 48 seconds
The update was managed by the TR069 daemon on the HG658c. The firmware file appears to be encrypted. You can see the entire, and very interesting, transaction by downloading the capture file and using tcpdump, or your favourite tool, to view it. (15.5MB, tcp & udp packets only) at http://www.4shared.com/file/0nXSilrSba/ … pdump.html
New boot log: http://pastebin.com/1JaF3dPr
(Last edited by dmcdonnell on 29 Mar 2014, 18:24)