this is a how to for wrt54g and wrt54gs using the: hairydairymaid_debrickv22_winxp.zip (jtag) (WINDOWS ONLY!!!) first make the simpel hw ----------------------------------------------------------------------------- hardware: look at: HairyDairyMaid_WRT54G_v22.pdf (forget all about software in that guide) the cabel from pc to wrt54g CAN NOT BE MORE THE 20CM (6") long. <- it cant be any longer !!!! when you coneckt the jtag its to the 12pins on the wrt54g ,NOT the 10pins and DO NOT use the 12pin as GND. use any: 2,4,6,8,10 on the print bord for GND (ground) if you dident under stand the .pdf her is the same: printer | | WRT54G/WRT54GS 2 <- > 100ohm <-> 3 3 <- > 100ohm <-> 9 4 <- > 100ohm <-> 7 13 <- > 100ohm <-> 5 20 <------------------> gnd(one off 2,4,6,8,10, !!!! DO not use 12 !!!!) 25 <- (to 20 on the printport,GND) NB: the pic in the pdf (the blury one) do NOT look at it for making the conector !! ----------------------------------------------------------------------------- software: download all files in: http://www.ranvik.net/prosjekter-privat/jtag_for_wrt54g_og_wrt54gs/xp%20files%20(working)/ download the orginal fimreware from the ftp.linksys.com/pub/network/wrt54XXXXXXXXXXXX.zip is the filename. look at chip (on the wrt54g bord) and find the same nr on the flash file. its a difrent betwen .us and .eu , files end with ETSI=.eu WRT54GS_3.37.2_ETSI_code.bin = wrt54gs v1.1 (eu) test and it works. download the flash boot files from: http://lonewolf.hacker-nin.com/wrt/cfe/ (the file name must be CFE.BIN on disk) CFE.BIN on the web page is for wrt54gs v1.1 (eu) http://www.ranvik.net/prosjekter-privat/jtag_for_wrt54g_og_wrt54gs/cfe.bin_some_files/ some more cfe files. http://www.linksysinfo.org/modules.php?name=Content&pa=showpage&pid=6 <- ther you can se all box if you are not sure wath box you have, or just lost the cover off it. put all in same dir: like you se on the web page. eks: c:\wrt54gs dobbel klikk on SC.exe (1 time, no need to do it more, TURN OFF ALL VIRUS PROGRAMS!!!!) klikk: start -> run -> type CMD ->hit enter :) cd c:\wrt54gs her is the flash off the boot loader you have to be fast her :) press enter after 0,5sek after poweron the wrt54g and not after 2sek power on. wrtjtag.exe -erase:nvram (if you get error se below) (takes about 2-3min) you have to do the power on time betwen every time you use the wrtjtag.exe wrtjtag.exe -erase:kernel wrtjtag.exe -flash:cfe takes about 10-15min) ----------------------------------------------------------------------------- ERROR look her: if you get error msg : CHIP ID: 00000000000001100000000001111111 (0006007F) = link (to long kabel max 20cm long kabel!!) CHIP ID: 11111111111111111111111111111111 (FFFFFFFF) = no power no link CHIP ID: 00010100011100010010000101111111 (1471217F) = you done it CHIP ID: 00000000000000000000000000000000 (00000000) = you have mix up the cabels :) new error i got: CHIP ID: 00010100011100010010000101111111 (1471217F) *** Found a Broadcom BCM4712 Rev 1 chip *** Enabling Memory Writes... and it well not go past this point you need to resolid pin nr : 2 if you have WRT54g V3.1 you need to use the : HairyDairyMaid_WRT54G_Debrick_Utility_v41.zip ----------------------------------------------------------------------------- then restart the box. coneckt to the lan port, NOT WAN , NOT wlan set statick ip 192.168.1.2 mask 255.255.255.0 and test: start -> run ->cmd ->ping -t 192.168.1.1 if you get replay you one it (it takes 1-2min for it to boot.) if you dont you have done some wrong like wrong boot loader CFE.BIN <- that file the hard part is over :) then do : you have to be fast her :) press enter after 0,5sek after poweron the wrt54g and not after 2sek power on. start -> run -> cmd -> tftp -i 192.168.1.1 put c:\WRT54GS_3.37.2_ETSI_code.bin takes about 20-30sek (you well not get any info on the screen , but the lan well flash like hell ) and just wait like 2-3min (DO NOT restart the box just wait the min and the http://192.168.1.1 well work (default password is admin (no user name) my nick on irc is Erik_- if you have problems or email at : jtag at ranvik dot net