Because I can never leave well enough alone, I have bricked yet another device and had to spend a few hours figuring out how to recover it.  This time around was a Bufflo WZR-HP-AG300H.  It is what I am hoping will be a wireless router to replace my aging WRT54GL.

So the AG300H comes with 2 firmware choices.  A rebranded DD-WRT labeled “Professional” and a Buffalo some-such-junk labeled “Friendly”.  The device ships with the Pro firmware.  Because I had to “see” what my firmware choices were and how they worked and general tinkering type of things, I wanted to see if OpenWRT was any better.  It turns out that is a resounding NO.  So much NO that it is the cause of me bricking the device.

WARNING: At the time of writing, OpenWRT bricks the shit out of the AG300H.

Anyway, moving on to the recovery.

There was a lot of conflicting info out there about how to actually do the recovery and I think that stems from there being a lot of similarities between the AG300H and the G300NH.

To the good stuff..

To unbrick your AG300H:

  1. Unplug the router
  2. Boot up your favorite Linux LiveCD or VM. If using a VM, put the NIC in bridging mode.
  3. Install a tftp client such as tftp-ha from the Ubuntu repositories.
  4. Obtain a copy of the necessary firmware.  I briefly tried the alpha code and it felt very alpha.  I suggest the DD-WRT Professional Firmware 12.36 MB 2011-05-13
  5. Add 192.168.11.2 to your ethernet interface.

    ip addr add 192.168.11.2 dev eth0

  6. Set a static ARP entry of 02:AA:BB:CC:DD:20 for 192.168.11.1

    arp -s 192.168.11.1 02:AA:BB:CC:DD:20

  7. Start a tftp connection to 192.168.11.1

    tftp 192.168.11.1

  8. Set a few parameters to make this easier.  Timeout is 1 second and we want to retry 60 times.

    tftp> verbose
    trace
    binary
    timeout 1
    rexmt 60 

  9. The next two commands needs to be done in pretty quick order.

    put Professional15940.enc

  10. Plug in the router.

If all goes well, you will see a stream of “send DATA” and “received ACK” messages which will end with a tftp prompt.

Your router will have a flashing red diag light.  Give it at least 6 minutes to do it’s thing.  Once it is done, you will probably see the wifi lights come on.  Power cycle it again just for good measure and you should have a nicely recovered router.

I have to give credit to the Anonymous poster on this page for making a concise set of instructions