I'm using Windows XP Professional with an 3.19LSc firm-wared PAP2

I've assiduously worked thru the background context set out in Post #120, and followed the specific detail of Post #326. Very helpful stuff, and people's efforts are much appreciated

But I'm not there yet. On powering-up the PAP2, the TFTP server shows the SPA<xxxxxxxxx>.xml being grabbed fine. But, on the PAP2 requesting the PAP2-bin-03-09-LSc.bin file, the TFTP server errors with "file does not exist"

I know the .bin file is there and the necessary naming convention is right - if I cut/paste the host/file syntax from the TFTP error log (ie /+xxxxxxxx/PAP2-bin-03-09-LSc.bin), and feed it to my browser, the .bin file pops up fine. I'm at a loss to understand why a file which is there is being reported as non-existent by TFTP

TFTP is set to receive/transmit files. Firewall is fully off. What else could be holding things back?

Ideas/tips would be welcome

Simon P

For starters, the filename should be /+xxxxxxxx/PAP2-bin-03-01-09-LSc.bin. Next, you state that your TFTP SERVER reports a "file does not exist" error message, but the .bin file is typically requested via HTTP, not TFTP, so the /+xxxxxxxx/ directory needs to exist under your HTTP ROOT, not TFTP ROOT. An IIS Virtual Web Directory is sufficient for setting up this path (as described in POST #326). You even stated that you were able to "feed it to [your] browser," so the file is presumably being hosted under your HTTP ROOT.

From a TFTP perspective things sound correct. Questions still remain about your HTTP setup. The disabled firewall is very important, so continue to keep it disabled. If you have a 2nd PC available to you, an additional test you can perform is to hook that 2nd PC up to the 1st PC via the crossover cable and attempt to grab the firmware file on the 2nd PC From the 1st PC. If that fails, you'll have additional trouble shooting to perform on your end to figure out why the 2nd PC can't grab the firmware file. If it succeeds in grabbing the file, the PAP2 should be able to attempt its automatic firmware grab as well.

Regarding the /+xxxxxxxx/ directory you created (be it a virtul directory or physical directory), ensure that the SPELLING OF THAT DIRECTORY 100% matches the path name listed in your log file(s). I know you said you copy/pasted the info, but re-verify that. In the event you manually typed the name of the directory when creating it, the human eye sometimes has a difficulty distinguishing between the lowercase letter 'l' (L), the number '1' (one), the lowercase letter 'i' (I), especially w/ the font displayed by SolarWinds TFTP Server.

If I think of anything else before you reply, I'll post a follow-up. Otherwise, will await your response.

Diggler

Has anyone successfull in configuring Voicetick with PAP2 V2 ??

Please help.

PS: I posted this Q in the PAP2 V2 thread, but have not gotten any reply. Maybe someone here may know the answer. Thanks for no flames.

Hey guys, first of all thanks for the hard work, and thanks for this thread!

I've got a Vonage updated PAP2 3.1.9(LSc).. I've read it can't be done but I still wanted to snoop around it, I enjoy this kind of stuff. Anyhow I'm tired of playing and I'd like to unlock it now. Since my only option it to call Vonage and request a rollback of firmware I'm wondering what I should say? What does one say to Vonage to have their firmware rolled back? If possible once it's rolled back what are the initial steps I need to take? I ask because I don't want to miss anything like my encrytped *.xml file from Vonage etc etc.. tia.

I think others have posted some of their suggestions in this thread. If you search through older posts in this thread (in say the last 6 months), you should find what others have done.

Once you've been downgraded to firmware 3.1.6 or 3.1.3, all you need to do is follow the steps listed in POST #4. You won't need your encrypted XML file for that process.

Diggler

Diggler

The God Lord has shined upon me! The PAP2 has grabbed the .bin file (but note via TFTP rather than HTTP, as I'd expected) and its now taken your unencrypted SPA<XML> file (with HTTP rather than TFTP). As you guidance said, the LED went red - and rather conceringly remains so after muliple power recycles of the unit. Is this normal behaviour?

On giving the PAP2 '****' and 110#, the unit comes back with a "Sipura Configuration Menu" message - so its sounds as though the firmware is on-board. However, when feeding my browser the unit's IP address, and being prompted for User Name & Password, neither USER/1234 or case combinations thereof let me thru.

I sense I'm on the threshold! Having got this far, I don't want to do any clumsey resets - any further tips that you could offer would be appreciated

Fun all this - but the time spent over the hot kit is nwearing on the marriage!

Regs

Simon P

The unit will remain w/ a RED led so long as it's loaded w/ Sipura SPA2K firmware. Once it gets re-loaded w/ PAP2 firmware, it'll revert back to BLUE. It's odd that your PAP2 grabbed its .bin file via TFTP and its decrypted XML file via HTTP. That's opposite of the expected/typical behavior.


Indeed your unit has been loaded w/ Sipura firmware. I hope it's version 2.0.9 (there's an IVR command you can issue to check -- search this thread or google for the correct command -- am too tired @ the moment to look it up). If it's newer than 2.0.9, it won't process plain-text files.


It almost sounds like your PAP2 rejected the plain-text XML file, but the fact that your PAP2's web interface is enabled leads me to consider otherwise. Normally, after a PAP2 has loaded its Vonage ENCRYPTED XML FILE, its web interface is disabled. Based on what you've written, your adapter's web interace is enabled. Then again, your entire unlock process was different than the normal process. Thus, I'm uncertain as to whether your adapter processed or rejected its plain-text XML file. The usernames are in all lowercase, so "user" / "1234" (w/o the quotes) and "admin" / "4321" (again, w/o the quotes).


Each time you power cycle your PAP2, check your TFTP and HTTP logs to see where it's attempting to provision from. It should be attempting from somewhere (either via TFTP or HTTP). If it's attempting an upgrade from a GPP_D based directory, place your plain-text file underneath that GPP_D based directory in the TFTP_ROOT or HTTP_ROOT directory accordingly. Ensure that your plain-text XML file has been saved as ANSI TEXT, not UNICODE TEXT. (These are ENCODING OPTIONS in Notepad.)

Diggler

Diggler

Thanks for these final pointers - the deed is now done. Re my problem, the PAP2 was indeed pulling the unencrypted SPA<MAC>.xml file (via HHTP!) as expected . . . but examination showed that I'd omitted a final <CR> at the end of the .xml file. Added the missing <CR>, and all worked a treat.

One positively last request. Any benefits of going with 3.1.22 (Linksys' latest release), or better to keep at 3.1.6?

Thats it. Thanks for the pointers, support and encouragement - all were genuinely apprecaited.

Regards

Simon P

If you manage to extract and keep in a SAFE LOCATION your FACTORY GPP_K value, then IMO it's ok to load the latest 'n greatest firmware. If, however, you do not extract your FACTORY GPP_K, or if you lose it, should you factory reset the adapter loaded w/ any firmware higher than 3.1.6, you'll re-lock it and won't be able to re-unlock it. In other words, your PAP2 will be considered USED and won't perform its automatic firmware upgrade. The choice is yours.

Diggler

I have PAP2 ver 3.1.19
1. i was able to do FACTORY RESET
2. was able to login on web page with "user" id and "1234" password

when i use
http://192.168.15.100/upgrade?tftp://192.1.../spa2k-pap2.bin

its asking me for user name and password when i gie "user" and "1234" it is not accepting it i am stuck at this point can some one please help

Only firmware versions 3.1.6 and lower can perform a TFTP firmware upgrade w/ "user" mode access. Firmware version 3.1.7 and higher (which includes 3.1.19, which btw is probably v3.1.9) requires an "admin" mode account. You're attempting the incorrect unlock method. Re-read the OP.

can you please explain me the below , which is HTTP server is it apache ?
what is DNS server and DHCP

An HTTP Server running on your LOCAL LAN
3) A TFTP Server running on your LOCAL LAN @ Port 69 (for simplicity make this the same PC as the HTTP server)
4) A DNS Server running on your LOCAL LAN (for simplicity make this the same PC as the HTTP & TFTP servers)
5) A DHCP Server running on your LOCAL LAN:

Hello appreciate your answer

DO you have the Post# or any document on how to unlock PAP2 3.1.9 as there are many pages in this forum and reading it all is just getting it difficult.

Do anyone have unlocked PAP2 ver1 3.1.9 can share the complete document

Thanks
Mehul

Apache is an example of an HTTP server. IIS (Internet Information Server) is another HTTP server which comes w/ Windows XP Pro (but is not installed by default). Based on the questions you're asking though, this process may be a bit overwhelming for you. If you can enlist the support of a friend w/ more computer/networking knowledge, that may benefit you.


I said already and I'll say it again: Re-read the OP.
(OP = Original Post, as in the FIRST POST in this thread).
The OP contains links to important posts including the ones which provide DETAILED INSTRUCTIONS on how to unlock the adapter for the appropriate version of firmware.

Diggler

Hi TheDiggler

Is there any way to convert the Vonage PAP2 to a PAP2-NA?
what I mean is that not even a factory reset will lock the device again, and I would like to upgrade my "PAP2-NA" with the latest firmware like a real PAP2-NA

I would like to buy mine from my local walmart, it looks like they are trying to get rid of all of them, replacing them with D-link adapters, so they are selling the Vonage PAP2s left for only 20 dls. each, there are not much left, so before buying it I would like to know if it can be converted to PAP2-NA or it is better to buy the original PAP2-NA and pay 40 dls extra (New Original PAP2-NA is about 60 dls).

Thanks

Read this post.

I read it, but the only thing that the guy in that post does is to sell unlocked PAP2 which you already tought us to do and He sells the Unlocked PAP2 for more than a brand new PAP2-NA, so it doesn't make any sense to me.

Thanks foy your help any way

I should have clarified that you need to look at the *EDIT* portion of that post. Even though yours aren't USED PAP2's, the person listed at the end there is the one who can help you w/ your request (albeit for a fee). Another option is to load SPA1001 3.1.10 or lower firmware onto your PAP2 which will keep it FACTORY RESET safe. See post #86 for details.

Important reminder: when trying to get your spaMAC.xml files the MAC address must be small letters... absolutely NO CAPITAL letters I just wasted over 2 days figuring that out
edit to add... this note applies to HTTP downloading (probably not tftp)

I don't think that's accurate; however, at the moment I'm unable to TFTP d/l an XML file for a MAC address I've previously downloaded w/o issue. Maybe Vonage's TFTP server is f'd up at the moment.

I was HTTP downloading with firefox... tried over a month ago while unlocking 4 virgin PAP2s finally shipped them without getting GPP_K. Last week tried again while trying to unlock 2 RT31P2 which I gave up on to try 3 used PAP2 3.1.9(LSc). Wouldn't work until I changed out the caps (Computers are so literal) I know dos filenames don't matter but http does make a difference like 192.168.15.1/Voice_adminPage.htm (vOICE_ADMINpAGE won't work)
You're right about the server I can't download any now either.

I am trying to unlock PAP2 for a friend of mine. He had the stupidity to connect to the internet, so he's got the 3.1.19. But the there is something more. First of all, the web interface is disabled. Moreover, the DNS IP is preconfigured to 216.115.24.230 and it's asking for a password to change it.

What I did, I configured a PC with this address and pointed all DNS records to the PC. The reset works fine (password is 7756112). My tftp server is able to send the encrypted xml file (it sends it twice - once from the root, and again from a wired folder I had to create). However, PAP2 never tries to get an update from the http server. I can see the log on the DNS server, and it never tried to resolve the httpconfig host name. It only tries the tftp server and the time server.

I also run a sniffer, but it just confirmed - no attempt is made to connect to a web server (only tftp and ntp attemps). If I let it sit connected for about 1 hour, it will get the xml from the tftp sever again.

PLEASE HELP

Sorry for the delayed reply, it's been a very busy week w/ the Sunrocket supernova. The answer to your question has already been addressed in the OP:

Strange...
I am trying to unlock my PAP2 (3.1.9) and so far I was able to
1. RESET (73738) via user pwd.
2. Clear DNS entries in my PAP2 | System tab.
3. Reboot with the following
a. tftp (local) pointing to /spa000000000000.xml <- encrypted from ?onage
b. http (local) pointing to /+000000000000/PAP2-bin-03-01-09-LSc.bin <- PAP2SP2K.bin
c. tftp (local) pointing to /abcdefghij/spa000000000000.xml <- my text file

My PAP2 doesn't seem to go to http. I let it upload my text file xml though. I don't see any IIS log entries attempting to download the bin file.

Wireshark doesn't show any http requests either...


Anybody seen this?

Is yours a NEW PAP2 or a USED PAP2?

Diggler thanks for the response. Great posts BTW!

Used PAP2. Bought it new from BB a couple of years back. Never a problem.
I'am off my phone 3 days now . Iam afraid connecting would undermine my unlock ability.
Tried few times, let it stay for 20 mins etc. Nothing ...

The part in RED above says it all. Ironically, you posted immediately after POST #1173, in which I responded to the EXACT SAME ISSUE.

Thanks Diggler . Dunno how I missed that. Do you know if switching to a new PAP2 (1.0) and letting ?onage know about my new MACID has any issues?

Actually, you may have another option. If your PAP2 is currently registered to Vonage, you need to call up Vonage and make up an excuse to have your adapter's firmware downgraded to 3.1.6. Start reading this thread around POST #1049 as one of the more recent examples of someone who accomplished this. Once downgraded, you can perform the EASY unlock method detailed in POST #4.

Diggler

So, worst case scenario; I connect to the internet and end up pulling a 3.1.9 firmware (say ?onage says they will put 3.1.6 but they never ever do), then
a. is my PAP2's future possibilities compromsed in any way (because I did factory RESET)?
b. could ?onage change my provider settings like user password etc by putting anotehr spa*.xml?

I am not sure what sukru meant by 'locking to the provider on RESET'? My PAP2 is locked to ?onage anyway .
http://www.ilovepap2.com/productsATA1.html

If you end up pulling 3.1.9, you're no better or worse off than you are right now.

No. Your adapter will simply download its PRIMARY Vonage XML config file which is always encrypted w/ your adapter's factory GPP_K value.

Sure, that's possible.

That's what it means. A factory reset re-locks the device to Vonage, which in your case isn't a problem if you're actually using it w/ Vonage service.

One way to supposedly get Vonage to downgrade your firmware is to call them up and tell them that you've been experiencing poor voice quality lately w/ your Vonage service, and that when a friend w/ Vonage service recently visited you, you noticed that call quality on his/her adapter was noticably better than on yours. After comparing accounts settings of both accounts and determining that all other settings were the same, the only noticable difference between your account and your friends was in the hardware itself. Both of you were running PAP2s; however, your friend's had firmware 3.1.6 while yours has 3.1.9. Thus, you'd like to be switched to 3.1.6 to hopefully solve your voice quality woes.

Diggler

can not download the spa000000000000.xml from the vonage's server. Purchased one brand new PAP2 this morning and tried the following method in a Vista command window (tftp client installed):

tftp -i ls.tftp.vonage.net GET //spa00000000.xml
tftp -i ls.tftp.vonage.net GET /spa00000000.xml
tftp -i ls.tftp.vonage.net GET spa00000000.xml

and the following in a Firefox 2.0.0.5

http://httpconfig.vonage.net/spa00000000.xml

All failed. Vonage's tftp server respond: Error on server : File not found. Vonage's web server respond "404 No profile". Can open http://vonage.net without any problem, so it does not look like a firewall problem.

Your inputs are highly appreciated.

A few weeks ago I experienced a similar problem in which a previously successfully downloaded XML file was coming up as "File not found." I just tried downloading a few different XML files now, and they succeeded. I attribute the previous failures to some sort of outage on Vonage's end. Give your file transfers another try. If it's still failing, feel free to PM me your MAC address and I'll give it a shot.

Diggler

Hi the diggler, I'm stuck!

I followed all the steps on the crossover cable method (Post #326 method), everything went fine, I was able to even get the original GPP K value, I decrypted the xml file and got both passwords (User and Admin). Then I got greedy and update the firmware to 3.1.22(LS) (The latest one at linksys web site). Unfotunatelly my mistake was to do factory reset after the upgrade, at that time I was running the TFTP server in my machine with the encripted xml in the root directory and the plain text xml in the random directory (GPP D value?) and the DNS (hosts file) was pointing the vonage servers to my machine.
I saw that after the factory reset the adapter requested the encripted xml file in the root directory and then after that the plain text xml was requested from the GPP D directory, both files where sent successfully base on the solar winds TFTP log:

7/29/2007 23:33 :Sending spa000000000000.xml to (192.168.0.47)
7/29/2007 23:33 :Sent spa000000000000.xml to LinksysPAP.mshome.net (192.168.0.47), 29456 bytes
7/29/2007 23:33 :Sending aaaaaaaaaa\spa000000000000.xml to (192.168.0.47)
7/29/2007 23:33 :Sent aaaaaaaaaa\spa000000000000.xml to LinksysPAP.mshome.net (192.168.0.47), 347 bytes

(I erased my MAC address and GPP D value from the log)

After this the device didn't requested anything from the http server (I was hopping the device would request the renamed SPA2K -PAP2-bin-03-01-09-LSc.bin- that was still in the +000000000000/ docs' directory of the http server, but it didn't happen)

When I tried to open the web interface it was disabled, so I went to the IVR interface and did a factory reset, this time the IVR asked for a password, I entered the 1234 since the plain text xml was the last sent to the device, but it failed, after that I used the user password on the decrypted xml file and it worked. Now I was able to use the web interface, from there I tried to update the firmware to 3.1.3 and the web interface asked me for the admin password so I entered admin as user and the admin password from the decrypted xml and it didn't worked, I also set the user password to 1234 and logged in as user and tried to update the firmware again but it asked for admin password, I entered the same password (from the decrypted file) and failed again.

So now I'm stuck (because my stupid factory reset), and I don't know what to do, this device have not called home yet and is loaded with 3.1.22(LS), so what would you recommend me to do? throw it away? .

Thanks
Toietto

So long as you still have that original GPP K value, you can easily re-unlock your adapter at will regardless of firmware version loaded.

No need to throw away a perfectly good PAP2. The solution you're seeking is already linked in the OP:



Diggler

That was fast!

So if I put a new .xml file it will grab it automatically?

I didn't know that, it's like a File Revision System, it checks for new things right?

Thanks for the tip, I will try it tonight.

If the adapter has PROVISIONING ENABLED, every time the adapter power cycles, it will grab the XML file. Furthermore, it will automatically try to re-grab the XML file every 24 hours. If you disable provisioning, it won't attempt to grab an XML file. (A FACTORY RESET enables provisioning). Hope that answers your question.

Diggler

It worked!
It took a while to grab the encripted xml after the factory reset, I needed to be pacient, that's it, but at the end it worked and I have my pap again

Thanks for your help Diggler

Congrats! Try not to hose yourself again!

STEP 8: Revert back to PAP2 firmware:
1) Use PAP2 firmware 3.1.6 or LOWER!!!

QUESTION where do I find 3.1.6 ? aslo cant I upgrade the firmware with latest firmware version 3.1.22 from their website after all these steps?

I'm using windows XP, which is the good DNS server as Simple DNS does not support *.vonage.net (or how do I configure that in simple dns), also which is good TFT server which can listen to all there ports

also I'm using router netgear wgr624 in between and configured its dns to my pc dns sever, that should be fine? and does port forwading option in netgear will serve my purpose of forwarding 21 69 & 2400 to single 69 how do I configure this in router

Check post 3 it has an alternate link to the bin files.


If you use ethernet crossed cable (Or a switch) to conect the adapter to your computer, you dont need a DNS (you only need to modify the hosts file), that worked for me.

Check post 326 method

is pc to router or pap2 to router is crossed cable? if not I dont have one I think so will go router way

I've downloaded solarwinds but dont find how to change port, so is there good three application? and also abt good dns server with wildcard support *?

I got 3.1.6 version now, but I've question cant I upgrade to higher firmware version 3.1.22 after this so latest bug fix are taken care in my unit...

Hi, I have unlocked my PAP2 and flashed it to Sipura

The thing is, I have followed all the instruction till the very end, where I have to make up a textfile so it can grab it at the beginning. It grabs the file from my TFTP, but the user/1234 and admin/4321 doesn't seems to work.. The LED indicates Red and the DHCP reads the adapter as SipuraSPA rather than PAP2

I have tried multiple combination of user and admin 1234 and 4321, and make sure it grabbed the decrypted xml.

everytime I power cycle, my tftp reads:
Sent Nrs1tiraOZ\spa(MYMAC).xml to sipuraspa.ls.ftp.vonage.net (192.168.0.102), 371 bytes

where (MYMAC) = my unique mac id.

Also, **** using line 1 gives me a busy tone.
EDIT: I was able to connect to the menu using a phone when disconnected from the Ethernet, gives me the Sipura menu

EDIT2: Actually, it works now, all I did was disconnect everything (because I gave up) and decided to plug it back in. This time without reading the xml in the beginning, and now it works. So try turn off tftp and see if it works.

I have another question, why does other people want to convert the Sipura back to PAP2?

A crossover cable is a special ethernet cable which lets you connect 2 ethernet devices DIRECTLY. In other words, w/ a crossover cable, you can connect your PAP2 directly to your PC w/o a router or switch inbetween.

Correct, SolarWinds does not let you configure its TFTP port. That said, the crossover cable method seems to work fine even w/ a single TFTP server running on PORT 69 (the default TFTP port). Other TFTP servers mentioned in this thread include "Pumpkin TFTP" and "WinAgents TFTP." You can Google both of those to find links to those packages.

You're free to upgrade to whatever firmware version you want. The significance of 3.1.6 is that with this version of firmware loaded, should you FACTORY RESET your PAP2, you'll be able to re-unlock it using the "EASY UNLOCK" method described in POST #4. That method takes 5 minutes or less to complete.

The Sipura firmware you load during the unlock process is SPA2000 (a.k.a. SPA2K) firmware. When the PAP2 is loaded w/ SPA2K firmware, only "LINE1" is listed in the web configuration. The PAP2 is a 2-line device though. Reverting back to true PAP2 firmware (or loading SPA1001 firmware) allows access to both lines of the PAP2.

Diggler

What I did was to create my own crossover cable with a RJ45 Ethernet Crimper Tool (you can get one for 5 bucks, it is worth it if you are going to create more than one ethernet cables), I already had this tool before my pap2, so it was easier for me to create my own crossover cable.

But, you don't need a crossover cable, if you have a switch or hub that supports automatic crossover that will make it, most of the modern switches/hubs support it, they use the term of auto-sensing conectivity, if you don't have any of them, you can also buy a cable online, or get one free with bargainshare deals , some times you get money out of the deals.

Anyway I only can help with the crossover cable method since that was the one I used.

What is the tool used to sniff http and other request sent by PAP2? can someone suggest good tools for this? Thanks

Hi everyone, please help an ignorant newbie:

I have a PAP2 with 3.1.9LsC firmware. I installed the TFTP and tried to grab the spaMAC (tftp -i ls.tftp.Vonage.net get spaMY_MAC_number.xml) file, but it returns server error. What am I doing wrong? Or is Vonage blocking it? Or it's an unrelated error on Vonage's server, and I should just wait a little.

Also, when grabbing the spaMAC file, I am connecting to Vonage's TFTP server and not my tftp server, right? Which means, I need to be connected to Internet and disconnected from my PAP2?

I am using a WRT54GC router. I have added 2 lines (apparently pointing vonage server addresses to my PC/my TFTP server) at the end of the hosts file.

I'd appreciate anyone shedding even a little light here.

Google "Packet Sniffer Windows XP" or "Shareware Packet Sniffer Windows XP" to try and locate a free one.

At first I thought it may be an unrelated error, but I kept reading what you wrote, so see below.

Correct to the entire paragraph above.

Comment out or remove those lines until after you've grabbed your spaMAC file. With those lines there, your PC will resolve the domain name to your local machine, so even if the PC is connected to the internet, it won't actually try grabbing the files from Vonage's server.

Thank you, Diggler! Just did it. How could I be so dumb? Even for a newbie it's obvious that those lines are there solely to divert all requests to my computer!

I get confused with all the sets of instructions and all these options within them. I would need (on an and/or basis)

http server
tftp server
dns server
dhcp server
router
crossover cable

Of this, I have a router (that probably rules out the crossover cable?) and a tftp server, installed. If I'm not mistaken, DHCP server is on my router. Do I need to download and install http server (like apachi)? Can DNS server be substituted with a set of lines in hosts file, or I need to install one?