Today’s HAK5 video podcast features Darren Kitchen doing a demonstration of replacing stock Fon firmware on a FON2100 with Jasager Karma using the Freifunk Ap51 EasyFlash GUI utility.

Fonera 2100 Firmware 0.7.1-r1 Fon-Flash. Post by Vaako » Thu Feb 02, 2012 2:27 am. Hi, I have successfully flashed fonera 2200 and 2201 with fon-flash, however i got 3 fonera's 2100 with 0.7.1-r1 firmware that are not able to flash with fon-flash. Hacking the La Fonera - PART II Inspired by Michaels and Stefans Hack the FON-Community found the following way to inject inject Shell code into the system without using FONs Website. NOTE: The method presented here WORKS! Games like rune factory. (at least with the present firmware 7.0 r4).

If you prefer an online tutorial, with plenty of excellent pictures, you can find it here in Kitchen’s blog, or here in the Hack5 forum.

I haven’t followed these steps personally, and haven’t used some of the helper tools, but everything looks ok after brief inspection. Use at your own risk.

As usual, i’m VERY amused at all of the references to some kind of device called “a FON”, and still don’t understand how a young, four-legged ruminant is involved, but then noone ever listens to me. 😉

Now that I have a great pfSense box with Wi-Fi, I don’t need myFonera 2100 anymore. So, why not try to do something interesting with it? ;)

At http://www.dd-wrt.com/wiki/index.php/LaFonera_Hardware_Serial-Cable-Port you can read how to access the serial console on the Fonera.

The serial port of the fonera uses 3.3V instead of the normal RS-232 voltage levels. Because of that, you need some level converters to connect the Fonera to a normal serial port.

But, the Raspberry Pi also has a serial port which operates at 3.3V. This means that you can connect the serial port of a Raspberry Pi and la Fonera without the need of a level shifter.

With a serial communication program like minicom it is now possible to access the Fonera.