rss

How to Use Redsn0w as iREB Alternative in Mac OS X to Put iPhone in Pwned DFU Mode?

Author: Ben Johnson on March 16, 2011

To jailbreak your iPhone, iPod Touch or iPad using custom IPSW, you must use iREB to pwn your iBoot so that it may accept the custom IPSWs without throwing any restore error. Restoring custom IPSW without iREB usually results in 1600, 1601, 1602, 1603 or 1604 error. To bypass these errors on Windows, the best possible solution is to use iREB but unfortunately iREB is not available for Mac OS X. This guide will teach you how to use Redsn0w as an iREB alternative in Mac to put your iDevice in pwned DFU mode.

NOTE: First i used this method to put my iPhone 4 in pwned DFU mode to restore iOS 4.3 custom IPSW created with PwnageTool bundles and then i used it again to downgrade my iPhone 4 firmware from iOS 4.3 to iOS 4.2.1. In either case i didn't even got a single 16xx error. This guide is applicable to iPhone 4/3GS/3G, iPod Touch 4G/3G/2G & iPad.
Redsn0w (Main)

Steps to Put iDevice into Pwned DFU Mode Using Redsn0w:

  1. Download Redsn0w 0.9.7b6 for Mac from here | Mirror
  2. Download stock iOS 4.2.1 IPSW for your iPhone, iPod Touch or iPad from here
  3. Launch Redsn0w 0.9.7b6 and click on Browse button.
  4. Choose stock iOS 4.2.1 IPSW for your iDevice and click Open button.

    5. Redsn0w (Select IPSW)

  5. Wait while Redsn0w verify your firmware file.

    6. Redsn0w (Processing Firmware)

  6. When Redsn0w echos IPSW successfully identified message, click on the Next button.

    7. Redsn0w (IPSW Successfully Identified)

  7. Now Redsn0w will patch the kernel of provided IPSW.

    8. Redsn0w (Patching Kernel)

  8. When Redsn0w shows you the jailbreak options as shown in the screenshot below, choose Just enter pwned DFU mode right now and click on the Next button.

    9. Redsn0w (Select Pwned DFU Mode)

  9. Plug your iDevice to your Mac and turn it OFF completely by pressing the Power button.

    10. Redsn0w (Prepare for DFU)

  10. Now put your iDevice into DFU mode using the following instructions:

    11. Redsn0w (Instructions for DFU)

    • Hold down the Power (corner) button for 3 seconds.
    • Without releasing the Power button, also hold down the Home (bottom center) button for 10 seconds.
    • Without releasing the Home button, release the Power button BUT KEEP holding the Home button for 15 seconds until Redsn0w detects your iDevice in DFU mode.
  11. Now Redsn0w will patch the iBoot of your iDevice using Geohot's Limrea1n exploit.

    12. Redsn0w (Exploiting Limera1n)

  12. Thats! Now your iDevice is in pwned DFU mode and is ready to accept any custom IPSW file without throwing 16xx, 29 or 21 error.

    13. Redsn0w (Pwned DFU Mode)

  13. Close Redsn0w, launch iTunes and restore the custom IPSW.

Thanks to Boneless for sharing this useful tip in comments.



Older Comments
  • joe

    it worked, but i can only restore it to 4.2.1, once i try to update it, it just goes into recovery mode and error 21 or 1600 show up

  • michellehamm

    this is exactly what my phone is doing... how did you end up fixing it?

  • michellehamm

    How long should your computer stay on screen N.11... it's been on it for about half hour. its not my computer

  • shan

    i got a error 11
    help

  • Avikant

    i reset? this in the settings menu, it hanged, so i put it in DFU and try to restore it, error 3194 came and i tried to fix with any measure but it didn't work! now it says cannot? be restored can anyone help me!

Older Comments