08:58 - I'll be working on another router build soon, this time with a Waveshare board. But yeah, availability of CM4 has been the downfall this year. Still wish some company would integrate an Intel I340 or something like that directly into a CM4 board design so the network packets could route through the NIC and not through the Pi's SoC.
@markarca6360
2 жыл бұрын
OpenWRT supports Raspberry Pi!
@eugenb9017
2 жыл бұрын
Dude, really? You are *everywhere*
@tuttocrafting
2 жыл бұрын
Unfortunatly Intel nics might have huge NDAs thats is why realtek chips are more common. Users should also expect to have more latency since the eths will be running via SW bridge instead of an HW switch IC. I was looking to this problem too... you might also want to use PCIe for WIFI too. I'm really looking forward for new RPIs with hi bandwidth MUXes and more PHYs. So I can for example disable HDMI2 and I have another x1 pcie. Like the RK3568 does. But for a router i'm looking forward to the new MTK Filogic chips. I have fiber via SFP ONT at home (GPON, but moving toward XGSPON), so having a single GBE port is not enought.
@noble_lime
2 жыл бұрын
Hi
@romzeek
4 ай бұрын
I don't think anybody who's watching this video isn't interested in networking
@Mr_ToR
Ай бұрын
I hate double negative sentences...
@romzeek
Ай бұрын
@@Mr_ToRwhere’d you see double negative in the sentence
@Mr_ToR
Ай бұрын
@@romzeek "don't" ... "isn't"
@Mr_ToR
Ай бұрын
You're actually saying "I think anyone watching this is interested in networking". Which is obvious and since nobody is stating the opppsite, why the need of a double negative sentence?
@sillydilly2725
Жыл бұрын
I really enjoy how positive the Homelab community is, mostly. Loved the Jeff Geerling shot out
@supernenechi
Жыл бұрын
I live in The Netherlands. The government passed a law a couple years ago that went into effect last year that requires ISPs to allow you to connect you own equipment without using their equipment at all. They are also required to provide the necessary information for doing that. This means that I could disconnect not just my ISPs router, but also the ONT required for converting the fiber signal to copper network cable.
@WolfgangsChannel
Жыл бұрын
I'm not sure if we have laws for that in Germany, but you can also use any 3rd party modem you want. The problem is that you'll either have DSL or Coax at home - which means that you will need to use an off-the-shelf router/DSL box alongside your DIY one anyway. In case of DSL, there are PCIe cards from companies like DrayTek that can theoretically replace a standalone DSL router, but from what I've heard, they're not as reliable. With Coax, a standalone box is unavoidable, since DOCSIS is a proprietary standard
@sivn
2 жыл бұрын
The Jeff Geerling introduction made me laugh out loud... I was not expecting this. Very nice video!
@martinborovansky5186
2 жыл бұрын
You should take a look at a Fujitsu S920 thin client. Low power AMD quad core, passive cooling, two DDR3 SO-DIMM slots and a low profile PCIe x4 slot. Works very well as a router, up to gigabit speeds. I was able to get ~1.6Gbit of bidirectional traffic with OpenWRT. Also, they can be found for under 30 to 40 eur.
@WolfgangsChannel
2 жыл бұрын
Welp, I guess my next video will be "DON'T BUILD YOUR OWN ROUTER" 😁 Thanks for the tip!
@martinborovansky5186
2 жыл бұрын
You will need a left facing, right angle, 1U, PCIe riser, as the thin clients don't usually have them. Generic risers from ebay should work fine.
@bluesquadron593
2 жыл бұрын
I have this exact system. Actually multiple ones, I stocked them up in case of future builds. Interestingly you can also add a sata ssd and take a power from a pin header. So this system is really versatile.
@markarca6360
2 жыл бұрын
HP t610, t620, and t630 Plus thin clients (it has low-profile PCIe x4 slot) are also good options.
@bluesquadron593
2 жыл бұрын
@@delboyg01 Unfortunately my thin client does not have iommu passthrough.
@mhzprayer
2 жыл бұрын
I was listening while cooking something and so a bit of processing delay on what I was hearing. Pretty sure I understood "I have poor impulse control....so I built a router." This image strikes me so hilarious that it keeps coming back making me laugh. I'm picturing every time stifling some impulse dumps open a suitcase of parts and starts assembling a router. Thank you for this!
@markhaus
2 жыл бұрын
One of the nice bonuses of a DIY router is having it run double duty on tasks that are well suited to your gateway node, especially if you run a cluster at home. Things like a load balancer, ingress controller, kubernetes master node, bastion host, DNS (remember this is what pihole is), etc. Yeah a lot of people rush to build a pfsense box when they definitely don’t need it but if you do any kind of homelab stuff a more capable router is a godsend. I’d say go with the efficient x86 options out there if you’re at all interested in even a small homelab. If you’re just doing one server or NAS at home then it’s not worth it
@paulstubbs7678
2 жыл бұрын
I rushed out and built a pfsense box, however it cannot replicate what by ISP's router offers, so it ended up being a double NAT'ed toy. about the only real use for it is as an 'isolator' for unknown PC's that come my way for repair, that need a network connection, but I don't want them to see my NAS's etc. (as in they are potentially full of exploits etc) I am leaning more and more to the retro side of computing, if there were plugins for pfsense that did slip type connections out the serial ports, or I could connect serial terminals etc etc. for some ancient type fun then it would really have my attention. Otherwise its just another watt sucker that I don't want on 24/7
@dustojnikhummer
Жыл бұрын
@@paulstubbs7678 Why can't you disable NAT on your ISP router?
@johnsmith8981
7 ай бұрын
This is why I always recommend building it in a hypervisor so that you can use the machine for other server stuff.
@lesumsi
2 жыл бұрын
Great Video! I'm running a J3455 board with pfSense for over 5 years now. Never had any issues, and the included monitoring graphs helped me to "prove" to Vodafone, that the connectivity issues are on their side. Waiting for the J4125 appliance with 2.5G to arrive for the next big upgrade!
@aeonikus1
2 жыл бұрын
Lucky you. I heard that baytrail CPUs have a silicon problem and they get older quickly and stops booting etc. You can read about it all over the net. Cisco even went that far to replace devices based on this family CPUs.
@xmine08
Жыл бұрын
AES-NI support was also the thing that made having encrypted storage relatively painless as well. Probably the most useful instruction addition to have, even before native virtualization support.
@Dazdigo
2 жыл бұрын
I spent around $330 for making my Intel C2000 pfsense router with ECC. Never regretted it and it has lasted me the last 7 years without any issues.
@danielpicassomunoz2752
5 ай бұрын
What parts did u use?
@ephidrineon
2 жыл бұрын
In general, I have to say that you've put together a well researched video. However, I have to make some additions. First, in theory, everyone can use a self-built router, regardless of the ISP. However, with some ISPs that may mean you'd have to put up with double NAT (connecting the router as a client to the ISP provided one). Second, and much more important: With great power comes great responsibility. Most of the router operating systems that are freely available will give you total freedom, meaning you can totally disable all firewalling by accident, or nuke your configuration with a click. However, that is - at least in my opinion - offset by the fact that it lets you do what you want with it. Third, I agree that wifi is tough. Without a separate access point, or being fine with running 2.4 GHz only on a PCIe addin card, there's not much left. Looking forward to the next parts.
@xxcr4ckzzxx840
2 жыл бұрын
For Wifi you could, in theory, just use one M.2 Slot and get yourself an Intel AX210, which costs around 15 Euros and brings Wifi6E capabilities with it. Antennas for the 5Ghz Spectrum, which also work with 6GHz Wifi6E, are plenty cheap as well. Questions is; Does it work with PFSense, as BSD is well known for shit Wifi Support?
@ephidrineon
2 жыл бұрын
@@xxcr4ckzzxx840 You have to watch out with Intel cards on Linux platforms, as I know many don't support AP mode which is, well... required for hosting an AP. The BSDs are notorious for having near nonexistent wifi support, but there's tables with supported hardware you can refer to in the official Netgate docs. I'm running a PCI wifi card from TP-Link with an ath9k compatible chipset. On Linux, almost get the full 100 Mbps of my internet connection while on *BSD, I'm lucky if I get 35/35 on a good day.
@markarca6360
2 жыл бұрын
Correct! Most ISPs use CGNAT to enable multiple subscribers.
@markarca6360
2 жыл бұрын
@@xxcr4ckzzxx840 BSD has 802.11ax support, however, pfSense and OPNSense don't have it yet.
@TJGermany
2 жыл бұрын
@@markarca6360 This has nothing to do with CGNAT. In case of CGNAT you'd even have triple-NAT!
@HoshPak
2 жыл бұрын
I did this as a challenge to myself, last year. I've built a box running ClearLinux as a virtualization host and deployed a virtual firewall and several docker containers for WiFi, IoT and PBX. Apart from the horrendously outdated and misleading documents on VLAN management on Linux, once you learn how to do it properly you might as well build your own switch at this point too... Which is exactly what I did. Every component is modular and can be replaced or upgraded in due time. And it all fits in an ITX case using 10W TDP at most, making it extremely quiet for the amount of functionality and performance. Damn, I love this project...
@l0gic23
10 ай бұрын
If you ever make a video on the project, let us know!
@stellarorbit1341
2 жыл бұрын
I took my old i7-6700k computer with 16gb of ram and added another ethernet port via a card on amazon, got a net gear access point and installed ipfire to the system. I can fully saturate my gig speed even over wifi so even though it isn't the most power efficient solution out there, it works just fine for me and it was only 90 usd with the parts I already had for years before I decided to do this. My only bottleneck at this point is the apartment's cat 5e or older wall infrastructure, but that won't be the biggest issue once I move out in a year or so.
@sirdewd2197
6 ай бұрын
What WiFi card did you buy?
@xsterawesome
2 жыл бұрын
I wish this video went over higher end business class options you can buy for similar money (especially used) and covered performance (latency and speed). Anyway, I enjoyed the video, thanks for making it.
@nezbrun872
Жыл бұрын
A problem you didn't mention with building your own router as a permanent fixture is that it'll inevitably be labour of love, a permanently unfinished project, and it'll require continuous maintenance. Of course, if you want to make one as a project to learn stuff, go float your boat, but I'd be wary of approaching this as a permanent installation. Bearing in mind our dependence on internet connectivity as a near essential utility nowadays, I'd generally recommend a decent SMB level router such as Draytek Vigor, a make I've used for over 15 years, but other makes are available I find them solid as a rock, they're very reliable. This is as opposed to consumer level routers that can usually be identified by their pleasing aesthetics, hiding how little has been spent making them reliable. Mine's 10W at the wall, has 5 LAN +1 WAN eth ports, xDSL WAN port, Wifi 6, mesh, WoL application, VLAN, hardware NAT & VPN acceleration: I run it with gig fiber + xDSL auto failover (4G optional), and DDNS for both remote access and site-to-site VPN. It's horse for courses, if you like tinkering, and don't get frustrated when you wake up in the morning to find you have to drop all your plans to get your router working again, then yes, build your own router. 😉 The tinkering I leave to a 2.5W at the wall Cherry Trail Atom based fanless NAS/Home Assistant mini PC.
@sirdewd2197
6 ай бұрын
Dude what’s your parts list? I can’t figure out the WiFi card portion.
@netroy
2 жыл бұрын
I have been using a NanoPi R4S as my home router for over a year. it's running Openwrt, with Adguard, and K3S master on it, and has an uptime of months (if not almost a year). I'll never want to go back to an ISP router again.
@don_dolarson
Жыл бұрын
It's something I'm considering as well. How did you got the OpenWRT into it? I can't find it as a compatible device on the list.
@Asdasdas1337
2 жыл бұрын
I bought one of those J4125 appliances with 4xI225 nics. It works great with OPNSense and PFSense with gb fiber internet using Suricata as IPS. Cost me around 230 usd with 8gb ram/128gb ssd and shipping from aliexpress. The brand name I bought is Topton in case anyone is interested, they took around 13 days ship but once handed to DHL in Hong Kong it took like 3 days to arrive, which I find pretty darn good.
@RicksterMW2
2 жыл бұрын
5:55 Draytek in my opinion is one of the best routers. Very stable and very good UI.
@kritikusi-666
2 жыл бұрын
I always enjoy the quality of your content. No BS. Straight on point.
@Paxtiny
7 ай бұрын
I tried, I really did. And I fully agree with your opening statement. I have no professional background in networking. When I set up opnsense as router and firewall I gave up after 2 years because I never really understood what I was doing. Its a fun thing to do but if you care about security and dont know what you are doing stick to your ISPs hardware for the basics.
@PatipanWongkleaw
2 жыл бұрын
I'll definitely build my own router. I first start off with ISP router, everyone knows how that 'd get you. Then I switch to Asus top end model, but kind of limited by the firmware, I want to have my custom RA message, custom mdns, etc. After watching this, I just realized that I could get rid of all those limitations, if I just built my own. I can even put 4x 10GbE RJ45 port NIC in them for good measure.
@MichaelSmith-fg8xh
2 жыл бұрын
I've happily run chelsio and intel 10gb NICs for ~5 years in pfsense and opnsense. Intel was better due to heat and compatibility.
@desertlightning7335
Жыл бұрын
@@MichaelSmith-fg8xh I would say you're a gigachad, but more like a 10 gigabit chad 😂
@hdjfjd8
2 жыл бұрын
Ur knowledge on networking is terrific. Do u mind sharing what resources u have used over the years to build up this vast reservoir of knowledge?
@kevincopper9032
2 жыл бұрын
I would love to know this too
@WolfgangsChannel
2 жыл бұрын
I don't know that much! But for this video, my Patreon Discord (and Fabian in particular) has been very helpful. That and some googling
@IOTWVUVWTOI
5 ай бұрын
@WolfgangsChannel I've just picked up an oem i7 7700, 16gb ram with a 1060 6gb for 100£ in the uk. Its going to be my first home made router... interested to hear your thoughts on the potential power consumption...
@JoseMariArceta
4 ай бұрын
@@IOTWVUVWTOIwhy not not think about what your thoughts are? You know the costs of power, you probably know the power use. Why not ask yourself 😅
@IOTWVUVWTOI
4 ай бұрын
@JoseMariArceta because if I was the smartest person in "the room" I would definitely be in the wrong room.
@gjkrisa
2 жыл бұрын
What’s nice of having extra ram is running a RAM disk and have everything running in memory so much faster. I have it set up with pfsense and have it backup the ram four times a day
@mailong.botega3040
Жыл бұрын
I see the thumbnail and channel, and I know I'm in for a treat.
@chromerims
7 ай бұрын
Great video 👍 Thank you, Wolfgang. 12:40 -- Fyi . . . NYC residential rates are around US$0.15-0.18/kWh for the variable fees (December 2023). (Notably, there are sundry, non-variable fees, which, based on usage, increase the total cost by, for example, +100% (lower usage) or +50% (higher).) My approximate rule of thumb for 24/7 homelab servers at such rates: for each incremental 100W (as metered, and not identical to at-the-wall) costs roughly US$150.00 more per year, or US$12.50 per month, or US$750.00 over a 5-year life (no inflation scenario). Divide by 10 if mini-PC is sipping only an incremental 10W. Kindest regards, neighbours and friends.
@James_Knott
2 жыл бұрын
I run pfSense on a Qotom mini PC, from AliExpress, with i5 CPU (with AES-NI), 4 GB RAM, 64 GB SSD and 4 Intel 1 Gb Ethernet ports. I also have a Cisco 8 port managed Gb switch and Unifi AC-Lite access point. I've been running this config for about 1.5 years and am quite happy with it. BTW, my Internet connection is a cable modem that is easily put into bridge mode. My ISP also has a community forum, where I am quoted for pfSense IPv6 configuration.
@earlyburg
2 жыл бұрын
Yes. Yes you should. I just build a pfSense security appliance and network router running Squid and Snort on a 64bit celeron motherboard, using DDR4 and I can confirm that pfSense can run on an M2 SSD in SATA mode. The 64 bit bus combined with the modern PCIe interface gives me very fast throughput which I have not yet measured. Mind the bus speeds!
@DMSBrian24
2 жыл бұрын
I'd say learning more about networking is the absolute no. 1 reason to do this
@madkvideo
2 жыл бұрын
I live in Argentina and can confirm you can use your own router. Provided you ISP's device is in bridge mode.
@drkwrk5229
10 ай бұрын
I'm behind CG-NAT so I jump the gap by serving wireguard on a VPS and connect some local systems to that VPS. this way i get a well defined and secure network without port forwarding when I'm out and about
@tommasochiti4237
2 жыл бұрын
loved the quick TLDR at the beginning of the video
@Adam-cp1dl
2 ай бұрын
I been running a dell wyse 5070 for a couple years now for 80 dollars brand new old stock on ebay and a quad intel nic. Ran both opnsene and pfsense. Mini PCs and SSF pcs arw amazing for homelabs.
@velislavvasilev8783
2 жыл бұрын
Don't miss the power of ATX router. You can use a hot swap device for easy and fast backups over local network. Also is up to you how it will be connected (RJ45, WiFi, USB tethering via smart phone) trough internet. Linux, nftables, BIND9, squid, isc-dhcp-server, wireguard, nginx. My personal choice is: MSI B450 Gaming Plus Max, Athlon 3000G, SATA SSD 128GD, 5x two port gigabit NICs and hot swap device for both - 2.5 & 3.5" HDD's, because I have a lot.
@delboyg01
2 жыл бұрын
Take a look at the Proxmox VE type 1 Hypervisor, not only can you virtualise pfSence, but also Virtual Machines/ Linux Containers and Docker instances - a brilliant piece of software for these tiny PC's.
@ChrisWijtmans
9 ай бұрын
@@delboyg01 why pfsense when you have nftables?
@delboyg01
9 ай бұрын
@@ChrisWijtmans- You assume that the average user even knows what nftables, BIND9 or Squid actually are??
@ChrisWijtmans
9 ай бұрын
@@delboyg01 OP talked about nftables and you bringing up pfsense amkes no sense whatsoever.
@dash8brj
Жыл бұрын
Thats what I have done - bridged the modem and run an Aliexpress mini pc with 4 ethernet ports to my switch. It all virtualised on Proxmox, so I have the router running on one vm with two nics passed through, and another ubuntu vm running in another vm with its own nic. The fourth nic is the management interface for proxmox.
@nem64
2 жыл бұрын
IMHO OpenWRT is the best Router around simply for its ease of use and flexibility while being extremely powerful at the same time. I tried untangle, pfsense, opnsense, MikroTik's RouterOS* and Ubiquiti's security gateways but nothing matches OpenWRT. Setting up load balancing across 2 WANs is stupidly easy with the mwan3 package and configuring firewall rules and zones was also a smooth ride. All this while being lightweight enough to run off of a VM in my server with 128MB of memory For switching I use a MikroTik CRS328 and for the APs I use UniFI APs. MikroTik's switches are unmatched for their price to feature/performance ratio while UniFi provides a really nice centralized plane for easy setup and management for my wireless clients. It really feels like OpenWRT is not used professionally because of branding(?) because it can doing everything that enterprise routers can while taking less resources. Build and shape your own image and you'll have an amazing router suited exactly to your needs. I run mine off of a single i7 6700 thread and the CPU goes to about 30% at gigabit with a few firewall rules and NAT * Setting up QoS and multi WAN with RouterOS was extremely tacky and finnicky + it took a lot of time to get it right and even then I wasn't happy with the results. In the end I decided to ditch it and go for OpenWRT
@Drejkol
Жыл бұрын
Everything depends on the country you are living in and your provider. I got wifi6 fiber-ready router with 2.5Gb ethernet slots for free to my plan. For additional ~4€/month got wifi6 extender. I can set VPN stright on the router and in years never had any problems with it.
@guyoninternet7015
2 жыл бұрын
LMAO at the Geerling call out! Great video Wolfgang :)
@danielstellmon5330
2 жыл бұрын
Love the opening. Not everyone needs to built there own.
@phibel9303
2 жыл бұрын
Nice video. I have been using fli4l as a router on various hardware platforms for almost two decades. Startet with an Intel 486 and currently using an ASRock Rack J1900D2Y. I started doing this because the routers from the ISP always crashed when you opened a few hundred connections, that was around ~2004. You learn a lot by doing it yourself, but as you said in the video, you have to want to do it.
@79Omdus
7 ай бұрын
Realtek Nic support has gotten way better in the last few years. Installing the "kmod" package and adding a few lines in the loader and your done.
@sirdewd2197
6 ай бұрын
Which M.2 WiFi NIC would you recommend then?
@nikonosful
2 жыл бұрын
Great content! What about Mikrotik routers? Thank you.
@Kaguya___
2 жыл бұрын
I ordered a similar Chinese router from the second option, back in February. It’s good for everyone, it’s a pity that he doesn’t have SFP only, but he supports 2.5 Gbps on 5 ports. I have not yet decided which OS to install on it. openwrt or opensense. OpenWrt from the pros has support for Chinese proxy protocols in the form of v2ray.
@jonatansteuernagel1264
2 жыл бұрын
I also just discovered the Noname Aliexpress Computers, that would make for great routers (heck, they even have 2.5G ethernet!). I am really tempted to get one as an upgrade from my current setup with a USB LAN Dongle and an OPNsense in a Proxmox VM.
@MrJakecornford
2 жыл бұрын
I have had a Qotom box for about 2-3 years and it's be sold. Runs OpenWRT on top of proxmox.
@dstn3422
Жыл бұрын
that was an excellent way to start the video, thank you for your honesty, I will not watch it but I upvoted for fairness
@JohnDoe-wi7eb
2 жыл бұрын
You look like you gained some muscle bro looking good brah!!!
@WolfgangsChannel
2 жыл бұрын
Thank you!!
@TomBabula
2 жыл бұрын
Then there is UDM Pro which is somewhat in the middle between OOB experience and some customizability, mainly aimed for those who don't want to spend a lot of time tinkering but offers more options than consumer router and more power than OpenWRT. It's main appeal is unified dashboard and integrates nicely with Unifi APs and can also act as NVR. It runs threat management capable handling of 1GB/s. The downside is size, its more suited for someone who has a space for network rack. For advanced network users may lack desired features and for basic/casual the price price too high and set of features overkill.
@WolfgangsChannel
2 жыл бұрын
I'm really looking forward to UDM-Pro-SE being available
@burprobrox9134
2 жыл бұрын
We used to homebrew routers A LOT back in the early 2000s. Before Wifi really. Was a fun project, but really pointless for 99% of folks. Definitely something for network engineers to do as they learn. If building a router isn’t fun, find a different career lol
@Xielent
2 жыл бұрын
Thank you for this video. You literally answered all of my questions.
@TheAffz10
2 жыл бұрын
Nice video, great content. Can you please tell me where I can learn more to build a UI like in 1:40min? Or is any application for that?
@Space_Reptile
2 жыл бұрын
The AVM routers are pretty good, the Vodafone issues arris routers however... I'll stick to my 6490 for now as I've yet to encounter an issue with it
@paulantoine1696
2 жыл бұрын
The lack of patching... within a year or two of ownership of a consumer router is the main issue for me. Cosnumer routers frequently have bugs, needing rebooting weekly, and/or security vulnerabilities of course. There are literally millions of viable old routers out there, assuming they'd had their usually open source operating systems upgraded. It's a massive source of e-waste in my view as well.
@zeendaniels5809
Жыл бұрын
Thanks for the video! I was thinking of getting an OrangePi R1 Plus, and some access points spread all over the house... But after seeing this comparison, I'll definitely get one of those AliExpress solutions. I don't need any of the extra solutions nor extra horsepower... I'm just a nerd and a network enthusiast. Time to upgrade to wifi 6 and 2.5gbps it seems 😂👍🏼
@FlaxTheSeedOne
7 ай бұрын
One Ethernet Port is already fine if you already have a managed Switch. So an even cheaper/smaller device can be used.
@oooooooorion
2 жыл бұрын
From what I know about french ISP as a french myself, Orange is the only ISP not letting users enable bridge mode. Howerver, if you don't care that much about the tidiness of your network, you can just disable DHCP or forward all the ports to your new router and disable Wi-Fi. I don't know about Bouygues Telecom but I think they include a bridge functionality. SFR sure allows their users to turn on bridge mode (I am an SFR subscriber myself with a cable offer). Free has the most complete router given to their subscribers (the well known Freebox). If it is possible to enable bridge mode, you may just not want to because the given router is so good and so complete. When I'm at my grandpa's (which is a Free subscriber), I'm jussed pissed of I can't use DNS over HTTPS/QUIC/TLS because of some weird lobbying (in France lying DNSs are the only way to "block" a website which a court banned). Anyway that's all (PS : we don't have Verizon or Vodafone here, the only paneuropean ISP are Orange and Iliad [Free])
@wolfVFXmc
2 жыл бұрын
Orange in Belgium let's you enable bridge mode on their newer routers
@oooooooorion
2 жыл бұрын
btw: wtf electricity prices in germany are nuts (nearly twice as high as france's), long live nuclear energy
@oooooooorion
2 жыл бұрын
@@wolfVFXmc nice ! anyway Orange revealed (or will) a new livebox which may let users the possibility of enabling bridge mode
@scholziallvideo
2 жыл бұрын
hi, primary problem is that you need the modem function so you need a standalone modem for DSL Fiber etc. i use a Intel Nuc with Sophos UTM Home its perfect and can handle all what i need.
@mrsansiverius2083
2 жыл бұрын
I remember when Seeed's CM4 router was still called Chuck's
@MostlyPennyCat
Жыл бұрын
Back in about 2003 when broadband internet at home was a single computer connected to a cable modem by USB or a network cable into the back of your cable TV box, we HAD to build our own router, there was no other affordable choice. And even then, the real routers, which nobody could afford, didn't have the MAC spoofing required to get it to work, as the cable company would only talk to the single register MAC and the only way to do that was with their windows only software. So we took a Pentium 90 with 32Mb of EDO RAM, two Intel NICs with Linux supported offboard TCP acceleration and a pair of floppy drives. This then booted, off of two floppies, the ultra compact Linux router distro LRP, the Linux Router Project and it's descendents. The second floppy allowed us to add IP QoS and VPN support. Not bad for 20 years ago.
@chromerims
8 ай бұрын
👍 Floppies Which country in 2003? 😎
@OneMarcFifty
2 жыл бұрын
Hi Wolfgang - needless to say that I disagree on the OpenWrt part ;-) nevertheless - great video ;-) like!
2 жыл бұрын
Great video, thanks. I also live in Germany, have Vodafone cable connection. I'm pretty satisfied with my FritzBox 6590 and I didn't pull the trigger to switch to my own router, but I'm thinking about doing it with either pfsense or opnsense, mainly to get support for DHCP with PXE boot, wireguard and being able to set captive portals. As far as I know, a lot of people get Protectli devices and install pfsense/opnsense on them and they're pretty happy with the result.
@PsychotherapistSam
2 жыл бұрын
At least for the wireguard part, it's already available for some devices via FritzLab and will probably be available for more devices soon :)
@demirmahir
6 ай бұрын
Can I ask where you got the mini-ITX case? I can see it on their official site, but not really available for purchase.
@mars-kd8ft
2 жыл бұрын
AYY! Wolfgang back with new drip!
@user-hk3ej4hk7m
2 жыл бұрын
Not having AES-NI is a huge downside, as pretty much anything encryption these days uses some form of AES for symmetric encryption. Having ChaCha20 as an option would be nice for these devices, as it's about five times more efficient given how friendly add-rotate-XOR encryption algorithms are to branch predictors. Sadly anything but WireGuard uses ChaCha20, so it's the only VPN software I can recommend for systems without AES-NI support.
@WolfgangsChannel
2 жыл бұрын
Personally, I've been using IPSec (one client) to VPN into my home network, and haven't noticed any performance issues so far.
@GreySectoid
6 ай бұрын
One middle ground solution is to get off-the-shelf router and install custom firmware such as dd-wrt.
@CampervanCookout
Жыл бұрын
I still use my old Apple router which has Ac wifi and gigabit Ethernet, which is faster than my internet speed but is locked down in true Apple style. However I now run a little web server and wonder if I should increase my security, as I do get more instances of probing from the internet. That can at times effect my internet detrimentally until my web server blocks the IPs automatically. Very useful videos, thank you.
@Terrados1337
2 жыл бұрын
The stuff the ISPs sell you is usually the lowest spec overheating crash prown excuse of a cobbled together accesspoint with a modem added as an after thought. Looking at you Vodafone Station that can't handle more than 4 simultaneous wireless connections without shutting down.
@youreale
2 жыл бұрын
Not to mention... some cheaper, white label routers supplyed by ISPs are known to have serious security issues (man-in-the-middle DNS hijacking, for example) and rumor has it that some are intended to be used as cyber-wars tools, when the moment arrive. "Should you build Your own router"? It's not a stupid question at all.
@sabamacx
2 жыл бұрын
My little $35 Mikrotik router is Linux but has first party support and Just Werks(tm).
@bertnijhof5413
Жыл бұрын
I use an ISP router, but I needed WiFi for the back of the house. I had an old TPLink WiFi router lying around WiFi 135Mbps, Ethernet 100Mbps, it had an Ethernet WAN connector. I use Ethernet for my 3 computers and the WiFi for; my wife's laptop; the bedroom TV and our phones. To get a faster connection between my 3 computers I've added a 1Gbps switch ($15). To improve security for the router I've changed userid and password; updated the firmware; closed the router for all inbound traffic and only allowed admin access through the MAC addresses of my laptop and desktop. Who needs more?
@squ94wk
2 жыл бұрын
You don't technically require 2 NICs. I'm running a Pi 4 in VLAN trunk mode and have one VLAN id for pppoe for my ISP and other networks using different VLANs. It's not ideal because in/out shares one NIC, but it's good enough for my bandwidth. I tried a non Pi SoC with 2 Gigabit LAN ports, but it didn't work with Ubuntu server out of the box, which is my OS of choice atm. Again, not the typical router OS, but it's much easier to build other stuff on.
@ChrisWijtmans
9 ай бұрын
not secure.
@SukaNetwork
2 жыл бұрын
build routers? no thanks, I think MikroTik is the best choice and cheap router, good content btw (y)
@leapbtw
2 жыл бұрын
this is such A GREAT video! thank you kind internet stranger ❤️
@royrms4618
2 жыл бұрын
this dude is slowly turning into a "super security villain" like who needs max security in his life, anyway i enjoyed every one of your videos thank you
@itsmegiorgio
11 ай бұрын
hang on a minute... the aliexpress thingy is really nice considering all of the hardware headaches you avoid yourself but... it does not have PoE for a Ubiquiti access point!
@Quettesh
11 ай бұрын
There is a good middle ground, get an Openwrt compatible Mikrotik router and flash it on it instead of their (for most people too complicated) OS.
@kristianvassilev360
10 ай бұрын
There are a few AsiaRf WiFi cards that work pretty good. I'm currently on 600mbps ISP speed and I can saturate it on wifi. Also, being told I can go over 1Gbps, since it supports WiFi 6e. The one I use is the AW7916-NPD, but the 7915 is also good. They are all under $40 USD.
@marcin315
2 жыл бұрын
I wonder what is your opinion on sort of a prebuild solutions like mikrotik's 'router boards'?
@crangerkirmesfan
2 жыл бұрын
Germany needs Fiber to the Home,and i mean all Homes with that😎
@mancampovestiminvatam
10 ай бұрын
Wi-fi complicates things big time. If you can't find a Linux-compatible USB adapter, you end up with one extra appliance (like the Ubiquity) and power consumption nearly doubles. On the other hand, having a conventional router can leave the customer vulnerable to attacks because the manufacturer "forgets" to fix all the bugs in the firmware.
@TheJackal917
2 жыл бұрын
Could you make a video with an explanation how to set up custom network applying all these security stuff? Would be nice, especially nowadays.
@DevOdyssey
2 жыл бұрын
Very thorough video, great job! Personally, I think BSD's are the way to go, given their legacy of efficient and powerful networking capabilities (including development of BPF / eBPF, though thats been ported to Linux for some time now). To my knowledge, most enterprise grade solutions are based on BSD's anyway (given it's historical context). But, as you noted, something this powerful might be overkill for the more average user. Arguably, where my preference ends for BSD is in wireless. Linux (OpenWrt) takes the crown there for it's wide range of support for wireless cards, making it a good choice for more "all in one" custom builds. However, I think decentralizing wireless functionality can give you more flexibility, making it not a big deal for BSD's lesser support of wireless. I'm a fan of UniFi's wireless products. NIC expansion has been a struggle for me on Raspberry Pi based boards. While I've mostly made videos on OpenWrt, my networking knowledge stems from BSD firewalls, and remains a preference to me, at least in the home firewall aspect. Nice custom build by the way.
@Ghfvhvfg
Жыл бұрын
Where can you find a guide to do it.
@DevOdyssey
Жыл бұрын
@@Ghfvhvfg What guide are you looking for in particular?
@Ghfvhvfg
Жыл бұрын
@@DevOdyssey Nothig in particular but it’s interesting and it would probably be a good resource because Vides Help setting things up.Just a general guide.
@DevOdyssey
Жыл бұрын
@@Ghfvhvfg If you search for pfSense or OPNSense videos on youtube, you can find many videos on how to get started with BSD based firewalls. I don't have any one in particular to recommend, but you will find plenty that help you start from scratch.
@JerrePictures
6 ай бұрын
Intel Gemini Lake processors are known to have some vulnerabilities that are not considered security issues by Intel. These vulnerabilities could potentially be used to hack a system or steal data, but there is no evidence that they are being actively exploited. Intel has released some mitigations for these vulnerabilities. These mitigations can reduce the risk of exploitation, but they do not eliminate the risk completely.
@cheako91155
2 жыл бұрын
I don't get why Espressobin isn't more heavily considered? The Base price was $70 with 2.5G in a 3x1G configuration, screaming home router. It also has mPCIE and SATA ports. You do need a 12v PSU and I'd pair it with a Pi-ZeroW for a wireless serial console(the board has a USB serial adapter, so needing USB converter to share and a Pi fills that need.)
@ptrkmr
11 ай бұрын
Goddamn 32¢/kWh is insane. I just started paying for my electricity at the new apartment I just moved into. Typical electricity is 9.92¢/kWh but I switched to a provider that’s almost entirely solar and wind powered and got it down to 4.7¢/kWh 💀
@itsmegiorgio
Жыл бұрын
Can't thank you enough for this video!
@StefanHolmes
9 ай бұрын
UniFi is, for me, a sweet spot between a cheap consumer router and rolling my own. I get VLANs, VPN, IDS/IPS and content blocking without having to know everything about how those technologies work. I’m going to pay more for UniFi than I am from rolling my own, but I’m going to spend less time managing it.
@update450
2 жыл бұрын
twitter poll with two possible thumbnails < another thumbnail
@patrickweggler
2 жыл бұрын
My big question, since the idea of a diy router popped into my head, what to do about telephony - maybe Asterix. But how to do DECT without using a Fritzbox as DECT base station in the end?
@maik00979
2 жыл бұрын
You would propably need a seperate Basestation like the Gigaset GoBox 100 which can either directly connect to a voip Provider or to to your pbx.
@jan-hendrikdorner1659
8 ай бұрын
I live in Germany as well and use a Turris Omnia which is OpenSource and OpenHardware. It even have a SFP port …
I DO live in Argentina! Haha. I have two Asus routers in Aimesh, but I am moving to a pfsense. Great video!
@DeadKennedy
2 жыл бұрын
@Voodoo Yam tres
@lonxx9473
6 ай бұрын
Here in France I have an FTTH with static ip address wich is quite good, my ISP router allow me to put it in bridge mode so i have my public ip onto my firewall Wan port.
@vmdcortes
3 ай бұрын
Hey, I love this kind of content 🎉
@mgsystems596
4 ай бұрын
I've Itx motherboard with amd e2100 (9 watt pdw maximum) doble gigabit NICs with BSD 😊 its interesting all stufff in 8 Gb SSD
@vlmath314
2 жыл бұрын
for wifi, you can also attach any wifi interface to the machine, and use the package `hostapd` to create a software access point (I use that on my debian virtual machine I use as router, with the wifi card passed-thought to the virtual machine)
@WolfgangsChannel
2 жыл бұрын
True. However, not all WiFi adapters support AP functionality - that includes all Intel cards, for example.
@susanyoung6579
2 жыл бұрын
@@WolfgangsChannelwould you consider doing a video on modern wireless cards that support AP mode? Or dropping a link or suggestion if it's not worth a whole video? Thanks in advance.
@randrews4614
Жыл бұрын
Hi @1:10 I think where you are show web UI I am wondering how did you set that up as I would interested in doing the same any information /direction you can share would be welcome Thanks !!!
@keomaandrade9093
2 жыл бұрын
nice video. But i have only one question. you said o bought a ubiquiti instead using a wifi 6 card on ur custom router. But the client will use cpu and ram from ubiquiti and not from the router so, its better just have the ubiquiti in this case.
@mph8759
Жыл бұрын
Can you look into OPNsense? I’m running it and love it. It’s similar to and alternative to pfSense with better compatibility/support for some NICs (e.g. *Intel* i-226V)
@HupfderFloh
11 ай бұрын
8:09 one would certainly hope so
@noble_lime
2 жыл бұрын
Jeef geerling is great on this topics. You should get other board with direct pci connection to ethernet
@joefreedman4403
Жыл бұрын
Curious to get your thoughts on an "off the shelf" option such as GLiNET Flint
Пікірлер: 455