this post was submitted on 22 Mar 2025
26 points (100.0% liked)

Selfhosted

44954 readers
428 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
26
Just got my OpenWrt switch - what configurations / preparations should I do? (lemmy.ml)
submitted 3 days ago by [email protected] to c/[email protected]
10 comments fedilink hide all child comments
 

I have solid experience configuring and maintaining Linux, but my knowledge in networking is quite basic. What should my first configurations and preparations should I do before flashing Openwrt and setting it up for my home network?

PS. If I can use the switch as a NAS, I'd be delighted.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 1 points 2 days ago (1 children)

Thank you for taking the time to answer throughly! I noted your advice and chunked up my goals into "mini-projects", once I have all the configurations set and all devices connected to the new router. I did check what I bought is a router, not a switch (I find the naming of the device acting as the gateway between the LAN and WAN to be a bit ambigous: switch, router, gateway...).

As for the IDS capability, this is something that would be done by a raspberry pi being fed packets from the router. I don't know if I will ever undertake that task, but I keep it in mind if I'll feel adventorous πŸ™ƒ

(for those wondering: Linux Magazine #279 has a guide on how to accomplish this with a Fritz!Box 7583).

[–] [email protected] 2 points 1 day ago* (last edited 1 day ago) (1 children)

For all intents and purposes, "gateway" just means "router," especially in consumer/home networking. Routers act as a gateway, routing traffic from one network to another network. On one end of the router is your WAN (ISP / internet at large / etc.), and on the other end if your LAN.

Switches on the other hand are "dumb" and only act to expand a network. They basically act like a power strip does: What was one port is now more. (This example will probably upset someone for reasons, but they'll also understand that it works well enough.)

Thought exercise: What happens if you plug the WAN cable from your ISP into a dumb switch (like https://www.amazon.com/dp/B00A128S24), and from there you plug in several devices (PC, printer, etc)? I am not answering that question because just about anything can actually happen. It depends on how your ISP is configured and will almost certainly not work 100% correctly.

Now onto the actual response: For the most part, every consumer router is a router/switch/wifi AP combo box, and are capable of being used for all or any combination of those features.

If you're not planning to use your device as a router, then we'll ignore the routing functionality. All prior points where I say "this happens at the router, not the switch" still apply. (Your device can still be called a router, as that's what it's sold as, but you'd be using it with the all routing functionality disabled, only using the switch and possible WiFi features)

If you do plan to use your device as a router, then the prior points where I say that now apply.

Anyway, you're in luck since the switch built into your device is almost certainly VLAN-capable (it's quite rare, but some devices are not capable of it). If you're not using the device as a router, that's where things probably end, since (at the switch level) VLAN support is pretty much the only thing of note.

I spent so long writing this I actually forgot what I was trying to say initially. I'll likely draw a diagram to explain some things for you.

The important thing is that "switches" (or your device if you're not using the routing functionality) are "dumb devices" that only do very simple tasks and generally aren't capable of much in terms of advanced security features. "Routers" are smarter devices where the task they do is a bit more complex, and are where the advanced security features can actually be applied.

[–] [email protected] 2 points 1 day ago

Thank you for taking the time to write this! Well, first stage of my project (getting openwrt my router) has gone according to plan, and now to strive for the next objective 😏