Openwrt#

Segmenting my lan in two : red and green , not having vlans currently.

Chose the firmware-selector got startup commands for :

This was a great issue at first, followed all the steps, had the ext4 system, figured that UUID is the issue at end it was mentioned , but wasn’t before the reboot part so I rebooted and everything got stuck , so had to flash again, then figured out the changed uuid after fsck command. So got that from - blkid.

Note that these operations may alter partition UUID. 
Either preserve the partition UUID or edit your boot parameters. 
For example on raspberry pi you must update

/boot/cmdline.txt
/boot/partuuid.txt

Origination#

Times when I would just simply trust ISP people coming to my house , setting up my router , telling them the name I want on ssid. Few years pass by , I get to know that if ethernet is connected and if I would go to 192.168.1.1 , and enter admin admin, I’m into something < This thing felt like I unlocked something in tech world.

Wherever I go I put ethernet and felt that I can see the password for any wifi now. Then there was the WPS era where again I go see that one button that would unlock another door, but sooner that also got closed.

Some more time goes on, I get fascinated by networks and the whole thing that work all the time behind the scenes, started learning about tcp,udp, protocols , seeing the LAN , WAN traffic.

Started self hosting things, getting into FOSS, then got a raspberry pi , had a spare one , starting seeing openwrt and ipfire options for arm devices. But at that moment really wanted pfsense/opnsense or vayos but can’t as had the isp router in my dining room but the whole server in my room closet, unlike some great houses : having ethernet wall jacks.

So had to figure some way of wiring up to my server. So in order to put all server things behind the firewall had to get wired so had that setup, openwrt with Tp-link AP.

Figured out that ISP has the whole control over wan pipeline so :

All the dhcp lan hostnames : Completely visible Mdns, local traffic leak, DNS completely going through their pipe. Dns thing felt bad, so started looking around DOH, Dns over tls etc. things, then started using 1.1.1.1 and 9.9.9.9 failover.

Cloudflare Warp for rest of the things. Had the layers learning and segmented on layer 3 with subnets, didn’t have the hardware to setup vlans, so just on layer3 for now.