![OneMarcFifty](/img/default-banner.jpg)
- 75
- 3 525 348
OneMarcFifty
Germany
Приєднався 4 лют 2020
THE PLACE FOR DIGITAL DIY
if you are an enthusiast of Digital DIY then this is your place.
#openwrt #kalilinux #docker #esp8266 #esp32 #linux #proxmox #virtualbox #wifi
Marc on patreon: www.patreon.com/onemarcfifty
My youtube channel: ua-cam.com/users/onemarcfifty
Marc on Twitter: onemarcfifty
Marc on Facebook: onemarcfifty/
Marc on Reddit: www.reddit.com/user/onemarcfifty
Chat with me on Discord: discord.com/invite/DXnfBUG
nano_1y43u3kre5auwthu3ktbw3j4xh6itfbyrqr5wxtm6s4hyrtg3xrpoqf8tt91
if you are an enthusiast of Digital DIY then this is your place.
#openwrt #kalilinux #docker #esp8266 #esp32 #linux #proxmox #virtualbox #wifi
Marc on patreon: www.patreon.com/onemarcfifty
My youtube channel: ua-cam.com/users/onemarcfifty
Marc on Twitter: onemarcfifty
Marc on Facebook: onemarcfifty/
Marc on Reddit: www.reddit.com/user/onemarcfifty
Chat with me on Discord: discord.com/invite/DXnfBUG
nano_1y43u3kre5auwthu3ktbw3j4xh6itfbyrqr5wxtm6s4hyrtg3xrpoqf8tt91
How to build a Router with a Raspberry Pi and managed Switch VLANs with OpenWrt
We will use a Raspberry Pi and a managed Switch in order to extend the Pi's Ethernet Port to a LAN and WAN Port using VLANs with OpenWrt. This will effectively turn the Pi into a Router with a WAN port and multiple LAN ports. I will be using a Netgear GS308E Switch (ASIN: B07PDHVZNS), but you could use the following switches as well:
Zyxel GS1200 (recommended): ASIN B0798PKGFQ (8 Port) or B08K2KKK86 (5 Port)
Netgear GS305E: ASIN B07PHNTV45
TP-Link TL-SG108E: ASIN B00JKB63D8, 5 Ports (TL-SG105E): ASIN B00A128S24
0:00 How to add Ethernet to the Pi
1:20 Installing OpenWrt
3:31 Log into OpenWrt/LuCI
4:04 Choosing the Switch
5:05 Configuring the Switch
8:46 Configuring the Pi
10:27 Connection Test
11:02 Configuration Recap
12:07 About Security
13:40 About Performance
15:01 Adding a USB Ethernet Adapter
16:21 Some Finetuning
19:31 About Wi-Fi on the Pi
20:22 Final remarks
UA-cam: ua-cam.com/users/onemarcfifty
Twitter: onemarcfifty
Discord: discord.com/invite/DXnfBUG
Github: github.com/onemarcfifty
Patreon: patreon.com/onemarcfifty
Blog: www.onemarcfifty.com
Zyxel GS1200 (recommended): ASIN B0798PKGFQ (8 Port) or B08K2KKK86 (5 Port)
Netgear GS305E: ASIN B07PHNTV45
TP-Link TL-SG108E: ASIN B00JKB63D8, 5 Ports (TL-SG105E): ASIN B00A128S24
0:00 How to add Ethernet to the Pi
1:20 Installing OpenWrt
3:31 Log into OpenWrt/LuCI
4:04 Choosing the Switch
5:05 Configuring the Switch
8:46 Configuring the Pi
10:27 Connection Test
11:02 Configuration Recap
12:07 About Security
13:40 About Performance
15:01 Adding a USB Ethernet Adapter
16:21 Some Finetuning
19:31 About Wi-Fi on the Pi
20:22 Final remarks
UA-cam: ua-cam.com/users/onemarcfifty
Twitter: onemarcfifty
Discord: discord.com/invite/DXnfBUG
Github: github.com/onemarcfifty
Patreon: patreon.com/onemarcfifty
Blog: www.onemarcfifty.com
Переглядів: 62 055
Відео
How to run the example.com domain on Proxmox
Переглядів 11 тис.Рік тому
Let's create a fully blown example.com domain on Proxmox including Certificates and e-Mail in less than 20 minutes! You can use this domain to test drive software or as a staging environment. The Github Repo: github.com/onemarcfifty/example.com-proxmox The blog article w/r to the certificates: www.onemarcfifty.com/blog/Portainer_TLS/ 0:00 The example.com domain 0:49 The blue print 2:40 Build in...
Authelia on Proxmox - 2FA SSO with Nextcloud, Proxmox, Portainer Gitea OpenID Connect Single Sign On
Переглядів 21 тис.Рік тому
How to Self-host Authelia in a Proxmox Container and use it as an OpenID Connect (OIDC) Identity Provider for 2FA Single sign On (SSO) with Nextcloud, Proxmox, Portainer or Gitea #nextcloud #proxmox #sso #portainer #gitea #authelia #openid #oidc #selfhosted The Github Repo is here: github.com/onemarcfifty/authelia-proxmox-SSO The blog article: www.onemarcfifty.com/blog/Authelia_Proxmox/ 0:00 In...
Secure your Cloud Services with TLS X.509 Client Certificates
Переглядів 13 тис.Рік тому
How to secure Internet Servers with X.509 Client Certificates? How to deploy X.509 Client Certificates ? How does a Certificate Signing Request (CSR) work ? In this hands-on video we will run a little nodejs Server that requests Authentication with an X.509 Client Certificate, we will Sandbox a CSR with XCA and we will have a look at OpenXPKI which is a great Software to automate processes arou...
Server Certificates - Self Signed and LetsEncrypt Certificates for the LAN
Переглядів 36 тис.Рік тому
How to use Certificates in the LAN? What are our options? We can use self-signed certificates, but we can also use public Let's Encrypt Certificates LOCALLY - in the LAN. In this video we will look at the options such as self-signed CA and Certificates, Let's Encrypt Server Certificates and Wildcard Certificates The XCA Tool can be obtained here: hohnstaedt.de/xca/ More Info on my Cheat Sheet R...
Certificates from Scratch - X.509 Certificates explained
Переглядів 93 тис.Рік тому
What are X.509 Certificates? What is a "Certification Authority" or CA? How can we create our own CA? How can we sign our own Server certificates? How does LetsEncrypt work? How do private and public keys work? What is a certificate Chain or a Chain of Trust? The answers are in this video. The XCA Tool can be obtained here: hohnstaedt.de/xca/ More Info on my Cheat Sheet Repo here: github.com/on...
IPv6 with OpenWrt
Переглядів 30 тис.Рік тому
There are at least three ways to use IPv6 ith OpenWrt: Prefix Delegation, NDP Proxy and 6in4 tunnel with Hurricane Electric or the like. In this video we will walk through the configuration for each of them. The IPv6 from Scratch Episodes are here: Episode 1 ua-cam.com/video/oItwDXraK1M/v-deo.html Episode 2 ua-cam.com/video/jlG_nrCOmJc/v-deo.html 0:00 IPv6 with OpenWrt 01:02 Option 1 - Prefix d...
How I upgraded and reverted Proxmox from 6 to 7 to 6 with UEFI boot and GRUB
Переглядів 4,9 тис.Рік тому
I wanted to upgrade my Proxmox VE (www.proxmox.com) Server from version 6 to version 7. But I did not want to do this without a Plan B, a fail back plan. For this I used GRUB and efibootmgr. I converted a small swap partition into a bootable Linux partition and pivoted the Version 6 to Version 7. When I noticed that things did not work as expected, I was able to revert to version 6 in less than...
A nice Ansible GUI with Rundeck and vscode server
Переглядів 17 тис.Рік тому
How to build a NICE Ansible environment? Let's use Ansible with a dynamic inventory, with Rundeck as a GUI (graphical User Interface) and vscode server for file editing directly on the server! I am providing installation scripts for Rundeck with Ansible with vscode server on my Github repository: github.com/onemarcfifty/ansible-rundeck Nana's video about Ansible is here: ua-cam.com/video/1id6ER...
How to make a 4G/LTE Router hotspot with Rooter and a Mikrotik Routerboard
Переглядів 31 тис.Рік тому
Let's build a 4G/LTE hotspot. For this we will use the Mikrotik RBM33G Routerboard, a miniPcie LTE/4G modem and - Rooter. Yes, this is no typo. Rooter is a fork of OpenWrt and specializes on LTE/4G Hardware. UA-cam: ua-cam.com/users/onemarcfifty Twitter: onemarcfifty Discord: discord.com/invite/DXnfBUG Github: github.com/onemarcfifty Patreon: patreon.com/onemarcfifty Blog: www.onema...
IPv6 explained - SLAAC and DHCPv6 (IPv6 from scratch part 2)
Переглядів 41 тис.Рік тому
More basics of IPv6 explained - how does IPv6 Multicast work, More about IPv6 ICMP (ICMPv6), Router Solicitation and Router Advertisements. We'll have a look at SLAAC and DHCPv6. Follow up on my first "IPv6 from Scratch" episode. The IPv6 cheat sheet is here: github.com/onemarcfifty/cheat-sheets/blob/main/networking/ipv6.md You can watch the first episode here: IPv6 from scratch - the very basi...
Zabbix - Monitoring and Alerting with @AwesomeOpenSource
Переглядів 62 тис.Рік тому
Zabbix is a great and Awesome Open Source Monitoring and Alerting Software. This is why Brian from @AwesomeOpenSource and I decided to make two episodes together. In this Episode We will configure Zabbix to Scan our network, dynamically add hosts for monitoring and alerting. The first part can be found here: ua-cam.com/video/ec2G1PeLS5k/v-deo.html All commands that are used in the video as well...
IPv6 from scratch - the very basics of IPv6 explained
Переглядів 170 тис.Рік тому
The basics of IPv6, IPv6 addresses, IPv6 scopes - kind of IPv6 for dummies ;-) I took a looong IPv6 course on Udemy in order to learn the very basics of IPv6 - but - I was struggling with it. Until I feed up my mind and forgot everything I knew about IPv4 - from then on I was able to learn IPv6 from scratch ;-) The IPv6 cheat sheet is here: github.com/onemarcfifty/cheat-sheets/blob/main/network...
How to upgrade OpenWrt?
Переглядів 35 тис.Рік тому
An upgrade of OpenWrt can be done in many ways - Upgrade with LuCi, Upgrade with sysupgrade or Upgrade OpenWrt with the new Attended SysUpgrade functionality asu through the OpenWrt Firmware picker or using the OpenWrt Attended Upgrade Client, acu. We will talk about the OpenWrt Imagebuilder in a following episode. 0:00 why upgrade? - upgrade at a glance 2:33 update vs upgrade 4:16 Why re-image...
Kali Linux Virtual Machine - HyperV vs VirtualBox vs Proxmox - VM Networks
Переглядів 8 тис.Рік тому
Kali Linux Virtual Machine - HyperV vs VirtualBox vs Proxmox - VM Networks
What is Kali? How to “install” Kali Linux from Debian
Переглядів 11 тис.Рік тому
What is Kali? How to “install” Kali Linux from Debian
Network analyzer with ntopng and arp spoofing on a Raspberry Pi
Переглядів 14 тис.2 роки тому
Network analyzer with ntopng and arp spoofing on a Raspberry Pi
How to Create a ProxMox Sandbox Network (Discord Session) #proxmox
Переглядів 10 тис.2 роки тому
How to Create a ProxMox Sandbox Network (Discord Session) #proxmox
DIY MESH WiFi with batman-adv and OpenWrt
Переглядів 51 тис.2 роки тому
DIY MESH WiFi with batman-adv and OpenWrt
DNS Filtering with AdGuard Home or Pi-hole - with or without OpenWrt
Переглядів 70 тис.2 роки тому
DNS Filtering with AdGuard Home or Pi-hole - with or without OpenWrt
How to unbrick a bricked router Belkin RT3200
Переглядів 18 тис.2 роки тому
How to unbrick a bricked router Belkin RT3200
Guest Wi-Fi over Mesh with VLAN tunneling
Переглядів 22 тис.2 роки тому
Guest Wi-Fi over Mesh with VLAN tunneling
Wi-fi 6 with OpenWrt - the Belkin RT 3200
Переглядів 49 тис.2 роки тому
Wi-fi 6 with OpenWrt - the Belkin RT 3200
How to open the Belkin RT3200 or Linksys E8450 case
Переглядів 7 тис.2 роки тому
How to open the Belkin RT3200 or Linksys E8450 case
Except, you didn't choose PKCS#7, you chose PEM File.
Thank you very much Marc! My VLANs are working but I am in trouble getting my access points to work as well. My access points should offer wired and wireless connection to my network. So I need to configure the access point without firewall rules and dhcp or dns and only provide this by setting gateway and dns to the mainrouter? I thank everyone for support!
At 06:59 do you perhaps mean broadcast domain instead of collision domain?
These videos are gold. Extremely high quality and well thought through.
Great video! I have tried making this work, however with a slightly different setup, to no avail. I already have a multi-dhcp server so I should not need to add one here as instructed. I am also not using my main Gateway to create the first GRE tunnel, but two Velop APs instead (one which is wired). But I cannot get any of my AP/WAPs to forward my dhcp server. Nothing gets an address. Also, the br-guest shows "Absent Interface: @trunk.11". Maybe something has changed in OpenWRT since you posted this?
There are several versions of mesh, easymesh, AI mesh, Xiaomi mesh, etc. What version of mesh of openwrt is on the Archer router? actually I have a Xiaomi AX9000 which supports openwrt, i want to use it as an AP to transfer mesh with a TP-Link TL-7TR13090 which uses EasyMesh3.0 but this router does not support openwrt yet. Is it possible to make my Xiaomi router compatible to EasyMesh3.0? or just need to find out the MeshID of my TP-Link router and then put it on the Xiaomi router during configuration?
Just to double check two things at 5:32 when you say that the output is set by default so the router may access all other zones, can you think of a scenario where you wouldn't wat that to happen? Also at 5:40 you mention that everything is kept its in own zone, do you mean that everything its kept in its own network within the zone that the forward policy is applied to? Want to make sure my understanding is correct, thanks again for the wonderful vids!
Awesome tutorial? Can someone share the links of the first 2 videos of this series
bro i will be honest i have seen many many video on creating gui on ec2 machines and everytime i cant get it right but ur video i made kali and gui with icewm uff in just 30 min , u really gained a sub here from me
I have tried several times, and I absolutely cannot get this to work. When I apply the changes in LUCI, I lose comms to the web interface and cannot get it back. Happens every time. There is nothing in the guide about where to plug stuff in or how the VLANs relate to subnets. Assuming we start with VLAN1 on all the managed switch ports, and the Pi listening on 192.168.1.1/24, does that mean that both VLAN1 and VLAN 99 are used with that same subnet? Am I expecting the Pi or managed switch to provide an IP address to the mgmt laptop via DHCP, or should I have a static IP allocated? Can you please clarify??
Hello sir! Wht abt a NFtables guideline vid?? Thank u for sharing such good content. 🎉
Ive been using mptcp router for years now works great
It's awesome to see Golem doing OpenWRT Tutorials! Thanks my Precious!
great content! got a new suscriber! just commenting to contribute to the algortithm engagment thingy hehe
I have two dumb APs with OpenWRT, and a router (without WiFi) that manages the lan, this one does not have OpenWRT, I can implement fast roaming in that scenario 4:27 Tengo dos AP tonto con OpenWRT, y un router(sin WiFi) que administra la lan este no tiene OpenWRT, puedo implementar fast roaming en ese escenario
Brilliant thank you.
I have the following scenario, I have a router that manages the entire lan with Mikrotik's RouterOS, it does not have WiFi (R1) and two access points with Open WRT, they are connected with cable, roaming works, or R1 must also necessarily run OpenWRT
Hey Marc, this assumes the access point is running openwrt as well right? What if I have original tp-link firmware on an EAP245 access point? Would VLAN tagging on the access point be impossible?
Hello @onemarcfifty do you plan any updates on this build?
Hi, I have a TP link Archer with Openwrt 23.05. Also a newbie to Vlans - would appreciate a step by step account of setting up vlans so far I have tried and failed for days
You got it working?
This is the best video so far about certificates. Thank you so much for the marvelous explanation. Nice job!
I didn't understand shit
Great video thanks for sharing.
Nice approach, just for curiosity, wouldn't be good just to setup a python environment for ansible/rundeck user, where the python binary and libraries are isolated for that user? I believe that pyenv can help with that. That would manage the python versions and environment for different users without breaking the system and without the need of root installation. And for binary usage just use the Ansible/Rundeck user.
i have a 3 story house and i added 3 ap in 5ghz mode in every story with ethernet wire and it worked great
Great explanation.
I love your explanation, but you did not show us the details on how to do it on a device (sorry if I look stupid).
"Wow, You made such a great channel! Your content is really informative and even though it's technical, you explain it in a way that's easy to understand and follow. It's been a fantastic resource for me, a curious learner, and I even share your videos with my students! Thanks for creating such valuable content!"
Love the videos. I am configuring vlans now for my CAMs and echo devices.
Seems like there is no pain-free way to upgrade for people with extroot + USB Flash setup.
How can i config dmz in the new firmware openwrt. (2024)
This was great - thanks!
This was an excellent introduction, same with your follow up video. 👍
Finally someone who kind of makes sense. I don't have any certs for networking and your explanations help.
Marc you are an absolute genius! A wonderful instructor and a brilliant technologist, THANKS!
Thank you very much! This will save me so much time! In the past I had a script to install all packages I need but this is so much easier! I just bought a new router (GL-MT6000) running docker on it. Looking forward for the next update!
Thanks Marc - just what I need. I have started a project for home automation etc., but lack of knowledge has been a stumbling block.
Greetings from Venezuela. Excuse my English, I am writing to you from the translator. I have had this same router for 6 months and it is giving me a problem. Internet is down. The modem is still working, that's why I know it's a router problem. I turn it off and after turning it on the power light stays flashing for a long time and it doesn't work. I have to turn it off for like two hours. Then I turn it on and now it works. I have tried resetting it to factory settings to reconfigure it. I carry out all the steps and in the end it returns to the first step of the configuration. At the store where I bought it they tell me that it no longer has a warranty. Do you know how to solve the problem?
As a CS undergraduate, I found this video very interesting and easy to understand, appreciate your work man, you got a sub 👍
Greetings 😊 What is LUCI?
Yep, that's what a 19" rack normally winds up looking like :-)
This is great, but you could've saved the viewer ALOT of time by just saying to get the luci-app-attendedsysupgrade package instead of going through the entire process of everything else, I was looking for a simple answer and got too much tbh. Otherwise though, this was helpful thank you.
du bist ein Chef, danke
Genius Thank you very much!!!
It would be great an explanation with subnetting (delegate IPv6 prefixes option enabled). It is simple when you just pick a /64 and set your hint but when downstream routers comes to play I find really confusing the scenario and the lack of information in OpenWRT sources makes it harder that it should be.
Extremely helpful video series, thank you!
Missing your tutorials and explanations - by far the best on UA-cam. I really hope you start making them again!
Super rrrrrrr rrrrrrr 🍦🍦🍦🍦🍉🍉🍉🍰🍰🥑🥑🍑🍑🍑🍌🍌🍌🍋🍋🍓🍓🍓🥝🥝🥝✌️✌️✌️✌️✌️💯💯💯💯
Excellent, thanks for the info!
I already understood overlay filesystems, but your analogy with the pane of glass was the most succinct and overall best descriptions I've heard.