I am into security and privacy and I love this video 23mins worth it! More videos similar to these and probably home automation or home servers please! Clear and well explained 😎
Last year, before your video I asked the same question about all my IoT devices. Your videos explain a lot of how to overcome this issue on the home network. Thanks.
Marc your channel is purely amazing. Your explanations are crystal clear even for neophytes like myself while managing not to sacrifice too much in depth technical detail. Excellent video as usual. I am myself definitely reluctant to have my devices dependant on a cloud service, ad have been trying to get home assistant running at home. Cheers!
Also, I forgot to mention: Thank You! So much work and experience in this "review"! I want more! I would also mention a gigabit switch, attach to this router with OpenWrt, and bam, you can connect your cameras, and more APs, PCs, what the heck you want. :) Liked, subscribed, turned on the notifications!
Wonderfully thorough and concise video on a budget/affordable solution, my favorite. I am really looking forward to that mesh video as I have already dipped my toe into OpenWRT when I bought the DIR-2640 earlier this year after your previous videos. Thank you for making this so much easier for the laymen like myself and exploring bank for buck territory.
I was in the network security field; worked for an outfit many years ago. I've always been against cloud control since the early days. I'm a network engineer now, so for me it's first/second-nature. I use locally controlled everything, with knockd to only open ports to specific /32 addresses as long as the knock sequence is complete (which prune every 24 hours). I follow this by a limit for the knock and dummy ports to lock the system (like honeypot). I also have some "cloud", that I've stuck behind another firewall and don't allow network connectivity out of my home network with strict -J DROP. This makes it a nuisance to try and use IoT apps, but that's fine for me.(TUYA has been replaced by tasmota) Home network is further secured from non-established connections to these devices to prevent any scanning or future devices being added to this "MZ" network.
Thank you for such a comprehensive and clear analysis and description of the device. As for your questions, I don't like my routers or firewalls open and accessible from the outside without something like Openvpn. I run openwrt or ddwrt on my wireless devices mostly as dumb access points and a pfsense box as my primary router with various vlans to isolate functions in my network. Great Channel!
Didn't watch this video, but thanks to you i flashed my router with openwrt a week or two ago and solved so much problem i had with original router's firmware. And after that you releasing video about my router's model. Holy cow.
Thank you very much for sharing your experience and expertise on the home networking. I have been a system engineer for 10 years but i always felt away from the custom firmwares like openwrt. With your tutorial videos, a person can understand the logic behind the networking rather than just following your instructions. Thank you again
I am using one of these as an AP. I get peaks of about 400Mbps download over 5GHz 802.11ac, and average between 100 and 300 Mbps, with -40dB RSSI (iperf3). The coverage is good, much improved over my two previous WiFi repeaters (a DLink and a Asus RP-N12), and supports over 16 devices all over my two floors.
Thank you! Your videos are very clear and beautiful. With the help of your video, I easily converted my MI Router 4A Gigabit Edition into an OpenWRT device.
Loved this detailed guide, especially for performance and technical aspects of this video. Hope you do more such videos. I have a TP-Link Archer C20. It's terrible. Just one CPU and connecting 4 - 5 devices increases latency like crazy. This router seems to have a decent cpu that can handle a lot more it seems
Hi Suraj, yes it has more juice than the Archer. However, Iam a bit reluctant to test equipment because vendors tend to issue new versions of the hardware and the tutorials simply stop to work or the characteristics change a lot.
@@OneMarcFifty True but even if OpenWRT is not possible due to version change, the router is still decent and cheap.. Maybe it will support openWRT.. I may buy this.
Hello Marc. I have the hardware-wise similar Xiaomi Redmi AC2100 flashed with OpenWRT for a year now, having the same concerns with you. Nevertheless in my eyes a good choice for it's price, if flashed. I am impressed with your knowledge transfer capabilities, couldn't skip a second of your video. Keep up the good work! We will stay tuned :)
I dont have a Xiaomi router and I wont buy it eityer. Yet I am watching this at 7.30 in the morning hoping to learn something new. Your videos are such informative. Keep up the good work, Marc
I love your posts! Great presentation in even better English, my compliments! As the videos are often on the edge of what I can comprehend, I sometimes end up watching them more than once... I always worry a bit about my privacy and security, so I try to stay away from using "cloud services" from various companies. I must admit that I'm not always successful though. Looking forward to a video about the mesh implementation you mentioned at the end of this video! Greetings from Holland. PS DM1,50 lol.
09:40 only learned of this phoning home via my Pi-Hole. bought a security cam that i setup only to work with my Synology Surveillance Station yet it kept pinging back to the manufacturer every second. camera still worked after i blocked that on the Pi-Hole so that's good at least. but its skewing the blocked stats on the pi-hole, so i setup a no-forward DNS server in my router and setup the cam to use it instead as a DNS and it worked. then i realised simpler solution - setup the cam to point to itself as a DNS server 😁. i bought 2 other cheap cameras that were totally useless blocking traffic on the pi-hole.
Oh - clever giving it the localhost as dns! Yes, I did discover how nasty my Samsung TV and DVD player are with DNS filtering as well - the modern devices are really chatty!
No phone-home here in Eschede (NL) 5x archer-C7 with openwrt, the only problem is the limited 5GHz channels, but now i know which to choose :-) thanks for his channel, verry usefull
I was looking for a router that works well with some open source FW because I don't like calling home or potential backdoors, and I want timely security updates. It so happened that this router was highly recommended on some list (was it even yours). For a small home network it seems to fit the bill perfectly. I got it for less than half the price you quoted in the video, but that must've been a special deal. I think I decided that OpenWRT is the FW I want to got with after watching your video. It was only after that that I started looking at suitable HW. Btw, I believe that the first 'i' in Xiaomi is supposed to be skipped over. Otherwise it sounds good to my ear.
Cooooool! The pronunciation is quite good! There is only 16 MB flash of R4A Gigabit. So better choose Xiaomi or Redmi AC2100 which include the same CPU MTK7621 & much more flash with 128MB.
TY for the excellent content you always provide. Ans.1 Yes use lots of IOT services 15+ since i use a smartphone!!! Can we control our phones phone home and at the same time use all services they provide? Yes i know we can do so... but then..? there is lot of hard work to be done to establish etc for GPS service as maps or fitness tracking. So many to talk about it. Ans.2 Privacy...so far at least 15+ people on the world know exactly whats happening in my house but mostly outside ;-) its fine to me that a Chinese guy know what time i switch on my lamp switch..and another know whats happening outdoors from my camera... but we talk for different people who can have access. Combining all these services under one authority..that makes me terrified and if this authority called Government we are doomed. Lots to talk about it. Ans3. IOT routers already established. Since there is no sniffing or other processes that also would blow CPU usage as some of the internet usage too... i am fine with that! for the same above reasons spoken above. (cheap devices.. i don't believe could be used to monitor peoples privacy that could pass unnoticed. Everything - traffic is encrypted nowadays. The only thing i hope is that these companies offer IOT take good care of protecting our Data first and privacy second.
I know this is a bit late but I am working on a platform that controls devices from the cloud. However, I myself wouldn't want to operate in this fashion. We have a lot of users who wouldn't even understand logging into their router and making any changes. Either they are too nervous or just don't want that complication in their life. Most people are very comfortable using a mobile app that has very simple instructions and alerts. "Your Internet is not currently available, please do X, Y or Z." "There was a few requests for adult content today from this device..." I think you get my point. You, like many of those who watch your wonderful videos are very technical in nature and can grasp the finer points of network security and network configuration. Simplifying it for those who can't seems to be a good trade off for them. How many iPhones or Android phone are roaming around the planet, right?
I think that you are absolutely right. It is always a trade-off between privacy and control over your devices on one side and ease of use or comfort on the other side. I think the key differentiator is whether you trust a provider or not. Or alternatively - if you do understand the implications. Many thanks for your feedback!
Thanks for the good video. I bought a Second hand one for even lower price and flashed openwrt. For whom facing Broken Pipe in idle connections with the used of this router, please disable Software Offloading.
Hey Marc, thanks again for your videos man you are really helping in making everything easier to understand! You mentioned the mesh network with xiaomi 4a router, can you please cover the 802.11s with openwrt?
@OneMarcFifty Thank you very much Marc. I have been actively following your channel and also Im part of your discord channel. This video was extremely useful and I love the way you take time and explain stuff. I have been using 3 of these at home and have set up a WDS and a MESH connection as the 2nd router doesn't have a backup power connection and if there is a power-cut the 3rd and the 1st connect using MESH temporarily. Waiting for your guide on setting up the MESH on this router. Cheers!!
I'm still waiting for you to do an openwrt install on a routerboard RBM11G which has one PCI port, two serial board connections, and one POE lan port. Shell setup of a server to hand out IP addresses and some testing! Love your video's.
In general I don't want my iot devices to phone home. It is certainly a consideration when buying things. I avoid items which require cloud to function, and don't function when isolated. So unfortunately no echo/alexa/google assistants here in my house even though I would appreciate the functionality. For a wifi router I see no use to be able to config it from the internet ofr my personal situation, hence I switched it off (unifi). I do appreciate the feature is available and can be switched on/off as desired.
Hi, Marc! I'm going to put an OpenWrt router after the ISP's fiber router (thanks for your videos, it really helps a lot). Unfortunately, the ISP doesn't allow Bridge mode on their modem router (I think a lot of people have the same restriction from the ISP side). So, the question is what is the best mode for the 2nd OpenWrt router: a) to use a "Router" mode (but to deal with the dual NAT). OR b) to use it in "dumb AP" mode (but as exception to enable/configure firewall on AP). P.S> I saw your previous comments that you're using option "a" in your home network (your home network starts after the ISP's NAT), but could you please share a feedback what the issues you faced with dual NAT? Thank you.
@OneMarcFifty 14:15 Personally I do not use any IoT devices, that I access outside of the home network. I do find that it is a double-edged sword, and there are some things you can do to make it more secure, as I am sure you are aware.
Thanks for the feedback! Double edged sword- that’s exactly how I feel - you get tremendous advantages but you potentially pay a price for the comfort you get - I guess it’s just a fact in life - there is no free lunch ;-)
Yes, I too am concerned about IOT devices, 'smart' TVs that don't get updates and the sort. I don't want a cloud-connected refrigerator, dishwasher, coffee machine, etc.
Think party connection to my router is a hard NO. If they have that, they have the run of my network if they want it. This is why we segment networks and isolate IOT devices.
Marc: What do you think about creating a video where you run x86 OpenWRT as a VM in Proxmox or KVM which itself is running on one of those nice, power-efficient MiniPCs you showed earlier. Proxmox/KVM connects to the WAN or modem and routes the traffic to the rest of the system/nodes
Yeah, i like everything to be local. That is why i like openwrt, tasmota, home assistent, ... Why must there be cloud connection? For my next router, i will probably go for a virtual machine combined with local dedicated (mesh) wifi ... Or like youtuber Novaspirit Tech a raspberry pi. BTW i was just thinking on openwrt mesh when you proposed it yourself. Great minds do think alike :). Please do a video because this solution can be far cheaper (and performant with DPI) than UNIFI ... KUTGV!
use IOT devices, yes 1 camera, I don't like the way it works, and I would like to flash them with an open source firmware but I didn't find one available, 2. Not really a big security concern but yes it is since is cloud connected to somebody server. 3. I like the easy way of controlling it but yes it poses a vulnerability issues.
Hi Mark, just an advice, try drinking something before starting a video, your mouth seems very dry .. perhaps stress... i dunno, still .. your videos are very nice .. keep up the good work.
Can you review cheapest wave 2 router as mi4a giga is wave 1 ? Also difference between wifi 5 w1/w2 and 6 - reallife speedtest and if we should upgrade to wifi 6 for better handling or multiple users.
Need to check - I am not sure if it can do 80+80 or the like (the DIR-2660 can). I’ll update. I wanted to examine further on MIMO, MU and beamforming anyhow ;-)
আপনার অভিজ্ঞতার আলোচনা দারুণ ভালো লাগে। Xiaomi 4A যন্ত্রের সাথে সরবরাহ করা software -এ কি remote webmanagement port সুবিধা কি যোগ করা সম্ভব? আর UPS -র একখানি অভিজ্ঞতা প্রচার করবেন বলেছিলেন ১ম দিককার video গুলোতে, খোঁজ করে পাই নাই। I enjoy your explanations as well as explorations. Is there any way to use the remote webmanagement port feature in default firmware of Xiaomi 4A devices? Also you mentioned in one of your first videos that you will explain your experiences with UPS installed in the network which I am looking for but didn't find it. Please, help
Hi, many thanks for the feedback! Presumably yes - you could possibly use the remote Mgmt port using an App or the like - however, I am not planning on using the device with stock firmware but would rather stick to OpenWrt. W/r to the UPS video - yes, I have never made that one - I'l see if I will do it in 2022 ;-)
@@OneMarcFifty I do not see any feature or port mentioning the remote web management port in the stock administration interface. Can you help me find it? Your explanations are the kind someone should look for, helps a lot
I use lots of IoT devices, and I don't like my IoT devices being on the cloud for reliability and security concerns. I believe router should not be controlled by 3rd parties since it is the backbone of the entire home network. These kind of cloud features should be disabled out of the box by default for non-tech savy users.
Ah - yes, reliability is an aspect which I have not thought about- if the internet is not available then your device will not work;-( many thanks for the feedback- I do agree on the router bit - it might be safe but it just doesn’t feel right to me - I am curious to get maybe some controversial comments on this matter ;-)
As a sysadmin I don't necessarily have a problem with cloud management, like you have with Unifi or Omeda, however I do not have trust in consumer grade cloud management. There is no real accountability with these and they have been numerous times.
Hi, I think you are spot on. Cloud management as such is maybe not a big thing as long as it is accountable and can be audited. In other words, you decide which service provider you use. Difficult in the consumer segment in my oppinion if the devices are sold as device but do include service and nothing on the packet says so. Also difficult if data leaves the jurisdiction you are in. Many thanks for the feedback.
[Call to Action] Yes, I do have concerns, for this reason I reflashed all IOT devices with tasmota and operate all IOT devices in separated vlans with no access to the internet or DNS.
HI MArk!!! I'm glad to wath your videos!!! cna you make a control parental filtering on openwrt. I would like to know the options. Firewall filters or DNS filters could be nice. Thanks!
Hey there! Thanks for the video. It is really helpful and I appreciate the quality of the production. It is a delicacy to enjoy. I am considering getting a router with OpenWRT support. I have a 35/8 VDSL connection so bufferbloat is a great concern of mine. I will use SQM and ad blocking packages with the openwrt. However, I couldnt choose between Archer C7 and Xiaomi 4A. Is there a marginal difference between them to justify the price difference in a tight budget? Thanks a lot.
The Xiaomi has the stronger CPU. I would probably prefer it for that scenario if you can live with the limitations ( number of Ethernet ports, no wall mount etc.)
I use a combination of IOT devices and have the segregated to another router and is entirely separate from the network from the modem. That way I can keep using the iot world.
1. I do run cloud controlled services and devices. 2. I do have security concerns. 3. router is controlled by me, as well as all cloud services. I.E. pfsense, local mqtt broker, motioneye, nextcloud, emby, all behind a reverse proxy to open as few ports as I can to the outside. I also block all "smart" wifi devices from accessing the internet, so there is no way for them to talk to anybody outside the network.
Please visit my channel page: ruclips.net/user/onemarcfifty
Want to talk to me? Join my Discord Server: discord.com/invite/DXnfBUG
I am into security and privacy and I love this video 23mins worth it! More videos similar to these and probably home automation or home servers please! Clear and well explained 😎
Thank you very much!
Really well made and explained video. The quality is far beyond the average youtube channel and you really deserve more views/subscribers. Thanks.
Thank you very much ;-)
Without you I might've never known my router's performance could be that smooth and stable. Thank you very much!
Awesome - many thanks for the feedback !
Very informative and in-depth review with crystal clear explanations. You earned a sub my guy!
Last year, before your video I asked the same question about all my IoT devices. Your videos explain a lot of how to overcome this issue on the home network. Thanks.
Thank you very much.
Marc your channel is purely amazing. Your explanations are crystal clear even for neophytes like myself while managing not to sacrifice too much in depth technical detail.
Excellent video as usual. I am myself definitely reluctant to have my devices dependant on a cloud service, ad have been trying to get home assistant running at home.
Cheers!
Thank you very much:-)
i just second that, your explanations are excelent, i am learning a lot just watching your videos
I just found your channel by accident. You have excellent presentation skills.This is what youtube is/was about... keep up the good work.
Hi, many thanks !
RUclips algorithm recommended your channel and really love the high quality content, got lots to learn. Thank you !
Hi, that's awesome! Welcome ;-)
Also, I forgot to mention: Thank You! So much work and experience in this "review"! I want more!
I would also mention a gigabit switch, attach to this router with OpenWrt, and bam, you can connect your cameras, and more APs, PCs, what the heck you want. :)
Liked, subscribed, turned on the notifications!
Awesome many thanks!
Wonderfully thorough and concise video on a budget/affordable solution, my favorite. I am really looking forward to that mesh video as I have already dipped my toe into OpenWRT when I bought the DIR-2640 earlier this year after your previous videos. Thank you for making this so much easier for the laymen like myself and exploring bank for buck territory.
Thanks for your feedback! Hope you are happy with the D-Link?
Quality, Concise, yet Comprehensive video. I'll give this all my likes if I could, liked and subscribed!
Awesome - thank you so much for liking, subscribing and for the feedback!
22:05 And I agree with you Marc. I'll buy this one, maybe this week to do the same you did here. As always, thanks you for sharing this great insight.
Awesome- many thanks for the feedback- glad you liked it - let us know how it goes ;-)
Your explanation is suberb… the highlighted details, awesome… 👌🏼 (lol watching this 2nd time, recommended video 😂, didn’t notice)
Glad you liked it ;-) Many thanks for the feedback !
I was in the network security field; worked for an outfit many years ago. I've always been against cloud control since the early days. I'm a network engineer now, so for me it's first/second-nature.
I use locally controlled everything, with knockd to only open ports to specific /32 addresses as long as the knock sequence is complete (which prune every 24 hours). I follow this by a limit for the knock and dummy ports to lock the system (like honeypot).
I also have some "cloud", that I've stuck behind another firewall and don't allow network connectivity out of my home network with strict -J DROP. This makes it a nuisance to try and use IoT apps, but that's fine for me.(TUYA has been replaced by tasmota)
Home network is further secured from non-established connections to these devices to prevent any scanning or future devices being added to this "MZ" network.
Many thanks for your feedback!
Thank you for such a comprehensive and clear analysis and description of the device. As for your questions, I don't like my routers or firewalls open and accessible from the outside without something like Openvpn. I run openwrt or ddwrt on my wireless devices mostly as dumb access points and a pfsense box as my primary router with various vlans to isolate functions in my network. Great Channel!
Awesome- many thanks for the feedback!
22:00 "At least to the vast majority of you"
Hahahaha incredible, literally rolling on the floor laughing!
Maybe he was a doner 😉
Good to see you posting vids again, Marc. I bought one of these routers after your vid. Price was about $42 USD
Hi Vince, many thanks ;-)
Didn't watch this video, but thanks to you i flashed my router with openwrt a week or two ago and solved so much problem i had with original router's firmware. And after that you releasing video about my router's model. Holy cow.
Hey Alexey - I am glad that I could help you solve the challenges that you encountered!
Thank you very much for sharing your experience and expertise on the home networking. I have been a system engineer for 10 years but i always felt away from the custom firmwares like openwrt. With your tutorial videos, a person can understand the logic behind the networking rather than just following your instructions. Thank you again
Thank you very much! I am happy if I can shed some light on networking- it’s fun if you get into it - but I felt exactly the same when I started ;-)
This is the best video i have seen for reviewing a router and openwrt. God bless u Sir
A 24 min video for a 25 EUR router. Really worth the money, thank you!
Thanks for the feedback ;-)
I am using one of these as an AP. I get peaks of about 400Mbps download over 5GHz 802.11ac, and average between 100 and 300 Mbps, with -40dB RSSI (iperf3). The coverage is good, much improved over my two previous WiFi repeaters (a DLink and a Asus RP-N12), and supports over 16 devices all over my two floors.
Great feedback, many thanks Miguel!
Thank you! Your videos are very clear and beautiful. With the help of your video, I easily converted my MI Router 4A Gigabit Edition into an OpenWRT device.
That's great to hear! thank you so much for the feedback. Glad it could help!
Loved this detailed guide, especially for performance and technical aspects of this video. Hope you do more such videos. I have a TP-Link Archer C20. It's terrible. Just one CPU and connecting 4 - 5 devices increases latency like crazy. This router seems to have a decent cpu that can handle a lot more it seems
Hi Suraj, yes it has more juice than the Archer. However, Iam a bit reluctant to test equipment because vendors tend to issue new versions of the hardware and the tutorials simply stop to work or the characteristics change a lot.
@@OneMarcFifty True but even if OpenWRT is not possible due to version change, the router is still decent and cheap.. Maybe it will support openWRT.. I may buy this.
Hello Marc. I have the hardware-wise similar Xiaomi Redmi AC2100 flashed with OpenWRT for a year now, having the same concerns with you. Nevertheless in my eyes a good choice for it's price, if flashed. I am impressed with your knowledge transfer capabilities, couldn't skip a second of your video. Keep up the good work! We will stay tuned :)
Awesome, many thanks Marios 😉
I dont have a Xiaomi router and I wont buy it eityer. Yet I am watching this at 7.30 in the morning hoping to learn something new. Your videos are such informative. Keep up the good work, Marc
Many thanks for your feedback ;-)
Good done. T:-) ( Luci is in the release image when the device got enough space or power. Yes for this device for sure)
Thank you!
This is one of the best channels for openwrt and networking in general.
Thank you very much ;-)
I love your posts! Great presentation in even better English, my compliments! As the videos are often on the edge of what I can comprehend, I sometimes end up watching them more than once...
I always worry a bit about my privacy and security, so I try to stay away from using "cloud services" from various companies. I must admit that I'm not always successful though.
Looking forward to a video about the mesh implementation you mentioned at the end of this video! Greetings from Holland. PS DM1,50 lol.
Dank jij wel Jaap 😉
09:40 only learned of this phoning home via my Pi-Hole. bought a security cam that i setup only to work with my Synology Surveillance Station yet it kept pinging back to the manufacturer every second. camera still worked after i blocked that on the Pi-Hole so that's good at least. but its skewing the blocked stats on the pi-hole, so i setup a no-forward DNS server in my router and setup the cam to use it instead as a DNS and it worked. then i realised simpler solution - setup the cam to point to itself as a DNS server 😁. i bought 2 other cheap cameras that were totally useless blocking traffic on the pi-hole.
Oh - clever giving it the localhost as dns! Yes, I did discover how nasty my Samsung TV and DVD player are with DNS filtering as well - the modern devices are really chatty!
I will look forward to the video referring to this router's mesh network, I am grateful for your videos, Thank you!
Hi Emerson, many thanks for the feedback. I have just published it today ;-)
that is the video that I wanted, thanks sir, some cheap, useful and all in one vídeo, it's amazing 😍
Many thanks Luis, glad you like it!
This video has a lot of useful information, many techs facts that Worth finding, it is a pleasant time to hearing that master class.
Hey Mario, many thanks for the gentle feedback !
thx for super review and test,here in EU Croatia on BF costs about 20usd ,seem like good deal now price is about 30usd
Awesome - many thanks for your feedback!
looking forward for that next video, mesh!
It's in the queue - after VLANs for OpenWrt 21 and presumably NoMachine
No phone-home here in Eschede (NL) 5x archer-C7 with openwrt, the only problem is the limited 5GHz channels, but now i know which to choose :-) thanks for his channel, verry usefull
Many thanks for your feedback Robert!
I like your presentation, and even more the way you think 😎I learnt lots. Keep going 👍
Hi Fernando - many thanks!
thx, great video. please do the mesh over openwrt video
Will do 😉
This is fantastic stuff! Keep making this kind of content please!
Many thanks Michael !
Been waiting a long time:-), thanks for the video..
Thanks for waiting and watching ;-)
Liked right after you started that you wouldn't like anyone else controlling your own hardware!!!
I was looking for a router that works well with some open source FW because I don't like calling home or potential backdoors, and I want timely security updates. It so happened that this router was highly recommended on some list (was it even yours). For a small home network it seems to fit the bill perfectly. I got it for less than half the price you quoted in the video, but that must've been a special deal.
I think I decided that OpenWRT is the FW I want to got with after watching your video. It was only after that that I started looking at suitable HW.
Btw, I believe that the first 'i' in Xiaomi is supposed to be skipped over. Otherwise it sounds good to my ear.
Many thanks for sharing;-)
Cooooool! The pronunciation is quite good! There is only 16 MB flash of R4A Gigabit. So better choose Xiaomi or Redmi AC2100 which include the same CPU MTK7621 & much more flash with 128MB.
Xie xie Vincent ;-) I'll have a look at those !
Hey, welcome back! Long time no see :)
Many thanks! And thanks for having waited so long ;-)
Thanks I learned a lot from this video! It's packed with information, very useful.
Thank you Marc - many thanks for your feedback ;-)
Nice video! I was stuggling with an asus openwrt and high cpu usage and gonna test the hw offload tip you gave. Thanks!!
Great - let us know how it goes ;-)
What an incredible video. Thanks for your hard work
TY for the excellent content you always provide.
Ans.1 Yes use lots of IOT services 15+ since i use a smartphone!!! Can we control our phones phone home and at the same time use all services they provide? Yes i know we can do so... but then..? there is lot of hard work to be done to establish etc for GPS service as maps or fitness tracking. So many to talk about it.
Ans.2 Privacy...so far at least 15+ people on the world know exactly whats happening in my house but mostly outside ;-) its fine to me that a Chinese guy know what time i switch on my lamp switch..and another know whats happening outdoors from my camera... but we talk for different people who can have access. Combining all these services under one authority..that makes me terrified and if this authority called Government we are doomed. Lots to talk about it.
Ans3. IOT routers already established. Since there is no sniffing or other processes that also would blow CPU usage as some of the internet usage too... i am fine with that! for the same above reasons spoken above. (cheap devices.. i don't believe could be used to monitor peoples privacy that could pass unnoticed.
Everything - traffic is encrypted nowadays. The only thing i hope is that these companies offer IOT take good care of protecting our Data first and privacy second.
Love all your videos
I don't usually write comments, but I just wanted to tell you how great and educational your videos are, hope we see more DIY network ideas 💡.
Hi Soran, that's very kind of you - thank you very much!
I know this is a bit late but I am working on a platform that controls devices from the cloud. However, I myself wouldn't want to operate in this fashion. We have a lot of users who wouldn't even understand logging into their router and making any changes. Either they are too nervous or just don't want that complication in their life. Most people are very comfortable using a mobile app that has very simple instructions and alerts. "Your Internet is not currently available, please do X, Y or Z." "There was a few requests for adult content today from this device..." I think you get my point. You, like many of those who watch your wonderful videos are very technical in nature and can grasp the finer points of network security and network configuration. Simplifying it for those who can't seems to be a good trade off for them. How many iPhones or Android phone are roaming around the planet, right?
I think that you are absolutely right. It is always a trade-off between privacy and control over your devices on one side and ease of use or comfort on the other side. I think the key differentiator is whether you trust a provider or not. Or alternatively - if you do understand the implications. Many thanks for your feedback!
thanks Marc, simple and good explanation as always👍
Thank you!
After a long time ... Great.
Yeah - I have been very busy… glad you like it!
what a comprehensive take down!!
Many thanks - I am happy that you like it ;-)
Thanks for the good video. I bought a Second hand one for even lower price and flashed openwrt.
For whom facing Broken Pipe in idle connections with the used of this router, please disable Software Offloading.
Thanks for sharing !
Hey Marc, thanks again for your videos man you are really helping in making everything easier to understand!
You mentioned the mesh network with xiaomi 4a router, can you please cover the 802.11s with openwrt?
That’s the plan ;-)
Well explained , i really would like to have an easy explanation about the protection efficacity of routers , thank you
Many thanks Likaa - by protection efficacity you mean if it is actually possible to break into a device from the outside?
thanks for your hard work it's clearly that xiaomi collect data 👍👍
Oh yes - and they do tell you so. So from that perspective - they don't do anything wrong ;-)
Great content, thank you once again!
You're more than welcome. Thanks for watching and for the feedback.
Hey little tip: reduce the light shone on the greenscreen to minimize the amount of green light reflecting on the back of your head :)
Great advice- many thanks - I’ll give it a shot in the next video!
Really like your explanation 👍
Thank you Dhana!
I Had issues with my router r4ac crashed at least 2-3 times daily. After installing openWRT works perfectly
Awesome, thanks for sharing!
You pronounced Xiaomi better than 99% of the RUclipsrs out there 👍🏻
Thank you ;-)
Great work!
Thank you very much.
@OneMarcFifty
Thank you very much Marc. I have been actively following your channel and also Im part of your discord channel. This video was extremely useful and I love the way you take time and explain stuff. I have been using 3 of these at home and have set up a WDS and a MESH connection as the 2nd router doesn't have a backup power connection and if there is a power-cut the 3rd and the 1st connect using MESH temporarily. Waiting for your guide on setting up the MESH on this router. Cheers!!
Many thanks for your feedback!!
I'm still waiting for you to do an openwrt install on a routerboard RBM11G which has one PCI port, two serial board connections, and one POE lan port. Shell setup of a server to hand out IP addresses and some testing! Love your video's.
The router is sleeping in a carton box together with a banana pi r64 and an aPU4d board - waiting for me to take it out and make that video ;-(
Really interesting video..Thanks..
Hi Khalid, many thanks !
You’re the man, Marc!
Thanks mate!
In general I don't want my iot devices to phone home. It is certainly a consideration when buying things. I avoid items which require cloud to function, and don't function when isolated.
So unfortunately no echo/alexa/google assistants here in my house even though I would appreciate the functionality.
For a wifi router I see no use to be able to config it from the internet ofr my personal situation, hence I switched it off (unifi). I do appreciate the feature is available and can be switched on/off as desired.
Great feedback, many thanks Marcel. I agree, if you can decide to switch it on or off that’s the best situation!
Such a great content 😊.
Thank you very much;-)
Great video thanks for sharing.
Yes, the One is back! :-)
I told you guys I’ll be back 😂
Hi, Marc! I'm going to put an OpenWrt router after the ISP's fiber router (thanks for your videos, it really helps a lot). Unfortunately, the ISP doesn't allow Bridge mode on their modem router (I think a lot of people have the same restriction from the ISP side). So, the question is what is the best mode for the 2nd OpenWrt router:
a) to use a "Router" mode (but to deal with the dual NAT).
OR
b) to use it in "dumb AP" mode (but as exception to enable/configure firewall on AP).
P.S> I saw your previous comments that you're using option "a" in your home network (your home network starts after the ISP's NAT), but could you please share a feedback what the issues you faced with dual NAT? Thank you.
Actually I don’t have any issues with double NAT - I even do IGMP proxying on the second (OpenWrt) router in order to stream iptv
@OneMarcFifty 14:15 Personally I do not use any IoT devices, that I access outside of the home network. I do find that it is a double-edged sword, and there are some things you can do to make it more secure, as I am sure you are aware.
Thanks for the feedback! Double edged sword- that’s exactly how I feel - you get tremendous advantages but you potentially pay a price for the comfort you get - I guess it’s just a fact in life - there is no free lunch ;-)
Yes, I too am concerned about IOT devices, 'smart' TVs that don't get updates and the sort. I don't want a cloud-connected refrigerator, dishwasher, coffee machine, etc.
MAny thanks for your feedback !
Thanks for your video. No, I do not use any cloud services!
Hi, many thanks for the feedback ;-)
thank you
Hi Abdull, you're welcome!
Think party connection to my router is a hard NO. If they have that, they have the run of my network if they want it. This is why we segment networks and isolate IOT devices.
Hi Erica, many thanks for your feedback !
Marc: What do you think about creating a video where you run x86 OpenWRT as a VM in Proxmox or KVM which itself is running on one of those nice, power-efficient MiniPCs you showed earlier. Proxmox/KVM connects to the WAN or modem and routes the traffic to the rest of the system/nodes
I kind of did that already in the MPTCP lab videos - the edge router is an OpenWrt VM ;-)
Yeah, i like everything to be local. That is why i like openwrt, tasmota, home assistent, ... Why must there be cloud connection? For my next router, i will probably go for a virtual machine combined with local dedicated (mesh) wifi ... Or like youtuber Novaspirit Tech a raspberry pi. BTW i was just thinking on openwrt mesh when you proposed it yourself. Great minds do think alike :). Please do a video because this solution can be far cheaper (and performant with DPI) than UNIFI ... KUTGV!
Many thanks for your feedback! I have been so curious to try out mesh ever since I started this channel - I think I need to give it a go very soon ;-)
use IOT devices, yes 1 camera, I don't like the way it works, and I would like to flash them with an open source firmware but I didn't find one available, 2. Not really a big security concern but yes it is since is cloud connected to somebody server. 3. I like the easy way of controlling it but yes it poses a vulnerability issues.
Many thanks for your feedback!
Hi Mark, just an advice, try drinking something before starting a video, your mouth seems very dry .. perhaps stress... i dunno, still .. your videos are very nice .. keep up the good work.
Hi David - if I remember well I had done 5 or 6 takes in a row that day - it's true that after 2 hours of talking things are not the same any more ;-)
You should do a video on icmp and dns tunneling
You mean IGMP ?
Can you review cheapest wave 2 router as mi4a giga is wave 1 ? Also difference between wifi 5 w1/w2 and 6 - reallife speedtest and if we should upgrade to wifi 6 for better handling or multiple users.
Need to check - I am not sure if it can do 80+80 or the like (the DIR-2660 can). I’ll update. I wanted to examine further on MIMO, MU and beamforming anyhow ;-)
আপনার অভিজ্ঞতার আলোচনা দারুণ ভালো লাগে।
Xiaomi 4A যন্ত্রের সাথে সরবরাহ করা software -এ কি remote webmanagement port সুবিধা কি যোগ করা সম্ভব? আর UPS -র একখানি অভিজ্ঞতা প্রচার করবেন বলেছিলেন ১ম দিককার video গুলোতে, খোঁজ করে পাই নাই।
I enjoy your explanations as well as explorations.
Is there any way to use the remote webmanagement port feature in default firmware of Xiaomi 4A devices?
Also you mentioned in one of your first videos that you will explain your experiences with UPS installed in the network which I am looking for but didn't find it. Please, help
Hi, many thanks for the feedback! Presumably yes - you could possibly use the remote Mgmt port using an App or the like - however, I am not planning on using the device with stock firmware but would rather stick to OpenWrt. W/r to the UPS video - yes, I have never made that one - I'l see if I will do it in 2022 ;-)
@@OneMarcFifty I do not see any feature or port mentioning the remote web management port in the stock administration interface.
Can you help me find it?
Your explanations are the kind someone should look for, helps a lot
I use lots of IoT devices, and I don't like my IoT devices being on the cloud for reliability and security concerns.
I believe router should not be controlled by 3rd parties since it is the backbone of the entire home network. These kind of cloud features should be disabled out of the box by default for non-tech savy users.
Ah - yes, reliability is an aspect which I have not thought about- if the internet is not available then your device will not work;-( many thanks for the feedback- I do agree on the router bit - it might be safe but it just doesn’t feel right to me - I am curious to get maybe some controversial comments on this matter ;-)
we missed you.
I told you I’ll be back ;-) ;-)
@@OneMarcFifty U are amazing in presentation.
Please create a step by step guide for Xiaomi AX9000(those with 4LAN and 1 WAN) to change to openwrt firmware.
I might have a look into that - thanks for the suggestion
As a sysadmin I don't necessarily have a problem with cloud management, like you have with Unifi or Omeda, however I do not have trust in consumer grade cloud management.
There is no real accountability with these and they have been numerous times.
Hi, I think you are spot on. Cloud management as such is maybe not a big thing as long as it is accountable and can be audited. In other words, you decide which service provider you use. Difficult in the consumer segment in my oppinion if the devices are sold as device but do include service and nothing on the packet says so. Also difficult if data leaves the jurisdiction you are in. Many thanks for the feedback.
[Call to Action] Yes, I do have concerns, for this reason I reflashed all IOT devices with tasmota and operate all IOT devices in separated vlans with no access to the internet or DNS.
Sounds like my network ;-)
HI MArk!!! I'm glad to wath your videos!!! cna you make a control parental filtering on openwrt. I would like to know the options. Firewall filters or DNS filters could be nice. Thanks!
Hi Sid, many thanks for the feedback. I have taken note of your suggestions.
Hey Marc nice content as always. i have few of these devices flashed with WRT. The one currently i use is XIaomi R3p. Could you make a test with this?
I’ll give it a thought 😉
Hey there! Thanks for the video. It is really helpful and I appreciate the quality of the production. It is a delicacy to enjoy.
I am considering getting a router with OpenWRT support. I have a 35/8 VDSL connection so bufferbloat is a great concern of mine. I will use SQM and ad blocking packages with the openwrt. However, I couldnt choose between Archer C7 and Xiaomi 4A. Is there a marginal difference between them to justify the price difference in a tight budget? Thanks a lot.
The Xiaomi has the stronger CPU. I would probably prefer it for that scenario if you can live with the limitations ( number of Ethernet ports, no wall mount etc.)
@@OneMarcFifty Many thanks.
I actually have the same router nice!
Great - thanks for the feedback ;-)
I use a combination of IOT devices and have the segregated to another router and is entirely separate from the network from the modem. That way I can keep using the iot world.
Many thanks for sharing!
May I ask which version of OpenWRT are you running on your Xiaomi Router 4A GB edition? Thanks!
Hi, I had been using a snapshot Version of 21 (i.e. the latest snapshot that was available at the time of making the video).
@@OneMarcFifty thanks 🙏🏻
great content
Thank you very much!
13:33 Re-Mark-s haha 🤣🤣
Yay 😉
1. I do run cloud controlled services and devices. 2. I do have security concerns. 3. router is controlled by me, as well as all cloud services. I.E. pfsense, local mqtt broker, motioneye, nextcloud, emby, all behind a reverse proxy to open as few ports as I can to the outside. I also block all "smart" wifi devices from accessing the internet, so there is no way for them to talk to anybody outside the network.
Awesome feedback- many thanks for sharing!