@will.qiu @bruce I would like to have a way to view traffic statistics on a per-client basis. For example, I would like to know the traffic generated by my smart washing machine which is on the IoT network
1 Like
Is there more information about the IoT network? Is the IoT network only for wireless devices, or can wired devices be forced to use it? I would not mind forcing my wired TV to the IoT network. Does it only operate on the 2.4 GHz band? Is it really secured and segregated from the main network? I intend to put all my IoT devices, like the washing machine and light bulbs, on it. I don't want my PCs and phones on the same network as those devices.
It uses a separate bridge, so it cannot be used wired in the GL implementation. Yes, you can have one per band. If this were VLAN-based, it would be feasible to use it for wired devices and pass it to other APs using a trunk port.
3 Likes
Would this be easy to implement? I wonder what @bruce and @will.qiu have to say about adding wired devices to the IoT network.
With the current firmware, what should the network topology be like with PCs, IoT devices, and phones? Looking for best practices.
Hi
I believe this feature is already on the roadmap, though it may take some time before it becomes available. It may be included in v4.10, but there is no timeline to share at this time.
2 Likes
Hi, excuse me, is there any news about version 4.9 for Flint3e?
The discussions below may answer part of your questions:
At the moment, the GL.iNet UI does not support adding a specific Ethernet port to the IoT network. However, this can be configured through LuCI.
2 Likes
Hi
It is still progressing as planned. We may first release v4.8.8, and then start work on v4.9.x afterward on BE6500.
Thanks God. I want to see which device per flow as well. I need to know which device is talking to what on the Internet.
Any chance you guys could throw in TLD (top level domain) policy routing into the 4.9 firmware? (like forward all *.cn or *.ru domains through a specific VPN, just like a normal domain). It should be such a quick add.
3 Likes
Thanks for the brume2 release.
I'll install it on a test router in a few days and start setting it up.
Thank you will.
Can you share config steps for adding the IoT wifi network to a switch or VLAN?
I have a separate VLAN for several wired devices and haven't been able to figure out how to incorporate the IoT network into it.
Thank you!
1 Like
Are there any plans to implement this with the GL.iNet firmware? Using LuCI isn't ideal for novices.
That's a great idea!
Hi!
Actually I´m testing my MT2500 with 4.9.0 Beta1. I think it works mostly fine, but I´m missing a better integration in typical home networks.
GL-Inet sells the MT2500 and the MT5000 as a security gateway for home and soho. Most home users have small routers which have LAN and WiFi within one IP subnet. The security gateway serves incoming VPN, outgoing VPN, DNS Filter, flowcontrol ... all those services which have been integrated by GL-Inet.
But with only a small home router with WLAN and LAN within one subnet it´s not possible to config the device without using LuCi.
So, what do you think about a third network mode? We have "router" and "bridge". What about a third mode for such small home networks?
The device should work on the WAN - Port (2,5Gbs), and act as te standard gateway for all clients in the (W)LAN. And the ISP router is the standard gateway only for the security gateway. In this usecase we could route the outgoing traffic through VPN clients or directly through the ISP router. Adguard can act as DNS filter and the flow control can work too. Incoming VPN traffic is also no problem.
Actually the MT2500 is only usable for DNS filter and incoming VPN traffic in a small home net. But many customers would like to use all features with a simple config.
What do you think about this third network mode?
The speed is impressive; DNS queries are resolved very quickly. And traffic is correctly routed into the tunnel. If things continue like this, I'll buy an MT5000.
I'd like to be able to add multiple URLs with lists for a selected VPN.
I'd also like to be able to add comments there.
And if possible, use *.
For example:
* yt *.googleusercontent.com
yt*.ggpht.com
Is there a way to add L2TP and IPSec to the main panel so I can choose routing through them?
WG and OpenVPN aren't enough, since at my work station, L2TP and IPSec are used to connect workstations.
That’s not possible, and probably wouldn’t be effective.
VPN cares about routes and ranges. DNS resolution give you IPs. So you would have to have a DNS server on the router that created individual routes on demand for every resolution (potentially), and IPs are shared across many domains potentially, like with a CDN for example, you can have a .ru share ips with a .ch.
Also, web pages load all sorts of stuff from many domains, typically with a lot of TLD diversity.
That’s literally what gl.inet routers do now with policy routing.
1 Like
That may be effective for individual sites to work around things like geo restrictions and age verification, but I doubt it would either be effective or scalable at a TLD scale.