NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
RBK852 behind DDWRT VPN
Hi network gurus. Bit of a confused networking novice here. I've got an R7000 running DDWRT mainly for the policy based routing for specific IPs through a VPN client. I'd like to relieve it of DH...
For a completely different approach have you considered using Pihole as your dns/dhcp server? You can run it in a container on any system or pick up a RaspberryPI Zero and set it up there.
Hmmm...that's an interesting solution. What would be the benefit (appart from add blocking) of using pihole as the dhcp server? I'd assume I'd still have to put the R7000 and the RBK852 into AP/bridge mode and might not be able to get the policy based routing on the R7000 still? I'd forgotten that pihole can also be a dhcp server. I've got a couple of piholes as dns servers (primary and backup) but don't have the dhcp enabled. Thanks for the reply!
sfung83 wrote:
What would be the benefit (appart from add blocking) of using pihole as the dhcp server?
Well, this would be a "growth opportunity" as you learn how to manage DHCP IP reservations on a different system.
There are users who seriously maintain that the Orbi DHCP process is flawed*. Maybe the Pi-hole DHCP process is flawed in different ways? If you have invested much time and effort into the R7000 DHCP setup, I don't see much gain from switching.
* The biggest complaint (which I agree with) is that creating an IP reservation for a device will not cause the device to switch from an existing IP address to the one the user wants it to have. Every time the device goes to renew the lease, the Orbi says, "oh, you are using that IP? Cool. Keep using it." When what it should say is, "oh, no you don't. says here in my tables that you need to use this other IP. Change now!"
(I paraphrase a bit.)
Not a bad argument at all. I'm a bit of an amateur tinkerer and serial hobbyist so I'll add it to the list of things to work out how to do! Also love how you've somehow managed to humanise an Orbi haha
FWIW I run Opnsense using Wiregard VPN via PIA. I use policy based routing for certain systems. I have the Orbi in AP mode which is no more than a dumb wireless switch. DNS request are handled by PiHole. I keep DHCP on Opnsense but could easily service them via PiHole.
Do you use a different subnet for your policy based clients? Or do you route traffic based on clients IP? I do the latter. I do have a subnet setup for guests that come to the house. That is run through a different vlan and that vlan has seperate WIFI APs. I throttle that subnet throughput. I have a rule setup to direct DNS requests on the guest subnet to PiHole on the home network. All works good.
I built a Proxmox server that runs Opnsense in a VM, along with a few Windows 10 and Linux VMs. One of the Linux VMs is running Plex. I passthrough a GPU to Plex for transcoding. All works great.
Thanks for the info! At the moment I'm running the orbi in AP mode and the R7000 is dealing with the VPN. The traffic is routed based on IP. I've not used Opnsense before so I'll have to look into that too
I ran DD-WRT for many years. Went to a MicroTik router then over to Opnsense. Opnsense is very feature rich, has great community support. Runs great in a VM. I also have a Supermicro XEON Atom box loaded with Opnsense for backup. Opnsense is a fork of PFSense.
