- 75
- 3 449 059
OneMarcFifty
Germany
Registrace 4. 02. 2020
THE PLACE FOR DIGITAL DIY
if you are an enthusiast of Digital DIY then this is your place.
#openwrt #kalilinux #docker #esp8266 #esp32 #linux #proxmox #virtualbox #wifi
Marc on patreon: www.patreon.com/onemarcfifty
My youtube channel: czcams.com/users/onemarcfifty
Marc on Twitter: onemarcfifty
Marc on Facebook: onemarcfifty/
Marc on Reddit: www.reddit.com/user/onemarcfifty
Chat with me on Discord: discord.com/invite/DXnfBUG
nano_1y43u3kre5auwthu3ktbw3j4xh6itfbyrqr5wxtm6s4hyrtg3xrpoqf8tt91
if you are an enthusiast of Digital DIY then this is your place.
#openwrt #kalilinux #docker #esp8266 #esp32 #linux #proxmox #virtualbox #wifi
Marc on patreon: www.patreon.com/onemarcfifty
My youtube channel: czcams.com/users/onemarcfifty
Marc on Twitter: onemarcfifty
Marc on Facebook: onemarcfifty/
Marc on Reddit: www.reddit.com/user/onemarcfifty
Chat with me on Discord: discord.com/invite/DXnfBUG
nano_1y43u3kre5auwthu3ktbw3j4xh6itfbyrqr5wxtm6s4hyrtg3xrpoqf8tt91
How to build a Router with a Raspberry Pi and managed Switch VLANs with OpenWrt
We will use a Raspberry Pi and a managed Switch in order to extend the Pi's Ethernet Port to a LAN and WAN Port using VLANs with OpenWrt. This will effectively turn the Pi into a Router with a WAN port and multiple LAN ports. I will be using a Netgear GS308E Switch (ASIN: B07PDHVZNS), but you could use the following switches as well:
Zyxel GS1200 (recommended): ASIN B0798PKGFQ (8 Port) or B08K2KKK86 (5 Port)
Netgear GS305E: ASIN B07PHNTV45
TP-Link TL-SG108E: ASIN B00JKB63D8, 5 Ports (TL-SG105E): ASIN B00A128S24
0:00 How to add Ethernet to the Pi
1:20 Installing OpenWrt
3:31 Log into OpenWrt/LuCI
4:04 Choosing the Switch
5:05 Configuring the Switch
8:46 Configuring the Pi
10:27 Connection Test
11:02 Configuration Recap
12:07 About Security
13:40 About Performance
15:01 Adding a USB Ethernet Adapter
16:21 Some Finetuning
19:31 About Wi-Fi on the Pi
20:22 Final remarks
CZcams: czcams.com/users/onemarcfifty
Twitter: onemarcfifty
Discord: discord.com/invite/DXnfBUG
Github: github.com/onemarcfifty
Patreon: patreon.com/onemarcfifty
Blog: www.onemarcfifty.com
Zyxel GS1200 (recommended): ASIN B0798PKGFQ (8 Port) or B08K2KKK86 (5 Port)
Netgear GS305E: ASIN B07PHNTV45
TP-Link TL-SG108E: ASIN B00JKB63D8, 5 Ports (TL-SG105E): ASIN B00A128S24
0:00 How to add Ethernet to the Pi
1:20 Installing OpenWrt
3:31 Log into OpenWrt/LuCI
4:04 Choosing the Switch
5:05 Configuring the Switch
8:46 Configuring the Pi
10:27 Connection Test
11:02 Configuration Recap
12:07 About Security
13:40 About Performance
15:01 Adding a USB Ethernet Adapter
16:21 Some Finetuning
19:31 About Wi-Fi on the Pi
20:22 Final remarks
CZcams: czcams.com/users/onemarcfifty
Twitter: onemarcfifty
Discord: discord.com/invite/DXnfBUG
Github: github.com/onemarcfifty
Patreon: patreon.com/onemarcfifty
Blog: www.onemarcfifty.com
zhlédnutí: 58 714
Video
How to run the example.com domain on Proxmox
zhlédnutí 11KPřed rokem
Let's create a fully blown example.com domain on Proxmox including Certificates and e-Mail in less than 20 minutes! You can use this domain to test drive software or as a staging environment. The Github Repo: github.com/onemarcfifty/example.com-proxmox The blog article w/r to the certificates: www.onemarcfifty.com/blog/Portainer_TLS/ 0:00 The example.com domain 0:49 The blue print 2:40 Build in...
Authelia on Proxmox - 2FA SSO with Nextcloud, Proxmox, Portainer Gitea OpenID Connect Single Sign On
zhlédnutí 21KPřed rokem
How to Self-host Authelia in a Proxmox Container and use it as an OpenID Connect (OIDC) Identity Provider for 2FA Single sign On (SSO) with Nextcloud, Proxmox, Portainer or Gitea #nextcloud #proxmox #sso #portainer #gitea #authelia #openid #oidc #selfhosted The Github Repo is here: github.com/onemarcfifty/authelia-proxmox-SSO The blog article: www.onemarcfifty.com/blog/Authelia_Proxmox/ 0:00 In...
Secure your Cloud Services with TLS X.509 Client Certificates
zhlédnutí 12KPřed rokem
How to secure Internet Servers with X.509 Client Certificates? How to deploy X.509 Client Certificates ? How does a Certificate Signing Request (CSR) work ? In this hands-on video we will run a little nodejs Server that requests Authentication with an X.509 Client Certificate, we will Sandbox a CSR with XCA and we will have a look at OpenXPKI which is a great Software to automate processes arou...
Server Certificates - Self Signed and LetsEncrypt Certificates for the LAN
zhlédnutí 34KPřed rokem
How to use Certificates in the LAN? What are our options? We can use self-signed certificates, but we can also use public Let's Encrypt Certificates LOCALLY - in the LAN. In this video we will look at the options such as self-signed CA and Certificates, Let's Encrypt Server Certificates and Wildcard Certificates The XCA Tool can be obtained here: hohnstaedt.de/xca/ More Info on my Cheat Sheet R...
Certificates from Scratch - X.509 Certificates explained
zhlédnutí 86KPřed rokem
What are X.509 Certificates? What is a "Certification Authority" or CA? How can we create our own CA? How can we sign our own Server certificates? How does LetsEncrypt work? How do private and public keys work? What is a certificate Chain or a Chain of Trust? The answers are in this video. The XCA Tool can be obtained here: hohnstaedt.de/xca/ More Info on my Cheat Sheet Repo here: github.com/on...
IPv6 with OpenWrt
zhlédnutí 28KPřed rokem
There are at least three ways to use IPv6 ith OpenWrt: Prefix Delegation, NDP Proxy and 6in4 tunnel with Hurricane Electric or the like. In this video we will walk through the configuration for each of them. The IPv6 from Scratch Episodes are here: Episode 1 czcams.com/video/oItwDXraK1M/video.html Episode 2 czcams.com/video/jlG_nrCOmJc/video.html 0:00 IPv6 with OpenWrt 01:02 Option 1 - Prefix d...
How I upgraded and reverted Proxmox from 6 to 7 to 6 with UEFI boot and GRUB
zhlédnutí 4,8KPřed rokem
I wanted to upgrade my Proxmox VE (www.proxmox.com) Server from version 6 to version 7. But I did not want to do this without a Plan B, a fail back plan. For this I used GRUB and efibootmgr. I converted a small swap partition into a bootable Linux partition and pivoted the Version 6 to Version 7. When I noticed that things did not work as expected, I was able to revert to version 6 in less than...
A nice Ansible GUI with Rundeck and vscode server
zhlédnutí 17KPřed rokem
How to build a NICE Ansible environment? Let's use Ansible with a dynamic inventory, with Rundeck as a GUI (graphical User Interface) and vscode server for file editing directly on the server! I am providing installation scripts for Rundeck with Ansible with vscode server on my Github repository: github.com/onemarcfifty/ansible-rundeck Nana's video about Ansible is here: czcams.com/video/1id6ER...
How to make a 4G/LTE Router hotspot with Rooter and a Mikrotik Routerboard
zhlédnutí 30KPřed rokem
Let's build a 4G/LTE hotspot. For this we will use the Mikrotik RBM33G Routerboard, a miniPcie LTE/4G modem and - Rooter. Yes, this is no typo. Rooter is a fork of OpenWrt and specializes on LTE/4G Hardware. CZcams: czcams.com/users/onemarcfifty Twitter: onemarcfifty Discord: discord.com/invite/DXnfBUG Github: github.com/onemarcfifty Patreon: patreon.com/onemarcfifty Blog: www.onema...
IPv6 explained - SLAAC and DHCPv6 (IPv6 from scratch part 2)
zhlédnutí 39KPřed rokem
More basics of IPv6 explained - how does IPv6 Multicast work, More about IPv6 ICMP (ICMPv6), Router Solicitation and Router Advertisements. We'll have a look at SLAAC and DHCPv6. Follow up on my first "IPv6 from Scratch" episode. The IPv6 cheat sheet is here: github.com/onemarcfifty/cheat-sheets/blob/main/networking/ipv6.md You can watch the first episode here: IPv6 from scratch - the very basi...
Zabbix - Monitoring and Alerting with @AwesomeOpenSource
zhlédnutí 59KPřed rokem
Zabbix is a great and Awesome Open Source Monitoring and Alerting Software. This is why Brian from @AwesomeOpenSource and I decided to make two episodes together. In this Episode We will configure Zabbix to Scan our network, dynamically add hosts for monitoring and alerting. The first part can be found here: czcams.com/video/ec2G1PeLS5k/video.html All commands that are used in the video as well...
IPv6 from scratch - the very basics of IPv6 explained
zhlédnutí 163KPřed rokem
The basics of IPv6, IPv6 addresses, IPv6 scopes - kind of IPv6 for dummies ;-) I took a looong IPv6 course on Udemy in order to learn the very basics of IPv6 - but - I was struggling with it. Until I feed up my mind and forgot everything I knew about IPv4 - from then on I was able to learn IPv6 from scratch ;-) The IPv6 cheat sheet is here: github.com/onemarcfifty/cheat-sheets/blob/main/network...
How to upgrade OpenWrt?
zhlédnutí 34KPřed rokem
An upgrade of OpenWrt can be done in many ways - Upgrade with LuCi, Upgrade with sysupgrade or Upgrade OpenWrt with the new Attended SysUpgrade functionality asu through the OpenWrt Firmware picker or using the OpenWrt Attended Upgrade Client, acu. We will talk about the OpenWrt Imagebuilder in a following episode. 0:00 why upgrade? - upgrade at a glance 2:33 update vs upgrade 4:16 Why re-image...
Kali Linux Virtual Machine - HyperV vs VirtualBox vs Proxmox - VM Networks
zhlédnutí 8KPřed rokem
Kali Linux Virtual Machine - HyperV vs VirtualBox vs Proxmox - VM Networks
What is Kali? How to “install” Kali Linux from Debian
zhlédnutí 11KPřed rokem
What is Kali? How to “install” Kali Linux from Debian
Network analyzer with ntopng and arp spoofing on a Raspberry Pi
zhlédnutí 14KPřed rokem
Network analyzer with ntopng and arp spoofing on a Raspberry Pi
How to Create a ProxMox Sandbox Network (Discord Session) #proxmox
zhlédnutí 9KPřed 2 lety
How to Create a ProxMox Sandbox Network (Discord Session) #proxmox
DIY MESH WiFi with batman-adv and OpenWrt
zhlédnutí 49KPřed 2 lety
DIY MESH WiFi with batman-adv and OpenWrt
DNS Filtering with AdGuard Home or Pi-hole - with or without OpenWrt
zhlédnutí 68KPřed 2 lety
DNS Filtering with AdGuard Home or Pi-hole - with or without OpenWrt
How to unbrick a bricked router Belkin RT3200
zhlédnutí 17KPřed 2 lety
How to unbrick a bricked router Belkin RT3200
Guest Wi-Fi over Mesh with VLAN tunneling
zhlédnutí 21KPřed 2 lety
Guest Wi-Fi over Mesh with VLAN tunneling
Wi-fi 6 with OpenWrt - the Belkin RT 3200
zhlédnutí 48KPřed 2 lety
Wi-fi 6 with OpenWrt - the Belkin RT 3200
How to open the Belkin RT3200 or Linksys E8450 case
zhlédnutí 7KPřed 2 lety
How to open the Belkin RT3200 or Linksys E8450 case
Hi Marc, I am wondering if Fast Roaming is much faster than Mesh? As you said in the Fast Roaming video all access points are connected through Lan cable?
Thank you so much for the script, this is exactly what I've been looking for. One question: I don't know what to put when asked about host volume and docker volume. I've put /home/admin for host and / for container, which gave errors. The image was already built so now I imagined I'll just use docker run on it?
This is awesome 😎 thank you for making this
Awesome!! Thanks 🙏
but irrespective your experience and knowledge is really at the edge and i can say if you are not an inventer then you are second in line nothing less. your broad experience in fequency, routerboards, deep knoweldge of openwrt aqnd networking. thank and know that i appreciate the info you provide please don't stop
Beginner to openwrt. I followed and probably made some mistakes. I assigned static IPs to 2 routers to act as access points that point back to my xfinity gateway. Now when I can't access either router via its static IP if i plug directly into it. What am I doing wrong/did I do wrong?
Or go down the Kubernetes rabbit hole 🐇🕳️🥰
Brillant!
Thank you very much. Your class was incredible. Congratulations.
wow, pure gold this video, thank you so much!
Excellent master class on certificates! Greetings from Guatemala
I hope this message finds you well! I stumbled upon your channel recently and I have to say, your videos are truly informative and insightful. Your dedication to sharing knowledge and creating such valuable content is evident in every video. I noticed it's been a while since your last upload, and I just wanted to drop by and express how much I've enjoyed your content. Your videos have made a real difference for me, and I'm sure for many others as well. Life can get busy, and I completely understand if you've had other priorities recently. But I just wanted to send some positive energy your way and let you know that your work is appreciated and missed. Your unique perspective and expertise have been incredibly helpful, and I genuinely hope to see more of your wonderful videos in the future. Take care, and looking forward to whatever you have in store next!
Greetings! I have a manager of the same model. but not a single lighted bulb is entered into its settings, and it also does not connect to the Internet. i opened a way to reset it manually because the red button won't let.
You probably just need to teach the basics of networking 7:20
I use Google a lot on my cell phone. Should I have a antivirus software?
I have a modem on my 2nd floor and it's wire into the was through a coax cable, what do I need to do to get good wifi throughout the house? We have the highest speed internet, but its still bad. I have to use my wifi extender on the 3rd floor to wire in my PC because there is no coax port on the 3rd floor. Which after watching this video.. the wifi extender was a bad idea.
Can you cover asus tuf 4200 please
I agree with@BrianThomas - never seen anything like this before - well done sir. I wonder if you would be able to cover the X.509 certification in terms of STM32 Mbed RTOS terms of usage. I.e., would the xca tool be able to support the lwIP embedded server httpd deamon on STM32 processors. Also how can the x.509 certification be implemented on production runs of hundreds or thousands of boxes. Would every box require a seperate certificate etc. in case the vendor does not use a different private key for each product sold would the public key holders be able to hack other customers products. This is a very unclear area of discussion regarding this type of certification. Please give us your thoughts on this topic sir. Thanks
Wonderfully clearly explained. I love your deep voice and relaxed presentation. Looking forward to more videos from you. Thank you very much!
Great video! I think maybe the audio cut out at 17:51 and comes back at 18:04? Or maybe it was my BT audio driver. I can't seem to confirm this afternoon. Loved the content either way!
@OneMarcFifty Have you tried this stick on design in a way so the active antenna and the reflector / leading elements align? It seems odd to me that the elements are not in the same plane as the boom.
does this work in any vpn protocol by just simply installing this script? sorry im newbie
If I already have an nginx reverse proxy in my network, do I want to use that one instead or stick to the nginx server in the container?
Nice feature AddOn for a guest network: establish a wireguard client to a VPN service like azire, mullvad etc, and route the guest traffic over the VPN service. this must be done failsafe, so if VPN service is down any reason, guest network does not have WAN access. and of course, no access to other zones or router services.
That's awesome!
just pulled out an old router and follow your instructions, If the device has 2 cpu(eth0, eth1).... Should I tagged both or just 1? Thank you Marc for your tremendous help
These tutorials are some of the best that I've found. Keep it up 🙂
Thank you from Bangladesh
Thank you
hi, I wanted to configure etherwake-nfqueue on a router with openwrt 23, but I was faced with the fact that I absolutely don’t understand how to add nftables rules. It’s also not clear how to enable a firewall for your home network.
Good Video! Thanks. 802.11r will work with foreign DHCP/firewall ? (i use pfSense as main router/fw with several cable connected "DUMB-AP" on openwrt)
just an update on the serial recovery process, we now have a tool called "MTK_UARTBOOT" that makes the serial recovery process way easier, it's since been added to the OpenWRT RT3200 ToH page as the main recovery method
Hallo, gibt es eine Lösung um eine "Intel Wi-Fi 6 AX200" Wlan Karte auf einem x86 System zu aktivieren? (atueller Snapshot und im Ordner Firmware liegt der ......77.ucode) Kernel-Treiber sind geladen und der "iwlwifi-AX200" auch. Es tut sich trotzdem nichts. Der "Empfang" geht, es werden Wlan angezeigt, aber es kommt keine Verbindung zustande. Ich folgere das die Karte nicht sendet. Danke und Grüße
Where's the 2nd part?
Could you please discuss unbound with adguard on openwrt
i want to open the iot network for mqtt at port 1883 for the lan network, so that my iot devices can send packages to a mqtt broker which is in lan. I dont know how to handle it.
You solved my problem of my breadboard too narrow for my new ESP32s. Thank you.
i want to open the iot network for mqtt at port 1883 for the lan network, so that my iot devices can send packages to a mqtt broker which is in lan. I dont know how to handle it.
I have a problem, can you help me please. whenever i try to open the menu i get this: pi@raspberrypi:~/IOTstack $ ./menu.sh bash: ./menu.sh: No such file or directory
His explanations are the best!
His explanations are the best
Thanks so much for being so clarified, Mr.!☺
Thanks Marc -something I have wanted to experiment with. I had trouble creating the openwrt.vdi on my Windows machine. On Linux it was easy!
You rock !
i have been using the wrt3200acm ever since it came out & i absolutely love it
Why is this not on openwrt? and MWAN3 is
Excellent stuff Marc. Thanks!!!
Great videos and series, really enjoyed them. Do you know if there is any way to do vpn bonding with wireguard instead of openvpn? or can openmptcprouter use wireguard ?
In option 4 why not keeping adguard home as downstream dns and dnsmasq as upstream dns? I also see there's a dns filter module for openwrt, could that conflict with adguard home?
I love your videos, even if I only look on most of them as entertainment as I know the most already but need some refresher some few times. I would love personally one for setup Wireguard on OpenWRT with DHCPv6 so "clients" get IPv6 addresses. Sure I could set static for each user but to be honest using some of the ones I get public would be nicer as I don't need to mess with Nat6 or anything like that then. Keep doing videos when you have time and ideas as many probably have use of them even if they don't say anything.