Posted: Wed Nov 02, 2022 22:30 Post subject: What would be the best way to setup the current network idea
Hey.
I've an optical net, which means that my current setup looks like ONT->ISP issued router->devices.
I've purchased a router and put DD-wrt on it, so the network is going to look something like this: ONT -> ISP issued router -> DD-WRT router -> devices
Here's the thing though:
1) I don't want double NAT
2) I need all the devices to go through the DD-WRT router to the internet because I want to connect a RasPi Pihole to the DD-WRT and have all traffic go through Pihole's DNS(something I can't do on my default ISP issued router)
3) I want to have OpenVPN (or w/e else) access to my home network from anywhere in the world
Currently running in a bit of an issue. ISP issued router is on 192.168.1.x network with usual subnet mask, I've connected the DD-WRT to it and at this point I'm stuck.
How do I set it up to look exactly like I want it to as described above?
Joined: 18 Mar 2014 Posts: 12837 Location: Netherlands
Posted: Thu Nov 03, 2022 9:17 Post subject:
You have some incompatible demands.
If you are not using the ISP router for its wifi and LAN you can ask your provider to put the router in bridge mode so that everything is being done by DDWRT.
Alternatively place the DDWRT in the DMZ of the ISP router.
The DDWRT's Local IP address should be 192.168.2.1
General DDWRT must read information:
See the forum guidelines with helpful pointers about how to research your router, where and what firmware to download, where and how to post and many other helpful tips:
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
Joined: 31 Jul 2021 Posts: 2146 Location: All over YOUR webs
Posted: Thu Nov 03, 2022 9:21 Post subject:
Either put your ISP router in bridge/modem mode mode or set the ISP router to 192.168.2.1 and DD-WRT stays on default 192.168.1.1.
You dont want your ISP router to do and DHCP at all IMOt, if it were me, I'de put ISP router in bridge/modem mode because invariably these run outdated kernels and libraries which maybe susceptible to CVEs and other security issues. DD-WRT gets newer kernels still maintained until 2023/27, assuming your DD-WRT router is something decent and modern'ish.
DMZ is a sledgehammer in case your ISP router doesn't allow you to put it in bridge/mode mode and its easier IMO.