Yet another post about router choice...

Moonville

Young grasshopper
Joined
Aug 9, 2021
Messages
56
Reaction score
21
Location
Ohio
Here's yet another post about buying a router - but I'm highly tech-challenged and want to make sure I'm buying the right thing.

I'm setting up BI on a dedicated PC. The ISP at my weekend home (mobile home) is Frontier. The ISP-supplied modem is an Arris NVG443B. It's my understanding that I will keep that modem and add a router.

Since this install is at a weekend home, I will be accessing the system remotely much of the time. I know VPN support is a must. I don't know if I'll need any VLANs.

I see Asus is popular with IPCT members. I don't want to spend more than I have to but I'd rather not take chances on cheap stuff.

One member here reports good luck with the Asus RT-AC1900P. Is this model adequate for my needs? Or a more current equivalent?
 
Joined
May 1, 2019
Messages
2,215
Reaction score
3,504
Location
Reno, NV
I'll toss some considerations out.
If you are looking to do VPN and VLAN's, the "high tech challenged" will surely change as you HAVE to learn by trial and error the do's and the dont's.
So do not limit yourself to a basic router. I had the ASUS router for a time but it was limited on VLANs and subnets, but could easily work with OpenVPN. I went with Ubiquiti UDM router for the sole purpose of that cool GUI environment and configurations though as time passes, the glaring downsides are becoming apparent that I would not go UDM again.
I doubt pfsense DIY router/firewall is in your wheel house as that will takes weeks if not months to learn how to setup correctly.
I have heard good things about Rokus and Fortigate. My new router & firewall, I am leaning towards Fortigate.
No idea where SonicWall is nowadays as that was near the #1 spot 5-10 years ago.

You want a router that can handle 4 or 5 VLAN subnets (home, IOT, Cameras, guest) for example.
You want a router with firewall that you can add/change/edit that has added stuff like GeoIP blocking of countries, ACL,
You want a router that can handle various VPN's such as OpenVPN.
My UDM did all that, other than supporting OpenVPN or any other VPN (internal RADIUS using antiquated protocol is a BIG minus). Can't see what VPN users are connected, lack luster support, lots of complaints, no IPv6 support. UDM is a love / hate relationship. A great "starter" router of the "prosumer" class, but you will learn it's limitations.
 
Last edited:

icpilot

Getting comfortable
Joined
Feb 1, 2018
Messages
293
Reaction score
394
Here's yet another post about buying a router - but I'm highly tech-challenged and want to make sure I'm buying the right thing.

I'm setting up BI on a dedicated PC. The ISP at my weekend home (mobile home) is Frontier. The ISP-supplied modem is an Arris NVG443B. It's my understanding that I will keep that modem and add a router.

Since this install is at a weekend home, I will be accessing the system remotely much of the time. I know VPN support is a must. I don't know if I'll need any VLANs.

I see Asus is popular with IPCT members. I don't want to spend more than I have to but I'd rather not take chances on cheap stuff.

One member here reports good luck with the Asus RT-AC1900P. Is this model adequate for my needs? Or a more current equivalent?
That modem looks like it is for an incoming DSL connection. Is it supplying ONLY internet, or are you using it for telephony (VoIP) or other services? The Data Sheet for the modem indicates it has a decent featureset. There is VLAN capability as well as some firewall security and allows VPN pass-through. (See attached Data Sheet to be sure it is the same as yours) Arris makes fine equipment. My guess is that modem prioritizes telephony while having other basic features as additions, though I was surprised to see it does "deep packet inspection" which is a higher-end security feature than most residential class modems offer.

I would suggest you first learn to configure the features of your existing modem. For example, I could not find a User Manual, but I found plenty of responses to Google searches on "arris nvg443b block services" or "arris nvg443b vlan." Investing in learning about those features will pay dividends whether you decide to use only that modem or add a router to the mix and will make you a more informed consumer if you decide to purchase (or build) a router for your setup.

In my case, I have a Netgear cable modem and a Netgear Nighthawk which is in a similar class of residential modem to the ASUS you mentioned. Most of the features I am using in my Nighthawk router, I found described for your Arris modem. I am eventually going to substitute a pfSense appliance for the Nighthawk router, but as @Holbs mentioned, the learning curve is quite substantial. At least, it has been for me.

To summarize, I suspect your current Arris will take you a long way without needing to add another device in your network to perform similar functions. Focus on your BI and camera setup will be sufficient challenge for most. Let us know how it all goes and if you have any additional questions.
 

Attachments

Moonville

Young grasshopper
Joined
Aug 9, 2021
Messages
56
Reaction score
21
Location
Ohio
Thank you both for your detailed replies. Is it possible to log on to the modem's control panel remotely?

Is it supplying ONLY internet, or are you using it for telephony (VoIP) or other services?
I'm using Ooma VoIP through it.
 

icpilot

Getting comfortable
Joined
Feb 1, 2018
Messages
293
Reaction score
394
Thank you both for your detailed replies. Is it possible to log on to the modem's control panel remotely?


I'm using Ooma VoIP through it.
I'm not familiar with that modem, but the Data Sheet says; "ARRIS designs its Gateways to be remotely manageable" and there is a specific section on the 2nd page of the Data Sheet entitled "Remote Management."

If it is currently installed at your 2nd home, can you call Frontier and ask them how to login remotely? My understanding is Frontier is one of the better ISPs for customer support.
 

Moonville

Young grasshopper
Joined
Aug 9, 2021
Messages
56
Reaction score
21
Location
Ohio
the Data Sheet says; "ARRIS designs its Gateways to be remotely manageable" and there is a specific section on the 2nd page of the Data Sheet entitled "Remote Management."
I did read that but I didn't know whether in that context it meant what I had in mind. Thanks for the suggestion to call Frontier.
 
Joined
May 1, 2019
Messages
2,215
Reaction score
3,504
Location
Reno, NV
I took a gander at some example pages for that Arris NVG443B gateway device. DSL service from Frontier? I would hazard a yes...Frontier seems to reach rural areas to offer at least high speed internet albeit just DSL instead of Spectrum cable internet or such. Something is better than nothing.
You will have to set up that Arris in "Bridge Mode" or maybe it's called "Pass Through" (meaning, it does no routing or anything special). Your new purchased router (whatever brand you go for) will have to be configured for DSL / PPTP service.
Since you are starting out...and this is for a weekend home, go for that Asus or TP-Link. Neither will do super serious networking bells & whistles like a Ubiquiti UDM or Fortigate (the ones that cost $400+) but consider it a starter router for you to learn firewall rules, VLAN, subnets, and VPN.
Not sure which ASUS router best fits your needs as they do not list how many VLANs any specific router is capable of. Again, think 3 or 4 networks. 1=personal, 2=guest, 3=IOT or cameras.
Of course, if you went the Blue Iris machine pathway you could install a 2nd NIC so that the cameras never get out to the internet anyways.
 

SouthernYankee

IPCT Contributor
Joined
Feb 15, 2018
Messages
5,170
Reaction score
5,320
Location
Houston Tx
I use comcast with an ARRIS TG1682G. I also have voice over IP as part of the comcast service. I have had my home phone number for over 40 years, so I have a home phone.

My Arris modem/ router can be placed in bypass/ pass-though/ bridge mode so it is only a modem. I use an older Asus RT-AC66U_B1 router (>$100), that supports OpenVPN. I use a second NIC card in my BI PC to separate the cameras from the remainder of my home network. I try to keep my system as simple as possible.

This is your weekend home, keep it inexpensive and simple.

Put your BI computer, router, modem, POE camera switches on multiple reasonable priced UPS.
 

Moonville

Young grasshopper
Joined
Aug 9, 2021
Messages
56
Reaction score
21
Location
Ohio
if you went the Blue Iris machine pathway you could install a 2nd NIC so that the cameras never get out to the internet anyways.
I am going to install a 2nd NIC - do I still need to set up a VPN if the cameras can't get out to the internet?
And if the cameras can't get out to the internet, how is it I will be able to see them remotely?
 
Joined
May 1, 2019
Messages
2,215
Reaction score
3,504
Location
Reno, NV
I am going to install a 2nd NIC - do I still need to set up a VPN if the cameras can't get out to the internet?
And if the cameras can't get out to the internet, how is it I will be able to see them remotely?
best to read up on dual NIC cards in a Blue Iris machine to get more detail and clarity.
Basically, you use your VPN to connect to Blue Iris (which sees all cameras). Only your Blue Iris machine has access to the internet. Cameras dead end at the Blue Iris machine on the 2nd NIC port. Blue Iris takes over from there.
 

wittaj

IPCT Contributor
Joined
Apr 28, 2019
Messages
24,451
Reaction score
47,588
Location
USA
And make sure it is the VPN that puts you back onto your home IP address and not a VPN that hides your IP address. You are looking for a free VPN that your router hosts (or you set up a computer to do so), not some 3rd party hosting that masks the IP for illegal streaming and porn LOL.
 

Moonville

Young grasshopper
Joined
Aug 9, 2021
Messages
56
Reaction score
21
Location
Ohio
Holbs and SouthernYankee are suggesting a separate router and icpilot is suggesting to use the gateway I have. If I can save money, that's great.

Given my difficulty understanding all this, if buying an inexpensive router (to use in addition to the Arris gateway) would make things at least a little simpler, I'll be glad to do that. Opinions?

Incidentally...
best to read up on dual NIC cards in a Blue Iris machine to get more detail and clarity.
I have read much of the relevant info on this site at least twice. And I will go back again. I'm trying to learn and I will keep at it but this stuff just won't stand still in my brain. I appreciate all the help here and I just wanted y'all know I almost always do my homework before I post my questions.
 
Last edited:

sebastiantombs

Known around here
Joined
Dec 28, 2019
Messages
11,511
Reaction score
27,690
Location
New Jersey
If you buy a router that is VPN capable, OpenVPN for example, it's a lot easier to get secure inbound access setup and running. When I had Comcast I had an Arris modem and my own router, an Asus RT86U (I think that's the model number.
 

Moonville

Young grasshopper
Joined
Aug 9, 2021
Messages
56
Reaction score
21
Location
Ohio
If you buy a router that is VPN capable, OpenVPN for example, it's a lot easier to get secure inbound access setup and running.
So, you're saying that it would be easier for me if I got a separate router? The Asus RT86U is about $160 - is that an appropriate price range for a router with VPN capability for a basic BI PC setup?
 
Joined
May 1, 2019
Messages
2,215
Reaction score
3,504
Location
Reno, NV
So, you're saying that it would be easier for me if I got a separate router? The Asus RT86U is about $160 - is that an appropriate price range for a router with VPN capability for a basic BI PC setup?
depending on your router, $160 may be great or too spendy.
Do you want your router to have built in WiFi, as most go for? How great of WiFi are you after? Cause now...gotta find a router/wifi and research the different bands and protocols :)
You could get a cheezy TP-Link VPN router for $59 (A7 Archer). Of course the fancier 9 antennae tri-band routers (gaming routers) are up in the $200-$300 range which doubles as a cooking grill!
So all boils down to how much WiFi you use. Have kids? Many WiFi IoT devices (vacuums, lights, smartphones, etc) all at once?
71MLybZ5IAL._AC_SX679_.jpg
 

Moonville

Young grasshopper
Joined
Aug 9, 2021
Messages
56
Reaction score
21
Location
Ohio
Do you want your router to have built in WiFi?
I will need WiFi - unless the WiFi can be done with the gateway. But if a gateway is bridged through to the router then I'm assuming that the gateway cannot be used for WiFi?

The home is small (mobile home) and I'm not doing any gaming. So, is an appropriate price for an Asus around $100 like SouthernYankee mentioned?
 
Joined
May 1, 2019
Messages
2,215
Reaction score
3,504
Location
Reno, NV
taking a gander at ASUS routers at this moment...

Small area = good. Do not need grill top cooking gaming router range for WiFi.
What networks will you require? Example: personal (laptop, pc, smartphone), Cameras/Blue Iris machine, guest, children, etc?
 
Top