I got my hands on a Turris router & i want to get it set up but I am running into a few hiccups.Also I have done some basic configuration but there are still some parts I am not 100% sure about.
Setting up the firewall rules correctly to secure my network without blocking essential services.
Optimizing Wi-Fi settings for better coverage in my home. Any tips for improving signal strength?
Configuring VPN services – I want to make sure everything is secure but I am not familiar with the best practices for Turris.
Also, I am planning to integrate my setup with google cloud for some cloud based services so any advice on making sure my router plays nicely with that would be super helpful.
As well, I found these resources when doing research on this; Sync settings in two or more Turris Omnia routers & if anyone have any resources, tutorials or personal experiences please share with me, It would be greatly appreciated!!
Firewall rules are mostly for inbound traffic - eg. your home NAS that you want to reach through the internet. So don´t brother with those.
WiFi opimisation means - look at the antenna directions that suits your requirment. When using a tool like WiFi Analyzer - Free download and install on Windows | Microsoft Store look for the best avaliable channel, but please do this in all your favorite places around your perimeters. Try this several times with different antenna setting, channels and placement of routers. No cheap answer here.
Google cloud is under normal circumstances not effected by any firewall rule.
how many do you want to install? Basics first, fancy later
for managing multiple turris omnia routers i use openwisp,
which gets the job done very easily: https://openwisp.org
(it should be possible to manage turris os devices
but i have switched to openwrt)
for VPN i use Wireguard (or Wireguard with 2FA)
terminated on the device itself or behind on a server
(turris os 7.x had wireguard broken
so i have switched to openwrt)
for optimizing wifi settings for better coverage get a
wifi coverage mapping site survey heatmapper tool
they are mostly paid and/or have a freemium plan Reddit - Dive into anything
for multiple devices on one network consider different scenarios:
and/or consider using an external router like pfsense/opnsense etc.
or a openwrt device/server specialized only for routing with sqm qos Bufferbloat - Wikipedia
if you switch over to plain openwrt (turris os is build a top openwrt)
you lose: