Hi All,
I'm new to OpenWrt and planning to set up a network at my home with two routers. Here are some of the constraints on the network and some questions I have. I would really appreciate it if you could answer my questions.
- I'm planning to run VPN on one of the routers all the time (let's call it the VPN router) and have no VPN on the other (let's call this one the no-VPN router).
-
The no-VPN router allows me to log in to my bank account and other websites that don't allow VPNs.
-
Based on this constraint, I assume the no-VPN router should be connected directly to the modem while the WAN port of the VPN router should be connected to the LAN port of the first router. Is this assumption correct? Is it the only way to achieve 1.?
-
I think the VPN router will perform more computations because of the VPN encryption/decryption so this router should be preferably stronger than the other. Is this conclusion valid?
-
Which router should run SQM? I know that SQM should be deployed on the router that has a global view of all communications. Therefore, it looks like the no-VPN router should run SQM.
-
Is this assumption true?
-
If yes, how strong should this router be? Is SQM compute-intensive?
-
In this case, the users of VPN router are no longer fairly serviced, right? (Because the no-VPN router only sees one incoming/outgoing stream of data and is not able to differentiate different users)
-
If I plan to use the no-VPN router rarely, does it make more sense to set up SQM on the VPN router? Would the no-VPN router suffer from bufferbloat?
-
If yes, is it straight-forward to have both SQM and VPN on the same router? (I use Linux and terminal on a daily basis but I'm not very familiar with networking)
Thank you in advance!