Raspberry Pi Becomes Secure VPN Router

OpenWRT is a powerful piece of open-source software that can turn plenty of computers into highly configurable and capable routers. That amount of versatility comes at a cost, though; OpenWRT can be difficult to configure outside of the most generic use cases. [Paul] generally agrees with this sentiment and his latest project seeks to solve a single use case for routing network traffic, with a Raspberry Pi configured to act as a secure VPN-enabled router configurable with a smartphone.

The project is called PiFi and, while it’s a much more straightforward piece of software to configure, at its core it is still running OpenWRT. The smartphone app allows most users to abstract away most of the things about OpenWRT that can be tricky while power users can still get under the hood if they need to. There’s built-in support for Wireguard-based VPNs as well which will automatically route all traffic through your VPN of choice. And, since no Pi router is complete without some amount of ad blocking, this router can also take care of removing most ads as well in a similar way that the popular Pi-hole does. More details can be found on the project’s GitHub page.

This router has a few other tricks up its sleeve as well. There’s network-attached storage (NAS) built in , with the ability to use the free space on the Pi’s microSD card or a USB flash drive. It also has support for Ethernet and AC1300 wireless adapters which generally have much higher speeds than the built-in WiFi on a Raspberry Pi. It would be a great way to build a guest network, a secure WiFi hotspot when traveling, or possibly even as a home router provided that the home isn’t too big or the limited coverage problem can be solved in some other way. If you’re looking for something that packs a little more punch for your home, take a look at this guide to building a pfSense router from the ground up.

Portable Router Build: Finding An LTE Modem

Ever want your project equipped with a cellular interface for a data uplink? Hop in, I have been hacking on this for a fair bit! As you might remember, I’m building a router, I told you about how I picked its CPU board, and learned some lessons from me daily-driving it as a for a bit – that prototype has let me learn about the kind of extra hardware this router needs.

Here, let’s talk about LTE modems for high data throughput, finding antennas to make it all work, and give you a few tips that should generally help out.  I’d like to outline a path that increases your chances of finding a modem working for you wonderfully – the devices that we build, should be reliable.

Narrowing It Down

If you look at the LTE modem selection, you might be a little overwhelmed: Simcom, Qualcomm, uBlox, Sierra, Telit, and a good few other manufacturers package baseband chipsets into modules and adjust the chipset-maker-provided firmware. The modems will be available in many different packages, too, many of them solderable, and usually, they will be available on mPCIe cards too. If you want to get a modem for data connections for a project, I argue that you should go for mPCIe cards first, and here’s why.

Continue reading “Portable Router Build: Finding An LTE Modem”

Portable Router Build: Picking Your CPU

I want to introduce you to a project of mine – a portable router build, and with its help, show you how you can build a purpose-built device. You might have seen portable routers for sale, but if you’ve been in the hacking spheres long enough, you might notice there are “coverage gaps”, so to speak. The Pi-hole project is a household staple that keeps being product-ized by shady Kickstarter campaigns, a “mobile hotspot” button is a staple in every self-respecting mobile and desktop OS, and “a reset device for the ISP router” is a whole genre of a hacker project. Sort the projects by “All Time” popularity on Hackaday.io, and near the very top, you will see an OpenVPN &Tor router project – it’s there for a reason, and it got into 2014 Hackaday Prize semifinals for a reason, too.

I own a bunch of devices benefitting from both an Internet connection and also point-to-point connections between them. My internet connection comes sometimes from an LTE uplink, sometimes from an Ethernet cable, and sometimes from an open WiFi network with a portal you need to click through before you can even ping anything. If I want to link my pocket devices into my home network for backups and home automation, I can put a VPN client on my laptop, but a VPN client on my phone kills its battery, and the reasonable way would be to VPN the Internet uplink – somehow, that is a feature I’m not supposed to have, and let’s not even talk about DNSSEC! Whenever I tried to use one of those portable LTE+WiFi[+Ethernet] routers and actively use it for a month or two, I’d encounter serious hardware or firmware bugs – which makes sense, they are a niche product that won’t get as much testing as phones.

Continue reading “Portable Router Build: Picking Your CPU”

Linksys Velop Routers Caught Sending WiFi Creds In The Clear

A troubling report from the Belgian consumer protection group Testaankoop: several models of Velop Pro routers from Linksys were found to be sending WiFi configuration data out to a remote server during the setup process. That would be bad enough, but not only are these routers reporting private information to the mothership, they are doing it in clear text for anyone to listen in on.

Testaankoop says that while testing out the Pro WiFi 6E and Pro 7 versions of Velop routers, they discovered that unencrypted packets were being sent to a server hosted by Amazon Web Services (AWS). In these packets, they discovered not only the SSID of the user’s wireless network, but the encryption key necessary to join it. There were also various tokens included that could be used to identify network and user.

While the report doesn’t go into too much detail, it seems this information is being sent as part of the configuration process when using the official Linksys mobile application. If you want to avoid having your information bounced around the Internet, you can still use the router’s built-in web configuration menus from a browser on the local network — just like in the good old days.

The real kicker here is the response from Linksys, or more accurately, the lack thereof. Testaankoop says they notified them of their discovery back in November of 2023, and got no response. There’s even been firmware updates for the affected routers since then, but the issue is still unresolved.

Testaankoop ends the review by strongly recommending users avoid these particular models of Linksys Velop routers, which given the facts, sounds like solid advice to us. They also express their disappointment in how the brand, a fixture in the consumer router space for decades, has handled the situation. If you ask us, things started going downhill once they stopped running Linux on their hardware.

Ethernet For Hackers: Equipment Exploration

Last time, we talked about the surface-level details of Ethernet. They are fundamental to know for Ethernet hacking, but they’re also easy to pick up from bits and pieces online, or just from wiring up a few computers in your home network. Now, there’s also a bunch of equipment and standards that you will want to use with Ethernet – easy to find whether used or new, and typically as easy to work with. Let’s give you a few beacons!

Routers And Switches

Whenever you see a box with a few Ethernet ports, it’s either referred to as a router, or a switch, sometimes people will even use the word “hub”! Fortunately, it’s simpler than it may seem. A router is a smart device, typically with an OS, that ties two or more networks together – routing packers from one network to another, and typically taking care of things like handing out local IP addresses via DHCP. A switch merely helps Ethernet devices exchange packets between each other on the same level – it’s typically nowhere near as smart as a router gets. Oftentimes, a home router will contain a switch inside, so that you can plug in multiple of your home devices at once. That’s the main difference – a switch merely transmits packets between Ethernet-connected devices, while a router is a small computer taking care of packet forwarding between networks and possibly including an Ethernet switch on the side.
Continue reading “Ethernet For Hackers: Equipment Exploration”

Mega-CNC Router Carves Styrofoam Into A Full-Size Flying Delorean

When you own an enormous CNC router, you’ve got to find projects that justify it. So why not shoot for the sky — literally — and build the 1980s-est possible thing: a full-scale flying Delorean.

Attentive readers will no doubt remember [Brian Brocken] from his recent attempt to bring a welding robot out of retirement. That worked quite well, and equipped with a high-speed spindle, the giant ABB robot is now one of the biggest CNC routers we’ve ever seen. As for the flying Delorean, short of the well-known Mr. Fusion mod, [Brian] had to settle for less fictional approaches. The project is still in its early phase, but it appears that the flying car will basically be a huge quadcopter, with motors and propellers hidden under the chassis. That of course means eschewing the stainless steel of the OEM design for something lighter: expanded polystyrene foam (EPS).

The video below shows the fabrication of most of the body, which starts as large blocks of EPS and ends up as shaped panels and an unthinkable amount of dust. Individual pieces are glued together with what looks like plain old PVA adhesive. The standard Delorean “frunk” has been replaced by a louvered assembly that will act as an air intake; we presume the rear engine cover will get the same treatment. Interestingly, the weight of the finished model is almost exactly what Fusion 360 predicted based on the 3D model — a mere 13.9 kg.

[Brian] is currently thrust-testing motors and propellers and has some interesting details on that process in his write-up. There’s obviously a lot of work left on this project, and a lot more dust to be made, and we’ll be eagerly following along. Continue reading “Mega-CNC Router Carves Styrofoam Into A Full-Size Flying Delorean”

Impulse Buying A 3040 CNC Machine, What Could Go Wrong?

[joekutz] made an impulse purchase of a CNC machine. It was a 3040 CNC that looked reasonably complete and had an attractive price, what could possibly go wrong? As it happens, [joekutz] really didn’t know what he was in for. Sometimes the price is good, but you pay in other ways. But where some would see defeat, [joekutz] sees an opportunity to document the restoration.

Dial indicators are useful tools for measuring how straight some parts aren’t.

The 3040 are relatively cheap and simple CNC machines that have been available from a variety of overseas retailers for years. They have 30 cm by 40 cm beds (hence the name) and while there are many variations, they all work about the same. [joekutz] expected that getting his up and running and converted to open source would be a fun weekend project, but it ended up taking far longer than that. In fact, it turns out that the machine was damaged in surprising and unexpected ways.

[joekutz] has a series of videos demonstrating the process of diagnosing and repairing the various things wrong with this device. In the first video, he dismantles the machine and discusses the next steps. In the second video, he takes some time to repair some dial indicators that will be critical for measuring the various things wrong with the CNC parts. Video number three delves into finding out the horrible things wrong with the machine, and the fourth is where repairs begin, including bending shafts and sanding blocks back into service.

Those videos are embedded below, and while the machine isn’t quite restored yet, progress is promising. We’ve seen easy and effective upgrades for such CNC machines before, but if you happen to be in more of a repair and restore situation, give [joekutz]’s work a look because it might just save you some time and frustration.

Continue reading “Impulse Buying A 3040 CNC Machine, What Could Go Wrong?”