TP-Link TL-R605 Multi WAN Router Overview

Video Statistics and Information

Video
Captions Word Cloud
Reddit Comments
Captions
hi i'm willie welcome to my channel thank you for being here if this is your first time here or you're a long time viewer a subscriber uh thank you very much i do appreciate each and every one of you if you need i.t consulting go to willyhow.com fill out the contact form and someone will be in touch with you as soon as possible what we're talking about today is the tp-link multi-ram wan router so this router this is an omada router it can be standalone or it can be in the omada controller so let's take a look here is our login page so we're going to log in as admin and i've already changed the password and a lot of this information that you're going to see here you can do this in the omada controller right so it's it's nice that what they provide here is also provided in the controller but you don't have to you don't have to use the controller right so this is the tr or the tl r605 it is a safe stream gigabit multi-wan vpn router so i did update the firmware on this and tp-link did send this to me but they do not get to preview these videos and they do not get to alter my opinions in any way as we work through these my opinion is my opinion you can see that it's going out it's using ntp to automatically pull the the time and date you can see it's been eight days since i rebooted it last we've got a dynamic ip and then right here we've got some cpu and memory utilization then under traffic stats we can we can come over here and we can take a look at the land wan now we can have up to uh i think three or four wands on this i'm it's either three or four but you can see here that it looks like we can have four wands and uh or we can have one land four lands so there's a few different ways to configure this which is nice you can see we've got uh total total traffic network set up here's where we can take a look at configuring the wands and the lands so if i keep checking these boxes now i've got one lan i've got four wands and let me save this let me turn those back on not that we're actually going to have those we could set that up it'd be interesting so it's processing please do not operate the device i don't know how long it takes to save this i haven't enabled all four wands and click that save button all right so we are rebooted so we'll log back in after entering our super secret credentials so now you can see that i've got four wand connections and uh maybe i'll just hook them up and we'll see how that works out for us but let's go back over to network and wan and so now wan one when uh when when and when i keep looking over at land and i want to say that but these all show up and we can select a different type of a different type of connection for getting our ip address one thing that i'm wondering and i don't know is if i could actually have like if i had a block of five ips i'm i'm gonna try this and we're gonna see if it works but could i use all four connections um off of the same net block my gut says no but i you know my gut says no but why not try it right it's a lab worst we're going to do is crash the lab or it's not going to work so on our wan connection here we can set a hostname we can also change our upstream and downstream bandwidth change our mtu if we need to change our primary secondary dns or put it on a vlan and we can also get our ip address using a unicast dhcp so that's pretty nifty four lan ports provide you a lot of options for failover it also provides you a lot of options for policy based routing all right so over to our lan section here you can see we are 192.168.0.1 so had we not selected those interfaces as wan interfaces they would be lan interfaces here are dhcp server options so you can see some of the more popular options are built out in the ui so that we can fill those in here here's our dhcp client list we can add address reservations on this screen so this is nice here's uh mac addresses so what's really nice is you can clone the mac address is right here in the ui no special files needed or anything like that and then here's that switch setup that i was talking about so you can do your port configuration change the flow control negotiation mode we've got our port status here so you can see that only our wan and our lan are up right now but yes we can do port mirroring ingress egress in the hardware of the router and then here's where we set up our vlan id so you can see that there are some vlans set up already and you can see that vlan 1 is untagged on lan 1. so this must use internal vlan so we'll dig into that a little bit more and then here are our ports yeah you can see the pvid on these so can i uh because they're wan these are set up as wan that's probably why it does that so if if you've seen this and other devices that is it's probably a similar a similar concept so we're going to have to look into that so it attached it actually created these untagged vlans for the wan under preferences we can set up those ip groups and ip addresses so we can use these as aliases throughout the system you can set up your time ranges set up our vpn ipool and then we can come in here and add services based on ports so we can define this so that's pretty nice that'll probably come into play when we're looking at acls and things like that so under transmission we can look at nat so we can do a one-to-one nap and if we add a one-to-one nat we can select the interface the original ip translated ip so this is where i want to know can i have you know all of those ip addresses in the same network on the wan and then use that here for one to one that of course we've got virtual servers with port forwarding if you've worked with any kind of router you're familiar with that your port triggering port triggering is kind of like a port knocking where you hit one port and then it opens another port here's our nat dmz and then here's our algs and they are all enabled by default so we are going to disable these because we know that sometimes algs cause more problems than they solve under bandwidth control we can enable bandwidth control when bandwidth usage reaches a percentage that's nice we can come down here and we can add different rules so you can see here's those ip groups that we had earlier and we can tell it that it's got a maximum upstream downstream and you can do it shared or individual and you can set time limits on it so that's really nice we're going to get into that a little bit we've got session limits here so we can say that i p addresses can only have so many sessions going through the firewall and then you've got your session monitor there here's that load balancing so by default it is enabled so i'm not sure what really happens when we disable that um this is the lan port traffic and we're gonna we're gonna have to dig into this and then we can do bandwidth based on routing ports which is nice we've got our link backup so primary wan we can set the primary wan and we can set a backup lan and it looks like we can do that multiple times i'm not 100 sure we'll try that out and then this is how we detect if a if an interface is online then under routing here's our static routes that's pretty pretty standard but check this out here's our policy based routing so if we wanted to send ftp traffic or ssh traffic out of a specified wan once we have oh see so ssh and ftp are already predefined but we can predefine we could pre-define like synology traffic right so if it was destined for port 5001 send it out of this wan so you can do all of that here you can also do it by ip right so if you've got a connection to aws or something like that you always wanted to go out of the same land you put your target ip in there and then it always goes out of the way and so you can do it based on service and you could do it based on ip probably a combination of the both and you can actually make it so it has time constraints so this is really flexible for that under firewall we've got some basic things like anti-arp spoofing which is nice we'd have to see exactly how that works out for us you've got some light attack defense this this is probably defined on static rules so it's not going to be something that can dynamic be dynamic and change a lot based on you know we've got some other services with with firewalls that are much more expensive that they can adapt to the traffic and then here are acls so if we add an acl you can see we've got a block or allow policy what service do we want to block what interface do we want to block it on what source this is pretty this is way more flexible than some of the other routers that we have in this price range behavior control so we can do some uh web filtering we can do it by group we can also do url filtering so now of course the router is going to have to handle your dns for that then we've got web security so what's our web security list down here block http post we can block file suffixes from coming through that's cool i have to see how that works with something going over https then here is our vpn setup we've got ipsec and then here's our security associations so we can see when things are online let's see if we can do let's see so we've got landland client to land let's look at our advanced settings so we can get into the nitty-gritty right here in the ui and work on phase one settings or phase two settings which is fantastic that is absolutely fantastic to be able to have that breakdown what they've done is they've really exposed a lot of the options under the hood in the ui and i love it all right you've got your l2 tp which you know we basically use for client config pptp which should not be in any router at this point and then we've got our user set up here so um we can specify whether it's l2 tp or pptp so that's kind of nice authentication settings and of course we would have to enable authentication this is probably looks like this is for a portal so we'll get into that user management and somewhere i think we can tie this to active directory or some other ldap server so we'll have to dig into that as well then one thing that they really need to update is they need to add a custom dynamic dns instead of just limited us to these four because a lot of us use google and other services here's universal plug and play which occasionally we run but not very oft often then under system tools we've got admin setup you can limit the remote management of the device here under remote management system settings where we can redirect to https right now you can see it's just http then under management we can do a factory restore a backup or a restore a reboot firmware upgrade here we can bind it to the omada controller under controller settings we can enable snmp doesn't look like this looks like it's probably version one if i had to guess because there's no authentication here we've got some light diagnostics ping trace route remote assistance which is nice we have to dig in to see how that works i'm assuming that's for tp-link we've got time setting so we can change our time zone our ntp server and then we've got our system log here so for a device that is uh inexpensive i think this device is less than 100 bucks i'll leave an affiliate link down below it's got some great features so we're really going to dig into this and out of the box experience you can literally plug and play plug it in and go no other configuration needed but you should change your default username and password so overall it's going to be something we're going to add to the lab and we are going to start doing some of those shorter in the weeds videos on this so if you like the video please give me a thumbs up please subscribe please comment and share please follow me on twitter instagram and tick tock those links are down below if you need it consulting go to willyhow.com fill out the contact form and someone will be in touch with you as soon as possible if you want to support the channel by using our affiliate links they are down below they don't change your price but they do kick a couple bucks to the channel once again i'm willie i want to thank you for being here and as always i'll see you in the next video
Info
Channel: Willie Howe
Views: 32,654
Rating: 4.8883414 out of 5
Keywords: tp link, tp-link omada, tp link router setup, tp-link, tp-link tl-r605, tp-link tl-r605 safestream gigabit multi-wan vpn router, tp-link tl-r605 router, tp-link router, tp-link router overview, willie howe, willie howe technology, it consulting
Id: Olw007FYjwk
Channel Id: undefined
Length: 13min 55sec (835 seconds)
Published: Sat Apr 24 2021
Related Videos
Note
Please note that this website is currently a work in progress! Lots of interesting data and statistics to come.