What's new
By:

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

RT-AX86U Pro Static Route

L

LordOblitron

New Around Here
Hello all,

I have two networks, one main 192.168.0.0 and one IoT Network 192.168.52.0
I have HA at 192.168.0.115 and want communication between HA and those devices at 192.168.52.0 network.
I tried to configure static routes but not sure if was done correctly. Checked the routing table but don't see the entry.
Is anything else that I need to check? New to this router and bit confused with this GUI.

1736478622379.png


I have RT-AX86U Pro (Firmware Version:3.0.0.6.102_34319)
 
One suggestion to allow communication between the main LAN and the 3006.102.x firmware's IoT Guest Network setting is to choose Use same subnet as main network in the IoT Advanced Settings. For what ever reason Asus decided to not block traffic between the main LAN network and the IoT network when Use same subnet as main network is set to on/enabled.
 

Attachments

  • IoT.jpg
    IoT.jpg
    29.4 KB · Views: 20
I tested HA software on a RPI 3. Connected the RPI Ethernet to the main LAN and the WIFI to the Guest Network. It worked well!
 
bennor said:
One suggestion to allow communication between the main LAN and the 3006.102.x firmware's IoT Guest Network setting is to choose Use same subnet as main network in the IoT Advanced Settings. For what ever reason Asus decided to not block traffic between the main LAN network and the IoT network when Use same subnet as main network is set to on/enabled.
Click to expand...
Doesn't this defeat the purpose of the IoT network? Ideally I would like only HA to communicate with those devices. Unless I am missing something or don't understand exactly how it works.
To be honest, I was hoping to be able to create some routes etc.
 
LordOblitron said:
Doesn't this defeat the purpose of the IoT network? Ideally I would like only HA to communicate with those devices. Unless I am missing something or don't understand exactly how it works.
To be honest, I was hoping to be able to create some routes etc.
Click to expand...
Yes it defeats the true purpose of having an isolated IoT network, but that's the quirks of how Asus programmed their firmware. The reality is Asus doesn't give one the granularity to make the kinds of changes (easily) that you are trying to make. Don't think the "route" (static route) option is going to work for your use case. The static route option appears to be used when you have a second router connected to your main router, not for routing between two different IP subnets within the same router.

The following Asus support document (if you haven't seen it already) gives general information about the "route" option in the router's firmware.

When using Asus-Merlin 388.x firmware it is possible to configure traffic between the main LAN and the Guest Network by adjusting the IP Tables with custom code, or by using YazFi. With the stock Asus 3006.102.x firmware, not sure that is easily possible to use custom code to change the IP Tables to allow the traffic between the two IP subnets.

One possible way, if the Synology router that Home Assistant is running on, has a second LAN port, is to configure HA to use the second LAN port only, then assign that secondary LAN port to the same VLAN as the Guest Network Pro's IoT VLAN port. That however will likely mean the HA is now isolated from the main LAN since it is on the IoT VLAN. Or you could find another device, like the previous poster indicated, to run HA on. A device that has two network adapters.

If you haven't done so already, search the subforum(s) for "home assistant" (https://www.snbforums.com/search/1324617/?q=yazfi+home+assistant&o=relevance). You'll find a number of earlier discussions where people face the same issue. Running the HA on the main LAN and trying to access clients on the guest network. There may be additional suggestions or solutions in those earlier discussions. Example of earlier discussion:
A

Thread 'Guest Network Pro One way to client'

Hi,
I have recently flashed the latest Asus stock 3006 firmware on my GT-AX6000 router to play with it(mostly because wanted to see how vlans and guest network pro works with my IoT devices).
I am trying to make my Home Assistant server that runs on my main network to access my IoT devices on the Guest Network Pro, but not the other way around(One way to client as in YazFi script) but I don't know how to do it.
If I create a routing rule under lan and then I am trying to define firewall rules for outbound/inbound traffic, I discovered I can only do it for individual IP's and and not the...
 
bennor said:
Yes it defeats the true purpose of having an isolated IoT network, but that's the quirks of how Asus programmed their firmware. The reality is Asus doesn't give one the granularity to make the kinds of changes (easily) that you are trying to make. Don't think the "route" (static route) option is going to work for your use case. The static route option appears to be used when you have a second router connected to your main router, not for routing between two different IP subnets within the same router.

The following Asus support document (if you haven't seen it already) gives general information about the "route" option in the router's firmware.

When using Asus-Merlin 388.x firmware it is possible to configure traffic between the main LAN and the Guest Network by adjusting the IP Tables with custom code, or by using YazFi. With the stock Asus 3006.102.x firmware, not sure that is easily possible to use custom code to change the IP Tables to allow the traffic between the two IP subnets.

One possible way, if the Synology router that Home Assistant is running on, has a second LAN port, is to configure HA to use the second LAN port only, then assign that secondary LAN port to the same VLAN as the Guest Network Pro's IoT VLAN port. That however will likely mean the HA is now isolated from the main LAN since it is on the IoT VLAN. Or you could find another device, like the previous poster indicated, to run HA on. A device that has two network adapters.

If you haven't done so already, search the subforum(s) for "home assistant" (https://www.snbforums.com/search/1324617/?q=yazfi+home+assistant&o=relevance). You'll find a number of earlier discussions where people face the same issue. Running the HA on the main LAN and trying to access clients on the guest network. There may be additional suggestions or solutions in those earlier discussions. Example of earlier discussion:
A

Thread 'Guest Network Pro One way to client'

Hi,
I have recently flashed the latest Asus stock 3006 firmware on my GT-AX6000 router to play with it(mostly because wanted to see how vlans and guest network pro works with my IoT devices).
I am trying to make my Home Assistant server that runs on my main network to access my IoT devices on the Guest Network Pro, but not the other way around(One way to client as in YazFi script) but I don't know how to do it.
If I create a routing rule under lan and then I am trying to define firewall rules for outbound/inbound traffic, I discovered I can only do it for individual IP's and and not the...
Click to expand...

Thank you for the detailed reply.
I checked the Asus support document but was like "No way, there should be another way".

Yeah just yesterday remembered that it has two LAN ports. So will try that first and then most probably the Merlin solution.

Thank you again.
 
You must log in or register to reply here.

Similar threads

M
RT-AX86U Pro - default (V)LAN VID?
Replies
0
Views
1K
mirek
M
A
Standalone VPN server throughput much lower going through RT-AX86U Pro than through old RT-AC68U
Replies
0
Views
301
AndrewL733
A
M
2.4 GHz wifi connected devices disconnect and..
Replies
2
Views
413
kildare
K
H
RT-AX86U Pro trouble 2.4 devices
Replies
5
Views
459
Heronimos
H
L
How many devices can be in MAC Filter list for Guest Network Pro?
Replies
7
Views
288
Tech9
Tech9
Similar threads
Thread starter Title Forum Replies Date
M RT-AX86U Pro - Restrict IoT Network ASUS AX Routers & Adapters (Wi-Fi 6/6e) 1
Spartan Which router should be the main? ASUS RT-AX86U Pro vs GT-AX6000 ASUS AX Routers & Adapters (Wi-Fi 6/6e) 4
Zakalwe Have I overloaded my AX86U Pro with amtm stuff? ASUS AX Routers & Adapters (Wi-Fi 6/6e) 9
H RT-AX86U Pro trouble 2.4 devices ASUS AX Routers & Adapters (Wi-Fi 6/6e) 5
D Inter SSID Traffic not Routing on a RT-AX86U Pro ASUS AX Routers & Adapters (Wi-Fi 6/6e) 12
S ASUS RT-AX86U Pro - WAN NAT is broken for non-main VLANs! ASUS AX Routers & Adapters (Wi-Fi 6/6e) 6
D New ax86u pro Asus, firmware 3006 or merlin 3004 ASUS AX Routers & Adapters (Wi-Fi 6/6e) 4
DarkKnight75 Finally upgraded to AX86u Pro ASUS AX Routers & Adapters (Wi-Fi 6/6e) 5
L RT AX86u PRo 35mbs top dl speed ASUS AX Routers & Adapters (Wi-Fi 6/6e) 10
S RT-AX86U Pro limiting upload speed. ASUS AX Routers & Adapters (Wi-Fi 6/6e) 5

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 662 (members: 27, guests: 635)
Back
Top