Can I block hosts and IPs with this TP-LINK PoE router?

By Steven P.
in Smart Home, Network & Security

 Share

Recommended Posts

Grand Master

Steven P. Administrators

Posted
  • Administrators
Posted

https://www.amazon.nl/Tp-Link-Tl-Sg1005P-Gigabit-Poe-Ondersteuning-Behuizing/dp/B00BP0SSAS

 

My old Cisco 5 ports switch keeps freezing or something where some of my devices like the Smile Plugwise and my Philips Hue hub keep losing connectivity. It is in my meter closet so I want to replace it with a PoE router/switch but I also want one that has a web/software management so I can block some smart tv hosts. I did this with my old ISP Internet Router, but the new one the sent does not have the capability to block certain host names anymore so I will have to do it at switch level.

 

If I replace with the 8 ports, I can move all the connections on the ISP router to the new PoE switch to manage traffic I think?

 

I actually went on the TP-LINK website and instigated a Live chat, but I was not able to get that answer.

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

That is a dumb switch, your not going to do anything with that from any sort of management or anything.. Other than what the lights on the front tell you.  You can not set speed of the interfaces, you can not do anything with the poe.. Its dumb you plug stuff in and it should work sort of switch..

 

BTW I can not recall ever seeing a POE router.. I don't recall ever seeing such a beast..  A router with switch ports and the switch ports are poe - I don't recall ever seeing such a thing..

 

Grand Master

Steven P. Administrators

Posted
  • Author
  • Administrators
Posted
  On 22/02/2022 at 14:17, BudMan said:

That is a dumb switch, your not going to do anything with that from any sort of management or anything.. Other than what the lights on the front tell you.  You can not set speed of the interfaces, you can not do anything with the poe.. Its dumb you plug stuff in and it should work sort of switch..

 

BTW I can not recall ever seeing a POE router.. I don't recall ever seeing such a beast..  A router with switch ports and the switch ports are poe - I don't recall ever seeing such a thing..

 

Expand  

Bugger!

  • Mindovermaster
  • Sad 1
Grand Master

+BudMan MVC

Posted
  • MVC
Posted

What specific router are you using - while It might not be able to block by host names, you saying it has no firewall capabilities at all, you can not block anything outbound?

 

What exactly are you wanting to block at the switch level.. multicast?  Ports?  But your not going to want to route at the switch, because I doubt your isp router could handle a downstream router, etc.  That doesn't nat, etc.

 

You might be better off getting a real router and then actual real managed switch so you can do vlans, and then filter whatever you want from talking to whatever you want be it internet or other devices on your network, etc.

Grand Master

Steven P. Administrators

Posted
  • Author
  • Administrators
Posted

Hi @BudMan... The modem is this type https://sourceforge.net/arris/tg3492lg/home/Home/

 

20220222_231018.jpg

 

I can only do port filtering on my ISP modem

 

SNAG-0017.png

 

SNAG-0018.png

 

I want to block the following domains on my network,

 

ngfts.lge.com
us.ad.lgsmartad.com
lgad.cjpowercast.com
edgesuite.net
us.info.lgsmartad.com

 

I also need to add Samsung ones for an older TV that keeps complaining it can't be updated anymore (is from 2011).

 

I don't think I can flash custom software on it because they "activate" these modems based on their settings I think. I've had replacement modems that were nothing more than paperweights if my ISP doesn't "activate" it on their network, but I'm not entirely sure how that works. They offer a bridged mode where you can turn it into a dumb thing that only receives the connection and passes it through to a second home/custom router.

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

Yeah for what your blocking dns would be more suited..

 

So for example that first one there. 

;; QUESTION SECTION:                                                         
;ngfts.lge.com.                 IN      A                                    
                                                                             
;; ANSWER SECTION:                                                           
ngfts.lge.com.          3600    IN      CNAME   ngfts.lge.com.edgekey.net.   
ngfts.lge.com.edgekey.net. 21600 IN     CNAME   e6114.e21.akamaiedge.net.    
e6114.e21.akamaiedge.net. 3600  IN      A       23.204.8.106

 

See how its 2 cnames, and hosted by akamai - promise you that IP could change quite often.. I have min setting on my ttl of 3600, can promise you its lower than that - yup just looks like 300 seconds.. So that could change whenever - even if your firewall resolved those you could run into a time when IP no longer matches up and your client not blocked, etc..

 

Without using a proxy, the best way to block fqdn is don't let your client actually resolve them.  I would look to just setting up pihole, doesn't have to be on a pi - you could run it on a vm or in a docker, etc.. Or you could get a little pi zero for like $10 and run it on that.. Total cost of a pi setup with power supply and sd card if you don't have prob looking at like 40 or bucks or so.. Depends on what model, etc.  You could drop more getting latest 4 and multi GB of ram, etc. 

 

But yeah blocking those I would do with a pihole..

 

 

Grand Master

Circaflex

Posted
Posted
  On 22/02/2022 at 14:17, BudMan said:

That is a dumb switch, your not going to do anything with that from any sort of management or anything.. Other than what the lights on the front tell you.  You can not set speed of the interfaces, you can not do anything with the poe.. Its dumb you plug stuff in and it should work sort of switch..

 

BTW I can not recall ever seeing a POE router.. I don't recall ever seeing such a beast..  A router with switch ports and the switch ports are poe - I don't recall ever seeing such a thing..

 

Expand  

The EdgeRouter 5 POE did just that.

Grand Master

Brandon H Supervisor

Posted
  • Supervisor
Posted
  On 23/02/2022 at 18:16, Steven P. said:

Would be great to be able to install Pihole on a POE switch then I'd kill two birds with one stone 😛 

Expand  

could always load up PiHole in a light VM as well and route all DNS traffic through that if you have a computer you keep on 24/7.

Grand Master

+BudMan MVC

Posted
  • MVC
Posted
  On 23/02/2022 at 17:53, Circaflex said:

The EdgeRouter 5 POE did just that.

Expand  

Those were only 48V passive?  Not really good poe support other than for some old unifi AP.. That was a niche product for their stuff was it not, not a generic poe router that could supply poe to standards like af or at?

Grand Master

Steven P. Administrators

Posted
  • Author
  • Administrators
Posted
  On 23/02/2022 at 18:24, Brandon H said:

could always load up PiHole in a light VM as well and route all DNS traffic through that if you have a computer you keep on 24/7.

Expand  

Ah crap I have a Synology DSM 7.0 NAS too. I can install Pihole on that, just need to find a decent "even a dumbass can do it" guide 😛  I already managed to set up a Docker to sync Spotify Discover to a custom Tidal playlist every week 😛 

Grand Master

Brandon H Supervisor

Posted
  • Supervisor
Posted
  On 23/02/2022 at 19:29, Steven P. said:

Ah crap I have a Synology DSM 7.0 NAS too. I can install Pihole on that, just need to find a decent "even a dumbass can do it" guide 😛  I already managed to set up a Docker to sync Spotify Discover to a custom Tidal playlist every week 😛 

Expand  

ah yeah that'll work. there's quite a few guides that pop up when I search google but here's the first one on the list https://www.wundertech.net/how-to-setup-pi-hole-on-a-synology-nas-two-methods/ seems pretty simple to setup, it just goes in a docker as well.

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.