Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsLAN (ethernet/Wifi/routers/Bluetooth)Router recommendation for using Roon with Starlink.
Geektastic

17690 posts

Uber Geek

Trusted
Lifetime subscriber

#306030 22-Jun-2023 09:52
Send private message

I’m straying into a field about which I know very little but I know that there’s plenty here who know much more than I do!

I use Roon to run the music systems in the house. A while ago, Roon introduced functionality called Arc that allows you to use Roon on your mobile devices from anywhere by effectively dialling home and accessing your Roon server.

However.. This requires something called port forwarding. I don’t really know what that is, but I do know that you cannot do it on Starlink due to something called CGNAT.

What you can do, however, is use IPv6 to get round it by putting the Starlink into Bridge Mode and connecting it to a second router that does allow the Arc access using IPv6 address allocated by Starlink. I checked and I do have one.

So my question is…

What would be a good second router to get that’s got an easy to use interface for setting this up?

We also have three Grandstream access points through the house to provide proper Wi-Fi everywhere. I don’t want to upset them.

Thanks!





View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2
nztim
2845 posts

Uber Geek

ID Verified
Trusted
TEAMnetwork
Subscriber

  #3093347 22-Jun-2023 10:00
Send private message

use another connection roon, there is zero chance of s public ip on starlink

Better yet find a product that talks to the cloud so you don’t have to port forward




Any views expressed on these forums are my own and don't necessarily reflect those of my employer. 

 
 
 
 

Get easy to use, easy to install Norton antivirus protection against advanced online threats (affiliate link).
michaelmurfy
meow
12250 posts

Uber Geek

Moderator
ID Verified
Trusted
Lifetime subscriber

  #3093363 22-Jun-2023 10:53
Send private message

Just set up and use Tailscale (https://tailscale.com/) on a device on their network then you can use this without the need to portforward.


@nztim I am pretty sure you can now buy a Static IP via Support but I wouldn't do this and instead for this task use Tailscale.




Michael Murphy | https://murfy.nz
Referral Links: Octopus Energy ($50 Credit) | Tesla | Quic Broadband (use R122101E7CV7Q for free setup)

Are you happy with what you get from Geekzone? Please consider supporting us by subscribing.
Opinions are my own and not the views of my employer.

Geektastic

17690 posts

Uber Geek

Trusted
Lifetime subscriber

  #3093434 22-Jun-2023 13:44
Send private message

michaelmurfy:

Just set up and use Tailscale (https://tailscale.com/) on a device on their network then you can use this without the need to portforward.


@nztim I am pretty sure you can now buy a Static IP via Support but I wouldn't do this and instead for this task use Tailscale.



Whose network do you mean? Mine?







Geektastic

17690 posts

Uber Geek

Trusted
Lifetime subscriber

  #3093435 22-Jun-2023 13:46
Send private message

This is from the Support thread on the subject at Roon:

“The router that comes with Starlink isn’t compatible with Roon unless you buy the “LAN adapter” option and use that to connect to a different router. You can find the LAN adapter on the Starlink site, it’s pretty cheap.

Once you get the LAN adapter you can connect to another router using bridge mode. Then you just need to make sure Starlink has assigned you an IPv6 address (they almost certainly have) and then set up Roon ARC to use IPv6 which will solve the CGNAT issues caused by using Starlink with the stock router.”





RunningMan
7975 posts

Uber Geek


  #3093464 22-Jun-2023 14:39
Send private message

That's still exposing devices inside your network directly to the internet; easy, but not always safe.

Geektastic

17690 posts

Uber Geek

Trusted
Lifetime subscriber

  #3094219 23-Jun-2023 19:16
Send private message

I looked at Tailscale but that’s beyond my competence level to configure. Even the instructions might as well have been in Swahili!





Jase2985
12354 posts

Uber Geek

ID Verified
Lifetime subscriber

  #3094226 23-Jun-2023 19:50
Send private message

find a step by step video on youtube. 



Geektastic

17690 posts

Uber Geek

Trusted
Lifetime subscriber

  #3094287 24-Jun-2023 09:41
Send private message

This is what Roon said when I asked about the risk of access from outside:

“No, not at all. The Starlink LAN adapter puts your satellite connection into bridge mode. Once you plug that into another router you are at least as secure as you were with the Starlink router. Btw, the LAN adapter plugs into the Starlink router so you will also need to leave that plugged in but all it does is control the dish then pass off the signal to the LAN adapter. You will then run a CAT6 cable from the adapter to your new router. Btw, this will give you a bridge mode connection which is the same many other ISPs provide.”

I’m no network security engineer so I’ve no real idea as to whether that’s meaningful.





hsvhel
1094 posts

Uber Geek

ID Verified

  #3094290 24-Jun-2023 09:46
Send private message

They didn’t address the risk of forwarding a device to the internet😂




Referral Link Quic

 

Free Setup use R502152EQH6OK on check out

 

 

Geektastic

17690 posts

Uber Geek

Trusted
Lifetime subscriber

  #3094542 24-Jun-2023 20:32
Send private message

OOI what would someone be able to do to my Roon Nucleus if they did access it?

There’s nothing on it but Roon, it runs different OS to anything else in the house.

Would firewall software on the router not protect against the access?

(Note - these are genuine questions. I have no idea)





hsvhel
1094 posts

Uber Geek

ID Verified

  #3094547 24-Jun-2023 20:56
Send private message

You are poking a hole in the firewall for the port that Roon uses. So it won't be interested in what may come and go.

 

As for what can be done for access, should someone get in....depends on the offender really.  Might change your playlist and profile to Taylor Swift at all times.....might subscribe you to country music for a lifetime...pandoras box on what options are available depending on access levels??




Referral Link Quic

 

Free Setup use R502152EQH6OK on check out

 

 

michaelmurfy
meow
12250 posts

Uber Geek

Moderator
ID Verified
Trusted
Lifetime subscriber

  #3094552 24-Jun-2023 21:02
Send private message

@hsvhel you make it sound like Taylor Swift is a bad thing? She’s amazing.

But in all seriousness the advice they’re giving you isn’t the best. Punching holes through your firewall or putting the Starlink router into bridge mode is not a great idea at all.

Tailscale is super simple to setup. As others suggested look up some YouTube videos on it.




Michael Murphy | https://murfy.nz
Referral Links: Octopus Energy ($50 Credit) | Tesla | Quic Broadband (use R122101E7CV7Q for free setup)

Are you happy with what you get from Geekzone? Please consider supporting us by subscribing.
Opinions are my own and not the views of my employer.

RunningMan
7975 posts

Uber Geek


  #3094556 24-Jun-2023 21:09
Send private message

Geektastic: OOI what would someone be able to do to my Roon Nucleus if they did access it?

 

At one end of the scale, muck with your settings, playlists or similar. At the other, if there are any security vulnerabilities with it, then use it as a host for something nefarious like part of a bot net or route other traffic through your connection etc. It really depends how secure the device is as to what could happen to it. It's quite common with cheap IP cameras that have really poor software for that sort of thing to occur.

 

Geektastic:Would firewall software on the router not protect against the access?

 

No. Opening a port to an internal device is like drilling a hole through a physical firewall, then sticking the object you want protected up against the hole and wondering why it gets burnt. Port forwarding is deliberatly opening a direct route through the firewall to the device you choose (the Roon in this case), so traffic from the internet can directly access that device, bypassing the firewall. That device is then reliant on it's own protections and being totally free of any bugs or other vulnerabilities for protection.

Geektastic

17690 posts

Uber Geek

Trusted
Lifetime subscriber

  #3094635 25-Jun-2023 11:08
Send private message

hsvhel:

You are poking a hole in the firewall for the port that Roon uses. So it won't be interested in what may come and go.


As for what can be done for access, should someone get in....depends on the offender really.  Might change your playlist and profile to Taylor Swift at all times.....might subscribe you to country music for a lifetime...pandoras box on what options are available depending on access levels??



Taylor Swift?! Nooooo! That alone is sufficient reason not to do it!!





Geektastic

17690 posts

Uber Geek

Trusted
Lifetime subscriber

  #3094636 25-Jun-2023 11:12
Send private message

So on our network we have one MBP and one iMac. Plus the Roon Nucleus but I can’t access that at all, it’s entirely run by the Roon application itself.

Obviously neither of the Apple devices is awake at all times.

On what would I install and run Tailscale in that scenario?





 1 | 2
View this topic in a long page with up to 500 replies per page Create new topic





News and reviews »

Year in Search: What Kiwis Searched for in 2023
Posted 12-Dec-2023 08:18

New Air Traffic Management Platform and Resilient Buildings a Milestone for Airways
Posted 6-Dec-2023 05:00

Logitech G Launches New Flagship Console Wireless Gaming Headset Astro A50 X
Posted 5-Dec-2023 21:00

NordVPN Helps Users Protect Themselves From Vulnerable Apps
Posted 5-Dec-2023 14:27

First-of-its-Kind Flight Trials Integrate Uncrewed Aircraft Into Controlled Airspace
Posted 5-Dec-2023 13:59

Prodigi Technology Services Announces Strategic Acquisition of Conex
Posted 4-Dec-2023 09:33

Samsung Announces Galaxy AI
Posted 28-Nov-2023 14:48

Epson Launches EH-LS650 Ultra Short Throw Smart Streaming Laser Projector
Posted 28-Nov-2023 14:38

Fitbit Charge 6 Review
Posted 27-Nov-2023 16:21

Cisco Launches New Research Highlighting Gap in Preparedness for AI
Posted 23-Nov-2023 15:50

Seagate Takes Block Storage System to New Heights Reaching 2.5 PB
Posted 23-Nov-2023 15:45

Seagate Nytro 4350 NVMe SSD Delivers Consistent Application Performance and High QoS to Data Centers
Posted 23-Nov-2023 15:38

Amazon Fire TV Stick 4k Max (2nd Generation) Review
Posted 14-Nov-2023 16:17

Over half of New Zealand adults surveyed concerned about AI shopping scams
Posted 3-Nov-2023 10:42

Super Mario Bros. Wonder Launches on Nintendo Switch
Posted 24-Oct-2023 10:56








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.







Pluralsight






RSS feeds
Main feed
Forums feed
Copyright
©2002-2023 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Affiliate links
Mighty Ape
Sharesies
Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright


This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.