I have just purchased a Firewalla Purple SE, and I'm really excited to set it up.
My ISP is T-Mobile Home Internet, and I currently have an Arcadyan KVD21 5G gateway with three eero 6 Pros. The KVD21 currently handles DHCP, DNS, etc. The eero 6 Pros are in bridged mode and use wireless for the backhaul.
My goal is to attach the KVD21 to the WAN port on the FWP and attach the gateway eero to the LAN port:
KVD21 (router) <-WAN-> FWP <-LAN-> eero gateway (bridged) <-wireless-> eero satellites
My current challenges include bufferbloat, the inability to set any custom DNS, MTU, etc. network-wide, the inability to set local IP reservations, the lack of visibility into how much data my devices are using, and so on.
The gateway from T-Mobile offers very few options for anything. The eero features covered some of the aforementioned items, but that goes away once putting them into bridged mode. I did that because I lost IPv6 completely on the LAN otherwise.
What is the best way to approach setting up the FWP SE in this environment and with some of these goals in mind?
- Which Firewalla mode will allow me to get IPv6 addresses on my LAN devices connected to my eero mesh satellites?
- Will this mode allow me to use any kind of SQM or QoS to reduce bufferbloat (I recognize this is difficult with 5G)?
- I'm not worried about double-NAT at this point. T-Mobile's use of CGNAT, blocking inbound for IPv6, etc. makes it virtually impossible to open any inbound traffic anyways.
- I'm also wanting to setup a Docker container to replace my Raspberry Pi that currently runs Pi-hole for a few specific LAN clients.
- Any other configuration concerns that I should be worried about?
TL;DR - My ISP gateway won't let me disable router mode, but I want to have things like SQM and IPv6 through my new FWP SE. Is this possible?
Please sign in to leave a comment.