WiFi: RT-AC66U

General Info:
OS: AsusWRT
Processor: Single-Core 600Mhz
RAM: 256MB
Storage Configuration: None
SSID: IFBM
WPA2AES: ifbm4015
IP: https://192.168.1.1:8443
Admin Login Info
Location: Kitchen off of Suite 120 (Research Side). Door behind receptionist area.

Notes:
This is the hub of all IFBM networking. All the switches, modems, VPN devices, and computers pass through here.

Only make reboot level changes after business hours unless explicitly authorized. Doing so would knock everyone offline for 2-5 minutes minimum and possibly longer if something breaks. If you aren't familiar with which settings require network connections to reset, don't apply any changes to those settings during business hours.

VPN Connections are made to this device. The Router is running OpenVPN Server software configured for clients to connect via TAP. This limits devices to primarily Laptops and Desktops since phones and tablets typically don't have TAP drivers yet, but it allows VPN devices to act as full local clients to interact with their files/remote desktops without any complicated NATing or Bridging to maintain. Known Bug: Do NOT open the VPN page while any VPN Client Connected. Doing so will crash the entire user interface until a hard reboot.

This router is set to Load Balance between the two internet modems automatically. This design was chosen because IFBM heavily relies on the Google Apps and Practice Fusion webapps as well as Remote Desktop over VPN, and Cubby cloud storage for critical server backup and the highest upload speeds offered by charter in one package were 5Mbps which does not leave enough overhead for day to day responsiveness. Therefore, IFBM has two packages for double the available upload bandwidth. The downside to this design is that the Load Balancer does not as of writing recognize any sensitive connections being open such as VPN or SSL, which means by default the router will automatically balance all wifi and ethernet clients by traffic between each modem, without any downtime client side unless a sensitive connection was open in which case the IP changing knocks the user off of any secure services. This notably affects Practice Fusion and Kareo users since it logs them off seemingly at random (diagnosed by checking external IP via speedtest after each logoff). This also interrupts VPN sessions although the only people in the office using VPN at the office are monitors who typically have a hotspot. The work around for this is to manually assign employee devices to one connection or the other via MAC assignment. This is already configured so all employee computers connect through Modem 1 (IP 96.38.243.90), and the Server and Doctor's computer connect through Modem 2 (IP 24.178.69.106) for Cloud Backup/WSUS Updates and YouTube videos respectively. All other clients (visitors mainly) get balanced between the two modems to keep traffic evenly distributed.

Any changes made to the firmware should result in a new backup being made and uploaded to the log.

Log:

1/13/15:
Updated to Merlin Firmware. Fresh Config: ​IFBM_AC66U_Merlin_1-13-15.CFG
Disabled Dual WAN temporarily due to VPN issues.

3/9/14:
Router Back Up to IFBMSERVER (C:\IFBM Documents\Chris Hoffecker\Backups)