mgrotke/linuxrouter
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
linuxrouter/FUNDRAISING.md
Matthew Grotke 574a45111d Development
2026-06-06 17:14:01 -04:00

109 lines
7.7 KiB
Markdown
Raw Blame History

# Routlin Kickstarter Fundraising Goals
Routlin is a home router management platform built to give home users and small offices the kind of network control typically reserved for enterprise equipment. This document outlines what a fundraising campaign would go toward and why each item matters for the project.
---
## Goal 1: Dedicated Testing and Integration Server
**Purpose:** Test changes against varying network environments.
Currently, I use my own PC for 100% of development and testing. In order to do proper testing, I need a dedicated server. This would allow:
- Trying out a wide variety of network configurations without affecting my home network.
- Running the software on different distros to test the install/uninstall capabilities on different platforms and package managers.
- Running changes in isolation before deploying to production.
- Reproducing bugs without affecting connected devices.
- Running unit and integration tests.
Realistiaclly I'd also like to get a ARM-based device with two ethernet ports that would be suitible for running as a router because I know many people would want that setup due to low-power and low-noise. Example hardware I'd be interested in obtaining would be NanoPi R5S/R6S and Rasberry Pi with a 2nd ethernet expansion.
---
## Goal 2: Second ISP Connection
**Purpose:** This is network software. A real WAN connection is required to test DHCP client behavior, failover, DDNS, firewall rules against live traffic, and VPN tunnels. Every time I test features or try to repoduce bugs, I risk losing my home internet connection, which makes troubleshooting and resolving very annoying and difficult. Luckily, multiple ISPs are available in my neighborhood, so I could get a 2nd connection dedicated to testing! But I need funding to pay for a 2nd one.
A second ISP provides:
- A dedicated WAN for the test network, completely isolated from my home network.
- The ability to test dual-WAN and failover scenarios.
- Safe environment for testing a wide variety of configurations without disrupting my primary connection.
---
## Goal 3: Assortment of Network Equipment (Switches and Access Points)
**Purpose:** This is one of the most important goals. I currently use a Unifi switch and Unifi access points for 100% of testing and development. I've already noticed several "quirks" with Unifi, especially relating to RADIUS, 802.1X, and VLAN tagging. I expect different vendors will have subtly different quirks as well.
Funding would go toward acquiring equipment from additional vendors, including:
- **Managed switches:** Cisco (SG series), Netgear (Plus/Pro), TP-Link (Omada), MikroTik (in bridge mode), Aruba (Instant On).
- **Unmanaged switch:** A consumer-grade unmanaged switch to test on, which will not have certain capabilities such as VLAN tagging, 802.1X port authentication, or RADIUS-based dynamic VLAN assignment - ensuring Routlin degrades gracefully when advanced switching features are unavailable.
- **Wireless access points:** TP-Link Omada, Aruba Instant On, MikroTik, OpenWrt-compatible hardware
- **Budget/prosumer gear** that home users are likely to own
Each vendor has its own implementation of WPA-Enterprise, MAC-based 802.1X, VLAN assignment via RADIUS attributes, and huntgroup behavior. Testing against a realistic cross-section of hardware is the only way to ensure Routlin works reliably for users who do not own Unifi equipment.
---
## Goal 4: Router Hardware Targets
**Purpose:** Routlin runs on the router itself. Different hardware platforms have different constraints, driver availability, and performance characteristics.
Target hardware for testing:
- **x86 mini PC** (e.g. Protectli, Topton N100) - most capable, common for dedicated router builds
- **Raspberry Pi 4/5** - popular ARM SBC, limited NIC options, different network stack behavior
- **Additional ARM SBCs** (e.g. Orange Pi, Banana Pi) - lower-cost targets common outside North America
---
## Goal 5: Development Time
**Purpose:** The largest real cost of advancing this project is sustained developer time to implement new features, test, fix bugs, and respond to user feedback.
A successful campaign would allow meaningful blocks of development time to be dedicated to Routlin rather than worked around other obligations.
---
## Routlin Pro: Paid License Features
Routlin Pro is a paid license tier planned for future development. Early Kickstarter backers will receive a Routlin Pro license as an investment incentive.
The core Routlin software will always remain free for individual use. Pro features are advanced capabilities that require ongoing maintenance, threat database subscriptions, and significant development investment to build and sustain.
---
**Deep Packet Inspection and Device Identification** — See exactly what every device on your network is doing. Routlin Pro automatically classifies devices and identifies traffic types in real time — streaming, gaming, P2P, VoIP, and more — feeding into a Security Insights dashboard and per-device traffic rules.
**Intrusion Detection and Prevention (IDS/IPS)** — Monitor your network for known threat signatures across all traffic, not just DNS. Choose alert-only mode or automatic blocking. Signature database updated regularly, with an optional extended commercial threat feed.
**SSL/TLS Traffic Inspection** — See inside encrypted HTTPS traffic for security monitoring and content filtering. Routlin Pro decrypts, inspects, and re-encrypts on the fly, enabling IDS/IPS and anomaly detection to work on traffic that would otherwise be completely opaque.
**Traffic Flows (Session Logging)** — A full log of every TCP and UDP connection through the router: source, destination, port, bytes, and timing. Filter, sort, and save presets. Invaluable for diagnosing bandwidth problems or investigating unexpected activity after the fact.
**Anomaly and Pattern Detection** — Routlin Pro watches for unusual behavior automatically: unexpected large transfers, SYN flood indicators, overnight activity on idle devices, new device types appearing, and more. Anomalies surface as dashboard alerts and can trigger automated responses like device isolation or rate limiting.
**Restricted VLANs** — Prevent devices assigned to a particular VLAN from ever contacting the internet. Perfect for IoT devices, security cameras, NAS, printers, or machines running untrusted software — basically anything that should never phone home. Works alongside Routlin's inter-VLAN exception rules so you can still grant selective access to the quarantined device(s) from within the LAN only.
**Supplicant-Based 802.1X Authentication** — Go beyond authorizing devices onto your network based on their MAC addresses. Routlin Pro adds full EAP-PEAP, EAP-TTLS, and EAP-TLS support, letting devices authenticate with credentials or certificates. Revoke individual device access without changing network passwords — and keep out anyone spoofing a known MAC.
**Captive Portal** — Turn any VLAN into a captive portal. Choose from a simple splash/terms-of-service page, time-limited voucher codes, or a full RADIUS login using your existing user accounts. Ideal for guest networks, venues, or any situation where you need to control and track who gets internet access.
---
## Summary Table
| Goal | Priority | Estimated Cost |
|------|----------|---------------|
| Testing/integration server | High | $800 - $1,500 |
| Second ISP connection | High | $40 - $80/mo ongoing |
| Network equipment assortment | High | $1,500 - $3,000 |
| Router hardware targets | Medium | $300 - $600 |
| Development time | High | Variable |
| Routlin Pro development | High | Variable |
---
*Routlin is open source software for people who want real control over their home network.*
Reference in a new issue View git blame Copy permalink