Hello all. I need some help with my home network and setting up a network wide VPN, I think. Here’s the scenario. I received and Android Streaming Box for Christmas. After some research I understand the potential for malware, and the possible security breaches. I am trying to limit these intrusions, and have come up with 2 options. 1. A VPN installed on the streambox set to auto connect anytime the box is on. I think I understand how to do this with NordVPN. However, I seem to be seeing conflicting information on if this is enough security. 2. Run a network wide VPN from the router. This is where I need the Explain Like I am 5 years old on how to do this. I currently have the Eero 6 Wifi set up in my house.
For your situation, setting up a VPN is a smart move to secure your Android streaming box. Based on my experience, NordVPN is solid for privacy, but it can be hit or miss with streaming services like Netflix or Disney+. If streaming compatibility is a priority, you might want to check out other options.
I’ve been using Private Internet Access (PIA) for years, and it’s worked well across all my devices, including for streaming. It’s affordable and consistently lets me access platforms like Netflix without issues. You can check out a detailed VPN comparison table on Reddit to see how different providers stack up: Reddit VPN Comparison Table.
For your Eero 6 setup, running a network-wide VPN is a great idea if you want to secure all devices automatically. Some routers support native VPN setup, but for others, you might need to install custom firmware like OpenWRT or DD-WRT. Here’s a guide to get you started: Eero VPN Setup Guide.
EDIT: If you’re interested, PIA currently has an 82% discount with some free months included: Private Internet Access Offer.
A VPN does not do what you think it does. It will not protect your network from malware from that android stream box.
You want to put that device on a VLAN separate from your other devices.
A VPN doesn’t prevent malware or security breaches.
Without a VPN your internet traffic exits your home network to the internet via your ISP. All a VPN does, is move that exit from your ISP to your VPN provider.
If you are worried about the streaming box having malware, then burn it.
If you are worried about it being the source of a security breach either, don’t let it on the internet, or isolate it so it can’t talk to anything else on your network, either way VLANs are a great solution.
VPN or not your still open to snooping and any general internet threats, it just comes through the VPN instead. Best advice I can give you is don’t install any dodgy apps and keep the firmware updated on the stream box. ( If it gets any )
All the adds for VPNs on YT etc infuriate me BC it’s 99% BS on a script. The only useful thing you could do on a VPN is location shift for netflix etc. If that’s what you plan to do send all streaming traffic over the VPN but leave all other devices connected to the ISP kit. Certain apps and devices really don’t like the IP change when the VPN kicks in.
Eeros have no support for VPNs last time I looked so you would need a replacement router if you want all devices connected.
VPN does not protect your network against malwares…
I have also seen conflicting information on having the box on the guest network. Would that work? Is that network separate from my main network?
Thanks for the response. Would you be able to walk me through the steps for that?
agree 1000% on the bullshit narrative that you see EVERYWHERE on Reddit, You tube, and everywhere else about how VPN’s “protect” your devices and network
the general public is too lazy, stupid, and unwilling to actually research and LEARN about security, like everything else, they just want to download an app, or go to social media and ask a random stranger to help them, and then assume they are protected, and go back to staring at their shit on Dick Toc
if you actually care about security on your devices and network, take some time and LEARN what the dangers are, and the best way to avoid them on your network
ITS NOT SECURE JUST BY INSTALLING A VPN!
Thanks. The plan now is literally 2 apps. My FIL has the same box, and showed up the live TV app and the movie app. That is literally the only intended use of the box for us
Normally guest networks will have a function called “device isolation” so that would work. You’d need to check your router manual if it’s supported.
In general, guest networks isolate each client, so that you cannot casually connect/share with another device. They just have internet. More importantly, the guest would not see the contents of your network. (If it is properly configured)
The first step is checking to see if your router even supports VLANs, most consumer routers don’t.
So no VPN required really.
Ok, So am i reading correctly that if the streaming box is on the guest network, any malware would not be able to access my home network?
Of note, an Asus RT-86U Pro will do a VPN Fusion with Isolation on its own subnet.
Yeah, I think so. I’d wait for others to give their thoughts.
If you are able to set up the DNS on the router, Cloudflare has a DNS that can help block malware. It can help stop you from going to a site that pushes malware. It is not perfect, but it makes it harder to stumble into malware.
I use 1.1.1.2 on my router, but in this article, they talk about configuring dns on devices. They use 1.1.1.1 in the doc, and I’m not sure if that does malware or not.
Put a device on its own subnet doesn’t really help anything unless there are other routing rules preventing the device from talking to others.
So if I have a guest network. I can connect the box to the guest. Even it malware was present, and they access the internet, it would not be the same internet as my primary network? Basically, having my log in info saved on the primary internet, the box would not have access?
Vpn fusion puts it on its own subnet with no lan connection and Ap isolation . What am I missing here?