Grimoire

edit firewall

vi /etc/config/firewall

reload firewall

# Once the settings are changed, and after double checking changes, reload the firewall via
/etc/init.d/firewall reload

ssh keys

Append public key to authorized_keys (on your OpenWRT device) src

ssh root@192.168.1.1 "tee -a /etc/dropbear/authorized_keys" < ~/.ssh/id_rsa.pub

enable pub key auth on openwrt/etc/config/dropbear

config dropbear
        option PasswordAuth 'off'
        option Port '22'

restart dropbear

/etc/init.d/dropbear restart

unbound dns

add a new domain

/etc/unbound/unbound.conf

        local-zone: "cacheconsiderations.com" redirect
        local-data: "cacheconsiderations.com 864000 in A 192.168.2.2"
Note: ~192.168.2.2~ is the ip address of the k8s ingress controller

restart unbound

/etc/init.d/unbound restart