The HomeLink
Implementation Guide

You need two identical routers — one for home, one for travel. Don't mix models. Identical hardware makes configuration significantly easier and reduces failure points.

This is the most critical step. If the Home Node isn't reachable from the internet, the whole system fails. Do this at home before anything else.

Wiring

1. 1Plug the power adapter into the Home Node router.
2. 2Run an Ethernet cable from the WAN port (blue) on the Home Node to any LAN port on your ISP modem/router (the Comcast or AT&T box).
3. 3Wait 2–3 minutes for the device to boot fully.

Access the Admin Panel

1. 1Connect your laptop to the Home Node's WiFi. Look for a network named GL-MT3000-xxxx. The password is on the back of the router, labeled Key.
2. 2Open a browser and go to 192.168.8.1.
3. 3Select English, create a strong admin password, and save it somewhere safe.

Activate the WireGuard Server

1. 1In the left sidebar, click VPN → WireGuard Server.
2. 2Click Start.
3. 3Click Options (top right). Toggle "Allow Remote Access to LAN Subnet" ON. Click Apply.

For the Travel Node to reach the Home Node from outside your network, you need to open a port on your ISP modem. This is called port forwarding, and it's where most DIY setups stall.

1. 1Log into your ISP modem — not the GL.iNet. Usually at 192.168.1.1 or 10.0.0.1. If unsure, Google your ISP name + "how to access router".
2. 2Find Port Forwarding — usually under Advanced or Firewall.
3. 3Create a new rule with these exact values:

Dynamic DNS (DDNS)

Your home IP address changes periodically. DDNS gives your home a stable hostname the Travel Node can always find.

1. 1Back on the GL.iNet admin panel (192.168.8.1), go to Applications → Dynamic DNS.
2. 2Toggle Enable DDNS on and accept the terms.
3. 3Wait for a URL like xxxx.glddns.com to appear. Write this down — it's your Home Node's permanent address.
4. 4Click Apply.

Now configure the router that goes in your bag. First you need the WireGuard configuration key from your Home Node.

Get the Configuration Key

1. 1On the Home Node admin panel, go to VPN → WireGuard Server → Profiles tab.
2. 2Click + Add. Name it "Travel Node". Click Apply.
3. 3A configuration block appears. Before copying it, make sure the Address field shows your DDNS hostname (xxxx.glddns.com) — not a raw IP. Select it from the dropdown if needed.
4. 4Click Download or copy the entire configuration block.

Configure the Travel Node

1. 1Power up the Travel Node. Connect your laptop to its WiFi (GL-MT3000-xxxx, password on back).
2. 2Go to 192.168.8.1 and log in.
3. 3Go to VPN → WireGuard Client. Click + New Group, name it "HomeLink".
4. 4Click Manually Add Configuration. Paste the configuration block you copied. Click Apply.
5. 5Click the ⋯ menu next to the configuration and select Start.

Enable the Kill Switch

This is non-negotiable. The kill switch cuts internet access entirely if the VPN tunnel drops — preventing your real IP from leaking even for a moment.

1. 1On the Travel Node, go to VPN → VPN Dashboard.
2. 2Click the gear icon next to the WireGuard Client toggle.
3. 3Find "Block Non-VPN Traffic" or "Kill Switch". Toggle it ON. Click Apply.

You can also route your phone's traffic through the Home Node directly — useful when you're away from the Travel Node but still need a US IP for banking or work apps.

1. 1Download the WireGuard app on your phone (iOS App Store or Google Play).
2. 2On the Home Node admin panel, go to VPN → WireGuard Server → Profiles. Click + Add, name it "My Phone".
3. 3This time, click the QR Code tab instead of Configuration File.
4. 4In the WireGuard app on your phone, tap + → Create from QR Code. Scan the QR code on screen.
5. 5Name the tunnel and toggle it on. Verify your IP at whatismyip.com.

Do not get on a plane until you pass this test. Run it at a coffee shop or using your phone's hotspot — anywhere other than your home network.

Phase A — Get your baseline IP

1. 1At home on your normal WiFi (not the HomeLink router), go to whatismyip.com.
2. 2Write down the IPv4 address. This is your "Safe" home IP.

Phase B — Field test

1. 1Go to a coffee shop or enable your phone's mobile hotspot.
2. 2Power up the Travel Node. Connect it to the coffee shop WiFi or hotspot via the admin panel (192.168.8.1 → Internet → Repeater → scan and connect).
3. 3Connect your laptop to the Travel Node WiFi. Wait 30 seconds for the tunnel to establish — look for a green/blue dot next to VPN in the sidebar.
4. 4Go to whatismyip.com on your laptop.

If it fails — troubleshooting checklist

• →Is the WireGuard Server running on the Home Node? Check VPN → WireGuard Server — should show active/green.
• →Is the WireGuard Client running on the Travel Node? Check VPN → WireGuard Client — should show connected.
• →Is port forwarding correctly configured on your ISP modem? Double-check port 51820 UDP is forwarded to the Home Node's IP.
• →Does the DDNS hostname resolve correctly? Go to Applications → Dynamic DNS on the Home Node and run the DDNS Test — the IP shown should match whatismyip.com from your home network.
• →Is your ISP using CGNAT? If so, port forwarding won't work. See the HomeLink option below.