Update Dang networks are sure things

Dang-networks-are-sure-things.md

@@ -26,23 +26,29 @@ The WiFi here has been pretty terrible for a while. Upgrading our internet speed
 - [x] Upgrade Neatgear switch to PoE switch
    - Datto E24v3
 - [ ] Add additional access points
-   - EITHER:
-    - Re-use the ASUS APs (no PoE)
-    - Add some Ruckus R700 APs (older, but more compatible with the stupid Pi Zeros)
+    - Option 1: Re-use the ASUS APs (no PoE)
+    - Option 2: Add some Ruckus R700 APs (older, but more compatible with the stupid Pi Zeros)
+     - This is currently implemented but kind of sucks -- can't do subnets without double-NAT (can't assign addresses from router) and can't set an IP range, meaning I can't easily restrict internet access for IoT devices
+   - Option 3: (Most likely) Buy a few Extreme Networks WS-AP3825i (done) APs to flash with OpenWRT and addon to the local network.
 - [ ] Disable internet for 2.4GHz network
-- [ ] Re-run bad ethernet runs
-   -  Bedroom:(2 ports, difficult, currently running to the library & living room
-   - Library (easy, just need to shorten the runs)
-   - Livingroom (less easy, insulation - but there are already runs to attach to. 
-- [ ] Add new runs for the APs
-   - If we stick with ASUS, I need to either also run power or find convenient places to install them
-   - Ruckus APs will be easier, as they are PoE powered
-- [ ] Upgrade bedroom switch connections to 2.5Gb
+- [x] Re-run bad ethernet runs
+   - Last thing left to do here is to replace the wall jack in dorkHole with a single-jack keystone plate cover and remove the extra cable
+   - Luckily, all other cables were long enough to go where they needed to go
+   - As a bonus, even ran another line to the garage for another AP
+- [x] Add new runs for the APs
+   - ~~If we stick with ASUS, I need to either also run power or find convenient places to install them~~
+   - ~~Ruckus APs will be easier, as they are PoE powered~~
+   - New runs have been done for the library, servers, and the garage - unlikely that I'll need more at this time
+   - However, one more run can be theoretically run to the master bedroom to really make sure there are no deadspots in the back yard, although the current setup works just fine, frankly.
+- [x] Upgrade bedroom switch connections to 2.5Gb
+   - There is now a 2.5Gb switch in gayCloset. Currently, only the run to the (1Gb) switch in the bedroom and the Datto PoE switch have lines to them.
 
 # Device-specific notes
 
 ## Ruckus R700
 
+**EDIT:** These will be replaced soon. The Zyxel APs not running OpenWRT are forgivable since they are at least fast, but these things honk butt, run slow, and have zero-day exploits that, while they don't effect me, have not been patched so do not invoke confidence. I've purchased 4x Extreme Networks WS-AP3825i APs which can be flashed with OpenWRT to replace them. That being said, they are still in use, so the following section remains.
+
 These are old devices with trash webpage interfaces that use older security than TLS 1.2 (which basically means no web browsers can get to them.) In order to get around this issue, you need to first setup some old security standards for SSH, and then remote into them and disable HTTPS access and enable HTTP access.
 
 First, modify `~/.ssh/config` with the following