What is GADNET and why is a traditional router not enough?

Technology 2026-05-23 3 min read

You probably have a router provided by your Internet Service Provider (ISP) at home. Most of us treat this device as a “black box” – we plug it in, enter the password from the sticker, and forget about it. Unfortunately, in the era of smart homes, this approach is a ticking time bomb.

"The traditional 'castle and moat' security model is broken. We must stop trusting packets simply because they are inside our network."
— John Kindervag, pioneer and creator of the Zero Trust concept
🔗 Source

That is why we created GADNET – an open-source, advanced router based on the Zero Trust concept that turns your home network into a fortress.

Why does a traditional router fail?

Traditional routers use an approach known in the industry as the “castle and moat”. The external internet is a threat (located outside the “moat”), and everything that connects to your WiFi (is inside the “castle”) automatically becomes trusted.

Sounds reasonable? Until it doesn’t. By the middle of this decade, the average home had an average of 22 devices connected to the network (according to consulting firms’ audits). It only takes one of them to have a vulnerability. If a hacker breaks into your $30 smart camera, on a traditional router they automatically gain access to all other devices: your work laptop, phone, or network drive.

What exactly is GADNET?

GADNET is software designed for devices such as the Raspberry Pi 5. Instead of trusting every device on the network, GADNET reverses the paradigm and applies a Zero Trust policy.

Key features of the system include:

  1. Default Isolation (Quarantine): Every new device connecting to your GADNET network automatically goes to the “Isolation Zone”. It has no internet access and cannot see other devices. It waits there for your manual approval.
  2. Network Microsegmentation (Zones): GADNET natively supports 6 predefined zones (e.g., Trusted, IoT, Guest). The “IoT Zone” is hardware-blocked from accessing your private computers in the “Trusted Zone”.
  3. WebAuthn Login (Passwordless): Traditional admin panels (e.g., at 192.168.0.1) require entering a password. GADNET uses physical U2F keys (e.g., YubiKey) or fingerprints for authentication. A password that doesn’t exist cannot be hacked.
  4. AI Anomaly Detection: The built-in analysis system learns the normal traffic patterns and raises an alarm when it detects sudden, unjustified port scanning.

By utilizing the highly efficient and secure Alpine Linux, a backend application written in the latest FastAPI, and Redis databases, GADNET guarantees corporate security standards while maintaining low computational power requirements. Download the system image from our GitHub repository and transform your Raspberry Pi into the most secure router on the market.

Next post → Zero Trust Architecture in GADNET: How does it work in practice?