Never turn on remote admin. You don’t need to admin your router from outside of your house.
I heard that a while ago many VPN services were bought by the very people you use a VPN to protect against. How do you know which ones are safe?
I believe they mean setting up a VPN on your network, rather than buying a service from a VPN provider.
Something like Wireguard lets you configure individual devices to access your network remotely.
This would be self hosted so you can access your own internal network. Wireguard on OpenVPN are your best options there, personally I use wireguard/pivpn.
The way to tell which ones are safe is to look up legal history for each company. When the home country of the company demands all the data they have, the companies are going to give all the data they have. So if a court order of a VPN yields nothing or almost nothing, then you know they really don’t save any logs.
As someone else mentioned already, proton and mullvad are the good ones in, but that can change if either company gets bought out or changes management etc
That site… even the model list is an advertorial.
- XT8 (ZenWiFi AX XT8)
- XT8_V2 (ZenWiFi AX XT8 V2)
- RT-AX88U
- RT-AX58U
- RT-AX57
- RT-AC86U
- RT-AC68U
Absolutely. Like why in the world would the article have a list of features included in each model of router?
Friendly reminder that OpenWrt exists, and is probably safer than the stock firmware in any consumer router.
From a quick look, I see that at least one of the affected models has official OpenWrt support: the RT-AC68U
Friendly reminder that OpenWrt supports Raspberry Pi and every Pi from 3 onwards makes for a great, inexpensive router. Adding WiFi can be done with any off-the-shelf WiFi router or access point, brand new or second hand. Since they aren’t exposed to the Internet, remote vulnerabilities are significantly mitigated.
Another friendly reminder, enterprise-grade routers like Mikrotik are fantastic. They don’t have wifi builtin, so you may never need to upgrade it if you get fast enough uplink (mine is gigabit, so should be fine). You’ll need a separate AP (I got Ubiquiti). They’re way more feature complete than nonsense like these from ASUS, and they generally have more secure firmware.
If you are willing to spend a bit more upfront, I bought a mini PC in 2017 and installed opnsense on it. It’s still rock solid. For wifi, I use a separate ap (a ubiquity UAP that I bought in 2015) and it is also going strong. Almost a decade of rock solid performance easily beats out any other router I’ve owned in terms of both performance and cost.
It’s really too bad I’m unable to update my firmware until I agree to let ASUS sell my data.
Thanks for the reminder to switch to merlin firmware.
Merlin has the problem that it doesn’t have something like like aimesh where you can auto synch the config between all your routers. I’ve got a network of three Asus routers and they work great and I can admin them like they’re one router, and I’d hate to have to give that to up.
Why do you have three routers? Even if you’re doing complex routing, you should be able to do it on one device.
Checked the gnuton builds?
Will that let you download speeds greater than 160 mbps? The last time I tried Merlin, the ASUS router I had wouldn’t download at full speed allowed by my internet connection?
