Release ASUS RT-AX88U Pro Firmware version 3.0.0.6.102_33320 (2024/09/27)

[Jerome27]

1. Optimized memory management mechanisms, improving system efficiency and stability.
2. Strengthened input validation and data processing workflows, further protecting your information security.
3. Improved web rendering engine, enhancing browsing experience and security.
4. Enhanced security of system command processing to guard against potential malicious operations.
5. Perfected JavaScript-related security mechanisms, offering a more secure web interaction environment.
6. Fixed the incorrect display of the DNS List interface.

Please unzip the firmware file, and then verify the checksum.
SHA256: d58b05bcf71ae256033369c6ef0c970ba8d52429700aeffdc5619c773ec51d91

https://www.asus.com/fr/networking-...88u-pro/helpdesk_bios?model2Name=RT-AX88U-Pro

 

[Justinh]

I love that "Perfected" statement they are now using. I've been waiting so long for their security to be perfect in the "web interaction environment"!

 

[PunchCardBoss]

Well, the new FW fixed the DNS radio button display in the Guest Network Pro UI.

Tried a bogus DNS entry in Guest Network Pro and tried adding VLAN IPs in the Network Services Filer. Neither effort blocked internet access for VLAN clients. So still more work to be done on that front.

On a positive note, the UI seems a bit more snappy.

Hopefully, this new FW will help stability for other's config. I wasn't having stability issues - no AiMesh.

 

[Paliv]

I’ll give it a shot tonight.

 

[maxbraketorque]

1. Optimized memory management mechanisms, improving system efficiency and stability.
2. Strengthened input validation and data processing workflows, further protecting your information security.
3. Improved web rendering engine, enhancing browsing experience and security.
4. Enhanced security of system command processing to guard against potential malicious operations.
5. Perfected JavaScript-related security mechanisms, offering a more secure web interaction environment.
6. Fixed the incorrect display of the DNS List interface.

Please unzip the firmware file, and then verify the checksum.
SHA256: d58b05bcf71ae256033369c6ef0c970ba8d52429700aeffdc5619c773ec51d91

https://www.asus.com/fr/networking-...88u-pro/helpdesk_bios?model2Name=RT-AX88U-Pro

This is the exact same wording as used for the XT8 3.0.0.4.388_24668 FW release. This is very interesting because it suggests a significant under-the-hood improvement applied to both the 3004 and 3006 FW tracks.

Now is ASUS would stop introducing a new wifi router every few months and focus on updating the FW on all their existing models...

 

[bennor]

This is the exact same wording as used for the XT8 3.0.0.4.388_24668 FW release.

Same changes in a number of recent device firmware releases.

ASUS GT-AX11000 Pro Firmware version 3.0.0.6.102_34721

- Optimized memory management mechanisms, improving system efficiency and stability. - Strengthened input validation and data processing workflows, further protecting your information security. - Improved web rendering engine, enhancing browsing experience and security. - Enhanced security of...

www.snbforums.com

Release - ASUS ZenWiFi XT8 Firmware version 3.0.0.4.388_24668 (2024/09/24)

Updated firmware for the ZenWiFi XT8 has been released. https://www.asus.com/supportonly/asus%20zenwifi%20ax%20(xt8)/helpdesk_bios/ Direct firmware download for ASUS ZenWiFi XT8 V1...

www.snbforums.com

Release - ASUS ZenWiFi XT9 Firmware version 3.0.0.4.388_24668 (2024/09/23)

Updated firmware for the ZenWiFi XT9 has been released. https://www.asus.com/supportonly/zenwifi%20xt9/helpdesk_bios/ Direct firmware download: https://dlcdnets.asus.com/pub/ASUS/wireless/ZenWiFi XT9/FW_ZENWIFI_XT9_300438824668.zip?model=ZenWiFi XT9 ASUS ZenWiFi XT9 Firmware version...

www.snbforums.com

No doubt other devices will get these updates over the next few weeks.

 

[PunchCardBoss]

This is very interesting because it suggests a significant under-the-hood improvement applied to both the 3004 and 3006 FW tracks.

Agreed. Seems like they may have discovered some sloppy code that is part of their codebase and common across several routers.

Glad they patched it.

Perhaps it is part of the new code @RMerlin is waiting for.

I'm not expecting the next 3006 GPL drop until the end of September at the earliest, as Asus needs to finalize some things they are currently working on before they have a stable codebase to provide.

 

[mocamaster]

It's a shame they haven't fixed the issue where you can't block internet access for specific guest devices that are not on the main VLAN. I escalated this with ASUS and mentioned that, while it's not classified as a CVE, it's still a significant security design flaw. The inability to block internet access on guest networks, especially when those devices are on a different subnet, compromises network segmentation and device isolation. This is a crucial security feature, and connecting guest devices to the main network isn't a viable workaround, as it undermines the whole purpose of segmentation. Hopefully, ASUS will prioritize this in future updates.

 

[maxbraketorque]

It's a shame they haven't fixed the issue where you can't block internet access for specific guest devices that are not on the main VLAN. I escalated this with ASUS and mentioned that, while it's not classified as a CVE, it's still a significant security design flaw. The inability to block internet access on guest networks, especially when those devices are on a different subnet, compromises network segmentation and device isolation. This is a crucial security feature, and connecting guest devices to the main network isn't a viable workaround, as it undermines the whole purpose of segmentation. Hopefully, ASUS will prioritize this in future updates.

Do you mean intranet or local network?

 

[PunchCardBoss]

Do you mean intranet or local network?

NO.

As @mocamaster said: "INTERNET". At present asus -PRO router firmware does not permit DENY internet access for any VLAN client.

VLAN subnet isolation from other LAN subnets (intranet) is possible.