Menu
What's new
By:
Filters Better Search

Recent Security Patches — Still Missing

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Jeje2 said:
is it already time to upgrade
Click to expand...

If your router is not affected by the malware and still in good working order - just lock down eventual open to Internet services and continue using it as before. OpenVPN server for connecting back to your network is fine. At some point a new firmware will be released for it. No need to replace it.
 
Tech9 said:
If your router is not affected by the malware and still in good working order - just lock down eventual open to Internet services and continue using it as before. OpenVPN server for connecting back to your network is fine. At some point a new firmware will be released for it. No need to replace it.
Click to expand...
Or, if he is still concerned, @Jeje2 could install the latest Merlin firmware (3004_388.4_4), which has already been patched.
 
If this router was not hit already - some of the conditions were not met. I had one bait RT-AX86U running wide open in DMZ and perhaps only because it was behind my gateway with private WAN IP it didn't catch anything. Perhaps all the users behind CGNAT or not using the components with the issue are fine. RT-AX86U is still very capable router and replacing it just in case is a waste of money. Same issue may happen with the new one, no guarantees.
 
I am wondering if the delay with the AX86U/AX86S firmware is related to the same firmware being used on two similar routers? Sure, the firmware file supposedly contains two firmwares but there could be an issue getting the routers to tell the difference? Who knows? (The Shadow knows...)
But the AX86U is still a worthy router. Same for the AX86S.
 
bbunge said:
I am wondering if the delay with the AX86U/AX86S firmware is related to the same firmware being used on two similar routers? Sure, the firmware file supposedly contains two firmwares but there could be an issue getting the routers to tell the difference? Who knows? (The Shadow knows...)
But the AX86U is still a worthy router. Same for the AX86S.
Click to expand...
Does seem odd. There's obviously a reason for the 'delay' but I guess we'll never know what or why!
 
This one is also quite old model from 2019, Qualcomm based hardware, has a history of large firmware release gaps. Being completely different hardware device with different software - perhaps not affected by the current malware issue. No reports of damaged Qualcomm or MediaTek based devices.
 
Folks, complaining here about your specific model not getting an update isn't going to change anything. If your particular model hasn't received an update, you should contact Asus support instead. When you have like 50+ different models to develop, push through the QA team, and then release, things take time, and some models will get it before others.

As for the RT-AX86U, you foilks saw that it was the one the most severely impacted by the recent issues. Based on what I know and without going into details, I can say that Asus are probably working on something more complex than just providing a firmware with an updated AiCloud for this particular model. They haven't forgotten it, it's not being ignored either, it simply requires more work.

If you fear you might be vulnerable, then disable AiCloud and any WAN- exposed service outside of IPSEC/Wireguard/OpenVPN servers, and just wait it out.
 
XIII said:
So also disable ASUS DDNS?
Click to expand...
DDNS is not a WAN-exposed service. It is necessary (unless, of course, you have a fixed IP address from your ISP) in order to use OpenVPN and the like, but you must still use authentication to access the VPN and the router itself.
 
XIII said:
How does it inform ASUS servers of updated IP addresses then?

(Or should I make a difference between WAN communication and WAN service?)
Click to expand...
Yes, this is WAN communication to log into your DDNS provider to update your WAN IP as it changes. The DDNS provider does not log into your router. Using OpenVPN (or the encrypted tunnel of your choice), there is only one external access point.
 
You must log in or register to reply here.

Similar threads

RMerlin
Release Asuswrt-Merlin 3006.102.2 is now available for Wifi 7 devices
4 5 6
Replies
100
Views
15K
RMerlin
RMerlin
SR-71
New Security-focused Firmware Updates Released for AX86U Pro & AX3000
Replies
2
Views
728
SR-71
SR-71
Viktor Jaep
BACKUPMON BACKUPMON v1.8.22 -Nov 28, 2024- Backup/Restore your Router: JFFS + NVRAM + External USB Drive! CIFS/SMB/NFS! (Now available in AMTM!)
2
Replies
22
Views
905
Viktor Jaep
Viktor Jaep
MegaMango
dnsmasq-surrogate for RT-BE88U: Ad Blocking & Security Enhancement
Replies
2
Views
685
MegaMango
MegaMango
RMerlin
Current plans regarding separate version branches
3 4 5
Replies
87
Views
15K
zay2u
Z
Similar threads
Thread starter Title Forum Replies Date
B ASUS Product Security Advisory - 12/03/2024 ASUS Router Improper Input Validation ASUSWRT - Official 2
bbunge Latest Security Updates/Security Recommendation 11/04/2024 ASUSWRT - Official 0
L Security update support list for the US market ASUSWRT - Official 6
C "Duration of Security Update Support (only for UK)" article ASUSWRT - Official 1
L For how many years does Asus provide security updates to the Routers? ASUSWRT - Official 13

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 502 (members: 11, guests: 491)
Top