![[H]ard|Forum](/styles/hardforum/xenforo/logo_dark.png){kind=logo}
Just add a 'hospitality gateway'.Feel like the future, for those of us who can, will literally end up being a single VLAN for every single device on our networks. I am already at 14 VLANs on my network...(home lab testing stuff is 4 of those...)
These are designed for hotel use so they by default block all traffic between devices. They're pretty cheap used on ebay, but they will also limit traffic to a certain extent since they may be 100Mb, etc.There's so many different 'roll your own' router solutions and companies like netgate and firewalla have even built businesses around it. I think if these were cheap enough in the consumer realm, they would fill a niche. Especially since a lot of the cheaper 'unwanted' desktops are of the lower power pentium/i3 variety and end up discounted severely just to prevent from becoming nothing but a holding cost.
“FCC Grants Netgear Conditional Approval For RoutersBeauHD 11 hours ago | 33 |
| The FCC has granted (PDF) Netgear the first exemption from its foreign-made router ban, allowing the company to keep selling new consumer router models made outside the U.S. through Oct. 1, 2027. PCMag reports: The Defense Department reviewed Netgear's application for an exemption and found that its products "do not pose risks to US national security." The FCC's order doesn't elaborate on why. Netgear is based in San Jose, California, although its products are made in Asia. The exemption, known as a conditional approval, lasts until Oct. 1, 2027. It covers a large range of future Wi-Fi models from Netgear, spanning the R, RAX, RAXE, RS, MK, MR, M, and MH series, the Orbi consumer mesh, mobile, and standalone routers under the RBK, RBE, RBR, RBRE, LBR, LBK, and CBK series, as well as cable gateways and cable modems under the CAX and CM series. The exemption isn't a full green light for the future product models from Netgear. The FCC says the company still needs to go through the normal Commission-regulated equipment authorization process for each device. The Oct. 1, 2027 date effectively amounts to a deadline for Netgear to receive FCC certification for the router models; each certification is also permanent, enabling the product to be sold in the US on an ongoing basis. This also suggests that Netgear has an 18-month period to receive FCC certifications for future products.” |
excited?
I have a number of problems with that. Firstly, China doesn't make all the routers. In fact, China doesn't make most routers. “Chinese-origin imports accounted for just 1.1% of the total US router import value in 2025, despite widespread assumptions to the contrary” Second, I'm not worried about China and Russia, but I am worried about this country who has bought our entire government and has used hacking tools against USA citizens.
Ok but it's stupid. Whenever I hear China and Russia as the boogie man, I'm reminded of Edward Snowden. I don't doubt that China and Russia have put backdoors in... everything, but what about USA? EU is avoiding Windows and other American services because they have similar concerns towards USA. Especially when USA's current administration wants to use laws meant to monitor foreigners are now going to be used on American citizens.
Not entirely true. A network device could have a second microprocessor sniffing packets, injecting packets, or otherwise acting on the network stream with no software intervention.
This was how Cisco was exploited during the supply chain attacks not too long ago. It was a span port tapped into the backplane that was able to be remote accessed. It would of course persist even if you completely wiped the device and reflashed it. It was only found after internal inspections were performed.
Yea but that's too obvious. You act like nobody actually opens up routers and inspects them? The Open-WRT and DD-WRT take these apart and examine them for the purpose of installing open source firmware. There is no chip. There is firmware and maybe Chinese made chips like Allwinner and Rockchip. It's much easier to get away with firmware with backdoors than putting in an extra microprocessor that not only adds cost but probably slows down the router.
It's nearly impossible to get away with. Someone who knows what they're doing is going to open up the router and find a tiny component that doesn't belong. Like I said, most routers will end up on DD-WRT and Open-WRT hands to try and put their firmware on it. Even still, do you think packets sent to China will go unnoticed? ISP's will know, and someone who knows their network traffic will know.
This is why a backdoor is never a good idea because someone else will find it and use it. It's like an exploit that is put there intentionally, which is asking hackers to play find and seek.
My ISP cared because they called me about suspicious activity. This was when I ran Windows years ago.
Yea but, wouldn't ISP's detect if their routers had some strange activity?