Forums

Home Forums Feature Suggestions New features?

New features?

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • May 16, 2024 at 4:07 am #6258
    omark
    Participant

    Hi team,
    First, I want to thank you for creating such a great solution; this is exactly what I was looking for in a home router.

    I just have some questions about existing and new features:
    Does pcWRT support WPA3? I first heard about pcWRT on the RouterSecurity website, where it is mentioned that WPA3 is not supported. However, I’m wondering if this might be because the pcWRT demo uses a router that does not support WPA3. Should the CF-XR10 AX WiFi normally support WPA3?
    As a new feature, is it possible to consider implementing malware IP blocking? Alternatively, is it possible to run the Ban-IP package on pcWRT?

    The following is more of a nice-to-have:
    Could it be possible to apply custom DNS blocklists, like the ones from hagezi (https://github.com/hagezi/dns-blocklists)? Finally, is it possible to install pcWRT on non-listed routers? I’m thinking about multi-gig devices like the GL.iNET devices Flint 2. I saw this Reddit comment (https://www.reddit.com/r/openwrt/comments/167d06i/pcwrt_ui_for_openwrt/?rdt=49134), and it raises a lot of hopes for people like me with limited networking skills.
    Thanks!

    May 21, 2024 at 6:12 pm #6267
    support
    Keymaster

    WPA3 is currently not supported. It will be added to the WiFi 6 routers (CF-XR10 and AX1800) in the future but so far it’s not a priority because of these reasons:
    1. WPA2 still provides adequate WiFi protection given a strong password. The highly reported KRACK vulnerability has been fixed for most devices. Despite the media hype, KRACK is hard to exploit. There were no reported real-life exploits of KRACK.
    2. The promised WPA3 security enhancement won’t manifest until all your devices support WPA3. Otherwise you’ll have to run WPA3 with WPA2 compatibility, thus no improvement over WPA2.

    Thanks for bring up IP blocking. We’ll look into that. With present functionalities, you can block all literal IP addresses and white list the trusted IP addresses you need. Then you can select a secure DNS filter to block the malicious domains.

    You can enter your own block list in the Access Control page, but we haven’t tested it with very big lists (e.g., >10k lines). For routers not listed on our website, you have to compile from the source.

  • Author
    Posts
Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.

©2024 bigXi LLC