Submitted via IRC for TheMightyBuzzard
Router hardware has evolved and improved over the years, but its firmware remains stuck in the dark ages when it comes to security, network traffic visibility and control. Recognizing the inherent limitations in popular commercial routers, Untangle set about making a radical new OS for home routers based on its popular, broadly installed and easy-to-use NG Firewall product.
Untangle's NG Firewall will be available to flash onto various router models, beginning with the Asus AC3100 RT AC88U.
"The open source community has known for a long time what router manufacturers are loathe to admit: router firmware is lacking," said Dirk Morris, founder and chief product officer at Untangle. "Projects like DD-WRT have gained traction because of the limitations of the operating systems developed by hardware manufacturers. Firmware has failed to provide adequate security to the modern home, let alone network traffic visibility and shaping. Untangle handles these issues and more."
The biggest challenge facing home networks isn't necessarily even security: it's the lack of visibility into and control over the traffic. Unlike commercial firmware on today's home Wi-Fi routers, Untangle NG Firewall logs traffic for rich, robust reporting into every facet of what's happening online: sites the kids are visiting, neighbors jumping on the wireless network, and the newest IP-enabled gadget phoning home.
Source: https://www.helpnetsecurity.com/2016/08/05/new-home-router-os/
(Score: 2, Insightful) by frojack on Sunday August 07 2016, @07:54PM
Essentially it needs to identify each device type and then white-list the ip addresses it is legitimately supposed to talk to.
Seriously?
You want to maintain whitelists PER device of legitimate sites? Have you thought this through?
Its a full time job for christ sake! Your device users will simply switch over to cellular or the neighbors wifi, and to hell with your dictatorial ISIS rule. You must be a real joy to live with.
No, you are mistaken. I've always had this sig.
(Score: 3, Touché) by Anonymous Coward on Sunday August 07 2016, @08:30PM
> You want to maintain whitelists PER device of legitimate sites? Have you thought this through?
Oh frojo... There are tons of single use devices that need only very limited internet access. Nest, roku, sonos, tivo, ring doorbell, ip security cams, xbox, phillips hue, etc.
So yes, I have thought it through. However it seems like, as usual, you've decided you are superior when you are really just a fuckin idiot.
(Score: 2) by Scruffy Beard 2 on Sunday August 07 2016, @11:27PM
For those you don't want any packets leaving your network. Unfortunately, unless you emulate the manufacturer's server, you will be bricking your device.
(Score: 1) by anubi on Monday August 08 2016, @11:37AM
AC...
Both of you guys have insightful observations for specific usage.... but please, the name-calling is uncalled for.
Your post is quite insightful, but is also flamebait toward a valued member of this forum who has a different usage in mind.
I would have preferred to mod you informative instead of posting this.
"Prove all things; hold fast that which is good." [KJV: I Thessalonians 5:21]