New 802.11ax routers, or WPA3-capable routers, any rumors / early announcements yet?

VirtualLarry

No Lifer
Aug 25, 2001
56,226
9,990
126
I'm looking, hungrily, for any info on 802.11ax router (the new standards, after 802.11ac and 802.11ad), and WPA3 support, which I imagine will likely go hand-in-hand.

Hoping to see new products by BF or Christmas 2018, but it's possible that I'll have to wait until Mar. 2019 or later.

I'm also looking for any info on 3rd-party (DD-WRT and Shibby Tomato) firmware for Asus routers, or Asus factory firmware (or MerlinWRT) with WPA3 support.
 

mnewsham

Lifer
Oct 2, 2010
14,539
428
136
I would expect to see them at CES in January with products launching in the late winter or spring.
 
  • Like
Reactions: FaaR

MtnMan

Diamond Member
Jul 27, 2004
8,722
7,825
136
While I have yet to install the latest update on my Synology RT2600ac release notes version 1.2 adds support for WPA3 Personal/Enterprise security encryption on Synology RT2600ac and MR2200ac. The MR2200ac is a new wireless mesh router that can be paired with the RT2600ac router, to be released soon.

Probably don't have any WPA3 capable clients, unless maybe the wife's new Note 9, but I'll be ready. Installing the new version for other enhancements for the moment.
 

MtnMan

Diamond Member
Jul 27, 2004
8,722
7,825
136
Finally updated the firmware on my Synology router, and it does support WPA3 now, and OWE (Opportunistic Wireless Encryption). WPA2 and WPA3 can both be active. OWE is only for open WiFi networks and does not provide any authentication. Of course none of my clients support either yet.
 

VirtualLarry

No Lifer
Aug 25, 2001
56,226
9,990
126
If a router can support both WPA2 and WPA3 encryption (PSK), and also OWE for open networks, is there a way to set it up to allow a Guest network, that's Open, but limited to WPA3's OWE, such that you can run an open hotspot, but everyone that connects to it, has to use OWE, and can't just connect to it plaintext? At the same time as supporting WPA2 PSK/AES and WPA3 PSK for connections to same router, for protected connections?

My feeling is, if WPA3's OWE, allows encrypting each client's connection separately to the router, and it utilizes SAE and PFS, thus is not vulnerable to KRACK nor to sniffing and later offline cracking, then why bother putting a password on your wireless? I guess, unless you intentionally want to keep the neighbors out. I'm much more concerned about parties sniffing my wireless internet and scanning my data (privacy), rather than exclusive usage of a resource (I pay for gigabit, I don't mind sharing with my immediate physical neighbors if they want a little internet.)

Although, running an "open" hotspot, has it's own issues. I welcome anyone to suggest a UTM to pipe the connection through, to keep wandering war-drivers from using my connection to access "illegal" things online. Don't want to be getting DMCA notices from my ISP, nor having my door busted down, for things my neighbors might be doing with my connection.

Even better, would be in conjunction with a Hotspot-type login page, that requires logging some information to use the connection, for a limited time-span.

Edit: These guys don't seem very impressed with WPA3.
https://forum.dd-wrt.com/phpBB2/viewtopic.php?p=1114272

They don't seem to think that it's much of a panacea. I like the idea of SAE and PFS. I worry that my traffic is being slurped up by a Stinger-type system, and will eventually be offline-cracked, if it hasn't already. (Probably.) I also like the idea of being able to allow an "open" hotspot (with limitations), as a guest network for my neighbors, without exposing their data either.
 
Last edited:

MtnMan

Diamond Member
Jul 27, 2004
8,722
7,825
136
Yes, the guest network can be set to open with OWE for 2.4GHz or 5GHz bands or both unless 'smart connect' in enabled where devices will jump between the two bands as you move around.

Does not effect the main wireless network, which still requires authentication with the password.

As for sharing with neighbors, where they don't need to authenticate so anyone can connect, if they are into something illegal (kiddy porn, posting threats to the president, etc.) it will come from your IP address, at least in the IP4 world and be tracked back to you, not the neighbor.

Not sure if ISP's log which IPv6 which subnet ID (bits 49 - 64) I have for the Global-Unicast address on my devices.
 
Last edited:

razel

Platinum Member
May 14, 2002
2,337
90
101
WPA-3 was supported since ~Nov/Dec 2019 after they updated the Google Home app and a switch for it was added.
The TP-Link Archer C6 also supported it since Sept. 2019.
 
Last edited: