Is my network actually at any risk? Should I take any steps now that I’m not receiving security updates? This was a really expensive router and I’m going back to school so I’m definitely not going to be in the market for a new one for quite a while. Probably wouldn’t be going back to tplink even if I did.
Thoughts?
Look up alternative firmware like OpenWRT, Gargoyle Router, dd-wrt, etc. and see which fits your needs. No need to throw away working tech.
Depending on the exact sub-version of the device it’s OpenWRT capable.
If it isn’t it should be discarded, though.
Routers sometimes have security issues that need to be patched. You should keep an eye out for bulletins and make sure your endpoints have host-based security where they can (antivirus and firewalls).
This is a big fuck you from netgear though -why would you purchase another netgear router when they could just decide not to support the next model and force you to upgrade again for more money?
While I don’t disagree, how long should hardware vendors be required to support their products? I agree five years is probably too short, but there needs to be a limit to their liability.
Though in a perfect world, they’d open source their drivers well before then… Looking at you, Broadcom…
That router has been on the market for almost 10 years depending on the exact sub model OP has. That’s decent enough, imho - and most versions absolutely can still be used longer with OpenWRT.
(But I really hope the people don’t let their routers/firewalls run unlatched beyond EOL. That can get nasty)
For stuff like routers, I think 10 years is reasonable.
I use a Mikrotik router and they are solid with software support. I don’t know if they have an official support cycle, but their products typically get 10+ years of support. I’m never buying consumer grade crap again.
Yes, technically. This message is saying no new firmware updates will be forthcoming for your model. The unfortunate reality, though, is that most consumers rarely update their router firmware, regardless.
There has been a very large increase in attacks on home and small business routers, which are then used for botnets and espionage. Look for articles on Small Office/Home Office (SOHO) router attacks, but here are a few:
https://thehackernews.com/2024/05/mysterious-cyber-attack-takes-down.html
https://www.cisa.gov/news-events/cybersecurity-advisories/aa25-239a
SOHO routers are ubiquitous and inexpensive devices that connect millions of Americans and small businesses to the internet. However, due to widespread sale, and subsequent use, of insecure SOHO routers that lack basic security features, threat actors, including the PRC-sponsored Volt Typhoon group, are exploiting these devices at scale.
If you are concerned, it may be worth investigating if your device supports OpenWRT, or upgrading to a newer router under active maintenance. I see the Netgear R6700 as supported on the OpenWRT Table of Hardware.
As others have said, slap openwrt on it to keep it going
If thata too much of an ask, check out routers that are based on openwrt with normie front end. They are sort of a sweet spot currently but Foss purist won’t approve.
I’m fine with openwrt, right now though I’m finding myself having to get a static IP from my ISP to get jellyfin working (I’m setting up my first domain!) so that will probably be the project for a while until I am able to get to flashing the router
All of the mainstream router manufacturers have critically insecure firmware. Nearly all routers ship with hundreds of vulnerabilities, and sometimes even zero-days, even when initially released.
It’s why it is so important to find and acquire routers that are capable of being re-flashed with third-party firmware such as DD-WRT or OpenWRT.
Check with the router database of each project to see if what you currently own is eligible. DD-WRT enjoys wider support but is more limited in functionality. OpenWRT is more powerful but needs more capable hardware to run on.
Huge fuck you to Netgear. One of the worst routers.
R6700 can run FreshTomato firmware.
Edit: If you do flash custom firmware, be sure to figure out exactly what model of R6700 you have; I think this is one of those in which v1/v2/v3 all have completely different hardware inside, and flashing the wrong one can brick it.
It means that any updates you do receive from now on, will be purposfully crippling the hardware you have until you decide to get a new one.
Just use a custom firmware. I’m pretty sure the Nighthawks line still can have OpenWRT installed to them.
