@Realme no matter what kind of appliance you use, no network is 100% safe from hackers. Even secret service agencies and the best protected Corporations/Companies in the world lose their business secrets to black hats. The common link? Static router or network gateway WAN IPs.
So the idea is to keep as safe as possible using sensible and implementable 'best practices' if I may call them that for us home users, not that we have national secrets or anything but trojans and ransomware should be of particular concern to us all.
Also, the kind of routers that are installed by ISPs have very basic protection (firewalls) and if possible one should delineate the network 'responsibilities/roles' to different boxes to prevent a single point of failure for e.g via a hardware problem (I had to recover one of my AC APs from a brick state last week), router hijack/malware etc. I also set the router to switch off WiFi radios from 1 am to 6 pm, reduce tranceiver signal strength for a deliberately limited range, automatically set routers to reboot every few days, backup router configurations among other things that could be done by anybody with some interest and basic knowledge in this subject. Hence I prefer a box to handle my firewall/IDS/IPS/WAN PPPoE authentication, and no home grade WiFi routers are good enough ever since I transitioned to pfSense >4 years ago.
So the idea is to keep as safe as possible using sensible and implementable 'best practices' if I may call them that for us home users, not that we have national secrets or anything but trojans and ransomware should be of particular concern to us all.
Also, the kind of routers that are installed by ISPs have very basic protection (firewalls) and if possible one should delineate the network 'responsibilities/roles' to different boxes to prevent a single point of failure for e.g via a hardware problem (I had to recover one of my AC APs from a brick state last week), router hijack/malware etc. I also set the router to switch off WiFi radios from 1 am to 6 pm, reduce tranceiver signal strength for a deliberately limited range, automatically set routers to reboot every few days, backup router configurations among other things that could be done by anybody with some interest and basic knowledge in this subject. Hence I prefer a box to handle my firewall/IDS/IPS/WAN PPPoE authentication, and no home grade WiFi routers are good enough ever since I transitioned to pfSense >4 years ago.
Last edited: