Firmware-update: Asuswrt-Merlin 3004.388.8

Asus gebruikt voor zijn routers, zoals de RT-AC68 en RT-AX88, van een Tomato afgeleide firmware met de naam Asuswrt. Deze firmware is, op enkele drivers na, opensource, waarbij de gesloten binaries wel meegeleverd worden. Asuswrt-Merlin is op zijn beurt een aangepaste versie van de originele firmware van Asus. Het bevat onder meer bugfixes en kleine verbeteringen, maar probeert toch dicht bij het origineel te blijven, zodat het mogelijk blijft om nieuwe features die Asus introduceert, toe te voegen aan de code. Versie 3004.388.8 is uitgekomen en hierin zijn de volgende veranderingen en verbeteringen aangebracht:

Note:

• RT-AX56U is exceptionally included in this release.

New:

• Rewrote VPN killswitch implementation. The new method uses an always present routing rule to prohibit access to the main routing table, so it will be active even if the user manually stops a client. Removing the prohibit rule requires disabling the killswitch on the webui. The rules are also created before WAN goes up, to reduce the risks of leaks between WAN going up and VPN connecting.
  Make sure to double check that you don't have any unwanted killswitch enabled if you have connectivity issues following the upgrade to this firmware.
• Added killswitch support for WireGuard clients.
• Added mDNS support to the router's local name resolution (nss).

Updated:

• Chart.js was upgraded from 2.x to 3.9, to share the same version used by Asus. Any third party addon that used it will need to upgrade their charts to the new version.
• wget to 1.24.5.

Changed:

• Removed stop/start and "Start with WAN" buttons from OpenVPN clients. There is now just a single "Enable" option, which will immediately start the client when applying changes, and will also start it automatically when WAN comes up. This is to reduce confusion, better integrate into SDN, and match how WireGuard clients already worked.
• Allow text selection on the Wireguard Server settings page.

Fixed:

• JS error on Wifi 6e/7 models when toggling DDNS.
• Couldn't mount CIFS shares on the router for BCM4912 devices.
• Wrong band shown when selecting the 5 GHz band on the WPS page for the GT-AXE11000.
• WPS page wouldn't properly detect if 6 GHz radio is disabled when selecting it for the GT-AXE11000
• Disabling IGDv2/pinhole support wasn't fully disabling IPv6 support.
• CVE-2024-3080 issue - REMOVED: Wifi Radar was removed (unsupported by Wifi 7 devices, and security issues cited by Asus in their own recent releases).