It’s hard and sad to look at modern routers, especially expensive fresh models. When buying a device for 20,000 rubles, the owners first advise changing the firmware to an alternative one due to the instability of the factory, and some have to put up with the one that is. The vast majority of manufacturers of home network devices do not put security in the first place, fixing vulnerabilities for a long time, or even quite quickly remove the model from support.
Czech guys from CZ.NIC, who gave the world a wonderful BIRD routing daemon, which is used, including at the Moscow traffic exchange point MSK-IX, the Knot DNS DNS server, promoted DNSSEC from the moment it appeared and were one of the first to launch internationalized domain names, they decided that it was time to put an end to all this – you need to make a fairly powerful home router that would not choke on gigabit traffic, with lots of ROM and RAM so that it can run all the necessary software, including LXC and Docker containers with full ennymi OS, which would stick to the principles of Open Source and Open Hardware and updates automatically, without human intervention, once the developers have closed the vulnerability. Moreover, the authors support honeypot, which simulates routers with vulnerabilities, on their servers to monitor the latest threats.
wonderful video that clearly explains all the advantages of the device
So Turris Omnia:
Marvell ARMADA 385 processor, 2-core ARMv7 Cortex A9 @ 1.6 GHz, 1 MB L2 cache Up to 1 GB DDR3 RAM 4 GB internal memory, mSATA slot (optional) 5 gigabit Ethernet LAN ports 1 gigabit Ethernet WAN port 2 USB3.0 ports 2 ports Mini PCI Express 3 × 3 MIMO 802.11ac (optional) 2 × 2 MIMO 802.11b / g / n (optional) SFPSIM slot RTC with battery Key chip for a crypto-resistant source of entropy GPIO, I²C, SPI Router runs Turris OS – fork OpenWRT. The authors promise to backport the changes to the original project.