As a Chinese person myself I would not even connect out-of-support routers to the internet. Using VLAN is a very good point. Putting it on an isolated VLAN and not having it be the gateway pretty much elimates all attack surfaces except hardware ones, at which point you can't blame them for being Chinese since they use Broadcom or Realtek chipsets.
Thanks for the video, I had my doubts about the vulnerabilities of Xiaomi's BE7000, I was even thinking about installing the global version as soon as it came out. Greetings
One thing you forgot to mention is that different countries have different radio frequency allocations. If I remember correctly some access points sold to US / Canada disallows the use of channel 12 and 13 for 2.4GHz WiFi. The situation with 5GHz is even more complicated. You definitely don't want to break the regulations set out by (your country's version of) FCC.
I wanted to cover more the backdoor and security aspect, but yes, it's true that each country has its own regulations about the radio frequency allocation. And people should also take into account the signal gain because you can get in trouble if it exceeds the maximum set by our local regulators.
@@code-inc I know for sure that the EIRP is higher in the US than in the EU. I was able to find a fairly comprehensive list here: w.wol.ph/2015/08/28/maximum-wifi-transmission-power-country/?amp=1
Sam what about things like tplink omada series of wireless aps. It's simply a wireless ap only that can be self hosted using software omada controller. Also can be managed via web ui using a local account without having to register or sign in to a tplink account. don't even need to enable cloud either. would you consider this type of device safe? especially when paired with a different device such as pfsense that will be the router? Do you consider that to be less privacy invasive compared to say tplink deco, where it's an all in one router + mesh wifi that forces management solely through a mobile app which you have to sign in to a registered tplink account?
Yes, of course. You should still keep on eye on the support offered by TP-Link and whether they quickly mitigate any potential vulnerability (which do occur from time to time). But, as long as everything is up to date and have pfsense at its core, you should be set!
i only buy and service devices i can put open firmware or software on like openwrt, pfsense and more. i find it useless to log in to a server to be able to manage you're router, that screams insecure in the case of a data breach or they just sell the data
Yes, you should get one and change the firmware to OpenWrt (if it is supported).
As a Chinese person myself I would not even connect out-of-support routers to the internet. Using VLAN is a very good point. Putting it on an isolated VLAN and not having it be the gateway pretty much elimates all attack surfaces except hardware ones, at which point you can't blame them for being Chinese since they use Broadcom or Realtek chipsets.
Thanks for the video, I had my doubts about the vulnerabilities of Xiaomi's BE7000, I was even thinking about installing the global version as soon as it came out. Greetings
One thing you forgot to mention is that different countries have different radio frequency allocations. If I remember correctly some access points sold to US / Canada disallows the use of channel 12 and 13 for 2.4GHz WiFi. The situation with 5GHz is even more complicated. You definitely don't want to break the regulations set out by (your country's version of) FCC.
I wanted to cover more the backdoor and security aspect, but yes, it's true that each country has its own regulations about the radio frequency allocation. And people should also take into account the signal gain because you can get in trouble if it exceeds the maximum set by our local regulators.
Which country has more output wireless transmission power?
@@code-inc I know for sure that the EIRP is higher in the US than in the EU. I was able to find a fairly comprehensive list here: w.wol.ph/2015/08/28/maximum-wifi-transmission-power-country/?amp=1
I wonder how many of those antenna are for show
I did a teardown video of this specific router and all antennas do serve a purpose other than aesthetics :D
none
My ISP provided ONT is already a huawei one. Having one more chinese govt brand spying on me wouldn't hurt at this point I guess.
Sam what about things like tplink omada series of wireless aps.
It's simply a wireless ap only that can be self hosted using software omada controller. Also can be managed via web ui using a local account without having to register or sign in to a tplink account. don't even need to enable cloud either.
would you consider this type of device safe? especially when paired with a different device such as pfsense that will be the router?
Do you consider that to be less privacy invasive compared to say tplink deco, where it's an all in one router + mesh wifi that forces management solely through a mobile app which you have to sign in to a registered tplink account?
Yes, of course. You should still keep on eye on the support offered by TP-Link and whether they quickly mitigate any potential vulnerability (which do occur from time to time). But, as long as everything is up to date and have pfsense at its core, you should be set!
i bought a chinese router. i sold it immediately when i saw it required an online login to set it up. screw that, lol.
i only buy and service devices i can put open firmware or software on like openwrt, pfsense and more. i find it useless to log in to a server to be able to manage you're router, that screams insecure in the case of a data breach or they just sell the data
Why you don't make videos about pfsense with mini PCs? For 100 bucks you will smash any router by 5 times like a N100 mkni PC with 16GB DDR5
That's a very good idea. Thank you for the suggestion.
I prefer the supused Chinese back doors over the assured US back doors all day long
i use them just as dumb AP with Mikrotik before it enters Internet...
My ISP gave me a huawei router in 2020 (Im in Australia)
Cisco , junipers , ericson , nokia they all had several backdoors but nobody cears😂
Fun fact, Cisco is banned in China since 2012.