SOLVED Tplink A20 wifi security

chasinreno · October 04, 2025, 08:21:59 PM

*** Resolved ***
I have a newly setup opnsense v25.7 running on an sophos XG 125r3 with a tplink A20 wifi (AP) on a sufficiently isolated guest port. I understand that tplink may be banned in the US because of security vulnerabilities. I'm not sure that it is true but just the same; does anyone have an opinion on the wisdom of using this wifi behind the above firewall?

OPT6/igb3 bridged to LAN (ix0)
firewall rules OPT6
BLOCK OPT6.net LAN.NET
BLOCK OPT6.net ThisFirewall
PASS OPT6.net any

Seimus · October 06, 2025, 11:27:31 AM

Well its behind a FW and not on the edge so it doesn't change anything about how you use it.

If you are scarce about security, you should go for an AP that can run OpenWRT, as it provides continues updates and patches...

Regards,
S.

chasinreno · October 06, 2025, 04:32:12 PM

Thank you for the reply.
I did check out OpenWRT on the tplink wifi and it's not supported. I do have several older APs and will look into OpenWRT on one of them.

Good advise,
Thanks

Seimus · October 06, 2025, 06:51:47 PM

If for some reason you would look for a new or an supported OpenWRT router/AP I can advice

https://openwrt.org/toh/asus/rt-ax53u

I run this one + a lot other people I advised it. Its a solid device with good enough resources. If you set it to dumpAP mode it will not have problem with VLAN tagging per several SSIDs.

Regards,
S.

SOLVED Tplink A20 wifi security

chasinreno

October 04, 2025, 08:21:59 PM Last Edit: October 06, 2025, 04:37:35 PM by chasinreno

Seimus

October 06, 2025, 11:27:31 AM #1

chasinreno

October 06, 2025, 04:32:12 PM #2

Seimus

October 06, 2025, 06:51:47 PM #3