OpenWrt 22.03.0 arrives with a new Firewall app, support for more than 180 devices and more

OpenWrt-22.03 adds support for 180 new devices

OpenWrt-22.03 is the first stable version of the series

After a year of development, se announced the release of a major new version of the distribution OpenWrt 22.03.0, targeted at applications on various network devices, such as routers, switches, and access points.

OpenWrt supports many different platforms and architectures and has a build system that allows you to perform easy and convenient cross-compilation, including various components in the assembly, making it easy to create a ready-made firmware or disk image tailored to specific tasks with the desired set of packages pre-installed.

Main news of OpenWrt 22.03.0

In this new version of OpenWrt 22.03.0 that is presented, by default it is enabled a new firewall management application, fw4 (Firewall4), based on the nftables packet filter.

The Syntax of Configuration Files for the firewall (/etc/config/firewall) and the uci interface have not changed:fw4 can act as a transparent replacement for the previously used iptables-based fw3 toolkit. The exception is manually added rules (/etc/firewall.user), which will need to be rewritten for nftables (fw4 allows you to add your own rule blocks, but in nftables format).

Another change that stands out is that the old iptables based toolkit was removed from the default images, but can be recovered using the opkg package manager or the Image Builder toolkit. The iptables-nft, arptables-nft, ebtables-nft, and xtables-nft wrappers are also provided, allowing you to create rules for nftables using the older iptables syntax.

In addition to this, it is also noted that added support for over 180 new devices, including 15 devices based on MediaTek MT7915 chip Wi-Fi 6 compatible (IEEE 802.11ax). The total number of supported devices has reached 1580.

The transfer of platforms has continued of destiny to the use of the DSA kernel subsystem (Distributed Switch Architecture), which provides tools to configure and manage cascades of interconnected Ethernet switches, using mechanisms to configure conventional network interfaces (iproute2, ifconfig).

DSA can be used to configure ports and VLANs instead of the previously offered swconfig tool, but not all switch drivers support DSA yet. In the proposed version, DSA is enabled for bcm53xx platforms (translated drivers for all boards), lantiq (xrx200 and vr9 based SoCs) and sunxi (Bananapi Lamobo R1 plates). Previously, ath79 (TP-Link TL-WR941ND), bcm4908, gemini, kirkwood, mediatek, mvebu, octeon, ramips (mt7621) and realtek platforms were transferred to DSA.

LuCI web interface has a dark mode, By default, the mode is automatically enabled based on browser settings, but it can also be forced to be enabled via the “System” -> “System” -> “Language and Style” menu.

Year 2038 problem solved caused by an overflow of type 32-bit time_t (the 32-bit epoch timer will overflow on Jan 19, 2038). In the new version, the musl 1.2.x branch is used as a standard library, in which, on 32-bit architectures, the old 32-bit timers are replaced by 64-bit ones (type time_t is replaced by time64_t ). On 64-bit systems, the time64_t type is used initially (the counter will overflow in 292 billion years). Switching to the new type has changed the ABI, which will require a rebuild of all 32-bit programs associated with musl libc (no rebuild required for 64-bit programs).

On the other hand, we can also find the updated package versionsIncluding Linux kernel 5.10.138 with wireless stack cfg80211/mac80211 kernel port 5.15.58 (previously kernel 5.4 with wireless stack from 5.10 branch), musl libc 1.2.3, glibc 2.34, gcc 11.2.0, binutils 2.37, hostapd 2.10, dnsmasq 2.86, dropbear 2022.82, busybox 1.35.0 .XNUMX.

And last but not least, it is mentioned that builds for the arc770 platform (Synopsys DesignWare ARC 770D) have been discontinued.

If you want to know more about it about the details that are integrated into this new release of the OpenWrt firmware 22.03.0 you can check the information in the original publication In the following link.

Download the new version of OpenWrt 22.03.0

The builds of this new version are prepared for 35 different platforms, from which update packages can be obtained from the link below.


A comment, leave yours

Leave a Comment

Your email address will not be published. Required fields are marked with *

*

*

  1. Responsible for the data: AB Internet Networks 2008 SL
  2. Purpose of the data: Control SPAM, comment management.
  3. Legitimation: Your consent
  4. Communication of the data: The data will not be communicated to third parties except by legal obligation.
  5. Data storage: Database hosted by Occentus Networks (EU)
  6. Rights: At any time you can limit, recover and delete your information.

  1.   abraham tamayo said

    A cool thing and it is also compatible with some chips to connect via Wi-Fi, something that pfsense cannot connect to, only serve the internet.