In March, the Federal Communications Commission prohibited the introduction of new consumer internet routers manufactured outside the US, referencing national security issues. Current routers in American residences or presently available for purchase remain unaffected, but all newly crafted consumer routers require approval. Manufacturers can seek exceptions, and some have been authorized, meaning there’s no necessity to dispose of your existing router, and numerous mesh systems are still purchasable in stores.

Updated May 2026: Further details on software and component modifications, the inclusion of mobile hotspots in the ban, and Conditional Approval granted to certain firms are provided.

Why Are Routers Made Abroad Prohibited?

The FCC indicated that malicious entities have taken advantage of security vulnerabilities in routers made abroad to target American households, disrupt networks, facilitate espionage, and promote intellectual property infringement. Routers that are foreign-made played a role in the Volt, Flax, and Salt Typhoon cyberattacks, which focused on crucial US infrastructure. These routers are included on the Covered List, representing an unacceptable threat to US national security. As noted by Bogdan Botezatu, director of Threat Research at Bitdefender, the prohibition aims to bolster cybersecurity in US homes amidst geopolitical tensions, emphasizing that consumer routers represent a strategic risk if compromised on a broad scale. He states that Internet of Things devices, including routers, are a vulnerability across the internet.

Which Routers Are Prohibited?

The prohibition solely targets the sale of new Wi-Fi routers and mobile Wi-Fi or hotspot devices aimed at consumers, excluding existing FCC-approved routers or phones with hotspot functionalities. Previously acquired routers are not impacted and can be sold, utilized, and updated until March 1, 2027. Any new router produced outside the US must receive FCC approval before being brought in, marketed, or sold within the US, affecting US firms with overseas production.

What Does Foreign-Made Entail?

The prohibition pertains to “consumer-grade” routers designed or produced outside of the US or by companies not owned by US entities. Key players like Netgear, TP-Link, Asus, Amazon’s Eero, Google’s Nest, Synology, Linksys, and Ubiquiti fall into this category, as do most routers provided by internet service providers in the US. Manufacturers can request Conditional Approval from the Department of Defense and the Department of Homeland Security.

What is Conditional Approval?

To obtain Conditional Approval, companies are required to disclose their corporate structure, provide details on the manufacturing and supply chain, and outline a US manufacturing and onshoring strategy. This facilitates the ongoing sales and updates for both existing and new devices for a period of 18 months, which includes firmware updates, superseding the March 1, 2027, firmware waiver deadline. New devices will still undergo the standard FCC approval procedure.

Companies With Conditional Approval

Three companies have been granted Conditional Approval: Netgear, Adtran, and Eero, with permissions extending until October 2027. The Department of Defense, Homeland Security, and FCC have not clarified the reasons for these companies receiving approvals. The Consumer Technology Association (CTA) has requested clearer guidelines, raising concerns about software updates and component modifications.

What About Software Updates?

The FCC waiver permits all authorized routers to access software and firmware updates until March 1, 2027. After this date, it is uncertain what will occur should companies not secure Conditional Approval. Joshua Marpet from Finite State points out that routers that cease to receive updates present security hazards. Older devices frequently involved in cyberattacks typically do not receive further updates.

What About Components Made Abroad?

The international supply chain often faces component substitutions in routers, prompting worries. The CTA has advocated for additional waivers where security is not significantly compromised. The FCC clarified that a router manufactured in the US is not classified as ‘covered’ due to foreign components unless the component is a modular transmitter. Companies must demonstrate non-foreign production without precise regulations for documentation.

Netgear Has Approval

Netgear disclosed its Conditional Approval through a letter from the CEO. Although based in the US, its routers are produced in countries like Vietnam and Taiwan. The company has advocated for enhancing US cybersecurity and strategic competition with China. Netgear’s stock saw an increase following the announcement of the ban.

Will TP-Link Be Banned?

TP-Link, holding an estimated 35% of the US market share, must seek Conditional Approval or establish US manufacturing to market new routers. Investigations by US agencies and a lawsuit by the Texas attorney general highlight concerns regarding TP-Link’s connections to China. TP-Link asserts that it is headquartered in the US and manufactures in Vietnam, with its CEO applying for Trump’s Gold Card program for residency.

Will Asus Be Banned?

Asus mainly manufactures routers in Taiwan and China and must pursue Conditional Approval for new router sales. The ban has not influenced its stock price on the Taiwanese Stock Exchange.

Are Any Routers Manufactured in the US?

Some Starlink Wi-Fi routers, part of Elon Musk’s SpaceX operations, are created in Texas, although many components originate from East Asia. The security framework is considered more crucial than the manufacturing site.

How Will the Router Ban Impact Ordinary Folks?

The immediate consequence may be minimal, with numerous