08-Oct-2018 13:52
Press release
<- Back to: Press releases

Free LANCOM update brings WPA3 for improved Wi-Fi security

Major release for Wi-Fi and VPN site connectivity

Press Release 2018-557


Download PDF


Aachen, October 8, 2018—With the latest release of their operating system (LCOS 10.20), network and security manufacturer LANCOM Systems delivers the new Wi-Fi security standard WPA3. Along with improved Wi-Fi security, the free update also includes an auto-updater and other new features for Wi-Fi and VPN site connectivity, such as WAN policy-based NAT and the new LISP routing architecture. The firmware can be uploaded into all current LANCOM devices. Furthermore, many older existing installations are also compatible with the update.


As a successor to WPA2, WPA3 offers major enhancements and security features for small (“WPA3-Personal”) and large-scale (“WPA3-Enterprise”) networks. With LCOS 10.20 all current LANCOM access points and WLAN routers support the new Wi-Fi security standard. This is an important contribution by LANCOM to protecting customer investments in their current installations.


A further addition to security is the new LANCOM Enhanced Passphrase Security-User (LEPS-U). With LEPS-U, individual clients or entire groups each receive a unique Wi-Fi password (private pre-shared key) for an SSID. LEPS-MAC moreover identifies the clients by their MAC address. This helps administrators to always keep control of who is in their Wi-Fi.


Wi-Fi hotspot users now benefit from Enhanced Open, which for the first time provides each user with unique individual encryption on open Wi-Fi networks, for example in cafés or hotels.


Auto Updater

LANCOM devices can now search for and download new software updates and perform a scheduled installation without user interaction. The admin decides whether to install only security updates, release updates, or all updates automatically. If you choose not to use automatic updates, the feature can be used purely to check for the availability of new updates.


WAN policy-based NAT in firewall rules

WAN policy-based NAT allows static public WAN-IPv4 addresses to be assigned to certain services. By implementing a NAT action in the firewall rules, the internal addresses are masked behind a WAN address from the provider. This feature is useful for scenarios where, for example, mail and web servers are operated with different WAN IPv4 addresses.


Also new is the support of OCSP (Online Certificate Status Protocol) for certificates signed by the device’s own integrated CA (certificate authority), and LISP (Locator/ID Separation Protocol). LISP is a new routing architecture for implementing highly scalable networks with an integrated routing, tunneling and/or overlay protocol for service providers and enterprise networks.


Detailed information about LCOS 10.20 and other new features such as DSL bridge mode for VDSL routers and controller-less Wi-Fi client management is available here:






LANCOM Systems background:

LANCOM Systems GmbH is the leading German manufacturer of networking solutions for business customers and the public sector. LANCOM offers professional users secure, reliable and future-proof infrastructure solutions for local-area and multi-site networks (WAN, LAN, WLAN), as well as centralized network management based on software-defined networking technologies (SD-WAN, SD-LAN, SD-WLAN). The LANCOM routers, gateways and WLAN solutions are developed and manufactured in Germany, and a selection of the VPN portfolio is certified by the German Federal Office for Information Security (BSI) for the protection of particularly sensitive networks and critical infrastructures (EPCIP). LANCOM Systems has its headquarters in Würselen near Aachen, Germany. Customers include small and medium-sized enterprises, government agencies, institutions, and major corporations from Germany, Europe and, increasingly, worldwide.


Your editorial staff contact:

Kristian Haizmann

International PR Manager

Tel: +49 (0)2405 49936 349

Mobile: +49 (0)1743 469 170