ESP32 NAT Router

This is a firmware to use the ESP32 as WiFi NAT router. It can be used as:

• Simple range extender for an existing WiFi network
• An additional WiFi network with different SSID/password and restricted access for guests or IOT devices
• VPN-Router using WireGuard
• Converter from a corporate (WPA2-Enterprise) network to a regular (WPA-PSK) network for simple devices
• MCP-server to control your network using agentic AI
• Debugging and monitoring of WiFi devices

Key Features

• NAT Routing: Full WiFi NAT router with IP forwarding (15+ Mbps throughput)
• WireGuard VPN: Optional VPN tunnel for upstream traffic with automatic MSS clamping and Path MTU
• DHCP Reservations: Assign fixed IPs to specific MAC addresses
• Port Forwarding: Map external ports to internal devices
• Firewall: Define ACL to restrict or monitor traffic
• PCAP Capture: Live packet capture can be streamed to Wireshark or other network tools
• WPA2-Enterprise Support: Connect to corporate networks (PEAP, TTLS, TLS) and convert them to WPA2-PSK
• Web Interface: Web UI with password protection for easy configuration
• Serial Console: Full CLI for advanced configuration
• Remote Console: Network-accessible CLI via TCP (password protected, per-interface binding)
• LED Status Indicator: Visual feedback for connection and traffic status
• OLED Display: Status display on 72x40 I2C SSD1306 OLEDs (as found on some ESP32-C3 mini boards)