After several years of these issues and a desire to increase internet security, I shifted from commercial routers to a home-built PC-based one which I installed and service myself.
There are relatively cheap Celeron CPU-based boxes with dual (or usually 4 NICs). I only use 2 myself. The software is a toss-up for me between pfsense, Opnsense (an improved branch off of pfsense), and IPFire. I am currently using the latter but have used all 3 and have more or less the same satisfaction with all. I like IPFire as it is Debian Linux based which I already understand. I use the Internet provider router to get into the home and then run the home router for the network. I have 7 wifi routers around our property (all high speed and various brands) and have them all running as access points so they don't do any actual routing at all and merely act as smart switches. The main router does everything. Having an Intel CPU adds the built-in encryption features and is far more powerful than an ARM-based CPU usually found in off-the-shelf routers. With that, you can encrypt everything real-time. It is also easy to add anti-virus features, packet sniffing, etc. and none slow anything down at all. There are a ton of additional features that can be added. I also run two raspberry pi's one running AdGuard Home and the other Pi-hole which both in combination block advertising and pop-ups. This combination of home router and DNS intercepts gives me a safe and secure home internet and I can see what is happening in the router by merely going into its web page and observing traffic. I can also easily block devices and software reporting back to home everything. It is very simple to do and well worth the additional security. If you have an old PC lying around it can very easily be turned into an excellent router. If not these cheap (sub $250) boxes work very well. You don't need more than 4GB RAM and a HDD of 20 GB is sufficient unless you maintain logs of everything for long periods. Home users don't need to do that and I keep logs for 3 days only. With this setup it is easy to see what is going on in your network and if there are penetrations or intruders into your network.