By: Bradley Mitchell
Many folks setting up wireless home networks rush through the job to get their Internet connectivity working as quickly as possible. That's totally understandable. It's also quite risky as numerous security problems can result. Today's Wi-Fi networking products don't always help the situation as configuring their security features can be time-consuming and non-intuitive. The recommendations below summarize the steps you should take to improve the security of your home wireless network.
1. Change Default Administrator Passwords (and Usernames)
At the core of most Wi-Fi home networks is an access point or router. To set up these pieces of equipment, manufacturers provide Web pages that allow owners to enter their network address and account information. These Web tools are protected with a login screen (username and password) so that only the rightful owner can do this. However, for any given piece of equipment, the logins provided are simple and very well-known to hackers on the Internet. Change these settings immediately.
2. Turn on (Compatible) WPA / WEP Encryption
All Wi-Fi equipment supports some form of encryption. Encryption technology scrambles messages sent over wireless networks so that they cannot be easily read by humans. Several encryption technologies exist for Wi-Fi today. Naturally you will want to pick the strongest form of encryption that works with your wireless network. However, the way these technologies work, all Wi-Fi devices on your network must share the identical encryption settings. Therefore you may need to find a "lowest common demoninator" setting.
3. Change the Default SSID
Access points and routers all use a network name called the SSID. Manufacturers normally ship their products with the same SSID set. For example, the SSID for Linksys devices is normally "linksys." True, knowing the SSID does not by itself allow your neighbors to break into your network, but it is a start. More importantly, when someone finds a default SSID, they see it is a poorly configured network and are much more likely to attack it. Change the default SSID immediately when configuring wireless security on your network.
4. Enable MAC Address Filtering
Each piece of Wi-Fi gear possesses a unique identifier called the physical address or MAC address. Access points and routers keep track of the MAC addresses of all devices that connect to them. Many such products offer the owner an option to key in the MAC addresses of their home equipment, that restricts the network to only allow connections from those devices. Do this, but also know that the feature is not so powerful as it may seem. Hackers and their software programs can fake MAC addresses easily.
5. Disable SSID Broadcast
In Wi-Fi networking, the wireless access point or router typically broadcasts the network name (SSID) over the air at regular intervals. This feature was designed for businesses and mobile hotspots where Wi-Fi clients may roam in and out of range. In the home, this roaming feature is unnecessary, and it increases the likelihood someone will try to log in to your home network. Fortunately, most Wi-Fi access points allow the SSID broadcast feature to be disabled by the network administrator.
6. Do Not Auto-Connect to Open Wi-Fi Networks
Connecting to an open Wi-Fi network such as a free wireless hotspot or your neighbor's router exposes your computer to security risks. Although not normally enabled, most computers have a setting available allowing these connections to happen automatically without notifying you (the user). This setting should not be enabled except in temporary situations.
7. Assign Static IP Addresses to Devices
Most home networkers gravitate toward using dynamic IP addresses. DHCP technology is indeed easy to set up. Unfortunately, this convenience also works to the advantage of network attackers, who can easily obtain valid IP addresses from your network's DHCP pool. Turn off DHCP on the router or access point, set a fixed IP address range instead, then configure each connected device to match. Use a private IP address range (like 10.0.0.x) to prevent computers from being directly reached from the Internet.
8. Enable Firewalls On Each Computer and the Router
Modern network routers contain built-in firewall capability, but the option also exists to disable them. Ensure that your router's firewall is turned on. For extra protection, consider installing and running personal firewall software on each computer connected to the router.
9. Position the Router or Access Point Safely
Wi-Fi signals normally reach to the exterior of a home. A small amount of signal leakage outdoors is not a problem, but the further this signal reaches, the easier it is for others to detect and exploit. Wi-Fi signals often reach through neighboring homes and into streets, for example. When installing a wireless home network, the position of the access point or router determines its reach. Try to position these devices near the center of the home rather than near windows to minimize leakage.
10. Turn Off the Network During Extended Periods of Non-Use
The ultimate in wireless security measures, shutting down the network will most certainly prevent outside hackers from breaking in! While impractical to turn off and on the devices frequently, at least consider doing so during travel or extended periods offline. Computer disk drives have been known to suffer from power cycle wear-and-tear, but this is a secondary concern for broadband modems and routers.
Showing posts with label Access Point. Show all posts
Showing posts with label Access Point. Show all posts
October 17, 2007
Top 7 Tips for Improving a Wireless Home Network
A basic Wi-Fi home network can be assembled fairly quickly. However, many homeowners aren't aware of all the options available for making their network better. Consider the below ideas for improving the capability, performance and security of your wireless home network.
1. Upgrade and Add the Right Equipment
Many homeowners have heard of basic Wi-Fi equipment like routers and wireless adapter cards. Many such products are available to choose from. The "best" choices are often unclear. Old equipment may need to be replaced with faster, more reliable or more compatible products. Folks also often fail to consider cool wireless gear like print servers, game adapters and video cameras. Before settling for a second-rate home network setup, do your research and acquire the right stuff at a good price.
2. Install the Wireless Router / Access Point Strategically
Some people quickly assemble their wireless home network only to find that it won't function in certain areas of the residence. Others enjoy a network functional at first but suffer quick disappointment later when it crashes as a microwave oven or cordless phone is turned on. Still others suffer from poor network performance but fear attempting to fix it. One easy way to address these common Wi-Fi networking problems is to move the wireless router (access point).
3. Change the Wi-Fi Channel Number
In the USA and most other countries, Wi-Fi equipment can transmit on any of several different "channels" similar to televisions. Most wireless routers ship with the same default channel number, and most homeowners never think about changing it. However, if a person experiences radio interference from a neighbor's router or some other piece of electronic equipment, changing the Wi-Fi channel just might be the best way to avoid it.
4. Upgrade Wireless Router (Access Point) Firmware
Wireless routers contain built-in programmable logic called firmware. A version of this firmware is installed on the router by the manufacturer, and this normally works well when first installing the device. However, many routers also offer a firmware upgrade capability that allows homeowners to install newer versions. Updated firmware can provide performance improvements, security enhancements or better reliability. As your router gets older, consider upgrading its firmware periodically.
5. Improve Signal Strength and Range of the Wi-Fi Router (Access Point)
No matter where in a residence a Wi-Fi router is installed, sometimes the wireless signal will simply not be strong enough. The likelihood of this problem increases with longer distances and with severe obstructions such as brick walls between the router and a Wi-Fi client. One way to solve this problem is to upgrade the Wi-Fi antenna installed on the router. Some routers do not support this option, but many do. The alternative involves installing an additional device called a wireless repeater.
6. Improve Signal Strength and Range of Wi-Fi clients
As with wireless routers, the signal strength of wireless clients can also be improved. Consider this option when faced with a Wi-Fi client that suffers from a very short range compared to the rest of the devices. This same technique can improve the ability of laptop computers to connect to Wi-Fi hotspots.
7. Improve Wireless Network Security
Many homeowners consider their wireless network a success when basic file and Internet connection sharing are functional. However, if proper security features are not in place, the work of network setup remains unfinished. Follow this checklist of essential steps for establishing and maintaining good Wi-Fi security on a home network.
1. Upgrade and Add the Right Equipment
Many homeowners have heard of basic Wi-Fi equipment like routers and wireless adapter cards. Many such products are available to choose from. The "best" choices are often unclear. Old equipment may need to be replaced with faster, more reliable or more compatible products. Folks also often fail to consider cool wireless gear like print servers, game adapters and video cameras. Before settling for a second-rate home network setup, do your research and acquire the right stuff at a good price.
2. Install the Wireless Router / Access Point Strategically
Some people quickly assemble their wireless home network only to find that it won't function in certain areas of the residence. Others enjoy a network functional at first but suffer quick disappointment later when it crashes as a microwave oven or cordless phone is turned on. Still others suffer from poor network performance but fear attempting to fix it. One easy way to address these common Wi-Fi networking problems is to move the wireless router (access point).
3. Change the Wi-Fi Channel Number
In the USA and most other countries, Wi-Fi equipment can transmit on any of several different "channels" similar to televisions. Most wireless routers ship with the same default channel number, and most homeowners never think about changing it. However, if a person experiences radio interference from a neighbor's router or some other piece of electronic equipment, changing the Wi-Fi channel just might be the best way to avoid it.
4. Upgrade Wireless Router (Access Point) Firmware
Wireless routers contain built-in programmable logic called firmware. A version of this firmware is installed on the router by the manufacturer, and this normally works well when first installing the device. However, many routers also offer a firmware upgrade capability that allows homeowners to install newer versions. Updated firmware can provide performance improvements, security enhancements or better reliability. As your router gets older, consider upgrading its firmware periodically.
5. Improve Signal Strength and Range of the Wi-Fi Router (Access Point)
No matter where in a residence a Wi-Fi router is installed, sometimes the wireless signal will simply not be strong enough. The likelihood of this problem increases with longer distances and with severe obstructions such as brick walls between the router and a Wi-Fi client. One way to solve this problem is to upgrade the Wi-Fi antenna installed on the router. Some routers do not support this option, but many do. The alternative involves installing an additional device called a wireless repeater.
6. Improve Signal Strength and Range of Wi-Fi clients
As with wireless routers, the signal strength of wireless clients can also be improved. Consider this option when faced with a Wi-Fi client that suffers from a very short range compared to the rest of the devices. This same technique can improve the ability of laptop computers to connect to Wi-Fi hotspots.
7. Improve Wireless Network Security
Many homeowners consider their wireless network a success when basic file and Internet connection sharing are functional. However, if proper security features are not in place, the work of network setup remains unfinished. Follow this checklist of essential steps for establishing and maintaining good Wi-Fi security on a home network.
Subscribe to:
Posts (Atom)