Safer No-Strings Attached

10 simple ways to secure wireless network. Of course, no string attached

1. Change default administrator usernames and passwords

As soon as you buy a router or access point you will need to change username and password. Most of them come with default passwords and usernames that are well documented and available online for hackers to use.

To change a password or username you need to access administrative panel and change it from there. It´s important that you set a password to something difficult to guess by using mixture of uppercase and lowercase letters as well as numbers and preferably contains special characters like $,*,%,!.

2. Turn on encryption

There are several encryption technologies available for wireless communication today that will scramble messages sent over the air and make it harder for hackers to intercepte them. WPA ( wired equivalent privacy ) is the best encryption technology for home devices.

3. Change the default SSID

Access points and routers all use a network name called the SSID ( service set identifier ). Manufacturers normally ship their products with the same SSID set for all routers. For example, the SSID for Netgear devices is normally “NETGEAR”. The default SSID can be changed from the administrative panel and should be set to something unique.

4. Enable MAC Address filtering

Each wireless device contains a unique identifier called the physical address or MAC address. Access points and routers keep track of the MAC addresses for all devices that connect to them. Wireless routers offer the option to key in the MAC addresses of your home equipment so as to restrict the network to only allow connections from those devices. This will make it harder for rogue users to connect to the wireless router.

5. Disable SSID Broadcast

The wireless access point or router typically broadcasts the network name (SSID) over the air at regular intervals. This feature is unnecessary for home users and it increases the likelihood someone will try to log in to your home network. Most wireless access points allow the SSID Broadcast feature to be disabled by the network administrator.

6. Do not auto-connect to open wireless networks

Connecting to an open wireless network such as a free wireless hotspot or your neighbour’s router exposes your computer to security risks and attacks. If you however for some reason need to access an open wireless network make sure that the setting for auto-connect to open wireless network is not enabled.

7. Assign static IP addresses to devices

Turn off DHCP ( automates the assignment of IP addresses, subnet masks, default gateway, and other IP parameters) on the router or access point, set a fixed IP address range instead and then configure each connected device to match. Using a private IP address range (like 10.0.0.x) prevents computers from being reached directly from the Internet.

8. Enable firewalls on each computer and router

Modern network routers contain built-in firewall capability, but the option also exists to disable them. Make sure that your router’s firewall is turned on.

9. Position the router or access point safely

Try to position the access point or router near the centre of the home rather than near windows to minimise leakage. Many routers allow you to reduce the range of your router from the administrative panel to prevent the signal leakage.

10. Turn off network during extended periods of non-use

The ultimate in wireless security measures, shutting down your network will most certainly prevent outside hackers from breaking in! While impractical to turn off and on the devices frequently, at least consider doing so during travel or extended periods of downtime.

Link