How can I Secure My Wireless Home?
So you now have a wireless network in your house. Thanks to the wizards in the wireless router’s software you were able to easily setup your wireless network. You can now enjoy the convenience of having a wireless access to other computers in your house and to the Internet.
However, your home network is now open to malicious eavesdroppers and unauthorized users who want to access the Internet for free through your home Internet connection.
But what measures can you take to start beefing up your network security while you’re still building your know-how on how to mitigate threats against your network both from the Internet and from around your physical wireless perimeter.
Turn Off Router When Not In Use
A simple but sometimes inconvenient measure that you can use is just to be conscious of network security always and to make it a habit to turn off the wireless router when it is not in use. Aside from saving a small amount in electricity cost, it will at least minimize the time that your wireless network is exposed to any unscrupulous person who may want to snoop on your network or use your Internet connection to access the Internet.
You don’t have to plug and unplug from your convenient outlet every time you want to turn on or turn off your wireless router. Buy an extension cord with a switch for turning the electric power on or off and plug your wireless router to the extension cord. This way all you will need to do to power on or off your wireless router is to turn the extension cord switch on or off. (Quite an ingenious tip I would say, eh?)
Disable Router’s DHCP Service
One way to make it less easy for others to make use of your home network is to disable the DHCP server on your wireless router. A DHCP server dispenses network settings to wireless computers to enable them to avail of network resources. However, it also makes it one step easier to make use of your network resources for selfish ends. If you only have a few wireless computers on your network, you can just configure their wireless network settings manually.
You only need to give to each wireless computer a unique Internet Protocol address and subnet mask belonging to the class of private addresses available for anyone’s use. Then, you can set its default gateway to the Internet Protocol inside network address of your wireless router which is already set by the router manufacturer. (You may also want to change the default router’s address for added security.)
Your wireless router is by default configured to act as a DNS server agent so you can just use your router’s Internet inside network protocol address as the DNS server of all of the wireless computers in your network. All of these network settings can be found or changed by looking at the computer’s wireless network settings (Internet Protocol settings).
Router Default Setup Not Secure
If you have just used the wizards in setting up your wireless router, then no security setting has been turned on and your network will look like a sitting duck waiting for hackers to break into. Your first order of business is to set your wireless network encryption to the highest level provided by your wireless router. You can also use a long pass phrase that contains numbers, letters and special characters. To help you remember the pass phrase, keep a copy in your wallet as well as in your cell phone or PDA. You can also use an off-line computer that is not connected to the network to store your passwords.
Turn Off Network Name Broadcast
Another way of making it harder for others to access your network from outside your house is to stop your wireless from broadcasting its network name. You can do this by disabling SSID broadcast in your wireless router’s configuration settings. You can access your router’s configuration files by using a computer that is connected through cable to your router. You can also use the wireless computers in doing this but there is a danger that you may lose connection if you make a configuration mistake.
Enable Router’s Firewall
One way of protecting your network from attacks from the Internet is to enable your router’s firewall. Routers use the Stateful Packet Inspection strategy to keep the hackers at bay. In simple words, it makes sure that packets entering the router from the Internet are valid and is related to requests made by computers inside your network. Packets that have no business entering the network are stopped by the router and subsequently discarded.
You can also prevent your router from answering ping requests from the Internet by disabling this feature in your router’s configuration settings. People in the Internet have no valid reason why they need to know your router’s Internet WAN address other than they want to do snooping or unauthorized access to your network. The only people that need to know your router’s Internet address is your Internet service provider and they already know it.
Turn Access Control On
To prevent outsiders from using your network to gain access to the Internet for free, you can enable machine address filtering in your wireless router’s network setup. To do this you have to find out the machine address of each wireless computer and include these addresses on the list of computers to be allowed to use the network in the wireless router’s configuration settings. This will make sure that only the wireless computers inside your house will be able to make use of your Internet connection to access the Internet. However, you need to include in the wireless router’s allowed list the machine address of your friend’s laptop if he wants to access the Internet from your house. This may prove to be a little bit inconvenient but that’s the price we have to pay for having our network protected from unauthorized access.
Change Router’s Default User Name and Password
The default user name and password for most wireless home routers are widely known in the Internet. Immediately change these two credentials after you have successfully logged on to your wireless router. Make up a user name with random letters and numbers and make it as long as you can memorize preferably not shorter that six characters. Make up a difficult to guess password using random letters, numbers and special characters. Use a long password that should preferably not be shorter that eight characters.
Check Router Status Every Now and Then
Finally every now and then check your router’s status and see which computers are connecting through your wireless network. You should be familiar with the Internet Protocol addresses of the computers in your wireless network and if you see that there are computers listed that you don’t know, then it’s time again to make a review of your security measures and make any corrective action to restore your network’s integrity.
By following the above suggestions, you would be able to make your wireless home network more secure. And if you want to learn more about fixing computer problems, safe wireless computing, video making on Windows computers, and creating free web sites on the Internet, check out my articles and video tutorials by following the links shown below.
By: Aureo Castro
Posts Tagged ‘Wireless Access’
Online and Computer Security Advice – Protecting Your Home Wireless Network
October 16th, 2009
One issue you have to address if you choose to install a wireless system in your home is that of security. You want to make at least some effort to make it harder for others to access your computer network, especially those who may want to attack your computer or steal your personal information. You can reduce these risks if you use the available security features that are built into a typical wireless system.
Performing any of the following steps will help you maintain your privacy when using a wireless network, and performing all of the steps will help even more.
* Change the router’s user name and password: Use something other than the default user name and password in order to make it harder for a hacker to access your system.
* Control access with a user name and password: Most wireless routers have a mechanism called identifier broadcasting. It sends out a service set identifier (SSID) signal or an extended service set identifier (ESSID) signal to any device in the vicinity announcing its presence. Change the default user name to a unique user name. For added protection, set it up to require a password for access.
* Turn off identifier broadcasting: Hackers near your home can use identifier broadcasting to locate unprotected wireless networks. Disable this mechanism if your wireless router allows it.
* Turn off wireless network when not in use: If you will not be using your wireless network for an extended period of time, turn it off or disconnect it. Hackers are unable to gain unauthorized wireless access to your computers if the wireless network is not operating.
* Use encryption: The most effective way to secure your wireless network from intruders is to encrypt, or scramble, communications over the network. Typically, the default setting is to have this system turned off. Follow the directions included with your wireless router, or the product support information on the manufacturer’s web site, to turn on encryption. Turning on encryption will allow access only to users with the proper user names and passwords. If your wireless router doesn’t have an encryption feature, consider getting one that does. Two main types of encryption are available: Wired Equivalent Privacy (WEP) and the more secure Wi-Fi Protected Access (WPA). Your computer, router, and other equipment must use the same encryption.
* Be careful away from home: If you are accessing the Internet through a public hot spot, do not use this connection for anything involving sensitive private information.
Depending on your system, you may not be able to adjust all of your router’s settings. You may want to review your router’s documentation or your ISP for additional information on securing your wireless system.
By: Todd Curtis, PhD
