Friday, March 25, 2011

How can I secure my wireless home network?





Here are 5 quick steps to help you secure your wireless network from unauthorized access. These steps are provided as general guidelines - for detailed help, please contact your hardware vendor. See the bottom of this page for links to some common wireless networking vendors.

1. Download the latest firmware for your device.
2. Change the administrator password.
3. Change your SSID and turn off SSID Broadcasting
4. Enable WEP 
5. Limit access by MAC addresses

Comcast offers a Wireless Home Networking service, which includes all of the hardware and software necessary to set up your wireless devices. Comcast Home Networking customers also receive professional installation - including security configuration - along with continuous technical support and remote troubleshooting, 24x7.


1. Download the latest firmware for your wireless router.
Firmware is software that's embedded in a hardware device - in this case, your wireless router. The firmware that comes with your wireless router or wireless access point may be out of date. Download the latest firmware to ensure the best security and performance.
As security vulnerabilities are discovered, patches to stop them are developed. These patches are often included in firmware updates. If you're using the default firmware that came with your wireless router, there could be several known security holes that could allow someone to hijack your Internet connection, view the files on each of your networked computers and even steal passwords or credit card numbers.
Most of today's wireless routers allow for firmware updates, and the process is quite simple. Check the web site for your wireless device manufacturer for instructions on obtaining the latest firmware and how to install it. he Linksys support site can be found here and the Netgear support site can be found here.

2. Change the administrator password
Your wireless router's default password should be changed immediately. All wireless routers are shipped with the same administrator user name and password. Changing the user name and password is not only the most important change, it is the easiest. In your wireless router's configuration page, look for a link or setting titled "Admin." If you have any trouble changing this setting, check your wireless router's user guide.

3. Change your SSID and turn of SSID Broadcasting
Your wireless router comes with a default SSID (Wireless network name), and one of the first things you should do is change that SSID. By having a non-default SSID, you're making it harder for unauthorized connections to your network.
By allowing your SSID to broadcast, you make it easy to add additional devices to your wireless network. However, you also make it easy for anyone with a wireless device to gain access to your network. Leaving broadcasting on is a bit like leaving your car keys in the ignition while you run into the store - you're asking for trouble.
When you turn SSID broadcasting off, your wireless devices will have to be configured with the exact SSID that you have specified in your wireless router.

4. Enable WEP
WEP encrypts data both to and from your wireless clients, making it harder for others to peek in on what you're doing. WEP should be enabled, and ideally you should use the strongest key possible, which is usually 128-bit.

5. Limit access by MAC addresses
Every network card, both wired and wireless, has a unique address assigned to it from the manufacturer. This identifier is called a MAC address. By setting your wireless router to only allow connections from specific MAC addresses, you're greatly improving the security of your wireless network. For help figuring out what your network card's MAC address is, please see this FAQ. Once you know each of the MAC addresses for your network cards, check the support Web site of your wireless router manufacturer for instructions on using MAC address security

No comments:

Post a Comment