How To Secure Home Wi-Fi ( Wireless ) Network

by on May 4, 2008 · 2 comments· LAST UPDATED August 6, 2008

in , ,

In this practical introduction to the basics of securing your home wireless network, you will learn how to secure a network of game consoles, phones, and PCs. Following are totally useless security measurements specified in arstechnica's guide:

=> MAC filtering
=> Disable DHCP
=> Disable SSID

You need to enable WPA / WPA2 to protect network (don't use wep). I also recommend disabling Universal Plug and Play (UPnP) support. The UPnP protocol does not implement any authentication, so UPnP device implementations must implement their own authentication mechanisms, or implement the Device Security Service. Unfortunately, many UPnP device implementations lack authentication mechanisms, and by default assume local systems and their users are completely trustworthy. Most notably, Routers and firewalls running the UPnP IGD protocol are vulnerable to attack since the framers of the protocol omitted to add any standard authentication method.


My recommendation

  1. Always use WPA / WPA2 with TKIP or AES encrypting with a strong paraphrase
  2. Change paraphrase every month
  3. Disable UPnP
  4. Disable wireless router remote (public IP based) management and ssh / telnet port features. Only use your local PC for telnet / ssh or router management.
  5. Turn on firewall, port scan and DoS protection (which is a default for many routers)
  6. Turn on email notification when DoS or port scan attack detected
  7. You may find our WPA / WPA2 Linux configuration guide useful
  8. Additional tips for Windows user - Use an anti virus, firewall / internet secruity suite. Most important don't use bloated Norton product. My personal recommendation is NOD32 or kaspersky anti-Virus. Both are extremely light on system resources and detecting viruses. Either is an excellent anti-virus solution. Keep your operating system and virus databases always up to date.

=> Read: The ABCs of securing your wireless network

If you have more security tips, please add them in the comments.

TwitterFacebookGoogle+PDF versionFound an error/typo on this page? Help us!

{ 2 comments… read them below or add one }

1 Rolf May 4, 2008 at 8:49 pm

I would probably also turn down the signal strength of the wireless router. This way it becomes less available and less exposed for others.

This is not really anything to do with security, but it could place you in a group of wireless networks where your not network isn’t interesting for some hackers. Those who just want free internet connection. … the less people that know about you, the less attention you’ll get.

Reply

2 AVP January 21, 2009 at 7:29 am

Turning off router when away from home is also essential,why leave anything on when you are not watching it?
VPN over wireless can be another option if you always need home wireless on.

Just my 2 cents.

Cheers,
AVP
http://www.avp-blogs.com

Reply

Leave a Comment

Tagged as: , , , , , , , , , , , , , , , , ,

Previous post:

Next post: