All major brands of wireless routers in the configuration of the design of an increase of key measures against SSID broadcasting, but these security settings are really effective? As more and more friends into the "Wireless faction," the family, wireless network We also highly concerned about the safety of the. In contrast, wireless networks more difficult than the cable protection, because the cable network a limited number of fixed physical access points, and wireless network signal could reach any point may be used. Thus the major brands of wireless routers in the configuration of the design of an increase of the key, SSID broadcasting ban means, but these security settings are really effective? The following criteria in order to support ieee 802.11g wireless devices, for example, by measuring the way led us to question them one by one untied.
Setting network key
Wireless Encryption Protocol (WEP) is a wireless data transmission network, a standard encryption method. Most wireless devices now have only WEP encryption, more secure WPA encryption has not yet been widely used.
Currently, wireless router or AP that there are two key types. For example, the use of the wireless router will have 64-bit and 128-bit encryption type, respectively, 10 or 26 input string as the encryption password.
Here to remind you that many of the wireless router or AP in the factory, the data transmission encryption feature is turned off, if you bring the set to use without further words, then your wireless network has become a "defenseless" in the decoration . Therefore, in order to encrypt your wireless network settings is extremely important.
Test results: Using the 64-bit encryption, measured, by network stumbler
Disable SSID Broadcast
In layman's terms, SSID is your wireless network to get their own name. Note that the same manufacturer introduced a wireless router or ap use the same SSID, if those who seek illegal connection of an attacker using a common initialization string to connect to the wireless network, you can easily set up an illegal connection, thus a threat to our wireless network. Therefore, I suggest you better be able to name the SSID name of some more personality.
Wireless routers typically offer "to allow SSID broadcast" feature. If you do not want your wireless network SSID name has been searched by others, then the best "against SSID broadcasting." You can still use the wireless network, but does not appear in other people search for available networks list.
Tip: by prohibiting the SSID broadcast setting, the efficiency of wireless networks will be some impact, but in return for increased security that was worth it.
Test results: Since no SSID broadcast, the wireless network is wireless card overlooked, especially in the management of wireless networks using windows xp When reached "to deceive the public" purposes.
Disable DHCP
DHCP in the wireless LAN function automatically assign IP addresses for each computer, the user does not need to set IP address, subnet mask, and other required TCP / IP parameters. If you enable the DHCP feature, then other people can easily use your wireless network. Therefore, disable DHCP on the wireless network in terms of function is necessary.
Wireless router "DHCP server" setting under the DHCP server is set to "not enabled" can be.
Test results: lack of access to IP address and server information DNB, even to find the wireless network signal, still can not use the Internet.
Enable MAC address, IP address filtering
In the settings for wireless router, enable mac address filtering, we should note that, in the "Filter Rules" in the sure to select "only allow the mac address list has been set into force the mac address to access the wireless network" such option.
In addition, if the wireless LAN DHCP function is disabled, it is recommended that you use the wireless service for each computer are set to a fixed IP address, and then enter these IP addresses are IP addresses allow list. Enable the IP address of wireless router filtering, only the IP address in the list of users access the network to function properly, other people can only stare up.
Test results: mac address filtering and IP address filtering set up, even if the invasion was barely a wireless network, but mac address and IP address filtering is prohibited wireless router out, so the wireless network is still unavailable.
General Results
Actually measured in the process of discovery, any of the previously mentioned manner can protect your wireless network, so ordinary users need not worry, you can rest assured that use.
In addition, if at the airport, conference rooms and other public places to use some common wireless network, we must remember to close your document and print sharing, as such documents are easily shared with a LAN by another client access.