musal-a.com

Wireless network without cables or commonly referred to with a wireless network is easy enough for the configure, and also feels very flexible, especially if we want when walking path around the home or office with a notebook / laptop can still access the internet. However, because the Wifi / wireless lan using a wave, so it was easier to hack a cable Internet connection. some tips below to browse our safer when surfing in cyberspace using wifi

1. Using encryption
Encryption is the first security measure, many also from wireless access points (WAPs) that do not use encryption as a default configuration. Though many already have a WAP that Wired Equivalent Privacy (WEP) protocol, also by default be disabled. WEP does have some cracks in security, and an experienced expert in the field of the internet can definitely break through the security door, but it still helped a lot of security than no encryption. Be sure to make setting the WEP authentication method to “shared key” rather than “open system”. To “open system”, he does not use encrypted data, but only authenticate the client. Change the WEP key periodically do this to avoid password theft, and use 128-bit WEP rather than the 40-bit.

2. Use strong encryption
Because of the existing vulnerabilities in WEP, it is advisable to use Wi-Fi Protected Access (WPA). To use WPA, WAP must support. from the client side must also be able to support WPA TSB.

3. Change the default administrator password
Most manufacturers have the same administrative password for all these production WAP. The default password of course, already well known by hackers, which they later can also use it to change the configuration on your WAP to their interests. that must be done in the WAP settings is to change the default password. Use at least eight characters, a combination of letters and numbers will be increasingly difficult to be penetrated by a cracker, passwords should not use the word of words in the dictionary (usually easily penetrated by distionary attack) because the software only match the words with the existing password in the dictionary .

4. Turn off SSID Broadcasting
Service Set Identifier (SSID) which is the name of the wifi network. Standard configuration, the SSID of the WAP will be send out. This can make users easy to find searching and found that network, because the SSID will appear in the list of network providers who are on wifi users. If the SSID at the turn of, the user must know the SSID in advance of his order to connect with the network.

5. Turn off when not in use WAP
This method seems very simple, but also a few companies or individuals using this method. If we have users who only connect on a certain while, do not activate the wifi network at any time because it can provide opportunities for intruders to do the things that can hurt us. better turn off the access point when not in use.

6. Change the default SSID
Manufacturers always provide a default SSID. SSID broadcast disable the usefulness of is to reduce the possibility of other people know the name of our network, but if you still use the standard SSID, it is not difficult to guess the SSID of our network.

7. Using MAC filtering
Most WAP will allow us to use a filter media access control (MAC). This means we can make a “white list” of users who can access our wireless network, based on the options the MAC or physical address listed on each card network pc. Connections from the MAC is not in the list can not access.

This method is not always safe, because there could be for a hacker sniffing packets trying to transmit via our wifi network and find a valid MAC address from one user, and then tried to spoof. But MAC filtering can make an intruder who still do not experience difficulties.

8. Isolate the wireless network from the LAN
To password internal cable network from threats coming from the network without wires, so need to be made wireless DMZ or perimeter network is isolated from the LAN. This means using a firewall between wifi and LAN networks.
And for wireless users who need access to the internal network, users must first authenticate to the RAS server or use VPN. This provides an extra layer for a password.

9. Control the wireless signal
802.11b WAP can emit frequencies up to 300 feet. But this distance can be added by altering the antenna with a higher range. By using high-gain antenna, we can use a longer distance. Directional antenna to transmit the signal transmitted in a particular direction, and the signal wave is not circular as it did with omnidirectional antennas are commonly found on the WAP package defaults. In addition, by selecting a suitable antenna, we can control distance and direction signals to be safe from intruders. For the record, there are few who can configure the WAP signal strength and direction via WAP config TSB.

10. Emit waves at different frequencies
One way to avoid hackers usually use the technology, 802.11b / g, more powerful is to use 802.11a. Because 802.11a can work on different frequencies (frequency of 5 GHz), the NIC is created on the sophisticated technology will not be able to get a signal TSB.

6 Responses to “Securing WIFI Network”