Source: bkjia.com
As more and more users choose wireless to improve the mobility of their work, wireless security has also attracted much attention. It can be said that wireless networks are more difficult to protect than wired networks, because the number of fixed physical access points is limited, and any point that wireless signals can achieve may be used.
At present, major brand manufacturers have added a variety of methods in the configuration design of wireless routers, such as keys, prohibiting SSID broadcast, to ensure wireless security.
Set key
Wireless encryption protocol (WEP) is a standard method for encrypting data transmitted in wireless networks. Currently, there are two key types for a wireless router or AP: 64-bit and 128-bit, respectively. They need to enter 10 or 26 strings as the encryption password. The data transmission encryption function is disabled when many wireless routers or APS leave the factory, and must be manually enabled when the wireless router is configured.
Disable SSID Broadcast
Generally, wireless routers or APS launched by the same manufacturer use the same SSID. Once attackers attempt to connect to the wireless network by using a common initialization string, it is easy to establish an illegal connection, posing a threat to our wireless network. Therefore, it is recommended that you name the SSID as a personal name.
A wireless router generally provides the "allow SSID broadcast" function. If you don't want your wireless device to be searched by someone else using the SSID name, you 'd better "Disable SSID broadcast ". Your wireless device can still be used, but it will not appear in the available list found by others.
After the SSID broadcast is disabled, the wireless efficiency will be affected. However, in exchange for improved security, I think it is worthwhile.
Disable DHCP
DHCP can automatically assign IP addresses to each computer in the wireless LAN. You do not need to set IP addresses, subnet masks, and other required TCP/IP parameters. If DHCP is enabled, it is easy for others to use your wireless network. Therefore, it is necessary to disable DHCP for wireless devices. Set the DHCP server to "disabled" under the "DHCP server" setting of the wireless router.
Enable MAC address and IP address filtering
When you enable the MAC address filtering function in the settings of a wireless router, note that, in the filter rule, you must select the option "allow only valid MAC addresses in the configured MAC address list to access wireless.
In addition, if DHCP is disabled in the wireless LAN, we recommend that you set a fixed IP address for each computer that uses the wireless service, then, enter the IP addresses in the IP address permitted list. After the IP address filtering function of the wireless router is enabled, only users with IP addresses in the list can access the vro normally, and others cannot access the vro.