With the rapid development of China's wireless router industry, there are also a large number of users, and many problems will be encountered by the masses, so I have studied some protective measures for wireless routers, I would like to share it with you here and hope it will be useful to you. Wireless routers have gradually become the first choice for home users to build important devices in wireless networks. Compared with wired networks, their randomness and flexibility are the main advantages, ordinary home users can access the Internet anytime, anywhere through wireless routers at home.
However, due to the strong openness of wireless networks, its security is difficult to guarantee. Currently, major brands have added key and forbidden SSID broadcast methods in the configuration and design of wireless routers to protect the wireless network security of individual users. But how are these protection methods used or their effects? Today, I will briefly talk about this content.
Wireless encryption
First, let's talk about wireless encryption. This protection method is currently the most common method. Users can encrypt the wireless network through the WEB interface of the wireless router. Currently, there are two types of encryption for a wireless router or AP: 64-bit and 128-bit, you only need to enter 10 or 26 strings as the encryption password to protect the wireless network. Here, we should remind you that the wireless encryption function is usually disabled when a wireless router leaves the factory. If you use it directly, your network is an extremely insecure network, therefore, it is recommended that you use it after setting it.
I then used a 64-bit encryption method, and used the software in my notebook to search for signals. However, because there is no password, I cannot connect to the network. In addition, we recommend that you set a password with a higher security factor, such as numbers, characters, Chinese characters, and formulas.
Disable DHCP server
DHCP is used to automatically assign IP addresses to computers in the LAN. This removes the need to manually set IP addresses, subnet masks, and other required TCP/IP parameters. However, because the DHCP function is enabled, that is, any computer in the signal coverage can obtain an IP address, which is illegally connected to the user's wireless network, this poses a security risk to wireless networks. Therefore, disabling DHCP is also a more effective security protection measure.
Disable SSID Broadcast
In simple terms, the SSID is the name you give for your wireless network. However, because the product of the same manufacturer has the same SSID at the factory, this gives some illegal personal opportunities, connect to the wireless network by using the initial string, so that your wireless network will receive illegal intrusion, greatly reducing the security factor. Therefore, it is necessary to disable the SSID broadcast function. In addition, disabling SSID broadcast does not affect usage, but your SSID is not displayed in the search signal menu of others. Because it cannot be found in the signal search menu, it can effectively avoid illegal user intrusion.
Enable IP address and IPMAC address filtering
After the IP address filtering function of the wireless router is enabled, only users of the IP address in the list can access the wireless network normally. Other users not in the list cannot connect to the network. Note that you must select the "allow only valid MAC addresses in the configured MAC address list to access the wireless network" option in the "filter rules, otherwise, the wireless router will prevent all users from connecting to the network. In addition, if DHCP is disabled in the wireless LAN, we recommend that you set a fixed IP address for each computer that uses wireless services, and then enter these IP addresses in the IP address list. In this way, the security of the wireless network can be effectively protected.
Summary:
The security of wireless networks is becoming more and more important in this information-based society. whether in the home or enterprise, information security of networks has always been the primary solution. Because wireless networks are inherently inferior to wired networks in terms of security, we should learn to protect our information security. Today, I briefly talked about several of the most common measures. Although they are not very advanced, they are still sufficient to deal with the general situation, if you are interested, you can pay more attention to this book.