In terms of routing, we should pay more attention to the wireless route security settings. So what problems should we pay attention to in these aspects? Below we have summarized some points and hope to help you. For more information, see the document. At present, major brand manufacturers have added a variety of methods in the configuration design of wireless route routers, such as keys, prohibiting SSID broadcast, to ensure the security of wireless routes.
Wireless route security settings: Set the key
The wireless route encryption protocol (WEP) is a standard method for encrypting data transmitted in wireless routes. Currently, there are two key types for a wireless router or AP: 64-bit and 128-bit, respectively. They need to enter 10 or 26 strings as the encryption password. The data transmission encryption function is disabled when many wireless router or AP are in the factory, and must be manually enabled when the wireless router is configured.
Wireless route security settings: Disable SSID Broadcast
Generally, the wireless router or AP launched by the same manufacturer uses the same SSID. Once attackers attempt to connect to the wireless route using a common initialization string, it is easy to establish an illegal connection, posing a threat to our wireless routing. Therefore, it is recommended that you name the SSID as a personal name.
A wireless router generally provides the "allow SSID broadcast" function. If you do not want your wireless route to be searched by someone else using the SSID name, you 'd better "Disable SSID broadcast ". Your Wireless route can still be used, but it will not appear in the list available by others.
After the SSID broadcast is disabled, the efficiency of the wireless route will be affected. However, in exchange for improved security, I think it is worthwhile.
Wireless route security settings: disable DHCP
The DHCP function can automatically assign IP addresses to each computer in the wireless LAN. You do not need to set IP addresses, subnet masks, and other required TCP/IP parameters. If DHCP is enabled, others can easily use your wireless route. Therefore, it is necessary to disable DHCP for wireless routing. Set the DHCP server to "disabled" under the "DHCP server" setting of the wireless route router.
Wireless route security settings: Enable MAC address and IP address filtering
When you enable the MAC address filtering function in the settings of a wireless router, note that, in the filter rule, you must select the option "only allow valid MAC addresses in the configured MAC address list to access wireless routes.
In addition, if DHCP is disabled in the wireless LAN, we recommend that you set a fixed IP address for each computer that uses the wireless routing service, then, enter the IP addresses in the IP address permitted list. After the IP address filtering function of the wireless router is enabled, only users with IP addresses in the list can access the vro normally, and others cannot access the vro.