IT elites tell you how to set up wireless ADSL for security

Source: Internet
Author: User

IT elites tell you how to set up wireless ADSL securely. It is very important to set up wireless ADSL securely. With the promotion of ISPs such as China Telecom, the secure setting of wireless ADSL modem is widely used in many households, SOHO and office users. Wireless ADSL Cat's network construction is convenient for users, and security factors are also increasingly exposed, because many users have adopted the factory default security settings wireless ADSL cat security settings, these settings allow you to easily use the wireless ADSL cat, but the security protection capability is weak.

I. Product of the combination of minutes

What is the security setting for wireless ADSL cats? The secure setting of wireless ADSL cat is a product that must be combined for a long time. It is the product of high integration of electronic products. It integrates ADSLMODEM and Wireless AP or wireless router functions, this greatly reduces device space usage and connection complexity, saving the trouble of multiple power cords) and costs. Of course, compared with a Broadband Router or a wireless router, the secure setting of a wireless ADSL cat can only be used on the ADSL line of China Telecom, China tietong, China Netcom, and so on, but not on other lines.

The price of the wireless ADSL cat market for security settings is around-yuan, which can meet the needs of medium and high-class residential buildings and small-sized enterprise bridges and routers markets, it also provides an ideal job platform for security, firewall, and high-speed network applications. Provides a wide range of functions, including an integrated 10/100 Mbits Ethernet PHY chip and telephone line interface. It supports Ethernet bridge filtering and advanced DMA functions, supports advanced bridging and routing software and management and control functions, such as embedded Web management and UPnP software.

Carriers generally provide low-grade security settings for the selection of wireless ADSL cats. For example, the wireless ADSL cat in ZTE 531B security settings is one of China Telecom's EHOME package distribution devices. It integrates four functions: ADSLMODEM, four-port switch, routing, and 54M Wireless AP, integrate the functions that originally required four devices to one device.

The device provides a transmission rate of 8 Mbps and 1 Mbps at full speed. In G. lite mode, the device provides a transmission rate of 1.5 Mbps and kbps. Supports HPAuto-MDIX detection and automatically adapts to cross-network cables. Supports DHCP server and dynamic IP Address Allocation. Supports NAT to allow LAN users to access the Internet at the same time. Supports TFTP upgrade.

Ii. Mainstream security settings for wireless ADSL cats

In addition, the mainstream security settings currently support ADSL2 + for wireless ADSL cats, providing download speeds up to 24 Mbps. Taking the safe setting of China's wireless ADSL cat as an example, the cat integrates ADSL cat + wireless route + wired route + Wireless AP, and supports ADSL2 + and built-in firewall, provides four Ethernet interfaces for PCs, STB, IAD, and EPHONE. You can use only one device to connect multiple wireless wired computers to the Internet at the same time. Supports NAT/firewall technology and TR069, flexible network configuration and QoS policies, parental control, and data, communication, and entertainment services, suitable for home and office users with multiple Laptops and Desktops.

TP-LINK TD-W8910G54M Security Settings wireless ADSL2 + router is also such a product, its set ASDL access, wired/wireless network connection in one, allow multiple PCs in the enterprise, office, or home to share one ADSL line and one InternetISP account to access the Internet. The built-in four switch ports allow you to access the Internet without wireless connection, connect Four computers directly in wired mode.

The maximum downlink speed is 24 Mbps, and the maximum uplink speed is 1 Mbps. Allows you to manage DHCP servers, virtual servers, DMZ hosts, static route tables, DDNS, and port ing. It also provides a full Chinese Web configuration interface. The user interface is user-friendly and easy to configure, software upgrade is a product that allows you to experience both wired and wireless surfing.

3. Security of Wireless User Groups

The secure setting of wireless ADSL cat marks a future direction for the development of household network devices. It brings convenience to users and security issues are increasingly exposed. For example, many users may find that unauthorized users in the wireless signal coverage area can also use the security settings to allow wireless ADSL cats to share the Internet or access the LAN. How can we prevent this?

The author believes that the necessary security settings can be implemented starting from the following points. First, if you want to prevent unauthorized users from easily accessing the wireless ADSL cat, do not broadcast the SSID. SSIDServiceSetIdentifier) can also be written as ESSID, which is used to distinguish between different networks. It can contain up to 32 characters. A wireless network adapter can enter different networks with different SSID configured, the SSID is like the Working Group Name of a wired network.

By default, the wireless feature is enabled for the wireless ADSL cat and the SSID is broadcast through the wireless signal, in this way, any computer with a wireless network adapter within the range of its wireless signal coverage can enter the network without any settings. Therefore, to obtain the basic security of the wireless network, you need to remove the check before the SSID can be broadcast. After the SSID is not broadcast, you must enter the correct SSID number for the network consisting of the wireless ADSL cat to access the security settings.

In addition, careful users will also find that the factory SSID names of wireless ADSL cats of the same model and manufacturer are the same. In this way, users with a little experience can also enter the default SSID names of the factory in several major factories on their computers and try them one by one to easily access your network. So, do not forget to change this name, such as the TP-LINK wireless ADSL cat default "TP-LINK" to other easy to remember name, such as "666888 ", it can also be modified on a regular basis if necessary.

Iv. Further Security Settings

When setting the wireless ADSL cat, it uses the WEB interface and its gateway address, while the same model and the factory IP address gateway of the wireless ADSL cat of the same manufacturer are all the same, for example, common 192.168.1.1 or 192.168.0.1. In this way, many experienced users can easily access your network through this address. Therefore, you can access the WAN or NAT settings of the wireless ADSL cat, change it to a non-factory default IP address, such as 192.168.1.2 or 192.168.0.3.

The same is true for login usernames and passwords. The factory usernames and passwords of wireless ADSL cats of the same model and manufacturer are the same, you can also enter the username and password modification option of the wireless ADSL cat and change it to your easy-to-remember username or password. In addition, the security of wireless ADSL cats can be more active, for example, through WEP/WPA encryption or MAC address filtering to further improve security.

There are two MAC address filtering rules: Forwarding and blocking. You can change the rules by clicking the Change Policy button. By default, the MAC address filtering rule is forwarding, that is, all the MAC frames except the MAC frames listed in the entries will be blocked. On the contrary, in the blocking policy, all MAC frames except the MAC frames listed in the entries will be forwarded, and other MAC frames will be blocked. Taking blocking as an example, you can record the MAC address of your existing computer network card and set its forwarding rule to allow, in this way, other computers will no longer be connected to the network composed of the wireless ADSL modem with the security settings.

In terms of Authentication Encryption, you can select WPA, WPA2, and MixedWPA2/WPA Based on the NIC configuration, which must be authenticated by the Radius server. Enter the WPA key in the WPA pre-shared key, and specify the update cycle of the key used for broadcast and multicast in the WPA group re-Authentication slot, select one of Automatic, TKIP, or AES in the WPA encryption mode. Save the settings.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.