The use of wireless networks has also brought wireless network security problems. Because the wireless network is different from the wired Network physical node access controllability, the wireless network security problem is more worthy of our attention.
For the wireless network currently in use, we can improve the security of the wireless network by using several settings.
1. Disable unauthorized access
The key to securing wireless access points is to prohibit unauthorized users from accessing the network. That is, a secure access point is closed to an unauthorized user.
2. Antenna placement Position
The first step in keeping the wireless access point closed is to place the antenna properly, limiting the amount of semaphore that can reach the effective range of the antenna. Do not put the antenna near the window, because the glass can not block the wireless signal. The ideal position of the antenna is the center of the target coverage area, and the signal leaked to the wall is as small as possible. However, full control of wireless signals is almost impossible, so there are other measures that need to be taken at the same time to ensure network security.
3. Using the Wireless Encryption protocol
Wireless Encryption Protocol (WEP) is a standard method of information encryption on a wireless network.
4. Change the service Set identifier and prohibit the SSID broadcast
The Service Set Identifier (SSID) is the identity identifier of the wireless access that the user uses to establish a connection to the access point. This identity identifier is set by the communication device manufacturer, and each vendor uses its own default value. You need to set up a unique and unpredictable SSID for each of your wireless access points.
5. Disable Dynamic Host Configuration Protocol
This seems like a strange security policy, but it makes sense for wireless networks. With this strategy, you will force hackers to crack your IP address, subnet mask, and other required TCP/IP parameters. Because even if a hacker can use your wireless access point, he needs to know your IP address.
6. Disable or modify SNMP settings
If your wireless access point supports SNMP, then you need to disable it or modify the default public and private identifiers. If you don't, hackers will be able to use SNMP to get important information about your network.
7. Use Access list
To better protect your network, set up an access list whenever possible. However, not all wireless access points support this feature. If you can do this, you can designate a machine to access the access point. Access points that support this feature sometimes use TFTP (Simple File Transfer Protocol) to periodically download the update access list, thereby avoiding the huge administrative hassle of having to keep lists on all devices synchronized.