Home News Forum Articles
  Welcome back Join CF
You are here You are here: Home | Forum | Secure Your Wireless Network.

You are currently viewing our boards as a guest which gives you limited access to view most of the discussions, articles and other free features. By joining our Virgin Media community you will have full access to all discussions, be able to view and post threads, communicate privately with other members (PM), respond to polls, upload your own images/photos, and access many other special features. Registration is fast, simple and absolutely free so please join our community today.


Welcome to Cable Forum
Go Back   Cable Forum > Computers & IT > Security & Virus Discussion

Secure Your Wireless Network.
Reply
 
Thread Tools
Old 26-02-2004, 08:47   #1
stuartbe
Guest
 
Location: Luton
Services: NTL Nafband
Posts: n/a
Lightbulb Secure Your Wireless Network.

Here is a bit of info on securing a wireless lan....

Running a wireless lan is great. You can use a computer anywhare in the house and sometimes further. Sadly - with this flexibility comes some risk. You can never secure your wireless network 100% but you can make it harder for people to use the network or monitor your trafic. The highest risk for home users is going to be from people living nearby with wireless networks. When I moved into my new home 8 months ago and set up my wireless network someone nearby was running a wireless network. With two or three clicks of the mouse I was able to browse the internet and see the persons computers. I managed to alert this person via netsend and he then secured the network.

Some Information on wireless networks - http://www.mcc.ac.uk/wireless/article.html

There are several steps you can take to make it harder for nearby users to break into your network. These are listed bellow.

1. WEP or Wired Equivalent Privacy.

WEP is a system that encodes packets going to and from your wireless card and router/access point. It is a fairly good system but it is not fool proof. There are several WEP modes available on most routers/access points. The higher the WEP level the more protection you have. The type of web that your cards and router will support will be detailed in the products user guide. WEP should be enabled all the time and should be treated as minimum protection for your wireless network. Be aware that WEP encoding/decoding will slow down your connection. This can be a problem if you are using a slow computer as the WEP system will use a great deal of system resorces.
More information on WEP can be found here - http://www.wi-fiplanet.com/tutorials...le.php/1368661

2. The SSID or Service Set Identifier.

The SSID is like the workgroup on your home network. It is the name of the wireless network. You need to have the SSID to connect to a wireless lan. Once you have set up your wireless network you can safely disable the router or access point from sending out the SSID. Do not leave the SSID on its default name. Some cards or wireless lan scanners can still pick up the SSID so the system is by no means infalable. It will stop casual computer users from joining your network though. I recomend that you make a note of the SSID as your cards will no longer be able to detect the SSID name and you will need to input this information.

3. MAC filtering. or Media Access Control filtering.

The MAC address is a unique string of information in hexadecimal format. Every network card has a different MAC address. Its like a fingerprint for the network card and allows the network to identify the card. One way of making life very hard for unauthorised users is to enable the MAC filter on your router or access point. This will only allow listed MAC addresses access the network. It will not however stop people from sniffing the network trafic. For this you need to use WEP. The mac address can usualy be found on the underside of a wireless network card. If you cant find it you can discover the address from windows. For windows 95/98/ME click on start then run. In the box type winipcfg in the box that appers click the more info button and ensure that the network card is slected from the drop down menu in the middle of the box. The hexadecimal string next to physical address is your MAC address. For 2000/XP/NT click on start then run. In the box type cmd and press enter. In the black box that apears type ipconfig /all in the lines of text that apears you will see an entry called physical address. This is your mac address.

4. Using IPSEC To Further Protect The network.

If you have windows 2000 or XP pro then you may be able to use IPSEC. IPSEC is a encrption system that windows uses to send encoded data to other computers or a server. This method will only work if your pc is talking to another pc and not if your pc is talking to a router. Windows 9x based operating systems do not fully support IPSEC.

If you need any further information or you are stuck with a problem then please read the user guide that was dispatched with the product. If you are still stuck then read it again. If that does not help then please post and we will be happy to offer advice and help.



A brief description of WPA:

WPA is a security technology for wireless networks.
(Also Known As: Wi-Fi Protected Access)

WPA improves on the authentication and encryption features of WEP (Wired Equivalent Privacy). In fact, WPA was developed by the networking industry in response to the shortcomings of WEP.

Why WPA is better than WEP:

One of the key technologies behind WPA is the Temporal Key Integrity Protocol (TKIP). TKIP addresses the encryption weaknesses of WEP. Another key component of WPA is built-in authentication that WEP does not offer. With this feature, WPA provides roughly comparable security to VPN tunneling with WEP, with the benefit of easier administration and use.

One variation of WPA is called WPA Pre Shared Key or WPA-PSK for short. WPA-PSK is a simplified but still powerful form of WPA most suitable for home Wi-Fi networking. To use WPA-PSK, a person sets a static key or "passphrase" as with WEP. But, using TKIP, WPA-PSK automatically changes the keys at a preset time interval, making it much more difficult for hackers to find and exploit them. (Many Thanks to s1lv3r for this info)
  Reply With Quote
Advertisement
Old 26-02-2004, 22:10   #2
Ramrod
[NTHW] pc clan
 
Ramrod's Avatar
 
Join Date: Jun 2003
Location: Tonbridge
Age: 50
Services: Freeview/ BT infinity
Posts: 21,698
Ramrod has a golden aura
Ramrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden aura
Re: Secure Your Wireless Network.

Good guide! I really should get round to securing my network
__________________
Step by step, walk the thousand mile road...
-----------------------------------------------------

nthwgaming.co.uk
Ramrod is offline   Reply With Quote
Old 26-02-2004, 22:20   #3
stuartbe
Guest
 
Location: Luton
Services: NTL Nafband
Posts: n/a
Re: Secure Your Wireless Network.

Quote:
Originally Posted by Ramrod
Good guide! I really should get round to securing my network
Thanks Ramrod.... If you need a hand give me a shout
  Reply With Quote
Old 26-02-2004, 22:40   #4
Sipowicz
Inactive
 
Sipowicz's Avatar
 
Join Date: Jun 2003
Location: Between Cambridge and Peterborough!
Age: 56
Posts: 406
Sipowicz has a spectacular aura about themSipowicz has a spectacular aura about themSipowicz has a spectacular aura about themSipowicz has a spectacular aura about them
Re: Secure Your Wireless Network.

I agree, a very helpful guide.
I need to further protect my wireless network, I only have one pc left to add to the network, just waiting for my daughter to behave herself! (She got the wireless card and "the internet" for xmas, trouble is, she has had her pc "confiscated" for bad behaviour before I could install the card!)
This weekend is looking good, maybe I'll finish it off then!
Sipowicz is offline   Reply With Quote
Old 26-02-2004, 23:01   #5
Avatar
cf.addict
 
Join Date: Feb 2004
Location: Luton
Age: 37
Posts: 199
Avatar has a spectacular aura about themAvatar has a spectacular aura about themAvatar has a spectacular aura about themAvatar has a spectacular aura about them
Send a message via ICQ to Avatar Send a message via AIM to Avatar Send a message via MSN to Avatar Send a message via Yahoo to Avatar
Re: Secure Your Wireless Network.

nice 1 mate, cant think of any thign to add, still quite new to all this wireless lark....*sigh* i remember the good old days of token ring and BNC .....

my WAP has gone tits up, just orderd a nice linksys 54g router combo thingywhatsit.
Avatar is offline   Reply With Quote
Old 26-02-2004, 23:08   #6
Ramrod
[NTHW] pc clan
 
Ramrod's Avatar
 
Join Date: Jun 2003
Location: Tonbridge
Age: 50
Services: Freeview/ BT infinity
Posts: 21,698
Ramrod has a golden aura
Ramrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden aura
Re: Secure Your Wireless Network.

Quote:
Originally Posted by stuartbe
Thanks Ramrod.... If you need a hand give me a shout
Cheers. Managed it myself. Bit hit or miss though. This networking business really is a black art...


128 bit WEP enabled now
...dunno what it means, but it sounds good and I feel safer
Cheers Stu! Would rep you but it seems I'm not tarty enough
__________________
Step by step, walk the thousand mile road...
-----------------------------------------------------

nthwgaming.co.uk
Ramrod is offline   Reply With Quote
Old 27-02-2004, 10:08   #7
stuartbe
Guest
 
Location: Luton
Services: NTL Nafband
Posts: n/a
Re: Secure Your Wireless Network.

Quote:
Originally Posted by Ramrod
Cheers. Managed it myself. Bit hit or miss though. This networking business really is a black art...


128 bit WEP enabled now
...dunno what it means, but it sounds good and I feel safer
Cheers Stu! Would rep you but it seems I'm not tarty enough
Nice one m8

Have you set up the mac filter and withheld the SSID ?

Whats the make and model of the router/wap. I'l pm you a step by step.
  Reply With Quote
Old 27-02-2004, 10:40   #8
Ramrod
[NTHW] pc clan
 
Ramrod's Avatar
 
Join Date: Jun 2003
Location: Tonbridge
Age: 50
Services: Freeview/ BT infinity
Posts: 21,698
Ramrod has a golden aura
Ramrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden aura
Re: Secure Your Wireless Network.

Quote:
Originally Posted by stuartbe
Nice one m8

Have you set up the mac filter and withheld the SSID ?

Whats the make and model of the router/wap. I'l pm you a step by step.
Netgear wgr614....I'll check about the other stuff
edit....can't see a setting to withold the SSID or to set up a mac filter...
__________________
Step by step, walk the thousand mile road...
-----------------------------------------------------

nthwgaming.co.uk
Ramrod is offline   Reply With Quote
Old 27-02-2004, 10:43   #9
dilli-theclaw
R.I.P.
 
dilli-theclaw's Avatar
 
Join Date: Jun 2003
Location: Near Sandy Heath transmitter
Services: BT
Posts: 19,370
dilli-theclaw has a golden auradilli-theclaw has a golden auradilli-theclaw has a golden auradilli-theclaw has a golden auradilli-theclaw has a golden aura
dilli-theclaw has a golden auradilli-theclaw has a golden auradilli-theclaw has a golden auradilli-theclaw has a golden auradilli-theclaw has a golden auradilli-theclaw has a golden auradilli-theclaw has a golden auradilli-theclaw has a golden auradilli-theclaw has a golden auradilli-theclaw has a golden auradilli-theclaw has a golden auradilli-theclaw has a golden auradilli-theclaw has a golden auradilli-theclaw has a golden auradilli-theclaw has a golden aura
Re: Secure Your Wireless Network.

Apparently my laptop is arriving Tuesday with all my wireless stuff - at the moment i have a pc setup as a fileserver/router - so I may need some help with setting it all up for wireless then
dilli-theclaw is offline   Reply With Quote
Old 27-02-2004, 11:23   #10
stuartbe
Guest
 
Location: Luton
Services: NTL Nafband
Posts: n/a
Re: Secure Your Wireless Network.

Ramrod - Will research this for you

dilligaf1701 - No problem m8... Give me shout when you have the new gear.
  Reply With Quote
Old 27-02-2004, 11:39   #11
stuartbe
Guest
 
Location: Luton
Services: NTL Nafband
Posts: n/a
Re: Secure Your Wireless Network.

Quote:
Originally Posted by Ramrod
Netgear wgr614....I'll check about the other stuff
edit....can't see a setting to withold the SSID or to set up a mac filter...
---------------------------------------------

O.K. m8...

Launch Browser and enter http://192.168.0.1

Enter username and password (I do hope you have changed it from the default) The default username and password is - Username admin - password is password.

Click on the wireless link. Look at image 1 for info.

Turn of tickbox " allow broadcast of network name (ssid) " NB - you will need to make a note of this name as if you have set up the clients on the network using autodetection then they will stop working. You will need to enter the ssid or network name on each client. I also recomend that you change the name of the ssid (option above) from the default one.

For mac filtering - Click on the " setup access list " button. Put the mac address of all your wireless cards here. You can find the mac address by using the method in the guide..

Any probs - let me know...

HTH
  Reply With Quote
Old 27-02-2004, 11:39   #12
Ramrod
[NTHW] pc clan
 
Ramrod's Avatar
 
Join Date: Jun 2003
Location: Tonbridge
Age: 50
Services: Freeview/ BT infinity
Posts: 21,698
Ramrod has a golden aura
Ramrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden aura
Re: Secure Your Wireless Network.

Quote:
Originally Posted by stuartbe
Ramrod - Will research this for you
cheers m8 ....but I don't have a 'allow broadcast of name' option
....and my router is set to only communicate with the laptops mac address
__________________
Step by step, walk the thousand mile road...
-----------------------------------------------------

nthwgaming.co.uk
Ramrod is offline   Reply With Quote
Old 27-02-2004, 11:58   #13
stuartbe
Guest
 
Location: Luton
Services: NTL Nafband
Posts: n/a
Re: Secure Your Wireless Network.

Quote:
Originally Posted by Ramrod
cheers m8 ....but I don't have a 'allow broadcast of name' option
....and my router is set to only communicate with the laptops mac address
Thats good..... If you have wep enabled then I would not worry to much.....
  Reply With Quote
Old 27-02-2004, 11:59   #14
Ramrod
[NTHW] pc clan
 
Ramrod's Avatar
 
Join Date: Jun 2003
Location: Tonbridge
Age: 50
Services: Freeview/ BT infinity
Posts: 21,698
Ramrod has a golden aura
Ramrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden auraRamrod has a golden aura
Re: Secure Your Wireless Network.

Quote:
Originally Posted by stuartbe
Hmmmm. What version of firmware do you have instaled ?

Do you have that page at all ?
I have a page like that.
Firmware 1.1 release 01
__________________
Step by step, walk the thousand mile road...
-----------------------------------------------------

nthwgaming.co.uk
Ramrod is offline   Reply With Quote
Old 27-02-2004, 12:00   #15
stuartbe
Guest
 
Location: Luton
Services: NTL Nafband
Posts: n/a
Re: Secure Your Wireless Network.

" ....and my router is set to only communicate with the laptops mac address "

Have you enabled the mac filter then ?
  Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT +1. The time now is 22:46.


Server: xenon.zmnt.net
Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2018, vBulletin Solutions Inc.