I’m using Linksys WRT54G Wireless Router and Wireless-G USB Adapter at home. This is how I secure wireless home network. Apply these 10 steps to lock down both Linksys wireless access points and wireless routers.
Step 1 : Change The Password
It is very important to change the device’s default password. Login to your router and enter the default password. The version of the firmware or the router that you are using will determine where the Change Password button is located. Make sure you find it. This is the single most important step. Change the default password and choose a password that contains both numbers and letters. This will reduce the possibility of your password being guessed or hacked.
Step 2 : Change Your SSID
| The SSID is the shared network name that all devices run on a wireless network. The name is case sensitive and should be no longer than 32 characters. You can use any keyboard character you choose when renaming the SSID. The default SSID of the Linksys access point or wireless broadband router is set to Linksys. It is highly recommended that you change the SSID to a unique name other than the default. |
Step 3 : Disable SSID Broadcasting
In order to keep your Linksys product from broadcasting the SSID to hackers or wireless clients, change the Wireless SSID Broadcast to Disabled.
Step 4 : Enable Encryption
The Linksys WAPs and wireless routers all come with a wireless security option that uses encryption. To prevent hackers and outside users from accessing your network choose between several forms of encryption: WEP (64 or 128 bit) or WPA-PSK (on some devices). Once you choose the security encryption type, you will input a passphrase (or have the system generate one for you). This same passphrase needs to be entered on each client that uses a wireless network card to connect to the access point.
On Windows XP you can access the properties by going to Network Connections in the Control Panel (or right-click My Network Places). Next, right-click on Wireless Network Connection and choose Properties. Click on the Wireless Networks tab and choose properties of your wireless connection. Enter the appropriate encryption type and passphrase.
Step 5 : Update Latest Firmware
On a regular basis, visit the Linksys web site to make sure you have the latest version of firmware for your Linksys product.
Step 6 : Enable MAC Filtering
There is a Wireless Network Access MAC Filter that you should enable to only allow specific MAC addresses. Some Linksys products have a Select MAC Address from Networked Computers button that will allow you to select the computers on your network that need access. You can run an ipconfig /all (from the Windows command line) on each computer to obtain the MAC address. It is listed as the “Physical Address” and will have a format that looks like this: 00-D0-09-EE-A5-C1
Step 7 : Limit DHCP
Configure your DHCP settings with only the number of computers that need Internet access. For example if you have 3 computers, only configure DHCP to issue out 3 addresses.
Step 8 : Block WAN Requests
Enable this feature to block intruders from attacking you over the Internet. This setting hides your IP address from the outside world.
Step 9 : Use Desktop Firewalls
Don’t rely on the Linksys router as your only means of defense. Install a desktop firewall on each PC that’s connected to the Internet through the Linksys router as an additional layer of defense. A free and effective desktop firewall is Zone Alarm. Furthermore, it is important to keep the desktop firewall up to date with the latest version in order to remain secure in the future.
Step 10: Examine Wireless Network
Download NetStumbler. Use it with a laptop or PDA to examine your wireless network. Then, if you are curious, walk around your neighborhood. You may look like a geek but you would be surprised how many people broadcast their SSID and do not set MAC filtering or encryption. If you know of any the neighbors that have wide open access points you shouldn’t be shy about sharing this document with them.
Click for recommended Reading:
Maximum Wireless Security
Tags: Firewall, Lock Down Linksys Wireless, Lock Down Linksys Wireless Access Point, Wireless Lock Down, Wireless Security
Buy a Space From http://www.lelongad.com to get more traffic. Thx
Nice article, I plan on writing my own for my site, however I have a few things to mention. Disabling SSID broadcast does nothing in terms of real security. It will keep the casual noob away. But Windows OS’ “broadcasts” the names of preferred Wireless Networks and the SSID is still transmitted in plain-text. MAC filtering and limiting DHCP do nothing. Once the scope of your network is discovered a user can setup a static IP and spoof the MAC of your AP or a Client. WEP is terrible, many attacks on RC4 have been published. Try to get devices that support WPA2 and pick a strong random key.
- Linuxishawt!
i want to unlock runescape because my mom locked it i hope this works
Anyone “examining” the wireless traffic will see your non-”linksys” SSID as well as the MAC addresses that aren’t blocked. So, as long as they set a static IP, the only thing in their way is the encryption. If it’s WEP, then they’re in the network within 5 minutes, if it’s WPA then their access is only as difficult as the complexity of the passphrase.
“If you know of any the neighbors that have wide open access points you shouldn’t be shy about sharing this document with them.”
Or, you can steal their signal. Either or
Please don’t give wireless security ‘tips’ anymore. Steps 3 and 6 will do absolutely nothing to keep me from accessing your wireless AP. In fact, disabling ssid broadcasting will also render your wireless client vulnerable to attacks wherever you may roam. But then that wouldn’t occur to someone that’s likely just repeating what he’s read elsewhere.
Don’t even get me started on why limiting dhcp scope is a complete joke.
I have no clue how to do perform any of the ten step (less steps 3 and 6) or at least the useful one. Seems to me this blog was written for people in the know how. Unlike most of you, I am not computer savvy.
Recently, we subscribed to a different Internet service company. The Internet man brought in a DSL router which is connected via an Ethernet cable to a Linksys WRT54GR, version 1.1. which we were using before. the Linksys had a password assigned which I have written down; however, our laptops indicate that our network is not secured (no icon of a lock) which concerns me because I believe any of our neighbors’ college students are able to tap into our network causing it to be slower due to the extra users taping into the router(s).
Can anyone, please, share with me the best way (step by step in laymen terms) to protect my MacBook Pro, my sisters’ Sony Viao, Hitachi, and Toshiba laptops from being accessed?
I am hoping I can lock my DSL router, reuse the password I used to use anytime we buy a new laptop and decide to join our network. Also, I am curious to know whether a neighbor who is able to join my unsecured network is also able to see what I or my sisters are typing on our keyboards or the files we have saved on our laptops?
Thank you all in advance for your assistance.