How to Secure a Wireless Network

I use both a wired and wireless network at home. I am fortunate enough to have an Internet Service Provider (ISP) that provides up to three IP addresses. I connected a switch to my modem, and two routers (one wired, and the other wireless) to the switch. Each router has a separate IP address from my ISP. My desktop is connected to the wired router, while two laptops connect to the wireless one. I can connect either laptop to the wired router with a network cable if I choose to as well.

The biggest issue I wanted to address when setting up the wireless network is that of security. I have always been skeptical of wireless security, but since I have purchased a laptop, I decided to give wireless networking a try.

There is a lot of discussion on how to secure a wireless connection, some good, some bad, and some useless. This post will not go into detail about how to change the router settings to make it secure, but it will discuss what needs to be changed.

Administrative Credentials - Important
This is important whether you have a wireless or wired network. Ensure that all APs (access points) have a good strong password associated with the administrative account. If someone can get into your router because of a weak password, then your network can be compromised. You may also want to change the administrative ID as well.

Enable WPA Encryption - Important
This is probably the most important security measure to take when securing your wireless network. The previous standard called Wired Equivalent Privacy (WEP) was easy to crack within about 30 seconds.

The new Wi-fi Protected Access (WPA) is more secure and should be enabled. You must also choose a passphrase that will be needed for each computer to connect to your router. Choose a passphase that is long, hard to guess, but easy to remember. Write it down somewhere so you don't forget it. For assistance on creating a strong passphrase, please read my post on creating secure passwords. Follow the advice, but just make the passphrase longer.

Reducing the IP Addresses - Important
Routers allow you to limit the number of IP addresses they assign. If you have one computer, have the router assign only one IP address. If you have three computers, then the router should assign three IP addresses. This won't prevent someone from getting into your network, but if all computers are connected, then the router won't assign any more IP addresses to another computer.

Turning Off Router - Important
If you are going to be away for awhile, such as on vacation, simply turn off the router. If the router is off, then no one will be able to connect to it while you're away. You won't lose your router settings, and simply turn it back on when you return.

Turn off SSID Broadcast - Not Important
This is a debatable option with regards to a wireless connection. Many people would argue that not broadcasting your SSID will help with security. My opinion is that it won't really provide security. Those who you are trying to gain access to your wireless network can easily determine your SSID, whether it is broadcast or not. I have also had problems with connecting to a wireless network when the SSID is not broadcasted, so I leave my setting on broadcast.

Using MAC Filtering - Not Important
Similar to broadcasting the router's SSID, this is also a debatable point. An IP address is specific to a computer, a MAC address is specific to a network adapter within that computer. Enabling MAC filtering on your router only allows specific network adapters to connect to the router. While this may seem like a good idea, it can be a headache to manage the MAC addresses for all the computers that will be connecting to the wireless router. A knowledgeable person will also be able to "spoof" (imitate) a MAC address so it doesn't guarantee security.

Summary
There are many settings that can be changed in your wireless router to make your network secure. This article has listed many of them, and you can make use of all of them or only some. The following, however, should be done to make your connection secure:

• Changing the administrative password and ID.
• Enabling WPA encryption.
• Reduce the number of IP addresses.

Paul Salmon has been involved with computers for 20 years and currently works as a Senior Technical Systems Analyst. He has been involved in many aspects of computers including hardware, software development and quality assurance. He currently mantains Technically Easy, a blog that provides information about various technologies in use today.

Streamyx Combo 2MB
Streamyx Combo 90
Streamyx
Streamyx Business Soho
Streamyx Combo 60
Streamyx Registration
Streamyx Combo 2MB
Streamyx Speedometer
Streamyx Wireless
Streamyx Broadband
Streamyx Combo 110
Streamyx Combo Terms and Conditions
WIMax
Streamyx Petaling Jaya
Streamyx

Why Do Businesses Prefer T1 And T3 Bandwidth Connections?

When a business needs a bandwidth connection for their voice/data network applications they almost always choose a T1 or T3 connection. What is a T1 and a T3 connection? Why are there better than dsl and cable for business needs?

T1 (1.544 Mbps) and T3 (45 Mbps) connections are traditional business-class digital leased phone lines. The technology is pre-cable and pre-DSL. The main advantage is service: If either one goes down, the phone company will bend over backwards to resolve the issue as soon as possible. Business rely on these lines for their income and a downed line can cost thousands of dollars an hour. They also have time-tested monitoring and diagnostic capabilities to keep them up, so they are more reliable.

A T1 breaks down into 24 channels. Each channel can either be used for a phone line or 64 Kbps of Internet. A business can have 8 phone lines and 1024 Kbps of Internet (16 X 64 Kbps) over a T1 for on average between $300-$500. This is less expensive than paying for 8 phone lines + DSL/cable Internet making it better for them.

A T3 breaks into 672 channels and costs several thousand dollars a month. However, T3 (or DS3) prices have been dropping steadily the last few years and can usually be found for between $3-4,000 in most areas. however, this still makes the cost impractical for smaller businesses in many cases.

Often a business will optimize capability and cost by choosing to install a fractional T1 or T3 rather thsn full. The obvious benefit is reduced cost....and scalability can be built in for those times when surge capability is needed or strategic business growth is planned.

They are also different in that they don't connect directly to the Internet; they connect from one customer to another. So, for example, you could have a private line between two businesses with no Internet security hazards. Many people of course simply connect them to an ISP (whom you then have to pay an additional fee on top of what you pay Ma Bell for the T1 line).

They are symmetrical, unlike most DSL and cable lines; you get the same speed in both directions. Also important for businesses, especially those exchanging data between offices.

Like DSL lines, and unlike cable lines (which are shared), they are dedicated to one customer. Cable service is often unavailable to businesses, so that's another difference.

Not surprisingly, both can be expensive for a small business, T3's absurdly so. Cost mostly depends on distance. This boils down to two simple components; local loop (the cost the local incumbent charges to transport the signal from the end user's central office, otherwise known as a CO, to the point of presence, otherwise known as a POP, of the carrier) and the port (the cost to access the telephone network or the Internet through the carrier's network). Typically, the port price is based upon access speed and yearly commitment level while the loop is based on geography. The further the CO and POP, the more the loop cost.

Unless you are running a business that cannot afford to go down for half a day, you are better off with cable or DSL service. Otherwise....for reliability, scalability, performance, and capacity you'd best evaluate your options for T1 or T3 bandwidth application.

Michael is the owner of FreedomFire Communications....including DS3-Bandwidth.com and Business-VoIP-Solution.com. Michael also authors Broadband Nation where you're always welcome to drop in and catch up on the latest BroadBand news, tips, insights, and ramblings for the masses.

Streamyx Self Installation Guide
Streamyx Combo 4MB
Streamyx Corporate
Streamyx Technical
Streamyx
Streamyx Business Enterprise
Streamyx Self Installation Guide
Streamyx Petaling Jaya
Streamyx
Streamyx
Streamyx
Streamyx Combo
Streamyx
Streamyx Registration
Streamyx Combo 384k