Cisco Systems WRT310N Chapter Wireless Security Checklist, General Network Security Guidelines

Page 7

Chapter 2

Wireless Security Checklist

Chapter 2:

Wireless Security Checklist

Wireless networks are convenient and easy to install, so homes with high-speed Internet access are adopting them at a rapid pace. Because wireless networking operates by sending information over radio waves, it can be more vulnerable to intruders than a traditional wired network. Like signals from your cellular or cordless phones, signals from your wireless network can also be intercepted. Since you cannot physically prevent someone from connecting to your wireless network, you need to take some additional steps to keep your network secure.

1.Change the default wireless network name or SSID

Wireless devices have a default wireless network name or Service Set Identifier (SSID) set by the factory. This is the name of your wireless network, and can be up to 32 characters in length. Linksys wireless products use linksys as the default wireless network name. You should change the wireless network name to something unique to distinguish your wireless network from other wireless networks that may exist around you, but do not use personal information (such as your Social Security number) because this information may be available for anyone to see when browsing for wireless networks.

2. Change the default password

For wireless products such as access points and routers, you will be asked for a password when you want to change their settings. These devices have a default password set by the factory. The Linksys default password is admin. Hackers know these defaults and may try to use them to access your wireless device and change your network settings. To thwart any unauthorized changes, customize the device’s password so it will be hard to guess.

3. Enable MAC address filtering

Linksys routers give you the ability to enable Media Access Control (MAC) address filtering. The MAC address is a unique series of numbers and letters assigned to every networking device. With MAC address filtering enabled, wireless network access is provided solely for wireless devices with specific MAC addresses. For example, you can specify the MAC address of each computer in your home so that only those computers can access your wireless network.

4. Enable encryption

Encryption protects data transmitted over a wireless network. Wi-Fi Protected Access (WPA/WPA2) and Wired Equivalency Privacy (WEP) offer different levels of security for wireless communication.

A network encrypted with WPA/WPA2 is more secure than a network encrypted with WEP, because WPA/WPA2 uses dynamic key encryption. To protect the information as it passes over the airwaves, you should enable the highest level of encryption supported by your network equipment.

WEP is an older encryption standard and may be the only option available on some older devices that do not support WPA.

General Network Security Guidelines

Wireless network security is useless if the underlying network is not secure.

•• Password protect all computers on the network and individually password protect sensitive files.

•• Change passwords on a regular basis.

•• Install anti-virus software and personal firewall software.

•• Disable file sharing (peer-to-peer). Some applications may open file sharing without your consent and/or knowledge.

Additional Security Tips

•• Keep wireless routers, access points, or gateways away from exterior walls and windows.

•• Turn wireless routers, access points, or gateways off when they are not being used (at night, during vacations).

•• Use strong passphrases that are at least eight characters in length. Combine letters and numbers to avoid using standard words that can be found in the dictionary.

WEB: For more information on wireless security, visit www.linksysbycisco.com/security

Wireless-N Gigabit Router

6

Image 7
Contents Wireless-N Gigabit Router Copyright and Trademarks About This GuideIcon Descriptions Online ResourcesTable of Contents Appendix E Software End User License Agreement Appendix D Regulatory InformationFront Panel Placement PositionsHorizontal Placement Chapter Product OverviewSuggested Mounting Hardware Wall-Mounting PlacementGeneral Network Security Guidelines Chapter Wireless Security ChecklistAdditional Security Tips Internet Setup Chapter Advanced ConfigurationHow to Access the Web-Based Utility Setup Basic SetupPPPoE Static IPPptp L2TP Optional SettingsTelstra Cable Dhcp Reservation Network SetupDhcp Server Setting Router IPDynDNS.org Setup DdnsTime Setting Ddns ServiceAdvanced Routing Setup MAC Address CloneSetup Advanced Routing MAC Address CloneBasic Wireless Settings Wireless Basic Wireless SettingsRouting Table Wi-Fi Protected Setup Wireless Wireless SecurityWireless Security Radius WPA2 PersonalWPA Enterprise WPA2 EnterpriseMAC Address Filter List Wireless Wireless MAC FilterWireless MAC Filter Access RestrictionWireless Client List Advanced WirelessInternet Filter Security FirewallSecurity VPN Passthrough FirewallVPN Passthrough Internet Access PolicySummary Single Port Forwarding Applications and Gaming Single Port ForwardingPort Range Triggering Applications and Gaming Port Range ForwardingApplications & Gaming Port Range Triggering Port Range ForwardingApplications and Gaming QoS QoS Quality of ServiceWireless Applications and Gaming DMZCategory Internet Access PriorityRemote Access Administration ManagementRouter Access Web AccessUPnP Administration LogBackup and Restore LogDiagnostics Administration DiagnosticsAdministration Factory Defaults RebootStatus Router Administration Firmware UpgradeStatus Local Network Dhcp Server Status Wireless NetworkWireless Network Local NetworkYour computer cannot connect to the Internet Appendix a TroubleshootingWRT310N Appendix B SpecificationsObtaining Warranty Service Limited WarrantyExclusions and Limitations Technical Support FCC Statement Safety NoticesFCC Radiation Exposure Statement Industry Canada Radiation Exposure Statement Wireless DisclaimerIndustry Canada Statement Avis d’Industrie CanadaDansk Danish Miljøinformation for kunder i EU Regulatory Information Norsk Norwegian Miljøinformasjon for kunder i EU Regulatory Information Schedule Cisco Software License Agreement Appendix E Software End User License AgreementCisco Products Software LicensesSoftware End User License Agreement Software End User License Agreement Schedule Network Magic Features Preamble Schedule Open Source and Third Party LicensesSchedule 3-A GNU General Public LicenseSoftware End User License Agreement No Warranty END of Schedule 3-A Schedule 3-BGNU Lesser General Public License Software End User License Agreement Software End User License Agreement Software End User License Agreement END of Schedule 3-B No WarrantyOpenSSL License Schedule 3-COriginal SSLeay License END of Schedule 3-C