Linksys HG200 manual Appendix B Wireless Security

Page 69

Home Wireless-G Gateway

SSID. There are several things to keep in mind about the SSID:

1.Disable Broadcast

2.Make it unique

3.Change it often

Most wireless networking devices will give you the option of broadcasting the SSID. While this option may be more convenient, it allows anyone to log into your wireless network. This includes hackers. So, don’t broadcast the SSID.

Wireless networking products come with a default SSID set by the factory. (The Linksys default SSID is “linksys”.) Hackers know these defaults and can check these against your network. Change your SSID to something unique and not something related to your company or the networking products you use.

Change your SSID regularly so that any hackers who have gained access to your wireless network will have to start from the beginning in trying to break in.

MAC Addresses. Enable MAC Address filtering. MAC Address filtering will allow you to provide access to only those wireless nodes with certain MAC Addresses. This makes it harder for a hacker to access your network with a random MAC Address.

WEP Encryption. Wired Equivalent Privacy (WEP) is often looked upon as a cure-all for wireless security concerns. This is overstating WEP’s ability. Again, this can only provide enough security to make a hacker’s job more difficult.

There are several ways that WEP can be maximized:

1.Use the highest level of encryption possible

2.Use “Shared Key” authentication

3.Change your WEP key regularly

WPA. Wi-Fi Protected Access (WPA) is the newest and best available standard in Wi-Fi security. Two modes are available: Pre-Shared Key and RADIUS. Pre-Shared Key gives you a choice of two encryption methods: TKIP (Temporal Key Integrity Protocol), which utilizes a stronger encryption method and incorporates Message Integrity Code (MIC) to provide protection against hackers, and AES (Advanced Encryption System), which utilizes

asymmetric 128-Bit block data encryption. RADIUS (Remote Authentication Dial-In User Service) utilizes a RADIUS server for authentication and the use of dynamic TKIP, AES, or WEP.

Appendix B: Wireless Security

IMPORTANT: Always remember that each device in your wireless network MUST use the same encryption method and encryption key or your wireless network will not function properly.

63

Security Threats Facing Wireless Networks

Image 69

Contents 4802GHz.11g Home Wireless-G How to Use this Guide Copyright and TrademarksWord definition Table of Contents Ethernet Adapter Network Ports and Reset Button on Side Panel23 Internet Access Welcome IntroductionWhat’s in this User Guide? Home Wireless-G Gateway Gateway’s Functions Planning Your NetworkIP Addresses What’s an IP Address?Dynamic IP Addresses Dhcp Dynamic Host Configuration Protocol ServersPorts and Reset Button on Side Panel Getting to Know the Home Wireless-G GatewayLEDs on Side Panel WirelessBottom Panel with Stand in Closed Position Bottom PanelOverview Connecting the Home Wireless-G GatewayConnect the Adsl Line Wired Connection to a ComputerWireless Connection to a Computer Configuring the Home Wireless-G Gateway SetupWireless Administration Access RestrictionsSecurity Applications & GamingSetup Tab How to Access the Web-based UtilityBasic Setup Tab Internet SetupStatic IP RFC 1483 Bridged Dynamic IPRFC 1483 Routed RFC 1483 RoutedRFC 2364 PPPoA RFC 2516 PPPoEBridged Mode Only Optional Settings required by some ISPsNetwork Setup Configuring the Home Wireless-G Gateway Setup Tab Ddns Tab DynDNS.orgTZO.com Advanced Routing Advanced Routing Tab13 Routing Table Wireless Tab Basic Wireless Settings TabWireless Network 15 Pre-Shared Key Wireless Security Tab16 WEP Wireless Network Access Wireless Access TabAdvanced Wireless Advanced Wireless Settings TabVPN Passthrough Security TabFirewall Additional Filters22 Firewall Log Block WAN RequestsInternet Access Tab Access Restrictions Tab25 List of PCs Applications and Gaming Tab Single Port Forwarding TabSingle Port Forwarding 28 Port Range Forwarding Port Range Forwarding Tab29 Port Triggering Port Triggering Tab30 DMZ DMZ TabQoS Tab QoSApplication-based QoS Administration Tab Gateway AccessManagement Tab IGMP-Proxy UPnPReporting Tab ReportingEmail Alerts Backup&Restore Tab Diagnostics TabBackup Configuration Restore ConfigurationFactory Defaults Tab Firmware Upgrade TabUpgrade from LAN Reboot Reboot TabGateway Tab Status TabGateway Information Internet Connection42 Local Network Local Network Tab45 Wireless DSL Connection Tab DSL StatusPVC Connection Appendix a Troubleshooting Common Problems and SolutionsNeed to set a static IP address on a computer Want to test my Internet connection Home Wireless-G Gateway Home Wireless-G Gateway TCP UDP Can’t get the Internet game, server, or application to work Need to upgrade the firmware To start over, I need to set the Gateway to factory defaultFirmware upgrade failed, and/or the Power LED is flashing My DSL service’s PPPoE is always disconnectingPower LED flashes continuously Where is the Gateway installed on the network? Frequently Asked QuestionsIs IPSec Passthrough supported by the Gateway? Does the Gateway support IPX or AppleTalk?Does the Gateway support ICQ send file? What is Network Address Translation and what is it used for?What is DMZ Hosting? What is the Ieee 802.11g standard? What are the advanced features of the Gateway?Is the Gateway cross-platform compatible? How many ports can be simultaneously forwarded?What is ad-hoc mode? What Ieee 802.11b and 802.11g features are supported?What is infrastructure mode? What is roaming? What is Spread Spectrum? What is the ISM band? What is DSSS? What is FHSS? And what are their differences? What is WEP?How do I reset the Gateway? How do I resolve issues with signal loss?Have excellent signal strength, but I cannot see my network Appendix B Wireless Security Security PrecautionsSecurity Threats Facing Wireless Networks Appendix B Wireless Security Home Wireless-G Gateway Windows 98 or Me Instructions Figure C-1 IP Configuration ScreenFigure C-3 MAC Address/Physical Address Windows 2000 or XP InstructionsAppendix D Upgrading Firmware Figure D-1 Firmware UpgradeAppendix E Glossary Home Wireless-G Gateway Home Wireless-G Gateway Home Wireless-G Gateway Home Wireless-G Gateway Home Wireless-G Gateway Home Wireless-G Gateway Appendix F Regulatory Information Radio EN 300 EMC EN 301 489-1, EN 301 Safety EN Belgium Location Frequency Range MHz Power Eirp Applicable Power Levels in FranceOpen the Wireless Network Connection window Wireless AdaptersHome Wireless-G Gateway Appendix G Warranty Information Appendix H Specifications Model Number HG200 StandardsLite, G.922.3, G.992.5, T1.413i2 Operating Humidity Appendix I Contact Information Europe Mail AddressOutside of Europe Mail Address