Manuals / Intellinet Network Solutions / Computer Equipment / Network Router

Intellinet Network Solutions INT-524315-UM-0808-1 user manual Security Tips for Wireless Networks

Models: INT-524315-UM-0808-1

1 128

Download 128 pages 17.84 Kb

Page 82

2-7-6 Security Tips for Wireless Networks

Here are some quick tips to help you improve the security level of your wireless network:

1.Never use simple words for the WPA/WEP encryption passphrase. A good password cannot be found in the dictionary and consists of characters, symbols and numbers.

You should also refrain from using passwords which carry a personal meaning: names of pets, names or birthdays of a wife or husband etc. These are all bad choices for a password.

2.Use WPA over WEP whenever possible. WPA encryption, and especially WPA2 encryption, is much stronger than WEP encryption. If your wireless network adapters support WPA or WPA2, you should abandon WEP for good. Unless you don't care about network security, that is.

3.You can hide the ESSID of this router by setting the 'Broadcast ESSID' option (Advanced Wireless Settings page) to 'Disable'. Once the option is disabled, the router will no longer broadcast the SSID; thus, wireless clients in the area will not be able to see the wireless network in the list of available WLAN networks. Keep in mind that hiding the SSID will make it more complicated for wireless clients to join the network, and that is basically the idea. Instead of selecting the Wireless network from the list, the user now must manually enter the Wireless SSID, which will be difficult without knowing what it is. While this option offers additional protection, you should never rely on this mechanism as your only means of protection. A WPA encryption key remains highly recommended. Hiding the SSID of your Access Point is simply one additional step you can take.

4.Use the 'Access Control' function described in section 2-7-4, so people who are not in your list will not be able to connect to your network. If you don't have guest traffic, you normally know which computers access your network and you can specifically allow those computers and deny all the others.

5.Utilizing all three mechanisms (encryption, no SSID broadcast and MAC address filtering) offers the best protection against unauthorized access.

Image 82

Intellinet Network Solutions INT-524315-UM-0808-1 user manual Security Tips for Wireless Networks

Contents

User Manual Wireless 802.11n Gigabit RouterINT-524315-UM-0808-1 Federal Communication Commission Interference Statement FCC PartFederal Communication Commission FCC Radiation Exposure Statement EU Countries Intended for Use R&TTE Compliance StatementSafety EU Countries Not intended for useCHAPTER I PRODUCT INFORMATION CHAPTER II SYSTEM AND NETWORK SETUPTable of Contents CHAPTER III ADVANCED FUNCTIONS CHAPTER IV APPENDIX Chapter I Product Information QoS Quality of Service bandwidth management QoS Quality of Service bandwidth management VPN Pass Through PPTPSupports Wi-Fi Protected Setup WPS Integrated 10/100 Mbps LAN switch with Auto MDI/MDI-X support2. DO NOT put this router at or near hot or humid places 1-2 Safety InformationKEEP THIS ROUTER OUT THE REACH OF CHILDREN 1-3 System Requirements A/C power adapter 1 pcs …………………………………… 1-4 Package ContentsQuick installation guide 1 pcs ………………………………… Gigabit router main body, 1 pcs…………………………Front Panel Back Panel Chapter II System and Network Setup 2-1 Connecting the Wireless Gigabit Router4. Check all LEDs on the front panel Windows 95/98/Me 2-2 Connecting to the Wireless Gigabit RouterIf the operating system of your computer is… Windows2-2-1 Windows 95/98/Me IP address setup 2. Select Obtain an IP address from a DHCP server and then click OK 2-2-2Windows 2000 IP address setup Page 2-2-3Windows XP IP address setup Page 2-2-4Windows Vista IP address setup Page 2-2-5 Router IP address lookup Input cmd, then click OK3. Connect the routers management interface by the Web browser Page HERE 2-3 Using Quick SetupPlease go to the QuickSetup menu by clicking QuickSetup button Items and meanings The following message will be displayed 1. Set Time ZoneClick Apply Cable Modem PPPoE xDSL2-3-1 Setup procedure for Cable Mode 2-3-2 Setup procedure for Fixed-IP xDSL 2-3-3 Setup procedure for PPPoE xDSL 2-3-4 Setup procedure for PPTP xDSL here. Use the default value unless your ISP specifies Enter the user ID user name assigned by your ISP2-3-5 Setup procedure for L2TP xDSL 2-3-4 Setup procedure for L2TP Items and meanings2-3-6 Setup procedure for Telstra Big Pond Wait for about 30 seconds, then click OK Attention DSL Users2-4 Basic Setup 2-4-1 Time zone and time auto-synchronization2-4-2 Change management password Items and meanings 2-4-3 Remote Management Host Address 1 Input the IP address of the remote host you wish to Refer to chapter 2-5-8 ‘DDNS client’ for details http//1.2.3.488882-5 Setup Internet Connection WAN Setup 2-5-1 Setup procedure for Dynamic IP 2-5-2 Setup procedure for Static IP 2-5-3 Setup procedure for PPPoE Continuous - The connection will always be kept on. If the connection is interrupted, the router will re-connect automatically 2-5-4 Setup procedure for PPTP Items and meanings wish to use. Refer to section 2-5-3 for detailedSpecify the MTU value of your network connection here 2-5-5 Setup procedure for L2TPyou wish to use, and refer to section 2-5-3 for detailed 2-5-6 Setup procedure for Telstra Big Pond 2-5-7 Setup procedure for DNS dns.serviceprovider.com…………………………………………... Incorrect2-5-8 Setup procedure for DDNS Domain Name 3 Input the domain name youve obtained from DDNS 2-6 LAN Configuration 2-6-1 LAN IP section Recommended values if you don’t know what to enter2-6-2 DHCP Server 2-6-3 Static DHCP Leases Table Click Apply to save the settings 2-7 Wireless LAN Configuration 2-7-1 Basic Wireless Settings BandESSID what it should be, default value is 2-7-2 Advanced Wireless Settingsshould be, default value is should be, default setting is Auto 20/40 MHz modify the default value if you dont know what itmodify default the value if you dont know what it automatically, its not necessary to change thisWMM 12 Short for Wi-Fi MultiMedia, it will enhance the data transfer performance of multimedia contents when its being transferred over wireless network. If you dont know what it is or not sure if you need it, its safe to set this option to Enable. The default setting is Disable 2-7-3 Wireless Security 2-7-3-1 Disable wireless security2-7-3-2 WEP - Wired Equivalent Privacy If you dont know which one you should use, select Some examples of WEP key Don’t use these examples use your own Its not recommended to use a word that can be 2-7-3-3 Wi-Fi Protected Access WPAfound in a dictionary for security reasons 2-7-3-4 WPA RADIUS 18122-7-4 Wireless Access Control to delete, then click the Delete Selected button so you can identify the MAC addresses later 2-7-5 Wi-Fi Protected Setup WPS Enable WPS settings for a WPS connection. When Enrolle mode authentication mode of this wireless router is shownwhen this wireless router is waiting for an incoming 2-7-6 Security Tips for Wireless Networks 3-1-1 Basic QoS Settings 3-1 Quality of Service QoSChapter III Advanced Functions bandwidth in kbits. To disable the upload bandwidth inaccessibledelete. If the QoS table is empty, this button is then click the Edit button. Only one rule should be3-1-2 Add a new QoS rule a b c d e f g h iItems and meanings If you want to erase all values you just entered, click Reset 3-2-1 Basic NAT Settings Enable or disable NAT function 3-2 Network Address Translation NAT3-2-2 Port Forwarding application or service. If youre not sure what to use Items and meanings3-2-3 Virtual Server Select the type of connection, TCP or UDP. If youre Click Apply 13 to save the settingsItems and meanings redirected to the port number of the local IP address3-2-4 Port Mapping for Special Applications Add to save the setting to the Current Trigger-Port 3-2-5 UPnP Setting 3-2-6 ALG Settings 3-3 Firewall 3-3-1 Access Control it blank, however, its recommended to use this field You can input any text here as the comment for thischaracters here. This is optional and you can leave Click the Add button to add the MAC address andfiltering table. Up to 20 IP addresses can be added 3-3-1-1 Add PC a b c d e fItems and meanings If you want to remove all settings in this page, click Reset buttonaddress in the left field to define a single IP address uncheck it to disable URL Blocking 3-3-2 URL BlockingEnable URL Check this box to enforce URL BlockingRemoves the value you input in URL/Keyword field If you want to delete a specific URL/Keyword entry3-3-3 DoS Attack Prevention data packets, to make your Internet connection 3-3-3-1 DoS - Advanced Settings a b c d e3-3-4 Demilitarized Zone DMZ activatedand associated private IP address to the DMZ table Items and meaningsaddress will be mapped to. That is the computer you the select box of the DMZ entry you want to deleteReset 9 Reset the input form values 3-4 System Status3-4-1 System information and firmware version Delete All 8 Deletes all DMZ entries3-4-2 Internet Connection Status 3-4-3 Device StatusClear 2 Deletes all event log messages displayed 3-4-4 System LogSave 1 Saves current event log to a text file The information shown may vary from the output on your screenSave 1 Saves the current system log to a text file 3-4-5 Security Log3-4-5 Active DHCP client list Clear 2 Deletes all system log messages displayed3-4-6 Statistics 3-5 Configuration Backup and RestoreBackupPress the Save... button, and youll be prompted to 3-6 Firmware Upgrade Click Next, and the following message will be displayedClick Browse and locate the firmware file you have downloaded from the Web site. If the firmware file is in ZIP compressed archive format, you have to uncompress it prior to the firmware upgrade 3-7 System Reset 4-1 Hardware Specifications Chapter IV AppendixChipset Ralink RT2880 Wireless frequency range 2.412 - 2.472 GHz Access control based on MAC address URL filter DMZ demilitarized zoneCertifications FCC Class B, CE Mark, RoHS Wireless Output power OFDM 15 dBm +/- 1 dBm 300 Mbps, 50 mW max2T3R MIMO mode 2 transmitter, 3 receiver LEDs Power WLAN Link/Act Wireless security WEP encryption 64/128 bit WPA TKIP WPA2 AESClient access control through media access control MAC filter Dimensions 195 W x 127 L x 35 H mm 7.6 x 5.0 x 1.4 in4-2 Troubleshooting and password again WAN connection settings of the router tomake sure they are set up correctly e. Call your Internet service provider anda. Adjust the internal clock of the router power adapter, disconnect the router andA/C power adapter from the utility power make sure its safe before youre doing4-3 Glossary Page Port Number ApplicationProtocol TelnetWeb-based management Graphical User Interface GUI Many devices support a graphical user interface that is based on the Web browser. This means the user can use the familiar Netscape or Microsoft Internet Explorer to Control/configure or monitor the device being managed Copyright INTELLINET NETWORK SOLUTIONS owners