Skip to main content

secure your wireless home network

More
14 years 6 months ago #34626 by IceCube
hi experts,

Currently I've got WPA encryption enabled with MAC address filtering
(not all my pc's at home use WPA2)

I use static ip addresses, no DHCP (don't know if this is more secure?)

I disabled the option for remote control on my router

I disabled SSID broadcasting

Can you guys tell me how your home network is secured?
Is mine secure enough?

thx
More
14 years 6 months ago #34627 by TheBishop
That's pretty tight for a home network.
I've seen the same problem as you; not all PCs seem to support WPA2 properly, especially earlier Dell laptops. The option is there, you can select it and apparently use it but if you do the wireless connection keeps dropping in and out. Choose WPA instead and it's rock-solid all the time
More
14 years 6 months ago #34628 by IceCube
thx Bishop for your reply,

I've got a question though, do you also make use of static ip addresses instead of dynamic ones?
More
14 years 6 months ago #34629 by SteveP
I use static IP addresses at home but I don't use the usual 192.168.0.0/24 or 192.168.1.0/24 range. I've configured a completely "odd range", something like 10.14.173.0/26. If I have friends who bring a laptop, I tell them which IP address, SNM, DG and DNS to use and add them to the allowed MAC addresses.

Maybe I'm paranoid, but I don't want to make it easy for someone to just latch onto my wireless. I know that it's possible if they're sufficiently skilled and determined but, as there are lots of other wireless networks out there, they're likely to move to a softer target.
More
14 years 6 months ago #34649 by S0lo

I've got a question though, do you also make use of static ip addresses instead of dynamic ones?


We have DHCP running in our building, but I personally use a static IP, not for security, but simply because the initial association to the AP becomes much faster since it skips the part where it queries the DHCP.

For WPA, as far as I know, the main deference between WPA and WPA2 is that the later supports the full 802.11i features along with CCMP encryption. WPA uses only TKIP encryption. But practically, like TheBishop said for a home network, WPA should be fine. I use it at my home. The one thing I would stress on though is to use a LONG passphrase for your WPA, 13 or more characters should be good. Long passphrases make brute-force attacks much harder.

Studying CCNP...

Ammar Muqaddas
Forum Moderator
www.firewall.cx
More
14 years 6 months ago #34652 by TheBishop
Yes, the nice thing about WPA is that you can, literally, use a phrase rather than some semi-meaningless password or string of numbers
Time to create page: 0.141 seconds