Contacts
the main

What type of wireless network protection is easy to break. Security in WiFi networks. WEP, WPA, WPA2 encryption. Wireless Encryption Type: How to Select Protection Method

So, you got a Wi-Fi router - it gives you a convenient and no less quick access to the Internet from anywhere in your home or apartment, which is already excellent. As a rule, most users acquire a distribution device themselves and happens that they almost do not configure, except that only adjust the basic settings for optimal work. However, you should not forget that the Wi-Fi security setting is needed if you do not want uninvited guests in your network and concomitant headaches.

What are dangerous visitor

If you do not take care of the proper configuration of certain parameters, your network will connect and pull the decent share of the speed on yourself, can reconfigure the router or get to your computer, if on the other side interested person with certain hacking skills.

Tackle: If you do not protect yourself, sooner or later it can play a joke with you; This is especially true for places where Wi-Fi can be almost public, - multi-storey houses, at home near the parks and so on.

Where to seek the router settings

If you just bought the device and have not changed anything yet, but you want to determine your wireless network at least minimally, you will need to perform the steps described below.

First, open the browser that you have on the computer. We find the top address line and enter the values \u200b\u200b192.168.1.1. If it does not go out, change the first unit to zero, it turns out 192.168.0.1. Of course, there may be situations where the manufacturer has changed the standard address: in this case, you will find it either on the device sticker or on the box.

The next window you will see will be designed for login and password: By default, this is the word Admin, or again we specify the device sticker. By the way, the first and most primitive cause of vulnerability is to leave the standard data for the entrance on the router.

Well, now that you have already got inside, the most interesting thing begins - setting up Wi-Fi security.

How to secure yourself

We will show everything on the example of the TP-LINK modem. And first and foremost change the username and password.

We find the menu items on the left and choose "System Instruments" there, and then in the submenu - the Password item. Here we enter the first two fields old data, then a new login and twice the new password. After that, we can only click on "save".

We continue to strengthen Wi-Fi security and change the name of the network or SSID. Here we go to the "Wireless Mode" tab and then act as shown in the screenshot. It is important to use in the name of the Latin and the numbers - Cyrillic do not use at all.

Some devices also have a special parameter - hiding the network name, so that after the first correct setting you will not have anything to be entered manually: the computer or tablet will be connected automatically, and no one can get on the Internet without permission even from your computer.

The third action that is aimed at protecting your network is a change in encryption - everything is fine here. It makes sense to use WEP encryption, as it is decently outdated and has a lot of flaws.

Here we are looking for "basic settings", then "wireless mode" and in it "Protection of a wireless mode". We recommend using WPA-PSK / WPA2-PSK on the tab. Now we save again.

Another feature that is necessary only in 10% of cases, but creates a serious breach, is WPS: we find a separate tab with it and turn off, after which we reserve changes again.

Now we have such an aspect of Wi-Fi security as defense as IP protection using a Firewall. Of course, on all computers that will be connected to the network, firewalls must also be included and anti-virus software is installed.

We go to the "Security" tab, there we are interested in "basic protection". Here we need a "SPI firewall", opposite which we celebrate the "Activate" item. It gives us another plus on the way to relative security.

In the extreme case, if someone can still choose a password, there is such an option as filtering at MAC addresses - turning it on, you can further improve the safety of Wi-Fi distribution by strictly restricting it to it. In fact, it will be possible to connect only to the device list, and another input will be closed under any conditions.

We find the item "Wireless Mode" and subparagraph "Filtering MAC addresses". Here we need to click on the "Enable" button and select the item "Allow". Now at the bottom we find the "Add" button and write the necessary addresses: do not forget to call the devices to be more convenient to understand.

To find out the MAC address of your computer, it is enough to go to the "Start" menu and find the command line there, or find the "Run" item and there to enter CMD: In both cases, you will see such a window as in the screenshot in which you need Write GetMac. In the screenshot, the required field is highlighted in a red frame.

To get information about the address of the tablet or phone on Android, go along the way: "Settings"\u003e "About Phone"\u003e "Technical Information". Now you will be protected from various invasions.

Some of the devices have an interesting feature inside settings - settings for work schedule, thanks to which the device will work and will be available only at a certain time and within certain days.

Protection of a private WiFi network is the most important moment when creating a home group. The fact is that the access point has a sufficiently large range of action than attackers can take advantage. What to do to prevent this? How to protect a private wireless network from incomprehensible people? It is about this that will be discussed in this article.

How to Protect Home WiFi Networks

Before moving to the question, how to protect a private home WiFi network, you should understand how it works. So, to organize a home wireless network, as a rule, a router is used, which performs the functions of the access point. In order to become a member of the group, you need to connect to it.

This suggests that to protect confidential information, it is necessary to close access to the router to unauthorized people. How it's done? There are several points here:

  • Long and sophisticated password to enter the router settings menu.
  • Reliable password for connecting to Wi-Fi network.
  • Select a safe type encryption.
  • Using a MAC filter.
  • Access settings in the operating system.

As you can see a lot of security settings. This is necessary, since the privacy protection of the Wi-Fi network depends on it. At the same time, most of them are in the router parameters.

So, let's analyze all these points in order.

WiFi Network Protection: Video

Key to enter the router parameters menu

Since almost all security settings are installed in the router, we need to come up with a complex password to log in to the parameter system. In addition, login is used here, which must also be original and complex. How to do it?

First of all, it is worth noting that each router has a different interface, but the principle of work is almost the same. We will analyze how to change the password to enter the router system on the example of the D-LinkDir-615 model.

To begin with, connect to the router on the wireless communication or through the cable. After that, open some browser and in the address bar prescribe the address of your router. It is listed on the bottom cover of the device, as well as in the instructions.

How easy to find out the IP address WiFi router: video

In the overwhelming majority this is the following address - 192.168.0.1 (such addresses can also be used - 192.168.1.1 or 192.168.2.1).

After entering the address, the system will propose to enter a login and password. Initially indicated Admin, Admin, respectively. It is these meanings now and will need to be changed, since the manufacturer uses unsafe login and the key so that the user can easily log in to the settings and change the data at its discretion.

After entering, press "ENTER". So we got into the router settings menu. At the bottom of the screen you need to click "Extended Settings". Several additional partitions will appear, among which you need to find the "system" and select "Administrator Password". This is the very key that we need to change.

In the window that appears, you must simply enter a new password and confirm it. Next, just click "Apply". This is completed on this key changing process, and now the protection of the home wireless WiFi network has become higher.

How to find out the password from your WiFi connection in the router parameters: video

Please note that this router model does not allow you to change the login of the administrator. However, devices from other manufacturers or even simply other models allow you to establish any login to log in.

Wi-Fi network key

A very important parameter on which the information protection depends on Wi-Fi networks is a network password. It prevents unauthorized connection of attackers to the router using a wireless communication. That is why the network key must be long and complicated.

It should be noted that initially there is no Wi-Fi connection on the router. In other words, each desired, which is in the steps in the area without entering passwords can be connected to the device.

To fix it, we need to return to the router settings menu. Now we are interested in the "WiFi" section, in which you need to find and open security settings. In the window that opens, we will need to choose the type of encryption (type of authentication). It is also an important parameter that affects the security of the network.

So, select the WPA-PSKWPA2-PSKMIXED encryption type. This is a recommended secure type of authentication that provides the most reliable protection. The string will appear below in which you want to enter the network key. We enter invented values. It is recommended to use a mixture of Latin letters and numbers. Moreover, the number of characters should be at least 8-12.

Mac Routher Filter

Each device equipped with network adapters, computer, laptop, smartphone, tablet and so on, has a unique MAC address. In order to increase network protection, it is recommended to install a filter of such addresses. In other words, in the router settings you can enable only trusted devices connecting their addresses.

To do this, go back to the router settings menu. In the WiFi section, we find a MAC filter and open it. In the window that appears, there are two tabs:

  • Filter mode.
  • Mac Addresses.

The first is the mode. Here you can choose one of three options:

  • Allow - the specified Mc addresses will be allowed access to the network. All others will not be able to connect to the group.
  • To prohibit - prohibits network access to the specified addresses.
  • Disable - The filter mode is disabled.

In the first tab, select the corresponding mode. And in the second we enter the necessary MAC addresses. If you choose to "resolve" mode, then you need to enter addresses of only trusted computers. If you are set to "prohibit", then you only need to enter the addresses of foreign PCs.

How to configure Mac Filter in Router: Video

Setting up access in OS

The operating system also has built-in data protection tools. In order to raise protection, we need to enter the network management center and shared access. This is done using the right mouse button on the connection icon in the tray.

In the window that opens, you need to open the "Changing Common Access Parameters" item. We will open a menu in which you can configure access, turn on or off PC detection on the network and much more. First, it is necessary to enable access with password protection. At the same time, the system will independently generate a complex password. Record it, because in the future you want to provide access to any files it will need it.

In order to configure the maximum system protection, you should disable access in all points. There is nothing complicated here, carefully read the tips on the screen.

So, now you know how to protect a private WiFi network from intruders. Now nobody will unnecessary can connect to your group and harm information or steal important data.

How to determine who is connected to the network

We dealt with the security settings. Now you can go to the question, how to determine who will connect to my home WiFi network. Everything is very simple. The router registers the MAC address of each group member. Therefore, we are just just entering the router settings and see the statistics. We are again interested in the "WiFi" section, only now choose the station "Stationlist". If you are using a TP-LINK router, then you need the "Statistics" section.

The station list displays the mac addresses of all who are currently connected to the network. Here you can disconnect this or that connection. As we already know, each computer has a unique MAC address. Now you know how to check who is connected to my private WiFi network.

To find out the value that the computer uses is enough to enter the network management center. In the center of the screen that appears, you will see your connection. In the right half, see the section "Connection or Disable", and a little below - the type of access and connection. Click on the connection type and select "Details" in the menu that appears. Here you will find the line "Physical Address". This is the MAC address of your network adapter.

How to find out who uses my WiFi: video

I have experience in the IT of the sphere for more than 10 years. I am engaged in designing and setting up commissioning work. There is also a lot of experience in building networks, system administration and working with SUD and video surveillance systems.
I work as a specialist in the Techno-Master company.

When you connect to the public Wi-Fi network, for example, in a cafe, the data is transmitted in the unencrypted form. This means that your passwords, logins, correspondence and other confidential information becomes available for intruders. Electronic addresses can be used to send spam, and the data on the page of your social network can be changed.

Homemade Wi-Fi networks are also threatened. Even the highest level of protection for wireless networks, WPA2 encryption, can be "hacking" by the attack method with a key reinstalling (KRACK). Read more in the article

When connected to any Wi-Fi network, always follow the following recommendations:

  • Make sure you have and enabled a network screen. This protection component checks network traffic and protects the computer from network attacks.
    The network screen is part of Kaspersky Lab programs: Kaspersky Internet Security, Kaspersky Anti-Virus, Kaspersky Total Security, Kaspersky Security Cloud and Kaspersky Small Office Security.
  • Use the secure HTTPS connection. Check that your browser's address bar was a green or gray castle icon. Look more in the article of the Kaspersky Lab Blog.
  • Confine your connection with VPN by adding another encryption level. To do this, set your Kaspersky Secure Connection to your device and turn on a secure connection every time you connect to the Internet.
  • If you use the Windows operating system, turn off the sharing service and printers for all public networks to which you connect. Instructions on Microsoft support site.
  • If possible, use the mobile Internet instead of public Wi-Fi networks.

Come up with a reliable password to access the router

As a rule, standard login and password are used to access the router settings. The attacker can find out the login and password from your router by downloading the user manual for the device from the manufacturer's website. To this not happen, change the password to the router.

For example, we show the TP-LINK TL-WR841N router setting. To change the password to access the router:

  1. System Tools → Password (System Tools → Password).
  2. Enter the username, old and new password to access the router. Recommendations for the preparation of a reliable password in the article.
  3. Click Save (Save.).

A password for access to the router will be changed.

Come up with a unique name (SSID) for Wi-Fi

Often, rainbow tables are used for password hacking (Rainbow Table). In advance created rainbow tables, Millions of possible passwords are stored for popular SSID. If your SSID and password are in such a table, an attacker will instantly restore the password to the network using special programs.

To improve the safety of the home wireless network, come up with an unpropered SSID.

Router interfaces differ depending on the manufacturer, the specific model and the firmware version. To navigate in the router settings, use the user manual for your model. As a rule, it is attached to the router, or you can download it on the device manufacturer's website.

For example, we show the TP-LINK TL-WR841N router setting. To change the name of the Wi-Fi network:

  1. Enter the IP address of the router to the browser address bar. You will fall on the authorization page to the router settings. The IP address of the router is listed on the back of the device and in the user manual.
  2. On the Authorization page, enter the username and password. If you did not change them, they are indicated on the back side of the router.
  3. On the router settings page, go to the section ( Wireless → Basic Settings).
  4. In field Wireless Name Name (Wireless Network Name.) Come up and enter the name of the Wi-Fi network.
  5. Click Save (Save.).

The name for the Wi-Fi network will be changed.

Make Your Wi-Fi Network Invisible

In the router settings, hide the network name. Your Wi-Fi network will not be displayed in the list of available wireless networks. It will be impossible to detect it without special software.

Router interfaces differ depending on the manufacturer, the specific model and the firmware version. To navigate in the router settings, use the user manual for your model. As a rule, it is attached to the router, or you can download it on the device manufacturer's website.

For example, we show the TP-LINK TL-WR841N router setting. To make a Wi-Fi network invisible to other devices:

  1. Enter the IP address of the router to the browser address bar. You will fall on the authorization page to the router settings. The IP address of the router is listed on the back of the device and in the user manual.
  2. On the Authorization page, enter the username and password. If you did not change them, they are indicated on the back side of the router.
  3. On the router settings page, go to the section Wireless Mode → Basic Settings (Wireless → Basic Settings).
  4. Uncheck the checkbox Enable SSID broadcasting (Enable Ssid Broadcast.).
  5. Click Save (Save.).

Your Wi-Fi network will be invisible for other devices.

Disconnect wps.

WPS technology is designed to simplify the connection of devices to Wi-Fi networks. Using WPS, you can connect to the router without a password. We recommend disable WPS in the router settings.

Router interfaces differ depending on the manufacturer, the specific model and the firmware version. To navigate in the router settings, use the user manual for your model. As a rule, it is attached to the router, or you can download it on the device manufacturer's website.

For example, we show the TP-LINK TL-WR841N router setting. To disable WPS:

  1. Enter the IP address of the router to the browser address bar. You will fall on the authorization page to the router settings. The IP address of the router is listed on the back of the device and in the user manual.
  2. On the router settings page, go to the section Wireless Mode → WPS (Wireless → WPS.).
  3. Click Disable (Disable).

WPS technology will be disabled.

Turn on encryption

When working on a network with a weak encryption, your data may intercept intruders. If you are connected to the home network and receive a message about low encryption, change the type of encryption to more reliable. Common Wireless Network Encryption Types: WEP, TKIP, WPA, WPA2 (AES / CCMP).

The main difference between them is the level of protection. We recommend WPA2, as it is the most reliable of the offered.

Router interfaces differ depending on the manufacturer, the specific model and the firmware version. To navigate in the router settings, use the user manual for your model. As a rule, it is attached to the router, or you can download it on the device manufacturer's website.

For example, we show the TP-LINK TL-WR841N router setting. To change the type of encryption wireless network:

  1. Enter the IP address of the router to the browser address bar. You will fall on the authorization page to the router settings. The IP address of the router is listed on the back of the device and in the user manual.
  2. On the Authorization page, enter the username and password. If you did not change them, they are indicated on the back side of the router.
  3. On the router settings page, go to the section ( Wireless → Wireless Security).
  4. Choose WPA / WPA2 - Personal.
  5. In field Version (Authentication Type.) Select WPA2-PSK..
  6. In field Encryption (Encryption) Select AES..
  7. Click Save (Save.).

Wi-Fi encryption will be included.

Come up with a reliable password for Wi-Fi network

Without password, your Wi-Fi network will be available to all. Reliable password will not allow you to connect to strangers. Recommendations for the preparation of a reliable password in the article.

Router interfaces differ depending on the manufacturer, the specific model and the firmware version. To navigate in the router settings, use the user manual for your model. As a rule, it is attached to the router, or you can download it on the device manufacturer's website.

For example, we show the TP-LINK TL-WR841N router setting. To create a password:

  1. Enter the IP address of the router to the browser address bar. You will fall on the authorization page to the router settings. The IP address of the router is listed on the back of the device and in the user manual.
  2. On the Authorization page, enter the username and password. If you did not change them, they are indicated on the back side of the router.
  3. On the router settings page, go to the section Wireless Mode → Wireless Protection (Wireless → Wireless Security).
  4. Choose WPA / WPA2 - Personal.
  5. In field Wireless password (Wireless Password.) Come up and enter the password to the Wi-Fi network.
  6. Click Save (Save.).

The Wi-Fi password will be created.

Turn on MAC address filtering

Each device having a network card or network interface has its MAC address. Create a list of trusted MAC addresses or disable devices with specific MAC addresses.

Router interfaces differ depending on the manufacturer, the specific model and the firmware version. To navigate in the router settings, use the user manual for your model. As a rule, it is attached to the router, or you can download it on the device manufacturer's website.

For example, we show the TP-LINK TL-WR841N router setting. To configure filtering MAC addresses for trusted devices:

  1. Enter the IP address of the router to the browser address bar. You will fall on the authorization page to the router settings. The IP address of the router is listed on the back of the device and in the user manual.
  2. On the Authorization page, enter the username and password. If you did not change them, they are indicated on the back of the router.
  3. On the router settings page, go to the section Wireless Mode → MAC Address Filtering (Wireless → Wireless Mac Filtering).
  4. Click Add (Add New.).

  1. Enter the MAC address, device description and select Status Included (Enabled.).
  2. Click Save (Save.).

  1. Click Enable (Enable).
  2. Choose Allow access to the stations specified in the rules included (ALLOW THE STATIONS SPECIFIED by Any Enabled Entries In The List to Access).

Access to the router will be only in those devices whose MAC addresses you added to the list.

Briefly explain what WEP, WPA and WPA2 is and what is the difference between them.

WEP.

Decoding: Wired Equivalent Privacy.Translated as Security equivalent to a wired compound. Apparently, the inventors overestimated the reliability of this type of protection when they gave a name.

WEP is an outdated security mode of wireless networks. Provides a low level of protection. In Windows, the WEP security mode is often called Open, i.e. open type.

WPA

Decoding: Wi-Fi Protected Access (secure Wi-Fi Access)

Divided into 2 subspecies:

  • WPA-PERSONAL (-Personal Key or -PSK)
  • WPA-ENTERPRISE.

WPA-PSK.

This option is suitable for home use. To authorize the network, only security is needed.

WPA-ENTERPRISE.

This is a more advanced and freezing option for corporate networks to provide a higher level of security. The authorization requires the RADIUS server.

WPA2.

WPA2 is a more modern and improved version of WPA protection. In the same way, it can work in both modes: PSK and Enterprise. It is characterized in that it supports AES CCMP encryption type.

What's better? Wep, WPA or WPA2?

On modern equipment, in most cases, the optimal option will be the use of the mode WPA2-PSK. with encryption type AES.:

What if I do not know what type of security uses a WiFi-network?

If you do not know which encryption is used at the access point (router), disconnect from the network and. Then connect again. You will have to enter only the security key. In this case, the security mode will be selected automatically.



Did you like the article? Share it
Recommended articles on the topic
How to pay a domain nameHow to pay a domain name
Domain zone of tokelau islandsDomain zone of tokelau islands
What is domain what problems may beWhat is domain what problems may be
Visitors are now discussing
Yandex Wordstat: detailed instructions for using the service and grouping operators and a complicated requestYandex Wordstat: detailed instructions for using the service and grouping operators and a complicated request Advice
Editing DBF filesEditing DBF files Android
Xenu Link Sleuth - What is this program how to use the Xenu programXenu Link Sleuth - What is this program how to use the Xenu program Errors
Methods Copy and insert text from keyboard without using mouseMethods Copy and insert text from keyboard without using mouse Android