I don't operate a wireless network. But, recently, I've taken some interest in wireless network security. After doing some research, I've compiled a list of TO-DOs for better securing a wi-fi network.
- If you have not done it already, change the default SSID for the wireless base stations (Access Points).
- Turn off auto SSID broadcast from your base stations.
- Make sure that WEP encryption is turned on (many base stations leave it off to improve throughput)
- Change the WEP key periodically, if feasible (not too many wireless devices)
- Restrict access to wireless network using the network cards' MAC address. This means you need to manually enter the MAC address of each network card into your base station.
- Change the default IP subnet that your base station is preset to (192.168.1.0).
- Disable the DHCP IP address generation feature of your wireless base station.
- Build a firewall between the wireless network and your trusted intranet.
- Turn off administrative access over wireless if possible.
- Upgrade your wireless network encryption to WPA/TKIP. This may require some geek help.
A portion of the above list comes from this article.
No comments:
Post a Comment