Owner / Designer
Location: Castle Belgalor
Karma: 2 (+3/-1)
reply | quote
Secure your Home Network [Netgear] Steps 1 - 9
Though often overlooked, one of the most crucial security settings that should be changed to help safeguard a network is the default username and password that is used to access the router’s configuration screen. Most manufacturers ship their equipment with standard usernames and passwords, such as admin and password.
As this information is freely available online, it is a clear security risk. So, be sure to log into your router and change these settings to something that is harder to guess. Generally, this will involve launching a web browser and typing in the router’s web or IP address. My Netgear router, for example, is accessed by typing www.routerlogin.net into the browser’s Address or Location bar. If you’re not sure how to access your router’s setup screen, you’ll need to refer to the manufacturer’s instructions.
If the wireless capabilities of the router have not yet been enabled, now is the time to do so. Where this setting is found differs from one router to another, but there should be a section called ‘Wireless Settings’ or something similar. If there’s an option to enable and disable the wireless feature, make sure it’s enabled and assign an SSID – this is simply a friendly name for the network.
To make the network harder for others to detect, some routers provide the option of not broadcasting the SSID, which should be selected if it’s available. If you only want to use a wired network, you can disable the wireless network on this page and skip to step 4
To help protect data that is transmitted across the network wirelessly, encryption is available in three varieties – WEP, WPA and WPA2 (an even more secure version than WPA). Again the options that are available here will depend on which router is used and what features it supports. Select the level of encryption that should be used from the options displayed, then enter a password. The best security is provided by WPA/WPA2, so select one of these, if available. Do not make the password too short or easy to guess, and try to use a combination of letters and numbers.
All wirelessly networked devices from desktop and notebook computers to media streamers and games consoles have a unique address, which is known as a MAC address (not to be confused with the MAC code required to leave an internet service provider). This information can be used to limit which computers are able to connect to the network.
The address of each computer can be found printed on its network card or on the case of the computer itself. Head to the MAC Address Filtering or Access Control section of the router configuration to make sure that this feature is enabled.
MAC address filtering works by allowing only those devices whose MAC addresses are listed to connect to the network. Some routers will automatically display a list of all PCs currently connected and enable you to add them to the permitted list. If this is the case, simply select each of the computers you would like to allow in turn and click on the Add or Allow button. This process may need to be repeated at a later time if other computers that are not currently available also need to be added.
You can also add computers to the permitted list manually by entering the computer name and providing its associated MAC address. Make sure the MAC addresses are entered in the correct format of six pairs of letters or numbers separated by a colon, for example: 01:23:4F:78:1C:45. If an address is entered incorrectly, it may be that one computer is not able to connect to the network until the problem is rectified. Repeat the process as many times as required and save the changes.
Many routers also make it possible to view a list of all of the computers that are connected to the network – be it wirelessly or using traditional network cables. This section of the router configuration may be labelled ‘Attached Devices’, ‘Currently connected devices’ or something similar. Additionally, some routers enable you to blacklist computers that are listed as being connected. If this is the case, a Block option will be visible. This should only be used on devices that you are certain are not your own.
While many routers include an integrated firewall, these can be tricky to configure. This is because it is generally necessary to know in advance what type of internet traffic should be blocked and what should be permitted. Windows XP and Vista both include a firewall that offers an extra level of protection and you should check that yours is switched on. In either version of Windows, open the Windows Firewall option in the Control Panel. In Windows XP, select the On option. In Vista you need to click on Change Settings followed by On if it is disabled.
If you’re using the firewall supplied with Windows XP or Vista, it is not essential to install alternative firewall software. However, there are alternatives that are easier to configure. One such tool is ZoneAlarm, which can be found in my Treasure Chest.
When you get to the site and download you'll see the download window (see below snapshot), save to your desktop or a folder of your choice and install it. Note that if you don’t want to install an alternative firewall program, just skip to step 12.
I've ran out of room to show all the tutorial on one page so to view Steps 10 - 14 click the link below
>> Step 10 - 14 <<
The Wizard3, 8/1/09, 23:48