How to make the wifi secure?

[thenvk]

Hi

One of my friend is using tata internet through wireless router.
3 devices are accessing through it.
1. Iphone
2. Main Computer
3. Computer in another room.

He is connecting to net through User ID and password and now when he gets connected through main computer the other computer and Iphone are working with out asking for UID and password.

In this case, there is a chance that people might misuse this and he wants to setup the connection in such a way that..
Each and every device should dial the connection through UID and password.

Please suggest a way for this.

thanks in advance

 

[Arihant.EXE]

Hmm, you could either apply one of the wpa-psk /wpa2-psk security for the wireless router within its configuration page that is normally 10.0.0.1/192.168.1.1 , refer to your router's manual for further steps or list your router's model number and make here so we could help you with the steps.

If you want to further make the wifi connection secure, i recommend you to untick the 'broadcast ssid' option which will not allow the SSID (the name of the router point that displays on your screen when you search for the wifi networks within the area) to be broadcasted and will require every device to enter a SsID manually along with the secure password that you configured router with. Also set up an 'access list' which lists only the mac address of the devices that you wish to use to access the wifi.

 

[DanDroiD]

Actually I think it is more secure to have the router only allow specified MAC addresses to access it. This way you leave the router unsecured, but only the MAC addresses you tell it, can access Network at all. Once you have added the MAC address you never have to worry about remembering passwords or anything.

 

[Aphro_EVO]

Yup MAC address allow list is byfar the safest and simplest setup for home wifi environment.

 

[YoGi-Sama]

WPA2 coupled with MAC filtering.... that's about safest you can get with home security.

Even if you don't want to do MAC filtering (in case you get friends visiting now and then and connecting on you WIFI with their notebooks, phones etc... happens with me), WPA2 security should be must to secure your WIFI.

 

[hammerhead]

Your friend is using an unsecured wireless network that is why all the devices are able to access the internet. As suggested use WPA2 security (you can enable it from the router homepage). Its secure enough even without mac filtering.

 

[Arihant.EXE]

i have this configuration from like past 3 years .

x No SSID broadcast

x WPA2-PSK security with a long password with special characters

x MAC filtering with only my laptop and phone allowed

i am just a bit paranoid

 

[Edrill]

+1 to Arihant!

My router security is as follows:

1) WPA2-AES

2) Wireless MAC Filters enabled

3) Router set to a random IP address instead of the default 192.168.1.1

4) DHCP server pool limited to x number of devices (Where x is the number of devices in the network!)

5) SSID Broadcast disabled

Yes, I'm paranoid!!

 

[blr_p]

This way you leave the router unsecured, but only the MAC addresses you tell it, can access Network at all.

Won't this allow passwords to be sniffed "out of the air" ?

+1 on ease of use otherwise.

 

[Ra.hul]

There are three layers of security that can be used for most secured wireless network.

1. use different type of fake ip series such as 12.x.x.x series.
2. dont use wep type security that is being easily break.
3. try to use mac filtering.

 

[uziel]

if u really want the username password architecture, why dont you try to setup the radius server?

 

[nucleuskore]

I have a question related to the OP's post.

In WPA setup, I see the option to type in a key, using normal characters, and if I remember correctly it should be minimum eight characters long.

Now I also get an additional option to enable WEP 128 bit encryption under WPA, what is that? WEP in WPA?