Page 6 / 41 Scroll up to view Page 1 - 5
Chapter 2
Wireless Security Checklist
4
Wireless-G Broadband Router
Chapter 2:
Wireless Security Checklist
Wireless networks are convenient and easy to install, so
homes with high-speed Internet access are adopting them
at a rapid pace. Because wireless networking operates by
sending information over radio waves, it can be more
vulnerable to intruders than a traditional wired network.
Like signals from your cellular or cordless phones, signals
from your wireless network can also be intercepted. Since
you cannot physically prevent someone from connecting
to your wireless network, you need to take some additional
steps to keep your network secure.
1. Change the default wireless
network name or SSID
Wireless devices have a default wireless network name
or Service Set Identifier (SSID) set by the factory. This
is the name of your wireless network, and can be up
to 32 characters in length. Linksys wireless products
use
linksys
as the default wireless network name. You
should change the wireless network name to something
unique to distinguish your wireless network from other
wireless networks that may exist around you, but do not
use personal information (such as your Social Security
number) because this information may be available for
anyone to see when browsing for wireless networks.
2. Change the default password
For wireless products such as access points and routers,
you will be asked for a password when you want to change
their settings. These devices have a default password set
by the factory. The Linksys default password is
admin
.
Hackers know these defaults and may try to use them
to access your wireless device and change your network
settings. To thwart any unauthorized changes, customize
the device’s password so it will be hard to guess.
3. Enable MAC address filtering
Linksys routers give you the ability to enable Media Access
Control (MAC) address filtering. The MAC address is a
unique series of numbers and letters assigned to every
networking device. With MAC address filtering enabled,
wireless network access is provided solely for wireless
devices with specific MAC addresses. For example, you can
specify the MAC address of each computer in your home
so that only those computers can access your wireless
network.
4. Enable encryption
Encryption protects data transmitted over a wireless
network. Wi-Fi Protected Access (WPA/WPA2) and Wired
Equivalency Privacy (WEP) offer different levels of security
for wireless communication. Currently, devices that are
Wi-Fi certified are required to support WPA2, but are not
required to support WEP.
A network encrypted with WPA/WPA2 is more secure
than a network encrypted with WEP, because WPA/WPA2
uses dynamic key encryption. To protect the information
as it passes over the airwaves, you should enable the
highest level of encryption supported by your network
equipment.
WEP is an older encryption standard and may be the
only option available on some older devices that do not
support WPA.
General Network Security Guidelines
Wireless network security is useless if the underlying
network is not secure.
Password protect all computers on the network and
individually password protect sensitive files.
Change passwords on a regular basis.
Install
anti-virus
software
and
personal
firewall
software.
Disable file sharing (peer-to-peer). Some applications
may open file sharing without your consent and/or
knowledge.
Additional Security Tips
Keep wireless routers, access points, or gateways away
from exterior walls and windows.
Turn wireless routers, access points, or gateways
off when they are not being used (at night, during
vacations).
Use strong passphrases that are at least eight characters
in length. Combine letters and numbers to avoid using
standard words that can be found in the dictionary.
WEB:
For
more
information
on
wireless
security, visit
www.linksys.com/security
WRT54GL User Guide
Page 7 / 41
Chapter 3
Advanced Configuration
5
Wireless-G Broadband Router
Chapter 3:
Advanced Configuration
After setting up the Router with the Setup Wizard (located
on the CD-ROM), the Router will be ready for use. However,
if you’d like to change its advanced settings, use the
Router’s web-based utility. This chapter describes each
web page of the utility and each page’s key functions. You
can access the utility via a web browser on a computer
connected to the Router.
The web-based utility has these main tabs: Setup,
Wireless, Security, Access Restrictions, Applications &
Gaming, Administration, and Status. Additional tabs will
be available after you click one of the main tabs.
NOTE:
When first installing the Router, you
should use the Setup Wizard on the Setup
CD-ROM. If you want to configure advanced
settings, use this chapter to learn about the
web-based utility.
How to Access the Web-Based Utility
To access the web-based utility, launch the web browser on
your computer, and enter the Router’s default IP address,
192.168.1.1
, in the
Address
field. Then, press
Enter
.
A password request screen will appear. (Non-Windows XP
users will see a similar screen.) Leave the
User name
field
blank. The first time you open the Web-based utility, use
the default password
admin
. (You can set a new password
from the Administration tab’s
Management
screen.) Click
OK
to continue.
Password Screen
Setup > Basic Setup
The first screen that appears is the
Basic Setup
screen. This
allows you to change the Router’s general settings.
Setup > Basic Setup
Internet Setup
The Internet Setup section configures the Router to your
Internet connection. Most of this information can be
obtained through your ISP.
Internet Connection Type
Select the type of Internet connection your ISP provides
from the drop-down menu. The available types are:
Automatic Configuration - DHCP
Static IP
PPPoE
PPTP
L2TP
Telstra Cable
Automatic Configuration - DHCP
By default, the Router’s Internet Connection Type is set
to
Automatic Configuration - DHCP
, which should be
kept only if your ISP supports DHCP or you are connecting
through a dynamic IP address. (This option usually applies
to cable connections.)
Internet Connection Type > Automatic Configuration - DHCP
Page 8 / 41
Chapter 3
Advanced Configuration
6
Wireless-G Broadband Router
Static IP
If you are required to use a permanent IP address to
connect to the Internet, select
Static IP
.
Internet Connection Type > Static IP
Internet IP Address
This is the Router’s IP address, when
seen from the Internet. Your ISP will provide you with the
IP Address you need to specify here.
Subnet Mask
This is the Router’s Subnet Mask, as seen
by users on the Internet (including your ISP). Your ISP will
provide you with the Subnet Mask.
Gateway
Your ISP will provide you with the Gateway
Address, which is the ISP server’s IP address.
DNS
Your ISP will provide you with at least one DNS
(Domain Name System) Server IP Address.
PPPoE
Some DSL-based ISPs use PPPoE (Point-to-Point Protocol
over Ethernet) to establish Internet connections. If you are
connected to the Internet through a DSL line, check with
your ISP to see if they use PPPoE. If they do, you will have
to enable
PPPoE
.
Internet Connection Type > PPPoE
User Name and Password
Enter the User Name and
Password provided by your ISP.
Service Name
If provided by your ISP, enter the Service
Name.
Connect on Demand: Max Idle Time
You can configure
the Router to cut the Internet connection after it has been
inactive for a specified period of time (Max Idle Time). If
your Internet connection has been terminated due to
inactivity, Connect on Demand enables the Router to
automatically re-establish your connection as soon as you
attempt to access the Internet again. To use this option,
select
Connect on Demand
. In the
Max Idle Time
field,
enter the number of minutes you want to have elapsed
before your Internet connection terminates. The default
Max Idle Time is
5
minutes.
Keep Alive: Redial Period
If you select this option,
the
Router
will
periodically
check
your
Internet
connection. If you are disconnected, then the Router
will automatically re-establish your connection. To use
this option, select
Keep Alive
. In the
Redial Period
field,
you specify how often you want the Router to check
the Internet connection. The default Redial Period is
30
seconds.
PPTP
Point-to-Point Tunneling Protocol (PPTP) is a service that
applies to connections in Europe only.
Internet Connection Type > PPTP
Internet IP Address
This is the Router’s IP address, as
seen from the Internet. Your ISP will provide you with the
IP Address you need to specify here.
Subnet Mask
This is the Router’s Subnet Mask, as seen
by users on the Internet (including your ISP). Your ISP will
provide you with the Subnet Mask.
Gateway
Your ISP will provide you with the Gateway
Address.
User Name and Password
Enter the User Name and
Password provided by your ISP.
Connect on Demand: Max Idle Time
You can configure
the Router to cut the Internet connection after it has been
inactive for a specified period of time (Max Idle Time). If
your Internet connection has been terminated due to
inactivity, Connect on Demand enables the Router to
automatically re-establish your connection as soon as you
attempt to access the Internet again. To use this option,
select
Connect on Demand
. In the
Max Idle Time
field,
enter the number of minutes you want to have elapsed
before your Internet connection terminates. The default
Max Idle Time is
5
minutes.
Keep Alive: Redial Period
If you select this option, the
Router will periodically check your Internet connection. If
you are disconnected, then the Router will automatically
re-establish your connection. To use this option, select
Keep Alive
. In the
Redial Period
field, you specify how often
you want the Router to check the Internet connection. The
default value is
30
seconds.
Page 9 / 41
Chapter 3
Advanced Configuration
7
Wireless-G Broadband Router
L2TP
L2TP is a service that applies to connections in Israel only.
Internet Connection Type > L2TP
User Name and Password
Enter the User Name and
Password provided by your ISP.
L2TP Server
This is the IP address of the L2TP Server.
Your ISP will provide you with the IP Address you need to
specify here.
Connect on Demand: Max Idle Time
You can configure
the Router to cut the Internet connection after it has been
inactive for a specified period of time (Max Idle Time). If
your Internet connection has been terminated due to
inactivity, Connect on Demand enables the Router to
automatically re-establish your connection as soon as you
attempt to access the Internet again. To use this option,
select
Connect on Demand
. In the
Max Idle Time
field,
enter the number of minutes you want to have elapsed
before your Internet connection terminates. The default
Max Idle Time is
5
minutes
Keep Alive: Redial Period
If you select this option,
the
Router
will
periodically
check
your
Internet
connection. If you are disconnected, then the Router
will automatically re-establish your connection. To use
this option, select
Keep Alive
. In the
Redial Period
field,
you specify how often you want the Router to check
the Internet connection. The default Redial Period is
30
seconds.
Telstra Cable
Telstra Cable is a service that applies to connections in
Australia only.
Internet Connection Type > Telstra Cable
User Name and Password
Enter the User Name and
Password provided by your ISP.
Heart Beat Server
This is the IP address of the
Heartbeat
Server. Your ISP will provide you with the IP Address you
need to specify here.
Connect on Demand: Max Idle Time
You can configure
the Router to cut the Internet connection after it has been
inactive for a specified period of time (Max Idle Time). If
your Internet connection has been terminated due to
inactivity, Connect on Demand enables the Router to
automatically re-establish your connection as soon as you
attempt to access the Internet again. To use this option,
select
Connect on Demand
. In the
Max Idle Time
field,
enter the number of minutes you want to have elapsed
before your Internet connection terminates. The default
Max Idle Time is
5
minutes
Keep Alive: Redial Period
If you select this option,
the
Router
will
periodically
check
your
Internet
connection. If you are disconnected, then the Router
will automatically re-establish your connection. To use
this option, select
Keep Alive
. In the
Redial Period
field,
you specify how often you want the Router to check
the Internet connection. The default Redial Period is
30
seconds.
Optional Settings
Some of these settings may be required by your ISP. Verify
with your ISP before making any changes.
Optional Settings
Router Name
In this field, you can enter a name of up to
39 characters to represent the Router.
Host Name/Domain Name
These fields allow you to
supply a host and domain name for the Router. Some ISPs,
usually cable ISPs, require these names as identification.
You may have to check with your ISP to see if your
broadband Internet service has been configured with a
host and domain name. In most cases, leaving these fields
blank will work.
MTU
MTU is the Maximum Transmission Unit. It specifies
the largest packet size permitted for Internet transmission.
Select Manual if you want to manually enter the largest
packet size that is transmitted. To have the Router select
the best MTU for your Internet connection, keep the
default setting,
Auto
.
Size
When Manual is selected in the
MTU
field, this option
is enabled. Leave this value in the 1200 to 1500 range. The
default size depends on the Internet Connection Type:
WRT54GL User Guide
DHCP, Static IP, or Telstra:
1500
PPPoE:
1492
Page 10 / 41
Chapter 3
Advanced Configuration
8
Wireless-G Broadband Router
PPTP or L2TP:
1460
Network Setup
The Network Setup section changes the settings on the
network connected to the Router’s Ethernet ports. Wireless
Setup is performed through the Wireless tab.
Router IP
This presents both the Router’s IP Address and Subnet
Mask as seen by your network.
Router IP Address
Network Address Server Settings (DHCP)
The settings allow you to configure the Router’s Dynamic
Host Configuration Protocol (DHCP) server function. The
Router can be used as a DHCP server for your network. A
DHCP server automatically assigns an IP address to each
computer on your network. If you choose to enable the
Router’s DHCP server option, make sure there is no other
DHCP server on your network.
Network Address Server Settings (DHCP)
DHCP Server
DHCP is enabled by factory default. If you
already have a DHCP server on your network, or you don’t
want a DHCP server, then select
Disable
(no other DHCP
features will be available).
Starting IP Address
Enter a value for the DHCP server to
start with when is
suing IP addresses. Because the Router’s
default IP address is 192.168.1.1, the Starting IP Address must
be 192.168.1.2 or greater, but smaller than 192.168.1.253.
The default Starting IP Address is
192.168.1.100
.
Maximum Number of DHCP Users
Enter the maximum
number of PCs that you want the DHCP server to assign
IP addresses to. This number cannot be greater than 253.
The default is
50
.
Client Lease Time
The Client Lease Time is the amount
of time a network user will be allowed connection to the
Router with their current dynamic IP address. Enter the
amount of time, in minutes, that the user will be “leased”
this dynamic IP address. After the time is up, the user will
be automatically assigned a new dynamic IP address. The
default is
0
minutes, which means one day.
Static DNS (1-3)
The Domain Name System (DNS) is how
the Internet translates domain or website names into
Internet addresses or URLs. Your ISP will provide you with at
least one DNS Server IP Address. If you wish to use another,
enter that IP Address in one of these fields. You can enter up
to three DNS Server IP Addresses here. The Router will use
these for quicker access to functioning DNS servers
.
WINS
The Windows Internet Naming Service (WINS)
manages each PC’s interaction with the Internet. If you
use a WINS server, enter that server’s IP Address here.
Otherwise, leave this blank.
Time Setting
Select the time zone in which your network functions
from this drop-down menu. (You can even automatically
adjust for daylight saving time.)
Time Setting
Click
Save Settings
to apply your changes, or click
Cancel
Changes
to cancel your changes.
Setup > DDNS
The Router offers a Dynamic Domain Name System (DDNS)
feature. DDNS lets you assign a fixed host and domain
name to a dynamic Internet IP address. It is useful when
you are hosting your own website, FTP server, or other
server behind the Router.
Before you can use this feature, you need to sign
up for DDNS service with a DDNS service provider,
www.dyndns.org or www.TZO.com. If you do not want to
use this feature, keep the default setting,
Disable
.
DDNS
DDNS Service
If your DDNS service is provided by DynDNS.org, then
select
DynDNS.org
from the drop-down menu. If your
DDNS service is provided by TZO, then select
TZO.com
.
The features available on the
DDNS
screen will vary,
depending on which DDNS service provider you use.

Rate

4.5 / 5 based on 2 votes.

Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top