Page 86 / 116 Scroll up to view Page 81 - 85
Wireless-G Broadband Router with 2 Phone Ports
78
Appendix B: Wireless Security
Security Threats Facing Wireless Networks
Security Threats Facing Wireless Networks
Wireless networks are easy to find. Hackers know that in order to join a wireless network, wireless networking
products first listen for “beacon messages”. These messages can be easily decrypted and contain much of the
network’s information, such as the network’s SSID (Service Set Identifier). Here are the steps you can take:
Change the administrator’s password regularly.
With every wireless networking device you use, keep in
mind that network settings (SSID, WEP keys, etc.) are stored in its firmware. Your network administrator is the
only person who can change network settings. If a hacker gets a hold of the administrator’s password, he, too,
can change those settings. So, make it harder for a hacker to get that information. Change the administrator’s
password regularly.
SSID.
There are several things to keep in mind about the SSID:
1.
Disable Broadcast
2.
Make it unique
3.
Change it often
Most wireless networking devices will give you the option of broadcasting the SSID. While this option may be
more convenient, it allows anyone to log into your wireless network. This includes hackers. So, don’t broadcast
the SSID.
Wireless networking products come with a default SSID set by the factory. (The Linksys default SSID is
“linksys”.) Hackers know these defaults and can check these against your network. Change your SSID to
something unique and not something related to your company or the networking products you use.
Page 87 / 116
Wireless-G Broadband Router with 2 Phone Ports
79
Appendix B: Wireless Security
Security Threats Facing Wireless Networks
Change your SSID regularly so that any hackers who have gained access to your wireless network will have to
start from the beginning in trying to break in.
MAC Addresses.
Enable MAC Address filtering. MAC Address filtering will allow you to provide access to only
those wireless nodes with certain MAC Addresses. This makes it harder for a hacker to access your network with
a random MAC Address.
WEP Encryption.
Wired Equivalent Privacy (WEP) is often looked upon as a cure-all for wireless security
concerns. This is overstating WEP’s ability. Again, this can only provide enough security to make a hacker’s job
more difficult.
There are several ways that WEP can be maximized:
1.
Use the highest level of encryption possible
2.
Use “Shared Key” authentication
3.
Change your WEP key regularly
WPA. Wi-Fi Protected Access (WPA) is the newest and best available standard in Wi-Fi security. Two modes are
available: Pre-Shared Key and RADIUS. Pre-Shared Key gives you one encryption methods: TKIP (Temporal Key
Integrity Protocol), which utilizes a stronger encryption method and incorporates Message Integrity Code (MIC) to
provide protection against hackers.
WPA Pre-Shared Key
. If you do not have a RADIUS server, Select the type of algorithm, TKIP or AES, enter a
password in the Pre-Shared key field of 8-64 characters, and enter a Group Key Renewal period time
between 0 and 99,999 seconds, which instructs the Router or other device how often it should change the
encryption keys.
IMPORTANT:
Always
remember that each device in
your wireless network MUST
use the same encryption
method and encryption key or
your wireless network will not
function properly.
Page 88 / 116
Wireless-G Broadband Router with 2 Phone Ports
80
Appendix B: Wireless Security
Security Threats Facing Wireless Networks
WPA RADIUS
. WPA used in coordination with a RADIUS server. (This should only be used when a RADIUS
server is connected to the Router or other device.) First, select the type of WPA algorithm,
TKIP
or
AES
. Enter
the RADIUS server’s IP Address and port number, along with a key shared between the device and the server.
Last, enter a Group Key Renewal period, which instructs the device how often it should change the
encryption keys.
Implementing encryption may have a negative impact on your network’s performance, but if you are transmitting
sensitive data over your network, encryption should be used.
These security recommendations should help keep your mind at ease while you are enjoying the most flexible
and convenient technology Linksys has to offer.
Page 89 / 116
Wireless-G Broadband Router with 2 Phone Ports
81
Appendix C: Finding the MAC Address and IP Address for Your Ethernet Adapter
Windows 98 or Me Instructions
Appendix C: Finding the MAC Address and IP Address for Your
Ethernet Adapter
This section describes how to find the MAC address for your computer’s Ethernet adapter so you can use the
MAC filtering and/or MAC address cloning feature of the Router. You can also find the IP address of your
computer’s Ethernet adapter. This IP address is used for the Router’s filtering, forwarding, and/or DMZ features.
Follow the steps in this appendix to find the adapter’s MAC or IP address in Windows 98, Me, 2000, or XP.
Windows 98 or Me Instructions
1.
Click
Start
and
Run
. In the
Open
field, enter
winipcfg
. Then press the
Enter
key or the
OK
button.
2.
When the
IP Configuration
screen appears, select the Ethernet adapter you have connected to the Router via
a CAT 5 Ethernet network cable.
3.
Write down the Adapter Address as shown on your computer screen. This is the MAC address for your
Ethernet adapter and is shown as a series of numbers and letters.
The MAC address/Adapter Address is what you will use for MAC address cloning or MAC filtering.
The example shows the Ethernet adapter’s IP address as 192.168.1.100. Your computer may show
something different.
Figure C-2: MAC/Adapter Address
Figure C-1: IP Configuration Screen
Page 90 / 116
Wireless-G Broadband Router with 2 Phone Ports
82
Appendix C: Finding the MAC Address and IP Address for Your Ethernet Adapter
Windows 2000 or XP Instructions
Windows 2000 or XP Instructions
1.
Click
Start
and
Run
. In the
Open
field, enter
cmd
. Press the
Enter
key or click the
OK
button.
2.
At the command prompt, enter
ipconfig /all
. Then press the
Enter
key.
3.
Write down the Physical Address as shown on your computer screen; it is the MAC address for your Ethernet
adapter. This appears as a series of numbers and letters.
The MAC address/Physical Address is what you will use for MAC address cloning or MAC filtering.
The example shows the Ethernet adapter’s IP address as 192.168.1.100. Your computer may show
something different.
For the Router’s Web-based Utility
For MAC address cloning, enter the 12-digit MAC address in the fields provided, two digits per field.
For MAC filtering, enter the 12-digit MAC address in this format, XXXXXXXXXXXX, WITHOUT the hyphens.
Figure C-5: MAC Address Filter
Figure C-4: MAC Address Clone
Figure C-3: MAC/Physical Address

Rate

4 / 5 based on 1 vote.

Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top