Thread: newbie needs help
View Single Post
Old 09-08-08   #3 (permalink)
GH0
Pineapple please!
 
GH0's Avatar
 
intel nvidia

Join Date: Jan 2008
Location: 35°40N,78°46W
Posts: 4,380
Blog Entries: 3

Folding Team Rank: 115
Trader Rating: 2
Default
Quote:
Originally Posted by adramalech707 View Post
okay so i recently got interested in actually setting up my router more securely

i have a linksys wrt330n router and what to use it to its fullest potiental but yet i don't know about many things.....like qos???? or how to setup mac addresses, static ip's, and all the other options i see in wireless security and firewall settings...

i know that static ip address are address assigned to one certain computer, and that mac address on a pc is good for not allowing random mac address from accessing my network...but i don't understand how most of it works and what i should use to help secure my router....

right now i am still just using random ip address assignment and a psk-personal security settings with aes....

so basically i am asking for help in learning about the different options that i could use to make my wireless internet for my computers to be secure while also fast....

i tried setting up static ip address but...i couldn't get my sisters laptop running vista to accept the changes thus i had to revert to the normal settings...
Quote:
Originally Posted by IEATFISH View Post
No matter what you do, there is never a 100% secure network, especially wireless, unless you are unplugged. Your best bet that will keep anyone from stumbling onto your network and keep out most script kiddies is to use a WPA2 encryption key with a mix of letters, numbers and special characters, with caps on some of them. Then do the mac filtering. You can find you mac address by going into a command prompt and typing ipconfig/all. Find the wireless adapter you use. It will look like this XX:XX:XX:XX:XX:XX. Then allow that one in the router.
The easiest way to find this is goto CMD and type IPConfig /all. Something like this should appear:

Code:
C:Documents and SettingsAndrew>ipconfig /all

Windows IP Configuration

        Host Name . . . . . . . . . . . . : dataslum
        Primary Dns Suffix  . . . . . . . :
        Node Type . . . . . . . . . . . . : Unknown
        IP Routing Enabled. . . . . . . . : No
        WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Network Bridge:

        Connection-specific DNS Suffix  . :
        Description . . . . . . . . . . . : MAC Bridge Miniport
        Physical Address. . . . . . . . . : 02-22-15-01-CC-09
        Dhcp Enabled. . . . . . . . . . . : No
        IP Address. . . . . . . . . . . . : 10.10.10.252
        Subnet Mask . . . . . . . . . . . : 255.0.0.0
        Default Gateway . . . . . . . . . : 10.10.10.1
        DNS Servers . . . . . . . . . . . : 208.67.222.222
                                            24.25.5.148
You want this:

Code:
 Physical Address. . . . . . . . . : 02-22-15-01-CC-09
Quote:
Also, you can turn off network broadcasting. That way, your computer will have to look for the network as opposed to the router sending out a signal saying "here I am". That is what causes the networks to show up in your "connect to a network" in windows. If you turn that off, only you know it is there. When you put in the network settings in your computer, it will find it. Make sure you know your SSID (name of your network). Once again, not a perfect defense, but along with a strong password with WPA encryption and mac filtering, you would have to have a pretty experienced hacker to get it, and even then it would be very difficult.

edit: Also, I don't feel static addresses are too important, but someone may need to correct me on that.

edit2: Wow, I've typed a lot. Here is the linksys page with the manual and everything if you need it. http://www.linksys.com/servlet/Satel...=1166859632665
I do like to set up static IP address, just so I can make sure I know who is on each computer and where everything is.

Quality of Service won't really do anything for you in this aspect. So I wouldn't worry about it.

Are you running thee stock firmware or dd-wrt?
I would suggest running dd-wrt. It has much more features then the stock firmware.

I would suggest starting to secure your router first with wireless.
First, make sure that anything that says "Remote/Web GUI Login" says disabled or off.
Then turn off your Wireless Broadcasting SSID.

Then go to wireless security, and enable it to what ever Security Mode you want.

Then, put the encryption to the highest value possible.

Then go to the MAC filter, and put your, and any other family members MAC Address into that space. Only need to do it for wireless devices.
__________________
Diligite Iustitiam Qui Iudicatis Terra | Love righteousness, ye that are judges of the earth! "We're not God. Not only are our powers limited, we sometimes are driven to become the devil himself." "Gather at the Archeron, prisoners of Charon."
"While the mother holds her child, watches them die, Hands to the sky crying, "Why, oh why?" Cause I need to watch things die...from a distance, Vicariously I live while the whole world dies, You all need it too, don't lie."
Please, help me out!

System: Dataslum
CPU
Q6600 @ 3.2		 Motherboard
EVGA 780i Motherboard		 Memory
OCZ Blade PC-9600 		Graphics Card
2x EVGA 9800GTX+ 512 MB (SLI)
Hard Drive
4 Hard Drives		 Sound Card
Auzuntech Prelude 7.1		 Power Supply
Corsair 1KW		 Case
Lian-Li
CPU cooling
Xigmatek		 GPU cooling
Stock		 OS
Windows 7 Ultimate		 Monitor
2x ASUS 23.6" VH242H
1 Million+ Folding at Home points
GH0 is online now I fold for Overclock.net Overclocked Account GH0's Gallery   Reply With Quote
 
Page generated in 0.06376 seconds with 7 queries