Menu
InformatiWeb
  • Index
  • Courses
  • Tutorials
  • InformatiWeb Pro

Login

Registration Password lost ?
FR
  • IT
    • Articles
    • Backup
    • BIOS
    • Live CD
    • MultiBoot
    • Security
    • Virtualization
    • Web
    • Windows
  • Gaming
    • Command & Conquer
    • TrackMania
  • InformatiWeb
  • Tutorials
  • IT
  • Web
  • Configure and secure your wireless network
  • Web
  • inSSIDer
  • 03 November 2013 at 19:02 UTC
  • Lionel

Configure and secure your wireless network

For several years the Wifi has appeared more and more people use it to access the Internet without having to connect a network cable (RJ45) on their computer.
WiFi is a technology that allows you to connect to a (usually integrated in the new routers or Box) wifi access point which is connected to a modem or router that has internet.

Schéma point accès wifi

The problem with this new technology is that too many people neglect the fact to secure their wifi connection.

Here's what happens when you do not secure your wireless connection :

  • The is not secure WiFi access point anyone can come to connect to your Internet connection.
    This means that your quotta , your bandwidth (the speed of download and upload) and your Internet subscription is used by the attacker who is connected.
  • The person being connected to the same network (LAN) you , it has access to shared as well as local servers (such as a web server for example) as long as the ports are open for the local network folders.
  • The third person who uses your Internet connection is not wrong because it ignores any protection (because it is not activated).
  • But the most important thing is that the owner of the Internet subscription and therefore the person who does not secure his wifi be held liable in case of problems (even if it is a third person who used your non-secure connection). Source : wikipedia.org.

We'll explain how to secure your wireless network to avoid these intrusions.

  1. Channel selection (channel)
  2. Secure your wireless access point
  3. Filtering by MAC address (optional)

1. Choice of channel

Having a wireless network is good, but since many people have, interference may occur if you use the same frequency as them.
Here is a software to know what channel select : inSSIDer (Office).

In our case, only one wireless network is located in the corner. It is actually ours. But if it was not so we could avoid the channels 1, 2 and 3.
Why? Well simply because, as you stated in the program as a graph below, the wireless network extends a little on the higher and lower frequencies.
It is therefore possible to avoid using the same channel as another and avoid using the channel next to another network (if possible).

In this case, the Wifi "InformatiWeb-Wifi" network is configured to display its name.

inSSIDer réseaux

While in the other case, the name is not "distributed" and therefore is not displayed. Some devices will not see the network and others will see a wifi access point is in the area but will not display the name because it is unknown.
In 2 cases, you will be unable to log in to it without the name (SSID) of the network and its security key (WEP, WPA, ...).

2. Secure your wireless access point

As a general rule, it's in the router (or Box) as explained earlier in this tutorial.
Because all WiFi access points, routers and modems are not the same, we can not explain the procedure for all models that exist.
However, we will explain what is meant by this or that option ...

To enter the interface of your router, you need to know its IP address. This address is called "IP address of the gateway" or "default gateway".
To know, follow our tutorial "Know your LAN IP address" and read the item on your version of Windows.

Once in the interface of your router (or access point), look for a option called : Wireless, Wi-Fi or WLAN.

Note : We have made this tutorial on the router "Sagem Fast 3464 (Scarlet Box)".

Once in the configuration of wireless network, you will find a button to enable or disable the wireless and various options and information network :
- MAC Address (Mac address in English) : The physical address of your Wireless Access Point. (So that is a logical IP address)
- SSID (Service Set Identifier) ​​: Name of the wireless network.
This is the name that will be displayed by Windows, Android, iOS, ... when you search for wireless networks available nearby.
- SSID Broadcast : To distribute or not, the name of the wireless network.
Uncheck require you to manually specify the name and the key at the first connection but avoid that malicious people can not see your wireless network and try to connect.
- Channel (English Channel) : Channel your WiFi access point should use.
See point 1 of this tutorial to avoid interference
- Security (Security) : Security type to use.
Various safety devices exist :

  • WEP : can be hacked easily and thus avoid
  • WPA : New more secure versions. WPA typically uses TKIP encryption protocol.
  • WPA2 : This successor to WPA TKIP replaces by CCMP for more security.
  • WPA/WPA2 : Depending on the devices, the connection is secured with WPA or WPA2. It depends on whether the client device (network card of a computer, for example) support WPA2 or not.

The choice of this security depends on the compatibility of your devices. Obviously try to use the latest security provided by your access point while remaining compatible with all your devices.

- WPA type : Allows you to use a passphrase (letters A to Z) or hexadecimal key (numbers 0-9 and letters A to F).
- Passphrase or Key : The security key that will be required to connect to the wireless network.
- Encryption : The type of encryption.

A feature called "WPS" is available on some wireless access points.
This is a function to accept the connection of a device :

  • by pressing a physical button on the wireless access point
  • by a PIN code
  • by NFC method in approaching the new device to the access point Wifi
  • by a USB key to transfer the necessary data between the new device and wireless access point.

Here is an example configuration of a wireless network.
In this example, the name of the wireless network is hidden by security (SSID Broadcast unchecked)

3. Filtering by MAC address (optional)

As indicated above, a MAC address is a physical address that is unique per device.
Even if you buy 2 wireless network cards from the same manufacturer and the same model, they will have different MAC addresses.

We can therefore add the filter to better secure our wireless network. To do this, click the "MAC Filter" button.

Notes :
- This option is not available in all routers or wireless access points
- Keep in mind that it is possible, in software, to change it. The MAC address that the router will therefore be false but the device (NIC) still retain its physical address assigned by the manufacturer.

filtrage MAC

Select the filter mode :
- Allow (Allow) : Used to allow only a list of devices
- Deny (deny) : To allow all devices except those listed.

To know the MAC address of your device :
- Look in the wireless options on your router or access point
- Within the parameters of your network connection
Note : The MAC address is in the format : xx:xx:xx:xx:xx:xx (where x is a number from 0 to 9 or a letter from A to Z).

Enter the MAC address of the device to allow or deny (depending on the filter mode selected).

Once you have added your or your devices they will be displayed in the filter list.

If an unauthorized device tries to connect to your wireless network, it will be automatically rejected (and even if it has the correct security key).
So avoid putting your MAC address in peripheral refused. ;-) If this is the case, you have 2 options : the network cable or reset button to access again the router or access point Wifi.

Share this tutorial

Partager
Tweet

Comments

You must be logged in to post a comment

Share your opinion

Pinned content

  • Useful softwares
  • Our programs
  • Terms and conditions
  • Share your opinion

InformatiWeb Pro

  • Win. Server administration
  • Linux Administration
  • Virtualization

Contact

  • Guest book
  • Technical support
  • Contact

® InformatiWeb.net 2008-2022 - © Lionel Eppe - All rights reserved.

Total or partial reproduction of this site is prohibited and constitutes an infringement punishable by articles L.335-2 and following of the intellectual property Code.