With the broadband speed-up of various operators, wireless has become the first choice for home networking. People really feel: wireless is good! Moreover, manufacturers also try their best to make the settings of wireless routers humanized, so as to help uncles and aunts easily set up home wireless networks, but when it comes to how to make home wireless networks more secure? Many aunts have made difficulties again and think that the safety protection operation is too complex and difficult to set up. Now let's learn. Xiaobian will introduce six tips to ease home wireless network security.
Jokes about WiFi:
▲ this guy has WiFi
Step 1: encrypt the wireless network
When we get any home wireless router, the first thing to do is to set up the basic settings of wireless routing. In the process of setting, the wireless network must be encrypted, which is the most basic and important setting to protect the wireless network.
The method is as follows: in the web configuration interface of wireless routing, find the option of "wireless network encryption" in the "Wireless Settings" menu; If the user's wireless route has the functions of "quick setting wizard", you can also set the wireless network encryption in the "Wizard".
▲ wireless network encryption
Generally, there are three common wireless encryption methods: WEP encryption, WPA encryption and WPA2 encryption. It should be noted that the three wireless encryption methods have different effects on the transmission rate of wireless network. Due to ie802 The 11n standard does not support the high throughput of unicast password encrypted by WEP (or TKIP encryption algorithm). Therefore, if the user selects WEP encryption or TKIP algorithm encrypted by wpa-psk / wpa2-psk, the wireless transmission rate will automatically fall to the 11g level (the theoretical value is 54Mbps, and the actual test result is about 20MBps).
Now users basically use 11n wireless products (150m or 300m), so the wireless encryption method can only choose the AES algorithm encryption of wpa-psk / wpa2-psk, otherwise the wireless transmission rate will be automatically reduced. If users use 11g products, the three encryption methods can be well compatible, but we do not recommend that you choose WEP, which is older and easier to remove.
Second move: modify the default user name and password
Some users may not set up wireless encryption. We need to modify the default login user name and password of the wireless router. Why do you do this? The reason is very simple, because the default user name and password of the wireless router of the same model or even the same manufacturer are almost the same. With only a few attempts to configure the wireless user interface, you can easily enter the wireless network. Therefore, modifying the default user name and password is also necessary to protect the security of wireless network.
The setting method is as follows:
▲ modify the default user name and password
After modification, click apply, and then save. When logging into the web interface of the wireless router again, you need to enter a new user name and password.
Third trick: close or modify SSID name
SSID is the name of the wireless network that appears when searching for a wireless network. For enterprise users, this name is to facilitate employees to find and connect to their enterprise's wireless network, but for individual home users, disclosing SSID will only attract illegal intruders. Therefore, turning off SSID broadcasting is also a good way to improve wireless network security.
Of course, you can also modify the SSID name. If you continue to use the default SSID names such as "D-Link", "TP-LINK" and "tolink", it will be easy for others to guess.
▲ modify SSID name or turn off SSID broadcast
After turning off SSID broadcasting, how can users know which wireless network to connect to? The method is very simple. Users only need to refresh the wireless network list, and then they will see a wireless connection without name (blank). Double click it and enter the personalized SSID name and wireless key that only you know in the pop-up window.
Fourth trick: turn off DHCP server
DHCP is a function of automatically assigning IP address to users connected to wireless network, which saves the trouble of manually setting IP address.
Once the DHCP function is turned off, the illegal user who wants to connect to your wireless network cannot automatically assign an IP address, so he has to enter the IP address manually. In order to prevent the illegal user from easily guessing the IP address segment of the wireless route, we must also modify the default IP address of the wireless route. At this time, if illegal users want to connect to the network, they must try each IP address segment one by one, which is very troublesome. Therefore, it is recommended that you turn off the DHCP function and modify the default IP address.
▲ disable DHCP and modify the default address
So how can users connect to the wireless network after turning off the DHCP function of wireless routing? Very simple, just manually set the IP address of the wireless network card.
▲ manual setting
The manually entered IP address can be kept in the same IP address segment as the IP address of the wireless router. For example, if the modified IP address of the wireless router is 192.168.23.1, the IP address of the wireless network card can be set to 192.168.23 X (X represents any number from 2 to 254); The default gateway is the same as the IP address of the wireless route.
After completing the above four basic settings, your wireless network has become more secure, but if you want to improve the security protection ability of wireless network at home, we can also make the following settings:
Fifth move: turn on MAC address filtering
Mac is the abbreviation of media access control address. MAC address is the unique address given to each device by the manufacturer when producing network equipment. The first 24 digits identify the manufacturer of the network card. The identification produced by different manufacturers is different, and the last 24 digits are the serial number of the network equipment designated by the manufacturer.
Turn on the "MAC address filtering" function of the wireless router and enter the MAC address allowed to connect to the network in the MAC address list. In this way, the uniqueness of the MAC address can be used to effectively prevent illegal users.
▲ turn on the MAC address filtering function
So how to view the MAC address of the wireless network card? The method is as follows: find the "wireless network connection" icon in "network connection", right click - > status, and select "support - > details". The "actual address" is the MAC address of your wireless network card.
▲ check MAC address
In addition, users can also click "start" - > Run - > Enter "CMD" in the text box of the pop-up "run" window in the taskbar, and then click "OK"; Enter "ipconfig / all" in the command window and press enter. At this time, the MAC address can also be found in the displayed results.
▲ check MAC address
When enabling the MAC address filtering function, be sure to see whether the filtering mode is "allowed" or "prohibited". Different manufacturers have different filtering modes.
How about the security protection of home wireless network is actually very simple? With just five simple moves, the wireless network security protection standard will be improved. However, for ordinary "rub network" users, the protection effect of these settings is still very excellent. Besides, hackers won't patronize ordinary home networks. All right, try it.