Wireless Networking, Part 2: Setup and Security

The first installment in this two-part series of Tech Tips provided an introduction to the basic capabilities and hardware involved in wireless networking. In the final installment of this two-part series, we will look at some of the basic setup and security considerations that should be addressed. The physical installation of a wireless network may be easier than a wired network, but the more difficult part is setting up the software and security to make sure everything stays up and running without incident.

Although this Tech Tip is by no means an exhaustive resource on configuring a wireless network, it will provide information and pointers that can be applied to most typical installations. Many of these tips are general enough that they may provide some good advice for those utilizing wired networks as well.

For the sake of this article, we will assume that the hardware has been successfully installed physically, and that the user is now prepared to set up and secure the system through software. Wireless devices, especially routers / access points, generally include a web-based configuration utility that allows the user to customize the hardware to meet their needs. The hardware will most likely work with minimal configuration, but to make it work so that the integrity of the network is protected may take a few more steps.

In addition to the configuration interface provided with the wireless networking hardware, Microsoft has integrated a "Wireless Network Setup Wizard" with the release of Windows XP Service Pack 2 that will lead a user of any expertise through the installation of their network. In addition, the "Microsoft Broadband Network Utility" will help them monitor and maintain the network just as easily once it is set up.

Change Default Password

Routers, whether wired or wireless, require a password for configuring the various settings, and all of them ship with extremely simple default passwords. The first step taken in setting up the router should be to change the default password to something more difficult to guess. Longer passwords that use a combination of letters and numbers are preferable as they make hacking attempts that much more difficult.

Change Router IP Address

Most routers ship with a default IP (Internet Protocol) address, something like 192.168.1.1, which is utilized by the user for accessing the configuration utility interface, as well as by the network itself for negotiating the LAN and WAN connections. The configuration utility of most routers will include a page that will allow for the default IP address to be manually changed by the user. Although changing the default IP address doesn't provide a great amount of security since it can easily be discovered anyway, it may deter intrusion by local users that may be casually scanning the network.

Configure Router or Access Point Use

In the first part of this series of Tech Tips, I mentioned that almost all routers intended for home use can also double as wireless access points, and this is generally accomplished by clicking a check box within the control panel software. If a wireless router is being added to a network with an existing router and broadband connection, the new device needs to be set to access point mode. Otherwise, there could be a conflict as the network may not know where to expect the internet connection, since it will now have two routers that both want to serve as the gateway. If the wireless router is replacing an existing router, or is the only one on the network, this should not be an issue as these devices generally ship configured to operate as a router by default.

Broadcasting the SSID

The SSID, or Service Set Identifier, is basically the name assigned to a particular wireless network. The user can choose just about any name they want, as long as it is less than 32 characters long, and they just need to be sure that all computers on the network are configured to use the same name. Two steps related to the SSID can be taken to help improve the security of the network:

First, change the default SSID to a unique name that includes a combination of letters and numbers that doesn't reveal anything personal about you or your network. Second, disable the broadcast of the SSID once all of your computers are successfully connected, even if your router / access point recommends broadcasting it. I have used a few wireless routers, and all of them have a check box in the control panel for enabling/disabling the broadcast of the SSID, and they have all recommended leaving broadcasting enabled. Broadcasting the SSID allows new computers to easily find your network, and then all they have to do is access it given the proper credentials. Broadcasting your SSID puts it out there for anyone within range to see, and it just allows would-be hackers to get one step closer to compromising your security. In a home environment, there are probably few computers that need to access the network, and if more are ever added, you can temporarily enable the broadcast to get them set up.

DHCP Server

The DHCP (Dynamic Host Configuration Protocol) Server is a feature of most routers that makes adding new computers extremely simple. Whenever a new computer connects to the network, the router will assign an IP address to it, instead of the user having to assign an IP address to each manually while sitting at that particular computer. This makes configuring a network very easy, but it also leaves the network vulnerable, as any new computer detected will be welcomed to the neighborhood and assigned an IP address automatically. Two different approaches can be taken to improve security, as related to the DHCP server:

One method, and the best as far as security is concerned, is to disable the DHCP server. This will require that all computers that are authorized to connect to the network be configured manually, but it will prevent unauthorized computers from obtaining an IP address. The second method, which doesn't provide bulletproof security, is better than doing nothing. In general, a DHCP server can support up to 250 computers, and by default leaves a range of addresses readily available for that many to connect. If disabling the DHCP server doesn't seem convenient for a user, they can limit the DHCP server to only provide as many IP addresses as they know they need. If you know there will never be more than five computers connected, limit the range of available IP addresses to a total of five within the configuration utility.

Different Levels of Encryption

All wireless components support some sort of encryption, which simply scrambles the information being sent across the network so that it can not easily be read by anyone else connected to the network. There are different types and levels of encryption, and a brief overview is provided for them below:

WEP, or Wireless Equivalency Protocol, was the first format of encryption available on wireless networks. WEP allows the network administrator to assign an encryption string to be shared by all computers authorized to access the wireless network. The encryption through WEP is either 64bit, 128bit, or 256bit, where the higher number represents greater encryption, and the strings can be generated by the administrator as a series of letters and numbers.

WPA, or "Wi-Fi Protected Access," is an improvement over WEP that starts off with a similar master encryption string and then mathematically derives encryption keys to keep the security dynamic. WPA continually changes the encryption keys used for each packet of data, and due to the extra processing required to support this protocol the overall throughput of the connection may suffer slightly. Despite the potential for decreased speed, WPA is considered to be far more robust than WEP, and should be implemented where possible. In some instances, WEP encryption has actually been defeated, making WPA all that more appealing.

Although most components support both of these encryption formats, and users can select the type they wish to use from within the control software, not all do. All devices on the network must be set to operate at the same level of encryption, which may mean that some devices will force others to be less secure than they are capable of. For example, a wireless network setup around this router (http://www.geeks.com/details.asp?invtid=DI-824VUP&cat=NET) could support either WEP or WPA encryption. When two computers are added to this network using one of these network adaptors (http://www.geeks.com/details.asp?invtid=WN-4054P&cat=NET) in one case, and one of these network adaptors (http://www.geeks.com/details.asp?invtid=PBW006-N&cat=NET) in the other case, things change. Note that the second adaptor does not support WPA; therefore the whole network must now be configured to use WEP to accommodate it.

Router Position

As discussed in the first part of this Tech Tip, wireless devices can have a range of up to a few hundred feet in free space. When installed inside a home, this range may decrease greatly due to walls, floors and other obstructions, but the signal may still be strong enough to carry beyond the confines of the dwelling. A simple step that may help reduce the strength and reach of the network signal outside the house is to position the router / access point as close to the center of the house as possible. The potential for someone to detect the network from outside the home when positioned like this is now much less than if the router was placed near a window, for example.

Final Words

There are definitely additional issues that could be considered when setting up a wireless network, but covering these basics will make a wireless network much more secure than it was straight out of the box. Many people are confident that no one would be interested in their home network and feel security is just one more headache of technical mumbo-jumbo that they would rather not deal with. Whether a hacker wants access to personal files on the network or to simply gain unauthorized access to the Internet, a few simple steps are worth the peace of mind to know you are as secure as possible.

Jason Kohrs
Computer Geeks tech tips and computer help.

---

Google News Updated : Tue, 07 Oct 2008 14:49:35 GMT Senator Warned a Friend That Jail Was a Risk - New York Times New York Times Senator Warned a Friend That Jail Was a Risk New York Times - 2 hours ago By NEIL A. LEWIS WASHINGTON - The day after the FBI confronted Bill Allen, an Alaska oil services millionaire, with evidence that he had tried to bribe state lawmakers, he reached out to Senator Ted Stevens by telephone to discuss how their ... Stevens unplugged: a defiant, salty health nut The Associated Press “I Love You, You Know,” and More Revelations from the Stevens Trial Wall Street Journal Blogs Anchorage Daily News (subscription) - Los Angeles Times - Bradenton Herald - CNN all 485 news articles Publ.Date : Tue, 07 Oct 2008 12:35:08 GMT OTC Cold Medicines to Be Relabeled for Young Children - Wall Street Journal ChattahBox OTC Cold Medicines to Be Relabeled for Young Children Wall Street Journal - 33 minutes ago By JENNIFER CORBETT DOOREN WASHINGTON -- Companies making over-the-counter cold and cough medicines have agreed to stop marketing the products to children younger than 4 as part of an effort to reduce accidental overdoses, an industry trade group said ... Video: Cold Meds Under Fire, Again CBS ALERT: Drug Companies Warning to Parents WXYZ SYS-CON Media - Washington Post - WebMD - Bloomberg all 850 news articles Publ.Date : Tue, 07 Oct 2008 14:15:50 GMT Kenya Detains US Author Critical of Obama - New York Times Malaysia Star Kenya Detains US Author Critical of Obama New York Times - 1 hour ago By JEFFREY GETTLEMAN NAIROBI, Kenya - The American author of a best-selling book highly critical of Senator Barack Obama was detained by Kenyan immigration agents on Tuesday as he prepared to give a press conference in Nairobi. Kenya Detains Author of Anti-Obama Book Voice of America US anti-Obama book author faces Kenya deportation: officials AFP The Associated Press - CNN International - CollegeOTR - Right Pundits all 351 news articles Publ.Date : Tue, 07 Oct 2008 13:00:27 GMT Study: Using fan on sleeping baby reduces risk of SIDS - San Jose Mercury News ChattahBox Study: Using fan on sleeping baby reduces risk of SIDS San Jose Mercury News - 2 hours ago By Linda Goldston Ayde Gonzales's mother was surprised when she insisted that her newborn son must sleep on his back, not on his side. Fans May Reduce Babies' Risk of Sudden Infant Death Syndrome Bloomberg Fan in Room Seems to Cut Infants’ Risk of Crib Death New York Times Wall Street Journal - Chicago Sun-Times - eFluxMedia - U.S. News & World Report all 573 news articles Publ.Date : Tue, 07 Oct 2008 12:46:19 GMT McCain, Obama question each other's character in latest campaign ads - Baltimore Sun BBC News McCain, Obama question each other's character in latest campaign ads Baltimore Sun - 3 hours ago By Paul West | paul.west@baltsun.com Washington - The presidential contest turned increasingly nasty yesterday as Sens. Barack Obama and John McCain launched new personal attacks ahead of the second presidential debate. Video: AP Campaign Minute AssociatedPress The Note: McCain Brings Attack to Second Debate ABC News Los Angeles Times - New York Times - BBC News - Reuters all 4,527 news articles Publ.Date : Tue, 07 Oct 2008 11:47:50 GMT Police say Kentucky woman kills self, daughters - Forbes WNCT Police say Kentucky woman kills self, daughters Forbes - 1 hour ago AP 10.07.08, 9:30 AM ET Police were still trying to determine Tuesday why a Louisville woman apparently stabbed her two school-age daughters to death and then shot herself. Police say Kentucky woman kills self, daughters The Daily Advance Police say Louisville woman kills self, daughters KVOA.com The Associated Press - AHN - Louisville Courier-Journal - WLKY all 282 news articles Publ.Date : Tue, 07 Oct 2008 13:38:46 GMT IMF Urges Coordinated Action, Sees US Losses at $1.4 Trillion - Wall Street Journal BBC News IMF Urges Coordinated Action, Sees US Losses at $1.4 Trillion Wall Street Journal - 1 hour ago By TOM BARKLEY WASHINGTON -- With losses on bad US assets alone expected to top $1.4 trillion, the International Monetary Fund urged global policy makers Tuesday to coordinate a response to an unprecedented financial crisis that continues to spread. IMF warns of deeper slowdown amid crisis Reuters IMF in 'severe downturn' warning BBC News ABS CBN News - AFP - International Monetary Fund - Times Online all 383 news articles Publ.Date : Tue, 07 Oct 2008 13:21:55 GMT Clickbank Content Legitimate Work From Home Jobs

PARLOT::Ebooks, Scripts, Websites, and more...

Adsense websites

Would You Like An Extended Warranty With That?

Should you buy an extended warranty with your laptop? You... Read More

Electronic Schematics Diagram-The Four Commonly Asked Questions

I came across quite a number of questions about electronic... Read More

Coping with a Serious Data Loss from your Computer Hard Drive

Data loss is an expensive reality. It's a hard fact... Read More

Got The Message that You Need New Ink Cartridges?

We all know what it is like when that message... Read More

Does Size Really Matter In Our Digital Age?

Well, we've all seen the advert, but that's not what... Read More

Laptop Security -Where?d My Laptop Go?

Laptops are lovely. They are convenient, mobile, powerful and prestigious.... Read More

Dusting Your Computer - Keeping it Cool

My mother always told me to dust, but I never... Read More

A Look Inside The Elusive Inkjet Industry

The Inkjet printer industry is booming. Office supply companies report... Read More

ABCs Of DVD Drive Abbreviations

The number of different formats available in DVD drives can... Read More

Used Laptop Computer: Your Quick Purchase Inspection Guide ? Part 4

Used laptop computers are everywhere these days. How can you... Read More

Two Essential Accessories For Notebook Computers

A Good Notebook BagForget those that are bundled with your... Read More

Your Hard Drive is Going to Explode ? Why a UPS is Essential

It's most peoples worst computing nightmare. You wake up in... Read More

Choosing The Right Bar Code Reader

The importance of a bar code reader in this day... Read More

Where Can I Find The Best Case Mods Online and Save Money?

Are you captivated by the stunning Case Mods you've seen... Read More

High Definition DVD

High definition DVD, also known as HD-DVD (which actually stands... Read More

Intel Celeron vs Pentium

The Celeron and Pentium Processors are two of Intel's best... Read More

A Review of Refurbished HP Laptops

HP refurbished laptops can be found on their website hpshopping.com.... Read More

Adding USB 2.0

The process of adding USB 2.0 ports took no time... Read More

Protecting Your Computer From Power Surges, Data Loss, Viruses, And Spyware

Protecting Against A Power Surge:Your computer is an expensive investment;... Read More

Five Band Resistor Color Code-What Does The Last Band Of White Color Represent?

In electronic repair, most of the time i came across... Read More

Nvidia Geforce 7800 GTX Review

Nvidia has done it again, with it's newest video card,... Read More

How To Take Care Of Your Laptop Computer

As the proud owner of a laptop computer, you'll want... Read More

How to Get the Case Off Your PC!

This is the first step to servicing, upgrading or removing... Read More

How to Purchase a Flat Panel TV

When purchasing a flat panel TV, there are a few... Read More

Small Computers

Today, small form factor computers demolish the myth that bigger... Read More