D
DavidJ726
I've just replaced my Netgear 4-Port router with a Linksys Wireless WRT54GS
router. I have 2 desktop PC's and a TiVo that are always connected to the
router via CAT-5, and on a very infrequent occasion, an X-Box that also
connects to the router via CAT-5. It's the recent addition of a laptop with
built-in wireless capability that prompted me to go with a wireless router,
and now that I am wireless, I'm a little more concerned about security (than
I have been) and have a few questions.
What I've done so far, is changed the router name & password, disabled SSID
broadcast, enabled the wireless MAC list so only the laptop is permitted to
access to the wireless network, set the max # of DHCP users to the minimum
amount I need, and am using WEP 64 encryption. Remote WAN management is
also disabled. I tried changing the subnet mask, but I was then locked out
of the router and had to reset it to factory defaults in order to gain
access to it again. In my opinion, changing anything from the default
setting can only be beneficial, so I wonder why I wasn't able to change the
subnet...?
The 2 Desktops are running XP Pro W/SP1 and the Laptop is running XP Home
W/SP1 also. Microsoft's ICF is off and all 3 PC's are running ZA Pro 4.5.
For simplicity, I named the Zone in ZA to be the same as the Workgroup I set
up in Windows on all 3 machines, and it's set up as a trusted zone. Out of
necessity, I've also enabled F&P sharing on all 3 PC's.
When I run Shields up at Steve Gibson's site, ports 0-1056 are completely
stealthed, and the port tests I ran at DSLReports.com, although not as
intensive, show all TCP & UDP ports as silent.
So I feel I'm pretty secure, but I'm also wondering how much of this is a
false sense of security? What else should I be concerned about, or consider
adjustments to? I guess I could utilize WPA security, and I'm not sure why
I haven't yet, maybe because of something I've read?...
Also, I assume that disabling SSID is meaningless against someone who is
bound and determined to hack into my little home network, and that disabling
it just really "hiding" me from local neighbors in an apartment complex that
are casually looking to jump on someone else's network?
Thanks for your thoughts.
David...
router. I have 2 desktop PC's and a TiVo that are always connected to the
router via CAT-5, and on a very infrequent occasion, an X-Box that also
connects to the router via CAT-5. It's the recent addition of a laptop with
built-in wireless capability that prompted me to go with a wireless router,
and now that I am wireless, I'm a little more concerned about security (than
I have been) and have a few questions.
What I've done so far, is changed the router name & password, disabled SSID
broadcast, enabled the wireless MAC list so only the laptop is permitted to
access to the wireless network, set the max # of DHCP users to the minimum
amount I need, and am using WEP 64 encryption. Remote WAN management is
also disabled. I tried changing the subnet mask, but I was then locked out
of the router and had to reset it to factory defaults in order to gain
access to it again. In my opinion, changing anything from the default
setting can only be beneficial, so I wonder why I wasn't able to change the
subnet...?
The 2 Desktops are running XP Pro W/SP1 and the Laptop is running XP Home
W/SP1 also. Microsoft's ICF is off and all 3 PC's are running ZA Pro 4.5.
For simplicity, I named the Zone in ZA to be the same as the Workgroup I set
up in Windows on all 3 machines, and it's set up as a trusted zone. Out of
necessity, I've also enabled F&P sharing on all 3 PC's.
When I run Shields up at Steve Gibson's site, ports 0-1056 are completely
stealthed, and the port tests I ran at DSLReports.com, although not as
intensive, show all TCP & UDP ports as silent.
So I feel I'm pretty secure, but I'm also wondering how much of this is a
false sense of security? What else should I be concerned about, or consider
adjustments to? I guess I could utilize WPA security, and I'm not sure why
I haven't yet, maybe because of something I've read?...
Also, I assume that disabling SSID is meaningless against someone who is
bound and determined to hack into my little home network, and that disabling
it just really "hiding" me from local neighbors in an apartment complex that
are casually looking to jump on someone else's network?
Thanks for your thoughts.
David...