Having a wireless network offers a convenient way to access a network services without being chained to one location by cables and wires. But as with every network topology, there are security risks associated with using the topology. It is more so in the case wireless networks so network administrators have to take special steps to secure wireless connections.
It is not hard to find an unsecured Wi-Fi connection outside many businesses and dwellings. While it isn’t against the law to use an unprotected wireless connection, it is important that individuals and businesses realize the need to make their own wireless networks secure from unauthorized access. Security becomes even more important when there are valuable resources on the network, or the data service is being billed on a per megabyte basis.
Wireless connections can be secured using the following steps:
Use WPA Instead of WEP Encryption
Encryption protocols are used to make network traffic more secure by encoding data packets that are transmitted thereon. Unfortunately, some wireless routers don’t have encryption enable or use the weaker WEP (Wired Equivalency Privacy) security protocol.
It is well known that WEP security keys are easy to break and therefore network administrators should use the WPA or WPA2 protocols. Even if a router doesn’t support the more secure WPA or WPA2 protocols, WEP should be used; it is better than nothing.
Install a Firewall on Every Computer and Server
A firewall is the most basic and fundamental network security measure there is to secure wireless networks. While Wi-Fi routers can be used to extend the range of networks, they also make the network more vulnerable. A firewall will need to be installed on every computer to ward off security threats. This should be done even if the wireless router has a firewall installed on it also.
Use a VPN
VPNs (virtual private networks) are used to create secure channels, through which data can be safely transmitted. Companies generally use VPN to connect remote offices or to allow mobile and offsite employees to securely connect to the company’s network, and are usually flexible enough to operate over any data transmission medium, including wireless technologies such as Wi-Fi. There are also personal VPN solutions such as AlonaWeb and UltraVPN that can be considered.
Reduce the Transmitter Power of Network Access Points
Part of the convenience of using wireless networks is the ability to access services remotely. This strength also becomes it weakness, because others can see, and potentially use the network as well, especially when a powerful transmitter/antenna is being used.
To limit how far outside the premises the wireless signal travels, reduce the power output of wireless antennas. This requires some tweaking to find the right setting, because reducing the signal output of antennas also reduces the network’s service delivery and quality.
Disable Remote Administration
WLAN (wireless local area network) routers often come with the ability for a network administrator to remotely configure the router. By default, this feature is usually turned off and should stay that way if remote administration is not absolutely necessary. While network administrators can usually set passwords, to secure access to the router’s control panel, leaving the feature enabled could leave the network vulnerable as well.
Remove or Disable Weak Passwords and Access Codes
Ensure that all default passwords and access codes that come preset on network equipment are changed or disabled. Access the router’s web interface and update all settings that have a bearing on network security. Be sure the use strong passwords as well.
Physically Secure your Wireless Network Equipment
Hardware devices typically come with a hard reset button. Making network equipment readily available to be physically handled by anyone who wishes to do so puts the network at risk. Secure all critical and sensitive equipment in rooms or equipment racks.
Don't Broadcast the Network’s SSID
To allow for the easy setup of wireless clients, most wireless access points will broadcast the SSID (Service Set IDentifier), or network name. While broadcasting the SSID makes setting up wireless clients easier, it also makes WLANs visible to wireless devices that are within range, including those that are malicious. Turn off SSID broadcast to make the network invisible and more secure.
Simple Wireless Network Security
Ensuring that a wireless network is secure is an ongoing responsibility. Wireless network threats, such as those posed by hackers and viruses can be thwarted by some common sense approaches such as physically securing network equipment and using strong encryption methods and technologies. However, the most effective security measures are those that seek to cover all the known security vulnerabilities.
Steve McFarlane - I am a professional freelance writer who is passionate about bringing quality and relevant content to my audience of readers. I strive to ...
Join the Conversation