Once your WiFi access gets out into the Internet (world), it can be difficult to protect your home wireless network from hackers and intruders. We explain a few simple tips to you for protecting your home network from the outside world. The main concern about the WiFi networks is that unlike physical networks, WiFi network can extend beyond the walls of your home. If your password compromised for any reasons, it is very difficult to control who can access your home network. Therefore, you need to consider to accomplish a few changes that protect you from intruders.
1- Change the default router’s login credentials
Every WiFi router has a default username and password for gaining access to the configuration web page, usually “admin” is the default value for both the username and password. You can change the default credentials from the router’s administration web page.
2- Keep the router’s firmware up to date
You should update the router’s firmware once you install it. The latest version of firmware assures you from the most common security bugs and problems.
3- Change the default Network Name (SSID)
Routers manufactures often use their brand name in the default network name (SSID), so everybody who can see your WiFi name knows your home router’s brand. Knowing the router’s brand is 20% of hacking procedure. so you should change your home router’s default name (SSID) once you install the router.
4- Change the default router’s IP address
Like the login credentials , every router has a default IP address for initial configuration (usually 192.168.0.1 or 192.168.1.1 ) , unfortunately , most users never change that and put themselves in a great danger. The first think intruders do after penetrating your network is to check whether this IP address is accessible or not. Consider in mind finding the router’s IP address is most important hacker’s goal.
5- Using strong WiFi password
Every client should use a password to connect to your network, this password can be a simple one like “mypassword” or a complex one “MyP@ssw0rd” . the simple passwords can easily reveal by using the free password hacking tools available in the internet web sites, it means every amateur hacker can penetrate to your home network , if you choose a simple password.
At the other hand, the password’s security option is too important, because there are a few security options available on any routers like WEP,WPA,WPA2. The WPA2 is the most secure one for home routers. In conclusion you should use a complex WPA2 password to having a secure network.
6- Disable WPS
WPS is a security option in every home router, which allow the clients to connect to the network by pushing a button in the router and the client device simultaneously. WPS is a very simple way for connecting devices to the network , BUT there is a security issue behind it, which enables the hackers to penetrate to your home network. So make sure to keep this option off.
7- Turn off the remote access
The web console of a router should only be accessible from the local network only. However, a standard router setting enables remote access. It means that you can access the router’s web console over the internet, from another location. Unfortunately, if you can do that, the intruders can do also. So, turn off the remote access option.
8- Turn on the firewall
The firewall is a common security option in home routers and should always be enabled. The firewall is working as a guard between your home network and the internet, when you enable the firewall, most of well-known network attacks will be prevented and, in addition, no users can access directly to your home network’s devices from the internet but your local users can access the internet freely, so you have a reasonable level of security and privacy. But in some cases, you should publish a home network’s device to the internet to be accessible from everywhere, like your home surveillance system or some gaming systems.in such cases you should change the firewall settings and use the DMZ and virtual server items.
9- Disable router’s DHCP server
This step is a recommendation, not a necessary step. The every client need an IP address within the local network’s range to be able to connect to other network’s devices. By default, your router provides an IP address to each client automatically by the DHCP server system.so , if the Hacker penetrates to your network , obtain an IP address from DHCP server and then find out the Router and other devices’ IP Addresses . It’s a good idea to disable the DHCP and allocate IP addresses manually. this step may be a bit difficult for non-specialist users, but you can get help from your internet provider help desks.
10- Mac filtering
Enabling the MAC filtering is another security recommendation, MAC address is a low-level identity of any network device. The MAC address is a static and unique value in HEX format which is burned on the network adapter’s chipset. The MAC Filtering option lets you to limit the router serve a group of predefined network devices, based on their MAC address. First you should find your network devices MAC addresses, and then you can make a list known as “Allowed List” of your home network devices’ MAC Addresses and then enable the MAC Filtering option.