Securing my wireless network.

[SneakyStuff]

I live in close proximity to other homes in a college neighborhood and my roommate recently purchased a wireless router. It is important to me that I get my network secured because my name is on the internet bill and I don't want my mooch neighbors (who have yet to even sign up for an internet package) to be downloading as they please.

The router is Linksys WRT54GS Linksys website

I Googled the subject and I was under the impression all I had to do was enter the wireless tab, select WEP as my means of security, enter in a password, and use the generated key as the network login for my roommates. I tested this on my laptop and when I enter in the network key the login takes upwards of 1-2 minutes and results in limited or no connectivity. When I remove the WEP and save settings as "none" on wireless security my laptop picks up the signal at excellent strength.

My roommate uses a Belkin USB adapter Belkin website. When I enable the WEP he no longer recieves the internet at all.

Both of us are connecting through Dell computers if that means anything at all. Any help at all would be greatly appreciated!!!

 

[xSauronx]

1: if you get limited or no connectivity your keys are probably not matching between the router and the pc
2: use WPA-AES or WPA2 and try again, WEP is lousy.
3: set wifi to channel 1, 6 or 11 for best performance (i think the default on those is probably 6 anyway, but its worth being sure)

4: search the network forum. this comes up 2 or 3 times a week and youll find enough info on wifi security to give you something to read for an hour o two

 

[imported_snikt]

Here are the basics of securing your wi-fi short of setting up RADIUS.

Basics

 

[SneakyStuff]

Originally posted by: xSauronx
1: if you get limited or no connectivity your keys are probably not matching between the router and the pc
2: use WPA-AES or WPA2 and try again, WEP is lousy.
3: set wifi to channel 1, 6 or 11 for best performance (i think the default on those is probably 6 anyway, but its worth being sure)

4: search the network forum. this comes up 2 or 3 times a week and youll find enough info on wifi security to give you something to read for an hour o two

Changing the channel to 1 and using WPA-AES with a new key resulted in an excellent connection for my laptop and the connection now shows up as secured, going to cross my fingers and check my roommates comp. Thank you so far though!!!

 

[Nuwave]

Originally posted by: SneakyStuff

Originally posted by: xSauronx
1: if you get limited or no connectivity your keys are probably not matching between the router and the pc
2: use WPA-AES or WPA2 and try again, WEP is lousy.
3: set wifi to channel 1, 6 or 11 for best performance (i think the default on those is probably 6 anyway, but its worth being sure)

4: search the network forum. this comes up 2 or 3 times a week and youll find enough info on wifi security to give you something to read for an hour o two

Changing the channel to 1 and using WPA-AES with a new key resulted in an excellent connection for my laptop and the connection now shows up as secured, going to cross my fingers and check my roommates comp. Thank you so far though!!!

Thanks for posting a follow-up. Always good to hear what resolved an issue.

 

[JackMDS]

From the weakest to the strongest, Wireless security capacity is.

No Security
MAC______(Band Aid if nothing else is available).
WEP64____(Easy, to "Break" by knowledgeable people).
WEP128___(A little Harder, but "Hackable" too).
WPA-PSK__(Very Hard to Break).
WPA-AES__(Not functionally Breakable)
WPA2____ (Not functionally Breakable).

Note 1: WPA-AES the the current entry level rendition of WPA2.

Note 2: If you use WinXP and did not updated it you would have to download the WPA2 patch from Microsoft. http://support.microsoft.com/kb/893357

The documentation of your Wireless devices (Wireless Router, and Wireless Computer's Card) should state the type of security that is available with your Wireless hardware.

All devices MUST be set to the same security level using the same pass phrase.

Therefore the security must be set according what ever is the best possible of one of the Wireless devices.

I.e. even if most of your system might be capable to be configured to the max. with WPA2, but one device is only capable to be configured to max . of WEP, to whole system must be configured to WEP.

If you need more good security and one device (like a Wireless card that can do WEP only) is holding better security for the whole Network, replace the device with a better one.

Setting Wireless Security - http://www.ezlan.net/Wireless_Security.html

The Core differences between WEP, WPA, and WPA2 - http://www.ezlan.net/wpa_wep.html

 

[SneakyStuff]

Now totally resolved, my roommates problems stemmed from the "Linksys Wireless Manager" he installed from the box. That disabled Windows wireless configuration for some reason. Uninstalled, everything's tip top now!

 

[oldtechie]

Suggest you also disable broadcast of the SSID fron the router. Then your WAP may show up on a scan for network access points, but the ID will be hidden

 

[jlazzaro]

Originally posted by: oldtechie
Suggest you also disable broadcast of the SSID fron the router. Then your WAP may show up on a scan for network access points, but the ID will be hidden

that along with MAC filtering will just cause instability and headaches...they provide no real means of security. forget them both.

Jack/Scott - where is a sticky to cover these types of basics? this forum has been in need of one for as long as i can remember.

 

[oldtechie]

If you REALLY want to screw it down tight, enable Wireless MAC filtering, allow yours and your roomie's PC's MAC addresses, and change the router password to something only YOU know. You're paying the bill after all...............

 

[kevnich2]

MAC Filtering, disabling SSID will do nothing but cause you headaches. Forget that and just put in WPA with AES or WPA2 and you'll be set.

I would change the SSID if you have a bunch of other similar SSID's around you, as it'll confuse your client (eg, linksys is a very common ssid)

 

[oldtechie]

Originally posted by: jlazzaro

Originally posted by: oldtechie
Suggest you also disable broadcast of the SSID fron the router. Then your WAP may show up on a scan for network access points, but the ID will be hidden

that along with MAC filtering will just cause instability and headaches...they provide no real means of security. forget them both.

Jack/Scott - where is a sticky to cover these types of basics? this forum has been in need of one for as long as i can remember.

Don't know what you've got against disabling the SSID or using MAC filtering. I use both with a Linksys WRT54G so all my neighbors don"t even see my net ID, and only the "allowed" PC's can get in, just in case somebody gives away the security setup and password.

 

[jlazzaro]

Originally posted by: oldtechie

Originally posted by: jlazzaro

Originally posted by: oldtechie
Suggest you also disable broadcast of the SSID fron the router. Then your WAP may show up on a scan for network access points, but the ID will be hidden

that along with MAC filtering will just cause instability and headaches...they provide no real means of security. forget them both.

Jack/Scott - where is a sticky to cover these types of basics? this forum has been in need of one for as long as i can remember.

Don't know what you've got against disabling the SSID or using MAC filtering. I use both with a Linksys WRT54G so all my neighbors don"t even see my net ID, and only the "allowed" PC's can get in, just in case somebody gives away the security setup and password.

spoofing a mac address takes 2 minutes, and disabled SSID's are never really hidden or disabled. they are both false senses of security.

 

[mcmilljb]

Originally posted by: jlazzaro

Originally posted by: oldtechie

Originally posted by: jlazzaro

Originally posted by: oldtechie
Suggest you also disable broadcast of the SSID fron the router. Then your WAP may show up on a scan for network access points, but the ID will be hidden

that along with MAC filtering will just cause instability and headaches...they provide no real means of security. forget them both.

Jack/Scott - where is a sticky to cover these types of basics? this forum has been in need of one for as long as i can remember.

Don't know what you've got against disabling the SSID or using MAC filtering. I use both with a Linksys WRT54G so all my neighbors don"t even see my net ID, and only the "allowed" PC's can get in, just in case somebody gives away the security setup and password.

spoofing a mac address takes 2 minutes, and disabled SSID's are never really hidden or disabled. they are both false senses of security.

But it does keep out the stupid people...

 

[spidey07]

Originally posted by: mcmilljb
But it does keep out the stupid people...

And using WPA with a decent key will prevent anybody from connecting to your network.

There is simply no good reason to use what is considered very bad practice - disabling SSID and using mac filtering. It's pointless and not needed, causing more problems than it was intended to solve.

 

[SpunkyJones]

Originally posted by: oldtechie

Originally posted by: jlazzaro

Originally posted by: oldtechie
Suggest you also disable broadcast of the SSID fron the router. Then your WAP may show up on a scan for network access points, but the ID will be hidden

that along with MAC filtering will just cause instability and headaches...they provide no real means of security. forget them both.

Jack/Scott - where is a sticky to cover these types of basics? this forum has been in need of one for as long as i can remember.

Don't know what you've got against disabling the SSID or using MAC filtering. I use both with a Linksys WRT54G so all my neighbors don"t even see my net ID, and only the "allowed" PC's can get in, just in case somebody gives away the security setup and password.

Waste of time, I can still see your router even with SSID shut off if I lived next door to you. MAC filtering isn't worth the time it takes to set it up.