Securing your Linksys Wireless Router BEFW11S4 Abstract



Similar documents
Securing your Linksys WRT54G

Question How do I access the router s web-based setup page? Answer

Configuring Your Network s Security

Configuring Your Network s Security

9 Simple steps to secure your Wi-Fi Network.

Chapter 3 Safeguarding Your Network

Configuration. Windows 98 and Me Configuration

Linksys Wireless G WRT54G

STEP III: Enable the Wireless Network Card. STEP IV: Print out the Printer Settings pages to determine the IP Address

How To Set up and Configure the WNA-100 Wireless Network Adapter

Setting up a WiFi Network (WLAN)

WiFi-SB-L3 300M WiFi Router WiFi Bridge WiFi Repeater. WiFi Router WiFi Repeater WiFi Bridge WiFi-SB-L3 Quick Setting Guide

CONNECTING THE RASPBERRY PI TO A NETWORK

Enabling Multiple Wireless Networks on RV320 VPN Router, WAP321 Wireless-N Access Point, and Sx300 Series Switches

Click Main on the left hand side then click on Password at the top of the page.

MN-700 Base Station Configuration Guide

Figure 1. The Motorola SB4200 cable modem

Self Help Guide. Enable wireless and wireless security on your Belkin VoIP modem/router.

Preparing the Computers for TCP/IP Networking

Setting Up Your Wireless Network

Configuring Wireless Security on ProSafe wireless routers (WEP/WPA/Access list)

Chapter 2 Wireless Settings and Security

A Division of Cisco Systems, Inc. GHz g. Wireless-G. Access Point with SRX. User Guide WIRELESS WAP54GX. Model No.

Securing Your Wireless Network

STEP III: Enable the Wireless Network Card

Wi-Fi Settings Guide. Model No. SP 212/SP 213 Series

United States Trustee Program s Wireless LAN Security Checklist

Manual Wireless Extender Setup Instructions. Before you start, there are two things you will need. 1. Laptop computer 2. Router s security key

Table of Contents. Cisco Wi Fi Protected Access 2 (WPA 2) Configuration Example

SETTING UP REMOTE ACCESS ON EYEMAX PC BASED DVR.

D-Link DAP-1360 Repeater Mode Configuration

USER GUIDE AC2400. DUAL BAND GIGABIT Wi Fi ROUTER. Model# E8350

Link Link sys E3000 sys RE1000

Connecting to Wireless in Windows Vista

How to configure your Thomson SpeedTouch 780WL for ADSL2+

Chapter 1 Configuring Internet Connectivity

Customer Installation Guide NBG-4615 v2 ZyXEL Wireless Router

How To Connect Xbox 360 Game Consoles to the Router by Ethernet cable (RJ45)?


User Guide. E-Series Routers

WiFi Security Assessments

Chapter 2 Configuring Your Wireless Network and Security Settings

Linksys WAP300N. User Guide

Quick Installation Guide DAP Wireless N 300 Access Point & Router

WAP3205 v2. User s Guide. Quick Start Guide. Wireless N300 Access Point. Default Login Details. Version 1.00 Edition 2, 10/2015

Quick Start Guide. WRV210 Wireless-G VPN Router with RangeBooster. Cisco Small Business

Step-by-Step Setup Guide Wireless File Transmitter FTP Mode

Quick Installation Guide DIR-620. Multifunction Wireless Router Supporting GSM, CDMA, WiMAX with Built-in 4-port Switch

Installing a Westell USB Network Adapter

Connecting to the Internet. LAN Hardware Requirements. Computer Requirements. LAN Configuration Requirements

Frequently Asked Questions

A Division of Cisco Systems, Inc. GHz g. Wireless-G. USB Network Adapter with RangeBooster. User Guide WIRELESS WUSB54GR. Model No.

Lab Configuring Access Policies and DMZ Settings

Step-by-Step Setup Guide Wireless File Transmitter

Functionality Added in M-480 Ver. 1.6

DATA PROJECTOR XJ-A146/XJ-A246/XJ-A256

StarMOBILE Network Configuration Guide. A guide to configuring your StarMOBILE system for networking

PePWave Surf Series PePWave Surf Indoor Series: Surf 200, AP 200, AP 400

Assign a static IP address for your computer. Please refer to the T3 in Troubleshooting guide if you need assistance.

Using the Client Encryption Manager

LevelOne WAP User s Manual. 108 Mbps Wireless Access Point

DATA PROJECTOR XJ-A135/XJ-A145/XJ-A235/ XJ-A245

Apple AirPort Extreme (ME918ZP/A) Router Guide (MAC OS version)

DWL-2000AP. Before You Begin. Check Your Package Contents

NBG2105. User s Guide. Quick Start Guide. Wireless Mini Travel Router. Default Login Details. Version 1.00 Edition 1, 11/2012

Sweex Wireless BroadBand Router + 4 port switch + print server

Self Help Guide IMPORTANT! Securing Your Wireless Network. This Guide refers to the following Products: Please read the following carefully; Synopsis:

Wireless-N Broadband Router

ALL0237R. Wireless N 300Mbit Access Point/Repeater. User s Manual

Wireless-G Access Point

N300 WiFi Range Extender WN2000RPT User Manual

DSL-2600U. User Manual V 1.0

FiOS Quantum TM. Gateway GUEST WI-FI SETUP GUIDE FOR BUSINESS CUSTOMERS

Quick Installation Guide DSL-2750U/NRU. 3G/ADSL/Ethernet Router with Wi-Fi and Built-in Switch

Chapter 6 Using Network Monitoring Tools

Linksys E2500 Wireless-N Router Configuration Guide

Setting Up and Connecting the Wireless-G Ethernet Bridge

VIVA 4G LTE Mini Router. Quick Start Guide

WRE2205. User s Guide. Quick Start Guide. Wireless N300 Range Extender. Default Login Details. Version 1.00 Edition 1, 06/2012

INFORMATION TECHNOLOGY. Revised May 07. Home Networking Guide

Module 6, Assignment 5

Configuring the wireless security of your Linksys Wireless-N router through the web-based setup page

Apple Airport Extreme Base Station V4.0.8 Firmware: Version 5.4

Mobile Router MR600 User Guide

Configure WorkGroup Bridge on the WAP131 Access Point

Step-by-Step Setup Guide Wireless File Transmitter FTP Mode

Using LAN Wi-Fi (WLAN) 3-2 Connecting Wi-Fi Devices via Wi-Fi (WLAN) 3-3 Connecting Windows 3-5 Connecting Mac 3-8

PIXMA MX920. series. Setup Guide

A Division of Cisco Systems, Inc. Wireless-G. User Guide. Broadband Router WIRELESS WRT54GL (EU/LA) Model No.

BASIC INSTRUCTIONS TO CONFIGURE ZYXEL P8701T CPE USING THE WEB INTERFACE

Diamante WiFi Wireless Communication User Guide. Linksys E1200

NETVIGATOR Wireless Modem Setup Guide. (TG789Pvn)

NNAS-D5 Quick Installation Guide

Wireless-G. User Guide. GHz g. A Division of Cisco Systems, Inc. WIRELESS. Model No.WRT54GP2

Fibe Internet Connection Hub Reference Guide

Integrating a Hitachi IP5000 Wireless IP Phone

Interlink Networks Secure.XS and Cisco Wireless Deployment Guide

Wireless-G. GHz g. Broadband Router with 2 Phone Ports. Installation and Troubleshooting Guide WRT54GP2. VoIP

DI-634M. Check Your Package Contents. This product can be set up using any current web browser, i.e., Internet Explorer 6 or Netscape Navigator 7.

Wireless Encryption Protection

Transcription:

Securing your Linksys Wireless Router BEFW11S4 Abstract Current implementations of the 802.11b wireless LAN standards have several potential pitfalls for security. However, built in security mechanisms in the 802.11b protocol can be used to mitigate most security risks. Out of the box, the Linksys default configuration is insecure. This paper examines how to configure the Linksys Wireless Access Point (BEFW11S4) in a manner which will improve the security of the of your Wireless LAN Introduction Wireless networks are becoming increasingly common due to the ease and cost of deployment of the LAN using wireless technologies. Wireless networks provide different challenges than wired networks, especially in securing data in transit between the client and the wireless access point. The wireless standard, 802.11b provides mechanisms for securing wireless data, and despite the limitations of the standard when the provided mechanisms are deployed and maintained in a systematic manner data can be secured against all but the most determined and patient attacker. This paper describes security strategies for the Linksys Wireless Access Point (WAP), model BEFW11S4, Version 2, and the Linksys Instant Wireless Network Adapter Version, model WCP11, version 3. This paper assumes the user is familiar with the Linksys web-based management interface, and how to use a web browser. Configuration Recommendations For the Linksys Wireless Access Point I recommend the following configuration settings to secure your wireless LAN. 1. Reset admin password 2. Reset default SSID 3. Disable SSID Broadcast 4. Change from default channel 5. Enable WEP with 128 bit key 6. Change Authentication Type to Shared Key The following sections will describe why and how you should do these steps. Reset Admin Password From the factory the Linksys WAP comes with a default password of admin. The Linksys WAP uses a web based interface, and this interface is accessible to anyone on your network. Because this is a wireless network, anyone who can access your network 1/7

will be able to access the GUI interface and attempt to make changes. By setting the password we will at least be able to prohibit unwelcome users from reconfiguring the WAP. The password is reset from the password tab. The password can be up to 63 characters. Figure 1 Linksys Password Screen The next three items are all on the setup tab of the GUI. Reset Default Service Set Identification (SSID) The service set identification (SSID) defines a network name for your wireless network. In order to communicate the WAP and the client s wireless interface must specify the same SSID. The Linksys WAP comes with a default SSID of linksys The SSID is easily sniffable, but changing it will at least deter the casual attacker. The SSID can be up to 32 characters in length. 2/7

Figure 2 Default Linksys Setup Screen Disable SSID Broadcast By default 802.11b broadcasts the SSID to the network to assist devices in finding the network. By default the Linksys WAP enables SSID broadcast. In a closed SOHO configuration this should be disabled. Change Channel By default Linksys is set to channel 6. Although it is a minor bit of obscurity it is a good idea to switch to a different channel so a wireless interface in the default configuration cannot access your network. Enable Wired Equivalent Privacy (WEP) By default 802.11b broadcasts network traffic in the clear. WEP is link-layer encryption designed to provide confidentiality to the wireless network. WEP has some flaws which limit its effectiveness, but WEP provides adequate protection to deter all but the sophisticated and patient attacker. In order to enable WEP, the WEP configuration needs to be set to Mandatory and the key set. The following figure shows the settings on the Setup tab after the above have been done. 3/7

Figure 3 Proper Settings Linksys Setup Screen Setting the WEP Key Linksys supports both 64-bit or 128-bit encryption. Because of WEPs inherent limitations, it is best to use the 128-bit encryption option. To set the WEP key, click the WEP Key Setting button on the main setup page. The default is 64-bit WEP. Start by changing the setting to 128-bit, that will result in a transformation of the page to that in figure 5 below. 4/7

Figure 4 Default WEP Key Setting Screen 128 Bit To generate a key you can use two methods. Either a manual key, or through entering of a passphrase. I suggest the passphrase method since it is easier to remember, and duplicate. The passphrase can be up to 31 characters long. Enter the passphrase and then press the Generate button. 5/7

Figure 5 WEP Key Setting Screen 128 Bit Shared Secret Authentication The Linksys WAP supports three authentication setting; open systems authentication, shared-key association, and both. Open systems authentication permits any client to use the WAP as long as they know the SSID. Shared-key authentication uses the WEP key as a shared-key to be exchanged between the client and the WAP as a simple form of authentication. WEP must be enabled to use shared-key authentication. The both setting permits either or these methods to work. The default method in the Linksys WAP is Both. The authentication type is changed by going to the Advanced tab and then the wireless tab and selecting Shared Key from the Authentication Type drop down menu. Figure 6 Authentication Type Setting Screen 6/7

Maintenance According to research, the limitations of the WEP encryption mean that the key can be derived if five to six million packets are captured and analyzed. If you want to ensure the security of your data changing your WEP key regularly should be part of your maintenance steps. I would recommend changing it once a week or more depending on usage. References Linksys Corporation, BEFW11S4 Version 2 - Wireless Access Point Router with 4-Port Switch User Guide, 2002 Craiger, Phillip J., 802.11, 802.1x, and Wireless Security, June 23, 2002, URL: http://rr.sans.org/wireless/802.11.php 7/7

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information