Before you do anything else, you should go to your wireless router or access point and login to it’s internal configure page. All routers and access points today have web pages where you can login to configure the wireless network name, the password to login, etc. Notice one thing. When you login to that configuration web page, was the password easy to guess? Was it anything other than ‘admin \ admin’ or something like that? Change the default administrative password used to login to the access point or router if it is easy to guess. If possible, change the login name as well. When you change the default password, you’re hardening the security of your wireless network.
Consider physical positioning of the wireless access point
Take your smartphone outside with you and do a little bit of WiFi surveying. See how far outside your home your WiFi signal extends. Consider, could someone malicious access my network from outside the window? What about from the street? How about across the street? try to position the access point or router in the center of your home. WiFi signals degrade over physical space and as they pass through obstacles like walls. Ideally, if positioned central, your wireless signal won’t broadcast past the external walls of your home.
Encrypt with WPA2
It’s very easy to crack WEP encryption. It can be broken within minutes. Use WPA2 to encrypt your wireless network. But don’t think you’re safe just yet. Consider, is the password to access your WPA2 network easy to guess? Do you think it could be cracked?
Don’t just rename your SSID, don’t even broadcast it!
An SSID is the name of your WiFi network as you see it when you’re looking for devices to connect. If you are using a default SSID, change it. Hacker scan download huge lists of default SSIDs to speed up their cracking attempts.
If you’re especially paranoid, you can configure your wireless router or access point to not even broadcast the network name. That means you would need to type in the network name AND the password, but it does provide some level of security through obscurity.
Assign static IP addresses to all the connecting devices.
Most WiFi routers and access points use something called DHCP to give IP address automatically to connecting devices. DHCP usually draws from a large pool of available addresses, so malicious users could easily obtain access to the network if they cracked the password. Turn DHCP off and assign static IP addresses to all the devices you want to connect. By creating a whitelisting, you guarantee that only the devices YOU know about can connect. It takes a bit of time to organize and set up, but for home users with few connecting devices, it works well.
Use MAC Filtering
Take it a step further with MAC filtering. Similar to assigning static IP addresses to devices, you can specify their MAC addresses so only valid MAC addresses can connect. This offers twice the security than just relying on static IP assignment.
Use the WiFi AP’s firewall
To protect against inbound internet threats, enable and configure the access point or router’s firewall. Consider purchasing a dedicated firewall appliance if you want even greater security (and control.
How that you know some simple steps to secure your WiFi connection, learn how to hack it as well at http://freehowtohackwifi.com!