Configuring a SOHO Wireless Router

Question 1

Wireless channels and encryption

Answer 1

• Configure for the highest encryption possible

* Choose WPA2-AES over WPA or WEP

Question 2

NAT

Answer 2

• SOHO devices do this automatically

* Source NAT, also called PAT

Question 3

Port Forwarding

Answer 3

• 24x7 access to a service hosted internally
• External IP/port number maps to an internal IP/port
• Also called Destination NAT or Static NAT

Question 4

Port Triggering

Answer 4

• Similar to a port forward, but not static
• Internal client communicates externally on a particular port
• Reverse port forward is dynamically created
• Only one person can trigger at a time

Question 5

IP Addressing

Answer 5

• DHCP (automatic) IP addressing vs. manual IP addressing

* IP addresses are easy to see in an unencrypted wireless network

Question 6

Firewall and DMZ ports

Answer 6

• Every SOHO router is also a firewall

* DMZ ports can be configured to allow unrestricted access

Question 7

Managing QoS (Quality of Service)

Answer 7

• Change the priority of your traffic

* Prioritize applications, ports, or MAC addresses

Question 8

Firmware updates

Answer 8

• Can have dramatic change on wireless performance

* May improve compatibility with chipsets from other devices

Question 9

UPnP (Universal Plug and Play)

Answer 9

• Automatically configure and find other network devices
• Applications on the network can open inbound ports using UPnP
• Best practice would be to disable UPnP