Securing A SOHO Network

Question 1

SSID Management

Answer 1

• Service set identifier
  
  • Name of the wireless network
  • Linksys , DEFAULT , Netgear

-Change the SSID to something less obvious

• Disable SSID Broadcasting
  
  • SSID is easily determined through wireless network analysis
  • Security through obscurity

Question 2

Wireless Encryption

Answer 2

• All wireless computers are radio transmitters & receivers
  
  • Anyone can listen
• Solution : Encrypt the data
  
  • Every user gets the password
• Only people with the password can transmit & listen
  
  • WPA & WPA2 never WEP

Question 3

Power level Controls

Answer 3

• Usually a wireless configuration
  
  • Set as low as you can
• Consider the receiver
  
  • High-gain antennas can hear a lot
  • Location , location , location

Question 4

MAC address Filtering

Answer 4

• Media Access Control
  
  • The hardware address

-Limit access through physical hardware address

• Easy to find working MAC address through wireless LAN analysis
  
  • MAC address can be spoofed
  • Free open-source software

Question 5

Using WPS

Answer 5

-Wifi Protected setup
Originally called Wifi simple config

-Allows “easy” set up of a mobile device

• Difference ways to connect
  
  • Pin
  • Push button on access point
  • Near Field Communication
  • USB - no longer used

Question 6

Firewall Settings

Answer 6

• Inbound traffic
  
  • Extension filtering & firewall rules
  • Only allow required traffic
  • Configure port-forwarding to map TCP/UDP port to a device
  • Consider building a DMZ
• Outbound Traffic
  
  • Blocklist (allow all , stop only unwanted traffic)
  • Whitelist (block all , allow only certain traffic types)