Secure Wireless HomeSecure Wireless Home Networks
Area 2 SIRPresentationNov. 18, 2004Nov. 18, 2004
Dean Steichen Br. 8
T pical Home Comp te Set pTypical Home Computer Setup
And No T o o mo e PC’sAnd Now - Two or more PC’s
One a to connect themOne way to connect them
Anothe Wa to ConnectAnother Way to Connect
Internet Connection Sharing (ICS)g ( )
Yet anothe a to net o kYet another way to network
Why???
----
My Recommended Home Net o k La o tNetwork Layout
Benefits of a Home Net o kBenefits of a Home Network
Share Internet Access (2 or more PC’s)Share devices (printers, webcams,Share devices (printers, webcams, scanners, CD & DVD drives, etc.Share or exchange files and dataShare or exchange files and data storageBackup other computer’s dataBackup other computer s dataOthers
T pical Home Net o ksTypical Home Networks
Wired (Ethernet)Two or More PC’sMixed PC Types (Mac IBM etc ) and Op SystemsMixed PC Types (Mac, IBM, etc.) and Op Systems
WirelessOne or more computersOne or more computersMixed PC Types and Op Systems
Combination of Wired and WirelessOne or more computersMixed PC types and Op Systems
Essentials for Internet Access Sha ingSharing
If you use my Recommended Layout and a Cable Modem, it should work “out of the b ” If DSL M d illbox”. If you use a DSL Modem, you will have to program your Router with your account ID and Password so it can “login”account ID and Password so it can loginThe default settings provide you with Network Address Translation (NAT) DHCPNetwork Address Translation (NAT), DHCP, and usually implement minimal input or output filteringp g
Net o k Add ess T anslationNetwork Address Translation
Share one Internet Address with several Local PC’s
T pical Home Net o k NATTypical Home Network NAT
Or by DHCP of Router
Router
Dynamic Host Configuration P otocol (DHCP)Protocol (DHCP)
DHCP enables the residential gateway, 4-port Router or ICS to assign IP addresses to client computers automatically.By default, when a 4-port Router or ICS is installed, the DHCP service begins s sta ed, t e C se ce beg ssupplying addresses to computers on the network.
Essentials fo Home Net o kEssentials for Home Network
Each computer must have a unique nameEach computer must use the same
Workgroup nameWorkgroup name Files and/or directories (folders) to be shared must be setup to be shared on the computermust be setup to be shared on the computer which hosts the file..each WIN xx does it a little differentlyDevices to be shared must be setup to be shared on the computer which hosts the device (e g printer)device (e.g. printer)
File and P int Sha ing Set pFile and Print Sharing Setup
WIN XP use “Network Setup Wizard”WIN 2000, and others ???WIN 2000, and others ???WIN 98se use “Settings, Control Panel, Network [Configuration IdentificationNetwork, [Configuration, Identification and Access Control]”
Accessing Your Other Comp te ’s Files & De icesComputer’s Files & Devices
WIN XP “Start, My Network Places, and select a file, directory, etc.”WIN 98se “Network Neighborhood, select Computer name and select se ect Co pute a e a d se ectshared files and directories”
Recommended Wired Home Net o k Sec itNetwork Security
Wh Wi eless?Why Wireless?
Convenience no wires to run to PC’s, Easy to install
Fle ibilitFlexibility full PC mobility throughout house & Laptops
Cost (2 PC’s)Cost (2 PC s)Under $50 for 802.11B (11Mb/sec)Under $100 for 802.11G (54 Mb/sec)
SecurityAdequate if configured correctly (change SSID, Use WEP and now WPA)Use WEP and now WPA)
Wireless Requirements(Minim m)(Minimum)
Broadband Network Service (Cable / DSL)
Cable/DSL ModemWireless Network Adaptor for each
t PC/l tremote PC/laptopWireless Access Point( usually USB connection for administration)OR WIN XP with ICS
Minim m Wi eless Set pMinimum Wireless Setup
Typical Wireless Home Net o kNetwork
Common T pes of Wi elessCommon Types of Wireless
802-11A802-11B (11Mbps - Most common)802 11B (11Mbps Most common)802-11G (54Mbps - backwards compatible to B)compatible to B)802-11 SuperG and variantsO hOthers
Bluetooth
Net o k SpeedsNetwork SpeedsA R l T f TiA prox R eal Transfer T im es:
Com m on N am e U sed W ith Tim e to Transfer 1 M egabyte Tim e to transfer 50 M egabytes
28.8K bps M odem s 6-12 M in 4.8-9.6 H rs
56.6K bps M odem s 3-6 M in 2.4-4.8 H rsp
128K bps ISD N 1-3 M in 1-2.1 hrs
460K bps Som e Cable M odem s 22-43 Sec 18-36 M in
1M bps H om ePN A 1.0**, Som e Cable M odes 10-20 Sec 8-16 M in
1.6M bps H om eRF** 6-13 Sec 5-10 M in
10M bps Ethernet, H om ePN A 2.0** 1-2 Sec 50-100 Sec
100M bps Fast E thernet 1 Sec 5-10 Sec*
H ow fast is it (real world)?
A full strength 802.11b signal w ill get you about 3.5-4.5 M bps w ithout W EP enabled. W ith W EP enabled, expect 2.5-3.5 M bps. A s you put w alls and distance betw een your w ireless adapter and your access point, your speed w ill drop. D on’t expect to put m ore than a few w alls betw een you and your access pointand your access point.
Recommended Wireless Config ationConfiguration
4 Port Wireless Router 802.11G(Combination of Wireless Access Point and 4 (
Port Router for Wired Connections)Provides Firewall Protections -- Address
Translation (NAT), DHCP, VPN Pass-through, Content Filtering, Domain Bl ki S h d li WEP d thBlocking, Scheduling, WEP, and other security features.
Essential Wi eless Ha d a eEssential Wireless Hardware
4-Port Router Front 4-Port Router Rear
USB Wireless Adaptor PCI Wireless Card USB Wireless Adaptor
My Recommended Home Net o k La o tNetwork Layout
An Example of 4-Port Wireless Ro teRouter
Wi eless Sec it Conce nsWireless Security Concerns
Broadcast of your data for others to seeProvide Internet Service to others in your neighborhoodAccess to your network and computers by outsiders thru your Wireless Access Point which is behind your Router (Fi ll)(Firewall)Other ???
What can be done to Secure o Wi eless Home Net o kyour Wireless Home Network
Use a Wireless Router instead of just a Wireless Access PointChange the default SSIDDisable Broadcast of the SSIDDisable Broadcast of the SSIDUse 128 Bit or higher WEP encryption U WPA i if il blUse WPA encryption if available
Wi eless Ro te Config ationWireless Router Configuration
READ THE MANUALRouter Usually accessed using your Browser (Internet Explorer, Netscape, etc.)Use address of http://192.168.0.1 with Browser (usual default addr. for Router)Or “Telnet 192.168.0.1” at a cmd prompt
Sample Ro te LoginSample Router Login
Ro te Config ation (cont 2)Router Configuration (cont. 2)
Enter your default userid and passwordMy Netgear uses “admin” for the default userid
d “1234” f th d f lt dand “1234” for the default password
Use the Setup Wizard if it is availableF ll th t h th id dFollow the menu to change the userid and passwordFollow the menu to change the SSID and toFollow the menu to change the SSID and to enable WEP encryption and/or WPA
Sample Ro te Main MenSample Router Main Menu
Ro te Config ation (Cont 3)Router Configuration (Cont. 3)
Remember that you must change each Wireless PC to match the SSID and the WEP Encryption when you change them at the Router.I suggest you not change any of the defaults until you have at least one de au ts u t you a e at east o ewireless PC working with the defaults.
Sample Router Wireless Config ation Sc eenConfiguration Screen
Use your own SSID
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
SSID and WEP Key########################@@@@@@@@@@@@@@@@@@@@@@@@@@
Sample Wi eless Ro te DHCPSample Wireless Router DHCP
Note my choice of range
Common Wi eless B andsCommon Wireless Brands
LinksysNetgearNetgearDlinkBelkinBelkinMicrosoftothers
Wi eless Home Net o k LinksWireless Home Network Links
http://www.homenethelp.com/home-network.asphttp://www homenethelp com/http://www.homenethelp.com/http://www.homenethelp.com/web/diagram/index aspdex.asphttp://www.homenethelp.com/web/howto/net.asphttp://www.cert.org/tech_tips/home_networks.html
Q estions?Questions?
Top Related