There are various methods to increase the security on your wireless access points:
- Implement some form of user authentication.
- Implement a security protocol that requires over-the-air data encryption.
- Update ﬁrmware on the device to implement any manufacturer security patches and enhancements.
- Restrict unauthorized devices from connecting to the WAP by ﬁltering out unauthorized MAC addresses.
- Disable DHCP on the WAP and use static IP addressing instead.
- Implement a ﬁrewall. For a small office or home office, enable a ﬁrewall on the WAP, and then also on the host computer to further secure your network.
- Change the default user name and password for the WAP.
- Protect the SSID by changing it from the default setting or by disabling SSID broadcasts.
- And, conﬁgure vendor-recommended security settings on your wireless router or access point.
MAC address ﬁltering provides a simple method of securing a wireless network. By conﬁguring a Wireless Access Point to ﬁlter MAC addresses, you can control which wireless clients may join your network. Typically, an administrator conﬁgures a list of client MAC addresses that are allowed to join the network. Those preapproved clients are granted access if the MAC address is “known” by the access point. While MAC ﬁltering is usually implemented on wireless networks, it can also be used on wired networks.
DHCP settings must be conﬁgured properly for your wireless network in order to avoid providing valid IP addresses to outside parties. By using static addressing on your Wireless Access Point, you can restrict access to speciﬁed addresses only.
Firmware Updates for Wireless Routers
Some wireless routers have ﬁrmware that can be updated to include the latest security features and enhancements released by manufacturers.