Notice: Firmware Links Under Maintenance We are currently undergoing maintenance on all firmware links. If any links are inaccessible, please email or contact Tech Support for the firmware. We appreciate your patience during the maintenance, thank you for your understanding.
Difference between revisions of "Cyber Security/Secure Router or Modem"
(→Links and Resources) |
(→Wireless Security) |
||
| Line 30: | Line 30: | ||
====Radius==== | ====Radius==== | ||
====Wireless Security==== | ====Wireless Security==== | ||
| + | The wireless security settings, in decreasing order of preference, should be the pre-shared key versions of the following: | ||
| + | 1. WPA2 + AES | ||
| + | 2. WPA + AES (only if all devices support it). | ||
| + | 3. WPA + TKIP (maximum security commonly supported by older wireless adapters - can be cracked as well) [3] [4] | ||
| + | 4. WEP (easily cracked in 5 minutes) | ||
| + | 5. Disabled (no security. Use some other security layer on top, like a VPN) | ||
| + | |||
| + | -Source [https://www.dd-wrt.com/wiki/index.php/Index:FAQ DD-WRT Wiki] | ||
| + | |||
====MAC Filter==== | ====MAC Filter==== | ||
====WL0-Advanced==== | ====WL0-Advanced==== | ||
Revision as of 20:15, 12 October 2016
Contents
How to Create a More Secure Network
Recommended Router Models
- A router with DD-WRT installed. You can locate devices that have DD-WRT support on DD-WRT's website here.
Notes About DD-WRT
- This software will add many more features to your router, and should only be used by experienced professionals
- Flashing DD-WRT can potentially brick your router, so make sure to follow any instructions carefully
- This guide will not cover all DD-WRT features, only those pertinent to securing your network, and security device
- Menu's might be different in your router depending on your version of DD-WRT
Links and Resources
- DD-WRT FTP: Click Here
- PuTTY: Click Here
- MVPs Blacklist: Click Here
- Ad Blocking DNS
- DD-WRT Ad-Blocking
Setup
Basic Setup
IPV6
DDNS
MAC Address Clone
Advanced Routing
VLANS
Networking
EoIP Tunnel
Wireless
Basic Settings
Radius
Wireless Security
The wireless security settings, in decreasing order of preference, should be the pre-shared key versions of the following: 1. WPA2 + AES 2. WPA + AES (only if all devices support it). 3. WPA + TKIP (maximum security commonly supported by older wireless adapters - can be cracked as well) [3] [4] 4. WEP (easily cracked in 5 minutes) 5. Disabled (no security. Use some other security layer on top, like a VPN)
-Source DD-WRT Wiki
MAC Filter
WL0-Advanced
WL0-WDS
WL1-Advanced
WL1-WDS
Services
Services
FreeRadius
PPPoE Server
VPN
VPN: Definition
A VPN or Virtual Private Network, is used to remotely access your network. This feature will basically allow your computer to remotely connect to your LAN as if that computer was physically on that network.
VPN Configuaration
If you are not using this feature, disable all VPN settings, including:
- IPSec Passthrough
- PPTP Passthrough
- L2TP Passthrough
USB
NAS
Hotspot
SIP Proxy
Adblocking
Security
Firewall
VPN Passthrough
Access Restrictions
WAN Access
NAT/QOS
Port Forwarding
Port Range Forwarding
Port Triggering
UPnP
DMZ
QoS
Administration
Management
Keep Alive
Commands
WOL
Factory Defaults
Firmware Upgrade
Backup
Status
