您的路由器是网络上最重要的实体之一。它位于本地网络和Internet之间。它也可以配置为防火墙(configured as a firewall),以保护您的办公室局域网或家庭网络。这篇文章为您提供了保护路由器的五个提示。它还有一个额外提示,可以为路由器和Wi-Fi添加更多保护。
如何保护您的 WiFi 路由器
这是您将在下面阅读的内容的一瞥。
- 路由器的好密码
- 更新固件
- 使用 WPA2 或更高版本的方法加密
- 定期更改 Wi-Fi 密码
- 禁用 WPS
- 过滤 MAC(Filter MAC)地址(媒体访问控制(Media Access Control))地址。
1]使用一个好的密码
让我们从最基本的事情开始——更改路由器密码。路由器(Router)制造商保留默认 ID“admin”,密码为“password”。在将路由器以及整个家庭或办公室网络连接到Internet之前,您必须更改它。
要登录路由器,请打开浏览器并在其地址栏中输入 192.168.1.1。在 ID 文本框中输入“(Enter “) admin”,在密码文本框中输入“password”。如果这不起作用,请使用“admin”作为 ID 和密码。您也可以在 ID 和密码字段中尝试“密码”。输入 ID 和密码时不要包含引号。如果您在登录路由器时仍然遇到问题,请通过谷歌搜索路由器的品牌和型号,或联系制造商的在线支持系统索取。
为您的路由器创建一个好的密码。至少使用 12 个字符:大小写字母、一些数字和一些特殊字符的组合。不要使用弱密码——包括您配偶的姓名、您的公寓或地块号码、您所在地区的密码。所有这些都很容易被黑客破解,因此请使用更好的密码。
我建议在您的浏览器中使用诸如Lastpass之类的(Lastpass)密码管理(password managers)器之一,这样即使您忘记了密码,您也可以让他们登录。如果是密码管理器,您只需要记住主密码。
2]更新固件
此方法也需要登录路由器。您的路由器地址是我们上面提到的 192.168.1.1。您必须在浏览器的地址栏中输入数字。进入路由器页面后,登录。从侧面或上部菜单列表中,查找“备份”选项。它也可能被命名为“更新(Update)”。
单击(Click)选项以升级路由器。这将要求您从计算机存储中选择一个文件。选择“浏览”并找到路由器固件更新文件。点击(Click)“应用”。最新固件由设备制造商在其网站上提供,需要下载到您的计算机上。如果您在路由器制造商的网站上找不到它,请致电他们并询问固件升级的链接。
大多数路由器会自行升级,但较旧的路由器仍需手动升级。通过升级您的路由器,您可以添加更多保护:针对已知问题的最新错误修复和补丁。
3]使用WPA2或更高版本的方法加密 Wi-Fi(Encrypt Wi-Fi)
此选项也可通过路由器控制面板页面使用。您必须登录并转到包含使用WEP、WPA或WPA2加密文件的选项的页面。始终(Always)选择WPA2或更高版本的选项。在这篇文章中提到的三个中,WPA2对您的(WPA2)Wi-Fi来说是最安全的。
4]更改(Change)Wi-Fi的默认名称和密码
您应该更改您的默认 Wi-Fi 名称和密码。您还应该定期更改此设置。这将有助于从您的Internet连接中删除不需要的行李。其他人可能会因个人需要而在您的Internet连接上存钱。您可以使用谁在我的 Wi-Fi 上?等(Who is on my Wi-Fi?)软件查明是否有任何不需要的连接。
更改密码可能意味着再次登录您的 Wi-Fi 设备,但它也有助于以人们使用您的Internet连接来满足他们的需要的形式摆脱不需要的包袱。
阅读(Read):如何检查您的路由器是否被黑客入侵(How to check if your Router is hacked)。
5]禁用Wi-Fi保护设置
某些路由器和设备带有启用Wi-Fi Protected Setup的开关。Wi-Fi 保护设置(Wi-Fi Protected Setup)通常称为WPS。该方法似乎比将密码泄露给客户更容易。但该方法容易受到暴力攻击,并可能让黑客侵入您的路由器并从那里侵入您的 Wi-Fi。
阅读(Read):如何修复公共和家庭 Wi-Fi 网络漏洞。
6]过滤MAC(Filter MAC)地址(媒体访问控制(Media Access Control))地址
您网络上的每台设备都有一个MAC(媒体访问控制)地址(MAC (Media Access Control) address)。它类似于 IP 地址,但实际上是一个单独的地址,用于识别计算机网络上的设备。查看您希望连接到路由器的所有设备。记下它们的MAC地址并配置您的路由器,以便只有具有指定MAC地址的设备才能连接到您的Internet。
并不是说MAC ID(MAC IDs)不能被欺骗。黑客可能会欺骗MAC地址,但首先,他们需要知道MAC地址才能在他们的设备上创建一个类似的地址,为此他们必须访问您的路由器。
我希望以上内容有所帮助。在下面发表评论,让我们了解更多保护路由器的方法。
How to secure and protect your WiFi Router
Your router is one of thе mоst important entities on уour network. It sits between the local network and the Internet. It can be configured as a firewall too, to protect your office LAN or home network. This post gives you five tips to secure your router. It also has a bonus tip to add more protection to the router and Wi-Fi.
How to secure your WiFi Router
Here is a glimpse of what you are going to read below.
- Good password for the router
- Update firmware
- Encrypt using WPA2 or later methods
- Change password for Wi-Fi regularly
- Disable WPS
- Filter MAC addresses (Media Access Control) addresses.
1] Use a good password
Let’s start with the most basic thing – changing the router password. Router manufacturers keep the default ID “admin” and password as “password”. You have to change it before you connect the router, and thereby your whole home or office network, to the Internet.
To log into the router, open your browser and type 192.168.1.1 in its address bar. Enter “admin” in the ID textbox and “password” in the password textbox. If that doesn’t work, use “admin” for both ID and password. You may also try “password” in both ID and password fields. Do not include the quotes when typing in the ID and password. If you still have problems logging into your router, google with the router make and model or ask for it by contacting the manufacturer’s online support systems.
Create a good password for your router. Use at least 12 characters: a combination of upper- and lower-case letters, some numbers, and some special character. Don’t use weak passwords – including your spouse’s name, your flat or plot number, pin code for your area. All these can be easily broken by hackers so go for better passwords.
I recommend using one of the password managers such as Lastpass to your browsers so that you can have them log you in even if you don’t remember your passwords. You need to remember the master password only, in case of password managers.
2] Update Firmware
This method too requires logging into the router. Your router address is 192.168.1.1 that we’ve mentioned above. You have to enter the numbers into the address bar of your browser. Once on the router page, log in. From the list of side or upper menu, look for the “Backup” option. It may also be titled “Update”.
Click on the option to upgrade the router. This will ask you to select a file from your computer storage. Select “Browse” and find the router firmware update file. Click on “Apply”. The latest firmware is provided by your devices’ manufacturer on their website that needs to be downloaded to your computer. If you can’t find it on the website of your router manufacturer, call them up and ask for the link to the firmware upgrade.
Most routers upgrade themselves, but older routers still have to be manually upgraded. By upgrading your router, you are adding more protection: the latest bug fixes and patches for known issues.
3] Encrypt Wi-Fi using WPA2 or later methods
This option too is available via the router control panel page. You have to log in and go to the page that contains the option to encrypt files using WEP, WPA, or WPA2. Always select WPA2 or later options. Of the three mentioned in this post, WPA2 is most secure for your Wi-Fi.
4] Change the default name & password for Wi-Fi
You should change your default Wi-Fi name and password. You should also change this regularly. That will help the unwanted baggage to be removed from your Internet connection. It may happen that someone else is piggy banking on your Internet connection for personal needs. You can find out if there are any unwanted connections using software like Who is on my Wi-Fi?
Changing the password may mean logging into your Wi-Fi devices again, but it also helps in shedding unwanted baggage in the form of people using your Internet connection for their needs.
Read: How to check if your Router is hacked.
5] Disable Wi-Fi Protected Setup
Some routers and gears come with a switch that enables Wi-Fi Protected Setup. Wi-Fi Protected Setup is generally known as WPS. The method may seem easier than giving away your password to clients. But the method is susceptible to brute force attacks and may let hackers hack into your router and from there, into your Wi-Fi.
Read: How to fix Public and Home Wi-Fi Network vulnerabilities.
6] Filter MAC addresses (Media Access Control) addresses
Every device on your network has a MAC (Media Access Control) address. It is like IP addresses but is actually a separate address to identify devices on your computer network. Check out what all devices you wish to connect to the router. Note down their MAC addresses and configure your router so that only the devices with specified MAC addresses can connect to your Internet.
It is not that the MAC IDs can’t be spoofed. Hackers may spoof MAC addresses, but first, they need to know the MAC address to create a similar one on their devices for which, they’ll have to access your router.
I hope the above helps. Comment below to let us know about more methods to secure your router.