Wireless networking

Mullet

<div class="IPBDescription">Some quick questions...</div>Okay so I just installed a wireless network in my house (1st timer wireless). I set it up with a 128bit encryption, but is there any type of software I can use to keep check on whos using it and whatnot? zomg kthnx

Spooge

You don't know who is going to use your internet connection in your own house?

If you're worried about neighbors or passersby trying to leach off your connection, I recommend following most if not all of the steps listed in <a href="http://www.pcmech.com/forum/showthread.php?t=118823" target="_blank">this post on PCMech's forums</a> about securing a home network.
Take special note of the step that has you turning off your SSID broadcast. That should prevent any random leaches from noticing your network.

Xyth

Most routers have a currently connected client list on the routers settings page (which Ill assume you are familiar with since you set up the encryption).

Seriously though, unless you live in an apartment where tons of people are within range, I don't think it's that big of a deal. I keep my wireless network un-secured and have never had an un-authorized computer connect to it.

DiscoZombie

I've had uninvited people on mine (and i've leeched off of other people). rather than bothering with encryption, I just set it so that only the 3 or so computers in my home with approved MAC addresses can connect. Routers have an IP address you can connect to to go to their setup. For Linksys (maybe all routers?) it's <a href="http://192.168.1.1/" target="_blank">http://192.168.1.1/</a>. Default password is 'admin' or something. but yes, as xyth said, I should have assumed you already knew this since you set up encryption <img src="style_emoticons/<#EMO_DIR#>/smile-fix.gif" style="vertical-align:middle" emoid=":)" border="0" alt="smile-fix.gif" /> you can usually see a list of who's connected through that.

Thansal

MAC address is actually easier to crack then WEP from what I understand (you can sniff out what MAC addresses are around and simply spoof one of them).

Admittedly that is what I use, for I am lazy.

SkulkBait

MAC filtering is pretty much completely worthless, as is turning off the SSID broadcast (but it can't hurt). WEP is only useful if you can't use WPA, and when using WPA just make sure you have a strong pass phrase (I believe that the 802.11i docs recommend 20 characters, presonally I just use a 63 character string of completely random characters).

Warrior

Network magic might be what you are looking for. Its shareware however. I got a reduced version for free when I bought my wireless router and it works pretty good. Didnt notice any bloatness.
Another is called Snort. I haven't used it but its open source so its free. Dont know if its for wireless or wired networks.

<a href="http://www.networkmagic.com/" target="_blank">http://www.networkmagic.com/</a>

<a href="http://www.snort.org/" target="_blank">http://www.snort.org/</a>

Faskalia

I am running a wlan myself and made the experience that encryption causes higher pings and makes for an overall worse performance. Although it is pretty safe, compared to mac filtering.

Anyway: If you just want to make shure, that joyrandomuser doesnt access your wlan simply do the following:
Mac filtering on
ssid broadcasting off (choose a combo of numbers and letters for your ssid)
only fixed ip adresses
dynamic ip adresses off

If you want to make your wlan hacker safe, buy some cable!

the_x5

<!--quoteo(post=1620378:date=Apr 11 2007, 07:02 PM:name=DiscoZombie)--><div class='quotetop'>QUOTE(DiscoZombie @ Apr 11 2007, 07:02 PM) [snapback]1620378[/snapback]</div><div class='quotemain'><!--quotec-->
For Linksys (maybe all routers?) it's <a href="http://192.168.1.1/" target="_blank">http://192.168.1.1/</a>
<!--QuoteEnd--></div><!--QuoteEEnd-->
No. D-Link and Netgear both use 192.168.0.1 for default gateway. You can of course change it provided your router isn't a basic model with... um, shall we say... "limited" firmware.

If you get stuck setting it up let me know, I get paid at my job to deal this stuff actually. My personal router is a D-Link GamerLounge DGL-4300. It rocks for running servers and I love the 3rd party add-ons (ie: WAN logging).

<!--QuoteBegin-Thansal+--><div class='quotetop'>QUOTE(Thansal)</div><div class='quotemain'><!--QuoteEBegin-->MAC address is actually easier to crack then WEP from what I understand<!--QuoteEnd--></div><!--QuoteEEnd-->
I have a bad habit of teaching people both good and bad knowledge... like when I demonstrated the "lerk on teh clorf" technique or the DoD prone grenade bug... MAC cracking isn't that hard at all if you're experienced. Hell it's no harder than an evil twin attack and-- oops... shutting up now.

*walks away cautiously*

Use WPA2 if possible.

Mantrid

There are guides online for setting up your wireless network to include a Demilitarized Zone, where you can keep your lan, and still keep your WiFi node open.

I mean, you might as well keep it open. Let other people use it. You can still keep your part of the network safe, and you can do something nice for a stranger at the same time (if they happen to be in range).


And to all the people that will say that this is fine until someone uses his WiFi to upload child ###### or that a terrorist could use it, think about how ridiculous this is before starting an argument.