Wired router security options
Zuntar
North Carolina Icrontian
Hey, I have a wired network at home and i have never really had any security issues so far, but I wonder if and what measures I can take to "lock down" my network.
I have a netgear RP614 web safe router with VPN and such. I have only certain folders set up as "shared" and a network (connected to my router only) printer (HP 6127). I use only avg free for anti virus and the windows firewall.
Can I .... should I do more to secure my system and with out system hogging software?
Thanks for your time.
I have a netgear RP614 web safe router with VPN and such. I have only certain folders set up as "shared" and a network (connected to my router only) printer (HP 6127). I use only avg free for anti virus and the windows firewall.
Can I .... should I do more to secure my system and with out system hogging software?
Thanks for your time.
0
Comments
Your router is VPN capable but unless you're using VPN, that feature really doesn't do anything to add to the security of your Internet connection or LAN.
It is a good idea to run a software as well as a hardware firewall. They each address different issues/vulnerabilities. You don't have to resort to a resource hog when it comes to a software firewall, though. Comodo Group offers a free and fully functional Personal Firewall. It beats the hec out of McAfee, Norton, & Zone Labs' security software. You can find Comodo Group HERE. They offer a free AV solution, too but I haven't tried that one yet.
You can help to protect the computers on your network from hostile websites by modifying the HOSTS file on each computer. Please, visit THIS thread for more information on MVPS HOSTS. Secondly, if you're running XP Pro or MCE machines, you can turn off simple file sharing and password protect each user profile (including the Administrator profile) on each computer. Use a good password. (See below for a link to an online password tester.)
As for your router, four things you could do are:
A few good things is on the windows side setup a different account on the system that has no Admin rights... and have the Admin account with a good strong password as noted in the above post. Good virus protection comes in handy against any trojans and other virus's that would bypass a good firewall/router. No need for extra software unless you want to do something specific.
I have AV software, and a hardware firewall, and it's worked great for many many years.... I hate extra programs I have enough of those on my laptop as it is for media keys, remote controllers, TV, wireless, AV, bluetooth, blah blah blah.
I had a guy in IT once tell me to change my internal ip address and maybe also my mac address. Yes, no?
I'm not sure what he meant by changing your internal IP address.... You can set your LAN IP addresses to static (unchanging) IP addresses or you can leave them unassigned and let the router dole them out for you. I'm not sure where that would have any impact on security, though.
As for changing your MAC, you've effectively done that by putting your router between the WAN and your LAN. What is seen from the WAN (Internet) side is your router's MAC, not your computer's. You can, however, "spoof" your router's MAC address if you like. One reason some people do this is to get around a one-computer limitation an ISP has imposed. In which case, you could change the MAC of your router to that of the computer you registered w/ your IP. I haven't seen anything like this in a long time, though. Most IPs these days have relented and figure it's a given people are going to use routers. (I'm guessing that's the case)
Like I said, never had a problem before, but ya never know! Thanks again!
The internal IP address is the computers IP adress on the lan, and the external IP adress is what anybody outside the lan see's, such as the internet.
Enjoy! Come back w/ any questions, etc. :smiles: