D-Link Forums
The Graveyard - Products No Longer Supported => Routers / COVR => DIR-655 => Topic started by: Lucid on January 14, 2009, 05:17:05 PM
-
I just had some punk hack into my router and start changing passcodes etc while I was messing around with no security. (YEAH>>LAUGH IT UP)
ANYWAY...I realised that some dude could also get into my NAS and delete everything! So, what I have done is set a hidden SSID - not broadcasting - 63char WAP2 Personal encrypt. This of course can be hacked as well. I'd like to setup some rules to prevent wireless clients from access the wired devices.
Where do I start? POrt Forwarding ...well...if htey are on the lan then that useless....I guess I could just have the guest account activated but I still need to have the main one activated as well. So there goes that Idea.
-
63char WPA2 Personal encrypt
That's all you need to do. It's not going to be broken into using present day technology. It's not just the best thing, it's the only thing.
Not broadcasting the SSID won't help.
Even creating a wireless/wired boundary won't be as good as setting WPA2 or WPA. If you do want to separate wired from wireless, I've never used it, but there's a feature in the Advanced - Wireless section to segment your wireless from your wired network.
That's all well and good, but then the next step is a brute-force attack (fancy way of saying rapid-guessing) into your router password and that's significantly easier than breaking WPA or WPA2.
Just set WPA2 or WPA with a strong passphrase of non-dictionary words, like
"strongqpassphrase ofHnon-dictionary3words" <--- won't be guessed by today's technology
-
Figures. That being said a router with LAN routing capabilities would be awesome. In fact that's were the next developments should go. Example: Dad pisses off kid. Kid enters dads NAS and deletes all his data and backup data. It's be nice to allow access from one IP to defined IP's and Internet (which should have throttling capabilities).
Thanks for the info.
Lucid
-
Figures. That being said a router with LAN routing capabilities would be awesome. In fact that's were the next developments should go. Example: Dad pisses off kid. Kid enters dads NAS and deletes all his data and backup data. It's be nice to allow access from one IP to defined IP's and Internet (which should have throttling capabilities).
Thanks for the info.
Lucid
Get a Vigor :)
Revenge is not a healthy driver in a family relationship. If those are the common manners in a family situation Dad would have bought a NAS with access control. 8)
-
Dads will be dads!
Gonna lock this before it gets out of hand!
Cheers!
Lucid
-
If you do want to separate wired from wireless, I've never used it, but there's a feature in the Advanced - Wireless section to segment your wireless from your wired network.
As far as I understand help page on my DIR-655, this feature, called WLAN partition, is to prevent ¨associated wireless clients from communicating with each other.¨. Thus nothing to do with wired connections.
-
As far as I understand help page on my DIR-655, this feature, called WLAN partition, is to prevent ¨associated wireless clients from communicating with each other.¨. Thus nothing to do with wired connections.
Wow, you're totally correct. I'm sorry, I misunderstood this feature.