#routers
How to keep your home network secure: Smart tricks and settings
Network security is not just for IT professionals. Even home users need to keep their networks secure to prevent unauthorized people from, for example, hogging their broadband, installing malware that turns connected devices into robots in botnets, and spying on what you and your family are doing.
In the past, the internal network was often considered safe and protection against threats from the internet was the most important thing, but today security experts recommend using encrypted connections as much as possible even within the local network.
It may seem complicated, but with basic knowledge and the right settings in your router, you’ll go a long way.
These are actually all very basic and essential considerations, and are well worth revisiting. I realised I’m not actually using the SNMP management on my router, but I’d left it enabled. Disable those types of services if you don’t use them, and rather enable logins etc only from your LAN.
See https://www.pcworld.com/article/2235248/how-to-keep-your-home-network-secure-clever-tricks-and-settings.html
#Blog, #routers, #security, #technology
DD-WRT vs. OpenWrt: Which open-source router firmware should you pick? Custom firmware on your router gives you more control and longer support than the stock firmware
Most of the best Wi-Fi routers give the average customer all the controls they could ever want with simplified access to wireless settings, QoS, and firewall settings making home networking tech more accessible to all. For those looking for a more open experience, more advanced and in-depth settings can be made available with an open firmware like OpenWrt or DD-WRT. If you want access to these extra features, however, you’re looking at a more complicated setup procedure and a lot more research.
Both OpenWrt and DD-WRT are completely free to download and use with access to stable and beta builds. OpenWrt is completely FOSS (free and open-source software) meaning that no company owns any part of it, so you can use it without any permission and if you have the know-how, you can even dig into the code yourself. DD-WRT makes a few concessions when it comes to being open-source to allow support for a wider range of devices, such as those running Broadcom chips.
Availability comes down to not only a specific brand of router, but the model and even hardware revision. Many routers will have multiple versions with slight hardware tweaks that don’t matter much, if at all, to the end-user with standard software, but can lead to issues when installing a custom Linux-based operating system (OS) like OpenWrt or DD-WRT. When you’re looking for router software for your hardware, make sure to note any version information. This can typically be found next to the model number on the bottom of the router.
It’s true that these options don’t necessarily support the very latest routers, but they do add masses of features to older routers. Also, with ASUS routers they do already have lots packed in, and I actually opted to install the ASUSWRT-Merlin firmware which retains close compatibility with the ASUS firmware.
See https://www.xda-developers.com/dd-wrt-vs-openwrt/
#Blog, #DDWRT, #openwrt, #routers, #technology
Don’t Buy a Wi-Fi Extender: Buy a Mesh Wi-Fi System Instead (if you can afford it)
Wi-Fi extenders (basically just adding a remote router connected by an Ethernet cable, or even just Wi-Fi) are, on paper at least, quite appealing. And why wouldn’t they be? Who doesn’t like an inexpensive solution to a complex problem? Fifty bucks or less to finally get Wi-Fi all the way across your house or out to the corner of the patio where your hammock is set up sounds like a great deal.
And while, in some cases, a Wi-Fi extender can be a useful and economical solution to your Wi-Fi issues, it’s largely a band-aid slapped over bigger problems with your network. They introduce latency, airwave congestion, and impact your overall network bandwidth and user experience.
For the vast majority of people, but especially those in a large or sprawling home, switching to a mesh Wi-Fi system is a massive upgrade in Wi-Fi technology, overall power, and coverage. That’s because far too many people are using really old stand-alone traditional routers and/or relying on the bargain all-in-one Wi-Fi-router-modem combo unit their ISP gave them.
So yes, a mesh Wi-Fi system is often better because it is all new technology, it is the same brand working well together, and it is usually a few devices covering everywhere. It also includes smart software to help manage many devices moving around between those nodes. But they do cost a lot more!
My problem is just a weakish area in my back garden, and it did not justify me spending the money for an area I don’t use regularly. I went for just adding a Wi-Fi extender router, but I cabled it with 1 Gbps Ethernet to the main router, and kept the same SSID to make it seamless. It also does it’s DHCP from the main router, so I can still manage everything centrally. That said, my Asus RT-AC88U main router (powered by Asuswrt-Merlin software) is pretty smart, and it is not a basic ‘free’ ISP router.
So, although a Mesh Wi-Fi is best, you may want to still weigh up your options before diving in. The linked article expands on Mesh Wi-Fi a bit more, with some additional links to more information.
See https://www.howtogeek.com/818404/dont-buy-a-wi-fi-extender-buy-this-instead/
#Blog, #meshnetworks, #networking, #routers, #technology
If your router no longer gets OEM updates, consider OpenWRT with 180 more devices supported to a total of 1,580 devices
Your home router is usually your main gateway and firewall between your house full of connected devices, and the Wild West of the Internet. If you have a router that is no longer receiving updates every month or so, then you’re likely not getting the security patches that you need to protect your home network.
Or you may have an older, or cheaper, router that lacks many more advanced features.
OpenWRT is regularly updated and patched and is crammed with all sorts of management and security features. It can turn many “dumb” routers into more advanced devices (yes, it’s mostly all in the software). It is free to install and use, but will require you to reflash your router and start again with default settings.
See https://www.phoronix.com/news/OpenWrt-22.03-Released
#technology #OpenWRT #routers #security #opensource
#Blog, ##opensource, ##openwrt, ##routers, ##security, ##technology
Routers, all tri-band routers are not the same....the Old Tri-band vs the New Tri-band
https://dongknows.com/dual-band-vs-tri-band-wi-fi-routers-explained/
NAT (Network Address Translation): Necessary Evil or Necessary Security?
The purpose of this post is to invite a discussion.
I see blogs and posts at various places on the Internet written by people who seem to see NAT as an annoyance. In fact, there are people who champion IPv6 specifically because it overcomes the "problem" of NAT. To me, NAT is a wonderful thing.
- I love NAT. NAT allows an IP address to be shared by many devices and/or individuals. This solves the problem of having more devices than possible IP addresses, but, more importantly, it provides an NAT firewall. It's a barrier between me and the larger network that makes me safer and more private.
- Some don't like NAT. One objection is that devices in the larger-area network can't easily initiate connections to devices in the more-local-area network. These people actually want to expose open ports to the wider network, despite the obvious safety problems this causes.
I actually see the Internet as the premier security problem in the 21^st^ century. Protecting ourselves and our devices from it is paramount. Of course big business wants everything to be "smart." In this context, "smart" just means connected to the Internet. This is madness. We all need to resist "smart" devices. Don't buy them or use them. It's just too foolish. In my country it's estimated that 1 out of 5 adults has suffered some form of identity theft. This madness needs to stop.
#nat #network-address-translation #security #surveillance #privacy #network #networks #ip #ip-address #router #routers