D-Link DI-624M Product Manual - Page 90

Appendix, Securing Your Network

Get D-Link DI-624M - Wireless 108G MIMO Router PDF manuals and user guides
UPC - 790069273957
View all D-Link DI-624M manuals
Add to My Manuals
Save this manual to your list of manuals

Page 90 highlights

DI-624M User's Manual Appendix Appendix Securing Your Network 1. Change Admin Password Changing the password to access your new router is the first step in securing your network. This can done through the Wizard or on the Admin Page of the Tools tab. There is no password by default and hackers will know this when trying to access your network. Make sure that the password you choose is not commonly known or something that is easy to guess such as your last name or your pet's name. Try using a combination of letters and numbers to deter intruders from hacking into your network. Your private information should be kept private. 2. Disable DHCP and use Static IP addresses or Use Static DHCP and limit scope to the amount of users on your network. In the event that an intruder manages to gain access to your network, having DHCP enabled makes it easier for the intruder to access other computers on your network. There are two methods for getting around this. One is to disable DHCP and use static IP addressing on all the devices connected to your network. This would mean that the intruder would have to know what IP network your devices are on in order to access them. The second way is to change the scope of the DHCP server to only include enough IP addresses for the devices in your network.You can then use the Static DHCP feature of the router to assign an IP address to each device on your network. Static DHCP still dynamically assigns an IP address to your network devices but only allows for those defined devices to obtain an IP address. 3. Change the default LAN IP address Change the default LAN IP address from 192.168.0.1 to an alternate IP address. There are 3 ranges of IP addresses that have been reserved for use on Private Networks. 10.0.0.0 - 10.255.255.255 (10.0.0.0/8) 172.16.0.0 - 172.31.255.255 (172.16.0.0/12) 192.168.0.0 - 192.168.255.255 (192.168.0.0/16) D-Link routers use 192.168.0.1 as their default LAN IP address. Choosing an alternate IP address lessens the probabilty of an intruders knowing what IP network your devices are on. 4. Set up MAC Filtering Each networking device (router, network card, etc) on a network contains a unique hexadecimal number that identifies that specific product. This number is referred to as a MAC address. MAC filtering allows you to create a list of the MAC address of each device on your network and only allows these specific devices to associate with your network. With this feature enabled, devices attempting to connect to your network with a MAC address that is not in the list you created, will be denied access. D-Link Systems, Inc. 90

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
90
DI-624M User’s Manual
D-Link Systems, Inc.
Appendix
Appendix
Securing Your Network
1.
Change Admin Password
Changing the password to access your new router is the first step in securing your
network.
This can done through the Wizard or on the Admin Page of the Tools tab.
There is no password by default and hackers will know this when trying to access your
network.
Make sure that the password you choose is not commonly known or something
that is easy to guess such as your last name or your pet’s name. Try using a combination
of letters and numbers to deter intruders from hacking into your network. Your private
information should be kept private.
2.
Disable DHCP and use Static IP addresses or Use Static DHCP and limit
scope to the amount of users on your network.
In the event that an intruder manages to gain access to your network, having DHCP
enabled makes it easier for the intruder to access other computers on your network.
There are two methods for getting around this. One is to disable DHCP and use static
IP addressing on all the devices connected to your network. This would mean that the
intruder would have to know what IP network your devices are on in order to access
them. The second way is to change the scope of the DHCP server to only include
enough IP addresses for the devices in your network. You can then use the Static DHCP
feature of the router to assign an IP address to each device on your network. Static
DHCP still dynamically assigns an IP address to your network devices but only allows
for those defined devices to obtain an IP address.
3.
Change the default LAN IP address
Change the default LAN IP address from 192.168.0.1 to an alternate IP address. There
are 3 ranges of IP addresses that have been reserved for use on Private Networks.
10.0.0.0
-
10.255.255.255 (10.0.0.0/8)
172.16.0.0
-
172.31.255.255 (172.16.0.0/12)
192.168.0.0 -
192.168.255.255 (192.168.0.0/16)
D-Link routers use 192.168.0.1 as their default LAN IP address. Choosing an alternate
IP address lessens the probabilty of an intruders knowing what IP network your devices
are on.
4.
Set up MAC Filtering
Each networking device (router, network card, etc) on a network contains a unique
hexadecimal number that identifies that specific product.
This number is referred to as
a MAC address.
MAC filtering allows you to create a list of the MAC address of each
device on your network and only allows these specific devices to associate with your
network. With this feature enabled, devices attempting to connect to your network with
a MAC address that is not in the list you created, will be denied access.