What should I do if there are hidden dangers in router security?

First, the basic security settings

The basic security settings of wireless routers mainly include the following aspects:

1. If the default login account and password of the router is admin, please change the default user name and password of the router immediately;

2. Please select the highest level of WPA2 encryption method for router wireless security settings;

3. Please set the password of wireless Wifi as complicated as possible. The suggestion is a mixed combination of numbers, letters and symbols, and the password length should be greater than 8 digits, for example: m.pc841.com @ 0846 &; A password with such a complex length as 15@26 is very slow to be cracked by ordinary network cards.

4. Don't tell strangers and untrustworthy people the Wifi password of the wireless router;

5. Don't reserve mobile devices (smartphones and tablets) or cross roots. Try not to connect to unfamiliar and untrusted Wifi networks after ROOT or jailbreak.

Note: This article is mainly to prevent hackers from invading your mobile device. If you install some backdoor programs and then connect your mobile device to your home Wifi network, it will be easy for hackers to steal routing information.

Second, the wireless router advanced security settings

1, turn on the Mac whitelist function.

Among many protection mechanisms of routers, the white list of Mac addresses is definitely one of the advanced security functions of routers. Most wireless routers with tens or hundreds or even thousands of dollars have the function of whitelisting mac addresses. The biggest highlight of this function is that after it is turned on, the router can be bound with the MAC address of a computer or mobile device to realize one-to-one authorized access.

After this function is turned on, only bound users can access the network, and other unbound users, even if they get the Wifi password, will be unable to access the network because they are not authorized, which can ensure the security of the router to a great extent.

2.AP isolation

After the Mac white list is turned on, how can new strange devices get wifi passwords and wander around the intranet? Although you can't get online, there may be risks. For example, hackers can monitor and route intranet information. The problem of insufficient Mac binding can be solved by turning on routing AP isolation.

With it, devices connected to the LAN are isolated and data cannot interoperate. At this time, no matter how skilled the strange equipment is, it is impossible to monitor your online data. But there are also some shortcomings, such as making LAN software basically unusable. A large number of functions, including QQ's LAN fast transmission and flying pigeon book transmission, will be abolished. At present, we are not sure whether we can use LAN games, file sharing (SMB) and other functions, but it is unlikely to do so visually.

AP isolation is a slightly advanced function, which is basically supported by traditional routes costing more than 100, but some low-priced routers may not have this function.

3. Turn on the anti-DDOS and port control functions of the router.

At present, most routers have anti-DDOS function in advanced settings. This function is not turned on by default, but this module is very important. If the route is DDOS, the whole network speed will drop sharply. Anti-DDOS is to ensure that users are not affected when routing is harmed.

Similarly, the port is also a function of the router's advanced security settings. Generally, 80 (remote access), 23(SSH) and some random ports (for testing by manufacturers) may be opened on ordinary routes, but according to the safety criteria, try not to open ports. Not long ago, a T factory did not close the test port in the stable firmware, which became a big joke in the security field.

Combining the above router basic security settings and advanced security settings, for ordinary users, the router security can be guaranteed as high as 99.9%. For most family or individual users who have low security requirements, router security can be well guaranteed. If it is an enterprise or some places with high data security requirements, advanced security can also be achieved, ensuring that 99.9% of routers are almost absolutely safe.