Top Network Security Tips to Consider in 2020

Network security refers to the policies followed by the network administrator to protect the computer network infrastructure and the network-accessible resources from intruders, and unauthorized access. It includes continuous monitoring and maintenance of the entire infrastructure. Before, network security is often perceived as a complicated subject, which is, only available and discussed by computer experts. With the increasing number of people utilizing the internet, and as computer systems become accessible and relatively cheaper as compared to their prices before, there is a need for people to be aware of the basics of network security. The main purpose of this article is to provide straightforward information without sounding too savvy or computer-geek, and to inform the general public or computer users of the threats and make them aware and prepared in dealing with security issues. Included herein are discussions of brief history of networking and introduction to the internet and transmission control protocol/internet protocol or otherwise known as TCP/IP.

Along with network security, there are also some other factors that need to be considered. These are the risk management, firewalls, network and system threats, and secure networking devices. This article is not intended to replace frequently asked questions or FAQs or a network security manual. The intendment of this article is to provide readers with wider perspective as regards to network security and an idea on how to manage, if not reduce, network risks whether at home, mobile, or at work.

In considering network security, there are specialists covering an area of network security depending on the complexity of the network. It is the duty of the network administrator to oversee and protect the network and the accessible resources attached to it from intrusions, and to continuously monitor it, as well as measure its overall efficiency.

Wireless network security

With the advancement of Wi-Fi technology, these recommendations briefly provide the steps in order to secure wireless networks whether in home or offices:

1. Change Default Administrator Passwords (and Usernames) of Network Equipments

Network equipments have pre-assigned values and passwords which are set as default settings. These default configurations which are left unchanged are vulnerable to hackers or any experimenting individual. Make it a habit to change those settings and assign strong passwords but never forget them to avoid inconvenience.

2. Turn on (Compatible) WPA / WEP Encryption

Wi-Fi devices come with encryption support. This encryption technology gives a level of security which prevents humans to easily open and read them using the usual softwares. Turning off this feature is like leaving a door shut but unlocked.

3. Change the Default SSID

SSID is a network name which is used by access points and routers. The SSID is preset with every identical device for every manufacturer. Say for example, for devices manufactured by Linksys, the SSID is preset as “linksys”. A default SSID gives intruders or hackers the type of device you are using and is a good start in gathering information about your system and its vulnerabilities. Always change the SSID with a unique name and something which will not compromise your identity, location, or system.

4. Enable MAC Address Filtering

 Every Wi-Fi enabled device has a unique identifier which is referred to as the physical address or MAC address. The MAC addresses of all connected devices are tracked by access points and routers. However, users have an option to specify the MAC addresses of their Wi-Fi devices in order to provide restriction in the network and limit access to only allowed devices.

5. Disable SSID Broadcast

SSID broadcast feature is not necessary for household use as this may increase the vulnerability of intrusion to your home network.

6. Do Not Auto-Connect to Open Wi-Fi Networks

Disable the “Automatically Connect” to Wi-Fi network feature of your device. Turning on this feature increases the security risk of your computer system. Free wireless hotspots or your neighbor’s wi-fi may be sharing viruses or malwares which may likewise be shared in your system.

7. Assign Static IP Addresses to Devices

With the convenience of setting up networks, most users prefer to use dynamic IP (internet protocol) addresses or DHCP technology. However, along with the convenience and ease of setting up of this feature, also carries with it the ease and advantage which could be working in favor of hackers as they can easily get valid IP addresses from your network’s DHCP pool. The remedy for this is to set a fixed IP address range, disable DHCP from the router or the access point and manually configure each authorized device.

8. Enable Firewalls On Each Computer and the Router

Most routers have a built-in firewall feature which may be turned on or off. For added security, always have this feature on in your router and on every computer.

9. Position the Router or Access Point Safely

Wi-Fi signals can extend to the area outside of a house. This may cause others to detect it and use it, as well as, compromise your network’s security. Position your router in a good location and restrict the reach of your Wi-Fi signal for better security measure.

10. Turn Off the Network During Extended Periods of Non-Use

When you will be away from home for a longer period of time, or days, or during vacations, it is a good security measure to turn off your Wi-Fi network. By shutting down your network, it is impossible for hackers to break into your system! While it is impractical to turn on and off your system every now and then, consider only turning off your network when you will be away for long periods.

Home network security

Every network has its unique security needs for every situation. While a small home or office would require only the basic in network security, a large firm or company requires advanced software and a group of expert personnel to secure its network from intrusions and malicious attacks, as well as, hackers and spammers. Listed hereinbelow are some security tips and softwares to secure your network.

  • Basic firewall like COMODO Internet Security provides a unified threat management system.
  • For Windows-based systems, softwares like AVG, Avast!, ESET NOD32, Kaspersky, McAfee, and Norton are good anti-virus programs. For anti-spyware, programs like Windows Defender, Spybot, and XoftSpy are good choices.
  • Use passwords which are secure and difficult to crack. This is referred to as robust password. For wireless network devices, use strong security measures like WPA or WPA2 with AES encryption support.
  • Always change the default SSID network name.
  • Disable the SSID broadcast especially for home use as this reveals your system and its possible vulnerability.
  • Turn on MAC Address filtering in order to track all MAC devices connecting to your router.
  • Always assign static IP addresses to network devices.
  • Turn off/disable ICMP ping on router.
  • Network devices have a record or log of all network connections. Review these logs and look for possible breach like abnormal connections or traffic in your network.
  • For all accounts, use unique passwords.
  • Assign non-administrative privilege for other users or accounts.
  • Disable the Guest Account. This is done by going to the Control Panel, Administrative Tools, Computer Management, then Users
  • Inform all your network users or family members and raise their awareness about security. This will greatly help provide a buffer zone in protecting your network.

Medium businesses network security  

  • An expert and alert system administrator is indispensable.
  • Advanced firewall and Internet Security provides a unified threat management system.
  • For Windows-based systems, softwares like AVG, Avast!, ESET NOD32, Kaspersky, McAfee, and Norton are good anti-virus programs. For anti-spyware, programs like Windows Defender, Spybot, and XoftSpy are good choices.
  • Use passwords which are secure and difficult to crack. This is referred to as robust password. For wireless network devices, use strong security measures like WPA or WPA2 with AES encryption support.
  • Always change the default SSID network name.
  • Disable the SSID broadcast.
  • Turn on MAC Address filtering in order to track all MAC devices connecting to your router.
  • Always assign static IP addresses to network devices.
  • Turn off/disable ICMP ping on router.
  • Network devices have a record or log of all network connections. Review these logs and look for possible breach like abnormal connections or traffic in your network.
  • For all accounts, use unique passwords.
  • Assign non-administrative privilege for other users or accounts.
  • Disable the Guest Account. This is done by going to the Control Panel, Administrative Tools, Computer Management, then Users
  • Inform all your network users or employees raise their awareness about security. This will greatly help provide a buffer zone in protecting your network.

If you would like to know latest tips on website hosting then please refer this article here : Beginners Guide to Hosting for Website in 2019 – Web hosting Tips and FAQs

 

5

We will be happy to hear your thoughts

Leave a reply