NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Build a LAN with a WNDR3400v2
I'm trying to make a wifi LAN with 4 devices for sharing. I don't need full time internet as it's a metered connection and I want to keep data usage down to a minimum. (It seems I need the internet c...
FredReed wrote:
I forgot to mention this, I read about and watched a demonstration on "Pixiedust".
I'm not sure if it was a "brute force" attack over the internet or over the wifi signal.
Do you know? I'm sure there are newer ones since then too.
These attacks are to break into wifi. Your router is not vulnerable to Pixie Dust. I haven't seen anything specific on WPS brute force attacks. But if you simply disable WPS on your router, you won't be vulnerable to this whole class of attacks.
Passphrases (and pins) can always be attacked by brute-force (which amounts to trying all possible passphrases). There are ways to slow these attacks down - for instance, if the router is slow to respond after a couple of failed connection attempts, then the brute-force attack will take a lot longer. Even a small delay is enough to make these attacks useless (because there are so many passphrases to try).
If you are worried about this particular threat, you can reduce the risk by turning your router's wifi off when you aren't using it, and by changing the passphrase from time to time. In general, longer passphrases will be harder to discover by brute force guessing.
Hmmm,
W10 Cortana won't let me open CMD. Did yesterday.
W10 Cortana won't let me open CMD. Did yesterday.
OK, got W10 command prompt to work. Now I forget why I wanted to use it.
FredReed wrote:
OK, got W10 command prompt to work. Now I forget why I wanted to use it.
To check the IP address and try pinging the W7 system??? Not sure, as I'm not 100% sure where you are at right now.
The main thing is that you were able to get into the settings pages for the router. That's great. BTW you can also see the attached devices from the router, so that will simplify the CMD and ipconfig stuff. We shouldn't need it much now, if at all.
FredReed wrote:
I blocked "intruder" users but should I change the admin and password as there's no WAN connection?
I'm not completely sure I understand what you blocked.
No one can get into your router from the internet, since there is no internet connection. If someone were to connect to your wifi network (guessing the wifi passphrase), they could access the router itself if they also guess the admin password. The risk in your case is pretty low, there's not that much they could do from the router. The bigger risk is that they'd get into one of your windows PCs.
So getting the WiFi security right is more important than the admin password in your case. The default WPA2-PSK (AES) security is what you want. The built-in network passphrase should be pretty good, I suggest you use it (or something similarly structured). The network name is up to you, but you probably shouldn't use a network name that lets people identify you. Again, the default on the label is fine.
That said, you shouldn't use the default password. But you don't need to go too crazy over picking something. 8-10 characters, with a capital letter, a number, and punctuation symbol should be strong enough. You could write it down and tape it to the router if you have trouble remembering it. If a bad guy's in your apartment, the router password is the least of your worries.
I did remember, to login to the router from my W10. It's acting a bit rough as there are tons of errors in the fault basket and the events log.
I have an Avast service contract but need a connection to have them work on it. The W10 computer lost it's original hard drive (Vista) to a BSOD.
It had W7 Home Premium installed when fixed but was "forced" into W10 last May. (MANY fists are shaking at Microsoft on this) But I digress.
I wanted to find out why I got a 10.0.0.x conflict between W10 and W7 as they both posted that box at separate times. They do have differant
10.0.0.x numbers on the router list with the device names. I hope not to see that after today. I do need to "practice" both CMD and ipconfig
operations to help me retain the process for the future. "If you don't use it, you lose it".
I do remember seeing a backup to remember the admin and password just in case. Not sure how you login to find them after forgetting
them though. I went through all the "buttons" on the left side both Basic and Advanced to familiarize myself with what this router can do.
There is one security setting higher than the one I'm on, a combination of the two best ones it looks like. Could it be too much for my
"legacy" computers to handle, to switch to the highest setting?
I can only imagine how much the new modum/routers can do! I'll be working this LAN for a few days to become more proficient at it.
The next issue is logging in from the Android units. I presume the method is similar, from the browser on each device? I'm trying it after
this post to see how it works (I'm on tether at the moment). I'll return with what I've found.
I forgot to mention this, I read about and watched a demonstration on "Pixiedust".
I'm not sure if it was a "brute force" attack over the internet or over the wifi signal.
Do you know? I'm sure there are newer ones since then too.