s about network security
s about network security
I’m new to networking and grasp the fundamentals but have little knowledge of security. I recently noticed alerts in my Norton app about threats targeting our network over the past few weeks. My initial reaction was to power down the main router, modem, or switch right away. After waiting five minutes, I turned it back on and the alerts stopped. Today the alert changed to “someone may be in your network.” I shut down the whole system for about two hours before restarting it when the issue resolved.
My setup is fairly basic: a cable provider’s router-modem-switch combo with wireless connections, plus a secondary router on another floor that manages most traffic. This is one of the alerts being sent.
Security is crucial here because we handle sensitive medical information transferred wirelessly to cloud services. I’m wondering how seriously we should take protecting our data and what steps can strengthen our network into a secure environment. PS: all computers have antivirus installed, and while $1000 would be ideal, I’m open to investing in robust security measures. More details: router password is updated regularly, firmware is current, and all connected devices are checked.
The router's password has been modified on both sides, the firmware has been updated, and all connected devices have been confirmed. I'll add this information to the post.
Also, ensure the login isn't using WEP; WPA2 seems to be the best choice.
WPA2 is definitely the standard security protocol for Wi-Fi networks.
WPA2 works best when the newest fix addressed vulnerabilities. Remember last year WPA2 had some weaknesses. In that case, using TKIP might let someone join your WiFi, while AES could only intercept signals but not connect. The main challenge is figuring out how attackers reach a typical home network—either through the WiFi or over the internet. Here’s my approach: Set a strong admin password on the router, enable a solid WiFi key with at least AES encryption. Connect whatever devices you can. Ethernet connections are crucial; they need to be secured. If you can, separate your WiFi transmissions so they don’t interfere with your internal network. Most routers offer an option to isolate APs. This way, data sent over the wired connection stays safe from WiFi access. As mentioned before, review all connected devices against those on your home network. A simple method is checking by MAC address—make sure every device linked to your router matches a device already on your network. Lastly, ensure all your gadgets are current with the latest updates.
Based on the information available, you should focus on strengthening your network security. Since direct wiring isn't feasible, consider enabling firewalls, updating software regularly, using strong passwords, and monitoring connections for suspicious activity.
The router includes a basic firewall that should help block some traffic. A more sophisticated solution like PF-Sense could provide better protection. Ultimately, if they wish to connect, they will find their way in. Unless you’re willing to invest heavily in enterprise equipment and spend time setting it up, which can be complicated. Also, if your second router is set up with double NAT, you end up with two layers of firewall between your network and the internet. It seems like you’re using a device that’s part of your own network. I recommend installing Malwarebytes on all devices to ensure they’re clean. Also, @Pangea2017 has a valid observation. If you have IoT devices, they’re often less secure.