So I setup my wireless network last week at my new apartment and now about 10 times a week I get DoS attacks. They are coming in on port 80 and 8070. I don't want to block access to the internet but I want to block the incoming requests. It doesn't look like Windows firewall can block just incoming requests. What do you recommend? I have a Netgear router.
so people are trying to access it wirelessly? is it publicly visible? is the wireless locked by both MAC and passphrase encrypt?
I am using WEP for speed. I don't know if they are trying to access it thro wireless or what. I stopped broadcasting SSID today to see if it changes.
well, I would recommend changing it's name as well from what it was while broadcasting and as well as shift the frequency used and WEP you're using. also, MAC address identification is just another thing they'd have to hurdle and with the increasing number of wifi's open out there, i'd say the average person isn't trying to attack as much as steal bandwidth and would move on to other nearby connections and its fairly easy to setup for a limited network.
Just paint the room with this... The Latest Wireless Security Device May Be a Simple Paint Job http://www.information-management.com/news/security_wireless_mobile-10016328-1.html
I'm not sure how much you can do with your type of router, but with a D Link router you could wire a computer to the router, go into the router settings and see the IP adresses accessing the router. You could check what the IP/MAC addresses are on your devices, and ban the other ones. If you can do something like this with Netgear, it may stop the DOS attacks.
In some areas it's illegal to paint your walls with something like that. I don't remember all the details and that's overkill anyways. Also, wep? wtf. lrn2security. If you are going to use wep you might as well just use nothing at all. also, turn off wireless admin which everyone leaves on and shouldn't.
Rename your router, change the channel its broadcasting on, FIGURE OUT FOR SURE THIS IS ACTUALLY A DDOS, if you are being DDOS'ed from a specific range of IP's or a botnet its a large gap between what you can do about it. If its a specific range you can either block them inside your router or contact your ISP and see if they will do it for you. If its a botnet youre sol without IPtables. People call a lot of shit DDOS that are not in fact DDOS attacks. If for some weird reason your router does not have logging on turn it on. Oh and change your method of password encryption. Wep? Come on dude. Don't paint your walls. This can all be handled in house with some common sense and knowhow.
quoted for truth WEP is as secure as hookers virginity, it take less than 5 mins to get whole key just by sniffing. Imo if your problems are not resolved post your router info for further help.
I am using WEP because higher encryption slows down the speed of the network. I am using a $50 router. I don't seem to have as many problems as I did before. I am still monitoring it.
Well if I were you I would just use MAC identification and wont use any encryption. It's more secure then WEP and your net speed wouldn't be affected.
ive got mine by mac address, encryption, and doesn't broadcast. also, make sure you have a name thats not default like "linksys" or something.