Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Hardware
Hardware Discussions
Best routers for security
Message
<blockquote data-quote="Lenny_Fox" data-source="post: 869343" data-attributes="member: 82776"><p>What I understood from the system admin at the company I am working for parttime was:</p><p>1. Due to the OSI network layer topology adding anti-malware like technology to a router's firewall is architectural wise a lousy place to implement bit pattern based filtering of the packet's content passing through the router.</p><p>2. Partitioning devices into different logical networks based on device function and usage makes much more sense, because it limits the impact and exposure of clients to security breaches</p><p>3. AI/ML learning invasion and response monitoring will help to detect anomalies. In consumer world this type of monitoring is as good as the profiles assigned to the devices and granularity of the corresponding networks.</p><p></p><p>In short when you don't want to spend money on high end consumer router (like Gryphon) nor want to spend time on understanding the use and application of the different device profiles (of the Gryphon router), just buy a decent mid-range router and apply these tweaks.</p><p></p><p>[URL unfurl="true"]https://malwaretips.com/threads/how-to-protect-the-wi-fi-router-and-home-lan.98406/#post-859386[/URL]</p><p></p><p>That is why I use</p><p>- 2.4 Ghz wifi guest network for guests on ISP's modem/router</p><p>- 2.4 Ghz wifi network for IOT devices on ISP's modem/router</p><p>- 5 Ghz wifi network for our personal devices (laptop, smartphone) on second (mid-range specs) router</p><p></p><p>My NAS is connected to second 5Ghz Wifi network and has access control on device/user. Smartphones have only read access to backup data and are allowed to write (saved pictures) to NAS. With an offline USB disk (which we only update after holidays, so on average every six months) as backup of the backup.</p><p></p><p>Our ISP discourages setting their modem/router in bridge mode. In the past I used to contact help desk to ask them to okay setting router in bridge mode. Problem is that after every network upgrade, the ISP router is reset and I had to contact the helpdesk again. I discovered that disabling one of the frequencies did not require the router to be set in bridge mode (Lazy Lenny again <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite109" alt=":)" title="Smile :)" loading="lazy" data-shortname=":)" /> )</p></blockquote><p></p>
[QUOTE="Lenny_Fox, post: 869343, member: 82776"] What I understood from the system admin at the company I am working for parttime was: 1. Due to the OSI network layer topology adding anti-malware like technology to a router's firewall is architectural wise a lousy place to implement bit pattern based filtering of the packet's content passing through the router. 2. Partitioning devices into different logical networks based on device function and usage makes much more sense, because it limits the impact and exposure of clients to security breaches 3. AI/ML learning invasion and response monitoring will help to detect anomalies. In consumer world this type of monitoring is as good as the profiles assigned to the devices and granularity of the corresponding networks. In short when you don't want to spend money on high end consumer router (like Gryphon) nor want to spend time on understanding the use and application of the different device profiles (of the Gryphon router), just buy a decent mid-range router and apply these tweaks. [URL unfurl="true"]https://malwaretips.com/threads/how-to-protect-the-wi-fi-router-and-home-lan.98406/#post-859386[/URL] That is why I use - 2.4 Ghz wifi guest network for guests on ISP's modem/router - 2.4 Ghz wifi network for IOT devices on ISP's modem/router - 5 Ghz wifi network for our personal devices (laptop, smartphone) on second (mid-range specs) router My NAS is connected to second 5Ghz Wifi network and has access control on device/user. Smartphones have only read access to backup data and are allowed to write (saved pictures) to NAS. With an offline USB disk (which we only update after holidays, so on average every six months) as backup of the backup. Our ISP discourages setting their modem/router in bridge mode. In the past I used to contact help desk to ask them to okay setting router in bridge mode. Problem is that after every network upgrade, the ISP router is reset and I had to contact the helpdesk again. I discovered that disabling one of the frequencies did not require the router to be set in bridge mode (Lazy Lenny again :) ) [/QUOTE]
Insert quotes…
Verification
Post reply
Top
