How to Disconnect Someone Else from Your Wi-Fi Router: A Step-by-Step Guide

Many home owners are familiar with the experience of their internet slowing down and unfamiliar names appearing in the list of connected devices. A sudden drop in page loading speed or constant interruptions in video streams often indicate that someone is using your network without permission. This is not only annoying but also poses real security risks, as an attacker can access your personal data stored on computers or smartphones within the local network.

In this article, we'll take a detailed look at how to identify uninvited guests and the methods available for forcibly disabling them. You'll learn how to access your router settings, change security settings, and block access to unwanted devices at the hardware address level. Regardless of your router model, whether it be TP-Link, Asus or MikroTik, the operating principles remain similar, although the menu interface may differ.

There are several ways to resolve this issue, from a simple password change to more complex MAC address filtering. Each method has its own advantages and disadvantages, which you should be aware of before proceeding. The most effective and fastest way is to completely change the encryption key and then reconnect all trusted devices. However, in some cases, more fine-tuning is required to avoid disrupting smart home or guest access.

Signs of foreign devices connecting to the network

The first step in securing your network is identifying problems early. Users often notice something is wrong when their internet speed drops to a crawl, but there are also less obvious indicators. For example, the wireless indicator WLAN or Wi-Fi The light on the router may blink intensely even when you're not using the internet. This indicates active data exchange between the router and the connected device.

An indirect sign may be strange behavior on your devices: spontaneous disconnection from the network, inability to obtain an IP address, or addressing conflicts. If you see a message stating "the network has no internet access" even though your ISP hasn't reported any outages, this is cause for concern. Modern routers often have built-in security mechanisms that can block new connections when the DHCP table is full, which can also be caused by hackers using password-guessing programs.

For an accurate diagnosis, you need to look inside the router interface. There you can see a complete list of all active clients. If you find a device with a name you don't recognize (for example, Unknown Device or a phone model that no one in the family has), this almost certainly means a hack. MAC address — is a unique identifier of the network interface that helps distinguish your laptop from someone else's tablet.

It's worth noting that some devices may hide their names or appear as "Android" or "iOS" without specifying the model. In such cases, it's worth checking the MAC addresses of all your devices in the "About phone" or "Network properties" settings to compare them with the list in the router. If there are no matches and the device is actively transmitting data, it's time to take action.

📊 Have you noticed a drop in Wi-Fi speed for no apparent reason?
Yes, all the time.
Sometimes it happens
No, I didn't notice.
The speed is always excellent

Login to the router control panel

Before blocking intruders, you need to access the "brain" of your network. To do this, enter the router's IP address into the address bar of any browser. The standard address is most often 192.168.0.1 or 192.168.1.1If these addresses don't work, check the sticker on the bottom of the device—it always contains the correct IP address, as well as the default login and password for logging in.

After entering the address, the system will request authorization. If you have never changed the factory data, use the combination admin/adminHowever, if the password was changed previously and you don't remember it, you'll need to reset the router to factory settings by holding down the corresponding button on the device for 10-15 seconds. Attention! After the reset, all your settings, including your ISP connection settings, will be deleted and will have to be re-entered.

Interfaces from different manufacturers vary significantly. Keenetic This is a convenient panel with icons, TP-Link (especially in the green interface) - the classic menu on the left, and in the new blue one - a tile structure. Asus Offers a graphically rich ASUSWRT interface, where client status is displayed on the main screen. Despite the visual differences, the logic for navigating to the "Clients," "Status," or "List of Connected Devices" sections is the same.

⚠️ Attention: Firmware interfaces are regularly updated by manufacturers. Menu locations and item names may differ from those described in the manual. If you can't find the section you need, look for tabs labeled "Wireless," "Status," "Client List," or "DHCP Server."

It's important to ensure a stable connection to the router during setup. It's best to perform these steps from a computer connected via LAN cableTo avoid losing access to the control panel at the most inopportune moment if your Wi-Fi network is reset. A wireless connection is also acceptable, but less reliable when making major changes.

Analyzing the list of connected clients

Once in the network status section, you'll see a table containing information about all active devices. Typically, it displays the IP address, MAC address, hostname, and lease time. The user's task is to identify each device. Start by eliminating your devices: turn off Wi-Fi on your phone and see if the entry disappears from the list. Then turn it back on and move on to the next device.

Pay special attention to devices with the "Static" status if you haven't configured static addresses yourself. Attackers who gain access often assign themselves a static IP address to avoid being kicked off the network when the router reboots or the DHCP table is updated. Devices with names containing the words "" also look suspicious. Test, Debug or just a set of numbers.

How do I find out my device's MAC address?

On Windows, open the command prompt and type ipconfig /allOn Android, go to Settings -> About Phone -> General. On iOS, go to Settings -> General -> About.

Modern routers such as MikroTik or professional rulers Ubiquiti, allow you to see not only the connection status but also the amount of traffic consumed by each client. If you see an unknown device downloading gigabytes of data while you're simply reading the news, that's a clear signal to take action. In home routers Tenda or D-Link Such detailing is less common, but a basic list of clients is always available.

Below is a table to help you navigate the types of information displayed:

Parameter Description What to look out for
Host Name Device name on the network Unfamiliar brand or model names
IP Address Internal address Addresses outside your DHCP range
MAC Address Physical address Main identifier for blocking
Type Connection type Wireless (Wi-Fi) or LAN (cable)

Method 1: Change the password and encryption type

The most radical, yet most reliable, way to get rid of all unwanted guests at once is to change your Wi-Fi password. Once you change the security key, all devices, including your own, will be disconnected. You'll have to re-enter the password on each device. This ensures that no one can connect using an old password that may have been stolen or compromised.

When setting up new security, it's critical to choose the right encryption type. The standard today is WPA2-PSK or its newer version WPA3It is strongly recommended not to use the outdated protocol. WEP, which can be hacked in a few minutes even by an inexperienced user using a smartphone. Also, avoid "Mixed" mode unless absolutely necessary, as it can reduce overall network speed.

The password must be complex: use a combination of uppercase and lowercase letters, numbers, and special characters. The password must be at least 12 characters long. Simple combinations like "12345678" or a person's date of birth are easily brute-forced. In routers Zyxel And Asus There is a random strong password generation feature that is worth using.

☑️ Password Security Checklist

Completed: 0 / 4

After changing the password, be sure to save the settings by clicking "Save" or "Apply." The router may reboot. If a suspicious device reconnects to the network a few minutes after changing the password, this may indicate that someone has physical access to your router and pressed the WPS button, or your network is infected with a highly advanced virus capable of intercepting handshake packets. In this case, a more thorough investigation is required.

Method 2: Filtering by MAC Addresses

If you don't want to change the password and reconnect all your devices (for example, if you have many smart home devices), you can use MAC address filtering. This method allows you to create a "whitelist" of devices that are allowed to connect. All others, even with the password, will be blocked.

To implement this method, find the "Wireless MAC Filtering" or "Access Control" section in the menu. Enable this feature and select "Allow." You will then need to manually enter the MAC addresses of all your trusted devices. This process is labor-intensive, but provides a high level of control.

However, this method has a significant drawback. MAC addresses are easy to spoof (clone). A skilled hacker, seeing your MAC address broadcast (which is transmitted in cleartext even when encrypted), can change their network adapter's address to match yours and connect seamlessly. Therefore, this method is best used in conjunction with other measures, rather than as a sole defense.

⚠️ Attention: Be extremely careful when setting up the whitelist. If you forget to enter the MAC address of your current device or make a mistake in one digit, you'll lock yourself out and lose access to the router. In this case, the only solution is a hard reset using the button on the router.

Disabling the WPS function

Users often don't understand how strangers can access their networks despite a complex password. The answer lies in technology. WPS (Wi-Fi Protected Setup). This feature is designed to simplify connecting devices by pressing a button or entering a PIN. The problem is that the WPS PIN consists of only 8 digits and is extremely vulnerable to automatic brute-force attacks.

Wi-Fi hacking programs primarily attack WPS. When this feature is enabled, your complex password becomes useless. An attacker can brute-force the PIN, obtain the real network password from the router, and connect. Therefore, the first thing you need to do after entering the settings is find the "WPS" section. WPS and move the switch to the position Disable (Disable).

On some modern routers, for example, new models TP-Link with WPS 2.0 support or Keenetic, PIN guessing protection is implemented (locking after several unsuccessful attempts). However, security experts recommend disabling this feature completely unless you regularly use it for guest connections. This will close one of the biggest security holes in your home network.

Additional network security measures

In addition to the basic blocking methods, there are a number of additional settings that will make your network impenetrable to random passersby and traffic thieves. One such measure is reducing the DHCP lease time. By default, it can be set to a day or a week. By reducing this time to 1-2 hours, you'll force the device to request a new IP address more frequently, making life more difficult for those trying to gain a foothold on the network.

It's also recommended to hide the network name (SSID Broadcast). This will prevent your Wi-Fi from appearing in the list of available networks on your neighbors' phones. To connect, you'll need to manually enter the network name. This doesn't provide 100% protection (professionals will find the hidden network), but it will deter 99% of regular users. Don't forget to regularly update your router's firmware. Manufacturers patch vulnerabilities in new software versions, and installing updates is mandatory.

If you're using a guest network, make sure it's isolated from the main network (Client Isolation). This will allow guests to access the internet but prevent them from seeing your computers, printers, and NAS storage. On routers Asus And MikroTik You can even restrict guests' access to the admin panel, leaving this privilege only for the owner.

Frequently Asked Questions (FAQ)

Can my neighbor find out my password if I'm using my laptop?

Theoretically, yes. If your laptop is already connected to the network and saved, special programs can attempt to extract the saved password from the system memory if an attacker has physical or remote access to your device. However, simply being nearby, a neighbor can't intercept your password the moment you connect if you use modern WPA2/WPA3 encryption. The main danger is weak passwords that are easy to guess.

What should I do if I forgot my router password after changing it?

The only way out of this situation is to perform a hard reset. To do this, look for the small hole marked on the back panel. Reset or DefaultPress it with a paperclip and hold it for about 10-15 seconds until the lights flash. The router will reset to factory settings, and you can log in using the information on the sticker on the bottom of the device.

Does the number of connected devices affect internet speed?

Yes, absolutely. The connection bandwidth is shared among all active users. If one of your "neighbors" starts downloading large files or watching 4K videos, your webpage loading speed and online gaming performance may drop dramatically. Furthermore, a large number of connections puts a strain on the router's processor, which can lead to overheating and freezing.

Is it safe to use router control apps on your phone?

Official apps from manufacturers (eg Tether from TP-Link or Asus Router) are safe and convenient. They allow you to quickly view a list of clients and block them with one click. However, avoid third-party apps of dubious origin that promise to "boost the signal" or "hack your neighbor," as they may contain viruses or steal your data.