Wi-Fi sharing is a convenient feature for quickly sharing internet with guests or colleagues. But what if you notice suspicious devices on your network, your router is slow, or your traffic is mysteriously disappearing? Disabling Wi-Fi sharing is the first step to protecting your home network from unauthorized use.
In this article you will find step-by-step instructions for routers from different manufacturers - from budget ones TP-Link to bonuses ASUS RT-AX88UWe'll cover not only the standard web interface method, but also alternative methods: using a mobile app, the command line, and even a physical button on the device. And finally— A list of signs that can indicate that your Wi-Fi has already been hacked and is being used by third parties..
Why you should turn off Wi-Fi sharing
Many users don't even realize that their router can share internet not only with their own devices but also with others. This happens for several reasons:
- 🔓 Open network without password — a classic mistake when setting up a new router. Even if you set a password later, the network could be vulnerable during the first few hours of operation.
- 🤝 WPS (Wi-Fi Protected Setup) function — convenient for a quick connection, but often becomes a backdoor for hackers. Many routers leave it enabled by default.
- 📡 Unlimited guest network If you've ever set up guest access and forgotten to disable it, strangers could be using your internet for years.
- 🔄 Password leak — perhaps you shared it with someone who then passed it on, or the password was brute-forced.
The consequences of uncontrolled access can be serious:
- 🐢 Slow internet speed — every additional user takes up a chunk of your bandwidth. This is especially noticeable if your "neighbors" are downloading torrents or watching 4K videos.
- 🚨 Security threat — your network may be used to spread viruses, attack other devices, or even conduct illegal activities (such as DDoS attacks).
- 💸 Additional expenses — If you have a limited data plan, it may be used up by others, not you.
According to statistics Kaspersky LabMore than 30% of home networks in Russia have vulnerabilities that allow someone to connect to Wi-Fi without the owner's knowledge. Moreover, 68% of users don't even know how to check the list of connected devices. If you fall into this group, don't worry—we'll break it down step by step below.
How to Check Who's Connected to Your Wi-Fi
Before disabling sharing, you need to make sure it's actually enabled. Here are three reliable ways to check the list of devices on your network:
Method 1: Via the router's web interface
The most universal method that works on any model:
- Open your browser and type in the address bar
192.168.1.1or192.168.0.1(the exact address is indicated on the router sticker). - Enter your login and password (usually
admin/adminoradmin/password from the sticker). - Find the section
Wireless network→DHCP Clients ListorDevices.
Here's what it looks like on routers of different brands:
| Manufacturer | Path to the list of devices | Interface example |
|---|---|---|
| TP-Link | Basic → DHCP Clients List | Table with MAC addresses and IP |
| ASUS | Network Map → Clients | Interactive diagram with devices |
| Keenetic | Devices → Device List | Detailed information with host names |
| Zyxel | Network → Local Area Network → DHCP | List with connection time |
| MikroTik | IP → DHCP Server → Leases | Technical view with additional parameters |
Method 2: Via a mobile app
Most modern routers have proprietary apps that simplify network management. For example:
- 📱 TP-Link Tether - shows all connected devices on the main screen.
- 📱 ASUS Router — the "Clients" section with the ability to block unknown devices.
- 📱 Keenetic — the "Devices" tab with connection history.
Method 3: Via the command line (for advanced users)
If you have access to a computer running Windows or Linux, you can use commands to scan the network:
arp -a
This command will display all IP addresses and corresponding MAC addresses on your local network. For a more detailed analysis, Linux you can use:
nmap -sn 192.168.1.0/24
How to decipher a MAC address?
The first 6 characters of the MAC address (eg. 00:1A:2B) indicate the manufacturer of the device. For example:
- 3C:5A:B4 — Google devices (Nest, Chromecast)
- 78:31:C1 — Apple (iPhone, MacBook)
- 50:65:83 — Xiaomi (smartphones, smart devices)
A complete list of manufacturers can be found in the IEEE database.
Disabling public access on routers from different manufacturers
Now let's get to the main point: how to disable public access. Instructions vary depending on the router model, so we'll cover the most popular brands.
1. TP-Link (Archer, Deco, TL-WR)
Routers TP-Link Some of the most popular due to their price/quality ratio. To disable public access:
- Go to the web interface at
192.168.0.1ortplinkwifi.net. - Go to the section
Wireless mode→Wireless settings. - Find the option
Enable AP IsolationAnd turn it off (if it is enabled). - In the section
DHCP→DHCP Client Listcheck the connected devices and block strangers via the "Block" button. - Save the settings with the button
Save.
☑️ TP-Link Security Check
If you have a model with support OneMesh (For example, TP-Link Deco), additionally check the mesh network settings in the section OneMesh - sometimes sharing is enabled automatically for compatibility with other nodes.
2. ASUS (RT-AX, RT-AC, ZenWiFi)
Routers ASUS is renowned for its advanced security settings. To restrict access:
- Open the control panel at
router.asus.com. - Go to
Network Map→ tabClients. - Find unknown devices and tap on them → select
Block access. - In the section
Wireless network→Generaldisable the optionEnable Guest Network, if it is not used. - IN
Local Area Network (LAN)→RouteCheck if there are any rules for redirecting traffic to third-party IPs.
3. Keenetic (Giga, Hero, Viva)
Keenetic — one of the most secure routers on the market, but access leaks are still possible. Instructions:
- Go to the interface at the address
my.keenetic.net. - Open the section
Devices→List of devices. - Find suspicious gadgets and click on them →
Block. - Go to
Home network→Segmentsand check if any additional publicly accessible segments have been created. - IN
Security→Firewallturn on the optionBlock Internet access to the local network.
U Keenetic There's a unique "Access Control" feature that allows you to create a "whitelist" of devices. To activate it:
- Go to
Security→Access control. - Select mode
Allow only specified devices. - Add MAC addresses of your gadgets to the list.
4. Zyxel (Keenetic, NBG, VR)
On routers Zyxel (including models under the brand Keenetic old-style) the algorithm is as follows:
- Enter in your browser
192.168.1.1and log in. - Go to
Net→Local area network→DHCP. - In the list of leased addresses, find unfamiliar devices and remember their MAC addresses.
- Return to
Net→MAC address filterand add these addresses to the blacklist. - Turn it off
WPSin the sectionWireless network→Access point.
5. MikroTik (hAP, RB, CCR)
Routers MikroTik These are designed for professionals, so the settings are more complex. If you're unsure, it's best to consult a specialist. For experienced users:
- Connect via
WinBoxor web interface. - Go to
IP→DHCP Server→Leasesto view devices. - To block a device, create a rule in
IP→Firewall:
/ip firewall filter add chain=forward mac-address=00:1A:2B:3C:4D:5E action=drop comment="Block unknown device" disabled=no
Additional security measures after disabling public access
Disabling public access is only half the battle. To keep your Wi-Fi secure, take a few more steps:
1. Change your Wi-Fi password
Even if you've blocked all unauthorized devices, your old password may have been compromised. Create a new password according to these rules:
- 🔐 Length not less than 12 characters.
- 🔤 Use both upper and lower case letters, numbers, and special characters (e.g.
Wifi@Home_2026!). - 🚫 Do not use personal information (dates of birth, names, addresses).
On most routers, the password is changed in the section Wireless network → Security.
2. Disable WPS
Function WPS (Wi-Fi Protected Setup) This feature is designed to easily connect devices using a PIN code or a push button, but it's extremely vulnerable. Disable it in your router settings:
- 📌 On TP-Link:
Wireless Mode → WPS Settings→ disable. - 📌 On ASUS:
Wireless Network → WPS→ translate into positionDisabled. - 📌 On Keenetic:
Home Network → Access Point→ disableWPS.
Why is WPS dangerous?
The WPS PIN consists of 8 digits, but it's verified in two 4-digit sections. This allows hackers to crack it in a few hours using brute-force attacks. Even if you don't actively use WPS, the feature may be enabled by default.
3. Enable MAC address filtering
This method isn't 100% secure (MAC addresses can be spoofed), but it adds another barrier to attack. Algorithm:
- Find the MAC addresses of all your devices (they are listed on stickers or in the network settings).
- In the router's web interface, find the section
MAC address filteringorMAC Filtering. - Select mode
Allow only specified(Allow only listed). - Add MAC addresses of your gadgets to the list.
4. Update your router firmware
Manufacturers regularly release updates to patch vulnerabilities. Check your firmware is up-to-date:
- 🔄 On TP-Link:
System Tools → Firmware Update. - 🔄 On ASUS:
Administration → Firmware Update. - 🔄 On Keenetic:
General Settings → Update.
5. Set up a guest network (if needed)
If you occasionally grant access to guests, don't give them the main network password. Instead:
- Create a guest network in the router settings (section
Guest networkorGuest Network). - Set a separate password for it.
- Limit the speed and operating hours (for example, only from 10:00 to 22:00).
- Disable access to local resources (printers, network drives).
What to do if sharing turned on automatically
Sometimes users encounter a situation where their router suddenly starts distributing internet "left and right," even though no settings have been changed. This may be due to the following:
- 🤖 Automatic firmware update — Some routers reset security settings to factory defaults after updating.
- 🔌 Reset settings — could have occurred accidentally (for example, during a power surge) or at the initiative of the provider.
- 🕵️ Hacking a router — If the password for the admin panel is weak, an attacker could gain access and change the settings.
- 📡 Wi-Fi Roaming feature - on some models (for example, ASUS AiMesh) can automatically connect devices from other networks.
Actions in such a situation:
- Reset the router to factory settings (button
Reseton the back panel, hold for 10 seconds). - Update your firmware to the latest version.
- Change the password for your router's admin panel (not just Wi-Fi!).
- Check your settings for any unfamiliar redirect rules (section
ForwardingorNAT).
How to protect yourself from being hacked again
Disabling public access is a one-time action, but to keep your Wi-Fi secure in the future, follow these guidelines:
1. Check the device list regularly
Do this at least once a month. You can keep a spreadsheet of your gadgets' MAC addresses for quick checking.
2. Use a VPN for important operations
Even if your Wi-Fi is hacked, a VPN will encrypt your traffic. Free options: ProtonVPN, Windscribe (with traffic limit).
3. Disable remote router management
In the admin panel settings (Administration → Remote Management) Disable internet access. This will prevent attacks on the web interface.
4. Set up notifications about new devices
Some routers (eg. Keenetic or ASUS with Merlin firmware) can send push notifications or email when a new gadget is connected.
5. Check DNS settings
Attackers can change DNS servers in your router settings to redirect you to phishing websites. Make sure you're using reliable DNS servers:
- 🌍
8.8.8.8And8.8.4.4(Google DNS). - 🌍
1.1.1.1And1.0.0.1(Cloudflare DNS).
How to check DNS for spoofing?
Open command prompt and type:
nslookup ya.ru
If you see an unfamiliar IP address (not belonging to Yandex) in the response, your DNS is compromised.
Signs Your Wi-Fi Has Already Been Hacked
If you notice any of these symptoms, your network may be compromised:
| Sign | Possible cause | What to do |
|---|---|---|
| Internet speed dropped sharply for no apparent reason. | Third-party devices are consuming your traffic | Check the list of connected gadgets and block unfamiliar ones |
| The activity light on your router is blinking when all your devices are turned off. | Someone is using your network at night or when you are not home | Turn off your router at night or set up a Wi-Fi schedule |
| There are unknown IP addresses or domains in the router's history | Your traffic is being redirected to malicious sites | Reset your router and change your DNS |
| Unknown files or programs appear on your devices | Viruses are spreading through your network | Check all your gadgets with an antivirus and disable local resource sharing. |
| The router spontaneously reboots or changes settings | The device is infected with malware | Update the firmware manually from the official website |
Frequently asked questions about disabling public Wi-Fi
Is it possible to turn off Wi-Fi sharing via the mobile app?
Yes, most modern routers (for example, TP-Link, ASUS, Keenetic) have mobile apps where you can see a list of connected devices and block unfamiliar ones. In the app TP-Link Tether This is done in the "Devices" section, ASUS Router — in the "Clients" tab. The main advantage of these apps is real-time notifications about new connections.
What should I do if smart devices (lamps, speakers) stop working after disabling public access?
Many smart gadgets (for example, Xiaomi, Philips Hue) require a constant connection to the router. If they stop working after the changes, check:
- Have you blocked their MAC addresses in filtering?
- Has the guest network they were connected to been disconnected?
- Has the IP address range in the DHCP settings changed (some devices are bound to static IPs).
Solution: Whitelist the MAC addresses of smart devices or set up a separate IoT network for them.
How do I disable public access on a router from my provider (Rostelecom, Beeline, MTS)?
Routers from ISPs often have limited settings. The general algorithm:
- Go to the web interface (the address is usually indicated on the sticker, for example,
192.168.1.1or10.0.0.1). - The login and password may differ from the standard ones (check with your provider).
- Find the "Wi-Fi" or "Wireless Network" section and check:
- Is the guest network disabled?
- Is WPS disabled?
- Are there any unknown devices in the client list?
⚠️ Attention: Some providers block access to advanced settings. In this case, you may need to replace your router with your own.
Is it possible to turn off Wi-Fi sharing without accessing the router?
If you don't have access to your router settings (for example, you're in a hotel or using public Wi-Fi), you can:
- Disable the feature
File and Printer Sharingin your device settings (in Windows:Control Panel → Network and Internet → Network and Sharing Center → Change advanced sharing settings). - Use VPN to encrypt traffic.
- Disable network discovery in connection properties.
However, it's impossible to completely block public access without access to the router—you can only protect your device.
How do I know if public access is actually disabled?
Check this in several ways:
- Connect a new device (for example, a second phone) to your network - if the connection fails without entering the password, access is blocked.
- Use a network scanning application (eg. Fing or WiFi Analyzer) - it will show all connected devices.
- Ask someone to try the connection