When your internet slows down or your connection speed drops for no apparent reason, it's often a sign that an intruder has connected to your wireless network. Modern routers allow you to manage access remotely using just a smartphone, making network security accessible to everyone. You don't need to be a system administrator to block the intruder and restore a stable connection.
There are several proven methods that can be used effectively turn off Wi-Fi from someone else's device. We'll cover methods that work on most popular router models, including TP-Link, D-Link, Keenetic, and Asus. The key is to follow a consistent approach and understand which security settings are being changed.
In this article, we'll cover in detail how to find a list of connected clients, how to properly use MAC address filtering, and why changing your password is the most secure, yet drastic, method. You'll learn to distinguish your devices from others and be able to quickly respond to any unauthorized access to your traffic.
Checking the list of connected devices
The first step before blocking is to accurately identify the intruder. Users often mistakenly block their own devices, forgetting about them. First, log into the router's web interface or use the manufacturer's mobile app. In the section usually called Network Map, Client List or Client list, all active connections are displayed.
Please note the IP addresses and MAC addresses of the devices. MAC address — is a unique network interface identifier, which looks like a set of six pairs of hexadecimal numbers (e.g., AA:BB:CC:11:22:33). This parameter is key for subsequent blocking, as it is more difficult to forge than the device name.
- 🔍 Go to your router's app (for example, TP-Link Tether or Keenetic) and find the "Clients" tab.
- 📱 Compare the number of active devices with the number of gadgets in your home (phones, TVs, laptops).
- 🏷️ Look at the device names: if you see "Unknown" or a brand name you don't have (for example, Huawei when you only have Samsung), this is a cause for concern.
⚠️ Note: Some operating systems (such as iOS and Android) use the "Private Wi-Fi Address" feature by default, which hides the real MAC address. This can make identification difficult unless you check the physical labels on the devices.
If you detect an obvious intruder, don't rush to change your password. Try a targeted lock first. This will allow you to maintain the current password for your devices and avoid having to reconnect all your smart devices.
Using MAC address filtering
The most flexible access control tool is MAC address filtering. This method allows you to create a "black" or "white" list of devices. Unlike simply changing a password, you can selectively deny access to a specific device while leaving the network open to others.
To implement this method, you will need to find the section in the router settings Wireless MAC Filtering or MAC address filteringIt's usually located in the advanced wireless network settings. Here you'll see a table with access rules.
You need to copy the intruder's MAC address (which you learned in the previous step) and add it to the blocked list. It's important to select the correct filter mode:
- 🚫 "Deny" mode: Devices on the list will be blocked from connecting, but all others will be able to. This is ideal for blocking a specific neighbor.
- ✅ "Allow" mode: Only devices on the list will have access. This is the strictest security mode, but it requires manually adding each new device to the home.
- 🔄 "Disable" mode: The filter is disabled, access is open to everyone (default state).
After adding the address to the list and saving the settings, the intruder's device will lose connection to the router, even if it knows the correct password. The router's security system will ignore authorization requests from this specific identifier.
Changing the password and encryption type
If you don't want to mess with address lists or suspect your password has been compromised (for example, someone has seen it or guessed it), the most effective solution is to completely change the security key. This action will forcefully disable all devices from the network, including your own.
Go to your wireless network settings (Wireless Settings) and find the field WPA/WPA2 PasswordCreate a complex password that includes mixed-case letters, numbers, and special characters. Avoid simple sequences like "12345678" or your date of birth.
It's also critical to check the encryption type. Make sure the standard is selected. WPA2-PSK (AES) or more modern WPA3Outdated protocols like WEP or WPA (TKIP) are easily cracked by automated programs in minutes, rendering your password useless.
After changing your password, you'll need to reconnect all your home devices. This may take some time, but it ensures that no third-party device can access your account without your permission.
☑️ Checklist after changing your password
Setting up a guest network for isolation
The need to disconnect someone often arises when you've given your guests a password and they "forgot" to disconnect or shared access with friends. To avoid conflicts and keep your master password from changing, use the Guest network (Guest Network).
This feature creates a separate access point with its own name (SSID) and password. The main advantage of a guest network is isolation. Devices connected to it don't have access to your local network, where files, printers, or NAS storage may be stored.
You can set a guest access timer or simply change the guest network password separately from the main one. If someone starts abusing traffic, you only disable the guest segment, without affecting the rest.
and the operation of their smart lamps and TVs.
| Parameter | Main network | Guest network |
|---|---|---|
| Access to local files | Eat | No (isolated) |
| Traffic priority | High | Limited |
| Opening hours | Constantly | On schedule |
| Difficulty changing password | Requires reconnection of all devices | Affects guests only |
Using a guest profile is a modern standard of etiquette and security. It allows you to control who has internet access and when, without disrupting the regular user's internet use.
Remote control via mobile applications
Modern routers rarely require a cable connection for setup. Manufacturers offer convenient apps for Android And iOS, which allow you to manage your network from anywhere in the world. This is especially useful if you want to check who's connected to your Wi-Fi while at work.
Popular apps such as TP-Link Tether, ASUS Router, Keenetic or Google Home, provide a simplified interface. They often include a one-click "Block Device" feature. You don't need to navigate complex menus with IP addresses.
Simply open the client list in the app, tap on the suspicious device, and select the block option. The system will automatically create the necessary filtering rule. Many apps also allow you to set a traffic or time limit for a specific device.
What should I do if the app doesn't see the router?
Make sure your phone is connected to the same Wi-Fi network as your router. If you're using mobile data (4G/5G), ensure the remote cloud management feature (Cloud ID) is enabled in the app.
Don't forget to regularly update your router's app and firmware. Updates often contain security patches that close vulnerabilities that could allow hackers to gain control of your network.
Additional network security measures
Blocking a specific user is a reaction to an incident that has already occurred. However, it's better to prevent problems by strengthening your overall security. There are a number of settings that can make your network invisible or inaccessible to random passersby.
One of the effective measures is to turn off the broadcast SSID (network name). In this case, your network won't appear in your neighbors' list of available networks. You can only connect to it by manually entering the exact name and password. This doesn't provide 100% protection, but it does deter most internet users.
It's also worth paying attention to the WPS function. This protocol is designed to quickly connect devices without entering a password, but it has known vulnerabilities. Recommended disable WPS in the router settings to prevent the possibility of guessing the PIN code.
⚠️ Note: Router settings interfaces are constantly being updated. The layout of menu items may vary depending on the firmware version. If you don't find the function described, check the official instructions on the manufacturer's website for your model.
A comprehensive approach, including a strong password, up-to-date firmware, and regular client list monitoring, will ensure peace of mind and high internet speeds.
Frequently Asked Questions (FAQ)
Can a blocked user reconnect?
If you used a password change, they won't be able to connect without the new password. If you used MAC address filtering, an experienced user could try "cloning" the MAC address of your authorized device (e.g., a phone) onto their computer. However, for the average user, this is a complex procedure.
Does having one connected neighbor affect internet speed?
Yes, it does. The Wi-Fi channel is shared between all active clients. If your neighbor starts downloading large files or watching 4K videos, your speed may drop, and your gaming ping will increase, as the router is forced to share the resource among devices.
Do I need to reboot my router after being blocked?
Most modern routers apply the rules instantly. However, if the device doesn't shut down immediately, a brief reboot of the router will help apply the new security settings and clear the connection cache.
Will the neighbor see that he is blocked?
They won't receive any special notification. It will appear to them as a sudden loss of connection or an inability to connect to the network (an "Obtaining IP address..." or "Authentication" error). They won't know if you've changed your password or blacklisted it.