In today's digital world, a wireless network has become the central hub connecting all devices in a home or office. Many users don't even realize that the default router settings, installed upon purchase, are often an open door for hackers. Blocking access Connecting to your network isn't just a matter of changing the numbers in the settings, but a set of measures to protect your personal data.
Unsecured Wi-Fi allows outsiders not only to freely use your traffic but also to intercept website passwords and hack into computers and smartphones. That's why knowing how to securely block old passwords and set up a new barrier is critical for every router owner.
In this article, we'll walk you through a step-by-step process to help you block access to unwanted visitors. You'll learn about the intricacies of encryption, the specifics of different hardware manufacturers, and methods that will make your network invisible to third-party scanners.
Why you should change your default password immediately
Router factory settings are created for ease of initial setup, not for long-term security. By default, many devices either use the same password for all models in the series, or don't have a password at all for guest access. Hackers know these combinations by heart and use special databases for quick entry.
If you didn't change your authentication data immediately after purchase, your network may already be compromised. Changing the factory data is the first and most important step to cybersecurityThis action blocks the possibility of exploiting standard firmware vulnerabilities.
In addition, many providers leave their service passwords when installing equipment, which are often shared among thousands of subscribers. Only a personal combination of characters guarantees that only you have access to manage the router. Don't rely on the fact that neighbors or random passersby won't be able to figure out a simple combination.
There are several levels of protection worth considering:
- 🔒 Change the router control panel administrator password.
- 🔑 Set a strong encryption key for a WPA2/WPA3 wireless network.
- 🚫 Disable the WPS function, which is often a security hole.
- 👁️ Hide the network name (SSID) from public display.
Preparing to set up router security
Before making any changes to your hardware configuration, you need to be properly prepared. You'll need a device (laptop or smartphone) that's already connected to the router, preferably via LAN cableA wired connection eliminates the risk of losing access while changing wireless network settings.
It's also important to know your gateway's IP address. Most often, it's 192.168.0.1 or 192.168.1.1, but from different manufacturers, such as TP-Link, Asus or Keenetic, addresses may vary. This information is usually written on a sticker on the bottom of the device.
⚠️ Attention: If you change Wi-Fi settings while connected to a wireless network, the network will be disconnected immediately after the changes are applied. To continue using the network, you'll need to reconnect to the router with the new password.
Logging into the control panel often requires a username and password. If you haven't changed them, try the default ones: admin/admin. On modern models MikroTik or Ubiquiti You may be asked to create a password the first time you log in. Make sure you have this information handy.
Step-by-step instructions: how to change and block access
The process of locking the old password and setting a new one is similar on most devices, although the interfaces may differ. After logging into the web interface, find the section responsible for wireless mode. It may be called Wireless, Wi-Fi or Wireless network.
Within this section, find the subsection Security (Security). This is where the access key is changed. Select the encryption type. WPA2-PSK or, if your hardware supports it, WPA3These are the most reliable protocols at the moment.
In the "Password/Key" field, enter a new password. It must contain mixed-case letters, numbers, and special characters. Once entered, click "Save" or "Apply." The router may reboot.
☑️ Secure Setup Checklist
Let's look at the differences in the interfaces of popular brands:
| Router brand | Path to the menu | Password field name | Recommended encryption type |
|---|---|---|---|
| TP-Link | Wireless -> Wireless Security | Wireless Password | WPA2-PSK (AES) |
| Asus | Wireless Network -> General | WPA Pre-Shared Key | WPA2-Personal |
| Keenetic | My Networks and Wi-Fi -> Home Network | Wi-Fi network password | WPA2/WPA3 |
| D-Link | Wi-Fi -> Security Settings | PSK encryption key | WPA2-PSK |
After changing the settings, all previously connected devices will lose connection. You'll have to go to each device (TV, phone, laptop) and enter the new key. This is the process of "blocking" the old access.
What should you do if you forgot your new password?
If you've forgotten the password you just set and can't connect, the only solution is to physically reset the router. Find the Reset button on the router (often recessed) and press it with a paperclip for 10-15 seconds while the router is powered on. The router will reset to factory settings, and you'll be able to log in using the login information on the sticker on the bottom.
Additional protection measures: filtering and hiding
Changing your password is the basics, but for maximum security, it's worth using additional tools. One of the most effective methods is MAC address filteringEach device has a unique network identifier (MAC address).
You can configure your router to allow only specific, pre-defined devices onto the network. Even if an attacker learns your password, they won't be able to connect because their MAC address won't be whitelisted. You can find this feature in the section Wireless MAC Filtering or MAC address filtering.
Another method is hiding the SSID (network name). This way, your network won't appear in the list of available networks on your neighbors' phones. To connect, you'll need to manually enter the network name on the new device. This doesn't provide 100% protection from security professionals, but it's a great way to keep nosy neighbors at bay.
- 🛡️ Enabling the firewall in the router settings.
- 📡 Disabling Remote Management.
- 🔌 Disabling WPS (Wi-Fi Protected Setup) due to vulnerabilities.
- 📝 Regularly update your router firmware.
⚠️ Attention: Settings interfaces and menu item layouts may change after updating your router's firmware. If you can't find the feature you're looking for, please refer to the official instructions for your specific model on the manufacturer's website.
Common mistakes when setting up security
Even when trying to protect their network, users often make mistakes that render their efforts useless. One of the most common is using passwords that are too simple, such as dates of birth or sequences of numbers. 12345678Modern computing power allows us to select them in seconds.
Another mistake is ignoring router firmware updates. Manufacturers regularly release patches to close security holes. If you're using old firmware, your router may be vulnerable even if the password is very complex.
Many people also forget to change the password for their router's admin panel. If an attacker gains access to the network, they can redirect traffic or change settings with the default administrator password. Always change it to a unique one.
Don't use the "guest network" feature without a password, hoping it will be isolated. A guest network should have its own strong encryption key, otherwise it will become an easy target for penetration into the main network through routing vulnerabilities.
Why can't you use WEP encryption?
The WEP (Wired Equivalent Privacy) protocol was cracked back in the 2000s. Now there are programs that can decrypt a WEP key in minutes simply by analyzing traffic. Always choose WPA2 or WPA3.
Checklist and result verification
After making all the changes, you need to verify that the protection is working correctly. Try connecting to the network from a device that wasn't previously on the allowed list (if filtering is enabled), or simply check the list of connected clients in the router control panel.
In the section Attached Devices, Client list or DHCP Client List You'll see all active connections. If you detect an unfamiliar device, immediately change the password and check if your Wi-Fi connection has been saved to guest devices without your knowledge.
Regular checks are key to peace of mind. It's recommended to check your settings every few months to ensure the firmware is up-to-date and the list of connected devices contains no "ghost" devices. Security is a process, not a one-time action.
Using specialized applications on your smartphone, such as Fing or Network Scanner, will help you quickly scan your network for intruders. These snails show not only the IP and MAC address but also the device manufacturer, making identification easier.
Is it possible to recover my password if I forgot it?
If you've forgotten your Wi-Fi password but have a computer that's already connected to the network (or was previously connected), you can view the saved password in the network connection settings of Windows or macOS. If no devices have access, resetting the router using the Reset button will help.
Does a complex password affect internet speed?
No, password complexity and encryption type (WPA2/WPA3) do not affect data transfer speed. Speed depends on your provider's plan, equipment quality, and signal strength. However, using legacy encryption (WEP/TKIP) may limit speed to 54 Mbps.
Do I need to change my password if my neighbors are just using Wi-Fi?
Yes, absolutely. Uninvited guests consume your bandwidth, reducing speeds for primary users. Moreover, while on the same network, they could theoretically access shared folders on your computers or intercept unencrypted data.
How often should I change my Wi-Fi password?
At home, it's sufficient to change your password every 6-12 months or whenever you suspect a breach. In office networks or high-traffic areas, it's recommended to change your password more frequently, for example, once a month or after employee departures.