Networking cover:Layout 1
7/9/09
14:22
Page 1
Set up a
wireless network the practical guide to setting up, configuring and securing a wireless home network
✔ Step-by-step guides ✔ Essential tips & advice ✔ Set up a Wi-Fi router ✔ Connect to your network ✔ Secure your LAN ✔ Manage networks ✔ Boost signal strength
Dependable advice & time-saving techniques from the experts at PC Utilities magazine
GR001
Welcome page:PCE65 pp
8/9/09
14:11
Page 2
www.guidaroo.com
Editor Ian Barker Design Advanced Design Contributors Gavin Burrell, Simon Clark, David Nield, Iain Warde, Wayne Williams
Introduction Having a network at home is no longer the rarity that it once was. ISPs routinely offer free wireless routers as part of broadband deals and many households now have more than one PC. Add in the capabilities of the latest versions of Windows and it’s not hard to set up and connect to a network either, so more and more people are taking the plunge. A network can allow all of your PCs to share an Internet connection, printer or external drive as well as exchanging files between systems. The traditional way of creating a network was to run cables between each of the machines. In the early days this would often be co-ax (the type of cable used for TV aerial leads) but is now more likely to be the slimmer and more flexible twisted pair cable, similar to telephone wires. At its simplest a network involves connecting two PCs together with a cable. If you have more machines then you’ll need a hub or router from which all of the connections radiate. Wired networks are still popular in offices where people have a fixed workstation and where security is an important factor. But in the home you probably don’t want to spend your time running cables to all of the places where you may use a PC. This has led to the rise in popularity of wireless networking, or Wi-Fi, where a router sends a wireless signal around the building that can be picked up by any machine at any point. Ian Barker ianb@magnesiummedia.com
Magnesium Media Ltd PO Box 498, Macclesfield Cheshire, SK10 9BJ United Kingdom Telephone: 01625 855036 Website: www.guidaroo.com
The Set Up A Wireless Network Guidaroo is published under licence by Magnesium Media Ltd. All material © Magnesium Media Ltd. No material in whole or in part may be reproduced, stored or transmitted without the prior written consent of Magnesium Media Ltd. Liability: Whilst every care has been taken in the writing, research and preparation of this product, the publisher cannot be held responsible for any errors or for the contents of the websites mentioned. All copyrights and trademarks are acknowledged.
Welcome page:PCE65 pp
4/9/09
11:15
Page 3
Contents Networking essentials 4
Introduction to networks
Learn the benefits of a wireless network and cut through all the jargon.
6
Set up a home Wi-Fi network
Find out what equipment you need and how to get your home network up and running.
Networking and Windows 10 The Network And Sharing Center Monitor and configure your home network with the help of Vista’s built-in options.
12 Connect to a network in Vista Find out how to connect your Windows Vista PC to your new network.
14 Network your home PCs in XP Share your Internet connection between all your Windows XP PCs.
Advanced networking 18 Tech talk: The Internet Learn about the infrastructure of the Internet and how it all works.
21 Tech talk: Internet firewalls Find out how to keep your network fully protected with a firewall.
24 20 tips: Manage your Wi-Fi network Get the most from your wireless network with our essential tips.
28 Upgrade your Wi-Fi network Improve the range and transfer speeds of your wireless home network.
Welcome page:PCE65 pp
4/9/09
11:16
Page 4
Introduction to networks Ian Barker explains what networking is all about and the key points you need to bear in mind when setting up a home LAN
T
he traditional way of creating a network was to run cables between each of the machines. In the early days this would often be co-ax (the type of cable used for TV aerial leads) but is now more likely to be the slimmer and more flexible twisted pair cable similar to telephone wires. At its simplest a network involves connecting two PCs together with a cable. If you have more machines then you’ll need a hub or router from which all of the connections radiate. Internet service providers often provide a wireless router as part of their connection package. Most have wired connections too, so you can use a mix of devices. This has meant that having a wireless network is now a popular option. It gives you the flexibility to use a PC in any room of the house or even surf the Web from your laptop in the garden. Even if you didn’t get wireless kit as part of your Internet package you can pick up a router for around £30 and it isn’t hard to set up. You will of course
need a wireless adaptor for each of your PCs. Laptop machines usually have these built in, but on any machine adding wireless is as simple as plugging in a USB adaptor. Using wireless scores high marks for convenience but there are security considerations – which we’ll look at in more detail later in this guide. Also it can be hard to maintain signal strength, particularly in large buildings or older properties with solid internal walls. You can use repeaters or high-gain antennas to boost the range of a wireless LAN. Alternatively you can get around these issues with the third alternative which is powerline or Home Plug networking. This uses special adaptors to transmit the network signal via your mains wiring, ensuring that you can connect any device on the same mains circuit without needing to run extra cables. Again there are cross over devices that allow you to mix
Welcome page:PCE65 pp
4/9/09
11:16
Page 5
powerline and wireless PCs in the same network. Setting up a powerline network is likely to be more expensive than wireless. However it offers the security benefits of a wired LAN and has consistent levels of signal strength, making it a good choice for streaming media.
Jargon buster ADSL
Wireless security Because a wireless router beams out its signal over a fairly wide range, it’s quite possible for your neighbour or someone in the street to attach to your network. Obviously you don’t want this to happen as it allows someone else to steal your Internet band width and your data is vulnerable. Fortunately there are some simple steps you can take to make your network secure. The first and most important task is to encrypt the wireless signal. Most routers now support WPA (Wi-Fi Protected Access) and increasingly it’s activated by default.
Useful Web links Microsoft networking http://tinyurl.com/2rdtg Linksys
www.linksys.com
Belkin
www.belkin.com
NETGEAR
www.netgear.com
BT
www.bt.com
Solwise
www.solwise.co.uk
Wired home www.wiredhomeguide.co.uk Nuts about nets
www.nutsaboutnets.com
Practically Networked www.practicallynetworked.com Port Forward http://portforward.com/
ADSL2
ADSL2+
Ethernet
HomePlug
The latest routers like BT’s Home Hub have WPA encryption enabled by default Using encryption means that even if someone does intercept your data it will be garbled, it also prevents access to your network without a password in the form of a Pre-Shared Key (PSK). Many of the latest devices offer a push-button system called WPS which automatically sets up a secure connection. Once you’ve encrypted the signal there are a couple of further steps that it’s worth taking. The first is to change the router’s default admin password so that there’s no risk of anyone attaching to it and changing any of the settings. The second is to switch off the Service Set Identifier (SSID) broadcast, this effectively makes your wireless network invisible to anyone who doesn’t know it’s there. We’ll look at how to do all of this later in the guide. Much of the latest wireless kit offers WPS (WiFi Protected Setup) which allows you to create a secure connection at the push of a button.
Mb/s
PSK
QoS
TKIP
WEP
Wireless b
Wireless g
Wireless n
WPA
WPA2
WPS Powerline networking kit enables you to transmit data via your home’s mains wiring
Asymmetric Digital Subscriber Line. The broadband technology that splits a telephone line so that frequencies not used by voice calls are used to transmit and receive data at up to 8 Mbps. Enhanced version of ADSL allowing download speeds up to 12Mb/s. The latest ADSL standard capable of download speeds up to 24Mb/s. The technology behind most modern networking, developed by Xerox in the mid-1970s. Produced by an alliance of industry groups, this is the most popular standard for powerline networking. Measure of information flow in megabits (one million bits) per second Pre-Shared Key, the password used by WPA security to establish an initial connection to the router. Quality of Service, a feature that allows you to prioritise traffic based on port numbers or addresses. Temporal Key Integrity Protocol, used by WPA security to ensure each data packet is sent with a unique encryption key. Wired Equivalent Privacy, the original Wi-Fi security standard, now widely regarded as inadequate protection. (802.11b) Older standard allowing wireless data transfer at up to 11Mb/s. (802.11g) Standard allowing wireless data transfer at up to 54Mb/s. (802.11n) More recent standard allowing data transfer at up to 300Mb/s. Currently still in draft form, the final standard is expected to permit up to 600Mb/s. Wi-Fi Protected Access, security protocol created to offer greater protection than WEP. The latest development of WPA using an Advanced Encryption Standard (AES) algorithm. Wi-Fi Protected Setup, a standard for easy setup of a secure wireless network usually via push buttons on each device.
PCE66 Set up wireless network:PCE65 pp
7/10/08
09:15
Page 50
WI-FI NETWORKING
Set up a home wi-fi network David Nield explains the hardware and software structure you’ll need to have in place to create a home network
H
HOW TO GUIDE HARDWARE: Wireless router/adaptors LEVEL: Intermediate ON THE WEB: http://computer.howstuffworks.com
ome networking has come on leaps and bounds in the last couple of years. Whereas the first broadband suppliers frowned on users connecting up multiple machines to the Web, now most ISPs give you a wireless router for free when you sign up. Modern day PCs, laptops and routers can find each other in seconds, which is an impressive trick when you consider that the first networks would need a degree in computing to configure. Setting up a wi-fi network in your home is inexpensive and straightforward, and will give all of your computers and other devices access to the Internet. As well as getting everyone online, you’ll also be able to use a wi-fi network to share other resources. Windows enables you to set up particular folders that can be shared, while many printers and external hard drives are designed to be hooked up to a router rather than a single PC. If you need networking functionality, look out for this feature in any hardware that you buy in
the future – a printer that can access all of your home computers through the router, for example, saves you having to swap it round from machine to machine.
Networks and Windows Windows XP, released in 2001, was the first of Microsoft’s operating systems to really simplify the networking process and make life easier for the non-technical user. This approach has been continued by Vista, which boasts a new-look Network and Sharing Centre where you can manage all of your PC’s various connections. The good news is that the default settings employed by Windows and your hardware should suit the majority of users; if you do need to make changes, you’ll find the interface intuitive and straightforward to navigate around. If you have Vista or XP running on the computers connected up to your network then you shouldn’t have any problem in getting each device to see the others.
Unpacking the D-Link Wireless N Starter Kit
1 50
D-Link’s Wireless N Starter Kit is ideal for creating a home network or upgrading the hardware supplied by your ISP. It retails for around £60 and you can read more at www.d-link.co.uk (check for compatibility with your existing hardware before buying any new devices).
ISSUE 66
2
Open up the package and you’ll find a router and a wireless USB adaptor included, together with an instruction manual that should be kept close at hand. There will also be a software CD included that will help you set up and configure the router and adaptor to work with your various computers.
PC Explorer
PCE66 Set up wireless network:PCE65 pp
7/10/08
09:15
Page 51
WI-FI NETWORKING
Finding the right ISP
A router sits at the centre of your wi-fi network, controlling communication between each of your PCs
How does wi-fi work? The wireless technologies labelled as “wi-fi” (originally Wireless Fidelity) make use of radio signals to transmit data from one location to another through the air. Wi-fi signals work at a higher frequency than mobile phones, televisions and other devices to avoid interference, but signal strength can be affected by thick walls and other objects. Newer versions of wi-fi – which is officially labelled 802.11 after the series of protocols it uses – are overcoming these problems and improving signal strength as well as available bandwidth. 802.11b was the first standard to be used widely, and this has since been superceded by 802.11g, which offers a maximum bitrate of 54Mbit/s (as opposed to 11Mbit/s in the earlier version). 802.11n has yet to be officially confirmed as a standard, though you can already buy hardware that uses it – this latest evolution can reach bitrates of 300Mbit/s across two streams (with a potential throughput or transfer speed of 100Mbit/s). The strength of the signal on your network is determined both by your router and the wireless adaptor installed on your PC or laptop. If the need arises,
3
Choosing an Internet Service Provider can be a daunting challenge, and there are many different companies on the market to weigh up. If you live in the right location, you might be able to get cable broadband from Virgin Media – use the postcode checker at www.virginmedia.com to see if your area has access. The more common ADSL (Asymmetric Digital Subscriber Line) broadband is available almost everywhere. First of all, you need to factor in the extras included with your broadband supply. Both Virgin and Sky offer all-in-one broadband, telephone and TV packages – your choice of ISP might therefore depend as much on the channels you want to watch as the broadband speeds you can get. As well as the price and speed of each service, take into consideration the other factors – will you have to pay for a router or installation? Are there any restrictions on how much data you can download? Is the broadband tied in with any other online services that you might
both bits of kit are easy enough to upgrade, and should be backwards-compatible with earlier equipment.
Hardware setup The good news is that your Internet Service Provider (ISP) should provide all the hardware that you need to get online as part of its package. The ISP might even arrange for an engineer to come to your home to install the equipment, though the process is straightforward enough for most users to manage themselves. With a wireless router in place, piping out broadband around your home, you’ll then need an adaptor on each of your desktop PCs and laptops – this adaptor can be
You’ll need to attach the three wireless antennas supplied to the sockets round at the back of the router. The feed coming from your ADSL or cable modem can be plugged into the Internet socket at the back of the router. You’ll also need to plug in the mains adaptor to power the unit.
PC Explorer
4
want to use? It’s also important to check the ISP’s reputation for customer service, as you’ll be relying on this should something go wrong – www.thinkbroadband.com offers a comprehensive ratings and reviews guide to each of the suppliers, together with the thoughts and opinions of existing customers. If you don’t find your questions covered on the forums, then you can start a thread of your own.
Visit the thinkbroadband.com website to access a detailed set of ISP reviews and customer ratings
in the form of a USB dongle, a built-in chip, or (for desktop PCs) a dedicated network card. More and more motherboards are coming with wi-fi compatibility built-in, so if you have a newer computer then you might find that you don’t need any additional adaptor. Many routers now combine a modem and router into the one device, so the unit plugs straight into the master socket in your home. If you’re using cable broadband (see below), then the router plugs into the set-top box that delivers your TV channels. Networks don’t have to be wireless, of course – if your PC is in easy reach of the router, then you can enjoy a faster and more reliable connection by joining the two devices with a standard Ethernet cable.
Before you plug the USB adaptor into your PC or laptop, it’s important that you install the supplied software. By buying extra adaptors, you can hook up more machines – for maximum compatibility, it’s recommended that you buy adaptors from the same manufacturer.
ISSUE 66
51
PCE66 Set up wireless network:PCE65 pp
7/10/08
09:16
Page 52
WI-FI NETWORKING
Powerline networking kits like these are available from suppliers such as www.devolo.co.uk
BT’s Home Hub equipment uses the latest wi-fi technology and includes a VoIP handset as well
Modifying an existing setup Even if most of the hard work is done by your ISP in terms of hardware configuration, there’s no harm in modifying the setup to suit your own needs. Be certain that you know what you’re doing though, as your ISP may not be obliged to offer technical support if you have customised the network configuration in some way. If you’re living in a large home and the supplied router is struggling to reach each of the rooms where signal is needed, you might want to consider boosting the range of the wi-fi. One of the ways to do this is by replacing the antenna on your router with a more powerful one (be sure to check that you have a compatible router before you start pulling it apart). It’s also possible to use a range extender
box, which picks up the original wi-fi signal and then retransmits it at a higher rate, reaching a greater distance. Check out forum postings at a site such as www.digitalspy.co.uk for some real-life examples of hardware setups that can be used to extend the range of your wi-fi signal, as there are many different permutations and some are more complicated (and expensive) than others.
mains adaptor, you can run another wired adaptor from any plug socket in the home. The signal is likely to be more stable, as there’s no wireless broadcasting involved. While this sounds ideal in practice, and can be of great benefit to those in larger houses, it is a more expensive and less flexible option. Whether or not powerline adaptors are suitable for your own network will depend on your individual circumstances and what you need from your network. To see some of the powerline kits available on the market, visit an online hardware retailer such as www.ebuyer.com or www.dabs.com. As always, take note of the customer reviews included with each product to help you make an informed decision.
Hardware options Alternative networking One of the alternatives to wi-fi networking to appear in recent years is the concept of powerline networks. This technology makes use of the powerlines already in place inside your home, in effect turning them into an Ethernet network. With your router plugged into one
With a router in place broadcasting a wi-fi signal around your home, there are a number of choices for connecting each of your PCs up to it. Many modern laptops and motherboards now feature built-in wireless functionality, so there’s no need for any additional hardware – your laptop or desktop will simply detect
Secure your wi-fi connection
1 52
Router settings can be accessed by typing the device’s IP address into your browser. You should find the address is on a label on the device itself. You’ll need to sign in with an admin password, and your first job should be to change this from the default one given in the documentation.
ISSUE 66
2
If your router supports both WEP and WPA you should opt for the latter to ensure maximum protection. You’ll also need to select a pre-shared key to establish the connection between devices – try to make this at least 16 characters long and use a mix of letters and numbers.
PC Explorer
PCE66 Set up wireless network:PCE65 pp
7/10/08
09:17
Page 53
WI-FI NETWORKING hardware retailers, and companies such as www.belkin.co.uk provide a full range of routers and wireless adaptors. Open up the Device Manager component from within Control Panel and you’ll be able to see the wired and wireless devices detected on your PC. With the correct hardware installed, both Windows XP and Windows Vista have the built-in ability to detect standard wi-fi networks that are in range. To connect to a secured wireless signal, you’ll need to supply a valid network key (see the guide over the page for more details).
Keeping your network secure
Belkin is one company that produces a full range of wireless routers and adaptors for your home computers wireless networks as they appear. If your laptop doesn’t have wireless, then you can invest in a simple USB dongle that will provide the functionality. These dongles will also work on desktop PCs, as well as internal PCI cards that slot inside your case – while they are more difficult to install, they generally provide a stronger, more stable connection, and won’t take up one of the USB ports on your case (which you may need for other peripherals). All of these devices are widely available from most
You can view the wired and wireless network devices installed on your PC via the Device Manager utility
3
Whilst it’s undoubtedly convenient, wireless networking poses a unique set of risks, particularly since many routers come supplied with their built-in security features turned off. There are two parts to securing a wireless network – firstly, to ensure that the data transmitted is encrypted so that it can’t be easily intercepted, and secondly to prevent unauthorised access by your neighbours or passers by who might want to access the PCs on your network or simply steal some of your broadband bandwidth. In terms of encryption, most home routers now offer both the older Wired Equivalent Privacy (WEP) option and the newer WiFi Protected Access (WPA) – you should use the latter wherever possible, as it offers a greater level of security. With either system you need to provide a key when connecting in order to authenticate the device. As well as enabling the wireless security settings you should take additional steps to protect your router from unauthorised access. As a first step you should change the Service Set Identifier (SSID) – by default this is usually the name of the router manufacturer, so if you haven’t changed it hackers may be able to guess the default password. It’s also a good idea to change the router’s admin password to prevent changes being made to its settings. It’s possible to restrict your router so that only specified devices can attach, and for this to work you
By default, most routers broadcast their Service Set ID in order to allow devices to find them easily. This is usually the maker’s name, so it’s a good idea to change it so as not to giveaway important information to potential hackers. For maximum protection you should turn off SSID broadcasting.
PC Explorer
4
need to enter the MAC address of each network card. Whilst using MAC address filtering offers a very high level of security, it does make it more difficult to attach new devices.
WEP versus WPA Enabling encryption is the most important part of securing your wireless network. Older routers can only use the WEP standard, which uses a shared key to authenticate devices and needs to be entered each time you configure a new device on the network. Whilst it’s better than nothing, WEP can be cracked by a knowledgeable hacker because the key it uses is fixed and attached to each packet. If you have to use WEP, you should change the key occasionally to ensure you stay as secure as possible. Using WPA encryption is much more secure and should be your choice if your hardware supports it. This method also uses a pre-shared key (PSK) in order to connect, but thanks to its use of Temporal Key Integrity Protocol (TKIP) a different key is used on each packet that’s transmitted, making WPA much more difficult to crack. Each time you attach a new PC or other device to the network you’ll need to supply the PSK, and your master key should be at least 16 characters long and a mix of letters and numbers in order to offer the best protection. If you’re running Windows XP you must have Service Pack 2 installed in order to enable the WPA client.
Newer wireless routers support the superior WPA standard for improved home network security
Routers usually have additional security options, and most include a built-in firewall to protect against outside intrusion. It’s worth turning this on, though you shouldn’t rely on it alone – you need to have a software firewall installed on your PC as well to provide maximum protection.
ISSUE 66
53
PCE66 Set up wireless network:PCE65 pp
7/10/08
09:17
Page 54
WI-FI NETWORKING
The Network and Sharing Centre Windows Vista includes a Network and Sharing Centre interface that you can access through Control Panel or via the Network option on the Start menu. This screen enables you to see at-a-glance the networks that you’re connected to, and how your information is being shared with other machines hooked up to the same router. Follow the Customise link on the right, and you can hide your computer from other local users, as well as manage the PC’s network connections (you might want to switch from a wireless connection to a wired one, for example). Of course, being connected to a home network means that you can share much more than broadband – it’s also possible to share printers and hard drive folders (whether on a PC or a standalone external disk), so everyone on the network can benefit from the resources that are available. For an ideal setup, you’ll want to invest in a printer or storage device that is configured for networks. While you can make use of standard printers and external hard drives, the computers to which they are attached will have to remain on constantly in order to let other users gain access to them.
54
Storage drives such as the Droboshare (www.drobo.com) provide storage to everyone on the network
1
At the back of your router you should have a connection to the power supply, a cable leading to the modem or your phone line, and Ethernet cables stretching to PCs nearby on the network. Additional computers can be added wirelessly, which removes the need for physical cabling.
2
The router settings can be accessed through the IP address that you’ll find in the supplied documentation. Simply type in this address into your Web browser’s address bar, then enter the default password and user name (which should also be printed somewhere in the user manual).
3
Every router will have a different set of screens to work through, but you shouldn’t find it too difficult to navigate between the various sections. Under the Wireless Settings you can configure the SSID broadcast by your router, which is the name given to the network that will appear in Windows.
4
Windows Vista features a new look Network and Sharing Centre that you can access via the Control Panel. Here you can view and edit all of the settings relating to your computer’s network connection – click on the View full map link to see all of the PCs connected to your router.
ISSUE 66
PC Explorer
PCE66 Set up wireless network:PCE65 pp
7/10/08
09:18
Page 55
WI-FI NETWORKING
5
In Windows Vista you can view a series of wireless networks that are in range before deciding which one to connect up to. You’ll be able to see the signal strength of each network, and Windows will also tell you whether or not there is some form of security protection in place.
6
If WEP or WPA protection has been enabled on the router, then you’ll need to provide a password. This may be printed on a sticker on the router, and can also be accessed through the router screens we looked at earlier. Enter the password carefully, then click Connect to access the Web.
7
When you’re correctly connected to a local network and/or the Internet, a small icon will appear in the lower right hand corner indicating all is well. In the case of a wireless connection, you can hover over this icon to check up on the signal strength, and to see the SSID we mentioned earlier.
8
On the Network Connections screen you can manage the wired and wireless connections set up on your computer, disabling and enabling them as required. To make more detailed changes to a particular connection, right-click on it and choose Properties from the menu that appears.
9
The Properties screen will reveal a range of different settings that should all be correctly configured by Windows. Open up the TCP/IP Properties screen (by selecting the entry and clicking Properties) and you should find your PC is assigned an IP address automatically by the router.
10
On the Network and Sharing Centre screen you can follow the View computers and devices link on the left hand side to see a list of all the other computers visible on your local network. If you’re working in the home you might only see one or two, but office networks will feature more.
PC Explorer
ISSUE 66
55
PCE58 Connect to a network
16/7/07
10:40
Page 88
INTERNET & EMAIL
Connect to a network Microsoft’s new operating system makes it easier than ever to hook up to other computers over a network, as David Nield demonstrates
SOFTWARE: Windows Vista
ith more accessible, more powerful and less expensive hardware arriving all the time, home networking is enjoying a rapid growth in popularity. It’s not just computers on our home networks either – printers, hard drives and media centres can all be easily connected up, enabling users to share resources and digital content in just a few clicks of the mouse. Windows Vista includes redesigned networking technology, improving support for both wired and wireless connections and ensuring that PC users at every level can get connected to a network quickly. We’ll give you a brief guide to some of the features and screens that you’ll come across in the guide that follows.
LEVEL: Intermediate
The Network and Sharing Centre
W
HOW TO GUIDE ON THE WEB: www.microsoft.com/vista
The new-look Network and Sharing Centre, accessible from the Start menu or Control Panel, is where you can access all of your connection information and settings. There are a whole host of
different options that you can get at and tweak from this one screen – from connecting to a wireless network to viewing a map of linked PCs, you’ll find it all here (open up Control Panel from the Start menu and select Network and Internet/ Network and Sharing Centre to get to it). When you plug a network cable into your PC, or install a wireless card, Vista should have no problems in connecting up your computer. If necessary, click the Connect to a network link on the left of the Network and Sharing Centre and follow the instructions that appear on screen. As well as making it easier to get online, the Vista Network and Sharing Centre also makes it more straightforward to share files and folders with other PCs connected to your own. If you’re just setting up an Internet connection for the first time, make sure you have the instructions and registration details supplied by your Internet Service Provider (ISP), as well as any necessary software discs.
Setting up a router Routers certainly make life a lot easier for the humble home user. They can plug directly into your Internet connection and then share it out equally to all of the PCs in your home, making sure no wires are crossed and all resources are divided properly. If you can’t get on the Web, then the router options screen is a good area to check for problems. From here you can also beef up the security provided by the router, and check which computers are hooked up. The standard way of accessing your router is by typing its IP address into the address bar of your Web browser (check the documentation that came with the device if you don’t know what it is). Via the router settings screen you can keep an eye on the status of your connection, troubleshoot problems, and hide the network name from being broadcast. The model shown here is a BT Voyager router, which provides all of the basic options needed on a home network and then some. Note that a username and password will be required to log on (a default log on will be listed in the manual, which you should change as soon as possible).
88
The Ultimate Windows Vista Handbook
By accessing your router through a Web browser, you can access a range of useful network settings
PC Explorer Essentials Series
PCE58 Connect to a network
16/7/07
10:41
Page 89
INTERNET & EMAIL
1
Click on Start Menu/ Network and you’ll be able to see the devices and computers that your PC is hooked up to. On larger networks, it may take some time before every device appears. Using the toolbar options at the top you can add a new wireless device or a printer.
2
The network page should include an entry for your router, if there is one on your network. Right-click on it and choose Properties to see more information about the router, including the model, manufacturer and a link to the device’s webpage (which opens in your browser).
3
Click on the Network and Sharing Centre link to visit the main network interface within Vista. All kinds of information is displayed here, including how your PC is connecting to the Web, and how it interacts with the other machines currently installed on the network.
4
Select View full map to see a more detailed diagram of your network connections, or Connect to a network to join a different one (such as a wireless signal set up in your home). Click on the Set up a connection or network option on the left to create a new broadband or dial-up connection.
5
By clicking on Manage network connections you can view details of the networks that your PC is currently connected to (just one in this case). Rightclick on the network icon and choose Properties for more details (you’ll need to be running an Administrator account for this).
6
The Local Area Network Properties screen will look familiar to XP users, but there are a number of extras here, such as the support for IPv6. Click Configure to change the settings of your network card or device, or use the Properties option to set up the network connection itself.
PC Explorer Essentials Series
The Ultimate Windows Vista Handbook
89
XPHB4 pp112-119:XPHB3 pp24-33
9/12/08
10:48
Page 112
Network your home PCs Share a broadband connection, files and hardware devices with a home computer network
A
lthough actual statistics are thin on the ground, an increasing number of households possess more than one PC these days. There’s a good chance that you yourself own at least two, and the most common reason for this is systems becoming old and outdated – many people prefer to buy a brand new ready-to-use computer, rather than going to the hassle of upgrading the old one, and the still-functioning original then gets passed on to the kids for them play on. Fights over the family’s lone PC are commonplace so this hand-me-down approach makes a lot of sense. Laptops have also become popular with home users over the past few years, so even if you only have the one desktop system you might still have two computers in the house, or possibly more. Networking these computers together is an obvious path to take. Not only because it makes sharing files and folders between the systems much easier – simply drag and drop – but because you can share hardware between them too. The main resource to share is your internet connection, but you can just as easily use a single printer or webcam across multiple PCs, saving you an awful lot of time, awkwardness and money. Setting up a home network is easy, as Windows does most of the hard work for you, but there are several things to consider, not least the type of network you want – wired, wireless or a combination of the two. Wayne Williams
Protecting your network Connecting one PC to the internet can be dangerous enough, what with viruses, Trojans, worms and hackers to worry about, but a network is even more at risk. There are several steps you need to do to protect it – the first is to make sure you have all the latest service packs and critical updates from Microsoft installed on all of your PCs. Next, make sure you install a good virus checker on every computer in the network, and also a good anti-spyware program. To keep your network secure you will need to set up a firewall, a program (or piece of hardware) designed to prevent other unwanted computers from communicating with your PC. Windows XP comes with a built-in firewall which is turned on by default when you install Service Pack 2. If you have a wireless network then you’ll need to secure this by encrypting it using Wired Equivalent Privacy (WEP) or Wi-Fi Protected Access (WPA). If you don’t take this measure, anyone near enough could use your broadband connection for free. Read your router manual for details of how to encrypt your connection, and be sure to change the default password as well.
Secure your Wi-Fi network to stop other people from using it without your knowledge
112
The Essential Windows XP Handbook
XPHB4 pp112-119:XPHB3 pp24-33
9/12/08
10:48
Page 113
You can add a PC to a wireless network in just a couple of clicks
Networking basics Networking technologies have been around almost as long as home computers themselves, but the idea has only really gathered momentum outside the realm of enthusiasts and professionals with the growth of the Web. The Internet is a prime example of the usefulness and necessity of networks, and the need to get every PC in a home online has helped drive development and take up. Nowadays, most home networks make at least some use of wireless technology – data is streamed through the air, making wiring no longer necessary. With the launch of Windows XP, networking was made easier than ever, and is now well within the reach of home users. A wired network is more reliable and secure than a wireless one, but running cables around your home isn’t always practical. Most home networks make use of both types of connections – if you can easily connect a PC via an Ethernet cable then you should do, but computers can be added wirelessly in just a couple of clicks and thus offer a much more convenient option. Bear in mind that wireless networks can be affected by other devices (such as mobile phones), and don’t travel too well through metal or walls, so try and position your router as centrally as possible.
The right hardware set up Most pre-built PCs on the market will come with networking capabilities built into the motherboard, but it is possibly to buy hardware to connect up older machines too. Every PC needs some way of connecting to the network – if this is via a cable, then you’ll need either an Ethernet port on your motherboard or a PCI card that provides an Ethernet port (known as a network interface card or NIC). If the computer is connecting wirelessly, you’ll need a wireless adapter, which can be either internal or external (i.e. USB). If you’re sharing an Internet connection as well as other resources (and the vast majority of users are), then you’ll probably want a router in order to split the connection and share information between your PCs. If
Each PC on your network will need some way of connecting – a PCI card is one option
you’re only connecting up a couple of computers, then you can use one of them in place of a router (i.e. one PC connects to the Web via the other) – though you’ll save money, the main computer will need to be on for the secondary one to have access, so a router is still a more convenient option. The vast majority of routers that you’ll find in the shops will be able to connect together four PCs via the standard cabled method, as well as dozens more wirelessly. Make sure the router you buy matches the type of Internet connection you have, and offers some form of security protection for wireless broadcasts. If you’re buying a new computer from a shop or online retailer, you’ll find that it makes some kind of reference to networking capabilities, so make sure you buy one compatible with your system. Some packages will include a router as well, if you’re starting up a network from scratch.
The Network Setup Wizard makes configuring the PCs on your network much simpler
XP is built with networking in mind, so its refreshingly easy to set up a network using the operating system. Once you’ve got your hardware set up correctly, Windows will recognise that the PC has become part of a network, and you can then configure this by visiting Network Connections in Control Panel, right-clicking on the icon that appears, and choosing Properties. From this window you can alter the TCP/IP settings (TCP/IP being the standard protocol for network communication, including the Web), and set exact IP addresses for your computers. IP addresses work very much like postal addresses, and identify each machine uniquely – unless you’re sure what you’re doing, we’d recommend that you leave XP and your router to assign
these addresses automatically. If you run into problems getting your network to operate properly, or you are connecting up computers running older versions of Windows, then the Network Setup Wizard can help – you can find it in Control Panel or under the Network Tasks pane in My Network Places. This will identify what hardware set up you currently have, and create a utility that you can run on each networked computer to add it to the group. If you open up device manager (right-click on My Computer, choose Properties and then Hardware), you should see a network adapter listed. This is a good place to start when trying to troubleshoot networking problems, and you can access the device settings by right-clicking on its entry in device manager and choosing Properties. Most of the tabs that appear won’t need to be changed, but if you are experiencing difficulties then you might want to try following the Troubleshoot link or reinstalling the relevant driver. XP will automatically create a Shared Documents folder on your hard drive which other network users can access, and you can use this to give others access to your files while still keeping your hard drive private. If you want to allow access to additional folders on your system, right-click on the folder in Windows Explorer and choose the Sharing and Security option from the list that appears.
Let Windows assign IP addresses and it will control communication between your PCs
You can decide which folders on your hard drive other network users can access
Going into Windows
The Essential Windows XP Handbook
113
XPHB4 pp112-119:XPHB3 pp24-33
9/12/08
10:48
Page 114
1
2
If you’re setting up a LAN then you’ll need to add a network card to each of the computers on your network (assuming they don’t already come with one pre-installed). Open up your case and install the card, and when Windows boots up the new hardware will be ready to use.
Next, we’ll install a wireless router for our connection to the internet. Plug the cable from your ADSL connection into the back of the router. Next, plug one end of an RJ-45 network cable into the socket marked LAN on the wireless router (this will plug into the back of the network router later).
3
4
The wireless modem will need setting up to work with your ADSL connection. Most devices are controlled through a web user interface and this one is no different. Enter the supplied IP address into the browser and follow the instructions as per your manual. Each device will work slightly differently.
You will need to secure your wireless network (using either WEP or WPA encryption) to stop snoopers accessing your connection. Encryption is set through the web interface, using a passphrase – when connecting to an encrypted network you’ll enter the same passphrase.
5
6
This particular wireless modem comes with a USB adaptor. To get it working, plug it into your computer’s USB port and install the driver software. Once it’s installed it will look for any wireless networks, and when it finds yours it will ask you for your security key. Enter this to connect to the internet.
114
The Essential Windows XP Handbook
If you wanted to, you could set-up a totally wireless network. To do this you’ll need adapters installed in (or plugged into) all of the PCs on the WAN. Go to Start/ My Network Places and choose to Setup a Wireless Network for a Home or Small Office Network. Step through the Wizard and reboot at the end.
XPHB4 pp112-119:XPHB3 pp24-33
9/12/08
10:48
Page 115
7
Now we’ll connect up a DSL router. Plug one end of a RJ-45 network cable into the first PC on your network and then plug the other end into one of the free ports on your router. Repeat the process with different cables for each of the PCs you wish to add. Finally, connect your wireless modem to the router.
8
Go to Start/ My Network Places and choose to Setup a Home or Small Office Network. Step through the Wizard and reboot at the end. Run the wizard on the other machines, remembering to make the domain name the same on all of them. Your network should now be fully installed.
9
10
11
12
You may need to configure your DSL router to use the wireless modem, and again this is likely to be controlled through a web interface. Follow the supplied instructions and you should be able to get it working without too many problems. You now have a wired and wireless network.
You should be able to see the other computers and laptops in your home via My Network Places once all of the wired and wireless connections are in place. If you decide to share files and folders between them, you can browse other PCs remotely from this screen.
With a network in place, adding new computers is very simple. A Windows XP system with a wireless adapter attached should automatically detect the network, while attaching a PC directly to the router is even easier. IP addresses will be automatically assigned by the router.
To set up a printer across the network, go to Start/ Control Panel/ Printers and Other Hardware. Click on Add A Printer, then click Next, select A Network Printer, then Browse for Printer. Double-click the computer the printer is attached to, select the printer you want and click Next to finish.
The Essential Windows XP Handbook
115
3/9/08
15:57
Page 63
TECH TALK
▲
PCU105 Xpert-Tech Talk Internet:PCU
EXPERT
Tech talk:
The Internet Millions of computers connected like one giant network – Simon Clark looks the infrastructure of the Internet in a bit more detail
I
may be wondering why you need an ISP when you have a PC and router at your disposal. Surely you can bypass the ISP and just hook up to the Internet yourself? In theory the answer is yes. However, it would cost you a small fortune with all the
▲ The Internet Society ensures the Open development and evolution of the Internet around the world
additional equipment that’s required. Your ISP already has this. Furthermore, it will have paid for links to the ‘Internet Backbone’. This is the most important part of the Internet that’s made up of multiple networks between major organisations and large educational facilities. Even if you’re using a Wi-Fi connection you’ll still be connecting to the Internet via an ISP, even if it’s not yours. For every computer to function on the Internet and be indentified it must have its own IP (Internet Protocol) address. This is a set of numbers that takes on a format similar to 212.58.253.67. If you’re curious to find out yours go along to www.whatismyipaddress.com. Your ISP allocates your IP address. Many home users have what is called a dynamic IP address. This means their number is assigned automatically and it may change each time they connect to the Internet. Alternatively, some ISPs provide their customers with static IP addresses which never change. All IP ▲
t’s often said that no single entity owns the Internet. While this is true it is overseen by a group called the Internet Society. This is a non-profit organisation, which decides on the protocols and policies used with the Internet. Since its beginnings in 1969 the Internet has grown to a global network of millions upon millions of computers. Today the Internet is something we all take for granted. We expect it work first time, every time with as little delay as possible. However, there are a number of elements to its infrastructure which are worth knowing about. The kudos of sounding knowledgeable among your friends is just one reason to find out more. Another is to gain an understanding of what makes it tick. This may help you diagnose problems with your own connection in the future. Now’s your chance to find out more. We connect to the Internet via an Internet Service Provider (ISP). Now you
issue 105
www.pc-utilities.co.uk
63
PCU105 Xpert-Tech Talk Internet:PCU
3/9/08
15:58
Page 64
▲
EXPERT TECH TALK
numbers, dynamic or static, are assigned from a specific range that’s allocated to your ISP. This means that wherever you go on the Internet you can be traced. While you can’t be personally identified from your IP address you can still be associated to your ISP. In some cases your IP address can even divulge your approximate geographical location. Go along to http://visualroute.visual ware.com/ and click on Start. Wait while the program traces your location. Click on the Map tab to see a geographical representation. Double-click an area of the map to zoom in. You’ll find a similar tool at www.whatismyipaddress.com/.
▲ ICANN monitors and controls the Internet addressing system
212.58.253.67 doesn’t make as much sense to us as www.bbc.co.uk. This name is known as a domain. Computers still need to communicate using numbers rather than names. Therefore, when you type a domain into your computer or click on a link your computer needs to translate the domain name into a number. It does this so it can communicate effectively with the computer holding the information you’re trying to retrieve. The first thing that happens is your computer contacts a computer owned by your ISP called its DNS (Domain Name System) server. This server holds details of all known domain names and IP addresses for websites. Let’s say you type www.bbc.co.uk in your browser. If your ISP’s DNS servers have the DNS information for this
IP and DNS We already know that the Internet relies on IP addresses. However, these numbers make more sense to computers than they do humans. When you want to browse the Internet you could type 212.58.253.67 into your browser but after a while all these numbers would be difficult to remember. Therefore, IP numbers get translated into words to make life easier for us. For example
▲ DNS servers are used to translate Web addresses into IP numbers and vice versa
domain then your request to view the site will be sent to www.bbc.co.uk and it will appear in your browser. Most ISPs will cache DNS information, in order to reduce traffic on their system. If your ISP’s DNS servers do not have information for the domain you’re requesting then your request will be
▲ You can use Trace Route to see the route from your PC to a website on the Internet forwarded to one the Internet’s root name servers. These root name servers keep records of every single domain name and their records are constantly updated. When a new website is added to the Internet it’s not instantly visible across the Web. This is because it takes time for the new address to propagate on name servers around the world. Details of your ISP’s domain name servers are stored in your router configuration program. Incorrect DNS entries are often the cause of Internet connection problems. This can be due to wrong numbers being entered or the servers not functioning correctly. The efficiency of these DNS servers can also have an impact on the speed of your Internet connection. What’s interesting about DNS servers is that you don’t have to use your ISP’s. Try a third-party service such as OpenDNS at www.opendns.com and see if you get any performance improvements.
Packet data Something else you need to be aware of is that data doesn’t travel in a straight line over the Internet. It’s easy to assume that your information simply goes from A to B. The truth of the matter is that it goes via X, Y and Z on
How do search engines work?
Search engines such as Google are crawler-based. This means that their listings are created automatically using software often referred to as a spider. This scours the Internet looking for webpages and documents. All of these are collected and returned to the search engine for indexing. The indexing software extracts information from the pages that it finds and creates a database. This could be the entire page or the document title and just a few words. When you carry out a search and enter your keywords, the results are taken from the database. Your results are listed in the form of a set of links. A high ranking in a search engine will guarantee that your webpage is seen by more people. During the creation of a webpage there are certain techniques which can be used to make it easier for a search engine to index that page. Certain keywords can be embedded within the code of the page, which are used when it’s indexed. Use of the right keywords can sometimes help improve results rankings. If you don’t want to wait for the spider to find your site, most search engines have a facility for manual submission. ▲
64
www.pc-utilities.co.uk
issue 105
▲ Search engines such as Google scour the Internet using special software to locate pages for indexing
3/9/08
15:58
Page 65
TECH TALK
▲
PCU105 Xpert-Tech Talk Internet:PCU
EXPERT
How does email work?
When you click on Send your email program sends the message off to the SMTP (Simple Mail Transfer Protocol) server at your ISP. Let’s say you’re sending a message to john@genericserver.com. The server looks at the email address in two parts, the account name john and the domain name genericserver.com. The SMTP server contacts a DNS server to translate the domain name into an IP address. Once this IP address has been sent back the SMTP server sends the email address to the SMTP server of genericserver.com. The SMTP server of genericserver then delivers the message to the mail account of john on its POP3 (Post Office Protocol3) server. John will then check if any email is waiting for him on the POP3 server and the message will be delivered. It’s possible to view your messages while they reside on your ISP’s mail server before you download them to your PC. You can do this using a free program such as ePrompter (www.eprompter.com). The receiver uses this information to reassemble the data packets in case they arrive out of sequence.
▲ Your IP address can often divulge your approximate geographical location
Your connection in action When data is sent over the Internet it uses a protocol called TCP/IP. Data is
broken down into small packets so it can be sent more efficiently. In essence TCP/IP is two different protocols working simultaneously. The first of these is IP (Internet Protocol) which is used to provide information. It ensures that the packets of data that are being sent contain the IP address of the sending computer and the IP address of the destination machine. Without the correct addresses it would not be possible to send the data. The other protocol is called TCP (Transmission Control Protocol). When the two machines in question attempt to establish a connection using IP the TCP protocol controls the data flow. The receiving machine sends confirmation back to the sender that data packets are being received OK. The sender identifies the order of the data packets.
All change The IP addressing system that we’re using is all set to change. Its technical name is IPv4 and it needs to change for a very important reason – the pool of IP numbers is running out. During the early days of the Internet no one could have predicted just how big a phenomenon it was going to be. At the time, the 4 billion or so possible number combinations were considered an adequate amount. The expansion of the
▲ Domain names must be translated into IP addresses before your browser can be directed to the right location
Useful links Internet Society www.isoc.org ICANN www.icann.org RIPE www.ripe.net
▲ Windows Vista is already prepared for the change over to IPv6
Nominet www.nominet.org.uk
Internet means that more numbers are needed. Therefore, the addressing system is going to change to IPv6. (In case you’re wondering, IPv5 was used for something else which explains the jump to IPv6.) This new IPv6 addressing system means there will now be 340 trillion trillion trillion numbers available, so it’s extremely unlikely we’ll ever run out again. Although your PC will need to be configured to use IPv6, for the average user the changeover will be seamless. Windows Vista users won’t have to do anything as the protocol is already installed. Windows XP users will need to have Service Pack 2 running for the protocol to work. The rollout of the new addressing system began earlier this year and will continue gradually. ▲
the way. On its journey from your PC to its destination and back again it will pass through numerous routers and servers. You can see this in action right now using the Traceroute tool in Windows. If you’re using Windows XP, click on Start/ Run, type cmd and press Enter. In Windows Vista click on Start, type command prompt and press Enter. At the prompt, type tracert and then a Web address. For example, tracert www.yahoo.com. Each router or server your information request passes through is called a ‘hop’. The first few hops will be your ISP. After that it will go out over the Internet until it reaches its destination.
issue 105
www.pc-utilities.co.uk
65
18/3/08
17:18
Page 63
TECH TALK
▲
PCU99 Xpert-Tech Talk Firewalls
EXPERT
Tech talk:
Internet firewalls In this month’s Tech Talk Wayne Williams tells you everything you need to know about protecting your network with a firewall, and looks at the available options
T
blocking an unsolicited connection can prevent a hacker gaining access to your system, while containing outgoing traffic can prevent malware on your computer making contact with the outside world. A network without a firewall is like a house with its doors unlocked. Almost anyone who wants to gain access can, and with relative ease.
How firewalls work Firewalls control Internet traffic in four ways – packet filtering, circuit-level
▲
▲ One of the best known free firewalls, ZoneAlarm places all untrusted computers into the Internet Zone
Packet filtering checks the IP addresses and TCP/UDP ports of every data packet
gateways, application-level gateways and stateful multilayer inspection. These methods can be used individually or combined, depending on the firewall. Packet filtering is the most basic of these options and is mostly used in hardware routers. Data packets moving from one side of the firewall to the other are compared against a set of policies or rulesets, as they attempt to ▲
hese days you really need three things to keep your computer safe on the Internet. An antivirus program, a spyware scanner and a good firewall. Windows comes with a firewall built in, although as we’ll discuss later, there are much better options available. A firewall can be implemented in hardware or software and its role is very straightforward. It acts as a gatekeeper, scanning network traffic and allowing or denying it based on trust levels and user input. This can be a lifesaver at times –
issue 99
www.pc-utilities.co.uk
63
PCU99 Xpert-Tech Talk Firewalls
18/3/08
17:18
Page 64
▲
pass through. Operating at the OSI network layer (see the OSI model section below for more details), this filtering system checks a packet’s header for its source and destination IP addresses, and TCP/UDP ports. If a packet passes inspection it will be allowed through. If it fails the filtering process it will be discarded. It’s a fast
▲ Most firewalls will block all incoming traffic unless it’s been requested by a trusted device
▲ Comodo’s free firewall not only defends you from the dangers of the Internet but also protects against malware
▲
EXPERT TECH TALK
Most routers offer some form of firewall protection. This wireless one from D-Link offers both NAT and SPI (stateful packet inspection)
OSI model The Open Systems Interconnection Basic Reference Model was developed in 1984 as part of the Open Systems Interconnection (OSI) initiative and is a seven-layered standard used to describe the flow of data in a network. The seven layers are:
The easiest way to remember the order is to use the simple mnemonic, “All People Seem To Need Data Processing”. The model defines the different stages that data has to go through to travel over a network, although it’s rather outdated and abstract now (many protocols don’t actually fit into a specific layer). The layers are divided into two sets: Host (layers 7-4) and Media (3-1), and the various firewall methods work at different OSI levels. Packet filtering operates at the network level, circuit-level gateways run on the session level and application-level gateways at the application level. Stateful multilayer inspection operates across multiple layers. The lower down the stack a firewall runs, the simpler and less knowledgeable it will be. For example, a packetfiltering firewall at level 3 knows the basics about the packets it’s handling (where they’ve come from and where they’re going to), but it doesn’t know what they are or what other packets they’re related to. This makes it easier to fool with IP spoofing – pretending the packets have come from a trusted source. ▲
64
www.pc-utilities.co.uk
issue 99
and very simple system that treats each packet separately, even if it’s part of an allowed stream of traffic. A circuit-level gateway operates in the session layer of the OSI model (layer 5) and filters traffic based on set session rules. It automatically closes off all ports and denies all incoming traffic unless it has been expressly requested. The firewall also acts as a proxy, mapping all your internal IP addresses to a single safe external one. When a trusted computer inside the firewall tries to communicate with an untrusted one outside, the gateway logs the request, and makes the contact itself. Remote computers only ever deal with the firewall and never with the originating PC. The initial contact – the start of the standard TCP three-way handshake – contains a SYN (synchronise) bit set in the packet header, identifying it as a new connection. When the Web server replies to this it sends a packet with both the SYN and the ACK (acknowledge) bits set. Because the firewall has asked for this data and is
expecting it within a set time frame, it knows to let it through. This is passed back to the originating computer, which will reply with a packet with just the ACK bit set. This goes to the firewall and is forwarded on, establishing the connection. If a hacker tries to get into your system by claiming to be delivering data you’ve requested, the firewall will block the intrusion automatically because (a) it’s not expecting it and (b) it knows it’s not part of an established connection. It’s a bit like going for a meeting. If the Managing
▲ PC Tools Firewall Plus is very easy to use but it does offer some advanced features for more experienced users
18/3/08
17:18
Page 65
TECH TALK
▲
PCU99 Xpert-Tech Talk Firewalls
EXPERT
Windows Firewall The XP firewall is a basic stateful inspection service. It blocks any incoming traffic that hasn’t been requested, and so provides a reasonable level of protection from outside attacks. Unfortunately, it lacks any way of filtering application content and doesn’t monitor outgoing traffic, so there’s nothing to stop malware on your system from “phoning home”. It’s certainly better than having no firewall at all, but you shouldn’t rely solely on it to protect your network. The Vista firewall is much better and adds outgoing protection and user filtering. This, somewhat clumsily, has to be configured using a snap-in in the management console. You can run it by clicking Start/ Control Panel/ Administrative Tools/ Windows Firewall With Advanced Security, or by clicking Start and entering wf.msc into the search box.
Director has set it up, you will be expected and allowed in to see him. If you’ve just turned up without an appointment, you’ll be sent away. Once the connection is established the firewall will simply forward packets back and forth between both systems. However, because the packets aren’t actually checked, any malicious ones that sneak in won’t be picked up by the firewall. This is where application level gateways come in. Application-level gateways, also often referred to as proxies, are similar to circuit level gateways in that they accept requests and forward them on, preventing computers inside the firewall from having direct external contact. The obvious difference is that they filter
NAT To access the Internet your computer needs an IP address. If you have lots of computers, you’ll need lots of IP addresses. The problem is there simply aren’t enough of them to go around. Routers solve this problem by using a system called Network Address Translation. NAT acts as a proxy, sharing a single IP address among multiple computers, and delivering a simple form of stateful inspection at the same time. While this process provides a reasonable degree of security and prevents unsolicited external traffic from reaching your network, it should be viewed as an additional layer of protection, and not as a replacement for a dedicated firewall.
other three methods and process traffic across multiple OSI layers. They filter packets at the network level, monitor connections (logging the data in a state table to determine if session packets are legitimate) at the session level and evaluate packet contents at the application level. They don’t use a proxy though, so trusted clients are permitted direct connect with untrusted systems. This method offers a high level of security but is expensive and potentially tricky to configure. The best solution for a home network is to run all of your computers through a router and then install a software firewall on any devices that are going to be accessing the Internet.
Personal firewalls Personal firewalls generally require some degree of user input. Every time a program or a process tries to go online, you’ll be alerted and given the
▲ SmoothWall Express is a Linux-based Open Source firewall designed to be run on a dedicated PC
▲ Vista’s Firewall is a marked improvement over the one in XP, but it’s still not as solid or useful as it could b
Useful links ZoneAlarm Free Firewall www.zonealarm.com
option of allowing or denying it. This non-stop prompting can get irritating, but you can instruct the software to remember your preference and perform the exact same action every time a particular event occurs. There are plenty of free personal firewalls you can download and install but we recommend three in particular. ZoneAlarm is probably the best known and is very easy to setup and use. Untrusted computers all go through the secure Internet Zone, but any you’re sure are safe can be moved to the Trusted Zone. Both zones have low, medium and high levels of security. Comodo Firewall Pro is very robust and, in addition to controlling what programs have access to the Internet, it can even help to protect your system from malware via its optional Host Intrusion Prevention System (HIPS). Called Defense+, this monitors the OS and alerts you every time an unknown or untrusted application attempts to run or install itself (though activating this feature does substantially increase the number of pop-up messages you’ll receive). Finally, PC Tools Firewall Plus is also worth a look. It’s quite straightforward with all the various options accessible from the main screen. It shows you network traffic in and out of your PC and you can view or edit blocked/authorised applications. There’s also an advanced section, which allows experienced users to define rules for specific network communications.
Comodo Firewall Pro www.personalfire wall.comodo.com PC Tools Firewall Plus www.pctools.com Firewall Guide www.firewallguide. com SmoothWall www.smoothwall. orgP
▲ You can make changes to Vista’s Firewall properties through the management console ▲
▲ The Windows Firewall included with XP prevents external attacks but it’s not very secure
packets at the application level (layer 7). As well as controlling all HTTP, Telnet and FTP traffic they can decide whether an application should be allowed outbound access. Software firewalls like ZoneAlarm (which are application-level gateways) enable the user to define and change rulesets simply by asking for permission whenever a program tries to go online (all incoming connections are blocked automatically). Stateful multilayer inspection firewalls offer a combination of the
issue 99
www.pc-utilities.co.uk
65
PCU111 Xpert-20 tips WiFi:PCU
19/2/09
09:09
Page 66
▲
EXPERT
WIRELESS NETWORKING
Manage your Wi-Fi network
In this month’s tips section we’ll show you how to secure, manage and get the most out of your wireless home network
f you don’t already have a wireless network, setting one up is relatively straightforward. There are two main options. The first and most basic is the ad-hoc or peer-to-peer method. This requires one computer to be hooked up directly to your modem, with a Wi-Fi adaptor installed in every device that you want to be part of your network. Each Wi-Fi adaptor will need to be set for ad-hoc mode and have the same SSID (Service Set Identifier) and channel number. You can configure this through the hardware’s Control Panel setting. The second and far easier solution is to buy a router, preferably with a modem built-in, and set up an infrastructure network. You’ll again need a wireless adaptor (or built-in Wi-Fi) for every device on your network, but once installed you only have to configure your modem then connect and go. It’s very undemanding, and adding other devices – such as additional computers, games consoles or a wireless printer – couldn’t be simpler. Routers aren’t overly expensive either. You can expect to pay somewhere between £50-£100 for a top 802.11n model and £20-£30 for each matching adaptor. There’s no question that Wi-Fi is fantastic, especially if you want the freedom to connect to the Internet from anywhere in the house or on the move. Over the following four pages we’ll show you how to surf securely, overcome common problems, find the best hotspots and generally get the most out of your wireless setup. Wayne Williams
Buffalo etc). These offer the same speed and range benefits, and the good news is they will be fully compatible with the finished standard.
I
▲
66
www.pc-utilities.co.uk
issue 111
Move 2 your router
▲ The Linksys DIR-615 router follows the 802.11n draft 2.0 specification
1 toUpgrade 802.11n
802.11n, the new Wi-Fi standard due to replace 802.11g, has been in development since 2004 and is expected to be finalised by the end of 2009. It promises massively faster speeds (a theoretical maximum of 300Mb/s) over a vastly increased range (up to 300ft) due to its use of MIMO (Multiple-Input Multiple-Output) – additional transmitting and receiving antennas. Although the standard has yet to be fully ratified you can already buy 802.11n draft 2.0 devices from all the usual manufacturers (D-Link, Netgear,
The position of your router is vital if you want to get a good signal. Placing it on top of a desk rather than underneath it will help. The more central its location, the more even the signal will be around the house. Remember, all sorts of things can degrade a Wi-Fi signal, including solid walls, floors and furniture. It’s also susceptible to interference. Try to keep your router away from any powerful electrical devices – especially ones with built-in motors – and power cables.
Make sure your 3 hardware is compatible
To get the full benefit from a wireless network you really should make sure your router and wireless adaptors are from the same manufacturer and product line. If they’re not, you could find you get a slower and less reliable connection. It’s especially important in
19/2/09
09:09
Page 67
WIRELESS NETWORKING
4
EXPERT
SECURE YOUR NETWORK
To prevent anyone leaching off your Wi-Fi ▲ connection it’s vital you encrypt it. Open up a
1
▲
PCU111 Xpert-20 tips WiFi:PCU
browser window and log into your router following the instructions in your manual. Find the Wireless Settings option. Some people claim hiding your SSID adds an additional layer of security, but in truth it doesn’t offer any real protection.
Find the Security Options. Your router should ▲ offer a choice of encryption methods. WEP
2
(Wired Equivalent Privacy) is the most basic and will deter casual snoopers. It can be very easily cracked though so your best bet is to choose WPA or WPA2 if available. There may be several variations to choose from.
Enter a security key. This should be between 8 ▲ and 63 characters in length. The longer you
3
the case of 802.11n draft hardware. If you have an 802.11n router, but your wireless adaptors all use 802.11g, you’ll be able to connect without problems but you won’t enjoy the speed benefits of the new standard.
can make it, the harder it will be to crack. If you can’t think up one, the WLAN Key Generator www.speedguide.net/wlan_key.php can help. Make a note of the key and keep it somewhere safe.
Broadband customers can join the community immediately, but if you use another ISP you’ll need to purchase a FON Wi-Fi router first, which costs £30. Alternatively you can access the network without sharing your connection by buying a voucher.
Set up 8 profiles
Repair your 5 connection
Free Wi-Fi access 7 with BT FON
WirelessKeyView should be able to recover any lost network keys
BT FON (www.btfon.com) is an interesting Wi-Fi initiative that aims to give all of its members access to free wireless broadband wherever they are in the world. You securely share a small portion of your broadband connection with other FON users (a maximum of 512Kb/s), and in return get free access to any of the 250,000+ global hotspots created by other members. BT Total
Recover your 9 network key
Update your firmware/drivers
Hardware manufacturers often release firmware updates for their products, and router manufacturers are no different. It’s worth checking periodically to see if new software has been released for your device, as this may improve its stability and increase performance. Check the
▲
6
▲ Upgrading your router’s firmware can sometime improve its performance
▲
If your wireless connection suddenly slows or drops, you can attempt to repair it. In Vista, right-click the network icon in your system tray and select Diagnose And Repair. (If the icon is missing just click the Start button and select Network/ Network And Sharing Center. Diagnose And Repair is listed in the sidebar.) The troubleshooter will look for problems and, if it finds something, suggest a solution or let you repair the connection. The process is similar in XP. Right-click the Network icon in the system tray and select Repair.
support section on your manufacturer’s website. To upgrade the firmware, save the file to your hard drive, log into your router and look for a router upgrade option (possibly under Maintenance).
BT FON hotspots aren’t the fastest but they should suffice for most casual surfers’ needs
To be properly secure, wireless network keys need to be very long and made up of a mixture of letters and numbers. Unless you come up with a catchy passphrase such as “18sheepwear72socks”, they generally aren’t easily remembered. If you forget the key for a wireless network, you can easily retrieve it using ▲
▲ Repairing a dropped wireless connection is easy enough
Netprofiles enables you to create individual profiles for any wireless networks that you visit on a regular basis – work, home, your local coffee shop and so on. You can store a range of different settings for each connection including IP address, primary and secondary DNS servers, proxy settings and more. You can also set a default printer and change your browser homepage and Windows wallpaper. If you’re using XP the software will automatically switch to the relevant profile as soon as a recognised network is detected.
issue 111
www.pc-utilities.co.uk
67
PCU111 Xpert-20 tips WiFi:PCU
19/2/09
09:10
Page 68
▲
EXPERT
WIRELESS NETWORKING
WirelessKeyView. This pulls up any keys on your system stored using the Wireless Zero Configuration service.
Locate hotspots 10 with MyHotspotter
Trustive (www.trustive.com) has a network of over 65,000 hotspots installed in airports, hotels, bars and restaurants across Europe, including just under 6,000 in the UK. If you use one or more of these on a regular basis you should consider installing the free Trustive MyHotspotter tool. This includes a visual hotspot finder so you can quickly locate the nearest access point on a map and it will also alert you as soon as one comes in range. The program remembers all your details, so you can log in immediately just by clicking the pop-up box.
Default 11 settings
▲ You can connect a Nintendo DS to your wireless network, but only using WEP
Wi-Fi your laptop 15 onManage
▲ You can configure your router to send you an email alert should it detect a significant security event
If you’ve lost the login details for your router don’t despair. Provided you haven’t changed the default settings you can use the following usernames and passwords: Router 3Com D-Link Linksys Netgear USRobotics
Address http://192.168.1.1 http://192.168.0.1 http://192.168.1.1 http://192.168.0.1 http://192.168.2.1
Username admin admin admin admin admin
If you have changed the settings you’ll need to reset your router to the factory defaults first. Look for a reset button on the back of the device and hold it down for 10 seconds or so. If it has a reset hole, stick a straightened paperclip into it.
Advanced 12 settings
When you log into your router to set it up, make changes or add encryption, take a look at the other settings on offer. There will probably be some useful
13
WEP Yes Yes Yes Yes Yes Yes
WPA-PSK Yes No Yes Yes Yes Yes
WPA2-PSK Yes No Yes Yes No No
▲ Xirrus Wi-Fi Inspector tells you everything you need to know about your wireless network connection (including SSID, Channel and Mac and IP Addresses) and a real-time graph shows the signal strength/history. The program also offers a dynamic radar, which displays all other connections in range, including their names and relative distance. The stronger a signal, the closer to the centre it will appear.
Sniff Wi-Fi using an 16 iPhone/iPod touch
There are several great applications you can use to turn Apple’s iPhone/iPod touch into a pocket hotspot locator. The
FIND WIRELESS HOTSPOTS
(www.jiwire.com) has data for 200,000 global access points, including an impressive 27,741 in the UK alone. Click the map to begin your search or fill in some details in the box.
▲
68
admin password admin
connect 14 aSecurely games console
The newest games consoles have Wi-Fi built into them. The only exception is the slightly older Xbox 360, which doesn’t come with a wireless adaptor as standard but you can buy one for it. Connecting them to your network is no different, or harder, than connecting any other wireless device. However, they don’t all support multiple encryption methods. The Nintendo DS in particular only works with WEP. Here’s a handy guide:
Device iPhone/iPod touch Nintendo DS Nintendo Wii PlayStation 3 PlayStation Portable Xbox 360 with adaptor
There are lots of free Web-based services you ▲ can use to find hotspots in any area. JiWire
1
Password admin
advanced configuration options. Depending on the manufacturer you may be able to adjust the router’s firewall settings, turn on remote management, block certain sites, configure port forwarding, turn off unnecessary lights, and even request that the router send you an email if someone tries to hack into your system.
Xirrus Wi-Fi Inspector is a powerful application that can find and connect to hotspots and help you manage and troubleshoot a wireless network. It provides details on your current
www.pc-utilities.co.uk
issue 111
Another good service to try is Free Hotspot ▲ (www.free-hotspot.com). As its name
2
suggests, it’s particularly useful for finding nocost sites. Just click the Find Free Hotspots tab then either type some search terms into the box or browse the map. It can tell you whether a hotspot is On, Off or Unknown.
NetStumbler is a handy tool to have on your ▲ laptop when you’re on the move with no idea
3
where the nearest hotspot is located. Run it and the program will automatically detect any wireless access points in the vicinity and provide you with all the details you need, including signal strength and security status.
19/2/09
09:10
Page 69
WIRELESS NETWORKING
▲
PCU111 Xpert-20 tips WiFi:PCU
EXPERT
17 STREAM MEDIA WIRELESSLY
You can share music, pictures and video over a ▲ wireless network using Windows Media Player
1
11. Launch the player and click the arrow under the Library tab. In the box that opens tick Share My Media. Doing so automatically adjusts the Windows Firewall settings, opening the required TCP and UDP ports.
Make sure the device you want to share your ▲ media with is turned on and connected to the
2
network. It should appear in the box. Select it and click Allow. Click Settings to change the name you’re sharing under. You can choose which media types to share and restrict content based on star and/or parental ratings.
Open up Media Player on the other computer ▲ and click the down arrow under Library. Select
3
▲ Vista’s Network Discovery feature asks you specify the type of network you’re connecting to
Media Sharing as before. Tick the option to Find Media That Others Are Sharing and click OK. The other computer will now be able to see and stream your shared media.
connection. If you select either of the first two options Vista will allow your computer to be discoverable and grant more applications access to your system. If the network is public it will lock things down and increase the Windows firewall security accordingly. This feature adds a useful layer of protection but you can easily turn it off by clicking Disable Network Discovery in the Networking And Sharing Center.
VoIP 20 Make calls
▲
You can buy Wi-Fi handsets with Skype pre-loaded on them which will let you make calls from anywhere within range of a wireless network. Probably the coolest of the various models is the 3 Skypephone (http://3skype phone.com/). This is a regular mobile phone with Skype baked-in. You can use it to make free unlimited calls to other Skype users worldwide, or standard mobilerate calls over the 3 network. You can also instant message your friends using Skype chat. The phone costs from £12 a month on a mix and match plan.
3’s Skypephone is a regular mobile that also lets you make Skype calls
Use WeFi to 18 find hotspots
WeFi is a useful community-driven tool for finding and verifying hotspots. When you run the software it will search for any wireless connections in range and provide you with the necessary details. If you’re not currently online it will automatically connect you to the strongest and safest choice – you can turn this feature off and just manually
▲ WeFi makes it easy to find and connect to safe and secure hotspots around the globe connect to one if you prefer. If you connect to an unrecognised hotspot you’ll be able to map it for the benefit of other members.
Choose the right net19 work location in Vista
When you connect to a new wireless network for the first time using Vista, the Network Discovery feature will ask you whether it’s a Home, Work or Public
PROGRAMS Program WeFi See also: MyHotspotter Netprofiles NetStumbler WirelessKeyView Xirrus Wi-Fi Inspector
Price Website Free www.wefi.com Free Free Free Free Free
www.trustive.com http://netprofiles.danielmilner.com www.netstumbler.com http://tinyurl.com/am3nh9 www.xirrus.com/library/ wifitools.php
▲
most popular is JiWire’s free Wi-Fi Finder, which lists over 200,000 locations in 135 countries. You can use the location feature to find hotspots that are near to you, or search by town (but not currently by postcode). You will need to be online to be able to use it with the iPod touch. Other non-free apps to consider include WifiTrak (59p), WiFiFoFum (£1.79) or Total Hotspots (£2.99). All are available to download from the Apple App store (www.apple.com/uk/iphone/appstore/).
issue 111
www.pc-utilities.co.uk
69
U&R1 Upgrade your Wi-Fi network:PCE65 pp
17/6/09
10:34
Page 76
PERIPHERALS AND GADGETS
Upgrade your Wi-Fi network David Nield explains how you can get extra performance from your home network with some additional hardware
W
HARDWARE GUIDE HARDWARE: Network devices LEVEL: Beginner ON THE WEB: www.thinkbroadband.com
hen broadband was first introduced, the idea of connecting up more than one computer to it seemed unthinkable. In fact, most Internet Service Providers (ISPs) forbid users from sharing their broadband signal around. Today, the situation is completely reversed – your ISP will install broadband in your home with networking in mind, and will usually supply a combined router and modem so that all of the computers in your house can get connected to the Web. However, there’s no reason why you have to leave the standard installation in place. Over the next four pages, we’ll explain how you can connect your various PCs and laptops via wired or wireless connections, and show you how you can boost a weak signal to reach all of the areas of your home. We’ll also demonstrate how to improve the speeds on your local network and hook up additional devices to share between your computers. We’ll start from the very beginning, in case you haven’t yet got your home network in
place, explaining the hardware you’re going to need and the different options at each stage.
Types of broadband There are two types of broadband that you can sign up for in the UK – the most common is ADSL (Asymmetric Digital Subscriber Line), which comes through your phoneline, with the signal becoming weaker the further away your home is from the local telephone exchange. The other technology – which can theoretically reach higher speeds – is cable broadband, but this is only available in areas of the country that can receive cable television, usually supplied by Virgin Media (see www.virgin. com for more). When choosing a broadband supplier, factor in any bundled services (such as telephone calls) and examine the terms and conditions closely, particularly when it comes to download limits. Consumer websites such as www.thinkbroadband.com and www.broad bandchoices.co.uk can prove very helpful here.
Network hardware At the centre of your network setup will be a router/modem device that receives the broadband signal coming into your home and splits it to your various PCs as well as producing a wireless signal. Routers are now typically provided by your ISP, but upgrading one is not difficult if you’re looking for extra speed or features. Routers built for the consumer market make use of the IEEE 802.11 Wi-Fi standard, defined by the Institute of Electrical and Electronics Engineers. Most routers make use of 802.11g technology, which has a maximum data rate of 54Mbit/s and an indoor range of 40 feet. The 802.11n standard, which is still being drafted, will increase this range to 220 feet, at a data rate of 248Mbit/s. The 802.11n standard is expected to be introduced fully in December 2009, though some draft models are available now. In addition to the router, you’ll need a wireless adapter on every PC or laptop you want to connect via Wi-Fi. You can also invest in devices to boost the Wi-Fi signal as it travels through your home, while the recent introduction of powerline technology means that you can also buy adapters for your electrical sockets.
76
Issue 1
Upgrading your router isn’t difficult if you’re after faster speeds
Upgrade & Repair PCs
U&R1 Upgrade your Wi-Fi network:PCE65 pp
17/6/09
10:34
Page 77
PERIPHERALS AND GADGETS
1
Your router and everything you need to create a home network should’ve been provided by your ISP together with installation instructions. If you want to introduce new features, faster speeds or a greater range to your home network, upgrading the necessary hardware isn’t a difficult process.
2
You should be able to swap out the connections in your existing router and replace it with a more powerful device without any adverse affects. The Netgear Wireless-N Modem Router shown here offers up to 15 times the transfer speed and 5 times the wireless range of a standard 802.11g router.
3
Whenever you’re replacing hardware, it’s important to check with your ISP first. Community forums on the Web are a great place to get started – on the Sky Broadband forums, for example, you can read threads posted by other users about different routers and devices that have been tested.
4
Round the back of your new router you should find all of the ports you need. This DGN2000 model offers the standard four Ethernet ports as well as two wireless antennas to improve the Wi-Fi range. The pale blue port on the left hand side is the one to connect up to your telephone socket.
5
One of the most popular ways of upgrading your network is to turn it all or part of it into a PowerLine network. PowerLine adapters, like the Netgear model shown here, can stream Internet feeds around the home through your existing plug sockets without affecting any of your existing devices.
6
If you already have a router and network in place, adding PowerLine adapters to the mix is truly plug-and-play – there’s no software to install or setup configurations to go through. The adapters simply act as an extension for your Ethernet cables, and plug into available sockets as shown.
Upgrade & Repair PCs
Issue 1
77
U&R1 Upgrade your Wi-Fi network:PCE65 pp
17/6/09
10:35
Page 78
PERIPHERALS AND GADGETS
7
Run an Ethernet cable from a spare port on your router to the newly fitted PowerLine adapter and the Internet connection will be sent round to the other power sockets in your home. You can then plug in another adapter in another room to take advantage of your newly extended network.
8
9
The Linksys adapter shown in this picture takes a slightly different approach. Unlike the small adapters we looked at earlier, these devices act as mini routers, though the principles are just the same. To get started, attach your first adapter to your router, and then plug it into a spare mains socket.
10
The process is the same at the other end, though on your second adapter the Ethernet cable runs to your laptop or network device rather than your router. The Linksys hardware takes care of all the bandwidth sharing, and you can connect up to four devices in every room where an adapter is installed.
11
Modern motherboards now come with a suitable network socket built in, and wired connections are the fastest and most stable way of connecting up the devices on your network. They also communicate directly with your router, so you won’t usually have to enter a security password.
12
Wi-Fi standards are improving all the time, and today’s laptops, netbooks and even mobile phones come with Wi-Fi connectivity. You can buy external adapters if you wish to, such as this Netgear USB device, which usually offer a better way of connecting to weak signals and faster transfer speeds.
78
Issue 1
At the other end of the connection you’ll need another Ethernet cable – you can then connect up a networked device or attach a laptop or another PC to communicate with the router. More and more devices are now being built with a network socket built in, such as the Canon MFD shown here.
Upgrade & Repair PCs
U&R1 Upgrade your Wi-Fi network:PCE65 pp
17/6/09
10:35
Page 79
PERIPHERALS AND GADGETS
13
You shouldn’t have any difficulty configuring Windows to work with your network, as Microsoft has slowly and surely improved home network support in its operating system. Your router should appear in the Network section of the Computer screen, and you can right-click to access further options.
14
The Manage Wireless Networks section of Control Panel is the place to turn to if your Wi-Fi network isn’t being detected automatically. Click Adapter properties to see information about the installed Wi-Fi adapters, or the Add button on the left to look for and connect to available wireless networks.
15
If you live close to your neighbours, you’ll probably be able to pick up several wireless networks – you can see the name of the network as transmitted by the router together with the strength of the signal. To join your home network, select the relevant entry and click Connect.
16
You’ll be prompted for the security key or passphrase that you used when the network was set up – if you need to check or modify it, you can do this from any PC or laptop that has a wired connection to the router. Enter the key carefully and then click Connect to start surfing the Web.
17
The Network and Sharing Centre in Control Panel is the place to go to if you need to customise any aspect of your network’s configuration or if you’re having trouble getting connected. Click View computers and devices to see a screen showing all of the devices that are visible on the network.
18
You can access your router directly through any Web browser by entering the appropriate IP address – you should be able to find this in the router’s Properties screen or in the user manual that came with the hardware. From here you can change the security setup and other router settings.
Upgrade & Repair PCs
Issue 1
79
Networking BC:Layout 1
9/9/09
14:32
Page 1
Other essential PC guides from Guidaroo
Available online at www.guidaroo.com