Monitor Wireless Router & Users:

I've been having a few problems with people trying to brute force my WPA2/AES 300 bits password(good luck). I have showed examples to businesses how even secured wifi is accessed if you are patient. I used to use airsnare back in the days which only looked at mac addresses and DHCP to see if there was a new user on your router. I'd like something more comprehensive than that.

If you have any ideas let me know.

Danke.

 

Why not just block all other mac addresses and IPs than yours?

EDIT:

My router with special firmware can log all non specified connections.

 

I'd be interested in learning about a program too!

Does your AP/router have a active connections tab/table/page in it's admin setup? Or a log as MikeNAS notes?

As for securing your AP, I have used MAC filtering but now consider it less effective than I once thought. (Still, using it won't hurt either.) If I really had an AP that was being continually attacked, I'd set a major league admin password, limit the number of allowed connections and completely disable DHCP (meaning using only static IP addresses.) I'd also disable WiFi based AP administration. Only allow changes via hard wired connections.

**EDIT**
Couple minor changes.

 

Because you can use software to spoof the mac address of the router or client. I already use mac filtering but I don't rely on it. There is software for linux, mac and windows that allows you to spoof any mac address already connected to the router. Disabling DHCP is a good idea and setting up static leases. If anything funny happens I will atleast see an ip confliction.

I was looking at this app and another to monitor my router. If you have anything better let me know.

 

Ip filtering help a lot with it

 

Very true also I could start to use WPA2 Enterprise with RADIUS to make sure that the passwords aren't getting stale. Although a password that is 300 bits is not going to be brute forced so easily.