Can router antennas be aimed?

Bob001

Penultimate Amazing
B
Joined
Dec 21, 2006
Messages
16,613
Location
US of A
A security issue for routers is that they broadcast their signal in all directions. But unless you position the router smack in the center of your home, you probably only need the signal to fan out in a wedge to your computer(s). Is there a practical way to block access to the signal from other directions, like your neighbors and passersby in the street? (I know about making access harder with WPA2 etc., but I'm talking about actually blocking the signal itself.)
 
I doubt you will have much luck with that. The radio waves should go out in all directions unless you set up some shielding or something. It really is unessesary though. Encryption with WPA2 won't just make it harder to gain unauthorized access, it will make it impossible for anyone who does not have the password to access the network.
 
If you buy a directional (AKA high-gain) antenna, yes.

http://www.radiolabs.com/products/wireless/directional-wireless-antenna.php

Although, this usually done to increase the range of the signal, not to prevent passers-by from picking it up.

ETA: If you're concerned about other people picking up the signal, it might be possible to turn down the signal strength so that your computer is still in range of the router, but someone on the street wouldn't be.
 
Last edited:
Brian-M said:
But it'd be much cheaper to hire someone to install a network cable from where your router is to where your computer is, and turn the wireless off.
Click to expand...

Well sure but that's not very cool...

Besides, I use a Netgear powerline bridge and cut out the middle man (plus I can move it around if I ever need to without worrying about it).
 
Bob001 said:
A security issue for routers is that they broadcast their signal in all directions. But unless you position the router smack in the center of your home, you probably only need the signal to fan out in a wedge to your computer(s). Is there a practical way to block access to the signal from other directions, like your neighbors and passersby in the street? (I know about making access harder with WPA2 etc., but I'm talking about actually blocking the signal itself.)
Click to expand...

just change the router password to something long and complicated. Then you can reset your router anytime someone hacks your wireless password, not that it actually happens in real life. What are you transmitting that is so secure anyhow? Most work related stuff has extra security like a FOB. I guess an Ethernet cable from your router to your computer is very directional ..
 
Smackety said:
just change the router password to something long and complicated. Then you can reset your router anytime someone hacks your wireless password, not that it actually happens in real life. What are you transmitting that is so secure anyhow? Most work related stuff has extra security like a FOB. I guess an Ethernet cable from your router to your computer is very directional ..
Click to expand...

Yeah. If your password is only 20 characters long and only uses upper case, lower case, and numbers, that is 62^20 or 7x10^35 possible passwords. Even if somebody can guess a billion passwords a second, which you would need a supercomputer to do, that is still 7x10^26 seconds, or 2x10^19 years to get through all them. That's over a billion times longer than the age of the universe.

If you use a long, random password, nobody is going to hack into your wifi network. Ever.
 
Smackety said:
....just change the router password to something long and complicated. Then you can reset your router anytime someone hacks your wireless password, not that it actually happens in real life. What are you transmitting that is so secure anyhow? Most work related stuff has extra security like a FOB. I guess an Ethernet cable from your router to your computer is very directional....
Click to expand...

Okay, I get it, dumb question. But there are two legitimate concerns here: 1/ Someone stealing your credit card numbers, on-line banking info, etc., as you go about your business; 2/ Someone using your signal to do something that you wouldn't want linked to you (use your imagination). It might not happen often, but it can happen. I understand long passwords, etc.; narrowing the signal itself would just be another back-up security tool. And the ethernet cable might be a good way to go: I just discovered "ultraflat" cables designed to run under carpets, etc.:

http://www.amazon.com/gp/product/B0..._m=ATVPDKIKX0DER&pf_rd_r=1DF081XV2TG5537NV8PS
 
Bob001 said:
Okay, I get it, dumb question. But there are two legitimate concerns here: 1/ Someone stealing your credit card numbers, on-line banking info, etc., as you go about your business; 2/ Someone using your signal to do something that you wouldn't want linked to you (use your imagination). It might not happen often, but it can happen. I understand long passwords, etc.; narrowing the signal itself would just be another back-up security tool. And the ethernet cable might be a good way to go: I just discovered "ultraflat" cables designed to run under carpets, etc.:

http://www.amazon.com/gp/product/B0..._m=ATVPDKIKX0DER&pf_rd_r=1DF081XV2TG5537NV8PS
Click to expand...

You could probably reduce the range of your router significantly by putting it on the floor, in a metal safe, wrapped in foil, etc.
 
Bob001 said:
Okay, I get it, dumb question. But there are two legitimate concerns here: 1/ Someone stealing your credit card numbers, on-line banking info, etc., as you go about your business; 2/ Someone using your signal to do something that you wouldn't want linked to you (use your imagination). It might not happen often, but it can happen. I understand long passwords, etc.; narrowing the signal itself would just be another back-up security tool. And the ethernet cable might be a good way to go: I just discovered "ultraflat" cables designed to run under carpets, etc.:

http://www.amazon.com/gp/product/B0..._m=ATVPDKIKX0DER&pf_rd_r=1DF081XV2TG5537NV8PS
Click to expand...


Like I said, Netgear Powerline Bridge. I have the AV500 model and I get somewhere around 240 mbps (1.8 gigabytes per minute if that makes it easier to understand). I have the modem and a wireless router at one end and another wireless router at the other end (I had to do some settings tweaks to make it a switch but it's not hard to do at all). The signal goes through 2 circuit breakers and they are ~70 feet apart as the crow flies (easily 100'+ worth of electrical wiring) so that's not a problem either. It's even got it's own encryption. Just plug them into the wall, use the included software to set them up to talk to each other (very easy to understand interface) and you're done.

CNet Review (note that the prices have come down quite a bit since the review was written) http://reviews.cnet.com/bridges/netgear-powerline-hd-ethernet/4505-3304_7-31970278.html

I get full speed Wifi all over the house, I have two locations that I can hardwire from (NAS, computer, powerline adapter on one and Slingbox, computer and powerline adapter on the other one and each router has a free network cable port). I have a Wii with Netflix (wireless) that never has a problem with streaming the movies to the TV that goes through the powerline connected second router/switch.

Best of all there are no cords visible anywhere to get in the way and I can easily move the bridge, the only limitation is that the new location has to have a power outlet (which you're going to need anyway to power whatever you intend to use at the new location anyway).
 
Last edited:
Sure, you can make your antenna directional, but it sounds like your concern is security. Just use WPA2 and put a 256bit (64 character) random password on.
A directional antenna is just going to change the shape of your area of access from a ball to a cone while boosting the range. The result will be that you'll have to have your computer right in line with the router, while everyone down the street from you will get your signal. No added security with lots of added inconvenience. Might as well just buy a really long ethernet cable.
 
Bob001 said:
A security issue for routers is that they broadcast their signal in all directions. But unless you position the router smack in the center of your home, you probably only need the signal to fan out in a wedge to your computer(s). Is there a practical way to block access to the signal from other directions, like your neighbors and passersby in the street? (I know about making access harder with WPA2 etc., but I'm talking about actually blocking the signal itself.)
Click to expand...

AFAIK, they finally got the security right this time. You could use power line devices if you really don't want to use wireless. They appear to work reasonably well these days.
 
His concern may be security, sure, but let's face it -- there's a huge problem with wireless signals flooding the spectrum, potentially causing all sorts of interference with one another. Building a half-Faraday shield to make the signal more directional is easy, cheap and helps keep your own signal pollution down to a minimum.

Turning the signal gain down on the router is also a possibility, but many cheaper routers still do not have that built into the residential options menu. In those cases, using a third party firmware package like Tomato or DD-WRT would be a fine solution (albeit a more technical one).
 
The Dark Lord said:
I doubt you will have much luck with that. The radio waves should go out in all directions unless you set up some shielding or something. It really is unessesary though. Encryption with WPA2 won't just make it harder to gain unauthorized access, it will make it impossible for anyone who does not have the password to access the network.
Click to expand...

And, of course, getting that password is suddenly not too difficult for a ton of devices:

Wi-Fi Protected Setup (WPS) Vulnerable to Brute-Force Attack

IMHO, this vuln is a pretty big deal.
 
Can you simply turn SSID off? I guess it would be very difficult for anyone to find out that there is WiFi in the first place.
 
Chupacabras said:
Can you simply turn SSID off? I guess it would be very difficult for anyone to find out that there is WiFi in the first place.
Click to expand...

You would guess wrong, sir. :D

As for the exploit, that vulnerability is overstated. Almost nobody uses WPS.
 
You must log in or register to reply here.

Back
Top Bottom