Monday, March 4, 2024

Secure Browsing

Browsing online or even just connecting to a website can infect your computer. To check a URL to see if it is potentially dangerous go to https://www.virustotal.com and past the URL.

Another approach is to use https://urlvoid.com which allows you to view a website without actually visiting it with your browser.

To add an additional layer of protection to your home network system, a hardware solution adds substantial security. Browsing online and even just connecting to a website with its domain name opens you up to DNS snooping. The use of Unbound DNS resolver and Quad9 DNS recursive service can help maintain anonymity. Naomi Brockwell has a video explaining the process. And a video of a general discussion on securing your home network.

The overall process is to use the existing modem from your ISP and connect an external modem and WiFi unit. The existing modem is then set to bridge mode so that all data passes through to the external modem. (Bridge mode turns off that modem's WiFi.). The new modem will allow full control over DNS resolving, and an additional WiFi unit will provide separate and secure wireless connectivity.

Add an external modem like Protectli Vault FW4B (with Coreboot pre-installed. Default address is 192.168.1.1) connected via an ethernet cable. Install and run pfSense software on the Protectli Vault (Use BelenaEtcher to install pfSense onto a USB stick then use to install pfSense onto the Protectli Vault). Connect a separate WiFi unit to the Protectli Vault via an ethernet cable. Change your ISP's modem to bridge mode. 

pfSense download parameters
 

Protectli Vault FW4B

Bridging your existing modem allows you to use a third-party router and disable the modem’s Wi-Fi capability. Follow these steps to bridge the Hitron modem:

  1. Open a web browser and visit 192.168.0.1
  2. Sign in using the following credentials:
    • Username: Cusadmin
    • Password: (your password)
  3. Select Basic.
  4. Select the Gateway Function tab.
  5. Select Residential Gateway Function.
  6. Select Disable.
  7. To finish, select OK when prompted.
 
  Click to enlarge

WiFi

You will use a separate wifi unit. If it is a WiFi only unit then nothing needs to be done other than connecting to the Protectli vault (either directly or through a network switch). If it is a combination modem and wifi, it needs to be set to "AP mode." This means it is now only a wifi unit.

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)