-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathfaq.txt
183 lines (105 loc) · 20.8 KB
/
faq.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
#Introduction: The Basics
## What is Wi-Fi? What does Wi-Fi do?
Wi-Fi is a brand name for wireless networking standards. Wi-Fi lets devices communicate by sending and receiving radio waves.
Wi-Fi transmits data using microwaves, which are high-frequency radio waves, usually in the 2.4 GHz and 5 GHz ranges. Wi-Fi is more complicated than FM radio, but the basic underlying technology is the same. They both encode information into radio waves, which are received and decoded. FM radio does this for sound, Wi-Fi does this for computer data.
## Where does Wi-Fi come from? What is a router? What is an access point?
Wi-Fi comes from a wireless access point. Most consumer "routers" really cover multiple functions. They are usually a router, wireless access point, and switch — all in one device. Sometimes they even include a modem, if your Internet service provider (ISP) requires one.
- **Routers** take data packets from one network (the Internet) and move them to another network (your internal, local network). It's the post office of networking, sending things where they need to go.
- **Wireless access points** take in an Internet connection and turn it into radio waves (Wi-Fi), allowing you to connect wirelessly.
- **Switches** multiply ports. Typical home routers include a 4-port switch, letting you plug a few devices into the LAN side of your router.
- **Modems** modulate and demodulate an encoded signal from your Internet service provider. This is sometimes integrated into the same device, and sometimes a separate device. If you have coax cable Internet, usually you will need a modem of some kind to get your Internet access. If you have DSL, same story, but with analog phone lines. If you have fiber internet, usually you will require an ONT (Optical Network Terminal) which does the same function. A modem or an ONT typically give you an Ethernet connection to plug into your router/switch/access point.
# Q: I don't get Wi-Fi reception in my whole house, what do I do?
## Most stable solution
Run [cable](http://www.amazon.com/s/ref=sr_nr_p_n_feature_keywords_6?fst=as%3Aoff&rh=n%3A172282%2Cn%3A541966%2Cn%3A172456%2Cn%3A172463%2Cn%3A464398%2Cn%3A9938478011%2Ck%3Acat6+cable%2Cp_n_feature_keywords_five_browse-bin%3A7800930011&keywords=cat6+cable&ie=UTF8&qid=1455364965&rnid=7800923011) to every corner of your house and hook up access points (NOT ROUTERS!). Please remember to put them on different channels. You might have to adjust power output levels of the access points so the clients switch over automatically.
## Option with less cables and less instalation hassle
Use [Powerline](https://www.youtube.com/watch?v=YTD2e9mIoaE). You will be able to use your existing 110V/230V electric lines to also carry network signals. There are even adaptors that directly take the network signal out of the power plug and [give you Wi-Fi](http://www.amazon.com/s/ref=nb_sb_noss_2?url=search-alias%3Daps&field-keywords=Powerline+Wi-Fi&rh=i%3Aaps%2Ck%3APowerline+Wi-Fi).
##What about Repeaters/Range extenders?
Repeaters take a weak Wi-Fi Signal and rebroadcast it. They are often a suggested solution because they are viewed as easy to install as being "foolproof". However, there is more to it than meets the eye. First: Location. Don't install a repeater just beside the Laptop/Phone you want to use. This device will indicate "full bars". But since the Repeater has about the same distance to cover as the other device would, speeds will not be significantly better. So it is important to place the extender somewhere where there is still decent reception and let the signal be boosted from there. Second: channels and RF spectrum use. Since every Packet is effectively transmitted twice the use of a Repeater will basically double the data on the air. So make sure that the base station and the Repeater operate on non-overlapping channels, i.e. 1, 6 and 11. But since you use twice the airtime, you are also twice as likely to interfere with other devices on the air, wich is where the basic, unavoidable weakness of repeaters lies. So you have to be twice as careful in your channel selection. Because of all those caveats and the host of better alternatives, I strongly discourage the use of Repeaters.
##Will Mesh Wi-Fi be the end of all my woes?
No. While Manufacturers want you to believe that Mesh is a silver Bullet, it certainly is not. Mesh simply combines the advantages of having a lot of spread out access points with the advantages of wireless communication, specifically not having to run cabling everywhere. While a repeater connects to the normal Wi-Fi the main router emmits (the same Wi-Fi any other devices would also connect to), a mesh basestation emits two seperate signals: one for normal devices (think phones, laptops,...) to connect to and a seperate one for the mesh satelites to connect to, called a backhaul. Those satelites in turn emit the same "normal" network for phones and laptops as the basestation, so those devices can connect to the same network via either the basestation or any of the satellites. What makes mesh extra cool is that the backhaul does not necessairily have to go from a satellite directly to the basestation, but it may jump from satellite to satellite before eventually reaching the basestation. All this does come at a cost, and the main one stems from the wireless backhaul. Since all the transmitted information has to be translated between electrical signals and airwaves at least once more than if the access point were connected to the router via cable and because this process takes time, you will experience significantly higher round-trip times for your traffic. This will hurt you especially for tasks that require you to send and recieve time-sensitive data like for online gaming (particularly FPS titles) and voice/videocaling. A second disadvantage is that by relying on a wireless backhaul you introduce a new network to the airwaves. This network has to fit in somewhere in the wireless spectrum, not interfere with any existing neworks and reliably reach the connected satellites. Basically you are introducing a whole host of new failure points. In conclusion: Mesh Wi-Fi might be right for you, but it is neither as foolproof nor as set-and-forget as manufacturers make it out to be.
# Q: Why can't i just crank up the output power of my Wi-Fi gear so i'll have better reception? How about putting a bigger antenna on the device?
First, your devices are not engineered for higher output. You'll simply fry them.
Second, the FCC regulates the maximum power output of consumer devices. This is for a number of reasons. Some of them being less interference, less (potentional) damage to radio-sensitive persons, but foremost less traffic on an already well used frequency band. If you only have to avoid interference in a 20m radius, that's a lot less of a headache than in a 100m radius.
# Q: I live within throwing distance of my school/parents/... and dont want to pay for my own internet. Is there an option for me? AkA how do I get Wi-Fi to my Shed/Outhouse/Mancave etc.
Yes, there is. [Directional antennas](http://www.amazon.com/s/ref=nb_sb_noss_2?url=search-alias%3Daps&field-keywords=directional+antenna+Wi-Fi&rh=i%3Aaps%2Ck%3Adirectional+antenna+Wi-Fi). Since they don't spread out their signal over a wide area but keep it concetrated in a narrow beam, you get a lot more distance out of them. Keep in mind: Wi-Fi signals go both ways, so there is no point in only upgrading one side. Both sides have to be able to cover the distance. Check out [this tutorial](http://www.makeuseof.com/tag/how-to-turn-an-old-router-into-a-wireless-bridge/) to learn how to DIY a bridge with a couple of older routers or watch [this video](https://youtu.be/LG-AZz_nm5Elearn) to see it being done with specialized hardware. You can use [this Tool](https://airlink.ubnt.com/) by Ubiquiti to find out if a point-to-point Link is possible in your specific case. If the Distance is less than 100 Meters and you can dig a trench, you can even run an ethernet cable, which will always be the most reliable solution.
# Q: What do the letters like a/b/g/n and ac or Numbers like Wi-Fi 5 or Wi-Fi 6 stand for?
They are different revisions of the [IEEE802.11 Standard](https://en.wikipedia.org/wiki/IEEE_802.11). From a consumer standpoint, they signify different Wi-Fi speeds. b being the slowest, then a and g, then n and ac being the fastest.
Wi-Fi 6, also known as 802.11ax, is the latest generation of Wi-Fi as of July 2020. Wi-Fi 6E is an extension of Wi-Fi 6 into the newly added 6 GHz spectrum. Wi-Fi 6 devices are becoming more common, but Wi-Fi 6E devices are still extremely rare.
Standard | Letter designation | **Theoretical** Max. Speed (MBit/s)| Frequency band (GHz)
---|---|----|----
Wi-Fi 1 | a | 54 | 5
Wi-Fi 2 | b | 11 | 2.4
Wi-Fi 3 | g | 54 | 2.4
Wi-Fi 4 | n | 600 | either
Wi-Fi 5 | ac | 2340 | 5
Wi-Fi 6 | ax | 11000 | 1-6
# Q: What's the big deal with the 2.4 and 5 GHz frequencies?
There are a lot of differences between 2.4 and 5 GHz. They are both unlicensed spectrum, meaning that anyone can transmit there. The specific spectrum available depends on what country you're in, but generally:
### 2.4 GHz
- Longer range than 5 GHz
- Generally slower than 5 GHz
- Only 3 channels available — channels 1, 6 and 11. (20 MHz-wide)
- 20 MHz channels are most common
- 40 MHz channels can be used if bandwidth is more important than interference or range.
- More prone to interference than 5 GHz
- Only 3 channels to use, if those are in use you have to wait.
- Microwave ovens, Bluetooth, baby monitors, florescent lights, smart home equipment, and tons of other things all interfere with 2.4 GHz frequencies. This can cause issues with Wi-Fi performance.
### 5 GHz
- Shorter range than 2.4 GHz
- 5 GHz signals travel roughly half as far
- Doesn't penetrate walls as well as 2.4 GHz
- Generally faster, and allows for wider channels than 2.4 GHz
- Channels can be 20, 40, 80 or 160 MHz wide.
- Wide channels in 5 GHz will give you the fastest Wi-Fi speeds
- Less prone to interference than 2.4 GHz
- 23 (20 MHz-wide) channels available
- Less non-Wi-Fi devices use 5 GHz spectrum
- DFS Channels are special -- if your AP senses radar transmissions it is legally forced to back off. Don't use DFS channels if you live near an airport or other source of radar.
It is important to note that there are no technical similarities between Wi-Fi signals on the 5GHz spectrum and 5G cellular connections, other than both using some kind of manipulation of the electromagnetic field. They are not intercompatible. 5GHz is used to connect multiple decices in your home together, 5G is used to establish a connectio to a cellular network provider.
# Q: So how do i find out if my network interferes with one of my neighbours? AKA My wireless speed is terrible but all wired devices work fine
Interference can cause poor connection speeds and mess up your day. In the WLAN protocol, only one device at a time can send data, every other device has to wait their turn. It's bad enough you have to wait for all of your devices, you would not want to also have to wait for your heighbour's. So it is essential, that you avoid being on the same channel as the access points next to you.
If you are affected, you will have very bad wireless speeds even though your device shows a full strength signal.
I recommend a tool called inSSIDer. It is available [for Windows and Mac](http://www.inssider.com/downloads/) and there is even an [Android version](https://play.google.com/store/apps/details?id=com.metageek.inSSIDer). If you don't want to pay i recommend [Wi-Fi analyzer](https://play.google.com/store/apps/details?id=com.farproc.Wi-Fi.analyzer). InSSIDer will recomend you the best channel to put your access point on based on the Wi-Fi environment it sees.
# Q: What are the best channels to put my Wi-Fi on?
Wi-Fi channels are spaced 5 Mhz apart, but a Wi-Fi signal has a bandwith of 20 Mhz (at it's slimmest). This means that an access point on channel 2 will have 75% overlap with an access point on channel 1 or 3. Wich will cause you to run into the same problems as if they were on the same channel. Packets will be dropped, resulting in a poor signal quality. Therefore it is best to use non overlapping channels. The common thing to do is to put the 2.4 Ghz devices either on channel 1, 6 or 11. With 5 Ghz devices you have to worry a lot less about overlap due to reasons discussed above.
# Q: What encryption should I use?
For home use, the best solution is WPA2-PSK. If the configuration page asks you wich cipher you want to use, choose CCMP. All but the very oldest devices will support this encryption.
Use a strong password. This means more than 12 characters, use upper and lowercase characters, numbers and special characters. Refrain from using words that can be found in a dictionairy or things like birthdays, wedding days etc.
Disable WPS-PIN. It is meant to give you easier access to your Wi-Fi wich means that unauthorized persons also have easier access.
Steer clear of WEP encryption. If you use it, your network password can be found out in less than five minutes.
Remember: if unauthorized persons gain access to your Wi-Fi, not only will they have free internet but everything they do online will come back to you. Be it filesharing, online fraud etc...
# Q: How can I bypass restrictions on my school/work/university/parent's network?
When you are using a network that isn't yours, restriction are in place for a reason. If you're at work, your company may restrict what you are about to do on their network, and going against their policies is not something we are going to help you with.
# Q: My work/uni/hotel has some restriction on their network about how many devices i can connect to the Wi-Fi at a given time. How can i bypass this restriction?
You dont. This restriction is in place for a reason, it is their network, if you dont like it, use some different means to access the Internet to do your Netflix-binge. If you have a more legit reasonas to why you need this restriction lifted, talk to IT about it. Dont go behind their backs, you dont want a pissed off Sysadmin as your foe.
# Q: What is the difference between Wi-Fi and Internet?
Wi-Fi interconnects the devices in your home. It estabilshes the connection from your laptop to your wireless printer, or from your PlayStation to your router. Your router establishes the connection to your Internet Sercive Provider (The likes of AT&T, Comcast, Time Warner Cable, Grapevine, BT, Sky Broadband etc.). The connection to your ISP (and therefore Internet connectivity) is what you pay for on a monthly basis. If your router is connected to the internet, it will offer that connection to your home network, making the internet accessible over Wi-Fi.
Settings concerning your Wi-Fi such as channel, 802.11 protocol, connected clients and passwords are generally managed by you and do not affect the contract you have with your ISP. Conversely, your internet speed is something you negotiate with your ISP. Most providers allow you to select a service tier, distinguished by the maximum down/up speed one can expect. Typically, your Wi-Fi is 10-100 times faster than your internet connection. So when you do a check on [speedtest.net](http://www.speedtest.net/), the limiting factor for speed will most likely be your internet connection.
To add to the confusion, many ISPs nowadays will sell, lease or rent a Wi-Fi router to you. Those devices are often locked down severely and backdoored, so Wi-Fi setting changes might have to go trough your ISP. Whenever possible, i suggest avoiding ISP-provided routers and supplying your own. Not only does that make you less depandant from your ISP in terms of settings and technology used but it puts up an additional barrier to them creeping into your home network.
# Q: What Wi-Fi should i use for Gaming?
None. Multiplayer Gaming should be done on a wired connection. This answer is not gonna change just because you say that your case is special. The next best thing after a wired connection are Powerline and [MoCa](https://en.wikipedia.org/wiki/Multimedia_over_Coax_Alliance). But do keep in mind: The more you convert the Signal to different Protocols/transmission modes the more your Ping will go up.
# Q: What can "they" see about my search/browsing history?
The answer to this question is not really specific to Wi-Fi but applies to all 802.03 network as any potential snooping would be done on that level.
TL;DR: not much. Modern encryption methods obfuscate most of your traffic. A somewhat knowledgeable Person might find out *that* you visited a certain webpage, but in most cases they wont know what you did there.
For the long answer, we need to distinguish between different parties interested in your traffic
## Different attackers
### Your Neighbours
We're going to assume that your neighbours are not on the same network as you. In that case they can find out that a certain device is online, but as long as you are using WPA2 encryption on your Wi-Fi they wont know what sites you visit, let alone what you do on these sites.
### People on the same network as you
Whitout rerouting your traffic they wont know more than your neighbours. If they feel especially l33t they might reroute your traffic. In this case they could see what sites you are visiting. As long as those sites are secured (you can see that they are by the lock icon in your browser's navigation bar) they wont see what you do on these sites. Your searches as well as your passwords are safe.
### People with control to your router's control dashboard
As all your internet traffic has to go trough your router, thisrouter can see all the internet traffic of all the users. Some routers offer logging features to keep track of certain metrics. But a router can only see as much as other people on the same network as you when they reroute your traffic. Again, make sure you browser always displays the lock icon beside the address you are visiting and your searches and passwords are safe. The router can however see what websites you are visiting.
### Your internet service provider
In the same way that all your internet traffic goes trough your router, all your traffic goes trough your Internet Service Provider (ISP). Therefore, they have about the same insight as someone with access to your router's management dashboard.
### The institution owning/controling your device
If you are browsing on a device that belongs to your employer or your school, they might have installed some special software on your device and/or on your network infrastructure. There are more many security policies than there are companies, so there is no way to give a general answer as to what they might be able to track. It is best to only use devices you do not control for their intended and approved purposes.
### Govenemental Agencies
Owing to the secretive nature of intelligence service, very little is known about the extent of surveillance on the internet. However, you must assume that nothing you do on the internet is kept a secret from the US's three letter agencies. There is currently no reliable info on the capabilities of other nation states.
## Mitigation strategies
### Use private browsing
This does nothing to cloak your internet traffic. It only affects the amount of data your machine keeps of your activity, not what others can see.
### Change your DNS server
DNS is a system that allows internet connected devices to look up the machine readable version of human readable web adresses. In the above paragraphs, whenever it was said that someone might see what websites your were visiting, this was being assumed that those someones provided an upstream DNS server that you were querying. By not using those DNS servers you will not trigger those loggers. However, you must use some DNS server, so it is a question of whom you trust the most with your precious DNS traffic.
There is additionally the option to encrypt the DNS traffic so even someone actively inspecting your traffic could not read your DNS requests. This setup, as well as the best choice of DNS server is out of scope for this wiki or this sub.
### Use a VPN
Normally your internet traffic goes trough your router to your ISP's network and then it hits the internet. If you use a VPN, all your traffic is encrypted and gets sent from your router to your ISP's network, over the internet to your VPN server where it gets decrypted. From there it behaves just like ordinary traffic from that server. Meaning to say it goes to the VPN server's router, to its ISP's network and then hits the internet. Responses take exactly the opposite route. All this to say that VPNs are not magic bullets. Your traffic has to be routed to the internet somewhere. A VPN merely changes the location where this occurs. So it again becomes a question of whom you trust the most. If you suspect snoopers close to you (like when you have to connect to a public Wi-Fi network) using a VPN on your device can certainly alleviate many of the security concerns. But it does nothing against nation states or entities controlling your device.