I have a wbr-3400tx wireless router. Security settings are in place (Hidden ssid, wpa-psk with letters numbers and characters, mac address control, DCHP for only 10 ips, fixed mapping). Problem is, my router logged in this -------------- Mon Jul 30 21:06:35 2007 Dos Attack type : Syn flood!! -------------- And I keep seeing two mac address that doesn't belong to my network and it's being or trying to be accessed via wlan. This is the log ----- Mon Jul 30 21:06:07 2007 Unallowed access from WLAN 00-1A-70-80-74-32 Mon Jul 30 21:06:09 2007 Unallowed access from WLAN 00-18-3F-04-DB-89 ----- And it doesn't happen in minutes, they try to access it 6 times in a minute to 8 times. Question is; did they try to access my router and got in but, router realized its unauthorized?, Can they access my router or possibility of it? should I get worried? what else can I do to prevent them from access it?.. thanks a bunch.

you should def worry there are programs to avoid this problem i have one of such its called attack_replicator and what it does is when any unauthorized access happens to your pc for any reason and they insert any type of virus or spyware or malware for that matter it takes the original virus code spyware codeetc. and returns it to the ip that sent it and then destreoys it so they can no longer send that virus if intrested hit me on yahoo messenger un the screen name xll_linspector_gadgetl_llx keep the pcs safe guys lol

Realize this, wireless is insecure by the very nature of the fact that it's transmitted freely and openly over the airwaves. Whereas with a wired network, you would have to actually get into the building and get physically connected before you could try anything nefarious. With wireless, all you have to do is get within range of the transmitter...... From the looks of it, yes, they did try to get in. Since you have what security is available in WLAN enabled, I'd wager they didn't actually get to piggyback on your network or get inside it. However, if they are determined, a simple packet sniffing program and an encryption breaking program and enough time and processing power and they probably could. It's not uncommon for people to "war drive". That is basically driving around with your laptop running a Wireless detection program (that checks for a signal and signal strength) and find unsecured WLAN's to use for their nefarious reasons (ie: hacking, attacking, child porn up/downloading etc etc). You'd be surprised just how many open and unsecured WLAN's there are out there. People just don't know and they hear about wireless and want it in their homes because nowadays most homes have multiple computers/laptops and they don't want the hassle and expense of wiring their house (understandable in most cases, me however, I'm a network technician and cabling is one of my many duties so my house is wired of course). So they go to a store, purchase a wireless router from some pimplefaced salesman who usually know's nothing about it so they don't get told about the risks and how to reduce the risk by using the security features included in any decent SOHO wireless router. You seem to have a good handle on the security side of wireless so I would recommend you just keep an eye on your log's and if you're really worried, run a packet sniffer of your own and look for any traffic not belonging on your network to see if anyone's gained access.

I would strongly recommend you NOT follow up on system_32's recommendation - for various reasons. I'd say your wrouter is doing it's job at keeping these two machines out. =)

Not really sure what was his intention but, sounded kindy fishy. Instead having one mac address "trying" to get on board. Just found out that there's another two that is trying to get in... I know what I'm about to ask is somewhat "hacking" but, how can I try to access their computer and kinda leave a note to stop harassing my router!!!... I'm getting weary about this kinda thing coz, my previous router, linksys didn't have these kinda log. But now, having this feature, is kinda more than what I bargained for in a good way. Thanks.. Anymore tips in securing my network? from 10 ip's I brought it down to two ips. THANKS a bunch.

Contraltdel.... That's not "somewhat hacking". It IS hacking. Luckily for you, there's no way to access their machine, as there is no actual network established for them yet. Keep in mind, these may just be other computers in the neighborhood, which are attempting to connect to their own WIFI routers. For example, in my apartment complex, there are several visible access points. Occasionally, my machine will try to connect to their routers. Fortunately for most of them, WEP or WPA is enabled. It's a little odd that the request are showing up at your WIFI router, while you have SSID broadcasting turned off. As far as I know, someone actually has to work to get that hidden SSID to broadcast. Check your router's website for any firmware updates. But overall, I'd recommend just ignoring the attempts. Your firewall has several layers of protection, which are doing a good job at keeping these other machines out. Unfortunately, it's an uphill battle, which is extremely tough to win, if you choose to go after those who are making the attempted connections. Furthermore, you'll spend more time than it's worth, finding a way to exploit their system, so as you may leave a "Go the hell away" message on their machine. It would be much more feasible to temporarily turn on your SSID broadcast and change it to "BUGGER OFF!". I'm sure if you changed your visible SSID to "dungeon of gay love", most would stop bothering your router! =)

"dungeon of gay love": Well, what if they are into those kind of stuff? heheh (I got your point). Well, further tracking and researching and kinda wasting time.... Found out that there are two wlan routers out there that is constantly trying to establish connection with mine. Not sure if it's malicious but, I'll be keeping an eye (maybe less than on what I've already put into it these past few days) and hopefully they are dumb enough not to get into my networking. Further more, thanks to all the users who helped me and thanks a lot system_32 for opening my eye that, somewhere, somehow, there are other people out there still trying to spread malice!!! In conclusion, my router is doing a good job, I did a good job in protecting myself, computing.net users are doing a good job, and system_32 is doing a very bad job, ehhehehe :)... Thanks again people. Have a great weekend.