How to restrict Internet access in a home environment?
I am helping a friend who has young teenagers and who wants to restrict their Internet access to sociable hours so they don't sit in bed all night talking to their friends on Facebook etc.
We have a BT Router and a Ubiquiti access point.
The first plan was to use disable the wifi in the BT Router and set a schedule in the Ubiquiti - this worked well but for a short time until they discovered that a factory reset of the BT Router gave them back the 24x7 access they wanted.
With hindsight it would have been better if we'd removed the access codes written on the back of the router and kept those secure then even if they performed a factory reset they still wouldn't be able to log into the wifi. Too late now because I'm sure they've made a note of the BT codes.
Most other routers I can think of have a default username and password so it wouldn't take a teenager many minutes to look up the username and password ready for the next factory reset.
What is really needed is a Internet Provider control panel at which you can set access codes, wifi schedule etc.
How do others get round this or is my friend alone in trying to protect his children from Internet over-use?
We have a BT Router and a Ubiquiti access point.
The first plan was to use disable the wifi in the BT Router and set a schedule in the Ubiquiti - this worked well but for a short time until they discovered that a factory reset of the BT Router gave them back the 24x7 access they wanted.
With hindsight it would have been better if we'd removed the access codes written on the back of the router and kept those secure then even if they performed a factory reset they still wouldn't be able to log into the wifi. Too late now because I'm sure they've made a note of the BT codes.
Most other routers I can think of have a default username and password so it wouldn't take a teenager many minutes to look up the username and password ready for the next factory reset.
What is really needed is a Internet Provider control panel at which you can set access codes, wifi schedule etc.
How do others get round this or is my friend alone in trying to protect his children from Internet over-use?
ASKER
But a factory reset will reinstate the original values won't it? If they factory reset the router then the username and password will revert back to that on the router label/card.
Or is that not the case ?
Or is that not the case ?
A factory reset will remove your settings and need to be set up again. The reset password should not be on the router. Remove all these labels.
ASKER
Ok. The assumption here is that the evil teenagers haven't made a note of the default login and WiFi passwords.
You can and should change all the passwords, wi-fi setup and make sure the Ubiquiti Controller has a strong password.
Yes, if you give people the keys they can thwart it. If you do not give them the keys, then it should be reasonably secure.
Yes, if you give people the keys they can thwart it. If you do not give them the keys, then it should be reasonably secure.
I set up a time restricted access for a client so his children couldn't use their mobiles on the Internet between 7 at night and 7 in the morning using a Draytek 2860 router. You need to know the MAC addresses of the phones/tablets/PCs and it's then just a case of seting up an IP group and setting up a connection filter to block that IP group from the Internet using the schedule facility.
It is just a matter of securing the device used to accomplish the goals.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks everyone.
@davelford: I like this idea but The Evils could possibly obtain the default username and password from the Internet and reconfigure the router. Maybe unlikely but I don't think they can be trusted. You only need one IT Geek at school to give them a crash course and we've wasted £200 on a nice Draytek 2860.
@MASQ, @Soulja: Physical security I think maybe the best answer here. I've had a quick look on Amazon and there are some suitable A4 size lockable metal cases that, with a couple of holes for wires, could do the trick nicely. It'll not do a lot for the WiFi signal but that's provided by a Ubiquiti AP that can be located elsewhere out of reach.
I'll advise my friend to check his credit card statement ;-)
@davelford: I like this idea but The Evils could possibly obtain the default username and password from the Internet and reconfigure the router. Maybe unlikely but I don't think they can be trusted. You only need one IT Geek at school to give them a crash course and we've wasted £200 on a nice Draytek 2860.
@MASQ, @Soulja: Physical security I think maybe the best answer here. I've had a quick look on Amazon and there are some suitable A4 size lockable metal cases that, with a couple of holes for wires, could do the trick nicely. It'll not do a lot for the WiFi signal but that's provided by a Ubiquiti AP that can be located elsewhere out of reach.
I'll advise my friend to check his credit card statement ;-)
Go into the BT Router, change the password and codes and do not write these on the back of the router. Restart the router and check the settings on the Ubiquiti . I have a Ubiquiti AP here so that should work.
What you did worked but you told people how to change it. Just prevent that.