Secure Your Router in 15 Minutes
Open your router’s admin page (often 192.168.0.1 or 192.168.1.1). Time each step—yes, 15 minutes is realistic.
Do these steps in order
- Change admin password (and username if allowed). Store it in your password manager.
- Update firmware (auto-update if available). Reboot afterward.
- Wi-Fi security: set WPA3-Personal (or WPA2-AES if devices are old). Avoid mixed WPA/WEP.
- New SSIDs: rename your networks; avoid personal names. Separate 2.4 GHz and 5 GHz/6 GHz if you like.
- Guest network on, with its own password; isolate guests from LAN.
- Disable WPS (push-button pairing) and UPnP unless you truly need them.
- Remote admin: off for Internet/WAN; allow only from inside your network or via VPN.
- DNS: set a trustworthy resolver (or your ISP); optionally enable DNSSEC/DoH if supported.
- QoS/parental controls as needed; don’t install random “optimizer” plugins.
- Save/backup config and write the model + firmware version in your notes.
Bonus: create an “IoT” SSID for cameras, bulbs, TVs—keep them off your main network.
