2
Background
First I need to say that I know about how better it is to secure the wifi network even with WEP , than to not secure it at all, and I know there is a thread asking a similar question like Is securing Wifi with MAC Filter enough? and Router password vs MAC filtering?.
However, I was told by a fellow of mine that it totally ruins the speed of the wifi by half, from 70 Mbps (without any password protection) to less than 30 Mbps (with password protection).
He offered to remove any password protection and use specific MACs list that will allow only specific devices to connect.
However, as far as I know , this allows other to sniff about everything that is transmitted, so he said there is not much to sniff as the important websites (like ebay and paypal) are already secured via SSL and such.
My question
Is he right? Why would the wifi become so slow with a password? Does it mean that I would always have to choose between speed and security to such an extend? I thought that the encryption is very fast and can't slow down the internet connection that much...
Do not under any circumstances pay attention to this person. Use WPA and do not bother with MAC filtering. The overhead from encryption is minimal. – Paul – 2013-10-10T23:10:21.020
but that's the speeds that we got. i saw it too. – android developer – 2013-10-10T23:10:59.760
Please [edit] and add more details about your environment. Whatever the problem is, removing security is not the solution. – Paul – 2013-10-10T23:12:06.493
"the speeds that we got" - so you have done some of your own benchmarking? You only seem to be speculating in your question? – MrWhite – 2013-10-10T23:23:24.300
Your friend is full of it. Filtering by MAC addresses is trivial to bypass – Ramhound – 2013-10-10T23:53:59.240
1You mentioned 70 Mbps and 30 Mbps.. so you're doing internal-network speed test, not outside/internet speed test? – Darius – 2013-10-11T01:19:47.613
no, we used the website "speed-test" and one that is inside the country (bezeq : http://www.bezeq.co.il/support/Pages/speed_test.aspx ) .
– android developer – 2013-10-11T07:34:55.240If you are only dealing with internet speeds then I do struggle with how you can possibly see any speed difference between encrypted and non-encrypted traffic. How fast is your internet connection?! I just did a crude test with my smart phone wifi (internet connection) with encryption off/on and there was no difference between the two. I get 28Mbps down in both cases. In fact this is the same whether I use a modern PC on a Gigabit ethernet connection. – MrWhite – 2013-10-11T07:50:09.330
@w3d could it be that it's a hardware problem? the router is in fact an access point , which is "WNAP-1120PE" model by "Planet" . it says "802.11n wireless PoE Access Point" . oh, and about the speed, we are connected to a 100Mbps connection (also paying quite a lot), so it's also annoying that we get much slower connection on a secure network. – android developer – 2013-10-11T08:04:11.763
I strongly disagree with the the posts first sentence: 'Protecting' a network with WEP does not add any useful protection anymore. You might as well leave it off. It does offer the illusion of protection, so it is actually worse than an unencrypted network. – Hennes – 2013-10-15T09:55:49.457
@Hennes most websites that i've read say that it's better to use WEP than to use an open network. hacking into a password-protected network should always be harder than hacking into one that doesn't have it, since the password protected one encrypts everything. – android developer – 2013-10-15T10:19:11.930
'Hacking' WEP comes down to downloading a program and running it for about 10 seconds while in range of the target network. That is not much protection. Anyone who can google can log in. Which means you will still need to encrypt all your data (e.g. use SSH, sFTP, HTTPS etc). I saw many people skip that last part since 'the network is protected anyway'. That kind of fake safety can be dangerous. I can understand though why very poor security can be better than no security at all though. – Hennes – 2013-10-15T10:26:01.130
@Hennes didn't know it's 10 seconds, but still a poor security should be better than none, right? in any case, i'm talking here about MAC filtering, and it's so weird that i can find a way to hack WEP with tools for windows but not this one... – android developer – 2013-10-15T10:56:05.650
Why not use wireshark to see which MACs are used on a wireless network? There is a windows version. The MAC address is the value in the source field, as in this picture. However showing how trivial it is to bypass MAC filtering does not help you with 'Why does my network become so slow when I enable encryption with $my_hardware?'
– Hennes – 2013-10-15T11:38:40.853@Hennes shouldn't i first need to connect to the network before wireshark can sniff from it? anyway, you are right about the speed, which is the issue here (i was confused with another post i've written on this subject, here: http://superuser.com/questions/657567/how-to-find-the-mac-addresses-of-an-unsecure-network-on-windows-using-the-easi ) . yes, the question is how come the speed is so awful when using encrypted network against non-encrypted network.
– android developer – 2013-10-15T11:57:19.120No, there is no need to connect to the wireless network to sniff the data. Since it is being send though the air you just need to be in the same area. When the data is encryption (WEP or otherwise) you might not get much readable data, but the MAC address is an unencrypted part, so you can always read that. After that you go though the computer version of these steps
– Hennes – 2013-10-15T12:02:23.777@Hennes i know that in theory this is correct. i just asked about wireshark. are you sure it's capable of doing those things without connecting to any network? if so, please write how to do it in an answer for the link i've written, and i will check it out and tick it if it's correct. – android developer – 2013-10-15T17:02:34.567
You are talking a lot about WEP encryption!? Are you actually using WEP on your network?! This could be contributing to your problem. You should not be using WEP, you should be using WPA2+AES instead. Not only is WPA2 much much more secure (and supported by all WiFi certified hardware since 2006), it is also much much quicker on new hardware! – MrWhite – 2013-10-15T18:55:06.507
@w3d no i'm not. i spoke the truth. i didn't lie. i only wrote what i've found info about. however, i will ask again which type of encryption method was used – android developer – 2013-10-15T22:12:02.713