Cybersecurity

Network Security Basics - Are You Doing These Things?

Chris Titus Tech
Chris Titus TechApr 18, 2026

Why It Matters

Implementing these low‑cost, actionable steps dramatically lowers the attack surface for home and small‑business networks, protecting data and preventing costly breaches.

Key Takeaways

  • Scan external gateway for open ports using GRC Shields Up.
  • Use TCPView or netstat to identify listening services on devices.
  • Disable unnecessary services like SSH, VNC, RDP to reduce attack surface.
  • Prefer third‑party routers (Ubiquiti) over ISP‑provided gateways for home.
  • Implement firewall rules and block unknown devices for ongoing protection.

Summary

The video walks beginners through essential network security steps, starting with an external gateway scan. The presenter recommends using the free GRC Shields Up tool to detect any open ports on your internet-facing router, ensuring that only necessary services like port 80/443 for web traffic remain visible. Next, the focus shifts to local devices. Windows users can install Microsoft’s TCPView or run netstat to list active connections, while Linux users can rely on ss, netstat, or lsof to pinpoint listening ports. The speaker highlights common risky services—SSH (port 22), VNC (5900), and RDP (3389)—and advises disabling them unless explicitly needed. Router choice is another critical layer. ISP‑supplied gateways are often insecure; the creator suggests upgrading to a third‑party solution such as Ubiquiti UniFi, which offers stronger firewall controls and better Wi‑Fi performance. For power users, open‑source firewalls like pfSense or OPNsense provide granular control, though they require more setup effort. Finally, ongoing vigilance is essential. Regularly audit connected devices, block unfamiliar MAC addresses, and configure host‑based firewalls (UFW for Linux, Windows Defender). The video also demystifies VPNs, noting they encrypt traffic but do not replace proper endpoint security. Together, these practices form a layered defense that reduces exposure to common attacks.

Original Description

Is your home network actually secure — or are you just hoping it is?
In this video, we cut through the noise and cover what actually matters when it comes to basic network security. No VPN shilling, no affiliate links, no bloated security suites — just real, actionable steps you can take today.
What we cover:
- How to scan your external gateway with GRC Shields Up
- Using TCPView (Windows) and netstat/lsof (Linux) to see exactly what's talking to the outside world
- The ports you need to know about: SSH (22), RDP (3389), VNC (5900), and more
- Why your ISP-provided router is probably your biggest vulnerability
- Router recommendations that are actually worth your money (and what to avoid)
- The truth about VPNs — when they help and when they're just hype
- Software firewalls for both Windows and Linux
- How to audit and block unknown devices on your network
The bottom line: Security is a journey, not a destination. Nobody is ever 100% safe — but knowing where to look puts you miles ahead of most people.
🔗 Full write-up available at christitus.com
00:00 No VPN Shilling, Just Real Security
00:20 Port Scans
06:14 Routers
10:34 Network Audit
12:07 Software Firewalls
14:00 The Truth About VPNs
15:07 The Only Good Reasons to Use a VPN
16:38 Security Is a Journey Not a Destination
►► Digital Downloads ➜ https://www.cttstore.com
►► Website and Guides ➜ https://christitus.com

Comments

Want to join the conversation?

Loading comments...