RE: Home Networking

This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible. ------_=_NextPart_001_01C19AE8.F224E940 Content-Type: text/plain; charset="iso-8859-1" Works ok as long as you don't have any MS boxen exposed to the net in this fashion. You are only 1 step away from NAT at this point and much more secure with the addition of NAT. > -----Original Message----- > From: Lisa Winkler [mailto:lmw@po.cwru.edu] > Sent: Friday, January 11, 2002 1:54 PM > To: plug-discuss@lists.PLUG.phoenix.az.us > Subject: Re: Home Networking > > > I am probably going to get flamed by the more security-minded > people in the group, but.... > > I wanted real-world IPs. I didn't want the hassle of IP > Masquerading. So, instead of a firewall I have an old P-60 > with 2 NICs set up as a bridge, with IP Filter running on > them. Cable modem comes in NIC 1, IP Filter drops any > packets I don't want on my network, and the rest go back out > through NIC 2 to my hub and on to my other 2 boxes. The > "firewall" box is headless; I have a 3rd NIC that I use to > administer it, but I can only get into it from within my > network since it has a private IP. Because there is no way > of reaching it from the outside world (short of breaking into > one of the other boxes on my network I suppose) I don't worry > too much about it being hacked. > > IMO this was a much easier setup than NAT, and less worrisome. > > Lisa > > On Fri, 11 Jan 2002, Technomage wrote: > > > I did that here without a problem.... > > > > I use 2 nics in the box and it handles NAT/port forwarding without > > much fanfare (in fact, I am seding this message from a box > behind the > > linux router/firewall). > > > > Technomage > > > > "Bruner, Andrew" wrote: > > > > > > I'm getting Cox@home and plan on using a Linux box as a > firewall. Do I need > > > to also configure it as a router? Should I just go out > and buy a router? Do > > > I need a router at all? I have an 8 port hub that I was > planning on using in > > > conjunction with the Linux box as a firewall. Will that work? > > > Thanks for any comments. > > > -Andrew > > > ________________________________________________ > > > See http://PLUG.phoenix.az.us/navigator-mail.shtml if > your mail doesn't post to the list quickly and you use > Netscape to write mail. > > > > > > PLUG-discuss mailing list - > PLUG-discuss@lists.PLUG.phoenix.az.us > > > http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss > > > > > > ________________________________________________ > See http://PLUG.phoenix.az.us/navigator-mail.shtml if your > mail doesn't post to the list quickly and you use Netscape to > write mail. > > PLUG-discuss mailing list - PLUG-discuss@lists.PLUG.phoenix.az.us > http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss > ------_=_NextPart_001_01C19AE8.F224E940 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable RE: Home Networking

Works ok as long as you don't have any MS boxen = exposed to the net in this fashion. You are only 1 step away from NAT = at this point and much more secure with the addition of NAT.

> -----Original Message-----
> From: Lisa Winkler [mailto:lmw@po.cwru.edu]
> Sent: Friday, January 11, 2002 1:54 PM
> To: = plug-discuss@lists.PLUG.phoenix.az.us
> Subject: Re: Home Networking
>
>
> I am probably going to get flamed by the more = security-minded
> people in the group, but....
>
> I wanted real-world IPs. I didn't want = the hassle of IP
> Masquerading. So, instead of a firewall I = have an old P-60
> with 2 NICs set up as a bridge, with IP Filter = running on
> them. Cable modem comes in NIC 1, IP = Filter drops any
> packets I don't want on my network, and the = rest go back out
> through NIC 2 to my hub and on to my other 2 = boxes. The
> "firewall" box is headless; I have a = 3rd NIC that I use to
> administer it, but I can only get into it from = within my
> network since it has a private IP. = Because there is no way
> of reaching it from the outside world (short of = breaking into
> one of the other boxes on my network I suppose) = I don't worry
> too much about it being hacked.
>
> IMO this was a much easier setup than NAT, and = less worrisome.
>
> Lisa
>
> On Fri, 11 Jan 2002, Technomage wrote:
>
> > I did that here without a = problem....
> >
> > I use 2 nics in the box and it handles = NAT/port forwarding without
> > much fanfare (in fact, I am seding this = message from a box
> behind the
> > linux router/firewall).
> >
> > Technomage
> >
> > "Bruner, Andrew" wrote:
> > >
> > > I'm getting Cox@home and plan on = using a Linux box as a
> firewall. Do I need
> > > to also configure it as a router? = Should I just go out
> and buy a router? Do
> > > I need a router at all? I have an 8 = port hub that I was
> planning on using in
> > > conjunction with the Linux box as a = firewall. Will that work?
> > > Thanks for any comments.
> > > -Andrew
> > > = ________________________________________________
> > > See http://PLUG.phoenix.az.us/navigator-mail.shtml if =
> your mail doesn't post to the list quickly and = you use
> Netscape to write mail.
> > >
> > > PLUG-discuss mailing list = -
> PLUG-discuss@lists.PLUG.phoenix.az.us
> > > http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-= discuss
> >
> >
>
> = ________________________________________________
> See http://PLUG.phoenix.az.us/navigator-mail.shtml if = your
> mail doesn't post to the list quickly and you = use Netscape to
> write mail.
>
> PLUG-discuss mailing list - = PLUG-discuss@lists.PLUG.phoenix.az.us
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-= discuss
>

------_=_NextPart_001_01C19AE8.F224E940--